Re: Sendmail greeting delay
David Parker dpar...@utica.edu wrote: We have an SMTP server running Sendmail 8.14.4-4 on Debian 7 64-bit. Kaccess hash -TTMPF /etc/mail/access # FEATURE(`access_db', `hash -TTMPF /etc/mail/access', `skip')dnl For some reason, I just can't get it to not pause when greeting external (non-localhost) connections. [...] if I test from another PC on our network, it connects, pauses for 5 seconds, and then prints the SSL information. Does your PC have an rDNS entry, and if not could this delay be a DNS lookup timeout? Chris -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/rfqdobx8se@news.roaima.co.uk
Re: VPN IPSec (Cisco vpnc)
Hajder Rabiee hajd...@gmail.com wrote: Trying to connect to VPN at work but keep getting: vpnc: no response from target. This is a typical response when the group name/password are incorrect. IPSec ID group-id IPSec secret group-psk Chris -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/h1pbobxuhc@news.roaima.co.uk
Re: ntp and multiple OSes
Bob Proulx b...@proulx.com wrote: Ah... I had not ever seen ntpdate or rdate used for clock comparison before. It really is a very useful tool for clock comparisons. Chris -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/nfsl7bxjcp@news.roaima.co.uk
Re: ntp and multiple OSes
Andrei POPESCU andreimpope...@gmail.com wrote:
On Lu, 09 iun 14, 19:01:51, Chris Davies wrote:
I have yet to find a useful alternative to the very convenient
ntpdate -qu {server}. Is there one?
Just by looking at manpages maybe 'sntp server' is what you're looking
for?
Thank you. They're similar enough that I'll take a look and see how I
can move from one to the other.
$ ntpdate -qu ntp.roaima.co.uk
server 192.168.x.x, stratum 2, offset -0.000938, delay 0.02596
10 Jun 15:41:37 ntpdate[19538]: adjust time server 192.168.x.x offset -0.000938
sec
$ sntp -K /dev/null ntp.roaima.co.uk
10 Jun 15:41:37 sntp[19542]: Started sntp
2014-06-10 15:41:37.860810 (+) -0.000972 +/- 0.031326 secs
Chris
--
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: https://lists.debian.org/87ij6bxrfk@news.roaima.co.uk
Re: ntp and multiple OSes
Andrei POPESCU andreimpope...@gmail.com wrote:
ntpdate is obsolete, please remove (purge) it and install ntp.
For day-to-day usage I would agree with your recommendation of ntp to
ntpdate. However, I have yet to find a useful alternative to the very
convenient ntpdate -qu {server}. Is there one?
Chris
--
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: https://lists.debian.org/fd9h6bxj6b@news.roaima.co.uk
Re: about heirloom mailx
Richard Hector rich...@walnut.gen.nz wrote: I'm not currently using heirloom mailx, or exim, so testing it is a bit hard - but are you getting the prompt _before_ the debug output? This is how I've seen the mail / mailx tools work since, I think, at least the last twenty years. (Ouch!) So I would suggest it's really quite likely this is the situation here. Chris -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/j9pg5bx1mo@news.roaima.co.uk
Re: exim4 fetchmail delivery more than 10 rejected
Harry Putnam rea...@newsguy.com wrote: I've tried adding this line: smtp_accept_queue_per_connection=300 to /etc/exim4/exim4.conf.template which causes a failure when I run /etc/init.d/exim4 reload (It generates a new conf that exim4 does not accept. That line looks plausible to me. Where did you add it, and what error message did you get? The documentation states that you can set this to zero to disable it entirely: smtp_accept_queue_per_connection Use: main Type: integer Default: 10 This option limits the number of delivery processes that Exim starts automatically when receiving messages via SMTP [...] If the value of the option is greater than zero, and the number of messages received in a single SMTP session exceeds this number, subsequent messages are placed on the queue, but no delivery processes are started. [...] On dial-in client systems it should probably be set to zero (that is, disabled). http://www.exim.org/exim-html-current/doc/html/spec_html/ch-main_configuration.html Chris -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/gtob5bx2qn@news.roaima.co.uk
Re: problems with ntp syncronization in wheezy
Leonardo Cuyar Morales leona...@softel.cu wrote: I just installed debian wheezy amd64. After having set ntp configurations in /etc/default/ntpdate file, like: - set the ntp server - do not read /etc/ntp.conf file the same configuration I did in squeeze, my result was wheezy does not get sincronized either. Have you had any experience with ntp in wheezy? I've been using ntp since the '90s, and on Debian since sarge. FWIW I also run an ntp pool server. I rarely use ntpdate other than as a very quick comparison of clocks (ntpdate -qu remote.ntp.server), but usually use ntpd. I prefer to tweak ntp.conf so that I have my own sources listed either as servers or peers (depending on the situation, obviously). Taking a quick look at ntpdate-debian it looks like it's one-off synchronisation subject to all the failure modes of ntpdate itself. Is there any particular reason why you want to use ntpdate(-debian) instead of ntpd? Chris -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/n6s05bxgq1@news.roaima.co.uk
Re: Logging of commands in a bash script to a file
Daniel Bareiro daniel-lis...@gmx.net wrote:
What I meant is to have a group of commands in a script that, in
addition to being executed, I want these commands are stored in a log.
LOG=/var/log/...logfile...
ExecAndLog()
{
# Season with date, PID, user, etc., to taste
echo $* $LOG
$@
# Could capture $? (exit status), stdout, stderr, etc. if desired
}
# ...later...
ExecAndLog $IP route add ...whatever...
ExecAndLog $IP route add ...whatever...
ExecAndLog $IP route add ...whatever...
Chris
--
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: https://lists.debian.org/nh3l2bx3tg@news.roaima.co.uk
Re: how to show accented characters on console (not X)
Hugo Vanwoerkom hvw59...@care2.com wrote: Running Sid. Right now accented characters on the console show up as blobs. How do I change that with console-setup? CHARMAP=UTF-8 CODESET=Lat15 FONTFACE=TerminusBold FONTSIZE=8x16 I've got FONTFACE=Fixed for wheezy, and that shows UTF-8 characters fine. Chris -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/qknq0bxcgd@news.roaima.co.uk
Re: Time Zone Questions
Ron Leach ronle...@tesco.net wrote: And London is going to shift from UTC to its local daylight saving time, British summer Time, BST, sometime in the next week or so. Pendantically speaking, not really. We were on GMT and are now on BST. UTC is invariant, and although it just so happens that GMT is the same as UTC, our local wintertime timezone is not UTC. $ TZ=Europe/London $ date --date 'TZ=Europe/London 1 Mar 2014 08:00' Sat 1 Mar 08:00:00 GMT 2014 $ date -u --date 'TZ=Europe/London 1 Mar 2014 08:00' Sat 1 Mar 08:00:00 UTC 2014 $ date --date 'TZ=Europe/London 1 Apr 2014 08:00' Tue 1 Apr 08:00:00 BST 2014 $ date -u --date 'TZ=Europe/London 1 Apr 2014 08:00' Tue 1 Apr 07:00:00 BST 2014 Chris -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/hg8r0bxga5@news.roaima.co.uk
Re: IP Blocked in forum.debian.net
Muntasim Ul Haque tranjees...@inventati.org wrote: While registering in forum.debian.net, I got error message saying my IP has been blocked for spamming. Are you using a proxy such as squid? I see this message often on various forums, but all it really means in my case is that the forum code is reading the X-Forwarded-For header and interpreting my public email address as from the non-routable 192.168 block. (Such code makes spoofing them trivial, too. Sigh.) Chris -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/chg1vaxs5b@news.roaima.co.uk
Re: DHCP quickie
Danny dannydeb...@gmail.com wrote: Is it possible to only give leases at a certain time of day for a certain IP or MAC? Say from 06:00 till 10:00 and then from 18:00 till 22:00? - What should happen when that device requests an IP address outside those times? - If it's to be refused, can another device request that (same) IP address? - If so, what should happen when the original device wants its own IP address back? Chris -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/e3rhuaxjdg@news.roaima.co.uk
Re: rdesktop
lina lina.lastn...@gmail.com wrote: On Thursday 13,February,2014 11:55 PM, Reco wrote: ERROR: getaddrinfo: No address associated with hostname That means that you've tried to connect to a non-resolvable hostname (i.e. no hostname → IP association). No more, no less. Quick-and-dirty solution for that is using IP address of the host instead. I tried IP, it is the same issue. A little investigation with Windows 2012 servers, which default to mandating NLA. (Server names changed consistently to protect our infrastructure details.) 1. Rdesktop to a wrongly named host rdesktop -u chris -p $PASS -d example NOSUCHSERVER.example.net Autoselected keyboard map en-gb ERROR: getaddrinfo: Name or service not known You can see that rdesktop reports that it doesn't know how to resolve the name to an IP address. Slightly puzzlingly, the error I get is different the o OP's error. The No address associated with hostname is from EAI_NODATA, but without digging further I can't see how that can get triggered. (I wondered about a DNS entry that didn't have an A record, but I don't have the time to set one up and experiment. Is this an IPv4 vs IPv6 issue, perhaps?) 2. Rdesktop to a correctly named host that does not offer remote desktop service at all rdesktop -u chris -p $PASS -d example PRIVATESERVER.example.net Autoselected keyboard map en-gb ERROR: PRIVATESERVER.example.net: unable to connect Rdesktop has successfully resolved the name, attempted to connect, but been rejected at the TCP/IP level. 3. Rdesktop to a correctly named host that requires NLA rdesktop -u chris -p $PASS -d example SERVER.example.net Autoselected keyboard map en-gb ERROR: recv: Connection reset by peer Rdesktop has successfully resolved the name, attempted to connect, but been rejected at an application level. 4. FreeRDP to a correctly named host that requires NLA xfreerdp -u chris -p $PASS -d example SERVER.example.net connected to SERVER.example.net:3389 Certificate details: Subject: CN = SERVER.example.net Issuer: CN = SERVER.example.net Thumbprint: 39:0b:4b:09:fa:a3:ae:95:91:fe:84:... The above X.509 certificate could not be verified [...] Do you trust the above certificate? (Y/N) If I accept the certificate then the connection is created and I have a remote desktop session. Chris -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/ngf1tax2gk@news.roaima.co.uk
Re: How to `echo' the core # a bash script is running on?
Marco Ippolito maroloc...@gmail.com wrote:
How can I `echo', in `bash', the core # the current script is running on?
This will probably do it for you
awk '{print $39}' /proc/$$/stat
See proc(5) for details, including the 39. Please also note that unless
you've set the task affinity (see taskset(1) for details) the process
can - and will - be reassigned different cores during its lifetime.
Chris
--
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: http://lists.debian.org/ou5osax6a5@news.roaima.co.uk
Re: ssh login problem from one particular client
Craig L. cr...@gtek.biz wrote: When I tried to reconnect, it took almost 60 seconds for the password prompt to show up. It's probably trying to lookup rDNS for your IP address. Reverse lookups are controlled by a parameter in the sshd_config file. Chris -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/ospvraxvcl@news.roaima.co.uk
Re: Determine XTerm Geometry
Mathias Bauer mba...@gmx.org wrote: * Patrick Bartek wrote on 2014-01-20 at 13:18 (-0800): Need to get geometry of running xterms take a look at $ xwininfo -id WINDOW_ID Also wmctrl -lG Chris -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/vkr1raxp2q@news.roaima.co.uk
Re: Minimizing shell access on my VPS
Reco recovery...@gmail.com wrote: Set up another user with /bin/rbash (not straight /bin/bash) as a shell. Set PATH in .bashrc of said user to that program. Unfortunately rbash has a race condition built in to its execution of .profile by definition (it doesn't disable the interrupt signal until after the .profile has been executed, so it becomes quite possible to Ctrl/C during login and gain an interactive shell). You'd be better off with rksh, which works properly. But then again, .profile can be bypassed by a non-interactive login: ssh remotehost mv -f .profile .p ssh remotehost Chris -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/dugqqax2le@news.roaima.co.uk
Re: [Solved] Re: Debian gateway problem
mett m...@pmars.jp wrote: I end up with the script below working perfectly, except if I use both following rules at the beginning of the script. iptables -t nat -F iptables -t mangle -F I would imagine it's because something else (your PPP connection, perhaps) has already placed necessary rules in those two tables: iptables -t nat --line-numbers -nvL # Masquerade = Changed to SNAT(seemed wiser in my situation after # reading doc...). iptables -t nat -A POSTROUTING -s 192.168.1.0/24 -o ppp0 -j SNAT --to-source EXT.FIX.IP.ADD MASQUERADE is required for dynamic IP addresses, as it does not maintain its connnection table if the interface drops. It can be useful for static ones if you want the same behaviour. The advantage of SNAT is really for long-lived connections forwarding through the firewall device that don't need to worry if the interface momentarily drops. Chris -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/v2jvpaxf86@news.roaima.co.uk
Re: Best SFTP (w/chroot): vsftpd vs mysecureshell vs other ??
Bob Goldberg bobg.h...@gmail.com wrote: trying to determine best solution for an SFTP server. vsftpd appears to be my current best choice vsftpd is Very Secure FTP Daemon. It does FTP well (cleartext passwords notwithstanding). It doesn't do SFTP (file transfer over ssh). users must be chroot'ed to /home/chroot/home/username. users belong to the chroot group. their home dir down, need all be group owned by chmgr. home dir down; should all be chmod 770(dir)/660(files). so user and managers (chmgr group) all have rw access to files, and rwx /dirs; with other having no rights at all. managers ideally chroot'ed to /home/chroot/home. they can access all username folders, and transfer files in/out of each. they belong to the chmgr group. Sounds exactly like a job for the Match directive within a standard sshd_config (openssh-server). Chris -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/ofhlpaxr2f@news.roaima.co.uk
Re: Possible to add an LVM to existing Wheezy box
Ron Leach ronle...@tesco.net wrote: Actually, the disk we are rescuing is the surviving member of a RAID1 pair[1]. I realised, today, that I cannot simply install that in our Wheezy box because (I think) it needs a software RAID layer in order to read it (fstab refers to md1, md2 etc). It depends on the RAID management level (0.9, 1.0, 1.1, 1.2, ddf, imsm). Since your disk is from an older system the chances are quite good that you *can* mount the partition directly as a non-RAID disk (sdaX, etc.). Once you've done that, though, it gets quite exciting trying to grow it back into a RAID1 configuration. You can do it - it's a matter of creating a RAID1 configuration with an initially missing second disk and then adding it later - but you have to be careful of the existing on-disk RAID1 definition. The RAID1+LVM solution can be implemented as part of your migration to a new server OK. If we were to do this (and I think we ought to, we do have 2 spare 2TB drives), I've a couple of quick planning queries. (a) Will Wheezy happily run RAID1 'only' on the 2 x 2TB disks, leaving the OS on its non-RAID 250GB disk? Yes, if that's what you want. You can choose to apply RAID and/or LVM to any partition and/or disk. (b) More seriously, though, because we will need to expand the space, there's only room on the motherboard for 4 SATA drives and to expand a RAID1/LVM scheme I'll need another 2 drives, making 5 drives overall. I'll run out of SATA ports. Happy to listen to any suggestions. A couple of options spring to mind 1. Buy a pair of 3TB disks instead of 2TB ones. Proceed as before. 2. Buy three 3TB disks and use RAID5 instead of RAID1. Otherwise proceed as before. 3. Buy four 3TB disks, discarding the existing 250GB disk. Use either RAID1+0 (6TB ) or RAID5 (9TB) for your LVM/data partition. You can replicate your OS across as many of the disks as you like. If you do this, use either a simple /boot partition of 100MB or so or a relatively small 20-50GB OS installation. You can RAID1 this across all the disks if you want, but you have to remember to install Grub on each disk individually. Once you've done that, create a new partition for remaining space on all the available data disks (1.95TB or whatever). You can RAID1 or RAID5 these data partitions. Then create an LVM layer on top of the resulting metadevice. In my home situation I've got an HP ProLiant with four slots. One contains the originally supplied 250GB disk; two of the other three contain 3TB disks. I've got my OS on all the disks replicated with RAID1 (actually across two with a hot spare). The remaining chunk of the 250GB disk has an LVM Volume Group called noraid, which I use for temporary allocations that really don't need RAID. The remains of the two big disks are sliced up into 500GB partitions. I can pair the corresponding partitions using either RAID0 or RAID1. These then get added either to my raid0 VG or my raid1 VG. Backups go to a partition created from the raid0 LV. Important stuff goes to a partition created from the raid1 LV. A recent posting on (I think) this list pointed to an Adaptec HW RAID card with 4 ports, which might solve the ports problem and let us expand to 2 x 2TB and (say) 2 x 3TB drives, albeit with some reconfiguration away from software RAID. The only gotcha I can see with hardware RAID is how to recover data from the disks in the event of the card's failure. If it was a commercially maintained corporate system (Dell, HP, IBM, whatever) under supplier warranty then I'd not worry about this. For SOHO use I'd want to know how to handle recovery from this situation. From an implementation point of view, presumably the steps are: - Build a RAID1 layer on the 2 2TB drives - Then build the LVM with pvcreate, etc, Essentially, yes. [1] We did try to rebuild the RAID1 but we couldn't get the rebuild to work. The disks have multiple partitions, each is a separate RAID1 (I think this isn't recommended) and while we were partitioning the replacement disk, we ended up confusing mdadm. I don't see anything wrong with having multiple RAID1 slices. You do have to be careful when rebuilding a dead RAID configuration, though, and you possibly just needed to tell mdadm the new minor device numbers for the devices you were (re)building. BICBW of course. Chris -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/u1igpaxm7c@news.roaima.co.uk
Re: Possible to add an LVM to existing Wheezy box
Howard hc...@tesco.net wrote: [...] one partition of 1.7TB purely for filesystem backup data [...] The data partition contains several years' worth of incremental backups [...] It also provides the historical context of what data was available to us during our projects, which can be important. If the backup is really this important, I would strongly recommend that you make additional backups elsewhere (offsite). If you rent storage for this then consider ensuring your data is encrypted. Depending on how easy it is to access this proposed offsite storage, I'd also suggest that you replace the local singleton disk with a RAID1 pair. The RAID1+LVM solution can be implemented as part of your migration to a new server (two 2TB disks are not expensive at the SOHO end of the market). The offsite backup can be implemented as soon as is practical, since it's only adding strength to your existing solution. Chris -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/cksdpaxh1g@news.roaima.co.uk
Re: Using the spare space on a bootable USB
Brian a...@cityscape.co.uk wrote: This technique should not be required to be used ; the stick with the dd'ed image should boot directly. Does it not? According to the OP it does, but it's irrelevant to the question that they asked. Chris -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/8argoaxufr@news.roaima.co.uk
Re: Remove root access from folder/directory
Muntasim-Ul-Haque tranjees...@inventati.org wrote: I've unzipped a folder and it became root protected. Next time don't unzip it as root. Chris -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/ljv9naxuab@news.roaima.co.uk
Re: wordpress, again
Chris Davies writes: Last time I looked, the wordpress package was a point or two behind the current version. Many of these point releases seem to be to fix security issues, so I have to question the wisdom of using an older version for a potentially Internet-facing server. John Hasler jhas...@newsguy.com wrote: Debian backports security fixes to Stable. That's why they have a security team and it's what they mean when they say that Stable is supported. Duh (smacks head). You are completely correct, and indeed the superb actions of the Security team are one of the reasons I use Debian Stable on my production servers. Apologies for misleading (and also to the Security team). Cheers, Chris -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/ts8kmaxbh9@news.roaima.co.uk
Re: wordpress, again
Rick Thomas rbtho...@pobox.com wrote: Would you be willing to help me get a wordpress installation up and running? I've done aptitude install wordpress which dragged in all the necessary other packages, like apache2, mysql, php… etc. So I *think* I've got all the tools I'll need. Last time I looked, the wordpress package was a point or two behind the current version. Many of these point releases seem to be to fix security issues, so I have to question the wisdom of using an older version for a potentially Internet-facing server. I ended up using the Debian package as a starting point (it pulled in the dependencies, gave me a really nice multi-site configuration capability in /etc/wordpress) but then replacing the guts of it with the latest tarball from wordpress.org itself. Chris -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/cd4hmax6qi@news.roaima.co.uk
Re: Google other web mail (was Re: top posting)
David Guntner da...@guntner.com wrote: GMail Yahoo Mail both support encrypted POP3 IMAP [...] I don't have to look at their ads since I'm not using their web interface [...] How long do you think it's going to be before they start inserting ads into the message body then? (And/or offering a premium service that doesn't.) Or including messages that are actually just adverts (that way they're not altering the message body). Oh, did someone say spam? Chris -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/bs11maxblm@news.roaima.co.uk
Re: Debian 7 installation
Kailash Kalyani listskail...@gmail.com wrote: On Sat, Nov 16, 2013 at 07:32:04PM -0800, Atari McBits wrote: I am having some problems installing Debian 7 on a old laptop of mine. So, I press Install and then after a few minutes, the screen just goes black and I have no idea what is going on. I've had this happen when I used a x64 image. I'd recommend a 32 bit image if your case is similar. And I encountered a different problem with Debian that might possibly be related to this when I sneezed last week. But I'm not going to give out any details either. Sigh. Chris -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/h0cplax0ed@news.roaima.co.uk
Re: [OT?] What's wrong with my exim4 configuration?
Itay deb...@itayf.fastmail.fm wrote: I am struggling to configure exim4 on my home desktop to send system notifications to my public email address [...] [I replaced smtp's port with NNN. Also, assume 'machine' is output of command 'hostname', while 'machine.homenetwork' is output of 'hostname -f'] IP address or host name of the outgoing smarthost = mail.messagingengine.com::NNN. Should be a single colon, not double. For example, mail.example.net:587 If you're using 486 (SMTP/SSL) you may need to tweak the TLS entries in the configuration file. 4. Insert in /etc/exim4/passwd.client the following line: smtp.mail.provider:myem...@fastmail.fm:ClearTextPassWord Your login account for smtp.mail.provider is myem...@fastmail.fm, yes? 5. Test message: # /usr/sbin/exim4 -i root This is a test message. ^D Throw a -v (Verbose) in there, too. echo test message | exim4 -v root Relevant part from /var/log/exim4: 2013-11-10 11:00:50 1VfQsq-0003B3-7m = myem...@fastmail.fm U=itayf P=local S=327 2013-11-10 11:00:50 1VfQsq-0003B3-7m == r...@fastmail.fm R=smarthost T=remote_smtp_smarthost defer (-53): retry time not reached for any host You've stripped out some relevant preceding messages. Something already in there has stopped the queue run for your target host. Use this instead: exim4 -qf -v Chris -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/egd4laxrtv@news.roaima.co.uk
Re: Bash Scripting Question
Jonathan Dowland j...@debian.org wrote: On Sun, Nov 03, 2013 at 09:58:58PM +0100, Erwan David wrote: Maybe you'll need something like expect to handle this. I'd second expect, it's probably the best tool for the job in all non-trivial cases. The empty-expect package, perhaps? Chris -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/e2vskaxd2t@news.roaima.co.uk
Re: Configuring multiple IP addresses on VLAN interface using ifupdown
Bonno Bloksma b.blok...@tio.nl wrote: I routinely add or remove ip addresses from an interface without having to bring the physical interface up or down. Me too. (Well, not routinely, but quite comfortably. It's very convenient when needing to talk to a new device that's got a default initial address on a completely different subnet.) iface eth0 inet static [...] up ip addr add 217.114.99.206/27 broadcast 217.114.99.223 dev eth0 I have very similar lines in my interfaces file :-) Regards, Chris -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/144njaxk0v@news.roaima.co.uk
Re: Debian and UEFI and GPT
Andrew M.A. Cater amaca...@galactic.demon.co.uk wrote: Debian 7.2 runs fine on UEFI, GPT partitioning works fine. You might want to try auto partitioning - there needs to be a 1M space at beginning and end of he disk and a 510M partition marked for EFIboot. I assume the 1MB space at the beginning is for grub_boot? I found I needed that for my big (3TB) GPT disks. What's the space required at the end of the disk? Thanks, Chris -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/fd4njaxk0v@news.roaima.co.uk
Re: sluggish iceweasel
Stephen Powell zlinux...@wowway.com wrote: I have been using the iceweasel web browser for years; but in the past several weeks using an up-to-date jessie system, iceweasel has become very sluggish. Until a couple of weeks ago I had a really strange speed problem with FF/Iceweasel. It would run really happily even with multiple tabs open, but as soon as I opened a second browser window it would grind to a halt. If I was (eventually) able to close one of the two browser windows it would speed back up again. This fault appeared with Mozilla's vanilla Firefox as well as Iceweasel. I was never able to get a good enough handle on the problem to report it as a bug, but now using the latest Mozilla release it's fine again. Chris -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/rs4njaxk0v@news.roaima.co.uk
Re: logwatch question
François Patte francois.pa...@mi.parisdescartes.fr wrote: I installed /tmp as tmpfs, is there a config file for logwatch where I can modify this and tell logwatch to use /var/tmp instead of /tmp? The default value in the program can be (and is) overridden by the system installed default configuration file logwatch.conf, which may be found in /usr/share/logwatch/default.conf/ and /usr/share/logwatch/dist.conf/ Fortunately you can create your own /etc/logwatch/conf/logwatch.conf and re-override these values. Look for the TmpDir keyword. Read Customizing the Configuration in the documentation file /usr/share/doc/logwatch/HOWTO-Customize-LogWatch.gz for the precise details. Chris -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/q48njaxo18@news.roaima.co.uk
Re: Debian and UEFI and GPT
Tom H tomh0...@gmail.com wrote: On Thu, Oct 24, 2013 at 9:04 AM, Chris Davies ch...@roaima.co.uk wrote: I assume the 1MB space at the beginning is for grub_boot? I found I needed that for my big (3TB) GPT disks. What's the space required at the end of the disk? A gpt disk needs 34 sectors at its beginning; the 0th is the mbr, the 1st is the gpt header, the 2nd-33rd are for the partition table (for 128 possible partitions at 128 bytes per partition). And it needs 33 sectors at its end; it's the same as the beginning minus the mbr. What does it use those sectors at the end for? A duplicate of the ones at the front? If so, do parted and other partitioning tools write to both? Thanks, Chris -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/iamnjax5f2@news.roaima.co.uk
Re: Debian and UEFI and GPT
Thank you, Tom and Sven. Chris -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/23hojax9ln@news.roaima.co.uk
Re: Configuring multiple IP addresses on VLAN interface using ifupdown
Bob Proulx b...@proulx.com wrote: Tom H wrote: I'm pretty sure that the last time (six months ago?) Bob linked to a Debian wiki page [...] that used multiple iface declarations for the same nic (I've also used multiple declarations). https://wiki.debian.org/NetworkConfiguration#Multiple_IP_addresses_on_One_Interface Thank you both Chris -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/u3sfjaxhpe@news.roaima.co.uk
Re: no .bash_hostory file was found in user home folder
Muhammad Yousuf Khan sir...@gmail.com wrote: :~$ echo $HISTFILE /home/ykhan/.bash_history any idea where these history files are. actually i need to do some accounting for my users , what they are doing actually with time tag set to ON. These files are of limited value for accounting since the users can simply edit them. Perhaps you should investigate the kernel's process accounting subsystem (usermode tools are in package acct): # lastcomm --strict-match --user dmaus --tty pts/4 | head -5 ttydmauspts/4 0.00 secs Mon Oct 21 16:05 ls dmauspts/4 0.00 secs Mon Oct 21 16:04 bash Fdmauspts/4 0.00 secs Mon Oct 21 16:04 dircolors dmauspts/4 0.00 secs Mon Oct 21 16:04 bash Fdmauspts/4 0.00 secs Mon Oct 21 16:04 Chris -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/9lsfjaxrjg@news.roaima.co.uk
Re: Configuring multiple IP addresses on VLAN interface using ifupdown
Tom H tomh0...@gmail.com wrote: iface eth3.77 inet static address 10.0.5.15 iface eth3.77 inet static address 10.0.5.16 The Debian documentation at http://www.debian.org/doc/manuals/debian-reference/ch05.en.html states categorically, « Do not define duplicates of the iface stanza for a network interface in /etc/network/interfaces ». Is that only in relation to mapping, or a general warning? Chris -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/o2j7jax0ot@news.roaima.co.uk
Re: Bash variable escaping
Denis Witt denis.w...@concepts-and-training.de wrote:
I've a problem with a script. It's a wrapper for a program which uses
for example '*' as a parameter. It could also be 'foobar*' [...]
Do you expect the program to see the asterisk character itself, or an
expansion into the corresponding list of files in the current folder?
#!/bin/sh
read X; echo X= $X
If you enter a single asterisk ('*'), that's what X will be set to.
#!/bin/sh
echo *= $*
If you supply an asterisk on the command line, the shell (not your
program) will expand that to match files in the current folder.
So if you're expecting your dialog --inputbox to accept a single
character asterisk ('*') or a shell pattern such as foobar* then that's
what it will pass to your program. It won't match against the files in
the current folder because that's not a function of the dialog program -
it's a function of the shell.
Apologies if this is blindingly obvious.
You either need to eval the value returned from dialog --inputbox or
else ensure that you DO NOT quote it when you use it as a command line.
The parameter is set correctly: echo ${parameter} gave me exactly what
I expect to see ('*')
Ah. Not necessarily. You've not quoted the variable, so it's liable for
filename matching. But if the shell cannot expand the pattern then it
leaves the pattern alone. See this example:
mkdir /tmp/t cd /tmp/t
touch a1 a2 b1 b2
X='a*'
echo $X
X='d*'
echo $X
mkdir x cd x
X='*'
echo $X
touch a b c
echo $X
Unfortunately when the parameter is passed to the
program it looks like this (according to set +x):
/usr/bin/salt ''\''*'\''' state.highstate -v test=True -b 10
How can I avoid that?
This should work (notice the lack of quotes around the variable),
assuming the script is running in the folder that the user expects:
/usr/bin/salt $parameter state.highstate -v test=True -b 10
Chris
--
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: http://lists.debian.org/u4f4gaxfn4@news.roaima.co.uk
Re: Wheezy: exim4 + mailman it is not sending messages.
lati...@vcn.bc.ca wrote: exim4 mainlog says: R=system_aliases defer (-30): pipe_transport unset in system_aliases router README.debian mentions 2 different methods, but it is absolutely confuse. The choice you have to balance is security vs complexity. On an internal-only system I've simply enabled the pipe transport and accpeted that it runs programs with (at least) the same security access as the remainder of exim. On a public-facing site I'd almost certainly expend the energy to do it right. These URLs may help * http://www.exim.org/howto/mailman21.html * http://www.debian-administration.org/article/617/Mailman_and_Exim4 * http://fplanque.com/dev/linux/mailman-on-debian Chris -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/25sdfax7fo@news.roaima.co.uk
Re: Proliant Microserver installation
Adam J. Gamble a...@sleep.cx wrote: Just require some clarification with my Debian install on HP Proliant Microserver (N40L). Installation going fine until I hit 'Partition disks', I had assumed it would find the 250gb HD built-in ..currently don't have any HDs in the slots. The built-in 250GB disk uses the first slot. (Did you mean that you've not got any *extra* HDs in the slots?) The issues I had when preparing to install Squeeze (this was several months ago, before Wheezy had been released) were adding an extra NIC and additional memory (it's a fairly compact box!) and learning how to partition my 3TB disks (GPT and parted rather than fdisk). parted /dev/sda --align optimal unit GiB print Model: ATA VB0250EAVER (scsi) Disk /dev/sda: 233GiB Sector size (logical/physical): 512B/512B Partition Table: gpt Number StartEnd Size File system Name Flags 1 0.00GiB 0.00GiB 0.00GiB bios_grub 2 0.00GiB 20.0GiB 20.0GiB raid 3 20.0GiB 233GiB 213GiB lvm Chris -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/277heax0ra@news.roaima.co.uk
Re: Proliant Microserver installation
Adam J. Gamble a...@sleep.cx wrote: Appologies not 'built-in' so to speak, just no additional drives. Actually as luck would have it, my 2TB Western Digital just arrived :) Assume its an issue with Debian install /finding/ disks to partition then? BIOS can see both, so no problem there. What can I do to debug? Does the debian testing version I've chosen seem a reasonable choice (compatability-wise)? I didn't have any problems with Debian (squeeze) finding my three drives. I find it hard to believe that SATA device detection would have changed for the worse between squeeze and wheezy. Personally I always install from the net stable version and use the Internet to get my latest updates. See the right-hand set of selections at http://www.debian.org/CD/netinst/ Chris -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/mrqheaxcl5@news.roaima.co.uk
Re: Proliant Microserver installation
Adam J. Gamble a...@sleep.cx wrote: Fixed! Was same bug as in http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=720442#10 Ah! Chris -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/buqheaxcl5@news.roaima.co.uk
Re: Over 2.5 GB ram problem
Gary Roach gary719_li...@verizon.net wrote: Now I am really confused. I have two systems; one with an Intel P4, 3GHz, multi-thread and one with an Intel i5-750. Both are running Wheezy with a KDE desktop. The i5-750 system recognizes the 4GB of memory but the P4 system does not. They are both running pae kernels. It's possible that your BIOS and/or motherboard simply cannot access the upper chunk of memory. For example, I discovered (the frustrating way) that due to hardware constraints my Dell laptop cannot access more than 3.2GB memory of the 4GB I have installed. Chris -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/9282baxlll@news.roaima.co.uk
Re: PCI Express 2.0 SATA 3 host bus adapter
Stan Hoeppner s...@hardwarefreak.com wrote: It's best to use identical drives with identical firmware, which means buying all your drives up front from the same lot. I had always understood that best practice was the opposite of this recommendation, so as to help protect against a single point of failure such as bad firmware or even a bad manufacturing batch. Can you help clarify, please? Chris -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/2q72baxlll@news.roaima.co.uk
Re: PCI Express 2.0 SATA 3 host bus adapter
Stan Hoeppner s...@hardwarefreak.com wrote: On 7/11/2013 3:43 AM, Chris Davies wrote: Can you help clarify, please? Se my detailed response to Henrique. Thank you Chris -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/gnp3bax4cp@news.roaima.co.uk
Re: Dotfiles
Slavko li...@slavino.sk wrote: Dňa 02.07.2013 23:32 John Hasler wrote / napísal(a): Look at the access times. Dotfiles that have not been accessed in years can probably be safely removed. Sure, but do not forget, that the relatime (default one) and noatime mount options are going into play, then the results can be inappropriate. A filesystem mounted with relatime is pretty safe, as for each file that's accessed, its access time is updated at least once a day. This from the mount manpage (wheezy) in the section for relatime: Access time is only updated if the previous access time was earlier than the current modify or change time [...] Since Linux 2.6.30, the kernel defaults to the behavior provided by this option [...]. In addition, since Linux 2.6.30, the file's last access time is always updated if it is more than 1 day old. Given the OP is looking for really old files that haven't been accessed, then the technique will still work on relatime filesystems. A filesystem mounted with noatime can probably be switched to relatime with little or no disadvantageous effect. Chris -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/a4bhaaxqk7@news.roaima.co.uk
Re: pdf applciation that ACTUALL deletes pages
Jeff Shearer j...@shearer-family.org wrote: Can someone direct me to an application that will let me delete pages and then save the resulting file fo Debian 7? pdftk can do this indirectly: you specify the set of pages you want to keep. So to delete page 7 from a ten page document, pdftk input.pdf cat 1-6 8-end output nopage7.pdf Chris -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/b4u7aaxv4q@news.roaima.co.uk
Re: Squid with https in transparent mode
Frank Lanitz fr...@frank.uvena.de wrote: Thanks for the input. I think really should give up the transparent approach and try to make usage of autoconfig with hope clients are able to understand. Supported by at least IE, FF, and Chrome on Windows since XP, if not earlier, and on Linux-based systems for much the same length of time. (I was peripherally involved in an project using such auto-configuration for a large UK telecomms provider around 1998, so it's not a new technology.) IME wget and curl get unhappy without explicit proxy directives. Chris -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/eit7aax9ap@news.roaima.co.uk
Re: Squid with https in transparent mode
Karl E. Jorgensen karl.jorgen...@nice.com wrote: I just realised: there is a 4th (or is that 5th?) option: policy based routing. Ah yes. Clever. Thank you for the extra item on the list. Chris -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/1ha8aaxokc@news.roaima.co.uk
Re: Squid with https in transparent mode
Frank Lanitz fr...@frank.uvena.de wrote: Is there a way of using a squid proxy in transparent way [...] for SSL. If I'm entering the proxy directly into e.g. Firefox it's working -- but don't got it running via transparent mode. As you'll know, it's pretty straightforward to set up a transparent proxy for (unencrypted) HTTP traffic. However, creating one for HTTPS/SSL traffic is far harder. The simplistic answer is that you can't do this. The reason here is that the web browser won't issue a proxy CONNECT request unless it knows there's a proxy involved. And because you've got a transparent setup it doesn't know. So it tries to go directly to the target website. But you're intercepting the traffic and routing it via squid, so it can't get there - or else you're going to be providing an incorrect certificate. There are a number of options you've got at this point. 1. Prevent all SSL-based web browsing. (Probably unrealistic.) 2. Create a Certificate Authority and install your CA certificate on all users' web browers. Hijack tcp/443 SSL traffic as before but spoof the appropriate certificate dynamically (sign it with your own CA). Decrypt the traffic, route it via squid or whatever, re-encrypt it and send it on to the target host. (Probable privacy concerns with this option.) 3. Abandon the transparent approach. Block all tcp/80 and tcp/443 access except via your proxy. Provide a wpad configuration file that people will find by enabling auto configure, and have this instruct web browsers to use your proxy. (Recommended solution.) 3a. As for #3 but also continue to hijack tcp/80 and tcp/443, pointing them to a static page that explains how to enable automatic configuration. If you really want/need to force all traffic via your proxy I'd recommend you seriously consider option 3/3a. Chris -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/m6b0aax81o@news.roaima.co.uk
Re: /etc/shadow password hash format (migration from SuSE 9.3 to Debian Wheezy)
Andreas Meile mailingli...@andreas-meile.ch asked about /etc/shadow: Is there a good overview WWW link about all these $Version$[Subversion?$] formats? man shadow says of the encrypted password field, Refer to crypt(3) for details on how this string is interpreted. man 3 crypt contains a NOTES section that identifies the ID and describes its format. Specifically, $6$salt$encrypted is SHA-512. Chris -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/ul1c7ax19h@news.roaima.co.uk
Re: how forward email
Pol Hallen de...@fuckaround.org wrote: putting an email to .forward (into a dir account) its email goes to that address. I need keep a copy of that email. Can I do it with /etc/aliases? or there's another way? Put yourself into the .forward too, prefixed with \. For example, for someone with username john and a forward to john@example.net you'd have this in your .forward: john@example.net \john Chris -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/lsrk6axfrp@news.roaima.co.uk
Re: ssh login fails, access denied
Bonno Bloksma b.blok...@tio.nl wrote: Just did my first Wheezy install on a VMware virtual machine. I accepted the default SSH server option. Server is running, I can log in via the VMware console both as the root user and as the regular user and use su - to switch to the root user. When I use PuTTY to set up a ssh session to my server I get the login prompt. I enter the login name root or the user. It asks me for the password and once I have given that I always get access denied. Have you really connected to the right server? Is there anything relevant in /var/log/auth.log? If you tail -F /var/log/auth.log on the console, you should see logging for the connection attempt from PuTTY. You should also see something if you do something as simple as telnet servername 22 (for an appropriate value of servername) and then break out. Chris -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/rotp5ax0oo@news.roaima.co.uk
Re: jerks in net connections
andrey.ry...@bilkent.edu.tr wrote: no. it does not help. the problem is not for sshd itself. Same phenomena i see with browser on this computer. this problem is not specific for ssh but for network connection generally. Take a read on TCP Slow Start [1] and Nagle's algorithm [2]. Chris [1] http://en.wikipedia.org/wiki/Slow-start [2] http://en.wikipedia.org/wiki/Nagle%27s_algorithm -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/gsai5ax3d1@news.roaima.co.uk
Re: Without SKYPE?
Brian a...@cityscape.co.uk wrote: However, sip...@sipgate.co.uk works for phones registered with the network (just like Skype). There is no connection established when the call is from another network (again, just like Skype). This restriction was put in place by Sipgate to stop VoIP SPAM. There's no reason why you couldn't register your phone number and direct IP address with an organisation such as E164 (e164.org) for others to use. However, unlike Skype, the protocol neither requires you to do this nor use a broker/proxy such as Sipgate. I used to have my VoIP phone accessible by IP address. No-one I know calls me directly like that, and thanks to frequent probing by Sip Vicious I've abandoned that solution and just remained registered with Sipgate. Sipgate interoperates with a number of other commercial SIP providers. But since it doesn't use any of the enum services you have to route the call manually. I believe this non-transparent interoperability is a fairly standard situation. It is some time since I last looked into this but I think the Betamax VoIP products also do the same; communication using SIP between users on the same network but none from outside. Actually, they may not even allow their own registered phones to contact other SIP phones on a different network. SIP phones don't (need to) register with Betamax providers - essentially these particular services are outbound only. Chris -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/22nc5axs2h@news.roaima.co.uk
Re: Without SKYPE?
Brian a...@cityscape.co.uk wrote: On Fri 03 May 2013 at 13:27:14 +0100, Chris Davies wrote: Brian a...@cityscape.co.uk wrote: However, sip...@sipgate.co.uk works for phones registered with the network (just like Skype). There is no connection established when the call is from another network (again, just like Skype). This restriction was put in place by Sipgate to stop VoIP SPAM. The reason is immaterial. It effectively cuts that network (and other ones who operate the same policy for their own, and possibly commercial reasons) from other SIP networks. So much for interworking. So much for communication, Which bit of the internetworking between Sipgate, Gradwell, and other SIP networks doesn't exist? Which bit of the internetworking is it that is preventing me from offering you the ability to call me on my phone if I so choose? Sipgate interoperates with a number of other commercial SIP providers. But since it doesn't use any of the enum services you have to route the call manually. I believe this non-transparent interoperability is a fairly standard situation. As long as it is standard, it must be ok. It's acceptable to me because it costs me so little to call a telephone number that I don't really care whether it's VoIP or PSTN. Moreoever, I don't particularly advertise that I'm with Sipgate (outside conversations like this one); I provide a phone number at which I can be contacted and it happens to be provided by Sipgate. This week. But why should anyone particularly care as long as I can be called at that number? Industry standard and all that, I expect. Skype have the standard policy of only processing calls which come through their software. So that is ok too. I fail to see the similarity. In one situation I must use Skype as a provider - and pay them for the privilege. In the other, I don't have to use any third party as a provider. I can develop a SIP client from the standards documentation and use it to connect to any SIP provider or end user that will accept me. SIP phones don't (need to) register with Betamax providers - essentially these particular services are outbound only. Have I misread the instructions at http://www.voipbuster.com/en/sip ? No, you've misunderstood my use of the term, to register in the context of SIP. If a phone registers with a SIP provider, that SIP provider can call the phone. To make a call, the phone does not need to have registered, it simply needs to provider authentication credentials during the call set-up. VoipBuster (and other Betamax resellers) don't require or use registration but they do require authentication for billing purposes. Skype came up with a brilliant idea: use the bandwidth of customers for phone calls and throw in a few servers for registration, call and bandwidth management etc. It works wonderfully well and tens of millions avail themselves of it every day. For some reason which I haven't really grasped they are often castgated for this. That's orthogonal to our discussion. The concern that was originally raised about Skype's business model was that people expected their bandwidth to be used only when they were making calls. Chris -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/duld5axqtp@news.roaima.co.uk
Re: Without SKYPE?
Andr? Nunes Batista andrenbati...@gmail.com wrote: There are many voip softwares available and ekiga may be the most prominent. Although not the ideal from a free software perspective, you can also use a plugin to access skype network through pidgin. The Pidgin plugin uses the Skype application to do this, though. Chris -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/keta5axuu3@news.roaima.co.uk
Re: terminal emulator compatible with Ecma-48
Thomas Dickey dic...@his.com wrote: On Monday, April 29, 2013 5:30:03 PM UTC-4, Chris Davies wrote: Thomas Dickey dic...@his.com wrote: What I recall of the PuTTY FAQ (a specific pointer would help) is that http://www.chiark.greenend.org.uk/~sgtatham/putty/faq.html that's not what I meant by specific. A misunderstanding, then. You stated that I'd extend that to suggest that most terminal emulators support the majority of VT220 sequences, not just the VT100 subset. This is my opinion. and The PuTTY FAQ seems to claim that it's either implemented everything or else documented what it hasn't implemented. This might be a good starting point. Noting where PuTTY claims/documents the everything would be helpful. Section A.2 of the FAQ I posted, Features supported in PuTTY. Chris -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/rm065axkmu@news.roaima.co.uk
Re: terminal emulator compatible with Ecma-48
Thomas Dickey dic...@his.com wrote: What I recall of the PuTTY FAQ (a specific pointer would help) is that it's roughly comparable to rxvt http://www.chiark.greenend.org.uk/~sgtatham/putty/faq.html Chris -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/d6135axr3u@news.roaima.co.uk
Re: terminal emulator compatible with Ecma-48
berenger.mo...@neutralite.org wrote: I know that most terminal emulators support most VT100 escape sequences, which are based on ecma-48 I'd extend that to suggest that most terminal emulators support the majority of VT220 sequences, not just the VT100 subset. but as far as I know, they are not able to support the full standard. By example, they only support 7 bit sequences, and so CSI is 0x1B5B only, were ecma-48 says it can be 0x9B too. I don't know about this, although a quick test does appear to suggest that lxterm does not support \x9b as an alternative to \x1b\5b. It also seems that blinking is not supported. lxterm supports blink. PuTTY (on [at least] Windows) also supports blink - just not by default. tput blink; echo hello; tput sgr0 hello - this flashes in lxterm So, I would like to know if someone knows about a terminal emulator supporting all the standard or, at least, which explicitly says which part of it it supports. The PuTTY FAQ seems to claim that it's either implemented everything or else documented what it hasn't implemented. This might be a good starting point. Chris -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/o9pv4axkll@news.roaima.co.uk
Re: vnc server
ChadDavis chadmichaelda...@gmail.com wrote: Clarification. Are you saying that some vnc servers serve up a remote login to a new session, while others simply share an existing gnome session? Yes. vino shares the existing Gnome session (see System Preferences Remote Desktop). I'm sure there's an equivalent for KDE but I'm afraid I don't know what it might be. More generally, x0vncserver (x0vnc4server) shares the current desktop regardless of the desktop environment or window manager in use. vncserver (vnc4server) creates a new session for the remote user. If you're also a Windows person it's like the difference between using Remote Desktop to connect to a server in the usual fashion, and using it to connect to that server's console. (However, with RD connecting to the console, the console user gets locked out. With VNC the console gets shared.) For variety, there's also XDMCP, which allows your system to provide a full X11 Window session for remote displays (just like it used to be!), or you can drop an entry into /etc/inetd.conf (xinetd...) that spawns a new session when you vnc to that port. Chris -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/qml44axuu8@news.roaima.co.uk
Re: Highlighting CLI output: what are these terms called?
Morel Bérenger berenger.mo...@neutralite.org wrote: Le Mer 17 avril 2013 10:22, Dotan Cohen a écrit : tail -f file.log | perl -pe 's/keyword/\e[1;31;43m$\e[0m/g' Those are escape sequences from VT100 IIRC. These escape sequences do not need to be embedded into your programs; they can be derived in a terminal-independent manner. See man 5 terminfo for gory details. Here's an example that will display world in standout - but only on suitably capable terminals: echo Hello $(tput smso)world$(tput rmso) as you can see. Chris -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/92m44axuu8@news.roaima.co.uk
Re: NAS raid with Debian?
Rick Thomas rbtho...@pobox.com wrote: Are there any readily available, inexpensive (US$200-500), NAS (Network Attached Storage) boxes in the 1-3TB capacity that are capable of running Debian and NFS? Roll your own with an HP Proliant microserver (the N40L series that are just being replaced). I bought mine for about £120 a couple of months ago. Add a pair of 3TB disks also at £100 each. Add more memory (it comes with 2GB; I replaced that with 8GB) and a second NIC if required. Power usage is fairly steady at 7W. The resulting cost is towards your upper end but it's a (very) good piece of kit. Or a lower-end QNAP, which runs Linux (but not Debian specifically). Again, you'll need to add a pair of 3TB disks. Chris -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/t6uv2axh97@news.roaima.co.uk
Re: restricting login times
Joel Rees joel.r...@gmail.com wrote: I found this ancient post on using PAM and /etc/security/time.conf to accomplish this kind of thing on techrepublic (Complete with typos: A1 for Al? What bot edited that?): Here are some of the rules I've tried, one at a time: login; tty*; user1; !Al-2400 * ; * ; user1 ; Al0700-2100 * ; * ; user2 ; Wk0900-1730 What days/times are you trying to achieve? Chris -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/5s862axufl@news.roaima.co.uk
Re: ESC[4m does not produce underline
Thomas D. Dean tomd...@speakeasy.org wrote: The ANSI standard lists ESC[4m as the code to produce an underline export TERM=ansi80x25 printf \033[4masdfasdfasdf produces green text, not underline text as stated in the standard. Please can you try this (before you do an export TERM): tput smul; echo perhaps this is underlined; tput rmul This uses the proper characteristics for the terminal you've declared (which may - or may not - be ESC [ 4m). Chris -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/hg0f0axh2g@news.roaima.co.uk
Re: ESC[4m does not produce underline
Thomas D. Dean tomd...@speakeasy.org wrote: I tried so many things, the terminal is tired! tput... does the same as ESC[4m... OK. The tput looked up your declared terminal type ($TERM) in the terminfo database and returned you the appropriate code assigned to start underline. So if it doesn't work then either the terminal type is wrongly defined (always possible) or the emulation/display you're using represents underline as green text. Ansi says exc[xxxm should change the color to blue if I use xxx=34 and exc[34;1m bold blue. Again, you can use tput to get the colour codes in a (relatively) terminal-independent way. See man 5 terminfo for (really) gory details. This is a color display attached to a Raspberry Pi. If I startx, I can produce underlined text with printf \033[4This is underlined\033[0m Ah. So your X Windows based emulator understands ESC [4m but your console window (without X Windows) doesn't. It appears that my console (TERM=linux) represents underline with cyan text. Chris -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/bplf0axv4b@news.roaima.co.uk
Re: DRAC support in the Debian package of Cyrus POP3/IMAP 2.4.16
Steffen Moser li...@steffen-moser.de wrote: Some mobile devices are not capable of doing SMTP AUTH. Could you elaborate, please? I'd like to know, so that I can (try to) avoid them. Thanks, Chris -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/23c5u9xe18@news.roaima.co.uk
Re: Client daemon for sorting e-mail via IMAP
Alois Mahdal alois.mahdal.1-ndm...@zxcvb.cz wrote: I have several mailboxes in various places that I access using several clients (e.g. other from my laptop, other from my Android and other from a public place). Since I'm using various clients, filtering using rules in MUA is not practical. I would prefer to have all this logic in a single place, (namely my personal VPS box), where for example a script would exist just for purpose of regularly checking new mail and moving the new messages to given folders based on pre-defined rules. Exim4 with dovecot (IMAP) and sieve works well for me. You could replace the exim4 bit (or supplement it) with fetchmail. Use dovecot to provide your unified IMAP service. Sieve provides server-side filtering rules. Thunderbird even has an add-on that lets you talk to a sieve server. Chris -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/omh3t9xu0t@news.roaima.co.uk
Re: LVM devices and symlinks
Roger Leigh rle...@codelibre.net wrote: On Tue, Dec 11, 2012 at 09:29:23PM -0500, Neil T. Dantam wrote: At Tue, 11 Dec 2012 10:15:54 +, Chris Davies wrote: Reboot the box after installing LVM. Ah, a reboot has lvcreate working properly, thank you. This is good to know. However, this should all be triggered when the package is initially installed. Please could you file a serious bug against the lvm package so that this can be fixed. Re-opening an old thread. I still can't reproduce this reliably (or at all, recently). Still using debian-6.0.6-amd64-netinst.iso and a pretty plain installation without LVM involved in the partitioning. Chris -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/kig6s9xok6@news.roaima.co.uk
Re: Local copy of ALL man pages
Richard Owlett rowl...@cloud85.net wrote: My specification explicitly says NO connection whatsoever to the internet. The one you posted at the beginning of this thread didn't say that. However, I'm happy to think about other alternatives. Chris -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/gmd2s9xujs@news.roaima.co.uk
Re: Wheezy Installer Auto-Partition Oddity
Patrick Bartek bartek...@yahoo.com wrote: I'm beginning to believe--I have no definitive proof, as yet--that the gaps are a simplistic partition alignment solution to maintain optimum hard drive performance for all hard drive(s) configurations, all RAIDs, all filesystems, etc. I wouldn't mind hearing the answer if you (or anyone else here) get a definitive answer. Cheers, Chris -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/89tvr9xc6k@news.roaima.co.uk
Re: Local copy of ALL man pages
Richard Owlett rowl...@cloud85.net wrote:
To clarify my motivation:
1. divorce myself {as much as possible} from the web -
I'm on dial-up.
2. access all man pages {whether or not package
installed} using the man command.
Would it be reasonable to utilise a manpage cache with dial-on-demand,
so that pages are delivered from local storage whenever possible, but
that they are retrieved from somewhere remote if necessary?
You'd need some form of negative caching to catch frequently misspelled
words, and you might want to enforce some form of timeout on the locally
cached pages.
Hmmm. This is now starting to sound like a web proxy ... perhaps see
http://people.w3.org/~dom/archives/2006/09/offline-web-cache-with-squid/
http://www.gedanken.org.uk/software/wwwoffle/
Chris
--
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: http://lists.debian.org/ul11s9xib3@news.roaima.co.uk
Re: Wheezy Installer Auto-Partition Oddity
Mark Allums m...@allums.com wrote: If you are using LVM, you need to leave 1MB before and after the partition for metadata. Some of the tools do this automatically for you. If you don't like it, you can manually adjust the start and end yourself. I use LVM and I'm pretty sure there are no such gaps on my disks. Chris -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/e3itr9xs9i@news.roaima.co.uk
Re: fail2ban problem
Jerry Stuckle jstuc...@attglobal.net wrote:
I decided to try a fail2ban rule, but I can't get it to work.
failregex = HOST .*GET|POST|HEAD /.*phpMy.* HTTPS?/.* 404 [0-9]{1,6}
This should match something like:
10.0.0.1 - - [31/Dec/2012:11:40:02 -0500] GET /phpBB2/ HTTP/1.1 404 3308
However, it also seems to match ones like:
10.0.0.1 - - [31/Dec/2012:11:41:44 -0500] GET / HTTP/1.1 200 5668
It's the GET|POST|HEAD part that isn't parsing as you'd expect. What
the RE is compiling down to is any one of the following:
HOST .*GET
POST
HEAD /.*phpMy.* HTTPS?/.* 404 [0-9]{1,6}
Solution is to put brackets (...) around the GET|POST|HEAD part:
failregex = HOST .*(GET|POST|HEAD) /.*phpMy.* HTTPS?/.* 404 [0-9]{1,6}
Oh, I'm not sure you want two spaces before the HTTPS? component.
Chris
--
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: http://lists.debian.org/0uvnr9xkgc@news.roaima.co.uk
Re: Local copy of ALL man pages
Richard Owlett rowl...@cloud85.net wrote: Chris Davies wrote: ar -p $PACKAGE data.tar.gz | tar xzvCf / - ./usr/share/man I'll have to sit down with man pages a figure out why that does what you say. ar : archiver. It works on the $PACKAGE archive. The -p flag writes the named member(s) of the archive to stdout tar : tape archiver. The various flags take the next argument from the command line as appropriate: x : extract file(s) named on the command line after other flags have been processed, or extract everything if no files are specified z : input is compressed (gzip) v : verbose output C / : change directory to / before extracting files f - : read from stdin (- could be a filename, to read from that file) Chris -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/0p4pr9xqlr@news.roaima.co.uk
Re: Local copy of ALL man pages
Brian a...@cityscape.co.uk wrote: 'ar -x' will get data.tar.gz from the .deb file. 'tar zvxf data.tar.gz' will do the unpacking. The man pages are in /usr/share/man. Something like 'cp' should be able to get at them. For any given $PACKAGE deb this will extract the manpages into /usr/share/man (you might prefer to change tar's / to /tmp): ar -p $PACKAGE data.tar.gz | tar xzvCf / - ./usr/share/man Chris -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/orpmr9xg5q@news.roaima.co.uk
Re: Running vlc from another machine.
Chris Davies wrote: Ssh is usually (almost always, by default) configured to carry the display across the connection transparently, Bob Proulx b...@proulx.com wrote: Never by default. Yes. My mistake, sorry. It's one of the things I change so early on - along with setting up certificate based logins - that I forget it's not automatically enabled. Agreed. But the natural follow-on to this would be to use the DISPLAY to set to a remote display such as: DISPLAY=otherhost.example.com:0 vlc *.WAV And that will run into the issue that by default X Window servers these days no longer listen to the network for connections. Agreed. Fortunately ssh has options to transport the DISPLAY across the encrypted session, and mostly it all just works. Chris -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/dkfdr9x4io@news.roaima.co.uk
Re: Running vlc from another machine.
peasth...@shaw.ca wrote: At the console, peter@dalton:~$ vlc *.WAV starts a vlc instance and produces audio. I'm going to assume (dangerously) that since you're running vlc rather than cvlc you don't really mean console but local X Windows screen. The same command via a telnet connection is not so successful. Don't run telnet, use ssh instead. Ssh is usually (almost always, by default) configured to carry the display across the connection transparently, so if you must use telnet you'll have to handle that in some other way. Also, vlc doesn't recognize the display as iceweasel does. peter@dalton:~$ vlc --display=:0 *.WAV vlc: unknown option or missing mandatory argument `--display=:0' DISPLAY=:0 vlc *.WAV or export DISPLAY=:0 vlc *.WAV or cvlc *.WAV Chris -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/27t9r9x576@news.roaima.co.uk
Re: bash script to convert, compress
Rob Owens row...@ptd.net wrote:
$(basename $file wav)ogg
If you've got bash or some other suitable shell you can do this same
thing without resorting to a subprocess:
W=/some/path/to/wavmusic.wav
echo $(basename $W wav)ogg
wavmusic.ogg
echo ${W/%wav/ogg}
/some/path/to/wavmusic.ogg
Chris
--
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: http://lists.debian.org/pud0r9xeqs@news.roaima.co.uk
Re: bash script to convert, compress
tsit...@linuxmail.org wrote: what about the compression and deletion of the converted files? # Compression : # Deletion rm -f Have you not listened to any of the discussion? Compression is pointless, and others have suggested you may want to consider storing the music in a non-lossy format so you can better convert to other formats. Chris -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/mdh1r9x16b@news.roaima.co.uk
Re: apt vs. SSD computers
jida...@jidanni.org wrote: Even though I only have a 1 Mb ADSL, I find Acquire::PDiffs false; will finally stop the torture my computer is put through. [...] Also there is no way like nice(1) to lessen its grip on resources. If you're concerned about bandwidth try trickle(1). nice(1) on the apt-get/aptitude frontend itself should lessen the CPU impact, particularly if you separate the update process from any subsequent upgrade/install (nice aptitude update aptitude). Chris -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/5d53q9xs08@news.roaima.co.uk
Re: Problem With exim4 smtp authenication
Thomas H. George li...@tomgeorge.info wrote: I have edited passwd and entered server:user:password exactly as described in exim4_passwd_client and run dpkg-reconfigure exim4-config. When I try to send mail using exim4 and then tail /var/log/exim4/mainlog I find authenication has failed. 2012-12-03 11:09:02 1TfYZq-000658-2d ** r...@tomgeorge.info R=smarthost T=remote_smtp_smarthost: SMTP error from remote mail server after MAIL FROM:r...@tomgeorge.info SIZE=1975: host smtpout.where.secureserver.net [64.202.165.69]: 530 authentication required I'm a bit late to this thread but I think I can see the problem. I've hit this before and the reason is the little paragraph in the manpage that states, Please note that target.mail.server.example is currently the value that exim can read from reverse DNS: It first follows the host name of the target system until it finds and IP address, and then looks up the reverse DNS for that IP address to use the outcome of this query (or the IP address itself should the query fail) as index into /etc/exim4/passwd.client. Based on your logfile, I would hazard that you're trying to authenticate to smtpout.where.secureserver.net. However, this server has several IP addresses (well, I've found four so far), and when you find the rDNS for these servers, it's *these* that need to go into your passwd.client file. smtpout.where.secureserver.net - 173.201.192.229 - p3plsmtpa07-v01.prod.phx3.secureserver.net 173.201.193.101 - p3plsmtpa08-v01.prod.phx3.secureserver.net 64.202.165.58 - smtp.starfieldtech.com 64.202.165.69 - m1plsmtpa01-v01.prod.mesa1.secureserver.net Chris -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/m6drp9x6g5@news.roaima.co.uk
Re: LVM devices and symlinks
Roger Leigh rle...@codelibre.net wrote: On Tue, Dec 11, 2012 at 09:29:23PM -0500, Neil T. Dantam wrote: At Tue, 11 Dec 2012 10:15:54 +, Chris Davies wrote: Reboot the box after installing LVM. Ah, a reboot has lvcreate working properly, thank you. This is good to know. However, this should all be triggered when the package is initially installed. Please could you file a serious bug against the lvm package so that this can be fixed. I'll run up another VM in the next day or so and see if I can get a minimum set of circumstances under which the bug triggers. Chris -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/b2cpp9xf6h@news.roaima.co.uk
Re: Xen vs. KVM on Debian squeeze
P. J. McDermott p...@nac.net wrote: I'd like to set up virtualization on a home server So now you have recommendations both ways :-) Chris -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/jr2mp9x0o8@news.roaima.co.uk
Re: Xen vs. KVM on Debian squeeze
Peter Viskup skupko...@gmail.com wrote: Consider LXC [2] in case you have some concerns of CPU/memory overhead and you plan to run only Linux virtual servers. LXC looks really nice but you need very up-to-date packages, and possibly may even need to consider compiling from source. Issues I've hit so far (none of which is insurmountable): - New kernel to support the memory cgroup option - New libvirt/VMM to support LXC nicely - Templating new hosts is fiddly - Documentation is inconsistent and patchy at best I know I could probably help with at least one of these, so I'm not complaining. However, I don't (yet) have a bleeding-edge installation with which to try out the new components. Cheers, Chris -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/cb3mp9x2s9@news.roaima.co.uk
Re: NFS automount not happening
Wolfgang Karall lists+debian-u...@karall-edv.at wrote: On 12/11/2012 11:08 AM, Chris Davies wrote: Bob Proulx b...@proulx.com wrote: The dhcpd will ping the address after the lease has expired and before assigning it again and will notice that it is still in use and will avoid assigning that address to another client. ICMP ping? Are you sure? I suppose Bob was referring to the ping-check as per the ISC dhcpd, see http://manpages.debian.net/cgi-bin/man.cgi?query=dhcpd.conf Ah, ok. Cheers, Chris -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/7i2mp9x0o8@news.roaima.co.uk
Re: LVM devices and symlinks
Neil T. Dantam n...@gatech.edu wrote: New (broken) Behavior Performing an `lvcreate -L10G -nLVNAME VGNAME` creates: 1. New device file /dev/mapper/VGNAME-LVNAME (and apparently nothing else) Then, lvcreate tries to open /dev/VGNAME-LVNAME, which fails because of no symlink with: /dev/VGNAME/LVNAME: not found: device not cleared Aborting. Failed to wipe start of new LV. Reboot the box after installing LVM. Based on my empirical sample of two, there's some dependency that I haven't tracked - and I must admit thought it was related to my weird installation process - that blocks the symlink creation after installing LVM but prior to a reboot. Also, on a reboot of the machine, the device files end up in the original configuration, with both /dev/mapper/VGNAME-LVNAME and /dev/VGNAME/LVNAME as symlinks pointing to /dev/dm-N. Is http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=593375#25 (fixed) a related issue? It looks plausible to me. Chris -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/qndjp9x0sp@news.roaima.co.uk
Re: Xen vs. KVM on Debian squeeze
P. J. McDermott p...@nac.net wrote: I'd like to set up virtualization on a home server with a Debian GNU/Linux squeeze amd64 host and squeeze and wheezy amd64 guests. I'd recommend KVM and libvirt/VMM. The server has two 3.0-GHz CPU cores (an AMD CPU with the AMD-V/SVM virtualization extensions) and 2.0 GiB of RAM (which I'm planning to either double or triple). My home server's running a single twin-core AMD Turion II N40L at 1.5GHz but has 8GB memory. No problems running several servers (at the moment), and has enough clout for me to be seriously considering a virtualised Windows 7 instance, too. So I need a virtualization infrastructure that offers efficient CPU and I/O virtualization and allows guest systems to gain or forfeit virtual memory as their loads require (pooling my limited RAM as efficiently as possible). I have relatively small memory allocations to the guests (~2GB) but with the balloon driver installed in case I need to tweak on the fly. I figure that a less-used guest will get pushed out to the host's swap if things start getting squeaky. I'm not sure I like the idea of freeing memory by swapping, but at least it's a simple design and easy to set up. Is there a newer method in KVM (in Debian squeeze or squeeze-backports) of automatically growing and shrinking guest systems' virtual memory space in RAM, preferably without using swap? I had originally understood that this is what the balloon driver allowed, but I haven't found a way of controlling it automatically based on the host's available memory. Ah, http://aglitke.wordpress.com/2011/03/03/automatic-memory-ballooning-with-mom/ might be worth following through. All things considered, I'm leaning slightly toward qemu-kvm, because it looks like it'll do what I need in a simple and familiar way; but I'm concerned about the performance of the CPU and I/O virtualization and the page swapping. What I like about KVM/libvirt is that it (now) handles LVM as a volume pool, so I don't need to use large files in the filesystem to hold guests' backing store. What I don't like about KVM is its dependence on the backing store being an entire virtual disk, complete with partition table, etc. It makes growing filesystems an absolute pain (LVM resize, guest shutdown, fdisk/parted on partition file, resize guest filesystem, restart guest), but I don't do it too often. I also keep the filesystem layouts for my guests' primary disk as simple as possible (typically the everything in one big filesystem approach). What I do like about KVM is its ability to run non-aware guests. I have lost track of whether Xen would let me run an instance of Windows 7, for example. If you do go for KVM/libvirt, I would recommend the virtualised disk and network devices. Empirically they work well, and gut feel (i.e. not quantitatively) suggests that at worst they won't be any slower than emulations of physical devices and actually might be a little faster and/or more efficient. Chris -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/loejp9xs4r@news.roaima.co.uk
Re: NFS automount not happening
Bob Proulx b...@proulx.com wrote: The dhcpd will ping the address after the lease has expired and before assigning it again and will notice that it is still in use and will avoid assigning that address to another client. ICMP ping? Are you sure? According to the documents I've read (RFC2131 amongst others) it's the client that is responsible for renewing the lease. However, if you were to run a dhcp client on your diskless workstation then it would be assigned the same address that PXE had previously obtained, so all would be well. Chris -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/89djp9xs6p@news.roaima.co.uk
Re: Awk, filtering match through external command
Neal Murphy neal.p.mur...@alum.wpi.edu wrote: I don't see a way to pipe both ends of an external command. I'm not sure even *perl* could do that. It can [*], see IPC::Open2 and IPC::Open3. But you can end up with all sorts of buffer related race conditions. Chris -- [*] are you really surprised? -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/gfbvn9xn65@news.roaima.co.uk
Re: Dovecot configuration issues for IMAP/POP3 (squeeze)
David Guntner dav...@akamail.net wrote: Fail2ban works by setting up filtering rules through iptables, and will route traffic on a given port from a badly-behaving IP address to a DROP instruction in the firewall. it needs to care about which service is being abused. I'm pretty sure my version (or maybe it's just my configuration) takes the attitude that it doesn't really matter what port is being poked, fail2ban just blocks that IP address. Chris -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/b63on9xvpm@news.roaima.co.uk
Re: apt / aptitude question
David Guntner dav...@akamail.net wrote: Thanks to both you and Neal for the replies. Interesting to see the multiple ways of getting the same information. :-) They do different things and (for me anyway) give different results. Consider the package cltl that I do not have installed: $ apt-file search cltl# Search repositories cltl: /etc/emacs/site-start.d/60cltl.el cltl: /usr/share/doc-base/cltl cltl: /usr/share/doc/cltl/README.Debian cltl: /usr/share/doc/cltl/changelog.gz cltl: /usr/share/doc/cltl/copyright ...[other results]... $ apt-file search 60cltl.el# Search repositories cltl: /etc/emacs/site-start.d/60cltl.el $ dpkg-query -S cltl# Search installed packages dpkg: *cltl* not found. $ dpkg-query -S 60cltl.el# Search installed packages dpkg: *60cltl.el* not found. Chris -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/0dq9n9xs0b@news.roaima.co.uk
Re: OT: A question about bash scripting
Ralf Mardorf ralf.mard...@alice-dsl.net wrote: month=$(date +%B) mon=$(date +%b) d_y_t=$(date '+/%d/%Y %T') done=$(date +%s) You've got a horrible race condition in there just waiting to bite you. Try this instead: done=$(date +%s) month=$(date --date @$done +%B) mon=$(date --date @$done +%b) d_y_t=$(date --date @$done +'/%d/%Y %T') Chris -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/7ud4m9xtms@news.roaima.co.uk
Re: Exim4 behaviour when long term failure of outgoing address
Alan Chandler a...@chandlerfamily.org.uk wrote: The domain in question is virginiaparkinson.com [..] The one you're trying to deliver to (i.e. mynewdomain.com in the original posting)? The virtual machine is a standard squeeze setup with my update-exim4.conf.conf dc_other_hostnames='' (77.96.120.60 is my home ip address where my main mail server sits - because this is effectively a dynamic ip address I have to route all outgoing mail through a remote smtp server. You have a mid-term problem here you're going to need to address: that if your 77 address is dynamic, each time it changes you'll have to update your VM's dc_relay_nets configuration entry. However, there are better solutions for this so I'll park it for now. (Use authentication from your home mail server to your VM.) /etc/aliases has root: alan.chand...@hartley-consultants.com That's on the VM? and both hartley-consultants.com and virginiaparkinson.com have this domain referencing 80.68.94.252 BUT their MX records both point else where. MX defines the delivery target, so that's what's relevant here. I'll try to reiterate the configuration and let's go from there (offlist if you like, since this isn't really a Debian issue). 1. Home server (name unknown, probably irrelevant) forwards email to your VM for onward delivery 2. VM is called avalon.hartley-consultants.com, configured as an Internet SMTP system using the standard Debian configuration 3. VM won't deliver to virginiaparkinson.com, but that issue is out of scope right now 4. Failure (bounce) message to root@avalon is being lost - and this is the issue at stake I think I'll stand by my original diagnosis, taht the key line is the exim4 error message, remote host address is the local host: avalon.hartley-consultants.com. Typically this means that exim4 doesn't know all its possible names. Specifically in your instance, exim4 is trying to deliver to avalon.hartley-consultants.com, but this resolves (/etc/hosts, MX, or A) to the local system. The problem is that exim4's local configuration doesn't include this name as one of the possible alternative local names (the Other destinations for which mail is accepted question). Add this hostname using dpkg-reconfigure exim4-config and see if that solves the immediate problem. Chris -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/6epfk9xrhl@news.roaima.co.uk
Re: Exim4 behaviour when long term failure of outgoing address
Alan Chandler a...@chandlerfamily.org.uk wrote: I am using Debian Squeeze on a virtual machine that I lease. It has exim4 (light) version as its mail server. - its name is avalon.hartley-consultants.com However, it looks to me like its trying to send a failure e-mail to me locally somehow. 2012-10-05 07:42:09 1TK1bf-Mx-0C = r...@avalon.hartley-consultants.com U=root P=local S=389 2012-10-05 07:42:09 1TK1bf-Mx-0C ** i...@mynewdomain.com R=dnslookup T=remote_smtp: retry time not reached for any host after a long failure period 2012-10-05 07:42:09 1TK1bt-N0-DT remote host address is the local host: avalon.hartley-consultants.com It's difficult to tell without knowing the precise setup on the machine, but this looks like you've aliased root to the offsite address i...@mynewdomain.com, but then you've got an entry somewhere that tells avalon that it *is* mynewdomain.com. This could be an entry in /etc/hosts, an MX or A record in DNS, or some fancy aliasing somewhere associated with exim itself. Avalon accordingly tries to deliver to info, locally, and finds that this does not exist. Because it's already trying to deliver a bounce message it simply discards the bouncing bounce and aborts. Unfortunately, without knowing what mynewdomain.com really is, I can't run any non-local diagnostics for you. Unless mynewdomain.com really is yours, in which case you've got a configuration problem there because it's not accepting mail. Chris -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/5u89k9x32a@news.roaima.co.uk
Re: problems with remote install using ipmi serial-over-ip
Miles Fidelman mfidel...@meetinghouse.net wrote: Well, I've been trying to do a remote install onto a server (Supermicro X8SIE-LN4F motherboard) - booting via PXE, and using a serial-over-IP terminal provided by the IPMI board. The serial-over-ip terminal, sort of works - I can get the installer to load, and give me a boot prompt, and a simple CR gets it running. I can go all the way through, and it sure seems like I've partitioned the drive, installed all the software, and so forth, but when I restart, the system hangs. I'm guessing it might be a grub install problem, but now I'm stuck... Does the IPMI give you a virtual CD/DVD drive, too? My experience with remote installations on Dell kit a couple of years ago was that the drive order changed after installation, and the boot code wasn't happy with that. I used to need to edit the kernel boot line, along with the hd(0,0) stanza, and then also fix up /etc/fstab. (That last has been handled somewhat better by referencing the root partition by label or uuid, but back then it wasn't done that way.) Chris -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/7f4rj9xkqu@news.roaima.co.uk
Re: Configure Virtual IP interfaces
Pietro Paolini p.paol...@ext.adbglobal.com wrote: My goal is to simulate more than one IP interface using just a physical interface, for do that I tried using this alias - ifconfing ethX:1 IP ethX is your real interface, yes? But when I try to send a packet over that interface I see the IP source the same as the original, and real, Ethernet interface. It depends where you're trying to send it to. Consider this addressing: eth0192.168.1.1 eth0:1 172.16.2.2 Then ping 172.16.2.4 will use 172.16.2.2 as source address, and ping 192.168.1.6 will use 192.168.1.1 as the source address. Chris -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/2h1pi9x12m@news.roaima.co.uk
Re: networking with virtual machine
lee l...@yun.yagibdah.de wrote: Yes and when I replace the interface I have now (eth1) with a bridge device (br1), then how do I tell shorewall that the guest is in the dmz (for example)? You need bridge and routeback set in your shorewall interfaces file. Take a look at http://www.shorewall.net/SimpleBridge.html and http://www.shorewall.net/KVM.html. I think that the second reference will be particularly useful for you - ignore the references to wlan0, and replace eth0 and br0 with eth1 and br1 respectively. Chris -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/62vli9xvgg@news.roaima.co.uk
