Re: Please be respectful
On 17-10-2020 15:05, Michael uplawski wrote: > Leslie Rhorer: >> Until someone does earn respect, there is no reason anyone >> should afford it them. It is utterly ridiculous to think everyone >> deserves respect. > > This is where you are excluding yourself from the human community. Face > it. Live with it. *We* will be fine, anyway. Rubbish! There are certain qualities which must be extended before you are worthy of receiving them, trust, loyalty, to mention a couple, but you can throw respect in there also, along with one or two others. I have to earn the respect of every child I meet, and maintain the standard every time I encounter that child in the future. Some, in their retarded viewpoint, believe respect is something engendered by social position. Wrong! Social position is engendered by earned level of respect. `excluding yourself from the human community', what a load of puerile ignorance! -- `Religion is regarded by the common people as true, by the wise as false, and by the rulers as useful'. — Lucius Annæus Seneca. Terrorism, the new religion. Registered Linux User: 554515
Re: Please be respectful
Leslie Rhorer: > Until someone does earn respect, there is no reason anyone > should afford it them. It is utterly ridiculous to think everyone > deserves respect. This is where you are excluding yourself from the human community. Face it. Live with it. *We* will be fine, anyway. Cheerio (I like your topic here). -- GnuPG rsa4096 2020-09-08 [SC] [expire : 2022-09-08] B31591374C4824DE872841D27D857E5045D038F8 sub rsa4096 2020-09-08 [E] [expire : 2022-09-08]
Re: rsync --delete
On Fri, 16 Oct 2020 17:09:42 -0500 Mike McClain wrote: > I've been using rsync to backup to a flash drive but it's not > performing exactly as I expected. You might look into rsnapshot. -- Does anybody read signatures any more? https://charlescurley.com https://charlescurley.com/blog/
Re: rsync --delete
Mike McClain wrote on 10/16/20 4:09 PM: > I've been using rsync to backup to a flash drive but it's not > performing exactly as I expected. > > The man page says: > --deletedelete extraneous files from dest dirs > A section of the backup script is so: > Params=(-a --inplace --delete); > Flash=/sda/rpi4b > cd /home/mike > [ ! -d $Flash/mike ] && mkdir $Flash/mike; > > # exclude compressed files and the contents of most of the .* directories > /mc/bin/mk_rsync_exclude.sh > echo /usr/bin/rsync $Params --exclude-from=/home/mike/.rsync_exclude . > $Flash/mike > /usr/bin/rsync $Params --exclude-from=/home/mike/.rsync_exclude . $Flash/mike > || > echo rsync $Params --exclude-from=/home/mike/.rsync_exclude . $Flash/mike >Failed $? ; > > If I delete a file from my home directory then backup over last > week's copy the deleted file stays in the backup directory and these > build up over time. > Am I misusing rsync or am I just not understanding how it works? The latter :-) You need to add: --delete-excluded (I'll let you read the man page to see what that does :-) ) Doc -- Web: http://enginehousebooks.com/drevans signature.asc Description: OpenPGP digital signature
Re: rsync --delete
- as stumbling newby , hesitate to express opinion : maybe something like : [ or what ever the destination is categorized] On Sat, Oct 17, 2020 at 1:27 AM Mike McClain wrote: > I've been using rsync to backup to a flash drive but it's not > performing exactly as I expected. > > The man page says: > --deletedelete extraneous files from dest dirs > A section of the backup script is so: > Params=(-a --inplace --delete); > Flash=/sda/rpi4b > cd /home/mike > [ ! -d $Flash/mike ] && mkdir $Flash/mike; > > # exclude compressed files and the contents of most of the .* directories > /mc/bin/mk_rsync_exclude.sh > echo /usr/bin/rsync $Params --exclude-from=/home/mike/.rsync_exclude . > $Flash/mike > /usr/bin/rsync $Params --exclude-from=/home/mike/.rsync_exclude . > $Flash/mike || > echo rsync $Params --exclude-from=/home/mike/.rsync_exclude . > $Flash/mikeFailed $? ; > > If I delete a file from my home directory then backup over last > week's copy the deleted file stays in the backup directory and these > build up over time. > Am I misusing rsync or am I just not understanding how it works? > > Thanks, > Mike > -- > "First say to yourself what you would be; > and then do what you have to do." > - Epictetus > >
Re: rsync --delete
Mike McClain wrote: > A section of the backup script is so: > Params=(-a --inplace --delete); [...] Use instead: Params=-a --inplace --delete Regards, Klaus. -- Klaus Singvogel GnuPG-Key-ID: 1024R/5068792D 1994-06-27
rsync --delete
I've been using rsync to backup to a flash drive but it's not performing exactly as I expected. The man page says: --deletedelete extraneous files from dest dirs A section of the backup script is so: Params=(-a --inplace --delete); Flash=/sda/rpi4b cd /home/mike [ ! -d $Flash/mike ] && mkdir $Flash/mike; # exclude compressed files and the contents of most of the .* directories /mc/bin/mk_rsync_exclude.sh echo /usr/bin/rsync $Params --exclude-from=/home/mike/.rsync_exclude . $Flash/mike /usr/bin/rsync $Params --exclude-from=/home/mike/.rsync_exclude . $Flash/mike || echo rsync $Params --exclude-from=/home/mike/.rsync_exclude . $Flash/mike Failed $? ; If I delete a file from my home directory then backup over last week's copy the deleted file stays in the backup directory and these build up over time. Am I misusing rsync or am I just not understanding how it works? Thanks, Mike -- "First say to yourself what you would be; and then do what you have to do." - Epictetus
Re: Please be respectful
On 10/16/2020 4:57 AM, Pierre-Elliott B�cue wrote: The point - or my point anyway - is rather than seeking to tack on a whole bunch of poorly considered features to a poorly considered fundamental utility, well considered, powerful, highly configurable solutions such as "find" should be encouraged. And no one said that one couldn't recommend using a command line tool. But the fact there is a command line tool doesn't make the need of the same feature in a GUI file manager absurd or irrelevant. And your opinion on that matter is irrelevant as you are not the one asking for help. This is nonsense. Whenever I forced to do something, or worse yet, prevented from doing something by a consensus of incompetent individuals, I have every right to complain. The debian-user list is a communication medium where each and any user of Debian, from "newbie" to "expert" to ask questions and share their knowledge about the project and its features. Why talk about Debian, irrespective of what list this is, when a more powerful, simpler, more fundamental utility is available on *ALL* distros? Being "irrespective" of the list is completely irrelevant to the matter, as this very list is a Debian one for people needing help about Debian. Not just the ones you think have a right to ask for help but all of them. Your saying so does not make it so. The simple fact is a solution which works for 100,000 people is superior to that which only serves 500 people, *PROVIDED* the 500 are included in the 100,000. Very, very few distros fail to provide the find utility. It just does not get any more universal. I *NEVER* suggested anyone should not have the right to ask a question. Indeed, everyone should be encouraged to ask questions. Everyone is also entitled to an opinion and to express it. This fact litteraly makes the whole remains of your mail moot, and I'll henceforth refrain from answering to it. Your "fact" is in error. Feel free to ignore """lazy""" people from now on, but don't be irrespectful to them. You have no right to, and they don't deserve it. There is no such word - or concept - as irrespectful. The point you were apparently trying to make, however, is just completely wrong. I, and anyone else, have every right to reserve my respect from whomever I choose. Respect is *EARNED*. It is not a right and it is not a privilege. Until someone does earn respect, there is no reason anyone should afford it them. It is utterly ridiculous to think everyone deserves respect. If it is afforded to everyone, then it becomes totally worthless.
Re: webcam externe compatible Debian
J'ai également une Microsoft LifeCam HD-5000, utilisée successivement sous Gentoo et Debian. Même constat, elle marche parfaitement (et elle est un tantinet moins roots que le précédent modèle indiqué : mise au point auto) Éric Dégenètais Le ven. 16 oct. 2020 22:54, Jean-Michel OLTRA a écrit : > > Bonjour, > > > Le vendredi 16 octobre 2020, roger.tar...@free.fr a écrit... > > > > J'ai passé en revue divers articles sur les webcam pour Linux. > > Connaissez-vous des références de webcam (pas trop) anciennes qui soient > compatibles avec Debian Buster ? > > Celles que vous utilisez avec bonheur... > > Les Logitech sont nombreuses sur le marché et semblent offrir une > compatibilité qui dépend du modèle. > > J'ai une Microsoft LifeCam HD-5000 depuis plusieurs années (je suis en > testing), et ça fonctionne correctement. Je m'en sers avec Slack et je l'ai > utilisée également avec Jitsi. > > -- > jm > >
Re: webcam externe compatible Debian
Bonjour, Le vendredi 16 octobre 2020, roger.tar...@free.fr a écrit... > J'ai passé en revue divers articles sur les webcam pour Linux. > Connaissez-vous des références de webcam (pas trop) anciennes qui soient > compatibles avec Debian Buster ? > Celles que vous utilisez avec bonheur... > Les Logitech sont nombreuses sur le marché et semblent offrir une > compatibilité qui dépend du modèle. J'ai une Microsoft LifeCam HD-5000 depuis plusieurs années (je suis en testing), et ça fonctionne correctement. Je m'en sers avec Slack et je l'ai utilisée également avec Jitsi. -- jm
Re: OpenSSl encrpt and decrypt a String
Hi, 16 oct. 2020 à 15:58 de philipp.ew...@digionline.de: > i try to encrypt a String with OpenSSL but its not working as i want. > > echo -n "That's the text" | openssl enc -aes-256-cbc -a -A -nosalt > I don't know if your question is just theoretical or if you have a valid use case beyond the base64 "issue", but please note that CBC mode is probably not what you want if you are looking for security (see padding oracle attacks). Some pointers: * https://en.wikipedia.org/wiki/Block_cipher_mode_of_operation * https://blog.cloudflare.com/padding-oracles-and-the-decline-of-cbc-mode-ciphersuites/ * https://robertheaton.com/2013/07/29/padding-oracle-attack/ Best regards, l0f4r0
Re: Activate Mouse on root tty1-6
apt install gpm : terrific : Brill !! - that fixed it . . . overjoyed :) . purpose is when using Ctrl+Alt+F1 to access tty1 it is great to be able to use Mouse. BTW, tty1 Fonts were Tiny-small , to improved size with : [ got font iso01-12x22.psfu.gz from somewhere else : don't recall] Many thanks rgds On Fri, Oct 16, 2020 at 11:04 PM Dan Ritter wrote: > ellanios82 wrote: > > Hi List , > > please : how to get Logitech Mouse working on > > root tty 1-6 > > > > I think you want > > apt install gpm > > but you haven't given enough info about what you actually want > to do. > > -dsr- >
Re: Activate Mouse on root tty1-6
On Fri, 16 Oct 2020 22:51:54 +0300 ellanios82 wrote: > what to try, please ? Try installing the gpm package. -- Does anybody read signatures any more? https://charlescurley.com https://charlescurley.com/blog/
Re: Activate Mouse on root tty1-6
ellanios82 wrote: > Hi List , > please : how to get Logitech Mouse working on > root tty 1-6 > I think you want apt install gpm but you haven't given enough info about what you actually want to do. -dsr-
Activate Mouse on root tty1-6
Hi List , please : how to get Logitech Mouse working on root tty 1-6 hwinfo shows : USB 00.0: 10503 USB Mouse [Created at usb.122] Unique ID: D9m5.sgQkEajDP63 Parent ID: DBwJ.DFkaVl_rzX0 SysFS ID: /devices/pci:00/:00:1d.7/usb5/5-5/5-5.2/5-5.2:1 .0 SysFS BusID: 5-5.2:1.0 Hardware Class: mouse Model: "Logitech Unifying Receiver" Hotplug: USB Vendor: usb 0x046d "Logitech, Inc." Device: usb 0xc52f "Unifying Receiver" Revision: "30.00" Compatible to: int 0x0210 0x0028 Driver: "usbhid" Driver Modules: "usbhid" Device File: /dev/input/mice (/dev/input/mouse0) Device Files: /dev/input/mice, /dev/input/mouse0, /dev/input/even t3, /dev/input/by-path/pci-:00:1d.7-usb-0:5.2:1.0-event-mouse, /dev/input/by-id/usb-Logitech_USB_Receiver-event-mouse, /dev/input/ by-path/pci-:00:1d.7-usb-0:5.2:1.0-mouse, /dev/input/by-id/usb- Logitech_USB_Receiver-mouse Device Number: char 13:63 (char 13:32) Speed: 12 Mbps Module Alias: "usb:v046DpC52Fd3000dc00dsc00dp00ic03isc01ip02in00" Driver Info #0: Buttons: 8 Wheels: 2 XFree86 Protocol: explorerps/2 GPM Protocol: exps2 Config Status: cfg=new, avail=yes, need=no, active=unknown what to try, please ? regards ellan
How to add an origin to unattended upgrades?
I have unattended upgrades running on a testbed laptop. I would like to
add an origin to the list, but I don't think I am getting the entry
quite right. The origin is for vivaldi, which has its own repo outside
the Debian repos.
I set things up according to
https://wiki.debian.org/UnattendedUpgrades, and it works correctly for
Debian origins. The laptop had not been used for several months, so the
next unattended upgrade did a massive upgrade. So far, so good.
I tried adding the vivaldi origin to the mix. Now I cannot find
whatever web page I got the instructions from, but here are the results:
--
root@orca:~# apt-cache policy | grep -i vivaldi
500 http://repo.vivaldi.com/stable/deb stable/main i386 Packages
release o=Vivaldi Technologies,a=stable,l=Official Vivaldi package
repository,c=main,b=i386
origin repo.vivaldi.com
500 http://repo.vivaldi.com/stable/deb stable/main amd64 Packages
release o=Vivaldi Technologies,a=stable,l=Official Vivaldi package
repository,c=main,b=amd64
origin repo.vivaldi.com
root@orca:~#
--
led to the following in /etc/apt/apt.conf.d/50unattended-upgrades:
--
Unattended-Upgrade::Origins-Pattern {
// Codename based matching:
// This will follow the migration of a release through different
// archives (e.g. from testing to stable and later oldstable).
// Software will be the latest available for the named release,
// but the Debian release itself will not be automatically upgraded.
// "origin=Debian,codename=${distro_codename}-updates";
"origin=Debian,codename=${distro_codename}-updates"; // 2020-06-16
// "origin=Debian,codename=${distro_codename}-proposed-updates";
"origin=Debian,codename=${distro_codename},label=Debian";
"origin=Debian,codename=${distro_codename},label=Debian-Security";
"origin=Vivaldi Technologies,codename=stable,label=Official Vivaldi
package repository";
// Archive or Suite based matching:
// Note that this will silently match a different release after
// migration to the specified archive (e.g. testing becomes the
// new stable).
// "o=Debian,a=stable";
// "o=Debian,a=stable-updates";
// "o=Debian,a=proposed-updates";
// "o=Debian Backports,a=${distro_codename}-backports,l=Debian Backports";
};
--
There is an upgrade pending for Vivaldi, and the package has been
downloaded. But unattended upgrades has not installed it.
--
root@orca:~# unattended-upgrades --dry-run -d
Initial blacklist :
Initial whitelist:
Starting unattended upgrades script
Allowed origins are: origin=Debian,codename=buster-updates,
origin=Debian,codename=buster,label=Debian,
origin=Debian,codename=buster,label=Debian-Security, origin=Vivaldi
Technologies,codename=stable,label=Official Vivaldi package repository
Using
(^linux-image-[0-9]+\.[0-9\.]+-.*|^linux-headers-[0-9]+\.[0-9\.]+-.*|^linux-image-extra-[0-9]+\.[0-9\.]+-.*|^linux-modules-[0-9]+\.[0-9\.]+-.*|^linux-modules-extra-[0-9]+\.[0-9\.]+-.*|^linux-signed-image-[0-9]+\.[0-9\.]+-.*|^linux-image-unsigned-[0-9]+\.[0-9\.]+-.*|^kfreebsd-image-[0-9]+\.[0-9\.]+-.*|^kfreebsd-headers-[0-9]+\.[0-9\.]+-.*|^gnumach-image-[0-9]+\.[0-9\.]+-.*|^.*-modules-[0-9]+\.[0-9\.]+-.*|^.*-kernel-[0-9]+\.[0-9\.]+-.*|^linux-backports-modules-.*-[0-9]+\.[0-9\.]+-.*|^linux-modules-.*-[0-9]+\.[0-9\.]+-.*|^linux-tools-[0-9]+\.[0-9\.]+-.*|^linux-cloud-tools-[0-9]+\.[0-9\.]+-.*|^linux-buildinfo-[0-9]+\.[0-9\.]+-.*|^linux-source-[0-9]+\.[0-9\.]+-.*)
regexp to find kernel packages
Using
(^linux-image-4\.19\.0\-11\-amd64$|^linux-headers-4\.19\.0\-11\-amd64$|^linux-image-extra-4\.19\.0\-11\-amd64$|^linux-modules-4\.19\.0\-11\-amd64$|^linux-modules-extra-4\.19\.0\-11\-amd64$|^linux-signed-image-4\.19\.0\-11\-amd64$|^linux-image-unsigned-4\.19\.0\-11\-amd64$|^kfreebsd-image-4\.19\.0\-11\-amd64$|^kfreebsd-headers-4\.19\.0\-11\-amd64$|^gnumach-image-4\.19\.0\-11\-amd64$|^.*-modules-4\.19\.0\-11\-amd64$|^.*-kernel-4\.19\.0\-11\-amd64$|^linux-backports-modules-.*-4\.19\.0\-11\-amd64$|^linux-modules-.*-4\.19\.0\-11\-amd64$|^linux-tools-4\.19\.0\-11\-amd64$|^linux-cloud-tools-4\.19\.0\-11\-amd64$|^linux-buildinfo-4\.19\.0\-11\-amd64$|^linux-source-4\.19\.0\-11\-amd64$)
regexp to find running kernel packages
Checking: vivaldi-stable ([])
pkgs that look like they should be upgraded:
Fetched 0 B in 0s (0 B/s)
fetch.run() result: 0
blacklist: []
whitelist: []
No packages found that can be upgraded unattended and no pending auto-removals
root@orca:~#
--
--
Does anybody read signatures any more?
https://charlescurley.com
https://charlescurley.com/blog/
Re: Cannot install elixir from buster-backports
Andrei POPESCU writes: > > Bumping versions in stable is a no-go for Debian (Stable Release > Managers), with very few exceptions for very specific packages that have > few or no reverse dependencies (Firefox ESR and Chrome being notable > examples). > I meant in backports. But I understand. -- Brett M. Gilio bre...@gnu.org https://brettgilio.com/ E82A C026 95D6 FF02 43CA 1E5C F6C5 2DD1 BA27 CB87
Re: Iceweasel hangs
Tixy writes: > On Fri, 2020-10-16 at 19:56 +0300, Georgi Naplatanov wrote: > [...] >> Debian Jessie is not supported even as LTS anymore. If I was you then I >> would try to use FireFox binaries provided by mozilla.org. > > I would second that, or upgrade to a newer version of Debian. > Personally I wouldn't go anywhere near the public internet with a web > browser that has a couple of years of unfixed security vulnerabilities. Agreed. However, if you are pining to keep using this browser for some reason, I would run `strace` on the process and see what information is shown where the freeze occurs. -- Brett M. Gilio bre...@gnu.org https://brettgilio.com/ E82A C026 95D6 FF02 43CA 1E5C F6C5 2DD1 BA27 CB87
Re: /home as a symlink?
On Fri 16 Oct 2020 at 11:23:13 (+0200), Jesper Dybdal wrote: > I currently have /home in the root partition. I am considering moving > it to a different existing partition. > > Can I simply move the files and then make /home a symlink to /disk2/home? > > Or perhaps set up a symlink for each user: /home/user1 => /disk2/home/user1? This has the advantage that you can move users' individual home directories at different times, whenever they're not logged in, because they don't all have to reside in one location. > Do either of these run a risk of files under /home being needed before > /disk2 is mounted (it is in fstab)? No, fstab is processed before users are alowed to login. My own systems boot up and run with /home empty¹ (just a mount point directory). Apart from root, the only user who can login is "unlock", because their home directory is in /var/local/home/, and the only thing they can do is unlock an encrypted partition and mount it on /home, whereupon they get logged out. ¹ I lie: they contain an empty file: # ls -l /home/ total 0 -rw-r--r-- 1 root root 0 Nov 27 2019 0 # Cheers, David.
Re: /home as a symlink?
Jesper Dybdal wrote: > Can I simply move the files and then make /home a symlink to /disk2/home? do this and it will be safe. I have a symlink in the root partition to real home for 10+ years. no risk
Re: Stretch => Buster: AppArmor
Hi, 16 oct. 2020 à 12:23 de jd-debian-u...@dybdal.dk: > Is there a simple way to disable AppArmor completely until I've had time to > figure out what to do with it long-term? > Considering you are not asking for removal but just deactivation, the simplest way to me seems to be the following: sudo systemctl stop apparmor (=> stop the service now) sudo systemctl disable apparmor (=> prevent the service to be started at next reboot) Best regards, l0f4r0
Re: webcam externe compatible Debian
Bonjour Roger, roger.tar...@free.fr, on 2020-10-16 18:49:17 +0200: > J'ai passé en revue divers articles sur les webcam pour Linux. > Connaissez-vous des références de webcam (pas trop) anciennes > qui soient compatibles avec Debian Buster ? > Celles que vous utilisez avec bonheur... J'ai acheté il y a peut-être deux ou trois ans une Listo premier prix chez Boulanger qui fonctionne très bien. L'image est au format 4:3, la mise au point est manuelle, le résultat n'est pas forcément terrible, mais elle fonctionne. Il y a même des lampioules pour éclairer le visage, dès fois que vous travailliez dans le noir, ce qui n'est pas recommandé pour la santé des globes oculaires. Je suis sous Debian Sid et un noyau allégé 5.7.14 (pas encore redémarré depuis la DebConf), mais je pense qu'elle marchait déjà quand Buster était encore en Testing. Elle me suffit pour les conférences vidéo, mais si vous voulez en avoir un usage plus poussé, vous voudrez peut-être passer votre chemin. Bonne soirée, -- Étienne Mollier Old rsa/3072: 5ab1 4edf 63bb ccff 8b54 2fa9 59da 56fe fff3 882d New rsa/4096: 8f91 b227 c7d6 f2b1 948c 8236 793c f67e 8f0d 11da Sent from /dev/pts/2, please excuse my verbosity. signature.asc Description: PGP signature
Re: OpenSSl encrpt and decrypt a String
On Fri, Oct 16, 2020 at 06:24:31PM +0200, Philipp Ewald wrote: > Thank you! > > I have used this : openssl base64 -d instead of "base64 -d" .. You're welcome. Reco
Re: Iceweasel hangs
On Fri, 2020-10-16 at 19:56 +0300, Georgi Naplatanov wrote: [...] > Debian Jessie is not supported even as LTS anymore. If I was you then I > would try to use FireFox binaries provided by mozilla.org. I would second that, or upgrade to a newer version of Debian. Personally I wouldn't go anywhere near the public internet with a web browser that has a couple of years of unfixed security vulnerabilities. -- Tixy
Re: Iceweasel hangs
On 10/16/20 6:21 PM, Mick Ab wrote: > Iceweasel has been running okay on a Debian Jessie desktop for a long time. > > Lately, it keeps hanging. It was noticed that the following message > appeared in an xterm window : > > ###!!![Parent][DispatchAsyncMessage] Error: > PLayerTransaction::Msg_ReleaseLayer Processing error: message was > deserialized, but the handler returned false (indicating failure). > > What does the above message mean ? > > Is it related to Iceweasel hanging ? > > There is no problem with the internet connection since another browser > works okay. > Hi Mick, it's difficult for me to say what the problem is with this limited information. Debian Jessie is not supported even as LTS anymore. If I was you then I would try to use FireFox binaries provided by mozilla.org. HTH Kind regards Georgi
webcam externe compatible Debian
Bonjour, J'ai passé en revue divers articles sur les webcam pour Linux. Connaissez-vous des références de webcam (pas trop) anciennes qui soient compatibles avec Debian Buster ? Celles que vous utilisez avec bonheur... Les Logitech sont nombreuses sur le marché et semblent offrir une compatibilité qui dépend du modèle. Merci
Re: OpenSSl encrpt and decrypt a String
Thank you! I have used this : openssl base64 -d instead of "base64 -d" .. On 16.10.20 18:09, Reco wrote: Hi. On Fri, Oct 16, 2020 at 03:58:46PM +0200, Philipp Ewald wrote: echo -n "That's the text" | openssl enc -aes-256-cbc -a -A -nosalt gives me following "String": ttn39k7YiglePLvmmc6s+w== Correct so far, assuming that you've entered a passphrase from the keyboard. echo -n "ttn39k7YiglePLvmmc6s+w==" | openssl base64 -d | openssl enc -d -aes-256-cbc Wrong one. By default openssl assumes that plaintext is salted before the encryption. echo -n "ttn39k7YiglePLvmmc6s+w==" | openssl base64 -d | openssl enc -d -aes-256-cbc -nosalt That one worked for me, but I've used a different passphrase, so the ciphertext was different: $ echo -n "That's the text" | openssl enc -aes-256-cbc -a -A -nosalt -k foo 2>/dev/null 3zGGAzM31Vsu9cax67TUrw== $ echo -n 3zGGAzM31Vsu9cax67TUrw== | base64 -d | openssl enc -d -aes-256-cbc -nosalt -k foo 2>/dev/null That's the text $ openssl version OpenSSL 1.1.1d 10 Sep 2019 Reco -- Philipp Ewald Administrator DigiOnline GmbH, Probsteigasse 15 - 19, 50670 Köln Telefon: +49 221 6500-532, Fax: +49 221 6500-690, E-Mail: philipp.ew...@digionline.de AG Köln HRB 27711, St.-Nr. 5215 5811 0640 Geschäftsführer: Werner Grafenhain Informationen zum Datenschutz: www.digionline.de/ds
Re: OpenSSl encrpt and decrypt a String
Hi. On Fri, Oct 16, 2020 at 03:58:46PM +0200, Philipp Ewald wrote: > echo -n "That's the text" | openssl enc -aes-256-cbc -a -A -nosalt > > gives me following "String": > ttn39k7YiglePLvmmc6s+w== Correct so far, assuming that you've entered a passphrase from the keyboard. > echo -n "ttn39k7YiglePLvmmc6s+w==" | openssl base64 -d | openssl enc -d > -aes-256-cbc Wrong one. By default openssl assumes that plaintext is salted before the encryption. > echo -n "ttn39k7YiglePLvmmc6s+w==" | openssl base64 -d | openssl enc -d > -aes-256-cbc -nosalt That one worked for me, but I've used a different passphrase, so the ciphertext was different: $ echo -n "That's the text" | openssl enc -aes-256-cbc -a -A -nosalt -k foo 2>/dev/null 3zGGAzM31Vsu9cax67TUrw== $ echo -n 3zGGAzM31Vsu9cax67TUrw== | base64 -d | openssl enc -d -aes-256-cbc -nosalt -k foo 2>/dev/null That's the text $ openssl version OpenSSL 1.1.1d 10 Sep 2019 Reco
Iceweasel hangs
Iceweasel has been running okay on a Debian Jessie desktop for a long time. Lately, it keeps hanging. It was noticed that the following message appeared in an xterm window : ###!!![Parent][DispatchAsyncMessage] Error: PLayerTransaction::Msg_ReleaseLayer Processing error: message was deserialized, but the handler returned false (indicating failure). What does the above message mean ? Is it related to Iceweasel hanging ? There is no problem with the internet connection since another browser works okay.
Re: Stretch => Buster: AppArmor
On Fri, 2020-10-16 at 16:59 +0200, Jesper Dybdal wrote: > On 2020-10-16 16:39, Tixy wrote: > > Or do what I did, just uninstall the apparmor package which is > > pulled > > in as a 'recommends' of the Linux kernel. Or pin it to priority -1 > > for > > extra paranoia. > > > > Thanks. But will it not be reinstalled the next time there is a kernel > update? Good question, I have apt configured not to install recommends. Makes me wonder how apparmour got installed in the first place. Maybe it was there from previous debian versions and the update just enabled it. (I uninstalled it because after the upgrade to Buster I got loads of apparmour warnings at boot.) -- Tixy
Re: Stretch => Buster: AppArmor
On 2020-10-16 16:39, Tixy wrote: Or do what I did, just uninstall the apparmor package which is pulled in as a 'recommends' of the Linux kernel. Or pin it to priority -1 for extra paranoia. Thanks. But will it not be reinstalled the next time there is a kernel update? -- Jesper Dybdal https://www.dybdal.dk
Re: Stretch => Buster: AppArmor
Hi. On Fri, Oct 16, 2020 at 03:39:29PM +0100, Tixy wrote: > On Fri, 2020-10-16 at 13:30 +0300, Reco wrote: > > > > On Fri, Oct 16, 2020 at 12:23:30PM +0200, Jesper Dybdal wrote: > [...] > > > Is there a simple way to disable AppArmor completely until I've had > > > time to figure out what to do with it long-term? > > > > Adding "apparmor=0" to your kernel cmdline should do the trick. > > Or do what I did, just uninstall the apparmor package which is pulled > in as a 'recommends' of the Linux kernel. Or pin it to priority -1 for > extra paranoia. That will work too. In buster, apparmor is just another system service that's started during the boot process. Removing it will remove all both the security and possible breakage that AppArmor provides. Reco
Re: Stretch => Buster: Entropy during boot
Hi Jesper, On Fri, Oct 16, 2020 at 12:28:13PM +0200, Jesper Dybdal wrote: > I run a few Stretch systems on old processors that do not support the RDRAND > instruction. > > Can I simply install "haveged" on the Stretch systems *before* the upgrade > to Buster to avoid problems during the upgrade? In July last year I experimented with boot times on a virtual machine while: - running normally - disallowing RDRAND for early entropy - disallowing RDRAND entirely The normal boot (RDRAND) took ~1 second; the "no RDRAND at all" boot took ~49 seconds. Given that a virtual machine has no real hardware to provide sources of entropy I would consider this to be near to a worst case for SSH. If you have other boot-time services that require entropy then they may take significantly longer. So if it's mainly SSH you're worried about, I don't think this will be the end of the world for you to just do it and see what happens. https://strugglers.net/~andy/blog/2019/07/11/experiments-with-rdrand-and-entropykey/ Cheers, Andy -- https://bitfolk.com/ -- No-nonsense VPS hosting
Re: Stretch => Buster: AppArmor
On Fri, 2020-10-16 at 13:30 +0300, Reco wrote: > > On Fri, Oct 16, 2020 at 12:23:30PM +0200, Jesper Dybdal wrote: [...] > > Is there a simple way to disable AppArmor completely until I've had > > time to figure out what to do with it long-term? > > Adding "apparmor=0" to your kernel cmdline should do the trick. Or do what I did, just uninstall the apparmor package which is pulled in as a 'recommends' of the Linux kernel. Or pin it to priority -1 for extra paranoia. -- Tixy
Re: Stretch => Buster: iptables
Le vendredi 16 octobre 2020 à 14:12:55+0200, Jesper Dybdal a écrit : > > On 2020-10-16 12:35, Reco wrote: > > Barring some kernel bugs - yes. > > For instance, I've seen kernel panics because of simple: > > > > iptables -A INPUT -m conntrack --ctstate INVALID -j DROP > > Aargh! I had not realized that I would have to be prepared for kernel > panics during the upgrade, so I really appreciate that warning. I'll have a > bootable rescue disk ready. > > Thanks a lot for not only this, but also your responses to my other > questions. Don't worry too much on that KP part, it's true there were some instabilities at first, but not in the stable release. For what it's worth, there are also scripts helping to transition to nftables for good. Cheers, -- Pierre-Elliott Bécue GPG: 9AE0 4D98 6400 E3B6 7528 F493 0D44 2664 1949 74E2 It's far easier to fight for one's principles than to live up to them. signature.asc Description: PGP signature
OpenSSl encrpt and decrypt a String
Hey everyone, i try to encrypt a String with OpenSSL but its not working as i want. echo -n "That's the text" | openssl enc -aes-256-cbc -a -A -nosalt gives me following "String": ttn39k7YiglePLvmmc6s+w== echo -n "ttn39k7YiglePLvmmc6s+w==" | openssl base64 -d | openssl enc -d -aes-256-cbc echo -n "ttn39k7YiglePLvmmc6s+w==" | openssl base64 -d | openssl enc -d -aes-256-cbc -nosalt is not working "bad decrypt" or "bad magic number" can some one explain why this isn't working? and how it should work? Kind regards Philipp -- Philipp Ewald Administrator DigiOnline GmbH, Probsteigasse 15 - 19, 50670 Köln AG Köln HRB 27711, St.-Nr. 5215 5811 0640 Informationen zum Datenschutz: www.digionline.de/ds
Re: /home as a symlink?
> Do either of these run a risk of files under /home being needed before > /disk2 is mounted (it is in fstab)? No, a normal boot will typically never look inside /home at all, and if it ever does it should/will likely be quite late, definitely after mounting /disk2. So using symlinks like you suggest is perfectly fine and safe, Stefan
Re: Stretch => Buster: Entropy during boot
Hi. On Fri, Oct 16, 2020 at 03:49:27PM +0300, Andrei POPESCU wrote: > On Vi, 16 oct 20, 12:28:13, Jesper Dybdal wrote: > > The Buster release notes warn about a possibly insufficient entropy source > > during boot and recommends installing "haveged" on systems with that > > problem. > > > > I run a few Stretch systems on old processors that do not support the RDRAND > > instruction. > > > > Can I simply install "haveged" on the Stretch systems *before* the upgrade > > to Buster to avoid problems during the upgrade? > > Short version: I wouldn't bother unless it's a problem in practice. Some may consider a rebooted server that does not answer by SSH a problem. > In my understanding using haveged is less secure than "real" entropy. It's correct. The only source of entropy haveged considers is PRNG-based. You need a good and proper hardware random number generator, or, if you trust NSA - at least that RDRAND Intel instruction. > The lack of entropy is mostly an issue for systems you access via SSH > with very few other things "going on". Or you have an LVM2 configured. Or you're using the encryption. Or it's the web- or e-mail server. Let's not disregard a VPN server. There are many ways a server can consume an entropy, some of them are applicable for the desktops of course. > E.g. a PINE A64 did exhibit some problems with a minimal buster install > and no or very limited connections. On Exsynos 5422 that "problem" (rather - whoever thought is way a good idea to add getrand syscall to libc) adds 30 seconds to every boot just because LVM2 needs some good random numbers for some transcendent reason. > They disappeared as soon as I connected more stuff to it (ethernet, > USB HDD rack, etc.) because the kernel can use any kind of activity as > a source of entropy. It can help with SSH I suppose. It surely cannot help if you're blocked at initramfs (see above). > If you have local access to the system simply pressing keys on the > keyboard will provide entropy and eventually allow the system to reach > the login prompt. Surely you agree that if you have many servers such workaround is tedious at best. Reco
Re: Stretch => Buster: Entropy during boot
On Vi, 16 oct 20, 12:28:13, Jesper Dybdal wrote: > The Buster release notes warn about a possibly insufficient entropy source > during boot and recommends installing "haveged" on systems with that > problem. > > I run a few Stretch systems on old processors that do not support the RDRAND > instruction. > > Can I simply install "haveged" on the Stretch systems *before* the upgrade > to Buster to avoid problems during the upgrade? Short version: I wouldn't bother unless it's a problem in practice. Long version: In my understanding using haveged is less secure than "real" entropy. The lack of entropy is mostly an issue for systems you access via SSH with very few other things "going on". E.g. a PINE A64 did exhibit some problems with a minimal buster install and no or very limited connections. They disappeared as soon as I connected more stuff to it (ethernet, USB HDD rack, etc.) because the kernel can use any kind of activity as a source of entropy. If you have local access to the system simply pressing keys on the keyboard will provide entropy and eventually allow the system to reach the login prompt. Kind regards, Andrei -- http://wiki.debian.org/FAQsFromDebianUser signature.asc Description: PGP signature
Re: Cannot install elixir from buster-backports
On Jo, 15 oct 20, 21:53:30, Brett Gilio wrote: > > FWIW, I think this is an issue of backports needing a new build. > https://salsa.debian.org/eugulixes-guest/elixir-lang/-/blob/cf069ab098dd36f11d9ee49f818e6ecbab4f7114/debian/control > shows the same conditions, but I would guess that bumping erlang to 21 > and rebuilding elixir would fix the issue. You might file this as a bug > report. Bumping versions in stable is a no-go for Debian (Stable Release Managers), with very few exceptions for very specific packages that have few or no reverse dependencies (Firefox ESR and Chrome being notable examples). $ apt-cache rdepends erlang-base | wc -l 283 See also: https://www.debian.org/security/faq#oldversion https://www.debian.org/releases/buster/amd64/release-notes/ch-information.en.html#browser-security In general it is possible to upload a newer version of a dependency to backports as well. For this particular case it appears the issue is with how the backport was made, so fixing it by bumping the version of its dependency is probably a bad idea. Kind regards, Andrei -- http://wiki.debian.org/FAQsFromDebianUser signature.asc Description: PGP signature
Re: Stretch => Buster: iptables
On 2020-10-16 12:35, Reco wrote: Barring some kernel bugs - yes. For instance, I've seen kernel panics because of simple: iptables -A INPUT -m conntrack --ctstate INVALID -j DROP Aargh! I had not realized that I would have to be prepared for kernel panics during the upgrade, so I really appreciate that warning. I'll have a bootable rescue disk ready. Thanks a lot for not only this, but also your responses to my other questions. -- Jesper Dybdal https://www.dybdal.dk
Re: /home as a symlink?
On 2020-10-16 13:49, Urs Thuermann wrote: IIUC, you have a directory on that disk where you want to move the home directories of your users i.e. /some/path/to/homes to, as well as some some other directories on that disk. You could then mount that disk to some mount point, say /data, and then mount --bind /data/some/path/to/homes /home. Thanks! I hadn't thought of that interesting alternative to a symlink. Also many thanks to everybody else who answered. -- Jesper Dybdal https://www.dybdal.dk
Re: /home as a symlink?
Jesper Dybdal writes: > Thanks for your response. That would be the natural way of doing it > if I were partitioning a new disk. But I don't want to do that, and > the target disk also has other data, so /home cannot be a complete > partition. IIUC, you have a directory on that disk where you want to move the home directories of your users i.e. /some/path/to/homes to, as well as some some other directories on that disk. You could then mount that disk to some mount point, say /data, and then mount --bind /data/some/path/to/homes /home. urs
Re: /home as a symlink?
> > > On 2020/10/16 at 11:23 am, Jesper Dybdal wrote:
> > > > Can I simply move the files and then make /home a symlink to
> > > > /disk2/home?
On Fri, Oct 16, 2020 at 01:43:59PM +0200, Klaus Singvogel wrote:
> I'm already running my Debian with $HOME set to a different path:
> /home.disk2/
>
> All I needed to change was the /etc/passwd entry: to the new, different
> location; nearly eveything worked fine since then.
>
> I started with this constellation years ago and never changed the path
> afterwards. So I don't have any experience in case of a move.
>
> The only "program" which caused issues in the past was apparmor.
> For this, I modified: /etc/apparmor.d/tunables/home.d/site.local
> and added: @{HOMEDIRS}+=/home.disk2
The other points I would bring up, when moving user home directories:
1) The user(s) in question should not be logged in. If you're moving
the entire /home then all users should be logged out. Log in
directly as root, on the text console if possible.
2) Any long-running user processes may continue to hold open files in
the old file system. Either kill off any such processes, or reboot
the system after the change.
Re: /home as a symlink?
Jesper Dybdal wrote:
>
> On 2020-10-16 11:45, Yoann LE BARS wrote:
> > On 2020/10/16 at 11:23 am, Jesper Dybdal wrote:
> > > Can I simply move the files and then make /home a symlink to /disk2/home?
> > You can, but I think a better way is to simply mount the partition as
> > /home.
> Thanks for your response. That would be the natural way of doing it if I
> were partitioning a new disk. But I don't want to do that, and the target
> disk also has other data, so /home cannot be a complete partition.
I'm already running my Debian with $HOME set to a different path:
/home.disk2/
All I needed to change was the /etc/passwd entry: to the new, different
location; nearly eveything worked fine since then.
I started with this constellation years ago and never changed the path
afterwards. So I don't have any experience in case of a move.
The only "program" which caused issues in the past was apparmor.
For this, I modified: /etc/apparmor.d/tunables/home.d/site.local
and added: @{HOMEDIRS}+=/home.disk2
For the future, I see with doubts that systemd wants to make the home
directory portable and if this will cause issues for my constelation.
Best regards,
Klaus.
--
Klaus Singvogel
GnuPG-Key-ID: 1024R/5068792D 1994-06-27
Re: /home as a symlink?
Jesper Dybdal composed on 2020-10-16 12:18 (UTC+0200): > Yoann LE BARS wrote: >> Jesper Dybdal wrote: >>> Can I simply move the files and then make /home a symlink to /disk2/home? I can't think of a reason why you couldn't, but maybe there is a reason that escapes me why you shouldn't. >> You can, but I think a better way is to simply mount the partition as >> /home. > Thanks for your response. That would be the natural way of doing it if > I were partitioning a new disk. But I don't want to do that, and the > target disk also has other data, so /home cannot be a complete partition. Why do you think the presence of non-home data on a filesystem prevents its use mounted to /home? /home is a perfectly good place to put "other" data on my 40 PCs. -- Evolution as taught in public schools, like religion, is based on faith, not on science. Team OS/2 ** Reg. Linux User #211409 ** a11y rocks! Felix Miata *** http://fm.no-ip.com/
Re: Stretch => Buster: Entropy during boot
Hi. On Fri, Oct 16, 2020 at 12:28:13PM +0200, Jesper Dybdal wrote: > Can I simply install "haveged" on the Stretch systems *before* the > upgrade to Buster to avoid problems during the upgrade? If you have a hardware random generator on these systems (i.e. you see /dev/hwrng there) - you should install rng-tools, not haveged. If you lack /dev/hwrng - haveged will solve this issue indeed. If you need to do it enterprise way, and your hosts can connect to each other - the entropybroker is the right answer for this question. Reco
Re: Stretch => Buster: iptables
Hi. On Fri, Oct 16, 2020 at 12:25:23PM +0200, Jesper Dybdal wrote: > I have a lot of iptables rules. > > Is it correctly understood that the upgrade to Buster will automatically > install iptables-nft, and that iptablés-nft provides complete and compatible > support > for the functionality of the old iptables command, so I can expect my > iptables scripts to just work? Barring some kernel bugs - yes. For instance, I've seen kernel panics because of simple: iptables -A INPUT -m conntrack --ctstate INVALID -j DROP It *should* be fixed by now, but I cannot call my own usage of netfilter that advanced (filter, nat, *some* raw, that's it). > (If so, that would be really nice, since I can then postpone the move to > native nftables.) To switch back to conventional netfilter you'll have to execute these: update-alternatives --config iptables update-alternatives --config ip6tables update-alternatives --config arptables update-alternatives --config ebtables Last two are optional, and it all should be done after the migration to buster. Reco
Re: Stretch => Buster: AppArmor
Hi. On Fri, Oct 16, 2020 at 12:23:30PM +0200, Jesper Dybdal wrote: > Buster enables AppArmor by default. I know just about nothing at all > about AppArmor. Does it constitute a risk that some of my existing > programs will not work? Depends. AppArmor is applied per-binary. If you're using something that ships an AppArmor policy - it will be enabled. > For instance, my postfix installation (which is by far the most > important application I run) uses a few non-standard tcp ports to > comunicate with helper services and to receive mail submissions - is > there a risk that AppArmor will block that? No, because there's no shipped AppArmor policy for postfix in buster. > Is there a simple way to disable AppArmor completely until I've had > time to figure out what to do with it long-term? Adding "apparmor=0" to your kernel cmdline should do the trick. Reco
Stretch => Buster: Entropy during boot
The Buster release notes warn about a possibly insufficient entropy source during boot and recommends installing "haveged" on systems with that problem. I run a few Stretch systems on old processors that do not support the RDRAND instruction. Can I simply install "haveged" on the Stretch systems *before* the upgrade to Buster to avoid problems during the upgrade? Thanks, Jesper -- Jesper Dybdal https://www.dybdal.dk
Stretch => Buster: iptables
I have a lot of iptables rules. Is it correctly understood that the upgrade to Buster will automatically install iptables-nft, and that iptablés-nft provides complete and compatible support for the functionality of the old iptables command, so I can expect my iptables scripts to just work? (If so, that would be really nice, since I can then postpone the move to native nftables.) Thanks, Jesper -- Jesper Dybdal https://www.dybdal.dk
Re: /home as a symlink?
Hello everybody out there! On 2020/10/16 at 12:18 pm, Jesper Dybdal wrote: > Thanks for your response. That would be the natural way of doing it if > I were partitioning a new disk. But I don't want to do that, and the > target disk also has other data, so /home cannot be a complete partition. Alright, I did not get that. Well, in this case, you can indeed make some symlink. In my experience, you can either use a symlink to replace /home or to replace /home/user. Which will be the best way? Well, I guess it depends on what you prefer. Best regards. -- Yoann LE BARS https://le-bars.net/yoann/ Diaspora* : yleb...@framasphere.org
Stretch => Buster: AppArmor
At some point I will have to upgrade from Stretch to Buster, and I am beginning to consider which problems I might run into. So I have some more or less stupid questions that I will post in separate threads - this is the first. Buster enables AppArmor by default. I know just about nothing at all about AppArmor. Does it constitute a risk that some of my existing programs will not work? For instance, my postfix installation (which is by far the most important application I run) uses a few non-standard tcp ports to comunicate with helper services and to receive mail submissions - is there a risk that AppArmor will block that? Is there a simple way to disable AppArmor completely until I've had time to figure out what to do with it long-term? Thanks, Jesper -- Jesper Dybdal https://www.dybdal.dk
Re: /home as a symlink?
On 2020-10-16 11:45, Yoann LE BARS wrote: On 2020/10/16 at 11:23 am, Jesper Dybdal wrote: Can I simply move the files and then make /home a symlink to /disk2/home? You can, but I think a better way is to simply mount the partition as /home. Thanks for your response. That would be the natural way of doing it if I were partitioning a new disk. But I don't want to do that, and the target disk also has other data, so /home cannot be a complete partition. -- Jesper Dybdal https://www.dybdal.dk
Re: Sistema actualizaciones
El 2020-10-16 a las 11:31 +0200, José escribió: > Hola hola soy nuevo en debian 10 buster después de estar 14 años con > ubuntu, el caso es que tengo un problema tengo el escritorio mate y en > sistema solo me aparece el gestor de paquetes synaptic y nada de > actualizaciones,¿como puede buscar en synaptic el gestor grafico de > actualizaciones? Pues bienvenido :-) Supongo que en Ubuntu tenías instalado el paquete «update-manager-core», que en Debian no existe, pero te hará la misma función «package-update-indicator», que sí está. https://packages.debian.org/buster/package-update-indicator Notify about available software updates This small utility which regularly checks for software updates and notifies the user about available updates using desktop notifications and either a status notifier icon or a system tray icon. It is primarily intended for desktops which do not already have this functionality built-in, such as Xfce. *** Saludos, -- Camaleón
Re: Please be respectful
Le jeudi 15 octobre 2020 à 19:10:00-0500, Leslie Rhorer a écrit : > On 10/15/2020 5:05 PM, Pierre-Elliott B�cue wrote: > > Le mercredi 14 octobre 2020 � 02:12:45-0700, Weaver a �crit�: > > > On 14-10-2020 18:30, Christoph K. wrote: > > > > On Tue, 13 Oct 2020 23:06:55 -0700 > > > > Weaver wrote : > > > > > > > > > > "as I learnt to read years ago," > > > > > It's appropriate sarcasm. > > > > > > > > Disagreed. > > > > It's simply disrespectful. > > > > > > > > > > > > > For those who require spoon feeding: > > > > > > > > As is this comment, too. > > > > > > > > > > > > Sarcasm can be fun sometimes, but I believe it's no appropriate way to > > > > communicate on debian mailing lists. It can lead to misunderstandings > > > > and > > > > people being hurt, apart from making a bad impressions on others reading > > > > this list. > > > > > > > > Please re-read the Debian Code of Conduct and consider being more > > > > polite: > > > > https://www.debian.org/code_of_conduct > > > > > > Being polite is a standard that has to apply to all. > > > I consider the original post not to be. > > > To me I see an outstanding example of laziness from somebody who > > > obviously needs no consideration in the accessibility department. > > > Scrolling an alphabetically arranged file system doesn't even qualify as > > > trivial. > > > > When the displayed file list contains hundreds or thousands of > > files/directories, and you don't know the first letters of their name, > > looking for a substring or a fuzzy pattern by hand with your eyes and > > via scrolling qualifies as not-at-all trivial. > > True enough, but then the same is true of a list of badly associated > names, > if not moreso. > > > > It can be accomplished as quickly as you can move your hand. > > > The use of find and/or locate will dig up anything, no matter how deeply > > > hidden in a plethora of directories. > > > > The question is about a GUI file manager with a specific feature, not > > about a command line way of doing it. > > The point - or my point anyway - is rather than seeking to tack on a > whole > bunch of poorly considered features to a poorly considered fundamental > utility, well considered, powerful, highly configurable solutions such as > "find" should be encouraged. And no one said that one couldn't recommend using a command line tool. But the fact there is a command line tool doesn't make the need of the same feature in a GUI file manager absurd or irrelevant. And your opinion on that matter is irrelevant as you are not the one asking for help. > > The debian-user list is a communication medium where each and any user > > of Debian, from "newbie" to "expert" to ask questions and share their > > knowledge about the project and its features. > > Why talk about Debian, irrespective of what list this is, when a more > powerful, simpler, more fundamental utility is available on *ALL* distros? Being "irrespective" of the list is completely irrelevant to the matter, as this very list is a Debian one for people needing help about Debian. Not just the ones you think have a right to ask for help but all of them. This fact litteraly makes the whole remains of your mail moot, and I'll henceforth refrain from answering to it. Feel free to ignore """lazy""" people from now on, but don't be irrespectful to them. You have no right to, and they don't deserve it. -- Pierre-Elliott Bécue GPG: 9AE0 4D98 6400 E3B6 7528 F493 0D44 2664 1949 74E2 It's far easier to fight for one's principles than to live up to them. signature.asc Description: PGP signature
Re: /home as a symlink?
Hello everybody out there! On 2020/10/16 at 11:23 am, Jesper Dybdal wrote: > Can I simply move the files and then make /home a symlink to /disk2/home? You can, but I think a better way is to simply mount the partition as /home. For instance, I have a separated hard drive for my /home, here is its /etc/fstab entry: UUID=35b9219d-1f0a-4b59-8ca5-45c7194ab353 /home ext4 defaults0 2 It works perfectly fine. Actually, I am doing this for years. Best regards. -- Yoann LE BARS https://le-bars.net/yoann/ Diaspora* : yleb...@framasphere.org
Sistema actualizaciones
Hola hola soy nuevo en debian 10 buster después de estar 14 años con ubuntu, el caso es que tengo un problema tengo el escritorio mate y en sistema solo me aparece el gestor de paquetes synaptic y nada de actualizaciones,¿como puede buscar en synaptic el gestor grafico de actualizaciones? Muchas gracias y un saludo.
Re: Configurer l'icône d’une application pour qu'elle apparaisse dans le gestionnaire de fichier
‐‐‐ Original Message ‐‐‐
Le jeudi 15 octobre 2020 16:48, Jean-Marc a écrit :
> Thu, 15 Oct 2020 14:14:23 +
> benoit benoit...@protonmail.ch écrivait :
> > Comment cela fonctionne-t-il sous le capot ?
>
> XDG MIME Type.
>
> Pour connaître le MIME Type d'un fichier, tu as la commande :
> xdg-mime query filetype FILE
>
Désolé parfois j'oublie de changer de destinataire dans mon client mail et ça
répond à l'expéditeur plutôt qu'à la liste...
Bon j'ai finis par comprendre les derniers détails.
Ok ça fonctionne.
$ xdg-mime query filetype unFichierFreeCad.fcstd
application/x-extension-fcstd
> Pour savoir l'app associée avec un type de fichier :
> xdg-mime query default MIMEtype
>
$ xdg-mime query default application/x-extension-fcstd
org.freecadweb.FreeCAD.desktop
> La DB se trouve, en général, dans le répertoire /usr/share/applications/.
> Dans les fichiers /usr/share/applications/mimeinfo.cache ou
> /usr/share/applications/-mimeapps.list
>
J'ai opté pour une config dans ma HOME pour bien maîtriser les détails .
Tout est bien expliqué ici :
> Sinon, il y a aussi la doc :
> https://wiki.archlinux.org/index.php/XDG_MIME_Applications
> https://www.freedesktop.org/wiki/Specifications/shared-mime-info-spec/
>
Dans les sources, il y a ces fichiers :
org.freecadweb.FreeCAD.appdata.xml.in
cp org.freecadweb.FreeCAD.desktop
cp org.freecadweb.FreeCAD.svg
cp org.freecadweb.FreeCAD.xml
Ces quelques lignes montrent où les copier dans la HOME :
CMAKE_INSTALL_DATAROOTDIR=$HOME/.local/share/
cp org.freecadweb.FreeCAD.appdata.xml.in
${CMAKE_INSTALL_DATAROOTDIR}/metainfo/org.freecadweb.FreeCAD.appdata.xml
cp org.freecadweb.FreeCAD.desktop ${CMAKE_INSTALL_DATAROOTDIR}/applications/
cp org.freecadweb.FreeCAD.svg
${CMAKE_INSTALL_DATAROOTDIR}/icons/hicolor/scalable/apps/
cp org.freecadweb.FreeCAD.xml ${CMAKE_INSTALL_DATAROOTDIR}/mime/packages/
Ensuite on utilise la commande :
update-mime-database ~/.local/share/mime
Et tout fonctionne.
C'est bien le fichier "org.freecadweb.FreeCAD.svg" placé dans
$HOME/.local/share/icons/hicolor/scalable/apps/
Qui affiche l'icône devant les fichiers dans le navigateur de fichier.
C'est le même principe si on le fait pour le système au lieu de la HOME
Il suffit de changer :
CMAKE_INSTALL_DATAROOTDIR=/usr/share/
Un grand merci pour votre aide.
--
Benoit
Re: [HS] Propriété des équipements abandonnés par des opérateurs télécoms
Bonjour Le 16/10/2020 à 11:13, Olivier a écrit : Bonjour, Il arrive que malgré la fin des contrats qui ont provoqué leur installation, des équipements télécoms ou informatiques soient laissés "à l'abandon" chez des clients (modems-routeurs, CPE, DSLAM, ...) quelquefois pendant plusieurs années. Que prévoit la loi à ce sujet ? Un client a-t-il le droit de les déplacer ? De les revendre ? De les recycler à la déchetterie ? Un opérateur a-t-il le droit de se rendre pour récupérer ses matériels (j'imagine facilement que les courriers ou demandes officielles des opérateurs peuvent se perdre dans la nature ou rester sans réponse) ? À cet égard, comment marquer la propriété d'un équipement ? Le matériel comporte une étique "propriété [insaisissable] de LENTREPRISE" (et éventuellement son adresse) sur le matériel. Mes partenaires pro en général ne récupèrent pas le petit matériel comme les modems xDSL. J'ai du matériel type box GP chez moi car l'opérateur c'est mélangé les pinceaux à un moment x et ne s'est pas rendu compte que je possédai plusieurs de ces box. Après, cela fait des années, je ne vais jamais m'en servir ni pouvoir le replacer/revendre. Déchetterie sûrement. -- Daniel
/home as a symlink?
I currently have /home in the root partition. I am considering moving it to a different existing partition. Can I simply move the files and then make /home a symlink to /disk2/home? Or perhaps set up a symlink for each user: /home/user1 => /disk2/home/user1? Do either of these run a risk of files under /home being needed before /disk2 is mounted (it is in fstab)? Thanks, Jesper -- Jesper Dybdal http://www.dybdal.dk
[HS] Propriété des équipements abandonnés par des opérateurs télécoms
Bonjour, Il arrive que malgré la fin des contrats qui ont provoqué leur installation, des équipements télécoms ou informatiques soient laissés "à l'abandon" chez des clients (modems-routeurs, CPE, DSLAM, ...) quelquefois pendant plusieurs années. Que prévoit la loi à ce sujet ? Un client a-t-il le droit de les déplacer ? De les revendre ? De les recycler à la déchetterie ? Un opérateur a-t-il le droit de se rendre pour récupérer ses matériels (j'imagine facilement que les courriers ou demandes officielles des opérateurs peuvent se perdre dans la nature ou rester sans réponse) ? À cet égard, comment marquer la propriété d'un équipement ? Slts
Re: Configurer l'icône d’une application pour qu'elle apparaisse dans le gestionnaire de fichier
bineEGlHdQ19y.bin Description: PGP/MIME version identification encrypted.asc Description: OpenPGP encrypted message
Re: Cannot install elixir from buster-backports
Hi Brett, David, On 10/16/20 4:53 AM, Brett Gilio wrote: > David Christensen writes: > >> On 2020-10-15 01:52, Baptiste Beauplat wrote: >>> (Please CC me, I'm not subscribed to the list) >>> >>> elixir : Depends: erlang-base:any (>= 1:20) but it is not >>> installable or >>> erlang-base-hipe:any (>= 1:20) but it is not >>> installable >>> E: Unable to correct problems, you have held broken packages. >>> (I've cropped all expected text) >>> I have erlang-base:amd64 (1:21.2.6+dfsg-1) installed but elixir won't >>> install because it depends on erlang-base:any (>= 1:20)? Why is it not >>> working? > > FWIW, I think this is an issue of backports needing a new build. > https://salsa.debian.org/eugulixes-guest/elixir-lang/-/blob/cf069ab098dd36f11d9ee49f818e6ecbab4f7114/debian/control > shows the same conditions, but I would guess that bumping erlang to 21 > and rebuilding elixir would fix the issue. You might file this as a bug > report. I ended-up checking the list anyway and Andrei had the right pointer. The package is uninstallable and this appear to be a know issue: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=939324 I created a patch for that and hopefully, this will be fixed in a couple of days. Thanks everyone for the pointers! -- Baptiste Beauplat - lyknode signature.asc Description: OpenPGP digital signature
