[gentoo-user] gtk-sharp or glade-sharp : what to do
Hi, some packages need gtk-sharp, others glade-sharp and mono-tools needs both. But gtk-sharp-2.12.6-r1 has a negative dependency on glade-sharp. So, one cannot install both. Who cuts this Gordian knot? Helmut. -- Helmut Jarausch Lehrstuhl fuer Numerische Mathematik RWTH - Aachen University D 52056 Aachen, Germany
Re: [gentoo-user] do we have the package ncurses-devel or something like that?
Du Zhongdong schrieb: Thanks, all I already have sys-libs/ncurses installed on my gentoo, and, the real problem is: the Linux kernel source-tree's owner is root, and I ran make menuconfig as my normal user. a silly mistake. thanks anyway On Wed, Dec 3, 2008 at 11:52 AM, Douglas Anderson [EMAIL PROTECTED] wrote: On Wed, Dec 3, 2008 at 12:43 PM, Du Zhongdong [EMAIL PROTECTED] wrote: Hi, all. I've setup gentoo on my Vmware, everything's ok. Now I want to re-check my kernel config, [snip] A: Because it messes up the order in which people normally read text. Q: Why is top-posting such a bad thing? A: Top-posting. Q: What is the most annoying thing in e-mail?
Re: [gentoo-user] lanmap ebuild
Ricardo Saffi Marques schrieb: Justin wrote: Justin schrieb: Take a look into the INSTALL.txt. Is written there what to do and which deps are requiered. Additionally fill a ebuild request bug at b.g.o. Next saturday it is bugday, I will try to get time to solve it then. Here it is https://bugs.gentoo.org/249631 Oh geez! Sorry Justin. I didn't forget to submit the bug. I'm on the last week of final exams here in college. Today I had my last one. Was going to submit the bug probably tomorrow! :) But thanks a lot! Best regards, Saffi On the website there is a broken link to rev106. if you find the tarbal somewhere in the net I will bump the ebuild. The svn repo is also broken. So if you want a newer version, just try to get in touch with the author and ask him to provide the newer code. Second, I don't know if I missed some USEflags in the deps, so if anyone came across something just ping me. signature.asc Description: OpenPGP digital signature
Re: [gentoo-user] gnome-panel eats 350-400 MB
Albert Hopkins schrieb: On Tue, 2008-12-02 at 23:38 +0100, Michele Schiavo wrote: on me, it aet 413.9 of virtual and 44.9 of resident.. Ok, here's is what I found. Both my 32-bit GNOME boxes show about 70-80MB VIRT for gnome-panel. My x64 box shows 303MB. Moreover, top shows the following top memory munchers: Process VIRT RES - epiphany 747MB 104MB pidgin502MB47MB evolution 597MB43MB nautilus 483MB41MB gnome-panel 303MB32MB --- Total 2632MB 267MB However free shows only 643MB in total used (including buffers/cache) with no swap. According to the top man page VIRT = SWAP + RES, but obviously that doesn't add up. But the RES for gnome-panel is similar on both my 32- and 64-bit machines. So I'm guessing something on the 64bit machines is getting reported/translated differently. Maybe someone smarter than me can comment on this. for me 38.5 and 18.5 Mb with an uptime and locked in desktop for 58 days. signature.asc Description: OpenPGP digital signature
Re: [gentoo-user] do we have the package ncurses-devel or something like that?
Du Zhongdong schrieb: Thanks, all I already have sys-libs/ncurses installed on my gentoo, and, the real problem is: the Linux kernel source-tree's owner is root, and I ran make menuconfig as my normal user. a silly mistake. thanks anyway On Wed, Dec 3, 2008 at 11:52 AM, Douglas Anderson [EMAIL PROTECTED] wrote: On Wed, Dec 3, 2008 at 12:43 PM, Du Zhongdong [EMAIL PROTECTED] wrote: Hi, all. I've setup gentoo on my Vmware, everything's ok. Now I want to re-check my kernel config, #cd /usr/src/linux [Wed Dec 03, 11:38 AM] axdu@ linux$ make menuconfig *** Unable to find the ncurses libraries or the *** required header files. *** 'make menuconfig' requires the ncurses libraries. *** *** Install ncurses (ncurses-devel) and try again. *** make[1]: *** [scripts/kconfig/dochecklxdialog] Error 1 make: *** [menuconfig] Error 2 I try to emerge ncurses-devel but emerge says: [Wed Dec 03, 11:40 AM] axdu@ linux$ sudo emerge ncurses-devel Calculating dependencies | emerge: there are no ebuilds to satisfy ncurses-devel. what's the problem with ncurses-devel? if there's no such thing in GENTOO_MIRRORS, where can I download the source? thanks in advance That message is a menuconfig error, it's not from gentoo, which is why the name is different. You just need to install sys-libs/ncurses. I ran in this problem too. Since I think version 2.6.26 or 5 it happens if I try to make a menuconfig as user. If you find a solution let us know. signature.asc Description: OpenPGP digital signature
Re: [gentoo-user] do we have the package ncurses-devel or something like that?
Zhang Le schrieb: On 11:43 Wed 03 Dec , Du Zhongdong wrote: [Wed Dec 03, 11:40 AM] axdu@ linux$ sudo emerge ncurses-devel Calculating dependencies | emerge: there are no ebuilds to satisfy ncurses-devel. Generally speaking, there is no packages like 'foo-devel' in gentoo. And a little suggestion: try to use eix to find the exact package name in gentoo. emerge eix update-eix eix ncurses If you need to find package name from file name, try e-file: http://li2z.cn/category/e-file/ Zhang, Le The link is broken, I always love to promote this site: http://portagefilelist.de signature.asc Description: OpenPGP digital signature
Re: [gentoo-user] [OT] Fragmentation of my drives. Curious mostly
On Wed, 3 Dec 2008 00:28:54 + Stroller [EMAIL PROTECTED] wrote: On 2 Dec 2008, at 13:13, Wolfgang Liebich wrote: ... My experience with NTFS is somewhat more balanced (maybe). In about 12 years I experienced one damaged NTFS instance. This was caused by a crash during an installation ... So my conclusion --- NTFS is not so easy to damage, but if you manage it, you're toast :-/ I'm not sure that your experience with NTFS _is_ more balanced - I've seen a number of PCs this year which fail booting into Windows (displaying the XP splashscreen before rebooting again in an unending cycle) which have been repaired using only chkdsk. Because the user liked to power his PC down at the wall - for energy- saving reasons or peace-of-mind over house-fires, I'm knackered if I know - and because it was taking too long to shutdown when he wanted to go to bed - I know one of these was unplugged whilst still shutting down, but surely not all of them were. Stroller. Very much the same happens with Linux FSs when abused like this. I live in area with frequent power outages and have my share of damaged FSes and destroyed HDDs. (Un)fortunately I can't put NTFS in the same chart for comparison, because I have no Windows, no Gates - only Apache inside. (sorry for the old joke, I couldn't help it) :) P.S. It's not Windows vs Linux as somebody implied. My choice is clear. I'm just trying to stay objective. -- Best regards, Daniel
Re: [gentoo-user][ot] mail links as footnotes
Stroller wrote: I've been wondering for a while why no alternative has been proposed. HTML was originally considered poor because it wasted bandwidth, HTML messages being *at least* twice the size of the plain text, but often several times as large. I wonder if console-based mail-readers were late in adopting it for that reason, and it gained additional unpopularity amongst programmers the technorati as a consequence. Nowadays HTML is bad principally because it imposes fonts upon the reader. I know what size my monitor is at what size my mail program should render text. I have an HTML-capable mail reader have no objection to the HTML messages sent by Amazon Deep Discount, because they are clear readable - they have expensive design teams who clearly take a deal of time ensuring that. But a poster to the Openmoko mailing list a while back formatted his messages not only in a tasteful green which I'm sure he enjoyed a lot, but also in a tiny font which was unreadable on my screen. Undoubtedly it looked fine to him, but I don't know what resolution he was using - 800 x 600??? - because the characters were about 2mm high on my 20 @ 1600 x 1200. What I think would be ideal for email would be a very simple text markup which allows italics, underline, bold and strikethrough characters in addition to links. I'd love to be able to convey those kinds of emphasis to readers, and I'd also love to be able to use proper clickable links in the body of a text message, but at present I can't, because I don't think it's appropriate for me to impose 13-point Verdana on those who prefer Times or Courier in some other size. EDIT: I guess a text size +1 for headers would also be appropriate (+2, -1, -2), bullet points plus superscript and subscript. Clearly some hashing out would be appropriate, but ideally formatting should be minimal, so that even displayed as pain-text the formatting is not intrusive; EG: --strikethough--, /italics/, _underline_ c. I have also found that clients appear inconsistent about how they apply quoting to HTML messages. At least often if I reply to an HTML message and change it to plain text then the quoted message magically looses a level of quoting. Typically I change to plain-text like this because I've copied pasted a single sentence out of the quoted section and it comes out into my own paragraph as blue, the wrong size and an inconsistent font - this is another grip about HTML. I'm surprised by this, and always assumed TinyURL kept their links forever. Are you sure it's not simply that the post is so old it points to a target page that no longer exists? It looks like TinyURL have the capacity for about 2,176,782,336 unique links before they need to add another digit after the slash. I guess my main point was this. Some mailing list people have some set ups that may not work right in certain situations. As I have said, some here are using older mail readers that don't do well, if display at all, html messages. That's what I was told when I first joined here. I also know from being here a long time that if a person does something silly, like sending a 2Mb email or sending HTML that they can't read, they get sent to the dust bin. Also, some people have replied from cell phones or live in countries that charge by the amount of data. The difference between html and text on a list this busy can be a lot. As far tinyurl. I'm not sure how old they were or if they expired or what. It seemed it went to a page that said it was a old link or something but it was a while back. I just know I got it a few times and decided tinyurl is not for me. Dale :-) :-)
Re: [gentoo-user][ot] mail links as footnotes
On Wed, Dec 3, 2008 at 8:02 AM, Dale [EMAIL PROTECTED] wrote: Stroller wrote: I've been wondering for a while why no alternative has been proposed. HTML was originally considered poor because it wasted bandwidth, HTML messages being *at least* twice the size of the plain text, but often several times as large. I wonder if console-based mail-readers were late in adopting it for that reason, and it gained additional unpopularity amongst programmers the technorati as a consequence. Nowadays HTML is bad principally because it imposes fonts upon the reader. I know what size my monitor is at what size my mail program should render text. [...] I have also found that clients appear inconsistent about how they apply quoting to HTML messages. At least often if I reply to an HTML message and change it to plain text then the quoted message magically looses a level of quoting. Typically I change to plain-text like this because I've copied pasted a single sentence out of the quoted section and it comes out into my own paragraph as blue, the wrong size and an inconsistent font - this is another grip about HTML. I guess my main point was this. Some mailing list people have some set ups that may not work right in certain situations. As I have said, some here are using older mail readers that don't do well, if display at all, html messages. That's what I was told when I first joined here. I also know from being here a long time that if a person does something silly, like sending a 2Mb email or sending HTML that they can't read, they get sent to the dust bin. Also, some people have replied from cell phones or live in countries that charge by the amount of data. The difference between html and text on a list this busy can be a lot. In general, html email is mostly a solution in search of a problem, and it ends up causing trouble and being overall worse than the simple, efficient, easy, working, universally adopted technology that preceded it. Besides all the problems already listed in this discussion, html email facilitates malware, web bugs, phishing, spam, and incompatibility (besides the people who use HTML-incapable email clients, there are email clients that don't render HTML email well (it is more common then you think), not to mention that the HTML email itself is often broken). And of the HTML emails, a tiny minority actually make something useful of HTML, while the rest is either deliberately harmful or has a lot of fancy formating that looks it was created by a teenager. Besides looking horrible, they are often harder to read. As for the guy who suggested a form of sanitized HTML for email, maybe you would like enriched text http://en.wikipedia.org/wiki/Enriched_text -- Software is like sex: it is better when it is free - Linus Torvalds
Re: [gentoo-user][ot] mail links as footnotes
Jorge Peixoto de Morais Neto wrote: In general, html email is mostly a solution in search of a problem, and it ends up causing trouble and being overall worse than the simple, efficient, easy, working, universally adopted technology that preceded it. Besides all the problems already listed in this discussion, html email facilitates malware, web bugs, phishing, spam, and incompatibility (besides the people who use HTML-incapable email clients, there are email clients that don't render HTML email well (it is more common then you think), not to mention that the HTML email itself is often broken). And of the HTML emails, a tiny minority actually make something useful of HTML, while the rest is either deliberately harmful or has a lot of fancy formating that looks it was created by a teenager. Besides looking horrible, they are often harder to read. As for the guy who suggested a form of sanitized HTML for email, maybe you would like enriched text http://en.wikipedia.org/wiki/Enriched_text Someone who put it better than I could. I use HTML elsewhere but out of respect for the list and those who use it, I use text only, try not to send anything huge and put links in a way that should work for everybody. Maybe I am just a pushover? It's not like I own the list or anything either. :/ Dale :-) :-)
Re: [gentoo-user][ot] mail links as footnotes
On Wednesday 03 December 2008 12:51:19 Dale wrote: As for the guy who suggested a form of sanitized HTML for email, maybe you would like enriched text http://en.wikipedia.org/wiki/Enriched_text Someone who put it better than I could. I use HTML elsewhere but out of respect for the list and those who use it, I use text only, try not to send anything huge and put links in a way that should work for everybody. Maybe I am just a pushover? It's not like I own the list or anything either. :/ Now if everyone would use HTML mail like you do, there wouldn't be any problems with it :-) My personal bug-bear with HTML mail is the use of MS Comic Sans... -- alan dot mckinnon at gmail dot com
Re: [gentoo-user][ot] mail links as footnotes
Alan McKinnon wrote: On Wednesday 03 December 2008 12:51:19 Dale wrote: As for the guy who suggested a form of sanitized HTML for email, maybe you would like enriched text http://en.wikipedia.org/wiki/Enriched_text Someone who put it better than I could. I use HTML elsewhere but out of respect for the list and those who use it, I use text only, try not to send anything huge and put links in a way that should work for everybody. Maybe I am just a pushover? It's not like I own the list or anything either. :/ Now if everyone would use HTML mail like you do, there wouldn't be any problems with it :-) My personal bug-bear with HTML mail is the use of MS Comic Sans... Mine should be text. I have Seamonkey set to send text only to anything gentoo.org or kde.org. I can't check myself since gmail doesn't send me a copy back. Is gmail overriding my local setting? Tell me it ain't so? Dale :-) :-)
Re: [gentoo-user][ot] mail links as footnotes
On Wednesday 03 December 2008 13:10:26 Dale wrote: Alan McKinnon wrote: On Wednesday 03 December 2008 12:51:19 Dale wrote: As for the guy who suggested a form of sanitized HTML for email, maybe you would like enriched text http://en.wikipedia.org/wiki/Enriched_text Someone who put it better than I could. I use HTML elsewhere but out of respect for the list and those who use it, I use text only, try not to send anything huge and put links in a way that should work for everybody. Maybe I am just a pushover? It's not like I own the list or anything either. :/ Now if everyone would use HTML mail like you do, there wouldn't be any problems with it :-) My personal bug-bear with HTML mail is the use of MS Comic Sans... Mine should be text. I have Seamonkey set to send text only to anything gentoo.org or kde.org. I can't check myself since gmail doesn't send me a copy back. Is gmail overriding my local setting? Tell me it ain't so? No, your mail is just fine - good old plain text. When I said your mail I meant in the larger context, like if only the idiots at work would use HTML mail sanely, like how Dale says he uses it when away from the list I routinely get HTML mail from the idiots who man our support desk, which contain: a. one word of information - Thanks b. 100k of the entire conversation up to that point, every single disclaimer from every single mail in the thread intact, 3 jpgs with the company logo and slogan, plus assorted stupid motivational platitudes from whatever church the sender happens to attend. One day I'm going to make good on my usual threat, and actually really make their mailbox go away :-) -- alan dot mckinnon at gmail dot com
Re: [gentoo-user] do we have the package ncurses-devel or something like that?
On 10:34 Wed 03 Dec , Justin wrote: Zhang Le schrieb: If you need to find package name from file name, try e-file: http://li2z.cn/category/e-file/ The link is broken, I always love to promote this site: the site is temporarily down. unfornately it is not mine. http://portagefilelist.de e-file is actually using this site. it could save you some time opening up your browser or at least a 'ctrl-t'. the ebuild is already in gentoo-china overlay. Zhang, Le
[gentoo-user] Re: do we have the package ncurses-devel or something like that?
Zhang Le wrote: On 10:34 Wed 03 Dec , Justin wrote: Zhang Le schrieb: If you need to find package name from file name, try e-file: http://li2z.cn/category/e-file/ The link is broken, I always love to promote this site: the site is temporarily down. unfornately it is not mine. http://portagefilelist.de e-file is actually using this site. it could save you some time opening up your browser or at least a 'ctrl-t'. the ebuild is already in gentoo-china overlay. You can also use equery from the app-portage/gentoolkit package. $ equery belongs ncurses.h [ Searching for file(s) ncurses.h in *... ] sys-libs/ncurses-5.6-r2 (/usr/include/ncurses.h - curses.h) sys-libs/ncurses-5.6-r2 (/usr/include/ncursesw/ncurses.h - curses.h)
[gentoo-user] do we have the package ncurses-devel or something like that?
on Wednesday 12/03/2008 Du Zhongdong([EMAIL PROTECTED]) wrote Hi, all. I've setup gentoo on my Vmware, everything's ok. Now I want to re-check my kernel config, #cd /usr/src/linux [Wed Dec 03, 11:38 AM] axdu@ linux$ make menuconfig *** Unable to find the ncurses libraries or the *** required header files. *** 'make menuconfig' requires the ncurses libraries. *** *** Install ncurses (ncurses-devel) and try again. *** make[1]: *** [scripts/kconfig/dochecklxdialog] Error 1 make: *** [menuconfig] Error 2 I try to emerge ncurses-devel but emerge says: [Wed Dec 03, 11:40 AM] axdu@ linux$ sudo emerge ncurses-devel Calculating dependencies | emerge: there are no ebuilds to satisfy ncurses-devel. what's the problem with ncurses-devel? if there's no such thing in GENTOO_MIRRORS, where can I download the source? Its named differently -- just ncurses. You might want to get a package called eix, where you can do quick searches for packages and have more fun. -- Your life is like a penny. You're going to lose it. The question is: How do you spend it? John Covici [EMAIL PROTECTED]
Re: [gentoo-user][ot] mail links as footnotes
Alan McKinnon wrote: On Wednesday 03 December 2008 13:10:26 Dale wrote: Mine should be text. I have Seamonkey set to send text only to anything gentoo.org or kde.org. I can't check myself since gmail doesn't send me a copy back. Is gmail overriding my local setting? Tell me it ain't so? No, your mail is just fine - good old plain text. When I said your mail I meant in the larger context, like if only the idiots at work would use HTML mail sanely, like how Dale says he uses it when away from the list I routinely get HTML mail from the idiots who man our support desk, which contain: a. one word of information - Thanks b. 100k of the entire conversation up to that point, every single disclaimer from every single mail in the thread intact, 3 jpgs with the company logo and slogan, plus assorted stupid motivational platitudes from whatever church the sender happens to attend. One day I'm going to make good on my usual threat, and actually really make their mailbox go away :-) Whew, I thought I was going to have to switch email addys again. I was not looking forward to having to pay Yahoo for theirs. I'm certainly not wanting to since I got a hospital bill to pay on now. Oh well, I'm living if that counts for anything. ;-) Since I am on dial-up, I hate the ones that have HUGE video clips attached. I have had to sign in via webmail and just delete the email without ever even seeing it. Don't you love it? Maybe I shouldn't mention that since it may give someone ideas. LOL Dale :-) :-)
Re: [gentoo-user] Re: do we have the package ncurses-devel or something like that?
On 13:40 Wed 03 Dec , Nikos Chantziaras wrote: Zhang Le wrote: On 10:34 Wed 03 Dec , Justin wrote: Zhang Le schrieb: If you need to find package name from file name, try e-file: http://li2z.cn/category/e-file/ The link is broken, I always love to promote this site: the site is temporarily down. unfornately it is not mine. http://portagefilelist.de e-file is actually using this site. it could save you some time opening up your browser or at least a 'ctrl-t'. the ebuild is already in gentoo-china overlay. You can also use equery from the app-portage/gentoolkit package. You can also use qfile from portage-utils, which is more faster since it is written in C. But, AFAIK, they can only query packages already installed in your system. Aren't they? :) Zhang, Le
Re: [gentoo-user][ot] mail links as footnotes
On Wednesday 03 December 2008 14:04:41 Dale wrote: Since I am on dial-up, I hate the ones that have HUGE video clips attached. I have had to sign in via webmail and just delete the email without ever even seeing it. Don't you love it? Maybe I shouldn't mention that since it may give someone ideas. LOL Revenge is sweet isn't it? I'm sitting here logged in as root to one of the biggest mail relays in my country, and I'm thinking mail bomb who do I know that deserves one of these? Maybe I should shut up before I give myself ideas. :-) -- alan dot mckinnon at gmail dot com
[gentoo-user] Re: do we have the package ncurses-devel or something like that?
Zhang Le wrote: [...] But, AFAIK, they can only query packages already installed in your system. Aren't they? :) Oops, you're right, forgot about that.
Re: [gentoo-user] gtk-sharp or glade-sharp : what to do
Helmut Jarausch schrieb: Hi, some packages need gtk-sharp, others glade-sharp and mono-tools needs both. But gtk-sharp-2.12.6-r1 has a negative dependency on glade-sharp. So, one cannot install both. Who cuts this Gordian knot? Helmut. gtk-sharp-2.10 doesn't block glade-sharp. simply do: echo 'gtk-sharp-2.10.2' /etc/portage/package.mask
[gentoo-user] emerge --update pulling in enlightenment-0.16.9999.050
emerge --update --deep --pretend world is pulling in x11-wm/enlightenment-0.16.999.050 I currently have x11-wm/enlightenment-0.16.8.14 installed, and was given to understand that the *.999 branch is the devel branch. Looking at the ebuilds show that 0.16.8.14 has KEYWORDS=alpha amd64 arm hppa ia64 ppc ppc64 sh sparc x86 ~x86-fbsd while 0.16.999.50 has KEYWORDS= I don't have any /etc/portage/package.keywords entry. So why is 0.16.999.50 being pulled in? I am using portage 2.1.6_rc2 Thanks, W -- Support medical examiners... die strangely. Sortir en Pantoufles: up 726 days, 13:15
Re: [gentoo-user] emerge --update pulling in enlightenment-0.16.9999.050
On Wed, Dec 03, 2008 at 09:37:45AM -0500, Penguin Lover Willie Wong squawked: emerge --update --deep --pretend world is pulling in x11-wm/enlightenment-0.16.999.050 I currently have x11-wm/enlightenment-0.16.8.14 installed, and was given to understand that the *.999 branch is the devel branch. Looking at the ebuilds show that 0.16.8.14 has KEYWORDS=alpha amd64 arm hppa ia64 ppc ppc64 sh sparc x86 ~x86-fbsd while 0.16.999.50 has KEYWORDS= I don't have any /etc/portage/package.keywords entry. So why is 0.16.999.50 being pulled in? Ah... nevermind. It was not a problem with portage. 0.16.999.50 is not even in the tree; it was added to the enlightenment overlay by vapier. Apparently it inherits from the enlightenment eclass, which has snip case ${EKEY_STATE:-${E_STATE}} in release) KEYWORDS=alpha amd64 arm hppa ia64 mips ppc ppc64 sh sparc x86 ~x86-fbsd;; snap)KEYWORDS=~alpha ~amd64 ~arm ~hppa ~ia64 ~mips ~ppc ~ppc64 ~sh ~sparc ~x86 ~x86-fbsd;; live)KEYWORDS=;; esac /snip Can anyone tell me what this is about? I know some people on this list use the enlightenment overlay: so why is it that the ebuilds for 0.16.999.50 and , which don't look all that different to my untrained eye, which both inherit enlightenment, and thus both set the KEYWORDS using that snipplet above, will behave such that the former is trying to be installed on my system while the latter is not? W -- Anyone who is capable of getting themselves made President should on no account be allowed to do the job. - Some wisdom from The Book. Sortir en Pantoufles: up 726 days, 13:28
Re: [gentoo-user] do we have the package ncurses-devel or something like that?
Zhang Le schrieb: On 10:34 Wed 03 Dec , Justin wrote: Zhang Le schrieb: If you need to find package name from file name, try e-file: http://li2z.cn/category/e-file/ The link is broken, I always love to promote this site: the site is temporarily down. unfornately it is not mine. as long it is down, take a look at this site http://www.portagefilelist.de/index.php/Tools http://portagefilelist.de e-file is actually using this site. it could save you some time opening up your browser or at least a 'ctrl-t'. the ebuild is already in gentoo-china overlay. Zhang, Le signature.asc Description: OpenPGP digital signature
Re: [gentoo-user] Fragmentation of my drives. Curious mostly
On Fri, Nov 28, 2008 at 10:09 AM, Joshua Murphy [EMAIL PROTECTED] wrote: On Fri, Nov 28, 2008 at 6:46 AM, Alan McKinnon [EMAIL PROTECTED] wrote: On Friday 28 November 2008 13:14:42 Dale wrote: If this is a little high, what would be the best way to defrag it? By not defragging it. It's not Windows. Windows boxes needs defragging not because fragmentation is a huge problem in itself, but because windows filesystems are a steaming mess of [EMAIL PROTECTED] that do little right and most things wrong. Defrag treats the symptom, not the cause :-) Reiser tends to self-balance itself out. What is especially noteworthy is that none of the general purpose Linux filesystems provide a defrag utility. Theodore 'Tso and Hans Reiser are both exceptional programmers, if there was a need for such a tool they would assuredly have written one. They did not, so there probably isn't. Any Linux defrag tool you encounter will have been written by a third party separate from the developers. It will move blocks around and update superblocks, the drive will have to be unmounted for that to work and a slight misunderstanding of how to do it will ruin data. Are you willing to take the very real risk of data corruption? Is there a best way? I do have a second hard drive that I back up too. Both Drives are 80Gbs and I do have a set of DVD back ups as well. I can update those pretty quick. -- alan dot mckinnon at gmail dot com While not trying to incite flames here... xfs isn't general purpose? xfs_fsr defrags xfs partitions while they're mounted and is designed to be used from cron (it's in xfsdump, not xfsprogs). File fragmentation, while a fact of life on any filesystem that sees any real use, does slow access times, as the drive head has to jump from one place to another, so a lot of fragmentation is a bad thing... but as you say, we're not dealing with FAT based FS's here, so severe fragmentation only shows itself on very full filesystems. I very rarely see over 80% usage of my filesystems and have never consistently checked fragmentation levels, though, so I can't say whether xfs's being the exception on having a tool for the job means it particularly needed one... I believe JFS has a filesystem defrag tool as well, but I don't think it has a file defrag tool. My favorite way to defrag individual files is to mv to /dev/shm, sync, mv back to hard drive. I've found fragmention to be noticable (as far as slowing disk read speeds) on large files that were downloaded over the internet. Large ISO images, TV shows etc that are hundreds of megabytes downloaded over a long period of time (especially if multiple downloads are streaming at once). On my old slow computer (P4 2.8ghz) the file fragmentation on ext3 would get so bad that I could not burn DVD backups of the files at full speed without first defragmenting them.
Re: [gentoo-user] emerge --update pulling in enlightenment-0.16.9999.050
The Builds are Live CVS Builds. The default is to use the Snapshot builds which are getting pulled in. -Rajat On Wed, Dec 3, 2008 at 8:29 PM, Willie Wong [EMAIL PROTECTED] wrote: On Wed, Dec 03, 2008 at 09:37:45AM -0500, Penguin Lover Willie Wong squawked: emerge --update --deep --pretend world is pulling in x11-wm/enlightenment-0.16.999.050 I currently have x11-wm/enlightenment-0.16.8.14 installed, and was given to understand that the *.999 branch is the devel branch. Looking at the ebuilds show that 0.16.8.14 has KEYWORDS=alpha amd64 arm hppa ia64 ppc ppc64 sh sparc x86 ~x86-fbsd while 0.16.999.50 has KEYWORDS= I don't have any /etc/portage/package.keywords entry. So why is 0.16.999.50 being pulled in? Ah... nevermind. It was not a problem with portage. 0.16.999.50 is not even in the tree; it was added to the enlightenment overlay by vapier. Apparently it inherits from the enlightenment eclass, which has snip case ${EKEY_STATE:-${E_STATE}} in release) KEYWORDS=alpha amd64 arm hppa ia64 mips ppc ppc64 sh sparc x86 ~x86-fbsd;; snap)KEYWORDS=~alpha ~amd64 ~arm ~hppa ~ia64 ~mips ~ppc ~ppc64 ~sh ~sparc ~x86 ~x86-fbsd;; live)KEYWORDS=;; esac /snip Can anyone tell me what this is about? I know some people on this list use the enlightenment overlay: so why is it that the ebuilds for 0.16.999.50 and , which don't look all that different to my untrained eye, which both inherit enlightenment, and thus both set the KEYWORDS using that snipplet above, will behave such that the former is trying to be installed on my system while the latter is not? W -- Anyone who is capable of getting themselves made President should on no account be allowed to do the job. - Some wisdom from The Book. Sortir en Pantoufles: up 726 days, 13:28
Re: [gentoo-user] ssmtp att woes
On Monday 01 December 2008, John Blinka wrote: I recently switched to att from another isp. At that other isp, my ssmtp setup worked perfectly. With att, a similar ssmtp setup (modified appropriately to point to att's smtp server) does not work at all. ATT told me to use the server smtp.att.yahoo.com and port 465. So my ssmtp.conf file looks like: Debug=YES [EMAIL PROTECTED] mailhub=smtp.att.yahoo.com:465 AuthUser=xxx AuthPass=yyy rewriteDomain=att.net FromLineOverride=YES UseTLS=YES and my revaliases file looks like [EMAIL PROTECTED]:smtp.att.yahoo.com:465 The result of the command mail -v -s test [EMAIL PROTECTED] is: [-] 220 smtp122.sbc.mail.sp1.yahoo.com ESMTP [-] EHLO tobey [-] 250 8BITMIME [-] AUTH LOGIN [-] 334 VXNlcm5hbWU6 [-] am9obi5ibGlua2E= [-] 334 UGFzc3dvcmQ6 [-] 535 authorization failed (#5.7.0) send-mail: Authorization failed (535 authorization failed (#5.7.0)) Can't send mail: sendmail process failed with error code 1 I read somewhere that some people can't get att's port 465 to work with ssmtp and that they have used port 587 successfully. Not so for me. Using port 587 (replacing 465 by 587 in ssmtp.conf and revaliases), the result of mail -v -s test [EMAIL PROTECTED] is: SSL_connect: Success send-mail: Cannot open smtp.att.yahoo.com:587 Can't send mail: sendmail process failed with error code 1 I have no problem at all sending mail to my att.net account from various gmail accounts I use, so I know that my password and username combination functions. I can telnet to smtp.att.yahoo.com at either port 465 or 587 and get a response, so nothing is blocking either port. Any insights or suggestions? John Blinka Have a go at adding: UseSTARTTLS=YES and remove: UseTLS=YES -- Regards, Mick signature.asc Description: This is a digitally signed message part.
[gentoo-user] Curious pattern in log files from ssh...
I've recently discovered a curious pattern emerging in my system log with failed login attempts via ssh. Previously, I noticed dictionary attacks launched - which were easy to detect... and I've a process to block the IP address of any host that repeatedly fails to authenticate. What I see now is quite different... I'm seeing a dictionary attack originating from a wide range of IP addresses - testing user-names in sequence... it has been in progress since 22nd November 2008 and has tried 7195 user names in alphabetical order from 521 distinct hosts - with no successive two attempts from the same host. I'm not particularly concerned - since I'm confident that all my users have strong passwords... but it strikes me that this data identifies a bot-net that is clearly malicious attempting to break passwords. Sure, I could use IPtables to block all these bad ports... or... I could disable password authentication entirely... but I keep thinking that there has to be something better I can do... any suggestions? Is there a simple way to integrate a block-list of known-compromised hosts into IPtables - rather like my postfix is configured to drop connections from known spam sources from the sbl-xbl.spamhaus.org DNS block list, for example. Break in attempts today (attempted username/IP address): -- huck 190.60.41.82 huckleberry 81.196.122.2 huckleberry 58.39.145.213 huckleberry 60.230.184.143 hue 58.196.4.2 hue 83.228.92.228 huela 193.41.235.225 huela 193.41.235.225 huey 201.21.216.198 huey 81.149.101.27 hugh 200.123.174.145 hugh 83.228.92.228 hugh 212.46.24.146 hugo 195.234.169.138 hugo 193.86.111.6 hugo 201.224.199.201 hume 69.217.30.214 hume 80.118.132.88 hummer 71.166.159.177 hummer 200.126.119.91 hummer 61.4.210.33 humphrey 80.34.55.88 humphrey 213.163.19.158 humvee 85.222.53.48 humvee 80.24.4.23 hung 61.47.31.130 hung 70.46.140.187 hunter 67.40.86.204 hunter 83.228.92.228 hunter 200.60.156.90 huong 207.250.220.196 huong 125.63.77.3 huong 200.62.142.212 huslu 219.93.187.38 huslu 121.223.228.249 huslu 200.29.135.50 hussein 200.60.156.90 hussein 200.6.220.46 hussein 125.63.77.3 huy 60.191.111.234 huy 200.79.25.39 huyen 213.136.105.130 huyen 190.144.61.58 huyen 121.33.199.37 hy 121.33.199.37 hy 90.190.96.46 hyacinth 81.196.122.2 hyacinth 189.43.21.244 hyacinth 99.242.205.242 hyman 201.21.216.198 hypatia 218.28.143.246 hypatia 195.234.169.138 iain 200.118.119.48 iain 124.42.124.87 iain 194.224.118.61 ian 189.56.92.42 ian 201.28.119.60 ian 210.187.18.199 ianna 211.154.254.120 ianna 84.242.66.10 ianna 193.41.235.225 ianthe 81.246.26.179 ibtesam 87.30.163.87 ichabod 201.251.61.108 ida 62.61.141.93 ida 80.24.4.23 idalee 85.222.53.48 idalee 190.144.61.58 --
[gentoo-user] Re: Curious pattern in log files from ssh...
Steve wrote: [...] Sure, I could use IPtables to block all these bad ports... or... I could disable password authentication entirely... but I keep thinking that there has to be something better I can do... any suggestions? I'm using DenyHosts to battle this. It adds the IPs to /etc/hosts.deny after a configurable amount of failed logins. It even downloads an online list of IPs where attacks originate from and uploads attacks to your box to this list too (if you allow it in the configuration). After I installed this, no more brute-forcing :) I used to have thousands per day. http://www.denyhosts.net It's in portage.
Re: [gentoo-user] Curious pattern in log files from ssh...
You could try sshguard or denyhosts.
Re: [gentoo-user] Curious pattern in log files from ssh...
On Wed, Dec 3, 2008 at 2:02 PM, Steve [EMAIL PROTECTED] wrote: I've recently discovered a curious pattern emerging in my system log with failed login attempts via ssh. Previously, I noticed dictionary attacks launched - which were easy to detect... and I've a process to block the IP address of any host that repeatedly fails to authenticate. What I see now is quite different... I'm seeing a dictionary attack originating from a wide range of IP addresses - testing user-names in sequence... it has been in progress since 22nd November 2008 and has tried 7195 user names in alphabetical order from 521 distinct hosts - with no successive two attempts from the same host. This has been going on all year, you're lucky if you just started getting it. :) AFAIK nobody has found any specific fingerprint or anything to block it by. The solution seems to be: only allow SSH from specific IP addresses, don't use port 22, don't use password auth, use some kind of portknocking, etc. as you already alluded to. If you Google for distributed ssh brute force attacks, there are some fairly detailed articles out there from earlier in the year. Good luck :) Paul
Re: [gentoo-user] Re: Curious pattern in log files from ssh...
On Wed, Dec 3, 2008 at 2:16 PM, Nikos Chantziaras [EMAIL PROTECTED] wrote: Steve wrote: [...] Sure, I could use IPtables to block all these bad ports... or... I could disable password authentication entirely... but I keep thinking that there has to be something better I can do... any suggestions? I'm using DenyHosts to battle this. It adds the IPs to /etc/hosts.deny after a configurable amount of failed logins. It even downloads an online list of IPs where attacks originate from and uploads attacks to your box to this list too (if you allow it in the configuration). After I installed this, no more brute-forcing :) I used to have thousands per day. http://www.denyhosts.net It's in portage. The big botnet attacks are doing no more than 2 login attempts per IP, making stuff like denyhosts hard to use (unless you set it to ban after 1 login attempt, but that'll catch real users who make a typo)
[gentoo-user] Re: Curious pattern in log files from ssh...
Paul Hartman wrote: On Wed, Dec 3, 2008 at 2:16 PM, Nikos Chantziaras [EMAIL PROTECTED] wrote: Steve wrote: [...] Sure, I could use IPtables to block all these bad ports... or... I could disable password authentication entirely... but I keep thinking that there has to be something better I can do... any suggestions? I'm using DenyHosts to battle this. It adds the IPs to /etc/hosts.deny after a configurable amount of failed logins. It even downloads an online list of IPs where attacks originate from and uploads attacks to your box to this list too (if you allow it in the configuration). After I installed this, no more brute-forcing :) I used to have thousands per day. http://www.denyhosts.net It's in portage. The big botnet attacks are doing no more than 2 login attempts per IP, making stuff like denyhosts hard to use (unless you set it to ban after 1 login attempt, but that'll catch real users who make a typo) In that case, changing the SSH port to something unlikely (I use one above 3) should be sufficient :P
Re: [gentoo-user] Curious pattern in log files from ssh...
On Wednesday 03 December 2008 22:02:43 Steve wrote: I've recently discovered a curious pattern emerging in my system log with failed login attempts via ssh. Previously, I noticed dictionary attacks launched - which were easy to detect... and I've a process to block the IP address of any host that repeatedly fails to authenticate. What I see now is quite different... I'm seeing a dictionary attack originating from a wide range of IP addresses - testing user-names in sequence... it has been in progress since 22nd November 2008 and has tried 7195 user names in alphabetical order from 521 distinct hosts - with no successive two attempts from the same host. Slashdot yesterday, read the front page It seems to be a co-ordinated and very well synchronized stealth bot-net. You are one of many that has noticed this. I am noticing scans on machines that have never been scanned before in all the time they have been up. You should indeed be very concerned and take extra special due care with your security arrangements currently. In fact, if you admin machines that are in any way critical, you really *really* should be undertaking a thorough security audit and make very sure you have done everything and covered all your bases. -- alan dot mckinnon at gmail dot com
Re: [gentoo-user] Curious pattern in log files from ssh...
On December 3, 2008, Steve wrote: Sure, I could use IPtables to block all these bad ports... or... I could disable password authentication entirely... but I keep thinking that there has to be something better I can do... any suggestions? Is there a simple way to integrate a block-list of known-compromised hosts into IPtables - rather like my postfix is configured to drop connections from known spam sources from the sbl-xbl.spamhaus.org DNS block list, for example. I went the path of paswordless entries (i.e. DSA/RSA keys) and I think it helped a lot, no botnet/worm/cracker is known to do selective key assembly so far and it's a labour-intensive process. I think applying keys is a very good step forward (well, and make sure every externally exposed service is properly patched and secured ;) ). -- Dmitry Makovey Web Systems Administrator Athabasca University (780) 675-6245 signature.asc Description: This is a digitally signed message part.
Re: [gentoo-user] Curious pattern in log files from ssh...
Thanks for all the replies so far... I'll reply once to these... (Oh, and when I said ports in my original post, I meant addresses - my typing fingers just ignored my brain...) I'm against a 'novel port' approach - as I am against port-knocking (for my server) because these may prove challenging for the environments from which I may want to log on. I want to retain a 'standard' service to make it easiest for me to connect to my server from a remote site without requiring reconfiguration of firewalls etc. I have, in the past, used DSA only keys - but this was frustrating on several occasions when I wanted access to my server and didn't have my SSH keys available to me... I almost always connect using a key pair rather than a password - but the password option is very useful to allow me to get hold of my SSH keys in the first place in some environments. If I found a distributed attack on a valid user name, for example, I'd consider this a critical change - however inconvenient. I previously used denyhosts - but (I can't remember why) it became preferable to block with IPtables rather than with tcpwrappers... which prompted me to dump it in favour of a bespoke script based upon blacklist.py (http://blinkeye.ch/mediawiki/index.php/SSH_Blocking) - though, now, I'm tempted by the more professional looking sshguard - thanks for the tip. Of course, this doesn't really address the problem I posted about - because I'm now faced with a highly distributed dictionary attack... It strikes me that, given the conclusive nature of this attack (which, by virtue of the fact that the usernames are attempted in alphabetical order proves it to be a single coordinated attack) I can create a list of a large number of IP addresses - which, likely, correspond to compromised hosts. It strikes me that this would be a perfect source of information to set up a block list... and, if others' logs show similar attacks, it should be easy enough to combine this data to provide distributed protection from a distributed attack. I don't think for one second that this attack is targeted - neither my hardware or the information on my server is particularly interesting to anyone but me. It would be extremely interesting to me, however, if it were to transpire that my IP address originated login attempts such as these - as this would clearly demonstrate it to be compromised... I suspect, too, the ISPs should be interested to inform their subscribers in the interest of security... though, of course, I recognise that this is being optimistic. When I exposed my server to internet SSH logins, I carefully considered security... though I also had to consider convenience - since that was the only reason for doing so in the first place. If I could block all IPs suspected of being in a bot-net - then this would be an improvement in security without a great cost in terms of lost convenience. Right now, in the context of this attack which circumvents my earlier blocking strategy, I'm looking for a viable blacklist solution in order to avoid white-listing. A potential solution for me would be to have sshd be far more choosy about source IPs when using password authentication... for example, restricting it to hosts in the UK... but still allowing remote access wherever I've propagated DSA keys... but I think this would be tricky to set up. A shared block-list, I suspect, would be the most effective response to this attack... and the response most likely to minimise others' exposure, too. Steve
Re: [gentoo-user] mp3/ogg editing
There is media-sound/mp3splt-gtk [1], but it's for splitting only: a GTK+ based utility to split mp3 and ogg files without decoding. Never managed to get it working, though. I would suggest that you raise the question on a more specialised ML, for example the Audacity ML. Perhaps they'd suggest an alternative, or even be willing to implement this.. Liviu [1] http://gentoo-portage.com/media-sound/mp3splt-gtk On 11/29/08, [EMAIL PROTECTED] [EMAIL PROTECTED] wrote: Hi Fred, no problem...I am also no native english speaker...so, well, may be it is my english not yours what screws up things a little... :) MP3/OGG are audio codecs, which are lossy. Means: If you encode a wav-file to mp3, than decode this one again back to wav there is some sound loss. Audacity is -- as far as I understood -- only able to edit wav files. Therefore it has to decode the mp3 to wav before editing. If one wants a mp3 again from this wav file, the above has to be aplied and you will loose sound quality. There are ways to edit/cut/append mp3 files directly whitout deocding them (dont ask me for details here) therefore these editors, which are specialized in mp3/ogg editing, are able to edit/cut/apped mp3 files as often as you wish without loosing sound quality. Audacity is one to edit wav files directly but not mp3/ogg files -- as far as I know HTH Keep hacking! :) mcc -- Do you know how to read? http://www.alienetworks.com/srtest.cfm Do you know how to write? http://garbl.home.comcast.net/~garbl/stylemanual/e.htm#e-mail
Re: [gentoo-user] Curious pattern in log files from ssh...
On December 3, 2008, Steve wrote: I have, in the past, used DSA only keys - but this was frustrating on several occasions when I wanted access to my server and didn't have my SSH keys available to me... I almost always connect using a key pair rather than a password - but the password option is very useful to allow me to get hold of my SSH keys in the first place in some environments. If I found a distributed attack on a valid user name, for example, I'd consider this a critical change - however inconvenient. get yourself some portable linux device capable of either USB, ethernet or wifi connection (OpenMoko, Nokia NXXX, etc.) plug your keys there - and voila, you've got yourelf both secure terminal and key storage in one box. I would be highly suspicious initiating SSH connection with my servers from untrusted box (which is any box not built and maintained by me ;) ) as there is a chance of keylogger (no matter how friendly owner of spoken box is - you don't know if he wasn't hacked and you have no time for even casual checking). You can use variation of port-knocking and reverse your strategy based on the pattern: 1. drop first connection from specified IP and record it in first_try table 2. drop second connection from specified IP and record it in second_try table 3. if IP is in both first_try and second_try - allow it to attempt authentication but only with the keys. (removing it from *_try tables and possibly recording it in whitelist) 4. if IP fails X number of attempts within specified timeframe - remove from whitelist and record in blacklist bit tricky logic, but fairly simple to implement (I use *BSD PF so no ready recipe for iptables here ;) ). bit paranoid, but it covers your initial concern with distributed attack and single-attempts. You can further collect older entries from first_try into blacklist and do whatever you please with them. You can also collect high-frequency attempts into blacklist and have very big blacklist you can sell off on eBay :) P.S. I actually don't do any of the above. It was just a surge of creative paranoia in response to initial request :) -- Dmitry Makovey Web Systems Administrator Athabasca University (780) 675-6245 signature.asc Description: This is a digitally signed message part.
Re: [gentoo-user] mp3/ogg editing
On Sat, Nov 29, 2008 at 9:07 AM, [EMAIL PROTECTED] wrote: Hi, I am looking for a ogg/mp3 editing softwarei (gui), which is able to cut/append such streams without loss due to reencoding. What software is worth trying ? Hi, I don't think there is an ebuild, but you can try Mpcut: http://minnie.tuhs.org/Programs/Mpcut/
RE: [gentoo-user] Curious pattern in log files from ssh...
I previously used denyhosts - but (I can't remember why) it became preferable to block with IPtables rather than with tcpwrappers... which prompted me to dump it in favour of a bespoke script based upon blacklist.py (http://blinkeye.ch/mediawiki/index.php/SSH_Blocking) - though, now, I'm tempted by the more professional looking sshguard - thanks for the tip. Of course, this doesn't really address the problem I posted about - because I'm now faced with a highly distributed dictionary attack... Fail2ban is iptables based. From the website it now appears to have a map feature so if say you notice most of the attacks coming from China, and none of you ssh useres are in China, you could perhaps block the entire country with http://people.netfilter.org/~peejix/geoip/howto/geoip-HOWTO.html
Re: [gentoo-user] Curious pattern in log files from ssh...
Dmitry S. Makovey wrote: P.S. I actually don't do any of the above. It was just a surge of creative paranoia in response to initial request :) All good ideas - except selling the blacklist... I'd be happiest to share my blacklist for free... my objective is to minimise exposure to botnets - rather than to accept another level of complexity with legitimate use.
Re: [gentoo-user] Automounting of USB drives
AJ Spagnoletti wrote: I have finally reached the point where I use enough USB media (external hard drives and flash drives) that I would like to set up a system to automount the media devices for me. I have read in the past about hal + ivman and a bit of googling has brought up AutoFS as well. I was just wondering what the best system to automount USB media would be. I am looking for something that is relatively easy to set up and is also well maintained. Thanks in advance for any suggestions. How about the gnome-volume-manager? (If you use Gnome)... -- Iain Buchanan iaindb at netspace dot net dot au ...all the good computer designs are bootlegged; the formally planned products, if they are built at all, are dogs! -- David E. Lundstrom, A Few Good Men From Univac, MIT Press, 1987
Re: [gentoo-user] Curious pattern in log files from ssh...
On Wed, Dec 3, 2008 at 4:55 PM, Steve [EMAIL PROTECTED] wrote: Dmitry S. Makovey wrote: P.S. I actually don't do any of the above. It was just a surge of creative paranoia in response to initial request :) All good ideas - except selling the blacklist... I'd be happiest to share my blacklist for free... my objective is to minimise exposure to botnets - rather than to accept another level of complexity with legitimate use. I think using Dmitry's idea of rejecting the first 2 connections, but then allowing it as normal on the third attempt would satisfy your requirements for being on the normal port, allowing all IPs and requiring no special setup on the client end (other than knowing they have to to retry twice). Of course, this is assuming the botnet stops after rejected connections...
[gentoo-user] confusing depclean output
[EMAIL PROTECTED]:~$ emerge --pretend --depclean *** WARNING *** Depclean may break link level dependencies. Thus, it is *** WARNING *** recommended to use a tool such as `revdep-rebuild` (from *** WARNING *** app-portage/gentoolkit) in order to detect such breakage. *** WARNING *** *** WARNING *** Also study the list of packages to be cleaned for any obvious *** WARNING *** mistakes. Packages that are part of the world set will always *** WARNING *** be kept. They can be manually added to this set with *** WARNING *** `emerge --noreplace atom`. Packages that are listed in *** WARNING *** package.provided (see portage(5)) will be removed by *** WARNING *** depclean, even if they are part of the world set. *** WARNING *** *** WARNING *** As a safety measure, depclean will not remove any packages *** WARNING *** unless *all* required dependencies have been resolved. As a *** WARNING *** consequence, it is often necessary to run *** WARNING *** `emerge --update --newuse --deep world` prior to depclean. Calculating dependencies... done! Dependencies could not be completely resolved due to the following required packages not being installed: =virtual/perl-Compress-Zlib-1.14 required by dev-perl/Archive-Zip-1.23 virtual/perl-ExtUtils-CBuilder required by perl-core/File-Spec-3.27.01 Have you forgotten to run `emerge --update --newuse --deep world` prior to depclean? It may be necessary to manually uninstall packages that no longer exist in the portage tree since it may not be possible to satisfy their dependencies. Also, be aware of the --with-bdeps option that is documented in `man emerge`. In running emerge --update --newuse --deep world, it yields nothing. [EMAIL PROTECTED]:~$ sudo emerge --update --newuse --deep world Calculating world dependencies... done! Auto-cleaning packages... No outdated packages were found on your system. What would you recommend I do here? Mike -- Michael P. Soulier [EMAIL PROTECTED] Any intelligent fool can make things bigger and more complex... It takes a touch of genius - and a lot of courage to move in the opposite direction. --Albert Einstein pgpxKawiBwJvj.pgp Description: PGP signature
Re: [gentoo-user] Curious pattern in log files from ssh...
On December 3, 2008, Paul Hartman wrote: Of course, this is assuming the botnet stops after rejected connections... oh no, not rejected - dropped ;) let them go through pains of timing out without knowing if anything is actually listening on the other side ;) -- Dmitry Makovey Web Systems Administrator Athabasca University (780) 675-6245 signature.asc Description: This is a digitally signed message part.
Re: [gentoo-user] Curious pattern in log files from ssh...
Paul Hartman wrote: I think using Dmitry's idea of rejecting the first 2 connections, but then allowing it as normal on the third attempt would satisfy your requirements for being on the normal port, allowing all IPs and requiring no special setup on the client end (other than knowing they have to to retry twice). Erm - surely I either need to set up my client to port-knock... which is a faff I'd rather avoid... in order to use the technique. Port knocking would be especially infuriating from trusted clients where I'd like to use standard software like WinSCP; Putty; Symbian Putty - etc. While I recognise port knocking as a valuable strategy in some circumstances, it seems a very bad fit for my needs. GEO-IP blocking would be fairly good... if I could limit this to password authentication only - as would blacklisting known bot-net participants. While these exotic ideas are interesting - a better way to identify malicious hosts is, by far, my preferred solution.
Re: [gentoo-user] Curious pattern in log files from ssh...
On December 3, 2008, Steve wrote: Paul Hartman wrote: I think using Dmitry's idea of rejecting the first 2 connections, but then allowing it as normal on the third attempt would satisfy your requirements for being on the normal port, allowing all IPs and requiring no special setup on the client end (other than knowing they have to to retry twice). Erm - surely I either need to set up my client to port-knock... which is a faff I'd rather avoid... in order to use the technique. nope. just start connection. wait a minute. cancel. start another one. wait a minute. cancel. start new one - voila! :) While I recognise port knocking as a valuable strategy in some circumstances, it seems a very bad fit for my needs. well. Nobody but you knows your requiremens and specifics - we're just listing options. It's up to you to either take 'em or leave 'em ;) -- Dmitry Makovey Web Systems Administrator Athabasca University (780) 675-6245 signature.asc Description: This is a digitally signed message part.
Re: [gentoo-user] confusing depclean output
At Wed, 03 Dec 2008 18:32:24 -0500 Michael P. Soulier [EMAIL PROTECTED] wrote: [EMAIL PROTECTED]:~$ emerge --pretend --depclean *** WARNING *** Depclean may break link level dependencies. Thus, it is *** WARNING *** recommended to use a tool such as `revdep-rebuild` (from *** WARNING *** app-portage/gentoolkit) in order to detect such breakage. *** WARNING *** *** WARNING *** Also study the list of packages to be cleaned for any obvious *** WARNING *** mistakes. Packages that are part of the world set will always *** WARNING *** be kept. They can be manually added to this set with *** WARNING *** `emerge --noreplace atom`. Packages that are listed in *** WARNING *** package.provided (see portage(5)) will be removed by *** WARNING *** depclean, even if they are part of the world set. *** WARNING *** *** WARNING *** As a safety measure, depclean will not remove any packages *** WARNING *** unless *all* required dependencies have been resolved. As a *** WARNING *** consequence, it is often necessary to run *** WARNING *** `emerge --update --newuse --deep world` prior to depclean. Calculating dependencies... done! Dependencies could not be completely resolved due to the following required packages not being installed: =virtual/perl-Compress-Zlib-1.14 required by dev-perl/Archive-Zip-1.23 virtual/perl-ExtUtils-CBuilder required by perl-core/File-Spec-3.27.01 Have you forgotten to run `emerge --update --newuse --deep world` prior to depclean? It may be necessary to manually uninstall packages that no longer exist in the portage tree since it may not be possible to satisfy their dependencies. Also, be aware of the --with-bdeps option that is documented in `man emerge`. In running emerge --update --newuse --deep world, it yields nothing. Did you try emerge --update --newuse --deep --with-bdeps=y world as hinted at by the above msg? allan
Re: [gentoo-user] Curious pattern in log files from ssh...
Dmitry S. Makovey wrote: Erm - surely I either need to set up my client to port-knock... which is a faff I'd rather avoid... in order to use the technique. nope. just start connection. wait a minute. cancel. start another one. wait a minute. cancel. start new one - voila! :) Eeew... especially as this would apply to all connections - even the ones where I have a DSA key. I might be able to cope with this if it only applied to my initial connection, from which I could grab a copy of the DSA key. well. Nobody but you knows your requiremens and specifics - we're just listing options. It's up to you to either take 'em or leave 'em ;) Fair enough - but I've still not found an option for sharing/using shared block lists for bot-nets.
Re: [gentoo-user] emerge --update pulling in enlightenment-0.16.9999.050
On Thu, Dec 04, 2008 at 12:58:28AM +0530, Penguin Lover Rajat Vig squawked: The Builds are Live CVS Builds. The default is to use the Snapshot builds which are getting pulled in. -Rajat Okay, a better question then is: how does case ${EKEY_STATE:-${E_STATE}} in release) KEYWORDS=alpha amd64 arm hppa ia64 mips ppc ppc64 sh sparc x86 ~x86-fbsd;; snap)KEYWORDS=~alpha ~amd64 ~arm ~hppa ~ia64 ~mips ~ppc ~ppc64 ~sh ~sparc ~x86 ~x86-fbsd;; live)KEYWORDS=;; esac know that the ebuilds should be live, and that default it should be snap? I am completely puzzled by the ebuilds. In other words, is it hardcoded somethere in portage that all version numbers automatically trigger that variable above to be live? Or is there some configuration somewhere? Also, is this what all that fuss about EAPI is about? The enlightenment ebuilds in the tree looks quite different from the ones in the overlay. Thanks, W -- ZM: prolly ZM: eeb's are weird Sortir en Pantoufles: up 726 days, 23:12
Re: [gentoo-user] Curious pattern in log files from ssh...
I noticed the same thing on my host several weeks ago. I strongly suggest removing root access to your ssh, root is probably being tried by more than 50% of all login attempts... the other trials are semi-intelligent random usernames (ie, users that might really well exists, like 'apache' etc... but other usernames which may not like 'albert'). If your username is not part of the list of attempts, then it won't be tried much, and I once found out that if your password is alphanumeric with lower and upper cases, the hacker as a worst chance of finding your password in (26*2+10)^8(chars long) = 62^8 = 2.18e14 steps or 218 millions of millions of steps. This is assuming they try the correct username each time! The other thing you should do is place ssh on another port, very high. IIRC, port numbers are 16bits and can go as high as 65k... you could use 22xxx where xxx is a random favorite number for example. Since it is very unlikely that the attacker is targeting you specifically, changing the port number (and removing root access) will very likely stop the attack forever. Though, if the attacker did target you, then you will need some more security tools (intrusion detection, etc...). Good luck! Simon Steve wrote: I've recently discovered a curious pattern emerging in my system log with failed login attempts via ssh. Previously, I noticed dictionary attacks launched - which were easy to detect... and I've a process to block the IP address of any host that repeatedly fails to authenticate. What I see now is quite different... I'm seeing a dictionary attack originating from a wide range of IP addresses - testing user-names in sequence... it has been in progress since 22nd November 2008 and has tried 7195 user names in alphabetical order from 521 distinct hosts - with no successive two attempts from the same host. I'm not particularly concerned - since I'm confident that all my users have strong passwords... but it strikes me that this data identifies a bot-net that is clearly malicious attempting to break passwords. Sure, I could use IPtables to block all these bad ports... or... I could disable password authentication entirely... but I keep thinking that there has to be something better I can do... any suggestions? Is there a simple way to integrate a block-list of known-compromised hosts into IPtables - rather like my postfix is configured to drop connections from known spam sources from the sbl-xbl.spamhaus.org DNS block list, for example. Break in attempts today (attempted username/IP address): -- huck 190.60.41.82 huckleberry 81.196.122.2 huckleberry 58.39.145.213 huckleberry 60.230.184.143 hue 58.196.4.2 hue 83.228.92.228 huela 193.41.235.225 huela 193.41.235.225 huey 201.21.216.198 huey 81.149.101.27 hugh 200.123.174.145 hugh 83.228.92.228 hugh 212.46.24.146 hugo 195.234.169.138 hugo 193.86.111.6 hugo 201.224.199.201 hume 69.217.30.214 hume 80.118.132.88 hummer 71.166.159.177 hummer 200.126.119.91 hummer 61.4.210.33 humphrey 80.34.55.88 humphrey 213.163.19.158 humvee 85.222.53.48 humvee 80.24.4.23 hung 61.47.31.130 hung 70.46.140.187 hunter 67.40.86.204 hunter 83.228.92.228 hunter 200.60.156.90 huong 207.250.220.196 huong 125.63.77.3 huong 200.62.142.212 huslu 219.93.187.38 huslu 121.223.228.249 huslu 200.29.135.50 hussein 200.60.156.90 hussein 200.6.220.46 hussein 125.63.77.3 huy 60.191.111.234 huy 200.79.25.39 huyen 213.136.105.130 huyen 190.144.61.58 huyen 121.33.199.37 hy 121.33.199.37 hy 90.190.96.46 hyacinth 81.196.122.2 hyacinth 189.43.21.244 hyacinth 99.242.205.242 hyman 201.21.216.198 hypatia 218.28.143.246 hypatia 195.234.169.138 iain 200.118.119.48 iain 124.42.124.87 iain 194.224.118.61 ian 189.56.92.42 ian 201.28.119.60 ian 210.187.18.199 ianna 211.154.254.120 ianna 84.242.66.10 ianna 193.41.235.225 ianthe 81.246.26.179 ibtesam 87.30.163.87 ichabod 201.251.61.108 ida 62.61.141.93 ida 80.24.4.23 idalee 85.222.53.48 idalee 190.144.61.58 --
Re: [gentoo-user] audacious 1.5 not playing
On Mon, Dec 01, 2008 at 06:27:54PM +0100, Daniel Pielmeier wrote: Michael George schrieb am 30.11.2008 11:33: I updated audacious and audacious-plugins from 1.4.6 and .5 to 1.4.1-r1 and r3, respectively. It comes up and seems to operate fine, but it won't play my ogg files. It doesn't even seem to try. I downgraded to 1.4.6/5 and it plays fine. I'll be testing it on mp3 files today, I hope, to see if it's a problem unique to 1.5.x. Anyone else having problems with audacious 1.5.x? Had the same problem here! I guess you have set Detect file formats on demand, instead of immediately under Preferences - Audio - Format Detection Disabling this option makes playback of ogg and mp3 files working again here. I am able to play mp3's regardless of the format detection. However, OGG files aren't playing. If I tell it to detect the formats on demand, I can add ogg files to the playlist, but they still will not play. The only way the ogg files play is if I tell it to determine the file type by the file extension. In 1.4 it was able to determine the file type even if it didn't have an .ogg extension... -- -M There are 10 kinds of people in this world: Those who can count in binary and those who cannot.
[gentoo-user] Buying a low-cost printer for Linux
Does anyone have a good way of figuring out what printers that you can actually buy in the retail market place actually have support in Linux? I sure don't. Over the past 10 years I've gone the route of looking at the ads, finding printers in the right price range and then looking at http://www.linuxprinting.org to determine if there is any support. Invariably what comes up is that printer life in the retail chain is so short that whatever Fry's is selling is too new so Cups doesn't have support, and by the time Cups does have support the printer is no longer for sale. No better shopping through NewEgg or Amazon, etc. as I run into the same problem... What's a guy to do? My folks need a new unit. (I guess!) It's not working anymore as it's always been an unsupported model as far as I can tell. It's a Canon MP310. I had it working a year ago with the MP150 driver but it no longer works with recent Cups releases so either it broke or it's truly unsupported now. I may have to go back to some old Cups release but we'd like to find a unit that's really supported if possible. My market is West Coast California or U.S. online sales. Anyway, how does one go about really finding a sub-$100 home ink-jet type printer that has Linux support? Thanks, Mark
Re: [gentoo-user] Buying a low-cost printer for Linux
On Donnerstag 04 Dezember 2008, Mark Knecht wrote: Does anyone have a good way of figuring out what printers that you can actually buy in the retail market place actually have support in Linux? I sure don't. forget the 'opensource' printers, and buy a turboprint licence. It rocks. It really does.
Re: [gentoo-user] Buying a low-cost printer for Linux
On Wed, Dec 3, 2008 at 8:16 PM, Volker Armin Hemmann [EMAIL PROTECTED] wrote: On Donnerstag 04 Dezember 2008, Mark Knecht wrote: Does anyone have a good way of figuring out what printers that you can actually buy in the retail market place actually have support in Linux? I sure don't. forget the 'opensource' printers, and buy a turboprint licence. It rocks. It really does. I'll have to write them and get some answers. Can I run it on multiple machines using a singe license. None of my printers were in their supported list so do they support them or not? They should be able to answer those sorts of questions. However, their list of supported devices is still much smaller than the Open Source list so it begs the same question... Even though they have support for a nice set of printers, which of those printers can be purchased new today through normal retail channels? Thanks for the idea. I'd not heard of them. Cheers, Mark
Re: [gentoo-user] Buying a low-cost printer for Linux
On Wed, Dec 3, 2008 at 9:44 PM, Mark Knecht [EMAIL PROTECTED] wrote: Does anyone have a good way of figuring out what printers that you can actually buy in the retail market place actually have support in Linux? I sure don't. Over the past 10 years I've gone the route of looking at the ads, finding printers in the right price range and then looking at http://www.linuxprinting.org to determine if there is any support. Invariably what comes up is that printer life in the retail chain is so short that whatever Fry's is selling is too new so Cups doesn't have support, and by the time Cups does have support the printer is no longer for sale. No better shopping through NewEgg or Amazon, etc. as I run into the same problem... What's a guy to do? My folks need a new unit. (I guess!) It's not working anymore as it's always been an unsupported model as far as I can tell. It's a Canon MP310. I had it working a year ago with the MP150 driver but it no longer works with recent Cups releases so either it broke or it's truly unsupported now. I may have to go back to some old Cups release but we'd like to find a unit that's really supported if possible. My market is West Coast California or U.S. online sales. Anyway, how does one go about really finding a sub-$100 home ink-jet type printer that has Linux support? Thanks, Mark It's not an ink-jet but I got an HP LaserJet 1020 for $80 on NewEgg a year ago and it works fine in Linux with CUPS using the foo2zjs driver. I think Googling is probably your best chance of finding out what works and what doesn't. Also going with older models will probably be cheaper and easier to find info about. On NewEgg what I have found useful is to use their review search to look for the word linux within the reviews of an item to see if anyone else has already tried it on the penguin. :) Good luck, Paul
Re: [gentoo-user] Buying a low-cost printer for Linux
On Donnerstag 04 Dezember 2008, Mark Knecht wrote: On Wed, Dec 3, 2008 at 8:16 PM, Volker Armin Hemmann [EMAIL PROTECTED] wrote: On Donnerstag 04 Dezember 2008, Mark Knecht wrote: Does anyone have a good way of figuring out what printers that you can actually buy in the retail market place actually have support in Linux? I sure don't. forget the 'opensource' printers, and buy a turboprint licence. It rocks. It really does. I'll have to write them and get some answers. Can I run it on multiple machines using a singe license. None of my printers were in their supported list so do they support them or not? They should be able to answer those sorts of questions. However, their list of supported devices is still much smaller than the Open Source list so it begs the same question... Even though they have support for a nice set of printers, which of those printers can be purchased new today through normal retail channels? Thanks for the idea. I'd not heard of them. Cheers, Mark my story: I have a canon pixma ip3300. With opensource drivers I got either no picture, wrong colours or the paper was completly wet. I asked turboprint, shortly afterwards I was able to buy a licence for a driver perfectly supporting my printer on amd64.
Re: [gentoo-user] Buying a low-cost printer for Linux
On Wed, Dec 3, 2008 at 7:44 PM, Mark Knecht [EMAIL PROTECTED] wrote: Does anyone have a good way of figuring out what printers that you can actually buy in the retail market place actually have support in Linux? I sure don't. Almost all HP printers are well-supported in Linux using the hplip open source drivers which act as a backend to CUPS and are developed with help from HP. hplip also supports features such as scanning on all-in-ones. hplip is available in most modern distributions. For a complete list of supported printers, go to http://hplipopensource.com/hplip-web/supported_devices/index.html - there are over 1500 printers listed. In fact, there are less than 20 HP printers that _aren't_ supported by the hplip drivers! Thanks to HP's support of open source drivers for their printers I don't look anywhere else when deciding on a printer to buy. -- Manuel A. McLure WW1FA [EMAIL PROTECTED] http://www.mclure.org ...for in Ulthar, according to an ancient and significant law, no man may kill a cat. -- H.P. Lovecraft
Re: [gentoo-user] Buying a low-cost printer for Linux
That's right, i totaly agree. If you buy a HP-printer, you (almost) can't do something wrong. I am using a HP Deskjet F2180 (40€). Printing and scanning both work without problems. On Wed, 3 Dec 2008 22:00:28 -0800 Manuel McLure [EMAIL PROTECTED] wrote: On Wed, Dec 3, 2008 at 7:44 PM, Mark Knecht [EMAIL PROTECTED] wrote: Does anyone have a good way of figuring out what printers that you can actually buy in the retail market place actually have support in Linux? I sure don't. Almost all HP printers are well-supported in Linux using the hplip open source drivers which act as a backend to CUPS and are developed with help from HP. hplip also supports features such as scanning on all-in-ones. hplip is available in most modern distributions. For a complete list of supported printers, go to http://hplipopensource.com/hplip-web/supported_devices/index.html - there are over 1500 printers listed. In fact, there are less than 20 HP printers that _aren't_ supported by the hplip drivers! Thanks to HP's support of open source drivers for their printers I don't look anywhere else when deciding on a printer to buy. -- Manuel A. McLure WW1FA [EMAIL PROTECTED] http://www.mclure.org ...for in Ulthar, according to an ancient and significant law, no man may kill a cat. -- H.P. Lovecraft
Re: [gentoo-user] Automounting of USB drives
On Thu, Dec 4, 2008 at 12:19 AM, Iain Buchanan [EMAIL PROTECTED] wrote: How about the gnome-volume-manager? (If you use Gnome)... Or thunar-volman? (If you use Xfce)... -- Do you know how to read? http://www.alienetworks.com/srtest.cfm Do you know how to write? http://garbl.home.comcast.net/~garbl/stylemanual/e.htm#e-mail
Re: [gentoo-user] emerge --update pulling in enlightenment-0.16.9999.050
On Thursday 04 December 2008 02:42:34 Willie Wong wrote: On Thu, Dec 04, 2008 at 12:58:28AM +0530, Penguin Lover Rajat Vig squawked: The Builds are Live CVS Builds. The default is to use the Snapshot builds which are getting pulled in. -Rajat Okay, a better question then is: how does case ${EKEY_STATE:-${E_STATE}} in release) KEYWORDS=alpha amd64 arm hppa ia64 mips ppc ppc64 sh sparc x86 ~x86-fbsd;; snap)KEYWORDS=~alpha ~amd64 ~arm ~hppa ~ia64 ~mips ~ppc ~ppc64 ~sh ~sparc ~x86 ~x86-fbsd;; live)KEYWORDS=;; esac know that the ebuilds should be live, and that default it should be snap? I am completely puzzled by the ebuilds. The answer is not in the ebuild, it's in the eclass. You will find it at $PORTDIR/ecalss/enlightenment.eclass. I'll take you through the relevant bits step by step. Lines 34 to 58 are the relevant ones, and everything afterwards depends on the value assigned to E_STATE. I'll assume you are familiar with bash's parameter expansion syntax (man bash, line 1135 if not) E_STATE=release if [[ ${PV/} != ${PV} ]] ; then E_STATE=live elif [[ -n ${E_SNAP_DATE} ]] ; then E_STATE=snap else E_STATE=release fi So, release is the default. If the version number is , it's live. If E_SNAP_DATE is defined, then it's snapshot Otherwise, the ebuild is for a release Later on, various other ebuild variable are defined depending on the value of E_STATE - such things as KEYWORDS and a whole slew of things used by the svn eclass (which does the actual checkout) In other words, is it hardcoded somethere in portage that all version numbers automatically trigger that variable above to be live? Or is there some configuration somewhere? It's a convention. No sane coder will ever release a package with version , that is conventionally used by devs for their development stuff in cvs/svn/git/whatever, so vapier is just falling in line. The intention was to have version numbers work like this: enlightenment-0.16.8a stable e16 release enlightenment-0.16. Kim's testing code for e16 enlightenment- current cvs code for e17 so you could simply emerge a specific version and as long as your keywords were correct in portage.keywords, the right thing would happen. That all looks cute and dandy and all, but stuff has broken a bit lately. I think vapier is extremely busy with other stuff and the e17 overlay took lower priority, he took 6 weeks to reply to a one-line patch I sent him. I recommend you do what I did - read the eclass and all the ebuilds, plus man 5 ebuild, plus a long wiki document I found on the dev section at gentoo.org written by Ciaran McCreesh. At the end of that, I knew a whole lot more about portage that I didn't before and it all made sense. These days I maintain my own e17 overlay, based off Vapier's stuff. I can share it if you want. -- alan dot mckinnon at gmail dot com
[gentoo-user] checksumming files
Almost every time I split a large file 1G into say 200k chunks, then ftp it to a server and then: cat 1 2 3 4 5 6 7 completefile ; md5sum -c completefile if fails. Checking the split files in turn I often find 1 or two chunks that fail on their own md5 checks. Despite that the concatenated file often works (e.g. if it is a video file it'll play alright). Can you explain this? Should I be using a different check to verify the integrity of the ftp'd file? -- Regards, Mick signature.asc Description: This is a digitally signed message part.
Re: [gentoo-user] Buying a low-cost printer for Linux
Am Mittwoch, den 03.12.2008, 20:29 -0800 schrieb ext Mark Knecht: Thanks for the idea. I'd not heard of them. TurboPrint is actually a port of an old Amiga software. They already were ahead of time in the printing area back then. OTOH, there was this article on german Heise Online (english version) a few weeks ago: http://www.heise-online.co.uk/news/Gutenprint-5-2-1-drivers-for-Linux-and-Mac-OS-X-improve-printer-support--/111788 However, version 5.2.1 didn't make it into portage, yet. HTH... Dirk -- Dirk Heinrichs | Tel: +49 (0)162 234 3408 Configuration Manager | Fax: +49 (0)211 47068 111 Capgemini Deutschland | Mail: [EMAIL PROTECTED] Wanheimerstraße 68 | Web: http://www.capgemini.com D-40468 Düsseldorf | ICQ#: 110037733 GPG Public Key C2E467BB | Keyserver: www.keyserver.net signature.asc Description: Dies ist ein digital signierter Nachrichtenteil
Re: [gentoo-user] checksumming files
Am Donnerstag, den 04.12.2008, 07:10 + schrieb ext Mick: Almost every time I split a large file 1G into say 200k chunks, then ftp it to a server and then: cat 1 2 3 4 5 6 7 completefile ; md5sum -c completefile if fails. Checking the split files in turn I often find 1 or two chunks that fail on their own md5 checks. Despite that the concatenated file often works (e.g. if it is a video file it'll play alright). Can you explain this? Should I be using a different check to verify the integrity of the ftp'd file? Did you make sure the chunks are transfered in binary mode? BTW, most modern FTP clients have a resume option, so there's no need to split. HTH... Dirk -- Dirk Heinrichs | Tel: +49 (0)162 234 3408 Configuration Manager | Fax: +49 (0)211 47068 111 Capgemini Deutschland | Mail: [EMAIL PROTECTED] Wanheimerstraße 68 | Web: http://www.capgemini.com D-40468 Düsseldorf | ICQ#: 110037733 GPG Public Key C2E467BB | Keyserver: www.keyserver.net signature.asc Description: Dies ist ein digital signierter Nachrichtenteil
Re: [gentoo-user] Automounting of USB drives
Am Dienstag, den 02.12.2008, 01:15 +0100 schrieb ext AJ Spagnoletti: I have finally reached the point where I use enough USB media (external hard drives and flash drives) that I would like to set up a system to automount the media devices for me. I have read in the past about hal + ivman and a bit of googling has brought up AutoFS as well. I was just wondering what the best system to automount USB media would be. I am looking for something that is relatively easy to set up and is also well maintained. Thanks in advance for any suggestions. The kernel automounter (autofs) was not designed with removable media in mind, so it's not the best choice for the job. Nearly all Linux desktops today come with a hal/dbus based solution for mounting USB devices on demand. Bye... Dirk -- Dirk Heinrichs | Tel: +49 (0)162 234 3408 Configuration Manager | Fax: +49 (0)211 47068 111 Capgemini Deutschland | Mail: [EMAIL PROTECTED] Wanheimerstraße 68 | Web: http://www.capgemini.com D-40468 Düsseldorf | ICQ#: 110037733 GPG Public Key C2E467BB | Keyserver: www.keyserver.net signature.asc Description: Dies ist ein digital signierter Nachrichtenteil
Re: [gentoo-user] Buying a low-cost printer for Linux
Dominic Kexel wrote: That's right, i totaly agree. If you buy a HP-printer, you (almost) can't do something wrong. I am using a HP Deskjet F2180 (40€). Printing and scanning both work without problems. On Wed, 3 Dec 2008 22:00:28 -0800 Manuel McLure [EMAIL PROTECTED] wrote: I have a HP Deskjet D4260 that I got from newegg for less than $50.00. It works very well. Before that I had a little Deskjet 3820 which I had for years. It finally lost its head. Turn it on and it just goes from side to side until I cut it off. The 4260 also has the option of using the hi yield cartridges too. It can print for a long time without running out of ink. I think if you get a HP printer, you will do all right. I wouldn't get the latest thing unless I checked for drivers first tho. Also, to get my old 3820 to work, I googled for the ppd file and put it in the right place for cups. That was before hplip came out. I don't remember having to do that with the 4260. Hope that helps give you some ideas. Dale :-) :-)
Re: [gentoo-user] confusing depclean output
Allan Gottlieb wrote: Did you try emerge --update --newuse --deep --with-bdeps=y world as hinted at by the above msg? allan Yep, I had to add that option to mine a while back for --depclean to work. Add that and it should run cleanly afterwards. You could also --oneshot those in the list and it should work. I haven't tried that yet but read it works. Dale :-) :-)