Re: [DNG] X11: safe to remove?
JVM often depends on X11 libs. вт, 29 сент. 2020 г., 7:49 Gregory Nowak : > On Mon, Sep 28, 2020 at 09:57:07PM -0400, tempforever via Dng wrote: > > I manage a few remote servers that are running Devuan. Recently (last > > week) I noticed a couple updates to some x11 libraries. I went ahead > > and updated. But now, I'm wondering if it's okay to remove them > > altogether? I do not use any graphical user interface on them. I only > > connect via ssh, and issue text-only commands. > > Looks to me like you'd be safe removing these packages. If you can > take a backup beforehand, I'd suggest doing that to be extra safe, but > I don't think you need these if the machine is a text console only > server. > > Greg > > > -- > web site: http://www.gregn.net > gpg public key: http://www.gregn.net/pubkey.asc > skype: gregn1 > (authorization required, add me to your contacts list first) > If we haven't been in touch before, e-mail me before adding me to your > contacts. > > -- > Free domains: http://www.eu.org/ or mail dns-mana...@eu.org > ___ > Dng mailing list > Dng@lists.dyne.org > https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng > ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
Re: [DNG] X11: safe to remove?
On Mon, Sep 28, 2020 at 09:57:07PM -0400, tempforever via Dng wrote: > I manage a few remote servers that are running Devuan. Recently (last > week) I noticed a couple updates to some x11 libraries. I went ahead > and updated. But now, I'm wondering if it's okay to remove them > altogether? I do not use any graphical user interface on them. I only > connect via ssh, and issue text-only commands. Looks to me like you'd be safe removing these packages. If you can take a backup beforehand, I'd suggest doing that to be extra safe, but I don't think you need these if the machine is a text console only server. Greg -- web site: http://www.gregn.net gpg public key: http://www.gregn.net/pubkey.asc skype: gregn1 (authorization required, add me to your contacts list first) If we haven't been in touch before, e-mail me before adding me to your contacts. -- Free domains: http://www.eu.org/ or mail dns-mana...@eu.org ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
[DNG] X11: safe to remove?
I manage a few remote servers that are running Devuan. Recently (last week) I noticed a couple updates to some x11 libraries. I went ahead and updated. But now, I'm wondering if it's okay to remove them altogether? I do not use any graphical user interface on them. I only connect via ssh, and issue text-only commands. I'm a little concerned about just removing these libraries though. The one in particular that I remembered updating was libx11-6. Apparently there is a bit of dependencies on it, and I don't want to break anything. On beowulf: # apt remove libx11-6 Reading package lists... Done Building dependency tree Reading state information... Done The following packages were automatically installed and are no longer required: fontconfig-config fonts-dejavu-core libdrm-amdgpu1 libdrm-common libdrm-intel1 libdrm-nouveau2 libdrm-radeon1 libdrm2 libfontconfig1 libfontenc1 libgl1-mesa-dri libglapi-mesa libglvnd0 libice6 libllvm7 libpciaccess0 libsm6 libx11-data libx11-xcb1 libxau6 libxcb-dri2-0 libxcb-dri3-0 libxcb-glx0 libxcb-present0 libxcb-shape0 libxcb-sync1 libxcb1 libxdmcp6 libxshmfence1 x11-common Use 'apt autoremove' to remove them. The following packages will be REMOVED: libgl1 libglew2.1 libglu1-mesa libglx-mesa0 libglx0 libx11-6 libxaw7 libxcomposite1 libxcursor1 libxdamage1 libxext6 libxfixes3 libxft2 libxi6 libxinerama1 libxmu6 libxmuu1 libxpm4 libxrandr2 libxrender1 libxt6 libxtst6 libxv1 libxxf86dga1 libxxf86vm1 mesa-utils x11-utils x11-xserver-utils xauth 0 upgraded, 0 newly installed, 29 to remove and 0 not upgraded. After this operation, 8,081 kB disk space will be freed. Do you want to continue? [Y/n] n I don't think I should need any font or drm stuff. On ascii, I get a much longer list: # apt remove libx11-6 Reading package lists... Done Building dependency tree Reading state information... Done The following packages were automatically installed and are no longer required: dconf-gsettings-backend dconf-service fontconfig fontconfig-config fonts-dejavu-core gconf-service gconf2-common glib-networking glib-networking-common glib-networking-services gsettings-desktop-schemas hicolor-icon-theme libatk1.0-0 libatk1.0-data libavahi-client3 libavahi-common-data libavahi-common3 libblas-common libblas3 libck-connector0 libcolord2 libcroco3 libcups2 libdatrie1 libdconf1 libdrm-amdgpu1 libdrm-intel1 libdrm-nouveau2 libdrm-radeon1 libdrm2 libepoxy0 libfontconfig1 libfontenc1 libgbm1 libgck-1-0 libgconf-2-4 libgcr-3-common libgcr-base-3-1 libgdk-pixbuf2.0-common libgfortran3 libgl1-mesa-dri libglapi-mesa libgnome-keyring-common libgnome-keyring0 libgraphite2-3 libgtk-3-common libgtk2.0-common libgtop-2.0-10 libgtop2-common libharfbuzz0b libice6 libjbig0 libjpeg62-turbo libjson-glib-1.0-0 libjson-glib-1.0-common liblapack3 liblcms2-2 libllvm3.9 libpam-gnome-keyring libpango-1.0-0 libpangoft2-1.0-0 libpciaccess0 libpixman-1-0 libproxy1v5 libquadmath0 librest-0.7-0 libsecret-1-0 libsecret-common libsm6 libsoup-gnome2.4-1 libsoup2.4-1 libthai-data libthai0 libtiff5 libtxc-dxtn-s2tc0 libwayland-client0 libwayland-cursor0 libwayland-server0 libwebp6 libx11-data libx11-xcb1 libxau6 libxcb-dri2-0 libxcb-dri3-0 libxcb-glx0 libxcb-present0 libxcb-render0 libxcb-shape0 libxcb-shm0 libxcb-sync1 libxcb-util0 libxcb-xfixes0 libxcb1 libxdmcp6 libxkbcommon0 libxshmfence1 p11-kit p11-kit-modules python-numpy x11-common xkb-data Use 'apt autoremove' to remove them. The following additional packages will be installed: elogind libelogind0 libpam-elogind pinentry-curses python-urwid wicd-curses Suggested packages: pinentry-doc Recommended packages: policykit-1 The following packages will be REMOVED: adwaita-icon-theme analog at-spi2-core consolekit dbus-x11 gconf2 gcr gksu gnome-keyring gtk-update-icon-cache libatk-bridge2.0-0 libatspi2.0-0 libcairo-gobject2 libcairo2 libegl1-mesa libgail-common libgail18 libgcr-ui-3-1 libgd3 libgdk-pixbuf2.0-0 libgksu2-0 libgl1-mesa-glx libglade2-0 libglew2.0 libglu1-mesa libgtk-3-0 libgtk-3-bin libgtk2.0-0 libgtk2.0-bin libnotify4 libpam-ck-connector libpangocairo-1.0-0 libpolkit-backend-consolekit-1-0 libpolkit-gobject-1-0 libpolkit-gobject-consolekit-1-0 librsvg2-2 librsvg2-common libstartup-notification0 libwayland-egl1-mesa libx11-6 libxaw7 libxcomposite1 libxcursor1 libxdamage1 libxext6 libxfixes3 libxft2 libxi6 libxinerama1 libxmu6 libxmuu1 libxpm4 libxrandr2 libxrender1 libxt6 libxtst6 libxv1 libxxf86dga1 libxxf86vm1 mesa-utils notification-daemon pinentry-gnome3 pinentry-gtk2 python-cairo python-glade2 python-gtk2 python-notify wicd-gtk x11-utils x11-xserver-utils xauth The following NEW packages will be installed: elogind libelogind0 libpam-elogind pinentry-curses python-urwid wicd-curses 0 upgraded, 6 newly installed, 71 to remove and 0 not upgraded. Need to get 1,632 kB of archives. After this operation, 68.8 MB disk space will be freed. Do you want to continue? [Y/n] n If it were something local
Re: [DNG] Failed run live usb iso
On 9/26/20 3:09 AM, Budi via Dng wrote: > Did download this: > [b]devuan_beowulf_3.0.0_amd64_desktop-live.iso[/b] > (1.2GB) > > and did: > [code]sudo dd if=devuan_beowulf_3.0.0_amd64_desktop-live.iso > of=/dev/sdc bs=4096[/code] > > did reboot it, but got sort of this output: > > Error : cannot run Apparmor ... failed > ... > ... > (Other errors) > > how to solve ? Thanks before. Check sha256sum on the iso to make sure it downloaded correctly. Make sure the boot command contains apparmor=0 Maybe try it on a different usb stick. fsmithred 0xA73823D3094C5620.asc Description: application/pgp-keys ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
Re: [DNG] ..devuan to the rescue? Easiest possible newbie email server setup, ideas?
On Sun 27/Sep/2020 20:11:39 +0200 Simon Hobson wrote: Alessandro Vesely via Dng wrote: [...] And it is key to get an IP address without poorly reputed neighbors —check talosintelligence.com. I have no choice over the neighbours ! Don't buy overly cheap connections... I also use lack of rDNS as a check. I also check it for obvious misconfigurations like (from memory) : it's an IP literal (not allowed by RFC), Currently, the RFC allows anything in the HELO name. Without looking it up, I'm sure there are some constraints. The SMTP client MUST, if possible, ensure that the domain parameter to the EHLO command is a primary host name as specified for this command in Section 2.3.5. If this is not possible (e.g., when the client's address is dynamically assigned and the client does not have an obvious name), an address literal SHOULD be substituted for the domain name. An SMTP server MAY verify that the domain name argument in the EHLO command actually corresponds to the IP address of the client. However, if the verification fails, the server MUST NOT refuse to accept a message on that basis. https://tools.ietf.org/html/rfc5321#section-4.1.4 In any case, there are some thing it makes sense to block - so-one else should be running a mail server and claiming to be in my domain, stuff like that. Some basic protocol checks block a good proportion of spam - and very cheaply in terms of resources needed. Correct. Mail servers have a variety of option to check the HELO name. Another possibility to discard spammers claiming to be your domain is to set SPF -all. That, however, has other drawbacks. Best Ale -- ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
Re: [DNG] problem with KDE/plasma on Beowulf / pulseaudio too
On 28/09/2020 02:29, Hendrik Boom wrote: > On Mon, Sep 28, 2020 at 01:35:55AM +0200, aitor_czr wrote: >> On 27/9/20 13:59, g4sra via Dng wrote: >>> I have reservations about where QT5 is going, despite any issue with >>> pulseaudio, now might be a good time to jump ship. > > I've been wondering about QT5, but haven't been able to pinpint what makes me > uneasy. Care to elaborate? History! Remember StarOffice -> OpenOffice leading to the fork and creation of LibreOffice because the other two were taken over and pulled in-house ? MySQL -> MariaDB another example. With respect to KDE\LXQT QT are slowly pulling the source in-house with each release, they keep changing the licensing of it's various aspects. They are also starting to require and charge a fee for licenses. Currently I believe you can submit patches to QT *provided* you register for a QT account first, how long before you need to pay a fee. If I cannot freely submit and have patches applied the official source, then in my book that source is not FOSS even if the source is published for me to look at. I have no qualms about using TDE as the development team have already sort of forked QT -> TQt by maintaining an earlier uninhibited version themselves. > > -- hendrik > ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
Re: [DNG] problem with KDE/plasma on Beowulf / pulseaudio too
There is a growing schism between the Qt Company and the opensource community. The Qt Company published a blog post (https://www.qt.io/blog/qt-offering-changes-2020) reading: > From February onward, everyone, including open-source Qt users, will require > valid Qt accounts to download Qt binary packages. We changed this because we > think that a Qt account lets you make the best use of our services and > contribute to Qt as an open-source user. We want open-source users to help > improve Qt in one form or another, be that through bug reports, forums, code > reviews, or similar. These are currently only accessible from a Qt account, > which is why having one will become mandatory. To which the Qt Foundation answered with: https://mail.kde.org/pipermail/kde-community/2020q2/006098.html This was in April, since then I don't know. Ludovic On 28/09/20 03:29, Hendrik Boom wrote: > On Mon, Sep 28, 2020 at 01:35:55AM +0200, aitor_czr wrote: >> On 27/9/20 13:59, g4sra via Dng wrote: >>> I have reservations about where QT5 is going, despite any issue with >>> pulseaudio, now might be a good time to jump ship. > > I've been wondering about QT5, but haven't been able to pinpint what makes me > uneasy. Care to elaborate? > > -- hendrik > >> >> +1 signature.asc Description: OpenPGP digital signature ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
Re: [DNG] Is t worth the effort for SPF?, DMARC>, DKIM?, etc
On 9/28/20 11:55 AM, terryc wrote: > Does anyone have any figures on how effective these methods are? > It seems we get a new idea every few years and none make the slightest > difference in spam levels. we use all these + custom SA scores for related rules and seen great decline in spam levels. the only spam that come through these days are from the "trusted" email mafia : gmail, yahoo, hotmail. got some custom SA rules for those too, but still it's hard to catch everything right.. just 2c. OpenPGP_0xF634004775696B86_and_old_rev.asc Description: application/pgp-keys OpenPGP_signature Description: OpenPGP digital signature ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
Re: [DNG] Is t worth the effort for SPF?, DMARC>, DKIM?, etc
terryc wrote: >> You can also publish DKIM and SPF records so as to produce >> DMARC-aligned authentication for any hosted domain. Users won't >> notice any difference. > > Does anyone have any figures on how effective these methods are? > It seems we get a new idea every few years and none make the slightest > difference in spam levels. At blocking spam, no idea - but as you say, doesn't seem to have reduced spam much as there are still plenty of compromised systems that can send "legitimate" mail via their configured mail server. But they are highly effective at breaking things that were once considered, and IMO still are, legitimate activities - such as forwarding mail from one mail account to another. But I suspect the big players consider that a good thing as it tends to make people more inclined to use their broken services. > The only result is that there is now an industry of religious extremism > in "blacklisting" sites that don't follow their desired implementation. Agreed >> Currently, the RFC allows anything in the HELO name. > > Brings back memories of my first linux mailer SMTP, where it came with > teo alternative sets of greetings. I always preferred the second option > of; > "Who are you going to pretend to be today" and the response > "Thrilled beyond bladder control to meet you" > and so on. That's great :D I just might borrow those. Simon ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
Re: [DNG] Failed run live usb iso
Hi, Ian Zimmerman writes: > On 2020-09-26 18:29, Dr. Nikolaus Klepp wrote: > >> did you do a "sync" afterwards and waited till it returned? If not, >> then the image was not written completely. You can monitor the writing >> process with "watch iostat" (if you have sysstat installed) > > Or run dd with oflag=direct. I also try to smooth out the timing with > something like mbuffer whenever these FSCKing flash devices are > involved. Cf: > > http://very.loosely.org/itz-blog/reading-sd-cards-safely.html Or just use cp for that matter, per: https://www.debian.org/releases/stable/amd64/ch04s03.en.html Worked fine for my USB stick. Hope this helps, -- Olaf Meeuwissen, LPIC-2FSF Associate Member since 2004-01-27 GnuPG key: F84A2DD9/B3C0 2F47 EA19 64F4 9F13 F43E B8A4 A88A F84A 2DD9 Support Free Softwarehttps://my.fsf.org/donate Join the Free Software Foundation https://my.fsf.org/join ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
[DNG] Is t worth the effort for SPF?, DMARC>, DKIM?, etc
On Sun, 27 Sep 2020 17:20:06 +0200 Alessandro Vesely via Dng wrote: > You can also publish DKIM and SPF records so as to produce > DMARC-aligned authentication for any hosted domain. Users won't > notice any difference. Does anyone have any figures on how effective these methods are? It seems we get a new idea every few years and none make the slightest difference in spam levels. The only result is that there is now an industry of religious extremism in "blacklisting" sites that don't follow their desired implementation. > Currently, the RFC allows anything in the HELO name. Brings back memories of my first linux mailer SMTP, where it came with teo alternative sets of greetings. I always preferred the second option of; "Who are you going to pretend to be today" and the response "Thrilled beyond bladder control to meet you" and so on. > > > > jm2c > Ale ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
Re: [DNG] ..devuan to the rescue? Easiest possible newbie email server setup, ideas?
Ian Zimmerman wrote: >> You mean, like in the web hosting days before hostname headers where >> you needed a different IP address for each hosted domain name ? That's >> very 20th century and not a luxury most of us have. > > FWIW, Linode (where my sole server is hosted) gives me a /64 IPv6 block > for free. That's 2^64 addresses. And the same with our home ISP, in case > I felt like violating the terms and running a server. Yeah, I can have a /56 or /48 for IPv6. How many IPv4 addresses do you have since much of the world is still IPv4 ? Simon ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
Re: [DNG] libnetaid and simple-netaid-cdk released!
On 28/9/20 8:31, aitor_czr wrote: The above issues have been fixed and the packages are available in: deb http://packages.gnuinos.org/merged beowulf main deb-src http://packages.gnuinos.org/merged beowulf main You need gnuinos-keyring. Aitor. ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
Re: [DNG] libnetaid and simple-netaid-cdk released!
Hi again, On 6/4/20 0:43, aitor_czr wrote: Hi Mike, On 4/5/20 8:20 PM, Mike Schmitz via Dng wrote: One thing I ran into right away, and took me a few tries before I figured it out; I needed to quote my passphrase, since it has spaces. It might be good to do that in your call to wpa-passphrase. It shouldn't have taken as many tries as it did, since I just went through it with a script I am working on (I am bulding a plugin for awesomewm to do this). I'll keep it in mind. It also doesn't seem to store the passphrase anywhere, so the user would still need to type it in every time. The above issues have been fixed and the packages are available in: deb http://packages.gnuinos.org/merged beowulf main deb-src http://packages.gnuinos.org/merged beowulf main Just install: apt-get install libnetaid snetaid simple-netaid-cdk You also need sudo and xterm, but you can choose another terminal changing the exec entry in simple-netaid-cdk.desktop: Exec=xterm -e "sudo simple-netaid-cdk" to your needs. Cheers, Aitor. ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
