Re: check if a newer version of a package is available
On Sat, 14 Feb 2015, kamaraju kusumanchi wrote: 1) How do I check if a newer version of a package is available from a perl script? I'm not sure there but my guess would be to use one of the CPAN modules related to APT, perhaps Linux::APT 2) Generalizing the previous question, is there any way to get the version number of the package to which it will be upgraded to had I run sudo apt-get install PACKAGE? apt-cache would do that. For xterm, apt-cache policy xterm or something like this apt-cache policy xterm \ | awk '$1 == Installed: { installed = $2 } \ $1 == Candidate: { candidate = $2 } \ END { if ( installed candidate ) { print candidate } \ else { print 0 } }' Regards, /Lars -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/alpine.bso.2.11.1502142202300.23...@yeeloong.dhcp.inet.fi
Re: ssh tunnel help
On Wed, 22 May 2013, Lars Noodén wrote: One way you could try is like this[1]: ssh -L 5432:localhost:5432 \ -o 'ProxyCommand=ssh -W %h:%p pub1.example.org' \ devel.example.org As a follow up here is a method that should work for older versions of ssh: ssh -L 5432:localhost:5432 -o HostKeyAlias=devel.example.org \ -o ProxyCommand=ssh %h nc devel.example.org 22 \ pub1.example.org The netcat mode (-W) was added fairly recently. [1] https://en.wikibooks.org/wiki/OpenSSH/Cookbook/Proxies_and_Jump_Hosts Regards, /Lars
Re: apache permission users
On Mon, 20 May 2013, Tony Baldwin wrote: [snip] and add the server (www-data) to their group, 775 stuff. I don't know if it's the best practice, [snip] The www-data user and group should be left alone. They are there for privilege separation of the web server by providing an unprivileged account for the daemon. It would make the server a lot less secure if either were to be given write access to the same directories and files that it is serving. That would defeat the purpose of www-data. If you need another group for the users to share, create one just for that purpose and use it instead. Regards, /Lars -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/alpine.bso.2.03.1305201059530.3...@gmail.com
Re: Requesting installation DVDs set
Rupesh, Can you go into a little more detail about what kind of connnectivity you do or don't in regards to the Internet? You are able to send mail, there should be a way for you to download, even if slowly. Or do you have a data cap? Regards, /Lars -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/alpine.bso.2.03.1305181209390.11...@gmail.com
Re: how forward email
On Sat, 18 May 2013, Pol Hallen wrote: Hi folks! putting an email to .forward (into a dir account) its email goes to that address. I need keep a copy of that email. Can I do it with /etc/aliases? or there's another way? thanks! Pol One way would be to use procmail. Regards, /Lars -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/alpine.bso.2.03.1305181921010.11...@gmail.com
Re: apache permission users
On Wed, 15 May 2013, Jean-Marc wrote: Personally and just about permissions, I would be more strict, like that: chmod 750 /var/www/mywebserver{1..5} You have to leave read permissions for the web server to be able serve up the web pages. That means 775 or 755 for directories and 664 or 644 for files. On Wed, 15 May 2013, Pol Hallen wrote: [snip] chown mywebserver1:mywebserver1 /var/www/mywebserver1 If there is only one user per web server, that works. Otherwise, you will have to work with group-level permissions. Regards, /Lars -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/alpine.bso.2.03.1305151527060.13...@gmail.com
Re: Pre installation check points help
On Mon, 13 May 2013, abhishek bhattacharya wrote: Also, does Debian support the following softwares: Xfce or Gnome Cairo Dock Conky Yes they are in the repositories. Also, Debian 7 has an optional graphical install. I haven't used it but it might be closer to what you have been used to with Ubuntu. Myself, I prefer the ncurses-based installation better. Regards, /Lars -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/alpine.bso.2.03.1305122312460.11...@gmail.com
Re: are print server and ssh server needed?
On Tue, 7 May 2013, Default User wrote: [snip] In this scenario, I am not sure why the print server and ssh server are pre-selected. Are the really useful, or would they just take up space and add complexity? Any opinions? The ssh server takes up little space and allows you to operate the server headless. You can also add it later. If you don't have a printer, you don't need the print server and it can be unchecked on the list. Regards, /Lars
Re: Without SKYPE?
There are Blink, Linphone, Ekiga, Jitsi, and maybe a few others. Jitsi is quite useful. These are all SIP phones so they can all talk to each other, not locked into a single company like Skype. Regards, /Lars -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/alpine.bso.2.03.1305021926550.25...@gmail.com
Re: Without SKYPE?
On Thu, 2 May 2013, Doug wrote: On 05/02/2013 12:29 PM, Lars Nooden wrote: There are Blink, Linphone, Ekiga, Jitsi, and maybe a few others. Jitsi is quite useful. These are all SIP phones so they can all talk to each other, not locked into a single company like Skype. Regards, /Lars But can they talk to folks using SKYPE? --doug They can all talk to eachother using SIP. Only Skype can talk to Skype, that's part of the lock-in. Regards, /Lars -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/alpine.bso.2.03.1305022219430.25...@gmail.com
Re: How do I list installed packages?
On 04/23/2013 09:12 PM, Mark Weyer wrote: The title is imprecise. Actually, the question is: How do I list installed packages except those automatically installed to satisfy dependencies. In aptitude that would be packages marked as i but not as i A. And if there is no command to list this, where in /etc (or whereever) is the information hidden? Please CC me, I am not subscribed. Thanks in advance, Mark Weyer You could also look at the package deborphan. I believe it will give you the information you are looking for. deborphan -a Regards, /Lars -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/51777b49.8020...@gmail.com
Re: connect directly to another computer bypassing firewalls using a third server
On Fri, Apr 19, 2013 at 5:00 PM, alberto fuentes paj...@gmail.com wrote: A (me) - Server (overseas) - B (arbitrary computer in my city) To make a direct connection between A and B with ssh, you need to have at least on of them be publicly available even if the other is blocked behind a firewall. Depending on the direction you are connecting in that case you may need to use a reverse tunnel. Regards, /Lars -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/alpine.bso.2.03.1304191833160.13...@gmail.com
Re: connect directly to another computer bypassing firewalls using a third server
On Fri, 19 Apr 2013, green wrote: Lars Nooden wrote at 2013-04-19 10:35 -0500: On Fri, Apr 19, 2013 at 5:00 PM, alberto fuentes paj...@gmail.com wrote: A (me) - Server (overseas) - B (arbitrary computer in my city) To make a direct connection between A and B with ssh, you need to have at least on of them be publicly available even if the other is blocked behind a firewall. nat-traverse is something new (to me at least) that supposedly allows a direct connection to be made between 2 systems which are *both* behind NAT/masquerading gateways. In this case, the third publicly accessible server would not be necessary, and traffic would not be required to leave the local area. http://m19s28.dyndns.org/iblech/nat-traverse/ That looks like you have to somehow be logged into both hosts and run nat-traverse on each. But it looks interesting. Regards, /Lars -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/alpine.bso.2.03.1304192133250.13...@gmail.com
Re: what's your Debian uptime?
On Thu, 18 Apr 2013, agroconsultor0 wrote: On 04/17/2013 01:22 PM, Kevin Chadwick wrote: [snip] OpenBSD has only had something like two holes in over a decade which is nice for uptime. If i am not mistaken, The OpenBSD Team recommends a clean installation every 6 month. For users following -stable instead of -current, the support goes back two releases which means about 12 to 18 months, since the releases have been every 6 months: http://www.openbsd.org/faq/faq5.html#Flavors So that would tend to limit the uptime. Regards, /Lars -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/alpine.bso.2.03.1304181125250.25...@gmail.com
Re: what's your Debian uptime?
On Wed, 17 Apr 2013, Brad Rogers wrote: On Wed, 17 Apr 2013 17:41:12 +0300 (EEST) Lars Noodén lars.noo...@gmail.com wrote: Hello Lars, What's the status of ksplice in Debian? Oracle hasn't been the best TBH, I don't know. It's in testing at v0.9.9-4. How that compares with upstream, I'm not sure, as the Oracle web site seems reluctant to let me find out. [snip] From what I find online, 0.9.9-4 is from 2009. www.ksplice.com doesn't have much about the GPL version any more, if they ever did. They do have some binaries of 1.2.9 (according to the one sample I downloaded) for several Ubuntu and Fedora versions. Regards, /Lars
Re: Terminals
On Wed, 17 Apr 2013, Bob Proulx wrote: [snip] # apt-get install minicom [snip] Then just leave it running forever. It will always be there when you come back to that vt with Alt-F4. [snip] Another option is cu, I'm not sure how it compares to minicom directly, but I find it useful. Regards, /Lars -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/alpine.bso.2.03.1304172032340.22...@gmail.com
Re: My repetition
On Saturday 10 November 2012 18:22:19 Doug wrote: If you stop using gmail, you won't have that problem! I've noticed that problem with Gmail for a while. It hasn't been fixed and probably won't ever get fixed. What are the top free-of-charge options? Regards, /Lars -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/alpine.bso.2.02.1211102041290.5...@yeeloong.dhcp.inet.fi
Re: Apache2 does not enable htaccess
On Thu, 25 Oct 2012, Gorka wrote: I've put my .htaccess under /var/www with this lonely line ... IndexIgnore * ... also there is in /etc/apache2/sites-available/default the following content ... VirtualHost *:80 ServerAdmin webmaster@localhost DocumentRoot /var/www Directory / Options FollowSymLinks AllowOverride None /Directory Directory /var/www/ Options Indexes FollowSymLinks MultiViews AllowOverride All Order allow,deny allow from all /Directory ScriptAlias /cgi-bin/ /usr/lib/cgi-bin/ Directory /usr/lib/cgi-bin AllowOverride None Options +ExecCGI -MultiViews +SymLinksIfOwnerMatch Order allow,deny Allow from all /Directory ErrorLog ${APACHE_LOG_DIR}/error.log # Possible values include: debug, info, notice, warn, error, crit, # alert, emerg. LogLevel warn CustomLog ${APACHE_LOG_DIR}/access.log combined /VirtualHost ... As you can see, I've already changed AllowOverride from None to All But .htaccess doesn't seem to work yet. When I point to the url it lists the whole content of /var/www What's the matter? Any idea? Put what you would have put inside .htaccess inside the appropriate Directory directive inside the web server's configuration file. Remember to reload. .htaccess is only for when you don't actually have write access to the web server's configuration. Regards, /Lars -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/alpine.bso.2.02.1210251347060.10...@yeeloong.dhcp.inet.fi
How APT signs packages
Hi, Where can I find an uptodate description of exactly how PGP is used by APT in packaging? I can't find the source any more but I got the impression that the individual packages were not signed but merely checksummed and that the list of checksums was the only thing that was actually signed. What is the real situation? Regards, /Lars -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/alpine.bso.2.02.1210191228260.11...@yeeloong.dhcp.inet.fi
Re: How APT signs packages
On Fri, 19 Oct 2012, Darac Marjal wrote: On Fri, Oct 19, 2012 at 12:28:36PM +0300, Lars Nooden wrote: Hi, Where can I find an uptodate description of exactly how PGP is used by APT in packaging? I can't find the source any more but I got the impression that the individual packages were not signed but merely checksummed and that the list of checksums was the only thing that was actually signed. What is the real situation? That is true. As described here[1], the package checksums are stores in the Packages file, the checksums for the Packages file are stored in the Release file and the release file is GPG signed. So you have a chain of fidelity from Releases to the package and a chain of trust from yourself to the Releases. [1] http://wiki.debian.org/SecureApt Thanks. The weak point, relatively speaking, looks to be the MD5 checksums in Releases. The link above [1] says MD5 is now a broken hash function, and should be replaced for all security-minded usages. Out of curiosity, what are the plans then for moving up to SHA256 or better? Regards, /Lars -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/alpine.bso.2.02.1210191311000.11...@yeeloong.dhcp.inet.fi
Re: How APT signs packages
On Fri, 19 Oct 2012, Florian Ernst wrote: ... ***apt has supported sha256 checksums since version 0.7.7, so these will be used in lenny and future releases. --JoeyHess - 8 - in the comments of the very same page as well as check your /var/lib/apt/lists/*_{Release,Packages} for verification. Thanks. One comment claimed that from Lenny onwards SHA256 checksums would be used. But in Squeeze, *_Release still has MD5 checksums, at least for the repository I have. So it looks like the infrastructure supports SHA but it's still needed to do the tedious work of migration. Is there any archive of why the move was not made for Lenny or later? Regards, /Lars -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/alpine.bso.2.02.1210191331500.11...@yeeloong.dhcp.inet.fi
Re: help using serial console w/ netboot - SOLVED
On 10/3/12, Chris Bannister cbannis...@slingshot.co.nz wrote: On Tue, Oct 02, 2012 at 12:10:02PM +0300, Lars Noodén wrote: Sorry. There's a typo, intited should be initrd. Ahh! OOPs didn't read whole thread. Still, it does show the reason why you should copy 'n' paste instead of laboriously typing it out by hand. Yeah. I've since spent the effort to find out how to cut and paste in plain vanilla tmux. Regards /Lars -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/cacq_q0fg6-0tdmqtjf5op_psaa7kzzsdlnghgf4jpokyqhv...@mail.gmail.com
Reinstalling lost packages using /var/lib/dpkg/status-old
If a bunch of packages have been uninstalled, what is an automated way of reinstalling them using /var/lib/dpkg/status-old or /var/backups/dpkg.status.* ? I see a lot of material mentioning status but nothing about precisely how to use it. Regards, /Lars -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/cacq_q0c1xz5n59s62nbrrf2xkjsx6gd3pvfvvnubsotoe7w...@mail.gmail.com