Re: Hyper-typematic and Firefox responsiveness in Weston.

[Greg Wooledge]

On Mon, Jan 17, 2022 at 08:13:58PM -0800, pe...@easthope.ca wrote:
> This shell function is defined in .bashrc and used to start firefox.
> 
> fire () { case $# in
>   0) /usr/bin/firefox-esr --display=:0 file:///home/peter/MY/Peter.html#Links 
> & ;;
>   1) /usr/bin/firefox-esr --display=:0 $1 & ;;
>   *) echo "Too many arguments." ;; esac }

"$1" should be quoted there, and the } will need to be on a separate line,
or else you'll need a semicolon between esac and }.

I'd also advise against hard-coding paths like /usr/bin/firefox-esr in
your dot files.  Paths can change over time.  Just use firefox-esr.

> This might be better.
> alias fire='exec /usr/bin/firefox-esr --display=:0 "$@"'

Bash aliases don't take positional parameters like that.  Also, you
wouldn't want "exec" here -- running this alias would terminate the shell.

Since bash aliases don't take positional parameters, there's really no
way to do the background thing with arguments using an alias.  So, stick
with the function here.  As the bash(1) manual says,

   There  is no mechanism for using arguments in the replacement text.  If
   arguments are needed, a shell function should be  used  (see  FUNCTIONS
   below).

And,

   For almost every purpose, aliases are superseded by shell functions.

Re: Followup to my last...

[Nicolas George]

didier gaumet (12022-01-18):
> If you do not have internet (ethernet) during install, then follow these 
> steps:
> http://linuxwireless.sipsolutions.net/en/users/Drivers/b43/#Device_firmware_installation

Looks complicated.

Just run "apt-get install", make not of the URLs that fail to download,
download them from somewhere else and use a USB stick or something to
transfer.

Regards,

-- 
  Nicolas George


signature.asc
Description: PGP signature

Re: Followup to my last...

[Cindy Sue Causey]

On 1/18/22, Nicolas George  wrote:
> didier gaumet (12022-01-18):
>> If you do not have internet (ethernet) during install, then follow these
>> steps:
>> http://linuxwireless.sipsolutions.net/en/users/Drivers/b43/#Device_firmware_installation
>
> Looks complicated.
>
> Just run "apt-get install", make not of the URLs that fail to download,
> download them from somewhere else and use a USB stick or something to
> transfer.


That's what I was thinking I'd seen suggested here before, too. I did
a quick "apt-cache search" for the bcm43 that Didier mentioned because
I remember encountering that in the past. This limited list came back
so it's here in whole:

b43-fwcutter - utility for extracting Broadcom 43xx firmware
firmware-b43-installer - firmware installer for the b43 driver
firmware-b43legacy-installer - firmware installer for the b43legacy driver
broadcom-sta-common - Common files for the Broadcom STA Wireless driver
broadcom-sta-dkms - dkms source for the Broadcom STA Wireless driver
broadcom-sta-source - Source for the Broadcom STA Wireless driver
firmware-brcm80211 - Binary firmware for Broadcom/Cypress 802.11 wireless cards

Cindy :)
-- 
Cindy-Sue Causey
Talking Rock, Pickens County, Georgia, USA
* runs with birdseed *

Re: Followup to my last...

[Greg Wooledge]

On Mon, Jan 17, 2022 at 11:29:12PM -0800, R. Toby  Richards wrote:
> I'm installing Debian 11. The installer says that it is missing firmware
> files: b43/ucode11.fw, b43/ucode11.fw, b43-open/ucode11.fw and
> b43-open/ucode.fw. If you have such media available now, insert it, and
> continue.

You've shown b43/ucode11.fw twice, but let's skip that for now.

None of the files you show here are present in any packages in Debian,
according to https://packages.debian.org/.

This particular device looks like it's a special case, where Debian
isn't allowed to distribute the firmware directly, not even in non-free.
Have a look at the firmware-b43-installer package:

https://packages.debian.org/stretch/firmware-b43-installer

Rather than providing the firmware themselves, Debian have created this
package that will download the firmware from ... somewhere ... and package
it up for you.

Obviously, in order for this to work on a single machine, you'll need
a different means of accessing the Internet from that machine (e.g.
a wired ethernet connection).

If you dislike this situation, take it up with Broadcom.  Presumably it's
their license on the firmware that's causing your distress.

Re: Please take this as constructive

[Brian]

On Tue 18 Jan 2022 at 14:30:45 +0100, Loïc Grenié wrote:

> Hi,
> 
> On Tue 18 Jan 2022 at 07:48, R. Toby Richards wrote:
> 
> > Every time that I search for solutions to my wifi drivers, the solution is
> > to apt-get install a bunch of drivers. Why does nobody realize that apt'ing
> > anything is a non-solution: How can I apt-get install  if
> > I don't have network drivers? There are DOZENS of responses to questions
> > about network drivers that say to apt-get install various packages without
> > any thought to the fact that nobody can apt without first having network
> > drivers. It's seriously starting to  me off. I've got computers with
> > Broadcom wifi. How the heck am I going to fix that by using networking to
> > download the gosh darn drivers to fix the networking that I don't have? Of
> > the dozens of "solutions" that I've read about this, NOBODY ever thinks
> > about how to fix the network driver without having a network driver.
> >
> > Do I know how to use sneakernet? Yes. In my young adulthood, email was
> > dialing into a BBS that would then dial the next closest free telephone
> > call to another BBS, and so forth until your message from California got to
> > the East Coast. Days. I remember trucks with huge spools of
> > punch-cards that were data for the mainframe.
> >
> 
>  I've been hit several time with this same problem, or variants thereof,
>   and my solution has always been to have a separate computer with
>   network access and use sneakernet between the two computers.
>   I've always wondered how to do it better.

Wonder no longer :). Acquaint yourself with netcat.

-- 
Brian.

cooperative.co.uk has address 127.0.0.1

[Richmond]

Why do I see this?

host cooperative.co.uk
cooperative.co.uk has address 127.0.0.1

host cooperative.co.uk 1.1.1.1
Using domain server:
Name: 1.1.1.1
Address: 1.1.1.1#53
Aliases: 

cooperative.co.uk has address 127.0.0.1

cat /etc/hosts|grep -i coop

This has nothing to do with debian other than that I am using debian,
but I am not sure where else I would ask.

Re: Please take this as constructive

[The Wanderer]

On 2022-01-18 at 01:47, R. Toby Richards wrote:

> Every time that I search for solutions to my wifi drivers, the
> solution is to apt-get install a bunch of drivers. Why does nobody
> realize that apt'ing anything is a non-solution: How can I apt-get
> install  if I don't have network drivers? There are
> DOZENS of responses to questions about network drivers that say to
> apt-get install various packages without any thought to the fact that
> nobody can apt without first having network drivers.

apt-get can install things from a local source (whether CD/DVD or
otherwise), if configured appropriately, so even without networking it
may not be a useless recommendation.

Also, in some cases people will have e.g. wired network drivers but not
wireless ones, so making use of the network access provided by the
former to install the latter - to be able to have network access when
away from the network cable - can be a viable option.

> It's seriously starting to  me off. I've got computers with
> Broadcom wifi. How the heck am I going to fix that by using
> networking to download the gosh darn drivers to fix the networking
> that I don't have? Of the dozens of "solutions" that I've read about
> this, NOBODY ever thinks about how to fix the network driver without
> having a network driver.

The usual solution (aside from reinstalling with firmware present, etc.,
as you've addressed to some degree separately) would indeed be...

> Do I know how to use sneakernet? Yes. In my young adulthood, email
> was dialing into a BBS that would then dial the next closest free
> telephone call to another BBS, and so forth until your message from
> California got to the East Coast. Days. I remember trucks with huge
> spools of punch-cards that were data for the mainframe.

...this.

> When I try to use sneakernet to overcome the networking issues then I
> get errors from dpkg that it can't install debs because ldconfig and 
> start-stop-daemon aren't available. I haven't bothered searching for
> the debs that provide those things because I cannot use a deb to fix
> dpkg because dpkg doesn't function.

That sounds like a completely different problem, and probably a far more
severe one, which would need to be investigated on its own, and which
might well warrant a full reinstall to fix.

I would recommend starting with trying to troubleshoot and fix *this*
problem, before you worry too much about the other one.

-- 
   The Wanderer

The reasonable man adapts himself to the world; the unreasonable one
persists in trying to adapt the world to himself. Therefore all
progress depends on the unreasonable man. -- George Bernard Shaw



signature.asc
Description: OpenPGP digital signature

Re: cooperative.co.uk has address 127.0.0.1

[Greg Wooledge]

On Tue, Jan 18, 2022 at 01:19:58PM +, Richmond wrote:
> Why do I see this?
> 
> host cooperative.co.uk
> cooperative.co.uk has address 127.0.0.1

Because whoever set up that DNS zone made an error.

unicorn:~$ host cooperative.co.uk
cooperative.co.uk has address 127.0.0.1

Re: Followup to my last...

[Polyna-Maude Racicot-Summerside]

Hi,

On 2022-01-18 02:29, R. Toby Richards wrote:
> I'm installing Debian 11. The installer says that it is missing firmware
> files: b43/ucode11.fw, b43/ucode11.fw, b43-open/ucode11.fw and
> b43-open/ucode.fw. If you have such media available now, insert it, and
> continue.
> 
> I downloaded the dang unofficial DVD ISO that supposedly has non-free
> binaries, but the installer won't accept that media as having the
> Broadcom drivers that I need. Sneakernet doesn't work because every
> iteration of the ISO that I try has no working dpkg. I cannot dpkg the
> stuff I need for dpkg to work if dpkg is not working.
> 
> I appreciate your stance on non-free binaries, but at least throw me a
> bone on the unofficial ISO files.
> 
Making fast connection between different unrelated concept doesn't help
both yourself in understanding of the situation AND yourself getting
helped out (as no one seem to willing to help a mad men, risking of
getting bitten).

I have a laptop who's totally off Internet and have a local repository
on hard drive to do my install, so the question about dpkg "not-working"
is odd at least, ridiculous at most.

Have you tried something like using the 1st DVD of the distribution,
install your system (will give you a bare system), you can also use the
live DVD (Gnome/KDE/LXDE/XFCE) and install this as your base system.

Then use a local repository on a HD.

I can install my whole system without Internet connection.
This is the first part of my answer (before you write back that I don't
touch your networking problem).

Yes it's possible you try to install a package and it says "you need Z
package as dependencies". So you simply use your two feet and get the
package, do the install. Once dependencies are solved, you package that
was in a "uninstalled" state will get installed and it's script run.

Seems like you got confused between dpkg and apt-get (and even apt
itself). The dpkg software has no reliance whatsoever on networking and
if my memory's good, it doesn't even use any networking code.

Regarding the bone you are looking for... Life's not binary as in :
It's free so you can share it as you like
It's not free, can't share and that's so bad

There's what's called distribution clause.

If you look at debian packages for the google android sdk, their size is
11mb for the android-sdk-platform-23 package.

Did the brave Debian developer were able to do magic and squeeze it all
inside a 11mb package size ? Even if those guys are some of the best
programmer in the world, the answer is : NO !

And even if they would have been able, they couldn't ! Why ?
Because Google prohibit third parties from distributing Android SDK.

So they build a set of script that will get what's needed from the
server and install it for you.

Something similar also goes on with some game packager where the game
engine is GPL'd but not the game media / data file.

And now for your answer...

This seem to be the case with you device (and some other devices too).

It probably need a firmware binary blob that will be extracted from a
Windows driver package or something similar.

If you find another Linux distro who support your device out of the box,
I'd be really surprised and would love to get the link so I can see how
they work around this problem.

On a last note, you ain't the only one who is using a machine off of
Internet access, so your insolvable "pseudo catch 22" is something that
was already calculated for and taken into account from the start. I'd
remind you that Debian started at a time where not every computer had
Internet access and all the tools for installing from local media are
still available.

A great tool you can discover is called debmirror.

Another thing you can do is a hunger strike against Broadcom, this will
be much more useful over blaming the choice of licensing made by Debian
team.

Hope this get you out of the woods...
Sincerely,

> -- 
> 
> _R. Toby Richards_
> 
> 
> 

-- 
Polyna-Maude R.-Summerside
-Be smart, Be wise, Support opensource development


OpenPGP_signature
Description: OpenPGP digital signature

Re: Problème de permissions dans Debian ?

[Seb]

Bonjour,



ici Bullseye+Gnome, ça marche


OK, merci d'avoir testé.

À moins de faire l'hypothèse que les gros WM comme Gnome et KDE installent 
ou configurent quelque chose que ne fait pas FVWM, la piste semble donc 
bien être celle d'une mise à jour fautive du logiciel lors du passage de 
Debian 10 à Debian 11, pour une raison inconnue.



=> les permissions sont bonnes sur le répertoires des schémas? que
donne un
$ ls -al ~/.local/share/okular/shortcuts


Pour en avoir le coeur net, j'ai déplacé ~/.local/share/okular ailleurs 
puis lancé /bin/okular, et j'ai les mêmes soucis (sauvegarde d'un fichier 
sous un autre nom et raccourcis clavier).



Seb.

Re: Usenet access.

[Joe]

On Mon, 17 Jan 2022 12:09:27 -0800
pe...@easthope.ca wrote:

> Hi,
> 
> Can anyone suggest an alternative to Google Groups for access to 
> sci.electronics.repair.  I'd be happy to pay a small subscription for 
> access without tedious complications.
> 

Depends on usage. Note the paid subscriptions often do a data block
plan which they may not advertise prominently. I use about one 10GB
block a year:

https://www.tweaknews.eu/en/usenet-plans

I did use NewsDemon, with which I was very happy, until one day it just
stopped working with my setup and I was unable to restore a connection.

https://www.newsdemon.com/usenet-access

Note that some block plans expire after a time limit.

-- 
Joe

Re: Please take this as constructive

[Andrew M.A. Cater]

On Mon, Jan 17, 2022 at 10:47:55PM -0800, R. Toby  Richards wrote:
> Every time that I search for solutions to my wifi drivers, the solution is
> to apt-get install a bunch of drivers. Why does nobody realize that apt'ing
> anything is a non-solution: How can I apt-get install  if
> I don't have network drivers? There are DOZENS of responses to questions
> about network drivers that say to apt-get install various packages without
> any thought to the fact that nobody can apt without first having network
> drivers. It's seriously starting to  me off. I've got computers with
> Broadcom wifi. How the heck am I going to fix that by using networking to
> download the gosh darn drivers to fix the networking that I don't have? Of
> the dozens of "solutions" that I've read about this, NOBODY ever thinks
> about how to fix the network driver without having a network driver.
> 

A couple of things: Which machine is this? Which model of Broadcom card
is this?

lspci might tell you. Do you have any other means of connecting this machine?

You may have hit a Catch 22 not of our making. There are a wide variety of 
Broadcom chipsets. Broadcom have been approached about this in the past, I 
think. As someone with a Broadcom card, you have the right to download the
drivers: nobody else has the right to distribute them to you.

The Broadcom B43 driver is, effectively, a firmware cutter - chopping the 
needed binary bits out of the Windows drivers.

https://packages.debian.org/bullseye/firmware-b43-installer

This then links with firmware-linux-free to provide the bits you need.
Be thankful that you're not running Fedora - despite being more liberal
on many firmware policies, they don't supply utilities to do this.

We do think about doing things with no network driver for wifi. My standard
suggestion is to use the non-free unofficial network installer iso - but 
it can't include the Broadcom drivers, as you've seen.

If you can use a wired network, that solves the install problem and allows
you to download the installer package. If you have a wired network available
but no connector on your laptop, you can use a USB-Ethernet connector if you
have one.

If you can pair a phone via Bluetooth, you might be able to download
the needed .debs that way.

Missing firmware is an issue that now hits not just for WiFi but also now
often for graphics drivers and even audio firmware. There has been talk about
framing a new GR [General resolution] on firmware in the installer, since 
this is rendering Debian uninstallable on certain classes of hardware. In 
this particular instance, that wouldn't help you.

The glib, self-satisfied answer is "Friends don't let friends use Broadcom - 
check the device drivers needed before you buy" and many of us have avoided
the issue by doing that - but you've hit the (known) corner case, I think.

With every good wish, as ever,

Andy Cater
> 
> The catch-22's are endless. In my case, I need Broadcom drivers. I can't
> get b43 over the network. I can't use sneakernet for b43 debs because dpkg
> doesn't work (let alone finding all the dependencies and dependencies of
> dependencies and so forth).
> 
> Now what?
> 
> -- 
> 
> *R. Toby Richards*

Re: Please take this as constructive

[Loïc Grenié]

Hi,

On Tue 18 Jan 2022 at 07:48, R. Toby Richards wrote:

> Every time that I search for solutions to my wifi drivers, the solution is
> to apt-get install a bunch of drivers. Why does nobody realize that apt'ing
> anything is a non-solution: How can I apt-get install  if
> I don't have network drivers? There are DOZENS of responses to questions
> about network drivers that say to apt-get install various packages without
> any thought to the fact that nobody can apt without first having network
> drivers. It's seriously starting to  me off. I've got computers with
> Broadcom wifi. How the heck am I going to fix that by using networking to
> download the gosh darn drivers to fix the networking that I don't have? Of
> the dozens of "solutions" that I've read about this, NOBODY ever thinks
> about how to fix the network driver without having a network driver.
>
> Do I know how to use sneakernet? Yes. In my young adulthood, email was
> dialing into a BBS that would then dial the next closest free telephone
> call to another BBS, and so forth until your message from California got to
> the East Coast. Days. I remember trucks with huge spools of
> punch-cards that were data for the mainframe.
>

 I've been hit several time with this same problem, or variants thereof,
  and my solution has always been to have a separate computer with
  network access and use sneakernet between the two computers.
  I've always wondered how to do it better.


> When I try to use sneakernet to overcome the networking issues then I get
> errors from dpkg that it can't install debs because ldconfig and
> start-stop-daemon aren't available. I haven't bothered searching for the
> debs that provide those things because I cannot use a deb to fix dpkg
> because dpkg doesn't function.
>

 dpkg is a dependency of apt (through apt depends on adduser which
depends on
  {c,}debconf which depends on dpkg). If you do not fix dpkg, you will
probably not
   be able to install anything. To do that you will probably need to boot
on a live
   system and install the missing packages (non-trivial task). FYI, the
dependencies
   I get for dpkg are:

dpkg
gcc-11-base
libacl1
libbz2-1.0
libc6
libgcc-s1
liblzma5
libpcre2-8-0
libselinux1
tar
zlib1g



> The catch-22's are endless. In my case, I need Broadcom drivers. I can't
> get b43 over the network. I can't use sneakernet for b43 debs because dpkg
> doesn't work (let alone finding all the dependencies and dependencies of
> dependencies and so forth).
>
> Now what?
>

 Hope you can solve your problems,

 Loïc

Re: Usenet access.

[황병희]

pe...@easthope.ca writes:

> Hi,
>
> Can anyone suggest an alternative to Google Groups for access to 
> sci.electronics.repair.  I'd be happy to pay a small subscription for 
> access without tedious complications.

+ september with Gnus!

Sincerely, Byung-Hee

Re: Followup to my last...

[didier gaumet]

Le mardi 18 janvier 2022 à 09:22 +, piorunz a écrit :
[...]
> I suggest go to this link below and read about
> Broadcom install procedures:
> https://wiki.debian.org/bcm43xx

Hello,

I have had bcm43xx chipsets in the past. Broadcom has/had a particularly 
limitative policy about distributing binaries, and albeit Debian not 
distributing firmwares by default (offical releases), at the time installing 
other distros (Fedora,...) with bcm43xx chipsets was even more tedious than 
Debian, even if these distros distribute firmwares...

I would concur with Piorunz: follow the steps detailed by the wiki:
https://wiki.debian.org/bcm43xx

If you do not have internet (ethernet) during install, then follow these steps:
http://linuxwireless.sipsolutions.net/en/users/Drivers/b43/#Device_firmware_installation

Re: Followup to my last...

[piorunz]

On 18/01/2022 07:29, R. Toby Richards wrote:

I'm installing Debian 11. The installer says that it is missing firmware
files: b43/ucode11.fw, b43/ucode11.fw, b43-open/ucode11.fw and
b43-open/ucode.fw. If you have such media available now, insert it, and
continue.

I downloaded the dang unofficial DVD ISO that supposedly has non-free
binaries, but the installer won't accept that media as having the
Broadcom drivers that I need.


You not supposed to give official installer ISO with unofficial
installer as source of files it needs.

You either:
1) *install* from unofficial installer directly,

2) install from official installer, but you need to download appropriate
.deb files, unpack them, put them on USB stick and give it to official
installer. It works, I tried it. I never needed unofficial thanks to that.

That being said, I don't have this WiFi module and I don't want to give
incorrect advice, I suggest go to this link below and read about
Broadcom install procedures:
https://wiki.debian.org/bcm43xx

--
With kindest regards, Piotr.

⢀⣴⠾⠻⢶⣦⠀
⣾⠁⢠⠒⠀⣿⡁ Debian - The universal operating system
⢿⡄⠘⠷⠚⠋⠀ https://www.debian.org/
⠈⠳⣄

Re: OT: Recommendation for a new Debian laptop

[Eric S Fraga]

On Saturday, 15 Jan 2022 at 17:17, Jeremy Ardley wrote:
> I wouldn't use a Dell or HP

I don't have a choice due to tendering processes where I work.  In any
case, I recently acquired a new Dell laptop (Latitude 7320) and it both
works very well with Debian and is actually a very nice laptop,
especially the matt screen (which doesn't have touch, a plus in my
mind).

Just my 2¢.
-- 
Eric S Fraga with org 9.5.2 in Emacs 29.0.50 on Debian 11.2

Fwd: namd-l: Fwd: nvidia issue with namd12 Debian 11

[Francesco Pietra]

Was this "illegal mem access" with namd12 resolved?

ISSUE* somehow I have a lot of problems with the NAMD-2.12 version. All
CUDA jobs *
>From  * owner-namd-l_at_ks.uiuc.edu

[mailto:owner-namd-l_at_ks.uiuc.edu
]
*Im *
*> Auftrag von *Norman Geist *
*> *Gesendet:* Freitag, 10. März 2017 10:16 *
*will:  **1. Immediately fail for SMP single process runs when having more *
  *than 1 thread via ++ppn: *
*FATAL ERROR: CUDA error cudaStreamSynchronize(stream) in file *
*src/CudaTileListKernel.cu, function sortTileLists *
*on Pe 4 (gpu5 device 1): an illegal memory access was encountered *
*- Processor 4 Exiting: Called CmiAbort  *
*Reason: FATAL ERROR: CUDA error cudaStreamSynchronize(stream) in file *
 *src/CudaTileListKernel.cu, function sortTileLists *
*on Pe 4 (gpu5 device 1): an illegal memory access was encountered *
  *This happens for my own compiled versions (CUDA-7.5) as well as for the *
  *precompiled multicore version (CUDA-6.5). *

*From:* Ajasja Ljubetič (*ajasja.ljubetic_at_gmail.com*

)
*Date:* Fri Mar 10 2017 - 05:14:10 CST
Are you sure your graphics card is OK?  Have you tried any of the available
memory checkers?

*From:* Norman Geist (*norman.geist_at_uni-greifswald.de*

)
*Date:* Fri Mar 10 2017 - 05:41:10 CST
Yes, since it works with gromacs, cp2k and namd versions < 2.12. Maybe I
should also mention that I’m using amber FF and files.

..
Actually, as far as I understand, "illegal mem access" is a software not
hardware problem.
What could I do? Perhaps running something else than NAMD, may be a game
involving the GPUs?

Thanks for advice
francesco


-- Forwarded message -
From: Francesco Pietra 
Date: Mon, Jan 17, 2022 at 3:50 PM
Subject: Re: namd-l: Fwd: nvidia issue with namd12 Debian 11
To: Vermaas, Josh 
Cc: nam...@ks.uiuc.edu , debian-users <
debian-user@lists.debian.org>


Hi Josh, no big system:
Info) Analyzing structure ...
Info)Atoms: 107292
Info)Bonds: 77829
Info)Angles: 61441  Dihedrals: 46455  Impropers: 1604  Cross-terms: 158
Info)Bondtypes: 0  Angletypes: 0  Dihedraltypes: 0  Impropertypes: 0
Info)Residues: 31152
Info)Waters: 30102
Info)Segments: 128
Info)Fragments: 30587   Protein: 9   Nucleic: 25

Following your hint, I tried MD with a very small system:

Info) Analyzing structure ...
Info)Atoms: 1448
Info)Bonds: 1187
Info)Angles: 1618  Dihedrals: 699  Impropers: 0  Cross-terms: 0
Info)Bondtypes: 0  Angletypes: 0  Dihedraltypes: 0  Impropertypes: 0
Info)Residues: 261
Info)Waters: 0
Info)Segments: 33
Info)Fragments: 261   Protein: 0   Nucleic: 0

Exactly the same error messages that I reported for the bigger system. So,
it is not a problem of insufficient mem on the GTX.
My very feeble guess is that there is a mismatch between the linux kernel
and the nvidia driver, but they were selected by the Debian code and other
people should have met the issue. I am not sure that Debian 11 could work
correctly with a downgraded couple of linux kernel/nvidia driver. Perhaps
it could easier to downgrade to Debian 10, which worked correctly on my
raid1 box.

thanks
francesco

Incidentally, I said namd12, while it is 14.

On Mon, Jan 17, 2022 at 1:24 PM Vermaas, Josh  wrote:

> How big is your system? The error being tossed back is that you are out of
> memory. The GTX 680 only has 2GB of memory, and so depending on your system
> size you may run yourself out of memory.
>
>
>
> -Josh
>
>
>
> *From: * on behalf of Francesco Pietra <
> chiendar...@gmail.com>
> *Reply-To: *"nam...@ks.uiuc.edu" , Francesco Pietra <
> chiendar...@gmail.com>
> *Date: *Monday, January 17, 2022 at 4:40 AM
> *To: *NAMD , debian-users <
> debian-user@lists.debian.org>
> *Subject: *namd-l: Fwd: nvidia issue with namd12 Debian 11
>
>
>
> I forgot to add that commands 'nvidia-detect' and 'nvidia-smi' detect both
> GTX 680 as activated and tells that they are supported by all driver
> versions, including those for Tesla 450.
>
> Actually, legacy nvidia drivers are only required for very old nvidia
> graphic cards, from 400 downwards.
>
>
>
> I alsoo add that the box is at CUDA 11.2
>
>
>
> -- Forwarded message -
> From: *Francesco Pietra* 
> Date: Mon, Jan 17, 2022 at 4:15 AM
> Subject: nvidia issue with namd12 Debian 11
> To: NAMD , debian-users 
>
>
>
> With a Debian 11 box with two GTX 680 I am unable to get them working. The
> problem occurred with upgrading from debian 10 to 11 and, from namd 11 to
> 12 (/NAMD_Git-2021-11-27_Linux-x86_64-multicore-CUDA)
>
>
>
> nvidia-driver 460.91.03-1
>
> linux-image-amd64 5.10.84-1
>
> linux kernel 5.10.0-10-amd64
>
>
>
> Error when trying a minimization:
>
>
>
> TCL: Minimizing for 3000 steps
> FATAL ERROR: CUDA error cudaStreamSynchronize(stream) in file
> src/CudaTileListKernel.cu, function sortTileLists, line 1577
>  on Pe 2 (gig64 device 0 pci 0:2:0): an illegal memory access was
> encountered
> FATAL ERROR: CUDA error 

Re: Please take this as constructive

[Polyna-Maude Racicot-Summerside]

On 2022-01-18 01:47, R. Toby Richards wrote:
> 
> 
> 
> Every time that I search for solutions to my wifi drivers, the solution
> is to apt-get install a bunch of drivers. Why does nobody realize that
> apt'ing anything is a non-solution: How can I apt-get install  drivers> if I don't have network drivers? There are DOZENS of responses
> to questions about network drivers that say to apt-get install various
> packages without any thought to the fact that nobody can apt without
> first having network drivers. It's seriously starting to  me off.
> I've got computers with Broadcom wifi. How the heck am I going to fix
> that by using networking to download the gosh darn drivers to fix the
> networking that I don't have? Of the dozens of "solutions" that I've
> read about this, NOBODY ever thinks about how to fix the network driver
> without having a network driver.
> 
> Do I know how to use sneakernet? Yes. In my young adulthood, email was
> dialing into a BBS that would then dial the next closest free telephone
> call to another BBS, and so forth until your message from California got
> to the East Coast. Days. I remember trucks with huge spools of
> punch-cards that were data for the mainframe.
> 
> When I try to use sneakernet to overcome the networking issues then I
> get errors from dpkg that it can't install debs because ldconfig and
> start-stop-daemon aren't available. I haven't bothered searching for the
> debs that provide those things because I cannot use a deb to fix dpkg
> because dpkg doesn't function.
> 
Because you don't install package by using dpkg on the installer cd.

Install your system with missing firmware then use dpkg.

What you can do is to get the firmware on a machine with Internet access
and then copy them to a USB key, insert the USB key when prompted by the
installer and it will use the .bw file needed.

This is how to feed binary firmware to the installer.

You don't install package inside the shell of the installer before
installing the base system on your hard drive.

This is in addition to my last message because seems like I got it
late... You are trying to run dpkg from the installer shell.

For sure it will fail, there's no services management in the proper
sense and even if it would work, all you done would be lost.

(Someone else please give better explanation than I do because I'm a bit
lost trying to explain this in a two sentence where there's so much to
explain and give a complete class on "this is not how things work" and
the install process).

You can also learn how to build your full system using another computer
connected on Internet and using chroot + deb-bootstrap).

Read the documentation on deb-bootstrap and you'll better understand the
install process.

> The catch-22's are endless. In my case, I need Broadcom drivers. I can't
> get b43 over the network. I can't use sneakernet for b43 debs because
> dpkg doesn't work (let alone finding all the dependencies and
> dependencies of dependencies and so forth).
> 
> Now what?
> 
Now you'll learn how the install system work, the question of binary
blob distribution right (exclusive) and be a better system manager...

All by solving your Broadcom card problem.

PS: Buy a directly supported card.
> -- 
> 
> _R. Toby Richards_
> 
> 
> 

-- 
Polyna-Maude R.-Summerside
-Be smart, Be wise, Support opensource development


OpenPGP_signature
Description: OpenPGP digital signature

Re: Firefox PDF download - strange behaviour.

[Jeremy Nicoll]

On Tue, 18 Jan 2022, at 04:51, songbird wrote:
> Jeremy Nicoll wrote:
>> On Mon, 17 Jan 2022, at 05:19, songbird wrote:
>>
>>>   you are right, but i just wanted to say that for some sites
>>> the behavior is to generate a unique file name if they find
>>> one that already exists with the same name and for other sites
>>> it is not.  i think this is dependent upon the website designers
>>> and not firefox.
>>
>> Are you saying that code on a webpage can interrogate my 
>> file system to see whether certain files exist?  I don't like the
>> sound of that.
>
>   you are running the webpage on your browser so it is your
> own computer and your own program that is doing the accessing
> just like any other program you run.

The problem is that a user would normally only expect a browser to
save a file to the file-system in two cases:

(a) when the user has explcicitly chosen to download something, and 
   then chooses where to put it

(b) when the browser is cacheing content, or manipulating its own
  config files

In both those cases it's code written by the browser's developers 
that's doing the writing.

The new situation will allow any JS written by any page developer to
access my files.  I am unconvinced that this will never lead to malware
doing things to files/folders on my system without my knowledge.

It's a BIG change to users' expectations of what a browser can do.

Users with no technical knowledge could get bitten by this.


> what controls you wish
> to put on the access to your file system and how you do that
> is up to you and your own desires and capabilities.

I don't think it should be up to me.  I'd prefer to prohibit any JS 
in a browser from doing that.


> but what i do is set where files are saved in a
> specific directory and leave it at that

That works fine while you can be sure that a browser is only 
saving downloaded files.  What about when if can do anything
it likes to any file/folder?

-- 
Jeremy Nicoll - my opinions are my own.

Accéder à mon serveur web domestique par l’ip publique d’un VPN comme ProtonVPN ou autre.

[benoit]

Bonjour à toutes et tous,

J’ai un serveur web domestique sous Debian bullseye, sur la même machine j’ai 
installé un client VPN (openvpn@client.service) qui se connecte à ProtonVPN, le 
tout derrière la box de mon FAI.

Pour la navigation sur internet des ordinateurs de bureau connectés derrière 
cette machine, tout va bien, je passe par le VPN avec l’IP du serveur VPN, 
moyennant une règle NAT.

Que dois-je faire pour utiliser l’IP du serveur VPN pour accéder à mon serveur 
web domestique ?

Merci d’avance

–
Benoît

Sent with [ProtonMail](https://protonmail.com/) Secure Email.

Re: Usenet access.

[songbird]

pe...@easthope.ca wrote:
> Hi,
>
> Can anyone suggest an alternative to Google Groups for access to 
> sci.electronics.repair.  I'd be happy to pay a small subscription for 
> access without tedious complications.

  i really liked individual.net and gladly paid them for
the service, it wasn't much, but then they stopped taking
overseas payments so i had to find another service.

  eternal-september works well for my use now, but it does
have hiccups here or there.  so it's good to be patient
and go read a book or something here or there.


  songbird

Re: cooperative.co.uk has address 127.0.0.1

[Andrew M.A. Cater]

On Tue, Jan 18, 2022 at 02:58:02PM +, piorunz wrote:
> On 18/01/2022 13:19, Richmond wrote:
> > Why do I see this?
> > 
> > host cooperative.co.uk
> > cooperative.co.uk has address 127.0.0.1
> My local DNS resolver says:
> $ dig cooperative.co.uk
> 
> ; <<>> DiG 9.17.21-1-Debian <<>> cooperative.co.uk
> ;; global options: +cmd
> ;; Got answer:
> ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 26460
> ;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 1
> 
> ;; OPT PSEUDOSECTION:
> ; EDNS: version: 0, flags:; udp: 1232
> ;; QUESTION SECTION:
> ;cooperative.co.uk. IN  A
> 
> ;; ANSWER SECTION:
> cooperative.co.uk.  292 IN  A   127.0.0.1
> 
> ;; Query time: 0 msec
> ;; SERVER: 192.168.1.10#53(192.168.1.10) (UDP)
> ;; WHEN: Tue Jan 18 14:56:38 GMT 2022
> ;; MSG SIZE  rcvd: 62
> 
> 
> Haha.
> 
> --
> With kindest regards, Piotr.
> 
> ⢀⣴⠾⠻⢶⣦⠀
> ⣾⠁⢠⠒⠀⣿⡁ Debian - The universal operating system
> ⢿⡄⠘⠷⠚⠋⠀ https://www.debian.org/
> ⠈⠳⣄
>

So - the Cooperative Society - is at https://www.coop.co.uk 

It's quite possible that the 127.0.0.1 is genuine to prevent someone else using 
it and that their webserve rand DNS provision  will redirect cooperative.co.uk
to coop.co.uk in due course.

Hope this helps,

Andy Cater 

Re: cooperative.co.uk has address 127.0.0.1

[Georgi Naplatanov]

On 1/18/22 15:49, Greg Wooledge wrote:
> On Tue, Jan 18, 2022 at 01:19:58PM +, Richmond wrote:
>> Why do I see this?
>>
>> host cooperative.co.uk
>> cooperative.co.uk has address 127.0.0.1
> 
> Because whoever set up that DNS zone made an error.
> 
> unicorn:~$ host cooperative.co.uk
> cooperative.co.uk has address 127.0.0.1

I have seen local-link IPv6 addresses as well :)

Kind regards
Georgi

Re: Problème de permissions dans Debian ?

[Sébastien NOBILI]

Bonjour,

Le 2022-01-18 13:07, Seb a écrit :

Pour en avoir le coeur net, j'ai déplacé ~/.local/share/okular
ailleurs puis lancé /bin/okular, et j'ai les mêmes soucis (sauvegarde
d'un fichier sous un autre nom et raccourcis clavier).


Pour exclure complètement la piste d'un problème lié à ton 
environnement, tu pourrais
créer un nouveau compte utilisateur et vérifier comment ça se comporte 
chez lui.

(Idéalement en utilisant le même WM).

Sébastien

Re: Firefox PDF download - strange behaviour.

[Jeremy Nicoll]

On Tue, 18 Jan 2022, at 16:35, The Wanderer wrote:

> So this could potentially be dangerous if the user chooses a directory
> location that's high enough in the directory tree to have important
> files already underneath it, but not if the user chooses e.g. a
> dedicated Downloads directory.

I'd expect malware using this mechanism to put forward a "plausible"
reason why a naive user should select an unsafe directory, rather than
a downloads one.


>> I think I also read that once the code has a handle to a directory it
>> can scan sub-directories as well.
>
> Yes, that appears to be correct.

And that opens up the scourge of malware that correctly identifies what
software one has installed, and/or aspects of its configuration, just based
on what files/folders exist.

-- 
Jeremy Nicoll - my opinions are my own.

Re: Exposer mon site web sur le net par l’ip publique d’un VPN comme ProtonVPN ou autre.

[NoSpam]

ProtonVPN n'accepte pas les connexions entrantes, ce qui me parait 
logique pour un VPN. Ma réponse précédente reste valable, il te faudra 
toutefois faire de la redirection des requêtes sur le port 443 de l'IP 
du VPS vers celle de ton serveur WEB à domicile au travers du tunnel ssh.


Le 18/01/2022 à 18:13, benoit a écrit :

Bonjour à toutes et tous,

Je voudrais créer mon site web sur un serveur web auto-hébergé(apache) 
à domicile sous Debian bullseye, sur la même machine j’ai installé un 
client VPN (openvpn@client.service ) 
qui se connecte à ProtonVPN, le tout derrière la box de mon FAI.


Pour la navigation sur internet des ordinateurs de bureau connectés 
derrière cette machine, tout va bien, je passe par le VPN avec l’IP du 
serveur VPN, moyennant une règle NAT.


Vu que mon FAI ne me donne pas une IP fixe, que dois-je faire pour 
utiliser l’IP fixe du serveur VPN (dans ce cas ci ProtonVPN) pour 
exposer mon site web sur internet?


Merci d’avance

--
Benoit

Sent with ProtonMail  Secure Email.

Re: Firefox PDF download - strange behaviour.

[The Wanderer]

On 2022-01-17 at 15:55, Jeremy Nicoll wrote:

> On Mon, 17 Jan 2022, at 05:19, songbird wrote:
> 
>> you are right, but i just wanted to say that for some sites the
>> behavior is to generate a unique file name if they find one that
>> already exists with the same name and for other sites it is not.  i
>> think this is dependent upon the website designers and not
>> firefox.
> 
> Are you saying that code on a webpage can interrogate my file system
> to see whether certain files exist?  I don't like the sound of that.
> 
> A quick google found me: 
> https://developer.mozilla.org/en-US/docs/Web/API/File_System_Access_API
>
>  which seems to describe ways that Javascript can read and write my
> files, and scan my directories (or will be able to when this API is
> implemented).
> 
> There's not enough information, in my view, explaining how a browser
> user can prevent that.  It says - if I'm reading it right - that it's
> secure because users are offered file pickers etc when a file is to
> be opened or file-save dialogs when something is to be created.

The key is probably that - if my reading is correct - then what the
handles acquired by presenting such a file picker dialog do is to grant
access to the specified directory *and everything underneath it*, but
not to anything *outside* of that.

> But one of the code examples describes getting a handle to a
> directory and says if the directory doesn't exist yet it will be
> created.  That suggests that rogue code could create folders on my
> system.

Looking at that example, I note that it starts with the variable name
"currentDirHandle". I think it's intended, although not explicitly
stated, that the directory path specified in that function call is
*relative*; that would let the API be used to create subdirectory trees
underneath the user-chosen directory, but not outside of there.

So this could potentially be dangerous if the user chooses a directory
location that's high enough in the directory tree to have important
files already underneath it, but not if the user chooses e.g. a
dedicated Downloads directory.

I can still envision scenarios in which this could be dangerous, but
unless there are ways to get access to a file-handle variable that don't
rely on something directly user-interactive (the ones described in that
page are file-picker dialogs and "drag and drop a file into (a specific
area of?) the browser window"), I don't think it can plausibly do so in
a way that's invisible to the user.

> I think I also read that once the code has a handle to a directory it
> can scan sub-directories as well.

Yes, that appears to be correct.

-- 
   The Wanderer

The reasonable man adapts himself to the world; the unreasonable one
persists in trying to adapt the world to himself. Therefore all
progress depends on the unreasonable man. -- George Bernard Shaw



signature.asc
Description: OpenPGP digital signature

Re: Firefox PDF download - strange behaviour.

[David Wright]

On Tue 18 Jan 2022 at 14:46:48 (+), Jeremy Nicoll wrote:
> On Tue, 18 Jan 2022, at 04:51, songbird wrote:
> > Jeremy Nicoll wrote:
> >> On Mon, 17 Jan 2022, at 05:19, songbird wrote:
> >>
> >>>   you are right, but i just wanted to say that for some sites
> >>> the behavior is to generate a unique file name if they find
> >>> one that already exists with the same name and for other sites
> >>> it is not.  i think this is dependent upon the website designers
> >>> and not firefox.
> >>
> >> Are you saying that code on a webpage can interrogate my 
> >> file system to see whether certain files exist?  I don't like the
> >> sound of that.
> >
> >   you are running the webpage on your browser so it is your
> > own computer and your own program that is doing the accessing
> > just like any other program you run.
> 
> The problem is that a user would normally only expect a browser to
> save a file to the file-system in two cases:
> 
> (a) when the user has explcicitly chosen to download something, and 
>then chooses where to put it
> 
> (b) when the browser is cacheing content, or manipulating its own
>   config files
> 
> In both those cases it's code written by the browser's developers 
> that's doing the writing.
> 
> The new situation will allow any JS written by any page developer to
> access my files.  I am unconvinced that this will never lead to malware
> doing things to files/folders on my system without my knowledge.
> 
> It's a BIG change to users' expectations of what a browser can do.
> 
> Users with no technical knowledge could get bitten by this.
> 
> > what controls you wish
> > to put on the access to your file system and how you do that
> > is up to you and your own desires and capabilities.
> 
> I don't think it should be up to me.  I'd prefer to prohibit any JS 
> in a browser from doing that.
> 
> > but what i do is set where files are saved in a
> > specific directory and leave it at that
> 
> That works fine while you can be sure that a browser is only 
> saving downloaded files.  What about when if can do anything
> it likes to any file/folder?

Songbird went on to say:

> > if you are running a linux 
> > system then you have the capability of using different users
> > and groups to control file and directory access.  so you only
> > browse using one user and then set up a directory for that 
> > user to save files to and then put stuff there.  then you can
> > make that directory read only to a group and set up another
> > user to go look at the files saved there.  or something like
> > that...

… which is what I do: user "flash" browses all except a few
trusted sites. I can read flash's ~/PDF/, downloads and browser
cache, and after a minute, I own the first two categories,
thanks to cron.

Cheers,
David.

Re: cooperative.co.uk has address 127.0.0.1

[piorunz]

On 18/01/2022 13:19, Richmond wrote:

Why do I see this?

host cooperative.co.uk
cooperative.co.uk has address 127.0.0.1

My local DNS resolver says:
$ dig cooperative.co.uk

; <<>> DiG 9.17.21-1-Debian <<>> cooperative.co.uk
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 26460
;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 1232
;; QUESTION SECTION:
;cooperative.co.uk. IN  A

;; ANSWER SECTION:
cooperative.co.uk.  292 IN  A   127.0.0.1

;; Query time: 0 msec
;; SERVER: 192.168.1.10#53(192.168.1.10) (UDP)
;; WHEN: Tue Jan 18 14:56:38 GMT 2022
;; MSG SIZE  rcvd: 62


Haha.

--
With kindest regards, Piotr.

⢀⣴⠾⠻⢶⣦⠀
⣾⠁⢠⠒⠀⣿⡁ Debian - The universal operating system
⢿⡄⠘⠷⠚⠋⠀ https://www.debian.org/
⠈⠳⣄

Re: Hyper-typematic and Firefox responsiveness in Weston.

[peter]

From: Greg Wooledge 
Date: Tue, 18 Jan 2022 07:22:53 -0500
> "$1" should be quoted there, and the } will need to be on a separate line,
> or else you'll need a semicolon between esac and }.
> 
> I'd also advise against hard-coding paths like /usr/bin/firefox-esr in
> your dot files.  Paths can change over time.  Just use firefox-esr.

> Also, you wouldn't want "exec" here -- running this alias would terminate the 
> shell.

Thanks.  Revised version.

fire () { case "$#" in
  0) firefox-esr --display=:0 file:///home/peter/MY/Peter.html#Links & ;;
  1) firefox-esr --display=:0 "$1" & ;;
  *) echo "Too many arguments." ;; esac
}

> For almost every purpose, aliases are superseded by shell functions.

Casting to C and compiling is also a nice exercise.  

Thanks,   ... P.







-- 
mobile: +1 778 951 5147
  VoIP: +1 604 670 0140
   48.7693 N 123.3053 W

Re: Accéder à mon serveur web domestique par l’ip publique d’un VPN comme ProtonVPN ou autre.

[benoit]

Bonjour,

Merci pour ta réponse, je me rend compte que j'ai mal formulé ma question.
Je vais créer un autre sujet.

Sent with [ProtonMail](https://protonmail.com/) Secure Email.

‐‐‐ Original Message ‐‐‐
Le mardi 18 janvier 2022 à 17:32, NoSpam  a écrit :

> Bonjour,
>
> afin d'être indépendant du prestataire, je connecterai le serveur domestique 
> via le VPN proton à un VPS (coute plus grand chose de nos jours). 
> J'attaquerqi ensuite ce VPS pour accéder au serveur domestique. Le tout en 
> ssh.
>
> Le 18/01/2022 à 17:24, benoit a écrit :
>
>> Bonjour à toutes et tous,
>>
>> J’ai un serveur web domestique sous Debian bullseye, sur la même machine 
>> j’ai installé un client VPN (openvpn@client.service) qui se connecte à 
>> ProtonVPN, le tout derrière la box de mon FAI.
>>
>> Pour la navigation sur internet des ordinateurs de bureau connectés derrière 
>> cette machine, tout va bien, je passe par le VPN avec l’IP du serveur VPN, 
>> moyennant une règle NAT.
>>
>> Que dois-je faire pour utiliser l’IP du serveur VPN pour accéder à mon 
>> serveur web domestique ?
>>
>> Merci d’avance
>>
>> –
>> Benoît
>>
>> Sent with [ProtonMail](https://protonmail.com/) Secure Email.

Re: cooperative.co.uk has address 127.0.0.1

[Cindy Sue Causey]

On 1/18/22, Georgi Naplatanov  wrote:
> On 1/18/22 15:49, Greg Wooledge wrote:
>> On Tue, Jan 18, 2022 at 01:19:58PM +, Richmond wrote:
>>> Why do I see this?
>>>
>>> host cooperative.co.uk
>>> cooperative.co.uk has address 127.0.0.1
>>
>> Because whoever set up that DNS zone made an error.
>>
>> unicorn:~$ host cooperative.co.uk
>> cooperative.co.uk has address 127.0.0.1
>
> I have seen local-link IPv6 addresses as well :)


It's only been once or twice, but I've seen it, too. Pondered it for a
few seconds each time then a-sumed it was somehow tied to the other
end running their own server. The afterthought problem with it is the
inevitable collision with others (obviously) doing the same across the
Web.

Cindy :)
-- 
Cindy-Sue Causey
Talking Rock, Pickens County, Georgia, USA
* runs with birdseed *

Re: changed laptop disk -> PXE-E61 & PXE-M0F errors / BootDevice Not Found

[Vincent Lefevre]

On 2022-01-18 04:15:14 +0500, Alexander V. Makartsev wrote:
> On 18.01.2022 03:44, Vincent Lefevre wrote:
> > I tried to change my laptop disk following the instructions found at
> > https://askubuntu.com/questions/260777/how-to-migrate-an-encrypted-lvm-install-to-a-new-disk
[...]
[...]
> > But after changing the disk and booted, instead of getting GRUB,
> > I got PXE-E61 and PXE-M0F errors, and also
> > 
> > 
> > BootDevice Not Found
> > 
> > Please install an operating system on your hard disk.
> > 
> > Hard Disk - (3F0)
> > 
> > F2 System Diagnostics
> > 
> > For more information, please visit: www.hp.com\go\techcenter\startup
> > 
> > 
> > Note that the disk itself is recognized since the system allowed me
> > to do a quick check on it (no errors).
> > 
> > So, what could be wrong?
> > 
> It looks like you've forgot to mark boot partition (/dev/sdb1 ?) as
> 'Active'.
> It is necessary to do for DOS\MBR-style partition table, so stage-2
> bootloader could be found during boot process.

Yes, this was the issue (among other issues I needed to solve...
in particular, the --exclude rsync options did not behave as intended
since they exclude *all* files and directories with the given name,
not just the ones in the root directory).

-- 
Vincent Lefèvre  - Web: 
100% accessible validated (X)HTML - Blog: 
Work: CR INRIA - computer arithmetic / AriC project (LIP, ENS-Lyon)

Re: Accéder à mon serveur web domestique par l’ip publique d’un VPN comme ProtonVPN ou autre.

[NoSpam]

Bonjour,

afin d'être indépendant du prestataire, je connecterai le serveur 
domestique via le VPN proton à un VPS (coute plus grand chose de nos 
jours). J'attaquerqi ensuite ce VPS pour accéder au serveur domestique. 
Le tout en ssh.


Le 18/01/2022 à 17:24, benoit a écrit :


Bonjour à toutes et tous,

J’ai un serveur web domestique sous Debian bullseye, sur la même 
machine j’ai installé un client VPN (openvpn@client.service 
) qui se connecte à ProtonVPN, le tout 
derrière la box de mon FAI.


Pour la navigation sur internet des ordinateurs de bureau connectés 
derrière cette machine, tout va bien, je passe par le VPN avec l’IP du 
serveur VPN, moyennant une règle NAT.


Que dois-je faire pour utiliser l’IP du serveur VPN pour accéder à mon 
serveur web domestique ?


Merci d’avance

–
Benoît

Sent with ProtonMail  Secure Email.

Re: Firefox PDF download - strange behaviour.

[songbird]

Jeremy Nicoll wrote:
> songbird wrote:
...
>> but what i do is set where files are saved in a
>> specific directory and leave it at that
>
> That works fine while you can be sure that a browser is only 
> saving downloaded files.  What about when if can do anything
> it likes to any file/folder?

  i'm trusting the developers of the browser just like
everyone else who uses it.

  javascript has always been an issue, i don't see that
changing.  if you are paranoid about that kind of access
then the OS does let you set things up to be doubly sure
(different users and groups) and there are even security
protocols that go even further.  i don't bother with 
them.

  Debian itself is also another web of trust that us 
users rely upon.  i consider it similar enough to what 
happens at firefox devs that i don't really worry about
it.


  songbird

Re: Please take this as constructive

[Celejar]

On Tue, 18 Jan 2022 13:47:09 +
Brian  wrote:

> On Tue 18 Jan 2022 at 14:30:45 +0100, Loïc Grenié wrote:
> 
> > Hi,
> > 
> > On Tue 18 Jan 2022 at 07:48, R. Toby Richards wrote:
> > 
> > > Every time that I search for solutions to my wifi drivers, the solution is
> > > to apt-get install a bunch of drivers. Why does nobody realize that 
> > > apt'ing
> > > anything is a non-solution: How can I apt-get install  if
> > > I don't have network drivers? There are DOZENS of responses to questions

...

> >  I've been hit several time with this same problem, or variants thereof,
> >   and my solution has always been to have a separate computer with
> >   network access and use sneakernet between the two computers.
> >   I've always wondered how to do it better.
> 
> Wonder no longer :). Acquaint yourself with netcat.

How is netcat going to help if there's no networking on one machine?
And if there is (e.g., using a wired connection), then netcat isn't
really necessary, since the machine connected to the internet can be
configured to route packets to the other one.

Celejar

Exposer mon site web sur le net par l’ip publique d’un VPN comme ProtonVPN ou autre.

[benoit]

Bonjour à toutes et tous,

Je voudrais créer mon site web sur un serveur web auto-hébergé(apache) à 
domicile sous Debian bullseye, sur la même machine j’ai installé un client VPN 
(openvpn@client.service) qui se connecte à ProtonVPN, le tout derrière la box 
de mon FAI.

Pour la navigation sur internet des ordinateurs de bureau connectés derrière 
cette machine, tout va bien, je passe par le VPN avec l’IP du serveur VPN, 
moyennant une règle NAT.

Vu que mon FAI ne me donne pas une IP fixe, que dois-je faire pour utiliser 
l’IP fixe du serveur VPN (dans ce cas ci ProtonVPN) pour exposer mon site web 
sur internet?

Merci d’avance

--
Benoit

Sent with [ProtonMail](https://protonmail.com/) Secure Email.

Re: Usenet access.

[Dan Ritter]

songbird wrote: 
> pe...@easthope.ca wrote:
> > Hi,
> >
> > Can anyone suggest an alternative to Google Groups for access to 
> > sci.electronics.repair.  I'd be happy to pay a small subscription for 
> > access without tedious complications.
> 
>   i really liked individual.net and gladly paid them for
> the service, it wasn't much, but then they stopped taking
> overseas payments so i had to find another service.

They will take PayPal internationally; I don't know if it's
worthwhile for you to deal with PayPal just for them, though.

-dsr-

Re: cooperative.co.uk has address 127.0.0.1

[Thomas Hochstein]

Richmond schrieb:

> Why do I see this?
> 
> host cooperative.co.uk
> cooperative.co.uk has address 127.0.0.1

Because that's the IP that is associated with that name in the DNS.

There may be multiple reasons for that; one is to effectively block all requests
without straining the host that name had been associated with before.

Re: Firefox PDF download - strange behaviour.

[Vincent Lefevre]

On 2022-01-18 11:23:14 -0500, songbird wrote:
> Jeremy Nicoll wrote:
> > songbird wrote:
> ...
> >> but what i do is set where files are saved in a
> >> specific directory and leave it at that
> >
> > That works fine while you can be sure that a browser is only 
> > saving downloaded files.  What about when if can do anything
> > it likes to any file/folder?
> 
>   i'm trusting the developers of the browser just like
> everyone else who uses it.

The main issue is security bugs.

>   javascript has always been an issue, i don't see that
> changing.  if you are paranoid about that kind of access
> then the OS does let you set things up to be doubly sure
> (different users and groups) and there are even security
> protocols that go even further.  i don't bother with 
> them.

I systematically run firefox in firejail.

-- 
Vincent Lefèvre  - Web: 
100% accessible validated (X)HTML - Blog: 
Work: CR INRIA - computer arithmetic / AriC project (LIP, ENS-Lyon)

Re: Please take this as constructive

[Brian]

On Tue 18 Jan 2022 at 11:50:14 -0500, Celejar wrote:

> On Tue, 18 Jan 2022 13:47:09 +
> Brian  wrote:
> 
> > On Tue 18 Jan 2022 at 14:30:45 +0100, Loïc Grenié wrote:
> > 
> > > Hi,
> > > 
> > > On Tue 18 Jan 2022 at 07:48, R. Toby Richards wrote:
> > > 
> > > > Every time that I search for solutions to my wifi drivers, the solution 
> > > > is
> > > > to apt-get install a bunch of drivers. Why does nobody realize that 
> > > > apt'ing
> > > > anything is a non-solution: How can I apt-get install  
> > > > if
> > > > I don't have network drivers? There are DOZENS of responses to questions
> 
> ...
> 
> > >  I've been hit several time with this same problem, or variants 
> > > thereof,
> > >   and my solution has always been to have a separate computer with
> > >   network access and use sneakernet between the two computers.
> > >   I've always wondered how to do it better.
> > 
> > Wonder no longer :). Acquaint yourself with netcat.
> 
> How is netcat going to help if there's no networking on one machine?
> And if there is (e.g., using a wired connection), then netcat isn't
> really necessary, since the machine connected to the internet can be
> configured to route packets to the other one.

Rhetorical? netcat is obviously dependent on a working network. Thank
you for the second solution to avoiding sneakernet.

-- 
Brian.

Re: Exposer mon site web sur le net par l’ip publique d’un VPN comme ProtonVPN ou autre.

[Bernard Schoenacker]

- Mail original - 

> De: "benoit" 
> À: "liste.debian" 
> Envoyé: Mardi 18 Janvier 2022 18:13:35
> Objet: Exposer mon site web sur le net par l’ip publique d’un VPN
> comme ProtonVPN ou autre.

> Bonjour à toutes et tous,

> Je voudrais créer mon site web sur un serveur web
> auto-hébergé(apache) à domicile sous Debian bullseye, sur la même
> machine j’ai installé un client VPN ( openvpn@client.service ) qui
> se connecte à ProtonVPN, le tout derrière la box de mon FAI.

> Pour la navigation sur internet des ordinateurs de bureau connectés
> derrière cette machine, tout va bien, je passe par le VPN avec l’IP
> du serveur VPN, moyennant une règle NAT.

> Vu que mon FAI ne me donne pas une IP fixe, que dois-je faire pour
> utiliser l’IP fixe du serveur VPN (dans ce cas ci ProtonVPN) pour
> exposer mon site web sur internet?

> Merci d’avance

> --

> Benoit

> Sent with ProtonMail Secure Email.

Bonjour Benoit,

Pour ton service en auto-hébergement il te faut un système
à base de DynDNS ou équivalent ...

Voici par exemple une solution :

https://www.ionos.co.uk/digitalguide/server/tools/free-dynamic-dns-providers-an-overview/

récapitulatif des services assurant un DNS pour des IP dynamiques :

https://www.comparitech.com/net-admin/dynamic-dns-providers/

documentation :
https://fr.wikipedia.org/wiki/Dyn_(entreprise)

Merci pour ton aimable attention

Bien à toi

Bernard

Re: Exposer mon site web sur le net par l’ip publique d’un VPN comme ProtonVPN ou autre.

[Stephane Bortzmeyer]

On Tue, Jan 18, 2022 at 05:13:35PM +,
 benoit  wrote 
 a message of 56 lines which said:

> Vu que mon FAI ne me donne pas une IP fixe, que dois-je faire pour
> utiliser l’IP fixe du serveur VPN (dans ce cas ci ProtonVPN) pour
> exposer mon site web sur internet?

Une solution possible est d'utiliser un des services auxquels on se
connecte depuis l'intérieur, avant de recevoir les connexions
extérieures. Un exemple est mysocket. Mon expérience :

https://www.bortzmeyer.org/mysocket.html

Re: Usenet access.

[Richmond]

pe...@easthope.ca writes:

> Hi,
>
> Can anyone suggest an alternative to Google Groups for access to 
> sci.electronics.repair.  I'd be happy to pay a small subscription for 
> access without tedious complications.
>
> Thx,   ... P.

news.aioe.org has it

Re: chromium , google-chrome : ingérables avec Bullseye

[ajh-valmer]

On Sunday 16 January 2022 20:15:05 ajh-valmer wrote:
> Bonsoir,
> Merci pour ces bons et nombreux conseils.
> Hélas, j'ai supprimé Chromium complètement (purge),
> effacer dans .cache et .config chromium, google-chrome,
> Idem pour google-chrome,
> réinstallé Chromium, idem = ingérable comme avant !
 
> On Sunday 16 January 2022 19:29:43 didier gaumet wrote:
> > Ici Chromium fonctionne sans pb (Bullseye+Gnome Classic) :
Pas chez moi (sniff). Le Xorg (Xfree) ne semble pas suivre,
graphisme qui déforme tout.

Je relance mon problème.

J'ai désinstallé (purge) chromium et google-chrome, +
$ rm ~/.cache/chromium
$rm ~/.config/chromium
$ rm ~/.cache/google-chrome
$ rm ~/.config/google-chrome
puis réinstallé chromium,
rien n'y fait, j'ai toujours chromium ingérable.
Je ne vois pas pourquoi.

Bonne fin de soirée,

A. Valmer

Re: Please take this as constructive

[The Wanderer]

On 2022-01-18 at 12:48, Brian wrote:

> On Tue 18 Jan 2022 at 11:50:14 -0500, Celejar wrote:
> 
>> On Tue, 18 Jan 2022 13:47:09 + Brian 
>> wrote:

>>> Wonder no longer :). Acquaint yourself with netcat.
>> 
>> How is netcat going to help if there's no networking on one
>> machine? And if there is (e.g., using a wired connection), then
>> netcat isn't really necessary, since the machine connected to the
>> internet can be configured to route packets to the other one.
> 
> Rhetorical? netcat is obviously dependent on a working network.

Yes, so since the entire problem is that one of the machines involved
doesn't have a working network, how does netcat help?

> Thank you for the second solution to avoiding sneakernet.

I'm confused. What are you talking about? I don't see any alternative
suggested above, beyond what obviously isn't applicable because it
assumes having a network connection, which as indicated isn't the case.

Unless you mean "e.g., using a wired connection"? It's not clear that
that's an available option in this case, either, although there are
probably a lot of cases where it will be. (I've had the misfortune
recently, in my workplace, of having to image and set up a lot of
laptops which don't come with a wired Ethernet adapter, and most
recently with ones that don't come with an external USB-or-similar
wired-Ethernet adapter dongle either.)

-- 
   The Wanderer

The reasonable man adapts himself to the world; the unreasonable one
persists in trying to adapt the world to himself. Therefore all
progress depends on the unreasonable man. -- George Bernard Shaw



signature.asc
Description: OpenPGP digital signature

How to best whitelist CDN deb.debian.org?

[Andreas Ames]

Hello all,

I am sitting behind a firewall, in my case esp. ZScaler.  I am wondering,
what the best way is to whitelist "deb.debian.org" for package management.
Do I have to whitelist individually all mirror sites that back the CDN?  If
so, is there an up-to-date list of the hosts backing "deb.debian.org"?

Offtopic: Do you know, whether services like ZScaler provide dedicated
support for CDNs?


Thanks in advance,

Andreas