date:20140925

El Wed, 24 Sep 2014 22:30:42 -0500, Debia Linux escribió:

 2014-09-24 22:28 GMT-05:00 Debia Linux debianer...@gmail.com:
 Debianeros, debianitas o como sea:

 Trato de contar las letras de una palabra y ejecuto a la perfeccion el
 comando wc pero siempre cuenta un caracter de mas, ej.

 El archivo tirar.txt solo contiene la siguiente palabra.

 hola

 Por tanto ejecuto:

  wc -c tirar.txt

  5 tirar

 La palabra solo tiene 4 letras ¿Porque me dice que son 5?. Estoy casi
 seguro que esta contando un salto de linea (que no existe).

(...)

 Sorry a todos ya LEI BIEN, me dice que con la siguiente orden.
 
 wc -L tirar
 
 Asunto resuelto

Y lo mismo sucede al usar una tubería, hay que tener cuidado con lo que 
no se ve:

sm01@stt008:~$ echo hola | wc -m
5

sm01@stt008:~$ echo hola | od -a
000   h   o   l   a  nl
005

sm01@stt008:~$ echo -n hola | wc -m
4

Saludos,

-- 
Camaleón


-- 
To UNSUBSCRIBE, email to debian-user-spanish-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: https://lists.debian.org/pan.2014.09.25.13.22...@gmail.com

Re: Desconectar clientes ssh luego de 5 minutos de inactividad

El Wed, 24 Sep 2014 11:48:27 -0300, Gonzalo Rivero escribió:

(...)

 holas, nunca me lo planteé pero encontré esto:
 http://blog.hwarf.com/2009/06/howto-set-sshd-idle-timeout.html

Esos dos valores son interesantes (están documentados en la página del 
manual de sshd_config).

Según entiendo, ClientAliveInterval define el tiempo (en segundos) que 
el servidor ssh va a esperar antes de enviar una señal de desconexión al 
cliente tras no detectar actividad alguna.

ClientAliveCountMax es una especie de contador interno, que cuando se 
alcanza envía al cliente una señal de desconexión. ¿Y cuándo se alcanza? 
Pues cuando se haya superado el valor de la variable anterior por lo que 
a efectos prácticos supongo que estas dos configuraciones tendrían el 
mimos efecto:

#Desconectar a los clientes a los 15 minutos de inactividad
ClientAliveInterval 900
ClientAliveCountMax 0

#Desconectar a los clientes a los 15 minutos de inactividad
ClientAliveInterval 60
ClientAliveCountMax 15

Saludos,

-- 
Camaleón


-- 
To UNSUBSCRIBE, email to debian-user-spanish-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: https://lists.debian.org/pan.2014.09.25.13.42...@gmail.com

Bash vulnerable

2014-09-25 Thread ciracusa


Hola Lista,

Alguien leyo algo de esta vulnerabilidad en BASH:

env x='() { :;}; echo vulnerable' bash -c echo this is a test

Muchas Gracias.

Salu2.





--
To UNSUBSCRIBE, email to debian-user-spanish-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: https://lists.debian.org/542423e2.8020...@gmail.com

Re: Bash vulnerable

2014-09-25 Thread Maykel Franco

El 25/09/2014 16:23, ciracusa cirac...@gmail.com escribió:

 Hola Lista,

 Alguien leyo algo de esta vulnerabilidad en BASH:

 env x='() { :;}; echo vulnerable' bash -c echo this is a test

 Muchas Gracias.

 Salu2.





 --
 To UNSUBSCRIBE, email to debian-user-spanish-requ...@lists.debian.org
 with a subject of unsubscribe. Trouble? Contact
listmas...@lists.debian.org
 Archive: https://lists.debian.org/542423e2.8020...@gmail.com


Si, hablan de ello en res hat:

http://blog.desdelinux.net/bash-vulnerabilidad-detectada/

Re: Bash vulnerable

2014-09-25 Thread Gerardo Diez García

El 25/09/14 16:17, ciracusa escribió:
 Hola Lista,
 
 Alguien leyo algo de esta vulnerabilidad en BASH:
 
 env x='() { :;}; echo vulnerable' bash -c echo this is a test
 
 Muchas Gracias.
 
 Salu2.
 
Sí. Su referencia es:  CVE-2014-6271
Hablan de ella por ejemplo en Hispasec [1] o en Security by Default [2]

De nada, la búsqueda en internet ya la tenía hecha


[1]http://unaaldia.hispasec.com/2014/09/bash-significa-golpe-porrazo-o-castana.html?showComment=1411653056630#c3991696534347351726
[2]http://www.securitybydefault.com/2014/09/grave-vulnerabilidad-en-bash-y-otros.html


-- 
To UNSUBSCRIBE, email to debian-user-spanish-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: https://lists.debian.org/54242692.9050...@gmail.com

Re: Bash vulnerable

El Thu, 25 Sep 2014 16:28:34 +0200, Gerardo Diez García escribió:

 Sí. Su referencia es:  CVE-2014-6271 Hablan de ella por ejemplo en
 Hispasec [1] o en Security by Default [2]
 
 De nada, la búsqueda en internet ya la tenía hecha

(...)

En Debian hay un parche desde ayer:

https://www.debian.org/security/2014/dsa-3032

Saludos,

-- 
Camaleón


-- 
To UNSUBSCRIBE, email to debian-user-spanish-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: https://lists.debian.org/pan.2014.09.25.14.33...@gmail.com

Re: Problema en la validación de usuarios en Roundcube utilizando Postfix+Dovecot+LDAP sobre Debian 7

2014-09-25 Thread Diego H. Cancelo

El día 24 de septiembre de 2014, 10:43, Camaleón noela...@gmail.com escribió:
 Entonces quizá se un problema del paquete de Debian... hum, mira, este
 bug parece estar relacionado con el error que te daba:

 [roundcube] can't modify identities since wheezy
 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=711904

 Saludos,

Si, eso parece.
No dí en la tecla para hacerlo funcionar con el paquete de los repos
de Debian, si con las fuentes descargadas desde la web de Roundcube,
por lo que no marco el hilo como solucionado :p
Gracias por tu respuesta.

Saludos.
Diego.

===
Diego H. Cancelo diego[at]cancelo[dot]com[dot]ar
*GNU/Linux User # 491743* | Huella digital:
03CA 8BAC 823A 80A1 D2FD  E74F 50AB 79D7 8F1A 0DF7
GnuPG: 2048D/8F1A0DF7 | Clave GPG: solicitar por mail
http://www.bootsector.com.ar | http://www.lugro.org.ar
===
Usá Software Libre.


--
To UNSUBSCRIBE, email to debian-user-spanish-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: 
https://lists.debian.org/cae1oxfyytlvfofbfybrt5ggwoaqop921h6jpcoq+rgn-mw6...@mail.gmail.com

Re: Bash vulnerable

2014-09-25 Thread Guido Ignacio

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256

2014-09-25 11:17 GMT-03:00 ciracusa :
 Hola Lista,

 Alguien leyo algo de esta vulnerabilidad en BASH:

 env x='() { :;}; echo vulnerable' bash -c echo this is a test

 Muchas Gracias.

 Salu2.


Acá el PoC de la vulnerabilidad [1]

[1] 
http://blog.segu-info.com.ar/2014/09/grave-vulnerabilidad-en-bash-y-otros.html
-BEGIN PGP SIGNATURE-
Version: OpenPGP.js v0.5.1
Comment: http://openpgpjs.org

wsBcBAEBCAAQBQJUJCtdCRDP17wMFuiP8AAAzHEH/0at+acGXVr9iJq2aC4y
RbUibML7UZ06WhplhhIL/8+hREWjnl7GyB+jR5xV9rfmAeGMIXfTffbEtzEh
winp+Cb57d8NXtibiPBEx5NcCezjdfi1p7ATShNHhlMmZUGemq3B53iFbs+f
QmYJH8VP1y9I6jxWXMykpKGEqfQn98NzwLl3Kz5ki2gsr7D9Jr9STD60W+E0
vUADm+lMBO77tvuqSfvzVpA2p230vruq9tfGlC8UIDWkaYUcWrTJp0T1q1qY
B/ecB44Xu+8sGcz9HZXe7tNXF/T4D9lyloTjTyruQLzrCBhRPuHfr0RNxRCL
YHKBVuvuOtj7gJe3gdRqMFo=
=UWEC
-END PGP SIGNATURE-


--
To UNSUBSCRIBE, email to debian-user-spanish-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: 
https://lists.debian.org/ca+wixxgwuwogmtpqazwv-vnms+0ybczusn+ti2jdqhwj2u2...@mail.gmail.com

Re: Problema en la validación de usuarios en Roundcube utilizando Postfix+Dovecot+LDAP sobre Debian 7

El Thu, 25 Sep 2014 11:36:25 -0300, Diego H. Cancelo escribió:

 El día 24 de septiembre de 2014, 10:43, Camaleón noela...@gmail.com
 escribió:
 Entonces quizá se un problema del paquete de Debian... hum, mira, este
 bug parece estar relacionado con el error que te daba:

 [roundcube] can't modify identities since wheezy
 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=711904

 
 Si, eso parece.

Pues el bug lleva ya un año y sigue sin corregir :-/

 No dí en la tecla para hacerlo funcionar con el paquete de los repos de
 Debian, 

Veo que hay una versión superior disponible en los backports (0.9.5) pero 
bueno, si mantienes la versión oficial (1.0.2) tan sólo recuerda que 
tienes que actualizar los paquetes a mano directamente de su web por lo 
que tienes que estar atento a las actualizaciones que vayan sacando.

 si con las fuentes descargadas desde la web de Roundcube, por lo que no
 marco el hilo como solucionado :p Gracias por tu respuesta.

De nada :-)

Saludos,

-- 
Camaleón


-- 
To UNSUBSCRIBE, email to debian-user-spanish-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: https://lists.debian.org/pan.2014.09.25.14.49...@gmail.com

Saber que paquetes dependen de un determinado repositorio

2014-09-25 Thread Mauro Antivero

Estimados, tengo un par de equipos corriendo Debian Squeeze con los 
repositorios Backports y Proposed Updates activados. Me gustaría 
saber si es posible determinar que paquetes instalados dependen de estos 
repositorios, de manera tal de saber si puedo desactivarlos 
tranquilamente o no. Es posible esto que deseo hacer?


Saludos y muchas gracias, Mauro.


--
To UNSUBSCRIBE, email to debian-user-spanish-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: https://lists.debian.org/542436da.1040...@gmail.com

Re: Bash vulnerable

2014-09-25 Thread Luis Felipe Tabera Alonso

On Thursday 25 September 2014 14:33:57 Camaleón wrote:
 El Thu, 25 Sep 2014 16:28:34 +0200, Gerardo Diez García escribió:
  Sí. Su referencia es:  CVE-2014-6271 Hablan de ella por ejemplo en
  Hispasec [1] o en Security by Default [2]
  
  De nada, la búsqueda en internet ya la tenía hecha
 
 (...)
 
 En Debian hay un parche desde ayer:
 
 https://www.debian.org/security/2014/dsa-3032
 
 Saludos,

Estad atentos, porque aunque hay un parche, parece que no protege 
completamente la vulnerabilidad

CVE-2014-7169

Se afirmaba que se podría utilizar para ejecutar comando arbitrarios a través 
del dhcp!!

Luis


--
To UNSUBSCRIBE, email to debian-user-spanish-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: https://lists.debian.org/6062639.Hhr8MZO8zs@mychabol

Re: Saber que paquetes dependen de un determinado repositorio

El Thu, 25 Sep 2014 12:38:02 -0300, Mauro Antivero escribió:

 Estimados, tengo un par de equipos corriendo Debian Squeeze con los
 repositorios Backports y Proposed Updates activados. Me gustaría
 saber si es posible determinar que paquetes instalados dependen de estos
 repositorios, de manera tal de saber si puedo desactivarlos
 tranquilamente o no. Es posible esto que deseo hacer?

Por aquí tienes algunos one-liners útiles:

Find packages installed from a certain repository with aptitude
http://superuser.com/questions/132346/find-packages-installed-from-a-certain-repository-with-aptitude/138726#138726

Saludos,

-- 
Camaleón


-- 
To UNSUBSCRIBE, email to debian-user-spanish-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: https://lists.debian.org/pan.2014.09.25.16.07...@gmail.com

Re: Bash vulnerable

El Thu, 25 Sep 2014 18:02:16 +0200, Luis Felipe Tabera Alonso escribió:

 On Thursday 25 September 2014 14:33:57 Camaleón wrote:
 El Thu, 25 Sep 2014 16:28:34 +0200, Gerardo Diez García escribió:
  Sí. Su referencia es:  CVE-2014-6271 Hablan de ella por ejemplo en
  Hispasec [1] o en Security by Default [2]
  
  De nada, la búsqueda en internet ya la tenía hecha
 
 (...)
 
 En Debian hay un parche desde ayer:
 
 https://www.debian.org/security/2014/dsa-3032
 
 
 Estad atentos, porque aunque hay un parche, parece que no protege 
 completamente la vulnerabilidad
 
 CVE-2014-7169
 
 Se afirmaba que se podría utilizar para ejecutar comando arbitrarios a
 través del dhcp!!

Sí, se trata de la misma vulnerabilidad por lo que el parche que han 
sacado corrige parcialmente el fallo. Habrá que estar pendientes de una 
nueva actualización.

Saludos,

-- 
Camaleón


-- 
To UNSUBSCRIBE, email to debian-user-spanish-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: https://lists.debian.org/pan.2014.09.25.16.13...@gmail.com

Re: Bash vulnerable

2014-09-25 Thread Fabián Bonetti


Pre-udate:

root@debian:~# env x='() { :;}; echo vulnerable' bash -c echo this is a test
vulnerable
this is a test
root@debian:~#

Post-update: 

root@debian:~# env x='() { :;}; echo vulnerable' bash -c echo this is a test
bash: warning: x: ignoring function definition attempt
bash: error importing function definition for `x'
this is a test 


Fuente  http://www.murga-linux.com/puppy/viewtopic.php?p=800655#800655










-- 
Servicios:. http://mamalibre.com.ar/plus
MamaLibre, Casa en Lincoln, Ituzaingo 1085 CP6070, Buenos Aires, Argentina


pgpOxcx1TeOvl.pgp
Description: PGP signature

Re: Bash vulnerable

El Thu, 25 Sep 2014 13:27:02 -0300, Fabián Bonetti escribió:

 Pre-udate:
 
 root@debian:~# env x='() { :;}; echo vulnerable' bash -c echo this is a
 test
 vulnerable this is a test root@debian:~#
 
 Post-update:
 
 root@debian:~# env x='() { :;}; echo vulnerable' bash -c echo this is a
 test
 bash: warning: x: ignoring function definition attempt bash: error
 importing function definition for `x'
 this is a test
 
 
 Fuente  http://www.murga-linux.com/puppy/viewtopic.php?p=800655#800655

Eso es para el primer parche. Queda el segundo:

https://security-tracker.debian.org/tracker/CVE-2014-7169

Saludos,

-- 
Camaleón


-- 
To UNSUBSCRIBE, email to debian-user-spanish-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: https://lists.debian.org/pan.2014.09.25.16.56...@gmail.com

Re: Saber que paquetes dependen de un determinado repositorio

2014-09-25 Thread Juan José López

El Thu, 25 Sep 2014 12:38:02 -0300
Mauro Antivero mauro.antiv...@gmail.com escribió:


 Estimados, tengo un par de equipos corriendo Debian Squeeze con los 
 repositorios Backports y Proposed Updates activados. Me gustaría 
 saber si es posible determinar que paquetes instalados dependen de
 estos repositorios, de manera tal de saber si puedo desactivarlos 
 tranquilamente o no. Es posible esto que deseo hacer?


Una posible solución es comentar en sources.list un repositorio
cualquiera. Si alguno de los paquetes de ese repositorio se encuentra
instalado, la herramienta 'aptitude' te lo mostrará bajo la rama
'Paquetes obsoletos o creados localmente'. Desde ahí los puedes
desinstalar.

Descomentas ese repositorio y comentas otro, saliendo y volviendo a
ejecutar 'aptitude' en cada vez. O los dejas comentados, si no los
necesitas o has desinstalado los paquetes.

 
 Saludos y muchas gracias, Mauro.
 

Saludos.


--
To UNSUBSCRIBE, email to debian-user-spanish-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: https://lists.debian.org/20140925191959.2594b23f@danika.localdomain

Consulta instalación dvds debian

2014-09-25 Thread Juan Fernandez

Hola, buen dia queridos de la comunidad Debian. Mi pregunta es esta: tengo 
descargados los dvd 2,3 y los dos update de Debian Squeeze, y ya instalado el 
sistema con el dvd 1. Como puedo hacer para instalar los repositorios de esos 
dvs sin necesidad de quemarlos, es decir, directamente desde de la imagen. Es 
posible? Intente hacerlo pero siempre me pide el dvd
Desde ya muchas gracias!



-- 
To UNSUBSCRIBE, email to debian-user-spanish-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: 
https://lists.debian.org/900188145-1411665784-cardhu_decombobulator_blackberry.rim.net-1367552821-@b3.c6.bise6.blackberry

Re: Consulta instalación dvds debian

2014-09-25 Thread nadie

mkdir /media/mountpoint
mount -t iso9660 -o loop /pathtoiso.iso /media/mountpoint

deb file:///media/mountpoint distro main contrib

El 25/09/14 19:23, Juan Fernandez escribió:
 Hola, buen dia queridos de la comunidad Debian. Mi pregunta es esta: tengo 
 descargados los dvd 2,3 y los dos update de Debian Squeeze, y ya instalado el 
 sistema con el dvd 1. Como puedo hacer para instalar los repositorios de esos 
 dvs sin necesidad de quemarlos, es decir, directamente desde de la imagen. Es 
 posible? Intente hacerlo pero siempre me pide el dvd
 Desde ya muchas gracias!
 
 
 


--
To UNSUBSCRIBE, email to debian-user-spanish-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: https://lists.debian.org/542452ef.1000...@openmailbox.org

Re: Consulta instalación dvds debian

El Thu, 25 Sep 2014 17:23:03 +, Juan Fernandez escribió:

 Hola, buen dia queridos de la comunidad Debian. Mi pregunta es esta:
 tengo descargados los dvd 2,3 y los dos update de Debian Squeeze, y ya
 instalado el sistema con el dvd 1. Como puedo hacer para instalar los
 repositorios de esos dvs sin necesidad de quemarlos, es decir,
 directamente desde de la imagen. Es posible? Intente hacerlo pero
 siempre me pide el dvd Desde ya muchas gracias!

Si tienes espacio suficiente en disco, supongo que podrías montar las 
imágenes ISO para tener acceso a los paquetes deb y configurar un 
directorio local en el sources.list, vamos, esto mismo:

Add ISO image to apt sources.list 
http://linuxconfig.org/add-iso-image-to-apt-sourceslist

Saludos,

-- 
Camaleón


-- 
To UNSUBSCRIBE, email to debian-user-spanish-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: https://lists.debian.org/pan.2014.09.25.17.42...@gmail.com

Re: Bash vulnerable

2014-09-25 Thread Angel Vicente

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256

El Thu, 25 Sep 2014 14:33:57 + (UTC)
Camaleón noela...@gmail.com escribió:
 El Thu, 25 Sep 2014 16:28:34 +0200, Gerardo Diez García escribió:
 
  Sí. Su referencia es:  CVE-2014-6271 Hablan de ella por ejemplo en
  Hispasec [1] o en Security by Default [2]
  
  De nada, la búsqueda en internet ya la tenía hecha
 
 (...)
 
 En Debian hay un parche desde ayer:
 
 https://www.debian.org/security/2014/dsa-3032

Para testing todavía no hay ¿no?

Ya he actualizado en el servidor que tenemos con stable.

 
 Saludos,
 



- -- 
Key fingerprint 01DC 0386 2B28 0A02 A270 E243 008B AABF 1822 9851
-BEGIN PGP SIGNATURE-
Version: GnuPG v2

iF4EAREIAAYFAlQkWG4ACgkQAIuqvxgimFEoRgD9G2rDuPieT5KMEwlj5b8KKOPe
pXaoLa92RaAju+OCQC4A/1jLxkPW8qBBmsZmDv4HGy9jpo2WHql4djRZB+l/LCZe
=d9Mo
-END PGP SIGNATURE-

Re: Bash vulnerable

2014-09-25 Thread Germán Avendaño Ramírez

Será por eso que oficialmente se recomienda stable o unstable?
https://www.debian.org/doc/manuals/debian-faq/ch-choosing.en.html#s3.1

On 25 de septiembre de 2014 1:01:02 PM GMT-05:00, Angel Vicente 
angel...@wanadoo.es wrote:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256

El Thu, 25 Sep 2014 14:33:57 + (UTC)
Camaleón noela...@gmail.com escribió:
 El Thu, 25 Sep 2014 16:28:34 +0200, Gerardo Diez García escribió:
 
  Sí. Su referencia es:  CVE-2014-6271 Hablan de ella por ejemplo en
  Hispasec [1] o en Security by Default [2]
  
  De nada, la búsqueda en internet ya la tenía hecha
 
 (...)
 
 En Debian hay un parche desde ayer:
 
 https://www.debian.org/security/2014/dsa-3032

Para testing todavía no hay ¿no?

Ya he actualizado en el servidor que tenemos con stable.

 
 Saludos,
 



- -- 
Key fingerprint 01DC 0386 2B28 0A02 A270 E243 008B AABF 1822 9851
-BEGIN PGP SIGNATURE-
Version: GnuPG v2

iF4EAREIAAYFAlQkWG4ACgkQAIuqvxgimFEoRgD9G2rDuPieT5KMEwlj5b8KKOPe
pXaoLa92RaAju+OCQC4A/1jLxkPW8qBBmsZmDv4HGy9jpo2WHql4djRZB+l/LCZe
=d9Mo
-END PGP SIGNATURE-

-- 
Germán Avendaño Ramírez
Lic. Mat. U.D., M.Sc. U.N.
Delegado ADE
Delegado VI Congreso Nal. CUT
Enviado desde mi teléfono con K-9 Mail.

Re: Bash vulnerable

2014-09-25 Thread Eduardo Rios


El 25/09/14 a las 20:01, Angel Vicente escribió:


Para testing todavía no hay ¿no?


A mi por lo menos si me ha salido actualización, aunque eso si, sólo 
para el primer fallo. Queda pendiente para el segundo.


He pasado de bash 4.3-9 a 4.3-9.1


--
www.LinuxCounter.net

Registered user #558467
has 2 linux machines


--
To UNSUBSCRIBE, email to debian-user-spanish-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: https://lists.debian.org/m01ocb$do2$1...@ger.gmane.org

off topic calculadora de subredes

2014-09-25 Thread Ariel Alvarez

hola lista alguien sabe de algun sitio donde pueda descargar alguna 
utilidad para calcular subredes? se que existen muchos sitios donde 
aparece esta utilidad online pero me hace falta tener alguna utilidad 
para utilizarla en entornos donde no tenga conectividad.



gracias de antemano


--
To UNSUBSCRIBE, email to debian-user-spanish-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: https://lists.debian.org/542479e1.2020...@cncc.cult.cu

Re: off topic calculadora de subredes

2014-09-25 Thread Manolo Díaz

El jueves, 25 sep 2014 a las 22:24 horas (UTC+2),
Ariel Alvarez escribió:

hola lista alguien sabe de algun sitio donde pueda descargar alguna 
utilidad para calcular subredes? se que existen muchos sitios donde 
aparece esta utilidad online pero me hace falta tener alguna utilidad 
para utilizarla en entornos donde no tenga conectividad.


gracias de antemano



El repositorio de Debian:

apt search subnet calc

Saludos.
-- 
Manolo Díaz


--
To UNSUBSCRIBE, email to debian-user-spanish-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: https://lists.debian.org/20140925223009.14f83...@gmail.com

Re: off topic calculadora de subredes

2014-09-25 Thread Mario Tello


El 2014-09-25 15:24, Ariel Alvarez escribió:

hola lista alguien sabe de algun sitio donde pueda descargar alguna
utilidad para calcular subredes? se que existen muchos sitios donde
aparece esta utilidad online pero me hace falta tener alguna utilidad
para utilizarla en entornos donde no tenga conectividad.


gracias de antemano


Yo utilizo en mis dispositivos Android Subnet Calculator, una excelente 
opcion para tenerla en el bolsillo


https://play.google.com/store/apps/details?id=jm.network.subnetCalculatorhl=es

Saludos


--
To UNSUBSCRIBE, email to debian-user-spanish-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: 
https://lists.debian.org/06c4efc0180cec58f04f3960b44b4...@www.mariotello.mx

Re: Bash vulnerable

2014-09-25 Thread jors


On 25/09/14 20:54, Eduardo Rios wrote:

El 25/09/14 a las 20:01, Angel Vicente escribió:


Para testing todavía no hay ¿no?


A mi por lo menos si me ha salido actualización, aunque eso si, sólo
para el primer fallo. Queda pendiente para el segundo.

He pasado de bash 4.3-9 a 4.3-9.1


Idem. Es la versión que lo corrije (al menos el primer patch) de 
unstable a testing [0][1]:


Version: 4.3-9.1
Changes:
 bash (4.3-9.1) unstable; urgency=high
 .
   * Non-maintainer upload by the security team
   * Apply upstream patch bash43-025, fixing CVE-2014-6271.

[0] https://packages.qa.debian.org/b/bash/news/20140924T193346Z.html
[1] https://packages.qa.debian.org/b/bash/news/20140925T163916Z.html

Salut,
jors


--
To UNSUBSCRIBE, email to debian-user-spanish-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: https://lists.debian.org/5424803e.2050...@enchufado.com

Re: off topic calculadora de subredes

2014-09-25 Thread jors


On 25/09/14 22:24, Ariel Alvarez wrote:

hola lista alguien sabe de algun sitio donde pueda descargar alguna
utilidad para calcular subredes? se que existen muchos sitios donde
aparece esta utilidad online pero me hace falta tener alguna utilidad
para utilizarla en entornos donde no tenga conectividad.


gracias de antemano


ipcalc

Salut,
jors


--
To UNSUBSCRIBE, email to debian-user-spanish-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: https://lists.debian.org/54247c29.4000...@enchufado.com

Re: [Gutl-l] Ayuda urgente con iptables

2014-09-25 Thread Angel Claudio Alvarez

El Thu, 25 Sep 2014 01:46:34 -0400
William Romero wromer...@hotmail.com escribió:

 
 
  Mira Angel Claudio,
  Eres con diferencia de los demás en este lista el que mas falta el
  respeto, y escribes mas para criticar que para aportar soluciones.
  (Ya lo has hecho en mas de una ocasión)
  Y no, mi intención no es dar ordenes como dices, es simplemente
  pedir que se tenga respeto a los demás.
  Así que,no voy a ponerme a tu nivel faltándote el respeto como acabas de 
  hacer.
 
  Y ya que me insultas insúltame con insultos universales en CASTELLANO,
  no con ese vocabulario ridículo que tenéis los Argentinos.
 
 
  Otro más con complejo de superioridad.
 
  Angel Claudio.
 
 Es uno de los mas peleles que hay en esta lista solo busca ridicualizar a la 
 gente en cual se vanea de estar en lo permitido de decir lo que dice , es 
 posible que esta lista sea de EL.

si fuera mia no estarias, no acepto imbeciles en mi lista
 
 simple tonto y riculo payaso que seas de  Argentina y de mas pais son todos 
 hermanos y no por un mal elemento criticaremos su lexico poco fluido 
 carencinte de nivel , mmm digamos etico , porque es lo unico que aporta por 
 no decir nada.
 


 tenemos muchos problemas con la lista por diversos temas en realidad pero si 
 vamos a empezar por algo seria el respecto los unos a otros , me incluyo pues 
 este Sindrome Angel Claqueta, me saco de mis casillas.
 
 saludos a todos y un banhammer para AC.
 

otro pelotudo mas y van


 WRC 
 
 
 
 WRC 
 
 
 -- 
 To UNSUBSCRIBE, email to debian-user-spanish-requ...@lists.debian.org
 with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
 Archive: https://lists.debian.org/bay177-w5b5fb0049fcf97a2dcb02b6...@phx.gbl
 


-- 
Angel Claudio Alvarez an...@angel-alvarez.com.ar


--
To UNSUBSCRIBE, email to debian-user-spanish-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: 
https://lists.debian.org/20140925190716.fcaeca73985bbb145b35d...@angel-alvarez.com.ar

Re: Bash vulnerable

2014-09-25 Thread Angel Claudio Alvarez

El Thu, 25 Sep 2014 11:17:06 -0300
ciracusa cirac...@gmail.com escribió:

 Hola Lista,
 
 Alguien leyo algo de esta vulnerabilidad en BASH:
 
 env x='() { :;}; echo vulnerable' bash -c echo this is a test
 
 Muchas Gracias.

cambia a dash si no tenes scripts demasiado complejos en bash, funcionan
Hasta tanto arreglen el bug definitivamente (salio un parche pero no soluciona 
todo)
Si tens servidores con apache y cgi, cambia urgente el shell. Lo mismo si tenes 
algun lenguaje que llame a comandos de sistema mediante system(comando) o 
similar
 
 Salu2.
 
 
 
 
 
 -- 
 To UNSUBSCRIBE, email to debian-user-spanish-requ...@lists.debian.org
 with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
 Archive: https://lists.debian.org/542423e2.8020...@gmail.com
 


-- 
Angel Claudio Alvarez an...@angel-alvarez.com.ar


--
To UNSUBSCRIBE, email to debian-user-spanish-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: 
https://lists.debian.org/20140925191953.829aaf3e2f5c722e70a57...@angel-alvarez.com.ar

Re: Systemd

2014-09-25 Thread agronomo

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On 09/25/2014 01:54 AM, ZorroPlateado wrote:
 
 El 24/09/2014, a las 08:55, a...@consultores.ca escribió:
 
 On Wed, Sep 24, 2014 at 01:29:03AM -0500, Aradenatorix Veckhom
 Vacelaevus wrote:
 No sé si ya citaron antes esta liga, pero puede resultarles 
 interesante: http://boycottsystemd.org/
 
 Saludos
 
 
 . Me parecio interesante, gracias. Solo que me parece que no
 seria la mejor idea abandonar Debian, sin intentar recuperarlo!
 
 En este dicen haber creado algo interesante:
 
 http://uselessd.darknedgy.net/

 
 En la wiki.debian.org existe una pagina
 https://wiki.debian.org/Debate/initsystem/systemd donde están
 resumidas las razones por las que Debian debe usar systemd… lo que
 más me llama la atención es la cantidad de funciones que asumen y
 la no necesidad en ese momento de usar software tan básico como
 monit, rsyslog, etc….. es decir que systemd va a contener decenas
 de funciones que eran ejecutadas por diferentes piezas claramente
 diferenciadas…. y eso si que da cierto respeto ante un cambio
 radical en como vemos un sistema linux…….
 
.
Has leido la lista en Ingles?
Le hechan el muerto a los que tomaron la desicion; 5 creo y al Comite
Tecnico; dicen que estaba amanada; que la mayoria de DDs son empleados
de Red Hat y otras empresas (por supuesto, apoyan systemd); asi que
ahora estan, practicamente usuarios Debian + DDs que no quieren
systemd en contra de usuarios que si quieren systemd + DDs acusados de
vender Debian.

Yo no entiendo bien; por que quienes crearon Debian, no fueron los DDs
actuales (los empleados de empresas); fueron los que practicamente
iniciaron GNU; a la que tambien estan tratando de joder los de systemd
(Lennart y otro, segun dicen en esa lista).

Yo tengo 1 servidor y 2 Gnomes, con Squeeze y queria pasarlos a
Wheezy; pero mejor alli los dejo. No se en realidad cual es el riesgo
en seguridad, pero no quiero pasarlo a systemd. Me suena muy sucio,
todo lo que leo. Y segun se lee, no hay forma de cambiar la decision
sin una revolucion!

hasta luego.

-BEGIN PGP SIGNATURE-
Version: GnuPG v1

iQEcBAEBAgAGBQJUJJuLAAoJEKbsEnZGVkUMGzUH/jZDuccLJ5DkdHabwd65VZZC
m1hfW6h8+Rb84So2jVYpQ7NsKYpCZ1QNMMtQ2O3NM/cIsFi9N1v4D12DjOkWOUgh
lFJ1Fqxuxz6RgFbEen3rnphPRColXBosN6dGO8XoZ8ts9gxvmoBUEbt0grRqDBKM
g7Iz4M6A6GW8v3XJe/UFmHSsS+3dFH2aRmOT13yg7k/qlEmMQjWnU0iyiAmDMupn
CL4p/3eUdZhqxMRUleZsLcY577o+FmViE81icV2IRYWBaAkX82sOKdXJMT88U+5j
uAnFa9Osafgzsr4KaNZnWH0XayystSO0S1Jgx2h7QbB6PS6XlGQV82Z24O+mRrI=
=CmVj
-END PGP SIGNATURE-


-- 
To UNSUBSCRIBE, email to debian-user-spanish-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: https://lists.debian.org/54249b97.8020...@agronomos.ca

Re: Bash vulnerable

2014-09-25 Thread Carlos Carcamo

El día 25 de septiembre de 2014, 16:19, Angel Claudio Alvarez
an...@angel-alvarez.com.ar escribió:
 El Thu, 25 Sep 2014 11:17:06 -0300
 ciracusa cirac...@gmail.com escribió:

 Hola Lista,

 Alguien leyo algo de esta vulnerabilidad en BASH:

 env x='() { :;}; echo vulnerable' bash -c echo this is a test

 Muchas Gracias.

 cambia a dash si no tenes scripts demasiado complejos en bash, funcionan
 Hasta tanto arreglen el bug definitivamente (salio un parche pero no 
 soluciona todo)
 Si tens servidores con apache y cgi, cambia urgente el shell. Lo mismo si 
 tenes algun lenguaje que llame a comandos de sistema mediante system(comando) 
 o similar

 Salu2.





 --
 To UNSUBSCRIBE, email to debian-user-spanish-requ...@lists.debian.org
 with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
 Archive: https://lists.debian.org/542423e2.8020...@gmail.com



 --
 Angel Claudio Alvarez an...@angel-alvarez.com.ar


 --
 To UNSUBSCRIBE, email to debian-user-spanish-requ...@lists.debian.org
 with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
 Archive: 
 https://lists.debian.org/20140925191953.829aaf3e2f5c722e70a57...@angel-alvarez.com.ar


Recién ahora veo la noticia en internet, y que tan serio es el
problema? entiendo que se puede acceder remotamente, leo en internet
que es peor que HEARTBLEED, es esto cierto?


-- 
El desarrollo no es material es un estado de conciencia mental


--
To UNSUBSCRIBE, email to debian-user-spanish-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: 
https://lists.debian.org/CADpTsTbWrLxfh=u2t-t389cikizzktrjrete7dhdd2nxwun...@mail.gmail.com

Re: Comando wc -c cuenta mal los caracteres

2014-09-25 Thread Debia Linux

2014-09-24 22:48 GMT-05:00 Antonio Insuasti Recalde anto...@insuasti.ec:
 El día 24 de septiembre de 2014, 22:30, Debia Linux
 debianer...@gmail.com escribió:
 Sorry a todos ya LEI BIEN, me dice que con la siguiente orden.

 wc -L tirar

 Asunto resuelto

 Gracias

 2014-09-24 22:28 GMT-05:00 Debia Linux debianer...@gmail.com:
 Debianeros, debianitas o como sea:

 Trato de contar las letras de una palabra y ejecuto a la perfeccion el
 comando wc pero siempre cuenta un caracter de mas, ej.

 El archivo tirar.txt solo contiene la siguiente palabra.

 hola

 Por tanto ejecuto:

  wc -c tirar.txt

  5 tirar

 La palabra solo tiene 4 letras ¿Porque me dice que son 5?. Estoy casi
 seguro que esta contando un salto de linea (que no existe).

 Esto puedo resolverlo, si uso algun otro comando, pero entonces ¿Para
 que uso wc?

 Ya lei el manual

 man wc y me dice que asi se hace

   wc -5

 Alguien me puede decir que pasa?. ¿Como puedo resolver esto? ¿Algun
 comando que si cuente bien los caracteres?.

 Gracias


 --
 To UNSUBSCRIBE, email to debian-user-spanish-requ...@lists.debian.org
 with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
 Archive: 
 https://lists.debian.org/cam50unx51xuxpsnxf7rb_gk3l7rnk3zpc6zhcwh+c4jm+...@mail.gmail.com


 jajajja una vez en un curso con CentOs se me ocurrio usar el
 install.log para enseñar comandos relacionados con textos y edición de
 textos, resulta que con vim contaba mas lineas que con wc -l  en ese
 momento me toca explicar el porque, y fue que wc -l cuenta los EOL
 (end of line) y la ultima linea del install.log no tiene EOL

 ten encuenta eso si vas hacer un script que cuente lineas.

Muchas gracias por el consejo.




 --
 Antonio Insuasti R.

 IBM “Linux System Administrator” #ECUSFQ00228
 RHCE No: 130-065-634
 dCAP. #2071
 ECE. #200571804 – #200576560
 identi.ca/twiiter: @wolfantec
 Quito-Ecuador-


 --
 To UNSUBSCRIBE, email to debian-user-spanish-requ...@lists.debian.org
 with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
 Archive: 
 https://lists.debian.org/caae9-cyuyx+97zua-gtbktvted1+ayus-akqvlhqikzde16...@mail.gmail.com



--
To UNSUBSCRIBE, email to debian-user-spanish-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: 
https://lists.debian.org/CAM50uNxRX�_awcctfeukclxhrxrgcp5smhgkz+fsjyero...@mail.gmail.com

Re: Bash vulnerable

2014-09-25 Thread Fabián Bonetti

On Thu, 25 Sep 2014 18:44:30 -0600
Carlos Carcamo eazyd...@gmail.com wrote:


Para ponerte al corriente  
http://blog.mamalibre.com.ar/post/shellshock-es-un-bug-de-bash

Me dicen que apareció el segundo parche para debian.

Mas información  https://www.us-cert.gov/ncas/alerts/TA14-268A






Saludos











-- 
Servicios:. http://mamalibre.com.ar/plus
MamaLibre, Casa en Lincoln, Ituzaingo 1085 CP6070, Buenos Aires, Argentina


pgpbYQid71kaX.pgp
Description: PGP signature

Re: Comando wc -c cuenta mal los caracteres

2014-09-25 Thread Debia Linux

2014-09-25 4:32 GMT-05:00 fernando sainz fernandojose.sa...@gmail.com:
 El día 25 de septiembre de 2014, 5:30, Debia Linux
 debianer...@gmail.com escribió:
 Sorry a todos ya LEI BIEN, me dice que con la siguiente orden.

 wc -L tirar

 Asunto resuelto

 Gracias

 Eso no te funciona, eso solo vale si solo contiene una linea si tiene
 varias te da el tamaño de la mas larga.

 entiendo que wc usa los saltos de linea para contar las lineas de
 fichero y para hacerlo bien interpreta el fin de fichero como un salto
 de linea.

 Si lo que quieres es saber cuantos caracteres reales (ver man wc  -c
 y -m) tiene un fichero podrías hacer algo así.

 contar los caracteres totales y quitar los saltos de linea.

 $echo $(($(cat kk.txt | wc -c) - $(cat kk.txt |wc -l)))

 siendo kk.txt el fichero a contar los caracteres. Puedes mejorarlo
 haciendo un script que reciba el nombre de fichero como parámetro.


M e parece excelente opcion, la probare en otra ocasion, ya que en
este momento la necesidad es solo para una palabra y ya lo hace muy
bien (el comando como lo estoy usando). Sin embargo, esta informacion
me parece IMPORTANTISIMA que la tomare mucho en cuenta en un futuro no
tan lejano..

Gracias por tu tiempo Fernando.


 S2.




 2014-09-24 22:28 GMT-05:00 Debia Linux debianer...@gmail.com:
 Debianeros, debianitas o como sea:

 Trato de contar las letras de una palabra y ejecuto a la perfeccion el
 comando wc pero siempre cuenta un caracter de mas, ej.

 El archivo tirar.txt solo contiene la siguiente palabra.

 hola

 Por tanto ejecuto:

  wc -c tirar.txt

  5 tirar

 La palabra solo tiene 4 letras ¿Porque me dice que son 5?. Estoy casi
 seguro que esta contando un salto de linea (que no existe).

 Esto puedo resolverlo, si uso algun otro comando, pero entonces ¿Para
 que uso wc?

 Ya lei el manual

 man wc y me dice que asi se hace

   wc -5

 Alguien me puede decir que pasa?. ¿Como puedo resolver esto? ¿Algun
 comando que si cuente bien los caracteres?.

 Gracias


 --
 To UNSUBSCRIBE, email to debian-user-spanish-requ...@lists.debian.org
 with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
 Archive: 
 https://lists.debian.org/cam50unx51xuxpsnxf7rb_gk3l7rnk3zpc6zhcwh+c4jm+...@mail.gmail.com



 --
 To UNSUBSCRIBE, email to debian-user-spanish-requ...@lists.debian.org
 with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
 Archive: 
 https://lists.debian.org/cagwrhgkfg0qokdhqr89sn6fy60jxrgdfv83ayjpxgr0...@mail.gmail.com



--
To UNSUBSCRIBE, email to debian-user-spanish-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: 
https://lists.debian.org/cam50unyiv5j+-mhbxtmx64z__fgog66+mwvcqek0mosq9m9...@mail.gmail.com

Re: Imagen personalizada con live-build

2014-09-25 Thread Francisco Del Roio

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

Hola,

El 24/09/2014 a las 11:27 a.m., Camaleón escribió:
 El Tue, 23 Sep 2014 22:22:47 -0300, Francisco Del Roio escribió: 
 (...)
 
 No tengo mucha experiencia con la generación de estos sistemas pero
 lo primero que comprobaría es si esos paquetes que quieres instalar
 están accesibles para el generador de la imagen, es decir, si se
 trata de paquetes ubicados en los repos de Debian cuyo recurso has
 configurado previamente para que puedan ser localizados en los
 mirrors online o si se trata de paquetes de terceros de los que
 tienes que decirle al , configurador dónde obtenerlos y dónde
 instalarlos en el sistema.
 
 Saludos,
 

ya le voy pillando el truco mas o menos, aunque no funciona como yo
pensaba.
Es una herramienta un tanto engorrosa y tiene unos fallos jodidos de
sortear, como por ejemplo lo de mirar en
/debian/dists/$DIST$/Contents-$ARCH$.gz en lugar de adentrarse en las
áreas... en fin...

Ya le pillaré el truco y os informo xD pero es todo un reto.

P.D: No quiero una herramienta al estilo de remastersys porque
prefiero elegir unas determinadas herramientas que no requieren de
toda la carga de un escritorio gnome.

La razón es que, en un principio, la idea es poder utilizar
clonezilla, pero, tras montar el sistema de archivos squashfs que
viene en la iso y explorarlo, descubrí que no incluye ningún screenreader.

Asi que nada, tengo que sudar un poco. :D

Saludos,
- -- 
Cuando Tus fuerzas terminan, las de Dios comienzan.
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.9 (MingW32)

iQEcBAEBAgAGBQJUJLulAAoJELcQqmDiUAB0j+EIAO/KUnjxYOYhZzom39JByXxX
0HDKig9WQHFlqbyFzsV6KbaD4g0f93RIpk4EGn/fo5yCHX4wP4ySyAq9LMQFcagh
sktDhKL/cooIhugOPxSmVqNoiy7zmNUFbXdctYECnSBWzAa9sXL3ukJvn1TGG3PM
sRuAV6iXw7VRaPpmlq7Ppx8a/YJSTOF9MDr5wFiWTI5zRgfiKRQPcAmoczCDJMzT
z4aRkegnZKvI2V9wvrpFdUEmZ62ugfHCeOJ2lXzWOyLoTytQiITcZSOANZXHeeuQ
px6kcNB4aKdT2WUrtOt1AZlqrSyhjeuMUNYWfTNz6E2QCG/jyGvD/y+2LrgzP00=
=Yuwz
-END PGP SIGNATURE-


--
To UNSUBSCRIBE, email to debian-user-spanish-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: https://lists.debian.org/5424bba6.7060...@openmailbox.org

Re: Bash vulnerable

2014-09-25 Thread Fabián Bonetti

On Thu, 25 Sep 2014 21:55:30 -0300
Fabián Bonetti mama21m...@riseup.net wrote:




El segundo  http://pegartexto.ml/view/c4298397




















-- 
Servicios:. http://mamalibre.com.ar/plus
MamaLibre, Casa en Lincoln, Ituzaingo 1085 CP6070, Buenos Aires, Argentina


pgpqI5LpmuABA.pgp
Description: PGP signature

RE: [Gutl-l] Ayuda urgente con iptables

2014-09-25 Thread William Romero


 El Thu, 25 Sep 2014 01:46:34 -0400
 William Romero wromer...@hotmail.com escribió:



 Mira Angel Claudio,
 Eres con diferencia de los demás en este lista el que mas falta el
 respeto, y escribes mas para criticar que para aportar soluciones.
 (Ya lo has hecho en mas de una ocasión)
 Y no, mi intención no es dar ordenes como dices, es simplemente
 pedir que se tenga respeto a los demás.
 Así que,no voy a ponerme a tu nivel faltándote el respeto como acabas de 
 hacer.

 Y ya que me insultas insúltame con insultos universales en CASTELLANO,
 no con ese vocabulario ridículo que tenéis los Argentinos.


 Otro más con complejo de superioridad.

 Angel Claudio.

 Es uno de los mas peleles que hay en esta lista solo busca ridicualizar a la 
 gente en cual se vanea de estar en lo permitido de decir lo que dice , es 
 posible que esta lista sea de EL.

 si fuera mia no estarias, no acepto imbeciles en mi lista

 simple tonto y riculo payaso que seas de  Argentina y de mas pais son todos 
 hermanos y no por un mal elemento criticaremos su lexico poco fluido 
 carencinte de nivel , mmm digamos etico , porque es lo unico que aporta por 
 no decir nada.



 tenemos muchos problemas con la lista por diversos temas en realidad pero si 
 vamos a empezar por algo seria el respecto los unos a otros , me incluyo 
 pues este Sindrome Angel Claqueta, me saco de mis casillas.

 saludos a todos y un banhammer para AC.


 otro pelotudo mas y van


 WRC

Pelotudo mmm , no no , mas bien angel porque no me rascas las pelotas , el 
unico pelotudo sonso eres tu.

AC (rasca pelotas)




  

--
To UNSUBSCRIBE, email to debian-user-spanish-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: https://lists.debian.org/bay177-w876dcb5972e48b535e4e6b6...@phx.gbl

RE: off topic calculadora de subredes

2014-09-25 Thread William Romero


 On 25/09/14 22:24, Ariel Alvarez wrote:
 hola lista alguien sabe de algun sitio donde pueda descargar alguna
 utilidad para calcular subredes? se que existen muchos sitios donde
 aparece esta utilidad online pero me hace falta tener alguna utilidad
 para utilizarla en entornos donde no tenga conectividad.


 gracias de antemano

 ipcalc

 Salut,
 jors

Puedes descargarlo desde aqui.

http://jodies.de/ipcalc-archive/

saludos 

WRC 
  

--
To UNSUBSCRIBE, email to debian-user-spanish-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: https://lists.debian.org/bay177-w13e9da64db4ad3e867cf1cb6...@phx.gbl

Re: off topic calculadora de subredes

2014-09-25 Thread Pablo Jiménez

On Thu, Sep 25, 2014 at 11:07:29PM -0400, William Romero wrote:
 
  On 25/09/14 22:24, Ariel Alvarez wrote:
  hola lista alguien sabe de algun sitio donde pueda descargar alguna
  utilidad para calcular subredes? se que existen muchos sitios donde
  aparece esta utilidad online pero me hace falta tener alguna utilidad
  para utilizarla en entornos donde no tenga conectividad.
 
 
  gracias de antemano
 
  ipcalc
 
  Salut,
  jors
 
 Puedes descargarlo desde aqui.
 
 http://jodies.de/ipcalc-archive/

¿Para qué descargarlo desde ese sitio?

# aptitude install ipcalc

Saludos.

-- 
Pablo Jiménez


-- 
To UNSUBSCRIBE, email to debian-user-spanish-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: https://lists.debian.org/20140926031420.ga4...@emblema.fh.vtr.net

Re: Systemd

2014-09-25 Thread agronomo




En la wiki.debian.org existe una pagina
https://wiki.debian.org/Debate/initsystem/systemd donde están
resumidas las razones por las que Debian debe usar systemd… lo que
más me llama la atención es la cantidad de funciones que asumen y
la no necesidad en ese momento de usar software tan básico como
monit, rsyslog, etc….. es decir que systemd va a contener decenas
de funciones que eran ejecutadas por diferentes piezas claramente
diferenciadas…. y eso si que da cierto respeto ante un cambio
radical en como vemos un sistema linux…….


.
Has leido la lista en Ingles?
Le hechan el muerto a los que tomaron la desicion; 5 creo y al Comite
Tecnico; dicen que estaba amanada; que la mayoria de DDs son empleados
de Red Hat y otras empresas (por supuesto, apoyan systemd); asi que
ahora estan, practicamente usuarios Debian + DDs que no quieren
systemd en contra de usuarios que si quieren systemd + DDs acusados de
vender Debian.

Yo no entiendo bien; por que quienes crearon Debian, no fueron los DDs
actuales (los empleados de empresas); fueron los que practicamente
iniciaron GNU; a la que tambien estan tratando de joder los de systemd
(Lennart y otro, segun dicen en esa lista).

Yo tengo 1 servidor y 2 Gnomes, con Squeeze y queria pasarlos a
Wheezy; pero mejor alli los dejo. No se en realidad cual es el riesgo
en seguridad, pero no quiero pasarlo a systemd. Me suena muy sucio,
todo lo que leo. Y segun se lee, no hay forma de cambiar la decision
sin una revolucion!

hasta luego.



.
Aqui, esta una conversacion interesante; yo uso google para traducir:

https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=727708

Cada vez, veo mas claro 1 grupo que quiere imponer systemd, quien sabe 
las razones, pero casi se ve que hay mano peluda. Y 1 grupo que propone 
la escogitancia. Yo prefiero elegir y que no me digan que debo tener en 
mis computadores. Y menos si viene de quien quiere dominar el mundo.




--
To UNSUBSCRIBE, email to debian-user-spanish-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: https://lists.debian.org/5424df22.9070...@agronomos.ca

Re: Comunidad Debia.

2014-09-25 Thread agronomo


El 23/09/14 06:45, a...@consultores.ca escribió:
 Usuarios de Lista Debian en Castellano.

 Dado que Debian como proyecto Comunitario, muestra la necesidad de
 algunos ajustes. Les invito a que compartamos nuestros puntos de vista
 sin agredirnos unos a los otros.

 Primero quiero recordar la cita:
 Si le das a alguien un pescado, le estas dando alimento para una
 comida; pero si le ensenas a pescar, le daras alimento para toda su
 vida, no es copia literal; espero que se entienda.

 En las listas Debian, desde hace varios anos, se ha cambiado la forma de
 transmitir conocimientos; actualmente, damos pescados; cuando deberiamos
 ensenar a pescar. Esta es la Comunidad Debian!

 Este cambio, mas la llegada de nuevos usuarios; ha provocado que la
 mayoria no conozcamos la forma apropiada de administrar nuestros equipos
 Debian, ya sean Escritorios o Servidores; en las listas, leemos
 cualquier cosa, y muy poco la forma correcta al estilo Debian. Esto,
 tambien provoca, que cuando se agregan nuevos paquetes, la lista ni se
 da por aludida; Ademas, leemos muchas solicitudes y respuestas; que
 buscan cosas que los usuarios han utilizado en Windows. Lo divertido, es
 que tambien se dan respuestas.

 Por otro lado, hemos creado, con el comportamiento, antes mencionado;
 que los usuarios estemos mas interesados en lo visual, que en la
 seguridad y funcionamiento de nuestro SO. Ya no digamos la pureza del
 software.

 En esta lista, hay usuarios con verdaderos conocimientos y
 verdadera trascendencia en la Comunidad Debian; pero ni se asoman,
 por que NO les permitimos participar! Nos enfocamos en nimiedades!

 La idea que posiblemente se haga general, es de volver a los viejos
 tiempos; cuando se transmitian conocimientos verdaderos de como
 administrar Debian. Y limpiar la distribucion de paquetes indeseables.

 La Comunidad necesita rejuvenecer, si es que queremos que Debian cumpla
 con los objetivos planteados; y unir esfuerzos para que tengamos un SO
 mas seguro y funcional.

 Este escrito es personal y la invitacion es para todos.
 En caso de que esta iniciativa fracase, ya sabra cada quien lo que haga.

 Gracias.



Te apoyo en todo lo anterior  ;-)


Parece que hay peticiones de cambios (1), y la votacion de Systemd (2):

(1) https://lists.debian.org/debian-ctte/2014/02/msg00374.html
(2) https://lists.debian.org/debian-ctte/2014/02/msg00281.html


--
To UNSUBSCRIBE, email to debian-user-spanish-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: https://lists.debian.org/5424e9d2.30...@agronomos.ca

Can't We Have Another Vote for Systemd

2014-09-25 Thread Hörmetjan Yiltiz

I hope you all can realize how much I do NOT want to open yet again another
issue on #NotSystemd topic.

Seeing that the issue is still going on and on for almost from the moment
Debian decided to use systemd, and also considering the fact that the vote
was actually a tie, and it was decided by the ballot of the ruler.

Debian wiki says this:

Fedora, OpenSuSE, Arch and Mageia have already made the choice to use
systemd, and it is getting excellent upstream support for a growing number
of packages.
Yet it is very clear to all Debian users that Debian is unique, unlike any
of those above, especially when it comes to Debian Policy and its goal. And
Debian did not have to make any decision based on other distro's decision.
Debian rules! Furthermore, `excellent upstream support' is highly unlikely
or at least pretty controversial among Debian users and devs, unless
`support' is defined as compelling freedom by a few propagandists.

https://wiki.debian.org/Debate/initsystem/systemd#Why_Debian_should_default_to_systemd


Please let there be another vote!

Best
，

He who is worthy to receive his days and nights is worthy to receive* all
else* from you (and me).
 The Prophet, Gibran Kahlil

Re: Bash Code Injection Vulnerability via Specially Crafted Environment Variables (CVE-2014-6271)

2014-09-25 Thread Håkon Alstadheim

According to 
https://secure.dshield.org/forums/diary/Attention+NIX+admins+time+to+patch/18703:
Red Hat has become aware that the patch for CVE-2014-6271 is incomplete. 
An attacker can provide specially-crafted environment variables 
containing arbitrary commands that will be executed on vulnerable 
systems under certain conditions. The new issue has been assigned 
CVE-2014-7169.

https://access.redhat.com/articles/1200223

According to the article at redhat, only bash is vulnerable, so (if you 
do not have homegrown bashisms in shells with #!/bin/sh as first line) 
you should check that ls -l /bin/sh gives /bin/sh - dash, and do 
dpkg-reconfigure dash if it does not.



--
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org 
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org

Archive: https://lists.debian.org/5423c1c4.1090...@alstadheim.priv.no

Re: Bash Code Injection Vulnerability via Specially Crafted Environment Variables (CVE-2014-6271

2014-09-25 Thread Jonathan Dowland

On Wed, Sep 24, 2014 at 04:25:58PM -0500, John Hasler wrote:
 Mailing list: debian-security-annou...@lists.debian.org
 
 You should be subscribed.

I'd just like to re-iterate this. *EVERY* debian user should subscribe to that
list.


-- 
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org 
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: https://lists.debian.org/20140925091029.GA19619@debian

Re: Effectively criticizing decisions you disagree with in Debian

2014-09-25 Thread Jonathan Dowland

On Tue, Sep 23, 2014 at 08:22:05AM +0900, Joel Rees wrote:
 On Mon, Sep 22, 2014 at 11:46 AM, Reco recovery...@gmail.com wrote:
  You're wrong here. Cgroups are just glorified Linux-specific shell
  limits. There's nothing in them that requires usage of s*stemd or dbus.
 
 I think you are saying that there is an implementation of cgroups
 independent of systemd?

There's (at least) cgmanager, which is used in conjunction with LXC tools I
believe (at least when systemd isn't installed) such as libvirt's lxc://
container driver.


-- 
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org 
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: https://lists.debian.org/20140925091449.GB19619@debian

Re: Can't We Have Another Vote for Systemd

2014-09-25 Thread Andrei POPESCU

On Jo, 25 sep 14, 14:28:19, Hörmetjan Yiltiz wrote:
 I hope you all can realize how much I do NOT want to open yet again another
 issue on #NotSystemd topic.

No.
 
 Seeing that the issue is still going on and on for almost from the moment
 Debian decided to use systemd, and also considering the fact that the vote
 was actually a tie, and it was decided by the ballot of the ruler.
 
 Debian wiki says this:
 
 Fedora, OpenSuSE, Arch and Mageia have already made the choice to use
 systemd, and it is getting excellent upstream support for a growing number
 of packages.

I'm assuming there should have been some space here or something to make 
it clear that what follows is *not* from the wiki.

 Yet it is very clear to all Debian users that Debian is unique, unlike 
 any of those above, especially when it comes to Debian Policy and its 
 goal. And Debian did not have to make any decision based on other 
 distro's decision. Debian rules! Furthermore, `excellent upstream 
 support' is highly unlikely or at least pretty controversial among 
 Debian users and devs, unless `support' is defined as compelling 
 freedom by a few propagandists.
 
 https://wiki.debian.org/Debate/initsystem/systemd#Why_Debian_should_default_to_systemd
 
 Please let there be another vote!

If you mean by users it would be meaningless and repeating the TC vote 
would make Debian's constitution a farce. A General Resolution has been 
proposed and didn't even gather enough sponsors (5 required out of about 
1000 Debian Members).

This isn't doing any good to anyone.

Kind regards,
Andrei
-- 
http://wiki.debian.org/FAQsFromDebianUser
Offtopic discussions among Debian users and developers:
http://lists.alioth.debian.org/mailman/listinfo/d-community-offtopic
http://nuvreauspam.ro/gpg-transition.txt


signature.asc
Description: Digital signature

Allow user to execute repquota -g /

2014-09-25 Thread Luigi Cirillo

Hello, I need to allow an user to execute repquota -g / from a
script without superuser permissions on debian Wheezy. The user cannot
access to the file //aquota.group so I tried to create a group
quotarep but the root cannot chown the file:
##
chown root:quotarep //aquota.group
chown: changing ownership of `//aquota.group': Operation not permitted
###

I thinking to deploy a cron job to export the result of repquota -g
/ on a file but I don't think it is a good way.
Do you know how I can solve this?
Thank you


-- 
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org 
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: 
https://lists.debian.org/CAG0Ki36EKzGgHkaRMJkrU7z4mX-ReOEb7=zzmfwt5mgsutt...@mail.gmail.com

Has the Bash vulnerability been fixed on Jessie yet?

2014-09-25 Thread Paul Anzel

Hello everyone,

I see that the Shellshock exploit has been fixed on Wheezy, but I've
tried running apt-get update/upgrade on my Jessie system and the
vulnerability still appears to be there. Has it been fixed or am I doing
something wrong?

My sources.list file has
deb http://security.debian.org/ jessie/updates main contrib non-free
deb-src http://security.debian.org/ jessie/updates main contrib non-free

among the repositories.

Thank you,
Paul


-- 
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org 
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: https://lists.debian.org/5423e4ec.2070...@caltech.edu

Re: Allow user to execute repquota -g /

2014-09-25 Thread Ondrej Flidr

You can use sudo, just set /etc/sudoers (editable by command visudo) to 
allow that user(s) run this command as root.


Ondřej Flídr
Server Ninja
BrandEmbassy Ltd.
www.brandembassy.com

On 25.9.2014 12:03, Luigi Cirillo wrote:

Hello, I need to allow an user to execute repquota -g / from a
script without superuser permissions on debian Wheezy. The user cannot
access to the file //aquota.group so I tried to create a group
quotarep but the root cannot chown the file:
##
chown root:quotarep //aquota.group
chown: changing ownership of `//aquota.group': Operation not permitted
###

I thinking to deploy a cron job to export the result of repquota -g
/ on a file but I don't think it is a good way.
Do you know how I can solve this?
Thank you





--
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org 
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org

Archive: https://lists.debian.org/5423e942.7060...@brandembassy.com

Re: Challenge to you: Voice your concerns regarding systemd upstream

2014-09-25 Thread martin f krafft

also sprach lee l...@yun.yagibdah.de [2014-09-25 01:45 +0200]:
 Just one day they might wake up and find out that it was a very
 bad idea to depend on systemd, and then it'll be difficult to do
 without.

That day was yesterday. I'll let Paul Venezia echo almost all of my
thoughts verbatim:

  
http://www.infoworld.com/article/2608864/data-center/choose-your-side-on-the-linux-divide.html

But dependency creep is unfortunately nothing new ever since we
declared next year the Year of Linux of the Desktop and forgot that
the Universal Operating System should also cater to non-desktops.

-- 
 .''`.   martin f. krafft madduck@d.o @martinkrafft
: :'  :  proud Debian developer
`. `'`   http://people.debian.org/~madduck
  `-  Debian - when you have better things to do than fixing systems
 
aus der kriegsschule des lebens -
 was mich nicht umbringt, macht mich härter.
 - friedrich nietzsche


digital_signature_gpg.asc
Description: Digital signature (see http://martin-krafft.net/gpg/sig-policy/999bbcc4/current)

Re: Has the Bash vulnerability been fixed on Jessie yet?

2014-09-25 Thread Brian

On Thu 25 Sep 2014 at 11:48:28 +0200, Paul Anzel wrote:

 I see that the Shellshock exploit has been fixed on Wheezy, but I've
 tried running apt-get update/upgrade on my Jessie system and the
 vulnerability still appears to be there. Has it been fixed or am I doing
 something wrong?

https://lists.debian.org/20140918191605.gl8...@teltox.donarmstrong.com


-- 
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org 
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: 
https://lists.debian.org/25092014113205.a845c5bee...@desktop.copernicus.demon.co.uk

Re: Has the Bash vulnerability been fixed on Jessie yet?

2014-09-25 Thread Brad Rogers

On Thu, 25 Sep 2014 11:48:28 +0200
Paul Anzel pan...@caltech.edu wrote:

Hello Paul,

vulnerability still appears to be there. Has it been fixed or am I doing
something wrong?

AIUI, testing doesn't get security updates.  Things migrate from
unstable after a few days.  With security issues it can be as little as
(IIRC) two days.

-- 
 Regards  _
 / )   The blindingly obvious is
/ _)radnever immediately apparent
You destroyed my confidence, you broke my nerve
Nervous Wreck - Radio Stars


pgpwOLmxQxxEv.pgp
Description: OpenPGP digital signature

Messages from starting services while booting

Hello,

I am using Wheezy, and on some machines I see messages from starting
services while booting, and on some machines I don't see them.

Can somebody explain me how this works? I have the idea that I don't see
messages on fast machines.

And can I control this?  On some servers I like to see the messages from
the services when the machine boots.

With regards,
Paul van der Vlis.



-- 
Paul van der Vlis Linux systeembeheer, Groningen
http://www.vandervlis.nl


-- 
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org 
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: https://lists.debian.org/5423f6db.9000...@vandervlis.nl

Re: Effectively criticizing decisions you disagree with in Debian

2014-09-25 Thread Joel Rees

2014/09/25 9:15 lee l...@yun.yagibdah.de:

 Joel Rees joel.r...@gmail.com writes:

  On Tue, Sep 23, 2014 at 7:16 AM, lee l...@yun.yagibdah.de wrote:
 
  I could guess that implicit linkage might refer to side effects of
  intentional entanglement which may be undesirable or may occur without
  being noticed (until a problem shows up which then might be hard to
  track down and to fix because there are unknown side effects due to
  implicit linkage caused by broken design).  Or does it refer to
  unintentional entanglement (and its side effects)?  Or what is it?
 
  As an example.
 
  If you call a read() function in a C program, there are a bunch of
  global variables and constants and types, etc., that you do not
  explicitly reference in your call -- buffer size and count, the
  location of the buffers, etc. Yes, most of them are explicitly
  declared somewhere, or explicitly allocated at run-time, but you don't
  see them in the call itself. This is one kind of implicit linkage.
 
  I once considered a language where every such call would have to
  explicitly declare all globals and side-effects, etc. It's not
  possible. Still, reducing the number of globals is a good thing.
 
  Another kind of implicit linkage is undeclared magic constants. For
  instance, during the early days of PC-DOS, the buffers in the I/O
  system were assumed to be either 128 bytes or 256, and everyone who
  worked with the code knew that, so no one bothered to actually declare
  it as a named constant. You just knew that, if you saw that number, it
  was probably the buffer size. We don't see many of those any more.
 
  In fact, we go a little overboard, defining named constants that never
  get used, and the namespace clutter becomes another problem, and can
  induce subtle bugs of its own, which is part of the reason for wanting
  to be sure that everything you use is declared where you think it is.
 
  Protocols are another. In early computer systems, there was often an
  expected order of procedure:
 
  When reading, allocate and clear the buffer first,
  then check that the DMA controller is not being used and wait if necessary.
  The DMA controller has it's own set of rules: maybe you have to set
  the address before the count, or maybe you have to set the count first
  and the buffer after, etc.. The order of these things should be
  encompassed in subroutines, but sometimes there are optional steps,
  and until callback routines became more common, you generally
  (manually) copied template code to be sure you followed the protocol.
  Even now, you may have a call-back routine to pass, and no clues as to
  what that callback is supposed to do.
 
  There are other kinds of implicit linkages, basically it's all the
  stuff that you're expected to know when reading, modifying, or using
  the code, but isn't written down in front of you anywhere, or is so
  hard to find that looking it up is going to cause schedule slip.

 Hmm.  So linkage is a result of complexity,

What is complexity?

Complexity is not a simple topic. :-\

 and implicity is a result of
 undeclaredness (or unawareness of declaredness).

Sort of, but not quite.

I would rather say,

Implicitness is the lack of explicit declaration at the point
where the linkage is expressed (or occurs).

but I'm not sure that would be universally well understood, either.

 That means by trying to combine (existing) stuff with other stuff to
 make things easier than (re-)inventing the wheel, you actually make
 things more difficult because they are becoming more complex.

Refactoring, when poorly done, can produce even greater entanglement
and implicit linkage. Of course. People do make mistakes.

 If you
 were to (re-)invent the wheel in order to /not/ make things more
 difficult, you could still make them so complex that you could as well
 use (existing) stuff because it makes things easier for you and no
 significant difference in complexity.

There is always that possibility. It's one of the reasons for the old
adage, If it ain't broke, don't fix it.

 In any case, you must reduce complexity in order to avoid implicit
 linkage, because even declaredness in itself (or the problem of being
 aware of the declarations) can become so complex (or difficult) that it
 can make things difficult.

Generally, reducing complexity and reducing linkage are related, but
not necessarily. The degree to which linkage is implicit, or to which
entanglement is hidden, is not necessarily dependent on the degree of
either complexity or linkage. These can be independent variables,
depending on the case in question. In some cases, you can even make
them indpendent variables, when they didn't start out that way in your
analysis.

 Since you cannot make things less complex,

I'm not sure what you're trying to say.

If you know you can make things more complex, you know that there must
be things that can be made less complex.

Some engineers subscribe to the theory that you don't actually

Re: Bash Code Injection Vulnerability via Specially Crafted Environment Variables (CVE-2014-6271)

2014-09-25 Thread Gokan Atmaca

Hello

This weakness than is sufficient to protect them do as follows.

apt-get update and apt-get install --only-package bash

On Thu, Sep 25, 2014 at 10:18 AM, Håkon Alstadheim
ha...@alstadheim.priv.no wrote:
 According to
 https://secure.dshield.org/forums/diary/Attention+NIX+admins+time+to+patch/18703:
 Red Hat has become aware that the patch for CVE-2014-6271 is incomplete. An
 attacker can provide specially-crafted environment variables containing
 arbitrary commands that will be executed on vulnerable systems under certain
 conditions. The new issue has been assigned CVE-2014-7169.
 https://access.redhat.com/articles/1200223

 According to the article at redhat, only bash is vulnerable, so (if you do
 not have homegrown bashisms in shells with #!/bin/sh as first line) you
 should check that ls -l /bin/sh gives /bin/sh - dash, and do
 dpkg-reconfigure dash if it does not.


 --
 To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject
 of unsubscribe. Trouble? Contact listmas...@lists.debian.org
 Archive: https://lists.debian.org/5423c1c4.1090...@alstadheim.priv.no



--
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: 
https://lists.debian.org/cahg8tecx7n-f5n8gznsd6b7rprbbkvxwzpjjukshbmqo3pc...@mail.gmail.com

Re: Messages from starting services while booting

2014-09-25 Thread Cindy-Sue Causey

On 9/25/14, Paul van der Vlis p...@vandervlis.nl wrote:
Hello,

I am using Wheezy, and on some machines I see messages from starting
services while booting, and on some machines I don't see them.

Can somebody explain me how this works? I have the idea that I don't see
messages on fast machines.

And can I control this? On some servers I like to see the messages from
the services when the machine boots.

Can't explain the how's and why's but an Internet search just found
this at Debian Wiki:

https://wiki.debian.org/bootlogd

Mine at /etc/default/bootlogd only has two lines (just changed mine to yes):

# Run bootlogd at startup ?
BOOTLOGD_ENABLE=no

If bootlogd's not installed, it's installable for *some* distros, if
not all. A dry run at upgrading here shows it would be 4MB involving
~17 packages** BUT am seeing reference to sysvinit-utils. Later
distros will surely reflect something else in place of that one *if*
this package even exists at that point.

As an aside, I'd be curious to hear if it's more or less files
involved in install/upgrade if anyone happens to poke around in the
same (again, *if* it even exists in later distros)

Reading this search result page:

http://forums.debian.net/viewtopic.php?f=30t=84590

It looks like that MIGHT have shared what you're directly seeking:

Open /etc/default/rcS as root and you *should* find two lines similar to:

# be more verbose during the boot process
VERBOSE=no

If yours says no, try changing it to yes and see what happens.
or just try the log file first. That's my option as you can study at
your leisure.

Hope that helps.. :)

Cindy

** On the chance knowing them might help your search for how and why,
the ~17 packages affected during bootlogd install on *my* setup:
bootlogd console-setup-linux console-setup ifupdown initramfs-tools
initscripts keyboard-configuration klibc-utils libjson0 libklibc
libudev0 lsb-base netbase sysvinit-utils udev upstart util-linux

PS Searches to successfully land this kind of answer get tricky
sometimes. These came up first 2 results on the first shot with a
weirder than normal array of keywords:

debian how do i want to see messages at boot

--
Cindy-Sue Causey
Talking Rock, Pickens County, Georgia, USA

* I comment, therefore I am (procrastinating going out in the cold) *

--
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive:
https://lists.debian.org/cao1p-kcbpnixuvadvtfk2waxb+w6pqf6pavkz_jon8ymdte...@mail.gmail.com

Re: Messages from starting services while booting

Hello Cindy-Sue,

op 25-09-14 15:08, Cindy-Sue Causey schreef:
 On 9/25/14, Paul van der Vlis p...@vandervlis.nl wrote:
 Hello,

 I am using Wheezy, and on some machines I see messages from starting
 services while booting, and on some machines I don't see them.

 Can somebody explain me how this works? I have the idea that I don't see
 messages on fast machines.

 And can I control this?  On some servers I like to see the messages from
 the services when the machine boots.
 
 
 Can't explain the how's and why's but an Internet search just found
 this at Debian Wiki:
 
 https://wiki.debian.org/bootlogd

Bootlogd is about logging those messages in a logfile.

I am talking about showing the messages on the screen while booting.

 If bootlogd's not installed, it's installable for *some* distros, if
 not all. 

Maybe bootlogd does not work with systemd, what's the default in newer
Debian versions. I am talking about Wheezy.

 Open /etc/default/rcS as root and you *should* find two lines similar to:
 
 # be more verbose during the boot process
 VERBOSE=no

I've checked the settings of this file, but it is on all machines the
default, a disabled line. So this cannot be the point.

With regards,
Paul van der Vlis.




-- 
Paul van der Vlis Linux systeembeheer, Groningen
http://www.vandervlis.nl


-- 
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org 
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: https://lists.debian.org/54241ffb.5080...@vandervlis.nl

Re: Challenge to you: Voice your concerns regarding systemd upstream

2014-09-25 Thread Martin Steigerwald

Am Donnerstag, 25. September 2014, 01:45:50 schrieb lee:
 Martin Steigerwald mar...@lichtvoll.de writes:
  Am Montag, 22. September 2014, 23:50:46 schrieb lee:
  Martin Steigerwald mar...@lichtvoll.de writes:
  
  Do you really think they will be able to prevent all the other
  software from depending on a particular init system or parts of it?
  
  Well… thats to be taken upstream, isn´t it?
 
 Then why don't the developers or the distributions do just that?  Nobody
 cares when one user or another questions whether it's a good idea to
 depend on systemd, and it might be much different if a lot of developers
 and/or whole distributions would, in the interest of their users,
 question this dependency and refuse their support eventually until the
 issues systemd and software depending on it brings about.

[…]
 Fedora does already depend on systemd --- and I would say completely.
 Or do you see a choice here?

And exactly *how* is this relevant to Debian?


  And still I think its important to take this upstream.
 
 Upstream, from the users point of view, are the makers of the
 distribution in the first place.  I can't very well make a bug report
 against systemd directly because Debian has decided to support it, can
 I.  That's not a problem of systemd.
 
 To get involved with everything seems to have been a design decision of
 systemd.  What do you expect will happen when I make a bug report
 directly against systemd, explaining them that it's broken by design?
 
 Or should I make a bug report against the X server because it depends on
 systemd?  Or the other way round?  Or perhaps against cups instead?
 
  Or to *help*. Make a logind that does not depend on systemd. Offer it to
  the upstreams that need it.
 
 I'm sure it would be ignored or rejected --- even if I had the knowledge
 to make anything like that and was able to keep up with what other ppl
 are doing.

I do think that you don´t want change.

You expect distro developers to fix it for you. You are not willing to take 
things upstream.

That doesn´t create change.

I omit the rest.

Cause I do think that it is a *waste* of *my* energy to continue this.

I offered ways to act towards *change*.

You rejected *all* of them.

Nothing I have to offer to you anymore.

If you want to put your energy into writing lengthy posts here on this mailing 
list lamenting of oh how bad it all is, instead of *acting* towards change… or 
at least give it a try to bring things to were decisions are made or help to 
facilite change, that is completely and entirely your choice.

It is not mine, however.

So I think we make different choices here. I am willing to give systemd a fair 
change, willing to report bugs and I am also willing to take concerns 
upstream. Thats my choice.

No need and no sense to try to convince you of my choice. I just think that 
the way you try to handle the systemd adoption of Debian serves just one 
purpose: To specifically make you feel even more bad about. And others.

I step out from this now.

Discuss as you wish.

If it at one time it is only systemd ranting here on this list, I am free to 
unsubcribe myself from it, to save myself the hassle to even receive this 
negativity into my mailbox.

Ciao,
-- 
Martin 'Helios' Steigerwald - http://www.Lichtvoll.de
GPG: 03B0 0D6C 0040 0710 4AFA  B82F 991B EAAC A599 84C7


--
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: https://lists.debian.org/2551743.B4LT9ak39V@merkaba

Cognitively friendly systemd components graphic

2014-09-25 Thread Cindy-Sue Causey

Am calling this a cognitive friendly systemd graphic because it is for me:

http://commons.wikimedia.org/wiki/File:Systemd_components.svg

It and any similar I find soon will be what I primarily lean on to
follow conversations here because the words alone don't always gel.
With a topic of the magnitude of systemd, sometimes turning to
graphics can help sort things out.

k/t to Carla Schroder's Linux.com article for being the first place I
saw anything like this:

http://www.linux.com/learn/tutorials/788613-understanding-and-using-systemd/

If the above svg image doesn't come up based on personal user software
*CHOICE*, I found it via an image search using wikimedia commons
systemd (without quotes). Looks like there are several different
takes on that search that may come at systemd from different angles,
too..

Hope this helps someone else.. :)

Cindy

-- 
Cindy-Sue Causey
Talking Rock, Pickens County, Georgia, USA

* I comment, therefore I am (still procrastinating going out in the cold) *


-- 
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org 
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: 
https://lists.debian.org/CAO1P-kAPrnL8pxovWn8wD99rw=8vehjjus3m4wzooceypih...@mail.gmail.com

'motion' does not save movies, only still pics

I tested 'motion' on Wheezy yesterday.  It detects motion and takes still 
shots, but it is not creating movies out of the still shots.  

I have set:

# Use ffmpeg to encode mpeg movies in realtime (default: off)
ffmpeg_cap_new on

and

# Gap is the seconds of no motion detection that triggers the end of an event
# An event is defined as a series of motion images taken within a short 
timeframe.
# Recommended value is 60 seconds (Default). The value 0 is allowed and disables
# events causing all Motion to be written to one single mpeg file and no 
pre_capture.
gap 60

Can anybody confirm that movie output works on Wheezy?

One thing that may be a factor in my case is that my test webcam is very slow.  
I am only getting one picture every 2 or 3 seconds when motion is detected.  I 
have framerate set to 2 fps.  Maybe motion is aware that my pics are too far 
apart in time and is deciding not to combine them into a movie.

-Rob


-- 
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org 
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: 
https://lists.debian.org/762837346.3708132.1411654343076.javamail.zim...@ptd.net

Re: Challenge to you: Voice your concerns regarding systemd upstream

2014-09-25 Thread Lisi Reisz

On Thursday 25 September 2014 14:46:56 Martin Steigerwald wrote:
 If it at one time it is only systemd ranting here on this list, I am free
 to unsubcribe myself from it, to save myself the hassle to even receive
 this negativity into my mailbox.

That would be sad.  Try blacklisting first.  It can break threads, which is a 
nuisance, but you only have to blacklist a *tiny* number of names.

Lisi


-- 
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org 
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: https://lists.debian.org/201409251514.39136.lisi.re...@gmail.com

Re: Messages from starting services while booting

2014-09-25 Thread Sven Joachim

On 2014-09-25 13:04 +0200, Paul van der Vlis wrote:

 I am using Wheezy, and on some machines I see messages from starting
 services while booting, and on some machines I don't see them.

 Can somebody explain me how this works? I have the idea that I don't see
 messages on fast machines.

Are you sure about that?  They should be visible for some time, although
that period can be rather short if you boot from an SSD.

 And can I control this?  On some servers I like to see the messages from
 the services when the machine boots.

The behavior of getty(8) has changed (IIRC since util-linux 2.20), it
now clears the terminal by default which means that the boot messages
disappear as soon as you see the login prompt.  To change that, edit
/etc/inittab and start getty with the --noclear option on tty1.

Cheers,
   Sven


-- 
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org 
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: https://lists.debian.org/87r3yz69vl@turtle.gmx.de

Re: Let's have a vote!

- Original Message -
 From: Steve Litt sl...@troubleshooters.com

 On Wed, 24 Sep 2014 13:13:51 -0400 (EDT)
 Rob Owens row...@ptd.net wrote:

  - Original Message -
   From: The Wanderer wande...@fastmail.fm

   On 09/22/2014 at 06:54 AM, Darac Marjal wrote:

   Those are votes for Debian, but not for systemd, or for Debian with
   systemd as central.

   In the case at hand, the latter two are what people are asking to be
   able to have a vote (or at least meaningful input other than making
   noise) on, by virtue of being users who will be affected by the
   decision rather than by virtue of doing work to implement the
   decision.

  I think the best voting method at this time is popularity-contest.
  Make sure you have PARTICIPATE set to yes.

  Of course the vote is stacked somewhat in favor of systemd-sysv,
  since it is the default and in some cases unavoidable due to
  dependencies of desktop software.  So all of the systemd-sysv votes
  in popularity-contest represent either:

  1) people who prefer systemd-sysv
  2) people who got systemd-sysv as a result of dependencies of
  installing a package that they really do want 3) people who don't
  care enough to switch away from the default, or 4) people who aren't
  aware of the options, don't know what an init system is, etc.

  -Rob

 That's not really a true choice. There are a lot of other init programs
 out there, any one of which could be voted for. There's the position
 let's wait until we have a good init to move to, which is very
 different from let's use sysvinit. There's no place to write in an
 other.

Steve,

Popularity-contest simply keeps track of what packages are installed on a 
user's system.  So unless you install an init system from source, your vote 
would be counted.  (To be clear, I'm not sure if it would be counted if you 
installed a third-party package).

I agree that let's wait until we have a good init to move to should have been 
more seriously considered, but for some reason people were in a big hurry to 
make a move.  

Anyway, 'dpkg-reconfigure popularity-contest' to make sure it's enabled.

-Rob

-- 
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org 
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: 
https://lists.debian.org/1297701578.3738240.1411656178400.javamail.zim...@ptd.net

Re: security camera software

2014-09-25 Thread Scott Ferguson

On 24/09/14 23:43, Rob Owens wrote:
 I need to set up a couple usb cameras to record video based on motion
 detection.  I prefer ease of setup to a large feature set, since this
 is expected to be only temporary.  I want to only record when there
 is motion, so I don't have hours of footage to search through.

Motion fits you requirements exactly. It 'is' highly configurable - but
minimal configuration is very simple.

 
 A quick search shows recommendations for a package called 'motion'.
 Does anybody here have any experience with that, or can anybody
 recommend something better?
 
 -Rob
 
 


I've been using motion for a few years and highly recommend it.
Lightweight[*1], simple, and reliable.

Minimal configuration required (snapshot mode):-
Point your camera at the zone to be monitored.
Take a picture.
Edit the picture in GIMP (mask the areas you don't want monitored for
motion).
Configure motion (set sensitivity and picture frequency)
Make sure you've got enough space for the images it will generate -
after setting the frequency and archiving.
Set up your action on motion detection. I use an sms alert which
notifies me of motion and emails the picture of the event and several
minutes of photos preceding the event (bash script, sendmail, and
gcsms). That way if the cameras and computer get stolen I don't lose the
images.

[*1]I was impressed to find it runs well on $12 TP-Link TL-WR703N devices


Kind regards


-- 
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org 
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: https://lists.debian.org/54242bfd.8070...@gmail.com

Re: Let's have a vote!

2014-09-25 Thread Slavko

Ahoj,

Dňa Thu, 25 Sep 2014 10:42:58 -0400 (EDT) Rob Owens row...@ptd.net
napísal:

 - Original Message -
  From: Steve Litt sl...@troubleshooters.com
  
  On Wed, 24 Sep 2014 13:13:51 -0400 (EDT)
  Rob Owens row...@ptd.net wrote:
  
   - Original Message -
From: The Wanderer wande...@fastmail.fm

On 09/22/2014 at 06:54 AM, Darac Marjal wrote:

Those are votes for Debian, but not for systemd, or for Debian
with systemd as central.

In the case at hand, the latter two are what people are asking
to be able to have a vote (or at least meaningful input other
than making noise) on, by virtue of being users who will be
affected by the decision rather than by virtue of doing work to
implement the decision.
   
   I think the best voting method at this time is popularity-contest.
   Make sure you have PARTICIPATE set to yes.
   
   Of course the vote is stacked somewhat in favor of systemd-sysv,
   since it is the default and in some cases unavoidable due to
   dependencies of desktop software.  So all of the systemd-sysv
   votes in popularity-contest represent either:
   
   1) people who prefer systemd-sysv
   2) people who got systemd-sysv as a result of dependencies of
   installing a package that they really do want 3) people who don't
   care enough to switch away from the default, or 4) people who
   aren't aware of the options, don't know what an init system is,
   etc.
   
   -Rob
  
  That's not really a true choice. There are a lot of other init
  programs out there, any one of which could be voted for. There's
  the position let's wait until we have a good init to move to,
  which is very different from let's use sysvinit. There's no place
  to write in an other.
  
 Steve,
 
 Popularity-contest simply keeps track of what packages are installed
 on a user's system.  So unless you install an init system from
 source, your vote would be counted.  (To be clear, I'm not sure if
 it would be counted if you installed a third-party package).

But for the systemd too, due dependencies...

-- 
Slavko
http://slavino.sk


signature.asc
Description: PGP signature

Re: Can't We Have Another Vote for Systemd (Coup)

2014-09-25 Thread Gregory Smith

And the answer is no!
Of course.

The debian founding documents state that debian was created for the benefit
of the user.
(The premise of the whole free software movement is the rights of the user:
the developers rights are clearly best served by the standard proprietary
copyright regime)
We are told that any vote by the user would be, in a word, disrespectful of
the founding documents!

We are then informed that because earlier a general resolution by some
attentive debian package maintainers failed there shall never be another
attempt. Of course this earlier attempt occurred before everyone decided to
update to Jessie from wheezy, but that makes no difference.

How convenient.

The fact of the matter is that the technical committee even ruling on this
matter was an illegal abuse of process. Such wide ranging changes which are
not purely technical in nature Must go to a general resolution to be voted
on by all of the debian package maintainers. The abuse of the technical
committee, which is stacked with former or current redhat and
ubuntu(canonical) employees was intentional. It came just at the time when
the correct person was in the chairmanship.

What has occurred in debian can be described as a coup.
And the trajectory has followed the standard coup path: a beurocratic organ
was used to over ride and subvert a formally democratic body, then once
such was completed the decision made by a few was declared fiat complete,
then harsh critics of the new regime were silenced, and the population
informed that they had two choices: conform or get out.

You can see the same in Egypt today. Same mechanisms. They use bullets
though, rather than bans.

Debian, in its founding documents, like the free software movement it once
belonged to in fact and in spirit, was created for the users. It is not, by
fiat, a doacracy.

When it was created the users of debian and some of the programmers who
created the upstream as it is now called were the debian packagers. Since
then a new class that is neither user nor programmer has arising and stuck
itself between us, all the while kicking the actually productive free
software developers out of debian for social crimes.

That is the story, that is what has happened. They have taken our Linux
distribution from us. The Frenchman above me is one of that number.

Re: Challenge to you: Voice your concerns regarding systemd upstream

2014-09-25 Thread Peter Nieman


On 25/09/14 12:09, martin f krafft wrote:

But dependency creep is unfortunately nothing new ever since we
declared next year the Year of Linux of the Desktop and forgot that
the Universal Operating System should also cater to non-desktops.


Exactly.


--
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org 
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org

Archive: https://lists.debian.org/m01aad$9cj$1...@ger.gmane.org

Re: Let's have a vote!

2014-09-25 Thread Martin Read


On 25/09/14 15:42, Rob Owens wrote:

I agree that let's wait until we have a good init to move to should have been 
more seriously considered, but for some reason people were in a big hurry to make a move.


The vote held was What should the default init system *in jessie* be?. 
Given that as the question under discussion, let's wait until we have a 
good init to move to (implication: there are currently no available 
init systems better than the status quo) was perfectly well served by 
the ballot option sysvinit.



--
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org 
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org

Archive: https://lists.debian.org/54243040.7090...@zen.co.uk

Re: Bash Code Injection Vulnerability via Specially Crafted Environment Variables (CVE-2014-6271)

2014-09-25 Thread The Wanderer

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

On 09/24/2014 at 04:52 PM, Steve Litt wrote:

 Hi everyone,
 
 Bash Code Injection Vulnerability via Specially Crafted
 Environment Variables (CVE-2014-6271)
 
 https://access.redhat.com/articles/1200223
 
 My current Debian setup is vulnerable, as shown below:
 
 == slitt@mydesq2:~$ env
 x='() { :;}; \ echo vulnerable'  bash -c echo this is a test 
 vulnerable this is a test

 slitt@mydesq2:~$ bash --version GNU bash, version 4.2.37(1)-release
 (x86_64-pc-linux-gnu)

 ==
 
 Does anyone know if there's an fix for Debian's bash, and how to 
 install it?

As already noted, there's been a debian-security-announce alert about
this, for a fix in wheezy.

For testing, I don't know how comprehensive it is, but I ran a variant
of that same test on my system (with bash 4.3.9) and got a successful
pass - no vulnerability indicated.

Online reports have indicated that bash 4.3.x is affected, and I haven't
updated bash since before these reports hit, so I don't know what the
true shape of the picture is. The data point seemed potentially worth
mentioning, however.

A quick test also indicates that, as mostly expected, dash (the Debian
Almquist shell, which provides /bin/sh by default in current Debian) is
apparently not affected.

- -- 
   The Wanderer

The reasonable man adapts himself to the world; the unreasonable one
persists in trying to adapt the world to himself. Therefore all
progress depends on the unreasonable man. -- George Bernard Shaw
-BEGIN PGP SIGNATURE-
Version: GnuPG v1
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=fq05
-END PGP SIGNATURE-


-- 
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org 
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: https://lists.debian.org/542431d8.4050...@fastmail.fm

Re: Re: Has the Bash vulnerability been fixed on Jessie yet?

2014-09-25 Thread Paul Anzel

Okay, got it.

Any precautions I should take in the meantime? I have the bash - dash
thing already, but the string test still marks me as vulnerable.

Thanks,
Paul


--
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: https://lists.debian.org/54242f96.1070...@caltech.edu

Re: Let's have a vote!

- Original Message -
 From: Martin Read zen75...@zen.co.uk
 
 On 25/09/14 15:42, Rob Owens wrote:
  I agree that let's wait until we have a good init to move to should have
  been more seriously considered, but for some reason people were in a big
  hurry to make a move.
 
 The vote held was What should the default init system *in jessie* be?.
 Given that as the question under discussion, let's wait until we have a
 good init to move to (implication: there are currently no available
 init systems better than the status quo) was perfectly well served by
 the ballot option sysvinit.
 
Agreed.  My point was that I think people were in too much of a hurry to 
change, as if there was some kind of emergency, and I wish that waiting 
(sticking with sysvinit for now) were more seriously considered.  I didn't mean 
to imply that that choice was not available in the vote.

The vote moved us from one imperfect init to another imperfect init.  It was 
like voting on a beauty contest before the contestants had even finished doing 
their hair, just because we were so intent on removing the crown from last 
year's winner.

-Rob


-- 
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org 
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: 
https://lists.debian.org/585343013.3783962.1411659074139.javamail.zim...@ptd.net

Re: Messages from starting services while booting

On Thu, 25 Sep 2014 13:04:59 +0200
Paul van der Vlis p...@vandervlis.nl wrote:

 Hello,
 
 I am using Wheezy, and on some machines I see messages from starting
 services while booting, and on some machines I don't see them.
 
 Can somebody explain me how this works? I have the idea that I don't
 see messages on fast machines.
 
 And can I control this?  On some servers I like to see the messages
 from the services when the machine boots.
 
 With regards,
 Paul van der Vlis.

Disable lightdm and you'll start seeing the messages. The right way is
to put an exit command early in the lightdm config file. The easy way
is to rename lightdm to lightdm.unused. Don't actually delete it in
case you want to put things back.

Be forewarned that after doing that, you'll be logging into tty1, and
then running startx to run your gui, and you might need to exec your
gui (lxde or whatever) as the last command of !/.xinitrc.

HTH,

SteveT

Steve Litt*  http://www.troubleshooters.com/
Troubleshooting Training  *  Human Performance


-- 
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org 
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: https://lists.debian.org/20140925113034.6ff19...@mydesq2.domain.cxm

Re: Let's have a vote!

On Thu, 25 Sep 2014 16:09:52 +0100
Martin Read zen75...@zen.co.uk wrote:

 On 25/09/14 15:42, Rob Owens wrote:
  I agree that let's wait until we have a good init to move to
  should have been more seriously considered, but for some reason
  people were in a big hurry to make a move.
 
 The vote held was What should the default init system *in jessie*
 be?. Given that as the question under discussion, let's wait until
 we have a good init to move to (implication: there are currently no
 available init systems better than the status quo) was perfectly well
 served by the ballot option sysvinit.

Let's wait for a good alternative, and in the meantime keep sysvinit
is a lot different than let's keep sysvinit (indefinitely).

SteveT

Steve Litt*  http://www.troubleshooters.com/
Troubleshooting Training  *  Human Performance


-- 
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org 
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: https://lists.debian.org/20140925114023.6e541...@mydesq2.domain.cxm

Re: security camera software

- Original Message -
 From: Scott Ferguson scott.ferguson.debian.u...@gmail.com
 
 I've been using motion for a few years and highly recommend it.
 Lightweight[*1], simple, and reliable.
 
 Minimal configuration required (snapshot mode):-
 Point your camera at the zone to be monitored.
 Take a picture.
 Edit the picture in GIMP (mask the areas you don't want monitored for
 motion).

Does this work just as a starting point for motion detection, or can you 
reference this picture for the beginning of any event.  My impression was that 
it detects motion based on comparing to the previous picture.  So the last 
picture of the first event would be used as the baseline for triggering a 
second event.

 Configure motion (set sensitivity and picture frequency)
 Make sure you've got enough space for the images it will generate -
 after setting the frequency and archiving.
 Set up your action on motion detection. I use an sms alert which
 notifies me of motion and emails the picture of the event and several
 minutes of photos preceding the event (bash script, sendmail, and
 gcsms). That way if the cameras and computer get stolen I don't lose the
 images.
 
 [*1]I was impressed to find it runs well on $12 TP-Link TL-WR703N devices

How are you doing that?  Running OpenWRT or something?

Thanks for all the info.

-Rob


-- 
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org 
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: 
https://lists.debian.org/247092421.3798574.1411660092423.javamail.zim...@ptd.net

Re: Challenge to you: Voice your concerns regarding systemd upstream

On Thu, 25 Sep 2014 15:46:56 +0200
Martin Steigerwald mar...@lichtvoll.de wrote:

 Am Donnerstag, 25. September 2014, 01:45:50 schrieb lee:
  Martin Steigerwald mar...@lichtvoll.de writes:
   Am Montag, 22. September 2014, 23:50:46 schrieb lee:
   Martin Steigerwald mar...@lichtvoll.de writes:
   
   Do you really think they will be able to prevent all the other
   software from depending on a particular init system or parts of
   it?
   
   Well… thats to be taken upstream, isn´t it?
  
  Then why don't the developers or the distributions do just that?
  Nobody cares when one user or another questions whether it's a good
  idea to depend on systemd, and it might be much different if a lot
  of developers and/or whole distributions would, in the interest of
  their users, question this dependency and refuse their support
  eventually until the issues systemd and software depending on it
  brings about.
 
 […]
  Fedora does already depend on systemd --- and I would say
  completely. Or do you see a choice here?
 
 And exactly *how* is this relevant to Debian?

Well, for one thing, it was one reason the DDs used to select systemd.

SteveT

Steve Litt*  http://www.troubleshooters.com/
Troubleshooting Training  *  Human Performance


--
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: https://lists.debian.org/20140925113444.23f63...@mydesq2.domain.cxm

Re: Let's have a vote!

2014-09-25 Thread Martin Read


On 25/09/14 16:40, Steve Litt wrote:

Let's wait for a good alternative, and in the meantime keep sysvinit
is a lot different than let's keep sysvinit (indefinitely).


Voting let's keep sysvinit *in jessie* says *exactly nothing* about 
the init system in jessie+1.



--
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org 
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org

Archive: https://lists.debian.org/54243af1.3060...@zen.co.uk

Re: 'motion' does not save movies, only still pics

2014-09-25 Thread Bob McGowan

On 9/25/14, 7:12 AM, Rob Owens row...@ptd.net wrote:

I tested 'motion' on Wheezy yesterday.  It detects motion and takes still
shots, but it is not creating movies out of the still shots.

I have set:

# Use ffmpeg to encode mpeg movies in realtime (default: off)
ffmpeg_cap_new on

and

# Gap is the seconds of no motion detection that triggers the end of an
event
# An event is defined as a series of motion images taken within a short
timeframe.
# Recommended value is 60 seconds (Default). The value 0 is allowed and
disables
# events causing all Motion to be written to one single mpeg file and no
pre_capture.
gap 60

Can anybody confirm that movie output works on Wheezy?

One thing that may be a factor in my case is that my test webcam is very
slow.  I am only getting one picture every 2 or 3 seconds when motion is
detected.  I have framerate set to 2 fps.  Maybe motion is aware that my
pics are too far apart in time and is deciding not to combine them into a
movie.

-Rob


-- 
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact
listmas...@lists.debian.org
Archive: 
https://lists.debian.org/762837346.3708132.1411654343076.JavaMail.zimbra@p
td.net



I should have added a caveat to my original response, I hadn't actually
tried it, since my needs pointed me to a more feature full system.


Looking at the 'gap' description, I wonder if you need to set it to '0' in
order to get a movie?

Bob


--
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: https://lists.debian.org/d0498916.446e%bob_mcgo...@symantec.com

Re: Let's have a vote!

On Thu, 25 Sep 2014 16:55:29 +0100
Martin Read zen75...@zen.co.uk wrote:

 On 25/09/14 16:40, Steve Litt wrote:
  Let's wait for a good alternative, and in the meantime keep
  sysvinit is a lot different than let's keep sysvinit
  (indefinitely).
 
 Voting let's keep sysvinit *in jessie* says *exactly nothing* about 
 the init system in jessie+1.

We're going to have to agree to disagree.

SteveT

Steve Litt*  http://www.troubleshooters.com/
Troubleshooting Training  *  Human Performance


-- 
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org 
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: https://lists.debian.org/20140925120520.3eafb...@mydesq2.domain.cxm

Re: Messages from starting services while booting

op 25-09-14 17:30, Steve Litt schreef:
 On Thu, 25 Sep 2014 13:04:59 +0200
 Paul van der Vlis p...@vandervlis.nl wrote:
 
 Hello,

 I am using Wheezy, and on some machines I see messages from starting
 services while booting, and on some machines I don't see them.

 Can somebody explain me how this works? I have the idea that I don't
 see messages on fast machines.

 And can I control this?  On some servers I like to see the messages
 from the services when the machine boots.

 Disable lightdm and you'll start seeing the messages. 

I don't use Lightdm or any other dm, it's a server without GUI.

With regards,
Paul van der Vlis.


-- 
Paul van der Vlis Linux systeembeheer, Groningen
http://www.vandervlis.nl


-- 
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org 
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: https://lists.debian.org/54243e0a.4090...@vandervlis.nl

Re: 'motion' does not save movies, only still pics

2014-09-25 Thread Cindy-Sue Causey

On 9/25/14, Rob Owens row...@ptd.net wrote:
I tested 'motion' on Wheezy yesterday. It detects motion and takes still
shots, but it is not creating movies out of the still shots.

I have set:

# Use ffmpeg to encode mpeg movies in realtime (default: off)
ffmpeg_cap_new on

and

# Gap is the seconds of no motion detection that triggers the end of an
event
# An event is defined as a series of motion images taken within a short
timeframe.
# Recommended value is 60 seconds (Default). The value 0 is allowed and
disables
# events causing all Motion to be written to one single mpeg file and no
pre_capture.
gap 60

Can anybody confirm that movie output works on Wheezy?

One thing that may be a factor in my case is that my test webcam is very
slow. I am only getting one picture every 2 or 3 seconds when motion is
detected. I have framerate set to 2 fps. Maybe motion is aware that my
pics are too far apart in time and is deciding not to combine them into a
movie.

I can't help you with motion but I had a thought as I was reading
your predicament.. OpenShot will produce an mpeg video output of
multiple images if you find yourself up against a deadline or
something and need an alternative.

If motion is throwing all your images into one folder, it's as simple
as highlighting all and importing them together into a new project..
After that you do the same thing within the program to drag them onto
a track where you can play with how they are presented within your
final product...

I'll be happy to *try* to help shorten the learning curve if you end
up having to go that route.. I do understand that the point of your
request is ideally motion would be producing that format without
further intervention from outside software.

Cindy :)

--
Cindy-Sue Causey
Talking Rock, Pickens County, Georgia, USA

* I comment, therefore I am (procrastinating elsewhere) *

--
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive:
https://lists.debian.org/cao1p-kb9bmfcpnzqtzm+amin6h75uj_ywfhcvqoyqhnn9at...@mail.gmail.com

Re: Messages from starting services while booting