Re: an fstab question

[Ben Caradoc-Davies]

On 10/05/17 14:50, Martin McCormick wrote:

One of the suggestions for improving the longevity of solid-state drives is
to mount them using the noatime flag which reduces the number of
times that inodes are written to. if I try something like:
UUID=[string] /   ext4 errors=remount-ro 0   1
It works. If I put relatime there, that works but if I use
noatime, the line is flagged as bad.
The man page for mount shows noatime and relatime so why
does noatime not work?
Many thanks.
Martin McCormick


Martin, please show us the failing line. noatime works fine for me in fstab:

/dev/mapper/vg-root /   ext4 
noatime,errors=remount-ro   0   1


mount confirms that it is being honoured:

/dev/mapper/vg-root on / type ext4 
(rw,noatime,errors=remount-ro,data=ordered)


Kind regards,

--
Ben Caradoc-Davies 
Director
Transient Software Limited 
New Zealand

an fstab question

[Martin McCormick]

One of the suggestions for improving the longevity of solid-state drives is
to mount them using the noatime flag which reduces the number of
times that inodes are written to. if I try something like:

UUID=[string] /   ext4 errors=remount-ro 0   1

It works. If I put relatime there, that works but if I use
noatime, the line is flagged as bad.

The man page for mount shows noatime and relatime so why
does noatime not work?

Many thanks.

Martin McCormick

Re: Using 2nd monitor with Stretch and MATE desktop

[Felix Miata]

Richard Owlett composed on 2017-05-09 13:59 (UTC-0500):
...
> I need documentation of the "Monitor Preferences" menu *WITH PICTURES*.
>... 
One picture.

After an xrandr man page refresh, using the following in a startup script:

xrandr --fb 1920x1200
xrandr --dpi 120 --output DVI-I-1 --mode 1920x1200
xrandr --output VGA-1 --pos 0x0 --mode 640x480 --panning \
1920x1200+0+0/1920x1200+0+0/64/64/64/64

I got

http://fm.no-ip.com/SS/Xorg/magnifiedDual-1575.jpg

using Stretch, but with TDE instead of Mate.
-- 
"The wise are known for their understanding, and pleasant
words are persuasive." Proverbs 16:21 (New Living Translation)

 Team OS/2 ** Reg. Linux User #211409 ** a11y rocks!

Felix Miata  ***  http://fm.no-ip.com/

Re: Servidor NFS en Raspbian

[Ángel]

On 2017-05-08 at 21:22 +0200, Josu Lazkano wrote:
> El recurso que comparto por NFS esta en un disco USB que lo monto
> mediante /etc/fstab, ¿puede ser que necesite algo mas de tiempo para
> montar?
> 
> ¿puedo añadir un retardo en el arranque de inicio del servicio NFS?
> 
> Agradezco cualquier ayuda.
> 
> Un saludo.

La solución "correcta" sería indicar que NFS requires tener montada esa
ubicación. Editando el fichero de systemd sería añadir Requires=... y
After=...
Pero posiblemente también pueda hacerse creando un enlace simbólico en 
/etc/systemd/ntpd.service.requires
(y para complicarlo un poco más, el nombre que da al montaje del disco
será dinámico)



Un saludo

Re: Using 2nd monitor with Stretch and MATE desktop

[Henrique de Moraes Holschuh]

On Tue, 09 May 2017, Richard Owlett wrote:
> On 05/09/2017 11:57 AM, Felix Miata wrote:
> I'm not afraid of the command line ;/

...


> counselor. With the standard aptitude tests I scored so low on spatial
> relationships that I could not be found in the statistical mud when compared

...

> an extra verbal _aptitude_ test. Again compared to engineering students I
> was in statistical mud. This time I scored too high to be "normal". It was

Well, extremely high verbal aptitude does not always mean extremely high
reading/writing aptitude, but it most often does, so maybe you would be
better off skipping the GUI?

I had a step-by-step large email written that took half an hour to
write, but something in my custom 4.4 kernel is highly alergic to
playing with xrandr and crashed the box hard while I was trying to test
the commands.  Then it took one full hour to undo the damage.

Therefore, I will make into a barebones email.  It has just a few key
points for you to look into and see if it looks like it could help you,
as apparently the gnome/kde GUIs to setup multi-monitor were not of much
help.


first: get to know the xrandr command.  And its manpage.

xrandr is the utility that does everything behind the scenes, to the
point that kde actually builds a xrandr line and adds it to a config
file somewhere when you use its GUI.  Gnome likely does something to the
same effect.

Just calling "xrandr" with no options will output the current state.
Useful information there will be the name of your "outputs", and their
geometry specification (more on this later).


Play with xrandr using its "simple mode", like this:

1st try:
xrandr --output  --same-as  --auto

** now move the mouse to all edges: very left, very right, up, down.  If
it disappears, move it back in the opposite direction.

The command will "clone" one view port/output over the other, showing
the same area of the screen/canvas.  What it really did was to place the
two view ports at the same point of the screen, so they show the same
thing.

(screen: the video memory area where things happen.  output/view port:
something that shows a section of the screen, when connected to display
hardware).

Then, play with changing "--same-as" to:

--right-of
--left-of
--above
--below

e.g.:

xrandr --output 
   --left-of  --auto

(all in one line).

At each step, play with the mouse like I said.  That ought to get you up
to speed.

After each step, run "xrandr" without options, and look at the geometry
of each output (the thing that looks like 1280x1024+1280+0, or
1280x1024+0+0, etc).  It means:
x++

relative to the top-left corner of the screen.

xrandr can do a lot more, such as rotating the viewport (useful if your
monitor has a pivot base that allows these piece of crap widescreen
displays to work as a long vertical page -- great for writing text and
code), etc.

Good luck...

-- 
  Henrique Holschuh

Re: Configuration Postfix / Dovecote

[G2PC]

Le 09/05/2017 à 23:43, Thierry Bugier Pineau a écrit :
> Bonsoir
>
> Ce message est d'abord pour André, à qui j'ai promis il y a quelques
> semaines mes notes sur la configuration Postfix / Dovecot sur la
> partie chiffrement SSL.
>
> https://howto-it.dethegeek.eu.org/index.php?title=Postfix_-_Configurer_un_serveur_email_privé
> 
>
> Mes notes me paraissent assez complètes pour résoudre la configuration
> du chiffrement. Cela dit ça reste encore très brut. Il faut rajouter
> des explications presque partout, et que je reconstruise tout de bout
> en bout pour trouver les coquilles.
>
> Il me reste à configurer / documenter spamassassin, très certainement
> un webmail comme Roundcube et améliorer l'exploitation du protocole LDAP.
>
> Certains demanderont pourquoi utiliser LDAP. Trois raisons basiques :
> - parce qu'on peut
> - parce que LDAP me permet d'unifier les comptes utilisateur
> - parce que c'est plus drôle
>
> Du coup ce tuto me parait intéressant (ou différent) car la plupart
> des documentations que j'aie pu trouver s'appuient sur des comptes
> dans un fichier plat de Postfix ou dans une base MySQL.
>
> A tous les autres lecteurs de cette liste, je suis preneur des
> observations, commentaires; ou contributions (puisque c'est un wiki).
>
Merci. Je partage et testerais.

Bernard Bass
www.visionduweb.eu

Re: UEFI + Raid

[Pascal Hambourg]

Le 09/05/2017 à 01:48, Sam Smith a écrit :


I have installed Debian Stretch on my first system using UEFI. I used a
two disk Raid 1 + LVM configured during install time to mount / on
(among other things).

But now I need to figure out how to add redundancy to the software raid
1 since I believe boot entries are only added to one disk during
installation time?


I did it with Wheezy and wrote a post about it in a french forum. But it 
isn't very useful if you cannot read french, and it does not take into 
account new fancy grub-install options available since Jessie :

--removable
--force-extra-removable
--efi-directory
--bootloader-id


According to
https://wiki.debian.org/UEFI#Missing_features there doesn't seem to be
much options. Is my only option to copy the FAT32 EFI system partition
from the first disk to the second disk and then use efibootmgr to add it
(the second disk) as a boot entry?


No, you have other options.
Manually install a copy of the GRUB EFI core image in the EFI removable 
path of each disk. This location does not require to add an EFI boot 
entry with efibootmgr.

Or use grub-install with --removable and --efi-directory for each disk.
Or use grub-install with --efi-directory and --bootloader to install a 
copy of GRUB wherever you want and add an EFI boot entry for it.


Maybe you could also create a RAID 1 array with superblock at the end 
and use it as the EFI system partition. Never tried it.



And will any subsequent kernel or
grub updates affect the system partition and thus require another
copy/sync to the second disk?


Kernel update : no, it just affects the /boot contents.
GRUB package update : yes.

Re: Fwd: off topic - ransomware to get password email id

[Fernando Barradas]

Boa noite a todos,

tópico interessante, investiguei um pouco mais e cheguei a conclusão que o
importante é se precaver.

A ideia é dificultar ao máximo usando senhas fortes, alterando a porta do
ssh, não fazer login remoto com root, fontes de códigos/programas
confiáveis,  o de sempre.

O link abaixo descreve isto:

https://www.futurehosting.com/blog/protecting-your-server-from-linux-ransomware/

e um pouco mais de segurança:

https://sites.google.com/site/easylinuxtipsproject/security



Em 9 de maio de 2017 14:31, Linux - Junior Polegato <
li...@juniorpolegato.com.br> escreveu:

> Em 09-05-2017 11:12, Marcos Carraro escreveu:
>
> https://www.m3corp.com.br/2016/04/05/ransomware-chega-
> ao-linux-na-linha-de-comando/
>
>
> Cara, para fazer criptografia no Linux, pode-se dizer que é nativo, pois
> praticamente tudo na rede roda sobre criptografia e tem que ter ferramentas
> para isso, como o próprio artigo cita, um simples "gpg" faz isso, que aliás
> uso muito para fazer backup de dados em mídias e/ou nuvem.
>
> O que está em questão é conseguir acessar a máquina e ainda alterar
> arquivos importantes para fazer tal estrago.
>
> Do mais, como já dito, "Não existe sistema à prova de idiotas!"
>
>
> --
>
> []'s
>
> Junior Polegato
>
>

Configuration Postfix / Dovecote

[Thierry Bugier Pineau]

Bonsoir

Ce message est d'abord pour André, à qui j'ai promis il y a quelques
semaines mes notes sur la configuration Postfix / Dovecot  sur la
partie chiffrement SSL.

https://howto-it.dethegeek.eu.org/index.php?title=Postfix_-_Configurer_
un_serveur_email_privé

Mes notes me paraissent assez complètes pour résoudre la configuration
du chiffrement. Cela dit ça reste encore très brut. Il faut rajouter
des explications presque partout, et que je reconstruise tout de bout
en bout pour trouver les coquilles.

Il me reste à configurer / documenter spamassassin, très certainement
un webmail comme Roundcube et améliorer l'exploitation du protocole
LDAP.

Certains demanderont pourquoi utiliser LDAP. Trois raisons basiques :
- parce qu'on peut
- parce que LDAP me permet d'unifier les comptes utilisateur
- parce que c'est plus drôle

Du coup ce tuto me parait intéressant (ou différent) car la plupart des
documentations que j'aie pu trouver s'appuient sur des comptes dans un
fichier plat de Postfix ou dans une base MySQL.

A tous les autres lecteurs de cette liste, je suis preneur des
observations, commentaires; ou contributions (puisque c'est un wiki). 

Cuenta GRATUITA de Trading

[DerrotalaCrisis]

Prueba 

SMS signals

GANE AL INSTANTE CON NUESTRAS
 SEÑALES SMS EN SU MÓVIL.

Reciba señales SMS en tiempo real y opere en índices Europeos (DAX, IBEX 35, 
CAC 40).

Las operaciones en índices aumentan sus posibilidades de obtener beneficios al 
reunir valores de varias compañías en un mismo instrumento.

Reciba asistencia de nuestros analistas del mercado.

Obtenga hasta 5000 euros para realizar operaciones al registrarse co esta 
oferta especial

Regístrese ahora y asegure su estabilidad
 ¡sin requerir ninguna experiencia previa! 

REGISTRARSE (
http://tracking.derrotalacrisis.com/tracking/click?msgid=VJ203C6FOLkXEx0OG421sg2=https%3a%2f%2fwww.derrotalacrisis.com%2f%3femail_id%3d100%26user_id%3d4922%26urlpassed%3daHR0cDovL3IudW1hcmtldHMuY29tLz9saW5raWQ9bWVkaWEtZGVycm90YS1zaWduYWxzLWVz%26controller%3dstats%26action%3danalyse%26wysija-page%3d1%26wysijap%3dsubscriptions=J-lHDKeLLBfSHQolNfhqvQ2
)

Darse de Baja (
http://tracking.derrotalacrisis.com/tracking/click?msgid=VJ203C6FOLkXEx0OG421sg2=https%3a%2f%2fwww.derrotalacrisis.com%2f%3femail_id%3d100%26user_id%3d4922%26urlpassed%3dW3Vuc3Vic2NyaWJlX2xpbmtd%26controller%3dstats%26hash%3d02663d9296ff43c7f2cfe7b7da96afbe%26action%3danalyse%26wysija-page%3d1%26wysijap%3dsubscriptions=MNsqNbdl6AZ6Xdi_HvkFOA2
) - Editar tu suscripción (
http://tracking.derrotalacrisis.com/tracking/click?msgid=VJ203C6FOLkXEx0OG421sg2=https%3a%2f%2fwww.derrotalacrisis.com%2f%3femail_id%3d100%26user_id%3d4922%26urlpassed%3dW3N1YnNjcmlwdGlvbnNfbGlua10%253D%26controller%3dstats%26hash%3dffd52cde94cca3aad3e979508ac3c77b%26action%3danalyse%26wysija-page%3d1%26wysijap%3dsubscriptions=Aw-b3sWyIXccZk4piqiGGQ2
)

Blanca de Navarra Nº7 2ºiz
Corella (Navarra)
31591
 
http://tracking.derrotalacrisis.com/tracking/unsubscribe?msgid=VJ203C6FOLkXEx0OG421sg2

bleeding-edge MATE

[David Griffith]

I've installed MATE 1.18 into /usr/local/ and added 
/usr/local/share/xsessions to the sessions-director path in 
/etc/lightdm/lightdm.conf.  At the Lightdm login screen, I can now select 
MATE for my desktop environment, but on logging in, MATE won't start. 
What's wrong?  I don't see anything relevant in /var/log about this.


I can start mate-session in .xinitrc and use startx, but then MATE can't 
find any themes... and I really would rather use Lightdm.


Is anyone here tinkering with bleeding-edge MATE?  How are you going about 
it?


--
David Griffith
d...@661.org

A: Because it fouls the order in which people normally read text.
Q: Why is top-posting such a bad thing?
A: Top-posting.
Q: What is the most annoying thing in e-mail?

Contribuir

[Otávio So]

Oi,

Subscribe...

gtd.

Re: Using 2nd monitor with Stretch and MATE desktop

[Felix Miata]

Richard Owlett composed on 2017-05-09 13:59 (UTC-0500):

> Felix Miata wrote:

> I'm not afraid of the command line ;/
...
>> Properly configured, what shows up on the external display should be
>> controlled by moving the mouse pointer toward the part of the laptop
>> screen you wish to see on the VGA screen.
...
> OK that tells me that what I want is possible.
> It also suggests that what I want is a reasonable approximation of SOP.
> When I adjust items in Systems->Preferences->Hardware->Displays the 
> effects of my actions *DO NOT* make sense to me.
> I need documentation of the "Monitor Preferences" menu *WITH PICTURES*.

I won't be providing any assistance including pictures before I can create what
you want locally, but I won't be creating locally without possession of basic
specifications of your '17 inch VGA display' device. Is it an LCD/LED? A CRT? Is
it limited to VGA mode (640x480)? Is its native mode 1280x1024 (common among 17"
LCDs)? Is VGA mode 640x480 what you wish used (lower DPI aka display density =
bigger images and text)?

A look at Xorg.0.log would help identify display specifications if a simpler set
cannot be located. Better here than Xorg.0.log would be output from 'xrandr -q'.
-- 
"The wise are known for their understanding, and pleasant
words are persuasive." Proverbs 16:21 (New Living Translation)

 Team OS/2 ** Reg. Linux User #211409 ** a11y rocks!

Felix Miata  ***  http://fm.no-ip.com/

Re: Debian contributor Register of Interests (was Re: If Linux Is About Choice, Why Then ...)

[tomas]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On Tue, May 09, 2017 at 03:56:37PM +0100, Jonathan Dowland wrote:
> On Thu, Apr 20, 2017 at 10:12:47AM +0100, Jonathan Dowland wrote:
> > if people felt this was a concern, perhaps a process for voluntarily
> > "declaring an interest" could be worked out.
> > 
> > I should stress that I have no concerns about anyone I know, but in the
> > interests of transparency I would support the discussion and development of
> > the above. But that ball should probably start rolling on the debian-project
> > list.
> 
> Just to report I've followed up on this, and created this page
> 
>   https://wiki.debian.org/RegisterOfInterests
> 
> and notified -project.

Just to say that Debian rocks :-)

cheers
- -- tomás
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.12 (GNU/Linux)

iEYEARECAAYFAlkSEfkACgkQBcgs9XrR2kbFxACfYPYs5gqbukolz7oeDo13ANsP
RngAniI23iwOjuL8OOZIm7+XdK1a/PJQ
=ktKf
-END PGP SIGNATURE-

Re: Using 2nd monitor with Stretch and MATE desktop

[Richard Owlett]

On 05/09/2017 11:57 AM, Felix Miata wrote:

Richard Owlett composed on 2017-05-09 10:57 (UTC-0500):
[snip]

I need basic instructions *WITH PICTURES*.
I want a full screen display on the laptop.
I want a blow-up of a portion of the display on the external display.


To get what I think you're asking for likely will require manual
configuration with scripted xrandr or /etc/X11/xorg.conf*.


I'm not afraid of the command line ;/




I know it's physically possible because I'm staring at it.
BUT can not predict what is displayed on external display.
Help please.


Properly configured, what shows up on the external display should be
controlled by moving the mouse pointer toward the part of the laptop
screen you wish to see on the VGA screen.



OK that tells me that what I want is possible.
It also suggests that what I want is a reasonable approximation of SOP.
When I adjust items in Systems->Preferences->Hardware->Displays the 
effects of my actions *DO NOT* make sense to me.

I need documentation of the "Monitor Preferences" menu *WITH PICTURES*.

Just for the record, in the early 60's I was a struggling engineering 
student considering changing my major. I consulted the university's 
"Testing and Guidance Center". By luck of the draw, I got the department 
head as my counselor. With the standard aptitude tests I scored so low 
on spatial relationships that I could not be found in the statistical 
mud when compared to engineering students. As he was department head, my 
counselor tossed in an extra verbal _aptitude_ test. Again compared to 
engineering students I was in statistical mud. This time I scored too 
high to be "normal". It was one of the highest he'd seen in years. It 
was a test of *reading* aptitude. As the head of the freshman English 
program would declare "Owlett can't write worth a d$@%*" ;}


Please point me to documentation I can use.
TIA

Re: Fwd: off topic - ransomware to get password email id

[Linux - Junior Polegato]

Em 09-05-2017 11:12, Marcos Carraro escreveu:

https://www.m3corp.com.br/2016/04/05/ransomware-chega-ao-linux-na-linha-de-comando/


Cara, para fazer criptografia no Linux, pode-se dizer que é nativo, pois 
praticamente tudo na rede roda sobre criptografia e tem que ter 
ferramentas para isso, como o próprio artigo cita, um simples "gpg" faz 
isso, que aliás uso muito para fazer backup de dados em mídias e/ou nuvem.


O que está em questão é conseguir acessar a máquina e ainda alterar 
arquivos importantes para fazer tal estrago.


Do mais, como já dito, "Não existe sistema à prova de idiotas!"


--

[]'s

Junior Polegato

Re: Migration 32 bits vers 64 bits gros problème avec dpkg testing

[Daniel Caillibaud]

Le 05/05/17 à 20:05, Étienne Mollier  a écrit :
> Intéressante manipulation, j'ai essayé dans une machine
> virtuelle.  Le moins qu'on puisse dire, c'est que c'est délicat.

Et intéressante contribution !

Je me suis demandé pourquoi xargs sur

> apt-get install $(xargs < packages)

car en bash le $(< fichierQcq) transforme les \n en espaces, et je l'utilise 
depuis des
années sans me poser de question, mais effectivement avec dash (par ex) 
$(

Re: Using 2nd monitor with Stretch and MATE desktop

[Julian Rüger]

EDIT:

On a closer look, kmag seems much more intuitive than xzoom.

The other instructions still work, just replace xzoom with kmag.

In step 9, click the "Mouse" button in kmag's toolbar, to make it follow
your mouse cursor.

Does that work for you?

Best,
Julian

Re: Using 2nd monitor with Stretch and MATE desktop

[Felix Miata]

Richard Owlett composed on 2017-05-09 10:57 (UTC-0500):

> I have a Lenovo T510 laptop -- wide and short display.

Googling tells me it's a 1600x900 15.6" display. Is that what your is? If so,
it's native pixel density is 117 DPI.

> When I chose a tri-focal readable font size it displays to few lines.

Too few lines in what context? Where you chose size, did it provide a numerical
value for the selected size? If so, what is it?

> I purchased a use 17 inch VGA display.

Resolution of a VGA display is 640x480, which for 17" is a pixel density of 47
DPI, magnitudes different from your laptop display. Did you really mean a
display that connects via a 15 pin VGA connector? If so, what are its
specifications?

> The MATE built in "help" is not detailed enough.
> I suspect the authors thought the configuration screen was intuitive.
> It's *NOT*.
> My web searches have turned up posts about external hardware I don't have.

> I need basic instructions *WITH PICTURES*.
> I want a full screen display on the laptop.
> I want a blow-up of a portion of the display on the external display.

To get what I think you're asking for likely will require manual configuration
with scripted xrandr or /etc/X11/xorg.conf*.

> I know it's physically possible because I'm staring at it.
> BUT can not predict what is displayed on external display.
> Help please. 
Properly configured, what shows up on the external display should be controlled
by moving the mouse pointer toward the part of the laptop screen you wish to see
on the VGA screen.
-- 
"The wise are known for their understanding, and pleasant
words are persuasive." Proverbs 16:21 (New Living Translation)

 Team OS/2 ** Reg. Linux User #211409 ** a11y rocks!

Felix Miata  ***  http://fm.no-ip.com/

Re: Using 2nd monitor with Stretch and MATE desktop

[Julian Rüger]

Hi Richard!

First of all, sorry, no pictures.
An easy solution, without trying to achieve what you want on a low
level, is to use a screen magnifier such as xzoom.

1. Install the package "xzoom" (sudo apt-get install xzoom) or use the
package manager of your choice.
2. Open mate-display-properties.
3. Select your external monitor, uncheck "Same image in all monitors"
4. Click and drag your external monitor (light green box in the visual
representation for me) to the side of your laptop display (light red).
5. Check if the resolution is correct (choose highest possible for LCD,
for CRT try different ones until it looks good to you)
6. Click Apply, then Keep Settings.
7. Close mate-display-properties, open xzoom (press Alt+F2, enter
"xzoom" without quotes, hit enter key)
8. Drag the xzoom window to your external monitor, double click the
title bar to maximize it.
9. Click inside the xzoom window and drag the mouse to the area you want
to enlarge on your laptop screen.
10. Done


Best,
Julian


From the xzoom man page:

COMMANDS
   Once xzoom has started the user can enter  simple  commands  using  the
   keyboard.

   qquit.

   +increase magnification value by 1.

   -decrease magnification value by 1.

   wnext + or - command only affect X magnification.

   hnext + or - command only affect Y magnification.

   xmirror the display image horizontally.

   ymirror the display image vertically.

   zrotate the displayed image 90 degrees counter-clockwise.

   arrow keys
scroll  the zoomed area 1 pixel in the direction of the arrow.  if
the control key is pressed the zoomed area will scroll 10 pixels.

   dsets the delay between frame updates.  Built-in  delays  are  200,
100, 50, 10 and 0 ms.

   gtoggle grid on and off.

   Mouse buttons
To set the location of the magnified are click the left mouse but‐
ton inside xzoom's window  and  then  move  it  (keep  the  button
pressed) to the place which you want to see magnified.

Xzoom allow you to resize it's window at any time.

When xzoom is iconified it simply waits to get deiconified.

Re: NVMe SSD and discard mount option

[Henrique de Moraes Holschuh]

On Tue, 09 May 2017, David Guyot wrote:
> I recently loaned a server with NVMe SSD and saw, during my research on
> the relevance of the discard mount option for them, that its use is
> discouraged for NVMe SSDs. Why? Does NVMe SSDs not need trimming? Is it
> integrated in the NVMe driver for Linux?

Linux does better with filesystem-level TRIM every so often (how often
depends really on your write load and level of overprovisioning) as a
rule, anyway.

That said: NVMe usually dislikes frequent use of TRIM because it
typically will play badly with the many-queue scheduler inside the
device: the device will typically have to issue a device-wide write
barrier internally, which has to drain (and freeze) every [write?] queue
up to the barrier point before the barrier can be cleared.  The blocks
are then marked as free for future garbage collection, and all queues
unfrozen, thus resuming operation.  This hurts multi-stream streaming
performance quite a lot...

Even if it had to freeze just one queue, it would still hurt when
compared to an fstrim every hour/day/week/month.

Non-NVMe devices have far less command-path paralellism, so the
device-wide write barrier should typically hurt less (in relative terms)
than it would on a NVMe device.

Besides, I/O latency becomes *utterly unpredictable* when online discard
is active, which can cause all sort of stuttering on the default I/O
scheduler.  Latency will get unpredictable during fstrim as well, but
you can schedule the fstrim to a time of your choice, instead of every
time the filesystem frees a data or metadata block...

As for flash wear, on a modern SSD (NVMe or otherwise), to keep it at
the bare minimum it should be enough to overprovision it properly and
issue an fstrim (on average) after writing about 50%[1] of the size of
the overprovisioned area.  That might even give you less flash wear than
online-discard over time...


[1] 50% is just a hunch.  You could test that, but please keep in mind
that it will be device-firmware dependent.  I bet there are a few
devices that are going to priorize copying data around to free
almost-empty erase blocks for erasure, no matter how many fully-erased
blocks are already available...

-- 
  Henrique Holschuh

Re: How stable is the frozen stretch?

[RavenLX]

My system is used for work (I work from home exclusively) and stuff I do 
sometimes can be mission-critical in that if I'm notified, I might have 
to go and do some work right away on something important. Customers 
would be relying on my ability to fix things. So, I really can't afford 
something to go down on my machine. This is why I have a spare laptop 
just in case my "main" laptop has a problem. They are both set up 
identical and data files are backed up very frequently so all I need to 
do is get the backups onto the spare laptop and be good to go within 
minutes.


Stability, in my case, is a must. However, I do like to have newer 
features as well.



On 05/07/2017 07:45 PM, Michael Milliman wrote:

Yeah, this is one of the main things sited as a drawback to the Debian
distributionpackages are sometimes a little older than in other
distributions.  But, this is because the Debian developers spend so much
time making sure that they work properly in the distribution before they
are released in the repositories.  As a result, things change a lot less
frequently.  The benefit of this is that Debian is 'stable' in all
senses of the word...few serious bugs and system instability, and little
or no instability in what is part of the distribution.  For many people,
especially businesses, this stability is important.  For others, like
myself, I can afford a little more instability, and so can deal with any
instability in testing for the benefit of getting newer versions of the
packages and run Testing (Stretch). Many people also run Experimental
(Sid) for the benefit of bleeding-edge versions of software, but a lot
of instability (in all senses of the word).

Using 2nd monitor with Stretch and MATE desktop

[Richard Owlett]

I have a Lenovo T510 laptop -- wide and short display.
When I chose a tri-focal readable font size it displays to few lines.
I purchased a use 17 inch VGA display.
The MATE built in "help" is not detailed enough.
I suspect the authors thought the configuration screen was intuitive.
It's *NOT*.
My web searches have turned up posts about external hardware I don't have.

I need basic instructions *WITH PICTURES*.
I want a full screen display on the laptop.
I want a blow-up of a portion of the display on the external display.
I know it's physically possible because I'm staring at it.
BUT can not predict what is displayed on external display.
Help please.

Re: NVMe SSD and discard mount option

[Dan Ritter]

On Tue, May 09, 2017 at 05:17:42PM +0200, David Guyot wrote:
> I also thought about that at first, but asked to my server provider, and
> they quoted Intel docs: "Be sure to turn off the discard option when
> making your Linux filesystem. You want to allow the SSD manage blocks
> and its activity between the NVM (non-volatile memory) and host with
> more advanced and consistent approaches in the SSD Controller.Core
> Filesystems:•ext4– the default extended option is not to discard blocks
> at filesystem make time, retain this, and do not add the “discard”
> extended option as some information will tell you to do"
> 
> If I understand correctly, the SSD already manages discarding the old
> blocks, probably using some NVMe magic. Is my interpretation OK?

That's not what I said, no.

NVMe is an interface, like SATA. There's nothing magic about it.

All the data quoted so far suggests that you should not add the
discard option.

Trim operations should be done via cron calling the fstrim
command.

-dsr-

smartd spamming the console

[Julian Rüger]

Hi everyone!

I have smartd running on my jessie server, to keep an eye on my raid
disks.

One of them has a few pending sectors, but nothing major and I don't
want to replace it yet. Problem is, every 30 min the following message
gets dumped all over my open terminals (ssh as well as local, basically
every root tty):

2017 May  9 16:01:52 [hostname] Device: /dev/sdf [SAT], 7 Currently
unreadable (pending) sectors


If I stop smartd.service, everything is fine.

My /etc/smartd.conf contains (barring comments) just one line:

DEVICESCAN -o on -H -l error -l selftest -p -s (L/../../6/03) -m
[myemail] -M exec /usr/share/doc/smartmontools/examples/Example1

(I modified the example script to make sendmail work, that's executed
far less often than every 30 min)

Basically, it does what I want, I just want the extremely annoying
terminal messages to stop...


What I tried (to no avail):

* change smartd.service to suppress StdOut and StdErr
(instead of StandardOutput=syslog, I want it to just go to the journal,
but even setting StandardOutput (and Error) to none doesn't help)

* in /etc/systemd/user.conf, under [manager] change

 #LogTarget=console
to
 LogTarget=none (or journal)

* in /etc/systemd/journald.conf, change
  #ForwardToConsole=yes
to
  ForwardToConsole=no

followed by systemctl daemon-reload (and restarting smartd of course)

* I have syslog-ng installed, changing a lot of settings there,
disabling it, etc. until I changed the systemd unit to not use syslog
for smartd at all

and of course:
* googling for hours, reading everything that seemed the least bit
related, resisting the urge to bang my head against the wall


Any ideas and hints much appreciated!

Best,
Julian

LACP: Debian/KVM attached to Cisco Nexus

[plataleas]

Hi all

We encounter issues in combination with Linux bonding (LACP) and Cisco
Nexus. I am aware that there are several posts describing this issue,
however none of them helped me really resolving the issue.

*Setup:*
- 2xCisco Nexus5000
- KVM Hosts attached with LACP to both nexus devices (bond0)
- LACP interface and VPC is UP
- KVM Bridge br9 is attached to bond0.9 (vlan 9)
- Host A is a VM on the KVM host attached to br9

*Issues*
- Downloading files from XY to  Host A is slow
- Uploading files from Host A to XY is fast
- Based on tcpdump we could see that there are retransmissions (TCP Dup
Ack, TCP Out of Order)
- On the bonding interface bond0, we see incoming packets dropped

On this blog there was done almost the same thing:
https://raymii.org/s/tutorials/KVM_with_bonding_and_VLAN_tagging_setup_on_Ubuntu_12.04.html

Did we miss something? Configuration is underneath.

Thanks and regards
plataleas





### KVM Host  
# cat /etc/debian_version
7.5
# uname -a
Linux kvm 3.2.0-4-amd64 #1 SMP Debian 3.2.57-3 x86_64 GNU/Linux

#lsmod | grep bonding
bonding79169  0

#lsmod | grep 802
8021q  23480  0


### sysctl 
|net.bridge.bridge-nf-call-ip6tables = 0
net.bridge.bridge-nf-call-iptables = 0
net.bridge.bridge-nf-call-arptables = 0

|### Network Config 
#cat /etc/network/interfaces.conf
auto bond0
iface bond0 inet static
  address 0.0.0.0
  netmask 0.0.0.0
  bond-slaves none
  bond-mode 4 # LACP
  bond-miimon 100
  bond-lacp-rate 1
auto eth4
iface eth4 inet manual
  bond-master bond0
auto eth5
iface eth5 inet manual
  bond-master bond0


auto br9
iface br9 inet static
  address
0.0.0.0 


  netmask 0.0.0.0
  bridge_ports bond0.9
  bridge_fd 9  
  bridge_hello 2
  bridge_maxage 12   
  bridge_stp off 

### Cisco Nexus Config 

#
interface Ethernet1/21
  switchport mode trunk
  channel-group 4 mode active  # Active = LACP

# show run int po4
interface port-channel4
  switchport mode trunk
  vpc 4


# brctl show | grep br9
br98000.90e2b25b8b18nobond0.9

# cat /proc/net/bonding/bond0
Ethernet Channel Bonding Driver: v3.7.1 (April 27, 2011)

Bonding Mode: IEEE 802.3ad Dynamic link aggregation
Transmit Hash Policy: layer2 (0)
MII Status: up
MII Polling Interval (ms): 100
Up Delay (ms): 0
Down Delay (ms): 0

802.3ad info
LACP rate: fast
Min links: 0
Aggregator selection policy (ad_select): stable
Active Aggregator Info:
Aggregator ID: 2
Number of ports: 2
Actor Key: 33
Partner Key: 32773
Partner Mac Address: 00:23:04:ee:be:01

Slave Interface: eth4
MII Status: up
Speed: 1 Mbps
Duplex: full
Link Failure Count: 0
Permanent HW addr: 90:e2:ba:5b:8b:88
Aggregator ID: 2
Slave queue ID: 0

Slave Interface: eth5
MII Status: up
Speed: 1 Mbps
Duplex: full
Link Failure Count: 0
Permanent HW addr: 90:e2:ba:5b:8b:89
Aggregator ID: 2
Slave queue ID: 0

Re: Hp Proliant 460c drivers

[Maykel Franco]

El día 9 de mayo de 2017, 17:10, Erick Ocrospoma
 escribió:
> Hola,
>
> En mi caso fue una mala configuracion del VirtualConnect (cosa que escapa el
> SO).
>
> Lo que si te puedo aconsejar es que escales el tema con HPE, es probable que
> se deba a un tema de Hardware (me ha pasado pero ya con otros modelos).
> No estoy seguro si Debian entra dentro de sus OS soportados (RHEL y SLES lo
> son), ya que al abrir un caso con ellos siempre te piden un sosreport (lo
> sacas por cli), y un log generado por el mismo blade (a traves del web
> interface del iLO). Este ultimo es el que les permite a ellos si hay algun
> warning o error a nivel de hardware.
>
> Y si, es bastante probable que el tema vaya por ahi, siempre te topas (y me
> he topado) con algun problemilla con los HP proliant.
>
>
> Saludos.
>
> 2017-05-09 7:38 GMT-05:00 Maykel Franco :
>>
>> 2013-10-22 16:44 GMT+02:00 Camaleón :
>> >
>> > El Tue, 22 Oct 2013 16:31:10 +0200, celtictux . escribió:
>> >
>> > > Prueba a ver, espero esto te sirva:
>> > >
>> > > http://www.emulex.com/downloads/emulex/drivers/linux/debian/drivers/
>> > >
>> > >
>> > > http://www-dl.emulex.com/support/elx/rt960/b12/docs/linux/linux_manual_elx.pdf
>> >
>> > ¿Emulex?
>> >
>> > Hum... busquemos:
>> >
>> > sm01@stt008:~$ locate emulex
>> > /lib/modules/3.2.0-4-amd64/kernel/drivers/net/ethernet/emulex
>> > /lib/modules/3.2.0-4-amd64/kernel/drivers/net/ethernet/emulex/benet
>> >
>> > /lib/modules/3.2.0-4-amd64/kernel/drivers/net/ethernet/emulex/benet/be2net.ko
>> >
>> > root@stt008:~# modinfo
>> > /lib/modules/3.2.0-4-amd64/kernel/drivers/net/ethernet/emulex/benet/be2net.ko
>> > filename:
>> > /lib/modules/3.2.0-4-amd64/kernel/drivers/net/ethernet/emulex/benet/be2net.ko
>> > license:GPL
>> > author: ServerEngines Corporation
>> > description:ServerEngines BladeEngine 10Gbps NIC Driver 4.2.220u
>> > version:4.2.220u
>> > srcversion: 37BCB0144B22E0B05771D68
>> > alias:  pci:v10DFd0720sv*sd*bc*sc*i*
>> > alias:  pci:v10DFdE228sv*sd*bc*sc*i*
>> > alias:  pci:v10DFdE220sv*sd*bc*sc*i*
>> > alias:  pci:v19A2d0710sv*sd*bc*sc*i*
>> > alias:  pci:v19A2d0700sv*sd*bc*sc*i*
>> > alias:  pci:v19A2d0221sv*sd*bc*sc*i*
>> > alias:  pci:v19A2d0211sv*sd*bc*sc*i*
>> > depends:
>> > intree: Y
>> > vermagic:   3.2.0-4-amd64 SMP mod_unload modversions
>> > parm:   num_vfs:Number of PCI VFs to initialize (uint)
>> > parm:   rx_frag_size:Size of a fragment that holds rcvd data.
>> > (ushort)
>> >
>> > Pues hay un módulo pero quizá no le sirva para su modelo de adaptador o
>> > tenga algún bug :-?
>> >
>> > Saludos,
>> >
>> > --
>> > Camaleón
>> >
>> >
>> > --
>> > To UNSUBSCRIBE, email to debian-user-spanish-requ...@lists.debian.org
>> > with a subject of "unsubscribe". Trouble? Contact
>> > listmas...@lists.debian.org
>> > Archive: http://lists.debian.org/pan.2013.10.22.14.45...@gmail.com
>> >
>>
>>
>> Buenas Erick, solucionastes el problema? tengo el mismo problema pero
>> me pasa únicamente en uno de los 16 nodos del blade, solo en uno, en
>> los demás funciona correctamtente. He probado actualizar el firmware
>> con el SPP de HP 2017 pero me sigue pasando lo mismo. Pierde paquetes.
>>
>
>
>
> --
>
>
> Erick.


Eso haré, gracias Erick.

Re: NVMe SSD and discard mount option

[David Guyot]

I also thought about that at first, but asked to my server provider, and
they quoted Intel docs: "Be sure to turn off the discard option when
making your Linux filesystem. You want to allow the SSD manage blocks
and its activity between the NVM (non-volatile memory) and host with
more advanced and consistent approaches in the SSD Controller.Core
Filesystems:•ext4– the default extended option is not to discard blocks
at filesystem make time, retain this, and do not add the “discard”
extended option as some information will tell you to do"

If I understand correctly, the SSD already manages discarding the old
blocks, probably using some NVMe magic. Is my interpretation OK?

Le mardi 09 mai 2017 à 11:07 -0400, Dan Ritter a écrit :
> On Tue, May 09, 2017 at 11:02:46AM -0400, Dan Ritter wrote:
> > On Tue, May 09, 2017 at 03:35:04PM +0200, David Guyot wrote:
> > > Hello, there.
> > > 
> > > I recently loaned a server with NVMe SSD and saw, during my research on
> > > the relevance of the discard mount option for them, that its use is
> > > discouraged for NVMe SSDs. Why? Does NVMe SSDs not need trimming? Is it
> > > integrated in the NVMe driver for Linux?
> > 
> > Intel, among other NVMe SSD manufacturers, recommends using
> > fstrim periodically rather than enabling continuous trimming
> > with the discard option.
> > 
> > They don't specifically state why, but I will hazard a guess
> > that performance is impacted during a trim, and doing so for
> > a short period once a day or once a week is more useful than
> > decreasing performance all the time.
> 
> Evidence from Ted Ts'o:
> 
> https://forums.freebsd.org/threads/56951/#post-328912
> 
> which boils down to:
> 
> A) yes, there's a performance impact
> B) the systems which listen to TRIM commands do better on large
>allocations than on small, so batching them up with fstrim
>called by cron is preferred.
> 
> -dsr-

-- 
David Guyot
Administrateur système, réseau et télécom / Sysadmin
Europe Camions Interactive / Stockway
Moulin Collot
F-88500 Ambacourt
03 29 30 47 85


signature.asc
Description: This is a digitally signed message part

Re: Fwd: off topic - ransomware to get password email id

[Guimarães Faria Corcete DUTRA , Leandro]

2017-05-09 11:12 GMT-03:00 Marcos Carraro :
> https://www.m3corp.com.br/2016/04/05/ransomware-chega-ao-linux-na-linha-de-comando/

Não existe sistema à prova de idiotas.  Mas há sistemas mais e menos
vulneráveis, até pela cultura que os cerca.


-- 
skype:leandro.gfc.dutra?chat  Yahoo!: ymsgr:sendIM?lgcdutra
+55 (61) 3546 7191  gTalk: xmpp:leand...@jabber.org
+55 (61) 9302 2691ICQ/AIM: aim:GoIM?screenname=61287803
BRAZIL GMT−3  MSN: msnim:chat?contact=lean...@dutra.fastmail.fm

Re: Hp Proliant 460c drivers

[Erick Ocrospoma]

Hola,

En mi caso fue una mala configuracion del VirtualConnect (cosa que escapa
el SO).

Lo que si te puedo aconsejar es que escales el tema con HPE, es probable
que se deba a un tema de Hardware (me ha pasado pero ya con otros modelos).
No estoy seguro si Debian entra dentro de sus OS soportados (RHEL y SLES lo
son), ya que al abrir un caso con ellos siempre te piden un sosreport (lo
sacas por cli), y un log generado por el mismo blade (a traves del web
interface del iLO). Este ultimo es el que les permite a ellos si hay algun
warning o error a nivel de hardware.

Y si, es bastante probable que el tema vaya por ahi, siempre te topas (y me
he topado) con algun problemilla con los HP proliant.


Saludos.

2017-05-09 7:38 GMT-05:00 Maykel Franco :

> 2013-10-22 16:44 GMT+02:00 Camaleón :
> >
> > El Tue, 22 Oct 2013 16:31:10 +0200, celtictux . escribió:
> >
> > > Prueba a ver, espero esto te sirva:
> > >
> > > http://www.emulex.com/downloads/emulex/drivers/linux/debian/drivers/
> > >
> > > http://www-dl.emulex.com/support/elx/rt960/b12/docs/
> linux/linux_manual_elx.pdf
> >
> > ¿Emulex?
> >
> > Hum... busquemos:
> >
> > sm01@stt008:~$ locate emulex
> > /lib/modules/3.2.0-4-amd64/kernel/drivers/net/ethernet/emulex
> > /lib/modules/3.2.0-4-amd64/kernel/drivers/net/ethernet/emulex/benet
> > /lib/modules/3.2.0-4-amd64/kernel/drivers/net/ethernet/
> emulex/benet/be2net.ko
> >
> > root@stt008:~# modinfo /lib/modules/3.2.0-4-amd64/
> kernel/drivers/net/ethernet/emulex/benet/be2net.ko
> > filename:   /lib/modules/3.2.0-4-amd64/kernel/drivers/net/ethernet/
> emulex/benet/be2net.ko
> > license:GPL
> > author: ServerEngines Corporation
> > description:ServerEngines BladeEngine 10Gbps NIC Driver 4.2.220u
> > version:4.2.220u
> > srcversion: 37BCB0144B22E0B05771D68
> > alias:  pci:v10DFd0720sv*sd*bc*sc*i*
> > alias:  pci:v10DFdE228sv*sd*bc*sc*i*
> > alias:  pci:v10DFdE220sv*sd*bc*sc*i*
> > alias:  pci:v19A2d0710sv*sd*bc*sc*i*
> > alias:  pci:v19A2d0700sv*sd*bc*sc*i*
> > alias:  pci:v19A2d0221sv*sd*bc*sc*i*
> > alias:  pci:v19A2d0211sv*sd*bc*sc*i*
> > depends:
> > intree: Y
> > vermagic:   3.2.0-4-amd64 SMP mod_unload modversions
> > parm:   num_vfs:Number of PCI VFs to initialize (uint)
> > parm:   rx_frag_size:Size of a fragment that holds rcvd data.
> (ushort)
> >
> > Pues hay un módulo pero quizá no le sirva para su modelo de adaptador o
> > tenga algún bug :-?
> >
> > Saludos,
> >
> > --
> > Camaleón
> >
> >
> > --
> > To UNSUBSCRIBE, email to debian-user-spanish-requ...@lists.debian.org
> > with a subject of "unsubscribe". Trouble? Contact
> listmas...@lists.debian.org
> > Archive: http://lists.debian.org/pan.2013.10.22.14.45...@gmail.com
> >
>
>
> Buenas Erick, solucionastes el problema? tengo el mismo problema pero
> me pasa únicamente en uno de los 16 nodos del blade, solo en uno, en
> los demás funciona correctamtente. He probado actualizar el firmware
> con el SPP de HP 2017 pero me sigue pasando lo mismo. Pierde paquetes.
>
>


-- 


Erick.

Re: NVMe SSD and discard mount option

[Dan Ritter]

On Tue, May 09, 2017 at 11:02:46AM -0400, Dan Ritter wrote:
> On Tue, May 09, 2017 at 03:35:04PM +0200, David Guyot wrote:
> > Hello, there.
> > 
> > I recently loaned a server with NVMe SSD and saw, during my research on
> > the relevance of the discard mount option for them, that its use is
> > discouraged for NVMe SSDs. Why? Does NVMe SSDs not need trimming? Is it
> > integrated in the NVMe driver for Linux?
> 
> Intel, among other NVMe SSD manufacturers, recommends using
> fstrim periodically rather than enabling continuous trimming
> with the discard option.
> 
> They don't specifically state why, but I will hazard a guess
> that performance is impacted during a trim, and doing so for
> a short period once a day or once a week is more useful than
> decreasing performance all the time.

Evidence from Ted Ts'o:

https://forums.freebsd.org/threads/56951/#post-328912

which boils down to:

A) yes, there's a performance impact
B) the systems which listen to TRIM commands do better on large
   allocations than on small, so batching them up with fstrim
   called by cron is preferred.

-dsr-

Re: NVMe SSD and discard mount option

[Dan Ritter]

On Tue, May 09, 2017 at 03:35:04PM +0200, David Guyot wrote:
> Hello, there.
> 
> I recently loaned a server with NVMe SSD and saw, during my research on
> the relevance of the discard mount option for them, that its use is
> discouraged for NVMe SSDs. Why? Does NVMe SSDs not need trimming? Is it
> integrated in the NVMe driver for Linux?

Intel, among other NVMe SSD manufacturers, recommends using
fstrim periodically rather than enabling continuous trimming
with the discard option.

They don't specifically state why, but I will hazard a guess
that performance is impacted during a trim, and doing so for
a short period once a day or once a week is more useful than
decreasing performance all the time.

-dsr-

Debian contributor Register of Interests (was Re: If Linux Is About Choice, Why Then ...)

[Jonathan Dowland]

On Thu, Apr 20, 2017 at 10:12:47AM +0100, Jonathan Dowland wrote:
> if people felt this was a concern, perhaps a process for voluntarily
> "declaring an interest" could be worked out.
> 
> I should stress that I have no concerns about anyone I know, but in the
> interests of transparency I would support the discussion and development of
> the above. But that ball should probably start rolling on the debian-project
> list.

Just to report I've followed up on this, and created this page

https://wiki.debian.org/RegisterOfInterests

and notified -project.


-- 
⢀⣴⠾⠻⢶⣦⠀ 
⣾⠁⢠⠒⠀⣿⡁ Jonathan Dowland
⢿⡄⠘⠷⠚⠋⠀ https://jmtd.net
⠈⠳⣄ Please do not CC me, I am subscribed to the list.

Re: Fwd: off topic - ransomware to get password email id

[Marcos Carraro]

https://www.m3corp.com.br/2016/04/05/ransomware-chega-ao-linux-na-linha-de-comando/

*--*
Att
Marcos Carraro 


Em 9 de maio de 2017 10:49, Leandro Guimarães Faria Corcete DUTRA <
l...@dutras.org> escreveu:

> Le mar. 9 mai 2017 à 8:49, Renan Arantes  a
> écrit :
>
>> quais as formas de evitar a contaminação que os amigos estão utilizando?
>> vi recomendações do kaspersky antivirus junto com anti cryptor da kaspersky
>>
>
> Faça como a Google, fuja do MS Windows.  Use ClamAV ou derivados, mantenha
> cópias de segurança, e nunca mais traga problemas de MS Windows para esta
> lista.
>
>
>
> --
> skype:leandro.gfc.dutra?chat  Yahoo!: ymsgr:sendIM?lgcdutra
> +55 (61)  3546 7191 gTalk: xmpp:leand...@jabber.org
> +55 (61) 99302 2691   ICQ/AIM: aim:GoIM?screenname=61287803
> BRAZIL GMT−3  MSN: msnim:chat?contact=lean...@dutra.fastmail.fm
>
>
>

Re: Fwd: off topic - ransomware to get password email id

[Leandro Guimarães Faria Corcete DUTRA]

Le mar. 9 mai 2017 à 8:49, Renan Arantes  a 
écrit :
quais as formas de evitar a contaminação que os amigos estão 
utilizando? vi recomendações do kaspersky antivirus junto com anti 
cryptor da kaspersky


Faça como a Google, fuja do MS Windows.  Use ClamAV ou derivados, 
mantenha cópias de segurança, e nunca mais traga problemas de MS 
Windows para esta lista.




--
skype:leandro.gfc.dutra?chat  Yahoo!: ymsgr:sendIM?lgcdutra
+55 (61)  3546 7191 gTalk: xmpp:leand...@jabber.org
+55 (61) 99302 2691   ICQ/AIM: aim:GoIM?screenname=61287803
BRAZIL GMT−3  MSN: msnim:chat?contact=lean...@dutra.fastmail.fm

NVMe SSD and discard mount option

[David Guyot]

Hello, there.

I recently loaned a server with NVMe SSD and saw, during my research on
the relevance of the discard mount option for them, that its use is
discouraged for NVMe SSDs. Why? Does NVMe SSDs not need trimming? Is it
integrated in the NVMe driver for Linux?

Awaiting your answers,

Regards.
-- 
David Guyot
Administrateur système, réseau et télécom / Sysadmin
Europe Camions Interactive / Stockway
Moulin Collot
F-88500 Ambacourt
03 29 30 47 85


signature.asc
Description: This is a digitally signed message part

Re: Live Fille System Backup

[Curt]

On 2017-05-09, Greg Wooledge  wrote:
> On Tue, May 09, 2017 at 12:03:14PM +, Curt wrote:
>> Because someone mentioned Btrfs and its backup "magic," I'm looking at
>> the wiki, which says (amongst other things):
>> 
>> https://btrfs.wiki.kernel.org/index.php/Incremental_Backup
>> 
>>  Instant, Atomic COW Snapshots
>>   Since the snapshots are atomic, when a snapshot is restored it appears to
>>   applications as if a power loss had occurred (and the filesystem has gone 
>> back
>>   to an earlier state). Thus it is possible to backup databases without 
>> stopping
>>   them beforehand. 
>
> So, basically the same as LVM snapshots, which are independent of the
> type of file system that sits on the LVM logical volume.
>
> But btrfs is an edge with more blood on it, so people are naturally
> drawn to it.  It's also more complicated.  So it's *got* to be better!!!
>

Put me down for uncomplicated. I'll probably just stick with rsyncing my
home directory (which is all I'm interested in backing up) to external
usb-attached volumes and be done with it.

Re: Question about Increasing the size of the Primary Partition

[Martin McCormick]

Felix Miata  writes:
> If the original is EXT#, then resize2fs following forced fsck is all it 
> takes,
> no mkfs.

Great news, it's ext4 done last Saturday.

I had a SSD fail so built the desired on an old 10 GB
Maxtor drive and when it worked, i used dd to save the image,
knowing that it could be resized up anyway.

> 
> Using dd might have been a bad idea, depending on the age of the old 
> disk. If
> the old disk was partitioned long enough ago, it unlikely conformed to the
> technique preferred for disks with 4k internal sectors. If so, doing as 
> you did
> almost certainly will cause a performance penalty with the new.

One thing I did do that turned out to be a bad idea was
to use dd with the minimum of parameters. The first time, the
image took over 24 hours to copy. I needed to make some more
changes so I blew another image but this time added bs=500 so
that it transferred 5-million bytes at a time and the image took
about ten minutes.

If I had been using two separate disk controllers, the
image might have taken much less time but you fight the war with
the hardware you have rather than what you wish you had.

Thank you and all others who responded. Also I totally forgot
about resize2fs which is what reformats any new space in the file
system. It all worked like it should.

Martin WB5AGZ

Fwd: Extraños conflictos en debian [CERRADO]

[Miguel Matos]

-- Mensaje reenviado --
De:  
Fecha: 19 de abril de 2017, 18:58
Asunto: Re: Extraños conflictos en debian
Para: Miguel Matos 


El firefox tambien me da ese problema cuando abro al menos 2  o mas
pestañas aun cuando uso un entorno ligero como lo es lxde y lo que yo
hice fue cambiar al chromium me va bastante bien!

El abr 19, 2017 6:15 PM, Miguel Matos  escribió:
>
> Saludos a la lista, hacía mucho que no escribía, porque no me habían
> surgido percance alguno... hasta el día de hoy... llevo como 4 días
> con este problemita: el ordenador va mucho más lento que de costumbre.
> Lo achacaría al firefox, porque veo la televisión y mientras, visitio
> otros sitios web, pero no puedo abrir más de 4 pestañas. Pero ahora,
> todo el ordenador va lento. Probé con el comando top, y me dice:
>   588 root  20   0  139116  41428  30128 S 49,7  2,0  38:44.47
> /usr/lib/xorg/Xorg :0 -seat seat0 -auth /var/run/lightdm/+
> 14538   miguel  20   0  660636  70920  32624 S 19,4  3,5  15:49.12
> /opt/firefox/plugin-container /usr/lib/browser-plugin-fre+
> 5493   miguel  20   0 2024540 648968  84068 R  8,2 31,9  19:59.62
> /opt/firefox/firefox --sm-client-id 25904c7da-cda1-43ec-b+
> 12664   miguel  20   0   90504  19368  14248 S  8,2  1,0   6:58.26
>  xfce4-taskmanager
> Entre el navegador y el primero comando se usan más del 95% del
> procesador, y me preocupa. Lleva así desde el domingo. Eso me lleva a
> otra cosa: quisiera poder poner el xfce desde cero, para tomarme el
> tiempo para instalar la vista mejor, ¿qué podría hacer para eso sin
> instalarme otro entonro de escritorio? Y en caso de eliminar el xfce,
> quedaría con la vista en la terminal tty(x)
>
> --
>
> Ayuda para hacer preguntas inteligentes: http://is.gd/NJIwRz
>

Voy a finalizar esto porque ya conseguir avanzar un poco. Quité el
cairo-dock, eliminé su referencia del repositorio del source.list, y
también pasé del xfce a lxde. Descubrí que se puede usar docky, le
estoy dando una oportunidad y por ahora se ve realmente bien. Lo otro
es esto: el firefox usa el 90% del tiempo el 100% del procesador, ahí
ya no hay mucho que hacer (salvo si no veo la tele desde ahí, hasta
que exista una solución 100% en html5 con webm u otra de vídeo open
source y pongan RIP al flash player). Por ahora, ¡CASO CERRADO!
-- 

Ayuda para hacer preguntas inteligentes: http://is.gd/NJIwRz

Re: Fwd: off topic - ransomware to get password email id

[Linux - Junior Polegato]

Em 09-05-2017 09:10, Leandro Pereira escreveu:
Acho que a melhor forma de evitar é primeiramente a educação. Existe 
uma cartilha de segurança do nic.br  voltada para 
usuários, explica de forma bem didática como identificar as ameaças. O 
resto é antimalware, antivirus, antiransomware e backup caso nenhuma 
das anteriores funcione.


Olá!

Convença seus clientes (internos ou externos) a usarem Linux, 
de preferência Debian, e mostre que terá mais segurança, economia, 
eficiência, aproveitamento de equipamento por mais tempo, menor carga na 
rede, maior controle, dentre outros. Se algum software depender de 
Windows, utilize o mesmo somente para este software.


--

[]'s

Junior Polegato

Re: Hp Proliant 460c drivers

[Maykel Franco]

2013-10-22 16:44 GMT+02:00 Camaleón :
>
> El Tue, 22 Oct 2013 16:31:10 +0200, celtictux . escribió:
>
> > Prueba a ver, espero esto te sirva:
> >
> > http://www.emulex.com/downloads/emulex/drivers/linux/debian/drivers/
> >
> > http://www-dl.emulex.com/support/elx/rt960/b12/docs/linux/linux_manual_elx.pdf
>
> ¿Emulex?
>
> Hum... busquemos:
>
> sm01@stt008:~$ locate emulex
> /lib/modules/3.2.0-4-amd64/kernel/drivers/net/ethernet/emulex
> /lib/modules/3.2.0-4-amd64/kernel/drivers/net/ethernet/emulex/benet
> /lib/modules/3.2.0-4-amd64/kernel/drivers/net/ethernet/emulex/benet/be2net.ko
>
> root@stt008:~# modinfo 
> /lib/modules/3.2.0-4-amd64/kernel/drivers/net/ethernet/emulex/benet/be2net.ko
> filename:   
> /lib/modules/3.2.0-4-amd64/kernel/drivers/net/ethernet/emulex/benet/be2net.ko
> license:GPL
> author: ServerEngines Corporation
> description:ServerEngines BladeEngine 10Gbps NIC Driver 4.2.220u
> version:4.2.220u
> srcversion: 37BCB0144B22E0B05771D68
> alias:  pci:v10DFd0720sv*sd*bc*sc*i*
> alias:  pci:v10DFdE228sv*sd*bc*sc*i*
> alias:  pci:v10DFdE220sv*sd*bc*sc*i*
> alias:  pci:v19A2d0710sv*sd*bc*sc*i*
> alias:  pci:v19A2d0700sv*sd*bc*sc*i*
> alias:  pci:v19A2d0221sv*sd*bc*sc*i*
> alias:  pci:v19A2d0211sv*sd*bc*sc*i*
> depends:
> intree: Y
> vermagic:   3.2.0-4-amd64 SMP mod_unload modversions
> parm:   num_vfs:Number of PCI VFs to initialize (uint)
> parm:   rx_frag_size:Size of a fragment that holds rcvd data. (ushort)
>
> Pues hay un módulo pero quizá no le sirva para su modelo de adaptador o
> tenga algún bug :-?
>
> Saludos,
>
> --
> Camaleón
>
>
> --
> To UNSUBSCRIBE, email to debian-user-spanish-requ...@lists.debian.org
> with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
> Archive: http://lists.debian.org/pan.2013.10.22.14.45...@gmail.com
>


Buenas Erick, solucionastes el problema? tengo el mismo problema pero
me pasa únicamente en uno de los 16 nodos del blade, solo en uno, en
los demás funciona correctamtente. He probado actualizar el firmware
con el SPP de HP 2017 pero me sigue pasando lo mismo. Pierde paquetes.

Re: UEFI + Raid

[Steve McIntyre]

deb...@net153.net wrote:
>Hi,
>
>I have installed Debian Stretch on my first system using UEFI. I used a 
>two disk Raid 1 + LVM configured during install time to mount / on 
>(among other things).
>
>But now I need to figure out how to add redundancy to the software raid 
>1 since I believe boot entries are only added to one disk during 
>installation time?  According to 
>https://wiki.debian.org/UEFI#Missing_features there doesn't seem to be 
>much options. Is my only option to copy the FAT32 EFI system partition 
>from the first disk to the second disk and then use efibootmgr to add it 
>(the second disk) as a boot entry? And will any subsequent kernel or 
>grub updates affect the system partition and thus require another 
>copy/sync to the second disk?

I'm afraid there's no automation for this yet. I'm hoping to find some
time to work on adding this during the Buster cycle, and the Grub
developers are apparently interested too.

For now, you'll need to do this by hand I'm afraid.

-- 
Steve McIntyre, Cambridge, UK.st...@einval.com
"I can't ever sleep on planes ... call it irrational if you like, but I'm
 afraid I'll miss my stop" -- Vivek Dasmohapatra

Re: Useable guide to first invocation of mariadb - where?

[Richard Owlett]

On 05/08/2017 12:43 PM, Ric Moore wrote:

On 05/08/2017 11:06 AM, Richard Owlett wrote:


I then did
  apt-get install mariadb-client mariadb-server

As user I (reasonably) see:
richard@stretch-2nd:~$ mariadb
ERROR 1698 (28000): Access denied for user 'richard'@'localhost'

As root I see:
root@stretch-2nd:/home/richard# mariadb
Welcome to the MariaDB monitor.  Commands end with ; or \g.
Your MariaDB connection id is 10
Server version: 10.1.22-MariaDB- Debian 9.0


I have no experience with this database, but you may wish to check
/etc/group and see if there is a mariadb group to add your user to.
When trouble shooting with a shotgun, you're bound to get lucky. Ric



But there should be fewer side effects with a targeted approach ;}
There is no "mariadb group", but there is a "mysql group" {reasonable as 
mariadb is supposed to be a drop-in replacement for mysql}.


I'll not attempt a brute force "solution" by editing that file. Too much 
unknown/unknowable collateral damage possible.


The pages Joe pointed me to gives the lay of the land. If I had seen 
them before my first attempt months ago, I probably not be in current 
situation. They don't directly give troubleshooting guidance, it was not 
the intended purpose.

Re: Live Fille System Backup

[tomas]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On Tue, May 09, 2017 at 08:08:48AM -0400, Greg Wooledge wrote:

[...]

> So, basically the same as LVM snapshots, which are independent of the
> type of file system that sits on the LVM logical volume.

To be fair, btrfs knows about the file system, whereas LVM does COW
on the underlying "dumb" block device. Thus btrfs is capable of
squeezing quite a bit out in terms of better performance/lower disk
usage.

For some workloads it matters, for others not (the use case I posited,
freezing a snapshot while rsyncing, might tend to fall on the "not"
side *if* you are a bit careful and *if* your write load isn't insane).

> But btrfs is an edge with more blood on it, so people are naturally
> drawn to it.  It's also more complicated.  So it's *got* to be better!!!
> 
> > I don't know what an atomic cow is (maybe some poor bovine living near
> > Chernobyl) but it sounds interesting.
> 
> C.O.W. in this context is usually "copy on write".
> 
> Atomic means that it's like a database transaction: the entire operation
> either succeeds, or fails.  There's no half-way state.
> 
> > I wonder if Btrfs has any notable drawbacks as a file system.
> 
> Some of the blood on btrfs is starting to dry, so the blood-seekers
> are all flocking to ZFS now.  It's got a whole new TIER of buzzwords
> and complexity!  It's GOT to be the best!!!

:-)

ISTR Android has btrfs as default these days? (careful, I didn't check,
and my brain has one fake news source embedded somewhere I couldn't
yet stomp out. Might be wrong).

cheers
- -- t
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.12 (GNU/Linux)

iEYEARECAAYFAlkRtdAACgkQBcgs9XrR2kZ7fgCcD/B1+IavQMGeEJ51Y4L6uoPe
WaMAnR/seOj+evs/hk7Wb3bJ/TtYBUP2
=3Jdh
-END PGP SIGNATURE-

Re: Live Fille System Backup

[tomas]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On Tue, May 09, 2017 at 12:03:14PM +, Curt wrote:

[...]

> Because someone mentioned Btrfs and its backup "magic," I'm looking at
> the wiki, which says (amongst other things):
> 
> https://btrfs.wiki.kernel.org/index.php/Incremental_Backup
> 
>  Instant, Atomic COW Snapshots
>   Since the snapshots are atomic, when a snapshot is restored it appears to
>   applications as if a power loss had occurred (and the filesystem has gone 
> back
>   to an earlier state). Thus it is possible to backup databases without 
> stopping
>   them beforehand. 
> 
> I don't know what an atomic cow is (maybe some poor bovine living near
> Chernobyl) but it sounds interesting.

COW stands for "copy-on-write". The idea is that you don't overwrite whatever
you are trying to change, but make a copy first, munge that and when you are
done, you swap old and new.

If that "whatever" happens to be a virtual memory page, there's support
from the operating system kernel, supported by the virtual memory hardware
(the trick is typically that the page is, from the outset, marked as
"read only", and when something tries to write it, a fault is triggered;
this is all typically hardware supported; then the fault handler is
called, which duplicates the page and routes the writes to the fresh
copy).

The "atomic" part is that things are set up carefully in a way that
at the end, regardless of when you shot the thing in the head, you
see either the whole change or nothing. Standard fare for file systems
and databases these days.

(Far from trivial, though. One of the standard tricks databases, ZFS
and btrfs use, afaik, is they have their backbone as a B-tree. Whenever
something has to be updated, it typically runs from one node (perhaps
a leaf) all the way back to the root. This whole path is constructed
by copying all the touched nodes (when the thing dies here nothing
has changed!) and at the end, replacing the root node in one (hopefully
atomic) operation. After that, the change is permanent.

COW has to be one of the nice acronyms, though.

> I wonder if Btrfs has any notable drawbacks as a file system.

It's pretty young, as file systems go. And ext4 is so rock-solid and
trusted that btrfs doesn't get the broad exposure it'd need for
trust to be built. Sysadmin is a conservative and fainthearted
bunch :-)

> BTW, I learned (by way of your least favorite search engine) that the inventor
> of the Monoyer chart (Ferdinand Monoyer) embedded his name (and 
> occupation--DM,
> docteur en médecine) in the chart (beginning on the penultimate line, the last
> and first letters read vertically upwards).
> 
> These French are clever devils.

They are. And they are friendly and know what a good meal is.
Looking forward to my next vacation there :-D

regards
- -- t
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.12 (GNU/Linux)

iEYEARECAAYFAlkRtHMACgkQBcgs9XrR2ka7GgCdE3ZRJdV07rc1hMKTZG6eUJoP
4oQAoIHoS9LdWsTTZtDJuwOFsKvZJGas
=Z9QB
-END PGP SIGNATURE-

Re: Fwd: off topic - ransomware to get password email id

[Leandro Pereira]

Acho que a melhor forma de evitar é primeiramente a educação. Existe uma
cartilha de segurança do nic.br voltada para usuários, explica de forma bem
didática como identificar as ameaças. O resto é antimalware, antivirus,
antiransomware e backup caso nenhuma das anteriores funcione.


Leandro L. Pereira

Em 9 de maio de 2017 08:49, Renan Arantes 
escreveu:

> quais as formas de evitar a contaminação que os amigos estão utilizando?
> vi recomendações do kaspersky antivirus junto com anti cryptor da kaspersky
>
> Em 09-05-2017 07:44, Leandro Pereira escreveu:
>
> Dependendo do caso é possível recuperar. Tem que saber o tipo exato de
> ransomware que te infectou e pesquisar se existe um decryptor, pois já
> existem vários.
>
>
> Leandro L. Pereira
>
> Em 9 de maio de 2017 08:30, Ricardo Ramos 
> escreveu:
>
>> Bom dia,
>>
>> Infelizmente também tive uma máquina que foi alvo deste tipo de malware,
>> no entanto depois de infectado tentei alguns tutoriais pra tentar recuperar
>> os dados, mas nenhum deu certo, a solução foi reinstalar o S.O.
>>
>> Um dos tutoriais recomendava instalar o MalwareBytes, mas uma vez
>> infectado e difícil...
>>
>> Talvez alguém aqui tenha alguma solução que funcione.
>>
>> A Ter, 9 de mai de 2017, 12:11, Renan Arantes 
>> escreveu:
>>
>>> opa bom dia, estava meio corrido pra levantar os serviços que foram
>>> prejudicados, por isso a falta de descrição do problema ocorrido, mas
>>> vamos lá:
>>>
>>> Tivemos uma maquina com Windows 7 Pro infectada com um Ransomware que
>>> transforma todos os arquivos de usuário em um RAR auto extração com
>>> extensão .exe, todos os nomes dos arquivos muda para ex: planilha.xls ->
>>> planilha.xls(!! to get password email id 111 to
>>> brbrco...@gmail.com!!).exe, ao dar um duplo clique no arquivo ele pede a
>>> senha para iniciar a extração, pelo que eu li em fóruns é impossível
>>> quebrar essa senha, teve casos de empresas que perderam anos de
>>> informação por falta de backup e outras que checaram a pagar para ter de
>>> volta os seus dados, alguém na lista já passou por esse problema ? no
>>> meu caso, não tinha nada de importante que foi perdido, somente o
>>> trabalho de configurar novamente os serviços que o PC afetado operava.
>>>
>>>
>>> Em 08-05-2017 16:51, Daniel Lenharo de Souza escreveu:
>>> > On 05/08/2017 05:19 PM, Renan Arantes wrote:
>>> >> boa tarde, alguem já passou por esse problema ?
>>> >>
>>> > Uma boa prática é descrever o problema para que as pessoas possam saber
>>> > qual é.
>>> >
>>> > []'s
>>> >
>>>
>>> --
>>
>> Ricardo Ramos
>> Tel: +244 927 953 770 <+244%20927%20953%20770>
>> Email: cesar.ricki...@gmail.com
>> Website: www.rickinho.com
>> Técnico de Informática
>>
>
>
>
>

Re: Live Fille System Backup

[Greg Wooledge]

On Tue, May 09, 2017 at 12:03:14PM +, Curt wrote:
> Because someone mentioned Btrfs and its backup "magic," I'm looking at
> the wiki, which says (amongst other things):
> 
> https://btrfs.wiki.kernel.org/index.php/Incremental_Backup
> 
>  Instant, Atomic COW Snapshots
>   Since the snapshots are atomic, when a snapshot is restored it appears to
>   applications as if a power loss had occurred (and the filesystem has gone 
> back
>   to an earlier state). Thus it is possible to backup databases without 
> stopping
>   them beforehand. 

So, basically the same as LVM snapshots, which are independent of the
type of file system that sits on the LVM logical volume.

But btrfs is an edge with more blood on it, so people are naturally
drawn to it.  It's also more complicated.  So it's *got* to be better!!!

> I don't know what an atomic cow is (maybe some poor bovine living near
> Chernobyl) but it sounds interesting.

C.O.W. in this context is usually "copy on write".

Atomic means that it's like a database transaction: the entire operation
either succeeds, or fails.  There's no half-way state.

> I wonder if Btrfs has any notable drawbacks as a file system.

Some of the blood on btrfs is starting to dry, so the blood-seekers
are all flocking to ZFS now.  It's got a whole new TIER of buzzwords
and complexity!  It's GOT to be the best!!!

Re: Live Fille System Backup

[Curt]

On 2017-05-09, to...@tuxteam.de  wrote:
>
> On Mon, May 08, 2017 at 04:03:54PM -0700, Sergei G wrote:
>> And if you think application consistency is nothing to worry about know
>> that Git on Ext4 has failed to recover.
>> 
>> My current conclusion:
>> 
>> 1. If I want application consistency I have to take down any application
>> that has an internal database or backup those applications prior to FS
>> backup.
>
> That depends. There are applications designed with (on-disk) consistency
> in mind (I mention PostgreSQL, I start sounding like a broken record).
>
> But whether you have to "take down" the application or just "alert" it
> for the time the snapshot takes, without its cooperation you either risk
> inconsistent state or bad performance (there are cases where apps chose
> number two, because they aren't designed for high throughput anyway).
>
> The gist is:
>
>   (a) file system magic can't "do" it alone
>   (b) most of the time, a naive "snapshot" with rsync will do
>   (b') you alone can decide, based on your apps & requirements,
>   whether the above "most of the time" works for you
>
> With snapshotting file systems (be it native or assisted) you get just
> faster snapshots, i.e. you mitigate the problem. If you want to go all
> the way, you have to get the app's cooperation, either voluntary (it's
> designed for that) or forced (shutdown)

Because someone mentioned Btrfs and its backup "magic," I'm looking at
the wiki, which says (amongst other things):

https://btrfs.wiki.kernel.org/index.php/Incremental_Backup

 Instant, Atomic COW Snapshots
  Since the snapshots are atomic, when a snapshot is restored it appears to
  applications as if a power loss had occurred (and the filesystem has gone back
  to an earlier state). Thus it is possible to backup databases without stopping
  them beforehand. 

I don't know what an atomic cow is (maybe some poor bovine living near
Chernobyl) but it sounds interesting.

I wonder if Btrfs has any notable drawbacks as a file system.

BTW, I learned (by way of your least favorite search engine) that the inventor
of the Monoyer chart (Ferdinand Monoyer) embedded his name (and occupation--DM,
docteur en médecine) in the chart (beginning on the penultimate line, the last
and first letters read vertically upwards).

These French are clever devils.

> There's no magic.
>
> cheers
> - -- tomás
>"all generalizations suck"
>
>


-- 
"It might be a vision--of a shell, of a wheelbarrow, of a fairy kingdom on the
far side of the hedge; or it might be the glory of speed; no one knew." --Mrs.
Ramsay, speculating on why her little daughter might be dashing about, in "To
the Lighthouse," by Virginia Woolf.

Re: Fwd: off topic - ransomware to get password email id

[Renan Arantes]

quais as formas de evitar a contaminação que os amigos estão utilizando? 
vi recomendações do kaspersky antivirus junto com anti cryptor da kaspersky



Em 09-05-2017 07:44, Leandro Pereira escreveu:
Dependendo do caso é possível recuperar. Tem que saber o tipo exato de 
ransomware que te infectou e pesquisar se existe um decryptor, pois já 
existem vários.



Leandro L. Pereira

Em 9 de maio de 2017 08:30, Ricardo Ramos > escreveu:


Bom dia,

Infelizmente também tive uma máquina que foi alvo deste tipo de
malware, no entanto depois de infectado tentei alguns tutoriais
pra tentar recuperar os dados, mas nenhum deu certo, a solução foi
reinstalar o S.O.

Um dos tutoriais recomendava instalar o MalwareBytes, mas uma vez
infectado e difícil...

Talvez alguém aqui tenha alguma solução que funcione.


A Ter, 9 de mai de 2017, 12:11, Renan Arantes
>
escreveu:

opa bom dia, estava meio corrido pra levantar os serviços que
foram
prejudicados, por isso a falta de descrição do problema
ocorrido, mas
vamos lá:

Tivemos uma maquina com Windows 7 Pro infectada com um
Ransomware que
transforma todos os arquivos de usuário em um RAR auto
extração com
extensão .exe, todos os nomes dos arquivos muda para ex:
planilha.xls ->
planilha.xls(!! to get password email id 111 to
brbrco...@gmail.com !!).exe, ao
dar um duplo clique no arquivo ele pede a
senha para iniciar a extração, pelo que eu li em fóruns é
impossível
quebrar essa senha, teve casos de empresas que perderam anos de
informação por falta de backup e outras que checaram a pagar
para ter de
volta os seus dados, alguém na lista já passou por esse
problema ? no
meu caso, não tinha nada de importante que foi perdido, somente o
trabalho de configurar novamente os serviços que o PC afetado
operava.


Em 08-05-2017 16:51, Daniel Lenharo de Souza escreveu:
> On 05/08/2017 05:19 PM, Renan Arantes wrote:
>> boa tarde, alguem já passou por esse problema ?
>>
> Uma boa prática é descrever o problema para que as pessoas
possam saber
> qual é.
>
> []'s
>

-- 


Ricardo Ramos
Tel: +244 927 953 770 
Email: cesar.ricki...@gmail.com 
Website: www.rickinho.com 
Técnico de Informática

Fwd: off topic - ransomware to get password email id

[Leandro Pereira]

Dependendo do caso é possível recuperar. Tem que saber o tipo exato de
ransomware que te infectou e pesquisar se existe um decryptor, pois já
existem vários.


Leandro L. Pereira

Em 9 de maio de 2017 08:30, Ricardo Ramos 
escreveu:

> Bom dia,
>
> Infelizmente também tive uma máquina que foi alvo deste tipo de malware,
> no entanto depois de infectado tentei alguns tutoriais pra tentar recuperar
> os dados, mas nenhum deu certo, a solução foi reinstalar o S.O.
>
> Um dos tutoriais recomendava instalar o MalwareBytes, mas uma vez
> infectado e difícil...
>
> Talvez alguém aqui tenha alguma solução que funcione.
>
> A Ter, 9 de mai de 2017, 12:11, Renan Arantes 
> escreveu:
>
>> opa bom dia, estava meio corrido pra levantar os serviços que foram
>> prejudicados, por isso a falta de descrição do problema ocorrido, mas
>> vamos lá:
>>
>> Tivemos uma maquina com Windows 7 Pro infectada com um Ransomware que
>> transforma todos os arquivos de usuário em um RAR auto extração com
>> extensão .exe, todos os nomes dos arquivos muda para ex: planilha.xls ->
>> planilha.xls(!! to get password email id 111 to
>> brbrco...@gmail.com!!).exe, ao dar um duplo clique no arquivo ele pede a
>> senha para iniciar a extração, pelo que eu li em fóruns é impossível
>> quebrar essa senha, teve casos de empresas que perderam anos de
>> informação por falta de backup e outras que checaram a pagar para ter de
>> volta os seus dados, alguém na lista já passou por esse problema ? no
>> meu caso, não tinha nada de importante que foi perdido, somente o
>> trabalho de configurar novamente os serviços que o PC afetado operava.
>>
>>
>> Em 08-05-2017 16:51, Daniel Lenharo de Souza escreveu:
>> > On 05/08/2017 05:19 PM, Renan Arantes wrote:
>> >> boa tarde, alguem já passou por esse problema ?
>> >>
>> > Uma boa prática é descrever o problema para que as pessoas possam saber
>> > qual é.
>> >
>> > []'s
>> >
>>
>> --
>
> Ricardo Ramos
> Tel: +244 927 953 770 <+244%20927%20953%20770>
> Email: cesar.ricki...@gmail.com
> Website: www.rickinho.com
> Técnico de Informática
>

Re: off topic - ransomware to get password email id

[Ricardo Ramos]

Bom dia,

Infelizmente também tive uma máquina que foi alvo deste tipo de malware, no
entanto depois de infectado tentei alguns tutoriais pra tentar recuperar os
dados, mas nenhum deu certo, a solução foi reinstalar o S.O.

Um dos tutoriais recomendava instalar o MalwareBytes, mas uma vez infectado
e difícil...

Talvez alguém aqui tenha alguma solução que funcione.

A Ter, 9 de mai de 2017, 12:11, Renan Arantes 
escreveu:

> opa bom dia, estava meio corrido pra levantar os serviços que foram
> prejudicados, por isso a falta de descrição do problema ocorrido, mas
> vamos lá:
>
> Tivemos uma maquina com Windows 7 Pro infectada com um Ransomware que
> transforma todos os arquivos de usuário em um RAR auto extração com
> extensão .exe, todos os nomes dos arquivos muda para ex: planilha.xls ->
> planilha.xls(!! to get password email id 111 to
> brbrco...@gmail.com!!).exe, ao dar um duplo clique no arquivo ele pede a
> senha para iniciar a extração, pelo que eu li em fóruns é impossível
> quebrar essa senha, teve casos de empresas que perderam anos de
> informação por falta de backup e outras que checaram a pagar para ter de
> volta os seus dados, alguém na lista já passou por esse problema ? no
> meu caso, não tinha nada de importante que foi perdido, somente o
> trabalho de configurar novamente os serviços que o PC afetado operava.
>
>
> Em 08-05-2017 16:51, Daniel Lenharo de Souza escreveu:
> > On 05/08/2017 05:19 PM, Renan Arantes wrote:
> >> boa tarde, alguem já passou por esse problema ?
> >>
> > Uma boa prática é descrever o problema para que as pessoas possam saber
> > qual é.
> >
> > []'s
> >
>
> --

Ricardo Ramos
Tel: +244 927 953 770
Email: cesar.ricki...@gmail.com
Website: www.rickinho.com
Técnico de Informática

Re: off topic - ransomware to get password email id

[Renan Arantes]

opa bom dia, estava meio corrido pra levantar os serviços que foram 
prejudicados, por isso a falta de descrição do problema ocorrido, mas 
vamos lá:


Tivemos uma maquina com Windows 7 Pro infectada com um Ransomware que 
transforma todos os arquivos de usuário em um RAR auto extração com 
extensão .exe, todos os nomes dos arquivos muda para ex: planilha.xls -> 
planilha.xls(!! to get password email id 111 to 
brbrco...@gmail.com!!).exe, ao dar um duplo clique no arquivo ele pede a 
senha para iniciar a extração, pelo que eu li em fóruns é impossível 
quebrar essa senha, teve casos de empresas que perderam anos de 
informação por falta de backup e outras que checaram a pagar para ter de 
volta os seus dados, alguém na lista já passou por esse problema ? no 
meu caso, não tinha nada de importante que foi perdido, somente o 
trabalho de configurar novamente os serviços que o PC afetado operava.



Em 08-05-2017 16:51, Daniel Lenharo de Souza escreveu:

On 05/08/2017 05:19 PM, Renan Arantes wrote:

boa tarde, alguem já passou por esse problema ?


Uma boa prática é descrever o problema para que as pessoas possam saber
qual é.

[]'s

Re: Debian et Chromecast

[C. Mourad Jaber]

Le 08/05/2017 à 15:13, Gaëtan PERRIER a écrit :

SNIP...

Merci pour ton retour.

En cherchant dans les paquets debian je suis tombé sur ceux-ci:
mkchromecast/unstable,unstable 0.3.7+git20170414-1 all
   Cast your Linux audio or video to your Google Cast devices

mkchromecast-alsa/unstable,unstable 0.3.7+git20170414-1 all
   ALSA dependencies to cast with mkchromecast

mkchromecast-gstreamer/unstable,unstable 0.3.7+git20170414-1 all
   GStreamer dependencies to cast with mkchromecast

mkchromecast-pulseaudio/unstable,unstable 0.3.7+git20170414-1 all
   Pulseaudio dependencies to cast with mkchromecast

pulseaudio-dlna/unstable,unstable 0.5.3+git20170406-1 all
   Stream audio to DLNA devices and Chromecasts

python-pychromecast/testing,testing,unstable,unstable 0.7.7-2 all
   Library to communicate with Google Chromecast

python3-pychromecast/testing,testing,unstable,unstable 0.7.7-2 all
   Library to communicate with Google Chromecast (Python 3)

Est-ce quelqu'un aurait un retour d'expérience sur leur usage et leur
fonctionnement?

Gaëtan


Bonjour Gaétan,

Jamais testé, mais je vais tester...

Cela semble assez neuf comme programme, et il manque un peu de finitions...

Quels sont tes besoins ?

Pour ma part, j'utilise l'écosystem google chrome (dans chromium...) et cela me 
suffit...

Mon usage principal est de streamer des choses sur mon mobile (android) et de mon NAS 
multimédia vers le chromecast et donc, la connexion ordinateur -> chromecast n'est qu'un 
bonus quand je ne peux pas faire autrement...



Mes 2 cents...

Mourad

Re: CD Ripper

[Cyrille Biot]

perso j’utilise asounder
https://packages.debian.org/stretch/asunder
léger, simple et rapide

(désolé si réponse déjà postée, je prends le thread en cours de 
route...)





Le 04/05/2017 à 23:11, Jean-Marc a écrit :

salut la liste,

Je suis en train de ripper mes CDs.

La dernière version de Sound Juicer que j'utilise ne me permet plus de 
choisir le nom des pistes comme j'aimerai qu'ils soient.


Un conseil pour un ripper efficace dans ceux dispo dans les dépôts 
Debian ?


Je rippe en FLAC.

Et je suis en Debian Stretch.

Bonne soireé à tous.

Jean-Marc 

Re: CD Ripper

[fremoin]

Bonjour,

Pour ma part : soundjuicer ou n'importe pour extraire, exfalso ou picard 
pour baliser un peu, picard pour baliser complètement, et exfalso pour 
renommer (rapport à j'y comprends rien dans picard).


hth
FM


Le 04/05/2017 à 23:11, Jean-Marc a écrit :

salut la liste,

Je suis en train de ripper mes CDs.

La dernière version de Sound Juicer que j'utilise ne me permet plus de choisir 
le nom des pistes comme j'aimerai qu'ils soient.

Un conseil pour un ripper efficace dans ceux dispo dans les dépôts Debian ?

Je rippe en FLAC.

Et je suis en Debian Stretch.

Bonne soireé à tous.

Jean-Marc 

Re: Live Fille System Backup

[tomas]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On Mon, May 08, 2017 at 04:03:54PM -0700, Sergei G wrote:
> And if you think application consistency is nothing to worry about know
> that Git on Ext4 has failed to recover.
> 
> My current conclusion:
> 
> 1. If I want application consistency I have to take down any application
> that has an internal database or backup those applications prior to FS
> backup.

That depends. There are applications designed with (on-disk) consistency
in mind (I mention PostgreSQL, I start sounding like a broken record).

But whether you have to "take down" the application or just "alert" it
for the time the snapshot takes, without its cooperation you either risk
inconsistent state or bad performance (there are cases where apps chose
number two, because they aren't designed for high throughput anyway).

The gist is:

  (a) file system magic can't "do" it alone
  (b) most of the time, a naive "snapshot" with rsync will do
  (b') you alone can decide, based on your apps & requirements,
  whether the above "most of the time" works for you

With snapshotting file systems (be it native or assisted) you get just
faster snapshots, i.e. you mitigate the problem. If you want to go all
the way, you have to get the app's cooperation, either voluntary (it's
designed for that) or forced (shutdown)

There's no magic.

cheers
- -- tomás
   "all generalizations suck"
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.12 (GNU/Linux)

iEYEARECAAYFAlkRdlsACgkQBcgs9XrR2kZKsACePO1j2O2SFF8Stj9rMdGOSqNF
SaMAnRLQhrrTRRObZLJD1H+C3HtQwsRy
=BgPQ
-END PGP SIGNATURE-

Re: CD Ripper

[fremoin]

Bonjour,

Pour ma part : soundjuicer ou n'importe pour extraire, exfalso ou picard 
pour baliser un peu, picard pour baliser complètement, et exfalso pour 
renommer (rapport à j'y comprends rien dans picard).


hth
FM


Le 04/05/2017 à 23:11, Jean-Marc a écrit :

salut la liste,

Je suis en train de ripper mes CDs.

La dernière version de Sound Juicer que j'utilise ne me permet plus de choisir 
le nom des pistes comme j'aimerai qu'ils soient.

Un conseil pour un ripper efficace dans ceux dispo dans les dépôts Debian ?

Je rippe en FLAC.

Et je suis en Debian Stretch.

Bonne soireé à tous.

Jean-Marc