Re: New to Debian (Gentoo user) - package management

2014-01-04 Thread Nemeth Gyorgy 
2014-01-03 14:44 keltezéssel, Tanstaafl írta:
> In gentoo, I routinely perform pretend updates to see what updates are
> available, so a process like:
> 
> eix-sync
> to synchronizes the local repo with the online one
> 
> eix packagename
> shows all available versions of that package, and what repo they reside
> in (stable, testing, etc)
> 
> emerge --pretend -vuDN world
> results in a list of all available updates, as well as any dependencies
> that would be installed, which I can then pick and choose from. I
> usually wait until newly available updates have been available for at
> least a few days before installing them, to avoid nasty surprises.

For regularly checking updates I use the cron-apt package, actually it
does almost the same as you wish. I configured it to check the updates
(apt-get update), download but not install the updated packages (apt-get
-d dist-upgrade). If there is packages to be updated it sends a mail
with the packagenames to be updated.


-- 
--- Friczy ---
'Death is not a bug, it's a feature'


-- 
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org 
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Archive: http://lists.debian.org/52c7c8ce.7050...@freemail.hu

Re: New to Debian (Gentoo user) - package management

2014-01-04 Thread Brian 
On Fri 03 Jan 2014 at 17:21:40 -0700, Robert Holtzman wrote:

> On Fri, Jan 03, 2014 at 09:20:33AM -0800, Carl Johnson wrote:
> > 
> > You might want to look into the debian-reference package.  It is also
> > available on the web at http://www.debian.org/doc/manuals/debian-reference/.
> 
> It looks like most/all this stuff is obsolete.

What a strange observation, Did you have anything in particular in mind?
Osamu Aoki is assiduous in keeping the manual current and I'm sure he
would welcome constructive proposals to improve it.


-- 
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org 
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Archive: 
http://lists.debian.org/04012014094517.2d9827a1e...@desktop.copernicus.demon.co.uk

Re: how to configure pulseaudio to use analog speaker on motherboard not hdmi on video card

2014-01-04 Thread Klaus 

On 03/01/14 20:50, Mitchell Laks wrote:
> ok so now we are ok
> vlc file.wmv works immediately
> Anyway, now no problem!!! I get beautiful sound right up when I start the
>
> So I guess I could have just turned off speech-dispacher in rc2.d
> I guess the myseql thing is weird, but does seem to affect sound..
> what is your take on this matter?
>
> Mitchell
>

Mitchell, that was quite a radical cure, removing most of (?) KDE. 
Anyway, if it now works for you... Here are a couple of bugreports 
against speech-dispatcher that match your issues:

 #625235  speech-dispatcher: Combined with pulseaudio breaks ALSA
 #670740  speech-dispatcher: Prevents existing pulseaudio instance from 
working


Briefly to the mysql stuff: this time the 125 is the group id, not the 
user id.

Have you confirmed that group id 29 belongs to group audio?


--
Klaus


--
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org 
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Archive: http://lists.debian.org/52c7db4d.4060...@gmail.com

Re: something triggering my screensaver timeout (login dialog) - sid, xfce

2014-01-04 Thread Robin 
On 4 January 2014 02:33, Zenaan Harkness  wrote:
> My login dialog, after I lock my screen, gets repeatedly triggered -
> as though some keyboard key or mouse movement occurs - even after
> unplugging my two mice.
>
> I have a trackpad which is disabled in bios.
>
> There is a trackpoint - the only thing left.
>
> Is there a program or cmd line script I could run, to
> deterministically show what triggered xscreensaver?
>
> TIA
> Zenaan
>
>
> --
> To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org
> with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
> Archive: 
> http://lists.debian.org/CAOsGNSTFo+ZuGk-Zz2iOR7c=C_41=2di=7MT_N3=ru4p2tg...@mail.gmail.com
>

xev

-- 
rob


-- 
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org 
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Archive: 
http://lists.debian.org/CAOZWb-p7S1dABPNHfXkP2fRiqJAVF_aU=5g0mn4suytcdzp...@mail.gmail.com

Re: To do the same as Windows safe mode...........

2014-01-04 Thread Andrei POPESCU 
On Mi, 01 ian 14, 09:06:48, Lisi Reisz wrote:
> On Wednesday 01 January 2014 01:31:00 Scott Ferguson wrote:
> > On 01/01/14 11:56, Charlie wrote:
> > > So can someone please tell me how I might do windows safe mode
> > > equivalent?
> >
> > There isn't an equivalent mode with Linux. Sorry.
> 
> My knowledge of Windows is scarcely encyclopaedic, but is Windows Safe 
> Mode not much the same thing as Debian single user (run level 1)?

It's probably the best approximation of Windows Safe Mode, with the big 
difference being that single user is text only. I find this to be a good 
thing, provided one is familiar enough with it to do the trouble 
shooting without GUI tools.

Kind regards,
Andrei
-- 
http://wiki.debian.org/FAQsFromDebianUser
Offtopic discussions among Debian users and developers:
http://lists.alioth.debian.org/mailman/listinfo/d-community-offtopic
http://nuvreauspam.ro/gpg-transition.txt


signature.asc
Description: Digital signature

Re: adding a printer

2014-01-04 Thread Paul Cartwright 
On 01/03/2014 10:47 PM, Vincent Lefevre wrote:
>> cups was installed, when I first went to print, it wanted to print to
>> > the pdf printer.. but there was no way for me to install a printer..
> Open http://localhost:631/admin in a web browser, choose "Add a printer"
> and connect as root.
>
> I had to add a printer a few days ago (for the first time), and
> the above worked. Well, this was a bit more complex since the
> model wasn't supported and I had to get the ppd...
thank you! I had forgotten about the web admin..but I also added the
printer menu. I probably could have added it with the command-line
lpadmin :) 20 years ago that was the ONLY way..

-- 
Paul Cartwright
Registered Linux User #367800 and new counter #561587


-- 
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org 
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Archive: http://lists.debian.org/52c7ef4c.5020...@gmail.com

Re: adding a printer

2014-01-04 Thread Brian 
On Fri 03 Jan 2014 at 20:25:53 -0500, Paul Cartwright wrote:

> cups was installed, when I first went to print, it wanted to print to
> the pdf printer.. but there was no way for me to install a printer..
> all I was missing was the
> 1 - http://packages.debian.org/wheezy/system-config-printer

When Wheezy is installed you only get system-config-printer if one of
three task-* packages is installed. As said, localhost:631 could be used
for setting up a printer.

   brian@desktop:~$ apt-cache --no-suggests rdepends system-config-printer
   system-config-printer
   Reverse Depends:
 task-xfce-desktop
 task-lxde-desktop
 task-kde-desktop

Having cups installed implies you chose the print server task in d-i.
You mention "the pdf printer"; does this mean you installed cups-pdf
afterwards (it is not included in the print server task)? I can see no
benefit in using it over and above "Print to File" offered by desktop
applications.

Iceweasel (for example) produces a PDF to be sent to the printer.
cups-pdf converts this to PostScript and then back to a PDF. This might
cause you think why you used it in the first place.


-- 
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org 
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Archive: http://lists.debian.org/20140104115338.gn5...@copernicus.demon.co.uk

Re: adding a printer

2014-01-04 Thread Paul Cartwright 
On 01/04/2014 06:53 AM, Brian wrote:
> When Wheezy is installed you only get system-config-printer if one of
> three task-* packages is installed. As said, localhost:631 could be used
> for setting up a printer.
>
>brian@desktop:~$ apt-cache --no-suggests rdepends system-config-printer
>system-config-printer
>Reverse Depends:
>  task-xfce-desktop
>  task-lxde-desktop
>  task-kde-desktop
I did not install xfce, lxde or kde, so I didn't get the
system-config-printer. I am running MATE dm.
I used to use the web admin, I just forgot about it in my panic when
there was no printer menu.

-- 
Paul Cartwright
Registered Linux User #367800 and new counter #561587


-- 
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org 
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Archive: http://lists.debian.org/52c7f79a.5080...@gmail.com

Re: something triggering my screensaver timeout (login dialog) - sid, xfce

2014-01-04 Thread Zenaan Harkness 
On 1/4/14, Robin  wrote:
> On 4 January 2014 02:33, Zenaan Harkness  wrote:
>> My login dialog, after I lock my screen, gets repeatedly triggered -
>> as though some keyboard key or mouse movement occurs - even after
>> unplugging my two mice.
>>
>> I have a trackpad which is disabled in bios.
>>
>> There is a trackpoint - the only thing left.
>>
>> Is there a program or cmd line script I could run, to
>> deterministically show what triggered xscreensaver?

> xev

Perfect thanks!

So I ran xev from a Linux console (first: export DISPLAY=:0) and from
another Linux console (two GNU screen sessions in one Linux console
actually, so I could detach, and reattach in X later, to cut and paste
into this email):
$ xscreensaver-command -lock
xscreensaver-command: activating and locking.

Here is the xev output in response to the screensaver locking
(ie in response to running xscreensaver-command -lock):

$ xev -root

PropertyNotify event, serial 18, synthetic NO, window 0xb2,
atom 0x22f (_SCREENSAVER_STATUS), time 124226344, state PropertyNewValue

FocusIn event, serial 18, synthetic NO, window 0xb2,
mode NotifyGrab, detail NotifyInferior

KeymapNotify event, serial 18, synthetic NO, window 0x0,
keys:  4294967197 0   0   0   0   0   0   0   0   0   0   0   0   0   0   0
   0   0   0   0   0   0   0   0   0   0   0   0   0   0   0   0

EnterNotify event, serial 18, synthetic NO, window 0xb2,
root 0xb2, subw 0x0, time 124226348, (2321,323), root:(2321,323),
mode NotifyGrab, detail NotifyInferior, same_screen YES,
focus NO, state 16

KeymapNotify event, serial 18, synthetic NO, window 0x0,
keys:  0   0   0   0   0   0   0   0   0   0   0   0   0   0   0   0
   0   0   0   0   0   0   0   0   0   0   0   0   0   0   0   0

ConfigureNotify event, serial 19, synthetic NO, window 0xb2,
event 0xb2, window 0x4c1, (0,0), width 1920, height 1200,
border_width 0, above 0x4c5, override YES

MapNotify event, serial 19, synthetic NO, window 0xb2,
event 0xb2, window 0x4c1, override YES

ConfigureNotify event, serial 19, synthetic NO, window 0xb2,
event 0xb2, window 0x4c5, (1920,0), width 1920, height 1200,
border_width 0, above 0x4c1, override YES

MapNotify event, serial 19, synthetic NO, window 0xb2,
event 0xb2, window 0x4c5, override YES

PropertyNotify event, serial 19, synthetic NO, window 0xb2,
atom 0x22f (_SCREENSAVER_STATUS), time 124226360, state PropertyNewValue

UnmapNotify event, serial 19, synthetic NO, window 0xb2,
event 0xb2, window 0x7e, from_configure NO

ConfigureNotify event, serial 19, synthetic NO, window 0xb2,
event 0xb2, window 0x4c1, (0,0), width 1920, height 1200,
border_width 0, above 0x4c5, override YES

ConfigureNotify event, serial 19, synthetic NO, window 0xb2,
event 0xb2, window 0x4c5, (1920,0), width 1920, height 1200,
border_width 0, above 0x4c1, override YES



and here is the remaining output, a short while later (may be 10
seconds), just staying in the linux console running xev, _not_ going
to console/terminal/x on Ctrl-Alt-F7 , where the xscreensaver unlock
password entry dialog is (it seems) activated by these events:

ConfigureNotify event, serial 19, synthetic NO, window 0xb2,
event 0xb2, window 0x4c1, (0,0), width 1920, height 1200,
border_width 0, above 0x4c5, override YES

ConfigureNotify event, serial 19, synthetic NO, window 0xb2,
event 0xb2, window 0x4c5, (1920,0), width 1920, height 1200,
border_width 0, above 0x4c1, override YES

CreateNotify event, serial 19, synthetic NO, window 0xb2,
parent 0xb2, window 0x4c6c016, (2591,472), width 578, height 256
border_width 1, override YES

MapNotify event, serial 19, synthetic NO, window 0xb2,
event 0xb2, window 0x4c6c016, override YES

LeaveNotify event, serial 19, synthetic NO, window 0xb2,
root 0xb2, subw 0x0, time 124241358, (2321,323), root:(2321,323),
mode NotifyUngrab, detail NotifyInferior, same_screen YES,
focus NO, state 16



I waited for over half a minute (no other xev events) before finally
going to X (Ctrl-Alt-F7), and sure enough the password screensaver
unlock dialog was well on its way to timeout (I have a 1 minute
timeout set), so clearly the above xev events (which displayed rapidly
one after the other) are indicative of what triggered the screensaver
unlock dialog.

This has never happened before - only since my last sid upgrade (maybe
a week ago or so).

Is anyone able to decode the above events?

TIA
Zenaan


-- 
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org 
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Archive: 
http://lists.debian.org/CAOsGNSQLV7SFaizfwscbPhtHJsXFhs=6pefap163qkv-f+k...@mail.gmail.com

Re: adding a printer

2014-01-04 Thread Brian 
On Sat 04 Jan 2014 at 11:53:38 +, Brian wrote:

> cups-pdf converts this to PostScript and then back to a PDF. This might

Scrub that. cups-filters converts the PDF to PS as this is the only
input format cups-pdf accepts. Then it is converted back to a PDF. It
wouldn't seem worth the effort!


-- 
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org 
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Archive: 
http://lists.debian.org/04012014120629.65eeef2c0...@desktop.copernicus.demon.co.uk

slow internet

2014-01-04 Thread Pol Hallen 

Hi all,

I've a pc that I use like a gateway (debian 7), the clients connected, 
has strange problems:


the loading of web pages are ok but sometimes (only on some sites) the 
loading of web pages is very slow... half page loaded and I see the 
wheel rotating... sometimes webpage is loaded but I see again wheel 
rotating...


same sites on another DSL works fine

for porpuse test I disabled firewall and all other services...

so, can be a problem with MTU? now is 1500

I've eth1 lan, eth0 --> router ---> internet

I use google dns, routing is ok, DSL is ok.

Any idea?

Thanks for help!
--
Pol


--
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org 
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Archive: http://lists.debian.org/52c8011b.5060...@fuckaround.org

error with auctex on Debian - request for reproduction

2014-01-04 Thread Faheem Mitha 


Hi,

Is there anyone out there who can check

http://tex.stackexchange.com/questions/151696/journal-of-statistical-software-class-breaks-preview-in-auctex

and tell me whether it is reproducible?

I heard from someone on the AUCTeX list, who could not reproduce it, so it 
may be Debian specific. I'm using the default TeX Live installation on 
wheezy.


The full text of the SO question follows. If you want more details, please 
ask. I also attach the output of the preview run.


Please CC me on any reply. Thanks.

 Regards, Faheem

#

I'm using `AUCTeX 11.86-11` on Debian stable.

The `jss.sty` style file contained in the [JSS style file zip 
archive](http://www.jstatsoft.org/downloads/JSSstyle.zip) breaks AUCTeX's 
preview for me even with a simple file. NOTE: the `jsslogo.jpg` file is 
also required.

For example,the following file

\documentclass[article]{jss}
\begin{document}
$x$
\end{document}

gives the error


 LaTeX found no preview images


The more detailed error is:

ERROR: Illegal parameter number in definition of \MYLATEXline.

--- TeX said ---

   1
l.386   \gdef\FV@BeginScanning#1^^M
   {%

Can any AUCTeX user

 1. confirm this
 2. tell me what the problem is?

I'll also try the AUCTeX list and update here if a solution is found.

Running `Preview-LaTeX' on `test' with ``pdflatex -ini -interaction=nonstopmode 
"&pdflatex" prv_test.ini   
"\nonstopmode\nofiles\PassOptionsToPackage{active,tightpage,auctex}{preview}\AtBeginDocument{\ifx\ifPreview\undefined\RequirePackage[displaymath,floats,graphics,textmath,sections,footnotes]{preview}[2004/11/05]\fi}"
 "\input" test.tex''
This is pdfTeX, Version 3.1415926-2.4-1.40.13 (TeX Live 2012/Debian) (INITEX)
 restricted \write18 enabled.
entering extended mode
(./prv_test.ini
LaTeX2e <2011/06/27>
Babel  and hyphenation patterns for english, dumylang, nohyphenation, lo
aded.
(/usr/share/texlive/texmf-dist/tex/latex/carlisle/mylatex.ltx)
(/usr/share/texlive/texmf-dist/tex/latex/tools/.tex File ignored))
No auxiliary output files.

(./test.tex (./jss.cls
Document Class: jss 2013/04/06 2.2 jss class by Achim Zeileis
(/usr/share/texlive/texmf-dist/tex/latex/base/article.cls
Document Class: article 2007/10/19 v1.4h Standard LaTeX document class
(/usr/share/texlive/texmf-dist/tex/latex/base/size11.clo))
(/usr/share/texlive/texmf-dist/tex/latex/graphics/graphicx.sty
(/usr/share/texlive/texmf-dist/tex/latex/graphics/keyval.sty)
(/usr/share/texlive/texmf-dist/tex/latex/graphics/graphics.sty
(/usr/share/texlive/texmf-dist/tex/latex/graphics/trig.sty)
(/usr/share/texlive/texmf-dist/tex/latex/latexconfig/graphics.cfg)
(/usr/share/texlive/texmf-dist/tex/latex/pdftex-def/pdftex.def
(/usr/share/texlive/texmf-dist/tex/generic/oberdiek/infwarerr.sty)
(/usr/share/texlive/texmf-dist/tex/generic/oberdiek/ltxcmds.sty
(/usr/share/texlive/texmf-dist/tex/latex/graphics/color.sty
(/usr/share/texlive/texmf-dist/tex/latex/latexconfig/color.cfg))
(/usr/share/texlive/texmf-dist/tex/latex/ae/ae.sty
(/usr/share/texlive/texmf-dist/tex/latex/base/fontenc.sty
(/usr/share/texlive/texmf-dist/tex/latex/base/t1enc.def)
(/usr/share/texlive/texmf-dist/tex/latex/ae/t1aer.fd)))
(/usr/share/texlive/texmf-dist/tex/latex/fancyvrb/fancyvrb.sty
Style option: `fancyvrb' v2.7a, with DG/SPQR fixes, and firstline=lastline fix 
<2008/02/07> (tvz)
! Illegal parameter number in definition of \MYLATEXline.
 
   1
l.386   \gdef\FV@BeginScanning#1^^M
   {%
! Illegal parameter number in definition of \MYLATEXline.
 
   1
l.389 \endgroup
   
! Illegal parameter number in definition of \MYLATEXline.
 
   1
l.395 ...be discarded. Hit  to continue.}}
  
! Illegal parameter number in definition of \MYLATEXline.
 
   1
l.402 \gdef\FancyVerbGetLine#1^^M
 {%
! Illegal parameter number in definition of \MYLATEXline.
 
   1
l.413 \endgroup
   
! Illegal parameter number in definition of \MYLATEXline.
 
   1
l.413 \endgroup
   
! Illegal parameter number in definition of \MYLATEXline.
 
   1
l.425 ...n#1{\@ifnextchar\@nil{\@gobble}{\FV@EOF}}
  
! Illegal parameter number in definition of \MYLATEXline.
 
   1
l.426 ...@nil#1\@empty\else\expandafter\FV@EOF\fi}
  
! Illegal parameter number in definition of \MYLATEXline.
 
   1
l.426 ...@nil#1\@empty\else\expandafter\FV@EOF\fi}
  
! Illegal parameter number in definition of \MYLATEXline.

Re: slow internet

2014-01-04 Thread Gian Uberto Lauri 
What about slow servers, routing to some servers passing though slow branches?
Heavy pages with a lot of preloaded resources and again a server not up to the 
task?

--
Gian Uberto Lauri
Messaggio inviato da un tablet

> On 04/gen/2014, at 13:39, Pol Hallen  wrote:
> 
> Hi all,
> 
> I've a pc that I use like a gateway (debian 7), the clients connected, has 
> strange problems:
> 
> the loading of web pages are ok but sometimes (only on some sites) the 
> loading of web pages is very slow... half page loaded and I see the wheel 
> rotating... sometimes webpage is loaded but I see again wheel rotating...
> 
> same sites on another DSL works fine
> 
> for porpuse test I disabled firewall and all other services...
> 
> so, can be a problem with MTU? now is 1500
> 
> I've eth1 lan, eth0 --> router ---> internet
> 
> I use google dns, routing is ok, DSL is ok.
> 
> Any idea?
> 
> Thanks for help!
> -- 
> Pol
> 
> 
> -- 
> To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject 
> of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
> Archive: http://lists.debian.org/52c8011b.5060...@fuckaround.org
> 
> 


--
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Archive: http://lists.debian.org/92a275f1-3d81-4551-abee-3a89fb7ce...@eng.it

Re: slow internet

2014-01-04 Thread Pol Hallen 

I had that problem with HTPS sites, and moves MTU 1492... it worked.
you might also check your DNS servers, you might add openDNS servers..


hello and thanks for your reply, I've changed from 1500 to 1492 (both 
interfaces) but I've same problem :-/


I don't use pppoeconf, I'm in dmz by router

thanks!



--
Pol


--
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org 
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Archive: http://lists.debian.org/52c80a8b@fuckaround.org

Re: Best SFTP (w/chroot): vsftpd vs mysecureshell vs other ??

2014-01-04 Thread Sven Hoexter 
On Fri, Jan 03, 2014 at 04:14:42PM -0600, Bob Goldberg wrote:

> so my question now very simply becomes:
> what do demanding admin's choose as a preferred SFTP server, that allows
> chrooting WITH group "w" access 

I'm not sure how the OpenSSH implementation handles ACLs, maybe that's
an option but I did not test it.

Then there is Proftpd which has a mod_sftp extension.

And there are still the solutions which predate the chroot() and sftp-internal
implementation possible with OpenSSH like
- scponly
- rssh
- rush

All of them have a somewhat mixed security record and have some cost in
terms of chroot setup and mainting them properly.

Sven
-- 
There we were, the three of us, the thief the king and I.
Finally, we were forced to see, we were equals in the night.
[Streetlight Manifesto - The three of us]


-- 
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org 
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Archive: http://lists.debian.org/20140104132658.ga3...@garkbit.lan

Re: Best SFTP (w/chroot): vsftpd vs mysecureshell vs other ??

2014-01-04 Thread Balint Szigeti 

On 04/01/14 13:26, Sven Hoexter wrote:

On Fri, Jan 03, 2014 at 04:14:42PM -0600, Bob Goldberg wrote:


so my question now very simply becomes:
what do demanding admin's choose as a preferred SFTP server, that allows
chrooting WITH group "w" access 

I'm not sure how the OpenSSH implementation handles ACLs, maybe that's
an option but I did not test it.

Then there is Proftpd which has a mod_sftp extension.

And there are still the solutions which predate the chroot() and sftp-internal
implementation possible with OpenSSH like
- scponly
- rssh
- rush

All of them have a somewhat mixed security record and have some cost in
terms of chroot setup and mainting them properly.

Sven

Hello

I think it's implementable on Debian as well.
https://sites.google.com/site/jupiter2005ster/redhat-centos/sftp-server


--
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org 
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Archive: http://lists.debian.org/52c80d58@gmail.com

Invitation from : Tools of Internet Marketing To visit www.dashball.com.au

2014-01-04 Thread Internet-Marketing 
Hi : Be prepared for the most amazing and massive collection of internet 
marketing products you can ever have http://toolsofinternetmarketing.da.bz 
Click Here   This is not a hype and this is not a scam Check it to believe it 
http://toolsofinternetmarketing.da.bz Click Here   From Expensive Udemy Courses 
WP Plug CB Course WP Themes well this is the place where you can have it all 
for free http://toolsofinternetmarketing.da.bz Click Here
Your friend : Tools of Internet Marketing wants you to visit 
www.dashball.com.au 
 = 



-- 
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org 
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Archive: http://lists.debian.org/20140104132755.6080a...@bendel.debian.org

Invitation from : Tools of Internet Marketing To visit www.dashball.com.au

2014-01-04 Thread Internet-Marketing 
Hi : Get on top of the search engines with this huge collection of courses 
software and plugins http://toolsofinternetmarketing.da.bz Click Here   Get the 
WORLDS Best Internet Marketing Products that will skyrocket your business to 
the roof http://toolsofinternetmarketing.da.bz Click Here   Are you sick of 
spending money to just a single product - not amymore introducing Tools of 
Internet Marketing http://toolsofinternetmarketing.da.bz Click Here
Your friend : Tools of Internet Marketing wants you to visit 
www.dashball.com.au 
 = 



-- 
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org 
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Archive: http://lists.debian.org/20140104133437.f1e76...@bendel.debian.org

Re: slow internet

2014-01-04 Thread Pol Hallen 

Yes, it can. Since you are using dsl, I suppose you are using it through PPPoE,
so here is your problem 
https://en.wikipedia.org/wiki/Point-to-point_protocol_over_Ethernet#MTU.2FMRU
I had the same problems (but on OpenBSD router). On Debian it can be 
circumvented by using pppoeconf. It is by default settings your connection with 
appropriate MTU


in the router config I see I'm connected by pppoeconf:

mtu: 1400
mrt: 1492

so I've setted mtu of interface card to 1492

same problem...

thanks!



--
Pol


--
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org 
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Archive: http://lists.debian.org/52c8136e.6020...@fuckaround.org

Re: Best SFTP (w/chroot): vsftpd vs mysecureshell vs other ??

2014-01-04 Thread Chris Davies 
Bob Goldberg  wrote:
> trying to determine best solution for an SFTP server.

>   vsftpd appears to be my current best choice

vsftpd is "Very Secure FTP Daemon". It does FTP well (cleartext passwords
notwithstanding). It doesn't do SFTP (file transfer over ssh).


> users must be chroot'ed to /home/chroot/home/.
>   users belong to the chroot group.
>   their home dir down, need all be group owned by chmgr.
>   home dir down; should all be chmod 770(dir)/660(files). so  and
> managers (chmgr group) all have rw access to files, and rwx /dirs; with
> other having no rights at all.

> managers ideally chroot'ed to /home/chroot/home.
>   they can access all  folders, and transfer files in/out of
> each.
>   they belong to the chmgr group.

Sounds exactly like a job for the Match directive within a standard
sshd_config (openssh-server).

Chris


-- 
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org 
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Archive: http://lists.debian.org/ofhlpaxr2f@news.roaima.co.uk

Re: Best SFTP (w/chroot): vsftpd vs mysecureshell vs other ??

2014-01-04 Thread emmanuel segura 
Match User user01
ChrootDirectory /home
ForceCommand internal-sftp
X11Forwarding no
AllowTcpForwarding no

Match User user02
ChrootDirectory /home
ForceCommand internal-sftp
X11Forwarding no
AllowTcpForwarding no

useradd -m user01 && useradd -m user02

chmod 300 /home/user02

restart sshd daemon

[root@nod01 ~]# sftp user02@localhost
user02@localhost's password:
Connected to localhost.
sftp> cd user02
sftp> ls
remote readdir("/user02"): Permission denied
sftp> mkdir hello

In few words, the user user02  can only write and user user01 can write and
read


2014/1/4 Chris Davies 

> Bob Goldberg  wrote:
> > trying to determine best solution for an SFTP server.
>
> >   vsftpd appears to be my current best choice
>
> vsftpd is "Very Secure FTP Daemon". It does FTP well (cleartext passwords
> notwithstanding). It doesn't do SFTP (file transfer over ssh).
>
>
> > users must be chroot'ed to /home/chroot/home/.
> >   users belong to the chroot group.
> >   their home dir down, need all be group owned by chmgr.
> >   home dir down; should all be chmod 770(dir)/660(files). so  and
> > managers (chmgr group) all have rw access to files, and rwx /dirs; with
> > other having no rights at all.
>
> > managers ideally chroot'ed to /home/chroot/home.
> >   they can access all  folders, and transfer files in/out of
> > each.
> >   they belong to the chmgr group.
>
> Sounds exactly like a job for the Match directive within a standard
> sshd_config (openssh-server).
>
> Chris
>
>
> --
> To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org
> with a subject of "unsubscribe". Trouble? Contact
> listmas...@lists.debian.org
> Archive: http://lists.debian.org/ofhlpaxr2f@news.roaima.co.uk
>
>


-- 
esta es mi vida e me la vivo hasta que dios quiera

Re: Best SFTP (w/chroot): vsftpd vs mysecureshell vs other ??

2014-01-04 Thread Balint Szigeti 

Hello

I'm so sorry to cite from a website but when I tried to send the link of 
the site I got a bounce error from lists.debian... so here is the site:


/This came up today where I needed to give secure file transfer to 
customers. To complicate things I had to use an out-of-the-box RHEL6 
system. The obvious answer was to use SSH and limit those users to SFTP 
only. Locking them into a chroot was not a requirement, but it seemed 
like a good idea to me. I found plenty of docs that got 80% of the way, 
or took a shortcut, but this should be complete./


//

/The basic steps are:/

//

1. /Create a group and the users to that group/
2. /Modify the SSH daemon configuration to limit a group to sftp only/
3. /Setup file system permissions/
4. /Configure SELinux/
5. /Test (of course)/

//

/Without further ado, lets get started. It should only take about 10 
minutes, nothing here is especially complex./


//

/Create a group that is limited to SFTP only and a user to be in that 
group./


//

/1//
//2//
//3//
/



/|groupadd sftponly
useradd sftptest
usermod -aG sftponly  sftptest|/

//

/Now you need to make a little change to //|/etc/ssh/sshd_config|//. 
There will be a Subsystem line for |sftp| which you need to change to read:/


//

/1//
/



/|Subsystem   sftpinternal-sftp|/

//

/Now you need to create a block at the end to limit members of a group 
(ie the sftponly group you created above) and chroot them. Simply add 
the following to the end of the file:/


//

/1//
//2//
//3//
//4//
//5//
/



/|Match Group sftponly
ChrootDirectory %h
ForceCommand internal-sftp
X11Forwarding no
AllowTcpForwarding no|/

//

/These changes will require a reload of the SSH daemon: //|service sshd 
reload|/


//

/Now you need to make some file permission changes. For some reason 
which I cannot work out for now, the home directory must be owned by 
root and have the permissions 755. So we will also need to make a folder 
in the home directory to upload to and make that owned by the user./


//

/1//
//2//
//3//
//4//
/



/|sudo -u sftptest mkdir -pv /home/sftptest/upload
chown root. /home/sftptest
chmod 755 /home/sftptest
chgrp -R sftponly /home/sftptest|/

//

/The last thing we need to do is tell SELinux that we want to upload 
files via SFTP to a chroot as it is read-only by default. Of course you 
are running SELinux in enforcing mode aren't you :)/


//

/1//
/



/|setsebool -P ssh_chroot_rw_homedirs on|/

//

/Now from another console you can sftp to your server/

//

/1//
/



/|sftp sftptest@|/

//

/You should then be able to put a file in your upload folder. However if 
you try to ssh to the server as the user sftptest it should tell you to 
go away. Of course you should be able to ssh as your normal user with no 
problem. Pro tip: make sure to leave a root terminal open just in case./


I'm sure it can be used on Debian as well.

Balint


On 04/01/14 15:30, emmanuel segura wrote:

Match User user01
ChrootDirectory /home
ForceCommand internal-sftp
X11Forwarding no
AllowTcpForwarding no

Match User user02
ChrootDirectory /home
ForceCommand internal-sftp
X11Forwarding no
AllowTcpForwarding no

useradd -m user01 && useradd -m user02

chmod 300 /home/user02

restart sshd daemon

[root@nod01 ~]# sftp user02@localhost
user02@localhost's password:
Connected to localhost.
sftp> cd user02
sftp> ls
remote readdir("/user02"): Permission denied
sftp> mkdir hello

In few words, the user user02  can only write and user user01 can 
write and read



2014/1/4 Chris Davies mailto:ch...@roaima.co.uk>>

Bob Goldberg mailto:bobg.h...@gmail.com>> wrote:
> trying to determine best solution for an SFTP server.

>   vsftpd appears to be my current best choice

vsftpd is "Very Secure FTP Daemon". It does FTP well (cleartext
passwords
notwithstanding). It doesn't do SFTP (file transfer over ssh).


> users must be chroot'ed to /home/chroot/home/.
>   users belong to the chroot group.
>   their home dir down, need all be group owned by chmgr.
>   home dir down; should all be chmod 770(dir)/660(files). so
 and
> managers (chmgr group) all have rw access to files, and rwx
/dirs; with
> other having no rights at all.

> managers ideally chroot'ed to /home/chroot/home.
>   they can access all  folders, and transfer files
in/out of
> each.
>   they belong to the chmgr group.

Sounds exactly like a job for the Match directive within a standard
sshd_config (openssh-server).

Chris


--
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org

with a subject of "unsubscribe". Trouble? Contact
listmas...@lists.debian.org 
Archive: http://lists.debian.org/ofhlpaxr2f@news.roaima.co.uk




--
esta es mi vida e me la vivo hasta que dios quiera

Re: adding a printer

2014-01-04 Thread Vincent Lefevre 
On 2014-01-04 12:11:38 +, Brian wrote:
> On Sat 04 Jan 2014 at 11:53:38 +, Brian wrote:
> 
> > cups-pdf converts this to PostScript and then back to a PDF. This might
> 
> Scrub that. cups-filters converts the PDF to PS as this is the only
> input format cups-pdf accepts. Then it is converted back to a PDF. It
> wouldn't seem worth the effort!

Worse than that: The cups-pdf generated PDF uses bitmap fonts:

name type  emb sub uni object ID
 - --- --- --- -
[none]   Type 3yes no  yes 14  0
[none]   Type 3yes no  yes150  0
[none]   Type 3yes no  yes243  0

Moreover:
  * it seems to be corrupt (lots of "Error: Bad bounding box
in Type 3 glyph" messages from xpdf),
  * it has bad quality (due to low-resolution bitmap fonts),
  * the file is larger (e.g. 92355 bytes vs 57210 for "Print to File"),
  * PDF metadata are incorrect in presence of non-ASCII characters.

However, with "Print to File", Iceweasel sends the PDF to a black hole
by default: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=712936

-- 
Vincent Lefèvre  - Web: 
100% accessible validated (X)HTML - Blog: 
Work: CR INRIA - computer arithmetic / AriC project (LIP, ENS-Lyon)


-- 
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org 
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Archive: http://lists.debian.org/20140104154908.gb4...@xvii.vinc17.org

unable to install stardict

2014-01-04 Thread François Patte 
Bonjour,

I tried to install stardict but for some unknown reason to me, it fails:

Here is what apt-get returns:

apt-get install stardict
Reading package lists... Done
Building dependency tree
Reading state information... Done
The following extra packages will be installed:
  espeak-data libespeak1 libsonic0 stardict-common stardict-gnome
stardict-plugin stardict-plugin-espeak
  stardict-plugin-festival
Suggested packages:
  ttf-arphic-uming
The following NEW packages will be installed:
  espeak-data libespeak1 libsonic0 stardict stardict-common
stardict-gnome stardict-plugin
  stardict-plugin-espeak stardict-plugin-festival
0 upgraded, 9 newly installed, 0 to remove and 240 not upgraded.
Need to get 0 B/3099 kB of archives.
After this operation, 6671 kB of additional disk space will be used.
Do you want to continue? [Y/n] y
/usr/lib/ruby/vendor_ruby/debian.rb:24:in `require': no such file to
load -- debian_version (LoadError)
from /usr/lib/ruby/vendor_ruby/debian.rb:24
from /usr/sbin/apt-listbugs:269:in `require'
from /usr/sbin/apt-listbugs:269
E: Sub-process /usr/sbin/apt-listbugs apt || exit 10 returned an error
code (10)
E: Failure running script /usr/sbin/apt-listbugs apt || exit 10


If I understand /usr/lib/ruby/vendor_ruby/debian.rb requires the file
"debian_version" and tells that this file is not available on my system
but it is there in /etc

Is that a bug?

Thanks

-- 
François Patte
UFR de mathématiques et informatique
Laboratoire CNRS MAP5, UMR 8145
Université Paris Descartes
45, rue des Saints Pères
F-75270 Paris Cedex 06
Tél. +33 (0)1 8394 5849
http://www.math-info.univ-paris5.fr/~patte



signature.asc
Description: OpenPGP digital signature

Re: unable to install stardict

2014-01-04 Thread Vincent Lefevre 
On 2014-01-04 17:57:42 +0100, François Patte wrote:
[...]
> /usr/lib/ruby/vendor_ruby/debian.rb:24:in `require': no such file to
> load -- debian_version (LoadError)
>   from /usr/lib/ruby/vendor_ruby/debian.rb:24
>   from /usr/sbin/apt-listbugs:269:in `require'
>   from /usr/sbin/apt-listbugs:269
> E: Sub-process /usr/sbin/apt-listbugs apt || exit 10 returned an error
> code (10)
> E: Failure running script /usr/sbin/apt-listbugs apt || exit 10
> 
> 
> If I understand /usr/lib/ruby/vendor_ruby/debian.rb requires the file
> "debian_version" and tells that this file is not available on my system
> but it is there in /etc
> 
> Is that a bug?

I got this error a few days ago, and it disappeared after upgrading
apt-listbugs and/or some ruby package.

-- 
Vincent Lefèvre  - Web: 
100% accessible validated (X)HTML - Blog: 
Work: CR INRIA - computer arithmetic / AriC project (LIP, ENS-Lyon)


-- 
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org 
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Archive: http://lists.debian.org/20140104171316.gc4...@xvii.vinc17.org

Re: unable to install stardict

2014-01-04 Thread Vincent Lefevre 
On 2014-01-04 18:13:16 +0100, Vincent Lefevre wrote:
> I got this error a few days ago, and it disappeared after upgrading
> apt-listbugs and/or some ruby package.

More precisely:

apt-listbugs 0.1.11 -> 0.1.12
ruby-gettext 3.0.2-2 -> 3.0.3-1
ruby-locale 2.1.0-1 -> 2.1.0-2

I don't know which one(s) actually solved the problem.

-- 
Vincent Lefèvre  - Web: 
100% accessible validated (X)HTML - Blog: 
Work: CR INRIA - computer arithmetic / AriC project (LIP, ENS-Lyon)


-- 
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org 
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Archive: http://lists.debian.org/20140104172223.gd4...@xvii.vinc17.org

Re: unable to install stardict

2014-01-04 Thread Slavko 
Hi,

Dňa Sat, 04 Jan 2014 17:57:42 +0100 François Patte
 napísal:

> I tried to install stardict but for some unknown reason to me, it
> fails:
> 
> Here is what apt-get returns:
> 
> load -- debian_version (LoadError)
>   from /usr/lib/ruby/vendor_ruby/debian.rb:24
>   from /usr/sbin/apt-listbugs:269:in `require'
>   from /usr/sbin/apt-listbugs:269
> E: Sub-process /usr/sbin/apt-listbugs apt || exit 10 returned an error
> code (10)
> E: Failure running script /usr/sbin/apt-listbugs apt || exit 10

The error don't must be a stardict related. My suggestion is not this
error related too - but try to use the GoldenDict. It supports the
StarDict's dictionaries and a lot another formats too.

The StarDict's development seems to be ended.

regards

-- 
Slavko
http://slavino.sk


signature.asc
Description: PGP signature

Re: New to Debian (Gentoo user) - package management

2014-01-04 Thread Robert Holtzman 
On Sat, Jan 04, 2014 at 09:50:59AM +, Brian wrote:
> On Fri 03 Jan 2014 at 17:21:40 -0700, Robert Holtzman wrote:
> 
> > On Fri, Jan 03, 2014 at 09:20:33AM -0800, Carl Johnson wrote:
> > > 
> > > You might want to look into the debian-reference package.  It is also
> > > available on the web at 
> > > http://www.debian.org/doc/manuals/debian-reference/.
> > 
> > It looks like most/all this stuff is obsolete.
> 
> What a strange observation, Did you have anything in particular in mind?
> Osamu Aoki is assiduous in keeping the manual current and I'm sure he
> would welcome constructive proposals to improve it.

My mistake. I had been looking at http://www.debian.org/doc/manuals and
most of those are marked as obsolete/deprecated, so I made the
assumption that...

Sorry.

-- 
Bob Holtzman
Your mail is being read by tight lipped 
NSA agents who fail to see humor in Doctor 
Strangelove 
Key ID 8D549279


signature.asc
Description: Digital signature

Re: unable to install stardict

2014-01-04 Thread Jeff Bauer 

On 01/04/2014 01:38 PM, Slavko wrote:

Dňa Sat, 04 Jan 2014 17:57:42 +0100 François Patte
 napísal:


I tried to install stardict 


The StarDict's development seems to be ended.



Five or more years ago when still enamored with Puppy Linux, I 
discovered that Puppy's PBDict was just a gooey GUI wrapper for the 
application dict. Deciding to forego the clumsy GUI and mouse, I started 
just issuing "dict foo" in a terminal. Since then, first with Arch, and 
Debian, dict is perhaps one of my most frequently used apps.


Another thing I did was to install dictionary databases locally, as I 
was virtually crippled when dict.org's servers were offline.


YMMV.

Jeff
http://alienjeff.net


--
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org 
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Archive: http://lists.debian.org/52c871ef.7060...@charter.net

Help with aptosid installation

2014-01-04 Thread Stephen J. Mazurek 
I am currently running a hp  pavilion with an intel core 13, windows 7 os.
I used to run debian stable on another pc clone no trouble with it and in
fact came to dislike Microsoft software.  Right now it seems like I'm stuck
with it, though. I have a Sidux 2010-01 and also Linux from Scratch 6.3
r2145.  Can I l from either of these?  How would I go about it?  I have a
number of Linux books but they may be out of date.  Thanks in advance.

--Steve Mazurek

Automatically activate xscreensaver-command -deactivate after un-hibernate ?

2014-01-04 Thread Zenaan Harkness 
sid, xfce

Because I just have a blank screen as my lock screen, un-hibernating
just continues to show my blank screen.

It would be nice if the "unlock" password dialog appeared
automatically. Anyone know how I might do this in xfce?

TIA
Zenaan


-- 
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org 
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Archive: 
http://lists.debian.org/CAOsGNSTWRQJXT3+mH=xwwhjski0nzn5ocm2qz7cxcb96z81...@mail.gmail.com

(Continued) which image shall I use for P4/2.9G

2014-01-04 Thread Long Wind 
I have posted the problem a few days ago
the problem is linux can't find memory:
not enough memory to load specified image

I believe I have made some progress
I run memtest, it reports 688k memory
I select configuration, Memory Sizing,
and use probe method, memtest find 1 G memory
that's available!

below are 2 paragraphs copied from memtest README:

The first option (BIOS-All) also uses the "e820" method to obtain a memory
map.  However, when this option is selected all of the reserved memory
segments are tested, regardless of what their intended use is.  The only
exception is memory segments that begin above 3gb.  Testing has shown that
these segments are typically not safe to test.  The BIOS-All option is more
thorough but could be unstable with some motherboards.

The second option for memory sizing is the traditional "Probe" method.
This is a very thorough but not entirely safe method.  In the majority of
cases the BIOS-All and Probe methods will return the same memory map.


Now it seems I need to add some kernel option in grub before boot
but which option? I am reading
/usr/share/doc/linux-doc-3.2/Documentation/kernel-parameters.txt
and hasn't have any success


Can you help me?


-- 
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org 
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Archive: 
http://lists.debian.org/CAB-gxZBiEBjY0ZwX6bP=icFM4NEH3UkDBDRtm=jiwjh-y21...@mail.gmail.com

Re: /usr/sbin/alternatives-update missing

2014-01-04 Thread Sam Varghese 
On Fri, Jan 03, 2014 at 11:37:33AM +, Brian wrote:
> On Fri 03 Jan 2014 at 19:20:57 +1100, Sam Varghese wrote:
> 
> > i am running the testing stream on a fairly
> > old laptop.
> > 
> > At the end of every upgrade, I get this message:
> > sh: 1: /usr/sbin/update-alternatives: not found
> 
> Does bug #720575 help in tracking this down?
> 
>http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=720575
> 

thanks a lot, brian.

yes, i managed to fix this issue after reading the bug report. i waited until i
could do an update to test it out before replying to the list.

for anyone else having the same issue, what i did was:

apt-get install debian-edu-config

this pulls in a few extra packages, amounting to about 23 MB.

i thought this would suffice but when it did not, i re-read the bug report,
and made one change in /etc/apt/apt/apt.conf/99-edu-prefer-iceweasel.

the line that was originally:

"x=/usr/bin/iceweasel;[ -x $x ] && update-alternatives --set x-www-brow
ser $x||true";

i changed to:

"x=/usr/bin/iceweasel;[ -x $x ] && /usr/bin/update-alternatives --set x-www-brow
ser $x||true";

it's good to see that debian-user is still as active and helpful as it was back
in 2003 when i was a subscriber.

sam
-
(Sam Varghese)
Debian user since 2000


-- 
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org 
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Archive: 
http://lists.debian.org/20140105001612.GA12360@imap://gnubies.gnubies.com

Re: New to Debian (Gentoo user) - package management

2014-01-04 Thread Chris Bannister 
On Fri, Jan 03, 2014 at 10:31:35PM +, Lisi Reisz wrote:
> On Friday 03 January 2014 14:16:34 Brian wrote:
> > The '-s' can be omitted if more than one package is to installed.
> 
> i.e., if you are requesting more than one package, it will tell you 
> what it is going to install before doing it anyway.  You need the -s 
> for one package, because if you have only asked for one package it 
> otherwise just goes right ahead and installs it.

I've always looked on it as; if you didn't ask for a particular
package to be installed then it won't do it without your permission.

-- 
"If you're not careful, the newspapers will have you hating the people
who are being oppressed, and loving the people who are doing the 
oppressing." --- Malcolm X


-- 
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org 
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Archive: http://lists.debian.org/20140105004317.GC16538@tal

ISDN call logging

2014-01-04 Thread Urs Thuermann 
My ISP provides VoIP and the DSL modem/router provides an internal
ISDN S0 bus where my ISDN telephones are attached.  I have also hooked
an old Linux server with an ISDN card to the S0 bus.  This server runs
a Linux 2.4.37.8 kernel with isdn4linux and isdnlog to log all
incoming and outgoing calls, as well as call alerts.

Now I want to retire that old server and do the call logging on
another server running Debian jessie.  Unfortunately, ISDN seems to be
poorly maintained nowadays and I wasn't able to do this.  The kernel
has mISDN instead of isdn4linux while some of the documentation is
from the Linux 2.4 or even Linux 2.2 era.  The man page isdnlog(8)
states that isdnlog only works with the HiSax driver i.e. isdn4linux.
Using the Debian kernel and ISDN utils I couldn't get any call logs.

I compiled a new Linux 3.12.6 kernel with isdn4linux and HiSax and
tried running isdnlog with it.  This actually worked and logged calls
like my old Linux 2.4-based server, however, isdnlog crashes after
some random time (couple of days) with segmentation fault.  I haven't
yet had the time to debug this problem.

So, is there any other way to get reliable logging of alerts and calls
to/from my ISDN phones on a current Debian system with ISDN card?

urs


-- 
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org 
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Archive: http://lists.debian.org/ygf61pzdzhh@tehran.isnogud.escape.de

(Continued) which image shall I use for P4/2.9G

2014-01-04 Thread Long Wind 
now I believe I shall read grub doc

grub option, instead of kernel option, hold key to my problem, I think


-- 
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org 
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Archive: 
http://lists.debian.org/cab-gxzdv51k3-v8ztwva-refbuky7u896ev0s77jf_9hple...@mail.gmail.com

(Continued) which image shall I use for P4/2.9G

2014-01-04 Thread Long Wind 
why the displaymem grub command isn't available?

according to grub-legacy-doc, it should be available

I have to say , linux is hard to use, on my machine


-- 
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org 
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Archive: 
http://lists.debian.org/cab-gxzcdqlgspfdoq_rcdu1eaboke++xfhfpg1po1cd7kaf...@mail.gmail.com

(Continued) which image shall I use for P4/2.9G

2014-01-04 Thread Long Wind 
why the displaymem grub command isn't available?

according to grub-legacy-doc, it should be available

I have to say , linux is hard to use, on my machine


-- 
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org 
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Archive: 
http://lists.debian.org/CAB-gxZCkCzkQT-6AdttxbYGQCtEpA=s-fomrecvv1szrway...@mail.gmail.com

Re: how to configure pulseaudio to use analog speaker on motherboard not hdmi on video card

2014-01-04 Thread Mitchell Laks 
On 09:58 Sat 04 Jan , Klaus wrote:
> On 03/01/14 20:50, Mitchell Laks wrote:
> > ok so now we are ok
> > vlc file.wmv works immediately
> > Anyway, now no problem!!! I get beautiful sound right up when I start the
> >
> > So I guess I could have just turned off speech-dispacher in rc2.d
> > I guess the myseql thing is weird, but does seem to affect sound..
> > what is your take on this matter?
> >
> > Mitchell
> >
> 
> Mitchell, that was quite a radical cure, removing most of (?) KDE.

I like to have fun with my box. Even though it is my main computer.
However, i should be more careful: debian weather has been down for a week or 
two 
so I have no idea how badly  broken sid is these days 
and I may be boxing myself in to a corner

> Anyway, if it now works for you... Here are a couple of bugreports
> against speech-dispatcher that match your issues:
>  #625235  speech-dispatcher: Combined with pulseaudio breaks ALSA
>  #670740  speech-dispatcher: Prevents existing pulseaudio instance
> from working

correct that is the exact behavior
> 
> Briefly to the mysql stuff: this time the 125 is the group id, not
> the user id.
> Have you confirmed that group id 29 belongs to group audio?

yep

mlaks@Rashi:~$ id
uid=1000(mlaks) gid=1000(mlaks) 
groups=1000(mlaks),20(dialout),24(cdrom),25(floppy),29(audio),40(src),44(video),46(plugdev),122(fuse)

So that seems to have solved it!

Thank you very much

Now   (you are really on the ball so I would love to ask you another question 
...) 
I will  start another thread 
about a problem with my keyboard 
It intermittently is typing unstopping repeated letters when I enter just one 
letter.

It is not a keyboard problem as it persists with a change to another keyboard.
Seems (perhaps) to have started with my switch to a new motherboard
with 6 multicore processer/ faster amd chip.

here are similar bug reports

https://forums.virtualbox.org/viewtopic.php?f=2&t=15055

https://bugs.launchpad.net/ubuntu/+source/linux-source-2.6.15/+bug/39315

 
A friend suggested trying a USB keyboard instead of a ps2 one. Or putting a 
PS2->USB dongle in between.

I will try to substitute a usb keyboad to see, but it is very irritatting
and I am used to this keyboard for a while.

Any ideas?
I will start a new thread though.
Mitchell 

> 
> 
> -- 
> Klaus
> 
> 
> -- 
> To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a
> subject of "unsubscribe". Trouble? Contact
> listmas...@lists.debian.org
> Archive: http://lists.debian.org/52c7db4d.4060...@gmail.com
> 


-- 
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org 
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Archive: http://lists.debian.org/20140105015438.ga6...@earthlink.net

Re: Debian Wheezy Compromised - www-data user is sending 1000 emails an hour

2014-01-04 Thread Jerry Stuckle 

On 1/1/2014 10:24 PM, Bob Proulx wrote:

Jerry Stuckle wrote:

Raffaele Morelli wrote:

Bob Proulx wrote:

2) The ownership of the files by root are safe.  The default owner is
root.  Files owned by root with the default permissions are not
writable by the web process.  Files in the default configuration are
not exploitable by that vulnerability which requires write access to
files in the DocumentRoot.  There is never a problem with web files
owned by the root user.


It also means only the root user can modify those files.


Yes.  That is by intent and design.  Users should not be modifying
system files!  For example if you install squirrelmail it will include
/usr/share/squirrelmail/**.php files in the package.  Root owns those
files.  This is good because that prevents any other account from
being able to modify those files.  That is just long standing good
design.



(Sorry for the delay - attglobal is having email problems).

The phpmyadmin config file is not a system file.  And the squirrelmail 
files are owned by root because there is no other standard userid for it.


Now using root for PHP files that may not be so bad - but when you DO 
need to modify those files (i.e. apply a security patch), you have to do 
it as root.  IMHO it would be much better to be owned by a separate user 
with write access to the files, with the www-data having only read access.



It is a very bad idea to use the root user to do such mundane
things.


System administration is hardly mundane.  It is often misunderstood
(as in this thread) but very important work.



Setting up a phpmyadmin config file is hardly "system administration". 
It's configuration affects only itself, not the entire system.



It is much better to have the files owned by a non-privileged user
(not www-data), and provide read access to the web user.


Files owned by squirrelmail are not user files.  They belong to the
package.  Root is the natural owner of those files.



Just because something is in a package does NOT mean it is a system 
file.  It only means that it has been deemed by the PTB that it is of 
sufficient interest to the users to be worth the time and effort to 
create a package for it.  There are many user files (like squirrelmail) 
which, if installed by other than a package, do NOT get installed in root.



I see having to use root to modify user files as a major problem.


User files?  Why bring those up?  You keep talking about user files
but expanding that to cover all files.  That is the point I am
objecting to.  I thought you and I had converged in other thread but I
guess not.  Sigh.  Continued misunderstanding.



No, I am talking about non-system files.  Again, just because it's part 
of a package does NOT make it a system file.



All of the world is not user files.  I object to the statements above
that conclude that because any file is owned by root that all work
must be done as root.  That is an incorrect deduction.



No, and not all files in packages are system files.  And I did NOT say 
that "because any file is owned by root that all work must be done as 
root".  I said CHANGING ANY FILE OWNED BY ROOT MUST BE DONE BY ROOT 
(unless, of course, you've modified the privileges to allow group and/or 
all users to modify it - but that is not the default).



If you as a web developer are going to be uploading files to be used
in a web site then the most natural thing would be for your non-root
(and non-www-data) account to own those files.  (Why would root even
be considered for that purpose?  Why would you think that root is
needed for this purpose?  That is a real puzzler!)



What is the difference between uploading phpmyadmin or squirrelmail via 
a Debian package or manually?  Either way I have *exactly* the same 
files (other than the package files themselves, of course - but the 
result is the same).  But when I upload manually, they are owned by the 
upload ID, not root (which www-data has read access to, of course).


Does installing them as packages somehow change them so that they are 
now system files?



Regardless from this it cannot be concluded that having a file owned
by root is a security vulnerability.  It is not.  The ownership of the
files by root are safe.  If you still do not believe this then please
file a bug report so that it may be peer reviewed.



The required EDITING of those files (i.e. configuration files) is a 
security vulnerability, because it must be done by root.



Quite wrong.
Unless you are administering your own server with just you as user
there's no problem in using root for everything.
But if you have other users you should grant write permissions to the
website document root for them to upload stuff and simply you can't let
anyone other than you to access as root (would you?).
Now, rwx permissions and unprivileged users exist for that, root
ownership is absolutely not needed.


I see this as a huge problem, even on my own servers.  It is way to
easy to make a mistake that can

Re: Debian Wheezy Compromised - www-data user is sending 1000 emails an hour

2014-01-04 Thread Jerry Stuckle 

On 1/1/2014 7:55 PM, Bob Proulx wrote:

Jerry Stuckle wrote:

Bob Proulx wrote:

The default for phpmyadmin is that the files are owned by root not
www-data.  If they were owned by www-data then they would be unsafe.
(If, and this is a hypothetical if, you told me the files were owned
by a special phpmyadmin-data account, then I would say okay too.
Because that is a different user from the www-data user.)


They also should never have to be changed by the user (except for
the config file).  But I suspect the real reason is because there is
no standard user which would be a good one to use.  You obviously


One would need to be created for it to exist.  But why?  One isn't needed.



(Sorry for the delay - attglobal is having email problems).

phpmyadmin is installed as root only by the Debian (and probably other) 
packaging systems because there is no other user.  If you install 
phpmyadmin without the Debian package, it is installed in a user id, not 
root.


I would argue there SHOULD be a user/group for installing user packages 
like this.  The www-data ID would have read privileges via the group, 
but nothing else.  There really is no reason for it to be installed as 
root, except that such an ID doesn't exist.  And as we know, having to 
su(do) to root to edit a user config file is not the best way to do things.



wouldn't want to use www-data, for reasons previously mentioned.
bin, sys, man and other standard id's aren't appropriate.  There may
or may not be user id's (there should be, but they are not required,
AFAIK).  And if you do have multiple userids, which one would be
appropriate?

By default, root is the selection.


And root is perfectly satisfactory for this purpose.



That's where you and I disagree.


But then we weren't talking about phpmyadmin.  We were talking about
user files.


I know *you* keep talking about user created files.  We established
that in another conversation.  But *other* people keep talking about
*all* files.  "All" includes user created files. But all also includes
any other possible file too.

When you say that users should work as their own non-root account I
fully agree with you that working as non-root is a safer best-practice
to follow.

But when others say that there should never be a root owned file (user
created or otherwise) then that is clearly wrong.  That is where I was
objecting.



I never said there should never be a root owned file.  However, such 
files should be restricted to those which affect the OS, i.e. the 
packaging system, network configuration and many other things.  Files 
which only affect one application (like Apache) should be owned by that 
application (or, as in this case, a separate user with read access by 
Apache).



Unfortunately others like it to be all of viewed from the web,
installed from the web, upgraded from the web, managed from the web.
And there lies the problem.


Yes, it is.  I use Drupal 7 on some of my sites; when I want to
update from the web, I find it a simple matter to place the site in
maintenance mode, ssh into it, and chown -R to www-data on the
directory, update via the web, then chown -R back to the original
id.  A couple of extra steps, but worth the security.


That is a good strategy.  It takes the extra care to avoid the
problem.  It keeps the OS security layer up while the site is online.
I like it.  But I think very few people actually take the time and
effort to actually do this.  At least from the evidence of the large
number of cracked sites on the web.  You may be one of the few that is
making the effort to avoid it.

Bob



I can't afford not to.  My clients expect as much security as I can give 
them.


Jerry


--
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org 
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Archive: http://lists.debian.org/52c8bbb7.9060...@attglobal.net

Re: Best SFTP (w/chroot): vsftpd vs mysecureshell vs other ??

2014-01-04 Thread Chris Bannister 
[Please don't top post on this mailing list.]

On Sat, Jan 04, 2014 at 03:34:58PM +, Balint Szigeti wrote:
> Hello
> 
> I'm so sorry to cite from a website but when I tried to send the
> link of the site I got a bounce error from lists.debian.

That is weird!  I suggest it wasn't just a simple copy and paste,
otherwise it wouldn't have happened.

-- 
"If you're not careful, the newspapers will have you hating the people
who are being oppressed, and loving the people who are doing the 
oppressing." --- Malcolm X


-- 
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org 
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Archive: http://lists.debian.org/20140105021052.GB5090@tal

Re: USB mouse on Latitude D430

2014-01-04 Thread Dave Woyciesjes 

On 01/04/2014 06:16 AM, Paul Cartwright wrote:

On 01/03/2014 08:31 PM, Dave Woyciesjes wrote:

That's the odd thing. All I did was install XFCE, then noticed the
trackball working at the login greeter. Logged in to XFCE, Cinnamon,
and now back in to Gnome like I want, and it works everywhere

yay!!! so, you were missing a library or something... I just tried to
install a printer, and no printer menu!!! anywhere! I was missing
the printer menu, but cups & print-to-pdf was there... wierd things happen!


Except that today, nothing again.

--
--- Dave Woyciesjes
--- ICQ# 905818
--- CompTIA A+ Certified IT Tech - http://certification.comptia.org/
--- HDI Certified Support Center Analyst - http://www.ThinkHDI.com/
Registered Linux user number 464583

"Computers have lots of memory but no imagination."
"The problem with troubleshooting is that trouble shoots back."
- from some guy on the internet.


--
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org 
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Archive: http://lists.debian.org/52c8bfa6.3000...@sbcglobal.net

Re: USB mouse on Latitude D430

2014-01-04 Thread Dave Woyciesjes 

On 01/03/2014 10:38 PM, Doug wrote:

On 01/03/2014 07:46 PM, Dave Woyciesjes wrote:

Nah, no difference noticed. But I did catch one oddity. Today when

/snip/

I was booting up, I had the trackball connected to the USB port (that
has the power connector next to it) and while it was loading the
greeter (? the login window) the trackball did work. Then once the
login window came up, that was it.
 I'm kinda stumped here...

sometimes some USB devices don't like other things plugged in that same
bus.. as in only have the trackball plugged in, and the other port
spare.. maybe not enough power.. I had that same issue recently with 
the

trinity DM, the mouse didn't work. I... gave up:) went back to MATE.
does it work on say the XFCE desktop manager?


Installing Mate & XFCE right now to test.

I must say, I am surprised that no one else has chimed in with 
any suggestions as to how to get my USB mouse or trackball working...


Have you tried unplugging the mouse/trackball and then plugging it 
back in again, after it has stopped working?


Yep. First thing I tried. Neither mouse nor trackball work with 
Debian when not in the docking station. But all was well with Ubuntu.


--
--- Dave Woyciesjes
--- ICQ# 905818
--- CompTIA A+ Certified IT Tech - http://certification.comptia.org/
--- HDI Certified Support Center Analyst - http://www.ThinkHDI.com/
Registered Linux user number 464583

"Computers have lots of memory but no imagination."
"The problem with troubleshooting is that trouble shoots back."
- from some guy on the internet.


--
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org 
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Archive: http://lists.debian.org/52c8c898.2020...@sbcglobal.net

Re: Debian Wheezy Compromised - www-data user is sending 1000 emails an hour

2014-01-04 Thread Chris Bannister 
On Sat, Jan 04, 2014 at 08:56:14PM -0500, Jerry Stuckle wrote:
> On 1/1/2014 10:24 PM, Bob Proulx wrote:
> >System administration is hardly mundane.  It is often misunderstood
> >(as in this thread) but very important work.
> >
> 
> Setting up a phpmyadmin config file is hardly "system
> administration". It's configuration affects only itself, not the
> entire system.

Can any average user joe bloggs configure phpmyadmin? If not (and I
suspect not, otherwise pandemonium is the result) then it is a system
administration task!

Just like changing the date/time IS A system administration task! You don't
want the average joe bloggs changing the date/time whenever it takes
their fancy!

-- 
"If you're not careful, the newspapers will have you hating the people
who are being oppressed, and loving the people who are doing the 
oppressing." --- Malcolm X


-- 
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org 
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Archive: http://lists.debian.org/20140105025739.GB6297@tal

Re: To do the same as Windows safe mode...........

2014-01-04 Thread Scott Ferguson 
On 04/01/14 22:20, Andrei POPESCU wrote:
> On Mi, 01 ian 14, 09:06:48, Lisi Reisz wrote:
>> On Wednesday 01 January 2014 01:31:00 Scott Ferguson wrote:
>>> On 01/01/14 11:56, Charlie wrote:
 So can someone please tell me how I might do windows safe mode
 equivalent?
>>>
>>> There isn't an equivalent mode with Linux. Sorry.
>>
>> My knowledge of Windows is scarcely encyclopaedic, but is Windows Safe 
>> Mode not much the same thing as Debian single user (run level 1)?
> 
> It's probably the best approximation of Windows Safe Mode, with the big 
> difference being that single user is text only. I find this to be a good 
> thing, provided one is familiar enough with it to do the trouble 
> shooting without GUI tools.
> 
> Kind regards,
> Andrei
> 

In the OP's context, going into "safe mode" so the ISP Help Desk can
walk through the approved connection resolution process (Skymesh support
have one for Windows and one for Mac, none for Linux)... not the same
thing. There's actually 3 "Windows Safe Modes". The one Help Desk wanted
the OP to use is a single-user GUI-mode with networking. Debian run
level 1 is not an equivalent.

Kind regards


-- 
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org 
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Archive: http://lists.debian.org/52c8cc07.5030...@gmail.com

Re: Debian Wheezy Compromised - www-data user is sending 1000 emails an hour

2014-01-04 Thread Jerry Stuckle 

On 1/4/2014 9:57 PM, Chris Bannister wrote:

On Sat, Jan 04, 2014 at 08:56:14PM -0500, Jerry Stuckle wrote:

On 1/1/2014 10:24 PM, Bob Proulx wrote:

System administration is hardly mundane.  It is often misunderstood
(as in this thread) but very important work.



Setting up a phpmyadmin config file is hardly "system
administration". It's configuration affects only itself, not the
entire system.


Can any average user joe bloggs configure phpmyadmin? If not (and I
suspect not, otherwise pandemonium is the result) then it is a system
administration task!



Only in Debian is phpMyAdmin owned by root.  And no, it does NOT have to 
be configured by the system administrator.  A website administrator 
could configure it, for instance.



Just like changing the date/time IS A system administration task! You don't
want the average joe bloggs changing the date/time whenever it takes
their fancy!




Changing the date affects everything in the system.  Changing the 
phpMyAdmin configuration only affects phpMyAdmin.  The two do NOT have 
similar effects.


Jerry


--
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org 
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Archive: http://lists.debian.org/52c8cdbc.3010...@attglobal.net

(Continued) which image shall I use for P4/2.9G

2014-01-04 Thread Long Wind 
I am very disappointed with Linux
I have not been able to solve my problem
I have go so far as to install lilo, to try various options

Is there anyone who can help?

It seems that I'd better buy another motherboard
I feel defeated
I have always think linux can do anything Windows can do
This time I might be wrong
I still believe the problem might be solved
but the cost is too high

buying another motherboard is shortcut,  to me

Is there anyone listening to me?


-- 
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org 
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Archive: 
http://lists.debian.org/cab-gxzd3b3gxo_afd6j8ymapwh8n0mfdjhjmqxst_06voqx...@mail.gmail.com