Dear Debian users, contributors, and enthusiasts,
I have been working in IT, for more than twenty years, essentially Debian.
I tend to prefer non-computer related activities for the free time I have, therefore, I don't really contribute to
Debian, at least not directly.
Still, I have a persona
On 03/03/2024 14:06, Andy Smith wrote:
Hi,
On Sun, Mar 03, 2024 at 09:39:42AM +, Andre Rodier wrote:
I was checking the Debian domain, and noticed that it is DNSSEC compliant.
However, when I check "deb.debian.org", the DNS validation fails.
Things in the debian.org
On 03/03/2024 14:03, Max Nikulin wrote:
On 03/03/2024 16:39, Andre Rodier wrote:
Is there a stable domain we can use that doesn't rely on a CDN, please ?
https://www.debian.org/mirror/list
APT relies on GPG signed metadata, so DNSSEC is not necessary for
repositories.
Thanks, this
Hello,
I was checking the Debian domain, and noticed that it is DNSSEC compliant.
However, when I check "deb.debian.org", the DNS validation fails.
After checking the status using Verisign
(https://dnssec-debugger.verisignlabs.com/deb.debian.org), I understand
Debian is using a CDN (Content D
Hello,
I was checking the Debian domain, and noticed that it is DNSSEC compliant.
However, when I check "deb.debian.org", the DNS validation fails.
Is there any reason behind this, please ?
Thanks,
André Rodier.
On 21/02/2024 22:58, Jeffrey Walton wrote:
On Wed, Feb 21, 2024 at 5:47 PM Andre Rodier wrote:
[...]
A few years ago, I created a set of Ansible scripts to code what I was
already doing manually, so I could rebuild my server from scratch.
The solution is on GitHub, and while there was
On 21/02/2024 21:08, Michael Kjörling wrote:
On 21 Feb 2024 19:03 +, from an...@rodier.me (Andre Rodier):
- What is the best approach to check if there is any vulnerability in the
packages configuration ?
- Is there any service that could audit the deployment code or the
configuration files
Dear Debian community,
I love Debian, used it since Potato, both desktop and server, and I'm
not planning to change.
I have been using it to host personal servers, especially emails, since
about 20 years.
A few years ago, I created a set of Ansible scripts to code what I was
already doing
On Fri, 2023-12-08 at 19:11 -0500, Jeffrey Walton wrote:
> On Wed, Dec 6, 2023 at 7:36 AM Andre Rodier wrote:
> >
> > First, if this post is off-topic, feel free to give me other
> > mailing lists.
>
> The eevblog may be another place to ask. But be warned, the fol
Hello,
First, if this post is off-topic, feel free to give me other mailing lists.
I am looking for a device, like a small phone, supporting Debian. I just
need the following features:
- A small LCD screen, 4 inches max, to display letters and numbers, i.e.
can be black and white. Touch scre
On Sun, 2023-04-16 at 17:01 +0100, Andre Rodier wrote:
> Hi,
>
> Is there any desktop email client on Debian, that supports server side IMAP
> search, please ?
>
> I have an email server that support indexing attachment contents, and when I
> run a query from the command
Hi,
Is there any desktop email client on Debian, that supports server side IMAP
search, please ?
I have an email server that support indexing attachment contents, and when I
run a query from the command line using
doveadm search or even TELNET, it is returning the correct email indexes.
Howeve
Hello everyone,
Here my present for Christmas: a new version of HomeBox, the self hosted email
solution.
Feel free to drop comments, create issues, update the docs, etc.
I released this quickly before going on vacation, so you may find some issues.
However, this is mostly stable, and the code
Hi,
When installing nftables from scratch on debian, it creates an empty (almost)
file /etc/nftables.conf.
Of course, I had to modify the file to my needs, and I know it is not
overwritten by a package update.
Howerver, IMHO, it would be better to create an empty directory, for instance
/etc
Good morning, all.
Is there anyone around to help me to setup a transparent proxy on Debian,
please ?
I have tinyproxy running on my server, and I would like, with nftables,
to intercept any outbound web traffic (tcp ipv4.ipv6),
and to redirect to the proxy on 127.0.0.1:.
So far, I have se
Hello, all.
I have tinyproxy running on my server, and I would like, with nftables,
to intercept any outbound web traffic (tcp ipv4.ipv6), and to redirect
to the proxy on 127.0.0.1:.
So far, I have seen these examples online:
> ...
chain prerouting {
type nat hook prerouting priority
On Sat, 2022-12-03 at 12:09 -0700, Casey Deccio wrote:
>
> > On Dec 3, 2022, at 9:22 AM, Andre Rodier wrote:
> >
> > > ssh -o VerifyHostKeyDNS=yes main.homebox.world
> >
> > Yes, this is the default option in my ssh/config file.
> >
> > I tr
On Sat, 2022-12-03 at 09:19 -0700, Casey Deccio wrote:
> ssh -o VerifyHostKeyDNS=yes main.homebox.world
Yes, this is the default option in my ssh/config file.
I tried on the command line as well, but same result:
> ssh -o VerifyHostKeyDNS=yes main.homebox.world
> The authenticity of host 'main.h
On Sat, 2022-12-03 at 15:48 +, John Scott wrote:
> > Where am I making a mistake, please ?
>
> I think I know the problem. On the client machine, by default glibc
> doesn't indicate to applications that DNS records were signed via
> DNSSEC. This is because, how is glibc to know whether the DNS
Hello, all.
I have implemented DNSSEC successfully (apparently) on a test box
(using PowerDNS, btw). We can see the test here:
https://dnssec-debugger.verisignlabs.com/homebox.world
I have set my SSHFP records correctly (I think):
> dig +dnssec -t SSHFP main.homebox.world @1.1.1.1
20 matches
Mail list logo
