Re: [gentoo-user] Coming up with a password that is very strong.

[Tanstaafl]

On 2/4/2019, 8:10:57 PM, Dale  wrote:
> Tanstaafl wrote:
>> I've been using a little Firefox Addon called Passwordmaker for many,
>> many years, and despite all of its warts, I've been loathe to give it
>> up, even though it will never be upgraded to work as a WebExtension.
>>
>> 2 things I loved about it -
>>
>>  a) it doesn't save the password locally, only info about the
>> site/account, and
>>  b) you can use an unlimited number of Master Passwords
>>
>> I'm looking at migrating to KeePassXC, and even though I really hate the
>> idea of saving the actual password - Passwordmaker simply generates the
>> password on the fly each time based on certain specified criteria (ie,
>> the site URL, username, password length, etc for each account - one
>> technique I adopted shortly after assisting in updating the
>> Passwordmaker website eases my mind about it...
>>
>> This is a simple technique I strongly recommend that everyone employ,
>> especially if you use a Password manager (like LastPass or KeePass)...
>>
>> It is uncrackable (well, as long as it isn't the CIA or NSA that wants
>> to crack it and they are willing to kidnap/torture you to do so).
>>
>> You sit down and come up with a ... call it a 'password modification
>> protocol' ... whereby, you always modify your generated/stored password
>> in a specific way before pressing enter.
>>
>> For example, you delete characters 3, 5 and 7, then add 2 characters to
>> the beginning and 2 to the end.
>>
>> It is very simple, and negates worrying about someone stealing your
>> password vault.

> I tried to find it just to see how it works but it isn't listed.

What... Passwordmaker (the old one I still use and why I keep an old
Firefox 56 portable version around)?

> From what you wrote, you may want to at least check into LastPass.

I did a massive amount of research (including LastPass), and settled on
KeePassXC for a good reason.

> Still, I'm sure there is a tool that will suite your needs.

? Its like you didn't really read my email. I already said, I'm
migrating to KeePassXC. But my complaint is, nothing works like
Passwordmaker (again, it doesn't store passwords, can only use one
Master Password).

> I'm not sure I understand what you mean password modification protocol. 
> It sounds like you change your master password each time you use it.

No, I'm talking about the saved (or in Passwordmakers case, generated)
password, not the Master Password.

Doing this with the Master Password wouldn't make any sense.

Re: [gentoo-user] Coming up with a password that is very strong.

[Tanstaafl]

On 2/4/2019, 12:47:35 AM, Dale  wrote:
> Thing is, with today's computing power, it really isn't anymore.
> While no one could just guess it, it could be cracked/hacked I'm
> sure.  I need to come up with a new one that meets the requirements I
> just mentioned.  Strong, easy to remember, easy to type but won't
> forget.  I've read that using maiden names, years of birth or whole
> dates of birth, actual names, pet's name, words in a dictionary and a
> whole list of other things makes it easier, especially if you post a
> lot on social media, for hackers to use against you.  I'm trying to
> avoid that sort of thing obviously and have a couple ideas but am
> curious as to what method others use, without exposing to much
> detail since this is public.
I've been using a little Firefox Addon called Passwordmaker for many,
many years, and despite all of its warts, I've been loathe to give it
up, even though it will never be upgraded to work as a WebExtension.

2 things I loved about it -

 a) it doesn't save the password locally, only info about the
site/account, and
 b) you can use an unlimited number of Master Passwords

I'm looking at migrating to KeePassXC, and even though I really hate the
idea of saving the actual password - Passwordmaker simply generates the
password on the fly each time based on certain specified criteria (ie,
the site URL, username, password length, etc for each account - one
technique I adopted shortly after assisting in updating the
Passwordmaker website eases my mind about it...

This is a simple technique I strongly recommend that everyone employ,
especially if you use a Password manager (like LastPass or KeePass)...

It is uncrackable (well, as long as it isn't the CIA or NSA that wants
to crack it and they are willing to kidnap/torture you to do so).

You sit down and come up with a ... call it a 'password modification
protocol' ... whereby, you always modify your generated/stored password
in a specific way before pressing enter.

For example, you delete characters 3, 5 and 7, then add 2 characters to
the beginning and 2 to the end.

It is very simple, and negates worrying about someone stealing your
password vault.

Re: [gentoo-user] {OT?} which fs on 1.8TB partition

[Tanstaafl]

On 10/6/2017, 2:12:00 PM, J. Roeleveld  wrote:
> I had a large partition with reiserfs.
> Running fsck always failed due to running out of memory.
> 
> Partition was quite a bit larger than 2TB (around 6TB) and contained 
> a huge (millions) amount of files, > but having an fsck become
> impossible with 16GB memory available was rather annoying.

Ah, yes, I had a similar problem occasionally when a user would decide
to delete (or move to a different folder) a bunch (as many as tens of
thousands) of messages at once... Thunderbird would go non responsive,
and the server was brought to its knees. I'd have to kill their server
processes, and then the user would end up with a bunch of duplicate
messages in their maildirs.

Very annoying.

Re: [gentoo-user] {OT?} which fs on 1.8TB partition

[Tanstaafl]

On 10/6/2017, 8:53:27 AM, Philip Webb  wrote:
> 171005 christos kotsis wrote:
>> I just noticed that ReiserFS has significant performance
>> over ext3, 4 when dealing with small files.

> I've long relied on ReiserFS for everything except  /boot
> & have never had any problems with my files or drives.
> I have many small files + a few big PDFs -- perhaps  c 20 MB ea  --
> & the big ones simply stay where I put them, so no changes to handle.

I used ReiserFS for many - 8+ - years on our old mail server, selected
for its performance with large numbers of small (maildir) files, and
never had a problem.

But during the last rebuild when virtualizing everything, sometime
around 2012, I switched to XFS, and believe I saw a performance gain,
and no more long fsck's during the rare reboots... and again, no problems.

Personally, I can't wait until btrfs is fully ready/stable, and have
been considering FreeBSD (or FreeNAS) just for ZFS, for the reliability
factor, but have wondered about performance for mail servers.

Anyone have any experience with comparing performance with either btrfs
or ZFS against either ReiserFS or XFS for a maildir based mail server?

Although, I will also be switching to dovecot's mdbox format when I set
up my next server, so the issue of lots of small files won't be nearly
as big.

Re: [gentoo-user] Linode discontinuing Xen, migrating to KVM

[Tanstaafl]

On 10/7/2017, 12:09:07 AM, Stroller <strol...@stellar.eclipse.co.uk> wrote:
> 
>> On 6 Oct 2017, at 15:31, Tanstaafl <tansta...@libertytrek.org> wrote:
>>
>>>> Second, do you have rc_sys defined, or are you using auto-detect (is it
>>>> just commented out)?
>>>
>>> Just commented out.
>>
>> This is the one I'm worried about - how to change it back if it totally
>> breaks the ability to even boot.
> 
> Detach the drive from the VM, and attach it as /dev/sd[cdefgh] on another VM?
> 
> See: Linodes »  » Edit Configuration Profile » Block 
> Device Assignment
> 
> Also in the dropdowns there is an option for "Recovery -Finnix (iso)".

Thanks, yes, I found that in the docs when reading, but was wondering if
there was some lind of grub command-line boot option I could pass (would
be much easier)...

Anyway, wasn't necessary, the migration went perfectly...

1. Change to the 64 bit kernel, reboot

2. Enter migration queue

3. Wait.. about 5 minutes

4. Done.

:)

Thanks to everyone who responded!

Re: [gentoo-user] Linode discontinuing Xen, migrating to KVM

[Tanstaafl]

On Thu Oct 05 2017 18:53:37 GMT-0400 (Eastern Standard Time), Stroller
 wrote:
> I just installed Linode's Gentoo image file in a new VM, and started
> using it, so the below are the defaults.

Thanks Stroller,

I had to somehow use my own Gentoo image when I first installed these as
they didn't officially provide any, glad to hear they do now.

>> First - are you using 'Auto Configure Networking' (is it enabled
>> or disabled in your Linode options)?
> 
> Enabled.
> 
> /etc/resolv.conf and /etc/conf.d/net both say "This file is
> automatically generated on each boot with your Linode's current
> network configuration."
> 
> I'm not sure I'd dare change it, to be honest.
Well, I'm not so worried about that since you can always access the VM
using the LISH console to change something like that back.

I'll experiment with this on my Dev VM that isn't mission critical. I
migrated it last night, and it came up just fine, so hopefully my
Production VM will be just as painless.

>> Second, do you have rc_sys defined, or are you using auto-detect (is it
>> just commented out)?
> 
> Just commented out.

This is the one I'm worried about - how to change it back if it totally
breaks the ability to even boot.

Re: [gentoo-user] Linode discontinuing Xen, migrating to KVM

[Tanstaafl]

On Thu Oct 05 2017 18:01:01 GMT-0400 (Eastern Standard Time), Tanstaafl
<tansta...@libertytrek.org> wrote:
> Second, do you have rc_sys defined, or are you using auto-detect (is it
> just commented out)?

Oh - and if I were to change this to auto-detect (comment it out), and
the VM failed to boot, can I specify/change it on the grub boot command
line (still using grub legacy) to recover?

Re: [gentoo-user] Linode discontinuing Xen, migrating to KVM

[Tanstaafl]

On Mon Oct 02 2017 13:30:03 GMT-0400 (Eastern Standard Time), Tanstaafl
<tansta...@libertytrek.org> wrote:
> Ok, so just got the notice that Linode is discontinuing their support
> for Xen, and forcing everyone to migrate their VMs to KVM.

Thanks very much to all who replied, two last questions for those who
are using Linode...

First - are you using 'Auto Configure Networking' (is it enabled or
disabled in your Linode options)?

Second, do you have rc_sys defined, or are you using auto-detect (is it
just commented out)?

Thanks again to all who replied...

Re: [gentoo-user] Linode discontinuing Xen, migrating to KVM

[Tanstaafl]

On 10/2/2017, 11:52:21 PM, R0b0t1  wrote:
> As long as your kernel has the appropriate drivers (i.e. you didn't
> include only the virtualized Xen drivers and left most of the default
> options intact) it should boot under QEMU/KVM or even on a bare metal
> system.

Hmmm, something else I just remembered when I noticed my production
server is running a 32 bit kernel...

A long time ago, maybe 6 or 7 years, something weird happened when
Linode had some kind of problem (maybe it was another one of their
maintenance processes, I don't recall), I had a heck of a time getting
it back up, I finally had to do a full rebuild, and distinctly remember
changing to a 32 bit kernel during the process, but never changed back.

Do I need to do a full system rebuild to change back to the 64 bit kernel?

Also, I haven't played with Linodes 'System Profiles' at all - I was
thinking I'd just create a new profile, add my Gentoo System Image and a
swap image to it, but assign the 64 bit kernel, then if it doesn't work,
switch back. Should I be able to do that without causing any problems to
the current/working profile?

Re: [gentoo-user] Linode discontinuing Xen, migrating to KVM

[Tanstaafl]

On 10/3/2017, 1:27:45 AM, victor romanchuk  wrote:
> there are two files to change/check before migration
> 
>   * /etc/inittab :: console terminal (XEN PV domUs do use hvc console and KVM 
> VM employ normal linux
> console)
> 
> -c1:12345:/respawn:/sbin/agetty 38400 hvc0 linux
> +c1:12345:respawn:/sbin/agetty 38400 ttyS0 linux
> 
>   *  /etc/fstab :: XEN PV do use xvdN volumes and KVM VM volume naming is 
> canonical
> 
> -/dev/xvdb        none        swap        sw        0 0
> +/dev/sdb        none        swap        sw        0 0
> 
> 
> the migration itself is automated; linode did it for me flawlessly: few 
> minutes of downtime needed
> to convert images and to move them to different hardware (in my case)

Thanks - but I thought these were changed as part of the automated
process (from what I've read).

Did you change yours manually?

Re: [gentoo-user] Linode discontinuing Xen, migrating to KVM

[Tanstaafl]

On 10/2/2017, 4:03:37 PM, Tanstaafl <tansta...@libertytrek.org> wrote:
> On 10/2/2017, 2:39:51 PM, Stroller <strol...@stellar.eclipse.co.uk> wrote:
>>
>>> On 2 Oct 2017, at 18:30, Tanstaafl <tansta...@libertytrek.org> wrote:
>>>
>>> One thing I do seem to recall is there was somewhere that I had to
>>> define Xen as the virtualization environment being used, but I can't
>>> remember where I did that. Was that in the kernel config? If so, their
>>> tool should (hopefully) handle that change.
>>
>> See last lines:
>>
>> ~ $ grep -B 25 -ie xen -ie kvm /etc/rc.conf
> 
>> # "xen0"   - Xen0 Domain (Linux and NetBSD)
>> # "xenU"   - XenU Domain (Linux and NetBSD)
>> ~ $
>>
>> This on a Linode host, BTW. They haven't told me I need to do anything, so I 
>> hope I'm ok.
>>
>> HTH,
> 
> Thanks! Yes, at least now I know where that was specified... and since
> there is nothing there for kvm, I guess you just leave it commented, BUT...
> 
> yours doesn't appear to be set?? Mine is set to "xenU".

Also, yours shows 12 different choices, mine only shows 8:

##
# LINUX SPECIFIC OPTIONS

# This is the subsystem type. Valid options on Linux:
# ""- nothing special
# "lxc" - Linux Containers
# "openvz"  - Linux OpenVZ
# "prefix"  - Prefix
# "uml" - Usermode Linux
# "vserver" - Linux vserver
# "xen0"- Xen0 Domain
# "xenU"- XenU Domain
# If this is commented out, automatic detection will be used.
#

Wonder why that is?

Re: [gentoo-user] Linode discontinuing Xen, migrating to KVM

[Tanstaafl]

On 10/2/2017, 2:39:51 PM, Stroller <strol...@stellar.eclipse.co.uk> wrote:
> 
>> On 2 Oct 2017, at 18:30, Tanstaafl <tansta...@libertytrek.org> wrote:
>>
>> One thing I do seem to recall is there was somewhere that I had to
>> define Xen as the virtualization environment being used, but I can't
>> remember where I did that. Was that in the kernel config? If so, their
>> tool should (hopefully) handle that change.
> 
> See last lines:
> 
> ~ $ grep -B 25 -ie xen -ie kvm /etc/rc.conf

> # "xen0"   - Xen0 Domain (Linux and NetBSD)
> # "xenU"   - XenU Domain (Linux and NetBSD)
> ~ $
> 
> This on a Linode host, BTW. They haven't told me I need to do anything, so I 
> hope I'm ok.
> 
> HTH,

Thanks! Yes, at least now I know where that was specified... and since
there is nothing there for kvm, I guess you just leave it commented, BUT...

yours doesn't appear to be set?? Mine is set to "xenU".

So... maybe I've never even needed this? Or maybe I did way back when I
first installed this (probably 7 or 8 years ago), and it isn't needed
any longer? Would the need for it be based on the kernel version? OR the
underlying Xen Host version? Or something else?

More importantly - I guess I should comment it out right before the
migration? Or is this something I can do after? IF I don't, how would I
handle it?

Wish I had more time to learn about how all of this worked...

Anyway, thanks again for at least filling in one blank...

[gentoo-user] Linode discontinuing Xen, migrating to KVM

[Tanstaafl]

Ok, so just got the notice that Linode is discontinuing their support
for Xen, and forcing everyone to migrate their VMs to KVM.

Of course this comes at the worst possible time for me, when I'm out of
the country, and won't be back before the deadline (the 9th).

I have a week, so am trying to do everything I can to ensure they come
up successfully. I have two, one production, and a second one we were
going to use as a dev/test server, but in reality, we don't use it,
although I want to keep it running too (will perform the migration on it
first).

I'm especially worried, because these VMs are running an ancient web
application that requires older versions of Apache, PHP and Postgresql,
so cannot be and haven't been updated in a very long time (I kept them
up to date as long as I could by pinning the old apps and testing
updates on the dev/test server until it just got to be too much work)...

They are both (thankfully) running a current Linode kernel, so I HOPE
this migration won't kill either of them.

One thing I do seem to recall is there was somewhere that I had to
define Xen as the virtualization environment being used, but I can't
remember where I did that. Was that in the kernel config? If so, their
tool should (hopefully) handle that change.

Anyway, was hoping some kind souls here might give me a few things to
check and possibly do proactively to ensure a smooth transition.

Emerge --info for each one attached

Thanks!

emerg--i

Portage 2.2.8-r2 (default/linux/x86/13.0, gcc-4.7.3, glibc-2.19-r1, 
4.9.36-x86-linode104 i686)
=
System uname: 
Linux-4.9.36-x86-linode104-i686-Intel-R-_Xeon-R-_CPU_E5-2680_v2_@_2.80GHz-with-gentoo-2.2
KiB Mem: 3091800 total,   1280696 free
KiB Swap: 262140 total,262140 free
Timestamp of tree: Tue, 07 Oct 2014 12:45:01 +
ld GNU ld (GNU Binutils) 2.23.2
app-shells/bash:  4.2_p53
dev-lang/perl:5.18.2-r1
dev-lang/python:  2.7.7, 3.3.5-r1
dev-util/cmake:   2.8.12.2-r1
dev-util/pkgconfig:   0.28-r1
sys-apps/baselayout:  2.2
sys-apps/openrc:  0.12.4
sys-apps/sandbox: 2.6-r1
sys-devel/autoconf:   2.69
sys-devel/automake:   1.11.6, 1.12.6, 1.13.4
sys-devel/binutils:   2.23.2
sys-devel/gcc:4.7.3-r1
sys-devel/gcc-config: 1.7.3
sys-devel/libtool:2.4.2-r1
sys-devel/make:   3.82-r4
sys-kernel/linux-headers: 3.13 (virtual/os-headers)
sys-libs/glibc:   2.19-r1
Repositories: gentoo
ACCEPT_KEYWORDS="x86"
ACCEPT_LICENSE="* -@EULA"
CBUILD="i686-pc-linux-gnu"
CFLAGS="-O2 -march=i686 -pipe"
CHOST="i686-pc-linux-gnu"
CONFIG_PROTECT="/etc /usr/share/gnupg/qualified.txt"
CONFIG_PROTECT_MASK="/etc/ca-certificates.conf /etc/env.d /etc/gconf 
/etc/gentoo-release /etc/php/apache2-php5.3/ext-active/ 
/etc/php/cgi-php5.3/ext-active/ /etc/php/cli-php5.3/ext-active/ 
/etc/revdep-rebuild /etc/sandbox.d /etc/terminfo"
CXXFLAGS="-O2 -march=i686 -pipe"
DISTDIR="/usr/portage/distfiles"
FCFLAGS="-O2 -march=i686 -pipe"
FEATURES="assume-digests binpkg-logs buildpkg config-protect-if-modified 
distlocks ebuild-locks fixlafiles merge-sync news parallel-fetch preserve-libs 
protect-owned sandbox sfperms strict unknown-features-warn unmerge-logs 
unmerge-orphans userfetch userpriv usersandbox usersync"
FFLAGS="-O2 -march=i686 -pipe"
GENTOO_MIRRORS="http://mirror.datapipe.net/gentoo;
LANG="en_US.UTF-8"
LDFLAGS="-Wl,-O1 -Wl,--as-needed"
MAKEOPTS="-j3"
PKGDIR="/usr/portage/packages"
PORTAGE_CONFIGROOT="/"
PORTAGE_RSYNC_OPTS="--recursive --links --safe-links --perms --times 
--omit-dir-times --compress --force --whole-file --delete --stats 
--human-readable --timeout=180 --exclude=/distfiles --exclude=/local 
--exclude=/packages"
PORTAGE_TMPDIR="/var/tmp"
PORTDIR="/usr/portage"
PORTDIR_OVERLAY=""
SYNC="rsync://rsync.us.gentoo.org/gentoo-portage"
USE="acl apache2 berkdb bzip2 cli cracklib crypt cxx dri fortran gdbm iconv 
mailwrapper modules ncurses nls nptl openmp pam pcre php postgres readline 
session ssl tcpd unicode x86 zlib" ABI_X86="32" ALSA_CARDS="ali5451 als4000 
atiixp atiixp-modem bt87x ca0106 cmipci emu10k1 emu10k1x ens1370 ens1371 es1938 
es1968 fm801 hda-intel intel8x0 intel8x0m maestro3 trident usb-audio via82xx 
via82xx-modem ymfpci" APACHE2_MODULES="actions alias auth_basic auth_digest 
authn_anon authn_dbd authn_dbm authn_default authn_file authz_dbm authz_default 
authz_groupfile authz_host authz_owner authz_user autoindex cache cgi dav 
dav_fs dav_lock dbd deflate dir disk_cache env expires ext_filter file_cache 
filter headers ident imagemap include info log_config logio mem_cache mime 
mime_magic negotiation proxy proxy_ajp proxy_balancer proxy_connect proxy_http 
rewrite setenvif so speling status unique_id userdir usertrack vhost_alias" 
APACHE2_MPMS="prefork" CALLIGRA_FEATURES="kexi words flow plan sheets stage 
tables krita karbon braindump author" CAMERAS="ptp2" COLLECTD_PLUGINS="df 
interface irq 

Re: [gentoo-user] from Firefox52: NO pure ALSA?, WAS: Firefox 49.0 & Youtube... Audio: No

[Tanstaafl]

On 12/20/2016 9:33 PM, Rich Freeman  wrote:
> On Tue, Dec 20, 2016 at 5:51 PM, Alan Mackenzie  wrote:
>> systemd is primarily a political project, not a technical one.

> What political benefit do I gain from using and maintaining systemd?

Interesting that you snipped the rest of his comment - or more his main
point - that followed.

How about commenting on the most important point he made:

On 12/20/2016 5:51 PM, Alan Mackenzie  wrote:
> ... [systemd's] object is clearly to turn GNU/Linux into a tightly
> bound vertical stack where only Red Hat's views on what is good will
> prevail. Our freedom to chose which core packages to run is being
> steadily encroached upon, and pretty soon we will have no choice at
> all.
> 
> Already, as discussed in this thread, pulseaudio has become a hard 
> dependency of Firefox on G/L, and pulseaudio is controlled by the 
> politicians. The next step will be to make systemd a hard dependency 
> of pulseaudio (it will happen, just as it happened for udev and
> gnome), at which point the "happy" people running openrc will not be
> able to run Firefox. Happy indeed.

This, to me, is the single most important problem with systemd, but I'm
not sure that enough people who are in a position to be able to do
anything about it care about or are really fully aware of it.

Re: [gentoo-user] from Firefox52: NO pure ALSA?, WAS: Firefox 49.0 & Youtube... Audio: No

[Tanstaafl]

On 12/19/2016 1:15 PM, lee  wrote:
> "Walter Dnes"  writes:
> 
>> Similarly, the vast majority of home users have a machine with one
>> ethernet port, and in the past it's always been eth0.

> Since 10 years or so, the default is two ports.

Not sure where you buy your machines, but that is simply wrong. The vast
majority of *home* users machines are single port machines.

Re: [gentoo-user] 2 MTA at the same host

[Tanstaafl]

On 8/8/2016 1:16 PM, Michael Mol  wrote:
> A better solution still would likely be figuring out why 2 MTAs are necessary 
> and figure out how to configure a single MTA to handle the role of both, if 
> at 
> all possible.

And with Postfix's muli instance support it would be trivial - if indeed
that there isn't a very good reason that they are both really needed for
some as yet unknown reason.

OP: it is always best to initially state your actual problem, then you
can start asking questions about how to implement what you may have
decided is the best or only solution.

Re: [gentoo-user] Re: beegfs goes opensource!

[Tanstaafl]

On 2/28/2016 9:09 AM, Rich Freeman  wrote:
> I'm not really sure what the "conservative" recommendation.  Ext4 (or
> even ext3) is the obvious one, but both zfs and btrfs have
> checksumming of all data written to disk which is a huge data security
> improvement.  That is a compelling feature that should give even
> conservative sysadmins pause before just rejecting them, unless
> they're mitigating silent corruptions in some other way.

This is precisely why I'm interested in it...

Thanks for the comments...

Re: [gentoo-user] Re: beegfs goes opensource!

[Tanstaafl]

On 2/28/2016 4:24 AM, Neil Bothwick <n...@digimed.co.uk> wrote:
> On Sat, 27 Feb 2016 22:51:13 -0500, Tanstaafl wrote:
>>> I recall a list conversation about this, explaining that it would be
>>>> trivial for someone who knows how to do ebuilds, to have their own
>>>> ZFS-in-kernel system available, and that it would also be possible to
>>>> accomplish this via an overlay...  

>>> sys-fs/zfs-kmod  

>> I would be using this on a server, so, for security reasons, no module
>> support.
> 
> echo sys-fs/zfs kernel-builtin >/etc/portage/package.use
> 
> You need to unmask the kernel-builtin USE flag.

Wow...! How long has that been available?

I also recall something about being able to use the latest/greatest too,
but the overlay would have to pull the sources from Oracle...?

So, would appreciate comments on what version of ZFS this would pull in,
limitations, caveats, dangers, etc...

Also, it has been a while since I read anything - what is the current
state of BTRFS vs ZFS? Is it stable/mature enough to use for production?
What can ZFS do that it cannot?

Thanks Neil!

Re: [gentoo-user] Re: beegfs goes opensource!

[Tanstaafl]

On 2/26/2016 1:14 PM, Rich Freeman <ri...@gentoo.org> wrote:
> On Fri, Feb 26, 2016 at 12:48 PM, Tanstaafl <tansta...@libertytrek.org> wrote:
>> I recall a list conversation about this, explaining that it would be
>> trivial for someone who knows how to do ebuilds, to have their own
>> ZFS-in-kernel system available, and that it would also be possible to
>> accomplish this via an overlay...

> sys-fs/zfs-kmod

I would be using this on a server, so, for security reasons, no module
support.

Re: [gentoo-user] Re: beegfs goes opensource!

[Tanstaafl]

On 2/26/2016 12:04 PM, James  wrote:
> Excellent point about the license.  Did the license stop zfs folks
> from enjoying zfs?  I know the zfs license stops some commercial folks
> from deploy/using zfs. And zfs is not a routine choice in the installation
> docs for gentoo.

I recall a list conversation about this, explaining that it would be
trivial for someone who knows how to do ebuilds, to have their own
ZFS-in-kernel system available, and that it would also be possible to
accomplish this via an overlay...

Wish someone would do it, I'd love to play with ZFS, but I don't have
the skill or time to figure out the pieces...

Re: [gentoo-user] beegfs goes opensource!

[Tanstaafl]

On 2/25/2016 5:03 PM, James  wrote:
> Long awaited.
> 
> This smoking hot (many HPC scientist agree) distributed file
> system will surely rock the cluster, container and Hi Performance
> Computing worlds. [1] Now if I were only smart enough to get this
> puppy into portage...

U... nothing about what license it is released under, and they want
personal info from you to download the source...

I'm not sure this is anything to jump up and down about yet...

Is this going to be another ZFS problem, where it is open source, but
linux can't make the best use of it?

Re: [gentoo-user] Major site redesign, SEO, and 301 redirects

[Tanstaafl]

Thanks to Alan and the others for the responses...

The main problem is this project is being managed by a non-tech manager
who apparently thinks they know a lot more than they do, and the Boss is
technically challenged, so it is easy for someone to convince him of
almost anything (like, he should delegate this to a non-tech person and
not involve his one tech guy)...

One reason he sometimes doesn't involve me until things get to this
point is because I tend to be a 'wet blanket', ruining bright shiny
sales pitches with injections of reality. You'd think he'd have learned
by now. The last time, about 5 years ago, the person who managed the
project (different person) didn't get ownership of the source code in
the contract, so we didn't get all of the source files for the Flash
junk they created, then when we wanted to make some changes to the text
embedded in  the Flash, I had to ask them for the source files, and
they wanted a bunch of money. Unbelievable.

We'll see how the dev(s) respond to my questions, but I may come back
here with more info and more advice if I need it.

Thanks again to all, it has been a big help!

On 10/1/2015 7:58 AM, Alan McKinnon <alan.mckin...@gmail.com> wrote:
> On 01/10/2015 13:35, Tanstaafl wrote:
>> Thanks Alan (and everyone else),
>>
>> One important follow-up below...
>>
>> On 9/29/2015 8:28 PM, Alan McKinnon <alan.mckin...@gmail.com> wrote:
>>> It would be wise to clarify with the devs exactly what it is they are
>>> looking for.
>>
>> That is the purpose of my upcoming phone call with him.
>>
>>> And overall, in your shoes I would be firm, adamant and above all polite
>>> and say that infrastructure changes go through you and you alone, and
>>> must be vetted by you with full transparency.
>>
>> That is what I've been doing so far, but I think the boss is getting
>> close to just saying 'give it to them'...
> 
> Depending on how senior you are in the place, as technical guy you have
> a duty to perform diligence. Persist.
> 
>>
>> But - no one has addressed my main question...
>>
>> I understand that 301 redirects are performed by web servers only, you
>> can't really do these in DNS. However, some Managed DNS providers -
>> DNSMadeEasy included - offer this ability as a service. DNSMadeEasy
>> calls  them 'http redirects', and the actual redirect is accomplished by
>> one of their own web servers they have set up to handle these.
> 
> Information is still sparse, so I'm having to fill in the blanks a lot.
> Here's what I imagine is probably happening:
> 
> The only useful thing you can get out of DNS for an HTTP request is an A
> record for an IP address.
> 
> Say you are example.com and do your own DNS; www.example.com is 1.2.3.4.
> A SaaS provider can control your DNS and they set the TTL on that A
> record very low so (like DynDNS does) they can point it at their web
> servers.
> 
> A request comes in for http://www.example.com/index.html, and your DNS
> cache needs to query it. The provider's DNS returns 2.3.4.5 which is the
> provider's front end web server. That web server figures out the address
> is your's, and issues a 301 to the user, which takes them to the
> production web server with the real site on it.
> 
> Providers do this a lot so they can load balance web sites, redirect
> users to local nearby web servers and other optimizations. The downside
> is they need to control your DNS.
> 
> Me, personally I would never allow that, not for the entire domain. I
> would rather delegate the specific address they want to control
> (www.example.com) and let them tweak that all day if they like.
> 
>> Is it 'normal' to do these 301 redirects at the DNS level like that? I
>> would think they should be using the current web server hosting the
>> current site to start doing the redirects as they get the new landing
>> pages done?
> 
> Depends what their business model is. If they deliver the full service,
> they'd have to do something like I described above for it to work.
> 
> This is assuming the contractor is a full SaaS provider and not only a
> web-site developement company
> 
>> Apache does this using a .htaccess file (if I'm interpreting
>> my googling responses correctly).
> 
> An .htaccess file is nothing special, all it is is a config file that
> can contain whatever directives are allowed in httpd.conf but applies
> only to the directive .htaccess is in. Everything in .htaccess is a
> valid directive that can go in httpd.conf, but not necessarily the other
> way round. They are especially useful for shared hosting where you want
> your customers to be able to tweak specific directives for their sites
> and y

Re: [gentoo-user] Re: Major site redesign, SEO, and 301 redirects

[Tanstaafl]

On 9/29/2015 8:02 PM, James  wrote:
> Another point of concern. When radically changing infrastructure like this,
> why not just do the entire thing under a new DNS and have both online for a
> while, until the new site if vetted and the actual real bugs worked out?

Well... not sure how that would work, since we are not changing domain
names, only redesigning the site.

What I would do if I was a web dev is just set up a test site, then set
up the development site for the customer under a subdirectory, ie:

https://mycustomtestingsite.com/customer-a/index.html

> Also, your company should force this contractor to take a large liability
> policy, in the name of your company, should things go really fubar

Interesting idea. Not sure how well it would go over.

Is that a common thing in the industry for large corporate redesigns
like this?

Thanks James

Re: [gentoo-user] Major site redesign, SEO, and 301 redirects

[Tanstaafl]

Thanks Alan (and everyone else),

One important follow-up below...

On 9/29/2015 8:28 PM, Alan McKinnon  wrote:
> It would be wise to clarify with the devs exactly what it is they are
> looking for.

That is the purpose of my upcoming phone call with him.

> And overall, in your shoes I would be firm, adamant and above all polite
> and say that infrastructure changes go through you and you alone, and
> must be vetted by you with full transparency.

That is what I've been doing so far, but I think the boss is getting
close to just saying 'give it to them'...

But - no one has addressed my main question...

I understand that 301 redirects are performed by web servers only, you
can't really do these in DNS. However, some Managed DNS providers -
DNSMadeEasy included - offer this ability as a service. DNSMadeEasy
calls  them 'http redirects', and the actual redirect is accomplished by
one of their own web servers they have set up to handle these.

Is it 'normal' to do these 301 redirects at the DNS level like that? I
would think they should be using the current web server hosting the
current site to start doing the redirects as they get the new landing
pages done? Apache does this using a .htaccess file (if I'm interpreting
my googling responses correctly).

And now that I worded it that way - how would they do that exactly?
Would the proper method be to redirect it to a new test domain, ie:

www.example.com/page1.htm >> www.new-example.com/newpage1.htm ?

Or save the new page on the old server, then do:

www.example.com/page1.htm >> www.example.com/newpage1.htm ?

Now I'm confusing myself...

Re: [gentoo-user] Major site redesign, SEO, and 301 redirects

[Tanstaafl]

On 9/30/2015 3:36 AM, Mick  wrote:
> I couldn't agree more with all the warnings that have been posted.  However, 
> it may simply be that they want to build a new website and they want to 
> redirect your DNS from your currently hosted server to theirs.

You mean change the DNS servers at the Domain Registrar?

That would be even worse - they would need to completely reproduce
everything that is in there prior to transferring it, and then our DNS
is no longer ours.

> Are they offering SaaS, or will you be hosting the new website on
> prem?

That is one of my questions. Currently the site is hosted at Rackspace.

> In any case, they could just ask you to do this, if you agree. Given
> that "possession is nine-tenths of the law" I would not let them
> anywhere near your DNS records - period.

Hmmm... above it sounded like  you were ok with their desire to
'redirect our DNS from our currently hosted server to theirs'. Did I
misunderstand?

> With regards to being blacklisted by Google, you have to be careful indeed.  
> Google will blacklist bad code and malicious code.

At this point I'm more worried about bad links/hundreds of thousand
pages suddenly giving 404 errors, etc...

[gentoo-user] Major site redesign, SEO, and 301 redirects

[Tanstaafl]

Hi all,

I am not a web (or SEO) guy, but I manage our DNS and have for a long time.

The boss has contracted with a web development company to do a full
redesign of our website.

Our website has hundreds of thousands of pages, and years of SEO behind
it. The guys who was her until recently was adamant that we must be very
carefl with the redesign so as not to totally break SEO, and possibly
getting blacklisted by Google.

The web developers are insisting that they need full access to our DNS
(hosted by DNSMadeEasy), and the only reason I can think of for this is
they plan on setting up HTTP redirects (DNSMadeEasy equivalent of a 301
redirect) for these pages - but hundreds of thousands of them?

Wouldn't this be better done at the web server level? Or am I just ignorant?

Would love to hear experiences (good and bad), and a recommendation for
what I should do.

thanks

[gentoo-user] Git equivalent of pg_dumpall?

[Tanstaafl]

Similar to the recent thread on cloning...

I don't know and have never even used Git, but I need to get a complete
and total backup of an entire Git repository to a single file that can
then be cloned into a new git repo on another system. This was for a
software project that was being developed by some off-site developers.

What is the proper way to do this? Is it the 'git bundle' command?

Thanks

Re: [gentoo-user] Git equivalent of pg_dumpall?

[Tanstaafl]

Thanks Rich (& Michael)...

Will use git bundle then.

Apreciated!

On 9/4/2015 6:32 PM, Rich Freeman <ri...@gentoo.org> wrote:
> On Fri, Sep 4, 2015 at 1:19 PM, Michael Orlitzky <m...@gentoo.org> wrote:
>> On 09/04/2015 01:09 PM, Tanstaafl wrote:
>>> Similar to the recent thread on cloning...
>>>
>>> I don't know and have never even used Git, but I need to get a complete
>>> and total backup of an entire Git repository to a single file that can
>>> then be cloned into a new git repo on another system. This was for a
>>> software project that was being developed by some off-site developers.
>>>
>>> What is the proper way to do this? Is it the 'git bundle' command?
>>>
>>
>> The entire git repo is a single .git directory at the top level of your
>> project. So you can bundle the whole thing with
>>
>>   tar -cf project.tar /path/to/your/project
> 
> I realize you're using the term "bundle" in the generic sense, but
> there is a git term called a bundle and it isn't just a tarball of a
> repository.
> 
> I'd definitely recommend using "git bundle" for this.  That is
> basically what it was designed for, and I'd expect it to be more space
> efficient since you won't have all the checked-out files.  Presumably
> git will make sure the bundle is packed and garbage-collected as well.
> You can also perform operations like fetch/clone/etc from a bundle
> without having to extract it first, which might be useful if you
> wanted to merge it into another repository.  This is pretty-much how
> we've been moving around git repositories as part of the migration
> project.
> 

Re: [gentoo-user] grep -lr ignoring subdirs that start with dot (.)?

[Tanstaafl]

On 4/17/2015 5:59 PM, Neil Bothwick n...@digimed.co.uk wrote:
 Since you want to search the entire contents f the current directory,
 there is no need to pass grep a list of directories (especially not an
 incomplete list), use grep -lr .

Ok, thanks Neil, but this is still not what I'm looking for... here's a
snip of what I got:

 ./user1/Maildir/.Sent/cur/1348064019.M219121P18374.mailhost.com,S=7615,W=7788:2,S
 ./user1/Maildir/.Sent/dovecot.index.cache
 ./user2/Maildir/cur/1348063111.Vfe02Ia7fe0eM242648.mailhost.com:2,S
 ./user2/Maildir/dovecot.index.cache

What I'd like is the output you get with

'grep -ir searchstring .'

which includes the line of text from each matching file that contains
the searchstring, like this:

 ./user/Maildir/cur/1429731479.M511050P25876.hostname,S=3097,W=3185:2,S:Name 
 asked me to approve Test PO 12036 this afternoon so she could see
 ./user/Maildir/cur/1429731479.M511050P25876.hostname,S=3097,W=3185:2,S:it in 
 the system.   In looking at Test PO 12033  12034 they show signed
 ./user/Maildir/cur/1429731479.M511050P25876.hostname,S=3097,W=3185:2,S:by me 
 however I did not approve these test PO's only test PO 12036 - how
 ./user/Maildir/cur/1429731479.M511050P25876.hostname,S=3097,W=3185:2,S:
 Name asked me to approve Test PO 12036 this afternoon so she could

but...

What I'd like is for each output line showing the file-hit to be
prefaced with at least the date/time of the file (permissions/owner etc
would be ok too, but I at least need the date/time), like you get when
doing an ls -al...

Is this just not possible?

Thanks again...

[gentoo-user] grep -lr ignoring subdirs that start with dot (.)?

[Tanstaafl]

Hi all,

Ok, this is driving me crazy...

I want to be able to quickly search an entire users Maildir for an email
containing a certain string, but output just the filenames WITH THE
DATE/TIMEs...

So, from the target users top level Maildir:

grep -lr searchstring * | xargs ls -lt

^^^ appears to work, and does return results for the cur and new
subdirs, but seems to be ignoring the rest of the Maildirs. Maybe it has
something to do with the fact that they start with dots (ie, .Sent,
.Trash, etc)??

Anyone have any idea why the above doesn't search them all?

Thanks

Re: [gentoo-user] No 'libs' in world file?

[Tanstaafl]

On 3/2/2015 6:04 PM, Neil Bothwick n...@digimed.co.uk wrote:
 On Mon, 02 Mar 2015 10:14:54 -0500, Tanstaafl wrote:

 You've been on the list long enough to know how well top-posting is
 received.  

 Yes, and you've been around the internet long enough to know that there
 are always exceptoions to the rules.

 Sending a general 'Thanks', without any follow-ups requested or needed,
 is one of those - at least imnsho... ;)

 I'd say it was not only not an exception to that rule, it is also not an
 exception to the rule of not excessively quoting. If you only want to say
 thanks, why quote anything?

Context...

Someone encountering the thread will see the result, ie, why I am
thanking them.

I think it is silly to argue about this, so I'll leave it at that... if
you disagree, no worries, it is a free internet (for now)...

[gentoo-user] No 'libs' in world file?

[Tanstaafl]

Hi all,

Googling on a minor issue with perl-cleaner after the 5.20 upgrade, I
ran across this post:

On 2/14/2015 7:39 AM, Mick michaelkintz...@gmail.com wrote:
 Yes, you shouldn't really have any libs in your world file. Any 
 required would be pulled in as dependencies.

Is this in fact true?

I checked mine, and found:

# grep -i libs /var/lib/portage/world
app-emulation/emul-linux-x86-baselibs
dev-libs/apr
dev-libs/apr-util
dev-libs/boost
dev-libs/elfutils
dev-libs/glib
dev-libs/gmp
dev-libs/libaio
dev-libs/libdnet
dev-libs/libevent
dev-libs/libffi
dev-libs/libgcrypt
dev-libs/libgpg-error
dev-libs/libksba
dev-libs/libpcre
dev-libs/libyaml
dev-libs/oniguruma
dev-libs/openssl
media-libs/libjpeg-turbo
media-libs/libpng
net-libs/libtirpc
net-libs/serf
sys-libs/cracklib
sys-libs/glibc
sys-libs/libcap
sys-libs/timezone-data

So, should I delete all of these? Even glib and glibc?

Also - is there a definitive guide (preferably for non programmer types)
on just how to properly clean the world file?

Thanks.

Re: [gentoo-user] perl-cleaner lerfovers

[Tanstaafl]

On 3/2/2015 9:25 AM, Alan McKinnon alan.mckin...@gmail.com wrote:
 On Mon, 02 Mar 2015 08:14:41 -0500
 Tanstaafl tansta...@libertytrek.org wrote:
 
 On 2/14/2015 6:37 AM, bitlord bitlord0...@gmail.com wrote:
 On Sat, 14 Feb 2015 13:13:25 Alexander Kapshuk wrote:
 'perl-cleaner --all' generated the following output.

  * Finding left over modules and header

  * The following files remain. These were either installed by hand
  * or edited. This script cannot deal with them.

 /usr/lib/perl5/vendor_perl/5.16.3/XML/SAX/ParserDetails.ini
 /usr/lib/perl5/vendor_perl/5.18.2/XML/SAX/ParserDetails.ini
 /usr/lib/perl5/5.12.4/i686-linux/Encode/ConfigLocal.pm

 What's the recommended way to go about this?

 As I understand this, it is safe to remove and that is what I do
 when they appear on my system, if you don't have perl 5.16.3,
 5.18.2 or 5.12.4 ..., and updated/rebuild all perl modules with
 perl-cleaner.

 I also used 'qfile /path/to/file' (from portage-utils) to check if
 they belong to any installed package. (which is probably not needed,
 per-cleaner knows about this?)

 I'm curious about this...

 After updating to 5.20, I got a similar message, but a lot more, and
 strangely, all of which (except the very last one) are in lib32
 instead of lib64.

 So, to confirm, it is safe to remove these?

 If so, then I guess the obvious question is, *if* it really is safe to
 remove these, why doesn't portage just go ahead and do it
 automatically?

 Here is the list of files left over on mine:

  * The following files remain. These were either installed by hand
  * or edited. This script cannot deal with them.
 
 
 
 You missed this bit. The output clearly says that the script cannot
 determine why the files are there or why they are different, therefore
 it will NOT remove them.
 
 It's not portage giving you that output btw, it's perl-cleaner. It
 works on the basis that it will only clean up files that a) portage
 installed and b) that are still the same as when portage installed
 them. If either case is not true, the script refuses to deal with it
 and tells the human to make a decision.

Oh, right, sorry, too much googling before my second cup of coffee...

 In this specific case, all except two files come from emul-linux 32 bit
 and they are all safe to delete (even the two except ones). But do note
 I know this becuase I've been here before and figured it out, not
 becuase of some magic portage flag.

Thanks Alan...

So... how would one know, for sure, if and when these are safe to
delete? Would that be only if I know for sure that I did not manually
install these myself or put them there (which I haven't and most likely
wouldn't, but would remember if I did)?

Re: [gentoo-user] perl-cleaner lerfovers

[Tanstaafl]

On 2/14/2015 6:37 AM, bitlord bitlord0...@gmail.com wrote:
 On Sat, 14 Feb 2015 13:13:25 Alexander Kapshuk wrote:
 'perl-cleaner --all' generated the following output.

  * Finding left over modules and header

  * The following files remain. These were either installed by hand
  * or edited. This script cannot deal with them.

 /usr/lib/perl5/vendor_perl/5.16.3/XML/SAX/ParserDetails.ini
 /usr/lib/perl5/vendor_perl/5.18.2/XML/SAX/ParserDetails.ini
 /usr/lib/perl5/5.12.4/i686-linux/Encode/ConfigLocal.pm

 What's the recommended way to go about this?

 As I understand this, it is safe to remove and that is what I do when
 they appear on my system, if you don't have perl 5.16.3, 5.18.2 or
 5.12.4 ..., and updated/rebuild all perl modules with perl-cleaner.
 
 I also used 'qfile /path/to/file' (from portage-utils) to check if they
 belong to any installed package. (which is probably not needed,
 per-cleaner knows about this?)

I'm curious about this...

After updating to 5.20, I got a similar message, but a lot more, and
strangely, all of which (except the very last one) are in lib32 instead
of lib64.

So, to confirm, it is safe to remove these?

If so, then I guess the obvious question is, *if* it really is safe to
remove these, why doesn't portage just go ahead and do it automatically?

Here is the list of files left over on mine:

 * The following files remain. These were either installed by hand
 * or edited. This script cannot deal with them.

/usr/lib32/perl5/5.16.3/i686-linux/auto/File/Glob/Glob.so
/usr/lib32/perl5/5.16.3/i686-linux/auto/Storable/Storable.so
/usr/lib32/perl5/5.16.3/i686-linux/auto/Filter/Util/Call/Call.so
/usr/lib32/perl5/5.16.3/i686-linux/auto/DB_File/DB_File.so
/usr/lib32/perl5/5.16.3/i686-linux/auto/GDBM_File/GDBM_File.so
/usr/lib32/perl5/5.16.3/i686-linux/auto/Sys/Hostname/Hostname.so
/usr/lib32/perl5/5.16.3/i686-linux/auto/Sys/Syslog/Syslog.so
/usr/lib32/perl5/5.16.3/i686-linux/auto/Fcntl/Fcntl.so
/usr/lib32/perl5/5.16.3/i686-linux/auto/Opcode/Opcode.so
/usr/lib32/perl5/5.16.3/i686-linux/auto/POSIX/POSIX.so
/usr/lib32/perl5/5.16.3/i686-linux/auto/Text/Soundex/Soundex.so
/usr/lib32/perl5/5.16.3/i686-linux/auto/Time/Piece/Piece.so
/usr/lib32/perl5/5.16.3/i686-linux/auto/Time/HiRes/HiRes.so
/usr/lib32/perl5/5.16.3/i686-linux/auto/re/re.so
/usr/lib32/perl5/5.16.3/i686-linux/auto/Compress/Raw/Bzip2/Bzip2.so
/usr/lib32/perl5/5.16.3/i686-linux/auto/Compress/Raw/Zlib/Zlib.so
/usr/lib32/perl5/5.16.3/i686-linux/auto/Socket/Socket.so
/usr/lib32/perl5/5.16.3/i686-linux/auto/List/Util/Util.so
/usr/lib32/perl5/5.16.3/i686-linux/auto/threads/shared/shared.so
/usr/lib32/perl5/5.16.3/i686-linux/auto/threads/threads.so
/usr/lib32/perl5/5.16.3/i686-linux/auto/Digest/SHA/SHA.so
/usr/lib32/perl5/5.16.3/i686-linux/auto/Digest/MD5/MD5.so
/usr/lib32/perl5/5.16.3/i686-linux/auto/NDBM_File/NDBM_File.so
/usr/lib32/perl5/5.16.3/i686-linux/auto/IO/IO.so
/usr/lib32/perl5/5.16.3/i686-linux/auto/Math/BigInt/FastCalc/FastCalc.so
/usr/lib32/perl5/5.16.3/i686-linux/auto/Data/Dumper/Dumper.so
/usr/lib32/perl5/5.16.3/i686-linux/auto/IPC/SysV/SysV.so
/usr/lib32/perl5/5.16.3/i686-linux/auto/Cwd/Cwd.so
/usr/lib32/perl5/5.16.3/i686-linux/auto/I18N/Langinfo/Langinfo.so
/usr/lib32/perl5/5.16.3/i686-linux/auto/mro/mro.so
/usr/lib32/perl5/5.16.3/i686-linux/auto/PerlIO/scalar/scalar.so
/usr/lib32/perl5/5.16.3/i686-linux/auto/PerlIO/via/via.so
/usr/lib32/perl5/5.16.3/i686-linux/auto/PerlIO/mmap/mmap.so
/usr/lib32/perl5/5.16.3/i686-linux/auto/PerlIO/encoding/encoding.so
/usr/lib32/perl5/5.16.3/i686-linux/auto/Encode/CN/CN.so
/usr/lib32/perl5/5.16.3/i686-linux/auto/Encode/JP/JP.so
/usr/lib32/perl5/5.16.3/i686-linux/auto/Encode/Byte/Byte.so
/usr/lib32/perl5/5.16.3/i686-linux/auto/Encode/Symbol/Symbol.so
/usr/lib32/perl5/5.16.3/i686-linux/auto/Encode/Encode.so
/usr/lib32/perl5/5.16.3/i686-linux/auto/Encode/KR/KR.so
/usr/lib32/perl5/5.16.3/i686-linux/auto/Encode/EBCDIC/EBCDIC.so
/usr/lib32/perl5/5.16.3/i686-linux/auto/Encode/Unicode/Unicode.so
/usr/lib32/perl5/5.16.3/i686-linux/auto/Encode/TW/TW.so
/usr/lib32/perl5/5.16.3/i686-linux/auto/Devel/PPPort/PPPort.so
/usr/lib32/perl5/5.16.3/i686-linux/auto/Devel/Peek/Peek.so
/usr/lib32/perl5/5.16.3/i686-linux/auto/Hash/Util/Util.so
/usr/lib32/perl5/5.16.3/i686-linux/auto/Hash/Util/FieldHash/FieldHash.so
/usr/lib32/perl5/5.16.3/i686-linux/auto/arybase/arybase.so
/usr/lib32/perl5/5.16.3/i686-linux/auto/B/B.so
/usr/lib32/perl5/5.16.3/i686-linux/auto/Unicode/Normalize/Normalize.so
/usr/lib32/perl5/5.16.3/i686-linux/auto/Unicode/Collate/Collate.so
/usr/lib32/perl5/5.16.3/i686-linux/auto/MIME/Base64/Base64.so
/usr/lib32/perl5/5.16.3/i686-linux/auto/SDBM_File/SDBM_File.so
/usr/lib32/perl5/5.16.3/i686-linux/auto/Tie/Hash/NamedCapture/NamedCapture.so
/usr/lib32/perl5/5.16.3/i686-linux/auto/attributes/attributes.so
/usr/lib32/perl5/5.16.3/i686-linux/CORE/perlsfio.h
/usr/lib32/perl5/5.16.3/i686-linux/CORE/utfebcdic.h
/usr/lib32/perl5/5.16.3/i686-linux/CORE/hv.h

Re: [gentoo-user] No 'libs' in world file?

[Tanstaafl]

On 3/2/2015 10:11 AM, Neil Bothwick n...@digimed.co.uk wrote:
 On Mon, 02 Mar 2015 10:05:16 -0500, Tanstaafl wrote:
 
 You've been on the list long enough to know how well top-posting is
 received.

Yes, and you've been around the internet long enough to know that there
are always exceptoions to the rules.

Sending a general 'Thanks', without any follow-ups requested or needed,
is one of those - at least imnsho... ;)

 Many thanks to all for the responses, will work on cleaning this up next
 weekend (don't like doing things like this on a production server during
 the week)...

 As long as you don't depclean in anger, removing entries from the world
 file will not affect the installed software on your system.

Noted, and thanks again...

Re: [gentoo-user] No 'libs' in world file?

[Tanstaafl]

Many thanks to all for the responses, will work on cleaning this up next
weekend (don't like doing things like this on a production server during
the week)...

On 3/2/2015 9:53 AM, Neil Bothwick n...@digimed.co.uk wrote:
 On Mon, 02 Mar 2015 09:29:15 -0500, Tanstaafl wrote:
 
 Yes, you shouldn't really have any libs in your world file. Any 
 required would be pulled in as dependencies.

 Is this in fact true?
 
 Yes. The world file is for the software you want installed. Portage will
 take care of its dependencies. Putting dependencies in world stops
 portage doing its job properly and can cause blockers at a leter dTE.
 

 I checked mine, and found:

 # grep -i libs /var/lib/portage/world
 [LOTS]

 So, should I delete all of these? Even glib and glibc?
 
 Absolutely, especially glibc. When was the last time YOU used glibc, it
 is a dependencies, not a user application.
 
 Also - is there a definitive guide (preferably for non programmer types)
 on just how to properly clean the world file?
 
 Load it into an editor and remove everything that you do not run yourself,
 or need as a startup daemon in the case of a server.
 
 The run emerge --depclean -p and read the output carefully. If there is
 anything in there you need, add it with emerge -n pkgname and run
 depclean again.
 
 Rinse and repeat until depclean shows only packages you know you don't
 need yourself, then run it again without -p.
 
 

Re: [gentoo-user] Rkhunter now showing Warnings for two files: /bin/egrep fgrep

[Tanstaafl]

On 1/26/2015 5:53 PM, Neil Bothwick n...@digimed.co.uk wrote:
 On Mon, 26 Jan 2015 11:27:05 -0500, Alec Ten Harmsel wrote:
 script: /bin/fgrep: POSIX shell script, ASCII text executable

 Anyone know if this is due to something changing in Gentoo?

 Upstream changed egrep and fgrep from binaries to shell scripts.

 This happened a while ago on testing portage but the version with the
 change only hit stable at the weekend.
 
 You can tell rkhunter to ignore them.
 
 % grep grep /etc/rkhunter.conf.local
 SCRIPTWHITELIST=/bin/egrep
 SCRIPTWHITELIST=/bin/fgrep

Perfect, thanks Alec/Neil, problem solved... :)

[gentoo-user] Rkhunter now showing Warnings for two files: /bin/egrep fgrep

[Tanstaafl]

Hello all,

Been on rkhunter 1.4.2 for a while, no changes made to its config file,
been running nightly for years without these warnings...

I recently did some Gentoo updates after almost 2 months of no updates
(was out of town), and now, even after running --propupd, I continue to
get these warnings:

  # grep Warning /var/log/rkhunter.log
 [03:10:32] Info: Emailing warnings to 'root' using command '/bin/mail
-s [rkhunter] Warnings found for ${HOST_NAME}'
 [03:10:45]   /bin/egrep  [ Warning ]
 [03:10:45] Warning: The command '/bin/egrep' has been replaced by a
script: /bin/egrep: POSIX shell script, ASCII text executable
 [03:10:45]   /bin/fgrep  [ Warning ]
 [03:10:45] Warning: The command '/bin/fgrep' has been replaced by a
script: /bin/fgrep: POSIX shell script, ASCII text executable

Anyone know if this is due to something changing in Gentoo?

Re: [gentoo-user] Download of source for file-5.22 blocked by firewall?

[Tanstaafl]

On 1/21/2015 4:45 PM, Neil Bothwick n...@digimed.co.uk wrote:
 On Wed, 21 Jan 2015 11:58:05 -0500, Tanstaafl wrote:
 
 Changed mirror setting in make.conf to:

 http://www.gtlib.gatech.edu/pub/gentoo/

 and all is well now...

 Guess there is a problem with mirror.datapipe?
 
 That's why I have several mirrors defined, portage will try them in turn
 so it doesn't matter if one fails.

Understood, but this is the first time this has happened to me that I
can recall in the last 10 years or so...

Re: [gentoo-user] Download of source for file-5.22 blocked by firewall?

[Tanstaafl]

On 1/21/2015 9:01 AM, Alec Ten Harmsel a...@alectenharmsel.com wrote:
 On 01/21/2015 08:51 AM, Tanstaafl wrote:
 From the sync output:

 Downloading
 'http://mirror.datapipe.net/gentoo/distfiles/file-5.22.tar.gz'
 --2015-01-21 08:49:43--
 http://mirror.datapipe.net/gentoo/distfiles/file-5.22.tar.gz
 Resolving mirror.datapipe.net... 64.27.65.115
 Connecting to mirror.datapipe.net|64.27.65.115|:80... connected.
 HTTP request sent, awaiting response... 404 Not Found
 2015-01-21 08:49:43 ERROR 404: Not Found.

 Downloading 'ftp://ftp.gw.com/mirrors/pub/unix/file/file-5.22.tar.gz'
 So, why the 'ERROR 404: Not Found'?

 It then falls back to ftp? But the ports it tries to use change every time?

 On 1/21/2015 7:38 AM, Tanstaafl tansta...@libertytrek.org wrote:
 Hi all,

 Ok, new one to me...

 I'm performing some updates after a hiatus of a couple of months, and
 the second package to be installed was file-5.22.

 I have my firewall locked down pretty tight, controlling even outbound
 access, and when portage tries to download the source for this file it
 is being blocked by the firewall:

 kernel: [6185615.878195] (fw): IN= OUT=enp2s0 SRC=###.###.###.###
 DST=38.117.134.18 LEN=60 TOS=0x00 PREC=0x00 TTL=64 ID=64958 DF PROTO=TCP
 SPT=52338 DPT=65369 WINDOW=14600 RES=0x00 SYN URGP=0

 I've never had a problem like this and have had the same firewall rules
 for a very long time.

 Here is what I have for portage access:

 # allow outbound subversion access for portage / layman
 -A OUTPUT -p tcp -m tcp --dport 443 -j ACCEPT
 -A OUTPUT -p tcp -m tcp --dport 3690 -j ACCEPT
 -A OUTPUT -p tcp -m tcp --dport 56160 -j ACCEPT
 # allow outbound access to git repos
 -A OUTPUT -p tcp -m tcp --dport 9418 -j ACCEPT

 Have there been some additions that I need to add? Other ideas why I'm
 unable to update file?

 Thanks


 
 I don't think it's your firewall, I can't download from either of those
 URLs. Have you ran `emerge --sync` recently? Could be some mirrors have
 changed or something, who really knows. fwiw sys-apps/file downloads
 from lug.mtu.edu for me and that works fine.

Ran it first thing this morning before attempting to update...

Just resync'd, same problem...

Re: [gentoo-user] Download of source for file-5.22 blocked by firewall?

[Tanstaafl]

On 1/21/2015 11:03 AM, Tanstaafl tansta...@libertytrek.org wrote:
 On 1/21/2015 9:01 AM, Alec Ten Harmsel a...@alectenharmsel.com wrote:
 On 01/21/2015 08:51 AM, Tanstaafl wrote:
 From the sync output:

 Downloading
 'http://mirror.datapipe.net/gentoo/distfiles/file-5.22.tar.gz'
 --2015-01-21 08:49:43--
 http://mirror.datapipe.net/gentoo/distfiles/file-5.22.tar.gz
 Resolving mirror.datapipe.net... 64.27.65.115
 Connecting to mirror.datapipe.net|64.27.65.115|:80... connected.
 HTTP request sent, awaiting response... 404 Not Found
 2015-01-21 08:49:43 ERROR 404: Not Found.

 Downloading 'ftp://ftp.gw.com/mirrors/pub/unix/file/file-5.22.tar.gz'
 So, why the 'ERROR 404: Not Found'?

 It then falls back to ftp? But the ports it tries to use change every time?

 On 1/21/2015 7:38 AM, Tanstaafl tansta...@libertytrek.org wrote:
 Hi all,

 Ok, new one to me...

 I'm performing some updates after a hiatus of a couple of months, and
 the second package to be installed was file-5.22.

 I have my firewall locked down pretty tight, controlling even outbound
 access, and when portage tries to download the source for this file it
 is being blocked by the firewall:

 kernel: [6185615.878195] (fw): IN= OUT=enp2s0 SRC=###.###.###.###
 DST=38.117.134.18 LEN=60 TOS=0x00 PREC=0x00 TTL=64 ID=64958 DF PROTO=TCP
 SPT=52338 DPT=65369 WINDOW=14600 RES=0x00 SYN URGP=0

 I've never had a problem like this and have had the same firewall rules
 for a very long time.

 Here is what I have for portage access:

 # allow outbound subversion access for portage / layman
 -A OUTPUT -p tcp -m tcp --dport 443 -j ACCEPT
 -A OUTPUT -p tcp -m tcp --dport 3690 -j ACCEPT
 -A OUTPUT -p tcp -m tcp --dport 56160 -j ACCEPT
 # allow outbound access to git repos
 -A OUTPUT -p tcp -m tcp --dport 9418 -j ACCEPT

 Have there been some additions that I need to add? Other ideas why I'm
 unable to update file?

 Thanks



 I don't think it's your firewall, I can't download from either of those
 URLs. Have you ran `emerge --sync` recently? Could be some mirrors have
 changed or something, who really knows. fwiw sys-apps/file downloads
 from lug.mtu.edu for me and that works fine.
 
 Ran it first thing this morning before attempting to update...
 
 Just resync'd, same problem...

Changed mirror setting in make.conf to:

http://www.gtlib.gatech.edu/pub/gentoo/

and all is well now...

Guess there is a problem with mirror.datapipe?

[gentoo-user] Download of source for file-5.22 blocked by firewall?

[Tanstaafl]

Hi all,

Ok, new one to me...

I'm performing some updates after a hiatus of a couple of months, and
the second package to be installed was file-5.22.

I have my firewall locked down pretty tight, controlling even outbound
access, and when portage tries to download the source for this file it
is being blocked by the firewall:

kernel: [6185615.878195] (fw): IN= OUT=enp2s0 SRC=###.###.###.###
DST=38.117.134.18 LEN=60 TOS=0x00 PREC=0x00 TTL=64 ID=64958 DF PROTO=TCP
SPT=52338 DPT=65369 WINDOW=14600 RES=0x00 SYN URGP=0

I've never had a problem like this and have had the same firewall rules
for a very long time.

Here is what I have for portage access:

# allow outbound subversion access for portage / layman
-A OUTPUT -p tcp -m tcp --dport 443 -j ACCEPT
-A OUTPUT -p tcp -m tcp --dport 3690 -j ACCEPT
-A OUTPUT -p tcp -m tcp --dport 56160 -j ACCEPT
# allow outbound access to git repos
-A OUTPUT -p tcp -m tcp --dport 9418 -j ACCEPT

Have there been some additions that I need to add? Other ideas why I'm
unable to update file?

Thanks

Re: [gentoo-user] Download of source for file-5.22 blocked by firewall?

[Tanstaafl]

From the sync output:

 Downloading
'http://mirror.datapipe.net/gentoo/distfiles/file-5.22.tar.gz'
--2015-01-21 08:49:43--
http://mirror.datapipe.net/gentoo/distfiles/file-5.22.tar.gz
Resolving mirror.datapipe.net... 64.27.65.115
Connecting to mirror.datapipe.net|64.27.65.115|:80... connected.
HTTP request sent, awaiting response... 404 Not Found
2015-01-21 08:49:43 ERROR 404: Not Found.

 Downloading 'ftp://ftp.gw.com/mirrors/pub/unix/file/file-5.22.tar.gz'

So, why the 'ERROR 404: Not Found'?

It then falls back to ftp? But the ports it tries to use change every time?

On 1/21/2015 7:38 AM, Tanstaafl tansta...@libertytrek.org wrote:
 Hi all,
 
 Ok, new one to me...
 
 I'm performing some updates after a hiatus of a couple of months, and
 the second package to be installed was file-5.22.
 
 I have my firewall locked down pretty tight, controlling even outbound
 access, and when portage tries to download the source for this file it
 is being blocked by the firewall:
 
 kernel: [6185615.878195] (fw): IN= OUT=enp2s0 SRC=###.###.###.###
 DST=38.117.134.18 LEN=60 TOS=0x00 PREC=0x00 TTL=64 ID=64958 DF PROTO=TCP
 SPT=52338 DPT=65369 WINDOW=14600 RES=0x00 SYN URGP=0
 
 I've never had a problem like this and have had the same firewall rules
 for a very long time.
 
 Here is what I have for portage access:
 
 # allow outbound subversion access for portage / layman
 -A OUTPUT -p tcp -m tcp --dport 443 -j ACCEPT
 -A OUTPUT -p tcp -m tcp --dport 3690 -j ACCEPT
 -A OUTPUT -p tcp -m tcp --dport 56160 -j ACCEPT
 # allow outbound access to git repos
 -A OUTPUT -p tcp -m tcp --dport 9418 -j ACCEPT
 
 Have there been some additions that I need to add? Other ideas why I'm
 unable to update file?
 
 Thanks
 

[gentoo-user] Layman - list any/all apps installed from a layman repo

[Tanstaafl]

Is this possible?

I have two layman repos I have added at some point in time in the past:
sunrise, and ultrabug.

I'd like to see what, if any packages, I have installed from them, and
see if I can remove them and ultimately remove the layman repo.

Thanks

Re: [gentoo-user] Layman - list any/all apps installed from a layman repo

[Tanstaafl]

On 11/26/2014 9:28 AM, Александр Паутов sh2d0...@gmail.com wrote:
 man eix

Ah, I thought I'd need to do this with the layman command.

Thanks!

 -J, --installed-overlay
   Only  match  packages which have been installed from some overlay.  
 To get a completely reliable
   result you should set CHECK_INSTALLED_OVERLAYS to true (which is 
 not the default because it dra‐
   matically slows down the test).  See CHECK_INSTALLED_OVERLAYS for 
 details.

Ok, so I set this in /etc/eix-sync.conf?

And if, after setting CHECK_INSTALLED_OVERLAYS=true in eix-sync.conf,
the result shows 'No matches found', then I don't have anything from
that overlay installed?

Thanks again...

Re: [gentoo-user] The future of linux, and Gentoo specifically now

[Tanstaafl]

On 11/21/2014 2:32 AM, Canek Peláez Valdés can...@gmail.com wrote:
 As long as there are developers willing and able to support OpenRC in
 Gentoo (and it looks like there are), that will be the case. To make
 sure that this remains to be true, help them.

This is really an incorrect (and even borderline arrogant) answer...

To answer the OPs question correctly...

Since OpenRC is the *default* - for now at least - it is *king*, and
systemd is the red-headed step-child, and as such OpenRC is and will be
100% fully supported.

With that in mind, it is also 100% on the *systemd proponents* to make
sure that *systemd* is 'fully supported' as an *alternate* init system.

Side-note, unless the nature of systemd changes quite a bit for the
better in the future, if its supporters are ever able to force a change
to it as the default init in gentoo, that will be the day I switch to
FreeBSD.

Re: [gentoo-user] Re: The future of linux, and Gentoo specifically now

[Tanstaafl]

On 11/23/2014 1:00 PM, Nicolas Sebrecht nicolas.s-...@laposte.net wrote:
 On Sun, Nov 23, 2014 at 12:44:12PM -0500, Tanstaafl wrote:
 Since OpenRC is the *default* - for now at least - it is *king*, and
 systemd is the red-headed step-child, and as such OpenRC is and will be
 100% fully supported.

 With that in mind, it is also 100% on the *systemd proponents* to make
 sure that *systemd* is 'fully supported' as an *alternate* init system.
 
 You're wrong.

Really? OpenRC isn't the default init system for Gentoo? Prove it...

 At first, Gentoo does with what software maintainers offer. 

Irrelevant. Since OpenRC is the default init system, any package that
doesn't work properly with it would, by definition, be a bug that must
be fixed - if the maintainer wants their package to be marked as
stable/usable by 99.99% of gentoo users.

Re: [gentoo-user] The future of linux, and Gentoo specifically now

[Tanstaafl]

On 11/23/2014 2:02 PM, Marc Joliet mar...@gmx.de wrote:
 I get the distinct feeling that you two should probably read the LWN article
 again.

No need...

This:

In the end, it comes down to this: it just is not that important. It is
just a system initialization utility.

simply proves that the author either doesn't have a clue what systemd
is, or is attempting to obfuscate what it really is.

It is *much* more than '/just a system initialization utility', and in
fact, all of the brou-ha-ha is *because* of this fact.

Re: [gentoo-user] The future of linux, and Gentoo specifically now

[Tanstaafl]

On 11/23/2014 1:07 PM, Canek Peláez Valdés can...@gmail.com wrote:
 So, don't be surprised if FreeBSD develops something *really* similar
 (along the lines of the second bullet) to systemd in the future

Doesn't matter because:

a) it won't be systemd
(with all of its warts)

b) it won't be written by Lennart and company
(so won't have any of that baggage either)

Also, I'll wager it likely won't be implemented in such a way as to be
perceived by its user base as being shoved down their throats.

They will, I'm sure, that the long view (this slideshow is  simply take
the best parts of systemd, lose the garbage (that is the source of most
of the angst), and end up with something rather sane.

Re: [gentoo-user] Re: The future of linux, and Gentoo specifically now

[Tanstaafl]

On 11/23/2014 2:24 PM, Rich Freeman ri...@gentoo.org wrote:
 The current Gentoo policy is that maintainers cannot block other devs
 from adding support for systemd/openrc/etc to their packages if they
 lack such support.  Gentoo policy does NOT require maintainers to
 support any particular init system.
 
 If you feel otherwise, I suggest you cite the policy.

Interesting... packages don't have to support the default init system...

Can anyone say 'can of worms'?

Oh well, its never been a problem for me, so I doubt it ever will be, at
least for the foreseeable future.

Re: [gentoo-user] The future of linux, and Gentoo specifically now

[Tanstaafl]

On 11/23/2014 3:23 PM, Tanstaafl tansta...@libertytrek.org wrote:
 Also, I'll wager it likely won't be implemented in such a way as to be
 perceived by its user base as being shoved down their throats.

Clarification - this reference was actually to the way Debian is
handling it, not Gentoo - I have no problems whatsoever with the way
gentoo is handling systemd ... right now at least...

Re: [gentoo-user] Re: The future of linux, and Gentoo specifically now

[Tanstaafl]

On 11/23/2014 4:21 PM, Alan McKinnon alan.mckin...@gmail.com wrote:
 There is no such thing as the default init system.
 
 There is only the one that portage will happen to install should you not
 specify a preference.

Lol!

That is what I would call a 'default'...

Re: [gentoo-user] The future of linux, and Gentoo specifically now

[Tanstaafl]

On 11/23/2014 3:34 PM, Canek Peláez Valdés can...@gmail.com wrote:
 On Sun, Nov 23, 2014 at 2:23 PM, Tanstaafl tansta...@libertytrek.org wrote:
 On 11/23/2014 1:07 PM, Canek Peláez Valdés can...@gmail.com wrote:
 So, don't be surprised if FreeBSD develops something *really* similar
 (along the lines of the second bullet) to systemd in the future

 Doesn't matter because:

 a) it won't be systemd
 (with all of its warts)

 b) it won't be written by Lennart and company
 (so won't have any of that baggage either)

 Oh my. So it's the name of the project and (one) author? All the
 design and ideas behind it are irrelevant then?

Not what I said at all, and certainly not what I meant, and you know (or
should have known) it.

I was talking about THE BAGGAGE that comes with those two things (the
name, and its association with Lennart).

Regardless of whether or not you agree with the sentiments, are you
seriously suggesting those two things aren't 'baggage' in this case?

Re: [gentoo-user] syslog-ng-3.6.1 nearly no log anymore

[Tanstaafl]

On 11/14/2014 12:46 PM, Alan McKinnon alan.mckin...@gmail.com wrote:
 On 14/11/2014 18:18, Helmut Jarausch wrote:
 The only unusual message is
 Systemd is not detected as the running init system;

 which is true since I still use openrc (but with systemd installed, as 
 well)
 Could this be the culprit?

 I doubt it, I also use 3.6.1 without systemd.

But did you miss that:

a) he has it installed, and

b) he gets a message about 'systemd is not detected as the running init
system'

?

Maybe it is trying to use systemd but since it isn't running?

Re: [gentoo-user] Re: udev (viable) alternatives ?

[Tanstaafl]

On 9/26/2014 1:04 AM, Samuli Suominen ssuomi...@gentoo.org wrote:
 On 25/09/14 22:03, James wrote:
 I'd be better of with a fresh install of  lilblue + musl + eudev
 is what you are really saying here?

 that's the only usecase for eudev currently, yes, otherwise you have no
 reason to switch

Hi Samuli,

So, is the above still true?

eudev is looking more attractive every day... but can it continue to
work and be supported if Lennart gets his way and upstream udev stops
working without systemd?

Just saw reference to the following thread on the debian-user list, and
it includes a couple of responses from you (and an insult hurled at you
from Lennart)... and I'm a bit worried that gentoo will be forced to
swallow the systemd koolaid sometime maybe even sooner rather than later
if Lennart succeeds in making udev work only with systemd, as he makes
clear his desire to do just that here:

http://lists.freedesktop.org/archives/systemd-devel/2014-May/019664.html

Notably:

Lennart said:
 Also note that at that point we intend to move udev onto kdbus
 as transport, and get rid of the userspace-to-userspace
 netlink-based tranport udev used so far. Unless the
 systemd-haters prepare another kdbus userspace until then this
 will effectively also mean that we will not support non-systemd
 systems with udev anymore starting at that point. Gentoo folks,
 this is your wakeup call.

Samuli replied:
 I've already set minimum kernel required to 2.6.39 in = 213, and
 I'd be fine setting it even higher. Talking only of the udev bit
 here. I don't like dropping support for old versions, but if that's
 what has to be done, I'll go with that. Please, don't use this as
 an excuse to drop support for MinimalBuilds as described in wiki in
 some manner. As in, if it's still possible to use some kernel, like
 kernel with kdbus, and even if it requires an userspace library
 like 'libsystemd-something' to go with it, and still get a udev one
 way or another, that can run standalone, we are all good.

Lennart responded:
 You need the userspace code to set up the bus and its policy and
 handle activation. That's not a trivial task. For us, that's what
 sytemd does in PID 1. You'd need to come up with an alternative for
 that.

Samuli said:
 I'd really hate to be forced to fork (or carry huge patchset) 
 unnecessarily (I'm not a systemd hater, I'm not a eudev lover, I'm
 simply working on what is provided to me by *you*, udev upstream)

Lennart replied:
 Oh god. You know, if you come me like this as blame me that I would
 force you to do something, then you just piss me off and make me
 ignore you.

 Anyway, as soon as kdbus is merged this i how we will maintain udev,
 you have ample time to figure out some solution that works for you,
 but we will not support the udev-on-netlink case anymore. I see three
 options: a) fork things, b) live with systemd, c) if hate systemd
 that much, but love udev so much, then implement an alternative
 userspace for kdbus to do initialiuzation/policy/activation.
 
 Also note that this will not be a change that is just internal
 between udev and libudev. We expect that clients will soonishly just
 start doing normal bus calls to the new udev, like they'd do them to
 any other system service instead of using libudev.

Re: [gentoo-user] Re: udev (viable) alternatives ?

[Tanstaafl]

On 11/10/2014 7:30 AM, Rich Freeman ri...@gentoo.org wrote:
 Well, there are no plans to make udev stop working without systemd as
 far as I can tell.  HOWEVER, there ARE plans to require using kdbus to
 communicate with udev, and for that to work there needs to be a
 userspace initialization of kdbus/etc.

So... you're saying I'm mis-reading this:

 Unless the systemd-haters prepare another kdbus userspace until then
 this will effectively also mean that we will not support non-systemd 
 systems with udev anymore starting at that point. Gentoo folks, this
 is your wakeup call. 

and that it doesn't mean that udev will stop working without systemd,
or, as Lennart said, ... we will not support non-systemd systems with
udev anymore staryting at that point (when udev is moved onto kdbus as
transport)?

Or... maybe eudev (or mdev, or both) could or would have to be
[re]written so as to be fulfill the 'kdbus userspace' role Lennart
mentions above?

Being 'not a dev' (or programmer at all), I guess it is entirely
possible it isn't as bad as it sounds, but his Gentoo folks, this is
your wake-up call. comment is what really stands out to me, as a gentoo
user.

I don't care about dbus/kdbus - if it is in the kernel, and under Linus'
control, and I need to enable it to use my systems, that is fine with
me. What I want is to always have the option - a *stable* option - to
not have to install/use systemd if I don't want to.

Re: [gentoo-user] udev update

[Tanstaafl]

On 11/10/2014 8:21 AM, Francisco Ares fra...@gmail.com wrote:
 Checking the news (eselect news read), I see that an upgrade to udev-217
 might break firmware loading, so the news tagged
 2014-11-07-udev-upgrade says that a kernel = 3.7 should be configured to:
 
 CONFIG_FW_LOADER_USER_HELPER=n
 
 Is it that simple?  Trying a new kernel build using menuconfig, it
 says that CONFIG_FW_LOADER_USER_HELPER depends on CONFIG_FW_LOADER, and
 this one depends on a huge list of other configuration elements.
 
 Any thoughts?

Ueah... UGH... thanks Lennart/systemd devs for yet another thing to have
to worry about...

Re: [gentoo-user] Re: udev (viable) alternatives ?

[Tanstaafl]

On 11/10/2014 10:48 AM, Samuli Suominen ssuomi...@gentoo.org wrote:
 I wouldn't worry about it at all, there is no way *sys-fs/udev
 ebuild* will ever need systemd. There might be a news item later,
 with instructions on moving to something else, but that's not
 something we are even planning at the moment, so sys-fs/udev is still
 the de facto proper upstream /dev manager.

Well, that sounds reassuring, so thanks very much for this and you're
hard work for all of us non-programmer gentoo users, it is much appreciated!

I guess Lennart was just using words that I read the wrong way... even
now if I re-read his posts, it sounds to me like he is saying 'no more
separate udev without systemd ultimately'... and I know for sure he has
made exactly this comments in the past, but that was admittedly 1 year
or two ago...

[gentoo-user] Anyone using Veeam to backup Gentoo VMs on vmware hosts?

[Tanstaafl]

Wondering if this is supported?

Thanks

Re: [gentoo-user] Anyone using Veeam to backup Gentoo VMs on vmware hosts?

[Tanstaafl]

On 11/10/2014 1:21 PM, Jarry mr.ja...@gmail.com wrote:
 On 10-Nov-14 18:06, Tanstaafl wrote:
 Wondering if this is supported?
 
 It is supported, but not on ESXi-hypervisor (free) anymore.
 AFAIK only Trilead VM-Explorer works on free-ESXi (and command
 line tools i.e. ghettoVCB).

Cool, thanks (we have the paid version)...

Which version of vm tools do you use on your gentoo?

I'm using open-vm-tools, hopefully that is good enough.

Thanks again!

Re: [gentoo-user] alternative kernels

[Tanstaafl]

On 10/31/2014 3:11 AM, J. Roeleveld jo...@antarean.org wrote:
 Systemd is, in my opinion, suffering from the same feature-creep as Grub2 
 does.
 Grub1 was faster, because it was smaller. But it isn't working propery 
 anymore 
 and Grub2 does its job

Eh?? Grub1 doesn't work properly any more?

News to me, and my system that is still using it (properly as far as I
can tell)...

[gentoo-user] Switch from PORTDIR and PORTDIR_OVERLAY to repos.conf - WAS: Moving the portage tree to /var

[Tanstaafl]

On 10/29/2014 7:37 AM, Martin Vaeth mar...@mvath.de wrote:
 The long-term plans are to drop PORTDIR and PORTDIR_OVERLAY
 completely, the reason being that it is not flexible enough:
 With repos.conf you can specify details for every repository,
 you are not even forced to have a *single* major repository
 (AFAIK, this is called mix-ins in some other package managers),
 etc.

Ok, thanks Martin/guys...

So, the short answer is:

Don't worry about it, if/when something needs to be done to prevent
breakage, we will let you know ahead of time via a news item or other
appropriate method.

Which sounds like the right thing to do for those of us who prefer
stability to (too much) bleeding edge?

But - for those of us who, while preferring stability, also might like
to get a jump on things *if* switching to repos.conf now is:

 a) easy,
 b) fully supported, and
 c) considered perfectly stable,

would it be possible for someone with intimate knowledge of the details
to write up a wiki page for how to go about it?

Thanks again!

Re: [gentoo-user] Moving the portage tree to /var

[Tanstaafl]

On 10/25/2014 12:45 PM, Michael Orlitzky m...@gentoo.org wrote:
 On 10/25/2014 09:57 AM, Tanstaafl wrote:
 On 10/7/2014 6:03 PM, Mick michaelkintz...@gmail.com wrote:
 On Tuesday 07 Oct 2014 22:56:28 Mike Gilbert wrote:
 Quite the opposite. Ideally, you should remove the PORTDIR setting
 from make.conf. repos.conf is the newer, more flexible way to
 configure it.

 Unfortunately, that will break some of the third-party portage tools
 which parse make.conf directly.

 Scratches head ... so are we supposed to guess this, wait for a news 
 article 
 somewhere, or will it show up in an emerge log somewhere?

 So... would appreciate a response from someone who knows.

 I really dislike making systemic changes like this without really solid
 guidance on how (and hopefully the why too)...

 I'm only guessing, but I don't think PORTDIR is going away for a while.

Ok, but that doesn't answer the main question...

Mike Gilbert - apparently a gentoo dev - said that ideally we should
remove the PORTDIR setting.

This begs three questions...

1. Is this correct?

2. If so, is there a definitive guide/news item/post somewhere that
explains the details (how and why mainly)?

3. If not, why did Mike say this?

thanks...

Re: [gentoo-user] Moving the portage tree to /var

[Tanstaafl]

On 10/7/2014 6:03 PM, Mick michaelkintz...@gmail.com wrote:
 On Tuesday 07 Oct 2014 22:56:28 Mike Gilbert wrote:
 Quite the opposite. Ideally, you should remove the PORTDIR setting
 from make.conf. repos.conf is the newer, more flexible way to
 configure it.

 Unfortunately, that will break some of the third-party portage tools
 which parse make.conf directly.

 Scratches head ... so are we supposed to guess this, wait for a news 
 article 
 somewhere, or will it show up in an emerge log somewhere?

So... would appreciate a response from someone who knows.

I really dislike making systemic changes like this without really solid
guidance on how (and hopefully the why too)...

Re: [gentoo-user] Moving the portage tree to /var

[Tanstaafl]

On 10/7/2014 5:56 PM, Mike Gilbert flop...@gentoo.org wrote:
 Quite the opposite. Ideally, you should remove the PORTDIR setting
 from make.conf. repos.conf is the newer, more flexible way to
 configure it.

Ok, did I miss a news item on this?

Is this discussed in detail somewhere?

Re: [gentoo-user] Re: has anyone tried KDE5?

[Tanstaafl]

On 10/4/2014 1:37 PM, Michael Palimaka kensing...@gentoo.org wrote:
 The KDE release structure has evolved[1], decoupling the release cycle
 of the Platform, Workspace, and Applications. This means that there is
 no longer a single Software Compilation in the same way there was with
 KDE 4.

Interesting.

Has this been discussed in detail before? What is the consensus about
this in the gentoo dev world? Meaning - is it a good or bad thing? I've
been  thinking about giving KDE a try again, but still read enough
negative things about it to give me pause (my time is very limited so I
have to pick/choose what I want to spend it on)...

Re: [gentoo-user] Re: has anyone tried KDE5?

[Tanstaafl]

On 10/5/2014 11:01 AM, Michael Palimaka kensing...@gentoo.org wrote:
 I'd be interested to know what KDE negatives you've
 experienced/heard in the past though.

Bloat, buggy/unstable ever since the move from KDE3 to KDE4 (and never
really gotten any better over time), etc...

But of course there are always haters too... I'm sure it isn't as bad as
the loudest complainers make it sound...

[gentoo-user] Pin a package to a binary (quickpkg'd) version?

[Tanstaafl]

Is it possible to do this?

Thanks...

Re: [gentoo-user] Pin a package to a binary (quickpkg'd) version?

[Tanstaafl]

On 8/23/2014 8:16 AM, Alan McKinnon alan.mckin...@gmail.com wrote:

On 23/08/2014 12:34, Tanstaafl wrote:

Is it possible to do this?



Not directly. I'm assuming you mean packages you built yourself and
quick-pkg'ed them, not something available as a -bin


Correct... I have buildpkg feature enabled in make.conf, so everything 
gets quickpkg'd...



You can use emerge -K, so emerge will fail if there's no binpkg
available. This will do what you want as long as you

a) always use the -K option
b) don't try emerge something else as well

Portage is designed to build your packages from source; binpkgs are very
much a third class citizen with only very primitive levels of support.


Bummer...

What I want is to be able to pin a specific package to the quickpkg'd 
version, so it doesn't get updated during an emerge world...

[gentoo-user] Re: Lots of big updates...

[Tanstaafl]

On 8/10/2014 11:45 AM, Tanstaafl tansta...@libertytrek.org wrote:

I haven't updated in a little while, and am seeing a lot of big updates...

The main ones that concern me are:

perl (5.16  5.18)


Ok, a little experimenting to see if I can stage these updates and just 
update perl first, I get:



 # emerge -pvuDN perl

These are the packages that would be merged, in order:

Calculating dependencies... done!
[ebuild U  ] virtual/libintl-0-r1 [0] ABI_X86=(64%*) -32% (-x32) 0 kB
[ebuild U  ] sys-devel/gnuconfig-20140212 [20131128] 44 kB
[ebuild U  ] app-admin/perl-cleaner-2.16 [2.15] 6 kB
[ebuild U  ] sys-libs/db-4.8.30-r1:4.8 [4.8.30:4.8] USE=cxx -doc -examples -java -tcl 
{-test} ABI_X86=(64%*) (-32) (-x32) 22,351 kB
[ebuild U  ] dev-lang/perl-5.18.2-r1:0/5.18 [5.16.3:0/5.16] USE=berkdb gdbm 
-debug -doc -ithreads 13,746 kB

Total: 5 packages (5 upgrades), Size of downloads: 36,147 kB

!!! Multiple package instances within a single package slot have been pulled
!!! into the dependency graph, resulting in a slot conflict:

dev-lang/perl:0

  (dev-lang/perl-5.16.3::gentoo, installed) pulled in by
=dev-lang/perl-5.16* required by 
(virtual/perl-Attribute-Handlers-0.930.0-r1::gentoo, installed)
dev-lang/perl:0/5.16=[-build(-)] required by 
(dev-perl/Net-SSLeay-1.550::gentoo, installed)
dev-lang/perl:0/5.16=[-build(-)] required by 
(dev-perl/IO-Socket-SSL-1.953.0::gentoo, installed)
dev-lang/perl:0/5.16=[-build(-)] required by 
(dev-perl/Sub-Exporter-0.986.0::gentoo, installed)
dev-lang/perl:0/5.16=[-build(-)] required by 
(dev-perl/PlRPC-0.202.0-r2::gentoo, installed)
dev-lang/perl:0/5.16=[-build(-)] required by 
(dev-perl/Net-Daemon-0.480.0-r1::gentoo, installed)
dev-lang/perl:0/5.16=[-build(-)] required by (dev-vcs/git-1.8.5.5::gentoo, 
installed)
dev-lang/perl:0/5.16=[-build(-)] required by 
(dev-perl/log-dispatch-2.410.0::gentoo, installed)
dev-lang/perl:0/5.16=[-build(-)] required by 
(dev-perl/Try-Tiny-0.180.0::gentoo, installed)
dev-lang/perl:0/5.16=[-build(-)] required by 
(dev-perl/Error-0.170.210::gentoo, installed)
dev-lang/perl:0/5.16=[-build(-)] required by 
(dev-perl/Package-Stash-XS-0.280.0::gentoo, installed)
dev-lang/perl:0/5.16=[-build(-)] required by 
(net-analyzer/net-snmp-5.7.3_pre3::gentoo, installed)
dev-lang/perl:0/5.16=[-build(-)] required by 
(dev-perl/Package-Stash-0.360.0::gentoo, installed)
(and 1 more with the same problems)

  (dev-lang/perl-5.18.2-r1::gentoo, ebuild scheduled for merge) pulled in by
=dev-lang/perl-5.18* required by 
(virtual/perl-MIME-Base64-3.130.0-r3::gentoo, installed)
(and 3 more with the same problem)


A little googling suggests that I could resolve this by a simple:

emerge -C virtual/perl-Attribute-Handlers-0.930.0-r1

emerge -C virtual/perl-MIME-Base64-3.130.0-r3

But even if this does resolve the conflicts, what would break 
(temporarily) if I removed those? They're virtuals, so... maybe... 
nothing? Any way to check?

[gentoo-user] Lots of big updates...

[Tanstaafl]

Hi everyone,

I haven't updated in a little while, and am seeing a lot of big updates...

The main ones that concern me are:

perl (5.16  5.18)

mariadb (5.5.37  10.0.12)

and of course, I always worry about:

glib (2.38.2-r1  2.40.0-r1)

glibc (2.17  2.19-r1)

Anyone have any warnings/caveats about these updates?

Especially the mariadb update? I'm thinking about masking that one for a 
while, just to be safe...


Thanks

Re: [gentoo-user] Recommendations for scheduler

[Tanstaafl]

On 8/2/2014 5:33 AM, Alan McKinnon alan.mckin...@gmail.com wrote:

I have an unusual boss. He's a business owner and quite naturally
profit-driven. He also employs smart people and expects us to maintain
systems in-house.

He's also a zealous FLOSS fan.

So when I present him a price tag for software his first question is
always is there any free as in freedom software suited for the job?

I'm still trying to wrap my brains around dealing with a boss that
thinks like this:-)


I am *sooo* jealous... ;)

Re: [gentoo-user] colord failed to upgrade

[Tanstaafl]

On 8/1/2014 7:53 AM, J. Roeleveld jo...@antarean.org wrote:

Snipping emails using a mobile phone on a bumpy road doesn't work...


So, you're replying to emails while driving?

bites tongue hard

bashes knuckles harder

Are you insane?

Re: [gentoo-user] colord failed to upgrade

[Tanstaafl]

On 8/1/2014 8:42 AM, J. Roeleveld jo...@antarean.org wrote:

But I don't drive myself when using my mobile.

This is on a bus...


Lol... sorry, I never ride a bus so didn't consider that possibility... ;)

Re: [gentoo-user] udev upgrade 208 212-r1, openrc USE flag changed to disabled?

[Tanstaafl]

On 6/14/2014 7:08 PM, Alan McKinnon alan.mckin...@gmail.com wrote:

The answer is *always in the ebuild and Changelog.


I agree that, now that I know what and why, that it didn't rate a news 
item, but - especially with respect to anything related to the touchy 
subject of systemd/openrc - some kind of informational text explaining 
the change in the postinst text of the installation (I always read these 
emails when performing updates, even for non critical packages) is 
warranted (imnsho)...

[gentoo-user] udev upgrade 208 212-r1, openrc USE flag changed to disabled?

[Tanstaafl]

Is this right?

  # eix udev
 ...

[U] sys-fs/udev
 Available versions:  208-r1^t 212-r1^t ~213^t **^t {acl doc +firmware-loader gudev 
introspection +kmod selinux static-libs ABI_MIPS=n32 n64 o32 ABI_X86=32 64 
x32}
 Installed versions:  208^t{tbz2}(03:30:13 PM 12/08/2013)(acl firmware-loader kmod openrc -doc 
-gudev -introspection -selinux -static-libs ABI_MIPS=-n32 -n64 -o32 ABI_X86=64 
-32 -x32)
 Homepage:http://www.freedesktop.org/wiki/Software/systemd
 Description: Linux dynamic and persistent device naming support 
(aka userspace devfs)

...

Installed version shows the openrc USE flag, new version doesn't.

And more importantly:


 # emerge -pvuDN udev

These are the packages that would be merged, in order:

Calculating dependencies... done!
[ebuild U  ] sys-apps/kmod-17 [16] USE=tools zlib -debug -doc -lzma -python% -static-libs 
(-openrc%*) PYTHON_TARGETS=python2_7%* python3_3%* -python3_2% (-python3_4) 1,450 
kB
[ebuild U  ] sys-fs/udev-212-r1 [208] USE=acl firmware-loader kmod -doc -gudev 
-introspection (-selinux) -static-libs (-openrc%*) ABI_X86=(64) (-32) (-x32) 
2,660 kB
[ebuild  N ] virtual/libudev-208:0/1  USE=-static-libs ABI_X86=(64) (-32) 
(-x32) 0 kB
[ebuild U  ] virtual/udev-208-r2 [208-r1] USE=-gudev -introspection -static-libs 
(-kmod%*) (-selinux%) ABI_X86=(64) (-32) (-x32) 0 kB
[ebuild U  ] sys-fs/udev-init-scripts-26-r2 [26] 0 kB

Total: 5 packages (4 upgrades, 1 new), Size of downloads: 4,110 kB


This clearly shows the -openrc USE flag being applied.

Googling didn't reveal an answer...

Re: [gentoo-user] udev upgrade 208 212-r1, openrc USE flag changed to disabled?

[Tanstaafl]

Thanks Alan, but...

On 6/14/2014 10:16 AM, Alan McKinnon alan.mckin...@gmail.com wrote:

On 14/06/2014 15:30, Tanstaafl wrote:

This clearly shows the -openrc USE flag being applied.


You read it wrong. The USE flag is not being applied it's being removed
(the minus -),


Well, I did include the hyphen(-), so I meant in the negative (removed) 
sense.



and the reason it is being removed is that it doesn't exist for the
new ebuild. That's what the parenthesis means.


Ah... ok, I'd forgotten about the significance of the ()...

But...


Googling didn't reveal an answer...


It's in the emerge man page. If not there, is one of the man pages from
portage


Ok, that explains the meaning of the (), but doesn't explain this 
*change* satisfactorily (to a non-coder at least)...


*Why* was it removed/no longer needed? And why was it needed previously?

Since udev (and openrc vs systemd) is such a huge topic lately, I think 
this should be clearly explained, possibly even warranting a news item.


I still, even after your answer, don't really understand why and whether 
or not this is 'normal', or going to bite me later big time.


Thanks again, I'd like to do this upgrade this weekend, but I don't 
upgrade system critical packages without fully understanding changes 
like this.

Re: [gentoo-user] udev upgrade 208 212-r1, openrc USE flag changed to disabled?

[Tanstaafl]

On 6/14/2014 1:02 PM, Mike Gilbert flop...@gentoo.org wrote:

On Sat, Jun 14, 2014 at 10:31 AM, Tanstaafl tansta...@libertytrek.org wrote:

*Why* was it removed/no longer needed? And why was it needed previously?



Read the ChangeLog for sys-fs/udev, specifically the entry on 03 Apr 2014.


Thanks - a half hour of googling didn't find this.


Since udev (and openrc vs systemd) is such a huge topic lately, I think this
should be clearly explained, possibly even warranting a news item.



We don't need news items for every little change to
udev/openrc/systemd, especially when no action is required.


Still, for those of us who actually look at what is about to happen, and 
notice a change like this that could potentially cause boot problems 
(udev+openrc), it would be nice.


Anyway, thanks for the pointer, I understand it now and have already 
upgraded udev...

Re: [gentoo-user] udev upgrade 208 212-r1, openrc USE flag changed to disabled?

[Tanstaafl]

On 6/14/2014 2:15 PM, Tom H tomh0...@gmail.com wrote:

On Sat, Jun 14, 2014 at 1:28 PM, Tanstaafl tansta...@libertytrek.org wrote:

On 6/14/2014 1:02 PM, Mike Gilbert flop...@gentoo.org wrote:

On Sat, Jun 14, 2014 at 10:31 AM, Tanstaafl tansta...@libertytrek.org
wrote:


*Why* was it removed/no longer needed? And why was it needed previously?


Read the ChangeLog for sys-fs/udev, specifically the entry on 03 Apr 2014.


Thanks - a half hour of googling didn't find this.



03 Apr 2014; Samuli Suominen ssuomi...@gentoo.org
udev-212-r1.ebuild, udev-.ebuild:
Punt USE=openrc and always pull in sys-fs/udev-init-scripts to match
behavior of sys-apps/systemd's ebuild.


Which means... what exactly?

The only way I can make sense of your reply is...

It means the only purpose of the openrc USE flag prio to this change was 
to pull in udev-init-scripts?


See what I mean? How am I supposed to know that?

Apologies - WAS: Re: [gentoo-user] Systemd upower

[Tanstaafl]

On 6/4/2014 9:47 AM, Neil Bothwick n...@digimed.co.uk wrote:

You seem to think the Upower devs simply decided to use systemd instead
of doing it themselves. In fact, they were always using code, from either
systemd or pm-utils. The fact that development stopped on pm-utils is
neither the fault of the Upower or systemd people. They were reduced to a
choice of one and you blame them for making the wrong choice?


Actually, I wasn't talking about upower specifically, I was talking 
about this whole slippery slope that is systemd - but you are right, and 
I absolutely apologize for my comment about 'lazy devs', and most of my 
other negative comments.


I still don't like the way systemd seems to be devouring everything to 
the point that it is apparently inevitable that it will become the 
default init system for all linux system.


But I also admit that this is more just personal bias against 
Lennart/Kay/etc and all things related to them, all coming just from the 
many threads I've read, and also just fear of change in general (being 
that I am *not* a programmer, and am *not* capable of doing anything 
about this myself, regardless of if I would have the time or not).


So, I will absolutely cease and desist denigrating systemd, at least 
until such time as I can speak from direct personal experience.


First question: is there a decent guide to installing a gentoo system 
from scratch using systemd as the init system?


Second question: is there a decent guide to how to switch from OpenRC to 
systemd?


Third question: is there a decent guide on how to switch from systemd 
back to OpenRC, if I encounter any serious problems on a production box?


Thanks, and again, my apologies for starting another flame-fest, and 
especially for basically abandoning the thread afterwards (busy week 
last week)...

[gentoo-user] udev 208 to 212 update, 2 questions...

[Tanstaafl]

Ok, Getting ready to do this update, but the wiki text is confusing...

It states:



udev 208 to 212

The following special attention is required:

snip

File /lib/udev/rules.d/80-net-name-slot.rules was replaced with 
/lib/udev/rules.d/80-net-setup-link.rules. If you are currently using an 
empty (or single-comment) /etc/udev/rules.d/80-net-name-slot.rules to 
disable predictable network interface names, you should now use 
80-net-setup-link.rules. eg:


cd /etc/udev/rules.d/  ln 80-net-name-slot.rules 80-net-setup-link.rules

..to keep the override both pre- and post-upgrade; you can then:

rm /etc/udev/rules.d/80-net-name-slot.rules

..once you have upgraded. The hardlink can be made now, in order to 
protect against not noticing the upgrade in a busy or non-professional 
situation.


However, 80-net-setup-link.rules is only a trigger for the actual 
configuration file 99-default.link at /lib/systemd/network/ which you 
can override at /etc/systemd/network/
The most reliable way of disabling the new network interface scheme is 
still the kernel bootline parameter: net.ifnames=0


*

Question 1:
What if I am not using an empty (or single comment) 
/etc/udev/rules.d/80-net-name-slot.rules?


Does this mean I can ignore everything that follows (the comment really 
should open with that if so)?


Question 2: What is up with the last section talking about the net setup 
rules only with respect to systemd?


OpenRC is currently still the default init system for gentoo if I'm not 
mistaken, so why does this comment only reference systemd, totally 
ignoring OpenRC users?


Thanks,

Charles

Re: [gentoo-user] Systemd upower

[Tanstaafl]

On 6/3/2014 1:08 PM, Canek Peláez Valdés can...@gmail.com wrote:

On Tue, Jun 3, 2014 at 11:48 AM, Tanstaafl tansta...@libertytrek.org wrote:

On 6/3/2014 11:10 AM, Canek Peláez Valdés can...@gmail.com wrote:

Maybe. The thing is, this is going to keep happening, as more and more
infrastructure migrates towards systemd. Perhaps a news item everytime
it happens is unrealistic?



Weren't you the one saying that those of us who were voicing concerns that
systemd proponents were ultimately wanting to FORCE systemd on everyone were
just scare-mongering conspiracy theorists?



Who is forcing  anything?


I was specifically referring to your comment that:


The thing is, this is going to keep happening, as more and more
infrastructure migrates towards systemd.


That comment right there - specifically the word *infrastructure* - 
screams to me 'we intend to take over the world'.


And yes, as devs get lazier (decide to rely on systemd rather than build 
it to work independently of the init system), this will in fact result 
in *users* (read: those lacking the skills to code every program out 
there to work without systemd) eventually being *forced* to switch to 
systemd.


That is simply the reality. You can ignore it if you like, but it 
doesn't change it. Forced is forced.



That's what you and many others don't seem to understand: systemd is a
*BETTER* implementation for basically *ALL* the hodgepodge of
solutions that we had before in our plumbing layer.


Time will tell, and you may even be right. The problem is, average users 
really don't have a way to prove this to themselves, all we see is the 
wailing and gnashing of teeth as stuff constantly *breaks* that *never* 
broke before.

Re: [gentoo-user] Demise of Truecrypt - surprised I haven't seen t his discussed here yet?

[Tanstaafl]

On 6/3/2014 3:17 AM, Marc Stürmer m...@marc-stuermer.de wrote:

So no loss at all if TrueCrypt would really cease to exist.


Which totally misses the point of *how* it happened.

But never mind... it was definitely off-topic for gentoo.

Re: [gentoo-user] Systemd upower

[Tanstaafl]

On 6/3/2014 11:10 AM, Canek Peláez Valdés can...@gmail.com wrote:

Maybe. The thing is, this is going to keep happening, as more and more
infrastructure migrates towards systemd. Perhaps a news item everytime
it happens is unrealistic?


Weren't you the one saying that those of us who were voicing concerns 
that systemd proponents were ultimately wanting to FORCE systemd on 
everyone were just scare-mongering conspiracy theorists?

Re: [gentoo-user] Demise of Truecrypt - surprised I haven't seen t his discussed here yet?

[Tanstaafl]

On 6/1/2014 1:45 PM, Volker Armin Hemmann volkerar...@googlemail.com 
wrote:

Am 01.06.2014 14:31, schrieb Tanstaafl:

Wow, I've been mostly offline for a few days, and this morning when
playing catch up on the news, learned that Truecrypt, one of my all
time favorite apps, is no more.

Some links of interest:

https://www.schneier.com/blog/archives/2014/05/truecrypt_wtf.html

https://news.ycombinator.com/item?id=7812133

http://community.spiceworks.com/topic/505372-truecrypt-is-dead?page=1



well, if true: good riddance.


Just because you don't like something doesn't mean it has no value. Yes, 
on linux, there are much better options, but for windows users, it is 
(was) the best solution available bar none, and an amazing product.



But I suspect some hacker-y or power struggle.


Which means you took zero seconds to verify the veracity of the 
information. Uninformed comments are less than useless.


And I forgot that most here are not windows users for whatever reason 
(some are just elitist pricks, some are purists for philosophical 
reasons, and some simply don't have to use Windows for a $dayjob.


The fact is, Truecrypt is (was) THE GoTo encryption method for purely 
Windows based systems.


I just thought there might actually be some rational people on the list 
that would like to discuss the ramifications of such a major happening.


Guess I was wrong.

[gentoo-user] Demise of Truecrypt - surprised I haven't seen t his discussed here yet?

[Tanstaafl]

Wow, I've been mostly offline for a few days, and this morning when 
playing catch up on the news, learned that Truecrypt, one of my all time 
favorite apps, is no more.


Some links of interest:

https://www.schneier.com/blog/archives/2014/05/truecrypt_wtf.html

https://news.ycombinator.com/item?id=7812133

http://community.spiceworks.com/topic/505372-truecrypt-is-dead?page=1

Re: [gentoo-user] boot problems

[Tanstaafl]

On 5/16/2014 6:04 AM, Canek Peláez Valdés can...@gmail.com wrote:

Whatever gets rid of LVM is good on my book. I've never understood why
people uses it, and in my experience it only brings headaches.


One very big reason to have been using it on linux - since it is only 
relatively recently that zfs has been an option, and now btrfs is 
getting there - and about the only reason I use it, is for snapshots, 
which bring consistent point-in-time backups for things like mail 
servers


Others use it for it filesystem resizing abilities, but I've only had to 
do this once or twice and that was a long time ago - but, I was able to 
do it... :)


Yes, zfs, and now btrfs, now offer much better support for both of these 
and then some, but they weren't around/available for linux until 
relatively recently, which LVM was stable and mature.

[gentoo-user] Heartbleed fix - question re: replacing self-signed certs with real ones

[Tanstaafl]

Hi all,

I've taken this opportunity to prod the boss to let me buy some real 
certs for our few self-hosted mail services. Until now, we've used 
self-signed certs.


My question is, what exactly is the correct procedure for doing this?

Also, do I still need to do the step I've been seeing:

Step: 2

Delete SSL key set

Now, make out a list of websites that are equipped with SSL
certificates.
After that, delete all SSL keys, private and CSR key
Finally, create a new private key and CSR key for each of your
website. However, remember that your keys should be of 2048-bit key
length.

?

Or will simply replacing my self-signed certs with the new real ones be 
good enough?


Thanks

Re: [gentoo-user] Heartbleed fix - question re: replacing self-signed certs with real ones

[Tanstaafl]

On 4/16/2014 7:14 AM, Matti Nykyri matti.nyk...@iki.fi wrote:

On Apr 16, 2014, at 13:52, Tanstaafl tansta...@libertytrek.org wrote:

Or will simply replacing my self-signed certs with the new real ones be good 
enough?



No it will not. Keys are te ones that have been compromised. You need
to create new keys. With those keys you need to create certificate
request. Then you send that request to certificate authority for
signing and publishing in their crl. When you receive the signed
certificate you can start using it with your key. Never send your key
to CA or expect to get a key from them.


Ok, thanks...

But... if I do this (create a new key-pair and CR), will this 
immediately invalidate my old ones (ie, will my current production 
server stop working until I get the new certs installed)?


I'm guessing not (or else there would be a lot of downtime for lots of 
sites involved) - but I've only ever done this once (created the 
key-pair, CR and self-signed keys) a long time ago, so want to make sure 
I don't shoot myself in the foot...


I have created new self-=signed certs a couple of times since creating 
the original key-pair+CR, but never created a new key-pair/CR...



There are also other algorithms the RSA. And also if you wan't to get
PFS you will need to consider your setup, certificate and security
model.


What is PFS?

Re: [gentoo-user] Show ebuild date/time in emerge --pretend output

[Tanstaafl]

On 4/11/2014 4:37 PM, Neil Bothwick n...@digimed.co.uk wrote:

On Fri, 11 Apr 2014 09:30:43 -0400, Tanstaafl wrote:


One of the things I do to minimize getting bit by newly released buggy
ebuilds is to wait a few days after a new update is available before
updating...


Isn't that what the stable tree is for?


As I said, this has saved me some pain even on the stable tree...


You could write a script that runs emerge -ublah @world, parses the
output and then checks the timestamps of the ebuilds. It could then
filter packages based on the age of the ebuild, instead of showing a date
and letting you do the work.


This is all fine and good, but not what I asked.

First, ianap, and don't have the skills to do that, and

Second, I personally would like to see this important (imho) information 
right there in the emerge --pretend output, and believe that lots of 
people would find it valuable.


Last - I merely asked if this was *feasible*. Ie, it seems to me like 
the relevant information is already available, portage just needs to 
make use of it.


I'd even be fine with it only being made a part of the verbose output, 
since I always do 'emerge -pvuDN world' anyway...

[gentoo-user] Show ebuild date/time in emerge --pretend output

[Tanstaafl]

Hi all,

I'm wondering if this is even feasible before I go open a 
bug/enhancement request for portage for this...


One of the things I do to minimize getting bit by newly released buggy 
ebuilds is to wait a few days after a new update is available before 
updating...


This works well, and has saved me some serious pain more than once, but 
it can be a pain to keep up with the updates sometimes...


What would be really helpful would be if the emerge --pretend output 
could show the date (and time?) that the new ebuild was made available...


ie, instead of:


myhost : Fri Apr 11, 07:45:44 : ~
 # emerge -pvuDN world

These are the packages that would be merged, in order:

Calculating dependencies... done!
[ebuild U  ] media-libs/libpng-1.6.10:0/16 [1.6.8:0/16] USE=-apng (-neon) 
-static-libs ABI_X86=(64) (-32) (-x32) 878 kB

Total: 1 package (1 upgrade), Size of downloads: 878 kB
myhost : Fri Apr 11, 09:08:03 : ~
 #


something like:


myhost : Fri Apr 11, 07:45:44 : ~
 # emerge -pvuDN world

These are the packages that would be merged, in order:

Calculating dependencies... done!
[ebuild U  ] media-libs/libpng-1.6.10:0/16 [1.6.8:0/16, released 4/11/14 at 13:11 am] 
USE=-apng (-neon) -static-libs ABI_X86=(64) (-32) (-x32) 878 kB

Total: 1 package (1 upgrade), Size of downloads: 878 kB
myhost : Fri Apr 11, 09:08:03 : ~
 #


Of course I don't care exactly where or how the date/time is displayed, 
just that it is there...


So... is this feasible (without a lot of hard work)?

Thanks,

Charles

[gentoo-user] emerge ---p --depclean - check me...

[Tanstaafl]

Hi all,

I rarely do this (I know, I should do it periodically at least), so I'd 
like someone to check these...


 These are the packages that would be unmerged:

 dev-python/python-exec
selected: 1.1 1.2
   protected: none
 omitted: none

 perl-core/ExtUtils-Command
selected: 1.170.0
   protected: none
 omitted: none

 perl-core/JSON-PP
selected: 2.272.0
   protected: none
 omitted: none

 perl-core/MIME-Base64
selected: 3.130.0
   protected: none
 omitted: none

 perl-core/Perl-OSType
selected: 1.2.0
   protected: none
 omitted: none

 perl-core/Test-Simple
selected: 0.980.0
   protected: none
 omitted: none

 perl-core/Time-HiRes
selected: 1.972.500
   protected: none
 omitted: none

 perl-core/digest-base
selected: 1.170.0
   protected: none
 omitted: none

 sys-apps/pciutils
selected: 3.2.0
   protected: none
 omitted: none

 sys-devel/automake
selected: 1.12.6
   protected: none
 omitted: 1.11.6 1.13.4

 sys-devel/libperl
selected: 5.10.1
   protected: none
 omitted: none

 sys-libs/gpm
selected: 1.20.6
   protected: none
 omitted: none

 virtual/init
selected: 0
   protected: none
 omitted: none

Any obvious problems here?

Thanks,

Charles

Re: [gentoo-user] emerge ---p --depclean - check me...

[Tanstaafl]

On 4/10/2014 7:21 AM, Alan McKinnon alan.mckin...@gmail.com wrote:

Everything else in that list is routine except maybe pciutils and gpm.
Add them to world manually if you use those apps


Thanks Alan/Tom...

Hmmm... what is pciutils used for? From a little googling, it seems like 
it is a tool that I would manually have to use, not something required 
by the system itself for anything that happens automatically (ie, at 
boot time)?


If so, I've never used it that I can recall, so I guess I can let 
depclean remove it?


As for gpm... this is the 'general purpose mouse server'? If so, guess I 
don't need this either, since this is a VM without a gui?


Thanks again,

charles

Re: [gentoo-user] Script to tar.tgz /etc, works run manually, broken when run from cron

[Tanstaafl]

On 3/31/2014 10:43 AM, Daniel Frey djqf...@gmail.com wrote:

You need to use the full path to commands in your script or set an
environment variable. In my case using full paths to executables was enough.


Bingo... thanks Daniel!

Now to figure out why one of my remote systems is sending the cron email 
results and the other isn't...

[gentoo-user] Script to tar.tgz /etc, works run manually, broken when run from cron

[Tanstaafl]

Hi all,

Ok, this is really irritating me...

I have a script that simply performs some backups. The commands are like 
this:


# perform tar.tgz backup of /etc
tar -czpvf $BKUP_DIR_etc/$BKUP_DateTime-dev-ecat-etc.tgz /etc

When I run this script manually, it does what it is supposed to, and the 
resulting file is about 500K.


When it runs from cron (roots crontab), it results in a 20 byte (empty) 
file.


So what am I missing/doing wrong?

Re: [gentoo-user] Script to tar.tgz /etc, works run manually, broken when run from cron

[Tanstaafl]

On 3/31/2014 7:13 AM, Neil Bothwick n...@digimed.co.uk wrote:

On Mon, 31 Mar 2014 07:01:48 -0400, Tanstaafl wrote:

I have a script that simply performs some backups. The commands are
like this:

# perform tar.tgz backup of /etc
tar -czpvf $BKUP_DIR_etc/$BKUP_DateTime-dev-ecat-etc.tgz /etc

When I run this script manually, it does what it is supposed to, and
the resulting file is about 500K.

When it runs from cron (roots crontab), it results in a 20 byte (empty)
file.


You're running tar with -v so it should produce output no matter what it
does. Is that mailed to you? What does it say?


I don't have these mailed to me, but like I said, it absolutely does 
produce output - the problem is, when run from cron, the resulting file 
is only 20 bytes (empty), when I run the exact same script manhually, it 
produces a file of about 500K that containes the contents of /etc..


On 3/31/2014 7:27 AM, Helmut Jarausch jarau...@igpm.rwth-aachen.de wrote:
 perhaps one of $BKUP_DIR_etc or $BKUP_DateTime-dev-ecat-etc
 isn't know in that environment

They are - see above...

Re: [gentoo-user] *** STOP misuing this list for personal attacks ***

[Tanstaafl]

On 3/23/2014 12:06 PM, Alan McKinnon alan.mckin...@gmail.com wrote:

On 23/03/2014 12:11, Tom Wijsman wrote:

On Sun, 23 Mar 2014 04:52:47 -0500
Bruce Hill da...@happypenguincomputers.com wrote:


It's my sincere hope that someone's persistence hammered some common
sense and email etiquette into his attitude.


Other Gentoo Developers did; but, I'll make an exception for this list.

The mailing list etiquette requires people to CC all the people
involved in a particular thread in replies to the mailing list, in case
any of them is not subscribed.

— http://wiki.gentoo.org/wiki/Procmail


Whoah.

That page is in serious need of updating.

Unless - do most of the gentoo lists allow posts from non-subscribers? 
If so, then maybe THAT policy needs to be changed. I see ZERO reason to 
allow that, *especially* on official dev lists, where people should be 
expected to know how to use Reply-To-List and/or request direct CC's 
when needed.

Re: [gentoo-user] Debian just voted in systemd for default init system in jessie

[Tanstaafl]

On 3/21/2014 5:57 PM, Walter Dnes waltd...@waltdnes.org wrote:

How does one send email to*THIS*  list, without being subscribed in
the first place?  A bugzilla mailing list is a different matter.


I think that is the main and primary point.

I loathe lists that allow posts from non subscribers (spitlibreoffice 
users/spit), because it creates this exact problem.


But in those cases, it should be on those who wish to leech (ask 
questions/get help from the list without having to subscribe) to 
proactively get their answers, by reading the archives on the web, etc.


The burden absolutely should NEVER be on the list participants to try to 
figure out who needs to be individually CC'd on replies and who doesn't.


Of course, if someone asks a question on such a list, and they 
specifically mention they are not subscribed and ask to be directly 
CC'd, then that is the one case when doing so is ok. But to blindly do 
this to everyone on the list just to insure that your oh-so-valuable 
reply makes it to the OP is just the height of arrogance and conceit.

Re: [gentoo-user] *** STOP misuing this list for personal attacks ***

[Tanstaafl]

On 3/22/2014 5:06 AM, Dale rdalek1...@gmail.com wrote:

Helmut Jarausch wrote:

Please don't use this list for personal quarrels of any kind!

If someone says something you don't like - just ignore it/him.

If someone insults you, reply by personal mail only.

If someone says something which is*technically*  wrong,
just correct the facts without getting personal.



I don't read every message but who is personally attacking someone?


He's probably referring to my factual statement that Tom was/is acting 
like an arrogant prick.


Lots of people confuse factual statements with personal attacks.

That said, I've never been know for being tactful... ;)

Re: [gentoo-user] Re: Debian just voted in systemd for default init system in jessie

[Tanstaafl]

On 3/20/2014 5:48 PM, »Q« boxc...@gmx.net wrote:

Why should Gentoo have a default?


Defaults are always a good idea - as long as they are reasonable and 
rational.



ISTM the only good reason is that not having a default would make the
documentation a lot more complicated.


Documentation, *and* the install process itself.