Re: Heartbleed
On 2014-04-18, Steve Litt wrote: > > * I can successfully shave myself to leave exactly four days growth. I've always wondered how those Macintosh fanboys (and Hollywood celebrities, two overlapping sets) accomplished this. (Maybe they'll come out with an IRazor so I can achieve a fashionable status in this vale of tears). -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/slrnll1nek.3l8.cu...@einstein.electron.org
Re: apt-get upgrade no service restart
Hi, Bonno Bloksma wrote: [...] > How is it possible that one system will not see the update until last night > when I have been running the update cycle each night and all my systems use > the same uplink? >From the log: > Preparing to replace libssl1.0.0:amd64 1.0.1e-2+deb7u6 (using > .../libssl1.0.0_1.0.1e-2+deb7u7_amd64.deb) You were upgrading to the version that I just released last night - perhaps the other machines ran apt-get update before it was released so they didn't see it. > - > Why did the apt-get update NOT restart the services? How can I find out? Services are never automatically restarted due to library updates, you need to do that by hand. Some times, restarting services might be proposed. The message in the log is just libssl1.0.0 checking for services that might need to be restarted to get the Heartbleed bugfix applied. Had it found any, it would have proposed you to restart them. Cheers, -- Raphael Geissert - Debian Developer www.debian.org - get.debian.net -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/liqmof$853$1...@ger.gmane.org
Re: Repeatable apt-get WARNING: The following packages cannot be authenticated!
On Jo, 17 apr 14, 11:15:00, Richard Owlett wrote: > > Yeah BUT ;( > I get NO errors or warnings when apt-get uses the physical DVDs from which > the loop mounted iso's were created. /etc/apt/apt.conf.d/00trustcdrom: APT::Authentication::TrustCDROM "true"; Kind regards, Andrei -- http://wiki.debian.org/FAQsFromDebianUser Offtopic discussions among Debian users and developers: http://lists.alioth.debian.org/mailman/listinfo/d-community-offtopic http://nuvreauspam.ro/gpg-transition.txt signature.asc Description: Digital signature
RE: apt-get upgrade no service restart
Hi Rafael, >> How is it possible that one system will not see the update until last >> night when I have been running the update cycle each night and all my >> systems use the same uplink? > > >From the log: > >> Preparing to replace libssl1.0.0:amd64 1.0.1e-2+deb7u6 (using >> .../libssl1.0.0_1.0.1e-2+deb7u7_amd64.deb) > > You were upgrading to the version that I just released last night - perhaps > the other machines ran apt-get update before it was released so they didn't > see it. Aha, I assumed this was the same ssl upgrade I had seen on my other systems last week. I now see this is the upgrade from deb7u6 to deb7u7. >> - >> Why did the apt-get update NOT restart the services? How can I find out? > > Services are never automatically restarted due to library updates, you need > to do that by hand. Some times, restarting services might be proposed. Ok, I assumes the restarts were allways done as last week several ssl upgrades did service restarts for me. > The message in the log is just libssl1.0.0 checking for services that might > need to be restarted to get the Heartbleed bugfix applied. Had it found any, > it would have proposed you to restart them. But that is funy because the checkrestart command that I issued right after found several services that needed restarting. But maybe they did not need a restart just for hartbleed? Bonno Bloksma -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/89d1798a7351d040b4e74e0a043c69d786190...@hglexch-01.tio.nl
RE: apt-get upgrade no service restart
Bonno Bloksma wrote: [...] > But that is funy because the checkrestart command that I issued right after > found several services that needed restarting. But maybe they did not need a > restart just for hartbleed? Correct. The checking of services was done as an exception due to the severity of the Heartbleed vulnerability. Cheers, -- Raphael Geissert - Debian Developer www.debian.org - get.debian.net -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/liqqdb$n68$1...@ger.gmane.org
Re: Heartbleed
Ahoj, Dňa Thu, 17 Apr 2014 16:17:28 -0500 John Hasler napísal: > > Take for example current controversies over services > > like Amazon and Google and the "filter bubble": Do you consider it > > harmful for them to tailor your experience to their estimate of > > what you > > They are not given the opportunity to do so. Participation in such > systems is optional. In this they differ fundamenally from government > surveillance. How many members of this list (for example) want to contribute to the google knowledge? By the distributing this list to gmail addresses too... I never provided any acknowledge to the google, to read my emails, because i have no email account there, But they read my emails which i send from non google accounts to google accounts. I can don't respond/send to google, but need i leave this ML (and similar) too? And world simulate, that this is OK, because it is a optional?! > > Should the fact that I browsed over Marx' "Das Kapital" mean that > > subsequent searches for Economics and Social Philosophy will bury > > "Socialism" by von Mises so deep I won't see it? Some think it > > nifty while it scares the hell out of others. > > Some can participate. Others can choose not to. No one is required > to have a Google account. Your browser won't pass cookies and webbugs > around if you tell it not to. See the note above... regards -- Slavko http://slavino.sk signature.asc Description: PGP signature
Re: Heartbleed
On Fri, Apr 18, 2014 at 7:16 PM, Slavko wrote: > How many members of this list (for example) want to contribute to the > google knowledge? By the distributing this list to gmail addresses > too... I do. It means that a Google search for any of the topics discussed here will show up results. You don't have to publish an essay on a web site to make it available to random searchers; you just post it to this list, and it's automatically published and crawled: https://lists.debian.org/debian-user/2014/04/msg00869.html (Your above post hasn't been crawled yet, so I couldn't find it in a Google search. But it'll show up soon.) This is a public list with a public archive, and as such it's available to every web crawler - Google, DuckDuckGo, Bing, Yahoo, the lot. And that makes the world a better place. When I ran into an S-Video problem with Debian, I started by searching the web for answers. Didn't find a complete answer, but found a partial answer on this list, and so I joined and asked. If someone else has the same problem, s/he'll be able to find my post and the responses to it. Surely that's a good thing! ChrisA -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/CAPTjJmqdeg0G4wRoh+Hj=d+uv0j42wmdp+uhdrbx+elfrut...@mail.gmail.com
Re: Heartbleed
Ahoj, Dňa Fri, 18 Apr 2014 19:24:20 +1000 Chris Angelico napísal: > On Fri, Apr 18, 2014 at 7:16 PM, Slavko wrote: > > How many members of this list (for example) want to contribute to > > the google knowledge? By the distributing this list to gmail > > addresses too... > > I do. It means that a Google search for any of the topics discussed > here will show up results. You don't have to publish an essay on a web > site to make it available to random searchers; you just post it to > this list, and it's automatically published and crawled: > > https://lists.debian.org/debian-user/2014/04/msg00869.html > > (Your above post hasn't been crawled yet, so I couldn't find it in a > Google search. But it'll show up soon.) > > This is a public list with a public archive, and as such it's > available to every web crawler - Google, DuckDuckGo, Bing, Yahoo, the > lot. And that makes the world a better place. When I ran into an > S-Video problem with Debian, I started by searching the web for > answers. Didn't find a complete answer, but found a partial answer on > this list, and so I joined and asked. If someone else has the same > problem, s/he'll be able to find my post and the responses to it. > Surely that's a good thing! I wrote about processing emails by google, not about processing of the public archive(s). Or you hope, that disabling archive will stop google to processing them??? This ML i used as example only. But you can advocate the google's practices , it is your opinion. -- Slavko http://slavino.sk signature.asc Description: PGP signature
'no-fixes' in stable
Hi Can anyone clarify the policy for when upstream fixes completed in testing come down to stable. I migrated from Debian 6 to 7 earlier in 2014 once the latest stable distro had been out quite some time. It was a surprise to find that printing did not work. Bug#656640 shows a fix has been made but not moved downstream to stable. A kindly person pointed out how to make my own backport, but that has now shown up further printing problems in stable. My question is seeking to understand the criteria on which a fix is moved down to stable. I think it is likely if the problem were not that printing doesn't work but that web servers don't work, it would be fixed in stable overnight. So why is printing given second class treatment? Is it a case yet again of "debian is not for desktop users?" I have seen https://www.debian.org/doc/manuals/developers-reference/pkgs.html#upload-stable this seems to suggest that once something breaks on a stable desktop it will only be fixed if the bug risks crashing the whole system. By the way - I'm not subscribed to this list so will check back for replies occasionally / for a while only. Thanks. -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/20140418101129.2f443e04@boris2.sheep
'no-fixes' in stable
[message re posted because previous attempt was without word wrapping - sorry!] Hi Can anyone clarify the policy for when upstream fixes completed in testing come down to stable. I migrated from Debian 6 to 7 earlier in 2014 once the latest stable distro had been out quite some time. It was a surprise to find that printing did not work. Bug#656640 shows a fix has been made but not moved downstream to stable. A kindly person pointed out how to make my own backport, but that has now shown up further printing problems in stable. My question is seeking to understand the criteria on which a fix is moved down to stable. I think it is likely if the problem were not that printing doesn't work but that web servers don't work, it would be fixed in stable overnight. So why is printing given second class treatment? Is it a case yet again of "debian is not for desktop users?" I have seen https://www.debian.org/doc/manuals/developers-reference/pkgs.html#upload-stable this seems to suggest that once something breaks on a stable desktop it will only be fixed if the bug risks crashing the whole system. By the way - I'm not subscribed to this list so will check back for replies occasionally / for a while only. Thanks. -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/20140418105214.2d2906f2@boris2.sheep
Re: 'no-fixes' in stable
On Fri, 2014-04-18 at 10:52 +0100, wobbly-hs wrote: > Bug#656640 shows a fix has been made but not moved downstream to > stable. Debian isn't my favorite distro, I prefer another one that does follow (software developers) upstream. However, a distro like Debian and the distro I more often use, have their individual advantages and drawbacks, but they have in common, that the user sometimes need to become active and fix one or the other issue, by e.g. building private packages. Don't rely on the policy of a distro, DIY sometimes will fix issues faster, then to care about the distro's rules you are using or to switch to another distro. Stay with your distro, don't care about a policy when things might or might not be provided for e.g. Debian stable. If you are aware about the issue, fix it for your machine, or if you don't have the skill, ask for help, how to do it. -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/1397816815.28380.45.camel@archlinux
Re: 'no-fixes' in stable
On Fri 18 Apr 2014 at 10:52:14 +0100, wobbly-hs wrote: > Can anyone clarify the policy for when upstream fixes completed in testing > come down to stable. From https://wiki.debian.org/DebianReleases/PointReleases Even stable is updated once in a while. Those updates are called "Point Releases". They usually incorporate the security fixes released until the time of the update and fixes for grave bugs in the current release. There you are: "security fixes" and "grave bugs in the current release". Which of these criteria applies to #656640? > I migrated from Debian 6 to 7 earlier in 2014 once the latest stable distro > had been out quite some time. It was a surprise to find that printing did not > work. Bug#656640 shows a fix has been made but not moved downstream to > stable. A kindly person pointed out how to make my own backport, but that has > now shown up further printing problems in stable. Printing works in stable. You have a particular problem with a particular package. If you didn't use that package to do what you want to do the problem would go away. > My question is seeking to understand the criteria on which a fix is moved down > to stable. I think it is likely if the problem were not that printing doesn't > work but that web servers don't work, it would be fixed in stable overnight. > So why is printing given second class treatment? Is it a case yet again of > "debian is not for desktop users?" I have seen > https://www.debian.org/doc/manuals/developers-reference/pkgs.html#upload-stable > this seems to suggest that once something breaks on a stable desktop it will > only be fixed if the bug risks crashing the whole system. More precisely: Basically, a package should only be uploaded to stable if one of the following happens: * a truly critical functionality problem * the package becomes uninstallable * a released architecture lacks the package Which of these criteria applies to #656640? > By the way - I'm not subscribed to this list so will check back for replies > occasionally / for a while only. It only takes a couple of minutes to subscribe and unsubscribe to the list. -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/20140418112020.gb17...@copernicus.demon.co.uk
Re: Heartbleed
On Fri, Apr 18, 2014 at 7:31 PM, Slavko wrote: > I wrote about processing emails by google, not about processing of > the public archive(s). Or you hope, that disabling archive will stop > google to processing them??? This ML i used as example only. > > But you can advocate the google's practices , it is your opinion. But you're talking about sending emails to Gmail accounts via the mailing list. My point is that with the list, it makes absolutely no difference; they're already public. ChrisA -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/captjjmp2sxhge+ihedgcga4ios74x0vy5drtbv1aauzutrg...@mail.gmail.com
Re: Heartbleed
Hi This thread is going terribly off-topic, but I could not resist... On Thu, Apr 17, 2014 at 07:45:38PM +0100, Joe wrote: > Today, not only governments but private companies vacuum up every bit > of data they can find, presumably just because they can. There is > almost certainly a certain amount of 'we don't know what to do with it > now, but we're sure it will come in handy one day'. > > Look at Google, 'accidentally' harvesting private wifi information > while their StreetView cameras were doing a job totally unrelated to > wifi. There was no possible legitimate reason for doing that, nor any > reasonable expectation that something good but unanticipated might > result from it later. And wireless sniffing hardware and software > doesn't just fall into camera cars while they are parked overnight, > connect itself up and turn itself on. Actually, IIRC they were quite open about that: Knowing the locations of wifi access points helps with determining the location when GPS is unavailable. Although not as accurate as GPS, it is probably faster to determine an approximate location this way. Obviously, they had no need to save the actual *traffic*, merely the access point MAC address, signal strength and streetview car location to do this. Just my 2p -- Karl E. Jorgensen -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/20140418115607.GB6307@hawking
Re: 'no-fixes' in stable
On Fri, 18 Apr 2014 12:26:55 +020, Ralf Mardorf wrote >Don't rely on the policy of a distro, DIY sometimes will fix issues >faster My reason for using Debian stable is because I have spent too much time in the past fixing things myself / getting help etc. I've used Fedora for many years, then Ubuntu, then Fedora then Debian. Our house has been 'windows-free' for nearly nine years now. While I appreciate your good intention it does not answer my question or address my need. There is an ethos among Linux users to encourage learning, but there is a lack of acknowledgement that a person can't be expert in every aspect of modern life, and some people (my programming days are currently over) need an OS that 'just works' reliably. I can invest time in set-up if I can then leave things to keep working. But the tinkerers keep breaking things! If Debian stable can't provide a reliable desktop long term, then I appear to have reached the end of the Linux line. What to do? Cross my fingers and hope in the benevolence of Mr Shuttleworth's Ubuntu LTS to keep the upstream from causing hiccups? Or go fully proprietary and join the masses giving up a bit of security and control? Sometimes I really wish computers had never been invented. But thanks for replying anyway. Kind regards -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/20140418124125.247c1262@boris2.sheep
Re: Heartbleed
On 18/04/14 09:11, Curt wrote: On 2014-04-18, Steve Litt wrote: * I can successfully shave myself to leave exactly four days growth. I've always wondered how those Macintosh fanboys (and Hollywood celebrities, two overlapping sets) accomplished this. I assume they use an electric beard trimmer or hair clippers with the guard removed. -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/5351156d.6090...@zen.co.uk
Re: Heartbleed
On Fri, 18 Apr 2014 08:11:27 + (UTC) Curt wrote: Hello Curt, >On 2014-04-18, Steve Litt wrote: >> * I can successfully shave myself to leave exactly four days growth. >I've always wondered how those Macintosh fanboys (and Hollywood >celebrities, two overlapping sets) accomplished this. Really? All the male grooming companies sell beard trimmers that will do that. -- Regards _ / ) "The blindingly obvious is / _)radnever immediately apparent" You said you ain't had none for weeks, but baby I seen your arms Deny - The Clash signature.asc Description: PGP signature
Re: Heartbleed
On Fri, Apr 18, 2014 at 6:31 PM, Slavko wrote: > Ahoj, > > Dňa Fri, 18 Apr 2014 19:24:20 +1000 Chris Angelico > napísal: > > > On Fri, Apr 18, 2014 at 7:16 PM, Slavko wrote: > > > How many members of this list (for example) want to contribute to > > > the google knowledge? By the distributing this list to gmail > > > addresses too... > >[...] > I wrote about processing emails by google, not about processing of > the public archive(s). Or you hope, that disabling archive will stop > google to processing them??? This ML i used as example only. > > But you can advocate the google's practices , it is your opinion. I am not entirely un-sympathetic to your point of view. But if you want real mail list software under freedom licenses to become available, you're going to have to help build the software. Right now, we don't have the software necessary for a project like Debian to run walled mailing lists. If I tried to get my technical mailing lists on the mail account my provider gives me, it'd overflow at least once a week, and I'd lose valuable non-list mail. MUA filters aren't quite enough. -- Joel Rees Be careful where you see conspiracy. Look first in your own heart.
Re: Heartbleed
Slavko writes: > How many members of this list (for example) want to contribute to the > google knowledge? I don't care one way or the other. The list is public. You are aware that it is archived and that the archive is indexed by the search engines? It is actually *intended* that everyone including Google have access to all the messages. > I can don't respond/send to google, but need i leave this ML (and > similar) too? That's up to you. Perhaps you could convince the listmasters to implement end to end encryption for the list. Or you could participate via an anonymous account. Secrecy can be inconvenient. -- John Hasler jhas...@newsguy.com Elmwood, WI USA -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/87vbu67rj1@thumper.dhh.gt.org
Re: 'no-fixes' in stable
On Fri, Apr 18, 2014 at 9:41 PM, wobbly-hs wrote: > If Debian stable can't provide a reliable desktop long term, then I appear > to have reached the end of the Linux line. What to do? People who want more stability than Debian offers usually go to Red Hat. Or at least, that's what people usually talk about when they're wrestling with having to support Python 2.3 all the way up to 3.4, in order to have the program run on RHEL and Arch Linux. ChrisA -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/CAPTjJmosepJz_JsQaXdKgwRGJpc7_xxpVj=9gGEW=uagae_...@mail.gmail.com
Re: 'no-fixes' in stable
On Friday 18 April 2014 12:41:25 wobbly-hs wrote: > I can invest time in set-up if I > can then leave things to keep working. But the tinkerers keep > breaking things! If Debian stable can't provide a reliable desktop > long term, I find that Debian Stable does provide a reliable desktop long term. I administer 3 desktops and a laptop where that is the case. Also, tinkerers don't keep breaking things in Debian Stable: they don't get the chance. Basically, Stable gets left alone, apart from major bugs, security updates and updates to things like virus databases (which go out of date rather fast). It would be interesting to know what your current problem is. You only vaguely mention that it is something to do with printing. Lisi -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/201404181336.24918.lisi.re...@gmail.com
Re: Heartbleed
On Friday 18 April 2014 12:59:02 Brad Rogers wrote: > On Fri, 18 Apr 2014 08:11:27 + (UTC) > Curt wrote: > > Hello Curt, > > >On 2014-04-18, Steve Litt wrote: > >> * I can successfully shave myself to leave exactly four days > >> growth. > > > >I've always wondered how those Macintosh fanboys (and Hollywood > >celebrities, two overlapping sets) accomplished this. > > Really? > > All the male grooming companies sell beard trimmers that will do > that. I never knew that! Thank you Brad for elucidating. Lisi -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/201404181338.31713.lisi.re...@gmail.com
Re: Heartbleed
Slavko writes: > I wrote about processing emails by google, not about processing of > the public archive(s). Or you hope, that disabling archive will stop > google to processing them??? This ML i used as example only. People who receive their email via Gmail choose to do so. Those who send messages to Gmail accounts choose to do so. If you don't want messages you send to go through Gmail don't send them there. -- John Hasler jhas...@newsguy.com Elmwood, WI USA -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/87mwfi7qnt@thumper.dhh.gt.org
Re: Heartbleed
Karl E. Jorgensen writes: > Obviously, they had no need to save the actual *traffic*, merely the > access point MAC address, signal strength and streetview car location > to do this. In any case, the traffic was broadcast into public space. -- John Hasler jhas...@newsguy.com Elmwood, WI USA -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/87ioq67qia@thumper.dhh.gt.org
Re: 'no-fixes' in stable
On Fri 18 Apr 2014 at 12:41:25 +0100, wobbly-hs wrote: > If Debian stable can't provide a reliable desktop long term, then I appear > to have reached the end of the Linux line. What to do? Cross my fingers and > hope in the benevolence of Mr Shuttleworth's Ubuntu LTS to keep the upstream > from causing hiccups? Or go fully proprietary and join the masses giving up a > bit of security and control? A third option: Go to https://www.debian.org/distrib/packages Input 'python-cups' in the 'Search package directories' field. Click. Do you see 'wheezy-backports' at the top of the page you get? Click. Another click on the package name. Is #656640 fixed in the package? 'Debian Changelog'. Click. -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/20140418125008.gc17...@copernicus.demon.co.uk
Re: Heartbleed
Joel Rees writes: > If I tried to get my technical mailing lists on the mail account my > provider gives me, it'd overflow at least once a week, and I'd lose > valuable non-list mail. Free advertising supported services are not the only alternative to your ISP. I get my mail via Newsguy. I pay them about $50/year for the service and they do an excellent job. -- John Hasler jhas...@newsguy.com Elmwood, WI USA -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/87eh0u7qb7@thumper.dhh.gt.org
Re: Repeatable apt-get WARNING: The following packages cannot be authenticated!
On Fri, Apr 18, 2014 at 11:39:35AM +0300, Andrei POPESCU wrote: > On Jo, 17 apr 14, 11:15:00, Richard Owlett wrote: > > > > Yeah BUT ;( > > I get NO errors or warnings when apt-get uses the physical DVDs from which > > the loop mounted iso's were created. > > /etc/apt/apt.conf.d/00trustcdrom: > > APT::Authentication::TrustCDROM "true"; What the man said. apt uses 'clever' hack to workaround this in case you're using cdrom: entry in sources.list. Reco -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/20140418125402.GA26676@x101h
Re: Heartbleed
Ahoj, Dňa Fri, 18 Apr 2014 07:44:54 -0500 John Hasler napísal: > If you don't want > messages you send to go through Gmail don't send them there. Are you participating on the Googles's profit? -- Slavko http://slavino.sk signature.asc Description: PGP signature
Re: Repeatable apt-get WARNING: The following packages cannot be authenticated!
On Fri, Apr 18, 2014 at 1:02 AM, Richard Owlett wrote: > Joel Rees wrote: > >> >> On Wed, Apr 16, 2014 at 11:49 PM, Richard Owlett >> mailto:rowl...@cloud85.net>> wrote: >> >> Richard Owlett wrote: >> >> [SNIP] >> >> [...] >> root@debian:/home/richard# apt-get install pforth >> >> >> pforth? Mind if I ask why? >> > > *LOL* not the part of my post for which I expected a comment. > Primarily I needed an easily remembered package that wouldn't be on any of > my test installs. I've been interested in FORTH since CPM-80 days. > [...] The reason I ask is that doing an apt-get source or install of gforth does not produce any complaints about unrecognized signatures. I wonder why Garbee would have signed pforth himself. I only looked a little ways around, but the key does seem to be his. Maybe it has to do with where pforth is hosted. Did you get similar complaints from anything else? -- Joel Rees Be careful where you see conspiracy. Look first in your own heart.
Re: Heartbleed
On Thu, Apr 17, 2014 at 12:15 PM, Robert Holtzman wrote: > > Or Apple, sacrifices your > > security by wordsmithing. According to them, they don't get malware, > their > > computers just have "unwanted programs." > > Not ever being an Apple user, I hadn't heard that before. When I read > your post, I fell off the chair laughing. One more reason why I doubt if > I will ever use an Apple computer or anything else. > I had pretty much the same reaction. I was listening to Tracy Holtz on the techie geek podcast, and he was relating the story. He used to run a PC repair shop, and a customer brought his or her Mac in to have it cleaned. They had apparently taken it to the "genius" bar more than once, and they said there was no virus. So they took it to Tracy, who cleaned it and then billed it back to Apple. The regional director of marketing was the one who told him that... That said, I have a (work) iphone 4 that I absolutely loathe because of the walled garden. I have a Nokia N900 that i use for media playback, and I have a set of bluetooth headphones, which I have paired with both. I turned off the HFP and HSP (hands-free and headset profiles) on the N900, but in order to turn off the multimedia profiles on the iphone, I have to buy a $5.99 app. While I can afford that, I refuse to buy an app for a work phone, and I especially refuse to buy an app to do something that took me about 6 seconds in vim on the N900...
Re: Heartbleed
On Fri, Apr 18, 2014 at 9:52 PM, John Hasler wrote: > Joel Rees writes: > > If I tried to get my technical mailing lists on the mail account my > > provider gives me, it'd overflow at least once a week, and I'd lose > > valuable non-list mail. > > Free advertising supported services are not the only alternative to your > ISP. I get my mail via Newsguy. I pay them about $50/year for the > service and they do an excellent job. > -- > John Hasler > jhas...@newsguy.com > Elmwood, WI USA > Well, yeah, but if I could afford the JPY 5000 or so per year, I'd probably be paying dyn.com for the dynamic dns for mail and running my own mail server. But what you're asking, if you want mail lists and newsgroups free from being trawled by search engines, is a level above the mail lists and newsgroups we have today. You'd have to have mail-list private addresses, and the list server would need to clean and re-write the headers of each post before posting either to the list or the published archives. -- Joel Rees Be careful where you see conspiracy. Look first in your own heart.
Re: 'no-fixes' in stable
On Fri, 2014-04-18 at 12:41 +0100, wobbly-hs wrote: > Or go fully proprietary and join the masses giving up a > bit of security and control? Then you might get rid of the trouble you experience now, but you likely will run into hundreds of other issues. I prefer a few issues for free as in beer, than to pay for hundreds of issues. ;) -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/1397830106.28380.48.camel@archlinux
Re: UEFI install
On 18/04/14 12:33 AM, Corey Blair wrote: I got a new laptop without a CD/DVD drive and am trying to install off a USB image and either dual boot my pre-installed windows 8.1 or just wipe and use strictly Debian. I get all the way to the point of installing GRUB and it fails. I've read that this may have something to do with the disk being GPT instead of MBR? How do I get a dual boot Windows 8.1 and Debian Wheezy install? Or at the least have Debian successfully installed (although I'm afraid of wiping the HDD and losing the ability to revert back to Windows) You may not be able to. The problem may be that Wheezy is too old. Coexistence with UEFI is still developing. However, Wheezy can handle GPT disks just fine. To test this, turn of UEFI in the BIOS and try the install again. To make things easier, first use Windows disk manager to shrink the Windows partition. Create a new partition in the free space and also leave a small empty (a few hundred megabytes) space somewhere for the EFI System Partition. Then start the Wheezy install. If that works, turn UEFI back on and try booting into both OSs. -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/5351346c.1000...@torfree.net
Re: Sun/Oracle Java
Hi, Hope I didn't open a can of worms here. On 17/04/14 10:13, Scott Ferguson wrote: The "presumption" was made that the majority of readers, including the OP, would have the basic intelligence necessary to differentiate between the instructions to use "the latest java package" and an *example* using "an example version". ... Regards. It's all good mate, I got the idea. Your instructions really were useful for me, and having the 'example' specified for an older version is not an issue at all, imo. Thanks again, Oli -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/535134db.4010...@iinet.net.au
black and white icons in gtk-3 file chooser dialog
Hi, After a system upgrade, the GTK3 file chooser dialog has begun to use a different icon theme for the side panel, which consists of ugly black-and-white icons. GTK2 file chooser: http://s22.postimg.org/qoc55r11t/gtk2_fc.png GTK3 file chooser: http://s23.postimg.org/a0g3cj63v/gtk3_fc.png I'm running Debian testing and this are the contents of my GTK3 settings file: $ cat .config/gtk-3.0/settings.ini [Settings] gtk-theme-name = Clearlooks-Phenix gtk-icon-theme-name = Tango gtk-key-theme-name = Emacs gtk-enable-event-sounds=true gtk-enable-input-feedback-sounds=true gtk-sound-theme-name=freedestop gtk-primary-button-warps-slider = false $ Does any one know how to fix this issue? Thanks! -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/20140418142047.GA7379@doriath.local
Re: Heartbleed
On Fri, 18 Apr 2014 13:38:31 +0100 Lisi Reisz wrote: Hello Lisi, >> All the male grooming companies sell beard trimmers that will do >> that. >I never knew that! Thank you Brad for elucidating. Well, being a MacBook fanboy(1) that's walked a few red carpets(2) in my time, I'd *have* to know that, wouldn't I? ;-D (1) This is a lie. (2) So is this. The truth is far more prosaic; I've seen them advertised on TV. -- Regards _ / ) "The blindingly obvious is / _)radnever immediately apparent" This is the fifty first state of the USA Heartland - The The signature.asc Description: PGP signature
Re: Heartbleed
On 2014-04-18, Martin Read wrote: >> >> I've always wondered how those Macintosh fanboys (and Hollywood >> celebrities, two overlapping sets) accomplished this. > > I assume they use an electric beard trimmer or hair clippers with the > guard removed. > The instructions say never to remove the guard. But seriously I'm too clumsy (and these fancy tonsorial contraptions cost oodles of moolah). Of course I suppose I could have my barber do it (if I had a barber to do it). I think I'll just remain with my out-of-it look until my out-of-it look eventually becomes "in" (if I'm not dead beforehand, but then again the zombie/vampire look is quite popular these days with the younger generation, so there's always hope, even for the terminally deceased). -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/slrnll2f1s.3l8.cu...@einstein.electron.org
Re: Heartbleed
I wrote: > If you don't want messages you send to go through Gmail don't send > them there. Slavko writes: > Are you participating on the Googles's profit? No. So what? BTW I am subscribed to the list. No need to cc me. -- John Hasler jhas...@newsguy.com Elmwood, WI USA -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/8761m67js8@thumper.dhh.gt.org
Re: Repeatable apt-get WARNING: The following packages cannot be authenticated!
Andrei POPESCU wrote: On Jo, 17 apr 14, 11:15:00, Richard Owlett wrote: Yeah BUT ;( I get NO errors or warnings when apt-get uses the physical DVDs from which the loop mounted iso's were created. /etc/apt/apt.conf.d/00trustcdrom: APT::Authentication::TrustCDROM "true"; Changing that "true" to "false" makes loading from the physical DVDs act the same as loading from the loop mounted ISO images. Not elegant nor 'satisfactory', but at least consistent. Is there some documentation on signing aimed at the end-user rather than package creators. I know I'm missing something - just don't know what ;/ -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/53514e0a.6040...@cloud85.net
Re: ntpdate: Can't find host 0.debian.pool.ntp.org
Kumar Appaiah alumni.iitm.ac.in> writes: [snip] > > > Apr 17 17:36:22 test ntpdate[709]: Can't find host 2.debian.pool.ntp.org: > > Name or service not known (-2) > > Apr 17 17:36:22 test ntpdate[709]: no servers can be used, exiting > > Apr 17 17:36:45 test ntpdate[1148]: adjust time server 64.113.32.5 offset > > 0.017320 sec > > Apr 17 17:37:01 test ntpdate[1362]: adjust time server 64.113.32.5 offset > > 0.012608 sec > > > > Is this normal? > > It appears that your machine's NTP requests are blocked. Is the > machine connected to the internet, and is there a NAT/firewall that > may block some protocols? > > Kumar Thanks for the reply. Yes, the machine is connected to the internet. NAT/firewall might be an issue but it still seems like it is able to connect to NTP server 64.113.32.5, not sure where it is getting that info though. -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/loom.20140418t184823-...@post.gmane.org
Re: ntpdate: Can't find host 0.debian.pool.ntp.org
staticsafe staticsafe.ca> writes: > > On 4/17/2014 20:43, Amit wrote: > > Name or service not known (-2) > > Sounds like you have/had DNS issues. Perhaps the resolver(s) in > /etc/resolv.conf were unresponsive? > Thanks. I think I may have found the issue. ntpdate is being called twice. First, it is called by if-up.d hook. At this point, the network interface is up but no ip address. Second, it is called from dhclient-exit-hooks.d/. By this time, it has already acquired an ip address. I guess I should remove the hook from if-up.d. -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/loom.20140418t185045-...@post.gmane.org
Re: Heartbleed
On Fri, Apr 18, 2014 at 09:27:32AM -0400, Brad Alexander wrote: > On Thu, Apr 17, 2014 at 12:15 PM, Robert Holtzman wrote: > > > > Or Apple, sacrifices your > > > security by wordsmithing. According to them, they don't get malware, > > their > > > computers just have "unwanted programs." > > > > Not ever being an Apple user, I hadn't heard that before. When I read > > your post, I fell off the chair laughing. One more reason why I doubt if > > I will ever use an Apple computer or anything else. > > > > I had pretty much the same reaction. I was listening to Tracy Holtz on the > techie geek podcast, and he was relating the story. He used to run a PC > repair shop, and a customer brought his or her Mac in to have it cleaned. > They had apparently taken it to the "genius" bar more than once, and they > said there was no virus. So they took it to Tracy, who cleaned it and then > billed it back to Apple. The regional director of marketing was the one who > told him that... > > That said, I have a (work) iphone 4 that I absolutely loathe because of the > walled garden. I have a Nokia N900 that i use for media playback, and I > have a set of bluetooth headphones, which I have paired with both. I turned > off the HFP and HSP (hands-free and headset profiles) on the N900, but in > order to turn off the multimedia profiles on the iphone, I have to buy a > $5.99 app. While I can afford that, I refuse to buy an app for a work > phone, and I especially refuse to buy an app to do something that took me > about 6 seconds in vim on the N900... But, but, you would deprive Apple of that $5.99? Commie!!! -- Bob Holtzman Our company's mission is to enable data-stream synergies with confluent bullshit mining, signature.asc Description: Digital signature
Re: 'no-fixes' in stable
Thanks all for your taking the time to comment on my questions Brian pointed to the new backport 1.9.63-1~bpo70+1: amd64 This looks very much like the same thing I'd produced as a private backport which I installed: python-cups_1.9.63-1~bpo70+1_amd64.deb Lisi Reisz asked: >It would be interesting to know what your current problem is. You only vaguely >mention that it is something to do with printing. So to answer that, following a routine install of Wheezy xfce edition, other programs were installed but nothing specifically for printing as far as I'm aware. A printer was installed using hplip. This would not print because of the bug already discussed. After installing the private backport it prints libreoffice documents, but there is trouble printing PDF files. Some don't print at all, some print just error messages, others print a fraction of the page and stop. In all cases there is a very long delay before anything comes out of the printer. A test PDF that would not print came out successfully and quickly when printed from a live version of Fedora 19, so I think I've ruled out hardware problems. I read somewhere there were similar problems with migration to ghostprint but that concerned a different distro, so can't say if that is the cause here. -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/20140418185655.51244b21@boris2.sheep
Re: Repeatable apt-get WARNING: The following packages cannot be authenticated!
On Vi, 18 apr 14, 11:08:42, Richard Owlett wrote: > Andrei POPESCU wrote: > >On Jo, 17 apr 14, 11:15:00, Richard Owlett wrote: > >> > >>Yeah BUT ;( > >>I get NO errors or warnings when apt-get uses the physical DVDs from which > >>the loop mounted iso's were created. > > > >/etc/apt/apt.conf.d/00trustcdrom: > > > >APT::Authentication::TrustCDROM "true"; > > > > Changing that "true" to "false" makes loading from the physical DVDs act the > same as loading from the loop mounted ISO images. Not elegant nor > 'satisfactory', but at least consistent. > > Is there some documentation on signing aimed at the end-user rather than > package creators. I know I'm missing something - just don't know what ;/ Here's what I use: #!/bin/sh # This part generates the minimum necessary files # for an apt repository. # Assumptions: # - this script is run in the directory with packages # - apt-ftparchive is installed (package apt-utils) # - you have a GPG key (the default key is used) # apt seems to require both, even if only one is used apt-ftparchive packages ./ > Packages apt-ftparchive packages ./ | gzip > Packages.gz apt-ftparchive release ./ > Release sudo -u amp gpg --armor --detach-sign --sign --output Release.gpg Release # a sources.list line should look like this # deb file:/directory/with/debs ./ Hope this helps, Andrei -- http://wiki.debian.org/FAQsFromDebianUser Offtopic discussions among Debian users and developers: http://lists.alioth.debian.org/mailman/listinfo/d-community-offtopic http://nuvreauspam.ro/gpg-transition.txt signature.asc Description: Digital signature
Re: 'no-fixes' in stable
On Vi, 18 apr 14, 10:52:14, wobbly-hs wrote: > > My question is seeking to understand the criteria on which a fix is moved down > to stable. I think it is likely if the problem were not that printing doesn't > work but that web servers don't work, it would be fixed in stable overnight. > So why is printing given second class treatment? Is it a case yet again of > "debian is not for desktop users?" I have seen > https://www.debian.org/doc/manuals/developers-reference/pkgs.html#upload-stable > this seems to suggest that once something breaks on a stable desktop it will > only be fixed if the bug risks crashing the whole system. A bug doesn't have to be that serious to be fixed, but there are additional criteria, like how big an impact does it have, how big/complex is the patch to fix it, etc. You might want to contact the package maintainer and ask (simply write to the bug). Kind regards, Andrei -- http://wiki.debian.org/FAQsFromDebianUser Offtopic discussions among Debian users and developers: http://lists.alioth.debian.org/mailman/listinfo/d-community-offtopic http://nuvreauspam.ro/gpg-transition.txt signature.asc Description: Digital signature
Re: Sun/Oracle Java
On 19/04/2014 12:21 AM, Oliver Fairhall wrote: > On 17/04/14 10:13, Scott Ferguson wrote: >> The "presumption" was made that the majority of readers, including the >> OP, would have the basic intelligence necessary to differentiate between >> the instructions to use "the latest java package" and an *example* using >> "an example version". >> ... >> Regards. > > It's all good mate, I got the idea. Your instructions really were useful > for me, and having the 'example' specified for an older version is not > an issue at all, imo. Yes, fair enough from me too, sorry for the noise. Sometimes though, it helps when there is a chance that something so simple would be missed by someone ... anyone, to just point out a potential problem /may/ or /may not/ have helped. Cheers A. -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/535182fe.8020...@affinityvision.com.au
Re: Heartbleed
On 19/04/2014 3:09 AM, Robert Holtzman wrote: > But, but, you would deprive Apple of that $5.99? Commie!!! I must be too, because I have trouble supporting the whole, 'apple *always( gets a cut' deal together with 'apple users will pay more or something, when others may not pay at all' ... Personally, I think that the Apple cut of the pie in sales of Apps is far too greedy! Forget about what the dev gets for their trouble, but Apple devs have also /traditionally/ got more from the deal than using an alternative eco-system. Actually, websites are known to give different prices /sometimes/ for people detected to be coming from an iDevice world because most typical Apple users will pay more whether they know it or not. Cheers A. signature.asc Description: OpenPGP digital signature
Re: Heartbleed
How much do you think distributors and resellers get when you buy packaged software in a store or online?! Sent from my iPhone > On Apr 18, 2014, at 1:02 PM, Andrew McGlashan > wrote: > >> On 19/04/2014 3:09 AM, Robert Holtzman wrote: >> But, but, you would deprive Apple of that $5.99? Commie!!! > > I must be too, because I have trouble supporting the whole, 'apple > *always( gets a cut' deal together with 'apple users will pay more or > something, when others may not pay at all' ... Personally, I think that > the Apple cut of the pie in sales of Apps is far too greedy! Forget > about what the dev gets for their trouble, but Apple devs have also > /traditionally/ got more from the deal than using an alternative eco-system. > > Actually, websites are known to give different prices /sometimes/ for > people detected to be coming from an iDevice world because most typical > Apple users will pay more whether they know it or not. > > Cheers > A. > > > -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/554860fe-c79e-48a0-b39e-d607310c3...@queernet.org
Re: Heartbleed
On 19/04/2014 6:08 AM, Roger Klorese wrote: > How much do you think distributors and resellers get when you buy packaged > software in a store or online?! Not much, generally, especially Apple distributors -- again because Apple themselves are too greedy and they are big competition to their own /partners/ I just read about a very long term Apple reseller giving up on Apple due to margin problems. Cheers A. -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/53518732.7000...@affinityvision.com.au
Re: 'no-fixes' in stable
On Friday 18 April 2014 18:56:55 wobbly-hs wrote: > Lisi Reisz asked: > >It would be interesting to know what your current problem is. You > > only vaguely mention that it is something to do with printing. > > So to answer that, following a routine install of Wheezy xfce > edition, other programs were installed but nothing specifically for > printing as far as I'm aware. A printer was installed using hplip. > This would not print because of the bug already discussed. After > installing the private backport it prints libreoffice documents, > but there is trouble printing PDF files. Some don't print at all, > some print just error messages, others print a fraction of the page > and stop. In all cases there is a very long delay before anything > comes out of the printer. A test PDF that would not print came out > successfully and quickly when printed from a live version of Fedora > 19, so I think I've ruled out hardware problems. I read somewhere > there were similar problems with migration to ghostprint but that > concerned a different distro, so can't say if that is the cause > here. Thanks. Have you said which printer? If so, I have missed it. It is likely to be relevant. I have absolutely no problems with my Samsung, nor with other Samsungs I have installed for other people, nor with HPs of various types that I have installed. And PDFs print fine, as does everything else. Are you using CUPS? If HPLIP doesn't work, have you tried hpijs? There may, of course, be a problem with Xfce that I don't know about. All the Wheezy systems I administer are running Trinity 3.5.13.2. But Wheezy certainly does not in general have printing problems. Lisi -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/201404182239.31911.lisi.re...@gmail.com
Re: Heartbleed
On Fri, 18 Apr 2014 07:48:13 -0500 John Hasler wrote: > Karl E. Jorgensen writes: > > Obviously, they had no need to save the actual *traffic*, merely the > > access point MAC address, signal strength and streetview car > > location to do this. > > In any case, the traffic was broadcast into public space. As is the light originating inside peoples' homes and passing out of their windows. In which case it is arguable that it is perfectly acceptable to collect and record that light with a camera without asking the permission of those who own the home and/or who have modified the light... ...which was my point. I'm constantly amazed (I'm not a security expert) when network information I would consider pretty harmless is gathered and used to obtain access to the network. It seems to me that a lot of information which can be routinely gathered and seems individually harmless might well be used for wrongdoing, either by public or private organisations. -- Joe -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/20140418225542.5f926...@jretrading.com
Re: UEFI install
On Fri, 2014-04-18 at 10:19 -0400, Gary Dale wrote: > On 18/04/14 12:33 AM, Corey Blair wrote: > > I got a new laptop without a CD/DVD drive and am trying to install off > > a USB image and either dual boot my pre-installed windows 8.1 or just > > wipe and use strictly Debian. I get all the way to the point of > > installing GRUB and it fails. I've read that this may have something > > to do with the disk being GPT instead of MBR? How do I get a dual > > boot Windows 8.1 and Debian Wheezy install? Or at the least have > > Debian successfully installed (although I'm afraid of wiping the HDD > > and losing the ability to revert back to Windows) > > > > > You may not be able to. The problem may be that Wheezy is too old. > Coexistence with UEFI is still developing. > > However, Wheezy can handle GPT disks just fine. > > To test this, turn of UEFI in the BIOS and try the install again. To > make things easier, first use Windows disk manager to shrink the Windows > partition. Create a new partition in the free space and also leave a > small empty (a few hundred megabytes) space somewhere for the EFI System > Partition. > > Then start the Wheezy install. If that works, turn UEFI back on and try > booting into both OSs. > > It is possible to install debian wheezy with uefi enabled, take a look: https://lists.debian.org/debian-user/2014/03/msg01372.html and the subsequent answer by Andrew. -- André N. Batista GNUPG/PGP KEY: 6722CF80 signature.asc Description: This is a digitally signed message part
Re: Heartbleed
That's hardware, mainly. But margins on PC hardware are terrible too. Software is typically 30% or so. Sent from my iPhone > On Apr 18, 2014, at 1:12 PM, Andrew McGlashan > wrote: > >> On 19/04/2014 6:08 AM, Roger Klorese wrote: >> How much do you think distributors and resellers get when you buy packaged >> software in a store or online?! > > Not much, generally, especially Apple distributors -- again because > Apple themselves are too greedy and they are big competition to their > own /partners/ I just read about a very long term Apple reseller > giving up on Apple due to margin problems. > > Cheers > A. > > > -- > To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org > with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org > Archive: https://lists.debian.org/53518732.7000...@affinityvision.com.au > -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/9e69d2b6-7445-4f63-8adb-7e29ebfdc...@queernet.org
Re: 'no-fixes' in stable
On Fri, 18 Apr 2014 22:39:31 +0100 Lisi Reisz wrote: > On Friday 18 April 2014 18:56:55 wobbly-hs wrote: > > Lisi Reisz asked: .. > Thanks. Have you said which printer? If so, I have missed it. It is > likely to be relevant. I have absolutely no problems with my > Samsung, nor with other Samsungs I have installed for other people, > nor with HPs of various types that I have installed. And PDFs print > fine, as does everything else. hp1320n laser > > Are you using CUPS? If HPLIP doesn't work, have you tried hpijs? hplip connection to: HP LaserJet 1320 series Postscript (recommended) postscript driver But shock / amazement!.. hpijs does work - I thought I'd tried it already but maybe I'd copied the ppd or something, this time a clean ppd seems to work (but only runs at 600 dpi rather than 1200) Foomatic/pxlmono works better quality but very slowly Previously (debian 6) I was using the postscript driver OK. thanks for your advice. -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/20140419001324.30e30c06@boris2.sheep
Re: programs become unresponsive intermittently
On Fri, Apr 18, 2014 at 1:10 PM, Gary Dale wrote: > I believe this is likely a network issue but I'm having difficulty > tracking it down. I had a very similar problem a while back that seemed to > be from having too many NFS shares. I'd reduced the number to 4 and it > cleared up. > > I had another similar problem later that I tracked down to a failing > network switch. Replacing it got things back to normal. > > I reduced the number of NFS shares to 2 when the problem came back but > that didn't help. > > What happens is the disk light goes solid for several minutes, during > which iotop sometimes shows some activity from virtuoso-t and jbd2, but not > huge amounts. Dolphin becomes unresponsive for the longest period, but any > other program may also stop responding. The mouse cursor still moves and > terminal sessions remain active. Top shows my computer is loafing along. > top doesn't catch everything, of course. Anyways, ... > I'm running Jessie with a KDE desktop. I update daily. > > I've looked at iperf stats and they show I'm getting the expected speed to > my server (three switches away). My Internet speed is also what I'm paying > for. > > Any ideas on how to track down the problem? As in the following? http://www.google.com/search?q=virtuoso-t http://www.google.com/search?q=jbd2 http://www.google.com/search?q=nepomuk+cpu (I am not a fan of actively indexing desktop databases, especially not in their current grab-it-all versions.) -- Joel Rees Be careful where you see conspiracy. Look first in your own heart.
Re: Skype - no microphone input sound...
I just wonder... What is the advantages/disadvantages of Pulseaduio and Alsa? What are they anyways? On 04/17/2014 02:49 AM, Mark Carroll wrote: On 04/13/2014 02:26 AM, Man_Without_Clue wrote: Is there anyone who is using Skype with no problem at all on Debian Wheezy 64 bit? I missed the start of this thread, but I have Skype working just fine on Debian Wheezy 64 bit. I am using ALSA, not pulseaudio or anything, and I have Skype installed inside a 32-bit chroot (using schroot) so I don't know if for your purposes that counts or not. -- Mark -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/5351c8ca.8030...@gmail.com
Re: Heartbleed (was ... Re: My fellow (Debian) Linux users ...)
(Reader beware. Length breeds length.) On Thu, Apr 17, 2014 at 10:57 PM, somebody wrote: > On 4/17/2014 5:40 AM, Curt wrote: > >> On 2014-04-17, ken wrote: >> >>> >>> Steve brings up a very good point, one often overlooked in our zeal for >>> getting so much FOSS for absolutely no cost. Since we're all given the >>> source code, we're all in part responsible for it and for improving it. >>> >> >> I don't think the point is very good for the reasons outlined below (by >> others). >> > I wonder how you could say that. I include myself when I say this, but we are freeloading. If we want our infrastructure to work, we have to start contributing more to the critical parts. And the degree to which the financial world relies on freebies from freedom lovers, well, if the guys trying to make money on frictionless market exchanges had to write their own, maybe they'd find it a little easier to face the reality about "frictionless". Having said that, it seems to me that the following just reinforces the argument that we all need to take more part in this stuff. http://www.datamation.com/open-source/does-heartbleed- >> disprove-open-source-is-safer-1.html >> >> Robin Seggelmann, the OpenSSL developer who claims responsibility for >> Heartbleed, says that both he and a reviewer missed the bug. He >> concludes that >> more reviewers are needed to avoid a repetition of the incident -- that >> there >> were not enough eyes in this case. >> > More eyes means us. We may not be able to read code, but we can sure file bug reports, and we can run more of our own services on our own servers where we can work out the setups ourselves and watch the results and file bug reports. And we can learn to code when the developers are too swamped with bug reports to handle them all. > Another conclusion that might be drawn from Seggelmann's account is that >> depending on developers to review their own work is not a good idea. > > Which is saying that more of us need to get our eyes on the code. > Unless >> considerable time passes between the writing of the code and the >> review, the >> developers are probably too close to the code to be likely to observe >> the flaws >> in it. >> >> However, the weakness of Seggelmann's perspective is that the argument >> is >> circular: if Heartbleed was undiscovered, then there must not have been >> enough >> eyes on the code. The proof is in the discovery or the failure to >> discover, >> which is not exactly a useful argument. >> > Not a useful argument? So? Discovering an argument circularity in no way disproves a hypothesis. It only shows that more work is necessary, to understand the problem. And the cycle itself is often useful when looking for a way to establish a real foundation to the argument. > A more useful analysis has been offered by Theo de Raadt, the founder of >> OpenBSD and OpenSSH... >> >> http://article.gmane.org/gmane.os.openbsd.misc/211963 >> >> (I'll quote most of de Raadt's usenet article--hope nobody minds). >> > In this case it appears that some context is necessary, as well. > So years ago we added exploit mitigations counter measures to libc >> malloc and mmap, so that a variety of bugs can be exposed. > > Theo is talking about openBSD's libraries, and about libraries from other OSses that have taken similar approaches. One thing I think I remember openBSD did for this kind of thing was putting free()ed memory into a pool that is sanitized (over-written with zeros) before being returned to the allocatable pool. (I think some people have tried overwriting with random data, but that's for preventing memory burn-in, and does take enough extra time to be unwarranted for most allocation uses. And is only important when you have reason to worry about the spooks grabbing your hardware and taking it down to the physics lab.) Another involved randomization of the allocation addresses returned, and finer granularity on the allocations. Such >> memory accesses will cause an immediate crash, or even a core dump, >> then the bug can be analyed, and fixed forever. >> > I think Theo has learned to not dig in too deeply when talking with the press. Which leaves more technically inclined types to either wonder what he's talking about or dig in to find out. (In my case, I was lurking on the miscellaneous list at openbsd during part of the time he is referring to. My comments come from memory; if you are interested, you should probably dig into their archives.) "Fixed forever" is a bit of an exaggeration, of course. But he means that the collected set of strategies that openBSD uses will often mean that array accesses out of bounds will hit memory that is not flagged as accessible when a program is running on openBSD. And openBSD is pretty aggressive about having the MMU through exceptions on such accesses. There are granularity issues, depending on page sizes, but openBSD is pretty aggressive there, too. Which means that, if op
Re: Heartbleed (was ... Re: My fellow (Debian) Linux users ...)
Joel Rees grabbed a keyboard and wrote: > (Reader beware. Length breeds length.) And this whole thread has gone on (and morphed) entirely too long. Please take it to the Debian Offtopic list. http://lists.alioth.debian.org/mailman/listinfo/d-community-offtopic smime.p7s Description: S/MIME Cryptographic Signature
What we should do (Re: Heartbleed (was ... Re: My fellow (Debian) Linux users ...))
Okay, the short version of the long post: If you don't know what to do about things like the heartbeat/bleed bug, I'm suggesting we all start contributing more to the projects we regularly use. Learn to code if we haven't. Report bugs. Help with documentation and localization. That's how we reduce the number of bugs and the potential for damage. Whether my long response to Jerry's long response to Theo's rant about the openssl project's approach to development helps to understand how pointer issues interact with library issues and team management issues, ... Well, maybe it doesn't help you. But the important thing is that we all need to help a little bit more, and running away from learning to code doesn't help. On Sat, Apr 19, 2014 at 11:12 AM, David Guntner wrote: > Joel Rees grabbed a keyboard and wrote: > > (Reader beware. Length breeds length.) > > And this whole thread has gone on (and morphed) entirely too long. > Please take it to the Debian Offtopic list. > > http://lists.alioth.debian.org/mailman/listinfo/d-community-offtopic -- Joel Rees Computer memory is just fancy paper, and computer I/O and the CPU are just fancy pens.
Re: Heartbleed
On 19/04/14 07:55, Joe wrote: > On Fri, 18 Apr 2014 07:48:13 -0500 > John Hasler wrote: > >> Karl E. Jorgensen writes: >>> Obviously, they had no need to save the actual *traffic*, merely the >>> access point MAC address, signal strength and streetview car >>> location to do this. >> >> In any case, the traffic was broadcast into public space. > > As is the light originating inside peoples' homes and passing out of > their windows. In which case it is arguable that it is perfectly > acceptable to collect and record that light with a camera without > asking the permission of those who own the home and/or who have > modified the light... Most countries don't provide legislative protection from the gaze of people passing by. For reasons of sanity, and something to do with the concept of free will (and personal responsibility). > > ...which was my point. I'm constantly amazed (I'm not a security > expert) when network information I would consider pretty harmless is > gathered and used to obtain access to the network. It seems to me that > a lot of information which can be routinely gathered and seems > individually harmless might well be used for wrongdoing, either by > public or private organisations. That's the nature of information. All information. Ignorance is not safety. Stopping people from seeing open gates doesn't improve security. People closing gates does. Legislation that compels people to close their gates doesn't improve security - insurance penalties for those that leave them open (thereby compromising their own security) does. > As long as someone believes information about you can be profitable, someone will offer to sell it. As long as information about us is sold 'we' will always feel robbed of something - and want 'protection'. Unless ignorance is *not* regarded as an excuse 'we' will always 'give away' information about ourselves that other will see as marketable. Perhaps the solution is not greater bureaucracy to safeguard data ignorance, but greater personal responsibility and a reassessment of what privacy "rights" are unreasonable expectations? Kind regards -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/5351fca7.9040...@gmail.com
Re: Wayland in Debian
On Tue, Apr 15, 2014 at 08:11:34PM -0400, Ric Moore wrote: > Funny thing, after dinking around in synaptic, I'm finding a lot of > lib-wayland packages installed within Jessie. If you are worried about library dependencies, I suggest looking at the Gentoo Linux distribution. http://www.gentoo.org/main/en/about.xml '... When you want to install a package, you type emerge packagename, at which point Portage automatically builds a custom version of the package to your exact specifications, optimizing it for your hardware and ensuring that the optional features in the package that you want are enabled -- and those you don't want aren't." If you want to see what software depends on a library: e.g. apt-cache rdepends lib-wayland -- "If you're not careful, the newspapers will have you hating the people who are being oppressed, and loving the people who are doing the oppressing." --- Malcolm X -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/20140419055038.GA9180@tal
Re: Heartbleed
On 19/04/2014 6:08 AM, Roger Klorese wrote: > How much do you think distributors and resellers get when you buy packaged > software in a store or online?! Often times retailers get the raw end of the stick, it's the distys that make the most per sale -- probably like artists with music too often. Quite simply, I think that the Apple take on AppStore purchases is way too high, especially since they are effectively a monopoly in their eco-system ... discounting the relatively few jail broken devices that may avoid the Apple take by using alternate stores (at their own risk too) Cheers A. -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/535210a1.7000...@affinityvision.com.au
Re: Sun/Oracle Java
On 19/04/14 16:19, Chris Bannister wrote:
> On Thu, Apr 17, 2014 at 12:13:54PM +1000, Scott Ferguson wrote:
>> There's really no need to pass laws against bad weather, or sharp
>> corners on furniture, to protect idiots from themselves.
>
> :)
>
> On the blender I have, it's got "CAUTION: NEVER PLACE BLADE ASSEMBLY ON
> BASE UNLESS ASSEMBLED TO JAR."
leaving many operators trying to find a jar to fit
>
> As if anyone would even consider it!
>
That warning is there to advise the sort of cautious and conscientious
people that do read warnings (and look with their eyes) before powering
on equipment, of the bleeding obvious. But mostly so that those who
"look" with their fingers ("I was just looking") and don't think, or
read, before operating - do, with the inevitable tearful and messy
result, they can be advised - "you were warned".
Part liability reduction, part black humour. In the case of marking the
bottom of takeaway coffee cups "Warning - contents may be hot" and
"Other end up" - mostly black humour.
Kind regards
--
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Archive: https://lists.debian.org/5352193f.2040...@gmail.com
Re: Heartbleed
On Sat, Apr 19, 2014 at 02:33:43PM +1000, Scott Ferguson wrote: > On 19/04/14 07:55, Joe wrote: > > As is the light originating inside peoples' homes and passing out of > > their windows. In which case it is arguable that it is perfectly > > acceptable to collect and record that light with a camera without > > asking the permission of those who own the home and/or who have > > modified the light... > > Most countries don't provide legislative protection from the gaze of > people passing by. For reasons of sanity, and something to do with the > concept of free will (and personal responsibility). There is a very large difference between the gaze of passers-by and actively attempting to see something, especially where recording equipment is involved. Cheers, Tom -- I'm ANN LANDERS!! I can SHOPLIFT!! signature.asc Description: Digital signature
