Re: LXDE Display Coordination
On Wed, 11 Nov 2015 16:45:19 +0100 wrote: Hello to...@tuxteam.de, >I'm rather with "post here" -- if we are setting up a vote :-) I'm all in favour of making it easy on the reader (not having to click multiple links is a Good Thing), but that needs to be moderated by a degree of reason: I've seen some really silly behaviour - for example, 570kB images to relay information that could be conveyed in less than 10 words. The irony there being that it takes longer to create the image and attach it to an email than it does to just type the error message into the MUA's editor. Also, not everybody has an always on unlimited internet account. For those people, every byte counts. So let's not forget their needs. -- Regards _ / ) "The blindingly obvious is / _)radnever immediately apparent" I hit the ground, boy have I arrived! The History Of The World (Part 1) - The Damned pgpCBE6iBEee8.pgp Description: OpenPGP digital signature
Re: Persistence
On Wed, 11 Nov 2015 10:51:37 -0500 Matilda Fins wrote: Hello Matilda, Cc'ing, as it seems you may not be subscribed to list. >Is there a way to create a Debian live usb flash drive with >persistence? If so, how? At least two replies exist in the thread where you asked the same question yesterday. The first of which is readable here; https://lists.debian.org/debian-user/2015/11/msg00356.html -- Regards _ / ) "The blindingly obvious is / _)radnever immediately apparent" Junk floats on polluted water Hong Kong Garden - Siouxsie & The Banshees pgpRZGZBS1TaG.pgp Description: OpenPGP digital signature
Re: SSHD AllowUsers not limiting users anymore
2015/11/12 7:20 "Paulo Roberto" : > > Dear list, > > I need some help. > > > After upgrading the openssh-server package to the version: > > ii openssh-server1:6.9p1-2+b1 amd64 secure shell (SSH) server, for secure access from remote machines > > The option AllowUsers of /etc/ssh/sshd_config stopped working. > Any user can log through ssh even not present in this option. AllowUsers assumes you have set the default to deny, I think. If that got changed when you merged settings, it would result in what you are seeing. If you need more information, I tend to use the archives at marc.info for the openssh and openbsd lists. Check the archives before you post to the lists. > Before the upgrade everything worked fine. > > I tested the same sshd_config file in my OpenBSD box and there everything worked as expected. > > OpenSSH_6.7, LibreSSL 2.0 > > Could it be a BUG? > > Below follow the sshd debug and my /etc/ssh/sshd_config > > Thanks in advance for your time and help. > > > # /usr/sbin/sshd -D -f /etc/ssh/sshd_config -d > debug1: sshd version OpenSSH_6.9, OpenSSL 1.0.2d 9 Jul 2015 > debug1: private host key #0: ssh-rsa SHA256:* > debug1: private host key #1: ssh-dss SHA256:* > debug1: private host key #2: ecdsa-sha2-nistp521 SHA256:* > debug1: rexec_argv[0]='/usr/sbin/sshd' > debug1: rexec_argv[1]='-D' > debug1: rexec_argv[2]='-f' > debug1: rexec_argv[3]='/etc/ssh/sshd_config' > debug1: rexec_argv[4]='-d' > Set /proc/self/oom_score_adj from 0 to -1000 > debug1: Bind to port 22 on 0.0.0.0. > Server listening on 0.0.0.0 port 22. > debug1: Bind to port 22 on ::. > Server listening on :: port 22. > debug1: Server will not fork when running in debugging mode. > debug1: rexec start in 5 out 5 newsock 5 pipe -1 sock 8 > debug1: inetd sockets after dupping: 3, 3 > Connection from 200.137.21.34 port 53540 on 192.168.1.3 port 22 > debug1: Client protocol version 2.0; client software version OpenSSH_6.6.1p1 Ubuntu-2ubuntu2 > debug1: match: OpenSSH_6.6.1p1 Ubuntu-2ubuntu2 pat OpenSSH_6.6.1* compat 0x0400 > debug1: Enabling compatibility mode for protocol 2.0 > debug1: Local version string SSH-2.0-OpenSSH_6.9p1 Debian-2+b1 > debug1: permanently_set_uid: 112/65534 [preauth] > debug1: list_hostkey_types: ssh-rsa,ssh-dss,ecdsa-sha2-nistp521 [preauth] > debug1: SSH2_MSG_KEXINIT sent [preauth] > debug1: SSH2_MSG_KEXINIT received [preauth] > debug1: kex: client->server aes256-...@openssh.com none [preauth] > debug1: kex: server->client aes256-...@openssh.com none [preauth] > debug1: expecting SSH2_MSG_KEX_ECDH_INIT [preauth] > debug1: SSH2_MSG_NEWKEYS sent [preauth] > debug1: expecting SSH2_MSG_NEWKEYS [preauth] > debug1: SSH2_MSG_NEWKEYS received [preauth] > debug1: KEX done [preauth] > debug1: userauth-request for user user1 service ssh-connection method none [preauth] > debug1: attempt 0 failures 0 [preauth] > debug1: user user1 does not match group list hg-users at line 93 > debug1: PAM: initializing for "user1" > debug1: PAM: setting PAM_RHOST to "200.137.21.34" > debug1: PAM: setting PAM_TTY to "ssh" > debug1: userauth-request for user user1 service ssh-connection method publickey [preauth] > debug1: attempt 1 failures 0 [preauth] > debug1: test whether pkalg/pkblob are acceptable [preauth] > debug1: temporarily_use_uid: 1000/1000 (e=0/0) > debug1: trying public key file /home/user1/.ssh/authorized_keys > debug1: fd 4 clearing O_NONBLOCK > debug1: restore_uid: 0/0 > debug1: temporarily_use_uid: 1000/1000 (e=0/0) > debug1: trying public key file /home/user1/.ssh/authorized_keys2 > debug1: Could not open authorized keys '/home/user1/.ssh/authorized_keys2': No such file or directory > debug1: restore_uid: 0/0 > Failed publickey for user1 from 200.137.21.34 port 53540 ssh2: RSA SHA256:*** > debug1: userauth-request for user user1 service ssh-connection method password [preauth] > debug1: attempt 2 failures 1 [preauth] > debug1: PAM: password authentication accepted for user1 > debug1: do_pam_account: called > Accepted password for user1 from 200.137.21.34 port 53540 ssh2 > debug1: monitor_child_preauth: user1 has been authenticated by privileged process > debug1: monitor_read_log: child log fd closed > debug1: PAM: establishing credentials > User child is on pid 13122 > debug1: SELinux support disabled > debug1: PAM: establishing credentials > debug1: permanently_set_uid: 1000/1000 > debug1: ssh_packet_set_postauth: called > debug1: Entering interactive session for SSH2. > debug1: server_init_dispatch_20 > debug1: server_input_channel_open: ctype session rchan 0 win 1048576 max 16384 > debug1: input_session_request > debug1: channel 0: new [server-session] > debug1: session_new: session 0 > debug1: session_open: channel 0 > debug1: session_open: session 0: link with channel 0 > debug1: server_input_channel_open: confirm session > debug1: server_input_global_request: rtype no-more-sessi
soundcard appearing as device, but not working
Dear Debian team, I have a motherboard integrated sound card identified as lspci 00:1f.3 Audio device: Intel Corporation Device a170 (rev 31) Debian 8.2 (linux 3.16.0-4-amd64) seems to recognize it and loads several sound modules: lsmod | grep snd | cut -f 1 -d' ' snd_hda_codec_hdmi snd_hda_codec_realtek snd_hda_codec_generic snd_hda_intel snd_hda_controller snd_hda_codec snd_hwdep snd_pcm snd_timer snd soundcore (but no alsa modules: lsmod | grep -i alsa shows nil and manually modprobe-ing them changes nothing) and the sound system seems ok: cat /proc/asound/pcm 00-00: ALC1150 Analog : ALC1150 Analog : playback 1 : capture 1 00-01: ALC1150 Digital : ALC1150 Digital : playback 1 00-02: ALC1150 Alt Analog : ALC1150 Alt Analog : capture 1 00-03: HDMI 0 : HDMI 0 : playback 1 yet, nothing plays (analog output) and it is not a hardware problem; the system is a dualboot one and in win10 it works perfectly (sounding like “windows-have-the-correct-drivers” and reporting itself as "Realtec High Definition Audio") any idea if I can do anything about it? Any realistic suggestion is welcomed and greatly appreciated thanks for your time tand read
Re: soundcard appearing as device, but not working
Le duodi 22 brumaire, an CCXXIV, tand read a écrit : > (but no alsa modules: lsmod | grep -i alsa shows nil and The ALSA modules are called snd-*, you already observed they are loaded. > any idea if I can do anything about it? Any realistic > suggestion is welcomed and greatly appreciated Uninstall anything related to PULSE that you can (libraries can stay, the server must absolutely go), and then use aplay -D hw:X,Y to make your tests, it gives the error message without muddling things with automagic workarounds. Regards, -- Nicolas George signature.asc Description: Digital signature
Re: LXDE Display Coordination
On Thu, Nov 12, 2015 at 08:28:31AM +, Brad Rogers wrote: > On Wed, 11 Nov 2015 16:45:19 +0100 > wrote: > > Hello to...@tuxteam.de, > > >I'm rather with "post here" -- if we are setting up a vote :-) > > I'm all in favour of making it easy on the reader (not having to click > multiple links is a Good Thing), but that needs to be moderated by a > degree of reason: I've seen some really silly behaviour - for example, > 570kB images to relay information that could be conveyed in less than 10 > words. Yeah, that's ridiculous. > Also, not everybody has an always on unlimited internet account. For > those people, every byte counts. So let's not forget their needs. I'm not. Are you suggesting that a person who sends a 570kB file without a second thought, is going to bother using pastebin? Another point I can think of, is if a person with a limited internet account downloads an email but the link points to a 404, do you think they're going to be pleased? I personally would go WTF, what's the point of having the mailing list archived at all! Come on guys, lets not throw common sense out the window. It's fine to post logs and configuration files to the mailing list, it's been happening, like forever, no need to change it now. -- "If you're not careful, the newspapers will have you hating the people who are being oppressed, and loving the people who are doing the oppressing." --- Malcolm X
Re: How to install Debian on 3TB drive.
On Thu, Nov 12, 2015 at 12:21:15PM +0500, Muhammad Yousuf Khan wrote: Dear All, I have 3TBx2 drives and want to install debian on them as RAID1. i know rest of the thing. i have been creating software raid on less then 2TB drives for years but now since HD size is growing as per the market trend i need to go with it. Both drives are detected in the manual partition menu of Debian Jessi setup process. when i try to create bigger partition it give me error like this partition length of sectors exceeds the msdos-partition-table-imposed maximum of xxx i know this is happening because of MBR limitation. therefore i need your help. can you guys please guide me how can i create bigger partition while installing Debian. Easiest way would be i install smaller drive and create bigger partition with gdisk . but i do not want this i only have 3TB drives and want to install Debian on top of it and also want to make Debian to boot from the drives. i know the RAID part but missing part is How to create GPT partition during installation. Any help would be highly appreciated. Thanks, Yousuf https://www.gnu.org/software/grub/manual/grub.html#GPT states how to do this. Basically, you need to partition your drives with a GPT, then create a tiny (~1MB) partition called the BIOS Boot Partition. Details are in the above link for how to mark the partition as the BIOS Boot Partition. You can then install grub to this partition. -- For more information, please reread. signature.asc Description: PGP signature
Re: soundcard appearing as device, but not working
Have you tried to use "alsamixer"? It gives some control over the volume and muting of the different output/input channels/devices. Regards, jvp.
Trimming posts (was ... Re: SSHD AllowUsers not limiting users anymore)
On Thu, Nov 12, 2015 at 07:25:49PM +0900, Joel Rees wrote: > 2015/11/12 7:20 "Paulo Roberto" : > > > > Dear list, > > > > I need some help. > > > > > > After upgrading the openssh-server package to the version: > > > > ii openssh-server1:6.9p1-2+b1 > amd64 secure shell (SSH) server, for secure access from > remote machines > > > > The option AllowUsers of /etc/ssh/sshd_config stopped working. > > Any user can log through ssh even not present in this option. > > AllowUsers assumes you have set the default to deny, I think. If that got > changed when you merged settings, it would result in what you are seeing. > > If you need more information, I tend to use the archives at marc.info for > the openssh and openbsd lists. Check the archives before you post to the > lists. [230+ lines snipped!!] Hey, come on people, please trim your posts! What surprises me is someone complaining about a posted log file, but seems fine with untrimmed replies. Using gmail is not an excuse, I've seen sensible replies from gmail users. -- "If you're not careful, the newspapers will have you hating the people who are being oppressed, and loving the people who are doing the oppressing." --- Malcolm X
Re: LXDE Display Coordination
On Thursday 12 November 2015 08:28:31 Brad Rogers wrote: > Also, not everybody has an always on unlimited internet account. For > those people, every byte counts. So let's not forget their needs. So, as Chris said, let's all try to snip and do it well. But if the full conf file is needed now in order to trouble shoot the problem, it will be needed by whoever finds the thread in the archives. And I have snipped too much here. I have not mastered the art of good snipping. Lisi
Re: Xorg reconfigure on keyboard/VGA screen connect with systemd?
Hello martin f krafft. I'm not an expert on the topic but will try to help fill in some info which might be useful for you. On Thu, Nov 12, 2015 at 06:49:00PM +1300, martin f krafft wrote: > Hello, > > Can I use systemd to automatically run scripts as the owner of an > X session when a USB keyboard or a VGA screen are connected to the > local machine? Or what other mechanism would you use? As far as I'm aware there's no "production ready" solution for this yet (in Debian). > > In the past, doing so automatically would involve some sort of hook > in /etc (invoked as root), which would then have to /bin/su to the > user (hoping it'd even know to whom), import the Xauthority and then > run the command. What a hack. You probably want to use something like this still, but please beware that in testing/unstable X is now running without root privilegies normally (unless you use a Display Manager which still starts X as root or you use the xserver-xorg-legacy package that was introduced for those who want the old behaviour back). This probably only simplifies your task by removing some steps from your hack. > > systemd's integrates with everything desktop-ey, so I am led to > believe it should be possible to do better nowadays. > > How? Does anyone have an example? I believe there are plans to make it possible to handle "user services" in similar fashion to how systemd handles system services. If you want to experiment with this, then looking at the arch wiki is (as usual) probably a good start: https://wiki.archlinux.org/index.php/Systemd/User If you do, an equivalent page on the Debian wiki would be awesome! > > Or if systemd is (still) not the right tool for the task, are there > more modern approaches people use? > > Thanks, HTH. Regards, Andreas Henriksson
Are there packages that modify iptables rules?
Hi, are there packages that modify the system's iptables rules? Cheers, Patrick
Re: Are there packages that modify iptables rules?
Patrick Schleizer wrote: > are there packages that modify the system's iptables rules? fail2ban miniupnpd Grüße, Sven. -- Sigmentation fault. Core dumped.
How do packages that modify iptables rules prevent race conditions?
Hi, as I just learned on the mailing list, that at least the packages fail2ban and miniupnpd [and most likely arno-iptables-firewall also] modify iptables rules... Is there a chance for race conditions? I.e. two packages trying to add iptables rules at the same time and thereby failing to do so? What is the proper mechanism to add iptables rules [for packages] to avoid such race conditions? Is using 'iptables --wait' sufficient or something else? Cheers, Patrick
Re: soundcard appearing as device, but not working
On 11/12/2015 06:05 AM, Nicolas George wrote: Le duodi 22 brumaire, an CCXXIV, tand read a écrit : (but no alsa modules: lsmod | grep -i alsa shows nil and The ALSA modules are called snd-*, you already observed they are loaded. any idea if I can do anything about it? Any realistic suggestion is welcomed and greatly appreciated Uninstall anything related to PULSE that you can (libraries can stay, the server must absolutely go), and then use aplay -D hw:X,Y to make your tests, it gives the error message without muddling things with automagic workarounds. The OP might just need to use alsamixer to unmute something. If alsa is not configured properly, pulse doesn't stand a chance. Ric -- My father, Victor Moore (Vic) used to say: "There are two Great Sins in the world... ..the Sin of Ignorance, and the Sin of Stupidity. Only the former may be overcome." R.I.P. Dad. http://linuxcounter.net/user/44256.html
Re: SSHD AllowUsers not limiting users anymore
On Wed, 2015-11-11 at 20:20 -0200, Paulo Roberto wrote: > The option AllowUsers of /etc/ssh/sshd_config stopped working. I did a small check, and it still works here, as expected... anything special with your PAM? Are you sure that you checked on the right hosts with the right sshd_config in place? Or could user1 be a synonym to the allowed one (i.e. same UID)?) Cheers, Chris. smime.p7s Description: S/MIME cryptographic signature
Re: Xorg reconfigure on keyboard/VGA screen connect with systemd?
On Thu, Nov 12, 2015 at 18:49:00 +1300, martin f krafft wrote: > Hello, > > Can I use systemd to automatically run scripts as the owner of an > X session when a USB keyboard or a VGA screen are connected to the > local machine? Or what other mechanism would you use? > It should be easy enough to write an X client listening for DeviceNotify (for new input devices) or ConfigureNotify (for output changes) on the root window. gnome-settings-daemon has a "hotplug-command" under org.gnome.settings-daemon.peripherals.input-devices in its settings that can do the former at least. Cheers, Julien signature.asc Description: PGP signature
jessie/kde: o,ly root can read usb sticks
Hello, under wheezy i had no problem mounting usb keys with dolphin and reading their content. Under jessie only root can do so (and the mount point dynamically created under /media is owned by root indeed). Can someone suggest a remedy ?
Re: SSHD AllowUsers not limiting users anymore
Hi Chris, I'm not aware of anything special in my PAM configuration, I think It is still using the default configs. user1 is a complete different user than any other, It has its unique user id. If a create a brand new user, the same problem happens. I could say I'm using the correct /etc/ssh/sshd_config because other changes to the file are read. To be sure, as you can see at my last e-mail, I passed the -f command line option to run sshd. The DenyUsers option is not working as well. I tried it with user1 and it does not block the user. Below follow my /etc/pam.d/sshd, if you need any other file, please, let me know. Thanks again for your help. # PAM configuration for the Secure Shell service # Standard Un*x authentication. @include common-auth # Disallow non-root logins when /etc/nologin exists. accountrequired pam_nologin.so # Uncomment and edit /etc/security/access.conf if you need to set complex # access limits that are hard to express in sshd_config. # account required pam_access.so # Standard Un*x authorization. @include common-account # SELinux needs to be the first session rule. This ensures that any # lingering context has been cleared. Without this it is possible that a # module could execute code in the wrong domain. session [success=ok ignore=ignore module_unknown=ignore default=bad] pam_selinux.so close # Set the loginuid process attribute. sessionrequired pam_loginuid.so # Create a new session keyring. sessionoptional pam_keyinit.so force revoke # Standard Un*x session setup and teardown. @include common-session # Print the message of the day upon successful login. # This includes a dynamically generated part from /run/motd.dynamic # and a static (admin-editable) part from /etc/motd. sessionoptional pam_motd.so motd=/run/motd.dynamic sessionoptional pam_motd.so noupdate # Print the status of the user's mailbox upon successful login. sessionoptional pam_mail.so standard noenv # [1] # Set up user limits from /etc/security/limits.conf. sessionrequired pam_limits.so # Read environment variables from /etc/environment and # /etc/security/pam_env.conf. sessionrequired pam_env.so # [1] # In Debian 4.0 (etch), locale-related environment variables were moved to # /etc/default/locale, so read that as well. sessionrequired pam_env.so user_readenv=1 envfile=/etc/default/locale # SELinux needs to intervene at login time to ensure that the process starts # in the proper default security context. Only sessions which are intended # to run in the user's context should be run after this. session [success=ok ignore=ignore module_unknown=ignore default=bad] pam_selinux.so open # Standard Un*x password updating. @include common-password On Thu, Nov 12, 2015 at 12:34 PM, Christoph Anton Mitterer < cales...@scientia.net> wrote: > On Wed, 2015-11-11 at 20:20 -0200, Paulo Roberto wrote: > > The option AllowUsers of /etc/ssh/sshd_config stopped working. > I did a small check, and it still works here, as expected... anything > special with your PAM? Are you sure that you checked on the right hosts > with the right sshd_config in place? Or could user1 be a synonym to the > allowed one (i.e. same UID)?) > > Cheers, > Chris.
Re: How do packages that modify iptables rules prevent race conditions?
I think that the best solution would be for the script to construct a single iptables command string and then run it. -- John Hasler jhas...@newsguy.com Elmwood, WI USA
Re: Ransomware meets Linux - on the command line!
On 11/11/2015 10:24 PM, Cindy-Sue Causey wrote: [...] > Brian Krebs of Krebs On Security had > something on ransomware and Linux, just not labeled Ransm-C or > anything: > > http://krebsonsecurity.com/2015/11/ransomware-now-gunning-for-your-web-sites/ > > IF I'm understanding correctly, he appears to have updated that > article with a *potential* way to beat it via a *potential* > vulnerability at least until the perpetrators upgrade their own > tactics, anyway. > > I like what Brian's been doing. I can cognitively understand a LOT of > what he writes about. He's caught SlashDot's eye a time or two, too. > > Adding another keyword here, Linux.Decoder.1, which Brian says was a > name dubbed by "Russian antivirus and security firm Dr.Web". It may or > may not be the same as the other, but sounds like it works > similar'ISH. > > Next stop is to pop over to a group called BlindWebbers. I'd seen > Brian's email subject line earlier and thought instantly of them, just > didn't get around to opening it then. The guy in Brian's article makes > it sound like it's a little time consuming and still has incidental > glitches afterwards. > > That's presumably coming from someone with no visual disabilities. The > difficulty level of getting one's website back would understandably > rise relative to one's ability or lack thereof to actually see what's > going on within the file hierarchy. AND apparently each single > file that reportedly stands to potentially gather random bits AFTER > the files have been decrypted. As a user, I too, find Krebs informative. Also notable was this recent Washington Post article about Linus Torvalds and Linux security: http://www.washingtonpost.com/sf/business/2015/11/05/net-of-insecurity-the-kernel-of-the-argument/ "Fast, flexible and free, Linux is taking over the online world. But there is growing unease about security weaknesses." Regards, Ralph signature.asc Description: OpenPGP digital signature
Re: How do packages that modify iptables rules prevent race conditions?
Patrick Schleizer wrote: > as I just learned on the mailing list, that at least the packages > fail2ban and miniupnpd [and most likely arno-iptables-firewall also] > modify iptables rules... > Is there a chance for race conditions? I.e. two packages trying to add > iptables rules at the same time and thereby failing to do so? fail2ban und miniupnpd create their own chains and a rule to jump to that personal chain on startup. Subsequent rules are only ever added to that personal chain. This effectivly avoids any race with different rules inserted at different places of the ruleset. Grüße, Sven. -- Sigmentation fault. Core dumped.
Re: How do packages that modify iptables rules prevent race conditions?
Patrick Schleizer a écrit : > > as I just learned on the mailing list, that at least the packages > fail2ban and miniupnpd [and most likely arno-iptables-firewall also] > modify iptables rules... Firewall managers such as ufw, shorewall, firestarter... Custom iptables scripts. IDS such as portsentry. "Port knocking" daemons such as knockd. > Is there a chance for race conditions? Plenty. > I.e. two packages trying to add > iptables rules at the same time and thereby failing to do so? Yes, or mixing up their rules resulting in unpredictable results. > What is the proper mechanism to add iptables rules [for packages] to > avoid such race conditions? > > Is using 'iptables --wait' sufficient or something else? No it's not. You must also make sure that the rules created by each program don't disrupt the rules created by the others.
Re: How do packages that modify iptables rules prevent race conditions?
Le 12/11/2015 20:47, Pascal Hambourg a écrit : > Patrick Schleizer a écrit : >> as I just learned on the mailing list, that at least the packages >> fail2ban and miniupnpd [and most likely arno-iptables-firewall also] >> modify iptables rules... > Firewall managers such as ufw, shorewall, firestarter... > Custom iptables scripts. > IDS such as portsentry. > "Port knocking" daemons such as knockd. > >> Is there a chance for race conditions? > Plenty. > >> I.e. two packages trying to add >> iptables rules at the same time and thereby failing to do so? > Yes, or mixing up their rules resulting in unpredictable results. > >> What is the proper mechanism to add iptables rules [for packages] to >> avoid such race conditions? >> >> Is using 'iptables --wait' sufficient or something else? > No it's not. You must also make sure that the rules created by each > program don't disrupt the rules created by the others. > > For fail2ban I prefer to use ipset and only modify the blocked set without changing the rules themselves
Iceweasel + NoScript: Google search results href anomaly
I am running NoScript + Iceweasel, and I observed something weird. Consider a Google search result which has this "a href" value: https://www.google.com/url?q=https://en.wikipedia.org/wiki/Hello_(Adele_song)&sa=U&ved=0CCsQFjAIahUKEwjPuq3H34vJAhWDWhQKHW7eCbA&usg=AFQjCNHJRKExeuRwwdFmAKkJ6dH7qv_TeQ When I hover my mouse over it, the value instantly changes to https://en.wikipedia.org/wiki/Hello_%28Adele_song%29 This should be impossible with NoScript, nothing should be able to modify the DOM. Google is not white-listed. What's going on?
Re: How do packages that modify iptables rules prevent race conditions?
Patrick Schleizer writes: > I.e. two packages trying to add iptables rules at the same time and > thereby failing to do so? They can't do that as each call to iptables locks the table be operated on. Without -w iptables exits when it can't get the lock. With -w it waits. Pascal Hambourg writes: > Yes, or mixing up their rules resulting in unpredictable results. Yes, that could happen if the programs call iptables multiple times. Best that programs that manipulate the tables assemble their changes and install them all with a single call of iptables. Otherwise you could have short periods where an unintended ruleset is in effect (or the program could exit before it completes). Of course, you still might get surprises if you run two such programs, but why would you do that? If you have program that bypasses iptables you're on your own. -- John Hasler jhas...@newsguy.com Elmwood, WI USA
Can't start VM after latest kernel update: weird mount failure
After the recent kernel updates one of my virtual machines won't start. GRUB runs and messages indicate the kernel is loaded and the initial ramdisk is loading. Then it says it can't find the root device (identified by correct UUID, though it wouldn't be visible until the logical volumes are activated). In busybox the logical volumes are visible, but when I make a directory and attempt to mount to it I get mount: mounting /dev/markov02/root on r failed: No such file or directory. The same thing happens if I try to mount the boot partition (/dev/vda1). This is weird because both the device and the directory are present. I can change into the directory and create a file in it When I attach the virtual hard drives to another VM I have no problem mounting either the boot partition or the logical volume. I would appreciate any assistance figuring out what's going on or what I can do to correct it. If my initrd got corrupted, is there a way to regenerate it? Thanks. Ross Boylan Details: The host and guest are running Debian 7.9 wheezy. I have another wheezy VM that is fine, and a jessie VM that I used to read the virtual disks. The virtual disks look like this (vdc=vda on original vm; vdd=vdb on original): Model: Virtio Block Device (virtblk) Disk /dev/vdc: 21.0GB Sector size (logical/physical): 512B/512B Partition Table: msdos Disk Flags: Number Start End SizeType File system Flags 1 1049kB 256MB 255MB primary ext2 boot 2 257MB 21.0GB 20.7GB extended 5 257MB 21.0GB 20.7GB logicallvm Model: Virtio Block Device (virtblk) Disk /dev/vdd: 16.1GB Sector size (logical/physical): 512B/512B Partition Table: gpt Disk Flags: Number Start End SizeFile system Name Flags 1 10.5MB 16.1GB 16.1GB primary msftdata vdc5 and vdd1 are part of a volume group markov02 which includes the root file system and swap space. vdc1 appears to have /boot; the timestamps of its files indicate it was recently updated. Running using kvm under libvirt. The virtual disks are logical volumes on the host system. amd64 architecture.
RE: Reseller Email Marketing Services
Hi, I am following on my previous email. Please let me know your thoughts to acquire this database, so that I can fetch you counts and few samples for your review. Await for your response. Regards Andrea Perkins From: Andrea Perkins|Data base [mailto:andrea.perk...@leadsforbiz.net] Sent: Monday, November 02, 2015 11:04 AM To: 'debian-user@lists.debian.org' Subject: Reseller Email Marketing Services Hi, I understand that your company is involved into Email Marketing Services and I believe there are possible synergies of us working together. I'm writing to see if we can schedule a call sometime this week or next to discuss the opportunities of working together as Partner. We are a comprehensive data solutions provider, helping SMBs and large enterprises successfully manage data for marketing and communication. We provide with hand crafted, individual solutions to suit your business needs. We compile and maintain the 30 million US multi-channel business contacts with email addresses, 45 million Global multi-channel business contacts with email addresses and 210 million Consumer records with email addresses and over 300 demographic, lifestyle, interest, and transaction fields. We are a trusted partner to agencies, market research firms, direct marketing companies, marketing and advertising agencies, database management companies, and various other brokers and resellers worldwide. Our B2B databases include primary fields such as: contact name, business name, job title, mailing address, telephone number, fax number, website URL, SIC codes, Industry type and contact person deliverable email address? Search and download all the data that you need instantly by integrating our very simple API directly into your website or using our online B2B portal at no cost. Let me know of a convenient time for a call to discuss and explore other opportunities where can work as Partners. I look forward to hearing from you. Thank you and Regards, Andrea Perkins, Email: andrea.perk...@leadsforbiz.net Multichannel Prospect Lists | Email Appending | Email Verification & Validation | Contact Finder | 360 Degree Profiling | B2B Modeling | Tier 1/Tier 2 Real-time Tele-validation | Database If you no longer wish to receive our offers, send a message with the subject line "Leave out" and indicate your email address to be removed from our database
Re: LXDE Display Coordination
Felix, Thank you, that worked great. > This is expected as a result of the absence of any video config options on > kernel cmdline. I just wanted to confirm this is what was actually occurring. I made the xorg.conf to put in the configuration. But there is still no cmdline entry for this config. I input: lightdm restart and there was no change. So I rebooted and it worked.
Re: Can't start VM after latest kernel update: weird mount failure
I can get around the mount problem by explicitly specifying the filesystem type (e.g., mount -t ext2 /dev/vda1 somedir)--is that some limitation of busybox mount? I still don't know why the system is having trouble starting up. The recent kernel update included a fix for a KVM vunerability( https://security-tracker.debian.org/tracker/CVE-2015-5307). Perhaps that has something to do with it. Is there a way I can proceed by hand after I mount the proper file systems? Ross P.S. I also tried adding noresume to the options on grub's linux line; it didn't help. On Thu, Nov 12, 2015 at 1:57 PM, Ross Boylan wrote: > After the recent kernel updates one of my virtual machines won't start. > GRUB runs and messages indicate the kernel is loaded and the initial > ramdisk is loading. Then it says it can't find the root device (identified > by correct UUID, though it wouldn't be visible until the logical volumes > are activated). In busybox the logical volumes are visible, but when I > make a directory and attempt to mount to it I get > mount: mounting /dev/markov02/root on r failed: No such file or directory. > The same thing happens if I try to mount the boot partition (/dev/vda1). > This is weird because both the device and the directory are present. I > can change into the directory and create a file in it > > When I attach the virtual hard drives to another VM I have no problem > mounting either the boot partition or the logical volume. > > I would appreciate any assistance figuring out what's going on or what I > can do to correct it. > > If my initrd got corrupted, is there a way to regenerate it? > > Thanks. > Ross Boylan > > >
Re: i3 Window manager without any other desktop environment
Hello guys. Now I am facing another problem. Each time the system starts I am getting the console and I have to type 'startx' each time in order to launch i3. What can I do to automatically launch i3 whenever the system starts without passing through the console. On Wed, Nov 11, 2015 at 8:41 PM, Curt wrote: > On 2015-11-10, Dwijesh Gajadur wrote: > > > > Yes it worked. After installing Xorg and typing 'startx' , i3 session > > started. > > > > It really, really, really, really worked. > >
open .cvx format
Which package can be used to view this format. Thanks,
Re: open .cvx format
or which package can be used to convert to other format. I tried the imagemagick, $ convert a.cvx a.jpeg convert: no decode delegate for this image format `CVX' @ error/constitute.c/ReadImage/501. On Fri, Nov 13, 2015 at 3:29 PM, lina wrote: > Which package can be used to view this format. > > Thanks,
