Re: [gentoo-user] gentoo package source CD available?
hiren joshi schrieb: Hello, Want to swith to gentoo, but - no internet connection and - still want to compile the source for my specific architecture/processor to make my system speedy Are there CD/DVDs available that contains sources (burn to CD/DVD at a point of time) of all the gentoo packages? If yes, pls point me to a link about how can I install gentoo using these CD/DVDs. If not, any other method to achieve this? Thanks for your time. -hiren Hi Hiren, there is some information about this in the handbook [1]. There even is a special handbook for installation without internet [2]. Double check this but I am nearly sure there is no DVD / BlueRay with all the packages available from gentoo. This has two reasons. First: As far as I know this would be more than 80 gb by now. Second an more important: they change every day. kh [1]http://www.gentoo.org/doc/en/handbook/handbook-x86.xml?part=1chap=2#doc_chap2 [2]http://www.gentoo.org/doc/en/handbook/2008.0/index.xml
Re: [gentoo-user] Curious pattern in log files from ssh...
Alan McKinnon wrote: On Thursday 04 December 2008 21:03:17 Christian Franke wrote: I just don't see what blocking ssh-bruteforce attempts should be good for, at least on a server where few _users_ are active. Two reasons: a. Maybe, just maybe, you overlooked something. Belts, braces and a drawstring for good measure is not a bad thing. b. You probably want to get all that crap out of your log files off into some other place where you can cope with it. Parsing auth log files that are 95% brute force attempts is no fun. I like to have the crap in place A and the real stuff in place B, makes my job so much easier I agree 100% with the above - another issue is that I'd like to block all traffic from malicious hosts - I realise that the traffic is low at the moment, but that need not be the case in future. Also, things like fail2ban add new attack-possibilities to a system, I remember the old DoS for fail2ban, resulting from a wrong regex in log file parsing, but I think at least this is fixed now. Whereas that is true enough in itself, the actual risk of such is rather low in comparison to the gains. Hence it is not a valid reason to not use fail2ban and such-like apps. The issue for me is that the cost of a DOS is far, far lower than the cost of a break-in. The cost of a DOS that prevents access from new hosts is orders of magnitude lower than the cost of a DOS. Everyone's risk profiles are different - but, for me, keeping out intruders is critical (they may result in unrecoverable data loss) and my accessibility objective is that it be the 'norm' that I can log in with an unusual-username and complex password from a trustworthy PC whose IP address can not be determined in advance... using only bog-standard tools and no non-remembered personal data. I'm coming around to the idea of port-knocking, but my gut instinct is that it is a bit baroque and has potential for me to louse-up its implementation... It definitely adversely affects usability - though, I admit, less than I first suspected. I'm still quite interested in the idea of identifying botnets where used to subvert the tactics used by fail2ban; blacklist.py, etc. and using these to, in turn, block access to any service... including, for example, hosted web-services which are, potentially, in spite of taking all the obvious precautions, more vulnerable to attack - IMHO. I'm definitely thinking that it would be a good idea if there were a way to publish botnet lists... such that they could be collated and turned into a DNSBL style resource. If such a resource existed, I'd definitely chose to use it (overridden by a few whitelist entries of my own - just-in-case...) and I'd be very happy to report back to it in order to help keeping this problem under control. Incidentally, I'd also consider it useful to monitor this block list for any occurrence of my own IP address - since that would be an early indication that one of my hosts may be compromised.
Re: [gentoo-user] confusing depclean output
Michael P. Soulier wrote: On 04/12/08 Dale said: Yep, I had to add that option to mine a while back for --depclean to work. Add that and it should run cleanly afterwards. You could also --oneshot those in the list and it should work. I haven't tried that yet but read it works. The docs on this seem wrong. --with-bdeps y | n In dependency calculations, pull in build time dependencies that are not strictly required. This defaults to 'n' for installa- tion actions and 'y' for the --depclean action. This setting can be added to EMERGE_DEFAULT_OPTS (see make.conf(5)) and later overridden via the command line. But it doesn't seem to default to y for --depclean. I get completely different results when I set --with-bdeps=y on --depclean. Mike Try this command: emerge --update --newuse --deep --with-bdeps y world When that is done, then try the --depclean, with a -p first. ;-) Dale :-) :-)
Re: [gentoo-user] ssmtp att woes
On 5 Dec 2008, at 03:12, John Blinka wrote: ... I've run out of patience with this and am now relaying my mail to smtp.gmail.com via ssmtp. That worked immediately without any of the att pain. ... That will always change your from: email address to your @gmail one. If you own my.cool.domain.com then you can't send email with a from: address within that domain. ... Thanks for this suggestion. I tried nullmailer, and it is, indeed, easier to set up. And I think it worked, too, but then I ran afoul of a 553 error in tt/yahoo's smtp server - something about an unverified alternate email address. I'm guessing that nullmailer worked, but that att/yahoo have some additional layer of requirements for a working smtp connection. BT in the UK do this with Yahoo!, too. You have to login to the Yahoo! webmail for the account, go into options (I think it's under other accounts) and add your other email addresses. You'll be able to use them as your from: addresses with the Yahoo SMTP server once you've clicked on the links in the emails they send you. Stroller.
Re: [gentoo-user] Re: [OT] Other repositories
On Friday 5 December 2008, 02:05, Harry Putnam wrote: If by other repositories you mean overlays, see this: http://www.gentoo.org/proj/en/overlays/userguide.xml I see yes, but how do you tell what the member overlays are about? Those with names like `Apache' `perl' `VMware' etc are obvious enough but what about things like `Sunrise Gentoo User Overlay' or the ones just named after developers? layman -L just shows the source address. http://overlays.gentoo.org/ Shows little more Is there no handy way to get an idea what you might encounter in the different overlays? There doesn't seem to be any descriptions anywhere. http://overlays.gentoo.org/ Select the overlay from the list on the left, then choose browse source, and you can get an idea of what there's inside. For the sunrise overlay, here is the list you're probably looking for: http://overlays.gentoo.org/proj/sunrise/browser/sunrise
Re: [gentoo-user] gentoo package source CD available?
On 5 Dec 2008, at 05:56, hiren joshi wrote: ... - no internet connection and - still want to compile the source for my specific architecture/processor to make my system speedy Are there CD/DVDs available that contains sources (burn to CD/DVD at a point of time) of all the gentoo packages? If yes, pls point me to a link about how can I install gentoo using these CD/DVDs. If not, any other method to achieve this? Best thing to do is burn the stage CD and also a copy of the Portage Daily Snapshot [1]. Boot from it the stage 1 on your Internetless machine, and instead of syncing unpack the snapshot into /usr/portage. When you get to the `emerge world` part (or any `emerge` part) of the installation instructions, substitute with `emerge -pvf textfile.txt`. Then take textfile.txt to a connected machine use wget to fetch all the packages listed in it. Copy those onto a CD then into /usr/portage/ distfiles/ This is a bit time-consuming, especially as you probably won't initially be aware of all the packages you need, but it's well- documented and it's pretty much the only way to install packages under Gentoo. Compiling from source probably won't make any significant difference to the speed of your machine, especially stage 1 vs stage 3 - stage 1 will probably just make the installation more complex and result in more sneakernet trips between the connected disconnected machines. Stroller. [1] http://distro.ibiblio.org/pub/linux/distributions/gentoo/snapshots/portage-latest.tar.bz2
Re: [gentoo-user] ssmtp att woes
On Fri, Dec 5, 2008 at 7:36 AM, Stroller [EMAIL PROTECTED]wrote: On 5 Dec 2008, at 03:12, John Blinka wrote: ... I've run out of patience with this and am now relaying my mail to smtp.gmail.com via ssmtp. That worked immediately without any of the att pain. ... That will always change your from: email address to your @gmail one. If you own my.cool.domain.com then you can't send email with a from: address within that domain. That's what I want to happen, so it's fine. BT in the UK do this with Yahoo!, too. You have to login to the Yahoo! webmail for the account, go into options (I think it's under other accounts) and add your other email addresses. You'll be able to use them as your from: addresses with the Yahoo SMTP server once you've clicked on the links in the emails they send you. ATT's yahoo interface has an options menu, and I've explored it extensively, but I haven't found such a place to add from addresses. Mysteriously (to me at least), once I gave up on ATT's smtp server and set my system up to relay through gmail, my nightly amanda jobs successfully sent their email reports to my att.netemail account. (I'd forgotten to change the email reporting address from att.net to gmail.com in my amanda.conf files.) So, I guess att/yahoo regard gmail as a legitimate source of email. John
Re: [gentoo-user] Re: Buying a low-cost printer for Linux
On Thursday 04 December 2008 20:41:18 Grant Edwards wrote: I've had an HP LaserJet 1200 for about 4-5 years now. I only print once or twice a month, and I've never had a single problem. It's still on the original toner cartridge, and I don't think I've even got through an entire ream of paper yet. It does Postscript, and there's a .ppd file for it, so it just works with CUPS. It gets pretty hot/humid in the summer and pretty cold/dry in the winter, and it doesn't seem to affect the printer. It doesn't do color, but I write all my code in black and white anyway... And my Kyocera FS1020D is similarly lightly loaded with no ill effects. Comes with its own .ppd file and does double-sided out of the box. Best printer I've had for years. -- Rgds Peter
Re: [gentoo-user] Re: [OT] Other repositories
On Friday 05 December 2008 01:05:55 Harry Putnam wrote: Is there no handy way to get an idea what you might encounter in the different overlays? There doesn't seem to be any descriptions anywhere. Didn't someone mention update-eix-remote recently? -- Rgds Peter
Re: [gentoo-user] Curious pattern in log files from ssh...
Adam Carter пишет: Also take a note that there are no known-compromised hosts What about hosts listed in RBLs? http://en.wikipedia.org/wiki/Comparison_of_DNS_blacklists. It would be interesting to see if how much correlation there is between ssh brute forcing bots and the contents of the various lists. It's just interesting. But I don't trust them enough. I don't know how these lists were composed. We've periodically seen viruses outbreaks, some computers IPs could get into lists because of trojans and so on. One day you won't reach your server from your own home computer... because ANY IP can be forged. Its easy enough to forge a SYN, but to setup a session so you can make a password guessing attempt requires that you also get the packets back from the server, which is an order of magnitude more difficult. Ever since OSes have implemented well chosen initial sequence numbers, spoofing of TCP sessions has become very difficult. I agree but as admin I prefer to think about many things worse than they really are. If something wrong is possible it's better to avoid it beforehand. Best regards, Evgeniy B. smime.p7s Description: S/MIME Cryptographic Signature
[gentoo-user] subversion ebuild problem
I'm using layman to pull in the je_fro overlay and I'm getting this: Unpacking source... * subversion switch start -- * old repository: http://svn.madwifi.org/madwifi/[EMAIL PROTECTED] * new repository: http://svn.madwifi-project.org/madwifi/trunk svn: 'http://svn.madwifi.org/madwifi/trunk' is not the same repository as 'http://svn.madwifi-project.org' * * ERROR: net-wireless/madwifi-ng-svn- failed. Is there anything I can do about this or does the ebuild need to be fixed? Does anyone know how to contact je_fro? - Grant
Re: [gentoo-user] subversion ebuild problem
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Grant wrote: I'm using layman to pull in the je_fro overlay and I'm getting this: Unpacking source... * subversion switch start -- * old repository: http://svn.madwifi.org/madwifi/[EMAIL PROTECTED] * new repository: http://svn.madwifi-project.org/madwifi/trunk svn: 'http://svn.madwifi.org/madwifi/trunk' is not the same repository as 'http://svn.madwifi-project.org' * * ERROR: net-wireless/madwifi-ng-svn- failed. Is there anything I can do about this or does the ebuild need to be fixed? Does anyone know how to contact je_fro? - Grant Hi, try removing the old working copy from /usr/portage/distfiles/svn-src -BEGIN PGP SIGNATURE- Version: GnuPG v2.0.9 (Darwin) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iEYEARECAAYFAkk5TdcACgkQ6pa1H/H5pqWYlgCfU5nYJBvhRxJp/KOVWEB5uiQC EacAn3YAIIDiIX6FFxEn2Uv299WLWU3g =ky38 -END PGP SIGNATURE-
[gentoo-user] Re: Buying a low-cost printer for Linux
On 2008-12-05, Peter Humphrey [EMAIL PROTECTED] wrote: I've had an HP LaserJet 1200 for about 4-5 years now. I only print once or twice a month, and I've never had a single problem. It's still on the original toner cartridge, and I don't think I've even got through an entire ream of paper yet. [...] And my Kyocera FS1020D is similarly lightly loaded with no ill effects. Comes with its own .ppd file and does double-sided out of the box. Best printer I've had for years. I forgot to mention that before the LaserJet, I had a B/W Canon bubble-jet. It too was only used once or twice a month, and I don't think I ever got more than a few pages per ink cartridge using the Canon. The cartridges would clog up and stop working while still 99% full. -- Grant Edwards grante Yow! Well, I'm INVISIBLE at AGAIN ... I might as well visi.compay a visit to the LADIES ROOM ...
Re: [gentoo-user] subversion ebuild problem
I'm using layman to pull in the je_fro overlay and I'm getting this: Unpacking source... * subversion switch start -- * old repository: http://svn.madwifi.org/madwifi/[EMAIL PROTECTED] * new repository: http://svn.madwifi-project.org/madwifi/trunk svn: 'http://svn.madwifi.org/madwifi/trunk' is not the same repository as 'http://svn.madwifi-project.org' * * ERROR: net-wireless/madwifi-ng-svn- failed. Is there anything I can do about this or does the ebuild need to be fixed? Does anyone know how to contact je_fro? - Grant Hi, try removing the old working copy from /usr/portage/distfiles/svn-src That fixed it, thank you very much. - Grant
Re: [gentoo-user] checksumming files
On Thursday 04 December 2008, Heinrichs, Dirk (EXT-Capgemini - DE/Dusseldorf) wrote: Did you make sure the chunks are transfered in binary mode? Aha!! Since the split chunks were part of a video file I assumed that it would be binary - and I understand that the default type (for tnftp) is binary? There's more to it: I use tnftp because it has an unattended feature which suits me nicely. A string like: sleep 90m ; tnftp -u ftp://username:passwd@server_address/htdocs/path \ files_to_upload will login after 90 minutes and upload the file(s) I want (not sure if/how I can do this with vanilla ftp). BTW, most modern FTP clients have a resume option, so there's no need to split. Yes, tnftp has the 'reget' command but I can't find a 'reput', or 'resume'? It also has 'restart': == restart marker Restart the immediately following get or put at the indicated marker. On UNIX systems, marker is usually a byte offset into the file. == but I am not sure how this works exactly. Would anyone be clued up on the intricacies of tnftp? Anything else I could try? -- Regards, Mick signature.asc Description: This is a digitally signed message part.
[gentoo-user] modules in use
How can I tell which modules of those listed by `lsmod' are actually being used? In the situation during an install when the livecd has loaded every module known to man... how can I tell which are actually being use for my hardware? The network is easy enough since only one is loaded but there must be 30 sound related modules loaded. Further... this is a vmware with gentoo as guest being installed. It shows a SVGA driven display during boot. I can't tell if any of the many modules loaded are related to that. The newest kernel doesn't appear to have a choice related to SVGA.
Re: [gentoo-user] checksumming files
On Thu, Dec 4, 2008 at 1:10 AM, Mick [EMAIL PROTECTED] wrote: Almost every time I split a large file 1G into say 200k chunks, then ftp it to a server and then: cat 1 2 3 4 5 6 7 completefile ; md5sum -c completefile if fails. Checking the split files in turn I often find 1 or two chunks that fail on their own md5 checks. Despite that the concatenated file often works (e.g. if it is a video file it'll play alright). Can you explain this? Should I be using a different check to verify the integrity of the ftp'd file? Obviously something is going wrong... without knowing why that, I suggest you emerge par2cmdline and use it to create some recovery blocks. That way you can repair/reassemble the pieces when they get to the other side.
Re: [gentoo-user] modules in use
On Fri, Dec 5, 2008 at 1:55 PM, Harry Putnam [EMAIL PROTECTED] wrote: How can I tell which modules of those listed by `lsmod' are actually being used? cat /proc/modules and look for the third column. If there is a 0, it means that module is not currently in use.
Re: [gentoo-user] checksumming files
On Thu, 2008-12-04 at 07:10 +, Mick wrote: Almost every time I split a large file 1G into say 200k chunks, then ftp it to a server and then: That's thousands of files! Have you gone mad?! cat 1 2 3 4 5 6 7 completefile ; md5sum -c completefile if fails. Checking the split files in turn I often find 1 or two chunks that fail on their own md5 checks. Despite that the concatenated file often works (e.g. if it is a video file it'll play alright). Let me understand this. Are [1..7] the split files or the checksums of the split files? If the former then 'md5sum -c completefile' will fail with no properly formatted MD5 checksum lines found or similar due to the fact that completefile is not a list of checksums. If the latter, then how are you generating [1..7]? If you are using the split(1) command to split the files and are not passing at least -a 3 to it then your file is going to be truncated do to the fact that the suffix length is too small to accommodate the thousands of files needed to split a 1GB+ file into 200k chunks. You should get an error like split: Output file suffixes exhausted. Maybe if you give the exact commands used I might understand this better. I have a feeling that this is not the most efficient method of file transfer.
Re: [gentoo-user] modules in use
* Harry Putnam ([EMAIL PROTECTED]) [05.12.08 20:56]: How can I tell which modules of those listed by `lsmod' are actually being used? The third column of lsmod is headed with Used by and consists of a number and a list of modules which use it. Everything with a 0 is not used. HTH Sebastian -- Religion ist das Opium des Volkes. Karl Marx [EMAIL PROTECTED]@N GÜNTHER mailto:[EMAIL PROTECTED] pgpQsA17Pk4oZ.pgp Description: PGP signature
Re: [gentoo-user] modules in use
On Fri, 5 Dec 2008 22:32:23 +0100, Sebastian Günther wrote: The third column of lsmod is headed with Used by and consists of a number and a list of modules which use it. Everything with a 0 is not used. Not true. Anything with a 0 is not used by another module. That's not the same as not used. -- Neil Bothwick Top Oxymorons Number 34: Silent scream signature.asc Description: PGP signature
[gentoo-user] Re: modules in use
Neil Bothwick wrote: On Fri, 5 Dec 2008 22:32:23 +0100, Sebastian Günther wrote: The third column of lsmod is headed with Used by and consists of a number and a list of modules which use it. Everything with a 0 is not used. Not true. Anything with a 0 is not used by another module. That's not the same as not used. I think a 0 indicates that it's not used at all. For example, lsmod here says: Module Size Used by oss_audigyls 21888 0 osscore 554244 1 oss_audigyls If I start Amarok and play a tune, lsmod says: Module Size Used by oss_audigyls 21888 4 osscore 554244 3 oss_audigyls Note that after the 4 is nothing. That probably means it is used, but *not* by a module? That would mean that 0 means really totally unused by anything.
Re: [gentoo-user] Re: modules in use
On Fri, Dec 5, 2008 at 6:51 PM, Nikos Chantziaras [EMAIL PROTECTED] wrote: Neil Bothwick wrote: On Fri, 5 Dec 2008 22:32:23 +0100, Sebastian Günther wrote: The third column of lsmod is headed with Used by and consists of a number and a list of modules which use it. Everything with a 0 is not used. Not true. Anything with a 0 is not used by another module. That's not the same as not used. I think a 0 indicates that it's not used at all. For example, lsmod here says: Module Size Used by oss_audigyls 21888 0 osscore 554244 1 oss_audigyls If I start Amarok and play a tune, lsmod says: Module Size Used by oss_audigyls 21888 4 osscore 554244 3 oss_audigyls Note that after the 4 is nothing. That probably means it is used, but *not* by a module? That would mean that 0 means really totally unused by anything. That's how I understand it. (it's the same as shown by /proc/modules)
[gentoo-user] Re: modules in use
On Sat, 06 Dec 2008 02:51:02 +0200 Nikos Chantziaras [EMAIL PROTECTED] wrote: Neil Bothwick wrote: On Fri, 5 Dec 2008 22:32:23 +0100, Sebastian Günther wrote: The third column of lsmod is headed with Used by and consists of a number and a list of modules which use it. Everything with a 0 is not used. Not true. Anything with a 0 is not used by another module. That's not the same as not used. I think a 0 indicates that it's not used at all. For example, lsmod here says: Module Size Used by oss_audigyls 21888 0 osscore 554244 1 oss_audigyls If I start Amarok and play a tune, lsmod says: Module Size Used by oss_audigyls 21888 4 osscore 554244 3 oss_audigyls Note that after the 4 is nothing. That probably means it is used, but *not* by a module? That would mean that 0 means really totally unused by anything. I see the same kind of thing, using alsa instead of oss. But Whatever the 0's mean, the output of lsmod won't be enough to help the OP, who really wants to be able to tell what modules are *needed*. $ lsmod | grep iwl iwl4965 185000 0 mac80211 112076 1 iwl4965 It's certainly possible that my wireless driver is not being used by anything at any given microsecond, but this post won't get off my computer without that driver being used. -- »Q« Kleeneness is next to Gödelness.
Re: [gentoo-user] Re: modules in use
On Fri, Dec 5, 2008 at 7:09 PM, »Q« [EMAIL PROTECTED] wrote: On Sat, 06 Dec 2008 02:51:02 +0200 Nikos Chantziaras [EMAIL PROTECTED] wrote: Neil Bothwick wrote: On Fri, 5 Dec 2008 22:32:23 +0100, Sebastian Günther wrote: The third column of lsmod is headed with Used by and consists of a number and a list of modules which use it. Everything with a 0 is not used. Not true. Anything with a 0 is not used by another module. That's not the same as not used. I think a 0 indicates that it's not used at all. For example, lsmod here says: Module Size Used by oss_audigyls 21888 0 osscore 554244 1 oss_audigyls If I start Amarok and play a tune, lsmod says: Module Size Used by oss_audigyls 21888 4 osscore 554244 3 oss_audigyls Note that after the 4 is nothing. That probably means it is used, but *not* by a module? That would mean that 0 means really totally unused by anything. I see the same kind of thing, using alsa instead of oss. But Whatever the 0's mean, the output of lsmod won't be enough to help the OP, who really wants to be able to tell what modules are *needed*. $ lsmod | grep iwl iwl4965 185000 0 mac80211 112076 1 iwl4965 It's certainly possible that my wireless driver is not being used by anything at any given microsecond, but this post won't get off my computer without that driver being used. Yes, I think the only real solution is to remove things and see what breaks.
