Re: iTunesSetup.exe in wine?

[Keith Bainbridge]

On 6/10/21 07:48, pe...@easthope.ca wrote:

A bricked iPhone directs "connect to iTunes".

Attempting to run iTunesSetup.exe on wine yields the following.
Ideas?

Thx,   ... P.

peter@joule:~$ wine iTunesSetup.exe
0104:fixme:file:NtLockFile I/O completion on lock not implemented yet
0104:fixme:ntdll:NtQuerySystemInformation info_class 
SYSTEM_PERFORMANCE_INFORMATION
0104:err:mscoree:LoadLibraryShim error reading registry key for installroot
0104:err:mscoree:LoadLibraryShim error reading registry key for installroot
0104:err:mscoree:LoadLibraryShim error reading registry key for installroot
0104:err:mscoree:LoadLibraryShim error reading registry key for installroot
0128:fixme:wbemprox:client_security_SetBlanket 62EA17A8, 0013B3A8, 10, 0, 
(null), 3, 3, , 0x
0128:fixme:wbemprox:client_security_Release 62EA17A8
0128:fixme:ntdll:NtQuerySystemInformation info_class 
SYSTEM_PERFORMANCE_INFORMATION
0104:err:msi:ITERATE_Actions Execution halted, action L"LaunchConditions" 
returned 1603
0024:fixme:kernelbase:AppPolicyGetProcessTerminationMethod FFFA, 0031FEAC
peter@joule:~$





Option one: play-on-linux

Option 2: CrossOver a commercial app, based on wine but with 
non-open-source and paid for content. Its main claim to fame was that it 
would run MSOffice better.   There is a trial period.



This link lists a few more options which I'd not heard of until I went 
looking for the name of Crossover:


https://alternativeto.net/software/wine/?platform=linux



--
All the best

Keith Bainbridge

keithrbaugro...@gmail.com

Re: network problem

[Reco]

Hi.

On Tue, Oct 05, 2021 at 10:00:45PM +0200, Pierre Frenkiel wrote:
> hi,
> I have the following problem on my laptop.
> my /etc/network/interfaces file contains:
>auto enp0s1
>iface enp0s1  inet static
>address 192.168.1.10
>netmask 255.255.255.0
>gateway 192.168.1.1

That's probably Ok.


>but after boot, ifconfig gives
> 
>address 192.168.0.163
>netmask 255.255.255.0
>gateway 192.168.1.1

And that is not.

First, ifconfig is not able to show you IP routing, so please be more
specific at how exactly you've got this result.
Second, it's impossible to have a working default gateway that's outside
the subnet you're having, and it's exactly what you have here.

>Then, networking works i.e. I can reach Internet, but of course
>not my desktop and other devices 192.168.1.xx

Third, the whole purpose of default gateway is to let you communicate
with host that are outside your subnet.


>rather strange, isn't it?

dpkg -l 'ifupdown*'
dpkg -l 'network*'

Reco

Re: You have been removed from the list (repeatedly)

[Reco]

Hi.

On Tue, Oct 05, 2021 at 04:40:41PM -0400, Greg Wooledge wrote:
> Is this happening to anyone else?

Not yet.


> Is there anything I can do to stop it, other than simply
> re-subscribing every time I post?

It says there plain and clear:

> > When in doubt, ... or send mail to "postmaster".

Lists' postmasters were very helpful in pointing at errors in my setup
when I had the problems with the list in the past. Mail them, ask for
help.

The most probable cause of your troubles - you do not have DMARC policy
published, which means the whole Internet could send bounces to the list
on your behalf. SPF policy that you have published is not enough.


> What is this "vps268904.ovh.net",

"whois ovh.net" will tell you all you need to know about it,
specifically - an abuse e-mail. Consider sending an e-mail there as
well.
Long story short - that host belongs to OVH, one of the Europe largest
hosting provider, and it's withing their power to excommunicate one of
their clients.


> why is it sending messages with the subject "**stop**",

Because it's host owner who misconfigured that sorry excuse for an MTA
called "Kerio Connect", so it's sending bounces.


> why do no such messages appear in the web archive of debian-user,

Because the list archive does not store bounces.


> and why are these messages causing me to become unsubscribed?

This e-mail is the consequence, not the reason of it. After all, it says
"we have already unsubscribed", so it was some other e-mail that got you
into this trouble.


> My best guess is that someone is spamming debian-user, the messages are
> being sent to everyone, my local MTA's spam filters are blocking them,
> and the mailing list is getting mad at me for blocking the spam that it's
> sending to me.

Silently discarding spam was always OK.
Replying to the spammer via list was not and is not.
Bouncing spammer e-mail (which could happen due to MTA misconfiguration
on your part) will get you removed from the list.

Reco

Re: unhappy upgrade

[Andrei POPESCU]

On Ma, 05 oct 21, 10:48:03, Kenneth Parker wrote:
> On Tue, Oct 5, 2021, 9:04 AM David Wright  wrote:
> 
> > Yes, apt-get was recommended for upgrading to stretch. Note however
> > that if you perform your next upgrades with apt, as recommended,
> > some of the command names (like dist-upgrade) will differ in apt.
> >
> 
> I thought "dist-upgrade" is used to upgrade packages that need a "version
> change" (like, sometimes the Kernel).  Is this recent (i.e. Stretch?)

With `apt-get`, yes. With `apt` just `upgrade` is sufficient as well as 
safer, because it allows installation of new packages, but not removals.

It's also shorter to type ;)

See apt-get(8) and apt(8) for details.

Kind regards,
Andrei
-- 
http://wiki.debian.org/FAQsFromDebianUser


signature.asc
Description: PGP signature

Re: slower Debian 11 after upgrade from 10

[L Dimov]

 

On Tuesday, October 5, 2021, 2:50:15 PM EDT, piorunz  
wrote:  
 
 On 05/10/2021 04:10, L Dimov wrote:
>
> So as far as I can tell, I need i915/kbl_dmc_ver1_04.bin,
> ar3k/AthrBT_0x3101.dfu, rtl_nic/rtl8153a-3.fw, and
> rtl_nic/rtl8153a-3.fw. Is that true? And if yes, how do go about getting
> them?

Just to tackle this, for you or other interested people:

Easiest way to find out which package contains xxx file, is to install
apt-file.
sudo apt install apt-file
apt-file update (to update it's database)

then you search for a file:
~$ apt-file search  i915/kbl_dmc_ver1_04.bin
firmware-misc-nonfree: /lib/firmware/i915/kbl_dmc_ver1_04.bin

Other packages are firmware-atheros and firmware-realtek.

Also, to check what non-free or contrib packages you have installed:
sudo apt install vrms

$ vrms

  Thanks Piotr, that was handy. Now that I realize these are not 
free software, I will not be installing them.  Interestingly, running 
$ vrmstold me that while I don't have non-free, I do have a lone contrib 
package - torbrowser-launcher. Not sure how this ended up this way, since I 
never enabled contrib (or non-free) in the sources.list



  

Re: Shared folder and wireless printer for qemu/kvm

[Gary L. Roach]

On 10/5/21 4:25 PM, Gary L. Roach wrote:


Hi again,

I finally found a straight forward installation process for shared 
folders. See:


*https://nts.strzibny.name/how-to-set-up-shared-folders-in-virt-manager/*

If you are using something like /home/gary/vmshare as a folder name 
use that when in doubt.


Gary R.

On 10/4/21 3:38 PM, Gary L. Roach wrote:


Thanks for the reply

I am interested in printer only. As I stated in my email: The HP 
printer is wifi connected to my local network and is accessible by 
all of the computers on the network. *This includes the host system*. 
Right now the shared folder is probably more important because I can 
then switch systems and print a file from the host system.


Gary R.

On 10/4/21 3:08 PM, Charles Curley wrote:

On Mon, 4 Oct 2021 14:10:21 -0700
"Gary L. Roach"  wrote:


I have my Debian 11 installation as host. I installed Debian 10 on
qemu/kvm to run a program that needs Qt4. I need to set up a shared
folder and connection to my wifi networked HP Officejet Pro 8600
printer.

What do you need to connect to it for? Printing? Scanning? Both?

The first thing I would do is make sure I can access the printer from
the host OS. Then see if CUPS/SANE on the guest will find the printer by
itself. If not, I'd copy the CUPS setup by copy and paste from the host
to the guest. For SANE, I'd copy /etc/sane.d/dll.d/hplip over.

The SANE driver will almost certainly be hpaio.

Another possibility for the printer is to make the host instance
sharable and use that share on the guest.

Re: More issues

[Peter Hillier-Brook]

On 05/10/2021 18:21, Roy J. Tellason, Sr. wrote:
> So when I tell synaptic package manager to reload,  to get current
> information,  I see "failed" for two of the things that it's trying
> to download.  Then I get a box with error messages in it as follows:
> 
> "GPG error: https://download.virtualbox.org/virtualbox/debian stretch
> InRelease: The following signatures couldn't be verified because the
> public key is not available: NO_PUBKEY A2F683C52980AECFThe repository
> 'https://download.virtualbox.org/virtualbox/debian stretch InRelease'
> is not signed."
> 
> I seem to vaguely recall something about a key on the Oracle site
> where I downloaded this,  but am not 100% sure.  What do I need to do
> to fix this?

Go back to the download page on the Virtualbox site and read the
instructions. ;-)

Re: You have been removed from the list (repeatedly)

[Andy Smith]

Hi Greg,

On Tue, Oct 05, 2021 at 04:40:41PM -0400, Greg Wooledge wrote:
> My best guess is that someone is spamming debian-user, the messages are
> being sent to everyone, my local MTA's spam filters are blocking them,
> and the mailing list is getting mad at me for blocking the spam that it's
> sending to me.  This might not be the case, but it would explain why the
> messages aren't showing up in the web archive (they're removed because
> they're spam).

I believe this is the correct answer and answers all the previous
questions you asked, except what to do about it.

My approach is to have a hardcoded list of senders in my Exim
configuration whose emails I will silently discard instead of
rejecting during the SMTP conversation, if a reject decision is
reached.

It's not a great solution since rejecting during the SMTP
conversation is the right thing to do in the general case, but
Debian mailing lists are open and tend to receive quite a bit more
spam than your average closed Mailman list.

Cheers,
Andy

-- 
https://bitfolk.com/ -- No-nonsense VPS hosting

Re: You have been removed from the list (repeatedly)

[Cindy Sue Causey]

On 10/5/21, Greg Wooledge  wrote:
> In the last 24 hours, I've been dropped from this list at least 3 times.
> I am able to re-subscribe, but it's a real pain in the ass.
>
> It seems to happen after I post a message to the list while subscribed.
> In each case, I receive a message like the one I've quoted below.
>
> Is this happening to anyone else?  Is there anything I can do to stop it,
> other than simply re-subscribing every time I post?
>
> What is this "vps268904.ovh.net", why is it sending messages with the
> subject "**stop**", why do no such messages appear in the web archive
> of debian-user, and why are these messages causing me to become
> unsubscribed?


Apparently OVH is possibly some kind of cloud thing.. and/or also a
web domain registrar kind of deal.. or not. I took a quick peek at my
insanely massive inbox. Found maybe 20 references.

Seven references were sent by me to "s/pam" at UCE dot gov.. back in
2012. Ouch. OVH dot net appeared to be the "real" sender, the conduit,
while something "dot fr" was also listed as the sender in the random
email I viewed.

A more recent email is "OVH dot it" this past March, 2021. The message
is Italian, as confirmed by Google's translator. The email is advising
that the recipient needs to immediately renew their expired website
services.


> My best guess is that someone is spamming debian-user, the messages are
> being sent to everyone, my local MTA's spam filters are blocking them,
> and the mailing list is getting mad at me for blocking the spam that it's
> sending to me.  This might not be the case, but it would explain why the
> messages aren't showing up in the web archive (they're removed because
> they're spam).
>
> On Tue, Oct 05, 2021 at 08:28:57PM +,
> debian-user-requ...@lists.debian.org wrote:
>> Your mail address g...@wooledge.org has been removed
>> from the debian-user@lists.debian.org mailinglist.
>> It generated an excessive amount of bounced mails.
>>
>> Before sending in a subscription request to
>> debian-user-requ...@lists.debian.org again, please ensure that
>> this problem has been resolved.   When in doubt, ask your system
>> administrator or send mail to "postmaster".
>>
>> The last one of those bounced mails has been quoted below:
>> >From postmas...@vps268904.ovh.net  Tue Oct  5 20:28:57 2021
>> >Return-Path: 
>> >X-Original-To: lists-debian-u...@bendel.debian.org
>> >Delivered-To: lists-debian-u...@bendel.debian.org
>> >Received: from localhost (localhost [127.0.0.1])
>> >by bendel.debian.org (Postfix) with ESMTP id A34E220455
>> >for ; Tue,  5 Oct 2021 20:28:57


Interesting because the newer hinky looking email I'm looking at was
sent from a gmx.de email address and was sent directly to online at
bendel dot debian dot org as the public, immediately visible
recipient.

Found one last reference which was a thread about Debian sponsors
and/or service providers where OVH appeared to be given a positive
thumbs up due to their support, by the way.


< snipped for brevity >

>> >: Re: network problem
>> >On Tue, Oct 05, 2021 at 10:00:45PM +0200, Pierre Frenkiel wrote:
>> >> hi,
>> >> I have the following problem on my laptop.
>> >> my /etc
>> >Please stop the message. we have already unsubscribed our email address.

Did you write the "Please stop" part? It appears to be attributing the
"we have already unsubscribed" to you, Greg, which is certainly not
what you're trying to do. :)

Cindy :)
-- 
Cindy-Sue Causey
Talking Rock, Pickens County, Georgia, USA
* runs with birdseed *

Re: You have been removed from the list (repeatedly)

[Thomas Schmitt]

Hi,

Greg Wooledge wrote:
> In the last 24 hours, I've been dropped from this list at least 3 times.
> [...]
> Is this happening to anyone else?

Not to me.

> > >Date: Tue, 5 Oct 2021 22:28:47 +0200
> > >Subject: **stop**

I am not aware to have seen this.
So the theory seems not plausible that your problem would be due to
rejections of debian-user mails by your receiving mail server.

I get warnings about such rejections from time to time.
This one is still in my mailbox:
-
Date: Fri, 21 Aug 2020 16:45:11 + (UTC)
From: Debian Listmaster Team 
To: scdbac...@gmx.net
Subject: lists.debian.org has received bounces from you

Dear subscriber,

We've encountered some problems while sending listmail to your
emailaddress scdbac...@gmx.net.

In the last seven days we've seen bounces for the following list:
* debian-user
1 bounce out of 34 mails in one day (2%, kick-score is 80%)
(https://lists.debian.org/bounces/466k6zCluxiU7cYm51NzHA)

(The link above points to a copy of the latest bounce
and will be valid for seven days.)

If the bounce-rate passes the kick-score, our bounce-detection will forcibly
remove your subscription.

Bounces happen from time to time when spam slips through our filters but are
rejected by your mail provider.  If you are your own mail provider and use
'Before-Queue Content filtering', you should whitelist bendel.debian.org
from
Content filtering.

However: You can safely ignore this message (and you will not be unsubscribed
:-) ) if your bounce rate remains low.

For more information see https://wiki.debian.org/Teams/ListMaster/FAQ

You are welcome to contact listmas...@lists.debian.org if you think this
message was sent in error.

Sincerely,
The Listmaster Team
--
http://lists.debian.org

-
End of mail quote.


Are you sure that you really have been unsubscribed - and not spoofed ?
Do you really miss out mails which show up in the archives ?

This quoted header from your mail body:

> > >X-Spam-Status: No, score=1.399 tagged_above=-1 required=5.3
> > > tests=[BAYES_20=-1, KHOP_HELO_FCRDNS=0.399, ONEWORD=2]
> > > autolearn=no autolearn_force=no

looks quite different from samples out of my debian-user mail collection:

Yours:
> X-Spam-Status: No, score=-6.6 required=4.0 tests=DIGITS_LETTERS,FOURLA,
>   LDOSUBSCRIBER,LDO_WHITELIST,MURPHY_DRUGS_REL8,RDNS_NONE,YOUTHERE
>  autolearn=unavailable autolearn_force=no version=3.4.2

Mine:
> X-Spam-Status: No, score=-11.9 required=4.0 tests=DKIM_SIGNED,DKIM_VALID,
>   DKIM_VALID_AU,DKIM_VALID_EF,FOURLA,FREEMAIL_FROM,LDOSUBSCRIBER,
>   LDO_WHITELIST,RCVD_IN_DNSWL_LOW,RCVD_IN_MSPIKE_H4,RCVD_IN_MSPIKE_WL
>   autolearn=unavailable autolearn_force=no version=3.4.2

Others:

> X-Spam-Status: No,
>   score=-4.9 required=4.0 tests=HEADER_FROM_DIFFERENT_DOMAINS,
>   LDO_WHITELIST,NUMERIC_HTTP_ADDR,RCVD_IN_DNSWL_LOW
>   autolearn=unavailable autolearn_force=no version=3.4.2

> X-Spam-Status: No, score=2.3 required=4.0 tests=DKIMWL_WL_HIGH,DKIM_SIGNED,
>   DKIM_VALID,DKIM_VALID_AU,DKIM_VALID_EF,HTML_IMAGE_ONLY_16,HTML_MESSAGE,
>   RCVD_IN_DNSWL_NONE,RCVD_IN_MSPIKE_H4,RCVD_IN_MSPIKE_WL autolearn=no
>   autolearn_force=no version=3.4.2


Have a nice day :)

Thomas

iTunesSetup.exe in wine?

[peter]

A bricked iPhone directs "connect to iTunes".

Attempting to run iTunesSetup.exe on wine yields the following. 
Ideas?

Thx,   ... P.

peter@joule:~$ wine iTunesSetup.exe
0104:fixme:file:NtLockFile I/O completion on lock not implemented yet
0104:fixme:ntdll:NtQuerySystemInformation info_class 
SYSTEM_PERFORMANCE_INFORMATION
0104:err:mscoree:LoadLibraryShim error reading registry key for installroot
0104:err:mscoree:LoadLibraryShim error reading registry key for installroot
0104:err:mscoree:LoadLibraryShim error reading registry key for installroot
0104:err:mscoree:LoadLibraryShim error reading registry key for installroot
0128:fixme:wbemprox:client_security_SetBlanket 62EA17A8, 0013B3A8, 10, 0, 
(null), 3, 3, , 0x
0128:fixme:wbemprox:client_security_Release 62EA17A8
0128:fixme:ntdll:NtQuerySystemInformation info_class 
SYSTEM_PERFORMANCE_INFORMATION
0104:err:msi:ITERATE_Actions Execution halted, action L"LaunchConditions" 
returned 1603
0024:fixme:kernelbase:AppPolicyGetProcessTerminationMethod FFFA, 0031FEAC
peter@joule:~$ 


-- 
48.7693 N 123.3053 W
mobile: +1 778 951 5147
  VoIP: +1 604 670 0140

Re: network problem

[ghe2001]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256



‐‐‐ Original Message ‐‐‐
On Tuesday, October 5, 2021 2:00 PM, Pierre Frenkiel 
 wrote:

> hi,
> I have the following problem on my laptop.
> my /etc/network/interfaces file contains:
> auto enp0s1
> iface enp0s1 inet static
> address 192.168.1.10
> netmask 255.255.255.0
> gateway 192.168.1.1
>
> but after boot, ifconfig gives
>
> address 192.168.0.163
> netmask 255.255.255.0
> gateway 192.168.1.1
>
> Then, networking works i.e. I can reach Internet, but of course
> not my desktop and other devices 192.168.1.xx
>
> I looked on the entire disk to find where this address 192.168.0.163
> is hidden, but I was unable to find it !
>
> rather strange, isn't it?

Most peculiar indeed.

Does the interface always get the same address?

Have you tried setting the IP with ifconfig -- after the box is up with the bad 
IP address?

Is there anything in /etc/init.d that might be doing it?

Have you looked at dmesg?  (That 163's gotta be somewhere.)

Have you looked at what's in /etc/network/interfaces.d?  (There's nothing in 
mine, but ifup works as expected here.)

Have you tried Webmin?  (I know, I know, but it works.)

Have you tried pinging the two addresses?  (Not likely, but something's bent 
somewhere.)

A workaround: change the netmask everywhere on your LAN to 255.255.0.0 and let 
the address be whatever systemd wants to assign to it :-)

--
Glenn English
-BEGIN PGP SIGNATURE-
Version: ProtonMail

wsBzBAEBCAAGBQJhXL2SACEJEJ/XhjGCrIwyFiEELKJzD0JScCVjQA2Xn9eG
MYKsjDLdhwgAwp4apR3uGebYU5bOx+qQbh8iGDFa+sPxMzqdzYa0bVBcoaUE
hzxPw1+pAe3vEfD/VYYrm5GGC4aUHILqH7SffpMMbWEZtSaL5ghKC8EGZhlk
wcP0d7p3paPNvKpCHMOUkxDQOd04Cqu+gudkeiQasqAPBqnTzLpk0sEBIsj9
EMeA/RCivsIGt+VvNQPaR2+surTnubOx95pwT/SmFT1at6awcbiYYNjUU08T
rnOdSAA1A7/X5UED1Mo5R+6k/DT3DqKzkK1jmwY1IKt24iBLH4wn/2md6j8w
WpbLDjn/U9Gb+rpNqdEhLkVwMgLrxFRkyKkH+gJangN7JyExoT6RbQ==
=Ze8U
-END PGP SIGNATURE-

Re: You have been removed from the list (repeatedly)

[piorunz]

On 05/10/2021 21:40, Greg Wooledge wrote:

Your mail addressg...@wooledge.org  has been removed
from thedebian-u...@lists.debian.org  mailinglist.
It generated an excessive amount of bounced mails.


That's the explanation. My guess, based on this, is:
Your e-mail system bounces spam back, meaning it sends it back to the
list. That's unnecessary. Configure your e-mail system to accept all
spam or send it to /dev/null, but don't send it back.

--
With kindest regards, Piotr.

⢀⣴⠾⠻⢶⣦⠀
⣾⠁⢠⠒⠀⣿⡁ Debian - The universal operating system
⢿⡄⠘⠷⠚⠋⠀ https://www.debian.org
⠈⠳⣄

You have been removed from the list (repeatedly)

[Greg Wooledge]

In the last 24 hours, I've been dropped from this list at least 3 times.
I am able to re-subscribe, but it's a real pain in the ass.

It seems to happen after I post a message to the list while subscribed.
In each case, I receive a message like the one I've quoted below.

Is this happening to anyone else?  Is there anything I can do to stop it,
other than simply re-subscribing every time I post?

What is this "vps268904.ovh.net", why is it sending messages with the
subject "**stop**", why do no such messages appear in the web archive
of debian-user, and why are these messages causing me to become
unsubscribed?

My best guess is that someone is spamming debian-user, the messages are
being sent to everyone, my local MTA's spam filters are blocking them,
and the mailing list is getting mad at me for blocking the spam that it's
sending to me.  This might not be the case, but it would explain why the
messages aren't showing up in the web archive (they're removed because
they're spam).

On Tue, Oct 05, 2021 at 08:28:57PM +, debian-user-requ...@lists.debian.org 
wrote:
> Your mail address g...@wooledge.org has been removed
> from the debian-user@lists.debian.org mailinglist.
> It generated an excessive amount of bounced mails.
> 
> Before sending in a subscription request to
> debian-user-requ...@lists.debian.org again, please ensure that
> this problem has been resolved.When in doubt, ask your system
> administrator or send mail to "postmaster".
> 
> The last one of those bounced mails has been quoted below:
> >From postmas...@vps268904.ovh.net  Tue Oct  5 20:28:57 2021
> >Return-Path: 
> >X-Original-To: lists-debian-u...@bendel.debian.org
> >Delivered-To: lists-debian-u...@bendel.debian.org
> >Received: from localhost (localhost [127.0.0.1])
> > by bendel.debian.org (Postfix) with ESMTP id A34E220455
> > for ; Tue,  5 Oct 2021 20:28:57 
> > + (UTC)
> >X-Virus-Scanned: at lists.debian.org with policy bank en-ht
> >X-Spam-Flag: NO
> >X-Spam-Score: 1.399
> >X-Spam-Level: *
> >X-Spam-Status: No, score=1.399 tagged_above=-1 required=5.3
> > tests=[BAYES_20=-1, KHOP_HELO_FCRDNS=0.399, ONEWORD=2]
> > autolearn=no autolearn_force=no
> >Received: from bendel.debian.org ([127.0.0.1])
> > by localhost (lists.debian.org [127.0.0.1]) (amavisd-new, port 2525)
> > with ESMTP id V1u0M6nx3IlZ for ;
> > Tue,  5 Oct 2021 20:28:53 + (UTC)
> >X-policyd-weight: using cached result; rate:hard: -5.5
> >Received: from vps268904.ovh.net (mail.data3v.com [51.254.223.75])
> > (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)
> >  key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest 
> > SHA256)
> > (Client did not present a certificate)
> > by bendel.debian.org (Postfix) with ESMTPS id 2D0D820413
> > for ; Tue,  5 Oct 2021 20:28:53 + 
> > (UTC)
> >X-Kerio-Anti-Spam:  Build: [Engines: 2.16.1.1366, Stamp: 3], Multi: 
> >[Enabled, t: (0.33,0.002846)], BW: [Enabled, t: (0.55,0.21)], 
> >RTDA: [Enabled, t: (0.033185), Hit: No, Details: v2.7.195; Id: 
> >15.52k5as.1fh92a0an.5p5s], total: 0(700)
> >Received: from localhost
> > by vps268904.ovh.net (Kerio Connect 9.3.1 patch 1); Tue, 5 Oct 2021 
> > 22:28:47 +0200
> >Date: Tue, 5 Oct 2021 22:28:47 +0200
> >Message-ID: <1641278033-6...@vps268904.ovh.net>
> >MIME-Version: 1.0
> >From: "Mail Delivery Subsystem" 
> >To: 
> >Subject: **stop**
> >X-Kerio-Notification: yes
> >Content-Type: text/plain; charset="utf-8"
> >X-Rc-Virus: 2007-09-13_01
> >X-Rc-Spam: 2008-11-04_01
> >
> >: Re: network problem
> >On Tue, Oct 05, 2021 at 10:00:45PM +0200, Pierre Frenkiel wrote:
> >> hi,
> >> I have the following problem on my laptop.
> >> my /etc
> >Please stop the message. we have already unsubscribed our email address.
> >

Re: network problem

[Greg Wooledge]

On Tue, Oct 05, 2021 at 10:00:45PM +0200, Pierre Frenkiel wrote:
> hi,
> I have the following problem on my laptop.
> my /etc/network/interfaces file contains:
>auto enp0s1
>iface enp0s1  inet static
>address 192.168.1.10
>netmask 255.255.255.0
>gateway 192.168.1.1
> 
>but after boot, ifconfig gives
> 
>address 192.168.0.163
>netmask 255.255.255.0
>gateway 192.168.1.1

There is a *lot* to unpack here.  I'm not sure where to start.

Let's start here: that is *not* the output of "ifconfig" on Debian.
The ifconfig command, which is not installed by default, but is available
in an optional package, does not produce output that looks anything
like that.

Most particularly, it does not show any information about routing.  So
that "gateway" line that you claim it shows... that didn't come from
ifconfig, not even if you reformatted the hell out of it.

That leaves us to guess what you actually did, what the actual output
of ifconfig is, and why you're misleading us.

Now, let's assume for the sake of argument that you actually ran several
different commands, collated their output together in your head, and
rewrote it into this format.  Let's even assume that you did not make
any typos during this entire procedure.

This still leaves us with some questions.

1) What is the actual name of your network interface?

   The stanza in /etc/network/interface will only apply if the
   interface's name is enp0s1.  If it's not, then something else (perhaps
   network-manager) will take over and configure the interface.

The 192.168.0.163 address might have come from DHCP.  A fallback
configuration, like the one used by N-M, might be "run a DHCP client
and see if that works".

>Then, networking works i.e. I can reach Internet, but of course
>not my desktop and other devices 192.168.1.xx

2) What is your full routing table?  "ip route" under modern era tools,
   or "route -n" under the legacy tools.

It's not clear to me how you have working Internet access if your default
route is an address (192.168.1.1) that isn't on your subnet (192.168.0.0/24).

At the very least, you would need a route that leads you to the 192.168.0
network.  Perhaps you have one.  But you didn't show it.

Then, if for some reason you really *do* have a 192.168.0 address,
and a route to the 192.168.1 network, and a default gateway of 192.168.1.1,
and if all of this actually works, then... where did this routing table
get configured?

It's a mystery for sure.

You might want to look for log files that indicate what's happening.  They
could be in /var/log/ or you might need to use journalctl.

Meanwhile, use "ip addr" and "ip route" to see what your actual network
configuration is.  Don't reformat it.  Don't omit pieces of it.  Don't
mash the two together.

Re: network problem

[Dan Ritter]

Pierre Frenkiel wrote: 
> hi,
> I have the following problem on my laptop.
> my /etc/network/interfaces file contains:
>auto enp0s1
>iface enp0s1  inet static
>address 192.168.1.10
>netmask 255.255.255.0
>gateway 192.168.1.1
> 
>but after boot, ifconfig gives
> 
>address 192.168.0.163
>netmask 255.255.255.0
>gateway 192.168.1.1
> 
>Then, networking works i.e. I can reach Internet, but of course
>not my desktop and other devices 192.168.1.xx
> 
>I looked on the entire disk to find where this address 192.168.0.163
>is hidden, but I was unable to find it !
> 
>rather strange, isn't it?

First, let's see if you have the right interface.

ip link show |grep enp0s1

if that doesn't show you a line of config, you are specifying
the wrong interface.

ip link show

will show all of them to you.

Second, let's see if something else is doing the configuration:

grep -C1 ifupdown /etc/NetworkManager

(you want this to show managed=false)

ls /etc/systemd/network/

(you would like this to be empty)


Let us know what you find out.

-dsr-

Re: Authentication in CUPS (IPP) and sane (eSCL)?

[Charles Curley]

On Tue, 5 Oct 2021 20:01:16 +0100
Brian  wrote:

> The emphasis is on mobile devices. I wonder why they are singled out?
> Interesting.
> 
> I would set a Username and Password and see how you go on printing and
> scanning using CUPS and SANE and your iPhone.

Good idea. The app on the iPhone reports that eSCL is not supported.
Well, that was good for a laugh for the day. (At least I know that it
appears to work on the printer.)

-- 
Does anybody read signatures any more?

https://charlescurley.com
https://charlescurley.com/blog/

network problem

[Pierre Frenkiel]

hi,
I have the following problem on my laptop.
my /etc/network/interfaces file contains:
   auto enp0s1
   iface enp0s1  inet static
   address 192.168.1.10
   netmask 255.255.255.0
   gateway 192.168.1.1

   but after boot, ifconfig gives

   address 192.168.0.163
   netmask 255.255.255.0
   gateway 192.168.1.1

   Then, networking works i.e. I can reach Internet, but of course
   not my desktop and other devices 192.168.1.xx

   I looked on the entire disk to find where this address 192.168.0.163
   is hidden, but I was unable to find it !

   rather strange, isn't it?

best regards,
--
Pierre Frenkiel

Re: Authentication in CUPS (IPP) and sane (eSCL)?

[Brian]

On Tue 05 Oct 2021 at 10:17:06 -0600, Charles Curley wrote:

> On Tue, 5 Oct 2021 14:16:10 +0100
> Brian  wrote:
> 
> > In which manual section, or on which page, is access control
> > described?
> 
> I take it you mean for the printer, not CUPS. For the printer, it is on
> the embedded web server.
> 
> https://hpm234ethernet -> Networking -> Advanced.
> 
> It isn't described, but the available options are to require IPP or
> eSCL authentication, and if so to set a user name and password. Both
> have the annotation,
> 
> Users printing from mobile devices will be required to provide this
> Name/password combination. Username and Password can contain any
> printable characters except "()<>@,;:\/[]?={}"

Thanks for the detail.

The emphasis is on mobile devices. I wonder why they are singled out?
Interesting.

I would set a Username and Password and see how you go on printing and
scanning using CUPS and SANE and your iPhone.
 
> I don't see anything in the User Guide.

Neither do I. Expecting explanations in a Guide is optimistic, but a
mentiom would not be out of place.

A single, unique Username/Password combination is all that is required.
What is the liklihood of its remaining unknwn in an orgaisation for very
long? Security doesn't appear to be enhanced.

-- 
Brian.

Re: slower Debian 11 after upgrade from 10

[piorunz]

On 05/10/2021 04:10, L Dimov wrote:


So as far as I can tell, I need i915/kbl_dmc_ver1_04.bin,
ar3k/AthrBT_0x3101.dfu, rtl_nic/rtl8153a-3.fw, and
rtl_nic/rtl8153a-3.fw. Is that true? And if yes, how do go about getting
them?


Just to tackle this, for you or other interested people:

Easiest way to find out which package contains xxx file, is to install
apt-file.
sudo apt install apt-file
apt-file update (to update it's database)

then you search for a file:
~$ apt-file search  i915/kbl_dmc_ver1_04.bin
firmware-misc-nonfree: /lib/firmware/i915/kbl_dmc_ver1_04.bin

Other packages are firmware-atheros and firmware-realtek.

Also, to check what non-free or contrib packages you have installed:
sudo apt install vrms

$ vrms
   Non-free packages installed on x

amd64-microcode Processor microcode firmware for AMD
CPUs
firmware-amd-graphics   Binary firmware for AMD/ATI graphics
chips
firmware-linux-nonfree  Binary firmware for various drivers
in the Linux kerne
firmware-misc-nonfree   Binary firmware for various drivers
in the Linux kerne
firmware-realtekBinary firmware for Realtek
wired/wifi/BT adapters
steam   Valve's Steam digital software
delivery system
steam-devices   Device support for Steam-related
hardware

Contrib packages installed on x

lutris  open source gaming platform
ttf-mscorefonts-installer   Installer for Microsoft TrueType
core fonts
winetricks  simple tool to work around common
problems in Wine

  7 non-free packages, 0.2% of 2862 installed packages.
  3 contrib packages, 0.1% of 2862 installed packages.


--
With kindest regards, Piotr.

⢀⣴⠾⠻⢶⣦⠀
⣾⠁⢠⠒⠀⣿⡁ Debian - The universal operating system
⢿⡄⠘⠷⠚⠋⠀ https://www.debian.org
⠈⠳⣄

Re: slower Debian 11 after upgrade from 10

[David Christensen]

On 10/5/21 06:21, L Dimov wrote:
  


 On Tuesday, October 5, 2021, 1:59:21 AM EDT, David Christensen 
 wrote:

If your laptop has hardware that requires proprietary firmware, I very
much doubt that the firmware in question will ever be open-sourced.
Without the proprietary firmware, the best case is reduced
functionality using reverse-engineered drivers -- e.g. NVIDIA and
Nouveau.  Wi-Fi adapters requiring proprietary firmware tend to be
non-functional without such.


Either keep your laptop and install the proprietary firmware, or sell it
and get something with hardware that does not require proprietary firmware.

It is a work laptop, so I am definitely not selling it:) Plus, it is only 2-3 
years old.
What bugs me is that it worked fine with Debian 10. I even had bought a wifi 
card from thinkpenguin since the original wouldn't work with free software.



I am curious about your arrangement with your employer -- few allow 
employees to install an OS of their choosing on company hardware (and 
retain administrator access).



Does your employer have IT support?  Have you requested assistance?


Have you requested assistance from ThinkPenguin?


As other readers have pointed, out, Debian 11 may very well be slower 
than Debian 10 on the same hardware; even after firmware issues are 
resolved.



As for the firmware -- what about running an older Debian (or Windows 10 
Pro) on the hardware, installing a hypervisor, and running Debian 11 in 
a VM?  For a year or more, my Debian daily driver was a VirtualBox 
virtual machine on a mid-2015 MacBook Pro 15 Retina.  Debian thought it 
was running on a stock x86 personal computer with full hardware support 
OOTB.  Performance was surprisingly good, graphics were beautiful, 
networking and was easily controlled from the Virtual Box manager.  Only 
down-side was keyboard integration -- I seem to recall conflicts with 
certain key combinations.



David

Re: More issues

[piorunz]

On 05/10/2021 18:21, Roy J. Tellason, Sr. wrote:
"GPG error: https://download.virtualbox.org/virtualbox/debian stretch

What system are you on?


--
With kindest regards, Piotr.

⢀⣴⠾⠻⢶⣦⠀
⣾⠁⢠⠒⠀⣿⡁ Debian - The universal operating system
⢿⡄⠘⠷⠚⠋⠀ https://www.debian.org
⠈⠳⣄

Re: More issues

[john doe]

On 10/5/2021 7:21 PM, Roy J. Tellason, Sr. wrote:

So when I tell synaptic package manager to reload,  to get current information,  I see 
"failed" for two of the things that it's trying to download.  Then I get a box 
with error messages in it as follows:

"GPG error: https://download.virtualbox.org/virtualbox/debian stretch InRelease: The 
following signatures couldn't be verified because the public key is not available: 
NO_PUBKEY A2F683C52980AECFThe repository 
'https://download.virtualbox.org/virtualbox/debian stretch InRelease' is not signed."

I seem to vaguely recall something about a key on the Oracle site where I 
downloaded this,  but am not 100% sure.  What do I need to do to fix this?



Looks like the public key needs to be imported (1).


1)  https://www.virtualbox.org/wiki/Linux_Downloads

--
John Doe

More issues

[Roy J. Tellason, Sr.]

So when I tell synaptic package manager to reload,  to get current information, 
 I see "failed" for two of the things that it's trying to download.  Then I get 
a box with error messages in it as follows:

"GPG error: https://download.virtualbox.org/virtualbox/debian stretch 
InRelease: The following signatures couldn't be verified because the public key 
is not available: NO_PUBKEY A2F683C52980AECFThe repository 
'https://download.virtualbox.org/virtualbox/debian stretch InRelease' is not 
signed."

I seem to vaguely recall something about a key on the Oracle site where I 
downloaded this,  but am not 100% sure.  What do I need to do to fix this?


-- 
Member of the toughest, meanest, deadliest, most unrelenting -- and
ablest -- form of life in this section of space,  a critter that can
be killed but can't be tamed.  --Robert A. Heinlein, "The Puppet Masters"
-
Information is more dangerous than cannon to a society ruled by lies. --James 
M Dakin

Re: mic issues after upgrade to Debian 11

[Marko Randjelovic]

On Tue, 5 Oct 2021 13:58:35 + (UTC)
L Dimov  wrote:

> My mic used to work fine under Debian 9 and 10, but after upgrading to 11, 
> people tell me that the audio coming out of my mic is really scratchy and bad 
> to the point where if I do a video call, I'd have to use the phone for the 
> audio part. Not sure where to even start with this... Is there an easy way 
> (is it possible) to revert to the previous driver, somehow, the one that was 
> there in Debian 10?
> Thank you in advance for any suggestions.Luben

To help us find the cause of your problem, it would be nice if you
could provide us more information: 
- your sound setup (do you use alsa, pulseaudio, jack...)
- which mic device/driver is in question (mic connected to your sound
card which is X, mic from your webcam which is Y...)
- what program do you use for communication (Zoom, Teams, Meet, Skype,
Telegram...)

an annoying blue dot

[Roy J. Tellason, Sr.]

So I'm currently looking at an annoying blue dot up there in my taskbar,  
adjacent to the speaker and network icons over there on the right hand side.  
When I click on it I get a small popup window saying "KDE Accessible",  and 
when I right-click on it I get a smallish menu,  one option of which is "Quit", 
 which when I select it makes the blue dot go away.

For a bit.

Then it comes back...

This is annoying.  I never enabled this,  don't know where to get it to stop 
doing that.  I have KDE installed on this box but don't use it as a desktop 
environment,  only use bits of it here and there.  My desktop environment of 
choice is Xfce.

Any suggestions as to how to put a stop to this welcomed...


-- 
Member of the toughest, meanest, deadliest, most unrelenting -- and
ablest -- form of life in this section of space,  a critter that can
be killed but can't be tamed.  --Robert A. Heinlein, "The Puppet Masters"
-
Information is more dangerous than cannon to a society ruled by lies. --James 
M Dakin

Re: slower Debian 11 after upgrade from 10

[Stefan Monnier]

> Sometimes an older kernel does better than a newer kernel, in the absence
> of proper firmware.  Sometimes it doesn't.

Sometimes a blob is moved from `main` to `contrib` or `non-free` because
it was in `main` by mistake (tho I can't remember that happening
between Debian 10 and Debian 11).


Stefan

Re: Authentication in CUPS (IPP) and sane (eSCL)?

[Charles Curley]

On Tue, 5 Oct 2021 14:16:10 +0100
Brian  wrote:

> In which manual section, or on which page, is access control
> described?

I take it you mean for the printer, not CUPS. For the printer, it is on
the embedded web server.

https://hpm234ethernet -> Networking -> Advanced.

It isn't described, but the available options are to require IPP or
eSCL authentication, and if so to set a user name and password. Both
have the annotation,

Users printing from mobile devices will be required to provide this
Name/password combination. Username and Password can contain any
printable characters except "()<>@,;:\/[]?={}"

I don't see anything in the User Guide.

-- 
Does anybody read signatures any more?

https://charlescurley.com
https://charlescurley.com/blog/

Re: excessive memory use by several gnome programs

[Henning Follmann]

On Tue, Oct 05, 2021 at 03:24:41PM +, L Dimov wrote:
> My fans were going crazy after restart, as usual, so I finally looked at the 
> System Monitor to find that with no programs started by me, 
> gnome-contacts-search-provider was using the most, reaching up to 1.8 GB. All 
> 8 CPUs were running on 99 to 100%. After several minutes it dropped to 
> nothing. Is that normal? The computer sounds like a jet taking off. 
>

I think that might be related to tracker. This is an indexer of the GNOME 
desktop.
Initially this will use some noticable cpu cycles but once it indexed all files 
in
your hoe directory it will play nice.


> At present, evolution-addressbok-factory is using 478 MB of memory, 
> consistently for several tens of minutes (and still the biggest user among 
> the processes. Looks like a lot to me - is that normal?
> I am on a Dell Lattitude 5490 laptop, 16 GB memory, 1 TB SSD, intel core i5 
> vPro 8t gen, 2-3 years old.Thanks!Luben


-H

-- 
Henning Follmann   | hfollm...@itcfollmann.com

Re: [SOLVED] Re: Buster wget: The certificate of 'lists.debian.org' is not trusted

[David Wright]

On Sat 02 Oct 2021 at 08:15:59 (+0200), to...@tuxteam.de wrote:
> On Fri, Oct 01, 2021 at 03:18:22PM -0500, David Wright wrote:
> 
> [...]
> 
> > I have a buster system that was up-to-date from the last point-release
> > and kernel (2021-09-10  18:22:47).
> > 
> > The only certificate expiration problem I have observed (and still
> > observe, having taken no action) is with apt-listbugs:
> 
> [...]
> 
> > However, my next thought was to temporarily move my
> > /etc/apt/apt.conf file, which contains just the one proxy
> > line pointing at apt-cacher-ng, with the result that
> > apt-listbugs was able to run without any problem.
> 
> I understand correctly: using apt-cacher-ng somehow breaks
> certificate validation for apt-listbugs?

Yes. Here's a summary. Note that I had DST_Root_CA_X3.crt as
trusted in /etc/ssl/ until after it expired, and its expiry
caused no problems with browsers, package downloads etc, but
only this symptom. Since then, I have removed it from
/etc/ca-certificates.conf using the ! mechanism, yet this
symptom persists as shown here:

——✄——

# update-ca-certificates --fresh
Clearing symlinks in /etc/ssl/certs...
done.
Updating certificates in /etc/ssl/certs...
125 added, 0 removed; done.
Running hooks in /etc/ca-certificates/update.d...

Replacing debian:ACCVRAIZ1.pem
[ … ]
Replacing debian:DigiCert_Trusted_Root_G4.pem
Replacing debian:D-TRUST_Root_Class_3_CA_2_2009.pem
[ … ]
Replacing debian:ISRG_Root_X1.pem
[ … ]
Replacing debian:emSign_Root_CA_-_G1.pem
done.
done.
# logout
$ cat /etc/apt/apt.conf 
#Acquire::http::Proxy "http://192.168.1.14:3142/";;
$ apt-listbugs list base-files
Retrieving bug reports... Done
Parsing Found/Fixed information... Done
$ cat /etc/apt/apt.conf 
Acquire::http::Proxy "http://192.168.1.14:3142/";;
$ apt-listbugs list base-files
Retrieving bug reports... 0% Fail
Error retrieving bug reports from the server with the following error message:
E: SSL_connect returned=1 errno=0 state=error: certificate verify failed 
(certificate has expired)
It could be because your network is down, or because of broken proxy servers, 
or the BTS server itself is down. Check network configuration and try again
Retry downloading bug information? [Y/n] n
Continue the installation anyway? [y/N] 
E: Exiting with error
$ cat /etc/debian_version 
10.10
$ 

——✄——

AFAICT ISRG_Root_X1.pem points to the ordinary ISRG_Root_X1,
not the cross-signed one, BTW.

So I thought I would investigate a little further by running
apt-listbugs under strace -f. Note that though the apt-cacher-ng
service is running on the same machine, that service is AIUI
not being traced and so is opaque.

99% of the traces (without/with proxy) look the same,
until you pass the three lstat references to
/usr/lib/ruby/vendor_ruby/http/cookie_jar/hash_store.rb
whereupon they diverge.

Without proxy: after 47 lines of faffing about, it reads
/etc/hosts, does some DNS, and appears to communicate
with the University of Oregon, which would seem reasonable.

With proxy: after 222 lines of, I assume, chatting to the
proxy, it opens /usr/lib/ruby/vendor_ruby/httpclient/cacert.pem
and this contains a list of actual certificates, amongst
which, wouldn't you know, is DST Root CA X3.

So the problem lies in ruby, specifically the package
ruby-httpclient, version 2.8.3-2. This might explain
why "random" applications fail while other ones don't.

I verified the above by editing out the DST Root CA X3
certificate from /usr/lib/ruby/vendor_ruby/httpclient/cacert.pem
and restarting apt-cacher-ng.service, whereupon:

——✄——

$ apt-listbugs list base-files
Retrieving bug reports... 0% Fail
Error retrieving bug reports from the server with the following error message:
E: SSL_connect returned=1 errno=0 state=error: certificate verify failed 
(unable to get local issuer certificate)
It could be because your network is down, or because of broken proxy servers, 
or the BTS server itself is down. Check network configuration and try again
Retry downloading bug information? [Y/n] n
Continue the installation anyway? [y/N] 
E: Exiting with error
$ 

——✄——

and the error changes from expired to missing as
cacert.pem does not include ISRG Root X1.

Cheers,
David.

Re: unhappy upgrade

[David Wright]

On Tue 05 Oct 2021 at 10:48:03 (-0400), Kenneth Parker wrote:
> On Tue, Oct 5, 2021, 9:04 AM David Wright  wrote:

> > Yes, apt-get was recommended for upgrading to stretch. Note however
> > that if you perform your next upgrades with apt, as recommended,
> > some of the command names (like dist-upgrade) will differ in apt.
> >
> 
> I thought "dist-upgrade" is used to upgrade packages that need a "version
> change" (like, sometimes the Kernel).  Is this recent (i.e. Stretch?)

Over-caution on my part, I think, though there's never any harm in
checking the Release Notes for the correct command, and the man page
for what that does. I had mentioned aptitude in a previous post here,
and that does have incompatible command names, and ISTR side effects
as well, such as cleaning the cache.

Cheers,
David.

Re: unhappy upgrade

[David Wright]

On Tue 05 Oct 2021 at 10:55:36 (-0400), Roy J. Tellason, Sr. wrote:
> On Tuesday 05 October 2021 09:04:03 am David Wright wrote:
> > > > So the main things to confirm as working are the specific points 
> > > > mentioned in the respective Release Notes. In stretch that would
> > > > be, for example, the 4.9 kernel is finding everything, 
> > > 
> > > About the only issue that I've noticed after this stuff all getting fixed 
> > > is that there's something up with the sound.  Given the details of what 
> > > advice I saw someone else getting,  I have a few things to look at.  The 
> > > virtualbox OS complained about it too.  :-)
> > 
> > I can't see the point unless you depend on, say, a screen reader to be
> > able to move forward at all. 
> 
> Youtube videos,  for one example?  I did get some sound going,  fired up kmix 
> and found that the one slider was turned all the way down for some reason.  
> That gets me sound in the main OS,  but there still appears to be some kind 
> of issue in virtualbox.  I'll work it out...
> 
> > After all, how long are you intending to run stretch for?
> 
> I'm not sure just yet,  after all of that I'm no exactly in a big hurry to 
> move forward.

Fair enough. I'm among those who feel that you could be tripling your
workload by configuring every application in each of the Debian
revisions. But at least you'll get better support each time.

> There's just one other issue I'm not sure of the best way to deal with it.  
> Some time back the monitor that I was using died,  and when I replaced it 
> with one of a similar size,  the new one had a higher resolution.  Which was 
> not a problem as long as the software was feeding it a lower resolution.  But 
> apparently somewhere in the upgrade process it decided to change this,  and 
> as a result a lot of stuff got *tiny*.  I was able to change font sizes in a 
> number of places,  and icon sizes in my taskbar,  but not in the one in 
> virtualbox,  and this old kmail that I'm running (by preference) is only 
> giving me the choice of changing it in some places.  The composter not being 
> one of them.  Unread msgs being another one.  My recollection of other 
> software was that you could,  say,  right-click on the desktop and get a 
> choice of changing your screen resolution to something else.  I'm not seeing 
> that here.  I'm sure that there's someplace to fiddle with that setting,  I 
> just haven't found it yet.

Yes, again, my own opinion would be to fix that once, in bullseye.
I don't use a DE, only a WM, but the impression I get from the list
is that how you make changes is itself always changing.

Cheers,
David.

Re: [SOLVED] Jessie wget: certificate not trusted

[Thomas Schmitt]

Hi,

i wrote:
> > The proposal of mett finally got wget to download lists.debian.org with
> > certificate check enabled.
> > [...]
> > Now i am puzzled why this operation is not necessary on Debian 10 from
> > where the file /etc/ca-certificates.conf was copied.
> > The entry is in /etc/ca-certificates.conf,
> > DST_Root_CA_X3.crt exists in /usr/share/ca-certificates,
> > the link DST_Root_CA_X3.pem exists in /etc/ssl/certs.
> > Nevertheless wget works on my Debian 10 with https://lists.debian.org.

met wrote:
> Maybe the default CA for Let's Encrypt
> are different on Debian 8 and Debian 9/10.

Meanwhile the users of the GNU savannah server got informed that such
problems are related to a bug in SSL software. One of the links given is:

  https://www.openssl.org/blog/blog/2021/09/13/LetsEncryptRootCertExpire/

Your proposal is there mentioned as
  "Workaround 1 (on clients with OpenSSL 1.0.2)"

So my three certificate problems each have a different solution:

- Debian 8 iceweasel (firefox) did not know the new certificate ISRG_Root_X1
  before i copied it from Debian (as of juli 2020). I had to "import"
  this certificate by the browser's GUI.
  Iceweasel does not suffer from the bug that lets the outdated
  DST_Root_CA_X3 spoil the certification handshake.

- Debian 10 wget as of juli 2020 had the ISRG_Root_X1 certificate but also
  the bug, which came out of its egg on september 30, 2021, 14:01:15 GMT.
  dist-upgrade to october 2021 obviously fixed the bug.
  Now the old DST_Root_CA_X3 still exists but does not spoil wget any more.

- Debian 8 wget has the bug and lacked the ISRG_Root_X1 certificate.
  So it needed that certificate file from Debian 10 in /etc/ssl/certs.
  Because of the bug it needed DST_Root_CA_X3 to be hidden.


mett wrote:
> > > -then, restart your servers.

i wrote:
> > Do SSL clients depend on a local service ?

mett wrote:
> SSL clients do not depend on a local service.
> I said restart your servers
> (thinking apache and php-fpm).
> Sorry for that.

Among all my confusions and all the red herrings in the web, this was the
least problem. I have to thank you for giving the decisive hint several
days before i found a plausible explantion.




I meanwhile learned that

  openssl s_client -CApath /etc/ssl/certs -showcerts \
   -connect lists.debian.org:443 < /dev/null

tells the certificates which are involved.

Now it says in the beginning of its output

  depth=2 C = US, O = Internet Security Research Group, CN = ISRG Root X1
  verify error:num=20:unable to get local issuer certificate

instead of previously when wget did not work:

  depth=3 O = Digital Signature Trust Co., CN = DST Root CA X3
  verify error:num=10:certificate has expired
  notAfter=Sep 30 14:01:15 2021 GMT

Googling "DST_Root_CA_X3" then gives good hints.
(Googling "unable to get local issuer certificate" gives new riddles.)


Have a nice day :)

Thomas

Re: excessive memory use by several gnome programs

[piorunz]

On 05/10/2021 16:24, L Dimov wrote:

My fans were going crazy after restart, as usual, so I finally looked at
the System Monitor to find that with no programs started by me,
gnome-contacts-search-provider was using the most, reaching up to 1.8
GB. All 8 CPUs were running on 99 to 100%. After several minutes it
dropped to nothing. Is that normal? The computer sounds like a jet
taking off.

At present, evolution-addressbok-factory is using 478 MB of memory,
consistently for several tens of minutes (and still the biggest user
among the processes. Looks like a lot to me - is that normal?

I am on a Dell Lattitude 5490 laptop, 16 GB memory, 1 TB SSD, intel core
i5 vPro 8t gen, 2-3 years old.
Thanks!
Luben


I don't think that's unusual for Gnome. As you said, CPU went up and
down again, so it's probably not a bug causing CPU to be pinned down
indefinitely in the loop. Gnome was doing something and it finished.

Consider using other desktop environments which respect your computer
resources.

--
With kindest regards, Piotr.

⢀⣴⠾⠻⢶⣦⠀
⣾⠁⢠⠒⠀⣿⡁ Debian - The universal operating system
⢿⡄⠘⠷⠚⠋⠀ https://www.debian.org
⠈⠳⣄

Re: No sound after bullseye install

[Daniel Haude]

On Tue, 5 Oct 2021 09:52:12 +0300
Andrei POPESCU  wrote:

> > Yeah, that was it. I hadn't installed ALSA at all. I wasn't aware
> > that pulseaudio sits on top of ALSA.  
> 
> Because PulseAudio "sits on top of" ALSA it also depends on it. Some 
> command-line tools for ALSA are not installed by default though (e.g. 
> the package alsa-tools).

Right. And I needed alsactl from alsa-tools to find out that my
speakers were muted.

Re: unhappy upgrade

[Roy J. Tellason, Sr.]

On Tuesday 05 October 2021 09:04:03 am David Wright wrote:
> > > So the main things to confirm as working are the specific points 
> > > mentioned in the respective Release Notes. In stretch that would
> > > be, for example, the 4.9 kernel is finding everything, 
> > 
> > About the only issue that I've noticed after this stuff all getting fixed 
> > is that there's something up with the sound.  Given the details of what 
> > advice I saw someone else getting,  I have a few things to look at.  The 
> > virtualbox OS complained about it too.  :-)
> 
> I can't see the point unless you depend on, say, a screen reader to be
> able to move forward at all. 

Youtube videos,  for one example?  I did get some sound going,  fired up kmix 
and found that the one slider was turned all the way down for some reason.  
That gets me sound in the main OS,  but there still appears to be some kind of 
issue in virtualbox.  I'll work it out...

> After all, how long are you intending to run stretch for?

I'm not sure just yet,  after all of that I'm no exactly in a big hurry to move 
forward.
 
> > > that X may be running as a user (rather than root) on the console it's 
> > > started from, 
> > 
> > I'm not sure I see the concern here.
> 
> An issue that caught some people out was finding the X server log,
> as it had to move out of /var/log/ (users don't have permission),
> and into a "hidden" directory, ~/.local/share/xorg/. Running
> root-owned applications is different, and you can get permissions
> problems with opening devices. Unusual though.

I just looked,  and that's not a problem here.
 
(snip)

> > So we'll see how it goes from here.  My upgrade path for this step went 
> > like this:
> > 
> > apt-get autoremove
> > edit the sources.list file replacing jessie with stretch
> > apt-get update
> > apt-get upgrade
> > apt-get dist-upgrade
> > 
> > And then reboot,  and see how well things work.  Or maybe reboot a couple 
> > of times...
> 
> Yes, apt-get was recommended for upgrading to stretch. Note however that if 
> you perform your next upgrades with apt, as recommended,
> some of the command names (like dist-upgrade) will differ in apt.
 
I guess I'll have to pay attention to the release notes on that stuff...

There's just one other issue I'm not sure of the best way to deal with it.  
Some time back the monitor that I was using died,  and when I replaced it with 
one of a similar size,  the new one had a higher resolution.  Which was not a 
problem as long as the software was feeding it a lower resolution.  But 
apparently somewhere in the upgrade process it decided to change this,  and as 
a result a lot of stuff got *tiny*.  I was able to change font sizes in a 
number of places,  and icon sizes in my taskbar,  but not in the one in 
virtualbox,  and this old kmail that I'm running (by preference) is only giving 
me the choice of changing it in some places.  The composter not being one of 
them.  Unread msgs being another one.  My recollection of other software was 
that you could,  say,  right-click on the desktop and get a choice of changing 
your screen resolution to something else.  I'm not seeing that here.  I'm sure 
that there's someplace to fiddle with that setting,  I just haven't found it 
yet.

-- 
Member of the toughest, meanest, deadliest, most unrelenting -- and
ablest -- form of life in this section of space,  a critter that can
be killed but can't be tamed.  --Robert A. Heinlein, "The Puppet Masters"
-
Information is more dangerous than cannon to a society ruled by lies. --James 
M Dakin

Re: unhappy upgrade

[Kenneth Parker]

On Tue, Oct 5, 2021, 9:04 AM David Wright  wrote:

> On Mon 04 Oct 2021 at 21:16:06 (-0400), Roy J. Tellason, Sr. wrote:
> > On Monday 04 October 2021 07:55:25 pm David Wright wrote:
>
> > > It would help people trying to follow what you are doing just to
> confirm at each stage which version you're now running.
> > > I /think/ you've got as far as stretch.
> >
> > Yes,  I wanted to get the issues that I was seeing resolved before I
> went ahead and proceeded with the rest of the upgrades.  At this point I've
> copied things from the laptop (which got very flaky on me) back to the
> workstation and I am doing my mail there,  like I used to.  The font is too
> damn small,  though.
> >
> > > So the main things to confirm as working are the specific points
> mentioned in the respective Release Notes. In stretch that would
> > > be, for example, the 4.9 kernel is finding everything,
> >
> > About the only issue that I've noticed after this stuff all getting
> fixed is that there's something up with the sound.  Given the details of
> what advice I saw someone else getting,  I have a few things to look at.
> The virtualbox OS complained about it too.  :-)
>
> I can't see the point unless you depend on, say, a screen reader to be
> able to move forward at all. After all, how long are you intending to
> run stretch for?
>
> > > that X may be running as a user (rather than root) on the console it's
> started from,
> >
> > I'm not sure I see the concern here.
>
> An issue that caught some people out was finding the X server log,
> as it had to move out of /var/log/ (users don't have permission),
> and into a "hidden" directory, ~/.local/share/xorg/. Running
> root-owned applications is different, and you can get permissions
> problems with opening devices. Unusual though.
>
> > > and that your ethernet or wireless connectivity is still good.
> (Changes were made to the kernel device naming.)
> >
> > Ethernet is working fine here,  as evidenced by the fact that I'm moving
> lots of data back and forth (32GB for this virtualbox stuff ferinstance)
> and that I'm doing my mail on this system now.  If there had been any
> issues with that I sure would've been jumping all over it,  as I tend to
> use networking rather heavily.  And there is no wireless on this machine.
> >
> > > Those are just a few I recall, but note they all relate to the OS
> rather than details in configuring third-party applications.
> > > Once that's done, time to read the next set of Release Notes. Note
> that even things like the best tool (apt-get or aptitude) to
> > > upgrade with may vary from release to release which, remember, are
> normally separated by a couple of years of tool development.
> >
> > I saw a couple of references that stated that aptitude had been
> recommeded earlier but that apt was now a better choice.
>
> Yes, I think apt is recommended for an interactive upgrade.
>
> > So we'll see how it goes from here.  My upgrade path for this step went
> like this:
> >
> > apt-get autoremove
> > edit the sources.list file replacing jessie with stretch
> > apt-get update
> > apt-get upgrade
> > apt-get dist-upgrade
> >
> > And then reboot,  and see how well things work.  Or maybe reboot a
> couple of times...
>
> Yes, apt-get was recommended for upgrading to stretch. Note however
> that if you perform your next upgrades with apt, as recommended,
> some of the command names (like dist-upgrade) will differ in apt.
>

I thought "dist-upgrade" is used to upgrade packages that need a "version
change" (like, sometimes the Kernel).  Is this recent (i.e. Stretch?)

Kenneth Parker

>

Re: LibreOffice slower after upgrade to Debian 11

[Reco]

Hi.

On Tue, Oct 05, 2021 at 02:13:10PM +, L Dimov wrote:
> LibreOffice Writer and Impress became unbearably slow when cropping or moving 
> images around on the page. Also Impress was super slow o page through when 
> the presentation contained a background image on all slides (but used to be 
> instant in Debian 10, on the same laptop). I read a post from a few years ago 
> that running:
> apt-get remove libreoffice-gtk3
> would speed things up, so I run it and it sure did take care of that issue. 
> But now the appearance of LibreOffice and the options that you get when you 
> save or open files and browse for them are changed, and not in a helpful way.

apt-get install libreoffice-qt5



Reco

Re: [SOLVED] Jessie wget: certificate not trusted, was: Jessie iceweasel: This Connection is Untrusted

[mett]

On 10/04/21 at 11:54, Thomas Schmitt wrote:
> Hi,
> 
> mett wrote:
> > the final solution is:
> > -disable the certs with an ! before the cert name
> > (vi /etc/ca-certificates.conf: !DST_Root_CA_X3.crt)
> > -then, rebuild the cert directory (update-ca-certificates --fresh)
> 
> Indeed this brought success with wget on the Debian 8 machine.
> 
>   $ wget https://lists.debian.org
>   ...
>   2021-10-04 11:48:12 (7.34 MB/s) - ‘index.html’ saved [7533/7533]
>   $
> 
> I copied
>   /usr/share/ca-certificates
>   /etc/ca-certificates.conf
>   /etc/ssl/certs
> from the Debian 10 machine (dist-upgraded last week) to the Debian 8.
> But with or without a run of
>   update-ca-certificates --fresh
> wget did not work.
> The proposal of mett finally got wget to download lists.debian.org with
> certificate check enabled.
> 
> 
> Now i am puzzled why this operation is not necessary on Debian 10 from
> where the file /etc/ca-certificates.conf was copied.
> The entry is in /etc/ca-certificates.conf,
> DST_Root_CA_X3.crt exists in /usr/share/ca-certificates,
> the link DST_Root_CA_X3.pem exists in /etc/ssl/certs.
> Nevertheless wget works on my Debian 10 with https://lists.debian.org.
Maybe the default CA for Let's Encrypt 
are different on Debian 8 and Debian 9/10.

> 
> > -then, restart your servers.
> 
> I am not aware of any servers on the Debian 8 machine which would have to
> do with certificates. I had not to restart anything after
>   update-ca-certificates --fresh
> wget worked immediately after.
> 
> Do SSL clients depend on a local service ?
SSL clients do not depend on a local service.
Just I had a similar problem with 
different parameters:
-a debian 8 server
-and php.
That is why I said restart your servers
(thinking apache and php-fpm).

Sorry for that.

> 
> 
> Have a nice day :)
> 
> Thomas
> 
Have a nice day too!

mic issues after upgrade to Debian 11

[L Dimov]

My mic used to work fine under Debian 9 and 10, but after upgrading to 11, 
people tell me that the audio coming out of my mic is really scratchy and bad 
to the point where if I do a video call, I'd have to use the phone for the 
audio part. Not sure where to even start with this... Is there an easy way (is 
it possible) to revert to the previous driver, somehow, the one that was there 
in Debian 10?
Thank you in advance for any suggestions.Luben

Re: slower Debian 11 after upgrade from 10

[L Dimov]

 

On Tuesday, October 5, 2021, 6:43:28 AM EDT, Andrew M.A. Cater 
 wrote:  
 
 
Hi Luben,

You hae no wifi firmware / video firmware / Ethernet firmware installed. 
You've said in other messages in the thread that you don't want to use
contrib or non-free firmware but I do not think you will succeed.

   Andy, I don't know if the output I sent is telling you that, but if it 
is, it is not true - my wifi video and ethernet have been working fine and 
still do. And I had the wifi card replace with one from thinkpenguin that 
supports free software. Tho our computer guy had to do some extra tweaking 
since the Dell (bios?) wasn't wanting it. 


Your Ethernet card may not actually need the Realtek driver but may work
slightly better if itt is available.

Debian puts firmware in non-free because very often we don't have source
code for it. Most often, we can distribute it but cannot modify it. For
one or two packages, the script extracts the firmware from another form.

The firmware is received form people like Intel or Realtek - it's packaged
by Debian developers but it's in non-free (which is separate from Debian)
because of the issues of maintenance. If it was fully free - it would be
in Debian main. 

In your case: I would add the contrib and non-free parts to the 
/etc/apt/sources.list as suggested.
    I do not want to do that - I started using Debian exclusively almost 2 
years ago to avoid proprietary OS and software, so I will do my best to 
continue with only free software. Until the inconvenience becomes 
insurmountable (at which point I might move to a typewriter or a papirus!)




  

Re: slower Debian 11 after upgrade from 10

[George Shuklin]

On 05/10/2021 06:10, L Dimov wrote:
I am having slower performance on Debian 11 with software only from 
the "main" repositories after upgrade from 10.
It is on a decently powerful Dell laptop with 16 GB memory, 1 TB SSD, 
7 processors Intel Core i5-8350U CPU @ 1.70GHz


How much is slowdown? If it's in the range of 10-15%, that's expected 
given the fixes for Spectre/Meltdown. There are knobs to turn them off 
(search for 'make linux fast again'), but they make you machine insecure.

Re: Authentication in CUPS (IPP) and sane (eSCL)?

[Brian]

On Mon 04 Oct 2021 at 15:48:14 -0600, Charles Curley wrote:

> I have just bought an HP LaserJet MFP M232-M237 - IPP Everywhere. It
> will let me require authentication for IPP clients. This would be a
> nice thing to have in a SOHO environment, and a requirement in any
> large institution.
> 
> I can set the printer easily enough. What I haven't been able to do is
> tell CUPS to authenticate itself. How do I do that?
> 
> Similarly for eSCL Authentication and sane?
> 
> Searching has been less than elucidating.

In which manual section, or on which page, is access control described?

-- 
Brian.

Re: Plasma config change?

[David Wright]

On Tue 05 Oct 2021 at 12:55:49 (+0200), Hans wrote:
> 
> somehow I missed something and was surprised today. 
> 
> Does anyone know, when plasma (kde) did change the position of its 
> configuration files from ~/.kde to ~/.config? And according to this, is 
> ~/.kde 
> still needed or can it be safely fully deleted?

That's the way things are moving. The modification dates on your files
would probably enable you to determine when your system changes over.

And I would move ~/.kde to, say, ~/keep-old.kde rather than deleting
it. You might want to consult it. (I assume you're not inconvenienced
by its size.)

Cheers,
David.

Re: unhappy upgrade

[David Wright]

On Mon 04 Oct 2021 at 21:16:06 (-0400), Roy J. Tellason, Sr. wrote:
> On Monday 04 October 2021 07:55:25 pm David Wright wrote:

> > It would help people trying to follow what you are doing just to confirm at 
> > each stage which version you're now running.
> > I /think/ you've got as far as stretch.
> 
> Yes,  I wanted to get the issues that I was seeing resolved before I went 
> ahead and proceeded with the rest of the upgrades.  At this point I've copied 
> things from the laptop (which got very flaky on me) back to the workstation 
> and I am doing my mail there,  like I used to.  The font is too damn small,  
> though.
>  
> > So the main things to confirm as working are the specific points mentioned 
> > in the respective Release Notes. In stretch that would
> > be, for example, the 4.9 kernel is finding everything, 
> 
> About the only issue that I've noticed after this stuff all getting fixed is 
> that there's something up with the sound.  Given the details of what advice I 
> saw someone else getting,  I have a few things to look at.  The virtualbox OS 
> complained about it too.  :-)

I can't see the point unless you depend on, say, a screen reader to be
able to move forward at all. After all, how long are you intending to
run stretch for?

> > that X may be running as a user (rather than root) on the console it's 
> > started from, 
> 
> I'm not sure I see the concern here.

An issue that caught some people out was finding the X server log,
as it had to move out of /var/log/ (users don't have permission),
and into a "hidden" directory, ~/.local/share/xorg/. Running
root-owned applications is different, and you can get permissions
problems with opening devices. Unusual though.

> > and that your ethernet or wireless connectivity is still good. (Changes 
> > were made to the kernel device naming.) 
> 
> Ethernet is working fine here,  as evidenced by the fact that I'm moving lots 
> of data back and forth (32GB for this virtualbox stuff ferinstance) and that 
> I'm doing my mail on this system now.  If there had been any issues with that 
> I sure would've been jumping all over it,  as I tend to use networking rather 
> heavily.  And there is no wireless on this machine.
>  
> > Those are just a few I recall, but note they all relate to the OS rather 
> > than details in configuring third-party applications.
> > Once that's done, time to read the next set of Release Notes. Note that 
> > even things like the best tool (apt-get or aptitude) to
> > upgrade with may vary from release to release which, remember, are normally 
> > separated by a couple of years of tool development.
>  
> I saw a couple of references that stated that aptitude had been recommeded 
> earlier but that apt was now a better choice.

Yes, I think apt is recommended for an interactive upgrade.

> So we'll see how it goes from here.  My upgrade path for this step went like 
> this:
> 
> apt-get autoremove
> edit the sources.list file replacing jessie with stretch
> apt-get update
> apt-get upgrade
> apt-get dist-upgrade
> 
> And then reboot,  and see how well things work.  Or maybe reboot a couple of 
> times...

Yes, apt-get was recommended for upgrading to stretch. Note however
that if you perform your next upgrades with apt, as recommended,
some of the command names (like dist-upgrade) will differ in apt.

> We'll see how it goes.

Good luck.

Cheers,
David.

Re: Debian 11 on Raspberry Pi3 Can't login

[David Wright]

On Tue 05 Oct 2021 at 08:43:22 (+0200), Jan-Erik Schröder wrote:
> 
> yesterday we installed Debian 11 on our raspberry pi3's as part of our
> Youth Programming Course and cannot login. Thank you in advance

username: user
password: live

Cheers,
David.

Re: slower Debian 11 after upgrade from 10

[Greg Wooledge]

On Tue, Oct 05, 2021 at 03:18:55PM +0300, Anssi Saari wrote:
> "Andrew M.A. Cater"  writes:
> 
> > In your case: I would add the contrib and non-free parts to the 
> > /etc/apt/sources.list as suggested.
> 
> But these firmware packages were in non-free also in Debian 10 so just
> upgrading to Debian 11 shouldn't have changed anything. Unless Luben
> changed his stance on non-free software when upgrading?

Things change.  The kernel changes.  Drivers change.

Sometimes an older kernel does better than a newer kernel, in the absence
of proper firmware.  Sometimes it doesn't.

Stop worrying about it.  Install the firmware.

Re: slower Debian 11 after upgrade from 10

[Anssi Saari]

"Andrew M.A. Cater"  writes:

> In your case: I would add the contrib and non-free parts to the 
> /etc/apt/sources.list as suggested.

But these firmware packages were in non-free also in Debian 10 so just
upgrading to Debian 11 shouldn't have changed anything. Unless Luben
changed his stance on non-free software when upgrading?

It would be interesting to know for sure. The official upgrade procedure
from Debian release notes advices the user to save a list of installed
packages before upgrading. That could provide some information on
whether these firmware packages were actually installed before the
upgrade or not?

Other than that, I think Luben might have to provide a little more
information about the issues he's having.

Plasma config change?

[Hans]

Hi folks,

somehow I missed something and was surprised today. 

Does anyone know, when plasma (kde) did change the position of its 
configuration files from ~/.kde to ~/.config? And according to this, is ~/.kde 
still needed or can it be safely fully deleted?

Thanks for reading and any answers.

Best

Hans 

Re: slower Debian 11 after upgrade from 10

[Andrew M.A. Cater]

On Tue, Oct 05, 2021 at 03:10:50AM +, L Dimov wrote:
> I am having slower performance on Debian 11 with software only from the 
> "main" repositories after upgrade from 10.It is on a decently powerful Dell 
> laptop with 16 GB memory, 1 TB SSD, 7 processors Intel Core i5-8350U CPU @ 
> 1.70GHz
> Based on the recommendation in this post 
> https://lists.debian.org/debian-user/2021/09/msg00549.html to run:dmesg | 
> grep -i firmware
> I get this output :
> 
> dmesg | grep -i firmware
> 
> So as far as I can tell, I need i915/kbl_dmc_ver1_04.bin, 
> ar3k/AthrBT_0x3101.dfu, rtl_nic/rtl8153a-3.fw, and rtl_nic/rtl8153a-3.fw. 
> Is that true? And if yes, how do go about getting them?
> Thank you for your help.Luben

Hi Luben,

You hae no wifi firmware / video firmware / Ethernet firmware installed. 
You've said in other messages in the thread that you don't want to use
contrib or non-free firmware but I do not think you will succeed.

Your Ethernet card may not actually need the Realtek driver but may work
slightly better if itt is available.

Debian puts firmware in non-free because very often we don't have source
code for it. Most often, we can distribute it but cannot modify it. For
one or two packages, the script extracts the firmware from another form.

The firmware is received form people like Intel or Realtek - it's packaged
by Debian developers but it's in non-free (which is separate from Debian)
because of the issues of maintenance. If it was fully free - it would be
in Debian main. 

In your case: I would add the contrib and non-free parts to the 
/etc/apt/sources.list as suggested.

Do an apt upgrade.

Install firmware-linux-nonfree firmware-misc-nonfree and that should sort
out the video. Firmware-realtek should sort out the Ethernet.

Hope this helps, with every good wish,

Andy Cater

Re: Debian 11 on Raspberry Pi3 Can't login

[tomas]

On Tue, Oct 05, 2021 at 08:43:22AM +0200, Jan-Erik Schröder wrote:
> Good Morning,
> 
> yesterday we installed Debian 11 on our raspberry pi3's as part of our
> Youth Programming Course and cannot login. Thank you in advance

Could you be a bit more specific on how you did that installation?

By default "Debian" has no default credentials for login, you specify
them yourself during the installation.

But there could well be ready-made "convenience" images which do have
those things pre-set for you. That's why I am asking.

Cheers
 - t


signature.asc
Description: Digital signature

Re: failed upgrade buster -> bullseye

[Andrei POPESCU]

On Lu, 04 oct 21, 16:36:49, D. R. Evans wrote:
> D. R. Evans wrote on 10/4/21 4:12 PM:
> > I just tried to upgrade my main desktop machine (this machine) from buster 
> > to
> > bullseye.
> > 
> 
> I am suspicious that the problem is related to having root on ZFS on this
> machine. So I have posted a request for help on the zfsonlinux reflector,
> and probably it would be best if no one here spent much (or any) time
> thinking about the problem unless/until I am satisfied that the issue is
> unrelated to ZFS.

Do you have linux-headers-5.10.0-8-amd64 installed?

It should be pulled automatically if you have linux-headers-amd64 
installed, but otherwise you must install it by hand. Without it 
dkms-zfs will fail to compile the necessary kernel modules.


Kind regards,
Andrei
-- 
http://wiki.debian.org/FAQsFromDebianUser


signature.asc
Description: PGP signature

Debian 11 on Raspberry Pi3 Can't login

[Jan-Erik Schröder]

Good Morning,

yesterday we installed Debian 11 on our raspberry pi3's as part of our
Youth Programming Course and cannot login. Thank you in advance

Greetings,
Schröder