Debian hangs on qemu at fb: "switching to bochsdrmfb from simple"
I have cloned a running debian system onto a qemu virtual machine for testing purposes. If I put a "vga=" statement on the kernel command line (eg. vga=795), it hangs during bootup. If I add the 'debug' statement, it hangs after the following: [ 29.125399] fb: switching to bochsdrmfb from simple I am using the following command to launch debian: qemu-system-x86_64 -enable-kvm -net nic,macaddr=xx:xx:xx:xx:xx:xx -net tap,ifname=tun0,script=no,downscript=no -m 1000 -usbdevice mouse -vnc 192.168.0.40:0 -monitor /dev/stderr $@ I can fix this by adding "vga=normal" to the command line, but I'd like to have more control over the screen resolution. Can somebody propose a fix?
Unable to access USB NTFS drive with jessie
I have just cloned an old installation of wheezy onto a Gigabyte Brix GB-BXBT-1900 PC and have upgraded it to Jessie (32-bit). I'm unable to access two different USB hard drives - in both cases I get: debian:/home/me# mount /dev/sdb1 /mnt/disk/ debian:/home/me# ls /mnt/disk ls: cannot access /mnt/disk: Input/output error The drive is a Seagate FreeAgent GoFlex 214 and the other one, which gives the same behaviour, is a WD Elements 1042. Capacity is 1.5G for each. Here is the relevant output of the mount command: fusectl on /sys/fs/fuse/connections type fusectl (rw,relatime) /dev/sdb1 on /mnt/disk type fuseblk (rw,relatime,user_id=0,group_id=0,allow_other,blksize=4096) ntfs-3g version is ntfs-3g i386 1:2014.2.15AR.2-1+deb8u2 [ FIXED ] After a bit of googling around I found that the wheezy version of ntfs-3g works. This is obviously not a very satisfactory solution. Do the devs intend to fix this bug? -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/mlm2dl$r9s$1...@ger.gmane.org
Re: Jessie failed installation woes
Installation was on second drive, and grub was installed to the MBR of that drive. Restart dropped me into grub rescue mode with the message about normal.mod not being found. After mounting the drive in Wheezy, I find that the directory that normal.mod is supposed to be in, is not there. There are only 2 files in /boot/grub - vastly different from the grub 1.99 of Wheezy! Try booting from a live CD/USB stick, entering your new installation in a chroot and running update-grub and grub-install /dev/your device. I had a lot of similar problems (see recent posts on this list) and ended up installing lilo instead of grub. The config is much simpler than grub2. I have found the upgrade to jessie a painful process - the main issues being the change to systemd, grub2 and config changes required in the new Apache. I've almost got everything running properly now. As an ex NZ South Islander - feel free to send me a message if you need any tips! I'm no guru. -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/mlinrm$erm$1...@ger.gmane.org
Re: No grub screen or boot after upgrade to jessie [FIXED]
I have managed to make my system bootable by installing LILO. Could somebody let me know if this is likely to be obsoleted any time? I haven't received any indication that it will be. Have you explored the new bios settings? If we can assume it is a real working update, you might have some options you didn't have before. Since you had to resort to Lilo, maybe during the initial install setup the bootable flag wasn't set?? Trouble shooting with a shotgun here. :) Ric There aren't a lot of things that can be changed in the bios and I've tried most of them. (Excuse ignorance) How do you display whether a partition is bootable? It used to be easy with cfdisk, but I can't find the option in gdisk or the newer fdisk. I had the same problem when I did a clean install of debian (using default settings). Presumably this would have automatically set up the partitions properly. Are there any objections to continuing to use LILO? - I realise that you need to remember to run it before upgrading the kernel, but apt-get seems to do that automatically. -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/mliecc$hs2$1...@ger.gmane.org
Re: No grub screen or boot after upgrade to jessie [FIXED]
I have had a functioning system on wheeze using grub2. I did an upgrade to Jessie according to the debian docs. Now when I boot my system I simply get a black screen after the POST screen - there's no GRUB screen or any hint of it. I had a similar problem with a laptop. I resolved it (finally) with a BIOS upgrade. Sadly this problem started AFTER I upgraded my BIOS. I have tried installing debian (AMD64) from scratch and am unable to boot from this either. I can't find any way to downgrade the BIOS and there is only one BIOS upgrade file on the Gigabyte website. I have managed to make my system bootable by installing LILO. Could somebody let me know if this is likely to be obsoleted any time? I haven't received any indication that it will be. -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/mlg7lm$jqi$1...@ger.gmane.org
No grub screen or boot after upgrade to jessie
Hi. I have had a functioning system on wheeze using grub2. I did an upgrade to Jessie according to the debian docs. Now when I boot my system I simply get a black screen after the POST screen - there's no GRUB screen or any hint of it. I've managed to boot my system with a live USB stick and have entered my system in a chroot. In the chroot I tried downgrading to grub-legacy and got the same result. I purged all of the config files from GRUB2 then reinstalled GRUB2 from scratch. I have repeatedly run update-grub/update-grub2, and grub-install /dev/sda Here is as much info as I can give: Hardware: Gigabyte Brix GB-BXBT-1900 with Samsung SSD 850 EVO 4G RAM. Debian - x86 debian:~# dpkg -l |grep grub ii grub-common 2.02~beta2-22 i386 GRand Unified Bootloader (common files) rc grub-legacy 0.97-70 i386 GRand Unified Bootloader (Legacy version) ii grub-pc 2.02~beta2-22 i386 GRand Unified Bootloader, version 2 (PC/BIOS version) ii grub-pc-bin 2.02~beta2-22 i386 GRand Unified Bootloader, version 2 (PC/BIOS binaries) ii grub22.02~beta2-22 i386 GRand Unified Bootloader, version 2 (dummy package) ii grub2-common 2.02~beta2-22 i386 GRand Unified Bootloader (common files for version 2) debian:~# update-grub2 Generating grub configuration file ... Found linux image: /boot/vmlinuz-3.16.0-4-686-pae Found initrd image: /boot/initrd.img-3.16.0-4-686-pae Found linux image: /boot/vmlinuz-3.2.0-4-686-pae Found initrd image: /boot/initrd.img-3.2.0-4-686-pae done debian:~# grub-install /dev/sda Installing for i386-pc platform. Installation finished. No error reported. My grub.cfg: https://www.dropbox.com/s/5xz5mrbagwcgpp5/grub.cfg?dl=0 debian:~# gdisk /dev/sda -l GPT fdisk (gdisk) version 0.8.10 Partition table scan: MBR: protective BSD: not present APM: not present GPT: present Found valid GPT with protective MBR; using GPT. Disk /dev/sda: 234441648 sectors, 111.8 GiB Logical sector size: 512 bytes Disk identifier (GUID): F387E81C-204F-43B0-ACA8-C169094F79B5 Partition table holds up to 128 entries First usable sector is 34, last usable sector is 234441614 Partitions will be aligned on 2048-sector boundaries Total free space is 126167917 sectors (60.2 GiB) Number Start (sector)End (sector) Size Code Name 12048 206847 100.0 MiB EF02 BIOS boot partition 2 20684841166847 19.5 GiB8300 root 34116684845361151 2.0 GiB 8300 Linux swap 44536115287304191 20.0 GiB8300 var 587304192 108275711 10.0 GiB8300 home I would be very grateful if someone could help here. -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/CACw2ZudHOY2Msp4fauzuhuzQesPJzdW=kzbigry4klevz80...@mail.gmail.com
Upgrade to Jessie - grub-legacy vs grub2; GPT partitions
Hi. We recently had a hard drive crash on our machine which has been running debian for many years and has been incrementally upgraded. We use it for a small business. I have not yet upgraded to debian 8.0. We plan to transfer our backup to a low-spec machine (Gigabyte Brix with 120G SSD) then do the upgrade. I note that the bootloader debian 7 has recently been upgraded to grub2. This seems to be considerably less transparent than grub-legacy. Also - should I use GPT for our new partitions? This seems to require a small partition at the beginning of the disk, but does not require extended partitions and is more flexible in terms of resizing partitions. My questions are - should I use grub-legacy (which seems to have all of our required features) or should I switch to grub2. Will grub-legacy eventually be phased out? Is GPT preferable to the old partition scheme? Thanks in advance. -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/cacw2zueou_szoshu3ufww0wxza_ykp4ed60vdwokg0i73_c...@mail.gmail.com
clamav-daemon broken after latest upgrade
I'm running a stock-standard installation of debian (7.7). I do regular security updates. Now when I try to run clamav-milter I get hundreds of these in my log: Nov 30 08:55:25 debian clamav-milter[2561]: No clamd server appears to be available Nov 30 08:55:37 debian clamav-milter[2561]: Failed to initiate streaming/fdpassing Nov 30 08:55:37 debian clamav-milter[2561]: connect failed: No such file or directory Nov 30 08:55:37 debian clamav-milter[2561]: Probe for slot 1 returned: failed the clamav-daemon won't start, and when I try to reconfigure it I get # dpkg-reconfigure clamav-daemon /usr/sbin/dpkg-reconfigure: clamav-daemon is broken or not fully installed # apt-get upgrade gives me The following packages have been kept back: clamav clamav-freshclam clamav-milter libclamav6 0 upgraded, 0 newly installed, 0 to remove and 4 not upgraded. How can I resolve this? I've tried most of the usual tricks. Is it possible to downgrade something?? -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/m5dfka$avn$1...@ger.gmane.org
CIFS mount intermittently unavailable: cifs_mount failed w/return code = -5
I have a debian machine called debian and a windows XP machine called server. I have a permanent mounted read-only share called \\server\doc. My /etc/fstab looks like this: //server/doc/opt/chroot/mnt/server cifs credentials=/root/.smbmount,username=medical,uid=medical,file_mode=0755,dir_mode=0755,noserverino 0 0 This works well most of the time but at times I get a input/output error when I try to access this share. My syslog shows the following: Aug 16 15:36:35 debian kernel: [1289131.676869] Status code returned 0xc0d0 NT_STATUS_REQUEST_NOT_ACCEPTED Aug 16 15:36:35 debian kernel: [1289131.676875] CIFS VFS: Send error in SessSetup = -5 Aug 16 15:36:35 debian kernel: [1289131.676899] CIFS VFS: cifs_mount failed w/return code = -5 Aug 16 15:36:46 debian kernel: [1289142.653770] Status code returned 0xc0d0 NT_STATUS_REQUEST_NOT_ACCEPTED Aug 16 15:36:46 debian kernel: [1289142.653775] CIFS VFS: Send error in SessSetup = -5 Aug 16 15:36:46 debian kernel: [1289142.653799] CIFS VFS: cifs_mount failed w/return code = -5 Aug 16 15:37:01 debian kernel: [1289158.491697] Status code returned 0xc0d0 NT_STATUS_REQUEST_NOT_ACCEPTED Aug 16 15:37:01 debian kernel: [1289158.491703] CIFS VFS: Send error in SessSetup = -5 Aug 16 15:37:01 debian kernel: [1289158.491727] CIFS VFS: cifs_mount failed w/return code = -5 Does anyone have any suggestions? I have tried replacing server with its fixed IP address (192.168.0.32), but this does not help. I have even moved all the files to another location on the Windows box and recreated the share, but it still occurs. -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/cacw2zud1qrg-6s4x2zgdayfs2hik0ujzjicfm-udgix6wsr...@mail.gmail.com
Fixing corrupt mysql table
I recently rebooted my server and mysql didn't start - it reported password problems. I have reset the root password but there are other errors: # /etc/init.d/mysql start Starting MySQL database server: mysqld. Checking for corrupt, not cleanly closed and upgrade needing tables.. ERROR 1045 (28000): Access denied for user 'debian-sys-maint'@'localhost' (using password: YES) When I get into phpmyadmin and go to the Privileges tab I get the following: SQL query: (SELECT `User`, `Host`, `Select_priv`, `Insert_priv`, `Update_priv`, `Delete_priv`, `Create_priv`, `Drop_priv`, `Grant_priv`, `Index_priv`, `Alter_priv`, `References_priv`, `Create_tmp_table_priv`, `Lock_tables_priv`, `Create_view_priv`, `Show_view_priv`, `Create_routine_priv`, `Alter_routine_priv`, `Execute_priv`, `Event_priv`, `Trigger_priv`, `Db` FROM `mysql`.`db` WHERE 'contacts' LIKE `Db` AND NOT (`Select_priv` = 'N' AND `Insert_priv` = 'N' AND `Update_priv` = 'N' AND `Delete_priv` = 'N' AND `Create_priv` = 'N' AND `Drop_priv` = 'N' AND `Grant_priv` = 'N' AND `References_priv` = 'N' AND `Create_tmp_table_priv` = 'N' AND `Lock_tables_priv` = 'N' AND `Create_view_priv` = 'N' AND `Show_view_priv` = 'N' AND `Create_routine_priv` = 'N' AND `Alter_routine_priv` = 'N' AND `Execute_priv` = 'N' AND `Event_priv` = 'N' AND `Trigger_priv` = 'N')) UNION (SELECT `User`, `Host`, `Select_priv`, `Insert_priv`, `Update_priv`, `Delete_priv`, `Create_priv`, `Drop_priv`, `Grant_priv`, `Index_priv`, `A[...] MySQL said: #1054 - Unknown column 'Event_priv' in 'field list' I have run myisamchk and myisamchk -r on all of the databases. Will it be necessary to rebuild everything from scratch? I've got a lot of it running temporarily by using the root user and password in a few scripts but how can I restore the system? -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/jaudfa$d94$1...@dough.gmane.org
Re: Fixing corrupt mysql table
Thanks. After backing up the entire system here's what I get when I try to reconfigure mysql: # dpkg-reconfigure mysql-server-5.1 Stopping MySQL database server: mysqld. Stopping MySQL database server: mysqld. 28 12:43:41 [Note] Plugin 'FEDERATED' is disabled. 28 12:43:41 InnoDB: Started; log sequence number 0 26422218 28 12:43:41 InnoDB: Starting shutdown... 28 12:43:46 InnoDB: Shutdown completed; log sequence number 0 26422218 Starting MySQL database server: mysqld. Checking for corrupt, not cleanly closed and upgrade needing tables.. ERROR 1045 (28000): Access denied for user 'debian-sys-maint'@'localhost' (using password: YES) I'm also not able to shut down the mysql daemon: # /etc/init.d/mysql stop Stopping MySQL database server: mysqld failed! I am able to shut it down manually: # kill `cat /var/run/mysqld/mysqld.pid` I assume that I need to have the debian-sys-maint user set up to shut down the system. Any other suggestions here? -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/jaur37$odv$1...@dough.gmane.org
Re: Fixing corrupt mysql table
As Bob mentioned, this is most likely because you deleted the debian-sys-maint user. Set up the user e.g. with: GRANT ALL PRIVILEGES ON *.* TO 'debian-sys-maint'@'localhost' IDENTIFIED BY 'xx'; and make sure that the password mentioned in /etc/mysql/debian.cnf is valid. Unfortunately this has caused problems: mysql GRANT ALL PRIVILEGES ON *.* TO 'debian-sys-maint'@'localhost' IDENTIFIED BY ''; Query OK, 0 rows affected (0.00 sec) mysql quit Bye # kill `cat /var/run/mysqld/mysqld.pid` # /etc/init.d/mysql start Starting MySQL database server: mysqld. Checking for corrupt, not cleanly closed and upgrade needing tables.. ERROR 1577 (HY000) at line 1: Cannot proceed because system tables used by Event Scheduler were found damaged at server start ERROR 1547 (HY000) at line 1: Column count of mysql.proc is wrong. Expected 20, found 16. The table is probably corrupted Any idea where to go next? It should be relatively easy to redo the user/password etc if I can get things running again. -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/jauuha$am3$1...@dough.gmane.org
Re: /USR/SBIN/CRON[20837]: (CRON) error (grandchild #20839 failed with exit status 1)
?Many thanks. I managed to locate the offending script (output sent to grep and returned 1 if no match found). Volkan YAZICI wrote in message news:87k4gtv3wb@alamut.ozu.edu.tr... Hi, You might try 1) increasing the logging verbosity of cron via uncommenting EXTRA_OPTS=-L 2 line in /etc/default/cron, and 2) taking a look at /var/spool/cron directory contents. Best. On Mon, 21 Feb 2011 13:15:49 +1100, Robert S writes: I'm getting these in my syslog: Feb 21 06:05:01 debian /USR/SBIN/CRON[17713]: (CRON) error (grandchild #17716 failed with exit status 1) Feb 21 07:05:01 debian /USR/SBIN/CRON[17855]: (CRON) error (grandchild #17858 failed with exit status 1) Feb 21 08:05:01 debian /USR/SBIN/CRON[18084]: (CRON) error (grandchild #18087 failed with exit status 1) Feb 21 09:05:01 debian /USR/SBIN/CRON[18501]: (CRON) error (grandchild #18503 failed with exit status 1) Feb 21 10:05:01 debian /USR/SBIN/CRON[20837]: (CRON) error (grandchild #20839 failed with exit status 1) AFAICS I don't have any cron jobs running at 1 minute past the hour - in /etc/crontab, /etc/cron.d/* or /etc/cron.hourly. I tried clearing out all hourly scripts but I still get this message. What is happening here? -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/ik048g$rge$1...@dough.gmane.org
/USR/SBIN/CRON[20837]: (CRON) error (grandchild #20839 failed with exit status 1)
I'm getting these in my syslog: Feb 21 06:05:01 debian /USR/SBIN/CRON[17713]: (CRON) error (grandchild #17716 failed with exit status 1) Feb 21 07:05:01 debian /USR/SBIN/CRON[17855]: (CRON) error (grandchild #17858 failed with exit status 1) Feb 21 08:05:01 debian /USR/SBIN/CRON[18084]: (CRON) error (grandchild #18087 failed with exit status 1) Feb 21 09:05:01 debian /USR/SBIN/CRON[18501]: (CRON) error (grandchild #18503 failed with exit status 1) Feb 21 10:05:01 debian /USR/SBIN/CRON[20837]: (CRON) error (grandchild #20839 failed with exit status 1) AFAICS I don't have any cron jobs running at 1 minute past the hour - in /etc/crontab, /etc/cron.d/* or /etc/cron.hourly. I tried clearing out all hourly scripts but I still get this message. What is happening here? -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/AANLkTi=+oU1H9VupmMGV0N+VSi6EzC46jZC=uo0br...@mail.gmail.com
Re: How do I back up a running system?
I have debian running on a headless system. I'd like to back the entire system up. Its difficult with a bootable disk without a monitor (so Clonezilla etc are out). I've tried mondoarchive but it usually bails out before it completes the backup. And what does mondoarchive.log say? Calling MINDI to create boot+data disks Your boot loader is GRUB and it boots from /dev/sda /var/tmp/mondo-temp/tmp.mondo.9418/tmp.mondo.8981 The log gets this far then nothing happens: # tail /var/log/mondo-archive.log You are using Mindi-Linux v2.2.0-r881 to make boot+data disks Analyzing dependency requirements Done. Making complete dependency list 100% |cp: cannot stat `/usr/games/petris': No such file or directory Cannot find /usr/games/petris. You will not be able to play petris during restore. Done. Analyzing your keyboard's configuration. Adding the following keyboard mapping tables: Done. Dropping i686-optimized libraries if appropriate. I am running mondoarchive with the following options: mondoarchive -OiF -k /boot/vmlinuz-2.6.26-2-686 -d /var/tmp/mondoarchive -S /var/tmp/mondo-scratch -T /var/tmp/mondo-temp -E /home /mnt /root/packages /var/cache/apt/archives I don't know what version that is: I run Mindi v2.0.7.2-r2575 and Mondo Archive v2.2.9.3-r2622. If I were in your situation I would download the latest from upstream: http://mondorescue.muskokamug.org/debian/5.0/ because Debian is backleveled, do it again, and then save my mondoarchive + mindi logs in their entirety and post the error and the logs on the mondo forum where the response is excellent: mondo-de...@lists.sourceforge.net and also post what you posted here: your calling parameters, and see what Bruno Cornec says, he is the lead developer and on top of things. The latest version seems to work from the upstream site. I did a restore on a vmware virtual machine and it died during bootup. I didn't have any problems using an older version of vmware. I managed to back my system up successfully using a combination of backupninja and genisoimage. A much cruder but more straightforward approach. -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/hvnhbe$r6...@dough.gmane.org
How do I back up a running system?
I have debian running on a headless system. I'd like to back the entire system up. Its difficult with a bootable disk without a monitor (so Clonezilla etc are out). I've tried mondoarchive but it usually bails out before it completes the backup. Are there any suggestions? A simple script would be nice. -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/hvfpmg$m5...@dough.gmane.org
Re: How do I back up a running system?
I have debian running on a headless system. I'd like to back the entire system up. Its difficult with a bootable disk without a monitor (so Clonezilla etc are out). I've tried mondoarchive but it usually bails out before it completes the backup. And what does mondoarchive.log say? mondoarchive gets up to here then nothing happens (for several hours): ---evalcall---E--- ---evalcall---1--- Dividing filelist into sets ---evalcall---2--- TASK: [] 97% done; 0:01 to go ---evalcall---E--- ---evalcall---1--- Dividing filelist into sets ---evalcall---2--- TASK: [] 98% done; 0:01 to go ---evalcall---E--- Your backup will occupy one mellion media! (maybe 10) Done. Copying Mondo's core files to the scratch directory Done. Calling MINDI to create boot+data disks Your boot loader is GRUB and it boots from /dev/sda /var/tmp/mondo-temp/tmp.mondo.9418/tmp.mondo.8981 The log gets this far then nothing happens: # tail /var/log/mondo-archive.log You are using Mindi-Linux v2.2.0-r881 to make boot+data disks Analyzing dependency requirements Done. Making complete dependency list 100%|cp: cannot stat `/usr/games/petris': No such file or directory Cannot find /usr/games/petris. You will not be able to play petris during restore. Done. Analyzing your keyboard's configuration. Adding the following keyboard mapping tables: Done. Dropping i686-optimized libraries if appropriate. I am running mondoarchive with the following options: mondoarchive -OiF -k /boot/vmlinuz-2.6.26-2-686 -d /var/tmp/mondoarchive -S /var/tmp/mondo-scratch -T /var/tmp/mondo-temp -E /home /mnt /root/packages /var/cache/apt/archives I get the same result when I run it without the -k option -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/hvhjcc$ju...@dough.gmane.org
Re: WARNING: invoke-rc.d called during shutdown sequence
I get the above error message whenever I use invoke-rc.d. This isn't a major problem except that I get annoying messages every night when logrotate restarts services. Is there a fix for this? # invoke-rc.d samba restart invoke-rc.d: invoke-rc.d: WARNING: invoke-rc.d called during shutdown sequence invoke-rc.d: enabling safe mode: initscript policy layer disabled invoke-rc.d: So I suppose the first question is, what's the output of /sbin/runlevel on your system? I've fixed this problem by rebooting my system. Before I did this I ran /sbin/runlevel and the output was 2 6 It looks to me as if the command RL=`${RUNLEVEL} | sed 's/.*\ //'` returns the PREVIOUS runlevel - not the current one. For example: runlevel | sed 's/.*\ //' returns 2, whereas /sbin/runlevel returns N 2 The runlevel command returns the previous runlevel (the N) and the current (2). Previous to rebooting your system, the command believed your previous runlevel to be 2 and your current to be 6. The script will give the warning it gave if the current runlevel is either 0 (halt) or 6 (reboot). You can see what the command was returning simply by running this: cb...@circe:~$ echo 2 6 | sed 's/.*\ //' 6 cb...@circe:~$ Note that '6' is what's being returned and thus the warning. The question is how did your system get into a state of being in runlevel 6 without actually rebooting. Did anything odd happen before you started seeing this issue? Did you perhaps start a reboot with the shutdown command and the abort it before it completed? Aha. I thought the second figure from /sbin/runlevel was the previous runlevel (mainly because it was 6!). I don't know how I ended up in runlevel 6 but a reboot (x2) has fixed it. Thanks.
Re: WARNING: invoke-rc.d called during shutdown sequence
I get the above error message whenever I use invoke-rc.d. This isn't a major problem except that I get annoying messages every night when logrotate restarts services. Is there a fix for this? # invoke-rc.d samba restart invoke-rc.d: invoke-rc.d: WARNING: invoke-rc.d called during shutdown sequence invoke-rc.d: enabling safe mode: initscript policy layer disabled invoke-rc.d: So I suppose the first question is, what's the output of /sbin/runlevel on your system? I've fixed this problem by rebooting my system. Before I did this I ran /sbin/runlevel and the output was 2 6 It looks to me as if the command RL=`${RUNLEVEL} | sed 's/.*\ //'` returns the PREVIOUS runlevel - not the current one. For example: runlevel | sed 's/.*\ //' returns 2, whereas /sbin/runlevel returns N 2 Is this the right behaviour?
WARNING: invoke-rc.d called during shutdown sequence
I get the above error message whenever I use invoke-rc.d. This isn't a major problem except that I get annoying messages every night when logrotate restarts services. Is there a fix for this? # invoke-rc.d samba restart invoke-rc.d: invoke-rc.d: WARNING: invoke-rc.d called during shutdown sequence invoke-rc.d: enabling safe mode: initscript policy layer disabled invoke-rc.d:
Domain of sender address does not resolve in mail logs
I have started getting a lot of these messages over the last few days in my mail logs. These messages refer to legitimate addresses eg: Mar 17 08:59:10 debian sm-mta[29154]: n2GLwjk7029154: ruleset=check_mail, arg1=xxx...@act.gov.au, relay=dmz017.dpa.act.gov.au [136.153.14.117], reject=451 4.1.8 Domain of sender address x...@act.gov.au does not resolve Mar 17 09:16:50 debian sm-mta[29224]: n2GMGPd8029224: ruleset=check_mail, arg1=x...@gsahs.health.nsw.gov.au, relay=mail.gsahs.health.nsw.gov.au [202.59.31.130], reject=451 4.1.8 Domain of sender address x...@gsahs.health.nsw.gov.au does not resolve Mar 17 13:57:14 debian sm-mta[30575]: n2H2ullN030575: ruleset=check_mail, arg1=n...@tigerairwaysnews.com, relay=mail.tigerairwaysnews.com [202.172.235.34], reject=451 4.1.8 Domain of sender address n...@tigerairwaysnews.com does not resolve It appears that at least some of the messages are actually getting through - there have been no complaints from the staff (maybe they just don't know whether the messages should have been sent!) and I sent a test email from one of these domains which got through - despite an error message in the log with my username from that domain. I use a Netgear DG834 router which is set to get DNS settings automatically from my ISP. I'm running Lenny (recently upgraded from Etch), Sendmail-8.14.3-5 my /etc/resolv.conf domain XXX.net.au nameserver 192.168.0.1 192.168.0.1 is my router address NB: anything with XX is fictitious. -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Aptitude tries to replace backport kernel with older version
I have replaced the stock etch kernel with 2.6.26-bpo.1-686 by adding backports to my sources.list and the following to /etc/apt/preferences: Package: linux-image-2.6-486 Pin relase a=etch-backports Pin-Priority: 999 If I run aptitude and press G I get prompted to downgrade my kernel to version linux-image-2.6.18-4-686. Obviously I don't want this to happen. I wish to resolve this before upgrading to Lenny. What is the correct way of doing this? TIA.
Problems with slim
I wish to set up a minimal installation of Lenny for a netbook using slim as the display manager and lxde or xfce as the desktop. It works fine except when I try to power off using the power off button from lxde or xfce, the shut down and power off buttons are greyed out. I can power off by logging off and typing typing halt into the slim username field and my root password into the password prompt - but who wants to do this 10 times a day? I have the same problem when I use xdm as the display manager, but not with gdm. Maybe examining the code of xfce4-session-logout or the equivalent lxde applet would shed some light on this - but I doubt that I have the wit to do this. Slim is also very slow to start up (despite its name). When I try to shut down the slim daemon I get: slim not responding to TERM signals - and the daemon continues to run until I do a kill -KILL command. There aren't any error messages in /var/log/slim.log that indicate a problem except for the following: (WW) VESA(0): Failed to set up write-combining range (0xe000,0xe000). I get this problem on my ancient Gateway 2150 laptop and on a virtual machine under Virtualbox - so I doubt that its a hardware issue. Can anybody help here?
Can't delete file on mounted CIFS share
I have a script that deletes old backups on a mounted CIFS share: find /mnt/backup/* -mtime +30 -type f -exec rm {} \; The share is mounted thus in my /etc/fstab: //server/Debian /mnt/backup cifs credentials=/root/.smbmount,username=,uid=,file_mode=0755,dir_mode=0755 0 0 When I run this script, or when I try to delete a file on the mounted share I get the following: # rm /mnt/backup/backup-15-Oct-2008-02-50-16.tar.gz rm: remove regular file `/mnt/backup/backup-15-Oct-2008-02-50-16.tar.gz'? y rm: cannot remove `/mnt/backup/backup-15-Oct-2008-02-50-16.tar.gz': Resource temporarily unavailable and I get the following in my syslog: Nov 22 08:26:46 debian kernel: [1355018.838629] CIFS VFS: No response for cmd 6 mid 26018 Nov 22 08:27:16 debian kernel: [1355051.907649] CIFS VFS: server not responding Nov 22 08:27:16 debian kernel: [1355051.907649] CIFS VFS: No response to cmd 115 mid 26021 Nov 22 08:27:16 debian kernel: [1355051.907649] CIFS VFS: Send error in SessSetup = -11 Can somebody enlighten me here? -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
CIFS mount errors
I have several mounted CIFS shares to a Win XP Pro server. This usually functions well for a few days/hours then I get input/output errors. When I unmount them and try to reconnect I get: # mount -a -t cifs mount error 5 = Input/output error Refer to the mount.cifs(8) manual page (e.g.man mount.cifs) mount error 5 = Input/output error Refer to the mount.cifs(8) manual page (e.g.man mount.cifs) I get this in my syslog Aug 7 11:39:38 debian kernel: CIFS VFS: Send error in SessSetup = -5 Aug 7 11:39:38 debian kernel: CIFS VFS: cifs_mount failed w/return code = -5 Aug 7 11:39:38 debian kernel: CIFS VFS: Send error in SessSetup = -5 Aug 7 11:39:39 debian kernel: CIFS VFS: cifs_mount failed w/return code = -5 I hope somebody can help with this - its a very frustrating problem. I haven't found a fix anywhere on the net. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Debian on ARTiGO?
I am considering purchasing an ARTiGO Pico-ITX builder kit to run Etch for a small office mail/webserver. The VIA website suggests that the hardware is not fully supported by the standard Linux kernel. Has anyone had experience with Etch on this machine? Will it run with the standard kernel, will require a backported kernel or will patching be required? -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
How do I get rid of /var/lib/mysql/debian-relay-bin.###### files?
I'm running a very simple mysql setup on Etch with no replication. My /var/log/mysql directory has become full of debian-relay-bin.## files. How can I get rid of these and stop them from filling up my hd? Here's my current config (which hasn't made any difference) NB I haven't changed the contents of /etc/mysql/my.cnf: # cat /etc/mysql/conf.d/CUSTOM.cnf [mysqld] expire_logs_days = 2 relay_log = 'debian-relay-bin' max-relay-log-size = 10M relay-log-space-limit = 30M I've tried the following with no success: # mysqladmin flush-logs mysql PURGE MASTER LOGS BEFORE NOW(); -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Samba writes wrong file permissions
I have the following in my smb.conf: [public] path = /home/apache/files force user = www-data force group = www-data read only = No create mask = 0640 force directory mode = 755 guest ok = Yes ls /home/apache/files/Dictation// -l total 736 -rw-r- 1 www-data www-data 318976 Jun 4 11:56 DS400039.DSS -rw-r- 1 www-data www-data 427520 Jun 4 13:32 DS400040.DSS -rwxrwxrwx 1 www-data www-data501 Jun 4 13:32 VoiceFolder.xml I do not want to have world-writeable files. How do I fix this? -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: Samba writes wrong file permissions
I have the following in my smb.conf: [public] path = /home/apache/files force user = www-data force group = www-data read only = No create mask = 0640 force directory mode = 755 guest ok = Yes ls /home/apache/files/Dictation// -l total 736 -rw-r- 1 www-data www-data 318976 Jun 4 11:56 DS400039.DSS -rw-r- 1 www-data www-data 427520 Jun 4 13:32 DS400040.DSS -rwxrwxrwx 1 www-data www-data501 Jun 4 13:32 VoiceFolder.xml Take a look at testparm -sv | grep map. Thanks. I'm not familiar with map hidden. What does it mean? Here it is: [EMAIL PROTECTED]:~$ testparm -sv | grep map Load smb config files from /etc/samba/smb.conf Processing section [homes] Processing section [printers] Processing section [public] Processing section [windows] Unknown parameter encountered: read-only Ignoring unknown parameter read-only Loaded services file OK. Server role: ROLE_STANDALONE map to guest = Never username map = use mmap = Yes os2 driver map = username map script = ldap idmap suffix = homedir map = auto.home afs username map = idmap backend = idmap uid = idmap gid = acl map full control = Yes map acl inherit = No map archive = Yes map hidden = No map system = No map readonly = yes mangled map = dmapi support = No -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: Samba writes wrong file permissions
Take a look at testparm -sv | grep map. Thanks. I'm not familiar with map hidden. What does it mean? Here it is: I don't see the answer there. Can you post your whole smb.conf, and your samba version? I think we might be on the wrong track here. I think that the Windows client changes the file to world read/write/execute for all users and groups, and this creates these permissions on the file on my debian machine. Is there any way that Samba can prevent these permissions from being created? - I'd like to avoid world-writeable files on my system. I think that map hidden refers to hidden files created on DOS/Windows machines. FYI here is my smb.conf: [global] panic action = /usr/share/samba/panic-action %d workgroup = ONCOLOGY server string = %h server (Samba %v) encrypt passwords = true passdb backend = tdbsam obey pam restrictions = Yes passwd program = /usr/bin/passwd %u passwd chat = *Enter\snew\sUNIX\spassword:* %n\n *Retype\snew\sUNIX\spassword:* %n\n . syslog = 0 log file = /var/log/samba/log.%m max log size = 1000 socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192 dns proxy = No invalid users = root printing = cups printcap name = cups time server = yes dos filetimes = yes fake directory create times = yes dos filetime resolution = yes delete readonly = yes # Added today: map hidden = Yes [homes] comment = Home Directories path = /home/%S/.doc read only = No create mask = 0700 directory mask = 0700 browseable = No [printers] comment = All Printers path = /tmp printable = Yes browseable = Yes [public] path = /home/apache/files force user = www-data force group = www-data read only = No create mask = 0641 force directory mode = 755 guest ok = Yes -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: way of getting flashplayer9 to work in amd64 etch....
I have just got flashplayer9 working on Iceweasel in amd64 etch. I did the following stuff recommended by some helpful guys at http://www.dipconsultants.com: Funny you should post this - I just got this working about an hour ago after a lot of unsuccessful attempts. I put the plugin into /opt/flashplugin and did: nspluginwrapper -i /opt/flashplugin/libflashplayer.so It saves the copy step. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
AIDE reports files as changed
I run AIDE as a cron job every night. Following this I run aideinit immediately afterwards. Recently a few files have been shown to be changed eg: Output of the daily AIDE run (40 lines): decode_base64: Illegal character: $ AIDE found differences between database and filesystem!! Start timestamp: 2007-08-10 02:25:06 Summary: Total number of files: 53673 Added files: 0 Removed files: 0 Changed files: 3 --- Changed files: --- changed: /usr/share/consolefonts/lat4a-12.psf.gz changed: /usr/lib/libX11.so.6.2.0 changed: /usr/include/linux/netfilter_ipv4/ipt_CONNMARK.h -- Detailed information about changes: --- File: /usr/share/consolefonts/lat4a-12.psf.gz MD5 : /p/oVigAdBjBoZa9yIO/Fg== , iC7gCtiCl4yVKGf/S1A3Ug== SHA1 : kmkGQxwAZG4B0zCZJA/jka+Fzho= , uDmmdRBLXFLYX9jKU0OJL9yARZE= RMD160 : UNFzmstcv3ZuMr9Xq3pY8lQMP+I= , 7tG3/Ekz/e+GJW+fnD8vAWgql5s= TIGER: OsCs3Do0/sLVplB02C75M8pys3rR7cLg , 0aWYAnGa89UfdimYio09fw0T+EEDheId CRC32: AFRX8A== , IDEFJA== HAVAL: dzU0B0GdL++56RG9KoI8WCLmQW03yl3N , amtXSn63yWMdIxgDPAPmrIzEc7tZrm23 GOST : zwQ2tUzkFTpqNacd6uF6mHOqUfLUydZy , /q7tZ/y2zIlOd/APiTV5GDR8gX+ldnif WHIRLPOOL: +haTjLS201qdypaIwp4Kn9b3eojAS9c0 , Iw1MgbD9ZfLAUEsf2+r9lHDVf8hpxyCQ File: /usr/lib/libX11.so.6.2.0 GOST : 1Yjkol47W/0EsdSmgfNhU6DttUiuYcBA , jiIOacTb7tFjPj1I2grjGkCCRmEghQV+ WHIRLPOOL: 1yH1LtLZ+Zp0yphEjjM+6THEr6nrDWgx , 6CDM6ItZaQbZb9OdXWbd3G88kpKWMCtx File: /usr/include/linux/netfilter_ipv4/ipt_CONNMARK.h MD5 : NONE , AT0P6OdbpDd+BQyNFsNgIg== End of AIDE output. The check was done against /var/lib/aide/aide.db with the following characteristics: Size : 18068976 Bcount : 35330 Mtime: 2007-08-09 02:59:38 Ctime: 2007-08-09 02:59:38 Inode: 32024 MD5 : QJ0zo/uID+RwouCLhTf+pA== SHA1 : s7B1b4MnVu1YKx4XbOr9GdYO2Ho= RMD160 : EmxvI56znAwPl7M5shIsCl3kfiE= TIGER: FTLEntv2L0c0Wv9pqu+NvZYKIBy1WFD/ CRC32: NuiKDQ== HAVAL: awsvTBQYW90hgY/jjt8RBr7w4IqFFgBI GOST : 8T8EUBNsxuLrzfrszXIRVdm96RWkMbIN The AIDE run created a new database /var/lib/aide/aide.db.new with the following characteristics: Size : 18068976 Bcount : 35330 Mtime: 2007-08-10 02:43:05 Ctime: 2007-08-10 02:43:05 Inode: 36848 MD5 : 72sEnikus+pND8VspZbR0A== SHA1 : scWoe+W/FGh5IhUoHc8PprSHqtc= RMD160 : 4d8UAri3GNAKBLby0kS7fek7ijQ= TIGER: ny/XRnxDlLpqlqMLwQiUs3YTSeAY8kq1 CRC32: VhUJKg== HAVAL: wWrV2igKLtkUSrZqYpv+G7PfqMVE3+Jq GOST : yXF83kq6nBY05lZQHUf1KvAwYsVI4RH9 End of AIDE daily cron job at at 2007-08-10 02:43, run time 1107 seconds [end of report] On other days a few other files have changed on other days: changed: /usr/lib/apache2/modules/libphp5.so File: /usr/lib/apache2/modules/libphp5.so MD5 : ctbc/CusZAwmkkltfYhgLw== , FWW8EENGtip+/QNwPuoZcw== SHA1 : kPjqUsToFQXReMmGGhRkKB5uwJc= , /5GP8vvTlTdvjSQCeJBjMzP+Opc= RMD160 : gANqqjqYFrOwtjn9Ie0jILPOPJk= , aDU+KCXXJvg4Uvszq141L1O/6Gc= TIGER: owsAMGW35nIC5qIXgW7RjtSjI5/itGW9 , 1AoMRYu8MveHRhisABSGezDLQFYKkYqp HAVAL: ru1SKQ3VRMjDF7908BP9FgqIxufN+LJg , 6LjpJyj0X4kwi0S2GUZyebtaXleNlllr GOST : jus1jZFIkTpSyIQsQUC8PBQhqlMtAdNe , zIBXSWlqcIkc69LqXhHy8CN+aXvYqTXb WHIRLPOOL: omJs7OVwE9Oy8r1vscKWB5fLbbsZ23PO , XNsuTuDqq6K7RnseFCz+WWQVj3tY1lof changed: /usr/sbin/mysqlmanager File: /usr/sbin/mysqlmanager GOST : 8m8HiTpQjJXxB9uwSxnB3DNexayhpKC+ , j87DrLHc4vONNMyFsR1xYLpf9k8S3b7d WHIRLPOOL: t+sTOvUDxxlGeUBX10tFc/GTaCkUMtCc , AaoGBMvaDqrzfQgqEQvGryyoV4tjJfUu Additionally, several files in /var/mail have been reported as changed. Because I use courier-imap and maildirs, these don't usually change. I have booted my PC into a rescue disk and have run fsck /dev/hda1 etc with no errors reported. I downloaded chkrootkit from the net and ran that from a chroot using this rescue disk, and no problems were reported. There does not appear to be anything suspicious in the logs. Usually AIDE does not report any files on my system have changed. Could the line decode_base64: Illegal character: $ be relevant (at the top of the first report)? Does anybody have any idea what's happening? I have not altered any of these files or upgraded or installed any software during this time. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: Installing xorg without all those video drivers
I'd like to install xorg, but only with the video drivers that I need. I'm doing a net install. I do it by trial and error, but usually I start from the things I know I need for sure. xserver-xorg-video-intel (replace with your driver) xserver-xorg-vesa (just for backup) xserver-xorg-input-kbd xserver-xorg-input-mouse Spice with some xfonts: xfonts-100dpi xfonts-75dpi (probably don't need those as I run X with 100 dpi) xfonts-base xfonts-terminus (my favorite :) Don't forget to turn off recommends first (at least temporary). I managed to do this with some difficulty, but your choice of packages is basically right. I used aptitude, as suggested by Doug (see previous posting), and switched recommends off. Aptitude is one of the great things about Etch. The difficult part was installing the proprietary ATI drivers for my ATI X1950 GT card. The debian kernel driver does not support this and I needed to download the latest driver from ATI and turn it into a .deb. It involved installing quite a few development packages. All works fine now. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Installing xorg without all those video drivers
I'd like to install xorg, but only with the video drivers that I need. I'm doing a net install. A query on the Debian IRC yielded painfully, without using the meta package that pulls them in. Maybe there's a HOWTO somewhere out there that somebody can direct me to. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: Installing xorg without all those video drivers
Then, I go to the xorg meta-package. I scroll down to the things it depends on and I select them manually, and I dig down into the dependancies and adjust things. For example, somewhere there a package will depend on _either_ an -all package or a device-specific package. Left on its own, it will pull in the -all whereas I can mark the device spcific package for manual and deselect the -all. Thanks. I'll give it a go tomorrow and will report back on progress. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
syslog-ng and etch
I would like to replace syslog with syslog-ng on Etch. Am I likely to run into any problems with breakages etc if I do this? TIA. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: Etch: network won't work
what do you get from dmesg | grep -i eth 8139too Fast Ethernet driver 0.9.27 eth0: RealTek RTL8139 at 0x1000, 00:40:f4:35:60:e0, IRQ 11 eth0: Identified 8139 chip type 'RTL-8139C' It might be of interest that I used mondo/mindi to create and restore the backup. My installation was recently upgraded from Sarge. R. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: Etch: network won't work
what happens if you do a ifconfig eth0 up ? I get the No such device error what are the contents of /etc/network/interfaces? $ cat /etc/network/interfaces auto lo eth0 iface lo inet loopback iface eth0 inet static address 192.168.0.33 netmask 255.255.255.0 broadcast 192.168.0.255 gateway 192.168.0.1 dns-nameservers 192.168.0.1 whats the output of lspci? $ lspci 00:00.0 Host bridge: Intel Corporation 440LX/EX - 82443LX/EX Host bridge (rev 03) 00:01.0 PCI bridge: Intel Corporation 440LX/EX - 82443LX/EX AGP bridge (rev 03) 00:07.0 ISA bridge: Intel Corporation 82371AB/EB/MB PIIX4 ISA (rev 02) 00:07.1 IDE interface: Intel Corporation 82371AB/EB/MB PIIX4 IDE (rev 01) 00:07.2 USB Controller: Intel Corporation 82371AB/EB/MB PIIX4 USB (rev 01) 00:07.3 Bridge: Intel Corporation 82371AB/EB/MB PIIX4 ACPI (rev 02) 00:0e.0 Ethernet controller: Realtek Semiconductor Co., Ltd. RTL-8139/8139C/8139C+ (rev 10) 01:00.0 VGA compatible controller: Intel Corporation 82740 (i740) AGP Graphics Accelerator (rev 21) you might also want to try to add 8139cp to /etc/modprobe.d/blacklist and adding some of these boot options to /boot/grub/menu.lst: irqpoll pci=biosirq pci=irqmasq I tried all of these together - still no luck. It still loads 8139cp despite it being in the blacklist file. I have tried removing and reloading 8139too and 8139cp, then restarting the network - still no luck. Will try new kernel from backports next. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Etch: network won't work
I have cloned my installation of Etch onto another (ancient PII) system for backup purposes. When the network starts on the second system I get messages like this: SIOCSIFADDR: No such device .. and the network does not work (when I do 'ifconfig' I only get 'lo'). My network card is the same as on the original system - Realtek RTL-8139/8139C/8139C+. The same modules are installed on both machines: $ lsmod |grep 8139 8139cp 20736 0 8139too24192 0 mii 5376 2 8139cp,8139too If I boot from an old 2.4 kernel the network works OK (but certain other things don't)- so the hardware is OK. Any clues? -- -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Sarge-Etch: which obsolete packages can be removed?
I've had a debian machine running for a number of years and I've upgraded from woody-sarge-etch. Looking at the listing in aptitude there are a lot of obsolete packages - such as gcc-2.95, gcc-3.0, python-2.1, ipchains, libdb2, libnewt0, libreadline3, slang1. I assume its safe to remove old versions of gcc and ipchains. What about the other ones? Am I likely to break things by removing ALL of these packages? Could it wreck locally compiled packages (of which there are not many)? -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: Sarge-Etch: which obsolete packages can be removed?
It could indeed wreck locally compiled packages, because aptitude has no idea of the requirements of those packages. Have you considered recompiling them? Yes - when I get back from my trip overseas and am able to fix up any damage! I assume that packages that are part of etch won't be affected?? -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: Sarge-Etch: which obsolete packages can be removed?
Yes - when I get back from my trip overseas and am able to fix up any damage! I assume that packages that are part of etch won't be affected?? Won't be affected by what? The recompilation? No - by purging the obsolete packages. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: aptitude wants to install apache
It looks like apache and apache-common are not installed automatically. Maybe aptitude remembers a previous request you made (even if it was by accident). Try to run aptitude keep-all and check again with the above command. I could not find this command. If you want to upgrade to Etch then you will have to do dist-upgrade eventually. Read the release notes and follow all the steps, otherwise there may be trouble. Also note that there is a section dealing specifically with apache (section 5.6). I repeat: DO NOT just change sources.list and run aptitude dist-upgrade without reading the release notes. I've decided (for better or worse) to go ahead with the dist-upgrade and am following the instructions VERY closely. It looks as if I'm going to end up with apache and apache2. Not a very good situation, but I'll try to remove apache afterwards. There might be another posting to this group on how to remove this properly without a dist-upgrade trying to install it in the future. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: aptitude wants to install apache
I've decided (for better or worse) to go ahead with the dist-upgrade It will probably work out OK; if it does not then you know where to find us. Thanks. I've fixed the problem by installing apache and apache2 (as part of a full dist-upgrade which seems to have gone OK) then purging apache-common libapache-mod-php4 and apache. AFAICS he docs don't suggest upgrading aptitude first - even though it looks like a logical step. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
aptitude wants to install apache
I am planning to upgrade my sarge box to etch. The upgrade guide suggests running aptitude then pressing g to resolve dependency problems. This indicates that a number of packages will be removed and that apache, apache-common and apache-ssl will be installed. I have fixed the problem of packages about to be removed (I hope) by uninstalling and reinstalling them using aptitude (I used apt-get previously). There's one exception - a locally compiled package that was installed using checkinstall. Also aptitude still wants to install apache* as above. I've already got apache2 installed and don't want version 1.* How do I tell aptitude not to install/remove these packages, or can I ignore these warnings? -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Sendmail: timeout waiting for input from local during Draining Input
I am getting the above message in my syslog a few times a day. They often appear after a spamd connect message thus: Nov 1 08:43:32 debian spamd[3740]: connection from localhost [127.0.0.1] at port 50834 Nov 1 08:43:32 debian spamd[3740]: info: setuid to ** succeeded Nov 1 08:43:32 debian spamd[3740]: processing message [EMAIL PROTECTED] for **:1005. Nov 1 08:45:16 debian sm-mta[4058]: k9VLgoek004054: timeout waiting for input from local during Draining Input I'm running sarge with the default installation of sendmail (8.13.4-3sarge3) and spamassassin (3.0.3-2sarge1). I have a few plugins such as FuzzyOcrPlugin. I've got this running on a rather old PC. Could it be due to slow hardware? It doesn't happen on my other server which is an AMD64. If so - is there something I can tweak to allow longer processing - my machine isn't particularly heavily used. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Is there a way of updating spamassassin rules?
I run sarge at work and gentoo at home. On my gentoo box there is an sa-update script which updates spamassassin rules, without requiring that spamassassin is completely updated. Is there an equivalent script that will work with sarge? I realise that there is Rules Du Jour, but I'd like to use something that's vaguely official on a work box. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: Is there a way of updating spamassassin rules?
Thanks for the suggestions. I had a bit of bother with volatile-sloppy - spamc started timing out and a lot of spam got through. I ended up downgrading back to the sarge version. It looks like the latest version in sloppy needs to be compiled by hand. Think I'll wait until Etch becomes stable - that has 3.1.4, which I believe contains sa-update. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: Is there a way of updating spamassassin rules?
was there an error message? Also, did you had a look on [1]? Here it is - I'm running sendmail/procmail: sm-mta[16571]: k9U8TvTo016569: timeout waiting for input from local during Draining Input I suspect that the fact that its running on an ageing AMD K6 500MHz might have something to do with this. If I run # spamc message.txt It hangs for a *very* long time with the volatile-sloppy version, but runs OK with 3.0.3 from Sarge. I might resurrect an unused AMD 22000 that's lying around . . . Another question - does the spamassassin package from volatile-sloppy need to be hand-compiled? I've had no luck with simple apt-get install. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Etch: can I install xorg without all of those drivers
I've just tried to install xorg using # apt-get install xserver-xorg I get prompted to install a huge number of input and video drivers (see below). I want this to be a minimal installation. Is there any way of avoiding installing all of these drivers? # apt-get install xserver-xorg Reading package lists... Done Building dependency tree... Done The following extra packages will be installed: etc xserver-xorg-input-all xserver-xorg-input-evdev xserver-xorg-input-kbd xserver-xorg-input-mouse xserver-xorg-input-synaptics xserver-xorg-input-wacom xserver-xorg-video-all xserver-xorg-video-apm xserver-xorg-video-ark xserver-xorg-video-ati xserver-xorg-video-chips xserver-xorg-video-cirrus xserver-xorg-video-cyrix xserver-xorg-video-dummy xserver-xorg-video-fbdev xserver-xorg-video-glint xserver-xorg-video-i128 xserver-xorg-video-i740 xserver-xorg-video-i810 xserver-xorg-video-imstt xserver-xorg-video-mga xserver-xorg-video-neomagic xserver-xorg-video-newport xserver-xorg-video-nsc xserver-xorg-video-nv xserver-xorg-video-rendition xserver-xorg-video-s3 xserver-xorg-video-s3virge xserver-xorg-video-savage etc -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: Apt-get upgrade: sendmail etc kept back
I fixed this by uninstalling the sendmail package, but leaving sendmail-bin etc intact. I used the new repository to install libsasl2. Been working since last week without problems. Not a very satisfactory solution in the longer term. Are we likely to see a proper fix soon? -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Apt-get upgrade: sendmail etc kept back
I have recently got the following output: # apt-get upgrade -s Reading Package Lists... Done Building Dependency Tree... Done The following packages have been kept back: rmail sendmail sendmail-base sendmail-bin sendmail-cf sensible-mda 0 upgraded, 0 newly installed, 0 to remove and 6 not upgraded. If I try to install one of these packages I get: # apt-get install sendmail -s Reading Package Lists... Done Building Dependency Tree... Done Some packages could not be installed. This may mean that you have requested an impossible situation or if you are using the unstable distribution that some required packages have not yet been created or been moved out of Incoming. Since you only requested a single operation it is extremely likely that the package is simply not installable and a bug report against that package should be filed. The following information may help to resolve the situation: The following packages have unmet dependencies: sendmail: Depends: sendmail-bin (= 8.13.4-3sarge2) but 8.13.4-3sarge1 is to be installed E: Broken packages Also: # apt-get install -s sendmail-bin --8--- snip The following packages have unmet dependencies: sendmail-bin: Depends: libsasl2 (= 2.1.19.dfsg1) but 2.1.19-1.5sarge1 is to be installed E: Broken packages # cat /etc/apt/sources.list deb http://security.debian.org/ sarge/updates main contrib non-free deb http://volatile.debian.net/debian-volatile sarge/volatile main I also use the volatile-sloppy repository for spamassassin and volatile for clamav. Otherwise I run a pure sarge system. I've disabled volatile-sloppy for the meantime because I don't want to install the latest version of this until its fully tested. I can't see any evidence that sendmail or sendmail-bin are in volatile or sloppy. Is the apt repository working OK?? How can I resolve this? -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: Apt-get upgrade: sendmail etc kept back
This has worked for me http://www.debian-administration.org/articles/69 Thanks for the speedy answer. I see that sendmail is listed in the security section. All is still not right: # apt-get dist-upgrade as recommended Now when I run it again: ~# apt-get dist-upgrade -s Reading Package Lists... Done Building Dependency Tree... Done Calculating Upgrade... Done The following packages have been kept back: sendmail-bin 0 upgraded, 0 newly installed, 0 to remove and 1 not upgraded. ~# apt-get install sendmail-bin -s Reading Package Lists... Done Building Dependency Tree... Done Some packages could not be installed. This may mean that you have requested an impossible situation or if you are using the unstable distribution that some required packages have not yet been created or been moved out of Incoming. Since you only requested a single operation it is extremely likely that the package is simply not installable and a bug report against that package should be filed. The following information may help to resolve the situation: The following packages have unmet dependencies: sendmail-bin: Depends: libsasl2 (= 2.1.19.dfsg1) but 2.1.19-1.5sarge1 is to be installed E: Broken packages What should I do next? This is a work machine and I don't want to wreck it!! -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Do I need to upgrade my kernel (kernel-image-2.4-k6)?
I am running debian with kernel 2.4.27. I see that the kernel-source package is listed in the security vulnerabilities (DSA-1097). I do a weekly apt-get update apt-get upgrade but have not been prompted to upgrade my kernel. I am using kernel-image-2.4-k6. Do I need to upgrade my kernel image and if so, what is the correct way of doing this? -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Do I need to upgrade my kernel (kernel-image-2.4-k6)?
I am running debian with kernel 2.4.27. I see that the kernel-source package is listed in the security vulnerabilities (DSA-1097). I do a weekly apt-get update apt-get upgrade but have not been prompted to upgrade my kernel. I am using kernel-image-2.4-k6.Do I need to upgrade my kernel image and if so, what is the correct way of doing this?
Re: Do I need to upgrade my kernel (kernel-image-2.4-k6)?
Do you use stable or testing?Stable apt-cache policy kernel-image-2.4.27-2-k6 ~$ apt-cache policy kernel-image-2.4.27-2-k6kernel-image-2.4.27-2-k6: Installed: 2.4.27-10sarge1 Candidate: 2.4.27-10sarge1 Version Table:*** 2.4.27-10sarge1 0 500 http://security.debian.org sarge/updates/main Packages 500 ftp://mirror.aarnet.edu.au sarge/main Packages 100 /var/lib/dpkg/status Nevertheless, security report itself mentions source of the patched kernel as (on one line): http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-i386\ /kernel-image-2.4.27-3-k6_2.4.27-10sarge3_i386.deb I assume I still have the old version. dpkg -i kernel-image-2.4.27-3-k6_2.4.27-10sarge3_i386.deb Is this likely to break any dependencies? I don't think I have any patches installed - I seem to remember that these are all source packages. If there's no problem I'll use this method.Maybe the patched kernel needs to be installed manually to prevent systems with automatic updating from installing a new kernel without user intervention?? I think some distros do this.
Re: Antispam + antivirus + blocking attachments
Philippe Dhont (Sea-ro) wrote: Hello, Is there an smtp gateway that can block spam, has antivirus and the ability to block attachments ? I was thinking about DSPAM with addons but maybe there is a better solution that has everything onboard. Grtz, Phil. Clam antivirus, spamassassin and renattach would be my pick. Not aware of anything that does the whole lot together. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
pyzor times out
I have just installed pyzor: # apt-get install pyzor Then I ran the discover command: [EMAIL PROTECTED]:~$ pyzor discover downloading servers from http://pyzor.sourceforge.net/cgi-bin/inform-servers-0-3-x [EMAIL PROTECTED]:~$ cat .pyzor/servers 66.250.40.33:24441 Then I tested it: [EMAIL PROTECTED]:~$ pyzor ping 66.250.40.33:24441 TimeoutError: I got this reply from spamassassin --debug --lint: debug: executable for pyzor was found at /usr/bin/pyzor debug: Pyzor is available: /usr/bin/pyzor debug: entering helper-app run mode debug: setuid: helper proc 5580: ruid=1000 euid=1000 debug: Pyzor: got response: 66.250.40.33:24441 TimeoutError: debug: leaving helper-app run mode debug: Pyzor: couldn't grok response 66.250.40.33:24441 TimeoutError: I have a hardware firewall. I get the same error when I disable iptables. Is this a firewall problem or is the pyzor server down?? -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Error message when stopping /etc/init.d/dcc-client
I get this message when I try to stop the dccifd daemon: # /etc/init.d/dcc-client stop Stopping DCC program interface daemon: dccifdstart-stop-daemon: warning: failed to kill 5645: No such process . Despite this, ps ax reveals the dccifd daemon is running (prior to running the stop script). Any ideas? -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: /etc/resolv.conf replaced!
Hal Vaughan wrote: During the past two days I've had power flickers and outages from snow. I have not yet been able to attach a new system to a UPS (too many things to move), and it's lost power a few times. When it reboots, it cannot communicate with the network. I checked, and /etc/resolv.conf is no longer there. It has been replaced by a link to /etc/resolvconf/run/resolv.conf, and /etc/resolvconf/run is linked to /dev/shm/resolvconf. There is no corresponding file in /dev/shm/resolvconf to work with. I've found references to the other files on Google, but nothing clear telling what is going on. There are references that make me think some program *thinks* it is supposed to do this (so I doubt it's a virus), but I need to find out what is going on so I can either stop it or make sure it does it right. # aptitude purge resolvconf fixed it for me. The resolvconf command rewrites /etc/resolv.conf when you reboot. Maybe that does some bad things to your system, but things have been working better for me since I get rid of resolvconf. Comments from others?? -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
dcc: write(MTA socket,88): Broken pipe
I have sarge running with the dcc-client and spamd running. I have been getting the following messages in my syslog - they appear after spamd completes processing the message: Dec 2 07:20:30 debian dccifd[5800]: write(MTA socket,88): Broken pipe Note that this does not appear after every message that spamd processes. Does this indicate a problem with dcc or spamd? -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: Spamassassin not doing blacklist lookups
Robert S [EMAIL PROTECTED] wrote in message news:[EMAIL PROTECTED] Don't know if this is of any help, but a lot of DNS tests seem to timeout: Think I've got it fixed. Changed settings in /etc/resolv.conf. Might give djbdns a go sometime. I think our broadband router is doing funny things with DNS. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Spamassassin not doing blacklist lookups
I have installed the default installation of spamassassin on sarge. I have recently compared headers from a spam message that was filtered by my sarge installation (and missed as spam) with the same message filtered by a Gentoo server (that was correctly identified as spam, running a default spamassassin installation. Here are the headers: Sarge: X-Spam-Checker-Version: SpamAssassin 3.0.3 (2005-04-27) on debian.X.net.au X-Spam-Level: * X-Spam-Status: No, score=1.7 required=5.0 tests=DRUGS_ERECTILE, RAZOR2_CF_RANGE_51_100,RAZOR2_CHECK autolearn=no version=3.0.3 Gentoo: X-Spam-Checker-Version: SpamAssassin 3.0.4-gr0 (2005-06-05) on .X.com.au X-Spam-Level: * X-Spam-Status: No, score=5.1 required=8.0 tests=DRUGS_ERECTILE, RAZOR2_CF_RANGE_51_100,RAZOR2_CHECK,RCVD_IN_BL_SPAMCOP_NET, RCVD_IN_NJABL_PROXY,URIBL_SBL autolearn=no version=3.0.4-gr0 As you can see, my Gentoo box has applied blacklist lookups, but my debian box has not. The local.cf and init.pre files are identical. How do I get my Sarge box to do these DNS lookups? Have I not installed something? -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: Spamassassin not doing blacklist lookups
Is this package installed? libnet-dns-perl Yes - it is installed: # apt-get install libnet-dns-perl -s Reading Package Lists... Done Building Dependency Tree... Done libnet-dns-perl is already the newest version. 0 upgraded, 0 newly installed, 0 to remove and 0 not upgraded. Any other ideas? -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: Spamassassin not doing blacklist lookups
Don't know if this is of any help, but a lot of DNS tests seem to timeout: debug: RBL: success for 9 of 17 queries debug: DNS: timeout for NO_DNS_FOR_FROM after 14 seconds debug: DNS: timeout for bsp-untrusted after 14 seconds debug: DNS: timeout for bsp-firsttrusted after 14 seconds debug: DNS: timeout for spamcop after 14 seconds debug: DNS: timeout for spamcop after 14 seconds debug: DNS: timeout for rsl after 14 seconds debug: DNS: timeout for dsbl-notfirsthop after 14 seconds debug: DNS: timeout for rsl after 14 seconds -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
fetchmail misbehaviour
I have been fetchmail/cron to retrieve messages from my ISP'smailserver (POP). Messages are being left on the server. This systemhas been running for at least a year without a glitch. Last night I found over 2000 messages in my inbox - for some reason fetchmail hasstarted not recognising messages as being read and is retrieving themevery 30 minutes. I recently upgraded clamav, but the fetchmail binary and its config files have not changed. My configuration:[EMAIL PROTECTED]:~$ cat .fetchmailrcpoll pop.**.com.au proto pop3 user pass *** keep [EMAIL PROTECTED]:~$ crontab -l0,30 * * * */usr/bin/fetchmail -s /dev/nullCan somebody explain why this has occurred? I seem to remember havingthis problem a number of years ago. I'm beginning to think that using fetchmail with the keep option is not a good idea.
Sarge/php: should register_globals be set to on
I've just upgraded from woody to sarge. I note that php.ini is full of warnings about using register_globals being set to on, but the it is set to on by default. None of my scripts require this setting. Do any of the php packages that come with woody require this setting? I mainly use squirrelmail. I manage to use it on another system with gentoo with register_globals set to off. Can I do the same in sarge and what is the recommended setting?
Re: Chkrootkit reports infection
Newer versions of chkrootkit (0.45, for example) allow you to run in a diff mode that suppresses day-to-day duplicate hits. You can turn this option on with 'dpkg-reconfigure chkrootkit'. The Sarge version is 0.44-2. The diff mode sounds good. Is a newer version available in any of the Archives? I can't find it in backports or volatile. I'd sooner stick with .deb packages than use locally installed hacks. Presumably chkrootkit should be reasonably up to date for security reasons. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: Woody- Sarge. System won't reboot cleanly
I'm not sure you want to be running the 386 kernel. Try installing one the amd kernels, perhaps the 2.6.8-2-k7 kernel-image. You could also try resetting your bios back to defaults. I've tried the following with no success: resetting bios settings apm=power-off in lilo.conf installing apmd and modprobe apm hand-compiled k6 kernel (k7 won't work) I'd prefer to stick to 2.6.x kernel because of udev, but if I'm out of the office people will be confused if it doesn't reboot and it might be necessary to do this remotely. Any other suggestions? -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Woody- Sarge. System won't reboot cleanly
I recently upgraded my system to Sarge, and upgraded my kernel. I have a rather antiquated AMD K6 running on a K6BV3+/66 mobo (AT form factor). If I issue the reboot command, everything shuts down, until rebooting appears, but then nothing happens. I need to do a hard reboot to restart my machine. This could obviously cause problems because it runs as an unattended server. Any suggestions? A few details . . # uname -rmo 2.6.8-2-386 i586 GNU/Linux # lspci :00:00.0 Host bridge: VIA Technologies, Inc. VT82C598 [Apollo MVP3] (rev 04) :00:01.0 PCI bridge: VIA Technologies, Inc. VT82C598/694x [Apollo MVP3/Pro133x AGP] :00:07.0 ISA bridge: VIA Technologies, Inc. VT82C596 ISA [Mobile South] (rev 23) :00:07.1 IDE interface: VIA Technologies, Inc. VT82C586A/B/VT82C686/A/B/VT823x/A/C PIPC Bus Master IDE (rev 10) :00:07.2 USB Controller: VIA Technologies, Inc. VT82x UHCI USB 1.1 Controller (rev 11) :00:07.3 Host bridge: VIA Technologies, Inc. VT82C596 Power Management (rev 30) :00:11.0 USB Controller: OPTi Inc. 82C861 (rev 10) :00:12.0 VGA compatible controller: S3 Inc. 86c764/765 [Trio32/64/64V+] :00:13.0 Ethernet controller: Realtek Semiconductor Co., Ltd. RTL-8139/8139C/8139C+ (rev 10) # lsmod Module Size Used by ipt_ULOG7592 1 ipt_limit 2688 2 ipt_state 2304 3 ip_conntrack 32908 1 ipt_state iptable_filter 3072 1 ip_tables 16896 4 ipt_ULOG,ipt_limit,ipt_state,iptable_filter lp 10408 0 smbfs 61048 4 ipv6 229892 18 ide_cd 38176 0 floppy 54992 0 evdev 9088 0 pcspkr 3816 0 rtc12088 0 8139cp 19072 0 ohci_hcd 19460 0 uhci_hcd 29328 0 pci_hotplug30640 0 via_agp 8832 1 agpgart31784 1 via_agp dm_mod 51068 0 capability 4872 0 commoncap 7168 1 capability sg 34976 0 sr_mod 15780 0 cdrom 35740 2 ide_cd,sr_mod ide_scsi 15492 0 8139too23936 0 mii 4864 2 8139cp,8139too parport_pc 33348 1 parport37320 2 lp,parport_pc usb_storage59328 0 scsi_mod 115148 4 sg,sr_mod,ide_scsi,usb_storage binfmt_misc11272 0 binfmt_aout 7180 0 usbkbd 6912 0 usbcore 104164 6 ohci_hcd,uhci_hcd,usb_storage,usbkbd reiserfs 209872 3 isofs 33976 0 vfat 13184 0 fat41792 1 vfat ext3 109672 0 jbd54552 1 ext3 ide_generic 1664 0 ide_disk 16768 5 via82cxxx 12956 1 ide_core 125028 6 ide_cd,ide_scsi,usb_storage,ide_generic,ide_disk,via82cxxx unix 26036 58 font8576 0 vesafb 6688 0 cfbcopyarea 3840 1 vesafb cfbimgblt 3200 1 vesafb cfbfillrect 3712 1 vesafb -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: Enabling apache2 and ssl - is there an easy way?
2. For some reason, my browser tries to download the output of index.php in my root directory, but not in a subdirectory ie: http://mysite does not work, but http://mysite/another and http://mysite/inded.php are OK. I would need to see the relevant config to understand this one.. Solved -- due to an obscure problem in Moz Firefox. Apache OK. Think I've almost got things running properly. Will upgrade at some stage! -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: annoying iptables messages
Bob Proulx wrote: Jeff Elkins wrote: I'm trying to rid myself of annoying iptables messages that are clogging up the console and dmesg. Easy. Try: # aptitude ulogd This puts firewall logs into a custom log file - see /etc/ulogd.conf You need to have a kernel that contains the ipt_ULOG module. Most of the new ones have it. You also need a statement like `-j ULOG --ulog-prefix iptables:' in your iptables startup script (instead of -j LOG). -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: Woody- Sarge. System won't reboot cleanly
I'm not sure you want to be running the 386 kernel. Try installing one the amd kernels, perhaps the 2.6.8-2-k7 kernel-image. Tried that - got endless reboots. I assume that the k7 kernel won't run on a k6. Nor will the 686 kernel. I managed to compile a k6 kernel, but got the same problem with reboots, and benchmark tests didn't show it to be any faster than 386. You could also try resetting your bios back to defaults. I'll give that a go. Might also try a 2.4 kernel - I don't think that there's any good reason for running 2.6 on an antiquated machine - unless some reader can correct me. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Chkrootkit reports infection
I've recently updated to sarge. When chkrootkit runs daily, I get a (presumed) false positive: # chkrootkit -q /usr/lib/mindi/rootfs/proc/.keep /usr/lib/mindi/rootfs/root/.profile I assume that this is due to the presence of dotfiles installed by mindi. I've tried suppressing this output using a grep statement, but chkrootkit returns a non-zero value, and I also get this message daily. Is there a way of turning this off without writing a separate shell script? -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Postfix/Sarge: permissions up the woopee
I have just been investigating postfix as a simpler alternative to sendmail on sarge. My syslog is full of messages like: Jun 26 18:02:30 debian postfix/smtpd[5028]: fatal: open lock file pid/inet.smtp: cannot create file exclusively: No such file or directory Jun 26 18:02:31 debian postfix/master[2740]: warning: process /usr/lib/postfix/smtpd pid 5028 exit status 1 Jun 26 18:02:31 debian postfix/master[2740]: warning: /usr/lib/postfix/smtpd: bad command startup -- throttling Jun 26 18:02:48 debian postfix/master[2740]: warning: master_wakeup_timer_event: service public/pickup: No such file or directory I've tried tricks like # postfix set-permissions .. which gives the following: chown: cannot access `/usr/lib/postfix/dict_ldap.so': No such file or directory .. but still no luck. My main.cf (NB: mydomain.com.au is fictitious): smtpd_banner = $myhostname ESMTP $mail_name (Debian/GNU) biff = no append_dot_mydomain = no myhostname = debian alias_maps = hash:/etc/aliases alias_database = hash:/etc/aliases myorigin = /etc/mailname mydestination = mydomain.com.au, debian.mydomain.com.au, localhost.mydomain.com.au, localhost, debian relayhost = mynetworks = 127.0.0.0/8 192.168.2.0/24 mailbox_command = procmail -a $EXTENSION mailbox_size_limit = 0 recipient_delimiter = + inet_interfaces = all mail_owner = postfix setgid_group = postdrop queue_directory = /var/spool/postfix Has anybody got this working??? I get the impression that most problems are due to the fact that postfix is running in a chrooted environment. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Freshclam: ERROR: Can't query current.cvd.clamav.net
I have just upgraded to sarge from woody. When I run freshclam (clamav-freshclam package) I get the following: # freshclam ClamAV update process started at Wed Jun 22 22:00:25 2005 ERROR: Can't query current.cvd.clamav.net WARNING: Invalid DNS reply. Falling back to HTTP mode. Connecting via 192.168.0.33 Reading CVD header (main.cvd): OK (IMS) main.cvd is up to date (version: 32, sigs: 34720, f-level: 5, builder: tkojm) Connecting via 192.168.0.33 Reading CVD header (daily.cvd): OK (IMS) daily.cvd is up to date (version: 950, sigs: 1335, f-level: 5, builder: ccordes) What is going on and how do I resolve this? -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Sendmail/Sarge OTP unavailable because . .
I've just upgraded to sarge. I've been running sendmail and am getting these messages repeatedly in my /var/log/auth.log: Jun 22 23:01:05 debian sm-mta[6126]: OTP unavailable because can't read/write key database /etc/opiekeys: No such file or directory There seems to be a bit of discussion about this, but no visible solutions. My /etc/mail/sendmail.mc: divert(-1)dnl divert(0)dnl define(`_USE_ETC_MAIL_')dnl include(`/usr/share/sendmail/cf/m4/cf.m4')dnl VERSIONID(`$Id: sendmail.mc, v 8.12.3-6.6 2003-09-17 18:35:09 cowboy Exp $') OSTYPE(`debian')dnl DOMAIN(`debian-mta')dnl LOCAL_CONFIG FEATURE(`masquerade_envelope')dnl LOCAL_CONFIG FEATURE(`use_cw_file')dnl FEATURE(`use_ct_file')dnl FEATURE(`smrsh')dnl LOCAL_CONFIG FEATURE(`access_db', hash -TTMPF /etc/mail/access)dnl FEATURE(`dnsbl',`combined.njabl.org',`Message from ${client_addr} rejected - see http://njabl.org/lookup?${client_addr}')dnl FEATURE(`dnsbl', `relays.ordb.org', `550 Mail rejected - your mail server is blacklisted: See http://www.ordb.org/faq/\#why_rejected')dnl FEATURE(`dnsbl', `list.dsbl.org',`550 Mail rejected - your mail server is blacklisted: See http://dsbl.org/main')dnl INPUT_MAIL_FILTER(`clmilter',`S=local:/var/run/clamav/clamav-milter.ctl,F=, T=S:4m;R:4m')dnl define(`confINPUT_MAIL_FILTERS', `clmilter')dnl define(`confMAX_MESSAGE_SIZE', 1000)dnl define(`LOCAL_MAILER_PATH', `/usr/bin/procmail')dnl FEATURE(`local_procmail')dnl MASQUERADE_AS(`mydomain.com')dnl define(SMART_HOST, smtp:my.smart.host)dnl MAILER_DEFINITIONS MAILER(`procmail')dnl MAILER(local)dnl MAILER(smtp)dnl NB: mydomain.com and my.smart.host are fictitious. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: Freshclam: ERROR: Can't query current.cvd.clamav.net [fixed]
I have just upgraded to sarge from woody. When I run freshclam (clamav-freshclam package) I get the following: WARNING: Invalid DNS reply. Falling back to HTTP mode. Fixed it by adding DNS server to /etc/resolvconf/resolv.conf.d/tail: nameserver 203.194.27.57 .. then running resolvconf -u. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: Enabling apache2 and ssl - is there an easy way?
Andy Smith [EMAIL PROTECTED] wrote in message news:[EMAIL PROTECTED] Please explain exactly what you are having problems with. The first problem is that apache2 - ssl does not work out of the box like it does in apache1. You need to generate certificate files etc manually, and create a new config file. Are there any official guides on how to do this? Other problems include: 1. Unable to make the DocumentRoot for http and https different (its simple with apache1 - config files are in different locations) 2. For some reason, my browser tries to download the output of index.php in my root directory, but not in a subdirectory ie: http://mysite does not work, but http://mysite/another and http://mysite/inded.php are OK. I note that the official version of apache for sarge is still 1.3.33 (listed in distrowatch.com). I suspect that apache2 is for brave souls willing to get their hands dirty. I think I'll stick to 1.3.xx - its worked very well for the last year. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: compiling custom kernel/Sarge
I need to compile a custom kernel, to add raid and a scsi driver. Is the kernel that comes with sarge just from kernel.org or does it have some kind of security patches? If it is just from kernel.org, is it best to use the latest kernel? thanks william You may know about this - but this is an easy way to do it: http://www.debian.org/doc/manuals/reference/ch-system.en.html#s-kernel-details -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Upgrading security-related packages (eg. clamav, chkrootkit)
I am contemplating an upgrade from woody to sarge on a work server. A number of security-related packages such as clamav and chkrootkit need to be kept up to date to deal with new threats such as viruses and rootkits. I understand that if I stick to the stable tree, I will only get critical security patches and won't get the latest version of the software. For example, the official version of clamav is 0.84, but there will be numerous updates over the next couple of years, and 0.84 will become obsolete. To keep up to date should I just use the official debian stable sources, or should I use unofficial sources (such as backports.org)? -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: Upgrading security-related packages (eg. clamav, chkrootkit)
There is something new in Sarge for this purpose : http://www.debian.org/releases/stable/i386/release-notes/ch-whats-new.en.html#s-volatile Thanks. Just what I need. Pity it isn't an official thing. Haven't had any trouble with backports in the past so I suppose this will be OK. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: Enabling apache2 and ssl - is there an easy way?
Andy Smith [EMAIL PROTECTED] wrote in message news:[EMAIL PROTECTED] I think I'll stick to 1.3.xx - its worked very well for the last year. Argh, wish I'd read to the end before bothering to reply. :) No need to despair. All a very valuable learning experience. Actually I've had a problem with self-signed certificates in Apache 1.3.xx - its not recognised by MS Internet explorer for Mac OS-9, which I was forced to use at a conference recently (yuk). Will check out your links. Thanks. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Enabling apache2 and ssl - is there an easy way?
I've just been spending a lot of time trying to enable apache2 and ssl in sarge. I finally found a method in http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=267477, but am still having problems - like using a different DocumentRoot from the non-ssl apache2. There must be an easier way than this! Can somebody enlighten me? -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: Mondo Frustration
How can I get mondo to work with a system that uses a floppy-based GRUB instead of a hard drive-based LILO? This is a rather important experiment for me, and I'm hoping I can get this worked out really soon. I got mondo/mindi working after a lot of frunstration, by manually installing another (non-debian) version from http://www.sorcerer.mirrors.pair.com/sources/mindi HTH. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Sarge: mondo problems
I have just upgraded from woody to sarge. I was previously able to get mondo to work by hand-installing mondo/mindi from http://www.sorcerer.mirrors.pair.com/sources/ (the woody version caused problems). I have just upgraded from woody to sarge and have removed my custom mondo/mindi installations and have installed the sarge versions. When I try to run it with kernel version 2.4.27-2-686 (from the .deb) it bombs, saying that ext2 is not compiled in your kernel (it *is* present as a module) and I am instructed to compile it into my kernel, or that I can upgrade to a 2.6 kernel. When I install kernel 2.6.8-2-686 (from the .deb again), it gets as far as I am backing up your live filesystem now. then after backing up 65% of my filesystem, I get a Segmentation fault. The end of my /var/log/mondo-archive.log looks like this (id no error is reported): [Main] libmondo-archive.c-create_afio_files_in_background#1139: [11548:0] - archived 66 OK [Main] libmondo-archive.c-create_afio_files_in_background#1112: [11548:0] - EXATing 68... [Main] libmondo-files.c-find_home_of_exe#423: find_home_of_exe () --- Found getfattr at /usr/bin/getfattr [Main] libmondo-files.c-find_home_of_exe#425: find_home_of_exe() --- Could not find getfacl [Main] libmondo-archive.c-create_afio_files_in_background#1118: [11548:1] - archiving 67... [Main] libmondo-archive.c-make_afioballs_and_images#1598: Storing set 66 [Main] libmondo-archive.c-create_afio_files_in_background#1139: [11548:1] - archived 67 OK [Main] libmondo-archive.c-create_afio_files_in_background#1112: [11548:1] - EXATing 69... [Main] libmondo-files.c-find_home_of_exe#423: find_home_of_exe () --- Found getfattr at /usr/bin/getfattr [Main] libmondo-archive.c-make_afioballs_and_images#1598: Storing set 67 Unfortunately mondo is a tricky beast to get to work. In the past I've had to try multiple versions from the above source, until something works. I'd like to be able to upgrade my work server to sarge, but I'll need to sort these issues out first. Any suggestions? -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: annoying iptables messages
Have you tried using ulog? You need to patch your kernel. It allows all firewall logs to go into a nominated log file, and does not put them in the dmesg. Correction - no kernel patch is required. It works correctly out of the box. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: Sarge: mondo problems
I've had a stock Sarge install going since it was testing. Mondo has worked flawlessly, including after it went stable (of course). My kernel is 2.4.26-1-386. Keep us posted as to what you get worked out - I find Mondo invaluable and wouldn't want to lose it with a kernel or other change. - John I've managed to get around the ext2 is not compiled in your kernel problem by using -k FAILSAFE. Unfortunately, the segfault problem continues to occur - always about 45% into the backup. It does not leave any indication as to the cause. I might need to continue to use my custom version of mondo, which works fine on woody. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: annoying iptables messages
The console messages seem to be gone, but dmesg is still clogged with iptables junk. Have you tried using ulog? You need to patch your kernel. It allows all firewall logs to go into a nominated log file, and does not put them in the dmesg. I use it in my gentoo server (I'm too scared to use a patched kernel in my deb. installation at work) - instructions are here: http://forums.gentoo.org/viewtopic-t-334079-highlight-.html -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Woody - sarge. Hotplug hangs on SCSI module
I have just upgraded from woody to sarge, including a kernel upgrade to kernel 2.4.27-2-686. I have an old Adaptec 2940 card (which contains another OS and is not used by debian). During the startup it seems to try to load the SCSI driver several times then hangs. Removing the /etc/rc2.d/xxxhotplug link stops this from happening and allows a normal bootup (ie the problem is with hotplug). If I do lsmod the output includes: aic7xxx_old 120520 0 (unused) ide-scsi 10032 0 scsi_mod 95108 2 [aic7xxx_old ide-scsi usb-storage] .. ie the SCSI module is loaded prior to running hotplug. However, if I issue # /etc/init.d/hotplug start I get the hang again. I have got the following in my /var/log/syslog: Apr 26 23:16:25 debian kernel: scsi2 : Adaptec AIC7XXX EISA/VLB/PCI SCSI HBA DRIVER, Rev 6.2.4 Apr 26 23:16:25 debian kernel: Adaptec 2940 SCSI adapter Apr 26 23:16:25 debian kernel: aic7870: Single Channel A, SCSI Id=7, 16/253 SCBs Apr 26 23:16:25 debian kernel: Apr 26 23:16:40 debian kernel: Vendor: QUANTUM Model: FIREBALL_TM3200S Rev: 300N Apr 26 23:16:40 debian kernel: Type: Direct-Access ANSI SCSI revision: 02 Apr 26 23:16:40 debian kernel: (scsi2:A:0): 10.000MB/s transfers (10.000MHz, offset 15) Apr 26 23:16:40 debian kernel: (scsi1:-1:-1:-1) Referenced SCB 255 not valid during SELTO. Apr 26 23:16:40 debian kernel: SCSISEQ = 0x5a SEQADDR = 0x18 SSTAT0 = 0x10 SSTAT1 = 0x8a Apr 26 23:16:41 debian kernel: (scsi1:-1:-1:-1) Referenced SCB 255 not valid during SELTO. Apr 26 23:16:41 debian kernel: SCSISEQ = 0x5a SEQADDR = 0x18 SSTAT0 = 0x10 SSTAT1 = 0x8a How can I prevent this from happening? ie - how can I stop hotplug from trying to reload the module. Is it actually necessary to run hotplug in the first place?? -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
ssh: Repeated intrusion attempts
Today I found hundreds of the following in my /var/log/auth.log: May 2 08:12:01 debian sshd[16918]: Could not reverse map address 64.132.35.43. May 2 08:12:04 debian sshd[16920]: Could not reverse map address 64.132.35.43. May 2 08:12:06 debian sshd[16922]: Could not reverse map address 64.132.35.43. This is occasionally punctuated with the following: May 2 08:12:47 debian sshd[16955]: User not allowed because none of user's groups are listed in AllowGroups Where is a valid user name on my system - who is denied access via ssh. Occasionally I get May 2 07:59:30 debian PAM_unix[16273]: authentication failure; (uid=0) - for ssh service May 2 07:59:32 debian sshd[16273]: Failed password for from 64.132.35.43 port 39023 ssh2 May 2 07:59:35 debian sshd[16275]: Could not reverse map address 64.132.35.43. Where is a user who has permission to log in remotely via ssh. There seem to be bursts of this sort of activity every day or two, from different addresses. I only have a very limited number of users who are able to log in through ssh, and the users who can have good passwords, so I assume that the chance of a successful breakin is low. What concerns me is that the attackers seem to be able to retrieve the names of users on my system. How do they do that, and how can I prevent it? I am running Woody, with up-to-date patches, behind a cheap hardware firewall-router. Open ports are 22 (sshd), 25 (sendmail), 80 (apache), 443 (apache-ssl), 993 (courier-imap over ssl) and 995 (courier-pop over ssl). -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: ssh: Repeated intrusion attempts
- sniff any/all of the emails and follow that email into the server and try to guess their passwords I'm particularly concerned that spammers can find out valid email accounts on our system. From what you say it looks as if that's unavoidable unless I take elaborate precautions. Currently there's only one user who's a member of the ssh_user group. Only members of this group are allowed to log in because of AllowGroups ssh_user in /etc/ssh/sshd_config. I think I'll create new login names for members of this group and will put a REJECT in my /etc/mail/aliases. That will make it difficult to guess the name as they won't receive any emails. - never use the same email addy ( john ) as your any of your loginID ( john ) .. one of it should be jsmith or some other non-guessible loginid ... and aliase [EMAIL PROTECTED] in your /etc/alias files back to j1z3k5 so that j1z3k5 can read/delete/reply their emails addressed to john Sounds a bit complicated. I know what you're getting at. I am running Woody, with up-to-date patches, behind a cheap hardware firewall-router. Open ports are 22 (sshd), 25 (sendmail), 80 (apache), 443 (apache-ssl), 993 (courier-imap over ssl) and 995 (courier-pop over ssl). pretty good :-) .. except do not depend on the firewall .. assume its cracked and protect everything else ... ( full and incremental and encrypted backups .. dating back months.. ) Done that. Using Mondo. I keep a CD-ROM backup at home away from the office. Brilliant utility, except that it took about a week to find a version that worked properly. Default one doesn't. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: mondoarchive - error in mkisofs
Hugo Vanwoerkom wrote: Yes. Download e.g. 1.67 from that site and just run the install.sh script that he has included. Then run mondoarchive with the options you want. Many thanks. It worked without a hitch - using the versions that you use. Couldn't get the latest version of mondo (2.1) to work - error in /etc/fstab. Now to see if I can restore my system . . . Save that for later -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
mondoarchive - error in mkisofs
I installed mondo/mindi on my work server recently (Woody). I tested it out on an almost identical system at home first and didn't have too many problems - managed to backup and restore a running system with no problems. I've used the stock standard stable packages - mondo_1.41.1-1_i386.deb and mindi_0.58.r5-1woody1_i386.deb. Everything is fine until it runs mkisofs to make the CD image. I see that others have problems with this, but haven't seen a fix. Is it something to do with the mindi-data/mindi-boot filenames being too long?? Can anybody help? Here is my command line (similar result when scratch/temp files not specified): mondoarchive -O -i -d /tmp/backup.iso -l LILO -f /dev/hda -S /var/tmp/mondo-scratch -k FAILSAFE -T /var/tmp/mondo-temp -E /home /mnt Here is the relevant part of the log: Fork is closing tape/CD ... Writing the final ISO OK, time to make CD #1 OK, you're telling me this is the last CD. Fair enough. make_iso_fs --- scratchdir=/var/tmp/mondo-scratch/mondo.scratch.1679/mondo.scratch.28754 --- destfile=/tmp/backup.iso//1.iso Running mkisofs to make CD #1 Running mkisofs to make CD #1 Running mkisofs to make CD #1 echo hi /tmp/mondo.XXmu9Tx1 ; mkisofs -b images/mindi-boot.2880.img -c boot.cat -o /tmp/backup.iso//1.iso -J -r -p MondoRescue -P www.microwerks.net/~hugo/ -A Mondo_Rescue_GPL -V 1 . 2 /var/tmp/mondo-temp/tmp.mondo.31563/tmp.mondo.253/stderr.txt; res=$?; rm -f /tmp/mondo.XXmu9Tx1; exit $res Using MINDI000.IMG;1 for ./images/mindi-data-3.img (mindi-data-2.img) Using MINDI001.IMG;1 for ./images/mindi-data-2.img (mindi-data-1.img) Using MINDI002.IMG;1 for ./images/mindi-boot.1722.img (mindi-boot.2880.img) mkisofs: No such file or directory. Unable to open disc image file Call to mkisofs to make ISO (CD #1) ...failed WARNING - make_iso_fs returned an error -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: mondoarchive - error in mkisofs
Was there such a file? Which file do you refer to? Anyway, this: http://www.sorcerer.mirrors.pair.com/sources/mindi/ and mondo has other levels. I use mondo 1.67 and mindo 0.87 with a mindi-kernel with great success. So I tend not to change levels until my system hardware changes and that level no longer supports it. I'll try one of those. Mondo/mindo is very easy to install from scratch. When you say from scratch do you mean compile from source? I've tried several version and have run into trouble, but will try some of the versions you've recommended. Many thanks for your advice. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: Backing up a running system
Try Mondorescue... I've finally gone for Mondorescue. I compiled the latest version from source (have Woody) - the Woody version seems to have a few issues. Thanks for the suggestions. Apart from a bit of lack of polish, it does things that commercial products (eg. Norton Ghost) doesn't do - such as booting directly off the rescue disk. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Backups - what files can safely be omitted?
Thanks for the folks who advised me re backing up a running system. I'm just testing mondo at the moment. Looks ideal for my purposes. What files can safely be omitted from a debian system backup? Obvious ones are /var/cache/apt/archives (if you're like me an hold onto these files) and /var/spool/squid (if you use squid). Is there anything crucial in /var/log that can't be trashed? Is there anything else in /var? TIA. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Backing up a running system
I have a debian (woody) server running at work and would like to back up the entire system onto some sort of removable media (USB hard drive, DVD, removable harddrive etc). I do daily backups of /etc and /home using tar, but would like to be able to restore my system quickly in the event of a disaster. I don't change things much on my system, so I'd only need to do this once every 6 months or so. To date I've been using partimage - but that requires that the partition being backed up is unmounted. I've done a bit of googling, but haven't found something that fits the bill. Is there a way of doing this (preferably remotely) without unmounting the filesystem (like the new version of Norton Ghost is able to do in Windows)? -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: Backing up a running system
Is there a way of doing this (preferably remotely) without unmounting the filesystem (like the new version of Norton Ghost is able to do in Windows)? A backup is easily done with dd, for example: dd if=/dev/sda1 bs=1M | gzip -c9 /media/usbdrive/sda1.bin.gz When restoring you might run into some discontinuities with files which were open during the backup, but as long as these are logfiles, it shouldn't be a big problem. Just make sure you closed all importand files (if any) before backing up this way. Thanks for the speedy answer. I have a feeling that /etc/mtab gave some problems with this approach. Has anybody tried this? The advantage of gzip is that the files can be easily browsed with a Windows machine (which make up most of our office computers). Its also easy for people with limited knowledge to understand!! Is there any advantage to using dump? I noticed on the FreeBSD docs that they recommended it for mirroring a hard drive. I've never used it before. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: Persistent port forwarding without ssh
You could use masquarading (iptables) on the debian machine to forward some port on the debian machine to the server and then when you connect ssh to that port the connection will be forwarded directly to the server. That's the way I was hoping to do it. As I have absolutely no experience with iptables, I'd be very grateful if somebody could spell out a command that would do this. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]