Re: Thunderbird no longer opens links

[solitone]

On 04/12/17 12:49, Jonathan Dowland wrote:
> On Fri, Dec 01, 2017 at 03:30:50PM +0100, solitone wrote:
>> On 01/12/17 15:22, Jonathan Dowland wrote:
>>> AppArmor is not enabled in current
>>> stable, so you should only hit this bug if you are using stable's
>>> thunderbird on a testing/sid system, or manually enabling AppArmor
>>> yourself on stable.
>>
>> I have stretch, and didn't requested it manually, but was installed
>> with the latest kernel update from stretch backports. I think it was
>> installed because of that backported kernel version:
> 
> Ouch, I think this is probably a mistake. Good catch!

This is the message I get when I install the bpo kernel:


apt-listchanges: News
-

linux-latest (86) unstable; urgency=medium

  * From Linux 4.13.10-1, AppArmor is enabled by default.  This allows
defining a "profile" for each installed program that can mitigate
security vulnerabilities in it.  However, an incorrect profile might
disable some functionality of the program.

In case you suspect that an AppArmor profile is incorrect, see
 and
consider reporting a bug in the package providing the profile.  The
profile may be part of the program's package or apparmor-profiles.

Re: File permission confusion [Debian 9.1 with MATE]

[Richard Hector]

On 03/01/18 07:30, Brian wrote:
>>  Michael Stone wrote:
 There is nothing a user can do to *prevent* himself from destroying his
 own files,
>> Greg Wooledge wrote:
>>> Actually, there is.  It's called making a backup.
>> This is a very good point.
> What *prevents* a user from destroying his own backup files?

Send them to someone who will keep them regardless of subsequent
requests to delete?

Richard



signature.asc
Description: OpenPGP digital signature

Re: How to create a PDF-Printer from the command line

[john doe]

On 1/6/2018 4:06 AM, Jason wrote:

On a RasperryPi with Raspbian, I would like to create a PDF Printer to
print files to. I only know how to do this with the GUI program
system-config-printer but I don't want to install that on this
Pi. What shell command do I need to create a PDF printer on the Pi (or
on any Debian, for that matter)?



Why do you want to"print" if you can convert to pdf using the command line?
Based on the original file extension you simply search for a utility 
that will convert your original file to pdf.


--
John Doe

Re: How to create a PDF-Printer from the command line

[Gene Heskett]

On Friday 05 January 2018 22:06:22 Jason wrote:

> On a RasperryPi with Raspbian, I would like to create a PDF Printer to
> print files to. I only know how to do this with the GUI program
> system-config-printer but I don't want to install that on this
> Pi. What shell command do I need to create a PDF printer on the Pi (or
> on any Debian, for that matter)?
>
> Thanks!

This is all handled by cups, and on Jessie on a pi, or stretch on a 
rock64, it just works. But since you need cups anyway, why not enable 
browsing in cups on the pi, and "share" any printers you may have hooked 
up to one of the other machines on your home network. Then just send the 
print job to the printer(s) that will show up when you click on print in 
any of the editors, includeing the gfx editors like gimp or inkscape?

I can be working on a piece of g-code to carve metal, using geany, need a 
paper copy for reference, its only 20 pages, and its waiting for me on 
the output tray of a b laser here in the den by the time I arrive in 
here from the garage. I needed the exercise anyway. :)

Cheers, Gene Heskett
-- 
"There are four boxes to be used in defense of liberty:
 soap, ballot, jury, and ammo. Please use in that order."
-Ed Howdershelt (Author)
Genes Web page 

Re: vipw and vigr default editor

[Charles Kroeger]

if you're in a hurry in this situation try:

apt-get remove --purge nano

problem solved?

-- 
CK

How to create a PDF-Printer from the command line

[Jason]

On a RasperryPi with Raspbian, I would like to create a PDF Printer to
print files to. I only know how to do this with the GUI program
system-config-printer but I don't want to install that on this
Pi. What shell command do I need to create a PDF printer on the Pi (or
on any Debian, for that matter)?

Thanks!
-- 
Jason

Re: vipw and vigr default editor

[John Ratliff]

On 1/5/2018 3:25 PM, Roberto C. Sánchez wrote:

On Fri, Jan 05, 2018 at 03:00:43PM -0500, John Ratliff wrote:

When I run

sudo vipw or sudo vigr, it uses nano as the default editor. I've already
used update-alternatives to select vim as my default editor, but this
doesn't seem to work for vipw/vigr.

I have to do

sudo EDITOR=vim vipw

How can I make vim the default editor for vipw/vigr. Or how can I set the
EDITOR variable when I use sudo automatically?


Try 'sudo select-editor'

Regards,

-Roberto



Thanks.

This was the solution.

--John

Re: fichier de swap dynamic

[Haricophile]

Le Fri, 05 Jan 2018 22:45:27 +0100,
Gaëtan Perrier  a écrit :

> Ah bon ? Je ne savais pas. Comment ça fonctionne ?

On hiberne dans un fichier comme dans Windows ;)

Il doit y avoir un paquet qui traîne et la doc qui va avec. Je n'ai
jamais essayé parce que en fait je n'ai jamais beaucoup utilisé
l'hibernation. J'ai d'ailleurs une confiance assez limitée : En cas de
problème, on perd le contenu du travail en cours tout aussi bien que sur
une coupure, voire mieux.

> Mais sinon tout le monde n'a pas un ordi dernier cri qui tient
> plusieurs en veille. Il se peut aussi que la batterie soit déjà bien
> vide au moment de passer en veille, etc.
> Le passage en hibernation me semble donc fondamental et peut éviter
> une perte de données sur un document que l'on aurait
> malencontreusement oublié de sauvegarder

Euh... moi je ne quitte pas mon clavier même pour quelques secondes
sans au moins faire un Ctrl-S (;^_^)

Re: Installer un paquet pour Video DownloadHelper ?

[Haricophile]

Le Fri, 5 Jan 2018 20:39:13 +0100,
Benoit B  a écrit :

> Bonjour à tous,
> 
> 
> Le plugin de firefox Video DownloadHelper me demande d'installer un
> paquet...
>

Sinon un truc qui demande un peu plus de gymnastique mais évite
d'installer quoique ce soit dans firefox c'est utiliser youtube-dl ou
ytdl fournis avec mpv (et qui interface youtube-dl).

Voire mpsyt qui permet les recherches et qui est pas mal pour
récupérer les bandes son et se faire sa "radio" youtube en fond sonore,
mais permet aussi le téléchargement (le tout en console en mode texte).

Re: fichier de swap dynamic

[Gaëtan Perrier]

Le vendredi 05 janvier 2018 à 22:39 +0100, Haricophile a écrit :
> Le Thu, 04 Jan 2018 20:26:46 +0100,
> Gilles Mocellin  a écrit :
> 
> > Je ne le ferais pas sur un portable. Je ne suis pas sur que
> > l'hibernation fonctionne.
> 
> On peut faire de l'hibernation sans swap, mais surtout as-t-on
> vraiment besoin d'hibernation a l'époque des disques SSD et des ordis
> qui peuvent rester de nombreuses heures en veille simple ? 

Ah bon ? Je ne savais pas. Comment ça fonctionne ?

Mais sinon tout le monde n'a pas un ordi dernier cri qui tient plusieurs en
veille. Il se peut aussi que la batterie soit déjà bien vide au moment de
passer en veille, etc.
Le passage en hibernation me semble donc fondamental et peut éviter une perte
de données sur un document que l'on aurait malencontreusement oublié de
sauvegarder


signature.asc
Description: This is a digitally signed message part

Re: fichier de swap dynamic

[Haricophile]

Le Thu, 04 Jan 2018 20:26:46 +0100,
Gilles Mocellin  a écrit :

> Je ne le ferais pas sur un portable. Je ne suis pas sur que
> l'hibernation fonctionne.

On peut faire de l'hibernation sans swap, mais surtout as-t-on
vraiment besoin d'hibernation a l'époque des disques SSD et des ordis
qui peuvent rester de nombreuses heures en veille simple ? 

encryption and compression similarities -- was GRUB and boot partition

[David Christensen]

On 01/05/18 06:56, Gary Dale wrote:
> On 2018-01-03 01:59 PM, David Christensen wrote:
>> On 01/03/18 06:45, Gary Dale wrote:
>>> ... Encryption is similar in concept to compression.
>>> ... It could even reduce the space requirements.
>>
>> I'm curious -- can you cite a compressing cipher code that cannot be
>> reduced to independent compression and cipher functions?
>
> While the intent is different, the techniques are quite similar. One
> once-popular code was to replace all words in a message with 2 numbers
> each, referring to a page & word number within an agreed-upon book. If
> you used it electronically, you could send a binary file where each
> original word was reduced to 2 bytes.

So, a substitution cipher using two levels of lookup tables.  If the 
page number-word number index has fewer than 5.1 digits [1], the cipher 
compresses the message as a side effect.



For file compression, the lookup table(s) are created per-file, are 
optimized for encoded message size, and are transmitted with the encoded 
message.



For file encryption, the lookup table(s) may be generic or per-file, are 
optimized for cryptanalysis difficulty, and are transmitted by an 
alternate secure channel.



David


[1] https://www.wolframalpha.com/input/?i=average+english+word+length

Re: Iniciar Windows en un disco externo desde Grub | OT

[Ariel Martín Bellio]

El 05/01/2018 a las 06:17 p.m., Andr�s DG escribi�:




*De:* Ariel Mart�n Bellio 
*Enviado:* viernes, 05 de enero de 2018 13:02
*Para:* debian-user-spanish@lists.debian.org
*Asunto:* Re: Iniciar Windows en un disco externo desde Grub



El 04/01/2018 a las 03:51 p.m., Andr�s DG escribi�:


Buenas lista, mi problema surge cuando se rompe una notebook que 
tiene instalado Windows 10, quit� el disco de la notebook rota y lo 
coloque en un carry disk, lo que necesito es conectar este disco (que 
est� en el carry) a mi notebook que tiene instalado Debian 9.3 y 
hacer que en el Grub aparezca la opci�n de bootear (iniciar) desde 
el USB donde conecte el carry con Windows 10.


Notas:

��� El disco anda perfectamente porque ya lo prob� en otra 
m�quina.


��� El Grub est� instalado en mi notebook.

��� El disco que est� en el carry ten�a instalado solamente 
Windows 10.



Espero que se entienda lo que necesito hacer, ante cualquier duda... 
consulten.



Desde ya gracias.



Disco conectado, por USB supongo y un:

# update-grub

Gracias a todos por las respuestas. Ejecut� el comando update-grub. En 
la lista de opciones que muestra el men� de Grub solo aparece una 
partici�n (/dev/sda2) donde me dice que es el Windows Boot Manager (en 
/dev/sda2) cuando entro a esa opci�n me dice que hay alg�n problema y 
debo usar alg�n disco de recuperaci�n de Windows (creo que con esa 
opci�n entra a la partici�n de recuperaci�n de Windows Original de mi 
notebook).
Por otro lado, Debian est� instalado con UEFI, cambiando la opci�n del 
setup de mi notebook a CSM (o sea quito el arranque por UEFI, el 
Security Boot est� desactivado) Bootea desde el disco externo donde 
tengo Windows 10 pero con problemas y me pide que recuperar el 
sistema, intento recuperar el sistema y me rompe el Grub y no puedo 
acceder a Debian (us� un Pendrive con una imagen de Debian para 
reinstalar Grub y as� logr� iniciar Debian; ah y volv� a activar el UEFI).
Con todos los intentos de arrancar con el disco con Windows 10 parece 
que se "rompi�" Windows y ahora tengo que reinstalarlo para que ande.
Voy a tratar de conseguir otro equipo para ver si puedo montar el 
disco directamente por SATA e intentar reparar el disco.

Nuevamente gracias por la ayuda.

Pd: �C�mo doy por finalizado el hilo?


Te ayudo fuera de lo que se estipula en la lista.
Desde cualquier Windows desde NT, 2000, XP, 2003, Vista, 7, 8, 10... en 
el proceso de booteo necesita los drivers de la maquina en la que fu� 
instalada. Si entras a prueba de fallos en windows e instalas los 
drivers de tu notebook con Debian. Quiz�s windows no est� m�s roo que 
eso. Solo drivers.

Re: Iniciar Windows en un disco externo desde Grub

[Andrés DG]

De: Ariel Martín Bellio 
Enviado: viernes, 05 de enero de 2018 13:02
Para: debian-user-spanish@lists.debian.org
Asunto: Re: Iniciar Windows en un disco externo desde Grub



El 04/01/2018 a las 03:51 p.m., Andr�s DG escribi�:

Buenas lista, mi problema surge cuando se rompe una notebook que tiene 
instalado Windows 10, quit� el disco de la notebook rota y lo coloque en un 
carry disk, lo que necesito es conectar este disco (que est� en el carry) a 
mi notebook que tiene instalado Debian 9.3 y hacer que en el Grub aparezca la 
opci�n de bootear (iniciar) desde el USB donde conecte el carry con Windows 
10.

Notas:

��� El disco anda perfectamente porque ya lo prob� en otra m�quina.

��� El Grub est� instalado en mi notebook.

��� El disco que est� en el carry ten�a instalado solamente Windows 
10.


Espero que se entienda lo que necesito hacer, ante cualquier duda... consulten.


Desde ya gracias.

Disco conectado, por USB supongo y un:

# update-grub

Gracias a todos por las respuestas. Ejecuté el comando update-grub. En la lista 
de opciones que muestra el menú de Grub solo aparece una partición (/dev/sda2) 
donde me dice que es el Windows Boot Manager (en /dev/sda2) cuando entro a esa 
opción me dice que hay algún problema y debo usar algún disco de recuperación 
de Windows (creo que con esa opción entra a la partición de recuperación de 
Windows Original de mi notebook).
Por otro lado, Debian está instalado con UEFI, cambiando la opción del setup de 
mi notebook a CSM (o sea quito el arranque por UEFI, el Security Boot está 
desactivado) Bootea desde el disco externo donde tengo Windows 10 pero con 
problemas y me pide que recuperar el sistema, intento recuperar el sistema y me 
rompe el Grub y no puedo acceder a Debian (usé un Pendrive con una imagen de 
Debian para reinstalar Grub y así logré iniciar Debian; ah y volví a activar el 
UEFI).
Con todos los intentos de arrancar con el disco con Windows 10 parece que se 
"rompió" Windows y ahora tengo que reinstalarlo para que ande.
Voy a tratar de conseguir otro equipo para ver si puedo montar el disco 
directamente por SATA e intentar reparar el disco.
Nuevamente gracias por la ayuda.

Pd: ¿Cómo doy por finalizado el hilo?

Re: Installer un paquet pour Video DownloadHelper ?

[Bernard Schoenacker]

- Mail original -
> De: "Benoit B" 
> À: "debian-user-french" 
> Envoyé: Vendredi 5 Janvier 2018 20:39:13
> Objet: Installer un paquet pour Video DownloadHelper ?
> 
> Bonjour à tous,
> 
> 
> Le plugin de firefox Video DownloadHelper me demande d'installer un
> paquet...
> 
> https://www.downloadhelper.net/install-coapp
> 
> N'y aurait-il pas un autre moyen via les paquets debian ?
> 
> Merci d'avance
> 
> --
> Benoit
> 
bonjour,

voici le lien officiel :
https://addons.mozilla.org/fr/firefox/addon/video-downloadhelper/


slt
bernard

Re: vipw and vigr default editor

[Ulf Volmer]

On 05.01.2018 21:46, Roberto C. Sánchez wrote:

> There is essentially no functional difference between allowing only the
> EDITOR variable and any arbitrary environment variable.  Allowing EDITOR
> (or PAGER, or any other thing that sets the name of a command to
> execute) through to sudo provides an effective route to bypass any sudo
> restrictions.

OK. Thanks for correction.

best regards,
Ulf

Re: vipw and vigr default editor

[Brian]

On Fri 05 Jan 2018 at 21:37:16 +0100, Ulf Volmer wrote:

> On 05.01.2018 21:15, Greg Wooledge wrote:
> > On Fri, Jan 05, 2018 at 03:00:43PM -0500, John Ratliff wrote:
> 
> >> sudo EDITOR=vim vipw
> 
> > Defaultsenv_reset
> > Defaults:greg   !env_reset
> 
> That basically keeps the *whole* environment, what is usually a security
> issue. Better solution is to keep only needed and proved environment
> variables using
> 
> Defaults  env_keep += "EDITOR"

This is all very incredibly useful. Roberto C. Sánchez has the answer
though.

-- 
Brian.

Re: vipw and vigr default editor

[Roberto C . Sánchez]

On Fri, Jan 05, 2018 at 09:37:16PM +0100, Ulf Volmer wrote:
> 
> That basically keeps the *whole* environment, what is usually a security
> issue. Better solution is to keep only needed and proved environment
> variables using
> 
> Defaults  env_keep += "EDITOR"
> 
Allowing the EDITOR variable through is a gigantic security issue.  Its
value gets passed as a command to the shell:

roberto@debian:~$ sudo EDITOR='echo "I have the power!"' vipw
I have the power! /etc/passwd.edit
vipw: /etc/passwd is unchanged

There is essentially no functional difference between allowing only the
EDITOR variable and any arbitrary environment variable.  Allowing EDITOR
(or PAGER, or any other thing that sets the name of a command to
execute) through to sudo provides an effective route to bypass any sudo
restrictions.

Regards,

-Roberto

-- 
Roberto C. Sánchez

Re: vipw and vigr default editor

[Greg Wooledge]

On Fri, Jan 05, 2018 at 09:37:16PM +0100, Ulf Volmer wrote:
> On 05.01.2018 21:15, Greg Wooledge wrote:
> > On Fri, Jan 05, 2018 at 03:00:43PM -0500, John Ratliff wrote:
> 
> >> sudo EDITOR=vim vipw
> 
> > Defaultsenv_reset
> > Defaults:greg   !env_reset
> 
> That basically keeps the *whole* environment, what is usually a security
> issue. Better solution is to keep only needed and proved environment
> variables using
> 
> Defaults  env_keep += "EDITOR"

It all depends on how much trust this "greg" person.  I hear they can
be very sneaky.

Re: vipw and vigr default editor

[Ulf Volmer]

On 05.01.2018 21:15, Greg Wooledge wrote:
> On Fri, Jan 05, 2018 at 03:00:43PM -0500, John Ratliff wrote:

>> sudo EDITOR=vim vipw

> Defaultsenv_reset
> Defaults:greg   !env_reset

That basically keeps the *whole* environment, what is usually a security
issue. Better solution is to keep only needed and proved environment
variables using

Defaults  env_keep += "EDITOR"

best regards,
Ulf

Re: “Meltdown” and “Spectre”: Every modern processor has unfixable security flaws

[Nicholas Geovanis]

On Fri, Jan 5, 2018 at 12:42 PM, Marc Auslander  wrote:
> Nicholas Geovanis  writes:
>
>>On Fri, Jan 5, 2018 at 6:55 AM,   wrote:
>>> (mainframes of that time had at least VM, possibly
>>> speculative prefetch).
>>
>>Is it correct to call branch prediction the same as speculative execution?
>>If so, then "yes" they had it, but I don't honestly know if that's correct.
>>Pipeline rewinding was necessary on prediction failure, etc, similarly.
>>
> Branch predition can serve (at leasst) two purposes.  The first is to start
> fetching the target instruction data from memory.  AFAIK this cannot be used 
> for the
> attacks in question.

Right. It is just 2 old mainframe system admins reminiscing.

> The second is in conjunction with spectulation. Specultation means
> starting to execute an instruction sequence which may not in fact really
> be executed.  The processor is able to roll back all the (architected)
> effects of the computation if it turns out not to be needed.

So if I remember right the S/390 had a 7-stage pipeline, meaning that
at all times at least
seven machine instructions were partially interpreted. Part of
interpretation was the
microcode predicting which path of two off of each branch statement
should be taken, and
it would sample registers and the instruction text to make that guess.
When the guess was
wrong the pipeline would usually have to be cleared and reseeded, a
performance hit. But
branch prediction was a net performance gain for applications.

Wikipedia says that "speculative execution" means "branch prediction
in pipelined processors, value prediction for exploiting
value locality, prefetching memory and files, and optimistic
concurrency control in database systems."

Re: vipw and vigr default editor

[Roberto C . Sánchez]

On Fri, Jan 05, 2018 at 03:00:43PM -0500, John Ratliff wrote:
> When I run
> 
> sudo vipw or sudo vigr, it uses nano as the default editor. I've already
> used update-alternatives to select vim as my default editor, but this
> doesn't seem to work for vipw/vigr.
> 
> I have to do
> 
> sudo EDITOR=vim vipw
> 
> How can I make vim the default editor for vipw/vigr. Or how can I set the
> EDITOR variable when I use sudo automatically?
> 
Try 'sudo select-editor'

Regards,

-Roberto

-- 
Roberto C. Sánchez

Re: vipw and vigr default editor

[Greg Wooledge]

On Fri, Jan 05, 2018 at 03:00:43PM -0500, John Ratliff wrote:
> I have to do
> 
> sudo EDITOR=vim vipw
> 
> How can I make vim the default editor for vipw/vigr. Or how can I set the
> EDITOR variable when I use sudo automatically?

By default, sudo strips all the useful variables out of your environment.
If you want it to *keep* your environment, you need to change the
/etc/sudoers file (with "sudo EDITOR=whatever visudo").  One way to do
it is:

Defaultsenv_reset
Defaults:greg   !env_reset
...

where "greg" is the username who is trusted to set environment vars.

vipw and vigr default editor

[John Ratliff]

When I run

sudo vipw or sudo vigr, it uses nano as the default editor. I've already 
used update-alternatives to select vim as my default editor, but this 
doesn't seem to work for vipw/vigr.


I have to do

sudo EDITOR=vim vipw

How can I make vim the default editor for vipw/vigr. Or how can I set 
the EDITOR variable when I use sudo automatically?


Thanks.

--John

Installer un paquet pour Video DownloadHelper ?

[Benoit B]

Bonjour à tous,


Le plugin de firefox Video DownloadHelper me demande d'installer un paquet...

https://www.downloadhelper.net/install-coapp

N'y aurait-il pas un autre moyen via les paquets debian ?

Merci d'avance

--
Benoit

Re: Synaptic problem - physical access to CD drive related

[Felix Miata]

Richard Owlett composed on 2018-01-05 09:44 (UTC-0600):

> I have 3 machines with differing problems physically accessing the 
> CD/DVD drive. To install Debian I routinely use a USB connected drive 
> WITHOUT any problem by using the BIOS option to select a boot device.

> The SOURCES.LIST(5) man page hints that I should be able us something like
>   file:/media/richard/Debian%209.1.0%20i386%201
> or
>  file:/media/richard/Debian 9.1.0 i386 1

> Neither worked. Man page suggest the space characters to be the problem.  
>  

So eliminate the problem. Whitespace characters (& dots & underscores) in
filenames produce more trouble than they avoid. It doesn't happen with downloads
on my machines. e.g., that above would be:

file:/media/richard/debian09010-i386-1
and next, likely
file:/media/richard/debian09020-i386-1
and eventually, likely
file:/media/richard/debian10010-i386-1

cf. my archive of mozilla.org Firefox downloads:
-rw-rw-r-- 1 18999452 Jan  3  2013 firefox-10012esr64.tar.bz2
-rw-rw-r-- 1 23590858 Nov 13  2013 firefox-17011esr64.tar.bz2
-rw-rw-r-- 1 38882500 Sep 24  2014 firefox-3111esr64.tar.bz2
-rw-rw-r-- 1 46359449 Apr 26  2016 firefox-3880esr64.tar.bz2
-rw-rw-r-- 1 51807116 Apr 18  2017 firefox-4590esr64.tar.bz2
-rw-rw-r-- 1 57712454 Dec  7 10:26 firefox-5252esr64.tar.bz2
-rw-rw-r-- 1 57692607 Dec 27 10:47 firefox-5253esr64.tar.bz2

ls -gG produces same result as ls -gGrt :-) With any luck the Rapture will occur
before Firefox versions reach triple digits. ;-)

Dots and underscores in filenames do little more than make filenames longer and
harder to touch type, but commonly also cause alphabetical sorts to undesirably
differ from age/version sorts[1]. Here, Shift-F6 in OFM fixes any created by
other than myself.

[1] e.g.
http://cgit.freedesktop.org/xorg/driver/xf86-video-intel/

http://snapshot.debian.org/archive/debian/20100701T034005Z/pool/main/x/xserver-xorg-video-intel/

$ ls -gG *nel-def*64*
-rw-rw-r-- 1 58886019 May  3  2017 kernel-default-4.10.13-1.2.x86_64.rpm
-rw-rw-r-- 1 58571199 Aug 13 13:27 kernel-default-4.11.8-2.4.x86_64.rpm
-rw-rw-r-- 1 58047527 Feb 21  2017 kernel-default-4.9.11-1.2.x86_64.rpm
vs.
$ ls -gGrt *nel-def*64*
-rw-rw-r-- 1 58047527 Feb 21  2017 kernel-default-4.9.11-1.2.x86_64.rpm
-rw-rw-r-- 1 58886019 May  3  2017 kernel-default-4.10.13-1.2.x86_64.rpm
-rw-rw-r-- 1 58571199 Aug 13 13:27 kernel-default-4.11.8-2.4.x86_64.rpm
-- 
"Wisdom is supreme; therefore get wisdom. Whatever else you
get, get wisdom." Proverbs 4:7 (New Living Translation)

 Team OS/2 ** Reg. Linux User #211409 ** a11y rocks!

Felix Miata  ***  http://fm.no-ip.com/

Re: Installatie van Debian GNU/Linux op een krachtige laptop-computer

[Peter Diks]

Iso downloaden van
https://cdimage.debian.org/debian-cd/current/amd64/iso-dvd/debian-9.3.0-amd64-DVD-1.iso
en op usb-stick zetten. De eerste dvd bezat de install.
Als je er geen imagewriter hebt, zie bijvoorbeeld
http://wiki.rosalab.ru/en/index.php/ROSA_ImageWriter#Where_can_I_take_it.3F

Mvg
Peter

Op vr 5 jan. 2018 om 18:48 schreef 

>
>
>  Oorspronkelijk bericht 
> Onderwerp:
> Datum: 03.01.2018 18:27
> Van: Gery Buytaert 
> Aan: debian-l10n-du...@lists.debian.org
>
> Geachte
> Ik heb een laptop ASUS N752VX met Intel Core(TM) i7-6700HQ  2.6GHz -  16
> GB RAM -x64 processor. Harde schijf 1 TB.
>
> Ik wens een Linux operating system te installeren en ik dacht aan de
> Debian-uitvoering. Op mijn vorige laptop had ik een Ubuntu-uitvoering.
>
> Wat stelt U voor, welke DVD-schijven moet ik bestellen?
>
> Hartelijk dank
>
> Gery Buytaert
>
> --
Hartelijke Groet
Peter
06-45108537

Re: “Meltdown” and “Spectre”: Every modern processor has unfixable security flaws

[Marc Auslander]

Nicholas Geovanis  writes:

>On Fri, Jan 5, 2018 at 6:55 AM,   wrote:
>> (mainframes of that time had at least VM, possibly
>> speculative prefetch).
>
>Is it correct to call branch prediction the same as speculative execution?
>If so, then "yes" they had it, but I don't honestly know if that's correct.
>Pipeline rewinding was necessary on prediction failure, etc, similarly.
>
>> Cheers
>>
>> [1] https://en.wikipedia.org/wiki/Motorola_68000
>>
>> - -- tomás
Branch predition can serve (at leasst) two purposes.  The first is to start
fetching the target instruction data from memory.  AFAIK this cannot be used 
for the
attacks in question.

The second is in conjunction with spectulation. Specultation means
starting to execute an instruction sequence which may not in fact really
be executed.  The processor is able to roll back all the (architected)
effects of the computation if it turns out not to be needed.

The attacks are based on un-architected effects of speculative execution
- specifially changes in cache content - which can be detected.

Re: Installatie van Debian GNU/Linux op een krachtige laptop-computer

[Geert Stappers]

On Fri, Jan 05, 2018 at 06:30:33PM +0100, Maarten wrote:
> 
> 
>  Oorspronkelijk bericht 
> Onderwerp:
> Datum: 03.01.2018 18:27
> Van: Gery Buytaert
> Aan: debian-l10n-du...@lists.debian.org
> 
> Geachte
> Ik heb een laptop ASUS N752VX met Intel Core(TM) i7-6700HQ  2.6GHz -  16
> GB RAM -x64 processor. Harde schijf 1 TB.
> 
> Ik wens een Linux operating system te installeren en ik dacht aan de
> Debian-uitvoering. Op mijn vorige laptop had ik een Ubuntu-uitvoering.
> 
> Wat stelt U voor, welke DVD-schijven moet ik bestellen?
> 

Op http://dddi.nl/neword_nl.html  bij 'DVD' onder 'AMD64'
in het vak van 'DVD1 plus firmware' het aantal van 1 invullen.

En dan verder met de bestelling.


Groeten
Geert Stappers
DD
-- 
Leven en laten leven

[OFFTOPIC] Re: “Meltdown” and “Spectre”: Every modern processor has unfixable security flaws

[Stefan Monnier]

> Is it correct to call branch prediction the same as speculative execution?

Not really: they're closely related yet different.


Stefan

[OFFTOPIC] Re: "Meltdown" and "Spectre": Every modern processor has unfixable security flaws

[Stefan Monnier]

>> With TLB cache and all that? Pretty impressive :)
> I am not sure about the 68010 and its separate MMU. But beginning with 68020
> there surely was memory space separation per process and cache memory in the
> CPU.

The 68020 didn't have an MMU on chip (it required a separate chip
(MC68851) if you wanted the virtual memory features of an MMU).  The MMU
came on-board only in the 68030 (and then the FPU came on board for the
68040).


Stefan

Re: [Stable/AMD64] Changing gdm background

[Leandro Noferini]

Leandro Noferini  writes:

> I would like to change the default background of gdm login screen on my
> laptop (to put into my contacts); I looked for a solution but none of my
> findings worked: is there a way to change this background that actually
> works?

Any help?

In the meantime I installed lightdm and I have changed the login screen
with the utility lightdm-gtk-greeter-settings but I would like to use
gdm.

-- 
Ciao
leandro
http://6xukrlqedfabdjrb.onion/blog/
Alla bellezza preferisco la verità.
E il dubbio è l'unità di misura.


signature.asc
Description: PGP signature

Re: Synaptic problem - physical access to CD drive related

[Thomas Schmitt]

Hi,

Richard Owlett wrote:
> I had tried "umount /media/richard/Debian 9.1.0 i386 1", but umount objected
> to the spaces in the file name.

Use quotation marks to make the directory path a single "word"

  umount "/media/richard/Debian 9.1.0 i386 1"

(It is somewhat astounding that you can mount /dev/sr1 several times.
 On ye olde Jessie kernel i have to use "-o loop" for the further mounts.)


> > > When I run Synaptic, it complains about a line in sources.list
> > >file:/home/richard/Desktop/testdvd stretch main contrib non-free

In my /etc/apt/sources.list there is the word "deb" or "deb-src" before
the URL. man 5 source.list says:

   The format for a sources.list entry using the deb and deb-src types is:
   deb [ options ] uri suite [component1] [component2] [...]

This matches the complaint about "Type 'file:...'".

So if you don't have it yet in the file, then try prepending "deb"

  deb file:/home/richard/Desktop/testdvd stretch main contrib non-free


Have a nice day :)

Thomas

Installatie van Debian GNU/Linux op een krachtige laptop-computer

[Maarten]

 Oorspronkelijk bericht 
Onderwerp:
Datum: 03.01.2018 18:27
Van: Gery Buytaert 
Aan: debian-l10n-du...@lists.debian.org

Geachte
Ik heb een laptop ASUS N752VX met Intel Core(TM) i7-6700HQ  2.6GHz -  16
GB RAM -x64 processor. Harde schijf 1 TB.

Ik wens een Linux operating system te installeren en ik dacht aan de
Debian-uitvoering. Op mijn vorige laptop had ik een Ubuntu-uitvoering.

Wat stelt U voor, welke DVD-schijven moet ik bestellen?

Hartelijk dank

Gery Buytaert

Installatie van Debian GNU/Linux op een krachtige laptop-computer

[Maarten]

Geachte heer of mevrouw Buytaert,

Hartelijk welkom bij Debian.

In uw e-mail van 3 januari 2018 vraagt u welke dvd's u zou moeten
bestellen voor een installatie van Debian GNU/Linux op een krachtige
laptop-computer.

Het lijkt mij echter dat u uw vraag wegens een misverstand heeft gesteld
aan het Nederlandse vertaalteam van Debian. Daarom zal ik uw e-mail voor
een inhoudelijke beantwoording doorsturen naar de mailinglijst voor
ondersteuning van de Nederlandse gebruikers van Debian.

De mailinglijst voor ondersteuning van de Nederlandse gebruikers van
Debian heeft als website https://lists.debian.org/debian-user-dutch/ en
heeft als e-mailadres debian-user-dutch@lists.debian.org

Ik vertrouw er op dat de leden van debian-user-dutch uw e-mail voldoende
zullen beantwoorden.

Met vriendelijke groet,

Maarten.

Re: fichier de swap dynamic

[Gilles Mocellin]

On jeudi 4 janvier 2018 15:30:24 CET C. Mourad Jaber wrote:
> Bonjour,
> 
> Je cherche une solution de fichier swap dynamique pour debian...
> 
> Ayant un laptop avec un SSD je pense que la réservation d'un espace fixe de
> swap n'est pas optimal, surtout quand on a 16G de ram !
> 
> Cependant, je ne voudrai pas non plus me couper d'une possibilité de swapper
> si la mémoire venait à manquer (j'utiliser des VM et des outils de
> développement assez lourds (genre intelliJ) )
> 
> J'ai vu 2 solutions :
> 
> - swapspace
> 
> - swapd
> 
> Les 2 semblent assez anciennes (2012/2014) avec peu ou pas de développement
> depuis...
> 
> Est-ce que quelqu'un utilise une solution similaire ?
> 
> Quels retours d'expériences (pro/cons) ?
> 
> Merci
> 
> Mourad

Bonsoir,

J'utilise swapspace, pas de problèmes.
Mais sur ma workstation, j'ai 16Go depuis quelques années, alors heureusement 
que je ne swap pas !
Il a pu m'arriver de lancer 5 ou 6 VMs et commencer à swaper, ça a marché.

Je ne le ferais pas sur un portable. Je ne suis pas sur que l'hibernation 
fonctionne.

Re: Synaptic problem - physical access to CD drive related

[Richard Owlett]

On 01/05/2018 10:28 AM, bw wrote:



On Fri, 5 Jan 2018, Richard Owlett wrote:


Synaptic still returns

E: Type 'file:/home/richard/Desktop/testdvd' is not known on line 2 in source
list /etc/apt/sources.list



"Type" is probably referring to the deb or deb-src entry that is missing.



I've been staring at screen too long.
That at least allows Synaptic to start.

As CD's are not "signed" so to speak I still can't access it.
But I had a closely related problem in April 2014.
I have to reread that thread to become re-educated ;/





Have you already used the repository to update your sources? why do you
want to add the cd/dvd back?


Because I don't always have internet and there are physical/mechanical 
problems using the installed drive. The portable drive is convenient and 
sometimes required.




I have found that immediately after install, a commented line
in sources.list resembling:
#deb cdrom:[debian_installer_version_arch_24-date_etc] stretch main

and if I uncomment this line, and mount the install media at /media/cdrom
then apt is able to continue installing pkgs from it.

If that won;t work for you, try apt-cdrom


I'll check that out tomorrow.
Thanks



good luck

hotspot en debian

[Romero, Fernando]

Hola como están.
Necesito levantar un hotspot sobre debian, es para la red wifi para que los 
invitado se puedan loguear solamente a la wifi sin autentificar.
Alguien tiene un escenario parecido o conoce algún software que pueda 
implementar.

Saludos

Re: Question technique

[Alban Vidal]

Bonjour,


On 01/05/2018 04:21 PM, Basile Starynkevitch wrote:
> Le plus simple: fréquenter quelqu'un qui connait Debian, ou bien une
> install-party. 

Ça tombe bien, celle de Paris c'est demain :
https://www.agendadulibre.org/events/14611


On 01/05/2018 03:33 PM, omag...@videotron.ca wrote:
> Comme c'est un vieil ordinateur, quelle version devrais-je installer
> et ou la trouver ?

Vu qu'il n'y a que 1Go de RAM, et que c'est un processeur 64-Bits, je
partirai sur une net-install 64-bits, et je choisirai l'interface la
moins gourmande (LXDE ou XFCE) :
https://cdimage.debian.org/debian-cd/current/amd64/iso-cd/debian-9.3.0-amd64-netinst.iso


Après comme le dit Bernard ci-dessous, le mieux est de passer sur clé USB :

On 01/05/2018 04:34 PM, Bernard Schoenacker wrote:
> l'outil pour basculer l'image iso vers la clé USB :
> https://etcher.io/


Cordialement,

Alban

Re: “Meltdown” and “Spectre”: Every modern processor has unfixable security flaws

[tomas]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On Fri, Jan 05, 2018 at 10:33:45AM -0600, Nicholas Geovanis wrote:
> On Fri, Jan 5, 2018 at 6:55 AM,   wrote:
> > (mainframes of that time had at least VM, possibly
> > speculative prefetch).
> 
> Is it correct to call branch prediction the same as speculative execution?

I'm far from a processor expert myself but yes, that sounds plausible: the
memory unit is prefeching stuff on the speculation that the branch will
go one way, to keep the pipeline full. When things go the other way...

> If so, then "yes" they had it, but I don't honestly know if that's correct.
> Pipeline rewinding was necessary on prediction failure, etc, similarly.

... this happens.

I guess that this, in combination with a cache, could be enough for the
kind of timing attacks demonstrated by Spectre. But I'm speculating myself
here :)

Cheers
- -- tomás
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.12 (GNU/Linux)

iEYEARECAAYFAlpPq9QACgkQBcgs9XrR2kZPhQCeNpZYsjInyrAh5HNPqTkJ6w33
s9gAn1th2QyrDsjqu/dOlZcOjRFTC3Mo
=dV+r
-END PGP SIGNATURE-

Re: “Meltdown” and “Spectre”: Every modern processor has unfixable security flaws

[Nicholas Geovanis]

On Fri, Jan 5, 2018 at 6:55 AM,   wrote:
> (mainframes of that time had at least VM, possibly
> speculative prefetch).

Is it correct to call branch prediction the same as speculative execution?
If so, then "yes" they had it, but I don't honestly know if that's correct.
Pipeline rewinding was necessary on prediction failure, etc, similarly.

> Cheers
>
> [1] https://en.wikipedia.org/wiki/Motorola_68000
>
> - -- tomás

Re: Question technique

[JC.EtiembleG]

Le 05/01/2018 à 15:33, omag...@videotron.ca a écrit :

quelle version devrais-je installer et ou la trouver ? 


https://lescahiersdudebutant.fr/DFisos/

Ou trouver la 
méthode d'installation ?

https://dflinux.frama.io/documentation/

--
J-C Etiemble

Re: Synaptic problem - physical access to CD drive related

[tomas]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On Fri, Jan 05, 2018 at 10:15:45AM -0600, Richard Owlett wrote:
> On 01/05/2018 09:55 AM, Thomas Schmitt wrote:
> >Hi,
> >
> >Richard Owlett wrote:
> >>root@stretch17oct2017:/home/richard# mount  /dev/sr1 
> >>/home/richard/Desktop/testcd
> >>...
> >>>E: Type 'file:/home/richard/Desktop/testdvd' is not known on line 2 in
> >
> >"testcd" is not the same as "testdvd".
> >(Copy+paste error or the cause of your problem ?)
> >
> 
> 
> Now findmnt returns
> ├─/media/richard/Debian 9.1.0 i386 1  /dev/sr1iso9660
> ro,nosuid,nodev,relatime,uid=1000,gid=1000,
> ├─/home/richard/Desktop/testcd/dev/sr1iso9660
> ro,relatime,uid=1000,gid=1000,iocharset=utf
> └─/home/richard/Desktop/testdvd   /dev/sr1iso9660
> ro,relatime,uid=1000,gid=1000,iocharset=utf
> 
> I had tried "umount /media/richard/Debian 9.1.0 i386 1", but umount
> objected to the spaces in the file name.

I don't know about Synaptics, but for the command line you have
to put a file name in quotes whenever it contains spaces (this
is due to the shell separating arguments (by default) at whitespace:
umount sees four arguments then: "/media/richard/Debian", "9.1.0",
"i386" and "1". None of those are a mount point or device (lucky
you ;), thus umount complains).

Regards
- -- t
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.12 (GNU/Linux)

iEYEARECAAYFAlpPp9wACgkQBcgs9XrR2kbBWQCcDLa+ZEXeo9mhdFMa2SrUMjtn
YNwAn3qimJVHKfuHM4JZ8yYMEaoM8YDk
=WOSs
-END PGP SIGNATURE-

Re: Synaptic problem - physical access to CD drive related

[Richard Owlett]

On 01/05/2018 09:55 AM, Thomas Schmitt wrote:

Hi,

Richard Owlett wrote:

root@stretch17oct2017:/home/richard# mount  /dev/sr1 
/home/richard/Desktop/testcd
...

E: Type 'file:/home/richard/Desktop/testdvd' is not known on line 2 in


"testcd" is not the same as "testdvd".
(Copy+paste error or the cause of your problem ?)




Now findmnt returns
├─/media/richard/Debian 9.1.0 i386 1  /dev/sr1iso9660 
ro,nosuid,nodev,relatime,uid=1000,gid=1000,
├─/home/richard/Desktop/testcd/dev/sr1iso9660 
ro,relatime,uid=1000,gid=1000,iocharset=utf
└─/home/richard/Desktop/testdvd   /dev/sr1iso9660 
ro,relatime,uid=1000,gid=1000,iocharset=utf


I had tried "umount /media/richard/Debian 9.1.0 i386 1", but umount 
objected to the spaces in the file name.


Synaptic still returns

E: Type 'file:/home/richard/Desktop/testdvd' is not known on line 2 in 
source list /etc/apt/sources.list

E: The list of sources could not be read.
Go to the repository dialog to correct the problem.
E: _cache->open() failed, please report.

Is the problem that the dvd is automounted at boot?
Thank you

Re: "Meltdown" and "Spectre": Every modern processor has unfixable security flaws

[tomas]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On Fri, Jan 05, 2018 at 04:39:41PM +0100, Thomas Schmitt wrote:
> Hi,
> 
> to...@tuxteam.de wrote:

(thanks for this walk down the memory (pun? me?) lane.

[...]

> > > Man against hardware. Who will finally win ?
> 
> > Hardware.
> 
> The more we should enjoy our intermediate victories.

Optimist as always. Thomas, you're my hero :)

Cheers
- -- t
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.12 (GNU/Linux)

iEYEARECAAYFAlpPotwACgkQBcgs9XrR2kYLDACdHaLSYNUXwy8T159mBnjbsdR5
Yn0An01el2YYjhpfoyhVNAJ1c2sVzHhq
=wbrL
-END PGP SIGNATURE-

Re: Iniciar Windows en un disco externo desde Grub

[Ariel Martín Bellio]

El 04/01/2018 a las 03:51 p.m., Andr�s DG escribi�:


Buenas lista, mi problema surge cuando se rompe una notebook que tiene 
instalado Windows 10, quit� el disco de la notebook rota y lo coloque 
en un carry disk, lo que necesito es conectar este disco (que est� en 
el carry) a mi notebook que tiene instalado Debian 9.3 y hacer que en 
el Grub aparezca la opci�n de bootear (iniciar) desde el USB donde 
conecte el carry con Windows 10.


Notas:

��� El disco anda perfectamente porque ya lo prob� en otra m�quina.

��� El Grub est� instalado en mi notebook.

��� El disco que est� en el carry ten�a instalado solamente Windows 
10.


Espero que se entienda lo que necesito hacer, ante cualquier duda... 
consulten.



Desde ya gracias.



Disco conectado, por USB supongo y un:

# update-grub

Re: Synaptic problem - physical access to CD drive related

[Thomas Schmitt]

Hi,

Richard Owlett wrote:
> root@stretch17oct2017:/home/richard# mount  /dev/sr1 
> /home/richard/Desktop/testcd
> ...
> > E: Type 'file:/home/richard/Desktop/testdvd' is not known on line 2 in

"testcd" is not the same as "testdvd".
(Copy+paste error or the cause of your problem ?)


Have a nice day :)

Thomas

Synaptic problem - physical access to CD drive related

[Richard Owlett]

I have 3 machines with differing problems physically accessing the 
CD/DVD drive. To install Debian I routinely use a USB connected drive 
WITHOUT any problem by using the BIOS option to select a boot device.


The SOURCES.LIST(5) man page hints that I should be able us something like
 file:/media/richard/Debian%209.1.0%20i386%201
or
file:/media/richard/Debian 9.1.0 i386 1

Neither worked. Man page suggest the space characters to be the problem.

I did

root@stretch17oct2017:/home/richard# findmnt
TARGETSOURCE  FSTYPE  OPTIONS
/ /dev/sda9   ext4rw,relatime,errors=rem

.
.
.> └─/media/richard/Debian 9.1.0 i386 1  /dev/sr1iso9660 
ro,nosuid,nodev,relati



root@stretch17oct2017:/home/richard# mount  /dev/sr1 
/home/richard/Desktop/testcd
mount: /dev/sr1 is write-protected, mounting read-only
root@stretch17oct2017:/home/richard#


When I run Synaptic, it complains about a line in sources.list
   file:/home/richard/Desktop/testdvd stretch main contrib non-free

The error message is

E: Type 'file:/home/richard/Desktop/testdvd' is not known on line 2 in source 
list /etc/apt/sources.list
E: The list of sources could not be read.
Go to the repository dialog to correct the problem.
E: _cache->open() failed, please report.



What can I do?
TIA

Re: "Meltdown" and "Spectre": Every modern processor has unfixable security flaws

[Thomas Schmitt]

Hi,

to...@tuxteam.de wrote:
> > > Does any of the processors in the M68K family support VM?

I wrote:
> >   http://gunkies.org/wiki/MC68010

> With TLB cache and all that? Pretty impressive :)

I am not sure about the 68010 and its separate MMU. But beginning with 68020
there surely was memory space separation per process and cache memory in the
CPU. Looking at
  https://en.wikipedia.org/wiki/Motorola_68000_series#Improvement_history
i'd say that the family participated in the development of those tricks
for microprocessors. (Mainframe is said to have invented many of the modern
stuff but failed to make it affordable.)


> I remember at the time to be pretty discouraging to see 8086 and ilk
> eating all the market.

Well, MC680X0 first fell victim to RISC CPUs like DEC Alpha, MIPS or SPARC.
Then x386 made possible ultra-low-cost Unix machines (not more than 5000 USD),
x486 drilled holes into the SPARCstation market, Pentium began to compete
with the faster RISC architectures, and Pentium II decided the race.
PowerPC and MIPS still offered some resistence, but the system prices of
fat x86 machines with GNU/Linux were at most half those of the cheapest
RISC based Unix workstations.


> > Man against hardware. Who will finally win ?

> Hardware.

The more we should enjoy our intermediate victories.


Have a nice day :)

Thomas

Re: fdisk via console locale, défilement manuel ?

[Randy11]

Le 05/01/2018 à 12:35, Bernard Schoenacker a écrit :


serait il possible d'employer cfdisk ?

illustrations :
http://manual.aptosid.com/fr/part-cfdisk-fr.htm

slt
bernard


Cela faisait longtemps que je n'avais pas regardé
"cfdisk", l'interface à bien progressée, l'affichage des
UUID est pratique.

Mais attention, tel quel les actions sont possibles, donc
risque de modification des partitions par rapport à
"fdisk -l".

Re: fdisk via console locale, défilement manuel ?

[Randy11]

Le 05/01/2018 à 11:46, Pierre L. a écrit :

Bonjour,

En mode console, est-il possible d'avoir une option qui permette d'avoir
une "liste déroulante", plutôt que d'avoir le résultat d'une commande
qui défile d'un coup à l'écran ?
Clavier/écran directement branchés sur la machine.

Je tente de m'expliquer car probablement assez peu clair (d'ailleurs je
ne vois pas comment trouver l'info, car quel mot clé utiliser ?!) :
- la commande fdisk affiche toutes les partitions reconnues par le
système (si je ne me trompe pas). Dans mon cas, seule la fin est
lisible, pas moyen de remonter...
Certes via ssh il est possible d'avoir un ascenseur dans une interface
type XFCE, mais en local directement sur la console de la machine,
est-ce possible ?

En vous remerciant par avance,

Et au passage les bons voeux à la liste :)


J'ai découvert "most" : apt-get install most.

fdisk -l | most

L'aide en ligne indique qu'il faut appuyer sur "Q" pour quitter
et "H" pour l'aide. Cela permet de monter et descendre.

Pour avoir les pages de manuel en couleur, dans mon ".bashrc" :
PAGER=most
export PAGER

Re: Question technique

[Bernard Schoenacker]

- Mail original -

> De: "omag...@videotron.ca" 
> À: debian-user-french@lists.debian.org
> Envoyé: Vendredi 5 Janvier 2018 15:33:08
> Objet: Question technique

> Bonjour !

> En faisant un peu de ménage, je viens de retrouver un ciel ordinateur
> dont je ne me suis pas servi depuis longtemps. Il s'agit d'un Acer
> eMachnie EM350 avec Windows 7.

> Je voulais savoir si je pouvais remplacer Windows par Debian. Est ce
> que ça fonctionnerai ? Comme c'est un vieil ordinateur, quelle
> version devrais-je installer et ou la trouver ? Ou trouver la
> méthode d'installation ? (je suis novice dans ce domaine).

> Merci de votre aide et bonne journée.

> Olivier Magnan
bonjour, 

vous pouvez installer la dernière version i386 avec xfce : 

https://cdimage.debian.org/cdimage/release/9.2.1/i386/iso-dvd/debian-9.2.1-i386-DVD-1.iso
 

l'outil pour basculer l'image iso vers la clé USB : 
https://etcher.io/ 

petit conseil: utiliser un gestionnaire de téléchargement comme : 
http://files2.freedownloadmanager.org/5/5.1-latest/setup_x86.exe 
slt 
bernard 

Re: fdisk via console locale, défilement manuel ?

[Michel]

Le 05/01/2018 à 12:30, daniel huhardeaux a écrit :
> Le 05/01/2018 à 11:46, Pierre L. a écrit :
>> Bonjour,
> 
> Bonjour
> 
>>
>> En mode console, est-il possible d'avoir une option qui permette d'avoir
>> une "liste déroulante", plutôt que d'avoir le résultat d'une commande
>> qui défile d'un coup à l'écran ?
> more
> 
> Ex: ls -al|more
> 
> [...]
> 
shift + pgdwn ou pgup ?

Re: Question technique

[Randy11]

Le 05/01/2018 à 15:33, omag...@videotron.ca a écrit :

Bonjour !

En faisant un peu de ménage, je viens de retrouver un ciel ordinateur 
dont je ne me suis pas servi depuis longtemps. Il s'agit d'un Acer 
eMachnie EM350 avec Windows 7.


Je voulais savoir si je pouvais remplacer Windows par Debian. Est ce que 
ça fonctionnerai ? Comme c'est un vieil ordinateur, quelle version 
devrais-je installer et ou la trouver ? Ou trouver la méthode 
d'installation ? (je suis novice dans ce domaine).


Merci de votre aide et bonne journée.

Olivier Magnan


Bonjour Olivier,

Je te conseil d'utiliser ton Windows pour savoir à quel type de
machine tu as affaire  et les périphérique concernés, notamment
as-tu une machine de type "i386" en 32 bits seulement ou
du 64 bits est-il possible. À défaut, si l'installation de la version 64 
bits

de Debian échoue, il suffira de passer à la version 32 bits.

En premier, tu peux essayer une "Live Debian" : tu utilises
une clef USB ou CD pour faire tourner l'OS disponible
ici : https://www.debian.org/CD/live/ . Tu peux choisir l'environnement
graphique que tu souhaites.

Cela te permettra de faire un test sans rien casser et voir
si cela te convient.

Pour l'installation, si tu as une connexion réseau, tu peux utiliser
une "Netinstall", c'est le minimum requis pour faire une installation,
le reste est téléchargé depuis les miroirs Debian.
Pour l'image  https://www.debian.org/distrib/netinst.

Il peut être nécessaire de retoucher la configuration du BIOS, mais
sans test impossible de savoir si cela devra être fait. Essaye et tiens-nous
informé.

Bonne journée.

Re: Question technique

[Basile Starynkevitch]

On 01/05/2018 03:33 PM, omag...@videotron.ca wrote:

Bonjour !

En faisant un peu de ménage, je viens de retrouver un ciel ordinateur 
dont je ne me suis pas servi depuis longtemps. Il s'agit d'un Acer 
eMachnie EM350 avec Windows 7.


Processeur 64 bits Atom N450 
https://ark.intel.com/fr/products/42503/Intel-Atom-Processor-N450-512K-Cache-1_66-GHz 



Je voulais savoir si je pouvais remplacer Windows par Debian. Est ce 
que ça fonctionnerai ?



Très probablement oui. Et ça vaut le coup d'essayer.

Comme c'est un vieil ordinateur, quelle version devrais-je installer 
et ou la trouver ?


Une version assez récente de Debian. https://www.debian.org/distrib/ ; 
(AMD64 ou i386)



Ou trouver la méthode d'installation ? (je suis novice dans ce domaine).


Le plus simple: fréquenter quelqu'un qui connait Debian, ou bien une 
install-party.


Sinon, lire la documentation. 
https://www.debian.org/releases/stable/installmanual


--
Basile STARYNKEVITCH   == http://starynkevitch.net/Basile
opinions are mine only - les opinions sont seulement miennes
Bourg La Reine, France

Re: GRUB and boot partition

[Gary Dale]

On 2018-01-03 01:59 PM, David Christensen wrote:

On 01/03/18 06:45, Gary Dale wrote:

On 2018-01-02 02:35 PM, Pascal Hambourg wrote:


Encryption does not require extra space (except for header and block 
padding). Encrypted data have the same size of cleartext data.


+1


Encryption is similar in concept to compression. 


AFAIK common use on Debian systems:

1.  Encryption functions [1] are reversible functions that transform 
data 1:1 in size, and are lossless.


2.  Compression functions [2] are reversible functions that strive for 
size ratios of N:1, where N > 1 (uncompressed:compressed), and can be 
lossless or lossly.



A related topic is hashing functions [3] (N:fixed, can be difficult to 
reverse).




It could even reduce the space requirements.


I'm curious -- can you cite a compressing cipher code that cannot be 
reduced to independent compression and cipher functions?



Encryption and compression both work by replacing strings of letters 
with something else.


I agree that encryption and compression are both forms of coding [4].


Encryption and compression both work by replacing strings of letters 
with something else. What we call clear text, for example, is just a  
> Caesar cipher where each letter is replaced by a number (its ASCII 
code
or unicode). 


ASCII [5] is a transliteration code -- replace a token from one 
alphabet (Roman letters, Arabic numerals, common English symbols, 
etc.) with a token from another alphabet (7-bit binary number). 
Spelling, grammar, and meaning are unchanged.



The goal of a substitution cipher is to conceal meaning, and can be 
done without changing alphabets (e.g. rot13 [6]).  Spelling and 
grammar are unchanged (which facilitates cryptanalysis).



Morse code, on the other hand, replaces common letters with shorter 
sequences of dots and dashes than less common letters.


I agree that Morse Code [7] uses frequency-based techniques.


David


References:

[1] https://en.wikipedia.org/wiki/Encryption

[2] https://en.wikipedia.org/wiki/Data_compression

[3] https://en.wikipedia.org/wiki/Hash_function

[4] https://en.wikipedia.org/wiki/Code

[5] https://en.wikipedia.org/wiki/ASCII

[6] https://en.wikipedia.org/wiki/ROT13

[7] https://en.wikipedia.org/wiki/Morse_code



While the intent is different, the techniques are quite similar. One 
once-popular code was to replace all words in a message with 2 numbers 
each, referring to a page & word number within an agreed-upon book. If 
you used it electronically, you could send a binary file where each 
original word was reduced to 2 bytes.

Re: processor_unfixable security flaws

[Roberto C . Sánchez]

On Fri, Jan 05, 2018 at 09:11:53AM -0600, John Hasler wrote:
> sejobud33 writes:
> > are "melton" & "spectre" related at the ime hidden features
> 
> No.  The management engine is certainly a dangerous feature but this is
> orthogonal to it.

It is nice to know that we have unfixable security vulnerabilities at
all levels of the hardware stack.  Bonus: if you have an HP business
laptop that runs Windows you probably also ended up with the nice little
keylogger that they decided to ship in their keyboard driver for the
last 5 years :-)

Regards,

-Roberto

-- 
Roberto C. Sánchez

Re: processor_unfixable security flaws

[John Hasler]

sejobud33 writes:
> are "melton" & "spectre" related at the ime hidden features

No.  The management engine is certainly a dangerous feature but this is
orthogonal to it.
-- 
John Hasler 
jhas...@newsguy.com
Elmwood, WI USA

Question technique

[omag...@videotron.ca]

Bonjour !

En faisant un peu de ménage, je viens de retrouver un ciel ordinateur dont je 
ne me suis pas servi depuis longtemps. Il s'agit d'un Acer eMachnie EM350 avec 
Windows 7.

Je voulais savoir si je pouvais remplacer Windows par Debian. Est ce que ça 
fonctionnerai ? Comme c'est un vieil ordinateur, quelle version devrais-je 
installer et ou la trouver ? Ou trouver la méthode d'installation ? (je suis 
novice dans ce domaine).

Merci de votre aide et bonne journée.

Olivier Magnan

processor_unfixable security flaws

[sejobud33]

processor_unfixable security flaws

I cannot answer these questions myself:
- are "melton" & "spectre" related at the ime hidden features
(linustorwald said it is not a bug but a function not yet
discovered/exploited | 40 flaws) ?


* Replacing the cpu should solve these 'bugs'.
- does it mean that Intel is incompetent & sell low quality at a high price ?
Their industry is supported by their commercial monopoly but when a
product is defectuous , it should be replaced/repaired without
charge/gratis no ?
On their site, a microcode (firmware update) is provided for linux.

I understand these bugs like a bad conception of the cpu and not like an
operating system weakness so why the guys behind are still recruited by
intel and why they wait that 'someone else' do their job ?
Is it not a bizarre management of an international company ?
It sounds that building a closed product means that the
holes/bugs/flaws/vulnerabilities were implemented according on a
plan,following orders at a high level as a requirement for/at the
creation/benefit of intel.

ryzen (amd) should be compromised too.
Should gpu & 5g not be it ?

A remedy from google is like an article from a blog (which tor) where
propaganda & censure are the vectors of the sponsors : corruption.


Could these undefinable security flaws change the politic/policy of a
company building a clean, open, neat processor in a near future - assuming
they do know how to do that ... fake reputation - ?
(i mean near of the home/end-user without ime etc.)


thx.

Re: "Meltdown" and "Spectre": Every modern processor has unfixable security flaws

[tomas]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On Fri, Jan 05, 2018 at 02:41:57PM +0100, Thomas Schmitt wrote:
> Hi,
> 
> to...@tuxteam.de wrote:
> > Does any of the processors in the M68K family support VM?
> 
> They did since the early 1980s when i wondered what the advantage of an
> 68010 would be over an 68000 (with HP BASIC: none).
>   http://gunkies.org/wiki/MC68010
> 
> After all, early Sun, HP and Apollo Unix workstations were based on 680X0.

With TLB cache and all that? Pretty impressive :)

> > Does any of the M68K family members prefetch speculatively?
> 
> The last one (68060) had Branch Prediction, which implies some kind of
> speculative execution and data prefetching.
>   https://en.wikipedia.org/wiki/Motorola_68000_series

I remember at the time to be pretty discouraging to see 8086 and ilk
eating all the market.

> Man against hardware. Who will finally win ?

Hardware.

Cheers
- -- t
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.12 (GNU/Linux)

iEYEARECAAYFAlpPjgsACgkQBcgs9XrR2kat8wCfTIjdez6O0MMe+5dCvc1rntUL
bskAniAbwBnxHumIdRpojWpSp9o0iSaJ
=mZjm
-END PGP SIGNATURE-

Re: "Meltdown" and "Spectre": Every modern processor has unfixable security flaws

[Thomas Schmitt]

Hi,

to...@tuxteam.de wrote:
> Does any of the processors in the M68K family support VM?

They did since the early 1980s when i wondered what the advantage of an
68010 would be over an 68000 (with HP BASIC: none).
  http://gunkies.org/wiki/MC68010

After all, early Sun, HP and Apollo Unix workstations were based on 680X0.


> Does any of the M68K family members prefetch speculatively?

The last one (68060) had Branch Prediction, which implies some kind of
speculative execution and data prefetching.
  https://en.wikipedia.org/wiki/Motorola_68000_series


Good news: Google claims to have a software remedy against Spectre,
called the "Retpoline". It keeps the CPU speculator busy with harmless
things while vulnerable commands are executed. I guess we will see it soon
as compiler option.
  https://support.google.com/faqs/answer/7625886
(I love the image of a hyperactive 7-year old child wrapped in a warehouse
 of trampolines.)

Man against hardware. Who will finally win ?


Have a nice day :)

Thomas

Re: “Meltdown” and “Spectre”: Every modern processor has unfixable security flaws

[tomas]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On Fri, Jan 05, 2018 at 07:39:23AM -0500, Jack Dangler wrote:

[...]

> Did this also affect Motorola chipsets? I know they haven't been
> popular in a while, but I believe they are still in use (i.e. 68000)

You can answer this question yourself:

 - Melt is an attack on virtual memory infrastructure. Does
   any of the processors in the M68K family support VM?

 - Spectre is an attack on speculative prefetching. Does any
   of the M68K family members prefetch speculatively?

The excellent Wikipedia article on 68K [1] might be a good starting
point on that.

My bet would be on "no to both", since M68K is from that happy,
good ol' time where (micro) CPUs were so excruciatingly slow
that there was little pressure to implement those monstrosities
which basically hide the facts of too little/too slow physical
memory (mainframes of that time had at least VM, possibly
speculative prefetch).

Cheers

[1] https://en.wikipedia.org/wiki/Motorola_68000

- -- tomás
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.12 (GNU/Linux)

iEYEARECAAYFAlpPdckACgkQBcgs9XrR2kae7wCfVk+Nn+5+Eib/Oiy3RD8+/sJ0
uRcAmwWVgJ9Hke8AwClhpCZNpqdqzxtp
=sDdP
-END PGP SIGNATURE-

Welcome to Douchebags

[Douchebags Support]

（放心=各地真=发票）1522ooo9328张 （代开）（票）1522ooo9328 张生 zuomengjia,
Welcome to Douchebags.

To sign in to our site, use these credentials during checkout or on the My Account page:



Email: debian-user-french@lists.debian.org

Password: Password you set when creating account



Forgot your account password? Click here to reset it.

When you sign in to your account, you will be able to:

Proceed through checkout faster
Check the status of orders
View past orders
Store alternative addresses (for shipping to multiple family members and friends)






Thank you, Douchebags!

Re: “Meltdown” and “Spectre”: Every modern processor has unfixable security flaws

[Jack Dangler]

On 01/04/2018 12:55 PM, The Wanderer wrote:

On 2018-01-04 at 12:30, Michael Fothergill wrote:


On 4 January 2018 at 17:22, Curt  wrote:


https://arstechnica.com/gadgets/2018/01/meltdown-and-spectre-every-modern-
processor-has-unfixable-security-fladdws/U


TL;DR

  Windows, Linux, and macOS have all received security patches that
  significantly alter how the operating systems handle virtual memory in
  order to protect against a hitherto undisclosed flaw.
...
  In the immediate term, it looks like most systems will shortly have
  patches for Meltdown. At least for Linux and Windows, these patches
  allow end-users to opt out if they would prefer. The most vulnerable
  users are probably cloud service providers; Meltdown and Spectre can
  both in principle be used to further attacks against hypervisors,
  making it easier for malicious users to break out of their virtual
  machines.
...
  For typical desktop users, the risk is arguably less significant. While
  both Meltdown and Spectre can have value in expanding the scope of an
  existing flaw, neither one is sufficient on its own to, for example,
  break out of a Web browser.

Apparent moral of story for CPU: don't speculate (but it's significantly
*slower*).

​Isn't this mainly an Intel problem?  I use AMD chipsets.  I would go for
Ryzen nowadays anyway.

Meltdown so far is not known to affect anything other than Intel.

Spectre, however, is confirmed to affect AMD CPUs - and Ryzen CPUs are
specifically stated to be affected.

Did this also affect Motorola chipsets? I know they haven't been popular 
in a while, but I believe they are still in use (i.e. 68000)

Re: fdisk via console locale, défilement manuel ?

[hamster]

Le 05/01/2018 à 12:29, Raphaël POITEVIN a écrit :
> daniel huhardeaux  writes:
>> more
> less est préférable car on peut défiler dans les deux sens.

Petit dicton : il faut arriver a se convaincre que "less is better than
more".

Re: fdisk via console locale, défilement manuel ?

[hamster]

Le 05/01/2018 à 12:20, Raphaël POITEVIN a écrit :
> "Pierre L."  writes:
>> En mode console, est-il possible d'avoir une option qui permette d'avoir
>> une "liste déroulante", plutôt que d'avoir le résultat d'une commande
>> qui défile d'un coup à l'écran ?
>> Clavier/écran directement branchés sur la machine.
> Piper dans less :
> fdisk -l | less

Ne jamais dire "less" a un débutant sans lui dire que pour en sortir
ensuite c'est la touche "q". C'est pareil quand on dit "RTFM" d'ailleurs.

Re: fdisk via console locale, défilement manuel ?

[Bernard Schoenacker]

- Mail original -
> De: "Pierre L." 
> À: debian-user-french@lists.debian.org
> Envoyé: Vendredi 5 Janvier 2018 11:46:09
> Objet: fdisk via console locale, défilement manuel ?
> 
> Bonjour,
> 
> En mode console, est-il possible d'avoir une option qui permette
> d'avoir
> une "liste déroulante", plutôt que d'avoir le résultat d'une commande
> qui défile d'un coup à l'écran ?
> Clavier/écran directement branchés sur la machine.
> 
> Je tente de m'expliquer car probablement assez peu clair (d'ailleurs
> je
> ne vois pas comment trouver l'info, car quel mot clé utiliser ?!) :
> - la commande fdisk affiche toutes les partitions reconnues par le
> système (si je ne me trompe pas). Dans mon cas, seule la fin est
> lisible, pas moyen de remonter...
> Certes via ssh il est possible d'avoir un ascenseur dans une
> interface
> type XFCE, mais en local directement sur la console de la machine,
> est-ce possible ?
> 
> En vous remerciant par avance,
> 
> Et au passage les bons voeux à la liste :)
> 
> 
bonjour,


serait il possible d'employer cfdisk ?

illustrations :

http://manual.aptosid.com/fr/part-cfdisk-fr.htm

slt
bernard

Re: fdisk via console locale, défilement manuel ?

[Raphaël POITEVIN]

daniel huhardeaux  writes:
> more

less est préférable car on peut défiler dans les deux sens.
-- 
Raphaël POITEVIN

Re: fdisk via console locale, défilement manuel ?

[daniel huhardeaux]

Le 05/01/2018 à 11:46, Pierre L. a écrit :

Bonjour,


Bonjour



En mode console, est-il possible d'avoir une option qui permette d'avoir
une "liste déroulante", plutôt que d'avoir le résultat d'une commande
qui défile d'un coup à l'écran ?

more

Ex: ls -al|more

[...]

--
Daniel

Re: fdisk via console locale, défilement manuel ?

[Raphaël POITEVIN]

"Pierre L."  writes:
> En mode console, est-il possible d'avoir une option qui permette d'avoir
> une "liste déroulante", plutôt que d'avoir le résultat d'une commande
> qui défile d'un coup à l'écran ?
> Clavier/écran directement branchés sur la machine.

Piper dans less :
fdisk -l | less
-- 
Raphaël

fdisk via console locale, défilement manuel ?

[Pierre L.]

Bonjour,

En mode console, est-il possible d'avoir une option qui permette d'avoir
une "liste déroulante", plutôt que d'avoir le résultat d'une commande
qui défile d'un coup à l'écran ?
Clavier/écran directement branchés sur la machine.

Je tente de m'expliquer car probablement assez peu clair (d'ailleurs je
ne vois pas comment trouver l'info, car quel mot clé utiliser ?!) :
- la commande fdisk affiche toutes les partitions reconnues par le
système (si je ne me trompe pas). Dans mon cas, seule la fin est
lisible, pas moyen de remonter...
Certes via ssh il est possible d'avoir un ascenseur dans une interface
type XFCE, mais en local directement sur la console de la machine,
est-ce possible ?

En vous remerciant par avance,

Et au passage les bons voeux à la liste :)



signature.asc
Description: OpenPGP digital signature

Falha nos processadores Intel

[Sérgio Abrantes Junior]

Bom dia pessoal,

Já saiu atualização.

- -
Debian Security Advisory DSA-4078-1   secur...@debian.org
https://www.debian.org/security/Yves-Alexis Perez
January 04, 2018  https://www.debian.org/security/faq
- -

Package: linux
CVE ID : CVE-2017-5754

Multiple researchers have discovered a vulnerability in Intel processors,
enabling an attacker controlling an unprivileged process to read memory from
arbitrary addresses, including from the kernel and all other processes
running
on the system.

This specific attack has been named Meltdown and is addressed in the Linux
kernel for the Intel x86-64 architecture by a patch set named Kernel Page
Table
Isolation, enforcing a near complete separation of the kernel and userspace
address maps and preventing the attack. This solution might have a
performance
impact, and can be disabled at boot time by passing `pti=off' to the kernel
command line.

We also identified a regression for ancient userspaces using the vsyscall
interface, for example chroot and containers using (e)glibc 2.13 and older,
including those based on Debian 7 or RHEL/CentOS 6. This regression will be
fixed in a later update.

The other vulnerabilities (named Spectre) published at the same time are not
addressed in this update and will be fixed in a later update.

For the oldstable distribution (jessie), this problem will be fixed in a
separate update.

For the stable distribution (stretch), this problem has been fixed in
version 4.9.65-3+deb9u2.

We recommend that you upgrade your linux packages.

For the detailed security status of linux please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/linux

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Re: Clef 2.4G Wireless Serial

[contact]

Bonjour

merci,

oui en effet c'est un module série destiné a la mise à jour "Over the 
Air" d'une carte de robotique sur ce produit


http://store.makeblock.com/product/mbot-robot-kit.

Cordialement

François-Marie BILLARD



Le 04/01/2018 à 19:47, Yann Cohen a écrit :

Bonjour,

une recherche sur l'Id USB donne un lieen où l'on évoque un succès avec
un module noyau à compiler...

https://github.com/node-hid/node-hid/issues/214


Le dongle en question est une liaison série sur 2.4GHz n'estce pas ?

Cordialement.

Yann Cohen.

Le dimanche 31 décembre 2017 à 16:37 +0100, contact a écrit :

Bonsoir,

quelqu'un a-t-il une piste pour utiliser une clef

Winbond Electronics Corp. destinée à la communication série en 2.4G

un lsub indique ceci :


Bus 001 Device 003: ID 0416: Winbond Electronics Corp.
   bDeviceClass    0 (Defined at Interface level)
   bDeviceProtocol 0
   iProduct    2
   (Bus Powered)

merci et bonne fin d'année.

Cordialement