On 3/27/24 13:58, J. Roeleveld wrote:
Hi all,
Hi,
I am looking for a way to synchronise a filesystem between 2 servers. Changes
can occur on both sides which means I need to have it synchronise in both
directions.
What sort of turn around time are you looking for? seconds, minus,
hours,
On 3/2/23 9:53 PM, efeizbudak wrote:
Doesn't this sort of defeat the purpose of using pass? I mean if it's
always decryptable then is it really useful to have it encrypted in the
first place (assuming you have full disk encryption set up)? I may be
missing something crucial here so please let me
On 3/2/23 6:48 AM, Matt Connell wrote:
You just described gpg-agent, the core of what Efe (OP) is meddling
with :)
No, I didn't.
I was referring to having the OP's utility read the password and
interact with GPG /once/ at startup and then the utility run for a much
longer time retaining the
On 3/1/23 7:10 AM, efeizbudak wrote:
Hi all,
Hi,
I let mutt-wizard set a cron job which takes my password out
of pass, logs into the email server and fetches my mail every
5 minutes.
Can you re-architect this as a (pseudo) daemon so that you unlock it
once (or at least a LOT less often)
On 1/20/23 9:09 AM, Peter Humphrey wrote:
I'm still getting bounce messages the same as all year.
Different meaning of "all the time".
- Not all sending domains use advanced security.
- Not all receiving domains use advanced security.
- Not all mailing lists account for advanced
On 1/20/23 2:07 AM, Dale wrote:
It could be the OP is running into the same problem I have in the
past, whatever that problems is.
My experience is that this is a combination of advanced email protection
on the sender /and/ the receiver.
E.g. the sending domain's email configuration
On 1/18/23 4:19 PM, Dale wrote:
I might add, in the past I followed the instructions to get bounced
messages, I've never once had it work. I don't get a error or anything
either, like I do if I do something wrong doing something else.
I tried it a few times.
I'd see mail log entries where
On 1/18/23 8:07 AM, Neil Bothwick wrote:
You can also request redelivery of messages based on the internal
numbers if you follow the help advice in all list message headers.
The problem is that if the message is rejected because of filtering the
first time around, there's a very good chance
On 10/26/22 7:27 PM, Ramon Fischer wrote:
Sure, you cannot cover everything, but mitigating at least a little bit
would be OK or not? :)
I don't know. :-/
It's the proverbial problem of spam / virus filtering and a spam / virus
gets through the filters and someone saying "But it's your
On 10/26/22 3:48 PM, Ramon Fischer wrote:
I have created an issue at their Git repository. Maybe there will be
solution for this:
https://github.com/sudo-project/sudo/issues/190
I ... don't know where to begin.
There are so many ways that you can hurt yourself with syntactically
valid
On 10/26/22 3:27 PM, Ramon Fischer wrote:
Why was I thinking of a chroot?
Maybe because of reading "grup/grub" a few e-mails before and thinking
of "grub-mkconfig"...
Or maybe because entering a chroot is such a prominent thing to do when
booting off of Gentoo media to do an installation
On 10/26/22 3:13 PM, Neil Bothwick wrote:
They and you are different people. You are looking at it from the
perspective of a user accidentally locking themself out of the system,
so su is the best way to be able to fix it. I agree with you there. I
was looking at it from the perspective of a
On 10/26/22 2:08 PM, Neil Bothwick wrote:
So they have root access, nothing has changed. How they get root
access is irrelevant, just that they have it.
No, how they get root access is not irrelevant.
If your only access to root is via sudo and you break sudo you no longer
have root access.
On 10/26/22 12:35 PM, Jack wrote:
Could you not interrupt grup and append "single" or "init=/bin/bash" to
the kernel command line?
Maybe.
It will depend on how complex your configuration is.
I don't remember if Gentoo requires root's password when entering single
user mode or not. (I've
On 10/26/22 12:22 PM, Neil Bothwick wrote:
You need to be root to write to /etc/sudoers.d. If someone has that
access, you are already doomed!
And what happens if someone uses the existing root-via-sudo access to
break sudo?
You loose root-via-sudo access.
Someone could become root, via
On 10/26/22 12:04 PM, Ramon Fischer wrote:
Also a very interesting question!
}:-)
I just tested this with "visudo" and it does not intercept this.
Nor should it.
It's perfect legitimate sudoers syntax.
The location; /etc/sudoers.d/zz vs the end of /etc/sudoers
(proper), doesn't
On 10/26/22 1:42 AM, Ramon Fischer wrote:
and your user is able to synchronise your clock again.
I'm not sure that will work as hoped. See my other reply about PTY and
testing the commands at the command line for more explanation of what I
suspect is happening.
I do not know, what the
On 10/26/22 12:31 AM, Walter Dnes wrote:
My regular user has script "settime" in ${HOME}/bin
#!/bin/bash
date
/usr/bin/sudo /usr/bin/rdate -nsv ca.pool.ntp.org
/usr/bin/sudo /sbin/hwclock --systohc
date
/etc/sudoers.d/001 has, amongst other things, two lines...
waltdnes x8940 = (root)
On 10/25/22 9:44 PM, Matt Connell wrote:
Calm down.
I am calm.
The suggestion to not edit the (/etc/sudoeres) configuration file is one
of those types of things that if nobody objects to then eventually not
doing so will become defacto policy. So I objected, calmly, but with
emphasis.
On 10/25/22 9:04 PM, Ramon Fischer wrote:
I do not think, that this is a bug, since it is the default file, which
should not be edited by the user.
I *STRONGLY* /OBJECT/ to the notion that users should not edit
configuration files.
By design, that's the very purpose of the configuration
On 10/7/22 11:10 AM, Matt Connell wrote:
Was more just laughing at myself for having used equery so frequently
for ~10 years and not knowing about the option.
Fair enough.
And if I was hiding it, I wouldn't have publicly replied that I
learned it :)
TIL
You accidentally struck a button
On 10/7/22 10:23 AM, Philip Webb wrote:
There's the Wayback Machine, which tries to archive all I/net pages ever.
Sadly, there are a lot of pages that the Wayback Machine a.k.a. The
Internet Archive doesn't have archived. TIA / WM is a best effort
system and is a lot better than not having
On 10/7/22 10:31 AM, Matt Connell wrote:
Ashamed to admit I learned of equery meta today. I'd previously been
relying on eix to find, say, the website associated with a package.
NEVER be ashamed to admit that you learned something.
Learning is a good thing.
It doesn't matter when you learn
On 10/7/22 8:25 AM, n952162 wrote:
Can anybody tell me how I can look at the official change history of
linux commands?
Some man pages have history of commands in them.
Admittedly, it seems as if man pages on Solaris and *BSD (I have access
to FreeBSD) tend to be better than Linux man page
On 9/18/22 1:26 AM, n952162 wrote:
I want to ssh over my openvpn connection, and I can't do it, the
connection times out.
IMHO the first, second, and third thing to try when OpenSSH clients fail
for some reason is `-v`, `-v -v`, and `-v -v -v` in your ssh command(s).
That will almost always
On 8/20/22 10:22 PM, William Kenworthy wrote:
What are you measuring the speed with - hdparm or rsync or ?
hdparm is best for profiling just the harddisk (tallks to the interface
and can bypass the cache depending on settings, rsync/cp/?? usually have
the whole OS storage chain including
On 8/20/22 4:45 PM, Dale wrote:
I figured it was something like that. ;-)
:-)
This drive is not supposed to be SMR. It's a 10TB and according to a
site I looked on, none of them are SMR, yet. I found another site that
said it was CMR. So, pretty sure it isn't SMR. Nothing is 100% tho.
Sorry for the duplicate post. I had an email client error that
accidentally caused me to hit send on the window I was composing in.
On 8/20/22 1:15 PM, Dale wrote:
Howdy,
Hi,
Related question. Does encryption slow the read/write speeds of a
drive down a fair amount?
My experience has
On 8/20/22 12:30 AM, Walter Dnes wrote:
Long-story-short; I run ArcaOS (backwards compatable OS/2 successor)
as a guest on QEMU on my desktop.
Aside: Is ArcaOS really a different version of OS/2? Or is it still
4.x with patches and updated drivers? I saw extremely little
difference, other
On 8/20/22 1:15 PM, Dale wrote:
Howdy,
Hi,
Related question. Does encryption slow the read/write speeds of a
drive down a fair amount?
m
This new 10TB drive is maxing out at about 49.51MB/s or so. I actually
copied that from the progress of rsync and a nice sized file.
It's been
On 7/18/22 3:28 AM, J. Roeleveld wrote:
Either on the client where the agent is running, but also on the
system I connected to.
I have always considered that there is enough sensitive data on the
client and that there are already enough things running there that I end
up considering the
On 7/18/22 12:23 AM, J. Roeleveld wrote:
I've been using ansible for some of my automation scripts and am
happy with the way that works. The existing implementations for
"adding users" and such is tested plenty by others and does actually
check if the user exists before trying to add one.
On 7/17/22 11:48 PM, J. Roeleveld wrote:
It could, but that would open up an unsecured key to interception if
an intermediate host is compromised.
What are you thinking? -- I've got a few ideas, but rather than
speculating, I'll just ask.
See previous answer, the agent, as far as I know,
On 7/17/22 11:24 PM, J. Roeleveld wrote:
If I have 1 desktop and 1 laptop, that means 2 client machines.
Add 5 servers/vms.
/Clients/ need (non-host) key pairs. Servers shouldn't need non-host
key pairs. Servers should only need the clients' public keys on them.
That means 10 ssh-keys
On 7/15/22 11:46 PM, J. Roeleveld wrote:
Hmm... interesting. I will look into this.
:-)
But, it needs the agent to be running, which will make it tricky for
automation.
Why can't automation start an agent? Why can't there be an agent
running that automation has access to?
(I have some
On 7/15/22 11:42 PM, J. Roeleveld wrote:
True, properly done automation is necessary to make our lives easier.
#truth
I tried this approach in the past and some levels of automation still
use this, but for being able to login myself, I found having different
keys become cumbersome and I
On 7/15/22 4:11 PM, Neil Bothwick wrote:
I've never used it before, mainly because I wasn't aware of its
existence until I re-read the ssh-keygen man page, but it seems to
be simple timestamps passed to valid-before/valid-after.
I'm not sure that's applicable to /keys/ verses /certificates/.
On 7/15/22 1:12 PM, Neil Bothwick wrote:
I'll check that out, but it is also possible to set time limits on SSH
keys, and limit them to specific commands.
Please elaborate on the time limit capability of SSH /keys/. I wasn't
aware of that.
Is it hours of the day / days of the week they can
On 7/14/22 3:22 PM, Steve Wilson wrote:
Have you looked at dev-tcltk/expect?
Expect has it's place.
Just be EXTREMELY careful when using it for anything security related.
Always check for what is expected before sending data. Don't assume
that something comes next and blindly send it
On 7/15/22 6:44 AM, Neil Bothwick wrote:
I don't share keys, each desktop/laptop has its own keys.
Not if they use their own keys. It should be simple to script
generating a new key, then SSHing to a list of machines and replacing
the old key with the new one in authorized_keys.
+1
On 7/15/22 1:53 AM, J. Roeleveld wrote:
I agree, but that is a tedious process.
Yes, it can be. That's where some automation comes into play.
I have multiple machines I use as desktop depending on where I am. And
either I need to securely share the private keys between them or set
up
On 7/15/22 1:15 AM, J. Roeleveld wrote:
Yes.
Okay.
That simply means that SSH keys won't be used to authenticate to the
remote system.
How would it not prompt for a password.
There is a PAM module; pam_ssh_agent_auth, which can be used to enable
users to authenticate to sudo using SSH
On 7/15/22 1:07 AM, J. Roeleveld wrote:
What I am looking for is:
1) Lookup credentials from password vault (I can do this in
script-form, already doing this in limited form for ansible-scripts,
but this doesn't give me an interactive shell)
ACK You indicated you already had a solution for
On 7/14/22 1:08 PM, Neil Bothwick wrote:
I was accepting your point, one I hadn't considered.
Ah. Okay. :-/ Here I was hoping to learn something new from you. ;-)
Still a good discussion none the less. :-)
--
Grant. . . .
unix || die
On 7/14/22 9:56 AM, Neil Bothwick wrote:
That is true, but it is also true about the current setup as that
also gives root access. I get the impression that Joost is looking
for a more convenient approach that does not reduce security, which
is true here...
I'm all for being /more/ secure,
On 7/14/22 8:48 AM, Neil Bothwick wrote:
Is this user only used as a gateway to root access, or can you set
up such a user? If so you could use key-based authentication for
that user, with a passphrase, and add command="/bin/su --login"
to the authorized_keys line. That way you still need
On 7/14/22 3:54 AM, J. Roeleveld wrote:
For security reasons, I do not want direct login to root under any
circumstances. This is disabled on all systems and will stay this way.
+10 for security
Currently, to login as root, you need to know:
- admin user account name
- admin user account
On 7/14/22 12:35 AM, J. Roeleveld wrote:
Hi All,
Hi,
I am looking for a way to login to a host and automatically change
to root using a password provided by an external program.
Please clarify if you want to /require/ a password?
I can think of some options that would authenticate, thus
On 5/29/22 9:48 AM, w...@op.pl wrote:
User xyz can exacute command D on host A as user B in group C
...
is just a matter of consistency ;)
The group that a command is run as starts to become much more germane
when you are using sudo to run commands as a different non-root user.
E.g. if
On 5/12/22 8:42 AM, John Covici wrote:
So, I went on to the sasl mailing list and someone found a patch --
seems to be available for the freebsd port, and the patch was specific
to sendmail and dev-libs/cyrus-sasl 2.1.28. I modified it for gentoo
and it fixed everything up! I wonder if I
On 5/6/22 4:09 AM, John Covici wrote:
So, I restored all the files, I could like sendmail.mc and the
Sendmail.conf, but no joy, still no authentication mechanisms.
I restored them to about first of April.
Well darn. :-/
This still leads me to saslauthd.
I didn't mean to imply that it
On 5/5/22 1:24 PM, John Covici wrote:
I do have a submit.mc file, but I have not changed this at all.
What is strange to me is that if I do saslauthd -v should not I get
everything that my Sendmail.conf has?
I would not assume so.
I say that based on my understanding of how SASL and Sendmail
On 5/5/22 10:39 AM, John Covici wrote:
saslauthd is running, but it seems to ignore the Sendmail.conf .
I think it's the other way around.
Sendmail is told to support authentication via one or more methods, one
of which can be SASL and co.
The actual SASL auth daemon just listens on a unix
On 5/4/22 7:31 AM, John Covici wrote:
Hi. I have been using various clients to connect to my sendmail
server using port 587 and using starttls to encrypt the connections
and then using the plain mechanism to send the user name and password
to authenticate.
Last day or so this has stopped
On 4/13/22 6:31 AM, n952162 wrote:
Unfortunately, I get a 550 from my network provider for all of these:
1. me
2. localdomain
3. net
4. web.de
So, how does thunderbird do it?
I don't know what name Thunderbird uses in it's HELO / EHLO command(s).
Though it shouldn't matter much which
On 3/31/22 10:17 AM, Grant Taylor wrote:
I do know that the DHCP protocol supports adding additional options /
definitions / parameters (?term?) to specify ... static routes.
In case others are interested in this, a few pointers about using it.
ISC's DHCP server has two options
On 3/31/22 7:21 AM, William Kenworthy wrote:
Hi,
Hi,
I am trying to use a raspberry pi ... to create a routed link
between two access points ... so I can access the monitoring port ...
from homeassistant.
I'm distilling this down to a Gentoo system participating in two two
LANs, both
Some clarifications.
On 3/22/22 1:28 PM, Grant Taylor wrote:
Xvnc
I have looked at NoMachine (a.k.a. NX) in the past. But I've not tried
it myself because my work client machine has a VNC client built in and
doesn't have an NX client.
As in run an Xvnc server as an X11 server / display
On 3/22/22 10:41 AM, Grant Edwards wrote:
How does one run "modern" X11 apps remotely?
Xvnc
As in run an Xvnc server as an X11 server / display. Point your
programs at that display / server. Then have a VNC client connect to
said VNC server.
Using ssh -X or ssh -Y works fine for older
On 3/18/22 1:03 PM, n952162 wrote:
I rent a low-cost virtual server in the cloud. The platform offers
me some choices in linux distributions, but I'm wondering if I can
compile gentoo to run on it. Anybody have experience doing this?
I've got a Gentoo image running in Linode without any
On 3/9/22 11:50 PM, Nikos Chantziaras wrote:
This is normal, at least when using systemd.
How is this a /systemd/ thing?
Is it because systemd is enabling a /kernel/ thing that probably is
otherwise un(der)used?
I ask as someone who disliked systemd as many others do. But I fail to
see
On 2/28/22 5:04 AM, Adam Carter wrote:
If you put that url in a browser does it show your passwd file? I assume
because the logs say 200 it will. If so shut down the httpd and reset
all the passwords
Note the question mark after the leading slash. As such, the path
traversal component is
On 2/20/22 10:24 AM, Peter Humphrey wrote:
Hello list,
Hi,
I have a couple of vertically mounted easy-swap disk caddies in the
back of my workstation, and I'm having trouble finding screws to
mount the disk in the caddy. Clearance is nil, so the screws must be
countersunk so they aren't
On 1/18/22 1:26 PM, Raphael Mejias Dias wrote:
Hello,
Hi,
I've modified a little my config file:
Okay.
ProxyPass "zmz" "http://raphaxx.intranet:8280/zm/
ProxyPassReverse "zmz" "http://raphaxx.intranet:8280/zm/;
I would expect the first parameter to be anchored / fully
On 1/18/22 1:30 PM, Anatoly Laskaris wrote:
Age migth mean a lot when we are talking about software. Modern software
usually is easier to configure, has sane defaults, more secure and has
integration with other modern software.
I'll concede that those points are /possibilities/. But they are
On 1/18/22 1:50 PM, Rich Freeman wrote:
No, I'm talking about the opposite situation. I'm talking about you
have foo.local resolvable via mDNS, but not DNS - then there is a
chance you won't be able to access the host.
It's the same problem just opposite directions.
The solution is to use
On 1/18/22 11:24 AM, Anatoly Laskaris wrote:
I'm sorry for not answering to the question directly, but why use apache2?
- Because Apache is already installed and listening on the port in
question.
- Because that's what the OP asked about.
- Because it might be IBM / Oracle HTTP Server
On 1/18/22 9:57 AM, Raphael Mejias Dias wrote:
Hello,
Hi,
I'm trying to setup a reverse proxy on my apache2 server to serve an
another apache2 server running on a vm, basically my root apache2
is at 192.168.0.15 and my second apache2 is at 192.168.0.15:8280.
My idea is to have
On 1/15/22 7:47 AM, tastytea wrote:
Did you know you can search with / and then jump to the results with
the number keys?
I've been using the search for decades*. But I didn't know about the
number keys to jump until reading this message and trying it. #TIL
*Yes, I've been using Linux for
On 1/15/22 3:33 AM, Peter Humphrey wrote:
Hello list,
Hi.
Rich F said recently, "I'd avoid using the .local TLD due to RFC 6762."
Ya
I've read RFC 6762 in the past and I just skimmed part of it again. I
didn't find anything that prohibited the use of the local top level
domain for
On 1/14/22 8:45 AM, Raphael Mejias Dias wrote:
Hello,
Hi,
I'm trying to configure BIND for a local DNS server, but I'm not sure
that it's ok.
Based on your other comments, it seems as if there is more of a question
about overall DNS configuration and operation than about the BIND DNS
On 1/2/22 12:14 AM, John Covici wrote:
OK, I fixed it, the group name was wrong when I tried the last time, I
had libvirtd and its only libvirt and that seems to have fixed things.
Thank you for the clarifying follow up. Here's hoping you same someone
else time in the future. :-)
On
On 1/1/22 11:05 PM, John Covici wrote:
Well, I foujnd out something. If I go to the file menu, I can add the
connection manually and it works,
That sounds familiar.
but I wonder why I have to do that?
Because the KVM Virtual Manager is designed such that it can administer
KVM / libvirt /
On 1/1/22 10:07 PM, John Covici wrote:
Maybe I have to log out of everything with my user name even though
most of the logins are to virtual consoles?
You typically need to log out of X11 sessions and log back in for them
to see the new groups.
But you say "virtual consoles", which tells me
On 1/1/22 1:19 PM, Mark Knecht wrote:
In my experience it often takes either a logout/in or a reboot
Ya
Depending on what you actually /need/ to use the new group for you can
probably ssh to localhost or possibly use the `newgrp` command go switch
your primary group to the group that
On 1/1/22 6:04 PM, John Covici wrote:
It more seems to have to do something with the uri -- libvertd is
certainly running, and I added myself to the kvm group, but still get
qem/kvm not connected.
Run `id` as your current user and make sure that it's showing the kvm &
libvirt groups.
--
On 1/1/22 12:08 PM, John Covici wrote:
OK, I made some progress -- I emerged qemu/kvm packages including
libvirtd and virt-manager came along. Now, when I start virt-manager,
it complains the qqemu/kvm not connected. I am running virt-manager
as my regular user.
Make sure that libvirtd is
On 12/31/21 4:50 PM, the...@sys-concept.com wrote:
Thanks for the hint. Yes, it works. I think it is the best solution for
now.
You're welcome.
A simple .forward works in most cases. Though it may run into typical
forwarding problems (SPF, DKIM, etc.). But you're probably fine with
what
On 12/31/21 3:58 PM, the...@sys-concept.com wrote:
How do you configure "~/.forward"?
echo "u...@example.net" > ~/.forward
That will cause most MTAs to forward message for your local user to the
u...@example.net email address.
--
Grant. . . .
unix || die
I don't have an answer for you, but I do have a drive by comment.
On 12/31/21 3:09 PM, the...@sys-concept.com wrote:
I'm trying to find a solution to read and delete local mail in:
/var/mail/[user] as Thunderbird discontinued support for reading local
mail directory (movemail).
This type of
On 12/31/21 8:12 AM, Rich Freeman wrote:
++
+++ to KVM / libvirt / VirtManager (GUI)
This is just a front-end to libvirt and kvm, so you're building
entirely on solid technologies, and anything you set up with the
GUI can be edited or run or otherwise managed from the command line,
and
On 12/26/21 9:42 AM, Philip Webb wrote:
I want to login to a remote site using 'ssh'.
The response I get is "Unable to negotiate with port :
no matching host key type found. Their offer: ssh-rsa,ssh-dss".
Yesterday, I updated 'openssh' :
Michael's pointing in the proper direction.
Check out
On 12/20/21 3:37 PM, Wol wrote:
You mean the body sans envelope?
Kinda, sorta, yes, no, maybe.
I'd have to compare the two formats to be able to say more definitively,
or with any certainty. But, ya, that's the /type/ of difference that
I'm thinking of.
Aside: What /actually/ is the
On 12/20/21 3:09 PM, Frank Steinmetzger wrote:
Delivery works on both systems
:-)
(with a little caveat, see second-last paragraph).
;-)
At first I believed that both systems used mail from GNU mailutils.
But I erred:
Ya. Determining /which/ implementation of a command is being used
On 12/20/21 12:08 PM, Frank Steinmetzger wrote:
There is one last niggle: after I read a message with the mail tool,
it saves those messages in /root/mbox. It does not do this on Arch,
but keeps them in /var/spool/mail/root instead.
This sounds like the doing of your mail user agent.
The
On 12/18/21 4:00 PM, Frank Steinmetzger wrote:
Just for the record and completeness’ sake: ... I found out that the
program was actually called dma -- the DragonFly BSD mail transport
agent, not mda.
Thank you for sharing your find Frank.
The DragonFly BSD MTA looks interesting. I'll have
On 12/15/21 1:21 PM, Laurence Perkins wrote:
So one thing that's annoyed me for a while is that there are several
things which will pull in nullmailer to accept local mails, but don't
pull in anything to do local delivery (And I'm not sure if nullmailer
can even pass things to local delivery)
On 12/13/21 3:12 PM, Frank Steinmetzger wrote:
Using strace, I found out that mail from mailx puts those mail into
/var/spool/clientmqueue/, one file per mail, but not in a maildir structure.
Yes, the /var/spool/clientmqueue is the mail queue for outgoing messages
from clients. Hence the
On 12/13/21 12:40 PM, tastytea wrote:
mail-client/mailx provides /usr/bin/mail which can be used for looking
at mail in/var/spool/mail/ and for sending it to local users. No
configuration necessary. cron and other software will automatically
use it.
For some reason I thought that mailx (and
Some drive-by after-the-fact comments:
On 12/6/21 4:03 PM, Frank Steinmetzger wrote:
[ "$MC_SID" ] && PS1_JOBS_COUNT="${PS1_JOBS_COUNT}MC "
[ "$RANGER_LEVEL" ] && PS1_JOBS_COUNT="${PS1_JOBS_COUNT}R "
I've taken to using things like the following:
On 12/1/21 10:02 AM, Grant Edwards wrote:
IIRC, there are situations where using udev rules to rename them
"ethN" based on MAC addresses will fail because that can conflict
with the low-level kernel names. Or something like that.
I don't think I ever ran into a problem re-using the original
On 11/30/21 1:56 PM, Laurence Perkins wrote:
So the old inconsistency was a super-bad kind of inconsistency.
The interfaces got named based on the order in which the devices
were discovered. Which, on a lot of systems, meant that every boot
was essentially rolling the dice on a race
On 11/30/21 12:58 PM, Dale wrote:
What I noticed in dmesg is that it takes the old name, eth0 for
example, and then renames it to the new name.
I don't know if it's the /kernel/ that does the renaming, or not based
on the kernel parameter, or if it's something else very early in the
boot
On 11/28/21 9:50 AM, Jack wrote:
The network name switch ... is not directly due to eudev vs. udev,
but to the "new" ... switch to consistent naming ... so your network
is probably something like enp20s2, reflecting which slot your network
card is physically in.
Except I've had multiple
On 9/23/21 4:39 AM, Miles Malone wrote:
You'd need NUMA if you had a NUMA machine. In current context, that
would be either a) a dual socket system, b) an amd threadripper, or
c) some of the really high core xeons. If your motherboard doesnt
have certain memory banks allocated to certain
On 7/12/21 2:21 PM, antlists wrote:
Two problems - I would like to run without X, but it seems that the
greeters need X to run ...
I'm not familiar with the term "greeter", but I assume that you're
referring to the display manager that functions as the GUI login screen.
Also I want to run a
On 6/2/21 1:48 AM, Fannys wrote:
Tech should be based on tech. Not faith and trust on the other party.
That's where detection of breach of trust comes into play. Thus DNSSEC
and things related.
--
Grant. . . .
unix || die
On 6/2/21 1:21 AM, J. Roeleveld wrote:
Do you know which extensions add this?
I don't remember exactly (they weren't compatible with Firefox 78) but
from memory, they were from the CZ NIC operator. They have many things
related to this.
--
Grant. . . .
unix || die
On 6/1/21 3:38 PM, Michael Orlitzky wrote:
*Any* CA can just generate a new key and sign the corresponding
certificate.
This is where what can /technically/ be done diverges from what is
/allowed/ to be done.
CAs adhering to the CA/B Forum's requirements on CAA records mean that
they
On 5/31/21 11:15 PM, William Kenworthy wrote:
And another "wondering" - all the warnings about trusting self signed
certs seem a bit self serving.
No, it's not self serving.
Considerably more people than public certificate authorities bemoan self
signed certificates.
Consider this:
1)
1 - 100 of 491 matches
Mail list logo