Re: (cmake) Could NOT find LibSoup: Found unsuitable version "" ...

[Anssi Saari]

Albretch Mueller  writes:

> ... Could NOT find LibSoup: Found unsuitable version "", but required
> is at least "2.54.0" (found LIBSOUP_INCLUDE_DIRS-NOTFOUND)

Hm. Debian Bullseye packages libsoup 2.4 so even if you had it installed
(and the development package too which has the stuff cmake looks for)
that test would still fail.

Maybe start with what it is you're trying to accomplish? Why do you want
to compile webkit2 yourself? In my experience compiling complex software
requires knowledge about many topics and tools and can be quite
frustrating and time consuming.

Re: Debian license issue

[Andrew M.A. Cater]

On Thu, Jun 02, 2022 at 10:44:45PM -0500, John Hasler wrote:
> Emanuel Berg writes:
> > OKAY SO THE "DISTRIBUTION" DON'T HAVE A "LICENSE"?
> 
> The distribution is a collection of pieces of software authored by a
> wide variety of individuals, groups, and organizations.  These authors
> have published their works under terms which allow Debian or any one
> else to redistribute them.  It would not make a lot of sense for Debian
> to attempt to apply some sort of license to the collection as a whole.
> -- 
> John Hasler 
> j...@sugarbit.com
> Elmwood, WI USA
>

All that being said, other distributions have attmepted to put a licence
on the whole distribution, not always consistently.

Red Hat had a copyright on their artwork etc. and required derivatives
to change their branding accordingly.

Almalinux - a CentOS derivative - has a GPL2 licence over everything, Rocky
Linux, which is essentially identical, is put out under a 3 clause BSD 
licence. Debian doesn't have an overall licence, as others have said,
and the trademarks are liberally licensed. [I'm not sure anyone has
used the bottle logo for a long time].

All the very best, as ever,

Andy Cater 

ssh-agent: I want to start using on all my remote hosts

[Tom Browder]

I have been using ssh for logging in to my remote hosts for many years, but
I have NOT been using ssh-agent.

I have checked all those hosts looking for the env var SSH_AGENT_SOCK which
one website says should be defined if the ssh-agent process is running, but
none have that defined.

Now I'm ready to start but I want to start with one host to make sure my
work flows aren't interrupted. Some questions:

1. Will starting the ssh-agent service interfere with my current ssh login
(using keys with NO passhrase).

2. Is there anything to do to start the service other than:

edit file /etc/ssh/sshd_config to uncomment

#AllowAgentForwarding yes

reboot

Thanks.

-Tom

Re: ssh-agent: I want to start using on all my remote hosts

[Tom Browder]

On Fri, Jun 3, 2022 at 09:43 Tom Browder  wrote:

> I have been using ssh for logging in to my remote hosts for many years,
> but I have NOT been using ssh-agent.
>
...

And edit file /etc/ssh/ssh_config to change

# ForwardAgent no

to

ForwardAgent yes

Then reboot.

-Tom

Problem with R and RStudio

[Stephen P. Molnar]

I have Debian Bullseye installed on my Linux platform and have installed 
the Debian Repository version of R, 4.0.4. and 
rstudio-2.22.02.3-49s-amd64.deb. Sudo was used and no changes to the 
installation directories were made. I should note that there were no 
warnings or error messages when installing the R packages and RStudio. I 
have installed the R and RStudio a number of time in the past and there 
have been no problems.


After finding that all attempts to install new packages with RStudio 
failed, I tried installing new packages with the R terminal - same 
result. The log files for both attempts to install ggplot2 are attached


There were no problems with downloading of the necessary packages, there 
are 'no file or directory errors'. I have no idea how to fix this.


Assistance will be much appreciated.

Thanks in advance.

--
Stephen P. Molnar, Ph.D.
www.molecular-modeling.net
614.312.7528 (c)
Skype:  smolnar1

#
# If you used AutoDock Vina in your work, please cite:  #
#   #
# O. Trott, A. J. Olson,#
# AutoDock Vina: improving the speed and accuracy of docking#
# with a new scoring function, efficient optimization and   #
# multithreading, Journal of Computational Chemistry 31 (2010)  #
# 455-461   #
#   #
# DOI 10.1002/jcc.21334 #
#   #
# Please see http://vina.scripps.edu for more information.  #
#

Detected 8 CPUs
Reading input ... #
# If you used AutoDock Vina in your work, please cite:  #
#   #
# O. Trott, A. J. Olson,#
# AutoDock Vina: improving the speed and accuracy of docking#
# with a new scoring function, efficient optimization and   #
# multithreading, Journal of Computational Chemistry 31 (2010)  #
# 455-461   #
#   #
# DOI 10.1002/jcc.21334 #
#   #
# Please see http://vina.scripps.edu for more information.  #
#

Detected 8 CPUs
Reading input ... 

Re: (cmake) Could NOT find LibSoup: Found unsuitable version "" ...

[David Wright]

On Fri 03 Jun 2022 at 11:01:30 (+0300), Anssi Saari wrote:
> Albretch Mueller  writes:
> 
> > ... Could NOT find LibSoup: Found unsuitable version "",

The problem lies between these quotes, it would appear:  ↑↑

> > but required is at least "2.54.0" (found LIBSOUP_INCLUDE_DIRS-NOTFOUND)
> 
> Hm. Debian Bullseye packages libsoup 2.4 so even if you had it installed
> (and the development package too which has the stuff cmake looks for)
> that test would still fail.

But:

> > libsoup2.4-1 is already the newest version (2.72.0-2).
> > libsoup2.4-1 set to manually installed.

2.72.0 is way beyond 2.54.0.

> Maybe start with what it is you're trying to accomplish? Why do you want
> to compile webkit2 yourself? In my experience compiling complex software
> requires knowledge about many topics and tools and can be quite
> frustrating and time consuming.

Cheers,
David.

How about ssh certificates (was: Re: ssh-agent: I want to start using on all my remote hosts)

[rhkramer]

On Friday, June 03, 2022 10:43:53 AM Tom Browder wrote:
> I have been using ssh for logging in to my remote hosts for many years, but
> I have NOT been using ssh-agent.

I'm intentionally not addressing your specific questions.

For me, your post is rather timely, because I'm digging into ssh and was 
trying to understand the different methods of authentication and trying to 
decide what was best for me.  (I have a SOHO with up to 5 nodes at time (right 
now only 3.)

From some of my reading, ssh certificates seem to be highly recommended, 
although it has seemed difficult for me to get all the details I want.

The best resource I've found so far is:

https://betterprogramming.pub/how-to-use-ssh-certificates-for-scalable-secure-
and-more-transparent-server-access-720a87af6617?gi=8a3ac1f658bc

One problem with that article is that it seems that there are about 3 blanks 
in it where, for example, the text mentions something like ~"use this command" 
and then there is a big blank spot.  (I've tried viewing the page in 2 to 4 
different browsers, depending on how you count them -- some older versions of 
firefox, a fairly recent version of firefox, and an older version of konqueror).

I've looked for a way to contact the author but haven't found anything so far.

Some of the advantages of certificates are (iiuc):

   * maybe a simpler setup, after you understand how to do it

   * easier to manage the keys / authentication (specifically, if you need to 
revoke permissions for a user you can do it in one place

   * apparently the security can be somewhat better (maybe a result of the 
previous bullet, but I think some other things as well)

   * you can make the transition gradually -- you can keep the "old" public 
key authentication in place (and continue to use it when, where, and if 
needed) while you transition some server(s) and user(s) to certificates.

I thought I'd call your attention to this for your consideration -- perhaps 
with both of us investigating and asking questions as needed, we both might 
make quicker progress.

In any event, have a good day!

Apache2 Configuration Problem

[ldmko...@yahoo.com]

I wanted to try and use Python in my HTML pages.  And apparently I have screwed 
up my Apache2 configuration in the process.
I now get :
[Fri Jun 03 12:42:41.002183 2022] [wsgi:crit] [pid 31238] mod_wsgi (pid=31238): 
The mod_python module can not be used in conjunction with mod_wsgi 4.0+. Remove 
the mod_python module from the Apache configuration.
AH00016: Configuration Failed
when I try to restart/start Apache2.
I cannot find the "mod_python module" in my .conf files.  Any suggestions or 
pointers will be appreciated.
Thanks...

Re: (cmake) Could NOT find LibSoup: Found unsuitable version "" ...

[Albretch Mueller]

On 6/3/22, David Wright  wrote:
> On Fri 03 Jun 2022 at 11:01:30 (+0300), Anssi Saari wrote:
>> Albretch Mueller  writes:
>>
>> > ... Could NOT find LibSoup: Found unsuitable version "",
> The problem lies between these quotes, it would appear:  ↑↑

 I don't know if you are trying to bring humor into the problematic,
but that was literally part of the error message. On the one side
cmake doesn't seem to be able to even find what the installed version
of libsoup is while on the other apt-get tells me:
...
libsoup2.4-dev is already the newest version (2.72.0-2).
...
Preparing to unpack .../libsoup-gnome2.4-dev_2.72.0-2_amd64.deb ...
Unpacking libsoup-gnome2.4-dev:amd64 (2.72.0-2) ...
Setting up gir1.2-soup-2.4:amd64 (2.72.0-2) ...
Setting up libpsl-dev:amd64 (0.21.0-1.2) ...
Setting up libsoup2.4-dev:amd64 (2.72.0-2) ...
Setting up libsoup-gnome2.4-dev:amd64 (2.72.0-2) ...

 and yes, cmake/webkit would not even swallow that version, but there
should be a way to work around that problem.

>> Maybe start with what it is you're trying to accomplish? Why do you want
>> to compile webkit2 yourself?

 Basically, I am trying to compile WebKit2 (on WSL! ;-)) with
debugging symbols included in order to teach my students how to debug,
because after having worked them into at least pretending they had
fallen in love with the concept of Mathematical function, they have
asked me "but, what is it good for?"
 I have chosen WSL as my way to move them away from Windows
"gracefully" and also partially for “political” (school would not
install Linux), as well as economical reasons (some of my kiddos don't
even have an actual computer at home); so that makes the whole
situation even better in a "give me the tired ..." way.
 Why WebKit? Because, I want for them (high schoolers) to have "a real
taste of reality". Kids tend to see society as this big impenetrable
thing, but, again, the concept of mathematical function will serve
them as compass throughout their life. Kids nowadays also need to see
colors and things moving on a screen, preferably their cell phone's
from them to be able to "believe" it. With WebKit’s minibrowser they
could (I can tutor them to) do something on their own.
 Working with kids have made me a better person and something I have
understood is that you have to brake down whatever you are explaining
to them into pieces they can understand, relate to. A natural part of
being an adult is forgetting that. Most so-called "tutorials" out
there mean absolutely nothing to most kids.
 lbrtchx

Re: How about ssh certificates (was: Re: ssh-agent: I want to start using on all my remote hosts)

[Tom Browder]

On Fri, Jun 3, 2022 at 10:46  wrote:

> On Friday, June 03, 2022 10:43:53 AM Tom Browder wrote:
> > I have been using ssh for logging in to my remote hosts for many years,
> but
> > I have NOT been using ssh-agent.
>
> I'm intentionally not addressing your specific questions.
>
> For me, your post is rather timely, because I'm digging into ssh and was
> trying to understand the different methods of authentication and trying to
> decide what was best for me.  (I have a SOHO with up to 5 nodes at time
> (right
> now only 3.)
>
> From some of my reading, ssh certificates seem to be highly recommended,
> although it has seemed difficult for me to get all the details I want.
>
> The best resource I've found so far is:


I remember seeing that in the past. Note when I started my
https://usafa-1965.org website in 2010 I plunged into creating ssl
certificates for my classmates to log in painlessly. But it was a pain for
me, although I built my CA with a hand-coded Perl set of programs which
helped immensely. There are now better CA solutions (open source ones,
too), but for my purposes I think the ssh-agent will be easier.

https://betterprogramming.pub/how-to-use-ssh-certificates-for-scalable-secure-
> and-more-transparent-server-access-720a87af6617?gi=8a3ac1f658bc
> 
>
> One problem with that article is that it seems that there are about 3
> blanks
> in it where, for example, the text mentions something like ~"use this
> command"
> and then there is a big blank spot.  (I've tried viewing the page in 2 to
> 4
> different browsers, depending on how you count them -- some older versions
> of
> firefox, a fairly recent version of firefox, and an older version of
> konqueror).


I briefly looked at the article and didn't notice anything missing. Maybe
if you could take some screen shots in those areas we could help.

-Tom

Re: ssh-agent: I want to start using on all my remote hosts

[David Christensen]

On 6/3/22 07:43, Tom Browder wrote:

I have been using ssh for logging in to my remote hosts for many years, but
I have NOT been using ssh-agent.

I have checked all those hosts looking for the env var SSH_AGENT_SOCK which
one website says should be defined if the ssh-agent process is running, but
none have that defined.

Now I'm ready to start but I want to start with one host to make sure my
work flows aren't interrupted. Some questions:

1. Will starting the ssh-agent service interfere with my current ssh login
(using keys with NO passhrase).



Entering passphrases every time you issue an SSH-enabled command is a 
PITA.  I also used keys without passwords before I discovered 
ssh-agent(1) and ssh-add(1).  Now all of my keys have passphrases.  You 
should create new SSH keys with strong passphrases.




2. Is there anything to do to start the service other than:


On 6/3/22 07:52, Tom Browder wrote:
> On Fri, Jun 3, 2022 at 09:43 Tom Browder  wrote:

> And edit file /etc/ssh/ssh_config to change
>
>  # ForwardAgent no
>
> to
>
>  ForwardAgent yes
>
> Then reboot.


If you change /etc/ssh/ssh_config, there is no need to reboot.  I enable 
ForwardAgent on all of my hosts, so that I can login via ssh(1) and use 
cvs(1) over SSH.



If you change /etc/ssh/sshd_config, then you need to send a HUP signal 
to sshd(8), restart sshd(8), or reboot.



If you want to use your SSH key to login to root accounts, verify 
PermitRootLogin is set to (or defaults to) "prohibit-password" in 
/etc/ssh/sshd_config on the target hosts.



If you want all ssh(1) logins to require an SSH key, set 
PasswordAuthentication to "no" in /etc/ssh/sshd_config on the target hosts.



I own and recommend "SSH Mastery" by Michael W. Lucas:

https://mwl.io/nonfiction/tools#ssh


David

Re: How about ssh certificates (was: Re: ssh-agent: I want to start using on all my remote hosts)

[Greg Wooledge]

On Fri, Jun 03, 2022 at 01:16:45PM -0500, Tom Browder wrote:
> On Fri, Jun 3, 2022 at 10:46  wrote:
> > 
> >
> > One problem with that article is that it seems that there are about 3
> > blanks
> > in it where, for example, the text mentions something like ~"use this
> > command"
> > and then there is a big blank spot.

This happens ALL THE TIME when I use NoScript.

> I briefly looked at the article and didn't notice anything missing. Maybe
> if you could take some screen shots in those areas we could help.

The first one I found is after this sentence:

  Copy it to a file on CA server and run the command:

NoScript initially reports 3 domains:

  betterprogramming.pub
  cloudflareinsights.com
  medium.com

Telling NoScript to Temp.Trust all 3 of these domains fixes this one
(for me).  And once I do that, NoScript now reports that there are 7
domains.  One of them (github.com) is already trusted, so you might need
that one as well -- I don't know.

I'm sure you're used to this, if you're a NoScript user.

Re: google account say it will no longer deliver email

[rhkramer]

On Thursday, June 02, 2022 01:59:45 PM rhkra...@gmail.com wrote:
> I then entered that in place of the old passwords in kmail.  (I don't think
> it stated it -- I wasn't sure whether to enter the spaces as part of the
> password or not -- I did, and that worked.)

An update -- that was on an old (the Debian Wheezy) version of kmail, on a 
newer version of kmail, I had to take the spaces out.  (Maybe on the older 
version of kmail something took the spaces out automatically?)

postfix + gmail

[D. R. Evans]

I am trying to configure postfix correctly to send e-mail to a gmail.com 
account, using my gmail credentials.


1. It all works fine if I use Thunderbird, with the following configuration:
  server name: smtp.googlemail.com
  port:587
  Connection security: STARTTLS
  Authentication method: normal password
  username: doc.ev...@gmail.com
and the password set to my gmail password.

That, in fact, is the method that I am using to post this e-mail to the 
reflector.

2. But when I try to duplicate that with postfix, I receive the following error:


: host smtp.googlemail.com[142.250.138.16] said: 530-5.7.0
Authentication Required. Learn more at 530 5.7.0
https://support.google.com/mail/?p=WantAuthError
e12-20020a9d490c00b0060b6facd5e4sm4170514otf.29 - gsmtp (in reply to
MAIL FROM command)


I have spent most of the morning following various Internet threads related to 
this error, and making many variations to my postfix configuration, but 
without success.


FWIW, here are the relevant parts of my current postfix configuration, and it 
generates the error message quoted above (I am running debian stable):


in main.cf:

  smtp_sasl_auth_enable = yes
  smtp_sasl_password_maps = hash:/etc/postfix/sasl/sasl_passwd
  smtp_sasl_security_options =
  smtp_sasl_type = cyrus
  smtp_use_tls = yes
  smtp_tls_CAfile = /etc/ssl/certs/ca-certificates.crt

in sasl_passwd:

  [smtp.googlemail.com]:587 doc.ev...@gmail.com:

I did check that the password matches exactly the password in Thunderbird.

So if some postfix guru could enlighten me as to what I need to change, I'd be 
very grateful.


  Doc

--
Web:  http://enginehousebooks.com/drevans

Re: Apache2 Configuration Problem

[john doe]

On 6/3/2022 6:56 PM, ldmko...@yahoo.com wrote:

I wanted to try and use Python in my HTML pages.  And apparently I have screwed 
up my Apache2 configuration in the process.
I now get :
[Fri Jun 03 12:42:41.002183 2022] [wsgi:crit] [pid 31238] mod_wsgi (pid=31238): 
The mod_python module can not be used in conjunction with mod_wsgi 4.0+. Remove 
the mod_python module from the Apache configuration.
AH00016: Configuration Failed
when I try to restart/start Apache2.
I cannot find the "mod_python module" in my .conf files.  Any suggestions or 
pointers will be appreciated.
Thanks...



I would try:

$ a2dismod mod_python

--
John Doe

Re: How about ssh certificates (was: Re: ssh-agent: I want to start using on all my remote hosts)

[David Christensen]

On 6/3/22 08:46, rhkra...@gmail.com wrote:

On Friday, June 03, 2022 10:43:53 AM Tom Browder wrote:

I have been using ssh for logging in to my remote hosts for many years, but
I have NOT been using ssh-agent.


I'm intentionally not addressing your specific questions.

For me, your post is rather timely, because I'm digging into ssh and was
trying to understand the different methods of authentication and trying to
decide what was best for me.  (I have a SOHO with up to 5 nodes at time (right
now only 3.)

 From some of my reading, ssh certificates seem to be highly recommended,
although it has seemed difficult for me to get all the details I want.

The best resource I've found so far is:

https://betterprogramming.pub/how-to-use-ssh-certificates-for-scalable-secure-
and-more-transparent-server-access-720a87af6617?gi=8a3ac1f658bc

One problem with that article is that it seems that there are about 3 blanks
in it where, for example, the text mentions something like ~"use this command"
and then there is a big blank spot.  (I've tried viewing the page in 2 to 4
different browsers, depending on how you count them -- some older versions of
firefox, a fairly recent version of firefox, and an older version of konqueror).

I've looked for a way to contact the author but haven't found anything so far.

Some of the advantages of certificates are (iiuc):

* maybe a simpler setup, after you understand how to do it

* easier to manage the keys / authentication (specifically, if you need to
revoke permissions for a user you can do it in one place

* apparently the security can be somewhat better (maybe a result of the
previous bullet, but I think some other things as well)

* you can make the transition gradually -- you can keep the "old" public
key authentication in place (and continue to use it when, where, and if
needed) while you transition some server(s) and user(s) to certificates.

I thought I'd call your attention to this for your consideration -- perhaps
with both of us investigating and asking questions as needed, we both might
make quicker progress.

In any event, have a good day!



"Public key infrastructure" is large and complex; I am still climbing a 
subset of its many learning curves.



I own and recommend "TLS Mastery" by Michael W. Lucas:

https://mwl.io/nonfiction/networking#tls


David

Re: How about ssh certificates (was: Re: ssh-agent: I want to start using on all my remote hosts)

[Tom Browder]

On Fri, Jun 3, 2022 at 13:46  wrote:

> On Friday, June 03, 2022 02:16:45 PM Tom Browder wrote:
> > I briefly looked at the article and didn't notice anything missing. Maybe
> > if you could take some screen shots in those areas we could help.
>
> Thanks for the reply, and thanks, I'll do that.
>
> I guess you intentionally replied off list, but that means I can attach
> some
> screen shots without worrying about whether that violates a list policy.


Hm, no I don't see that I replied off list, maybe you're having a browser
problem of some kind as you hinted.

-Tom

Re: (cmake) Could NOT find LibSoup: Found unsuitable version "" ...

[Eduardo M KALINOWSKI]

On 03/06/2022 14:02, Albretch Mueller wrote:

  Basically, I am trying to compile WebKit2 (on WSL! ;-)) with
debugging symbols included in order to teach my students how to debug,


Debian has debug symbols for most (if not all) packages, but they're in 
a different repository. See 
https://wiki.debian.org/HowToGetABacktrace#Installing_the_debugging_symbols 
.


--
By all means marry: If you get a good wife, you'll become happy; if you
get a bad one, you'll become a philosopher.
-- Socrates

Eduardo M KALINOWSKI
edua...@kalinowski.com.br

Re: postfix + gmail

[IL Ka]

Hello.
Do you have "relayhost" set to gmail SMTP server?
https://www.postfix.org/postconf.5.html#relayhost

Did you call postmap(1) to build password file?
http://www.postfix.org/postmap.1.html


Here are a couple of tutorials:
http://postfix.cs.utah.edu/SOHO_README.html#client_sasl_enable
https://stafwag.github.io/blog/blog/2018/03/04/postfix-smarthost-with-authentication/

The best place to ask postfix questions is postfix mail list:
https://www.postfix.org/lists.html
Postfix developers answer there.

You can try to debug and increase logging :
https://www.postfix.org/DEBUG_README.html





On Fri, Jun 3, 2022 at 10:19 PM D. R. Evans  wrote:

> I am trying to configure postfix correctly to send e-mail to a gmail.com
> account, using my gmail credentials.
>
> 1. It all works fine if I use Thunderbird, with the following
> configuration:
>server name: smtp.googlemail.com
>port:587
>Connection security: STARTTLS
>Authentication method: normal password
>username: doc.ev...@gmail.com
> and the password set to my gmail password.
>
> That, in fact, is the method that I am using to post this e-mail to the
> reflector.
>
> 2. But when I try to duplicate that with postfix, I receive the following
> error:
>
> > : host smtp.googlemail.com[142.250.138.16] said:
> 530-5.7.0
> > Authentication Required. Learn more at 530 5.7.0
> > https://support.google.com/mail/?p=WantAuthError
> > e12-20020a9d490c00b0060b6facd5e4sm4170514otf.29 - gsmtp (in
> reply to
> > MAIL FROM command)
>
> I have spent most of the morning following various Internet threads
> related to
> this error, and making many variations to my postfix configuration, but
> without success.
>
> FWIW, here are the relevant parts of my current postfix configuration, and
> it
> generates the error message quoted above (I am running debian stable):
>
> in main.cf:
>
>smtp_sasl_auth_enable = yes
>smtp_sasl_password_maps = hash:/etc/postfix/sasl/sasl_passwd
>smtp_sasl_security_options =
>smtp_sasl_type = cyrus
>smtp_use_tls = yes
>smtp_tls_CAfile = /etc/ssl/certs/ca-certificates.crt
>
> in sasl_passwd:
>
>[smtp.googlemail.com]:587 doc.ev...@gmail.com:
>
> I did check that the password matches exactly the password in Thunderbird.
>
> So if some postfix guru could enlighten me as to what I need to change,
> I'd be
> very grateful.
>
>Doc
>
> --
> Web:  http://enginehousebooks.com/drevans
>
>

[SOLVED] Re: postfix + gmail

[D. R. Evans]

And, of course, half an hour after giving up and asking for help, I discovered 
what I needed to change.


I did a "journalctl | grep smtp" and noticed that, when my machine was 
connecting to gmail, it seemed to be doing so on port 25. Aha!


So I changed my transport file explicitly to use port 587 when connecting to 
smtp.googlemail.com, reloaded everything and now it works.


(Slightly in my defence, I had briefly pondered the question of port number 
earlier this morning, but, since I hadn't seem any mention of it in my reading 
of solutions to this problem, I figured that the fact that I had enabled auth 
in the main.cf file must mean that postfix was automagically going to use port 
587 instead of port 25. Now I know better.)


  Doc

--
Web:  http://enginehousebooks.com/drevans

Re: Alternatives to ISC dhcp-client ?

[Kamil Jońca]

john doe  writes:

[...]
>>
>
> You might be better off asking this on the appropriate mailing list! :)

I asked:
https://lists.freedesktop.org/archives/systemd-devel/2022-May/047889.html

My impressions:
1. Scripts called by dhcp client are "BAD THING" (according to systemd
developers) - and systemd-networkd will not handle it
2. systemd-networkd lacks of some functionality I need, and I doubt it
will have (bridge without interfaces, partial nat and so on)

So for now I will use isc-dhcp-client until it will be impossible.

KJ

-- 
http://stopstopnop.pl/stop_stopnop.pl_o_nas.html

Re: (cmake) Could NOT find LibSoup: Found unsuitable version "" ...

[David Wright]

On Fri 03 Jun 2022 at 12:02:29 (-0500), Albretch Mueller wrote:
> On 6/3/22, David Wright wrote:
> > On Fri 03 Jun 2022 at 11:01:30 (+0300), Anssi Saari wrote:
> >> Albretch Mueller writes:
> >>
> >> > ... Could NOT find LibSoup: Found unsuitable version "",
> > The problem lies between these quotes, it would appear:  ↑↑
> 
>  I don't know if you are trying to bring humor into the problematic,
> but that was literally part of the error message. On the one side
> cmake doesn't seem to be able to even find what the installed version
> of libsoup is while on the other apt-get tells me:
> ...
> libsoup2.4-dev is already the newest version (2.72.0-2).

Yes, because I can contribute nothing as to why the internal
version number isn't detected. Nor could I add any help beyond
that already given at the time, that of installing the -dev.

I was merely pointing out that your installed version is
new enough. AIUI, there are two distinct sequence numbers
for libsoup; not distinctive enough to have been noticed.

Cheers,
David.

Re: How about ssh certificates (was: Re: ssh-agent: I want to start using on all my remote hosts)

[rhkramer]

Ahh, thanks Greg, I can now see those missing parts of the article -- it was 
NoScript, but, seeing most of the graphics in the article, somehow NoScript 
didn't come to mind as the cause of the problem.



On Friday, June 03, 2022 02:29:45 PM Greg Wooledge wrote:
> On Fri, Jun 03, 2022 at 01:16:45PM -0500, Tom Browder wrote:
> This happens ALL THE TIME when I use NoScript.
> 
> > I briefly looked at the article and didn't notice anything missing. Maybe
> > if you could take some screen shots in those areas we could help.
> 
> The first one I found is after this sentence:
> 
>   Copy it to a file on CA server and run the command:
> 
> NoScript initially reports 3 domains:
> 
>   betterprogramming.pub
>   cloudflareinsights.com
>   medium.com
> 
> Telling NoScript to Temp.Trust all 3 of these domains fixes this one
> (for me).  And once I do that, NoScript now reports that there are 7
> domains.  One of them (github.com) is already trusted, so you might need
> that one as well -- I don't know.
> 
> I'm sure you're used to this, if you're a NoScript user.

Re: (cmake) Could NOT find LibSoup: Found unsuitable version "" ...

[Albretch Mueller]

On 6/3/22, Eduardo M KALINOWSKI  wrote:
> On 03/06/2022 14:02, Albretch Mueller wrote:
>>   Basically, I am trying to compile WebKit2 (on WSL! ;-)) with
>> debugging symbols included in order to teach my students how to debug,
>
> Debian has debug symbols for most (if not all) packages, but they're in
> a different repository. See
> https://wiki.debian.org/HowToGetABacktrace#Installing_the_debugging_symbols

 Debian doesn't stop to amaze me. Last time it did was with apt-clone,
but apparently that was another case of debian/software documentation
kept in good faith!

  Are you saying that debian keeps "instrumented" binary versions of
their packages ready for debugging!? I checked and it doesn't seem to
be the case (and/or I am making some mistake)

 Not having to instrument WebKit2 would be time saving, but I would
like for us as a class to be able to compile a relatively large and
involved piece of software. As part of my explaining I thought of a
"Linux(/Debian) for kids" kind of book but not as some sort of
coloring book, but more like a carpentry one.

 I did follow the steps on that link:

Microsoft Windows [Version 10.0.19043.1706]
(c) Microsoft Corporation. All rights reserved.

C:\Users\...>
C:\Users\...>
C:\Users\...>
C:\Users\...>wsl --user <...>

$ date
Fri 03 Jun 2022 03:18:54 PM CDT
$

$ ls -l /etc/apt/sources.list
-rw-r--r-- 1 root root 229 Aug 18  2021 /etc/apt/sources.list

$ sudo vim /etc/apt/sources.list
[sudo] password for <...>:
...
$ ls -l /etc/apt/sources.list
-rw-r--r-- 1 root root 480 Jun  3 15:17 /etc/apt/sources.list

$ cat /etc/apt/sources.list
deb http://deb.debian.org/debian bullseye main
deb http://deb.debian.org/debian bullseye-updates main
deb http://security.debian.org/debian-security bullseye-security main
deb http://ftp.debian.org/debian bullseye-backports main
# https://wiki.debian.org/HowToGetABacktrace
deb http://deb.debian.org/debian-debug/ bullseye-debug main
# https://wiki.debian.org/HowToGetABacktrace (for security updates)
deb http://deb.debian.org/debian-debug/ bullseye-proposed-updates-debug main
$

 still I don't see anything really, just some python code to sniff
qtwebkit-dbg file formats? (which shoud mean that you should at least
be able to find qtwebkit, right?):

$ apt-cache search webkit2 dbg
$

$ apt-cache search webkit dbg
python3-pyqt5.qtwebchannel-dbg - Python 3 bindings for Qt5's
Webchannel module (debug extension)
python3-pyqt5.qtwebkit-dbg - Python 3 bindings for Qt5's WebKit module
(debug extensions)
$

$ sudo apt install webkit-dbgsym
...
E: Unable to locate package webkit-dbgsym

$ sudo apt install webkit2-dbgsym
...
E: Unable to locate package webkit2-dbgsym
$
 lbrtchx

Re: declarative (config file) way idea of handling the OS by way of the old system

[Emanuel Berg]

Andy Smith wrote:

>> Except for people aging and dying I didn't understand any
>> of this post ...
>
> I'm happy to explain any part of it that you were not able
> to understand, but you'll have to be more specific.

No, I understand now, as a blueprint for a human to read as
well, not just parsable by a computer.

Sure! My config files are very educative at least to me, often
when I forget something I make a search and find something
I wrote or something I can change just a little bit ...

OTOH is it like saying the advantage with C++ isn't just the
speed of the compiled binary, it is also that C++ programmers
can read and understand the code?

-- 
underground experts united
https://dataswamp.org/~incal

Re: Debian license issue

[Emanuel Berg]

Stefan Monnier wrote:

>> OKAY SO THE "DISTRIBUTION" DON'T HAVE A "LICENSE"?
>
> Have you tried to search the web for "debian license"?
> DDG gives me as first link a document that seems highly
> relevant

And the second link?

-- 
underground experts united
https://dataswamp.org/~incal

Re: Debian license issue

[Emanuel Berg]

John Hasler wrote:

> The distribution is a collection of pieces of software
> authored by a wide variety of individuals, groups, and
> organizations. These authors have published their works
> under terms which allow Debian or any one else to
> redistribute them. It would not make a lot of sense for
> Debian to attempt to apply some sort of license to the
> collection as a whole.

Maybe not the collection but if there are items (files)
associated with nothing except Debian.

But maybe it doesn't work like that anymore, even the smallest
"glue" file is now - or is part of - its own project ...

Cool if so B)

-- 
underground experts united
https://dataswamp.org/~incal

Re: Debian license issue

[Emanuel Berg]

Andrew M.A. Cater wrote:

> All that being said, other distributions have attmepted to
> put a licence on the whole distribution, not
> always consistently.
>
> Red Hat had a copyright on their artwork etc. and required
> derivatives to change their branding accordingly.
>
> Almalinux - a CentOS derivative - has a GPL2 licence over
> everything, Rocky Linux, which is essentially identical, is
> put out under a 3 clause BSD licence. Debian doesn't have an
> overall licence, as others have said, and the trademarks are
> liberally licensed. [I'm not sure anyone has used the bottle
> logo for a long time].
>
> All the very best, as ever,

How does it work with other distro being forks (derivatives)
of Debian, or some other distro being a Debian derivative, and
so on - what's happening when they first base their distro on
Debian, then put their own licence on theirs?

-- 
underground experts united
https://dataswamp.org/~incal

Re: Debian license issue

[David Wright]

On Sat 04 Jun 2022 at 02:48:32 (+0200), Emanuel Berg wrote:
> Stefan Monnier wrote:
> 
> >> OKAY SO THE "DISTRIBUTION" DON'T HAVE A "LICENSE"?
> >
> > Have you tried to search the web for "debian license"?
> > DDG gives me as first link a document that seems highly
> > relevant
> 
> And the second link?

Somehow, google misread my typing, and took me to the website for
Deutsche Grammophon Gesellschaft. I was the lucky umpteenth customer,
and they flew me a bunch of 23 tulips resting in a crown.

Cheers,
David.

Re: Debian license issue

[Emanuel Berg]

David Wright wrote:

>> DDG gives me as first link a document that seems highly
>> relevant,
>
> I don't think we have to be coy about the fact that the page
> is:
>
> https://www.debian.org/legal/licenses/

It says

  We welcome enquiries from maintainers considering particular
  licenses, but we encourage most maintainers to use one of
  the common licenses: GPL, LGPL, modified BSD, or Artistic

but not what license maintainers of the distro is encouraged
to use?

-- 
underground experts united
https://dataswamp.org/~incal

Re: Debian license issue

[John Hasler]

 Emanuel Berg writes:
> Maybe not the collection but if there are items (files) associated
> with nothing except Debian.

Those are under whatever DFSG-compliant licenses the Debian developers
who authored them chose to use.
-- 
John Hasler 
j...@sugarbit.com
Elmwood, WI USA

Re: Debian license issue

[Emanuel Berg]

David Wright wrote:

 OKAY SO THE "DISTRIBUTION" DON'T HAVE A "LICENSE"?
>>>
>>> Have you tried to search the web for "debian license"?
>>> DDG gives me as first link a document that seems highly
>>> relevant
>> 
>> And the second link?
>
> Somehow, google misread my typing, and took me to the
> website for Deutsche Grammophon Gesellschaft. I was the
> lucky umpteenth customer, and they flew me a bunch of 23
> tulips resting in a crown.

I see, the crown is real but it is not a thing. So it doesn't
need and cannot have a sticker!

The tulips on the other hand can be from anywhere, including
the Netherlands some of them if you're lucky ...

-- 
underground experts united
https://dataswamp.org/~incal

Re: Debian license issue

[John Hasler]

Emanuel Berg writes:
> How does it work with other distro being forks (derivatives) of
> Debian, or some other distro being a Debian derivative, and so on -
> what's happening when they first base their distro on Debian, then put
> their own licence on theirs?

I believe that they could theoretically have the right to a compilation
copyright  on the
distribution as a whole.  However that might conflict with the GPL terms
of many of the components and in any case if they license the
compilation under DFSG compliant terms the effect would be null.

I suspect that the reason some of them attach license to their
distributions is that they labor the widespread delusion that no one can
use a copy of a piece of software unless they have a license.

(All USA law, of course.  Your jurisdiction may vary.)
-- 
John Hasler 
j...@sugarbit.com
Elmwood, WI USA

Re: Debian license issue

[The Wanderer]

On 2022-06-03 at 21:11, John Hasler wrote:

> Emanuel Berg writes:
> 
>> Maybe not the collection but if there are items (files) associated 
>> with nothing except Debian.
> 
> Those are under whatever DFSG-compliant licenses the Debian
> developers who authored them chose to use.

And either they're in Debian packages (so the license terms are
available with the package, in exactly the same way as with any other
Debian package), or they're running on the Debian infrastructure servers
and license considerations are handled by the sysadmins of those
servers. (And, frequently, both are true.)

-- 
   The Wanderer

The reasonable man adapts himself to the world; the unreasonable one
persists in trying to adapt the world to himself. Therefore all
progress depends on the unreasonable man. -- George Bernard Shaw



signature.asc
Description: OpenPGP digital signature

Re: grep: show matching line from pattern file

[Richard Hector]

On 3/06/22 07:17, Greg Wooledge wrote:

On Thu, Jun 02, 2022 at 03:12:23PM -0400, duh wrote:


> > Jim Popovitch wrote on 28/05/2022 21:40:
> > > I have a file of regex patterns and I use grep like so:
> > > 
> > >  ~$ grep -f patterns.txt /var/log/syslog
> > > 
> > > What I'd like to get is a listing of all lines, specifically the line

> > > numbers of the regexps in patterns.txt, that match entries in
> > > /var/log/syslog.   Is there a way to do this?



$cat -n /var/log/syslog | grep warn

and it found "warn" in the syslog file and provided line numbers. I have
not used the -f option


You're getting the line numbers from the log file.  The OP wanted the line
numbers of the patterns in the -f pattern file.

Why?  I have no idea.  There is no standard option to do this, because
it's not a common requirement.  That's why I wrote one from scratch
in perl.



I don't know what the OP's use case is, but here's an example I might use:

I have a bunch of custom ignore files for logcheck. After a software 
upgrade, I might want to check which patterns no longer match anything, 
and can be deleted or modified.


I'd really still want to check with real egrep, though, rather than 
using perl's re engine instead.


Cheers,
Richard

Re: regarding firewall discussion

[Richard Hector]

On 2/06/22 05:26, Joe wrote:

On Tue, 31 May 2022 03:17:52 +0100
mick crane  wrote:


regarding firewall discussion I'm uncertain how firewalls are
supposed to work.
I think the idea is that nothing is accepted unless it is in response
to a request.
What's to stop some spurious instructions being sent in response to
genuine request?


Nothing really, but the reply can only come from the site you made the
request to.


A source IP address can be faked.

Richard

Re: grep: show matching line from pattern file

[DdB]

Hello,

of course, there are different ways to solve this, i like the perl
approach. Only since i myself am not all that familiar with the
language, i'd like to add 2 pointers:
(M)AWK scripting language can do similar things (read syslog once, loop
over regular expressions and output anything you want about it).
But if you can live with calling egrep repeatedly, i would suggest GNU
parallel, which works similar to xargs, only a much enhanced version of
it, using sevral cores in parallel by default but also handling the
commandline in a much improved way (special syntax, so to speak). It
allows coding your request as a one-liner, i am certain, but probably
not as effective, as perl or awk would have been.
BTW: GNU parallel is in debian repos, but a quite outdated version of it.

Have fun, DdB