>> truth is, being a lazy typist and prone to memory errors, i use these
>>alias rsy='/usr/bin/rsync -vlpPStgoHx'
>>alias rsyr='/usr/bin/rsync -vPaHxRS'
> Thank you. I'm not a lazy typist and the command will be in a two-line
> shell script.
i am also too subtle. you might use the
truth is, being a lazy typist and prone to memory errors, i use these
alias rsy='/usr/bin/rsync -vlpPStgoHx'
alias rsyr='/usr/bin/rsync -vPaHxRS'
randy
>> fwiw, i use lvm/md0 raid10 under debian on nodes on our ganeti clusters.
>> quite happy with it. i hate hardware raid.
>
> Since RAID 10 requires four disks to mirror two pairs of striped disks
> and two of my external drives are otherwise occupied, I don't have the
> capability of using it.
>
fwiw, i use lvm/md0 raid10 under debian on nodes on our ganeti clusters.
quite happy with it. i hate hardware raid.
randy
> If you want to start with a small group, don't care about most of the
> features, but are totally committed to open source, then look at
> https://jitsi.org/
fwiw, for this and similar purposes, i have a jitsi on debian. works
well, minimal maintenance.
randy
> I have a script that uses mail to send messages to my notification list
> addresses.
>
> Some addresses are folks who've change employers or retired and I removed
> their addresses from the list. Yet, three of those no longer on the address
> list produce bounces from the recipient's mail
i am bimodal. $dayjob is a bottom feeding scum sucking sillicone valley
vendor who has not fired me yet. my research and personal life is quite
different.
yes, i am on mastodon enoclue@iox.exchange. my twitter accound has been
dormant for ages. i do not use facebook et alia.
i run my own
https://frame.work/
maybe this will help a bit. sorry it's slightly mac oriented
https://archive.psg.com/221014.btnog-ssh-and-ssh-agent.pdf
> Does it matter if my ssh public key specifies a LAN host
an ssh key does not specify a host. e.g.
ssh-ed25519
C3NzaC1lZDI1NTE5ID9DzOVboz/9daQwQRPkxD/D4PZ4ZVNgMLqd+zc79Gl+
ra...@ryuu.psg.com
the ra...@ryuu.psg.com is a comment, no semantics
ubuntu has drivers for almost all kinky hardware
debian does not, but may move that way
ubuntu for laptops, debian for servers, is my use pattern
randy
on a tangent, preliminary tests seem to show that new mac os, ventura,
magically turns your `scp` into `sftp`. ghu knows why. californians!
randy
> debug2: resolving "ssh.phx.nearlyfreespeech.net" port 14982
and it did not resolve? if not, dns issue?
> So my ssh uses a high number port. NFS uses port 22.
which is perfectly normal
-vv
fwiw, i am a `screen` addict. i do a lot of builds on distant systems
over ssh, and try to always remember to start screen.
randy
> if you were to use Let's Encrypt then it is possible, if configured
> correctly, to have the certificates automatically updated.
+1
for reasons i have no investigated, safe deposit boxes are a
disappearing thing.
randy
> A Record @ 1.2.3.4
> A Record mail1.2.3.4
> A Record www 3.4.5.6
>
> Could I add:
> CNAME @ 3.4.5.6?
no. that is not legal syntax
> My reading about CNAME suggests it is used to map multiple host names to the
> same domain name.
well, more to the same A record
> I want mail to us...@appl-ecosys.com to come to the office IP address, but
> access to the web site as https://appl-ecosys.com to go to the web host's IP
>
> Then I lose my mail server, yes?
foo A 1.2.3.4
foo MX 42 mail.foo
mail.foo A 3.4.5.6
www.foo CNAME foo
> How can I allow web site visitors to access it without the 'www' prefix?
foo A 1.2.3.4
www.foo CNAME foo
> I want to use the Panasonic cordless phone and the call center dial
> pad/headset with an ATA to VoIP and save $$ on taxes each month.
then ata wired as i said
> Would Ziply Fiber, my ISP and TelCo be the SIP provider?
if they provide sip service, they could be. otoh, there are plenty
of sip services on the internet, e.g. callcentric.
but your question makes me wonder if what you really need/want is
merely a phone to plug into ziply's cpe.
randy
plug an ata into ether on one side and rj telco on the other.
configure the ata to the sip privider, and bob's your uncle.
randy
>> In order to fix the issue you have to enable two
>> factor authentication on your Google account.
>
> Jesus Christ is Google hungry for phone numbers.
no. it's the millions they make off the free 2fa google authenticator
app.
2fs need not be a text message. in fact, texts are worse and
back about '80, a compiler geek at su-ai asked on the arpanet lang list
whether an 8 or 12 char limit for variable names was appropriate.
david moon, cmu, sent an email to report a bug in the su-ai mailer which
was regurgitating mail from the '50s and '60s, but with current dates.
randy
> The key thing (and vaguely surprising to me when I first used them) to
> remember about VLANs is that they don't provide any privacy if your
> "adversary" has access to the medium.
like MPLS VpNs
ok, my current pain with libre orafice is that the spreadsheet does
not show the selected cell in any clearly highlit way.
cluze?
randy
> My external server is getting dozens of login attempts per
> minute
i use sshguard configured to maximize hold on the attacker. i figure it
is better for the internet if they hug my tarbaby as opposed to
attacking more vulnerable folk.
> Is it a good idea to keep upgrading? That is another question -
> probably not a good idea to keep doing it. This and many other forums
> are full of horror stories about dealing with the accumulated config
> junk left over from the dist upgrades.
but there are also horror stories of migrating
i also indulge crowdfunded projects, and partially for the reasons you
state.
it appears that xue hopes to ship essentially a street rod version of
the classic T60/61 (incl case, display, etc) for about USD 1,500, to
which one would add 64G of ram and the M.2 NVMe SSDs. i could not sort
whether
> My wife is interested in VPNs, but she runs Win7. Is there a VPN that
> runs on both Win7 and Linux (Ubuntu based)?
openvpn, of course. wireguard too.
> Is it worth the effort?
depends on the threat model.
randy
> What company makes a laptop named FrameWork?
https://frame.work/ :)
randy
i am tempted by the FrameWork, but anything other than ubuntu might take
work
randy
to be honest, i am not familiar with this PARTUUID stuff. my fstabs
are all UUID=
# / was on /dev/vda1 during installation
UUID=d3c27683-5d72-4443-9ead-5c20e24b6043 /ext4errors=remount-ro 0
1
# swap was on /dev/vda5 during installation
UUID=5b7816e8-bcda-4c48-9a04-bed770cc7fb6
good
can not use all the time because it does not support ffox's
https://git.rg.net/randy/randy/src/master/firefox-proxy.md
randy
> Another possible listing place is keybase.io.
a non-homogenous web of trust. i find it hard to understand the trust
model. and did zoom or someone not buy it?
randy
> Is PGP still an OK way to encrypt a document to send
> securely as an attachment via email?
we use it
> Is there a "phonebook" of trustworthy PGP public keys?
`gpg --locate-external-keys --auto-key-locate wkd ra...@psg.com`
is my fave. half-assed baroque doc at
http://www.raid-calculator.com/
https://www.omnicalculator.com/other/raid
i am a `screen` addict; but use it only in two patterns; naked
`screen` with no command and then i am in a shell and do as i wish,
or as `screen -L` to log the session for later archaeology.
in either of those use patterns, the C-a commands are available.
if i `exit` or C-d, from the screen
> Thanks for sharing your experiences. There are series newer than the T
> and X and I cannot find linux compatability information for them.
fwiw, i would be deeply shocked if a modern lenovo did not run linux.
you might need ubu as opposed to deb, because of lagging drivers.
randy
> Newegg's chat person could not find an answer to my question and
> Lenovo doesn't have a chat service and every attempt to contact
> them via their web site requires a product serial number.
>
> I don't follow hardware for linux and cannot find whether this
> laptop supports the OS so I guess
beats me
> Here is the relevant part of the 10-director.conf file (Line 30 is "service
> director {)
>
> # To enable director service, uncomment the modes and assign a port.
> service director {
> unix_listener login/director {
> #mode = 0666
> }
> fifo_listener login/proxy-notify {
> #mode
funny, i came in a different door; so used hollerith cards (1130, 1401,
709x) and a lot of assembler before tape (pdps).
side excursion to more modern technology: i recently got a cheap usb-c
cable tester. https://www.amazon.co.jp/gp/product/B07Y8BPVV4 (home url
is
do not know how widely this extends
https://arstechnica.com/gadgets/2021/08/samsung-seemingly-caught-swapping-components-in-its-970-evo-plus-ssds/
randy
> So, you are basically saying one should be built from scratch instead
> due to security reasons?
roll your own crypto is known to be a sure success path :0
but my opinion, for the little it is worth, is wait a while. the water
is being muddied.
randy
https://twitter.com/hashbreaker/status/1435745406181273603
> Not to cause a flame war or get into the weeds of how email works, but
> no email service you use is immune to a subpoena or court order - in
> any country. ...
protonmail said publicly in their adverts that they did not keep ip
logs. turns out they did. today they removed that section of
i like brave a lot. but can not use as my every day browser as it does
not have firefox's cute proxy hack; see
https://git.rg.net/randy/randy/src/master/firefox-proxy.md
randy
> You seem to have some very personal and unique search engine issues
> and preferences that I dare say many other people don't.
well, for criterion X, i am confident there are populations on both
sides.
but i suspect that keith's dislike of ads, homonym results, ... are
widely shared.
file:///blah
i am a brother fan. folk to whom i listen also use hp.
randy
>> can you point me to where it is documented that `find` is guaranteed
>> to produce an ordered list?
> I don't have any such documentation or belief. my belief is that uniq
> will count non-consecutive matches
it won't
randy
> find Processed -type f -printf '%f\n' | sed "s/@.*//" | uniq -c
can you point me to where it is documented that `find` is guaranteed
to produce an ordered list? yes, it seems to often do so, but i have
learned not to trust it. so i would
... | sort | uniq -c
woulda been cool to use
```
if [ -z "$PS1" ]; then
return
fi
```
> I've encountered a few PDF-1.5 docs that are not searchable using
> xpdf, mupdf, okular, or MasterPDFEditor. Perhaps they're scanned
> and I don't know how to determine if they are.
i hit this often. i just ocr them with pdfscanner on a mac. i would
guess/hope there are lower cost tools.
but i do appreciate the declarations of those defending the 'right' to
offend. it allows me to reduce my inbound mail by adding them to my
well-known .procmailrc *drop* list :)
randy
i'll toss in two antique original, as in mini display port, 27" apple
displays. should work but not used for over three years.
free as in coffee ( i do not drink alcohol :)
randy
59 matches
Mail list logo
