Re: how NOT to work with debian
You're just running WindowMaker. Check to see if KDE is installed correctly, first. If it is, then simply type "ln -sf /usr/bin/startkde /etc/alternatives/x-window-manager" and jab at the Enter key. I'm not sure whether or not this might break something with Debian's alternatives system (or simply circumvent correct methods of tinkering with it), but it should do the trick. On Sun, 2003-08-10 at 20:03, Richard Lyons wrote: > On Monday 11 August 2003 3:36 am, Antony Gelberg wrote: > > On Mon, Aug 11, 2003 at 01:25:48AM +0200, Richard Lyons wrote: > [...general description snipped...] > > Give more technical detail. How are you trying to start X? Most > > importantly of all, what do the error messages say? > > Yes. I do 'startx' - it switches to tty7 and a big debian logo on crumpled > paper appears. Looks like correct screen res. etc. The mouse is active. > There is a square thing called 'main' with a paperclip icon and two arrow > corners. This widget can be moved around. Three more suare widgets top > right may be part of the bitmap or may be just not active. > Back in tty1, - i'll have to copy this manually - so approx: > > Using authority file /... > Writing authority file /... > [repeat 2 lines] > > XFree86 Version 4.3.0 (Debian 4.3.0-0ds4 ... > Release Date: 18 March 2003 > X Protocol Version 11, Revision 0... > Build Operating System Linux 2.4.21-pre5 i686 [ELF] > ... > Module Loader present > OS Kernel: Linux version 2.4.21-xfs ([EMAIL PROTECTED]) (gcc ver... > (==) Log file: ... > (==) Using Config file... > Skipping "usr/X11R6/lib/modules/extensions/libGLcore.a:m_debug_clip.o": No > symbols found > [4 more similar] > Warning font renderer for ".pcf" already registered at priority 0 > [9 more similar] > > and that is it. Nothing more moves. > ps -ef shows 5 or 6 processes that are or may be tty1: >-sh >/bin/sh >xinit >/usr/bin/X11/X -dpi 100 -nolisten tcp >WindowMaker >ssh-agent x-window-manager > > what more info can I usefully get? > > -- > richard > > > > I don't think the apt HOWTO is relevant, as this is an X problem. > > > > You must be aware by now that almost _no_ *nix problem requires a > > complete reinstall. You're thinking like a Windows user. :) > > > > T -- Stephen Touset <[EMAIL PROTECTED]> -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: rms on debian
David Fokkema wrote: On Sun, Aug 17, 2003 at 03:19:24PM -0400, Peter S Galbraith wrote: David Fokkema <[EMAIL PROTECTED]> wrote: TRB: What about Debian GNU/Linux, which by default does not install any non-free software? RMS: Non-free programs are not officially considered "part of Debian", but Debian does distribute them. The Debian web site describes non-free programs, and their ftp server distributes them. That's why we don't have links to their site on www.gnu.org. GNU/LinEx is better because it does not distribute or recommend those programs. I don't know. I just installed vrms and checked my system: No non-free packages installed on sirius! rms would be proud. Until we actually go ahead and move GFDL'ed manual's to non-free. Then, ironically, `virtual RMS' will complain that you have non-free FSF manuals installed! :-) I wish RMS was as concerned about free documentation as he is about free software. Could you elaborate a bit on that? What's the problem with the GNU _Free_ Documentation License? David Don't judge a book by it's cover. Stephen Touset -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: root login How ???
Under gdmsetup, you can allow root logins and remote root logins through GDM via the Security tab. On Fri, 2003-08-22 at 23:27, Jeff Elkins wrote: > On Friday 22 August 2003 10:28 pm, Robert Storey wrote: > >> I found out that after debian 3.0r1 installed, > >> try to login as root and passwd at the GNOME Desktop Manager > >> and it said " The system administrator is not allowed to login form > >> this screen" > >> How to login with root account to run some utility from graphic mode > >> ??? > > > >I know that most Debian users disdain the idea of ever logging in as root, > > but there are a few times when I've found it useful (I'll probably get > > flamed to a crisp for saying that). The best way I know of to log in as > > root is to kill gdm and log in using text mode. You can always start the > > graphics with "startx". > > > >regards, > >Robert > > I agree. I don't run X as root normally, but it's been useful a time or two. > > I don't have a gnome/gdm setup currently, but IIRC, there is a gdm > configuration file (gdm.conf?) analogous to kdmrc that includes a parameter > to allow/disallow root logins. By default it's turned off. > > Jeff Elkins > > -- Stephen Touset <[EMAIL PROTECTED]> signature.asc Description: This is a digitally signed message part
Re: convert RedHat to Debian
You will not get many, if any replies off list. The point of a list is that when someone answers a question, they don't have to answer it again--that answer is archived. Do not ask people to send email off list, unless there are extremely special circumstances which you have specified clearly. Otherwise, most people are going to simply ignore you, and your problem will not get solved. Subscribe to the list, and I will gladly give you the answer. On Sun, 2003-08-24 at 19:06, Z F wrote: > Hello everybody, > > I have a RedHat box and I would like to convert it to Debian. Is it > possible to do it without reformatting the hard drive? If yes, how. > > I am not on the list so please reply to me directly. > > Thank you very much for your kind help > > Lazar > > __ > Do you Yahoo!? > Yahoo! SiteBuilder - Free, easy-to-use web site design software > http://sitebuilder.yahoo.com -- Stephen Touset <[EMAIL PROTECTED]> signature.asc Description: This is a digitally signed message part
Problems with xserver-xfree86
On Debian sid, I've been trying to install xfree86. After installation (including xserver-xfree86, xserver-common, and xfree86-common), it seems there was a problem creating /etc/X11/XF86Config-4, /etc/X11/X, and /etc/X11/Xwrapper.config. Long story short, they're not there. I've tried doing a dpkg-reconfigure with no luck--the files are still not being installed. Is this a bug in the package, a change of policy, or should these files be provided by another package? -- Stephen Touset <[EMAIL PROTECTED]> signature.asc Description: This is a digitally signed message part
Re: Re: Problems with xserver-xfree86
There is no Xfree config file anywhere in the system that I can tell. When I install X, it tells me that it hasn't found the files, so it won't update them. The problem is that they're just not being created. -- Stephen Touset <[EMAIL PROTECTED]> signature.asc Description: This is a digitally signed message part
Re: Re: Problems with xserver-xfree86
Unfortunately, it's impossible at this time to hook the machine up to the 'net to be able to email transcripts, otherwise I'd do this. I've made sure to have xserver-common and xfree86-common install, especially since they're dependencies. So I know it's not due to that. In fact, I've also made sure to install all of the Suggests packages (and Recommends) to make sure none of the files are in there. On Tue, 2003-08-26 at 01:28, Ross Boylan wrote: > It would probably be helpful to give the exact transcript of what you > tried to do: which packages did you install with which tool, and what > error message did you get. > > The statement that there is no existing config file can simply be > informational, but of course the necessary file should be created at > the end of the install. > > Offhand, the only way I would think something could go wrong would be > if you installed some part of X without installing all its required > packages; the basic configuration files are setup in some base > packages that are shared by many of the other X packages > (xfree86-common, I think). > > On Tue, Aug 26, 2003 at 12:52:00AM -0400, Stephen Touset wrote: > > There is no Xfree config file anywhere in the system that I can tell. > > When I install X, it tells me that it hasn't found the files, so it > > won't update them. The problem is that they're just not being created. > > -- Stephen Touset <[EMAIL PROTECTED]> -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Which release
I personally use Unstable. Don't be afraid of the name--"unstable" refers to the package list itself, in that it changes frequently with the addition and removal of packages. The software itself is stable, for the most part. I have only had a few problems in the year or so I've been using Unstable, and those were minor. Joey Harrison wrote: I am installing Debian on a Internet-capable computer for experimentation and a way to continue learning about Linux without the limitations of a live CD. Should I use stable, testing, or unstable? My preference would be to have the most recent packages, but also somewhat tested, so should I use testing? Thanks. = --Joey-- __ Do you Yahoo!? Yahoo! SiteBuilder - Free, easy-to-use web site design software http://sitebuilder.yahoo.com -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Problems with ddclient
In using ddclient, I've been trying to edit the configuration to allow me to have a backup mx. After reading the help and man pages, I added the following lines to my /etc/ddclient.conf file: backupmx=yes mx=smtp.domain.tld I'm currently using the dyndns2 protocol to make the changes. However, even after adding this into the configuration file, a check on dyndns (as well as using dig) confirms that no secondary mx has been set. I've tried reversing the order of the options as well as using an IP address rather than DNS alias, all to no avail. Does anyone have a solution for this? Stephen Touset -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Italicized fonts in latest GNOME release, Debian unstable
I'm not sure whether or not this has to do with GNOME (it probably doesn't...), but all my fonts have become italicized. Italics are now much more italicized, and normal fonts are slanted to the right. This has only occurred after my latest apt-get dist-upgrade. What's the problem and how do I fix it? =\ Stephen Touset signature.asc Description: This is a digitally signed message part
Print Preview not showing up in AbiWord
On my laptop, I'm getting a nice Print Preview function in AbiWord (which allows printing to a .pdf file, which I sorely need). Unfortunately, no matter what I do, I can't seem to get the button to appear on my desktop installation. I assume I'm missing packages of some sort, but I've been searching Google and lists.debian.org, but haven't found anything to help. I've achieved a temporary solution...that is, to install abiword-gnome (forcing it to install, since libgal-2.0-2 isn't in apt's database, and making a simlink from libgal-2.0-3 to libgal-2.0-2), but this is a nasty hack, and I was wondering if there was a *real* solution to fixing the problem. I'm running Sid, with the latest updates, and have AbiWord 1.9.0 cvs, and all of the libgnomeprint2.2 packages. -- Stephen Touset <[EMAIL PROTECTED]> signature.asc Description: This is a digitally signed message part
Florida! (was Re: Knoppix ISO image is 715MB - How Do I burn it ?)
Frank Gevaerts wrote: > On Sun, Jun 08, 2003 at 12:41:33PM -0400, lists1 wrote: > >> On Thursday 05 June 2003 23:10, Paul Johnson wrote: >> >>> On Thu, Jun 05, 2003 at 03:41:59PM -0400, Mark L. Kahnt wrote: >>> Sounds like Florida, eh? >>> >>> >>> Not really. It's not Florida's fault that federal elections don't >>> believe in democracy, or the States wouldn't have the electoral >>> college to begin with. >> >> >> Hate to burst your bubble but the US government is not a democracy. It's a Republic. If you understood this, you wouldn't have made the above statement. And if you're in the US, you should know this. > > > > Why is it that Americans (the USA variety) like to invade countries to > install a "democracy" under an American leader, and whenever someone > points out some facts about their home country, they point out that they > themselves do not like democracy after all ? Name one "democracy" we've set up. I'll bet you my right knuckle that each and every one is a democracy in name only, and a republic in practice. >> >> btw, is the subject a stealth subject so you fly under the radar with the discussion? ;0) > > > > You could have changed it > > Frank > > I'll go ahead and do it. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Why isn't there a cron.hourly?
Jon Haugsand wrote: RedHat has the directory /etc/cron.hourly, but this is not present in debian. Why is that? Should think that clock synchronization is needed. Especially since most computer clocks drift with at least 5 second every day. Well, to be fair, you could always make an /etc/cron.hourly directory, create an entry in /etc/crontab to mimic the current ones in there (yet changing the timings, so as to be run hourly), and put your scripts in there. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
alias in .xsession
I'm trying to set up my .xsession to include an alias Unfortunately, the alias isn't created--when I run Eterm from the menu, it doesn't include the options. I'm positive that the file is being sourced, because the CVSROOT environment variable is being set correctly. How can I get the alias to apply to my Enlightenment session? -- [EMAIL PROTECTED]:~$ cat .xsession #!/bin/sh alias Eterm="/usr/bin/Eterm -t auto --trans -f rgb:dd/dd/dd" export CVSROOT=/home/stephen/Programs/CVS xscreensaver-command -exit xscreensaver & mount /mnt/win_c mount /mnt/win_d exec /usr/bin/enlightenment ---------- Stephen Touset -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: alias in .xsession
Bob Proulx wrote: Stephen Touset wrote: I'm trying to set up my .xsession to include an alias Unfortunately, the alias isn't created--when I run Eterm from the menu, it doesn't include the options. I'm positive that the file is being sourced, because the CVSROOT environment variable is being set correctly. How can I get the alias to apply to my Enlightenment session? Environment variables are inherited from parent to child. Since your terminals are all children of the parent xsession you can pass environment variables down. But you can't pass aliases to children. Instead you need to put them in your .bashrc or other shell environment file. Bob This won't work, though. I'm trying to get it so that any attempt to execute Eterm from within the Enlightenment menus will execute the alias. This is so that I can add in an entry for (for example) Eterm -e gdb, without having to retype all the other tags for it each time I make another entry. Not to mention, if I ever decide to change the options, I'll only have to change it in one place, not in sixty. For now, I just did an "export ETERM="-t auto --trans -f rgb:dd/dd/dd", and I use "Eterm $ETERM" in all the menu files. Stephen Touset -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: sudo su gives root without prompting for a password
On Sun, 2003-12-07 at 19:33, Benedict Verheyen wrote: > Hi, > > i recently removed the SUID bit from /bin/su. > The permissions now look like this: -rwxr-x--- > Now i can just type "sudo su" to become root and no password > is asked. Previously i needed to type the root password > when using su. As a normal user, i now cannot run su anymore > which is ok for me. > The permissions of sudo are: -rwsr-x--- > My /etc/sudoers file looks like this: > root ALL=(ALL)ALL > benedict ALL= NOPASSWD: /usr/bin/find, /bin/cpio, > /home/benedict/scripts/backup, /bin/echo, PASSWD: ALL > > The entries with NOPASSWD are because of a backup script. > So why don't i need to type a password for running "sudo su". > It just doesn't feel right the way it's now. > > Thanks, > Benedict > I'm not an expert on sudo, but I believe sudo will only ask for your password when running a binary. Also, it will only ask for the password the first time. Therefore, if you run (for instance) `sudo find`, and type in your password, the next time you run sudo, there will be no password prompt from then on. Now, if you run `sudo su`, sudo will forego asking your password, and run "su" as root. When root runs su, su does not ask for a password (as defined in the default PAM su configuration in Debian). As a result, running `sudo su` will give you passwordless root access, as long as "su" is listed in the /etc/sudoers file. Try entering "!/usr/bin/su" in the /etc/sudoers file. This should deny the use of "su" through "sudo". However, this provides nearly no security--it would be trivial to execute `sudo ln -s /usr/bin/su /home/me/gimmeroot && sudo /home/me/gimmeroot`. My suggestion? If being able to use "su" without a password gives you the heebie-jeebies (as well it should), then be far more restrictive in what you allow in /etc/sudoers. After all, if you're just going to allow complete access with "sudo", you might as well just use "su". -- Stephen Touset <[EMAIL PROTECTED]> signature.asc Description: This is a digitally signed message part
Re: sudo su gives root without prompting for a password
On Tue, 2003-12-09 at 09:16, Benedict Verheyen wrote: > > On Sun, 2003-12-07 at 19:33, Stephen Touset wrote: > > > My suggestion? If being able to use "su" without a password gives you > > the heebie-jeebies (as well it should), then be far more restrictive in > > what you allow in /etc/sudoers. After all, if you're just going to allow > > complete access with "sudo", you might as well just use "su". > > Well, that's my problem: i don't know how i could tighten this some more > My /etc/sudoers file looks like this: >root ALL=(ALL)ALL >benedict ALL= NOPASSWD: /usr/bin/find, /bin/cpio, > /home/benedict/scripts/backup, /bin/echo, PASSWD: ALL Yes, but *benedict's* password--not root's. Also, the way sudo is designed, it will only ask you your own password once (until you close the shell). If you want to tighten it, remove the "PASSWD: ALL" portion. What that clause says is essentially, "Allow the user to run any command as root, as long as his password was specified to sudo at least once in the current shell." If you do want the functionality of being able to sudo any command (you're using sudo just so benedict can execute find, cpio, echo, and backup passwordless), then your current setup should be alright. If someone were to theoretically get into benedict's account, and attempt to use sudo to execute commands as root, he would still be required to enter your password at least once. > For my regular user only the commands find, cpio, backip and echo are > allowed without a password. To execute the other commands a password is > needed. > The only way i can see right now to tighten this is to remove the (ALL)ALL > from root and specify what commands can be run there. > Or am i seeing this wrong? I have to admit i'm confused about this. > Sudo seems to give easier access to root as opposed to when i didn't have > it installed and used su to become root to install/manage things. > > Any suggestions or references to docs showing how to tighten things up > with sudo are welcome. I don't know any off the top of my head. However, what I said above should suffice. The offending part is the "PASSWD: ALL" clause. > Thanks, > Benedict -- Stephen Touset <[EMAIL PROTECTED]> signature.asc Description: This is a digitally signed message part
Re: LDAP on Sarge trouble
On Wed, 2004-10-27 at 20:50 +0100, Joe wrote: > I'm getting this error with ldapadd -v run on localhost (default > port): > > ldap_bind: Can't contact LDAP server (81) I won't be able to say for certain until tomorrow, but I believe that's because you're not attempting to use simple authentication (the -x flag), and ldap(search|add|delete) use SASL authentication by default. Try the -x flag and let me know what happens. -- Stephen Touset <[EMAIL PROTECTED]> signature.asc Description: This is a digitally signed message part
Re: List of packages
On Wed, 2004-10-27 at 16:20 -0500, Hugo Vanwoerkom wrote: > Jim Hall wrote: > > On Sarge, is there a way to list every installed package? I don't think > > I need things like libs, just the package names. > > I've said this before, but dpkg -l gives you everything that is > installed, including the libs. > > The only way of knowing "what you installed" is by keeping a list > yourself. E.g. apt-get install x-window-system gets you tons of things, > but all you installed was x-window-system. dpkg --get-selections | tr "\t" " " | cut -d\ -f1 | grep -v lib | wc -l This should work as a rough tool for the job. The "grep -v lib" probably tosses some non-lib packages, but should suffice for most uses. -- Stephen Touset <[EMAIL PROTECTED]> signature.asc Description: This is a digitally signed message part
Re: help; Is C soon to be the programming lang. of the past?
On Wed, 2004-07-07 at 21:40, God bless us all, everyone. wrote: > And, oh, btw, that disclaimer you have down there: > I am not sure I was the intended reciepient. > Not sure how to delete this message from the newsgroup. BTW, since you > are posting a newsgroup, your message really is dumb. Even worse, Debian archives all emails on its publicly available website. *cringes and waits for law enforcement to crack down* -- Stephen Touset <[EMAIL PROTECTED]> signature.asc Description: This is a digitally signed message part
Re: printer icon
On Fri, 2004-07-09 at 12:45, Bill & Shirley Borel wrote: > Have lost the printer icon on the tool bar. Thanks. Keep us updated. -- Stephen Touset <[EMAIL PROTECTED]> signature.asc Description: This is a digitally signed message part
Detaching and reattaching a process to different terminals?
I'm running a program for a research study I'm involved in, but I've run into a slight problem. I executed it on an xterm (and it's been running for a few days now, so I don't want to stop it mid-calculation), but today is a workday. At work, I use two screens on my laptop. The only way to accomplish this is to restart X so Xinerama can take effect. Unfortunately, this will also have the nasty side effect of killing execution. Is there any way to detach the pid from that terminal and reattach it to one of the consoles? Or background it in a way where it will survive X restarting? It's not critical, but it's something I've wondered before, and which will come in extremely handy today. -- Stephen Touset <[EMAIL PROTECTED]> signature.asc Description: This is a digitally signed message part
PAM: remembering previous passwords
As part of a requirement for a security certification my company is attempting to acquire, we have to ensure that employees do not recycle their previous four passwords. I need to find a way to accomplish this in PAM. I am fully aware that the pam_unix.so module has a flag 'remember=n', which can be used for just this purpsoe. Here's the problem: we're using LDAP authentication for all clients. The PAM System Administrators Guide alludes to there being a way to have pam_cracklib.so check the /etc/security/opasswd file for old user passwords, but it doesn't go any deeper than that. And that's where I've reached a dead end. Are there any modules specifically for this purpose? Does pam_ldap.so have the feature built into it, somehow? Is there any other way to accomplish what I'm trying to do? -- Stephen Touset <[EMAIL PROTECTED]> signature.asc Description: This is a digitally signed message part
Re: Home button not working in shell
Jacob Friis Larsen wrote: How do I make the Home button work as expected? Depress it as normal. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Home button not working in shell
Jacob Friis Larsen wrote: How do I make the Home button work as expected? Depress it as normal. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Home button not working in shell
On Wed, 2004-08-04 at 23:07, Kent West wrote: > I believe Stephen, by providing almost no information, is pointing out > that you have provided almost no information. That was the intent. However, looking over the email a little, it seems I may have jumped the gun a little. Although more information would have been a good idea, I believe the original poster was referring to the Home button on the keyboard. Still, the ambiguity of the Home button could have used some clarification. Not to mention, we don't know what shell the guy is using, or how it is acting unexpectedly. -- Stephen Touset <[EMAIL PROTECTED]> signature.asc Description: This is a digitally signed message part
Re: Corrupt file during install
If the system is connected to the internet, you can change your apt source to a Debian server, rather than the CDs. This also has the benefit of giving you the most updated packages in the release. John Godish wrote: I'm trying to do an install from the CD's. During base system install getting this error from CD #1 file:/instmnt/pool/main/n/nano/nano_1.0.6-3_i386.deb was corrupt Do I need an replacement CD or can I get past this some other way? thanks -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Grouping groups
I'm trying to set up a website on a Debian server in which anyone in one group (www-data) can modify all files under /var/www, but anyone in another specified group (management) can only modify /var/www/updates and /var/www/files. My idea is to create the management group, which will possess read-write capabilities on /var/www/files and /var/www/updates. The most intuitive way to proceed from here would be to specify that www-data "contains" the management group. Thus, anyone of group www-data is also automatically of group management, but anyone in group management is not automatically in www-data. However, I'm not sure if it's possible to specify group inheritances in /etc/groups. Is it possible? Will I just have to manually add the certain users to www-data and management? Or is there another way. I'd like to avoid using ext3 ACLs, by the way. -- Stephen Touset <[EMAIL PROTECTED]> "What do you mean Veritas is screwy? Veritas is the shit." -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: keeping Debian up to date and checking the version number
On Tue, 2003-12-30 at 20:19, wynn wrote: > On Tue, Dec 30, 2003 at 11:19:24PM +, Adam Barton wrote: > > Guys, > what about us 'non-guys'? > > wynn > [EMAIL PROTECTED] Rowr, and now I have your email address too! -- Stephen Touset <[EMAIL PROTECTED]> signature.asc Description: This is a digitally signed message part
Re: keeping Debian up to date and checking the version number
On Tue, 2003-12-30 at 18:19, Adam Barton wrote: > Are the packages verified that they are indeed a genuine debian update? Others have answered your other questions, so I figured I'd hit this. Yes, they are. While each individual package isn't signed, there's a Release file downloaded with apt-get update which is. This signed release file contains md5 checksums of all the Packages files, which contain information about the packages, including their md5s. -- Stephen Touset <[EMAIL PROTECTED]> signature.asc Description: This is a digitally signed message part
Problems w/ Debian firewall and Windows VPN
I've recently set up a firewall in our house, running Debian. It's using iptables to do packet filtering. When I installed it, my mother started having problems connecting through VPN to her company (MAPICS). The connection starts fine, but after 5-10 minutes, it disconnects. I do not have this problem connecting to other VPN servers (such as to my employer) using her computer, so I know this is specific to their system. Previously, we were using a Linksys router, and it worked fine. Now, my first idea was that the firewall was blocking a certain type of packet, thus causing the connection to be terminated. However, running tcpdump on the internal and external interfaces show that everything is passing through nicely. Of note is that every time, right before the disconnect, their VPN server sends a PPTP Echo-Request to her client. The response from her client is a TCP RST, and the connection is terminated. I have verified this repeatedly, and this is the case every time. However, there are dozens of other times during the connection where a PPTP Echo-Request is sent from their server, and her client responds with the correct PPTP Echo-Reply, and they respond with a TCP ACK on that reply. In other words, the echo handshake goes back and forth several times throughout the connection, correctly, and at one of them her client decides not to reply, and simply RST the connection. I've examined the packets containing the Request from both a completed handshake and from the terminated one, and they both appear to be identical, excluding sequence numbers and acknowledgment numbers. I'm attaching packet captures from ethereal in the libpcap format--one from the perspective of the internal interface, and one from the external. These are pre-filtered, so they contain *all* network traffic at the time, so I'm positive that nothing that could identify the problem is left out. The VPN server is 208.217.85.63, and her client is 192.168.1.102. It's over a PPTP connection, with a Windows-based VPN server--I'm guessing Windows 2000 Server. If anyone could help me discover what the problem is, or point me in the direction of someone who could, I would be *extremely* grateful. -- Stephen Touset <[EMAIL PROTECTED]> "What do you mean, 'Veritas is acting screwy'? Veritas is the shit!" signature.asc Description: This is a digitally signed message part
Re: Problems w/ Debian firewall and Windows VPN
On Thu, 2004-01-01 at 20:36, Adam Barton wrote: > I don't see the attachment... was it stripped by the list server or did > you forget ;) *slaps self* Edit: I attached the files to this email, but it seems the email was filtered by the list. I've uploaded them to https://touset.org/packets.ext and https://touset.org/packets.int. > Oh, and be aware that the captures may contain passwords if you captured > some SMTP or similar. You may want to change some passwords if this is > the case before posting the URL. Point taken. I've filtered out all miscellaneous traffic which might contain passwords. -- Stephen Touset <[EMAIL PROTECTED]> signature.asc Description: This is a digitally signed message part
Re: Problems w/ Debian firewall and Windows VPN
Probing around more, the last packet being sent is a TCP Zero Window packet. However, the few prior packets show its window being 65535. How can its window go from 65535 to zero that quickly? On Thu, 2004-01-01 at 19:53, Stephen Touset wrote: > I've recently set up a firewall in our house, running Debian. It's using > iptables to do packet filtering. When I installed it, my mother started > having problems connecting through VPN to her company (MAPICS). The > connection starts fine, but after 5-10 minutes, it disconnects. I do not > have this problem connecting to other VPN servers (such as to my > employer) using her computer, so I know this is specific to their > system. > > Previously, we were using a Linksys router, and it worked fine. > > Now, my first idea was that the firewall was blocking a certain type of > packet, thus causing the connection to be terminated. However, running > tcpdump on the internal and external interfaces show that everything is > passing through nicely. > > Of note is that every time, right before the disconnect, their VPN > server sends a PPTP Echo-Request to her client. The response from her > client is a TCP RST, and the connection is terminated. I have verified > this repeatedly, and this is the case every time. However, there are > dozens of other times during the connection where a PPTP Echo-Request is > sent from their server, and her client responds with the correct PPTP > Echo-Reply, and they respond with a TCP ACK on that reply. In other > words, the echo handshake goes back and forth several times throughout > the connection, correctly, and at one of them her client decides not to > reply, and simply RST the connection. I've examined the packets > containing the Request from both a completed handshake and from the > terminated one, and they both appear to be identical, excluding sequence > numbers and acknowledgment numbers. > > I'm attaching packet captures from ethereal in the libpcap format--one > from the perspective of the internal interface, and one from the > external. These are pre-filtered, so they contain *all* network traffic > at the time, so I'm positive that nothing that could identify the > problem is left out. The VPN server is 208.217.85.63, and her client is > 192.168.1.102. It's over a PPTP connection, with a Windows-based VPN > server--I'm guessing Windows 2000 Server. > > If anyone could help me discover what the problem is, or point me in the > direction of someone who could, I would be *extremely* grateful. -- Stephen Touset <[EMAIL PROTECTED]> signature.asc Description: This is a digitally signed message part
RE: Problems w/ Linux firewall and Windows VPN
8.1.102 255.255.255.255127.0.0.1 127.0.0.1 1 192.168.1.255 255.255.255.255192.168.1.102 192.168.1.102 1 224.0.0.0224.0.0.0192.168.1.102 192.168.1.102 1 255.255.255.255 255.255.255.255192.168.1.102 192.168.1.102 1 Default Gateway: 192.168.1.1 === Persistent Routes: None C:\Documents and Settings\stouset> > Hope this helps somehow. Either way, the packets going to the 10 > network > via the internet is definately something wrong you want to have > fixed... I appreciate the help. I'm CCing it back to the Debian list, so others will have a chance to see this. -- Stephen Touset <[EMAIL PROTECTED]> signature.asc Description: This is a digitally signed message part
Re: iptables & syslog help
On Wed, 2004-01-07 at 22:11, Keith Stephen Dunwoody wrote: > Hi, > > I'm trying to log some packets from iptables, but they're showing up on > the currently active console as well as in the syslog. By default, the kernel prints all error messages higher than a certain priority to the console. iptables logs at this priority. I circumvented the display of these messages at the console by firing up klogd with the parameter -c 4 specified in its init script. -- Stephen Touset <[EMAIL PROTECTED]> signature.asc Description: This is a digitally signed message part
2.6 kernel and nvidia drivers
I have yet to find out if the Debian-provided nvidia-kernel drivers work correctly with the 2.6 kernel, and I'd really like to know before I dive headlong into the new kernel version. Anyone know? -- Stephen Touset <[EMAIL PROTECTED]> signature.asc Description: This is a digitally signed message part
Re: Unacceptable HDD performance
Agreed. To the original poster, try using hdparm. You can use it to turn on DMA to the device (which seems like the most obvious source of the problem to me) by using `hdparm -d1 /dev/`. If that doesn't fix the problem, use hdparm to run a test on the hard drive, and also use it to output the hard drive's current settings. Post 'em on the list then. On Sat, 2004-01-17 at 15:17, Ryan Mackay wrote: > hdparm <- a miracle of a program > > man hdparm will tell all aswell. Enabling DMA would be a good place to > start (hdparm -d 1 device). > > To test the throughput your hard drives are getting try hdparm -Tt device > > I assume device will be /dev/hda in this case > -- > Cheers, > rinmak <[EMAIL PROTECTED]> -- Stephen Touset <[EMAIL PROTECTED]> signature.asc Description: This is a digitally signed message part
Re: how to have a gpg public key?
Sorry to be brusque, but: man gpg Louie Miranda wrote: How can i have a gpg public key? -- Thank you, Louie Miranda ([EMAIL PROTECTED]) -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: system has started e-mailing me, cron demon
David selby wrote: Hello, I have started to get the following message e-mailed to me at night. Envelope-to: [EMAIL PROTECTED] From: [EMAIL PROTECTED] (Cron Daemon) To: [EMAIL PROTECTED] Subject: Cron <[EMAIL PROTECTED]> test -x /etc/init.d/anacron && /etc/init.d/anacron start +2>/dev/null X-Cron-Env: X-Cron-Env: X-Cron-Env: X-Cron-Env: X-Cron-Env: Starting anac(h)ronistic cron: anacron. It seems to be saying anacron has executed, which is fine & expected ... This seems to have started since I made changes to /etc/anacrontab, making cron.daily run at 1:05 am. # /etc/anacrontab: configuration file for anacron # See anacron(8) and anacrontab(5) for details. SHELL=/bin/sh PATH=/sbin:/bin:/usr/sbin:/usr/bin MAILTO=web # These replace cron's entries 1 5 cron.daily nice run-parts --report /etc/cron.daily 7 10 cron.weekly nice run-parts --report /etc/cron.weekly 30 15 cron.monthly nice run-parts --report /etc/cron.monthly Its not reporting an error, I'm unsure why it is mailing me ? Dave You might wanna chance those lines to "nice -19 run-parts --report /etc/cron.". I don't know if that's the problem, but it might be ;) Also, check in your cron directories to see if there's a crontab entry that restarts crontab. That's what's likely to be causing the problem. Crontab emails you any output generated by the crontab entries, and that would indicate at some point, cron is being (re)started. Do something like a "grep -r "cron" `find -name "/etc/cron*" -print`" (without quotes, of course). Stephen Touset -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: local user halt
Bruce Sass wrote: On Mon, 28 Jul 2003, matt zagrabelny wrote: is there a method for allowing (besides root) local users (ordinary users sitting at the keyboard of the computer) the ability to use the shutdown command? i dont want those logged in via ssh or other remote method having this capability. CTRL-ALT-DEL see /etc/inittab And if you have CTRL+ALT+DEL pointing to /bin/false like a sane sysadmin, using sudo is a good alternative ;) Stephen Touset -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: system has started e-mailing me, cron demon
Did you try restarting anacron when you made the /etc/anacrontab changes? The reason it's working now is probably because you added that line into /etc/cron.d/anacron, and it restarted the next time it came across that. Try taking out /etc/cron.d/anacron and see if it still works. Stephen Touset David selby wrote: You might wanna chance those lines to "nice -19 run-parts --report /etc/cron.". I don't know if that's the problem, but it might be ;) Also, check in your cron directories to see if there's a crontab entry that restarts crontab. That's what's likely to be causing the problem. Crontab emails you any output generated by the crontab entries, and that would indicate at some point, cron is being (re)started. Do something like a "grep -r "cron" `find -name "/etc/cron*" -print`" (without quotes, of course). Stephen Touset "nice -19 run-parts --report /etc/cron." ran with no messages, however the comment about cron being (re)started is interesting. My /etc/anacrontab ... contains # /etc/anacrontab: configuration file for anacron # See anacron(8) and anacrontab(5) for details. SHELL=/bin/sh PATH=/sbin:/bin:/usr/sbin:/usr/bin MAILTO=web # These replace cron's entries 1 5 cron.daily nice run-parts --report /etc/cron.daily 7 10 cron.weekly nice run-parts --report /etc/cron.weekly 30 15 cron.monthly nice run-parts --report /etc/cron.monthly While my /etc/cron.d/anacron ... contains # /etc/cron.d/anacron: crontab entries for the anacron package SHELL=/bin/sh PATH=/usr/local/sbin:/usr/local/bin:/sbin:/bin:/usr/sbin:/usr/bin MAILTO=web 30 1* * * roottest -x /etc/init.d/anacron && /etc/init.d/anacron start 2>/dev/ null anacron (END) I just wanted /etc/cron.daily to run at 1am ish, changing /etc/anacrontab did not change the time, the time changed when I ammended /etc/cron.d/anacron, and the e-mails started ! I also introduced MAILTO=web, ! These scripts do seem to be duplicate, I doubt that /etc/anacrontab runs, since changing its cron.daily did nothing. I am going to remove MAILTO=web from /etc/cron.d/anacron & see what happens tonight ! Dave -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Samba LDAP Help
I'm still going through the same hassle you are. Let me tell you, it's not simple at all. webmin-ldap-useradmin helped with some of the setup, but it was only a small step in the right direction. Right now, I'm working on a fork of it that should simplify the backend administration. However, as far as LDAP and Samba configuration, all you should really need to do is specify the ldap options within Samba (passdb backend, ldap admin dn, ldap user dn, ldap group dn, etc--these should all be in various howtos), and use smbpasswd to generate the password for the LDAP admin dn (check smbpasswd --help; there's a flag to do this) and it should be "set up" to do this. However, the tricky part is adding machines, users, and groups easily and transparently, as well as setting up slapd to do indexing on the correct parameters -- Stephen Touset <[EMAIL PROTECTED]> [EMAIL PROTECTED] wrote: How is debian's samba package configured? Does it come with acl support or LDAP back-end support? How does someone find out what a package was precompiled with. I was reading a web site on how to set tup samba with LDAP and finding a good how to that steps a newbie though how to set up LDAP is hard to find. They mentioned smb-ldap utils where could you find these packages for debian. I did a apt-cache search for smb and LDAP and found no packages that resembled these. I need to get samba with LDAP working but no luck so far. I am running debian sarge. How stable is that. It is a great system. No crashing yet. Far better then redhats fedora or any of these other distro's. Thanks debian guys. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Basic, but what the hell am I doing wrong here?
I'm working on a fairly large program for a class, and now every time I
run it, it segfaults.
I've secluded the part that seems to cause the problems, and wrote a
small file called test.cc, which contains a minimal implementation fo
the code that brings up the segfault. It's attached. The code simply
opens a file then reads it until empty.
When I compile this with g++-3.3 (1:3.3.3-9), I get the following output
from strace:
open("test.cc", O_RDONLY) = 3
fstat64(3, {st_mode=S_IFREG|0644, st_size=218, ...}) = 0
mmap2(NULL, 4096, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1,
0) = 0x40018000
read(3, "#include \n\nusing namesp"..., 8192) = 218
read(3, "", 4096) = 0
--- SIGSEGV (Segmentation fault) @ 0 (0) ---
+++ killed by SIGSEGV +++
I've opened and read files hundreds of times in my life. What gives now?
--
Stephen Touset <[EMAIL PROTECTED]>
#include
using namespace std;
int main(void)
{
ifstream fin("test.cc");
char* str;
if (!fin.is_open())
{
exit(1);
}
while (!fin.eof())
{
fin.getline(str, 80);
}
fin.close();
return 0;
}
signature.asc
Description: This is a digitally signed message part
Re: Basic, but what the hell am I doing wrong here?
On Thu, 2004-06-10 at 21:42, William Ballard wrote: > On Thu, Jun 10, 2004 at 09:36:04PM -0400, Stephen Touset wrote: > > read(3, "#include \n\nusing namesp"..., 8192) = 218 > > read(3, "", 4096) = 0 > > --- SIGSEGV (Segmentation fault) @ 0 (0) --- > > +++ killed by SIGSEGV +++ > > Shouldn't you get symbols for read() and step into that? > And step into the kernel if that is opaque to you? > > Looks like you are stepping over the NULL pointer being dereferenced in > read() somewhere. But when it comes to it, I'm using ifstream correctly aren't I? This shouldn't be something that deep--it's either something in my code (extremely probable) or a very bad bug in the C library (extremely unlikely) or kernel handling. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Two-part question
I'm trying to set up a new email server for my company. We've got significant LDAP infrastructure that we wish to use for this purpose, but I'm having a few problems with the implementation. First of which, users' home directories cannot be relied upon to exist. I hoped to solve this problem by using pam_mkhomedir.so as a session module for Courier, but it seems to be disregarding it. My intent was to have the user's home directory created for them when they log in over POP3 or IMAP. Another problems stems from the fact that Postfix drops mail in /var/spool/mail by default, and Courier expects them in the home directory. I'd have no qualms with reconfiguring Postfix to drop mail in the user's home directory in Maildir format, except once again I run into the problem that users' home directories cannot be relied upon to already exist. My preferred solution would be to have Postfix drop new mails into /var/spool/mail, as usual. Upon login, Courier creates the user's home directory if need be. From there, it would feed out the user's emails much like uw-imapd does: show messages from the mail directory in the user's home directory, and if there are mails in the spool copy them into the home directory mailbox as well. I'd accept using uw-imapd, except that it doesn't seem to respect PAM's session component either (with regard to creating the home directory via pam_mkhomedir.so), although I've determined that it does follow PAM auth and PAM account chains. I've considered just having all emails stored permanently in /var/spool/mail, under a maildir like Courier expects, but then I run into the problem that Courier looks at the user's home directory, which is specified in our LDAP database. We cannot remap every user's home directory to /var/spool/mail/username. Does anyone have a suggestion for where I can go from here? It looks like I may be running out of options. -- Stephen Touset <[EMAIL PROTECTED]> signature.asc Description: This is a digitally signed message part
Re: Two-part question
On Sat, 2004-06-26 at 03:50, Darik Horn wrote: > > I hoped to solve this problem by using pam_mkhomedir.so as a session > > module for Courier, but it seems to be disregarding it. > > IIRC, Courier tries to change into the home directory before calling the > pam_mkhomedir.so module. (Or somesuch.) I found the offending line of code (or so I believe), which was in the authlib/success.c source file. Basically, a function is called during the authentication process (for any of the courier auth modules) that sets up environment varaibles and other housekeeping items). As part of this, it attempts to change into the user's home directory. I tried a patch, but it did not seem to work. I'm still looking into it. > > Does anyone have a suggestion for where I can go from here? It looks > > like I may be running out of options. > > I looked at the Courier code, and decided to script home directory > creation with a cron job instead of fixing the PAM routines. A cron job? That seems rather inefficient, as well as tough, since you would have to poll the entire list of users every (hour|day), and check it against current home directories. > Alternatively, you could wrap your local delivery agent with a script > like this: > >#!/bin/ash >if [ ! -e "$HOME" ] >then > # With an appropriate sudo configuration... > sudo cp -r /etc/skel "$HOME" > maildirmake "$HOME/Maildir" >fi >exec MyLDA "$@" ># eof > > If you use a lightweight shell like ash, then the overhead will be > tolerable. YMMV. True. Unfortunately, with reasonably high volume, won't this end up forking thousands of ash threads? Or would ash only have one copy residing in memory? If that's true, there could be extremely little of a performance hit, since it would never leave from resident memory, and never be forced to be loaded back in. -- Stephen Touset <[EMAIL PROTECTED]> signature.asc Description: This is a digitally signed message part
Re: Two-part question
On Sat, 2004-06-26 at 03:50, Darik Horn wrote: > Alternatively, you could wrap your local delivery agent with a script > like this: > >#!/bin/ash >if [ ! -e "$HOME" ] >then > # With an appropriate sudo configuration... > sudo cp -r /etc/skel "$HOME" > maildirmake "$HOME/Maildir" >fi >exec MyLDA "$@" ># eof > > If you use a lightweight shell like ash, then the overhead will be > tolerable. YMMV. Tried this. It's working except for one thing: the mail isn't actually delivered. Could it possibly be that mail is being piped on standard input, but standard input is never making it to procmail via the exec at the end? -- Stephen Touset <[EMAIL PROTECTED]> signature.asc Description: This is a digitally signed message part
Re: Two-part question
On Sat, 2004-06-26 at 11:27, Stephen Touset wrote: > On Sat, 2004-06-26 at 03:50, Darik Horn wrote: > > Alternatively, you could wrap your local delivery agent with a script > > like this: > > > >#!/bin/ash > >if [ ! -e "$HOME" ] > >then > > # With an appropriate sudo configuration... > > sudo cp -r /etc/skel "$HOME" > > maildirmake "$HOME/Maildir" > >fi > >exec MyLDA "$@" > ># eof > > > > If you use a lightweight shell like ash, then the overhead will be > > tolerable. YMMV. > > Tried this. It's working except for one thing: the mail isn't actually > delivered. Could it possibly be that mail is being piped on standard > input, but standard input is never making it to procmail via the exec at > the end? This appears to be a stickier solution than at first glance. The trick is writing a sudoers file that allows the use of /bin/cp for a user's own home directory, but nothing more. AFAIK, this is not possible. Even worse, permissions must then be changed on the user's home directory to correctly match his/her own. Try writing another sudoers line for that... -- Stephen Touset <[EMAIL PROTECTED]> signature.asc Description: This is a digitally signed message part
Re: Two-part question
On Sat, 2004-06-26 at 11:52, John Summerfield wrote: > Who owns the directory etc this creates? Who is the cp command being > run as? > > Are the sudo and maildirmake in the right order? The problem was with permissions. However, I'm going through hell right now trying to set up a sudoers file that will allow users to create their own home directories. The key problem is creating it with *their* permissions. If I can just be able to create a directory with specified permissions, *without* having the utility change the permissions on an already made directory, I'll be happy. Problems so far: /bin/install -o user does the trick, but if you call it on a directory that already exists, it has its owner changed to user. /bin/mkdir has no way of specifying the owner, and I'm NOT going to allow every user to do a `sudo chown` for obvious reasons. -- Stephen Touset <[EMAIL PROTECTED]> signature.asc Description: This is a digitally signed message part
Re: Two-part question
On Sat, 2004-06-26 at 12:18, Stephen Touset wrote: > On Sat, 2004-06-26 at 11:52, John Summerfield wrote: > > Who owns the directory etc this creates? Who is the cp command being > > run as? > > > > Are the sudo and maildirmake in the right order? > > The problem was with permissions. However, I'm going through hell right > now trying to set up a sudoers file that will allow users to create > their own home directories. The key problem is creating it with *their* > permissions. If I can just be able to create a directory with specified > permissions, *without* having the utility change the permissions on an > already made directory, I'll be happy. > > Problems so far: > > /bin/install -o user does the trick, but if you call it on a directory > that already exists, it has its owner changed to user. > > /bin/mkdir has no way of specifying the owner, and I'm NOT going to > allow every user to do a `sudo chown` for obvious reasons. I believe I found a solution. I created a file /usr/bin/create_home, and allowed it to be executed via sudo. Its contents are printed below. [EMAIL PROTECTED]:~$ cat /usr/bin/create_home > #!/bin/dash > > su - $1 -c exit I believe this to be the optimal solution for several reasons: * No messy /etc/sudoers with possible security leaks * Not allowing users access to dangerous utilities such as chown, install, chgrp, etc. * Uses already existing PAM infrastructure, so if home directory structure, pam_mkhomedir, etc is changed, it doesn't have to be done in the script as well. If anyone sees a problem with this solution, let me know. -- Stephen Touset <[EMAIL PROTECTED]> signature.asc Description: This is a digitally signed message part
LDAP and sudo playing nicely
Is there any way in Debian to get Sudo to check an LDAP server rather than the /etc/sudoers file? I've checked Google, but nothing indicates towards Debian having this support. I've also tried some obvious guesses, like putting a sudoers line in /etc/nsswitch.conf, all to no avail. Can this be done? Before I forget, this is on Sarge. -- Stephen Touset <[EMAIL PROTECTED]> signature.asc Description: This is a digitally signed message part
Re: LICENSE/ SERIAL NUMBERS for INSTALLATION
On Fri, 2004-03-26 at 15:16, John Hasler wrote: > Kate Rance writes: > > > ... or immediately returning this document to sender by electronic mail. > > Return a document via electronic mail? ROFL! What could possibly be the > point in that? I wondered that, too. What in God's name are people smoking nowadays to come up with this stuff? I've seen bullshit legal boilerplate on emails from a lot of small companies (including those from the CEO of a company I work for), and I can't help but giggle at how silly the whole premise is. -- Stephen Touset <[EMAIL PROTECTED]> signature.asc Description: This is a digitally signed message part
Re: LICENSE/ SERIAL NUMBERS for INSTALLATION
On Sat, 2004-03-27 at 03:31, Paul Johnson wrote: > Stephen Touset <[EMAIL PROTECTED]> writes: > > > I've seen bullshit legal boilerplate on emails from a lot of small > > companies (including those from the CEO of a company I work for), and I > > can't help but giggle at how silly the whole premise is. > > Ever explain it to them why it's so silly? Yes, actually. Unfortunately, the only response I've ever gotten is something akin to, "Every other executive (of small companies that never seem to go anywhere) does it. It's an industry standard." The argument that it's literally 100% bullshit and not binding in any way (just because you say it's illegal to read the email doesn't actually mean it is) seems to be completely lost on them. I haven't yet tried the approach of telling them what kind of impression it gives others, though. -- Stephen Touset <[EMAIL PROTECTED]> signature.asc Description: This is a digitally signed message part
Re: What's the easiest way to move some files in a directory tree?
Use unison to copy the mp3s, then use find + rm to remove the originals. On Fri, 2004-02-13 at 13:15, Darin Strait wrote: > Hello. > > I have a large directory tree, with scores of end nodes. Each end node in the > tree has a number of files whose names end either in .mp3 or in .flac. > > I would like to copy the directory structure of the tree, but I want to move > files that end in .mp3 to the new tree and leave the .flac files behind. > > What is the easiest way to do that? I was looking at unision, but unison seems > to be copy-only; there doesn't seem to be move the flac files. > > Thanks in advance, > -darin -- Stephen Touset <[EMAIL PROTECTED]> signature.asc Description: This is a digitally signed message part
Re: PAM : passwords with at least 6 chars
Install libpam-cracklib, and change your /etc/pam.d/common-password file to the following: password requiredpam_cracklib.so retry=3 minlen=6 password requiredpam_unix.so md5 This sets up a chain in which pam_cracklib is called (a password-strength checker), requiring that the password be at least six characters and pass a dictionary check. Then it calls the normal pam_unix library to set the password as an MD5 hash in /etc/passwd. On Thu, 2004-04-15 at 08:05, Rory Campbell-Lange wrote: > I'm using testing which seems to have a somewhat different PAM setup > that before. > > I'd like to know how to set a minimum password length to 6 characters. > Also, is it possible to fail 'passwd' if the password fails the > dictionary check? > > Thanks for any help. > Rory > -- > Rory Campbell-Lange > <[EMAIL PROTECTED]> > -- Stephen Touset <[EMAIL PROTECTED]> signature.asc Description: This is a digitally signed message part
Re: configuring PAM
Google for "Linux PAM System Administrators Guide" or something akin to
that.
On Thu, 2004-04-15 at 18:23, Will Trillich wrote:
> On Thu, Apr 15, 2004 at 01:22:59PM -0400, Stephen Touset wrote:
> > Install libpam-cracklib, and change your /etc/pam.d/common-password file
> > to the following:
> >
> > password requiredpam_cracklib.so retry=3 minlen=6
> > password requiredpam_unix.so md5
> >
> > This sets up a chain in which pam_cracklib is called (a
> > password-strength checker), requiring that the password be at least six
> > characters and pass a dictionary check. Then it calls the normal
> > pam_unix library to set the password as an MD5 hash in /etc/passwd.
>
> any chance you could craft a newbie howto on configuring pam? a
> couple of examples, how to interpret the manpages...
>
> :)
>
> my take is that there's a layer of "you're-expected-to-already-
> understand" between where i am and what the documentation
> covers. i'm probably just being dim, but if i had a better
> flashlight...
>
> --
> I use Debian/GNU Linux version 3.0;
> Linux boss 2.4.18-bf2.4 #1 Son Apr 14 09:53:28 CEST 2002 i586 unknown
>
> DEBIAN NEWBIE TIP #41 from Colin Watson <[EMAIL PROTECTED]>
> :
> Do you need to MASSAGE A BUNCH OF FILE NAMES? There's more
> than one way to skin a cat -- here are some examples of
> canonicalizing file names to lower-case:
> mmv \* \#l1
> rename 'tr/A-Z/a-z/' *
> zsh -c 'for x in *; do mv "$x" "${x:l}"; done'
> (The "rename" command is a standard perl script, by the way.)
>
> Also see http://newbieDoc.sourceForge.net/ ...
--
Stephen Touset <[EMAIL PROTECTED]>
signature.asc
Description: This is a digitally signed message part
Re: new net install works, but sound is LOUD
Rodney D. Myers wrote: Just got my friends new computer working, using the net install. Everything is working as advertised, except that the sound in KDE is very LOUD. Before I left last night, I used aumix to mute, adjust, just plain abuse the sounds system. No affect It had no affect on xmms, nor from the command line playing wavs or mp3s. What other selections, suggestions are there? Thanks Did you try turning down the volume using amixer? -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
