Re: Default security sources are slow very much.

2020-02-05 Thread Andy Simpkins
Sorry.  No.
It isn't safe to mirror security patches because we can not assure the 
integrity of the updates on a mirror server.

We are aware that bandwidth is limited either for financial or geographic 
reasons.This is why you can install from local media without network 
access.  

However any updates AFTER that image has been created will need to be 
downloaded from somewhere.

All i can suggest is that you install images of the latest release (there is a 
point release this comming weekend) as this will include all the fixes 
currently available...

On 5 February 2020 01:34:59 GMT, ykla  wrote:
>OK, the install cd ask me to change mirrors to download somethings but
>not
>changes security sources. Default source is http://security.debian.org/
>that is slow very much, about 1kb/s on my area. Please change security
>sources when os changes main source or ban security while installing
>system.

-- 
Sent from my Android device with K-9 Mail. Please excuse my brevity.

Re: Debootstrap Aarch64 base system.not include package haveged

2020-02-05 Thread Andy Simpkins
What are the many errors you are seeing?


From what I recall things take a while (in the case of some platforms without a 
HRND enabled that can be several hours) to buuld up enough entropy before some 
services (such as sshd) can successfully start.  

I agree that havegd will help here.  But is this really the fault of 
Debootstrap?

Just because your debootstrap is slow to start because it is entropy starved 
isn't a bug in itself. Perhaps the correct thing to do would be add an entropy 
gathering package to offer to enable differant HRNGs it can autodetect and then 
offer a MetaRNG (such as havegd).  

Of cause should this be a recommended package or default?
Should it be linked/installed  by system and environment packages that provide 
random services or by consumers of random such as sshd?

On 5 February 2020 01:26:58 GMT, ykla  wrote:
>Debootstrap aarch64 base system not includes haveged, It makes many
>errors
>for ssh. SSH only open after local user login.Please add haveged
>default.

-- 
Sent from my Android device with K-9 Mail. Please excuse my brevity.

Re: Set root password will not install sudo

2020-02-05 Thread Andy Simpkins
You also have a user account as well.
So you can, and should, log in using that.



On 5 February 2020 01:22:56 GMT, ykla  wrote:
>If you set root password when you installs debian, then system will not
>install package sudo. But debian ban root login default. So install CD
>should install sudo whether user sets root password.

-- 
Sent from my Android device with K-9 Mail. Please excuse my brevity.