Re: need help on cracking wireless password

[John Hasler]

Jason writes:
> Maybe the 'golden rule' could apply here: "Do to others as you wish
> them to do to you." Simple and universal.

"Do unto others as they would wish you to do onto them."  Not everyone
shares your values.
-- 
John Hasler 
jhas...@newsguy.com
Elmwood, WI USA

Re: need help on cracking wireless password

[Jason]

On Sat, Feb 24, 2018 at 09:49:49PM +, Long Wind wrote:
> but this is China, we have very low moral standard than you(your email shows 
> that you are from USA)

We all live on the same Little Blue Ball.

> the big ? in China is freedomgoogle, facebook, twitter ... are all blocked by 
> governmentif we demand justice, these should receive more priority than 
> stealing (sharing) bandwidth 
> 
>
Maybe the 'golden rule' could apply here: "Do to others as you wish
them to do to you." Simple and universal.

> 
> On Saturday, February 24, 2018 2:36 PM, Joe Pfeiffer 
>  wrote:
>  
> 
>  Really?  They're paying for it and you want to use it for free?  This
> strikes you as neighborly behavior?
> 
> 
>

Best regards,

-- 
Jason

Re: Mijndomein Websites die niet werken met Firefox-esr

[Diederik de Haas]

On vrijdag 23 februari 2018 14:55:56 CET Stem ook met je portomonee wrote:
> mijndomein.nl betaal ik om mijn bezoekers te schofferen.

+1 en geweldig dat je de afzender toepasselijk hebt gemaakt :)

Ik vind het verbazingwekkend hoe mild er over mijndomein wordt geoordeeld.

Het weerstaan van DDOS aanvallen, hoe vervelend ook, is een onderdeel van hun 
*core* business. En als ze denken dat filteren op UserAgent waarde een 
toepasselijke oplossing voor is, betekent dat voor mij dat ze helemaal niks 
weten van hun *core* business.


#!/bin/sh
# kattenkwaad uithalen

# lees UserAgents uit bestand en/of doe wat leuks met /dev/random
UAs = createUserAgentList()
UA = rnd(UAs)

# let's have some fun!
doKatteKwaad(UA)


Wat gaan ze dan doen? Het hele internet blokkeren?

Dat ze nu Linux gebruikers niet meer weren (obv UserAgent) nadat gebruikers 
het probleem op een Linux ML hebben besproken, is marketing. Geen oplossing.

Ik heb er principiële problemen mee als mijn/een hosting provider gaat bepalen 
wie er wel en niet mijn website mag bezoeken.

signature.asc
Description: This is a digitally signed message part.

Re: no audio

[Glenn English]

On Sat, Feb 24, 2018 at 9:02 PM, Ric Moore  wrote:

> Sorry but there is no way on earth that all sound systems/devices are
> commonly supported. Get USB devices and they seem to work out of the box. No
> problem removing pulse until you need to easily switch outputs/inputs on the
> fly. Just for kicks, re-install pulse and see if it works now. Ric

I believe you, but it worked/works without AP. And I don't need
anything more than what SoX, Audacity, and alsa will do, so I'm a
happy camper.

And, BTW, when I put the RME Hammerfall card back in, alsa quit
working too. The problem was that alsamixer wouldn't save the card I
chose in alsamixer -- it insisted on the RME card. I found, on the
web, a file that defines a card to be alsa's default, and it worked.
Now the RME's no longer a viable choice, but I can edit the
set-default file if I want the RME. Until then, it'll use my mobo
sound chip. Looks like bent software, but there's a workaround.

I'm thinking this might have been the problem I was having with PA --
alsa wouldn't let me select what alsa wanted to use as the default, so
PA never got to it.

But whatever. It's making noise now...

-- 
Glenn English

Re: need help on cracking wireless password

[Long Wind]

but this is China, we have very low moral standard than you(your email shows 
that you are from USA)
the big ? in China is freedomgoogle, facebook, twitter ... are all blocked by 
governmentif we demand justice, these should receive more priority than 
stealing (sharing) bandwidth 




 

On Saturday, February 24, 2018 2:36 PM, Joe Pfeiffer  
wrote:
 

 Really?  They're paying for it and you want to use it for free?  This
strikes you as neighborly behavior?


   

Re: Stretch: problème avec Ethernet Controller RTL8111

[Bernard]

On 24/02/2018 22:12, andre_deb...@numericable.fr wrote:

On Saturday 24 February 2018 19:56:03 Bernard wrote:

Eh bien, désormais, ma connexion filiaire est active.


C'est connexion "filaire" (câble ethernet).




oui, exactement. Auparavant je n'avais pu obtenir que des connexions 
WiFi et rien d'autre, mais là c'est filiaire, lors même que j'ai 
désactivé le WiFi

Re: Stretch: problème avec Ethernet Controller RTL8111

[Bernard]

On 24/02/2018 21:38, Eric Degenetais wrote:

Bonsoir,
quand le réseau est "tombé en marche", est-ce que des voyants sont 
apparus côté carte ?


oui, mais c'était aussi le cas auparavant... Je n'ai pas vérifié dès le 
début, mais à un moment donné j'ai pu constater que les voyants 
clignotaient, alors que la connexion se cherchait mais n'arrivait pas. 
C'était hier, kors même que je n'avais pas encore eu une seule connexion 
filiaire




Éric Dégenètais

Le 24 févr. 2018 7:56 PM, "Bernard" > a écrit :


Eh bien, désormais, ma connexion filiaire est active. Mais je ne
sais pas comment c'est arrivé... car je n'ai rien fait depuis hier
soir, si ce n'est déplacer l'unité centrale. C'est à croire qu'il
s'agissait d'un mauvais contact ; si c'est bien le cas, le problème
est susceptible de se reproduire...

Ou alors quelque chose m'a échappé.

Hier soir, après moultes essais, je n'obtenais rien qui soit
utilisable. L'unité centrale est désormais perchée sur un bureau, et
le câble Ethernet pend vers le bas... alors que, lorsque l'UC était
au sol le câble était étiré vers le haut... Mais j'avais pourtant
fait plusieurs essais de branchement et débranchement, et même
remplacé le câble par un autre, sans résultat.

Mais aujourd'hui j'ai fait plusieurs tentatives de shutdown / reboot
et, apparemment, la connexion filiaire se produit désormais chaque
fois. Et çà fonctionne depuis maintenant plusieurs heures, c'est
d'ailleurs depuis ce nouveau PC que j'envoie ce message.

Au cas où quelque chose m'aurait échappé, j'aimerais bien que
quelqu'un examine mon /var/log/messages ci-attaché. Peut-être y
trouvera-t-on d'autres anomalies sur mon système. S'agissant de la
connexion, voici les lignes que j'ai relevées, sur la portion qui
concerne le premier boot qui a aboutit à une connexion filiaire
durable et exploitable :

ligne 606, 611, 631, 634, 636, 640, 647-678, 1395, 1430

On peut déjà remarquer que le firmware installé est utilisé, sans
lui il n'y aurait pas de connexion. Mais çà n'a pas suffit... et ce
qui au final a fait la différence, je l'ignore encore...

Merci encore pour vos contributions,

Bernard

Re: Stretch: problème avec Ethernet Controller RTL8111

[andre_debian]

On Saturday 24 February 2018 19:56:03 Bernard wrote:
> Eh bien, désormais, ma connexion filiaire est active.

C'est connexion "filaire" (câble ethernet).

Re: no audio

[Ric Moore]

On 02/24/2018 02:57 PM, Glenn English wrote:

Fixed.

Deleted PulseAudio and rebooted, looked at aslamixer (no changes), and
all is well. IMHO, PA is indeed the spawn of Satan, and everybody
responsible for it must be taken out and hanged. And PA must be
removed from the Debian installs and burned.


Sorry but there is no way on earth that all sound systems/devices are 
commonly supported. Get USB devices and they seem to work out of the 
box. No problem removing pulse until you need to easily switch 
outputs/inputs on the fly. Just for kicks, re-install pulse and see if 
it works now. Ric


--
My father, Victor Moore (Vic) used to say:
"There are two Great Sins in the world...
..the Sin of Ignorance, and the Sin of Stupidity.
Only the former may be overcome." R.I.P. Dad.
http://linuxcounter.net/user/44256.html

Re: no audio

[Ric Moore]

On 02/24/2018 02:10 PM, Glenn English wrote:

On Sat, Feb 24, 2018 at 10:04 AM, Curt  wrote:


I have two sound devices--HD-AUDIO GENERIC (which corresponds to HDMI)
and HDA ATI SB (Realtek chip which I use for sound output).

Selecting the HDA ATI SB card in alsamixer (F6) was fruitless (although
you can eventually unmute muted channels there to positive effect).

I installed pavucontrol, and in the Configuration tab turned the HDMI
profile off and the analog duplex output which corresponds to my Realtek
chip on.

As I have no speakers, in Output Devices I selected headphones (I do have
headphones).

I now have sound through the headphones.


Still nothing here.

pavucontrol was already installed, so I ran it. It came up in the
Output Devices mode. 


Did you goto the right-most tab "Configuration"? That is where you can 
turns things on/off. Mine is


HDA NVidia  Off
HDA NVidia  Off
Built in Audio  Off
USB Audio DeviceAnalog Stereo Output and Analog mono Input
CM106 Like Sound Device Analog Surround 7.1 Output


Turn OFF what you don't need/want and configure what you do have. My 
BEST luck is using USB. Stinkin' stereo jacks have to figure if your 
speakers are directly connected or amplified. Doesn't always work out on 
laptops especially. The USB audio device is my USB stereo headphones, 
and the CM106 Like Sound Device is my USB 7.1 sound setup to blow my 
neighbors into the next county. Hope this helps, USB seems to work best. Ric

--
My father, Victor Moore (Vic) used to say:
"There are two Great Sins in the world...
..the Sin of Ignorance, and the Sin of Stupidity.
Only the former may be overcome." R.I.P. Dad.
http://linuxcounter.net/user/44256.html

Re: Stretch: problème avec Ethernet Controller RTL8111

[Eric Degenetais]

Bonsoir,
quand le réseau est "tombé en marche", est-ce que des voyants sont apparus
côté carte ?

Éric Dégenètais

Le 24 févr. 2018 7:56 PM, "Bernard"  a écrit :

> Eh bien, désormais, ma connexion filiaire est active. Mais je ne sais pas
> comment c'est arrivé... car je n'ai rien fait depuis hier soir, si ce n'est
> déplacer l'unité centrale. C'est à croire qu'il s'agissait d'un mauvais
> contact ; si c'est bien le cas, le problème est susceptible de se
> reproduire...
>
> Ou alors quelque chose m'a échappé.
>
> Hier soir, après moultes essais, je n'obtenais rien qui soit utilisable.
> L'unité centrale est désormais perchée sur un bureau, et le câble Ethernet
> pend vers le bas... alors que, lorsque l'UC était au sol le câble était
> étiré vers le haut... Mais j'avais pourtant fait plusieurs essais de
> branchement et débranchement, et même remplacé le câble par un autre, sans
> résultat.
>
> Mais aujourd'hui j'ai fait plusieurs tentatives de shutdown / reboot et,
> apparemment, la connexion filiaire se produit désormais chaque fois. Et çà
> fonctionne depuis maintenant plusieurs heures, c'est d'ailleurs depuis ce
> nouveau PC que j'envoie ce message.
>
> Au cas où quelque chose m'aurait échappé, j'aimerais bien que quelqu'un
> examine mon /var/log/messages ci-attaché. Peut-être y trouvera-t-on
> d'autres anomalies sur mon système. S'agissant de la connexion, voici les
> lignes que j'ai relevées, sur la portion qui concerne le premier boot qui a
> aboutit à une connexion filiaire durable et exploitable :
>
> ligne 606, 611, 631, 634, 636, 640, 647-678, 1395, 1430
>
> On peut déjà remarquer que le firmware installé est utilisé, sans lui il
> n'y aurait pas de connexion. Mais çà n'a pas suffit... et ce qui au final a
> fait la différence, je l'ignore encore...
>
> Merci encore pour vos contributions,
>
> Bernard
>

Re: need help on cracking wireless password

[Michelle Konzack]

Am 2018-02-24 hackte John Hasler in die Tasten:
> Michelle Konzack writes:
>> I was attacked by honny pots of the NSA!
>
> I wrote:
>> How can you be attacked by a honey pot?
>
>> The start a DOS or a hack attemped
>
> Not a honeypot.

Oh yes, it is...

They attack and wait if there is a reaction and then they come back
to you and then you have to explain to the local authorities,
why you have hacked back the attacking IP...

In the past I had several issues with North American authorities.
Several times I endet up at the firewall of some NATO installations in
Europe!  --  Not funny at all, because if i fought back and the justice
made a request, -- oh wonder, any charges against me and my enterprises
where droped!

I seems, they try to make some "uncomfortable" busy to bound there
resources, which not only happen to me...  In my opinion, the USA
targeting european PMCs because we mostly do not want to play the bad
american game.

And do not tell me, this three letter ORGs what only to test the
security of my mail-, dns- and cloud-servers!  All 17 servers of my
network are under permanent attack which produce a traffic of more
then 50 TByte per month... official I have only 1 TByte/Server and this
attacks become costly because I have to pay extra for the traffic!!!

Oh, my standard traffic is only 0,5-2 TByte per month.

-- 
Michelle KonzackMiila ITSystems @ TDnet
GNU/Linux Developer 00372-54541400

Re: requesting assistance troubleshooting Kmail

[mark]

This may or may not be helpful to Charlie, but others might find it helpful

I use kmail ( version 5.5.2).  I have it set up to download all e-mail as 
local IMAP(not stored on server) so that each message is a separate file on my 
PC.  Hasn't been a problem in a long time.  Recently, I've gotten some 
"ghostly" messages that I could not delete.  There was a cryptic error message 
pointing at the akonadi database.  

>From searching the web, I found that there is a management program called 
akonadiconsole.  It allowed me to solve my problems.  

Here is what I did and some notes on what I found.  So, I downloaded and 
installed it.  Note that it should be run as a user (not as root) to access 
that user's e-mail.  The program opens with 5 windows.  Top left is 
"Collection" which are the various folders that the e-mail is stored in.  Top 
right doesn't have a title, but displays the "ID", "Remote Id"  and "MimeType" 
of each message.  What I found (your results may be different) is that the 
messages that I was having problems with did not have an entry in the MimeType 
column.  I right clicked on a message without a "MimeType" and chose "delete". 
(once I select a message, the body of the message displays below the message 
list) The problematic message was gone.  It took a very few minutes for me to 
go through my messages, and clean out the problems.

WORD OF WARNING:  This is a low level database access tool.  Changes that you 
make are immediate, and not reversable.  You can mess things up badly if you 
are not deliberate and careful.  (I did not try to mess my stuff up to find 
out), so be very careful.

Good luck, and best wishes,
Mark


On Saturday, February 17, 2018 4:07:27 PM EST charlie derr wrote:
> Apologies if this turns out to be a duplicate message. I tried to send
> to the list using my problematic Kmail client (and a message appeared
> in my sent mail folder) but so far I don't see it having posted when I
> look at the web archives for debian-user.
> 
> I sent a similar message to debian-kde this morning, but it appears
> there's not much activity there, so I figured I'd also try here.
> 
> I've been a debian GNU/linux user (I like KDE for my desktop, though I
> generally keep openbox (and gnome) available as "fallbacks") for quite
> some time now (decades at least) and am in general a very happy user.
> I've been using  both thunderbird and claws-mail as IMAP clients for
> some time, but recently (a few months ago) I set up Kmail (and I like
> it very much, as integration with gnupg was relatively painless). I am
> again using it as an IMAP client (with a different gmail address). I
> have two computers, both running debian 9 stretch. On one of them (the
> laptop), Kmail is functioning properly, but on the desktop machine
> which I'm writing from now, incoming email has not been appearing since
> the end of January. I don't see any obvious menu entries which would
> give me access to log files in order to try to troubleshoot the
> problem, so I'm looking for any advice as to how I might go about
> correcting the issue so this instance of Kmail can again receive email
> (it's possible that the problem is as simple as an incorrectly entered
> password though I've just attempted to reenter it with no improvement
> in mail fetching behavior). I'm not currently subscribed to this list,
> so CCing me is perfectly fine (though I'll monitor the web archives for
> responses on which I may not be CCed).
> 
>thanks so much in advance for any information anyone may have to
>share with me,
> 
>  ~c

[RESOLVED] -- Re: Problems with clean install of fvwm

[Richard Owlett]

On 02/23/2018 05:46 AM, Richard Owlett wrote:

History
I run MATE, but to paraphrase a restaurant - "I want Debian MyWay" ;)
It was suggested that I wanted what KDE calls "activities".
It looked promising. I installed it. It suffers from featuritis.
fvwm-crystal was also suggested. When installed it was in some sense 
"cleaner" but still too busy. Launched fvwm which had been installed by 
the fvwm-crystal package.


The problem
It had "inherited" configuration items from fvwm-crystal. The web pages 
I had read spoke of a default 1st run display. I could not figure out 
how to get that to appear.


Having adequate space available I used netinst to do a base command line 
only install to a new partition. It was followed by doing "apt-get 
install fvwm".


I rebooted expecting a minimal fvwm display. I got a command line.
I found that though a "/home/richard/.fvwm" directory had been created, 
it was empty. I couldn't find copies of what files should have been 
there on initial first run. Only instructions/examples for adding this 
or that doodad.


Help please.
TIA


Found the underlying problem.
The design team measures success in terms of "elegance" and "completeness".
There is a sub-class of "retail customers" {so to speak} who want it to 
"just work *as expected*" ;}


This example of that sub-class is by philosophy a "minimalist" and by 
circumstances "resource constrained". I have a single laptop {no 
need/desire/justification for LAN} who would not suffer if circumstances 
moved him back to using 56k dial-up.


I had used netinst to do a base command line only install followed by 
doing "apt-get install fvwm".


Didn't work. It needed "apt-get install xorg lightdm".

I've been gnawing on aspects of the problem since Squeeze.
The best idea I've come up with is having a tool that can author a 
custom preseed.cfg file. One of the goals being not to touch or affect 
the internals of the Debian installer.


Has anyone tried something similar?
An _owl_ now _ducks_ for cover :}

Re: no audio

[Glenn English]

Fixed.

Deleted PulseAudio and rebooted, looked at aslamixer (no changes), and
all is well. IMHO, PA is indeed the spawn of Satan, and everybody
responsible for it must be taken out and hanged. And PA must be
removed from the Debian installs and burned.

It's really nice that several responders in this thread are happily
using it. But here, but it took several hours to get sound back in my
headphones.

-- 
Glenn English

Re: need help on cracking wireless password

[deloptes]

Joe Pfeiffer wrote:

> Really?  They're paying for it and you want to use it for free?  This
> strikes you as neighborly behavior?

It's china man, there are 1+ billion neighbors - if few of them are upset,
the rest won't care (irony off)

Re: need help on cracking wireless password

[Joe Pfeiffer]

Really?  They're paying for it and you want to use it for free?  This
strikes you as neighborly behavior?

Long Wind  writes:

> Thank Reco and deloptes! 
> what i suspect turn out to be true: for ethical reason users here refuse to 
> help
>
> if reaver is used mainly by bad guy, why debian include it in stable?
>
> i'm in CHina, a land not ruled by law
> jungle law still holds, we chinese can't worry too much
> or we'll worry to death
>
> i want to crack wireless password,
> so i can connect to my neighbours' router
> which provide Internet access
>
> as far as i know their isp charge are fixed, independent of traffic volume
> and i won't use much, so i'm unwilling to pay isp
> it does little harm to my neighbors
>
> On Saturday, February 24, 2018 2:40 AM, deloptes  wrote:
>
> Long Wind wrote:
>
>> i've installed reaver
>> how to know bssid? it's required argumentfrom wicd-gtk, i click
>> "Properties" then "Information"i can see Access point address, it's
>> bssid?? after i enter reaver with -i, -b and -vv, nothing seems to happen
>> Thanks!
>
> I agree with Reco, but you can try Kali Linux - there are pretty interesting
> tools there
>
> regards

Re: no audio

[Glenn English]

On Sat, Feb 24, 2018 at 7:10 PM, Glenn English  wrote:

I pulled the Hammerfall card, and it disappeared from the pavucontrol
window. The Audacity and the PA meters still bounce, but there's still
no audio.

-- 
Glenn English

Re: no audio

[Glenn English]

On Sat, Feb 24, 2018 at 10:04 AM, Curt  wrote:

> I have two sound devices--HD-AUDIO GENERIC (which corresponds to HDMI)
> and HDA ATI SB (Realtek chip which I use for sound output).
>
> Selecting the HDA ATI SB card in alsamixer (F6) was fruitless (although
> you can eventually unmute muted channels there to positive effect).
>
> I installed pavucontrol, and in the Configuration tab turned the HDMI
> profile off and the analog duplex output which corresponds to my Realtek
> chip on.
>
> As I have no speakers, in Output Devices I selected headphones (I do have
> headphones).
>
> I now have sound through the headphones.

Still nothing here.

pavucontrol was already installed, so I ran it. It came up in the
Output Devices mode. The window is labeled Volume Control, and it set
to Built-in Audio Digital Stereo (IEC958). There is only port
available: Digital Output (S/PDIF).

The Advanced choices is set, and greyed out, to PCM. There's a MPEG
choice, so I selected it to add that to PCM.

The speaker icon (Mute audio) has an 'x' in it. if I click that, the
level indicator goes grey (and is still labeled Mute audio), so I
clicked it again to un-grey the level indicator.

The indicator was up, at what looked like a default level: 100% (0db).
If 100% == 0db, something is very odd to this old audio engineer. 100%
is way above 0db. I raised it up some, to 123% (5.36db).

Below that, the RME Hammerfall is shown, labeled Multichannel Output.
I did nothing there. Maybe I should pull that card -- there's nothing
I can find in PA to select which of the ports to use.

The PA log messages are decent English words -- very nicely done. But
the user settings and the actions are amazingly badly done. As best I
can tell, they don't do what they say they're going to do, or maybe
they just don't have options I can understand (very possible).

I do hear mild clicks when I plug in the headphones, so somebody at
least has power (and what sounds like a small DC offset).

Still no audio in the cans.

-- 
Glenn English

Re: Stretch: problème avec Ethernet Controller RTL8111

[Bernard]

Eh bien, désormais, ma connexion filiaire est active. Mais je ne sais 
pas comment c'est arrivé... car je n'ai rien fait depuis hier soir, si 
ce n'est déplacer l'unité centrale. C'est à croire qu'il s'agissait d'un 
mauvais contact ; si c'est bien le cas, le problème est susceptible de 
se reproduire...


Ou alors quelque chose m'a échappé.

Hier soir, après moultes essais, je n'obtenais rien qui soit utilisable. 
L'unité centrale est désormais perchée sur un bureau, et le câble 
Ethernet pend vers le bas... alors que, lorsque l'UC était au sol le 
câble était étiré vers le haut... Mais j'avais pourtant fait plusieurs 
essais de branchement et débranchement, et même remplacé le câble par un 
autre, sans résultat.


Mais aujourd'hui j'ai fait plusieurs tentatives de shutdown / reboot et, 
apparemment, la connexion filiaire se produit désormais chaque fois. Et 
çà fonctionne depuis maintenant plusieurs heures, c'est d'ailleurs 
depuis ce nouveau PC que j'envoie ce message.


Au cas où quelque chose m'aurait échappé, j'aimerais bien que quelqu'un 
examine mon /var/log/messages ci-attaché. Peut-être y trouvera-t-on 
d'autres anomalies sur mon système. S'agissant de la connexion, voici 
les lignes que j'ai relevées, sur la portion qui concerne le premier 
boot qui a aboutit à une connexion filiaire durable et exploitable :


ligne 606, 611, 631, 634, 636, 640, 647-678, 1395, 1430

On peut déjà remarquer que le firmware installé est utilisé, sans lui il 
n'y aurait pas de connexion. Mais çà n'a pas suffit... et ce qui au 
final a fait la différence, je l'ignore encore...


Merci encore pour vos contributions,

Bernard


VarLogMessages.txt.bz2
Description: application/bzip

Re: Problem using "apt-get update"

[Richard Owlett]

On 02/24/2018 12:02 PM, Felix Miata wrote:

Richard Owlett composed on 2018-02-24 10:48 (UTC-0600):


I had just done a minimal (command line only) install of Stretch from
the first DVD of the complete set rather than using netinst to conserve
bandwidth. The install as usual was successful.



I wish to install a package from the repository - it's not on DVD1.
I added the line
deb http://ftp.us.debian.org/debian/ stretch main non-free contrib
to sources.list while commenting out the line referencing CDROM.



I attempted to run "apt-get update".
It *FAILED*
The message was the source I wanted was being ignored.



WHY?

  Mirror problems in .us.???


No. A typo in the following "apt-get install ..." line ;/




Do you get also get failure if you s/apt-get/apt/g ?

Re: The white man - Who he is. A Discussion

[Tracy Smith]

Please block this junk email

Sent from my iPhone

> On Feb 24, 2018, at 9:49 AM, thetruthstandsbefor...@firemail.cc wrote:
> 
> Alot of folks have been wondering: why are things they way that they are? 
> Many have been pondering this notion. All things have roots: you, me, we all 
> do, but when we are cut from those roots we feel adrift in this world. Like 
> this world is not our own. In the past many of us have been forcefully cut 
> from those roots through no fault of our own nor of our ancestors.
> 
> To know why things are, you must know Who the people that do them, are. What 
> makes them do these things. Here's some straight truth from someone who has 
> been in the game for some time
> 
> The white man -- Just Who, who really, he is (and why he do what he does)
> 
> 
> (Don't let th
> ese words be silenced, those against the truth try to cast it into darkness;
> and with it - what with that which what makes us human)
> 
> 
> 
> http://www.liveleak.com/view?i=76b_1519485315
> 
> 
> 
> 
> 
> #blackpanther, #wealth, #power, #shaolin

Re: Stretch net install on EeePC - unable to resolve mirror host address

[Reco]

Hi.

On Sat, Feb 24, 2018 at 06:48:13PM +0100, Roger Price wrote:
> On Sat, 24 Feb 2018, Reco wrote:
> > On Sat, Feb 24, 2018 at 03:14:26PM +0100, Roger Price wrote:
> > > rprice@kananga:~$ systemctl status NetworkManager
> > > ● NetworkManager.service - Network Manager
> > >Loaded: loaded (/lib/systemd/system/NetworkManager.service; enabled; 
> > > vendor preset: enabled)
> > >Active: active (running) since Fri 2018-02-23 12:03:54 CET; 1 day 2h 
> > > ago
> > >  Docs: man:NetworkManager(8)
> > >  Main PID: 372 (NetworkManager)
> > > Tasks: 4 (limit: 4915)
> > >CGroup: /system.slice/NetworkManager.service
> > >├─372 /usr/sbin/NetworkManager --no-daemon
> > >└─472 /sbin/dhclient -d -q -sf 
> > > /usr/lib/NetworkManager/nm-dhcp-helper -pf /var/run/dhclient-wlan0.pid
> > 
> > Assuming that's reference ISC DHCP, can you please try this for me?
> > 
> > dhclient -6 -d wlan0
> > 
> > Let it run for 10 seconds or so, terminate it with Ctrl+C. I'm
> > interested in the output. Oh, and there's no need to disable
> > NetworkManager, or kill running dhclient and wpasupplicant.
> 
> Script started on Sat 24 Feb 2018 06:38:17 PM CET
> Internet Systems Consortium DHCP Client 4.3.5
> Copyright 2004-2016 Internet Systems Consortium.
> All rights reserved.
> For info, please visit https://www.isc.org/software/dhcp/
> 
> Listening on Socket/wlan0
> Sending on   Socket/wlan0
> Created duid "\000\001\000\001\"$_\211t\360m\002\262L".
> PRC: Soliciting for leases (INIT).
> XMT: Forming Solicit, 0 ms elapsed.
> XMT:  X-- IA_NA 6d:02:b2:4c
> XMT:  | X-- Request renew in  +3600
> XMT:  | X-- Request rebind in +5400
> XMT: Solicit on wlan0, interval 1080ms.
> XMT: Forming Solicit, 1080 ms elapsed.
> XMT:  X-- IA_NA 6d:02:b2:4c
> XMT:  | X-- Request renew in  +3600
> XMT:  | X-- Request rebind in +5400
> XMT: Solicit on wlan0, interval 2150ms.
> XMT: Forming Solicit, 3230 ms elapsed.
> XMT:  X-- IA_NA 6d:02:b2:4c
> XMT:  | X-- Request renew in  +3600
> XMT:  | X-- Request rebind in +5400
> XMT: Solicit on wlan0, interval 4280ms.
> XMT: Forming Solicit, 7520 ms elapsed.
> XMT:  X-- IA_NA 6d:02:b2:4c
> XMT:  | X-- Request renew in  +3600
> XMT:  | X-- Request rebind in +5400
> XMT: Solicit on wlan0, interval 8640ms.
> XMT: Forming Solicit, 16160 ms elapsed.
> XMT:  X-- IA_NA 6d:02:b2:4c
> XMT:  | X-- Request renew in  +3600
> XMT:  | X-- Request rebind in +5400
> XMT: Solicit on wlan0, interval 17250ms.
> ^C
> Script done on Sat 24 Feb 2018 06:38:40 PM CET
> 
> There is nothing in the router log for today.

Thanks, was worth the try. No DHCPv6 or RA was detected.
How exactly d-i was able to procure a valid IPv6 address is still a
mystery to me.

Reco

Re: Problem using "apt-get update"

[Richard Owlett]

On 02/24/2018 12:01 PM, Brian wrote:

On Sat 24 Feb 2018 at 11:55:29 -0600, Richard Owlett wrote:


On 02/24/2018 11:08 AM, Reco wrote:

Hi.

On Sat, Feb 24, 2018 at 11:06:53AM -0600, Richard Owlett wrote:

On 02/24/2018 10:56 AM, John Hasler wrote:

Verbatim command


apt-get update  (as per
)


verbatim message


The message started a recognizable abbreviation of "ignored".
For a character perfect quote - where would it be logged?


apt-get update > /tmp/somefile

Reco




OK, I mis-remembered which line had "Ign". Here is redo:

Hit:1 http://security.debian.org/debian-security stretch/updates InRelease
Ign:2 http://ftp.us.debian.org/debian stretch InRelease
Hit:3 http://ftp.us.debian.org/debian stretch Release
Reading package lists...


So I redid the apt-get install which got me problem chasing,
(apt-get install xorg lightdm lvwm) whose captured output was:

Reading package lists...
Building dependency tree...
Reading state information...


That was followed by an uncaptured line saying:
E: Unable to locate package lvwm


lvwm doesn't exist.



Ba Baaa
Signed: He With Sheepish Look

Thanks all.

Re: Stretch: problème avec Ethernet Controller RTL8111

[Bernard]

mirtouf wrote:

Bonsoir,

Le 22/02/2018 à 12:58, bd a écrit :
  


A tout hasard, est-il possible de passer le paramètre suivant au noyau ?
"pcie_aspm=force" ou "pcie_aspm=off" et de regarder ce qu'il se passe
dans les logs.

Il serait aussi intéressant d'essayer avec le paquet
https://packages.debian.org/stretch/r8168-dkms
qui remplace le module du noyau.
  
L'essai n'a rien donné de plus. Je n'ai pas essayé de passer le 
paramètre au noyau, car j'ai par ailleurs du nouveau: un nouveau post va 
suivre

Re: Problem using "apt-get update"

[Felix Miata]

Richard Owlett composed on 2018-02-24 10:48 (UTC-0600):

> I had just done a minimal (command line only) install of Stretch from 
> the first DVD of the complete set rather than using netinst to conserve 
> bandwidth. The install as usual was successful.

> I wish to install a package from the repository - it's not on DVD1.
> I added the line
>deb http://ftp.us.debian.org/debian/ stretch main non-free contrib
> to sources.list while commenting out the line referencing CDROM.

> I attempted to run "apt-get update".
> It *FAILED*
> The message was the source I wanted was being ignored.

> WHY?
 Mirror problems in .us.???

Do you get also get failure if you s/apt-get/apt/g ?
-- 
"Wisdom is supreme; therefore get wisdom. Whatever else you
get, get wisdom." Proverbs 4:7 (New Living Translation)

 Team OS/2 ** Reg. Linux User #211409 ** a11y rocks!

Felix Miata  ***  http://fm.no-ip.com/

Re: Problem using "apt-get update"

[Brian]

On Sat 24 Feb 2018 at 11:55:29 -0600, Richard Owlett wrote:

> On 02/24/2018 11:08 AM, Reco wrote:
> > Hi.
> > 
> > On Sat, Feb 24, 2018 at 11:06:53AM -0600, Richard Owlett wrote:
> > > On 02/24/2018 10:56 AM, John Hasler wrote:
> > > > Verbatim command
> > > 
> > > apt-get update  (as per
> > > )
> > > 
> > > > verbatim message
> > > 
> > > The message started a recognizable abbreviation of "ignored".
> > > For a character perfect quote - where would it be logged?
> > 
> > apt-get update > /tmp/somefile
> > 
> > Reco
> > 
> > 
> 
> OK, I mis-remembered which line had "Ign". Here is redo:
> > Hit:1 http://security.debian.org/debian-security stretch/updates InRelease
> > Ign:2 http://ftp.us.debian.org/debian stretch InRelease
> > Hit:3 http://ftp.us.debian.org/debian stretch Release
> > Reading package lists...
> 
> So I redid the apt-get install which got me problem chasing,
> (apt-get install xorg lightdm lvwm) whose captured output was:
> > Reading package lists...
> > Building dependency tree...
> > Reading state information...
> 
> That was followed by an uncaptured line saying:
> E: Unable to locate package lvwm

lvwm doesn't exist.

-- 
Brian.

Re: Problem using "apt-get update"

[Richard Owlett]

On 02/24/2018 11:08 AM, Reco wrote:

Hi.

On Sat, Feb 24, 2018 at 11:06:53AM -0600, Richard Owlett wrote:

On 02/24/2018 10:56 AM, John Hasler wrote:

Verbatim command


apt-get update  (as per
)


verbatim message


The message started a recognizable abbreviation of "ignored".
For a character perfect quote - where would it be logged?


apt-get update > /tmp/somefile

Reco




OK, I mis-remembered which line had "Ign". Here is redo:

Hit:1 http://security.debian.org/debian-security stretch/updates InRelease
Ign:2 http://ftp.us.debian.org/debian stretch InRelease
Hit:3 http://ftp.us.debian.org/debian stretch Release
Reading package lists...


So I redid the apt-get install which got me problem chasing,
(apt-get install xorg lightdm lvwm) whose captured output was:

Reading package lists...
Building dependency tree...
Reading state information...


That was followed by an uncaptured line saying:
E: Unable to locate package lvwm

Color me more confused ;<

Re: Stretch net install on EeePC - unable to resolve mirror host address

[Roger Price]

On Sat, 24 Feb 2018, Reco wrote:

On Sat, Feb 24, 2018 at 03:14:26PM +0100, Roger Price wrote:

rprice@kananga:~$ systemctl status NetworkManager
● NetworkManager.service - Network Manager
   Loaded: loaded (/lib/systemd/system/NetworkManager.service; enabled; vendor 
preset: enabled)
   Active: active (running) since Fri 2018-02-23 12:03:54 CET; 1 day 2h ago
 Docs: man:NetworkManager(8)
 Main PID: 372 (NetworkManager)
Tasks: 4 (limit: 4915)
   CGroup: /system.slice/NetworkManager.service
   ├─372 /usr/sbin/NetworkManager --no-daemon
   └─472 /sbin/dhclient -d -q -sf 
/usr/lib/NetworkManager/nm-dhcp-helper -pf /var/run/dhclient-wlan0.pid


Assuming that's reference ISC DHCP, can you please try this for me?

dhclient -6 -d wlan0

Let it run for 10 seconds or so, terminate it with Ctrl+C. I'm
interested in the output. Oh, and there's no need to disable
NetworkManager, or kill running dhclient and wpasupplicant.


Script started on Sat 24 Feb 2018 06:38:17 PM CET
Internet Systems Consortium DHCP Client 4.3.5
Copyright 2004-2016 Internet Systems Consortium.
All rights reserved.
For info, please visit https://www.isc.org/software/dhcp/

Listening on Socket/wlan0
Sending on   Socket/wlan0
Created duid "\000\001\000\001\"$_\211t\360m\002\262L".
PRC: Soliciting for leases (INIT).
XMT: Forming Solicit, 0 ms elapsed.
XMT:  X-- IA_NA 6d:02:b2:4c
XMT:  | X-- Request renew in  +3600
XMT:  | X-- Request rebind in +5400
XMT: Solicit on wlan0, interval 1080ms.
XMT: Forming Solicit, 1080 ms elapsed.
XMT:  X-- IA_NA 6d:02:b2:4c
XMT:  | X-- Request renew in  +3600
XMT:  | X-- Request rebind in +5400
XMT: Solicit on wlan0, interval 2150ms.
XMT: Forming Solicit, 3230 ms elapsed.
XMT:  X-- IA_NA 6d:02:b2:4c
XMT:  | X-- Request renew in  +3600
XMT:  | X-- Request rebind in +5400
XMT: Solicit on wlan0, interval 4280ms.
XMT: Forming Solicit, 7520 ms elapsed.
XMT:  X-- IA_NA 6d:02:b2:4c
XMT:  | X-- Request renew in  +3600
XMT:  | X-- Request rebind in +5400
XMT: Solicit on wlan0, interval 8640ms.
XMT: Forming Solicit, 16160 ms elapsed.
XMT:  X-- IA_NA 6d:02:b2:4c
XMT:  | X-- Request renew in  +3600
XMT:  | X-- Request rebind in +5400
XMT: Solicit on wlan0, interval 17250ms.
^C
Script done on Sat 24 Feb 2018 06:38:40 PM CET

There is nothing in the router log for today.
Roger

Re: Problem using "apt-get update"

[John Hasler]

The messages emitted by apt-get update are cryptic and undocumented, but
see


-- 
John Hasler 
jhas...@newsguy.com
Elmwood, WI USA

Re: Problem using "apt-get update"

[Brian]

On Sat 24 Feb 2018 at 17:31:21 +, Brian wrote:

> On Sat 24 Feb 2018 at 11:06:53 -0600, Richard Owlett wrote:
> 
> > On 02/24/2018 10:56 AM, John Hasler wrote:
> > > Verbatim command
> > 
> > apt-get update  (as per
> > )
> > 
> > > verbatim message
> > 
> > The message started a recognizable abbreviation of "ignored".
> 
> "ign" means there have been no changes in the file - so it won't
> be downloaded again. Nothing to worry about.

Or maybe not ( when I use a search engine instead of my imagination). 

-- 
Brian.
 

Re: no audio

[Terence]

This thread has proved most useful in my hour of need!

Having a Zoom conference in Wednesday night I had no sound on my Dell XP15,
recently updated. I had to fall back on dual-booting into Win 10 to join,
which did not please me!

Now with the advice about pavucontrol everything works as it should, so
many thanks all!

However, (running with Mate) the Sound set-up does not play any sound at
all, nor recognise the microphone. Has anyone any idea why this should be
so, or should I just be grateful that the microphone and speakers work?

(on an off-topic note why does MSCrap tell me my computer has a fault and
it will restart, when it is clearly the bloody software that's faulty?)

Terence

On 24 February 2018 at 14:48, Ric Moore  wrote:

> On 02/24/2018 05:04 AM, Curt wrote:
>
> I installed pavucontrol, and in the Configuration tab turned the HDMI
>> profile off and the analog duplex output which corresponds to my Realtek
>> chip on.
>>
>> As I have no speakers, in Output Devices I selected headphones (I do have
>> headphones).
>>
>> I now have sound through the headphones.
>>
>
>
>
> Life can be GOOD! :) Ric
>
>
>
> --
> My father, Victor Moore (Vic) used to say:
> "There are two Great Sins in the world...
> ..the Sin of Ignorance, and the Sin of Stupidity.
> Only the former may be overcome." R.I.P. Dad.
> http://linuxcounter.net/user/44256.html
>
>

Re: Problem using "apt-get update"

[Brian]

On Sat 24 Feb 2018 at 11:06:53 -0600, Richard Owlett wrote:

> On 02/24/2018 10:56 AM, John Hasler wrote:
> > Verbatim command
> 
> apt-get update  (as per
> )
> 
> > verbatim message
> 
> The message started a recognizable abbreviation of "ignored".

"ign" means there have been no changes in the file - so it won't
be downloaded again. Nothing to worry about.

-- 
Brian.

Re: Problem using "apt-get update"

[Abdullah Ramazanoglu]

On Sat, 24 Feb 2018 11:06:53 -0600
Richard Owlett  wrote:
> On 02/24/2018 10:56 AM, John Hasler wrote:
--8<--
>> verbatim message  
> 
> The message started a recognizable abbreviation of "ignored".
> For a character perfect quote - where would it be logged?
> 
>> and verbatim sources.list, please.  
> 
> Here it is
--8<--
> > http://ftp.us.debian.org/debian/ stretch main non-free contrib deb

It could be due to archive signature being incorrect or something. You
can *force*-override this with [ trusted=yes ] in the "deb" line, as in;

deb [ trusted=yes ] http://ftp.us.debian.org/debian/ stretch main
non-free contrib

But it is strongly recommended against using this arbitrarily. (I use
it for home-grown local archives only)
-- 
Abdullah Ramazanoglu

Re: Problem using "apt-get update"

[Reco]

Hi.

On Sat, Feb 24, 2018 at 11:06:53AM -0600, Richard Owlett wrote:
> On 02/24/2018 10:56 AM, John Hasler wrote:
> > Verbatim command
> 
> apt-get update  (as per
> )
> 
> > verbatim message
> 
> The message started a recognizable abbreviation of "ignored".
> For a character perfect quote - where would it be logged?

apt-get update > /tmp/somefile

Reco

Re: Problem using "apt-get update"

[Richard Owlett]

On 02/24/2018 10:56 AM, John Hasler wrote:

Verbatim command


apt-get update  (as per 
)



verbatim message


The message started a recognizable abbreviation of "ignored".
For a character perfect quote - where would it be logged?


and verbatim sources.list, please.


Here it is

# 


# deb cdrom:[Debian GNU/Linux 9.1.0 _Stretch_ - Official i386 DVD Binary-1 
20170722-12:45]/ stretch contrib main

# deb cdrom:[Debian GNU/Linux 9.1.0 _Stretch_ - Official i386 DVD Binary-1 
20170722-12:45]/ stretch contrib main
deb http://ftp.us.debian.org/debian/ stretch main non-free contrib
deb http://security.debian.org/debian-security stretch/updates main contrib
deb-src http://security.debian.org/debian-security stretch/updates main contrib

Re: Problem using "apt-get update"

[John Hasler]

Verbatim command, verbatim message and verbatim sources.list, please.
-- 
John Hasler 
jhas...@newsguy.com
Elmwood, WI USA

Re: need help on cracking wireless password

[John Hasler]

Michelle Konzack writes:
> I was attacked by honny pots of the NSA!

I wrote:
> How can you be attacked by a honey pot?

> The start a DOS or a hack attemped

Not a honeypot.
-- 
John Hasler 
jhas...@newsguy.com
Elmwood, WI USA

Problem using "apt-get update"

[Richard Owlett]

I had just done a minimal (command line only) install of Stretch from 
the first DVD of the complete set rather than using netinst to conserve 
bandwidth. The install as usual was successful.


I wish to install a package from the repository - it's not on DVD1.
I added the line
  deb http://ftp.us.debian.org/debian/ stretch main non-free contrib
to sources.list while commenting out the line referencing CDROM.

I attempted to run "apt-get update".
It *FAILED*
The message was the source I wanted was being ignored.

WHY?

Re: Setting up a local DNS server but clients that use it can't access the internet

[tomas]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On Sat, Feb 24, 2018 at 07:43:16PM +0300, Reco wrote:
>   Hi.

[...]

> Figures. Certain ISPs are unable to implement DNSSec even if someone's
> life would depend on it. A figure of speech, just in case.

Touché :-D

Cheers
- -- t
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.12 (GNU/Linux)

iEYEARECAAYFAlqRltYACgkQBcgs9XrR2kb7IACeNzC67eOxFVTvImtOnmWI8aPi
iAMAn1R0cRTEZUG2stkRGf0OBrrfFY4R
=pMy7
-END PGP SIGNATURE-

Re: Setting up a local DNS server but clients that use it can't access the internet

[Reco]

Hi.

Let me reorder it a bit.

On Sat, Feb 24, 2018 at 02:20:57PM +, Aero Maxx wrote:
> On 24 February 2018 at 13:16, Aero Maxx  wrote:
> 
> > On 24 February 2018 at 12:56, Reco  wrote:
> >
> >> So, a SERVFAIL. That's curious, to say the least.
> >>
> >> OK, let's try this:
> >>
> >> 1) Put "dnssec-validation no;" in your named.conf.options.
> >>
> >> 2) Restart (as in - stop then start) BIND.
> >>
> >> 3) Execute "dig in a debian.org @127.0.0.1" once more.
> >>
> >> 4) Please provide BIND logs from its last restart.
> >>
> >
> > I made those changes and apt-get update now works.

Figures. Certain ISPs are unable to implement DNSSec even if someone's
life would depend on it. A figure of speech, just in case.


> > Have attached the output of the commands, and my syslog file as I didn't
> > have a log file specifically for bind9.

Your e-mail came without the logs, but it hardly matters now, as we have
a viable workaround.
In Modern™ Debian one should be able to get BIND log like this:

grep named /var/log/daemon.log


> Is there anything I can do to make it work with dnssec-validation set to
> auto?

I suggest you to bring it to Virgin Media. After all, its them who
deliberately crippled their DNS, or used some toy instead of a real DNS.


> If I change the forwarding ip addresses to the google public dns servers it
> works with auto, but the other virgin media address for dns don't work with
> auto, why is that, have they configured something different to google?

Sure they are.

Exibit 1 (Amazon AWS, just in case):

$ dig in a debian.org +trace +recurse

; <<>> DiG 9.10.3-P4-Debian <<>> in a debian.org +trace +recurse
;; global options: +cmd
.   518400  IN  NS  B.ROOT-SERVERS.NET.
...
org.172800  IN  NS  d0.org.afilias-nst.org.
org.86400   IN  DS  9795 7 1 364D...
org.86400   IN  DS  9795 7 2 3922...
org.86400   IN  RRSIG   DS 8 1 86400
2018030905 2018022404 41824 . ..
;; Received 812 bytes from 193.0.14.129#53(K.ROOT-SERVERS.NET) in 2 ms

debian.org. 86400   IN  NS  dnsnode.debian.org.
debian.org. 86400   IN  DS  6487 8 2 A952...
debian.org. 86400   IN  RRSIG   DS 7 2 86400 20...
;; Received 364 bytes from 199.249.112.1#53(a2.org.afilias-nst.info) in
74 ms

debian.org. 300 IN  A   5.153.231.4
debian.org. 300 IN  A   128.31.0.62
debian.org. 300 IN  A   130.89.148.14
debian.org. 300 IN  A   149.20.4.15
debian.org. 300 IN  RRSIG   A 8 2 300 20180...
;; Received 337 bytes from 192.174.68.100#53(sec1.rcode0.net) in 75 ms

Observe numerous DS and RRSIG records, which are provided by every DNS
starting from the root one.


Exibit 2 (Google DNS)

$ dig in a debian.org +trace +recurse @8.8.8.8

; <<>> DiG 9.10.3-P4-Debian <<>> in a debian.org +trace +recurse
...
.   129251  IN  NS  m.root-servers.net.
.   129251  IN  RRSIG   NS 8 0 518400 20...
;; Received 525 bytes from 8.8.8.8#53(8.8.8.8) in 2 ms



As long as your forwarder provides a valid RRSIG record - your DNSSec
validation is a go.


Apparently your forwarders do not bother with RRSIG.
Since you have your DNS working - you might as well check it out, and
share a result with the community.

Reco

Re: need help on cracking wireless password

[Michelle Konzack]

Am 2018-02-24 hackte John Hasler in die Tasten:
> Michelle Konzack writes:
>> I was attacked by honny pots of the NSA!
>
> How can you be attacked by a honey pot?

The start a DOS or a hack attemped and if your
system start defending, you are traped...

They claim you have violated the security of an IT infrastructure
(in my case an US nuclear facility) and kick your server off with
the help of your local law enforcement...

In my case, my Mail- and Cloud-Servis is used by a bunch of PMCs
which realy start hateing the USA many years ago...  The behaviour
of the USA is just worse...

Some of my camerads disappeard/vanishe completely unexpected and
much more. Especially the USA are hacking european servers and
spying massively, more then russia and china together...

Thanks in advance

-- 
Michelle KonzackMiila ITSystems @ TDnet
GNU/Linux Developer 00372-54541400

Re: Stretch net install on EeePC - unable to resolve mirror host address

[Reco]

Hi.

On Sat, Feb 24, 2018 at 03:14:26PM +0100, Roger Price wrote:
> On Fri, 23 Feb 2018, Reco wrote:
> 
> > > rprice@kananga:~$ ip -6 ro l
> > > fe80::/64 dev wlan0 proto kernel metric 256  pref medium
> > 
> > Now *that* actually means it should be impossible for this host to
> > connect to 2001:41d0:202:100:213:32:5:7.
> > 
> > So either we have a little wonder here, or … do you have DHCP6 client
> > installed there by chance? Installer most certainly should include one,
> > and that could explain the difference in behavior between your current
> > host and d-i.
> 
> The stretch i386 installer provides a dhcp client: /sbin/dhclient which is
> called by NetworkManager.
> 
> rprice@kananga:~$ systemctl status NetworkManager
> ● NetworkManager.service - Network Manager
>Loaded: loaded (/lib/systemd/system/NetworkManager.service; enabled; 
> vendor preset: enabled)
>Active: active (running) since Fri 2018-02-23 12:03:54 CET; 1 day 2h ago
>  Docs: man:NetworkManager(8)
>  Main PID: 372 (NetworkManager)
> Tasks: 4 (limit: 4915)
>CGroup: /system.slice/NetworkManager.service
>├─372 /usr/sbin/NetworkManager --no-daemon
>└─472 /sbin/dhclient -d -q -sf 
> /usr/lib/NetworkManager/nm-dhcp-helper -pf /var/run/dhclient-wlan0.pid

Assuming that's reference ISC DHCP, can you please try this for me?

dhclient -6 -d wlan0

Let it run for 10 seconds or so, terminate it with Ctrl+C. I'm
interested in the output. Oh, and there's no need to disable
NetworkManager, or kill running dhclient and wpasupplicant.

Reco

Re: need help on cracking wireless password

[John Hasler]

Michelle Konzack writes:
> I was attacked by honny pots of the NSA!

How can you be attacked by a honey pot?
-- 
John Hasler 
jhas...@newsguy.com
Elmwood, WI USA

Re: Stretch net install on EeePC - unable to resolve mirror host address

[Roger Price]

On Fri, 23 Feb 2018, Reco wrote:


rprice@kananga:~$ ip -6 ro l
fe80::/64 dev wlan0 proto kernel metric 256  pref medium


Now *that* actually means it should be impossible for this host to
connect to 2001:41d0:202:100:213:32:5:7.

So either we have a little wonder here, or … do you have DHCP6 client
installed there by chance? Installer most certainly should include one,
and that could explain the difference in behavior between your current
host and d-i.


The stretch i386 installer provides a dhcp client: /sbin/dhclient which is 
called by NetworkManager.


rprice@kananga:~$ systemctl status NetworkManager
● NetworkManager.service - Network Manager
   Loaded: loaded (/lib/systemd/system/NetworkManager.service; enabled; vendor 
preset: enabled)
   Active: active (running) since Fri 2018-02-23 12:03:54 CET; 1 day 2h ago
 Docs: man:NetworkManager(8)
 Main PID: 372 (NetworkManager)
Tasks: 4 (limit: 4915)
   CGroup: /system.slice/NetworkManager.service
   ├─372 /usr/sbin/NetworkManager --no-daemon
   └─472 /sbin/dhclient -d -q -sf 
/usr/lib/NetworkManager/nm-dhcp-helper -pf /var/run/dhclient-wlan0.pid

Roger

Re: no audio

[Ric Moore]

On 02/24/2018 05:04 AM, Curt wrote:


I installed pavucontrol, and in the Configuration tab turned the HDMI
profile off and the analog duplex output which corresponds to my Realtek
chip on.

As I have no speakers, in Output Devices I selected headphones (I do have
headphones).

I now have sound through the headphones.




Life can be GOOD! :) Ric


--
My father, Victor Moore (Vic) used to say:
"There are two Great Sins in the world...
..the Sin of Ignorance, and the Sin of Stupidity.
Only the former may be overcome." R.I.P. Dad.
http://linuxcounter.net/user/44256.html

Re: Stretch net install on EeePC - unable to resolve mirror host address

[Roger Price]

On Fri, 23 Feb 2018, Reco wrote:


On the EeePC Ctl-Alt-F3 /dev/tty3:
 ~ # ip address
 3: enp0s4:  ...


rprice@kananga:~$ ip -6 ro l
fe80::/64 dev wlan0 proto kernel metric 256  pref medium


But, looking at all this once more, I see a discrepancy - "ip a" shows
Unpredictable Network Name, yet "ip ro" shows conventional "wlan0".


You are very sharp eyed!.  The change was because I introduced the kernel boot 
option net.ifnames=0


Roger

Re: Setting up a local DNS server but clients that use it can't access the internet

[Aero Maxx]

Is there anything I can do to make it work with dnssec-validation set to
auto?

If I change the forwarding ip addresses to the google public dns servers it
works with auto, but the other virgin media address for dns don't work with
auto, why is that, have they configured something different to google?

On 24 February 2018 at 13:16, Aero Maxx  wrote:

> On 24 February 2018 at 12:56, Reco  wrote:
>
>> So, a SERVFAIL. That's curious, to say the least.
>>
>> OK, let's try this:
>>
>> 1) Put "dnssec-validation no;" in your named.conf.options.
>>
>> 2) Restart (as in - stop then start) BIND.
>>
>> 3) Execute "dig in a debian.org @127.0.0.1" once more.
>>
>> 4) Please provide BIND logs from its last restart.
>>
>
> I made those changes and apt-get update now works.
>
> Have attached the output of the commands, and my syslog file as I didn't
> have a log file specifically for bind9.
>
>
> 
>  Virus-free.
> www.avast.com
> 
> <#m_4849929349726157538_DAB4FAD8-2DD7-40BB-A1B8-4E2AA1F9FDF2>
>

Re: need help on cracking wireless password

[deloptes]

Michelle Konzack wrote:

> Am 2018-02-24 hackte deloptes in die Tasten:
>> But hey, with so many Russians in Estonia, you may be sure that at least
>> Russia will not nuke you, so be positive about what you have ;-) (irony
>> off). There are always two sides, you know.
> 
> They could try the same as they have done it with Crimea...
> 
> There is a group of russians in Estonia which try to do this,
> but they will get the worst nightmare on the neck...
> 
> However, it will take at least two years to get the WHOLE rest
> of my german and french enterprises to Estonia...  ;-)
> 
> Then I am more or less 90% operational.
> 
> Maybe I will restart TDAerospace and TDTechnology ;-)
> 
> Two enterprises where frenchies have tried to steal my inventions!

 one is for sure, you need a good psychiatrist and lawyer 

Re: Setting up a local DNS server but clients that use it can't access the internet

[Reco]

Hi.

On Sat, Feb 24, 2018 at 12:42:04PM +, Aero Maxx wrote:
> On 24 February 2018 at 12:36, Reco  wrote:
> 
> > Ok, what about this (again, run it from the malfunctioning DNS, root is
> > needed for the second and third command):
> >
> > dig in a debian.org @127.0.0.1
> >
> > ss -nplu
> >
> > iptables-save
> >
> 
> I've attached the output of those commands also now.

So, a SERVFAIL. That's curious, to say the least.

OK, let's try this:

1) Put "dnssec-validation no;" in your named.conf.options.

2) Restart (as in - stop then start) BIND.

3) Execute "dig in a debian.org @127.0.0.1" once more.

4) Please provide BIND logs from its last restart.

Reco

Re: Setting up a local DNS server but clients that use it can't access the internet

[Aero Maxx]

On 24 February 2018 at 12:36, Reco  wrote:

> Ok, what about this (again, run it from the malfunctioning DNS, root is
> needed for the second and third command):
>
> dig in a debian.org @127.0.0.1
>
> ss -nplu
>
> iptables-save
>

I've attached the output of those commands also now.


> > As previously mentioned each server and client has 2 network cards, one
> > which provides internet access to the client or server, and the other
> > provides internal services that are on the local network after the
> > firewall, the DNS server shouldn't be accessible by any clients or
> servers
> > that are on the internet/external side of my router/firewall.
>
> You're talking about inbound connections, but your problem may lie with
> the outbound ones.
>

Oh right I see.


Virus-free.
www.avast.com

<#DAB4FAD8-2DD7-40BB-A1B8-4E2AA1F9FDF2>
root@debian:~# dig in a debian.org @127.0.0.1

; <<>> DiG 9.10.3-P4-Debian <<>> in a debian.org @127.0.0.1
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: SERVFAIL, id: 22821
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;debian.org.IN  A

;; Query time: 336 msec
;; SERVER: 127.0.0.1#53(127.0.0.1)
;; WHEN: Sat Feb 24 12:38:39 GMT 2018
;; MSG SIZE  rcvd: 39

root@debian:~# ss -nplu
State   Recv-Q Send-Q Local Address:Port
Peer Address:Port
UNCONN  0  0  10.0.2.20:53  
   *:*   
users:(("named",pid=1193,fd=515))
UNCONN  0  0   192.168.0.61:53  
   *:*   
users:(("named",pid=1193,fd=514))
UNCONN  0  0  127.0.0.1:53  
   *:*   
users:(("named",pid=1193,fd=513))
UNCONN  0  0  *:68  
   *:*   
users:(("dhclient",pid=456,fd=6))
UNCONN  0  0 :::53  
  :::*   
users:(("named",pid=1193,fd=512))
root@debian:~# iptables-save
root@debian:~#

Re: need help on cracking wireless password

[Michelle Konzack]

Am 2018-02-24 hackte deloptes in die Tasten:
> But hey, with so many Russians in Estonia, you may be sure that at least
> Russia will not nuke you, so be positive about what you have ;-) (irony
> off). There are always two sides, you know.

They could try the same as they have done it with Crimea...

There is a group of russians in Estonia which try to do this,
but they will get the worst nightmare on the neck...

However, it will take at least two years to get the WHOLE rest
of my german and french enterprises to Estonia...  ;-)

Then I am more or less 90% operational.

Maybe I will restart TDAerospace and TDTechnology ;-)

Two enterprises where frenchies have tried to steal my inventions!

-- 
Michelle KonzackMiila ITSystems @ TDnet
GNU/Linux Developer 00372-54541400

Re: Setting up a local DNS server but clients that use it can't access the internet

[Reco]

Hi.

On Sat, Feb 24, 2018 at 12:13:31PM +, Aero Maxx wrote:
> On 24 February 2018 at 11:37, Reco  wrote:
> 
> > Ok, that actually gives us something.
> >
> > First things first, Virgin Media uses different nameservers, according
> > to the RIPE, at least. They are ns[1-4].virginmedia.net.
> >
> > Second, these cache[12].service.viginmedia.net you're trying to use as
> > forwarders may or may not be operational.
> > A couple of quick tests should clarify it (run it from the malfunctioning
> > DNS):
> >
> > dig in a debian.org @194.168.4.100
> > dig in a debian.org @194.168.8.100
> 
> The above IP addresses are the ones that debian found by itself when I
> installed it, and were already in the resolv.conf file prior to me editting
> it.

That can mean anything. But the good news are, forwarders are operational.

Ok, what about this (again, run it from the malfunctioning DNS, root is
needed for the second and third command):

dig in a debian.org @127.0.0.1

ss -nplu

iptables-save

> > Is there a reason as to why the root DNSes aren't accessible to my BIND?
> >
> > You forgot to put your DNS server at DMZ.
> > They block udp:53 and tcp:53 at Virgin Media.
> > Someone at *your* premises does the same.
> 
> 
> As previously mentioned each server and client has 2 network cards, one
> which provides internet access to the client or server, and the other
> provides internal services that are on the local network after the
> firewall, the DNS server shouldn't be accessible by any clients or servers
> that are on the internet/external side of my router/firewall.

You're talking about inbound connections, but your problem may lie with
the outbound ones.

Reco

Re: need help on cracking wireless password

[deloptes]

Michelle Konzack wrote:

> Maybe, because you are one of the russian ST. Petersbug Troll Academy?
> 
> I know very well, how this russian trolls are working arround the planet
> since many many years.

May be you have to change the type of coffee you drink, or take care of your
high blood pressure.
IMO you are victim of NATO propaganda machinery - I know a lot of people
like you from Estonia in the North,Litva, Lituenia, Poland all the way down
to Bulgaria. Respect to NATO for doing such a good job in the past 20y.

Most of all I don't want to argue with NATO trolls like you. It is indeed
pointless.

And NO I have nothing to do with Russia. I have just another opinion and I
am lucky to be in a country where people are educated and don't have a two
dimensional black view.

But hey, with so many Russians in Estonia, you may be sure that at least
Russia will not nuke you, so be positive about what you have ;-) (irony
off). There are always two sides, you know.

regards

Re: Setting up a local DNS server but clients that use it can't access the internet

[Aero Maxx]

On 24 February 2018 at 11:37, Reco  wrote:

> Ok, that actually gives us something.
>
> First things first, Virgin Media uses different nameservers, according
> to the RIPE, at least. They are ns[1-4].virginmedia.net.
>
> Second, these cache[12].service.viginmedia.net you're trying to use as
> forwarders may or may not be operational.
> A couple of quick tests should clarify it (run it from the malfunctioning
> DNS):
>
> dig in a debian.org @194.168.4.100
> dig in a debian.org @194.168.8.100


The above IP addresses are the ones that debian found by itself when I
installed it, and were already in the resolv.conf file prior to me editting
it.

Have attached the output of the above commands.

> Is there a reason as to why the root DNSes aren't accessible to my BIND?
>
> You forgot to put your DNS server at DMZ.
> They block udp:53 and tcp:53 at Virgin Media.
> Someone at *your* premises does the same.


As previously mentioned each server and client has 2 network cards, one
which provides internet access to the client or server, and the other
provides internal services that are on the local network after the
firewall, the DNS server shouldn't be accessible by any clients or servers
that are on the internet/external side of my router/firewall.



Virus-free.
www.avast.com

<#DAB4FAD8-2DD7-40BB-A1B8-4E2AA1F9FDF2>
root@debian:~$ dig in a debian.org @194.168.4.100

; <<>> DiG 9.10.3-P4-Debian <<>> in a debian.org @194.168.4.100
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 30672
;; flags: qr rd ra; QUERY: 1, ANSWER: 4, AUTHORITY: 0, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 512
;; QUESTION SECTION:
;debian.org.IN  A

;; ANSWER SECTION:
debian.org. 28  IN  A   5.153.231.4
debian.org. 28  IN  A   149.20.4.15
debian.org. 28  IN  A   130.89.148.14
debian.org. 28  IN  A   128.31.0.62

;; Query time: 17 msec
;; SERVER: 194.168.4.100#53(194.168.4.100)
;; WHEN: Sat Feb 24 11:55:05 GMT 2018
;; MSG SIZE  rcvd: 103

root@debian:~$ dig in a debian.org @194.168.8.100

; <<>> DiG 9.10.3-P4-Debian <<>> in a debian.org @194.168.8.100
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 25990
;; flags: qr rd ra; QUERY: 1, ANSWER: 4, AUTHORITY: 0, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 512
;; QUESTION SECTION:
;debian.org.IN  A

;; ANSWER SECTION:
debian.org. 20  IN  A   128.31.0.62
debian.org. 20  IN  A   5.153.231.4
debian.org. 20  IN  A   149.20.4.15
debian.org. 20  IN  A   130.89.148.14

;; Query time: 17 msec
;; SERVER: 194.168.8.100#53(194.168.8.100)
;; WHEN: Sat Feb 24 11:55:14 GMT 2018
;; MSG SIZE  rcvd: 103

Re: Mijndomein Websites die niet werken met Firefox-esr

[Paul van der Vlis]

Hoi allen,

Nog weer bericht van Mijndomein, eerst van iemand die uitgebreid gaat
uitleggen dat het echt goede redenen had. De firewall kon dit goed
blokkeren, maar geen HTTP requests geven ook omdat het er veel te veel
waren en ze van allerlei IP's kwamen. Ik vond zijn verhaal niet echt sterk.

Later van iemand die zegt dat de blokkade toch weer is aangezet omdat er
teveel problemen zijn, maar nu wordt een specifieke useragent
geblokkeerd, namelijk "Mozilla/5.0 (Windows NT 6.1; rv:52.0)
Gecko/20100101 Firefox/52.0".
Linux gebruikers hebben er nu geen last meer van.

Lijkt me een verbetering, maar nog niet echt goed. Het zou al beter
worden als er ook nog de virtualhost(s) bij genoemd zouden worden lijkt me.

Maar nog beter als er gekeken werd naar de aantallen requests, je zou
een automatische blokkade willen van de IP's die overlast veroorzaken.

Van DDOS achtige aanvallen heb ik echter te weinig verstand ben ik bang.
Wel een interessante materie.

Groeten,
Paul

-- 
Paul van der Vlis Linux systeembeheer Groningen
https://www.vandervlis.nl/

Re: need help on cracking wireless password

[Michelle Konzack]

Am 2018-02-24 hackte deloptes in die Tasten:
> well if you outlaw a certain group of people

???

Fist of all, Estonia has 1.4mio inhabitants and
lesser then the city of Munich in Germany ;-)

Second, there are arround 600.000 russians in Estonia
and a signifikant number of them, refuse to accept Estonia.

Since this immigration was forced by Russia long time ago, the have  the
right to stay, BUT MANY OF THEM, refuse the estonian citizenship.   What
do you mean with Outlaw now?  That THIS russians do not have  the  right
to vote in Estonia and get access to things,  Estonian  and  EU  members
have?

This NON-ESTONIAN russian have a special status (can  stay  without  any
limitations in Estonia) and a special ID and as long as  they  have  it,
they are considered russians.

There is not a singel country  on  the  planet  where  such  things  are
different.

> it will become involved in
> criminal activities and as far as I know Russians become second class in

Being criminal is an indivudual choice.  Most russions do not contribute
to the estonian state (e.g. TAX payer) and andy businesses they  do  are
in cash and non declared...  This is a damage to the state!

> your "wonderful" country, while everybody in Europe is shouting for
> democracy and equal rights.

Russia is NOT part of the EU and if  certain  russians  feel  they  are
russians and refuse to accept the citizenship from the country in which
THEY WHERE BORN, they still stay foreigner!!!

They can be already happy, that the democracy  allow  them  to  stay  in
estonia freely!  Estonia does  NOT  kill  russians,  but  russians  have
eradicated more then 1/3 of the estonian population which is  DEFINITIVE
genocide!

> it is pointless discussion.

Maybe, because you are one of the russian ST. Petersbug Troll Academy?

I know very well, how this russian trolls are working arround the planet
since many many years.

-- 
Michelle KonzackMiila ITSystems @ TDnet
GNU/Linux Developer 00372-54541400

Re: Setting up a local DNS server but clients that use it can't access the internet

[Reco]

Hi.

There's no need to Cc me, I'm subscribed to the list.

On Sat, Feb 24, 2018 at 10:58:49AM +, Aero Maxx wrote:
> Ok well I wasn't aware pastebin wasn't allowed, I was wary of pasting a
> huge wall of text from all the commands and the output of the files I was
> asked for right into an email.

That's why they invented archives and e-mail attachments.


> The output sadly told me nothing as I didn't understand it.
> 
> My named.conf.options file does have a "forwarders" section in it.
> 
> options {
..
> forwarders {
> 194.168.4.100;
> 194.168.8.100;

Ok, that actually gives us something.

First things first, Virgin Media uses different nameservers, according
to the RIPE, at least. They are ns[1-4].virginmedia.net.

Second, these cache[12].service.viginmedia.net you're trying to use as
forwarders may or may not be operational.
A couple of quick tests should clarify it (run it from the malfunctioning
DNS):

dig in a debian.org @194.168.4.100
dig in a debian.org @194.168.8.100


> Is there a reason as to why the root DNSes aren't accessible to my BIND?

You forgot to put your DNS server at DMZ.
They block udp:53 and tcp:53 at Virgin Media.
Someone at *your* premises does the same.

There are many things that can go wrong.

Reco

Re: need help on cracking wireless password

[deloptes]

Michelle Konzack wrote:

> The problem is only, that more then 80% of prisoners ARE russians!

well if you outlaw a certain group of people it will become involved in
criminal activities and as far as I know Russians become second class in
your "wonderful" country, while everybody in Europe is shouting for
democracy and equal rights.

it is pointless discussion.

Re: Setting up a local DNS server but clients that use it can't access the internet

[Aero Maxx]

On 24 February 2018 at 10:26, Reco  wrote:

> Hi.
>
> Please don't use pastebin for this. This list archives should contain
> not only the solution, but a clear problem statement also.
>
> So, following "show, don't tell principle":
>
> # dig in a debian.org +trace +recurse
>
> ; <<>> DiG 9.10.3-P4-Debian <<>> in a debian.org +trace +recurse
> ;; global options: +cmd
> .   360 IN  NS  A.ROOT-SERVERS.NET.
> .   360 IN  NS  J.ROOT-SERVERS.NET.
> .   360 IN  NS  L.ROOT-SERVERS.NET.
> .   360 IN  NS  C.ROOT-SERVERS.NET.
> .   360 IN  NS  M.ROOT-SERVERS.NET.
> .   360 IN  NS  E.ROOT-SERVERS.NET.
> .   360 IN  NS  I.ROOT-SERVERS.NET.
> .   360 IN  NS  K.ROOT-SERVERS.NET.
> .   360 IN  NS  G.ROOT-SERVERS.NET.
> .   360 IN  NS  F.ROOT-SERVERS.NET.
> .   360 IN  NS  B.ROOT-SERVERS.NET.
> .   360 IN  NS  H.ROOT-SERVERS.NET.
> .   360 IN  NS  D.ROOT-SERVERS.NET.
> couldn't get address for 'A.ROOT-SERVERS.NET': failure
> couldn't get address for 'J.ROOT-SERVERS.NET': failure
> couldn't get address for 'L.ROOT-SERVERS.NET': failure
> couldn't get address for 'C.ROOT-SERVERS.NET': failure
> couldn't get address for 'M.ROOT-SERVERS.NET': failure
> couldn't get address for 'E.ROOT-SERVERS.NET': failure
> couldn't get address for 'I.ROOT-SERVERS.NET': failure
> couldn't get address for 'K.ROOT-SERVERS.NET': failure
> couldn't get address for 'G.ROOT-SERVERS.NET': failure
> couldn't get address for 'F.ROOT-SERVERS.NET': failure
> couldn't get address for 'B.ROOT-SERVERS.NET': failure
> couldn't get address for 'H.ROOT-SERVERS.NET': failure
> couldn't get address for 'D.ROOT-SERVERS.NET': failure
> dig: couldn't get address for 'A.ROOT-SERVERS.NET': no more
>
> And that output is enough to tell you this:
>
> 1) Your nameserver tries to do the right thing - to do recursion.
>
> 2) Your named.conf apparently lacks "forwarders" section, so the only
> thing that BIND can do here - is to query root DNSes.
>
> 3) And root DNSes aren't accessible to your BIND.
>
> In conclusion, your setup is clearly broken, you need to fix it.
>
> Reco
>
>
Ok well I wasn't aware pastebin wasn't allowed, I was wary of pasting a
huge wall of text from all the commands and the output of the files I was
asked for right into an email.

The output sadly told me nothing as I didn't understand it.

My named.conf.options file does have a "forwarders" section in it.

options {
directory "/var/cache/bind";

// If there is a firewall between you and nameservers you want
// to talk to, you may need to fix the firewall to allow multiple
// ports to talk.  See http://www.kb.cert.org/vuls/id/800113

// If your ISP provided one or more IP addresses for stable
// nameservers, you probably want to use them as forwarders.
// Uncomment the following block, and insert the addresses replacing
// the all-0's placeholder.

forwarders {
194.168.4.100;
194.168.8.100;
};


//
// If BIND logs error messages about the root key being expired,
// you will need to update your keys.  See
https://www.isc.org/bind-keys

//
dnssec-validation auto;

auth-nxdomain no;# conform to RFC1035
listen-on-v6 { any; };
};

Is there a reason as to why the root DNSes aren't accessible to my BIND?

Yes I am aware I need to fix it, hence the reason why I posted in the first
place, do you have any idea as to what needs to be fixed? as I have no idea
what I should do from here.


Virus-free.
www.avast.com

<#DAB4FAD8-2DD7-40BB-A1B8-4E2AA1F9FDF2>

Re: need help on cracking wireless password

[deloptes]

to...@tuxteam.de wrote:

> Not funny either. Folks, what's the matter with you?

I did not mean how many people are murdered, but (if you are familiar with
the developments in eastern Europe) those NATO slaves propagate a danger
coming from Russia, while they are killing themselves. 
It is not funny that people die, but it is funny the perception the others
there have.

regards

Re: no audio

[Curt]

On 2018-02-23, Glenn English  wrote:
> buster -- recent update(s), SuperMicro box
>
> There's no audio, but there was a few weeks ago.
>
> In alsamixer, I've tried selecting the mobo sound chip (HDA Intel).
> When alsamixer comes up, it says PulseAudio is the selected card and
> chip. I change that to the Intel (the card is HDA Intel, and the chip
> is Realtek ALC888) and exit. No sound. When I bring up alsamixer
> again, PulseAudio is the card/chip again.
>

I upgraded from Wheezy to Stretch (via Jessie, via Jessie) and lost
sound in the process.

I have two sound devices--HD-AUDIO GENERIC (which corresponds to HDMI)
and HDA ATI SB (Realtek chip which I use for sound output).

Selecting the HDA ATI SB card in alsamixer (F6) was fruitless (although
you can eventually unmute muted channels there to positive effect).

I installed pavucontrol, and in the Configuration tab turned the HDMI
profile off and the analog duplex output which corresponds to my Realtek
chip on.

As I have no speakers, in Output Devices I selected headphones (I do have
headphones).

I now have sound through the headphones.

-- 
“Be yourself; everyone else is already taken.”
-Oscar Wilde

Re: Setting up a local DNS server but clients that use it can't access the internet

[Reco]

Hi.

On Sat, Feb 24, 2018 at 10:13:18AM +, Aero Maxx wrote:
> Firstly thank you all very much for the replies, and sorry for the vague
> information, that wasn't intentional I didn't know what you would need and
> also I wasn't aware of the commands you ask for the output from.
> 
> On 23 February 2018 at 18:06, Reco  wrote:
> 
> > Please invoke this on one of the problematic client hosts:
> >
> > dig in a debian.org +trace +recurse
> >
> > dig in a google.com +trace +recurse
> 
> Output from the dig commands: https://pastebin.com/7CDMit1R

Please don't use pastebin for this. This list archives should contain
not only the solution, but a clear problem statement also.

So, following "show, don't tell principle":

# dig in a debian.org +trace +recurse
 
; <<>> DiG 9.10.3-P4-Debian <<>> in a debian.org +trace +recurse
;; global options: +cmd
.   360 IN  NS  A.ROOT-SERVERS.NET.
.   360 IN  NS  J.ROOT-SERVERS.NET.
.   360 IN  NS  L.ROOT-SERVERS.NET.
.   360 IN  NS  C.ROOT-SERVERS.NET.
.   360 IN  NS  M.ROOT-SERVERS.NET.
.   360 IN  NS  E.ROOT-SERVERS.NET.
.   360 IN  NS  I.ROOT-SERVERS.NET.
.   360 IN  NS  K.ROOT-SERVERS.NET.
.   360 IN  NS  G.ROOT-SERVERS.NET.
.   360 IN  NS  F.ROOT-SERVERS.NET.
.   360 IN  NS  B.ROOT-SERVERS.NET.
.   360 IN  NS  H.ROOT-SERVERS.NET.
.   360 IN  NS  D.ROOT-SERVERS.NET.
couldn't get address for 'A.ROOT-SERVERS.NET': failure
couldn't get address for 'J.ROOT-SERVERS.NET': failure
couldn't get address for 'L.ROOT-SERVERS.NET': failure
couldn't get address for 'C.ROOT-SERVERS.NET': failure
couldn't get address for 'M.ROOT-SERVERS.NET': failure
couldn't get address for 'E.ROOT-SERVERS.NET': failure
couldn't get address for 'I.ROOT-SERVERS.NET': failure
couldn't get address for 'K.ROOT-SERVERS.NET': failure
couldn't get address for 'G.ROOT-SERVERS.NET': failure
couldn't get address for 'F.ROOT-SERVERS.NET': failure
couldn't get address for 'B.ROOT-SERVERS.NET': failure
couldn't get address for 'H.ROOT-SERVERS.NET': failure
couldn't get address for 'D.ROOT-SERVERS.NET': failure
dig: couldn't get address for 'A.ROOT-SERVERS.NET': no more


And that output is enough to tell you this:

1) Your nameserver tries to do the right thing - to do recursion.

2) Your named.conf apparently lacks "forwarders" section, so the only
thing that BIND can do here - is to query root DNSes.

3) And root DNSes aren't accessible to your BIND.

In conclusion, your setup is clearly broken, you need to fix it.

Reco

Re: need help on cracking wireless password

[Long Wind]

Thank Hans!

I find your mail in Spam folder of Yahoo Mail. 

On Saturday, February 24, 2018 3:24 AM, Hans  wrote:
 

 Am Freitag, 23. Februar 2018, 22:55:30 CET schrieb Long Wind:
Google after these informations in the web, there are lots of descriptions and 
youtube videos:
 
Try "Kismet", it gives you every information, you need.
Capture  the password (airmon-ng, airodump-ng, aireplay-ng)
Crack the password with aircrack-ng, reaver or whatever you want.

Isn't reaver not just for cracking WPS?

Warning: Accept the law!!!

Best regards

Hans
> i've installed reaver
> how to know bssid? it's required argumentfrom wicd-gtk, i click "Properties"
> then "Information"i can see Access point address, it's bssid?? after i
> enter reaver with -i, -b and -vv, nothing seems to happen
> Thanks!




   

Re: Setting up a local DNS server but clients that use it can't access the internet

[Aero Maxx]

Firstly thank you all very much for the replies, and sorry for the vague
information, that wasn't intentional I didn't know what you would need and
also I wasn't aware of the commands you ask for the output from.

On 23 February 2018 at 18:06, Reco  wrote:

> Please invoke this on one of the problematic client hosts:
>
> dig in a debian.org +trace +recurse
>
> dig in a google.com +trace +recurse


Output from the dig commands: https://pastebin.com/7CDMit1R

On 23 February 2018 at 18:09, Roberto C. Sánchez  wrote:

> What is the output of 'ip addr ls' and 'ip route ls' on one of the Linux
> clients? What are the contents of /etc/resolv.conf and /etc/hosts on one
> of the Linux clients? What are the contents of /etc/bind/named.conf*
> (that is, all the configuration files with names starting with
> /etc/bind/named.conf)? What is the actual output where you see errors?
> For example, if nslookup fails, please provide the complete command-line
> and the complete error output. Same for apt-get or any other thing that
> is failing.
>

Output from 'ip addr ls': https://pastebin.com/rU27NbhQ
Output from 'ip route ls': https://pastebin.com/NGZeYuBD
Contents of '/etc/resolv.conf': https://pastebin.com/NtvT1Gf0
Contents of '/etc/hosts': https://pastebin.com/hA0Gm00p
Contents of '/etc/bind/named.conf': https://pastebin.com/qFQQWbLB
Contents of '/etc/bind/named.conf.default-zones':
https://pastebin.com/jmNEz1Mm
Contents of '/etc/bind/named.conf.options': https://pastebin.com/GUevb0t7
Contents of '/etc/bind/named.conf.local': https://pastebin.com/t85npbxG

Contents of '/etc/bind/db.nhs2.uk': https://pastebin.com/tk2P9C1S
Contents of '/etc/bind/db.10': https://pastebin.com/tLeEBsRR

Output from 'apt-get update' showing errors: https://pastebin.com/xfeUhG2p
Output from nslookup commands: https://pastebin.com/X6iyYByj
Contents of '/etc/network/interfaces': https://pastebin.com/Z5UtC3rs

Output from 'ifconfig': https://pastebin.com/vGABwGt7

On 23 February 2018 at 18:26, Greg Wooledge  wrote:

> What domain name did you choose for your local area network?
>

Domain name: nhs2.uk


> What software are you using on the DNS server?  How is it configured?
>

Software: Bind for DNS - Configured as per the instructions here:
https://help.ubuntu.com/lts/serverguide/dns-configuration.html


> Did you use a combined nameserver + recursive resolver on a single
> host, or did you separate the functionality?
>

I am not sure, I think I have only configured a nameserver, I basically
just followed the instructions in the ubuntu dns configuration guide.


> Plus, all the other excellent questions others have already given.
> In short, you must give details.  All of the details.


Thank you,


Virus-free.
www.avast.com

<#DAB4FAD8-2DD7-40BB-A1B8-4E2AA1F9FDF2>

Re: stretch and DNS name resolution service for other devices on a LAN

[Curt]

On 2018-02-24, Pascal Hambourg  wrote:
>
> Anyway, we have a saying here which roughly translates to : "you cannot 
> force an unthirsty donkey to drink".

I looked it up (because neither me nor hubby--de vieille souche--recognized
it right off).

 On ne saurait faire boire un âne qui n’a pas soif.

Donkeys being noted for their obstinacy.

We say: You can lead a horse to water but you can't make it drink.

Not *quite* the same; but after all, we cowboys can't ride no donkey
into the sunset.

(A sexist variation: You can lead a girl to Vassar but you can't make
her think.)


-- 
“Be yourself; everyone else is already taken.”
-Oscar Wilde

Re: need help on cracking wireless password

[tomas]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On Sat, Feb 24, 2018 at 11:54:41AM +0200, Michelle Konzack wrote:
> Am 2018-02-24 hackte to...@tuxteam.de in die Tasten:
> > Not funny either. Folks, what's the matter with you?
> 
> The world become lawless and fucked up.  If peoplee believe,
> they have the right to hack others Internet connection...

Personally I've no more problems with hacking than I'd have with
shoplifting or pickpocketing: not nice, but there's law enforcement
or commensurate protective measures.

But talk about "exterminating" people or "haha" about high crime
rates, well, I find that difficult to digest, especially when it
comes from otherwise obviously intelligent people I somewhat care
about.

Cheers
- -- t
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.12 (GNU/Linux)

iEYEARECAAYFAlqRN24ACgkQBcgs9XrR2kbdDQCbBPfI1etEktBINiWDDOluw7f0
c6kAnAr7A1YMjsK4ntifOU1Euvha4h2/
=bGie
-END PGP SIGNATURE-

Re: need help on cracking wireless password

[Michelle Konzack]

Am 2018-02-24 hackte to...@tuxteam.de in die Tasten:
> Not funny either. Folks, what's the matter with you?

The world become lawless and fucked up.  If peoplee believe,
they have the right to hack others Internet connection...

-- 
Michelle KonzackMiila ITSystems @ TDnet
GNU/Linux Developer 00372-54541400

Re: need help on cracking wireless password

[Michelle Konzack]

Am 2018-02-24 hackte deloptes in die Tasten:
> Michelle Konzack wrote:
>
>> I am in Estonia and we had such attacks from russians  spamers  and
>>  war
>> drivers.  There are nice counter measures!
>>
>> Welcome to "The World of Estonian Cyber Defense"!
>
> I just read today that Estonia is in top 3 of murder in Europe. I don't
> think you need the Russians. Over 80 murders per 10.

The problem is only, that more then 80% of prisoners ARE russians!

> haha, you made my day

-- 
Michelle KonzackMiila ITSystems @ TDnet
GNU/Linux Developer 00372-54541400

Re: need help on cracking wireless password

[tomas]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On Sat, Feb 24, 2018 at 10:31:57AM +0100, deloptes wrote:
> Michelle Konzack wrote:
> 
> > I am in Estonia and we had such attacks from russians  spamers  and  war
> > drivers.  There are nice counter measures!
> > 
> > Welcome to "The World of Estonian Cyber Defense"!
> 
> I just read today that Estonia is in top 3 of murder in Europe. I don't
> think you need the Russians. Over 80 murders per 10.
> 
> haha, you made my day

Not funny either. Folks, what's the matter with you?

Cheers
- -- t
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.12 (GNU/Linux)

iEYEARECAAYFAlqRMkwACgkQBcgs9XrR2kavdgCfYhVU5KpNK0cWtIIJoXSMao7b
G9sAn2NNLQG6EgcMDIpRzBOK55P3+ySf
=HXLK
-END PGP SIGNATURE-

Re: need help on cracking wireless password

[deloptes]

Michelle Konzack wrote:

> I am in Estonia and we had such attacks from russians  spamers  and  war
> drivers.  There are nice counter measures!
> 
> Welcome to "The World of Estonian Cyber Defense"!

I just read today that Estonia is in top 3 of murder in Europe. I don't
think you need the Russians. Over 80 murders per 10.

haha, you made my day

Re: need help on cracking wireless password

[tomas]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On Sat, Feb 24, 2018 at 11:25:05AM +0200, Michelle Konzack wrote:

[...]

> My mailservers are hit every day by several 100.000 spams from china.
> If there is now law, it seems death penalty is the only solution!
> 
> The financial damages spamers and hackers produce, is much  higher  then
> the extermination of chinese criminals.

I take issue with those both things. Even when meant ironically (that
doesn't come across too well in mails, y'know) they ain't funny.

Cheers
- -- t
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.12 (GNU/Linux)

iEYEARECAAYFAlqRMNoACgkQBcgs9XrR2kaGWwCfX+FN/1xORmWhbLMYBVlDXU00
EacAniIgw13wNvhAks6ar4jX3qdgvp+N
=2XIQ
-END PGP SIGNATURE-

Re: need help on cracking wireless password

[Michelle Konzack]

It seems you want to end your life!

Am 2018-02-24 hackte Long Wind in die Tasten:
> Thank Reco and deloptes!
> what i suspect turn out to be true: for ethical reason users here refuse
> to help

They have a reason!

> if reaver is used mainly by bad guy, why debian include it in stable?
> i'm in CHina, a land not ruled by law
> jungle law still holds, we chinese can't worry too muchor we'll worry to
> death

I hope so!

> i want to crack wireless password,so i can connect to my neighbours'
> routerwhich provide Internet access

My mailservers are hit every day by several 100.000 spams from china.
If there is now law, it seems death penalty is the only solution!

The financial damages spamers and hackers produce, is much  higher  then
the extermination of chinese criminals.

> as far as i know their isp charge are fixed, independent of traffic
> volumeand i won't use much, so i'm unwilling to pay ispit does little harm
> to my neighbors

This is exactly what CRACKERS and Mass-Spamers do...
Using foreign hijacked internet connections!

I am in Estonia and we had such attacks from russians  spamers  and  war
drivers.  There are nice counter measures!

Welcome to "The World of Estonian Cyber Defense"!

I use since more then 15 years a very sopisticated program to hijack ANY
attackes and own theire computer used!  It  can  use  more  then  80.000
different exploits!  Hard to beat that!

in 2011 my enterprise/network in  Germany  was  under  attack  of  6  IP
adresses and since I was not able to get the onwer of  the  IPs,  I  was
able to shutdown theire whole network!  Then I got in less  the  1  hour
later visit from german police which tried to arrest me!

Fortunately I could proove, that I was the victime, since toe police had
an IP Expert with them...

I was attacked by honny pots of the NSA!

This is violation of IT Security and State-Terrorism!

So, I am very angry with Spamers and Crackers  and  also  peoples  which
have no worry, hijacking non-owned WiFi APs.


-- 
Michelle KonzackMiila ITSystems @ TDnet
GNU/Linux Developer 00372-54541400

Re: stretch and DNS name resolution service for other devices on a LAN

[Pascal Hambourg]

Le 22/02/2018 à 22:57, David Wright a écrit :

On Tue 23 Jan 2018 at 20:56:31 (+0100), Pascal Hambourg wrote:

Le 23/01/2018 à 18:08, David Wright a écrit :


[My Laptop] --- wireless connection IPv4 --- [Router] --- Internet Modem
  | / |
  | CAT5 cable IPv6/  |
  |   /   | wireless/wired
[My Desktop] --- wireless connection IPv4 __/| connections
  | IPv4
  |
 [TVs]


Both devices will allocate themselves an address in the 'link local' range,
and these addresses can then be used for communicating between the devices.


They can, but they should not be used with application-layer
protocols. Really. IPv6 link local addresses are not meant for this.


Well, I won't argue with this as I don't know what they were
originally meant for.


They are meant to be used with low level IPv6 services (automatic 
configuration, neighbour discovery...)



However, I don't see why I have them if I'm
not allowed to use them when I find a good reason to. I didn't pay
good money just to stare at the numbers in  ip address show.


You did not pay any money for IPv6 link local addresses.


On disadvantage is that these addresses are not globally unique (the
link local prefix exists on all interfaces) and must be appended
with an interface name.


Not an issue here. The only change I have made since you commented
on this in August 2016 is that I now sed the output of
 ip -o link show
to pick up the name of the ethernet interface. (The file that defines
my IPv6 functions is shared with wheezy/jessie/stretch hosts, and
"eth0" doesn't cut it any more.)


Hackish.


The second disadvantage is that if the
interface is replaced for whatever reason, the interface name may
change and the MAC address will change. The link local addresses is
based on the MAC addresses, so it will change too.


Well, as the MAC addresses are all configured in my router,


No, A MAC address is configured in the ethernet adapter NVRAM. Besides, 
The two interfaces we are discussing about are not connected to any router.



IMO, simple
static configuration with a ULA prefix, or with a global prefix if
you own one, would be much reliable.


So what would be involved in setting that up? I have no idea where
to start. I can't believe it's as simple as 1,2,3 below.


Get a ULA prefix. Online generators are available on the web.
Pick up two host addresses in the prefix.
Statically assign an address to the two interface in 
/etc/network/interfaces or any other network manager.



So Andy is right : you could use IPv4 for this. But rather with
static configuration than unpredictable APIPA assignments.


Of course I could, but then I've got to interfere with the routing
table to prevent the file transfers going through the default
wireless interface.


You can't be more wrong. With the static configuration of a pair of IPv4 
addresses in a distinct prefix at both ends of the ethernet link the 
traffic between these addresses would flow through the ethernet link.



If I use IPv6, this is all I have to do to transfer large files at
CAT5 speeds:

1) plug a CAT5 cable into ethernet ports at each machine,
2) on the source, type:   6 
3) when finished, remove the cable.

The wireless interface is unaware of any change, so I can still use
the WAN, or even connect to the other host through its normal wireless
route and, say, initiate transfers in the opposite direction (which
has the advantage that such a connection stays up after the cable has
been removed).


Same with IPv4.

Anyway, we have a saying here which roughly translates to : "you cannot 
force an unthirsty donkey to drink".