Re: Crucial SSDs and Debian Bullseye
On 5/5/22 10:23, Borden wrote: Good to see that the issue was just mis-installation, as I recently upgraded from a Samsung 2TB EVO to a Crucial 2 TB drive without issue (well, I had PLENTY of issues with Samsung's "customer service" and Newegg's "return policy"). Resolved never to buy Samsung products again, as their "warranty" is worthless when nobody will honour it. I'll stop buying from Newegg once I use up the credit I was compelled to accept after they wouldn't let me return the drives made magically defective by Samsung's Magician. Apparently Crucial has a marginally better customer service reviews, so I've tried them and haven't had issues (so far). Korean companies are know for poor customer services. I will never buy or I just don't expect anything if I choose to buy their products.
Re: Re: Crucial SSDs and Debian Bullseye
Good to see that the issue was just mis-installation, as I recently upgraded from a Samsung 2TB EVO to a Crucial 2 TB drive without issue (well, I had PLENTY of issues with Samsung's "customer service" and Newegg's "return policy"). Resolved never to buy Samsung products again, as their "warranty" is worthless when nobody will honour it. I'll stop buying from Newegg once I use up the credit I was compelled to accept after they wouldn't let me return the drives made magically defective by Samsung's Magician. Apparently Crucial has a marginally better customer service reviews, so I've tried them and haven't had issues (so far).
[SOLVED] Re: Crucial SSDs and Debian Bullseye
On Wed, Apr 27, 2022 at 14:17 Tom Browder wrote: > On Wed, Apr 27, 2022 at 12:12 Alexander V. Makartsev > wrote: > >> On 27.04.2022 20:37, Tom Browder wrote: >> > ... >> > If either of those fail to see it, I’m afraid I toasted it. I don’t >> > think that will qualify for a return. > > > I finally got it working! I blame lack of attention to details, old age, > shaky hands, and < 100% vision. I uninstalled the ssd, looked all over > closely (again) and realized I had not really installed it at all! > Yesterday I could not see that it would fit in the space for the hard drive > carrier because I had it upside down! I finally got it together (even > missing two screws I hope I can find later) and the drive is now recognized. > > Thank you all for the support, and I cannot blame Crucial one iota. > > Debian on, my fellow Debianites! > > -Tom > >
Re: Crucial SSDs and Debian Bullseye
On 27/04/2022 18:11, Alexander V. Makartsev wrote: It is next to impossible to actually mishandle and "toast" a device simply by unpacking it and connecting to a SATA port. (Even when PC is powered on¹). SSDs are not fragile, they are electrically compatible with SATA standard, so both data and power port parts won't do any damage to a device, no matter how old or new the hardware is. Agree. On my Debian server, I've been actually hot-plugging SATA drives, both HDD and SSD for years. Never had a problem. Linux detects everything on the fly :) If new SSD cannot be detected in OP Toshiba laptop, its most likely faulty SSD or user error. Nothing to do with Debian. -- With kindest regards, Piotr. ⢀⣴⠾⠻⢶⣦⠀ ⣾⠁⢠⠒⠀⣿⡁ Debian - The universal operating system ⢿⡄⠘⠷⠚⠋⠀ https://www.debian.org/ ⠈⠳⣄
Re: Crucial SSDs and Debian Bullseye
On 27/04/2022 12:57, Tom Browder wrote: On Wed, Apr 27, 2022 at 06:42 Christian Britz mailto:cbr...@t-online.de>> wrote: ... I have seem some indications on the web though, which suggest there might be an ISO image for updating the drive too. What is the exact model name? Crucial MX500 1000GB 2.5-INCH SOLID STATE DRIVE Thanks, Christian -Tom I've got Crucial MX500 SSDs, 250GB versions, they work perfectly fine with any system, not just Windows. I use them on Debian in RAID1 mode. Always worked fine from first start. If your SSD cannot be detected in BIOS, that's a problem with the laptop (compatibility issue, or SSD is broken, or something else). Plug the SSD to another computer to check if it works, if not, return it to the seller. -- With kindest regards, Piotr. ⢀⣴⠾⠻⢶⣦⠀ ⣾⠁⢠⠒⠀⣿⡁ Debian - The universal operating system ⢿⡄⠘⠷⠚⠋⠀ https://www.debian.org/ ⠈⠳⣄
Re: Crucial SSDs and Debian Bullseye
On Wed, 27 Apr 2022 17:08:04 +0500 "Alexander V. Makartsev" wrote: > On 27.04.2022 16:06, Tom Browder wrote: > > I am trying to replace the original hard drive on an old Toshiba > > laptop with a 1 TB SSD from Crucial. (I had recently successfully done > > that in an old Dell Latitude and had no problems.) > > > > I first did a clean install of Debian 11 on the old drive to ensure > > the laptop works okay. Then I installed the new SSD and it can't find > > the drive. From what I can find at Crucial, I need to install their > > Storage Executive program on a Windows host, look up the SSD to a > > USB/SATA connector on that host, and configure or install the firmware > > onto the SSD. > > > I've never heard anything like that and I've worked with many > consumer-grade SSDs. > Usually all SSDs "just work". They may come pre-partitioned and > pre-formatted, but this could be reconfigured with any standard utility > programs. > The only thing I can think of, is that it could require usage of some > vendor-specific proprietary software to setup hardware encryption and/or > to update currently flashed firmware to newer versions. There's OPAL. Presumably uncommon on consumer-grade drives, but it does require special software to configure (although not necessarily vendor specific software) and can be a pain to work with (at least if one isn't familiar with them, as I wasn't when I encountered it in the wild, in a second-hand machine ;)) https://en.wikipedia.org/wiki/Opal_Storage_Specification https://wiki.archlinux.org/title/Self-encrypting_drives -- Celejar
Re: Rendre persistante la cmde echo 1 > /proc/sys/net/netfilter/nf_conntrack_acct
Le mercredi 4 mai 2022 à 11:20:03 UTC+2, Olivier a écrit : > Bonjour, > > Pour activer l'accounting de conntrack, j'utilise: > echo 1 > /proc/sys/net/netfilter/nf_conntrack_acct > > Comment rendre cette commande persistante (ie qu'elle soit > automatiquement lancée au démarrage) ? > > J'ai essayé avec un fichier /etc/sysctl.d/foo.conf et le contenu ci-après. > net.ipv4.ip_forward=1 > net.netfilter.nf_conntrack_acct=1 > > J'observe que seule la première ligne produit l'effet escompté: > # sysctl net.ipv4.ip_forward > 1 > # sysctl net.netfilter.nf_conntrack_acct > > 0 > > Je ne vois aucun message d'erreur dans les logs. > > Slts Je n'ai jamais manipulé cette variable mais la doc sysctl me pousse à me demander si éventuellement ce n'est pas le chargement d'un module particulier qui écrase la valeur d'une variable préalablement correctement alimentée par la lecture de sysctl.conf au boot: extrait de la page man sysctl: " [...] Notes Please note that modules loaded after sysctl is run may override the settings (example: sunrpc.* settings are overridden when the sunrpc module is loaded). This may cause some confusion during boot when the settings in sysctl.conf may be overriden. To prevent such a situation, sysctl must be run after the particular module is loaded (e.g., from /etc/rc.d/rc.local or by using the install directive in modprobe.conf) [...] " mais bon, ton cas n'a peut-être rien à voir...
Re: wtf just happened to my local staging web server
On Wed 04 May 2022 at 14:42:15 -0400, Greg Wooledge wrote: > On Wed, May 04, 2022 at 07:38:35PM +0100, Brian wrote: > > My young childre read -user. They asked me what "wtf" means. Please, > > explain, for the benefit of us civilised and acronymn-challenged > > users, what it stands for. > > Clearly just a really bad typo for "what". Clearly. Training the brain and fingers to avoid such typos is indictated. -- Brian.
Re: wtf just happened to my local staging web server
On Wed, May 04, 2022 at 07:38:35PM +0100, Brian wrote: > My young childre read -user. They asked me what "wtf" means. Please, > explain, for the benefit of us civilised and acronymn-challenged > users, what it stands for. Clearly just a really bad typo for "what".
Re: wtf just happened to my local staging web server
On Wed 04 May 2022 at 13:01:58 -0400, Gary Dale wrote: [...] My young childre read -user. They asked me what "wtf" means. Please, explain, for the benefit of us civilised and acronymn-challenged users, what it stands for. For extra points, knowing whether it was an essential part of your query would be interesting. -- Brian.
Re: MariaDB migreren van Debian 9 naar 11
Op 04-05-2022 om 16:28 schreef Geert Stappers: On Wed, May 04, 2022 at 01:39:08PM +0200, Paul van der Vlis wrote: Op 04-05-2022 om 13:04 schreef Geert Stappers: On Wed, May 04, 2022 at 12:40:48PM +0200, Paul van der Vlis wrote: Op 04-05-2022 om 11:46 schreef Geert Stappers: On Wed, May 04, 2022 at 11:15:39AM +0200, Paul van der Vlis wrote: root@niewe-machine:~# ssh root@oude-machine mysqldump --all-databases | mysql Nu moet het bij mij net andersom, dus vanaf de oude machine. Waarom? De oude machine is nogal goed beveiligt, ik kan niet inloggen via SSH van de nieuwe machine op de oude. Wel andersom. Oh, vandaar ... Wellicht is dat wel te realiseren, maar andersom is dus handiger. Tenminste als het kan. Misschien tijd om te vertellen wat de eerdere pogingen waren? Ik heb vooral testjes gedaan om de output van een commando via ssh over te sturen naar een commando aan de andere kant. Bijvoorbeeld: cat /etc/hosts | ssh 1.2.3.4 /usr/bin/less Maar dan krijg ik geen reactie. Verder heb ik geprobeerd om mysql client te start op de andere machine: ssh 1.2.3.4 /usr/bin/mysql Maar ook daar geen reactie. Hmm, ik merk dat ik wel een reactie krijg op dat laatste commando als ik "-p" meegeef. Alleen heeft de mysql user root daar geen paswoord en dat vind ik wel praktisch voor backups etc. Pardon? (maar beschouw dat als een retorische vraag) Tegenwoordig wordt in Debian de mariadb root-user gekoppeld aan de unix socket. Daarom mag de systeem-user root inloggen zonder paswoord en is dat toch relatief veilig. Zeg het graag als ik me vergis. Voordeel lijkt mij dat je geen database paswoorden hoeft te hebben rondslingeren voor bijvoorbeeld backups of scripts die je als root draait. Een database beschermen tegen root lijkt me ook wat zinloos. Eerder vandaag, may the fourth, schreef ik dat met root@oude-machine:~# mysqldump --all-databases | ssh dbusr@nieuwe-machine mysql zou beginnen. Dat was echter iets te kort door de bocht. Vooraf aan dat migratie commando heb ik * een operating system user met naam 'dbusr' of iets dergelijks * gezien dat `dbusr` een MySQL connectie kan maken ( `mysql` uitvoeren vanaf shell, zonder password geneuzel ) * getest dat `dbusr` "create database" mag/kan doen en gecontroleert dat een SSH-oversteek mogelijk is. In deze twee stappen root@oude-machine:~# cat /etc/hosts | ssh dbusr@nieuwe-machine dd of=/tmp/hosts_file_oude_machine >dbusr@nieuwe-machine $ cat /tmp/hosts_file_oude_machine ; ls -l /tmp/hosts_file_oude_machine Ik vind dd een nogal eng programma om wat mee te spelen, maar wellicht dat dit inderdaad werkt... Dat in andere worden: * kleine stappen * expliciete usernames gebruiken, 'root' vermijden. * wegblijven bij interactieve toestand ( wegblijven bij `less`, die vraagt om toets aanslag, Aha, zoiets zal dat zijn inderdaad... het mag niet interactief. weg bij MySQL wachtwoord ) Ik vind je oplossing met een extra user nogal complex voor eenmalig gebruik om wat data over te zetten. Uiteindelijk heb ik toch maar een SSH toegang gemaakt vanaf de nieuwe machine naar de oude. Overzetten databases werkt nu met zoiets, vanaf de nieuwe server: ssh root@2.3.4.5 mysqldump --databases data1 data2 | mysql Het overzetten van de database met de naam "mysql" gaf problemen. Wat echter bleek te werken is dit (op de nieuwe server in mysql): DROP TABLE IF EXISTS `mysql`.`global_priv`; DROP VIEW IF EXISTS `mysql`.`user`; Raar maar waar... daarna kon ik die mysql database gewoon overzetten. Zie ook hier: https://dba.stackexchange.com/questions/266480/mariadb-mysql-all-db-import-table-user-already-exists Groet, Paul -- Paul van der Vlis Linux systeembeheer Groningen https://vandervlis.nl/
Re: wtf just happened to my local staging web server
On 2022-05-04 13:21, Greg Wooledge wrote: On Wed, May 04, 2022 at 01:01:58PM -0400, Gary Dale wrote: May 04 12:16:55 TheLibrarian systemd[1]: Starting The Apache HTTP Server... May 04 12:16:55 TheLibrarian apachectl[7935]: (98)Address already in use: AH00072: make_sock: could not bind to addre> May 04 12:16:55 TheLibrarian apachectl[7935]: (98)Address already in use: AH00072: make_sock: could not bind to addre> Something else is using the ports that Apache wants to use. Assuming those ports are 80 and 443, you could use commands like this to see what's using them: lsof -i :80 lsof -i :443 If your configuration is telling Apache to use some other ports, then substitute your port numbers. Thanks. Somehow nginx got installed. Wondering if jitsi or nextcloud did that because I certainly didn't (doesn't seem likely though because they both failed). I guess I should pay more attention to the packages that get installed when I do apt full-upgrade... Usually I just scan to see if there is anything that I should reboot over.
Re: Rendre persistante la cmde echo 1 > /proc/sys/net/netfilter/nf_conntrack_acct
Bonjour Olivier, Olivier, on 2022-05-04: > J'ai essayé avec un fichier /etc/sysctl.d/foo.conf et le contenu ci-après. > net.ipv4.ip_forward=1 > net.netfilter.nf_conntrack_acct=1 > > J'observe que seule la première ligne produit l'effet escompté: > # sysctl net.ipv4.ip_forward > 1 > # sysctl net.netfilter.nf_conntrack_acct > 0 En démarrant le système avec comme argument de démarrage nf_conntrack.acct=1, est ce que ça aide ? Un moyen de l'appliquer est d'éditer /etc/default/grub, et de régler la variable GRUB_CMDLINE_LINUX_DEFAULT, par exemple : GRUB_CMDLINE_LINUX_DEFAULT="nf_conntrack.acct=1" et puis de reconstruire les entrées de menu grub : $ sudo update-grub Bonne journée, :) -- Étienne Mollier Fingerprint: 8f91 b227 c7d6 f2b1 948c 8236 793c f67e 8f0d 11da Sent from /dev/tty1, please excuse my verbosity. On air: Genesis - The Return of the Giant Hogweed signature.asc Description: PGP signature
Re: wtf just happened to my local staging web server
On Wed, May 04, 2022 at 01:01:58PM -0400, Gary Dale wrote: > May 04 12:16:55 TheLibrarian systemd[1]: Starting The Apache HTTP Server... > May 04 12:16:55 TheLibrarian apachectl[7935]: (98)Address already in use: > AH00072: make_sock: could not bind to addre> > May 04 12:16:55 TheLibrarian apachectl[7935]: (98)Address already in use: > AH00072: make_sock: could not bind to addre> Something else is using the ports that Apache wants to use. Assuming those ports are 80 and 443, you could use commands like this to see what's using them: lsof -i :80 lsof -i :443 If your configuration is telling Apache to use some other ports, then substitute your port numbers.
wtf just happened to my local staging web server
My Apache2 file/print/web server is running Bullseye. I had to restart it yesterday evening to replace a disk drive. Otherwise the last reboot was a couple of weeks ago - I recall some updates to Jitsi - but I don't think there were any updates since then. Today I find that I can't get through to any of the sites on the server. Instead I get the Apache2 default web page. This happens with both Firefox and Chromium. This happens for all the staging sites (that I access as ".loc" through entries in my hosts file). My jitsi and nextcloud servers simply report failure to get to the server. I verified that the site files (-available and -enabled) haven't changed in months. I tried restarting the apache2 service and got an error so I tried stopping it then starting it again - same error: root@TheLibrarian:~# service apache2 start Job for apache2.service failed because the control process exited with error code. See "systemctl status apache2.service" and "journalctl -xe" for details. root@TheLibrarian:~# systemctl status apache2.service ●apache2.service - The Apache HTTP Server Loaded: loaded (/lib/systemd/system/apache2.service; enabled; vendor preset: enabled) Active: failed(Result: exit-code) since Wed 2022-05-04 12:16:55 EDT; 5s ago Docs: https://httpd.apache.org/docs/2.4/ Process: 7932 ExecStart=/usr/sbin/apachectl start (code=exited, status=1/FAILURE) CPU: 29ms May 04 12:16:55 TheLibrarian systemd[1]: Starting The Apache HTTP Server... May 04 12:16:55 TheLibrarian apachectl[7935]: (98)Address already in use: AH00072: make_sock: could not bind to addre> May 04 12:16:55 TheLibrarian apachectl[7935]: (98)Address already in use: AH00072: make_sock: could not bind to addre> May 04 12:16:55 TheLibrarian apachectl[7935]: no listening sockets available, shutting down May 04 12:16:55 TheLibrarian apachectl[7935]: AH00015: Unable to open logs May 04 12:16:55 TheLibrarian apachectl[7932]: Action 'start' failed. May 04 12:16:55 TheLibrarian apachectl[7932]: The Apache error log may have more information. May 04 12:16:55 TheLibrarian systemd[1]: apache2.service: Control process exited, code=exited, status=1/FAILURE May 04 12:16:55 TheLibrarian systemd[1]: apache2.service: Failed with result 'exit-code'. May 04 12:16:55 TheLibrarian systemd[1]: Failed to start The Apache HTTP Server. also root@TheLibrarian:/var/log# journalctl -xe ░░The job identifier is 4527. May 04 12:50:49 TheLibrarian apachectl[8232]: (98)Address already in use: AH00072: make_sock: could not bind to addre> May 04 12:50:49 TheLibrarian apachectl[8232]: (98)Address already in use: AH00072: make_sock: could not bind to addre> May 04 12:50:49 TheLibrarian apachectl[8232]: no listening sockets available, shutting down May 04 12:50:49 TheLibrarian apachectl[8232]: AH00015: Unable to open logs May 04 12:50:49 TheLibrarian apachectl[8229]: Action 'start' failed. May 04 12:50:49 TheLibrarian apachectl[8229]: The Apache error log may have more information. May 04 12:50:49 TheLibrarian systemd[1]: apache2.service: Control process exited, code=exited, status=1/FAILURE ░░Subject: Unit process exited ░░Defined-By: systemd ░░Support: https://www.debian.org/support ░░ ░░An ExecStart= process belonging to unit apache2.service has exited. ░░ ░░The process' exit code is 'exited' and its exit status is 1. May 04 12:50:49 TheLibrarian systemd[1]: apache2.service: Failed with result 'exit-code'. ░░Subject: Unit failed ░░Defined-By: systemd ░░Support: https://www.debian.org/support ░░ ░░The unit apache2.service has entered the 'failed' state with result 'exit-code'. May 04 12:50:49 TheLibrarian systemd[1]: Failed to start The Apache HTTP Server. ░░Subject: A start job for unit apache2.service has failed ░░Defined-By: systemd ░░Support: https://www.debian.org/support ░░ ░░A start job for unit apache2.service has finished with a failure. ░░ ░░The job identifier is 4527 and the job result is failed. As I said, I do get the default Apache2 page saying "It works" but that appears to be optimistic. ps aux | grep apache2 fails to show the service, which confirms the systemctl message that it isn't running. There is nothing in /var/log/apache2/error.log. The .1 log ends yesterday but only contains complaints about php7. Systemctl does report (above) "unable to open logs" so that would explain the lack of additional messages. The apache2 directory and its files are root:adm with only root having write privileges. I tried giving the adm group write privileges but that didn't work. Turns out the group is empty. Adding www-data to it didn't work either. Any ideas on how to track down the cause of the failure(s)? Thanks.
Re: Networking book recommendation
On 5/3/2022 10:35 PM, Tom Browder wrote: On Tue, May 3, 2022 at 15:18 john doe wrote: On 5/3/2022 9:42 PM, Tom Browder wrote: I'm about to sign up for a fixed IPv4 address to my home. I know a bit about setting up simple internal networks, but want to make sure I'm doing it all correctly and securely. Does anyone have a good book they recommend for such use? What do you mean by "correctly and securly", the networking is never secure. Thanks, I didn't know that. Depending on what you need, you might want firewall ... I'm considering HaProxy downsteam from the router. That also brings the question, why do you need a static IPv4 address? I'm moving my webservers inside. I've learned my networking knowlage by reading on line or asking questions when I'm stuck! :) So I can not recommend a book. Here are some comments in addition to this thread: - Do not use the router capability provided by your ISP. This is mainly to avoid letting your ISP remotely control the thing and disable the firewall for example. If you can, use your own router. If your ISP requires to work with their router put the ISP thing in 'bridge'/modem only mode, this will allow to get your public IPv4 address to your own gateway. - Use VPN to access your servers remotely. I find it easier to use a VPN (responsible for public remote connection) to connect to my own network then use SSH (responsible for private remote connection) to connect to my intranet devices This also give you two layers of authentication and you have separate services. -- John Doe
Re: Rendre persistante la cmde echo 1 > /proc/sys/net/netfilter/nf_conntrack_acct
Rien à faire: après un reboot, net.netfilter.nf_conntrack_acct est valorisé à 0, quelque soit l'opération précédent le reboot (systemctl restart procps, ). Sur vos machines, observez-vous la même chose (non-persistence) ? Quel rapport de bogue consulter pour retrouver des cas analogues (ie quel nom de paquet) ? Le mer. 4 mai 2022 à 15:26, Patrick ZAJDA a écrit : > Bonjour, > > > Pour être sûr que tout est appliqué, il peut être bon de rajouter --system > : > > sysctl -p --system > Le 04/05/2022 à 15:17, NoSpam a écrit : > > > Le 04/05/2022 à 15:04, Olivier a écrit : > > Voici les infos demandées: > > # uname -a > Linux gsapilot 5.10.0-13-amd64 #1 SMP Debian 5.10.106-1 (2022-03-17) > x86_64 GNU/Linux > > # sysctl -a|grep nf_conntrack_acct > 0 > > # sysctl -p /etc/sysctl.d/foo.conf > net.ipv4.ip_forward = 1 > net.netfilter.nf_conntrack_acct = 1 > > # sysctl -a|grep nf_conntrack_acct > 1 > > Si je comprends bien, la commande "sysctl -p " déclenche > la mise à jour du paramètre net.netfilter.nf_conntrack_acct > mais cette commande n'est pas exécutée au démarrage ou bien elle est > exécutée mais son exécution ne donne pas l'effet escompté. > > > C'est procps qui s'occupe de cela, systemctl status procps > > Perso je fais sysctl -p (sans nom de fichier) après chaque modification(s) > celle(s) ci persiste(nt) dans le temps. > > > Le mer. 4 mai 2022 à 11:28, NoSpam > a écrit : > > Bonjour. Quelle version de kernel ? Que dit sysctl -p ? Puis sysctl -n > net.netfilter.nf_conntrack_acct ? > > Le 04/05/2022 à 11:17, Olivier a écrit : > > Bonjour, > > Pour activer l'accounting de conntrack, j'utilise: > echo 1 > /proc/sys/net/netfilter/nf_conntrack_acct > > Comment rendre cette commande persistante (ie qu'elle soit > automatiquement lancée au démarrage) ? > > J'ai essayé avec un fichier /etc/sysctl.d/foo.conf et le contenu ci-après. > net.ipv4.ip_forward=1 > net.netfilter.nf_conntrack_acct=1 > > J'observe que seule la première ligne produit l'effet escompté: > # sysctl net.ipv4.ip_forward > 1 > # sysctl net.netfilter.nf_conntrack_acct > 0 > > Je ne vois aucun message d'erreur dans les logs. > > Slts > > > -- > Patrick ZAJDA > [image: Certification NVDA 2019] >
Re: MariaDB migreren van Debian 9 naar 11
On Wed, May 04, 2022 at 01:39:08PM +0200, Paul van der Vlis wrote: > Op 04-05-2022 om 13:04 schreef Geert Stappers: > > On Wed, May 04, 2022 at 12:40:48PM +0200, Paul van der Vlis wrote: > > > Op 04-05-2022 om 11:46 schreef Geert Stappers: > > > > On Wed, May 04, 2022 at 11:15:39AM +0200, Paul van der Vlis wrote: > > > > > > > > > > root@niewe-machine:~# ssh root@oude-machine mysqldump --all-databases > > > > > | mysql > > > > > > > > > > Nu moet het bij mij net andersom, dus vanaf de oude machine. > > > > > > > > Waarom? > > > > > > De oude machine is nogal goed beveiligt, ik kan niet inloggen via SSH van > > > de > > > nieuwe machine op de oude. Wel andersom. > > Oh, vandaar ... > > > > > Wellicht is dat wel te realiseren, maar andersom is dus handiger. > > > Tenminste als het kan. > > Misschien tijd om te vertellen wat de eerdere pogingen waren? > > Ik heb vooral testjes gedaan om de output van een commando via ssh over te > sturen naar een commando aan de andere kant. Bijvoorbeeld: > cat /etc/hosts | ssh 1.2.3.4 /usr/bin/less > > Maar dan krijg ik geen reactie. > > Verder heb ik geprobeerd om mysql client te start op de andere machine: > ssh 1.2.3.4 /usr/bin/mysql > > Maar ook daar geen reactie. > > Hmm, ik merk dat ik wel een reactie krijg op dat laatste commando als ik > "-p" meegeef. Alleen heeft de mysql user root daar geen paswoord en dat vind > ik wel praktisch voor backups etc. Pardon? (maar beschouw dat als een retorische vraag) Eerder vandaag, may the fourth, schreef ik dat met root@oude-machine:~# mysqldump --all-databases | ssh dbusr@nieuwe-machine mysql zou beginnen. Dat was echter iets te kort door de bocht. Vooraf aan dat migratie commando heb ik * een operating system user met naam 'dbusr' of iets dergelijks * gezien dat `dbusr` een MySQL connectie kan maken ( `mysql` uitvoeren vanaf shell, zonder password geneuzel ) * getest dat `dbusr` "create database" mag/kan doen en gecontroleert dat een SSH-oversteek mogelijk is. In deze twee stappen root@oude-machine:~# cat /etc/hosts | ssh dbusr@nieuwe-machine dd of=/tmp/hosts_file_oude_machine dbusr@nieuwe-machine $ cat /tmp/hosts_file_oude_machine ; ls -l /tmp/hosts_file_oude_machine Dat in andere worden: * kleine stappen * expliciete usernames gebruiken, 'root' vermijden. * wegblijven bij interactieve toestand ( wegblijven bij `less`, die vraagt om toets aanslag, weg bij MySQL wachtwoord ) Groeten Geert Stappers -- Silence is hard to parse
Re: sane-backend for Epson EcoTank ET-2711
On Wed 04 May 2022 at 15:43:03 +0200, Dieter Rohlfing wrote: > Am Wed, 4 May 2022 12:50:14 +0100 > schrieb Brian : > > >I wonder whether the net backend is required. What happens if the > >entry is commented out? > > My fault: net was enabled, therefore I thought, that it is necessary. > According to your proposal I disabled net and access to ET2711 is > possible. So no need to enable net, airscan alone is sufficient. If you do not need more that 100dpi and 300dpi, airscan gives a user an alternative to Epson's non-free driver. > >Scanning is taking place using the WSD (Web Services for Devices) > >protocol. The eSCL protocol needs AirPrint on the device. > > I thought eSCL is just a synonym for WSD. Wrong or right? This is my > first approach to scanning and I'm not very familiar with the different > scanning protocols. They are two completely different independent protocols. See https://wiki.debian.org/SaneOverNetwork > >Would you confirm you can scan with > > > > xsnae "airscan:w0:EPSON ET-2710 Series" > > It works. Thanks. > >Unfortunately, the vendor's implementation of WSD may offer only > >a limited number of resolutions. airscan cannot do anything about > >this; it can only work with what it is told by the device. > > Agreed. eSCL would have provided a wider range of resolutions. Why in this day and age Epson chose not to provide the device with AirPrint is beyond me. > >With a USB connection, what do you get for > > lsusb -v | grep -A 3 bInterfaceClass.*7 ? > > The output is: > > > bInterfaceClass 7 Printer > > bInterfaceSubClass 1 Printer > > bInterfaceProtocol 2 Bidirectional > > iInterface 6 USB2.0 Printer The device does not provide IPP-over-USB either. Many MFPs have been offering it since soon after 2012. -- Brian.
Re: Odd reproducible problem - but is it a bug?
Anders Andersson (12022-05-04): > On this note, I've always found it annoying that debian (and likely > others) don't put /sbin in the normal user's $PATH. A lot of the tools > there have uses other than modifying the system. I have to unpack Zip files rather often, I use unzip in command-line. It has become an automatism: “unz/tmp/...”. Recently, initrd-tools complained that zstd was not installed, so I installed it. The next time I had a Zip file to unpack, I typed “unz” and was confused that it did not work: “unz” had become ambiguous between “unzip(sfx)” and “unzstd”. Every program in the search path clutters the namespace and makes the shell completion less efficient. When a program is useful for a normal user once every 36th of the month, I would rather not have it in the default search path: typing “/sb” then is cheap enough for the benefit of gaining a few keystrokes for commands I use many times a day. YMMV. Regards, -- Nicolas George signature.asc Description: PGP signature
Re: sane-backend for Epson EcoTank ET-2711
On Wed 04 May 2022 at 14:35:29 +0100, mick crane wrote: > On 2022-05-04 14:12, Dieter Rohlfing wrote: > > Am Wed, 04 May 2022 11:42:39 +0100 > > schrieb mick crane : > > > > > You can probably type "scanimage --help -A -d 'airscan:w0:EPSON > > > ET-2710 > > > Series'" > > > to get a list of capabilities. > > > > This is the ET2711 specific output: > > > > > Options specific to device `airscan:w0:EPSON ET-2710 Series': > > > Standard: > > >--resolution 100|300dpi [300] > > seems you should have 1200dpi available. > No idea why not Hint: read *all* the posts in this short thread :). -- Brian.
Re: sane-backend for Epson EcoTank ET-2711
Am Wed, 4 May 2022 12:50:14 +0100 schrieb Brian : >I wonder whether the net backend is required. What happens if the >entry is commented out? My fault: net was enabled, therefore I thought, that it is necessary. According to your proposal I disabled net and access to ET2711 is possible. So no need to enable net, airscan alone is sufficient. >Scanning is taking place using the WSD (Web Services for Devices) >protocol. The eSCL protocol needs AirPrint on the device. I thought eSCL is just a synonym for WSD. Wrong or right? This is my first approach to scanning and I'm not very familiar with the different scanning protocols. >Would you confirm you can scan with > > xsnae "airscan:w0:EPSON ET-2710 Series" It works. >Unfortunately, the vendor's implementation of WSD may offer only >a limited number of resolutions. airscan cannot do anything about >this; it can only work with what it is told by the device. Agreed. >With a USB connection, what do you get for > lsusb -v | grep -A 3 bInterfaceClass.*7 ? The output is: > bInterfaceClass 7 Printer > bInterfaceSubClass 1 Printer > bInterfaceProtocol 2 Bidirectional > iInterface 6 USB2.0 Printer Dieter
Re: sane-backend for Epson EcoTank ET-2711
On 2022-05-04 14:12, Dieter Rohlfing wrote: Am Wed, 04 May 2022 11:42:39 +0100 schrieb mick crane : You can probably type "scanimage --help -A -d 'airscan:w0:EPSON ET-2710 Series'" to get a list of capabilities. This is the ET2711 specific output: Options specific to device `airscan:w0:EPSON ET-2710 Series': Standard: --resolution 100|300dpi [300] seems you should have 1200dpi available. No idea why not mick -- Key ID4BFEBB31
Re: Odd reproducible problem - but is it a bug?
On Wed, May 04, 2022 at 07:04:52AM -0600, Charles Curley wrote: > On Wed, 4 May 2022 05:23:31 +0200 > Anders Andersson wrote: > > > On this note, I've always found it annoying that debian (and likely > > others) don't put /sbin in the normal user's $PATH. A lot of the tools > > there have uses other than modifying the system. > > It can be annoying, but for good reason. In a multi-user system (such > as Unix), it is a good security precaution to reserve programs that can > modify or even inform the user about the state of the system to trusted > users, such as root or wheel. Hence regular programs for regular users > go into directories called bin, and system programs go into directories > called sbin, and paths are set accordingly. That is the most ludicrous thing I've heard in... a long time. If a command can reveal sensitive information to an unprivileged user, then "hiding" it in /sbin is not a valid security measure. The smart user will simply run /sbin/whatever, or change their PATH variable to include /sbin. Of course, your assertion that any command *could* reveal such sensitive information is laughable. Programs can only do the things allowed by their privileges. If joe tries to read the /etc/shadow file, he can't do it, because he doesn't have the correct privileges. None of the commands in /sbin are going to be able to do it either, because they run *as joe*. (Obviously, setuid or setgid programs could exist which run with elevated privileges. Those have to be written correctly. If one of them has a security hole, just hiding it in /sbin *does not count* as a security improvement on your system.) > Even on a single user system the distinction is worth retaining. If > nothing else, one occasionally needs a reminder to be careful with > certain programs lest one shoot oneself in the foot. There are several reasons why /sbin exists, historically. On some systems, the programs in /sbin are *statically linked*. That's what the 's' actually stands for -- not 's'ecure, not 's'uperuser, but 's'tatic. They're needed during boot, at a time when the file system which contains the shared libraries used by commands in /bin may not be mounted yet. HP-UX is one such system. /bin is a symlink to /usr/bin, and there are both /usr/bin/cat and /sbin/cat commands. Shell scripts which must run during the early stages of boot can use /sbin/cat (along with redirections) to copy files, or display simple messages. On most other systems, the programs in /sbin are not statically linked, but are placed there for other reasons. One reason is simply that these programs don't *do* anything useful or helpful for ordinary users. They may not even run at all. Another reason is to reduce the size of the /usr/bin and /bin directories, for performance. It's a tiny gain, but over years of operation, it could add up to something noticeable. The main reason is "because that's where it has always been". This is both for user expectations, and for backward compatibility in case some idiot hard-coded /sbin/ifconfig in a shell script. Keeping the commands in their historic locations will prevent a few badly-written scripts from breaking.
Re: Rendre persistante la cmde echo 1 > /proc/sys/net/netfilter/nf_conntrack_acct
Bonjour, Pour être sûr que tout est appliqué, il peut être bon de rajouter --system : sysctl -p --system Le 04/05/2022 à 15:17, NoSpam a écrit : Le 04/05/2022 à 15:04, Olivier a écrit : Voici les infos demandées: # uname -a Linux gsapilot 5.10.0-13-amd64 #1 SMP Debian 5.10.106-1 (2022-03-17) x86_64 GNU/Linux # sysctl -a|grep nf_conntrack_acct 0 # sysctl -p /etc/sysctl.d/foo.conf net.ipv4.ip_forward = 1 net.netfilter.nf_conntrack_acct = 1 # sysctl -a|grep nf_conntrack_acct 1 Si je comprends bien, la commande "sysctl -p " déclenche la mise à jour du paramètre net.netfilter.nf_conntrack_acct mais cette commande n'est pas exécutée au démarrage ou bien elle est exécutée mais son exécution ne donne pas l'effet escompté. C'est procps qui s'occupe de cela, systemctl status procps Perso je fais sysctl -p (sans nom de fichier) après chaque modification(s) celle(s) ci persiste(nt) dans le temps. Le mer. 4 mai 2022 à 11:28, NoSpam a écrit : Bonjour. Quelle version de kernel ? Que dit sysctl -p ? Puis sysctl -n net.netfilter.nf_conntrack_acct ? Le 04/05/2022 à 11:17, Olivier a écrit : Bonjour, Pour activer l'accounting de conntrack, j'utilise: echo 1 > /proc/sys/net/netfilter/nf_conntrack_acct Comment rendre cette commande persistante (ie qu'elle soit automatiquement lancée au démarrage) ? J'ai essayé avec un fichier /etc/sysctl.d/foo.conf et le contenu ci-après. net.ipv4.ip_forward=1 net.netfilter.nf_conntrack_acct=1 J'observe que seule la première ligne produit l'effet escompté: # sysctl net.ipv4.ip_forward 1 # sysctl net.netfilter.nf_conntrack_acct 0 Je ne vois aucun message d'erreur dans les logs. Slts -- Patrick ZAJDA Certification NVDA 2019
Re: Rendre persistante la cmde echo 1 > /proc/sys/net/netfilter/nf_conntrack_acct
Le 04/05/2022 à 15:04, Olivier a écrit : Voici les infos demandées: # uname -a Linux gsapilot 5.10.0-13-amd64 #1 SMP Debian 5.10.106-1 (2022-03-17) x86_64 GNU/Linux # sysctl -a|grep nf_conntrack_acct 0 # sysctl -p /etc/sysctl.d/foo.conf net.ipv4.ip_forward = 1 net.netfilter.nf_conntrack_acct = 1 # sysctl -a|grep nf_conntrack_acct 1 Si je comprends bien, la commande "sysctl -p " déclenche la mise à jour du paramètre net.netfilter.nf_conntrack_acct mais cette commande n'est pas exécutée au démarrage ou bien elle est exécutée mais son exécution ne donne pas l'effet escompté. C'est procps qui s'occupe de cela, systemctl status procps Perso je fais sysctl -p (sans nom de fichier) après chaque modification(s) celle(s) ci persiste(nt) dans le temps. Le mer. 4 mai 2022 à 11:28, NoSpam a écrit : Bonjour. Quelle version de kernel ? Que dit sysctl -p ? Puis sysctl -n net.netfilter.nf_conntrack_acct ? Le 04/05/2022 à 11:17, Olivier a écrit : Bonjour, Pour activer l'accounting de conntrack, j'utilise: echo 1 > /proc/sys/net/netfilter/nf_conntrack_acct Comment rendre cette commande persistante (ie qu'elle soit automatiquement lancée au démarrage) ? J'ai essayé avec un fichier /etc/sysctl.d/foo.conf et le contenu ci-après. net.ipv4.ip_forward=1 net.netfilter.nf_conntrack_acct=1 J'observe que seule la première ligne produit l'effet escompté: # sysctl net.ipv4.ip_forward 1 # sysctl net.netfilter.nf_conntrack_acct 0 Je ne vois aucun message d'erreur dans les logs. Slts
Re: sane-backend for Epson EcoTank ET-2711
Am Wed, 04 May 2022 11:42:39 +0100 schrieb mick crane : >You can probably type "scanimage --help -A -d 'airscan:w0:EPSON ET-2710 >Series'" >to get a list of capabilities. This is the ET2711 specific output: >Options specific to device `airscan:w0:EPSON ET-2710 Series': > Standard: >--resolution 100|300dpi [300] >Sets the resolution of the scanned image. >--mode Color|Gray [Color] >Selects the scan mode (e.g., lineart, monochrome, or color). >--source Flatbed [Flatbed] >Selects the scan source (such as a document-feeder). > Geometry: >-l 0..215.9mm [0] >Top-left x position of scan area. >-t 0..297.18mm [0] >Top-left y position of scan area. >-x 0..215.9mm [215.9] >Width of scan-area. >-y 0..297.18mm [297.18] >Height of scan-area. > Enhancement: >--brightness -100..100% (in steps of 1) [0] >Controls the brightness of the acquired image. >--contrast -100..100% (in steps of 1) [0] >Controls the contrast of the acquired image. >--shadow 0..100% (in steps of 1) [0] >Selects what radiance level should be considered "black". >--highlight 0..100% (in steps of 1) [100] >Selects what radiance level should be considered "white". >--analog-gamma 0.008..4 [1] >Analog gamma-correction >--negative[=(yes|no)] [no] >Swap black and white > >All options specific to device `airscan:w0:EPSON ET-2710 Series': > Standard: >--resolution 100|300dpi [300] >Sets the resolution of the scanned image. >--mode Color|Gray [Color] >Selects the scan mode (e.g., lineart, monochrome, or color). >--source Flatbed [Flatbed] >Selects the scan source (such as a document-feeder). > Geometry: >-l 0..215.9mm [0] >Top-left x position of scan area. >-t 0..297.18mm [0] >Top-left y position of scan area. >-x 0..215.9mm [215.9] >Width of scan-area. >-y 0..297.18mm [297.18] >Height of scan-area. > Enhancement: >--brightness -100..100% (in steps of 1) [0] >Controls the brightness of the acquired image. >--contrast -100..100% (in steps of 1) [0] >Controls the contrast of the acquired image. >--shadow 0..100% (in steps of 1) [0] >Selects what radiance level should be considered "black". >--highlight 0..100% (in steps of 1) [100] >Selects what radiance level should be considered "white". >--analog-gamma 0.008..4 [1] >Analog gamma-correction >--negative[=(yes|no)] [no] >Swap black and white Dieter
Re: Rendre persistante la cmde echo 1 > /proc/sys/net/netfilter/nf_conntrack_acct
Voici les infos demandées: # uname -a Linux gsapilot 5.10.0-13-amd64 #1 SMP Debian 5.10.106-1 (2022-03-17) x86_64 GNU/Linux # sysctl -a|grep nf_conntrack_acct 0 # sysctl -p /etc/sysctl.d/foo.conf net.ipv4.ip_forward = 1 net.netfilter.nf_conntrack_acct = 1 # sysctl -a|grep nf_conntrack_acct 1 Si je comprends bien, la commande "sysctl -p " déclenche la mise à jour du paramètre net.netfilter.nf_conntrack_acct mais cette commande n'est pas exécutée au démarrage ou bien elle est exécutée mais son exécution ne donne pas l'effet escompté. Le mer. 4 mai 2022 à 11:28, NoSpam a écrit : > > Bonjour. Quelle version de kernel ? Que dit sysctl -p ? Puis sysctl -n > net.netfilter.nf_conntrack_acct ? > > Le 04/05/2022 à 11:17, Olivier a écrit : > > Bonjour, > > > > Pour activer l'accounting de conntrack, j'utilise: > > echo 1 > /proc/sys/net/netfilter/nf_conntrack_acct > > > > Comment rendre cette commande persistante (ie qu'elle soit > > automatiquement lancée au démarrage) ? > > > > J'ai essayé avec un fichier /etc/sysctl.d/foo.conf et le contenu ci-après. > > net.ipv4.ip_forward=1 > > net.netfilter.nf_conntrack_acct=1 > > > > J'observe que seule la première ligne produit l'effet escompté: > > # sysctl net.ipv4.ip_forward > > 1 > > # sysctl net.netfilter.nf_conntrack_acct > > 0 > > > > Je ne vois aucun message d'erreur dans les logs. > > > > Slts >
Re: Odd reproducible problem - but is it a bug?
On Wed, 4 May 2022 05:23:31 +0200 Anders Andersson wrote: > On this note, I've always found it annoying that debian (and likely > others) don't put /sbin in the normal user's $PATH. A lot of the tools > there have uses other than modifying the system. It can be annoying, but for good reason. In a multi-user system (such as Unix), it is a good security precaution to reserve programs that can modify or even inform the user about the state of the system to trusted users, such as root or wheel. Hence regular programs for regular users go into directories called bin, and system programs go into directories called sbin, and paths are set accordingly. Even on a single user system the distinction is worth retaining. If nothing else, one occasionally needs a reminder to be careful with certain programs lest one shoot oneself in the foot. -- Does anybody read signatures any more? https://charlescurley.com https://charlescurley.com/blog/
Re: stretch with bullseye kernel?
On 4/05/22 18:57, Tixy wrote: On Wed, 2022-05-04 at 00:44 +0300, IL Ka wrote: Linux kernel is backward compatible. Linus calls it "we do not break userspace". That means _old_ applications should work on new kernel There's also the issue of what config options the kernel is built with. I'm sure there's been at least one time in the past where for a new Debian release they've had to enable a kernel feature that the new systemd (or udev?) wanted. But again, a case like that would stop a new Debian working on and old kernel, not the other way around as the OP is intending. I don't expect the Debian kernel maintainers would _remove_ kernel config options needed in a prior release. Thanks all - I thought it would probably be safe, and indeed everything seems to be working :-) Cheers, Richard
Re: sane-backend for Epson EcoTank ET-2711
On Wed 04 May 2022 at 11:51:06 +0200, Dieter Rohlfing wrote: > Am Tue, 3 May 2022 23:19:17 +0100 > schrieb Brian : > > >AirPrint is not mentioned in the device's specifications at > > > > > > https://www.epson.co.uk/products/printers/inkjet/consumer/ecotank-et-2711/p/23003 > > This website says: > > >Optical Resolution > >2,400 DPI x 1,200 DPI (Horizontal x Vertical) > > but xsane offers me only 100 dpi and 300 dpi and no higher resolution. Dealt with later on. > >Enable the net backend? Nothing else? > > The net and airscan sane-backends. I wonder whether the net backend is required. What happens if the entry is commented out? > >Please give what you get for > > > > scanimage -L > > > > airscan-discover > > System is Debian 11.3, airscan doesn't exist in previous versions. sane-airscan is in buster-backports. > scanimage -L > device `airscan:w0:EPSON ET-2710 Series' is a WSD EPSON ET-2710 Series > ip=172.16.10.91 > > airscan-discover > [devices] > EPSON ET-2710 Series = http://172.16.10.91:80/WDP/SCAN, WSD Scanning is taking place using the WSD (Web Services for Devices) protocol. The eSCL protocol needs AirPrint on the device. Would you confirm you can scan with xsnae "airscan:w0:EPSON ET-2710 Series" or simple-scan "airscan:w0:EPSON ET-2710 Series" Unfortunately, the vendor's implementation of WSD may offer only a limited number of resolutions. airscan cannot do anything about this; it can only work with what it is told by the device. With a USB connection, what do you get for lsusb -v | grep -A 3 bInterfaceClass.*7 ? -- Brian.
Re: MariaDB migreren van Debian 9 naar 11
Hoi Geert, en anderen, Op 04-05-2022 om 13:04 schreef Geert Stappers: On Wed, May 04, 2022 at 12:40:48PM +0200, Paul van der Vlis wrote: Op 04-05-2022 om 11:46 schreef Geert Stappers: On Wed, May 04, 2022 at 11:15:39AM +0200, Paul van der Vlis wrote: Hoi, Wouter Verhelst schreef ooit dat je zo grote MariaDB databases kunt migreren: root@niewe-machine:~# ssh root@oude-machine mysqldump --all-databases | mysql Nu moet het bij mij net andersom, dus vanaf de oude machine. Waarom? De oude machine is nogal goed beveiligt, ik kan niet inloggen via SSH van de nieuwe machine op de oude. Wel andersom. Oh, vandaar ... Wellicht is dat wel te realiseren, maar andersom is dus handiger. Tenminste als het kan. Misschien tijd om te vertellen wat de eerdere pogingen waren? Ik heb vooral testjes gedaan om de output van een commando via ssh over te sturen naar een commando aan de andere kant. Bijvoorbeeld: cat /etc/hosts | ssh 1.2.3.4 /usr/bin/less Maar dan krijg ik geen reactie. Verder heb ik geprobeerd om mysql client te start op de andere machine: ssh 1.2.3.4 /usr/bin/mysql Maar ook daar geen reactie. Hmm, ik merk dat ik wel een reactie krijg op dat laatste commando als ik "-p" meegeef. Alleen heeft de mysql user root daar geen paswoord en dat vind ik wel praktisch voor backups etc. Groet, Paul -- Paul van der Vlis Linux systeembeheer Groningen https://vandervlis.nl/
Re: MariaDB migreren van Debian 9 naar 11
On Wed, May 04, 2022 at 12:40:48PM +0200, Paul van der Vlis wrote: > Op 04-05-2022 om 11:46 schreef Geert Stappers: > > On Wed, May 04, 2022 at 11:15:39AM +0200, Paul van der Vlis wrote: > > > Hoi, > > > > > > Wouter Verhelst schreef ooit dat je zo grote MariaDB databases kunt > > > migreren: > > > > > > root@niewe-machine:~# ssh root@oude-machine mysqldump --all-databases | > > > mysql > > > > > > Nu moet het bij mij net andersom, dus vanaf de oude machine. > > > > Waarom? > > De oude machine is nogal goed beveiligt, ik kan niet inloggen via SSH van de > nieuwe machine op de oude. Wel andersom. Oh, vandaar ... > Wellicht is dat wel te realiseren, maar andersom is dus handiger. > Tenminste als het kan. Misschien tijd om te vertellen wat de eerdere pogingen waren? Groeten Geert Stappers Zou begonnen zijn met root@oude-machine:~# mysqldump --all-databases | ssh dbusr@nieuwe-machine mysql -- May the fourth be with you
Re: sane-backend for Epson EcoTank ET-2711
On 2022-05-04 10:51, Dieter Rohlfing wrote: scanimage -L device `airscan:w0:EPSON ET-2710 Series' is a WSD EPSON ET-2710 Series ip=172.16.10.91 I'd have to familiarize myself with setting up scanning You can probably type "scanimage --help -A -d 'airscan:w0:EPSON ET-2710 Series'" to get a list of capabilities. mick -- Key ID4BFEBB31
Re: MariaDB migreren van Debian 9 naar 11
Op 04-05-2022 om 11:46 schreef Geert Stappers: On Wed, May 04, 2022 at 11:15:39AM +0200, Paul van der Vlis wrote: Hoi, Wouter Verhelst schreef ooit dat je zo grote MariaDB databases kunt migreren: root@niewe-machine:~# ssh root@oude-machine mysqldump --all-databases | mysql Nu moet het bij mij net andersom, dus vanaf de oude machine. Waarom? De oude machine is nogal goed beveiligt, ik kan niet inloggen via SSH van de nieuwe machine op de oude. Wel andersom. Wellicht is dat wel te realiseren, maar andersom is dus handiger. Tenminste als het kan. Groet, Paul -- Paul van der Vlis Linux systeembeheer Groningen https://vandervlis.nl/
Re: Thunderbird importeren
On Tue, May 03, 2022 at 12:14:09PM +0200, Paul van der Vlis wrote: > Op 30-04-2022 om 21:34 schreef Paul van der Vlis: > > Alle e-mail is terug. Ik ga met Han bespreken wat er aan de hand was en > > wat ik eraan heb gedaan etc. Het was best lastig! > > In overleg met Han mag ik wel wat schrijven over mijn bevindingen. > > Na opstarten bleek er een nieuw profiel te worden aangemaakt omdat er een > lockfile stond in het default profiel. Dat is een bestand met de naam > "lock", een symlink naar iets als "127.0.1.1:+1930". Dit bestand verwijderen > hielp al veel. > > Ook de rare melding in rood waarover Han het had, iets als: > http://www.w3.org/1999/xhtml; > heb ik gezien, maar wat ik daar precies aan heb gedaan weet ik jammer genoeg > niet meer. De melding was op een gegeven moment weg, misschien had het met > het lockfile te maken. Dat klinkt aanneemelijk. > Na terugzetten backup en verwijderen lockfile startte Thunderbird in het > juiste profiel en zag ik alle accounts. Klinkt als "backup was gemaakt toen TB draaide" > Echter de e-mail in verschillende accounts was verdwenen... Vooral de > INBOXen van Gmail accounts. Deze e-mail bleek echter nog wel aanwezig in de > accounts, maar wel aangemerkt als verwijderd en daarom niet meer zichtbaar > in Thunderbird. > > Misschien dat dit te maken heeft met Google. Han gebruikte POP-mail met > "leave on server" aangevinkt. Dat schijnt Google niet meer te ondersteunen > hoorde ik van hem. In elk geval was de mail verwijderd maar onder water nog > wel aanwezig, omdat de mappen niet waren gecomprimeerd. Als je comprimeert, > dan worden verwijderde mails pas echt verwijderd. Misschien dan toch maar IMAP gaan gebruiken? > Daartoe wordt in elk mailbericht een hexadecimaal getal veranderd in de > X-Mozilla-Status header: er wordt 8 bij opgeteld. Een gelezen bericht heeft > dan vaak een waarde "0009", als je dat veranderd in een "0001" dan is het > weer in orde. Een ongelezen bericht heeft in verwijderde toestand vaak een > waarde 0008, als je dat wijzigt in dan is het weer in orde. Maar er > zijn meer waardes, zoals "2019" of "201a", afhankelijk of een bericht > beantwoord is, of een kleurtje heeft. > > Wat ik heb gedaan is een (nogal matig) script geschreven wat die waardes in > al die e-mails veranderd. Want Thunderbird kan dat zelf niet. Toen was de > e-mail weer terug ;-) > > Groeten, > Paul Dank voor de terugmelding, je bent een goed voorbeeld. (Ja, dat is een compliment (en jouw pech als je daar niet tegen kunt)) ;-) Groeten Geert Stappers -- Silence is hard to parse
Re: sane-backend for Epson EcoTank ET-2711
Am Tue, 3 May 2022 23:19:17 +0100 schrieb Brian : >AirPrint is not mentioned in the device's specifications at > > > https://www.epson.co.uk/products/printers/inkjet/consumer/ecotank-et-2711/p/23003 This website says: >Optical Resolution >2,400 DPI x 1,200 DPI (Horizontal x Vertical) but xsane offers me only 100 dpi and 300 dpi and no higher resolution. >Enable the net backend? Nothing else? The net and airscan sane-backends. >Please give what you get for > > scanimage -L > > airscan-discover System is Debian 11.3, airscan doesn't exist in previous versions. scanimage -L device `airscan:w0:EPSON ET-2710 Series' is a WSD EPSON ET-2710 Series ip=172.16.10.91 airscan-discover [devices] EPSON ET-2710 Series = http://172.16.10.91:80/WDP/SCAN, WSD Dieter
Re: MariaDB migreren van Debian 9 naar 11
On Wed, May 04, 2022 at 11:15:39AM +0200, Paul van der Vlis wrote: > Hoi, > > Wouter Verhelst schreef ooit dat je zo grote MariaDB databases kunt > migreren: > > root@niewe-machine:~# ssh root@oude-machine mysqldump --all-databases | > mysql > > Nu moet het bij mij net andersom, dus vanaf de oude machine. Waarom? > Ik heb al van alles geprobeerd, maar het wil niet erg lukken... > Iemand die hier ervaring mee heeft? > > ... > Groet, > Paul > Groeten Geert Stappers -- Silence is hard to parse
Re: Rendre persistante la cmde echo 1 > /proc/sys/net/netfilter/nf_conntrack_acct
Bonjour. Quelle version de kernel ? Que dit sysctl -p ? Puis sysctl -n net.netfilter.nf_conntrack_acct ? Le 04/05/2022 à 11:17, Olivier a écrit : Bonjour, Pour activer l'accounting de conntrack, j'utilise: echo 1 > /proc/sys/net/netfilter/nf_conntrack_acct Comment rendre cette commande persistante (ie qu'elle soit automatiquement lancée au démarrage) ? J'ai essayé avec un fichier /etc/sysctl.d/foo.conf et le contenu ci-après. net.ipv4.ip_forward=1 net.netfilter.nf_conntrack_acct=1 J'observe que seule la première ligne produit l'effet escompté: # sysctl net.ipv4.ip_forward 1 # sysctl net.netfilter.nf_conntrack_acct 0 Je ne vois aucun message d'erreur dans les logs. Slts
Rendre persistante la cmde echo 1 > /proc/sys/net/netfilter/nf_conntrack_acct
Bonjour, Pour activer l'accounting de conntrack, j'utilise: echo 1 > /proc/sys/net/netfilter/nf_conntrack_acct Comment rendre cette commande persistante (ie qu'elle soit automatiquement lancée au démarrage) ? J'ai essayé avec un fichier /etc/sysctl.d/foo.conf et le contenu ci-après. net.ipv4.ip_forward=1 net.netfilter.nf_conntrack_acct=1 J'observe que seule la première ligne produit l'effet escompté: # sysctl net.ipv4.ip_forward 1 # sysctl net.netfilter.nf_conntrack_acct 0 Je ne vois aucun message d'erreur dans les logs. Slts
MariaDB migreren van Debian 9 naar 11
Hoi, Wouter Verhelst schreef ooit dat je zo grote MariaDB databases kunt migreren: root@niewe-machine:~# ssh root@oude-machine mysqldump --all-databases | mysql Nu moet het bij mij net andersom, dus vanaf de oude machine. Ik heb al van alles geprobeerd, maar het wil niet erg lukken... Iemand die hier ervaring mee heeft? Verder doe ik het liever per-database. Sommige databases zijn namelijk actief in gebruik, andere 70GB groot maar statisch. Nu vraag ik me ook nog af hoe het zit met de database met de naam "mysql". In het verleden had ik wel problemen dat ik de overgezette users en permissies toch weer moest aanmaken. Kent iemand dat probleem? In de nieuwe setup heeft MariaDB een root user die kan inloggen zonder paswoord als je dat vanaf de Linux-user root doet. Dat vind ik prettig, is het ook mogelijk dat te handhaven als je die database met de naam mysql overzet naar een nieuwe machine? Groet, Paul -- Paul van der Vlis Linux systeembeheer Groningen https://vandervlis.nl/
Re: Getting a patch applied with an unresponsive maintainer
On Tue, May 03, 2022 at 04:39:04PM +0100, Adam Dinwoodie wrote: Exactly what I needed, thank you! I hadn't known about the -mentors list, and I wasn't sure going straight to -devel was appropriate, but I think that gives me my next steps here :) Good luck! -- Please do not CC me for listmail. Jonathan Dowland ✎j...@debian.org https://jmtd.net
Re: stretch with bullseye kernel?
On Wed, 2022-05-04 at 00:44 +0300, IL Ka wrote: > Linux kernel is backward compatible. Linus calls it "we do not break > userspace". > That means _old_ applications should work on new kernel There's also the issue of what config options the kernel is built with. I'm sure there's been at least one time in the past where for a new Debian release they've had to enable a kernel feature that the new systemd (or udev?) wanted. But again, a case like that would stop a new Debian working on and old kernel, not the other way around as the OP is intending. I don't expect the Debian kernel maintainers would _remove_ kernel config options needed in a prior release. -- Tixy
Re: Looking for documentation package
Am Tue, May 03, 2022 at 04:17:57PM -0700 schrieb Gary L. Roach: > I have been looking for a documentation system that would allow me to write > cursive paragraphs with math formulas interspersed and then have the > formulas solved. Some examples that almost do what I want is Sage, Octave > and Cantor (with the proper backend). So far all seem to be missing the /* > text */ capability of the C language and have no subscript superscript > capability. I like Cantor a lot but haven't been able to get around these > two hurdles. Could anyone help. Someone already mentioned emacs, maybe in combination with org-mode and export to LaTeX/HTML etc. https://orgmode.org/ You can also check out JupyterLab, a notebook system. https://jupyter.org/ HTH juh signature.asc Description: PGP signature
