Re: [DNG] meta: list
Hi Simon, On Sun, 2022-09-04 at 21:22 +0100, Simon Hobson wrote: > declassed art via Dng wrote: > > > I do have an unconfigured PTR for a couple of reasons, one > > of those is lack of static IP for now. > > I figured out quite quickly that checking reverse DNS is a waste of > time - too many systems, even those run by professional > network/server engineers, are just badly configured. > My experience (running a small family mail server on the premises, but of course with a fixed IP - I'm with Zen in the UK) is the opposite of this. I configure strict postfix rules that incoming mail should have a reverse DNS. Here's my recent traffic: 3490 received 3444 delivered 43 forwarded 1 deferred (1 deferrals) 0 bounced 1799 rejected (34%) Of those rejected: 974 Cannot find your reverse hostname 283 Helo command rejected: Host not found 251 Cannot find your hostname 23 Helo command rejected: need fully-qualified hostname 16 Recipient address rejected: User unknown Message that pass my postfix filters are then scored by my spamfilter rspamd: 222 Rejected by rspamd (mix of 4.7.1 try again later or 5.7.1 spam message rejected). In practice most greylisted 'try again laters' that do try again then end up in the users spam folders for them to evaluate and if necessary recategorise. So checking for a valid reverse DNS is my most effective filter. Only very rarely is it rejecting mail from anyone I'm expecting mail from: by inspection they are all obvious spam addresses and of course if they have a genuine reason to email me they are getting the message that their mail isn't getting through because they have no reverse DNS. -- Marjorie ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
Re: [DNG] mutt attachment problem
Hi Haines, On Mon, 2022-08-22 at 14:56 -0600, Bob Proulx via Dng wrote: > Antony Stone wrote: > > Haines Brown wrote: > > > The size of the zip file is 164 Mb > > > > 164MB! OMG! Repeat after me. "SMTP is not a file transport > protocol." The likelihood of being able to send a 164MB email > message from one random system on the net to another random system on > the net today is vanishingly small. The default for most popular > mail transport agents even today is 10MB max in size. Though most > sites have increased that to at least 50MB and some to 100MB due to > people trying to send photos through email. But 164MB? I don't know > of any site that allows such a large single email. Gmail limits > message size to 25MB > https://support.google.com/a/answer/1366776?hl=en. > > Since email is not a file transport protocol I suggest using a > different method to transfer those files. I am worthless for > suggesting a large binary file drop method since I have my own web > site and so I always use it for these things. I just copy it there > and pass along a URL. But I know that not everyone maintains their > own servers and associated web sites. > > Perhaps some kind souls on the list might suggest possible ways to > send large binary files? That's the real problem and it needs > a real solution. > If you have a Google account then you /could/ just use Google Drive: https://drive.google.com/drive/my-drive Google Drive has a 15GB capacity free tier, plenty for what you need, if you haven't filled it already. Create a shared folder on your Google Drive. Copy and paste the zip file to it. Allow the recipient viewer access to the shared folder (you can allow anyone or be specific to the recipient(s)). Then just send then a link to the file, they can then just click on the link and the file will download. ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
Re: [DNG] no mails from dng :-( [maybe OT]
Hi Ludovik, On Thu, 2022-07-28 at 11:44 +0200, Ludovic Bellière wrote: > Hello list, > > Can confirm on my end too, apparently a meeble.net is now involved. > That, or I no longer understand emails anymore. > > Authentication-Results: mx201.skynet.be; spf=None > smtp.pra=dng-boun...@lists.dyne.org; > spf=Pass smtp.mailfrom=dng-boun...@lists.dyne.org; spf=None > smtp.helo=postmas...@mail.dyne.org; dkim=hardfail (body hash > did not verify > [final]) header.i=@meeble.net > No I think there is an issue with the DKIM authentication on the DNG mail server and it's affecting not just Stefan and myself. It's not affecting emails that are copied directly to me (which is why I thought Marc's reply was clear). On various list emails from the list my RSPAMD log is showing: R_DKIM_REJECT (1) [proximus.be:s=rmail] R_DKIM_REJECT (1) [meeble.net:s=202002] R_DKIM_REJECT (1) [gregn.net:s=default] R_DKIM_REJECT (1) [gmail.com:s=20210112] the bit in brackets depends on the sender to list. I'm pretty sure that gmail, for example, wouldn't be throwing an issue at their end. On my mail server this authentication failure simply increments the spam score by 1, not sufficient to put it into spam or to reject outright. On Stefan's server, which seems to be stricter on DKIM it leads to a rejection and him not seeing DNG emails. NB. My first reply attempt to list used an alternative email address (marjo...@meeble.net) at my end, which no doubt would have been correctly rejected by the DNG server. -- Marjorie > > On Thu, 28 Jul 2022, Marjorie Roome via Dng wrote: > > > Hi Sterfan, > > > > Spoke too soon. I'm getting it on my reply too: > > > > Authentication-Results: mail.dyne.org; dkim=fail reason="signature > > verification failed" (2048-bit key; unprotected) > > header.d=meeble.net > > header.i=@meeble.net header.b="K9Pp04F0"; dkim-atps=neutral > > > > > > > > Irrespective, it may be your mail server provider is a bit too > > > strict. > > > ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
Re: [DNG] no mails from dng :-( [maybe OT]
Hi Sterfan, On Thu, 2022-07-28 at 10:12 +0100, Marjorie Roome via Dng wrote: > Hi Stefan, > > On Thu, 2022-07-28 at 09:35 +0200, Stefan Krusche wrote: > > Good Day everybody, > > > > I haven't been receiving any messages from this list since > > 18.7.2022 02:17 (simple-netaid for daedalus) and I have no idea > > why. > > > > My mail domain is hosted/served by jpberlin.de, a company in > > Berlin, > > Germany. There are no messages in the spam folder on the server > > either. > > > > Has something changed? What can I do to find out what happened? > > > Looking at the headers on recent posts (not just those from you) from > the DNG list I'm now seeing the following: > > Authentication-Results: mail.dyne.org; dkim=fail reason="signature > verification failed" (2048-bit key; unprotected) header.d=gmail.com > header.i=@gmail.com header.b="dZ8HIihF"; dkim-atps=neutral > > Different servers and their spam filters have different policies as > to what is acceptable and outright rejection is always possible: as > these are silent then you'll never know how many spam or legitimate > emails are getting rejected as the emails never get to your spam > folder - on my server a majority of obvious spam never gets to my > spam folder as it is clearly malformed (no valid reverse DNS, for > example). > > I have my own postfix server with rspamd and it's not rejecting DNG > due to the DKIM authentication but it's possible yours may do. And > asi t's my own server I also do get to see summary information > about all rejections. > > This is a recent change on the DNG list server so it probably needs > fixing. > > Interestingly I'm not seeing it in Marc reply, so maybe it /has/ been > fixed! Spoke too soon. I'm getting it on my reply too: Authentication-Results: mail.dyne.org; dkim=fail reason="signature verification failed" (2048-bit key; unprotected) header.d=meeble.net header.i=@meeble.net header.b="K9Pp04F0"; dkim-atps=neutral > > Irrespective, it may be your mail server provider is a bit too > strict. > -- Marjorie ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
Re: [DNG] no mails from dng :-( [maybe OT]
Hi Stefan, On Thu, 2022-07-28 at 09:35 +0200, Stefan Krusche wrote: > Good Day everybody, > > I haven't been receiving any messages from this list since > 18.7.2022 02:17 (simple-netaid for daedalus) and I have no idea > why. > > My mail domain is hosted/served by jpberlin.de, a company in Berlin, > Germany. There are no messages in the spam folder on the server > either. > > Has something changed? What can I do to find out what happened? > Looking at the headers on recent posts (not just those from you) from the DNG list I'm now seeing the following: Authentication-Results: mail.dyne.org; dkim=fail reason="signature verification failed" (2048-bit key; unprotected) header.d=gmail.com header.i=@gmail.com header.b="dZ8HIihF"; dkim-atps=neutral Different servers and their spam filters have different policies as to what is acceptable and outright rejection is always possible: as these are silent then you'll never know how many spam or legitimate emails are getting rejected as the emails never get to your spam folder - on my server a majority of obvious spam never gets to my spam folder as it is clearly malformed (no valid reverse DNS, for example). I have my own postfix server with rspamd and it's not rejecting DNG due to the DKIM authentication but it's possible yours may do. And as it's my own server I also do get to see summary information about all rejections. This is a recent change on the DNG list server so it probably needs fixing. Interestingly I'm not seeing it in Marc reply, so maybe it /has/ been fixed! Irrespective, it may be your mail server provider is a bit too strict. -- Marjorie On 28 July 2022 08:35:40 BST, Stefan Krusche wrote: Good Day everybody, I haven't been receiving any messages from this list since 18.7.2022 02:17 (simple-netaid for daedalus) and I have no idea why. My mail domain is hosted/served by jpberlin.de, a company in Berlin, Germany. There are no messages in the spam folder on the server either. Has something changed? What can I do to find out what happened? Thanks, Stefan Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
Re: [DNG] moving to a new system
Hi, On Fri, 2022-06-24 at 09:05 -0500, o1bigtenor via Dng wrote: > Greetings > > Hoping that I'm not asking too many questions. > > (moving from debian testing to devuan testing (daedalus) > the old system is under 5.17.xx and the new one is on 5.18 > if that makes for differences) > > (I've learnt the hard way that just winging things means a LOT more > work and even a greater chance for issues.) > > My existing system has been a work in progress for over 10 years. So > I've gotten things set up quite the way that I like them so things > change slowly but in that there are also less 'terror' moments when > everything has gone 'goofy'. > > Is there any way to move over things like settings (and all the other > pamphernania) for browsers and libreoffice and the like? > > I was thinking of doing things by using scp from the old system to > the new one. > > Dunno if that would create issues or not. > > Any better ideas - - - - well I'm all ears!!! > I'm assuming, from your previous questions, that your are installing on entirely new hardware, including disks. You are also 'upgrading' from Debian to Devuan :-) I think that you can do that in two ways: (1) Replicate your existing system on the new hardware, maybe with a different disk/partition structure from what you have now. And then upgrade to Devuan. 2) Use one the existing Devuan Chimaera installers to set up your new system on your new hardware, then upgrade that to Daedelus as I don't think there aren any official Devuan Daedelus installers yet. If you install your existing DE (XFCE, Cinnamon, etc.) that will also install all its standard packages (filemanager, mail program, etc.). You would then need to install any additional programs/packages you use and remove any you don't want and copy over your existing /home and /etc directories (/etc should contain the *system* config. files for your programs, ones specific to you as a user will be in /home). If you do (1) then you'll obviously have to have a 'live' OS running on the new machine first to do the transfer, though that could be on a USB, installed from a USB into RAM, on a portable backup drive that hosts a live OS or temporarily installed on a partition. There are a two ways of doing the transfers: either (1) directly over your network (and rsync) or (2) indirectly using a portable backup drive (back up on your existing system , then restore on the new one. With (2) you can either use a partition backup tool, such as fsarchiver or a standard file backup tool, such as rsync or duplicity. Fsarchiver can backup and restore whole partitions (with optional compression), doesn't backup empty file space and can restore to a different filesystem. If your partition schemes don't match (you have suggested you might want a lot of them, though the temp directories won't need to be moved over) then you may be better using a file based transfer. -- Marjorie ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
Re: [DNG] install on a raid 1 array
Hi, On Wed, 2022-06-22 at 16:26 -0500, o1bigtenor via Dng wrote: > On Sat, Jun 4, 2022 at 3:03 PM Simon wrote: > > > > o1bigtenor via Dng wrote: > > > > > I have not ever installed like this so first the configuration. > > > > > > Ryzen 7 3800X > > > Asus TUF Gaming X570-Pro mobo > > > 64 GB ram > > > 2 - 1 TB M2 drives > > > 2 - 1 TB SSDs > > > > > > I want to set the system up so that the drives are 2 sets of > > > Raid-1 with > > > (proposed) > > > set 1 > > > /efi, /boot, /, /usr, /usr/local, /var, swap > > > set 2 > > > /home > > > > > > How do I set up the raid arrays? > > > Are they set up first and then the system is installed? > > > Or do I set up what I want on one of each of the sets and the > > > copy > > > that setup to the second (of the set) and make it raid after > > > system > > > install? > > > > > > I can't seem to find anything done within the last 2 years > > > talking about this. > > > Don't see where it should be difficult but then - - - well I've > > > thought that before() and had a boat load of male bovine > > > excrement > > > to wade through! > > > (So I'm asking before doing to forestall issues - - - I hope!) > > > > Others have given good information. Unless things have changed > > since I last did an install (couple of years I think), you can just > > go into manual disk partitioning and do it from there. > > Unfortunately, to do an optimum install means getting the > > calculator out as the defaults are sub-optimal … > > > > AFAIK, all disks these days are 4k sectors, or for SSD, probably > > bigger. Ideally you want your partitions aligned to these > > boundaries. So for example, leave sectors (unix 512 byte sectors) > > 0-63 unused, and start your first partition at sector 64. If you > > know that your SSD uses (say) 64k blocks internally, then leave > > sectors 0-127 unused and start the first partition at sector 128. > > From memory the partitioning tool in the installer doesn’t do this > > alignment unless you manually calculate all your partition start & > > end blocks. > > Everything will work fine if things are not aligned, but > > performance will be sub-optimal in some situations. > > > OK - - - finally have a working system - - - -lots of joys - - - > first > a dead psu then > a cabling issue (the usb3.0 front panel connector on the mobo has a > specific > installation orientation) and then the mob said there was room for 8 > SATA drives > and 2 M2 drives - - - well when you use the M2 slots you lose a SATA > drive for > each - - - lots of joys and time wasted - - - if only these gotchas > were easier to find!!! > > Now I come to the install. > > First attempt > set up 2 raid 1s > except now I can't partition the drives > second attempt > set up 2 drives with some spacer partitions (4.0 MB each) and some 8 > partitions > set up 2 drives with same spacer partitions and a large /home > partition > then wanted to make 2 raid arrays > - - - - except I'm only allowed to use 2 partitions - - - - one > from > each member > of the array. > (There was also complaining that there were 2 /root partitions > before I tried to > create the array.) > > Neither of these options is what I want. > (This is only some couple hours down the drain - - - argh) > > So - - - how do I achieve 2 raid 1 arrays? > #1 has partitions for /efi, /boot, /root/, swap, /tmp, /var, /usr, > /usr/local > with a spacer of 4.0 MB between (and before the first and after > each) > #2 has a partition for /home > with a spacer of 4.0 MB between (and before the first and after) > > The destructions that I have been able to find are - - - - well - - - > - > they're mostly talking about using LVM - - - - which I have not ever > used. > > So - - - please - - - - what do I do besides abandon my idea? > > (There must be some kind of mystery step someplace - - - > and I can't find it) > OK, this is based on what I've done myself. In the past I created multiple RAID1 partitions on the same disc pair for /, /home and swap. So /dev/md0 was /, /dev/md1 was /home and /dev/md2 was swap. More recently I changed this to 3 LVM2 partitions in a single LVM2 physical partition/logical volume. In principle the logical partition could span a number of physical partitions on one or more disk. I assume that you've created two RAID1 arrays on 2 pair of disks. Lets say they are named /dev/md0 and /dev/md1. Then let dev/md1 be for /home. Just create a partition on /dev/md1 for /home. On the other, dev/md0 you want to put the rest of your partitions. I find the number of separate partitions you want to create somewhat excessive but I would strongly recommend you set these up using LVM2, as this will mean that you can dynamically resize them if you find the initial sizes you have created become too small or excessively large at some future date. To do this you need to create a LVM2 physical partition on your /dev/md0, which you can then put a LVM2 logical volume and then I
Re: [DNG] install on a raid 1 array
Hi, On Wed, 2022-06-01 at 17:16 -0500, o1bigtenor via Dng wrote: > On Wed, Jun 1, 2022 at 4:57 PM tito via Dng > wrote: > > > > On Wed, 1 Jun 2022 16:34:21 -0500 > > o1bigtenor via Dng wrote: > > > > > Greetings > > > > > > When the parts get here I'm going to be installing Devuan testing > > > on > > > the system. > > > > > > I have not ever installed like this so first the configuration. > > > > > > Ryzen 7 3800X > > > Asus TUF Gaming X570-Pro mobo > > > 64 GB ram > > > 2 - 1 TB M2 drives > > > 2 - 1 TB SSDs > > > > > > I want to set the system up so that the drives are 2 sets of > > > Raid-1 with > > > (proposed) > > > set 1 > > > /efi, /boot, /, /usr, /usr/local, /var, swap > > > set 2 > > > /home > > > > > > How do I set up the raid arrays? > > > > They could be easily setup during installation process in the disk > > partitioning step if I recall > > it correctly. See > > https://wiki.debian.org/DebianInstaller/SoftwareRaidRoot > > for more info (just the first part). > > Interesting - - - that wiki is current as of 2012. > That's why I wasn't trusting the information - - - - the newest stuff > I could find was > some 3 or 4 years old and I've found that newer stuff has different > gotchas than > the older versions. > > The assumption is that LLVM is used on top of the array. (from the > wiki) > Is that necessary? > (I've never used LLVM to date!) > > My idea was to partition the disks just like normal after the array > was built. > Is that possible? > I recently rebuilt my principal Devuan instance as a LVM2 on top of a mdadm RAID1 array. Previously I had three mdadm RAID1 arrays md0 (/ root), md1 (/home) and md2 Swap) on the two disks. I now have 1 mdadm RAID array with a LVM physical partition containing a logical volume group with / root /home and swap partitions in it. The advantage of LVM is that I can resize the partitions easily and I can also schedule backups from LVM snapshots, effectively off a consistent version of the live system. I also backed up the original / root and /home partitions and restored then to their new homes. The UUIDs hadn't even changed though obviously their location had (so fstab was OK). I chrooted into the new root to run update-grub and grub-install. Anyway as you can see you can do it either way I did it or you could, as you suggest, just have a normal set of partitions on your new RAID1 disk. NB. When I set up my original layout I did that as a new install using the Devuan installer in expert mode (this was soe years ago), albeit I then found the partitioning stage somewhat confusing as you have to first create identical linux-raid members on the two disks first and then assemble them into a raid array. -- Marjorie ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
Re: [DNG] New build + extras
Hi, On Mon, 2022-05-30 at 17:03 -0500, o1bigtenor via Dng wrote: > Greetings > > I am investing in a new system. > (Ryzen 7 5800X + Ryzen 570 gpu) > > The old system has a raid 10 array that I would like to put into the > new system. > > The new system is going to add 2 M2 drives that I want to set up as > raid 1 > and this is for use for /EFI, /boot, /, /var, /usr and swap. > There are 2 2.5" SDDs that are going to be set up as raid 1 for > /home. > Want to be running Devuan daedalus. > > The idea is to transfer the previously used drives from the old > system > into the new system. > > The question: > is it better to load the system and then add the hard drives > > or > > do I move the drives into the system and then install the system with > the drives at the same time. > > (2 step process or 1 step process.) > I recently updated my CPU to AMD5600G from a 10 year old Phenom II 910 x4.This required a new AM4 B550 motherboard and DDR4 RAM. Initially I just installed these in my existing case, connected up the old SATA drives (2 x 500 SSD GB RAID1 and 2 x 1TB HDD RAID1+LSB) and it booted up fine. Worth checking that your fstab and grub identifies your drives/RAID by UUID or LABEL, rather than /sdX and /MDx, as these can change order when connected to different SATA ports. -- Marjorie ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
Re: [DNG] Priter trouble again.
Hi Hendrick, On Sat, 2022-01-01 at 15:07 -0500, Hendrik Boom wrote: > I installed CUPS a part of the standard istall long ago. > I had no trouble configuring it back the to talk sweet to me printer. > Worked fine. Bu tnow it doesn't. > > The printer seems to hae changed its IP number. > Now I can tell it explicitly what IP numder to use by entering stuff > in its > physical control panel. So all I should have to do is to set its IP > number to > whatever CUPS (now unsuccessfuly) uses to talk to it. > > What I don't know is how to get CUPS to tell me what IP number it > currently thinks > belongs to the printer. > > There should be some simple way of asking CUPS to tell me this. > > -- hendrik I'm unclear if you've got this fixed yet. On my PC I simply load the CUPS webpage (its on localhost:631) and, having selected the printer (by name), it shows its IP on the connection line: Connection:ipp://192.168.1.211/ipp/port1 -- Marjorie ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
Re: [DNG] nvidia-persistenced can't be installed
Hi, On Thu, 2021-12-30 at 15:26 -0500, Haines Brown wrote: > When I try to do an upgrade, I'm told nvidia-persistenced is not > configured. When I reinstall it I get: > > ... > Need to get 0 B of archives. After unpacking 0 B will be used. > Setting up nvidia-persistenced (460.32.03-1) ... > Starting NVIDIA Persistence Daemon > nvidia-persistenced failed to initialize. Check syslog for more > details. > invoke-rc.d: initscript nvidia-persistenced, action "start" failed. > dpkg: error processing package nvidia-persistenced (--configure): > installed nvidia-persistenced package post-installation script > subprocess returned error exit status 1 > Errors were encountered while processing: > nvidia-persistenced > E: Sub-process /usr/bin/dpkg returned an error code (1) > Setting up nvidia-persistenced (460.32.03-1) ... > Starting NVIDIA Persistence Daemon > nvidia-persistenced failed to initialize. Check syslog for more > details. > invoke-rc.d: initscript nvidia-persistenced, action "start" failed. > dpkg: error processing package nvidia-persistenced (--configure): > installed nvidia-persistenced package post-installation script > subprocess returned error exit status 1 > Errors were encountered while processing: > nvidia-persistenced > > I'm runing Chimaera with fluxbox but no desktop environment. I > reinstalled xord and fluxbox. Syslog does not report an error. > > $ lspci -nn | egrep -i "3d|display|vga" > 00:02.0 VGA compatible controller [0300]: Intel Corporation > RocketLake-S GT1 [UHD Graphics 750] [8086:4c8a] (rev 04) > 00:17.0 SATA controller [0106]: Intel Corporation Device [8086:43d2] > (rev 11) > > I ran # apt install -f > > I ran # aptitude reinstall nvidia-persistenced > E: Internal Error, No file name for nvidia-persistenced:amd64 > > Help would be much appreciated. > I had to deal with what may be the same problem on updating from Ascii to Beowulf. The problem I found is caused by the nvidia-persistenced init not checking for an existing running copy of nvidia-persistenced. i) if you don't use CUDA then you can simply get rid of nvidia- persistenced. ii) if you want CUDA then you can patch /etc/init.d/nvidia-persistenced My dev1galaxy forum posts might be of some help: https://dev1galaxy.org/viewtopic.php?pid=20903#p20903 - my fixed version of /etc/init.d/nvidia-persistenced. and https://dev1galaxy.org/viewtopic.php?pid=20917#p20917 - which explains that you can probably also get away with simply removing or disabling nvidia-persistenced as for most use cases it's not needed unless you want to use CUDA. If you can't access these I can send you the patched init. -- Marjorie ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
Re: [DNG] lpr print pdf file landscape orientation
Hi Haines, On Sun, 2021-11-28 at 15:12 -0500, Haines Brown wrote: > I have bsd-lpr. I can print a text file with landscape orientation > with $ lpr -o landscape file.txt > > My problem is that I cannot print pdf files in landscape > orientation. $ lpr -o landscape file.pdf does nothing. > > I don't want to make landscape the default CUPS orientation. > > Atril rotates the display of the PDF, but not the content of the > file in relation to the page when printed. > > The qpdfview utility also can rotate the display of text but > when printed the effect is simply move text up on the page. > > I don't see how poppler-utils can be of help. > > How does one print a PDF with landscape orientattion? > Isn't the page orientation used encoded in the pdf? To change it, other than by shrinking the page down so it fits on the paper in landscape orientation I think you would need to use a pdf editor to reflow the content. If you have a document or image that you are converting to a pdf then if you format the document or image landscape then the exported pdf will also be landscape. -- Marjorie ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
Re: [DNG] Advice sought re: ejabberd
On Sun, 2021-07-18 at 19:08 +0100, Marjorie Roome via Dng wrote: > On Sun, 2021-07-18 at 12:42 -0500, o1bigtenor via Dng wrote: > > On Sun, Jul 18, 2021 at 10:01 AM Antony Stone > > wrote: > > > On Sunday 18 July 2021 at 16:54:25, o1bigtenor via Dng wrote: > > > > > > > # service ejabberd start > > > > [] Starting ejabberd...:root@memyself:/home/opensrf-3.2.1# > > > > service > > > > ejabberd status > > > > [] Getting ejabberd status...:Failed RPC connection to the > > > > node > > > > ejabberd@localhost: nodedown > > > > > > > > Commands to start an ejabberd node: > > > > foreground Start an ejabberd node in server mode (attached) > > > > > > Did you try that one to see whether it gives you any extra > > > information as it's > > > trying to start? > > > > > > > Optional parameters when starting an ejabberd node: > > > > --logs dir Directory for logs: /var/log/ejabberd > > > > > > Have you looked in there for any additional details? > > > > > > > Hadn't even thought of looking there - - - - :-( !! > > # less /var/log/ejabberd/error.log > > 2021-07-18 09:43:36.985 [error] > > <0.82.0>@ejabberd_config:validate_opts:1095 Unknown option 'echo > > /lib > /etc/ld.so.conf.d/opensrf.confwhat' > > 2021-07-18 09:43:36.985 [error] <0.82.0>@ejabberd_config:start:88 > > Failed to load configuration file /etc/ejabberd/ejabberd.yml > > 2021-07-18 09:43:36.985 [critical] <0.82.0>@ejabberd_app:start:70 > > Failed to start ejabberd application: unknown_option > > > > # less /var/log/ejabberd/ejabberd.log > > 2021-07-18 09:43:36.455 [info] <0.82.0>@ejabberd_config:start:69 > > Loading configuration from /etc/ejabberd/ejabberd.yml > > 2021-07-18 09:43:36.985 [error] > > <0.82.0>@ejabberd_config:validate_opts:1095 Unknown option 'echo > > /lib > /etc/ld.so.conf.d/opensrf.confwhat' > > 2021-07-18 09:43:36.985 [error] <0.82.0>@ejabberd_config:start:88 > > Failed to load configuration file /etc/ejabberd/ejabberd.yml > > 2021-07-18 09:43:36.985 [critical] <0.82.0>@ejabberd_app:start:70 > > Failed to start ejabberd application: unknown_option > > > > So these log files are indicating that something is missing from > > the > > configuration file. > > That config file is a '. . . conf.d' file - - - I understand that > > Beowulf really doesn't use 'systemd' files. > > > > So how do I satisfy this lacuna? > > > Looks like the problem is in the (missing?) ejadderd configuration > files. > > There are lots of options. I'd expect the suitable defaults for > Evergreen would be provided by Evergreen. Obviously they aren't. > > For ejabberd you /could/ try looking here: > > https://docs.ejabberd.im/get-started/ > > But unless the Evergreen defaults are really basic you probably need > to search the Evergreen documentation. > > NB. I doubt if the problem is anything to do with systemd. > Had a look at the Evergreen docs - seems to be rather opaque about what is involved in using ejabberd. However the following discussion is about what seems to be the same RPC problem: https://www.ejabberd.im/node/938/index.html At least gives some ideas to try. -- Marjorie ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
Re: [DNG] Advice sought re: ejabberd
On Sun, 2021-07-18 at 12:42 -0500, o1bigtenor via Dng wrote: > On Sun, Jul 18, 2021 at 10:01 AM Antony Stone > wrote: > > On Sunday 18 July 2021 at 16:54:25, o1bigtenor via Dng wrote: > > > > > # service ejabberd start > > > [] Starting ejabberd...:root@memyself:/home/opensrf-3.2.1# > > > service > > > ejabberd status > > > [] Getting ejabberd status...:Failed RPC connection to the > > > node > > > ejabberd@localhost: nodedown > > > > > > Commands to start an ejabberd node: > > > foreground Start an ejabberd node in server mode (attached) > > > > Did you try that one to see whether it gives you any extra > > information as it's > > trying to start? > > > > > Optional parameters when starting an ejabberd node: > > > --logs dir Directory for logs: /var/log/ejabberd > > > > Have you looked in there for any additional details? > > > > Hadn't even thought of looking there - - - - :-( !! > # less /var/log/ejabberd/error.log > 2021-07-18 09:43:36.985 [error] > <0.82.0>@ejabberd_config:validate_opts:1095 Unknown option 'echo > /lib > /etc/ld.so.conf.d/opensrf.confwhat' > 2021-07-18 09:43:36.985 [error] <0.82.0>@ejabberd_config:start:88 > Failed to load configuration file /etc/ejabberd/ejabberd.yml > 2021-07-18 09:43:36.985 [critical] <0.82.0>@ejabberd_app:start:70 > Failed to start ejabberd application: unknown_option > > # less /var/log/ejabberd/ejabberd.log > 2021-07-18 09:43:36.455 [info] <0.82.0>@ejabberd_config:start:69 > Loading configuration from /etc/ejabberd/ejabberd.yml > 2021-07-18 09:43:36.985 [error] > <0.82.0>@ejabberd_config:validate_opts:1095 Unknown option 'echo > /lib > /etc/ld.so.conf.d/opensrf.confwhat' > 2021-07-18 09:43:36.985 [error] <0.82.0>@ejabberd_config:start:88 > Failed to load configuration file /etc/ejabberd/ejabberd.yml > 2021-07-18 09:43:36.985 [critical] <0.82.0>@ejabberd_app:start:70 > Failed to start ejabberd application: unknown_option > > So these log files are indicating that something is missing from the > configuration file. > That config file is a '. . . conf.d' file - - - I understand that > Beowulf really doesn't use 'systemd' files. > > So how do I satisfy this lacuna? > Looks like the problem is in the (missing?) ejadderd configuration files. There are lots of options. I'd expect the suitable defaults for Evergreen would be provided by Evergreen. Obviously they aren't. For ejabberd you /could/ try looking here: https://docs.ejabberd.im/get-started/ But unless the Evergreen defaults are really basic you probably need to search the Evergreen documentation. NB. I doubt if the problem is anything to do with systemd. -- Marjorie ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
Re: [DNG] Advice sought re: ejabberd
Hi o1bigtenor, On Sun, 2021-07-18 at 06:17 -0500, o1bigtenor via Dng wrote: > [snip] > The Evergreen 'system' uses ejabberd as a communication tool and it > would seem to me (new at digging under the hood as it were) that > ejabberd is quite intertwined into this system. > > Ejabberd was installed as part of the install but then in the setup > it is necessary to shut it off. > The install workflow used 'systemctl' etc etc as a control > I used 'service ejabberd stop' which worked but when I wanted to > restart the service the complaints started. > > Is there a simple way to change this reliance on systemd or is this > something better left to someone who does know what they're doing > (not me - - - grin!)? > Firstly what are the complaints? They may be diagnostic of what the problem is. ejabberd /is/ in the Devuan Beowulf repository and looking at the package depends it doesn't require systemd. If 'service ejabberd stop' works then I assume it has an /etc/init.d/ejabberd init file installed and that the stop command is working. Can you check that the init is set up correctly to enable/start it? It could be the LSB header is wrong (it's not unknown with systemd oriented packages even when they install an init). Also check the commands for 'service' in the init file. -- Marjorie ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
Re: [DNG] Refracta have a static IP
On Wed, 2021-07-14 at 18:41 +, g4sra via Dng wrote: > If 'NetworkManager' rears its head.purge with prejudice would be > my advice. > On the other hand it /is/ quite straightforward to set static IPs if you /do/ use Network Manager. All I have in /etc/network/interfaces.d/interfaces is: # The loopback network interface auto lo iface lo inet loopback For my desktop computer, in Network Manager, for my SSID in IPV4 settings: Address: 192.169.1.215 Netmask: 24 Gateway: 192.168.254 Of course your actual machine address and gateway address will vary. I do also assign my network's static IPs and corresponding MAC addresses in my Router's Static ARP table. In general anything fixed at home (desktop, mail server, printer, smart tvs, chromecast, roku, WAP, etc) has a static IP and portable devices (phones, tablets, cameras, etc) has a dynamic IP. -- Marjorie ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
Re: [DNG] ntp setup
On Sat, 2021-06-19 at 09:31 -0500, o1bigtenor via Dng wrote: > Noticed that my new Beowulf install time was not accurate. > > Went looking for a tips page and all I could find was information > relating to using systemd and or its tools to do such. I know there > is a way to do this without systemd - - - - - just - - - its been a > very long time since I've done that. > > Please - - - anyone for a short writeup on how to > install/start/whatever else to ntp without using systemd? I would recommend chrony as a lighter and more accurate and flexible alternative to ntpd. Information about chrony at https://chrony.tuxfamily.org/index.html. I find no references to systemd. Work fine with sysvinit. just (sudo) apt install chrony It works well even if your connection to the internet is intermittent because you regularly turn off or sleep/hibernate your desktop/laptop. -- Marjorie ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
Re: [DNG] Trouble booting Beowulf on an Intel NUC8i5BEK
Hi Erik, On Thu, 2021-03-25 at 17:30 +1030, dva...@internode.on.net wrote: > > Have just taken delivery of an Intel NUC8i5BEK, installed RAM & SSD. > A USB stick with: > $ dd if=~/Downloads/devuan_beowulf_3.0.0_i386_desktop-live.iso > of=/dev/sdb bs=512k looks good mounted on another host, but doesn't > boot in the NUC. > > On power-up or Ctl-Alt-Del, the NUC reads the USB twice (LED on the > stick flashes), but then reports "A bootable device has not been > detected." > > I've gone into the BIOS, and in the Boot Order tab, hit Advanced, > then in Boot Configuration tab set "Boot USB Devices First". F10 to > save. > That gives a Boot Devices list below with a greyed out "Internal UEFI > Shell", > followed by "USB", then the others below that. Looks good, but > returning to the adjacent Boot Priority tab shows: > > UEFI Boot Priority Legacy Boot Priority > > --- > UEFI Boot Legacy Boot > Boot Drive Order Boot Drive Order "No > Boot Drive" > UEFI LAN: PXE IP4 ... > UEFI LAN: PXE IP6 ... > > and the Boot Order tab seen on entry to the BIOS shows the same. > > From that I infer that legacy boot from USB is not a BIOS config > option, and that the Boot Configuration tab setting isn't recognised > in the Boot Priority tab's UEFI column. (At least for display, since > the USB is accessed twice during boot.) > > Can anyone spread a sprinkle of enlightenment on this apparent > impasse? > > Erik > ___ > Dng mailing list > Dng@lists.dyne.org > https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng I have an older, more basic NUC running in legacy mode as my email server, however I think you have the newer AptioV bios. Check here, where you can see the two possible BIOS start pages: https://www.intel.com/content/www/us/en/support/articles/06028/intel-nuc.html Looking in the AptioV Glossary: https://www.intel.com/content/dam/support/us/en/documents/intel-nuc/NUC-AptioV-BIOS-Glossary.pdf I think you need the investigate the 'Boot' tab first. -- Marjorie ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
Re: [DNG] monit logwatch fail2ban
Hi Erich, On Fri, 2021-01-22 at 14:24 +0100, Erich Minderlein via Dng wrote: > Hi > > I have migrated a small home server from debian buster to devuan > beowulf. > It was a new install, but I compared/copied /etc and copied the > server /var/www > It was rather flawless. > However before the package monit was used as intermediate function > beween fail2ban and logwatch. > This is not part of the devuan packages. > Now I miss the section fail2ban in the logwatch daily mail > > Is there an adapted solution to this ? > I'm running Beowulf with Monit and fail2ban and they both work. They /are/ both in the Devuan repositories, and don't depend on systemd, so shouldn't be any different from Debian. I am using fail2ban with nftables, not iptables, though it can be configured to work with either. And I am using the backported version of Monit (1.5.27) as the https interface in 1.5.26 doesn't report bytes written or read. I don't have logwatch. -- Marjorie ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
Re: [DNG] Undead firefox
On Sun, 2020-12-27 at 08:12 -0500, Hendrik Boom wrote: > When I >killall firefox-esr > it often (but not always) immediately respawns, reopening all the > tabs. > > Sometimes I have to killall it three times for it to stay dead. > > Is there anything I can do to fix this? So it dies and doesn't > immediatly respawn, but only when I ask for it to resurrect itself? > Why not just close it using Firefox's own Close option (File>Quit, or Ctrl-Q)? Whether tabs are preserved when you close is an option in Preferences (Edit>Preferences): it's the first option. If you close a Firefox window it also usually asks you if you want to keep its tabs. -- Marjorie ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
Re: [DNG] Anybody successfully worked with an Nvidia GeForce gt 710 with Devuan?
Hi Steve, On Sun, 2020-11-29 at 07:26 -0500, Steve Litt wrote: > Hi all, > > Has anyone successfully worked with an Nvidia GeForce gt 710 with > Devuan? As a bonus, has anyone gotten it to work without Pulseaudio? > Yes, I have a NVIDIA GT710B (GK208) and it's working with the Nvidia driver (418.152.00-1 metapackage) on Beowulf. As I recall it also worked with the nouveau driver when I initially installed it. There /is/ an issue with nvidia-persistenced. If you don't want CUDA then the simplest solution is to remove it. I also have produced a fixed version of /etc/init/nvidia-persistenced that solves the problem. I /do/ have pulseaudio installed, and it sees the included HDMI soundcard, however I've never tried to use it: my monitor doesn't include sound and I use a USB DAC/Class D Amplifier and loudspeakers. -- Marjorie ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
Re: [DNG] Configuring cron and exim4 to send e-mail after running cronjob
On Sat, 2020-11-14 at 16:03 -0800, Marc Shapiro via Dng wrote: > I use Thunderbird for e-mail, so I have never bothered with > configuring an MTA. > > I have a few lines in root's crontab to do periodic backups and I > would > like to receive an e-mail when the job is completed. I have added a > MAILTO line to my crontab with my gmail address. The job runs, the > backup is created, but I do not receive any e-mail from cron. I am > assuming that I need to run dpkg-reconfigure on exim4-config, but I > don't want to mess up my e-mail that is going through Thunderbird. > > Can anyone tell me how to configure exim4-config to do this, or > provide a link that will rpovide this information? > If this is a cron job running on your local machine then rather than having to fully comnfigure your MTA to send acceptable emails to gmail (i.e. static ip, spf, dkim, etcetera) it would be simpler to enable local delivery to your local email account. You can then just read this by setting up an account in Thunderbird (it's a mbox file so use the spool option) and it will remain segregated from your gmail. Rather than redirect the cron mail output I just let root user jobs go to the default root account and alias that to my local email account (using /etc/aliases and the newalliases command). This will then also pick up any other root jobs that generate emails (in my case unattended-upgrades of security updates, and failed logins). -- Marjorie ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
Re: [DNG] Crontab depends on Anachron which is not installed by default?
On Sat, 2020-10-10 at 16:35 +0100, g4sra via Dng wrote: > If anacron is installed, it will check for any outstanding jobs at > boot and run them. > [snip] > Laptops are subject to power management settings which may also stop > anacron from running. > If you use sleep or hibernate these can cause issues for anacron and the jobs that it schedules (whether on a laptop or desktop,on a server that runs continuously you wouldn't use anacron). If you use pm-utils (pm-hibernate, etc). you can stop/start anacron when you sleep/wake the PC. I hibernate mine overnight, rather than shut it down. When I wake it the following day it will then runs anacron. Anacron updates itself to the current day and then starts the jobs in etc/cron.daily and when appropriate etc/cron.weekly and /etc/cron/monthly. If I don't enable this and the default run time for anacron is when I'm sleeping e.g. 05:30 then it will never execute. Obviously once you'vwe woken it you then need to have the machine stay awake until the jobs have run. To get pm-utils to do this create file /usr/lib/pm-utils/95anacron, with content: #!/bin/sh # This script makes anacron jobs stop/start when a workstation # enters/exits a suspended/hibernated state. # case $1 in resume|thaw) /usr/sbin/invoke-rc.d anacron start >/dev/null ;; suspend|hibernate) /usr/sbin/invoke-rc.d anacron stop >/dev/null ;; esac -- Marjorie ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
Re: [DNG] ..devuan to the rescue? Easiest possible newbie email server setup, ideas?
On Thu, 2020-09-24 at 17:32 +0100, Mark Rousell wrote: > On 24/09/2020 13:43, Jim Jackson wrote: > > > > > Mostly. Somemail servers do a reverse IP lookup and see if it > > matches your envelope From domain. > > > > Yes, this is an annoyance. There are two ways round this: (1) > Change your server's SMTP From domain to be the same as your > static IP's PTR hostname, and (2) ask your ISP to change the > reverse DNS to be the name of your mail server. > Option 1 is a bit embarrassing if anyone notices (e.g. > "host-46462.static.bugtown.myisp.net" isn't too cool as the > name > of your mail server) but I don't see any technical downside, > although DMARC might perhaps be an issue nowadays. > I can confirm that I done option 2 in the past to good effect (on > Eclipse Internet in case anyone cares) but I've not tried to do > it > more recently. I suspect that some ISPs might be a bit choosy > about this nowadays just in case you're a spammer. > > > Jim. It's not an annoyance. I think it's good practice.I also end up rejecting a lot of spam because it lacks a reverse hostname (it's easily the largest category).So it's not just a few such as ntlworld and gmx that check this. Option 2 works for me too. I'm with Zen Internet in the UK. -- Marjorie ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
Re: [DNG] ..devuan to the rescue? Easiest possible newbie email server setup, ideas?
Hi Arnt, On Sat, 2020-09-19 at 23:55 +0200, Arnt Karlsen wrote: > ..devuan to the rescue? Norwegian ISP "Get" is ditching their email > service and pointing their clients to a paid service, which again is > pointing them to Gmail's ad laden services, drawing due scorn. [1] > > > ..since we can do better, I'm thinking "Devuan Email Server Flavor" > sort of distro to put on an old pc or a Raspberry Pi, with all email > on local storage like I've done since the mid 1990ies. Which is > part of my problem: While Claws Mail is neat and easy, Fetchmail > and Procmail are _far_ from newbie friendly. > > ..expect the Get clientele to be total newbies, who may be capable > of entering their own email account data into a web browser > interface from their Wintendo, so our new email server flavor needs > to be kept as stupid simple as possible to setup and use. > > ..limit it to a pop3 and imap client and an imap server with local > storage? The big thing is control over your own email, on your own > hardware, in your own home. > Back in April I created a local email server based on Devuan Beowulf for my family. Previously we had one running on Linode under Ubuntu 14.4 (now eol) with postfix and courier-imap that had been set-up by my (adult) son many years earlier and largely just left to run. Early this year a spammer discovered an authentication 'hole' and we ended up relaying spam. Initially I fixed that, and added spam filtering with Spamassassin along with SPF, DKIM (Opendkim) and DMARC to recover our rep. As the Ubuntu was eol and I wanted to avoid systemd I replaced it with a new Devuan mailserver on a 6W, Intel NUC5CPYH with 4Gb RAM and and a 125GB SSD. My new server is on my home network which has a fixed IP. The configuration follows that in this guide: https://workaround.org/ispmail/buster/ which is for Buster but easilyadapted to Beowulf. The software stack is Postfix, Mariadb (for virtual users DB), Apache2 (for letsencrypt renewals), Dovecot (for auth, sieve and DKIM), Rspamd (for spam filtering including Bayes), fail2ban (for persistent spammer IP blocking) and dnscrypt-proxy (for dns). I also added Monit as my supervision daemon. The guide includes Roundcube (for webmail) and ClamAv (for malware filtering) but I didn't implement these. I do use imap for my users, who use MUAs Evolution (Devuan), Thunderbird (Windows, iMac), K9mail (Android), Spark (iPad, IPhone). The guide explains how to autoconfigure the imap settings. Other changes include: 1) a more restrictive postfix main.cf than in the guide, so less spam gets through to rspamd: postfix rejected about 37% of emails last month, rspamd about 7% with another 5% going to to users spam folders and is thus reviewable by them. The main reason for postfix to reject an email outright is no SPF. 2) use of the backport version of rspamd (2.5 - so the graphical interface works out of the box) and 3) use of a couple of scripts to incrementally backup up the vmail partition each day and to snapshot the root partition monthly. With my use case the 2 cpu are only very lightly loaded and I'm typically only using 20% of the RAM so I could have got away with less beefy cpu and RAM hardware. I decided against a Raspberry Pi as I preferred to mirror the known AMD64 set-up I use on my own desktop machine. -- Marjorie ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
Re: [DNG] Zoom? Rather not...
On Thu, 2020-08-06 at 01:00 +0200, marc...@welz.org.za wrote: > The concern about using any gratis commercial videoconferencing > service is that quite a bit of biometric information can be > collected from you - in particular your voice and your face. > Your personal files are just a bonus. > > Recall a while ago some company called clearview.ai made the > news - given a picture of a person it finds all the other > photos of that person online, and does a good job of it too. > > Any videoconferencing service is remarkably well positioned to > generate an excellent facial model of you - given that there > is a bit of motion and much data of you staring at the camera, > a high-quality 3D model of your face can be constructed easily. > Zoom is introducing optional end-to-end encryption which would avoid this, after protest for free accounts as well as paid accounts, though free accounts would also need to verify themselves by providing a contactable phone number. The reason they say it can't be automatic is that it wont be available for dial-in phones, SIP/H.323 devices, web browsers, Zoom webinars, and Zoom chat. This seems more of a potential interception threat to some commercial uses (since some conference room facilities currently use dial-in for sound) if you can't then access end-to-end encryption. You also have to decide to enable it on a per session basis. Has anyone checked what their current TOC/EULA says about use of the images/sounds they can intercept on their servers? -- Marjorie ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
Re: [DNG] Zoom?
On Wed, 2020-08-05 at 15:39 -0400, Haines Brown wrote: > I've installed the .deb file on my bewowulf 3 deskotop. It seems > like it would work. I'll give it try next time ther is a zoom > meeting. > If you go into settings you should be able to see if zoom is connecting to your webcam (see yourself), speakers (test sound) and microphone (volume meter). -- Marjorie ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
Re: [DNG] Zoom?
On Wed, 2020-08-05 at 15:39 -0400, Haines Brown wrote: > > I've installed the .deb file on my bewowulf 3 deskotop. It seems > like it would work. I'll give it try next time ther is a zoom > meeting. > > Incidenttally is there a public site that one can use to test zoom? > > I gave up trying to install zoom in on an old ASCII machine > because all the dependencies. > I have it working on my (also very old!) Beowulf desktop. If you boot it up **and you have created a free account** you should be able to check that your webcam is working (just choose 'New Meeting'). You could then join a meeting with yourself using another device (phone/tablet/another computer) to check out the two-way comms and the microphone and headphones/speaker. -- Marjorie ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
Re: [DNG] my experience upgrading to NFT
On Mon, 2020-08-03 at 13:26 +0200, Tito via Dng wrote:
> did you try update-alternatives to set iptables to iptables-legacy
> behaviour. Arno-iptables-firewall and xtables-addons-dkms from
> testing work for me that way.
>
The first machine I updated to Beowulf from Ascii was a clean install
(but with a /home partition taken from Ascii) and it came with the
iptables translation layer installed, so iptables worked 'out of the
box'.
If you check there are symlinks that do this:
/usr/sbin/iptables -> etc/alternatives/iptables
/etc/alternatives/iptables -> /usr/sbin/iptables-nft
/usr/sbin/iptables-nft -> /usr/sbin/xtables-nft-multi
See the XTABLES-NFT(8) manpage:
https://manpages.debian.org/testing/iptables/xtables-nft.8.en.html
You can check if you are using nft behind iptables by typing:
$sudo iptables -V
iptables v1.8.2 (nf_tables)
In Beowulf (with a clean install) you are.
The second machine I built as a mail+ntp+dns server and was also a
clean install, however with this one I jumped in and installed the
nftables .deb (with the described hack to the
/etc/init.d/nftables),enabled and started it having configured it in
/etc/nftables.conf.
The iptables translation sym links are still there but iptables wasn't
configured or used.
Configuring nftables is pretty uncomplicated if your firewall is.
Mine looks like this:
/etc/nftables.conf
##!/usr/sbin/nft -f
flush ruleset
table inet filter {
chain input {
type filter hook input priority 0; policy drop;
iifname lo accept
ct state established,related accept
tcp dport ssh ct state new accept
tcp dport http ct state new accept
tcp dport https ct state new accept
tcp dport imap2 ct state new accept
tcp dport imaps ct state new accept
tcp dport pop3 ct state new accept
tcp dport pop3s ct state new accept
tcp dport submission ct state new accept
tcp dport smtp ct state new accept
udp dport ntp ct state new accept
tcp dport 53 ct state new accept
udp dport 53 ct state new accept
# ICMP: errors, pings
ip protocol icmp icmp type { echo-request, echo-reply,
destination-unreachable, time-exceeded, parameter-problem, router-
solicitation, router-advertisement } accept
# ICMPv6: errors, pings, routing
ip6 nexthdr icmpv6 counter accept comment "accept all ICMP types"
# Reject other packets
ip protocol tcp reject with tcp reset
}
}
include "/etc/nftables/fail2ban.conf"
--
Marjorie
___
Dng mailing list
Dng@lists.dyne.org
https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
Re: [DNG] my experience upgrading to NFT
On Fri, 2020-07-31 at 18:44 -0700, Thomas Groman via Dng wrote: > I upgraded one of my larger and more complex servers from ASCII to > Beowulf. Switching to NFT was very easy after the upgrade. Just > create the rules, (have flush have the beginning), remove the > iptables if-pre-up hook if you made one, copy the example init script > from /usr/share/doc/nftables/example, set it executable, and rc- > update add nftables default. then openrc to bring the system to the > new defined default runlevel > While it clearly worked for you with openrc it is broken on sysvinit as the example /usr/share/doc/nftables/examples/sysvinit/nftables.init has this: # Default-Start: # Default-Stop: 0 1 2 3 4 5 6 in the LSB header, not the required: # Default-Start:S # Default-Stop: 0 1 6 On 2020-08-02 17:00, Hendrik Boom wrote: > What is NFT? > It stands for Net Filter Tables. It handles more than iptables (also ip6tables, arptables and ebtables) and it's been developed by the Net Filter team, hence the name. The binary is also nft. It is obviously coming in very slowly (it's been around for at least 5 years). And users are still translating it back to iptables syntax using iptables-legacy. Beowulf still installs with iptables. Buster uses nftables. Firewalld can use nftables as a backend. UFW can't. -- Marjorie ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
Re: [DNG] kernel instability 4.9.0-12 with latest update
Hi, On 2 March I upgraded my ASCI kernel image from 4.9.0-6-amd64 from 4.9.0-12-amd64. I've not noticed any problems but I've not been running anything CPU intensive. My processor is a AMD Phenon II X4 910e. What I did note is that when I did the upgrade it also brought in modules firmware-linux-free (3.4) and irqbalance (1.1.0-2.3). Could the problem be in irqbalance (1.1.0-2.3)? I upgraded from 4.9.0- 6-amd64 so I can't say if this version is new since 4.9.0-11-amd64? "Irqbalance is a daemon that monitors the cpu load created by various interrupt sources and attempts to distribute that load over the available cpus in your system in an attempt to better balance system latency and throughput." -- Marjorie Roome --- On Wed, 2020-03-18 at 08:58 -0600, Gabe Stanton via Dng wrote: > It happened again this morning after running the cpu heavy miner for > about 14 hours. I don't recall it ever happening when I wasn't > running > that program, and having it happen now reaffirms for me that is the > cause on my machine. Prior to the beowulf upgrade I had it running > pretty much all the time for a few months without issue. > > On Tue, 2020-03-17 at 14:26 -0400, Hendrik Boom wrote: > > On Tue, Mar 17, 2020 at 09:39:21AM -0600, Gabe Stanton via Dng > > wrote: > > > One more thing, I'm actually on kernel version 4.19.0.8, but > > > again, this issue started when I upgraded to beowulf. > > > > I've been on beowulf for months now, doing the usual upgrades > > every few weeks, but only started experiencing > > freezes in the past week or two. I don't know what causes them. > > > > hendrik@midwinter:~$ uname -a > > Linux midwinter 4.9.0-6-amd64 #1 SMP Debian 4.9.88-1+deb9u1 (2018- > > 05- > > 07) x86_64 GNU/Linux > > hendrik@midwinter:~$ > > > > -- hendrik > > > > > On Tue, 2020-03-17 at 09:34 -0600, Gabe Stanton via Dng wrote: > > > > I've had problems with my machine freezing as well, same > > > > symptoms, > > > > ever > > > > since upgrading to beowulf. The issue for me seems to happen > > > > when > > > > I > > > > run > > > > a cpu/ram heavy program, specifically a cpu cryptominer. I've > > > > had > > > > it > > > > happen a number of times, always when mining with max 2 cores, > > > > but > > > > haven't dedicated the time to report it properly. I did look > > > > through > > > > various logs in /var/logs but I didn't see anything seemed > > > > relevant > > > > to > > > > the problem. > > > > > > > > I'll try to reproduce it today and send any relevant logs. > > > > > > > > What logs specifically would be relevant to this issue? > > > > > > > > Something relevant to the spectre/meltdown mitigations, I have > > > > multithreading turned off in the bios and have had since the > > > > vuln's > > > > were revealed. > > > > > > > > Also, 64 bit intel cpu here as well. > > > > > > > > On Tue, 2020-03-17 at 03:17 +, tuxd3v wrote: > > > > > Hello Riccardo, > > > > > > > > > > > On Sat, 7 Mar 2020 12:19:52 +0100 > > > > > > Riccardo Mottola via Dng >wrote: > > > > > > Hi, > > > > > > > > > > > > > > > > > > I am using Devuan on an HP laptop with intel 64bit cpu. > > > > > > Everything > > > > > > worked very well, I did a lot of compilation and it is very > > > > > > stable, > > > > > > never had a freeze in months! > > > > > > > > > > > > [0.10] smpboot: CPU0: Intel(R) Core(TM)2 CPU > > > > > > T7200 @ > > > > > > 2.00GHz > > > > > > (family: 0x6, model: 0xf, stepping: 0x6) > > > > > > [0.10] Performance Events: PEBS fmt0-, Core2 > > > > > > events, > > > > > > Intel > > > > > > PMU > > > > > > driver. > > > > > > [0.10] core: PEBS disabled due to CPU errata > > > > > > > > > > > > Yesterday I installed a kernel upgrade, bad things happened > > > > > > > > > > > > 1) after the first reboot with the new kernel, I get up to > > > > > > my > > > > > > desktop, > > > > > > check out sources ad start building Arctic Fox browser, > > > > > > come > > > > > > back > > > > > > after > > > > > > a time and find the machine completely frozen - no disk > > > > > > activity, > > > > > > no > > > > > > mouse possible, no errors. No response to power button > > > > > > pressed > > > > > > (had > > > > > > to > > > > > > press 5 seconds) > > > > > > > > > > > > 2) at reboot, machine freezes quite early in the boot > > > > > > process > > > > > > > > > > > > 3) I retry and it still freezes > > > > > > > > > > > > > > > > > > I tried selecting in GRUB the older kernel and it boots. It > > > > > > goes > > > > > > past > > > > > > the last error, starts file system check/journal replay and > > > > > > the > > > > > > machine > > > > > > seems stable again. > > > > > > > > > > > > > > > > > > This is the last good kernel version: > > > > > > > > > > > > 4.9.0-11-amd64 #1 SMP Debian 4.9.189-3+deb9u2 (2019-11-11) > > > > > > x86_64 > > > > > > GNU/Linux > > > > > > > > > > > > > > > > > > the
