ipchains DENY question
Does anyone have any idea what the following in syslog means: Dec 5 14:58:01 themachine kernel: Packet log: input DENY ppp0 PROTO=0 0.0.0.0:65535 0.0.0.0:65535 L=40 S=0x00 I=55674 F=0x T=64 (#8) What's PROTO 0, IP address 0.0.0.0? Thanks, John BTW, its a ppp dialup connection; the packet is coming from the remote ppp connection-obviously. The question is why? -- John Conover, [EMAIL PROTECTED], http://www.rahul.net/~conover -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: HTML mail
If you are using procmail, put:
:0:
* ^content-type:[ ]+text/html
spam
in your ~/.procmailrc to file html formatted e-mail in your spam
folder. You can probably do better with:
:0:
* ^content-type:[ ]+text/(plain|html);
* ^content-transfer-encoding:[ ]+base64
spam
which will do so if it is html formatted, and base64 encoded. If both
of those fail, you can search the body for both, too:
ws='[]*($[ ]+)*'
dq='"'
eol='$'
#
:0:
* $
^content-type:${ws}text/(plain|html);${ws}charset=${dq}.*${dq}${eol}content-transfer-encoding:${ws}base64
spam
where the spaces in the ws variable are a tab character, hex 09,
followed by a space character, hex 20, and allow multiple line regex
searches in procmail.
John
Alvin Oga writes:
>
> On 13 Aug 2003, Ron Johnson wrote:
>
> > On Wed, 2003-08-13 at 10:56, Richard Lyons wrote:
> > > On Wednesday 13 August 2003 7:46 pm, Jeff Elkins wrote:
> > > > Most of the spam I receive is HTML format. Is there a fairly painless way
> > > > of sending anything formatted HTML to my trash folder?
>
> sendmail has an option ... if the mail is html formated, the mail is
> bounced
> - lots of ways to get rid of spam ...
> - 2 minute answer or 2 days of working on it ??
> - nothing is 100% accurate as a spam filter
> - the ideal spam solution depends on your criteria and setup
>
> and for any "good people" you want to receive mail from, even if
> its html'ized, you add them to your access list to allow them in
> ( add um to your "whitelist" )
>
--
John Conover, [EMAIL PROTECTED], http://www.rahul.net/~conover
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Procmail attachment filtering
http://www.johncon.com/john/QuarantineAttachments/ has a regex that
you can hack ...
John
Tom Badran writes:
> On Friday 20 Dec 2002 10:14 am, Oliver Fuchs wrote:
> > I found this:
> > :0
> >
> > * [ ]*(Content|(file)?name=).*\.(scr|exe|p(if|as)|v(bs|xd)|ba[kt]|\
> > wab|cp(p|l)|asp|xls|mpe?g|reg|ini|d(iz|ll)|sys)
> > { do stuff }
>
> I tried this but it seems to filter out _all_ messages. Any chance you
> possibly made a typo? I dont know enough about procmail to spot any mistakes
> in your filter.
>
--
John Conover, [EMAIL PROTECTED], http://www.rahul.net/~conover
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
subscribe
subscribe -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Debian 3.3 and AHA2940UW?
I'm installing Debian 3.3 on a SCSI system with an Adaptec AHA2940UW. When I boot to the Debian disk, it can't find the HD and asks for a floppy with the drivers. What do I do with that? Thanks, John -- John Conover, [EMAIL PROTECTED], http://www.johncon.com/ -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Ensonic SB sound card drivers?
How do you install the drivers for an Ensonic SB card on Debian 3? It was es1371 under Debian 2. Where is es1371.o and soundcore.o for Debian 3? Thanks, John -- John Conover, [EMAIL PROTECTED], http://www.johncon.com/ -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Setting gamma on Epson Stylus Photo 780 under Linux?
According to the docs, the Epson Stylus Photo 780 can have its gamma changed from a default of 1.8 to the sRGB standard of 2.2. Does anyone know if this gamma correction is done in SW, or HW, and if so how to change it in Linux? Thanks, John -- John Conover, [EMAIL PROTECTED], http://www.johncon.com/ -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Gnome on Knoppix?
Anyone installed Gnome on Knoppix? Thanks, John -- John Conover, [EMAIL PROTECTED], http://www.johncon.com/ -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Unidentified subject!
Are:
ipchains -A output -i eth0 -p tcp -s ${INIP} 1024:65535 -d 0/0 telnet -j
ACCEPT -y
ipchains -A output -i eth0 -p tcp -s ${INIP} 1024:65535 -d 0/0 telnet -j
ACCEPT ! -y
and:
ipchains -A output -i eth0 -p tcp -s ${INIP} 1024:65535 -d 0/0 telnet -j
ACCEPT
the same thing?
Thanks,
John
BTW, if ACK != FIN, they are not.
--
John ConoverTel. 408.370.2688 [EMAIL PROTECTED]
631 Lamont Ct. Cel. 408.772.7733 http://www.johncon.com/
Campbell, CA 95008 Fax. 408.379.9602
/usr/src/linux/.config?
Where can I find the /usr/src/linux/.config that was used to make the distribution kernel for slink? Thanks, John -- John Conover, [EMAIL PROTECTED], http://www.olliance.com/ Olliance, 986 Walsh Ave., Santa Clara, CA 95050, 408.850.7500
Eterm backspace and del?
What do you put in ~/.Eterm/MAIN to get the backspace and del keys to work right? Thanks, John -- John Conover[EMAIL PROTECTED] http://www.johncon.com/ 631 Lamont Ct. Tel. 408.370.2688 http://www.johncon.com/ntropix/ Campbell, CA 95008 Fax. 408.379.9602 http://www.johncon.com/nformatix/
Eterm Backspace and Del?
What does one put in MAIN for Eterm to control Backspace and Del keysym's? Thanks, John -- John Conover[EMAIL PROTECTED] http://www.johncon.com/ 631 Lamont Ct. Tel. 408.370.2688 http://www.johncon.com/ntropix/ Campbell, CA 95008 Fax. 408.379.9602 http://www.johncon.com/nformatix/
O'Reilly Debian 2.2?
Does anyone know when the O'Reilly will distribute Debian 2.2? Thanks, John -- John ConoverTel. 408.370.2688 [EMAIL PROTECTED] 631 Lamont Ct. Cel. 408.772.7733 Campbell, CA 95008 Fax. 408.379.9602 http://www.johncon.com
gnokii
Has anyone used gnokii to link Linux through Nokia cell phone to the Internet? Thanks, John -- John ConoverTel. 408.370.2688 [EMAIL PROTECTED] 631 Lamont Ct. Cel. 408.772.7733 Campbell, CA 95008 Fax. 408.379.9602 http://www.johncon.com
RE: [OT]: UUCP
I've used, (and still do use,) uucp for email for all my domains. The Taylor uucp which comes standard with Debian, (which has a mailing list, [EMAIL PROTECTED],) does work well over tcp/ip to port 540, (but be advised, if you use it over the Internet, it uses a telnet like login-as in ASCII login: and password:,) and works well with ssh tunnels, (from anywhere on the planet to your ISP, or home box,) so you can use a 10.x.x.x for your remote IP, and gather up mail for multiple users, accounts, or machines on demand, (and handles Bcc:'s and Fcc:'s correctly.) It is perfectly compatible with exim, qmail, and sendmail, for receiving email for a domain of machines and users, and handles domain addressing, (as well as "bam" addressing.) It is a reasonably secure way of handling email for a domain, and is rock solid-and doesn't require exposing any ports to the I-vandals, or spammers. Unfortunately, uucp providers are becoming few and far between. John Joris Lambrecht writes: > Thanks for your corrections, i'm feeling kind of melancholic every time i > talk/think/read about uucp. > Maybe i should dig up that uucp manual and start playing around :-) > > -Original Message- > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] > Sent: Tuesday, February 20, 2001 11:51 PM > To: debian-user@lists.debian.org > Subject: Re: [OT]: UUCP > > > In article <[EMAIL PROTECTED]>, > Joris Lambrecht <[EMAIL PROTECTED]> wrote: > >UUCP stands for Unix-to-Unix-CoPy > > > >I've used it nearly 8 yrs ago in a specific situation, even then it was > >considered out-dated. I figure it's mostly replaced by TCP/IP on all > >devices. From what i remember (did not use it since then) it's easy (what's > >in a word) to set up but only support serial/modem lines, hence is rather > >slow. > > Hmm. In fact, UUCP runs fine _over_ TCP/IP. It just needs a transport, > a serial line will do, a TCP connection will do too. > > Actually running UUCP over a serial line is probably a lot faster > than running PPP over it and TCP/IP on that. > > >NFS is also one of the protocols wich started replacing UUCP back then in > >19993/1994. > > NFS relaced UUCP? Hmm. That's like saying the microwave has > replaced the bicycle. > > >I must add this has been a real long time and i'm not up-to-speed with > >eventual current UUCP features/implementations but i suggest you take a > look > >at it from an historical point of view :-) > > UUCP still has it's merits, even today. The only problem is that > people _view_ it as outdated and forget about it. So there's not > much expertise around, unfortunately. > > Mike. > -- > I live the way I type; fast, with a lot of mistakes. > > > -- > To UNSUBSCRIBE, email to [EMAIL PROTECTED] > with a subject of "unsubscribe". Trouble? Contact > [EMAIL PROTECTED] > > > -- > To UNSUBSCRIBE, email to [EMAIL PROTECTED] > with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED] -- John ConoverTel. 408.370.2688 [EMAIL PROTECTED] 631 Lamont Ct. Cel. 408.772.7733 http://www.johncon.com/ Campbell, CA 95008 Fax. 408.379.9602
RE: [OT]: UUCP : sidenote - terrorism etc.
I d'uno. /etc/services says 540 is UUCP over TCP/IP, (its an IANA allocated/registered number for both tcp and ucp.) With secretary software, who knows. John BTW, I -P DENY in ipchains for input and output, and 540 isn't open on the Linux boxes that I use to MASQ the secretaries from the I-vandals. No DENYs on 540 in /var/syslog, ever. You might have something else going on. I do block a lot of port 137 broadcasts, though, (like everyone else that cares.) Joris Lambrecht writes: > Interesting, port 540 is frequently sending traffic on my windoze machine, > i'm not running anything remotely fancy (besides the O.S.) and it seemed to > me like some irregular port-traffic was going on. Is this true or is it just > something not to take into account ? > > on a side note, since we're talking about I-vandals, theregister.co.uk > reports that hackers in the UK are now legaly treated as Terrorists, the > disruption of a computer-system is legaly considered terrorism ... > > > > -Original Message- > From: John Conover [mailto:[EMAIL PROTECTED] > Sent: Wednesday, February 21, 2001 10:25 AM > To: debian-user@lists.debian.org > Subject: RE: [OT]: UUCP > > > > I've used, (and still do use,) uucp for email for all my domains. The > Taylor uucp which comes standard with Debian, (which has a mailing > list, [EMAIL PROTECTED],) does work well over tcp/ip to port 540, > (but be advised, if you use it over the Internet, it uses a telnet > like login-as in ASCII login: and password:,) and works well with ssh > tunnels, (from anywhere on the planet to your ISP, or home box,) so > you can use a 10.x.x.x for your remote IP, and gather up mail for > multiple users, accounts, or machines on demand, (and handles Bcc:'s > and Fcc:'s correctly.) > > It is perfectly compatible with exim, qmail, and sendmail, for > receiving email for a domain of machines and users, and handles domain > addressing, (as well as "bam" addressing.) > > It is a reasonably secure way of handling email for a domain, and is > rock solid-and doesn't require exposing any ports to the I-vandals, or > spammers. > > Unfortunately, uucp providers are becoming few and far between. > > John > > Joris Lambrecht writes: > > Thanks for your corrections, i'm feeling kind of melancholic every time i > > talk/think/read about uucp. > > Maybe i should dig up that uucp manual and start playing around :-) > > > > -Original Message- > > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] > > Sent: Tuesday, February 20, 2001 11:51 PM > > To: debian-user@lists.debian.org > > Subject: Re: [OT]: UUCP > > > > > > In article <[EMAIL PROTECTED]>, > > Joris Lambrecht <[EMAIL PROTECTED]> wrote: > > >UUCP stands for Unix-to-Unix-CoPy > > > > > >I've used it nearly 8 yrs ago in a specific situation, even then it was > > >considered out-dated. I figure it's mostly replaced by TCP/IP on all > > >devices. From what i remember (did not use it since then) it's easy > (what's > > >in a word) to set up but only support serial/modem lines, hence is rather > > >slow. > > > > Hmm. In fact, UUCP runs fine _over_ TCP/IP. It just needs a transport, > > a serial line will do, a TCP connection will do too. > > > > Actually running UUCP over a serial line is probably a lot faster > > than running PPP over it and TCP/IP on that. > > > > >NFS is also one of the protocols wich started replacing UUCP back then in > > >19993/1994. > > > > NFS relaced UUCP? Hmm. That's like saying the microwave has > > replaced the bicycle. > > > > >I must add this has been a real long time and i'm not up-to-speed with > > >eventual current UUCP features/implementations but i suggest you take a > > look > > >at it from an historical point of view :-) > > > > UUCP still has it's merits, even today. The only problem is that > > people _view_ it as outdated and forget about it. So there's not > > much expertise around, unfortunately. > > > > Mike. > > -- > > I live the way I type; fast, with a lot of mistakes. > > > > > > -- > > To UNSUBSCRIBE, email to [EMAIL PROTECTED] > > with a subject of "unsubscribe". Trouble? Contact > > [EMAIL PROTECTED] > > > > > > -- > > To UNSUBSCRIBE, email to [EMAIL PROTECTED] > > with a subject of "unsubscribe". Trouble? Contact > [EMAIL PROTECTED] > -- > > John ConoverTel. 408.370.2688 [EMAIL PROTECTED] > 631 Lamont Ct. Cel. 408.772.7733 http://www.johncon.com/ > Campbell, CA 95008 Fax. 408.379.9602 > > > -- > To UNSUBSCRIBE, email to [EMAIL PROTECTED] > with a subject of "unsubscribe". Trouble? Contact > [EMAIL PROTECTED] -- John ConoverTel. 408.370.2688 [EMAIL PROTECTED] 631 Lamont Ct. Cel. 408.772.7733 http://www.johncon.com/ Campbell, CA 95008 Fax. 408.379.9602
Re: console MP3 player
Hubert Chan writes: > Joel Dinel <[EMAIL PROTECTED]> writes: > > > Is there such a thing as a console-only MP3 player for Debian? I spend a > > lot of > > time in Command Line lately, and I don't want to start X just to play a MP3. > > mpg123, except it does not have controls to pause, etc. > put: Exec"I" exec /usr/local/bin/mpg123+ -b 1024 -@ ~/.music/list > ~/.music/log 2>&1 & in your ~/.fvwmrc, where ~/.music/list is a pipe that you write the directory/song you want played as text, and, put: Exec"Pause" exec killall -STOP mpg123+ > /dev/null 2>&1 & Exec"Continue after pause" exec killall -CONT mpg123+ > /dev/null 2>&1 & Nop "" Exec"Skip to next in sequence" exec killall -INT mpg123+ > /dev/null 2>&1 & Nop "" Exec"Start" exec /usr/local/bin/mpg123+ -b 1024 -@ ~/.music/list > ~/.music/log 2>&1 & Exec"Stop" exec killall -TERM mpg123+ > /dev/null 2>&1 & in a popup menu, (perhaps with your songs,) and you can pause, skip, stop songs, etc. A cheap way of doing an mp3 player using fvwm's menus. John -- John ConoverTel. 408.370.2688 [EMAIL PROTECTED] 631 Lamont Ct. Cel. 408.772.7733 http://www.johncon.com/ Campbell, CA 95008 Fax. 408.379.9602
World's largest mailing list?
Its not exactly a Debian/Linux question, but does anyone know how many email addresses are on the world's largest mailing list, and the OS/HW it runs on? Average messages per day? Thanks, John -- John ConoverTel. 408.370.2688 [EMAIL PROTECTED] 631 Lamont Ct. Cel. 408.772.7733 http://www.johncon.com/ Campbell, CA 95008 Fax. 408.379.9602
Dual serial ports on a laptop?
Anyone using a laptop with a dual serial port PCMCIA? I need a brand that works. Thanks, John -- John ConoverTel. 408.370.2688 [EMAIL PROTECTED] 631 Lamont Ct. Cel. 408.772.7733 http://www.johncon.com/ Campbell, CA 95008 Fax. 408.379.9602
ipchains/syslog entry?
What does ICMP 8 to 0 do, as in: Nov 28 01:04:09 john kernel: Packet log: input DENY ppp0 PROTO=1 208.185.54.14:8 123.123.123.123:0 L=84 S=0x00 I=25881 F=0x T=52 (#86) where 123.123.123.123 is my box? Thanks, John -- John ConoverTel. 408.370.2688 [EMAIL PROTECTED] 631 Lamont Ct. Cel. 408.772.7733 http://www.johncon.com/ Campbell, CA 95008 Fax. 408.379.9602
Peculiar DENY from ipchains?
Anyone ever seen a DENY from IP chains like: Nov 29 19:44:14 john kernel: Packet log: output DENY ppp0 PROTO=1 10.12.1.15:65535 63.81.184.67:65535 L=21 S=0xD0 I=46379 F=0x0042 T=255 (#82) where 10.12.1.15 is my ppp interface address? What's going on with 65535? I'm sending it out, but don't know why. Thanks, John -- John ConoverTel. 408.370.2688 [EMAIL PROTECTED] 631 Lamont Ct. Cel. 408.772.7733 http://www.johncon.com/ Campbell, CA 95008 Fax. 408.379.9602
ipchains -f?
Is it wise to use ipchains -f, (fragment) on all interfaces, including ppp0? Thanks, John -- John ConoverTel. 408.370.2688 [EMAIL PROTECTED] 631 Lamont Ct. Cel. 408.772.7733 http://www.johncon.com/ Campbell, CA 95008 Fax. 408.379.9602
Two serial ports on a Linux laptop?
Anyone done two serial ports on a Linux laptop? How did you do it? Thanks, John -- John ConoverTel. 408.370.2688 [EMAIL PROTECTED] 631 Lamont Ct. Cel. 408.772.7733 http://www.johncon.com/ Campbell, CA 95008 Fax. 408.379.9602
Diamond Speedstar A55 AGP
Does anyone know what card to pick in XF86Setup for a Diamond Speedstar A55 AGP with 8megs and a S3 Trio 3D? Its giving me fits. Thanks, John -- John Conover[EMAIL PROTECTED] http://www.johncon.com/ 631 Lamont Ct. Tel. 408.370.2688 http://www.johncon.com/ntropix/ Campbell, CA 95008 Fax. 408.379.9602 http://www.johncon.com/nformatix/
serial line initialization
I just upgraded from Slackware 1.2 to Debian 2.1, (yes, it was a big
jump.)
Do I still have to:
${SETSERIAL} /dev/cua2 ${AUTO_IRQ} skip_test autoconfig spd_vhi
/bin/stty crtscts < /dev/cua1
in /etc/rc0.d, and then spec the baud rate at 38400 in the
applications using the serial line?
Thanks,
John
--
John Conover[EMAIL PROTECTED] http://www.johncon.com/
631 Lamont Ct. Tel. 408.370.2688 http://www.johncon.com/ntropix/
Campbell, CA 95008 Fax. 408.379.9602 http://www.johncon.com/nformatix/
serial ports faster that 38.4K?
How do you make the serial ports in 2.1 go faster than 38,400? The arg spd_vhi doesn't work any more, (setserial claims its depreciated, and it doesn't work,) but the docs claim that that is the way to do it. Thanks, John -- John Conover[EMAIL PROTECTED] http://www.johncon.com/ 631 Lamont Ct. Tel. 408.370.2688 http://www.johncon.com/ntropix/ Campbell, CA 95008 Fax. 408.379.9602 http://www.johncon.com/nformatix/
SGML WYSIWYG editors?
Are there any? Thanks, John -- John Conover[EMAIL PROTECTED] http://www.johncon.com/ 631 Lamont Ct. Tel. 408.370.2688 http://www.johncon.com/ntropix/ Campbell, CA 95008 Fax. 408.379.9602 http://www.johncon.com/nformatix/
slow login prompt for getty?
In potato and slink, I'm getting a slow login prompt for getty and mgetty over serial connections. Sometimes it waits 30 seconds, or so, to give the login prompt. Anyone found the same and fixed it? Thanks, John -- John ConoverTel. 408.370.2688 [EMAIL PROTECTED] 631 Lamont Ct. Cel. 408.772.7733 http://www.johncon.com/ Campbell, CA 95008 Fax. 408.379.9602
ICMP firewall info?
Any disadvantages to using icmp_echo_ignore_broadcasts and icmp_ignore_bogus_error_responses in firewall rules? Thanks, John -- John ConoverTel. 408.370.2688 [EMAIL PROTECTED] 631 Lamont Ct. Fax. 408.379.9602 http://www.johncon.com/ Campbell, CA 95008 Cel. 408.772.7733
vmware on Debian?
Anyone using vmware on a Debian 2.2.12 kernel? Work OK? Thanks, John -- John ConoverTel. 408.370.2688 [EMAIL PROTECTED] 631 Lamont Ct. Fax. 408.379.9602 http://www.johncon.com/ Campbell, CA 95008 Cel. 408.772.7733
Wordperfect 9 and e-mail
Is it possible to send a Wordperfect document as an e-mail without saving it to a file, calling netscape, and including it as an attachment? Thanks, John -- John ConoverTel. 408.370.2688 [EMAIL PROTECTED] 631 Lamont Ct. Fax. 408.379.9602 http://www.johncon.com/ Campbell, CA 95008 Cel. 408.772.7733
Adaptec 1542 with slink/potato?
Anyone using an Adaptec 1542 with slink/potato? CD work OK? Thanks, John -- John ConoverTel. 408.370.2688 [EMAIL PROTECTED] 631 Lamont Ct. Fax. 408.379.9602 http://www.johncon.com/ Campbell, CA 95008 Cel. 408.772.7733
Re: Is swen back?
Andreas Janssen writes: > > Alphonse Ogulla (<[EMAIL PROTECTED]>) wrote: > > > Got 200 plus mail bombs in my pop3 account this morning. Luckily I > > used Kmail and filtered (deleted) every incoming message of size > > greater than 40Kb. Just wondering, is swen back from holiday? How you > > people managing? > > From my point of view, it looks like it never really went away. Over the > last months, I get between 30 to 50 of this viruses, mostly swen, every > day. Sometimes until the daily forwarding quota for my bigfoot account > is exceeded. > FYI, if you are running procmail in a shell account: :0 BD * ^(T(24gRXJ|V(oAAAI|pQAAI|psAAE|qQAAM))|(UEsDBBQ)) /dev/null in your ~/.procmailrc will catch most M$ executables in your e-mail and trash them. Be advised that if you expect executables in your e-mail, it will trash them too, as well as zipped files-so you would have to make a policy on that. John BTW, the recipe looks for the base64 encoded M$ executable header/loader information in the beginning of the file in the e-mail body. See /usr/share/misc/magic for particulars. -- John Conover, [EMAIL PROTECTED], http://www.johncon.com/ -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Sine wave .cdr file?
I need to make a .cdr file of a sine wave at various frequencies. Any suggestions on how to do it? Thanks, John -- John Conover, [EMAIL PROTECTED], http://www.johncon.com/ -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Lock tab on SD card?
Mounting an SD card with the lock tab enabled mounts as read only. But can Linux still write to the SD card, under any circumstances? Thanks, John -- John Conover, cono...@rahul.net, http://www.johncon.com/
Re: Thunderbird not allowing local accounts
pa...@quillandmouse.com writes: > On Wed, 5 Jan 2022 11:58:09 -0500 > Celejar wrote: > > > On Wed, 5 Jan 2022 09:44:24 -0500 > > "Paul M. Foster" wrote: > > > > ... > > > > > Thanks for the info. Mozilla Foundation is seriously annoying me > > > lately. > > > > > > Can anyone recommend another MUA which uses mbox format and is > > > relatively easy to configure? > > > > Sylpheed? > > > > Celejar > > > > It's starting to look that way. Actually, I'm looking at claws-mail. > Yea, and claws-mail is not compatible with Gmail's oauth2, which is now required by Google, (as of this month,) and Thunderbird is compatible, but no longer supports local mbox delivery for a LAN. Kind of a mess. John -- John Conover, cono...@rahul.net, http://www.johncon.com/
Bullseye default swap partition size?
I just installed Bullseye, using default "use entire disk" as the HD configuration from the Graphical Install option on a Live USB SD. The swap partition size installed on the HD is 1 GB. Buster, etc., used to be about the size of memory, (8 GB in my case,) for the swap partition size. Is there a reason for such small default swap partition size on a 1 TB HD in Bullseye that I don't know about? Thanks, John -- John Conover, cono...@rahul.net, http://www.johncon.com/
Re: Bullseye default swap partition size?
Andrew M.A. Cater writes: > On Sat, Jan 08, 2022 at 08:54:43AM -0800, John Conover wrote: > > > > I just installed Bullseye, using default "use entire disk" as the HD > > configuration from the Graphical Install option on a Live USB SD. > > > > The swap partition size installed on the HD is 1 GB. > > > > Buster, etc., used to be about the size of memory, (8 GB in my case,) > > for the swap partition size. > > > > Changed with Bullesye as the default. Rarely, if ever,will a system with > a significant amount of memory hit swap so 2x memory is probably overkill > Hibernation on a laptop is the only thing that might be affected, I think, > and even then,m that's generally to a file rather than generic swap. > Thanks, Andy. What I was concerned about is the caching pushing the machine into memory overflow. Is the caching LRU gets replaced? What about mmap(2) used by many encryption/signature programs for file access pushing the the machine into memory overflow when cached, etc.? Thanks, John -- John Conover, cono...@rahul.net, http://www.johncon.com/
exim update not responding to update-rc.d
I use either exim or another MTA. When I want to use the other MTA,
"update-rc.d -f exim remove" does not remove exim from "ps eax" after
today's exim update.
Searching for exim in /etc/systemd/system/multi-user.target.wants/*
and /lib/systemd/system/* yields nothing.
How do I stop exim from launching across boots?
Thanks,
John
--
John Conover, cono...@rahul.net, http://www.johncon.com/
Re: exim update not responding to update-rc.d
Greg Wooledge writes: > On Tue, May 04, 2021 at 09:17:38AM -0700, John Conover wrote: > > Searching for exim in /etc/systemd/system/multi-user.target.wants/* > > and /lib/systemd/system/* yields nothing. > > > > How do I stop exim from launching across boots? > > Presumably there is a systemd service, which is enabled. You will want > to disable it. > That was the question, Greg: "Searching for exim in /etc/systemd/system/multi-user.target.wants/* and /lib/systemd/system/* yields nothing." so, it wasn't there. Which service?, (or how to find out?) Or, maybe, it is under /etc/init.d/exim4, which failed to work, so, I was looking into the systemd control files. Thanks, John -- John Conover, cono...@rahul.net, http://www.johncon.com/
Re: exim update not responding to update-rc.d
For the archives, this issue was created by looking for penetration vulnerabilities during the boot of a Debian Buster machine using tcpdump(1) on a machine between Buster, and the it's Internet facing router. There was exim traffic when exim boots, but exim was SUPPOSED to be disabled during boot by policy. As per the man page for System V init, to disable launching of exim: update-rc.d -f exim remove which would be (re-)enabled with: update-rc.d -f exim defaults which installs the ln -s files in /etc/rc*.d, as appropriate. The correct command on Buster is: update-rc.d -f exim4 remove It was discovered during routine security audit of iptables(1) configuration, (specifically, IPv6.) John john doe writes: > On 5/4/2021 7:28 PM, Erwan David wrote: > > Le 04/05/2021 à 19:26, Joe a écrit : > >> On Tue, 4 May 2021 10:03:43 -0700 > >> cono...@rahul.net (John Conover) wrote: > >> > >>> Greg Wooledge writes: > >>>> On Tue, May 04, 2021 at 09:17:38AM -0700, John Conover wrote: > >>>>> Searching for exim in > >>>>> /etc/systemd/system/multi-user.target.wants/* and > >>>>> /lib/systemd/system/* yields nothing. > >>>>> > >>>>> How do I stop exim from launching across boots? > >>>> Presumably there is a systemd service, which is enabled. You will > >>>> want to disable it. > >>>> > >>> That was the question, Greg: > >>> > >>> "Searching for exim in > >>> /etc/systemd/system/multi-user.target.wants/* and > >>> /lib/systemd/system/* yields nothing." > >>> > >>> so, it wasn't there. Which service?, (or how to find out?) Or, maybe, > >>> it is under /etc/init.d/exim4, which failed to work, so, I was looking > >>> into the systemd control files. > >>> > >> Try exim4.service > >> > > apt-file tells me trhere is a exim4-base.service (from package exim4-base) > > > > You could look in the log for the service name then do 'systemctl > disable '. > > I just want to mention 'inserv' but you should use systemd. > > -- > John Doe -- John Conover, cono...@rahul.net, http://www.johncon.com/
Ownership and permissions on /run/user/601/doc ???
Peculiar ownership and permissions on /run/user/601/doc: d? ? ?? ?? doc/ and it can not be changed as root. Logging out, then in, same thing. Any help on fixing it would be greatly appreciated. Thanks, John -- John Conover, cono...@rahul.net, http://www.johncon.com/
Re: Ownership and permissions on /run/user/601/doc ???
=?UTF-8?Q?Markus_Sch=c3=b6nhaber?= writes: > 01.06.21, 17:28 +0200, John Conover: > > > Peculiar ownership and permissions on /run/user/601/doc: > > > > d? ? ?? ?? doc/ > > > > and it can not be changed as root. > > > > Logging out, then in, same thing. > > > > Any help on fixing it would be greatly appreciated. > > There's likely nothing to fix. This is how the mount point of some FUSE > filesystems look when viewed from someone else as the owner. > In your case, try to look at it as the user with id 601. > This issue was found this AM from updatedb(1), (cron job.) All my machines have changed the same way after after yesterday's apt-get update, (xdg maybe?) On another machine, (they are all the same, as close as I can make them,) after booting and logging in, ls -al /run/user/601, the doc/ directory: dr-x-- 2 theuser users 0 Dec 31 1969 doc/ Then running updatedb, and ls -al /run/user/601: d? ? ?? ?? doc/ findmntl(8): /run/user/601/doc /dev/fuse fuserw,nosuid,nodev,relatim -- John Conover, cono...@rahul.net, http://www.johncon.com/
Re: Ownership and permissions on /run/user/601/doc ???
Thomas Schmitt writes: > Hi, > > John Conover wrote: > > Peculiar ownership and permissions on /run/user/601/doc: > >d? ? ?? ?? doc/ > > Are you already the user with id 601 ? > If not: Does it work better if you become that user ? > As the user, or as root. Thanks, John -- John Conover, cono...@rahul.net, http://www.johncon.com/
Re: Ownership and permissions on /run/user/601/doc ???
Thomas Schmitt writes: > Hi, > > i wrote: > > > Are you already the user with id 601 ? > > > If not: Does it work better if you become that user ? > > John Conover wrote: > > As the user, or as root. > > Then it could be owned by another user id. > (Hard to guess while stat(2) fails even for the boss.) > > But you could at least verify that you suffer from the known problem > with xdg-desktop-portal by stopping it by the systemctl command. > Then look whether the .../doc directory vanished or changed its > accessability. > Thanks, Thomas. findmnt: /run/user/601/doc /dev/fuse fuse rw,nosuid,nodev,relatim ls -al /dev/fuse: crw-rw-rw- 1 root root 10, 229 Jun 1 08:16 /dev/fuse I have no idea what kind of mount(1) command was used to make /run/user/601/doc. It does respond to umount(8), and ls -al /run/user/601/doc: drwx-- 2 theuser users 40 Jun 1 10:01 doc/ Logging out, and in, ls -al /run/user/601/doc: d? ? ?? ?? doc/ So, its in the mount command at login, (or whatever was used for the fuse system-it could be a different type of file system that find(1), updatedb(1), etc., stumbles into,) at login. John -- John Conover, cono...@rahul.net, http://www.johncon.com/
Re: Ownership and permissions on /run/user/601/doc ???
John Conover writes: > Thomas Schmitt writes: > > > > > > Are you already the user with id 601 ? > > > > If not: Does it work better if you become that user ? > > On Debian 10 Buster, both fvwm and xfce. Odd, root can not access the /run/user/601/ directory, but the user can: ls -al /run/user/601/ | egrep doc/ dr-x-- 2 theuser users 0 Dec 31 1969 doc/ su ls -al /run/user/601/ | egrep doc/ /bin/ls: cannot access '/run/user/601/doc': Permission denied d? ? ?? ?? doc/ exit ls -al /run/user/601/ | egrep doc/ dr-x-- 2 theuser users 0 Dec 31 1969 doc/ which accounts for the failure of updatedb(1), (running out of cron with UID 0.) Might effect find(1), too. Odd timestamp on /run/user/601/doc, with "Permission denied" to ls -al /run/user/601 as root. John -- John Conover, cono...@rahul.net, http://www.johncon.com/
chrome mailto:?
I used to use claws-mail, and installed it. I now want to use thunderbird, (NOT thunderbird-esr, I installed thunderbird and update it manually.) Under Xfce, the default mail handler can be set to thunderbird, which works. Under fvwm, chrome still defaults to claws-mail. Modern chrome's no longer have handler options. Any idea where the mailto: claws-mail is stored in fvwm? Thanks, John -- John Conover, cono...@rahul.net, http://www.johncon.com/
Setting Thunderbird to be the default mailto?
Which is the correct command used to set Thunderbird to be the default mailto with a ~/.local/share/applications/Thunderbird.desktop file? xdg-mime default Thunderbird.desktop x-scheme-handler/mailto or: xdg-settings set default-url-scheme-handler mailto Thunderbird.desktop Thanks, John -- John Conover, cono...@panix.com, http://www.johncon.com/
Re: Re (2): Archiving on optical media
pe...@easthope.ca writes: > From: rhkra...@gmail.com > Date: Mon, 28 Feb 2022 09:52:35 -0500 > > What has been your experience with reliability of SD cards for backup? > > My explanation was ambiguous. =8~| The primary medium here is SD. > The backup is optical. > > The oldest SD card I have was purchased about 2012. The label was > NextTech. Purchased via eBay from a seller in Ontario or Quebec. It's > been reformatted 2 or 3 times over the years and still works. =8~) > Recently parts of some files disappeared or showed garbled > information. The card has served better than I expected. Probably due > for retirement. =8~) > > Since 2012 I've purchased three Kingston 8 GB SDs. Two are used in > mobile phones; one is system store in a OLPC XO 1.5. Those SDs > continue to work with no apparent difficulties. > > General policy. Buy only name brands: Kingston, SanDisk, Lexar & etc. > Buy only from local businesses maintaining a reputation in the > marketplace. Noname cards only waste time and money. > Also, make sure the SD manufacturing technology has wear leveling. Many cheap SDs do NOT. (They are manufactured in out dated facilities.) If used for backups, write the file, then write the check sum of the file, (perhaps using something linke md5sum(1),) to the disk, with the same file name plus an extension, so that md5sum can be used to check the integrity of the data before installing the backup. For long term archival data, use a new SD, and write once, (perhaps on multiple SDs, for file reconstruction; any corrupt file on one SD can probably be retrieved from another SD.) Store at STP for the plastics. > > Regardless of reliability of a specific medium, data preservation > comes from a good backup system. =8~) > John -- John Conover, cono...@panix.com, http://www.johncon.com/
Legacy Dell 760 apt-get updates?
I installed Bullseye on an antique Dell 760, and get the following when doing apt-get updates: Possible missing firmware /lib/firmware/i915/icl_dmc_ver1_09.bin for module i915 The machine seems to run fine, but do I need to add something? Thanks, John -- John Conover, cono...@panix.com, http://www.johncon.com/
Re: Wayland vs X
Greg Wooledge writes: > On Fri, Mar 11, 2022 at 10:07:39PM +0100, Emanuel Berg wrote: > > OK, that stinks, I'm super-happy with my WM and it's > > configured and all. See? How do they expect anyone to switch > > to a supposedly superior solution when there are all these > > obstacles and limitations? > > I don't think anyone is switching. What I think is happening is that > old users (like us) are staying with what we know, and some new users > are using Wayland/GNOME because it's the default that Debian selected > for them. Some of the new users who grow up on Wayland may eventually > move on to other desktop environments, or other windowing systems, and > will become the next generation of old cranky gurus. Words of wisdom, Greg. I'm 79 and still use FVWM(1), c. '90s. Concerned about things like memory footprint, speed, configuration capability, reliability, 24/7/365 stability, intuitive operation, etc. My ~/.emacs is set up like the 'e' editor from PL1, c. '60s with line block moves and indent, 8^). John -- John Conover, cono...@panix.com, http://www.johncon.com/
logcheck shows only accounting tool, Debian 11?
For the past few days, logcheck is sending: Apr 4 11:40:13 john systemd[1]: Starting system activity accounting tool... Apr 4 11:40:13 john systemd[1]: sysstat-collect.service: Succeeded. Apr 4 11:40:13 john systemd[1]: Finished system activity accounting tool. iterated every 10 minutes for the hour logcheck message. That is all logcheck is sending; the rest of the normal expected data is omitted. The files in /var/log/* seem to contain the normal expected data, which is ommitted from the logcheck hourly message. Any ideas would be appreciated, John BTW, the "...activity accounting tool ..." messages seem new. Was something updated recently? -- John Conover, cono...@panix.com, http://www.johncon.com/
Re: logcheck shows only accounting tool, Debian 11?
Roberto =?iso-8859-1?Q?C=2E_S=E1nchez?= writes:
> On Mon, Apr 04, 2022 at 12:46:33PM -0700, John Conover wrote:
> >
> > For the past few days, logcheck is sending:
> >
> > Apr 4 11:40:13 john systemd[1]: Starting system activity accounting
> > tool...
> > Apr 4 11:40:13 john systemd[1]: sysstat-collect.service: Succeeded.
> > Apr 4 11:40:13 john systemd[1]: Finished system activity accounting
> > tool.
> >
> > iterated every 10 minutes for the hour logcheck message.
> >
> > That is all logcheck is sending; the rest of the normal expected data
> > is omitted.
> >
> > The files in /var/log/* seem to contain the normal expected data,
> > which is ommitted from the logcheck hourly message.
> >
> > Any ideas would be appreciated,
>
> If you have a tool like etckeeper installed, you can consult the git
> history to determine if any changes have been made to the logcheck
> ignore files recently. Absent that, you can use a command like this:
>
> sudo find /etc/logcheck/ -type f -exec dpkg -S {} \; | cut -f1 -d':' | sort -u
>
> That will give you a list of packages that own files under /etc/logcheck
> and then you can consult /var/log/dpkg.log* for recent updates to those
> packages.
>
> If you just want to know what the next logcheck report will contain
> (e.g., because you've tweaked the ignore filters and you want to make
> sure that it excludes the right thing), you can do something like this:
>
> sudo -u logcheck -s /usr/sbin/logcheck -t -o
>
I'm not looking at the sources to logcheck and/or sysstat, only the
log files in /var/log/, and all the normal logcheck data is there.
It seems as if both logcheck and debian-sa1 use the same last record
processed reference in /var/log/syslog and /var/log/daemon.log, making
them incompatible with each other.
/etc/cron.d/sysstat runs every 5 minutes, moving the last record
processed reference to the end of both files in /var/log every 5
minutes. When /etc/cron.d/logcheck runs every hour, the last record
processed reference is already at the end of both files in /var/log.
Thus, skipping things like failed logins, etc., in logcheck reporting.
Unless I am mistaken, sysstat was a new default installation in
debian-live-11.2.0-amd64-xfce.iso.
Can /etc/cron.d/sysstat and /etc/cron.daily/sysstat simply be removed?
Thanks,
John
--
John Conover, cono...@panix.com, http://www.johncon.com/
Re: Looking for documentation package
Gary L. Roach writes: > I have been looking for a documentation system that would allow me to > write cursive paragraphs with math formulas interspersed and then have > the formulas solved. Some examples that almost do what I want is Sage, > Octave and Cantor (with the proper backend). So far all seem to be > missing the /* text */ capability of the C language and have no > subscript superscript capability. I like Cantor a lot but haven't been > able to get around these two hurdles. Could anyone help. > Hi Gary. Tex/Latex/AmsTex are the obvious best choices for doing exactly that. They were written to do such things: 1) Write a shell script with the variable names calculated, (perhaps from C or Python,) and output in Tex format. 2) Include the file, (or version(s) thereof,) in Tex page(s) that does the type setting. You might be able to do something with the Calc function in emacs, too, (but it might have limited capability for mathematical type setting.) John -- John Conover, cono...@panix.com, http://www.johncon.com/
Re: any good books about the (art?, economics and) science of optimizing IO performance? ...
Albretch Mueller writes:
> there is quite a bit of partial and somewhat obviously misconstrued
> ("buy my great sh!t") information out there about how to combine RAM,
> NVMe, SSD, SATA and RAID in order to optimize IO performance. You also
> hear about ZFS licensing and performance issues in Linux.
>
> I'd wish I could find a book explaining IO performance right from the
> physics of it to the OS system level algorithms to optimize transfer
> rates in a "nullius in verba", "and-here-is-how-you-test-it" kind of
> way.
>
> Any comprehensive readings regarding such matters you would share?
>
A Turing machine implemented with a CPU of one AOI (And, Or, Invert,)
gate per bit, to do the Boolean arithmetic is only 6 CMS transistors
per bit, and the through put is about 12 pico seconds, (12 trillionth
of a second,) using 12 nano-meter lithography, ie, the CPU execution
time is not the issue.
In the PC, (a Von Neuman architecture,) the buss is the issue, as has
been known since the early 1940's, (it was named the Von Neuman
bottleneck, by the early 1950's on the ENIAC.) The PC buss structure
is a remarkable accomplishment, but the PC is a terminal, (and many
theorist argue it is not a computer, any more than a pair of light
switches controlled by traveler wires, as in an EXOR gate, a half
adder in Boolean logic, is a computer, with a buss function via the
traveler wires-but that's another issue.)
So, in the PC, (the Intel 8008 was designed for cash register
applications, BTW,) the buss structure, (both memory and IO,) is the
speed, (and speed power product,) issue, which can be enhanced by
data/instruction caching, speculative execution, (particularly if the
caches are not dumped as in the Spectre security issues,) etc.
Good luck on testing things. The size of the caches can increase buss
data/instruction throughput dramatically-up to a point. Multiple
processes can, (because of the latencies, through possibly multiple
buss structures,) slow things to a crawl-the slowest one controls the
speed.
Your message kind of implied networked disk IO, (think about all the
serial caches in the chain.) The way blade super computers address the
problem is to write, NOT to the disk, but to the on disk cache memory,
(ie semiconductor memory physically on the disk drive-there is a
latency for the spinning media to keep up, so powering down MUST flush
the cache-good luck finding disk that will do that.)
To pursue further, you might want to look at the way Luster does it,
(Luster is the distributed file system under the parallelization used
in many super computers using Linux-mpich, etc., managing the
parallelization/concurrency issues.)
John
--
John Conover, cono...@panix.com, http://www.johncon.com/
Stop XFCE saving the state?
How to stop XFCE saving the state when logging out of Bullseye XFCE? Thanks, John -- John Conover, cono...@panix.com, http://www.johncon.com/
Re: Stop XFCE saving the state?
Cindy Sue Causey writes: > On 7/5/22, Ash Joubert wrote: > > On 06/07/2022 10:53, John Conover wrote: > >> How to stop XFCE saving the state when logging out of Bullseye XFCE? > > > > Uncheck the box "Applications (XFCE X with mouse icon) / Setting / > > Session and Startup / Logout Settings / Automatically save session on > > logout". You can also adjust your session autostart programs. > > There's also a place to toggle something on and off if you get a GUI > window when you click logout in the Applications menu. I'm using LXQt > right now so I logged out and went into XFCE4 to verify what I'd seen > in the past. > > There's a checkbox and something very close to "Save session for > future logins" at the bottom of mine. I accidentally clicked it and > triggered it on a long time ago so I know it can be easily overlooked > when we're focused on things we've done a thousand times. > Thanks, Cindy. There is an issue with Bullseye's XFCE. It changes the Settings->Session and Startup->Saved Sessions Default on logout, (apparently the current session,) even though Settings->Session and Startup->Logout Settings->Automatically save session on logout is NOT checked. Logging back in, immediately, results in ~/Desktop not being scanned, and any windows, (i.e., Thunderbird,) having no borders, and positioned over the top bar of XFCE, and the menu system in Thunderbird disappears when the mouse is moved, which was NOT the session at logout, (it has the current date, though.) Any help would be appreciated, John -- John Conover, cono...@panix.com, http://www.johncon.com/
Re: cups broken
gene heskett writes: > I give up, the driverless printer cups installs automaticaly cannot be > deleted and has > taken over from the brother drivers that work, preventing me from using > the printer at all. > > So how do I disable the driverless junk? Is that a separate package that > is removable? > cups doesn't even offer to disable this non-working garbage. > Thanks for any good clues. > Hi Gene. If its a network connected printer, then the driverless connection will be PROBABLY default to PCL5e/PCL6, (or maybe ipp,) which the modern Brother printers support. Older Brother printers do not support PCL and/or ipp, and require a specific Brother printer set of drivers for network connectivity. If its an older printer, you might attempt a re-install of the Brother printer drivers, and cups(1) SHOULD remove any existing PCL/ipp drivers during installation, (famous last words.) BTW, x86_64-linux-gnu has to be installed on my machines for the the Brother printer drivers to compile. /etc/cups/ppd/* and/or /usr/local/Brother/* and/or /opt/Brother/* may provide some information. John -- John Conover, cono...@panix.com, http://www.johncon.com/
A question about alsa(1) and sox(1) internals
The command: sox ... sine create 1000 vol -60 dB generates a 1 kHz. sine wave at 1 / 1000 full scale. Does the low level sine wave still consist of +/- 2^15 steps? (i.e., does the volume reduction occur during sine wave generation, or post generation?) Thanks, John -- John Conover, cono...@panix.com, http://www.johncon.com/
Re: Slow SSH over WLAN? How to check?
Might try variants of: ssh -v -v -v theu...@thedomain.tld to see what ssh/sshd are doing. John Bob Weber writes: > On 9/3/20 9:48 AM, riveravaldez wrote: > > Hi, > > > > I'm under the impression that one of my LAN-SSH connections is working > > poorly. When I SSH from a wired desktop machine (generic) to a > > Wi-Fi-ed notebook (ThinkPadX220) things take irregular and seemingly > > excessive amounts of time to happen (you type and the text appears a > > moment later, etc.). This is just a > > desktopâcableârouterâWi-Fiânotebook (W)LAN scheme. > > Issue appears also logging from notebook to desktop. > > > > Also I've been having some apparent poor performance in simple > > web-navigation with that notebook (always through Wi-Fi), so, I'm > > suspecting: maybe some issue with the firmware-iwlwifi? > > > > $ lspci | grep "Network controller" > > 03:00.0 Network controller: Intel Corporation Centrino Advanced-N 6205 > > [Taylor Peak] (rev 34) > > > > Both machines run Debian testing (updated). > > > > What could I do to check/test the health/performance of the connection > > in order to diagnose if there's effectively a problem? > > > > Thanks a lot! > > > Try iperf3. Install on both machines and start one as a server and one as a > client to see the network speed. Run with the -R option to see the reverse > speed. Make sure there is no firewall on the server machine or open the > port 5201. > > > -- > > > *...Bob* > > > > > > On 9/3/20 9:48 AM, riveravaldez wrote: > > cite="mid:cad8u+g_gzwdw7tufmaxkpeybsv9cw1gp5vjmcx6n_bnfpm+...@mail.gmail.com"> > Hi, > > I'm under the impression that one of my LAN-SSH connections is working > poorly. When I SSH from a wired desktop machine (generic) to a > Wi-Fi-ed notebook (ThinkPadX220) things take irregular and seemingly > excessive amounts of time to happen (you type and the text appears a > moment later, etc.). This is just a > desktopâcableârouterâWi-Fiânotebook (W)LAN scheme. > Issue appears also logging from notebook to desktop. > > Also I've been having some apparent poor performance in simple > web-navigation with that notebook (always through Wi-Fi), so, I'm > suspecting: maybe some issue with the firmware-iwlwifi? > > $ lspci | grep "Network controller" > 03:00.0 Network controller: Intel Corporation Centrino Advanced-N 6205 > [Taylor Peak] (rev 34) > > Both machines run Debian testing (updated). > > What could I do to check/test the health/performance of the connection > in order to diagnose if there's effectively a problem? > > Thanks a lot! > > > > Try iperf3. Install on both machines and start > one as a server and one as a client to see the network speed. > Run with the -R option to see the reverse speed. Make sure > there is no firewall on the server machine or open the port > 5201. > > > -- > > > ...Bob > > > -- John Conover, cono...@rahul.net, http://www.johncon.com/
portsentry(1) and ipv6?
Does portsentry(1) make any sense in systems with ipv6 connectivity? Thanks, John -- John Conover, cono...@rahul.net, http://www.johncon.com/
Re: Zoom.
Carl Fink writes: > On 10/17/20 4:23 PM, pe...@easthope.ca wrote: > > Does anyone have Zoom working in Debian 10? > > Working fine here. Did you set up the Microsoft repo? > Working fine with my wife's Buster; used extensively for months, (daily,) with no problems. Installed from zoom_amd64.deb obtained from the Zoom site, with standard "apt install zoom_amd64.deb". John -- John Conover, cono...@rahul.net, http://www.johncon.com/
Re: Replacement Email Client
Patrick Bartek writes: > On Sun, 25 Oct 2020 14:07:00 -0500 > John Hasler wrote: > > > Patrick Bartek writes: > > > But I need to view the entire email: images, graphics, etc. and be > > > able to interact with all the links, etc. and not just view them. > > > Want to get away from having to login to the mail account with a > > > browser to do so. So, EMACS won't work for me. > > > > Log in to what mail account? Gnus calls the browser and passes the > > HTML attachment to it. No logging in involved. > > I'm not referring to viewing HTML emails. I already can do that in > Claws-Mail using its Dillo plugin. I'm talking about filling in forms, > etc. that are part of the HTML email and sending just the data without > "replying" in the normal sense. This is beyond Claws' and Dillo's > capabilities. I have to use a real browser, log into that particular > web mail account (like gmail), click on that particular email, etc. to > do so. > > I'm getting the sense that I may not be able to find a client that can > do that. > I'm just guessing, but Thunderbird's Preferences->General "Files & Attachments" section should read something like "https Use Google Chrome (default)", or whatever. Mine does, and an HTML email calls chrome as a separate process with the HTML email, (I did not attempt a reply after editing.) My wife's Thunderbird has nothing in the Content Type section of "Files & Attachments", and does not call chrome for the same email, (and I could not find any way of making changes there, and antagonizing Google didn't yield a way to do it, either-anyone know?) Maybe ~/.mailcap, (and refresh via update-mime --local)? Or maybe something in /etc/alternatives/*. Or maybe some other riddle. John -- John Conover, cono...@rahul.net, http://www.johncon.com/
Re: Replacement Email Client
Patrick Bartek writes: > > > > > >> On 10/25/20 8:28 PM, Patrick Bartek wrote: > > >>> I'm not referring to viewing HTML emails. I already can do that in > > >>> Claws-Mail using its Dillo plugin. I'm talking about filling in > > >>> forms, etc. that are part of the HTML email and sending just the > > >>> data without "replying" in the normal sense. This is beyond > > >>> Claws' and Dillo's capabilities. I have to use a real browser, > > >>> log into that particular web mail account (like gmail), click on > > >>> that particular email, etc. to do so. > > >>> Has anyone: 1) ReBoot your machine. 2) login and launch claws-mail with the Dillo plugin, and exit claws-mail 3) lsof -Pni > tempfile and near the end of tempfile is 10 process running from Dillo, even through claws-mail has exited, (all listeners, something like 50 MB of memory.) John -- John Conover, cono...@rahul.net, http://www.johncon.com/
Removing WiFi AP in Buster?
How do you remove a WiFi AP in Buster? Thanks, John -- John Conover, cono...@rahul.net, http://www.johncon.com/
Re: Removing WiFi AP in Buster?
Celejar writes: > On Sun, 31 Jan 2021 07:25:45 -0800 > cono...@rahul.net (John Conover) wrote: > > > How do you remove a WiFi AP in Buster? > > You're going to have to be more specific about what software framework > you're using to manage your WiFi access, and what you mean by "remove." > Under XFCE, I want to clean up/remove some of the APs that I have connected to in the past. I couldn't find a delete button. Or, remove the APs from a file, (they are not in etc/wp_supplicant, or, etc/networks, the traditional places.) John -- John Conover, cono...@rahul.net, http://www.johncon.com/
Linux router AP with reserved IPs on wlan0?
A wireless router made with hostapd/dnsmasq/dhcpcd is fairly easy, and works well with iptables, with one shortcoming. After antagonizing the Google for hours, I can not find any way to add reserved IPs based on the the MAC address of devices connected on wlan0, (presumably in dhcpcd.conf.) Seems kind of a simple oversight for a wireless AP. Am I correct in my assumption? Thanks, John -- John Conover, cono...@rahul.net, http://www.johncon.com/
Re: Linux router AP with reserved IPs on wlan0?
Stefan Monnier writes: > > A wireless router made with hostapd/dnsmasq/dhcpcd is fairly easy, and > > works well with iptables, with one shortcoming. > > > > After antagonizing the Google for hours, I can not find any way to add > > reserved IPs based on the the MAC address of devices connected on > > wlan0, (presumably in dhcpcd.conf.) Seems kind of a simple oversight > > for a wireless AP. > > I'm not familiar with dhcpd, but dnsmasq's built-in DHCP server has been > perfectly sufficient so far and it lets you specify fixed IPs based on > MACs by simply putting those in the `/etc/ethers` file. > Thank you, Stefan. Works like a charm. The syntax of /etc/ethers is ':' delimited MAC address, followed by a space delimiter, followed by the IPv4 IP address, per IP reservation. That IP address must also be in /etc/hosts. John -- John Conover, cono...@rahul.net, http://www.johncon.com/
Re: Linux router AP with reserved IPs on wlan0?
Tixy writes: > On Sat, 2021-02-06 at 11:00 -0800, John Conover wrote: > > Stefan Monnier writes: > > > > A wireless router made with hostapd/dnsmasq/dhcpcd is fairly easy, and > > > > works well with iptables, with one shortcoming. > > > > > > > > After antagonizing the Google for hours, I can not find any way to add > > > > reserved IPs based on the the MAC address of devices connected on > > > > wlan0, (presumably in dhcpcd.conf.) Seems kind of a simple oversight > > > > for a wireless AP. > > > > > > I'm not familiar with dhcpd, but dnsmasq's built-in DHCP server has been > > > perfectly sufficient so far and it lets you specify fixed IPs based on > > > MACs by simply putting those in the `/etc/ethers` file. > > > > > > > Thank you, Stefan. > > > > Works like a charm. The syntax of /etc/ethers is ':' delimited MAC > > address, followed by a space delimiter, followed by the IPv4 IP > > address, per IP reservation. That IP address must also be in > > /etc/hosts. > > I didn't know about /etc/ethers, on my system I allocate fixed IP > addresses and hostnames by adding a lines to dnsmasq.conf like > > dhcp-host=MAC-Address,IP-Address,Hostname,Lease-Time > > I guess there's more than one way to skin this cat. > Hi Tixy. For the archives, the documentation to configuration of dnsmasq(1) is in /etc/dnsmasq.conf, the dnsmasq configuration file. It is verbose, and there are many options. Read thoroughly. It is a very impressive accomplishment, and works well, and is fairly easy to get working, (once familiar with the configuration file.) As a closing note, the DHCP/DNS services, (for wlan0,) are configured in the /etc/dnsmasq.conf file, *_NOT_* /etc/dhcpcd.conf, which is the usual alternative. (This is where I went astray-I mean the name is dnsmasq, probably meaning it is something to do with dns, duh.) Thanks to all, John -- John Conover, cono...@rahul.net, http://www.johncon.com/
Re: Replacing Pulseaudio with Alsa alone
One thing you might try is to edit /etc/pulse/daemon.conf, and set: flat-volumes = no This will fix most problems with pulseaudio, and alsa will work pretty much as expected. John BTW, automatic volume control was added in Windows 10. This was the era that pulseaudio was developed, and the same functionality was included. It didn't work out in Windows 10, and the functionality was removed. Pulseaudio still has the functionality. Georgi Naplatanov writes: > On 6/4/19 10:24 PM, Kaj Persson wrote: > > I am running Debian 9 Stretch. After the OS install the Pulseaudio is by > > default the standard audio system with Alsa as the executor. Which is > > the best strategy to remove Pulseaudio and instead letting Alsa be the > > one and only audio system? > > PulseAudio is some kind of mixer/proxy between ALSA and desktop > applications. In modern GNU/Linux OSes it's discouraged to remove/not > using PulseAudio. > > Are there any serious disadvantages doing so? > > If you don't use PulseAudio then only one application can use an ALSA > device at the same time on your computer. Even some applications support > PulseAudio only. > > Why don't you want to use PulseAudio, any problems? > > Kind regards > Georgi -- John Conover, cono...@rahul.net, http://www.johncon.com/
Raspian ntp manual invocation?
Raspbian sets its system clock on power up. Is it possible to manually make a 24/7 Raspbian set its clock periodically? Thanks, John -- John Conover, cono...@rahul.net, http://www.johncon.com/
Re: Raspian ntp manual invocation?
Thanks Sven. timedatectl(1) yields: Local time: Thu 2019-08-08 12:16:51 PDT Universal time: Thu 2019-08-08 19:16:51 UTC RTC time: n/a Time zone: America/Los_Angeles (PDT, -0700) Network time on: yes NTP synchronized: yes RTC in local TZ: no Does this mean ntp(1) is running periodically? Thanks, John BTW, the reason for the question is that the RPi documentation claims ntp(1) is run ONLY AT BOOT to set the system time. I have a 3b+ that has been running many weeks with less than a 100 mS system clock error, implying that ntp(1) is run periodically. Hardly possible with commodity timing components. Sven Joachim writes: > > Or systemd-timesyncd, which is shipped with systemd since version 213 > and enabled by default in Debian since version 219-1. > -- John Conover, cono...@rahul.net, http://www.johncon.com/
Re: gzip and old files Partly Solved
Might try "file rc.custom.gz" and make sure it says: rc.custom.gz: gzip compressed data, was "rc.custom", last modified: ... to look at rc.custom.gz's magic(5) header. John Martin McCormick writes: > Greg Wooledge writes: > > Sounds unlikely. > > > > > $ gzip -d rc.custom.gz > > > > > > gzip: rc.custom.gz: not in gzip format > > > > Where did you get this file? > > tomsrtbt-2.0.103 > > Here's what happened: > > The rc.custom.gz file you posted is 961 bytes long. My > corrupt copy is also 961 bytes long and file describes it as > data. > > > What does file(1) say about it? > > $ file rc.custom.gz > rc.custom.gz: data > > > How about > > gzip --test? > > $ gzip --test rc.custom.gz > gzip: rc.custom.gz: not in gzip format > > > I think it's more likely that your file is corrupt, than that gzip has > > decided to become incompatible with itself. > > Fortunately, this turns out to be correct. > > The file you posted unzipped with gzip -d on my system > with no issue at all. > > The good file has a checksum of > 10349 1 > > The bad version of the same file's checksum is > > 13550 1. > > I mounted tomsrtbt.raw with > mount -o loop tomsrtbt.raw /mnt > and that rc.custom.gz also has a checksum of > 10349 1 > > The install.s script has one to put a blank floppy in to > the drive and does dd if=tomsrtbt.raw of=/dev/fd0 with a record > count and somehow, that original diskette passed all the tests, > seems to boot right up and let me start a serial console on it > without so much as a single error. > > There is enough of this that is enough different from > today's world that I thought things were much worse than they > turned out to be. I am amazed that the corrupted disk worked at > all. > > Thanks for clearing up the confusion. > > Martin McCormick -- John Conover, cono...@rahul.net, http://www.johncon.com/
Re: audio recorder
David writes: > On Sat, 21 Sep 2019 at 23:23, Jack Dangler wrote: > > On 9/20/19 9:58 AM, Dan Ritter wrote: > > > Jack Dangler wrote: > > > >> Wanted a utility for snipping youtube clips, recording skype, etc. and > > >> someone suggested 'audio recorder' to me. I found some information for it > > >> here - > > >> https://mintguide.org/audio/267-audio-recorder-capture-and-record-audio-from-any-device-on-linux-mint.html > sox -t alsa hw:4,0 -t wav outfile.wav, where '4,0' is the audio channel you want to record will make a Wave file of the audio going through that channel. It can be played back with sox(1), also. . . . > > One of the primary advantages of Debian is its central repository with > thousands of software packages. If you're coming to Debian from > another operating system, you might be used to installing software > that you find on random websites. On Debian installing software from > random websites is a bad habit. It's always better to use software > from the official Debian repositories if at all possible. The packages > in the Debian repositories are known to work well and install > properly. Only using software from the Debian repositories is also > much safer than installing from random websites which could bundle > malware and other security risks. Not to mention that programs in the Debian repositories are updated frequently, and automatically updated with the apt-get(1) utility. Maintaining programs scattered around the net is time consuming, and usually doesn't get done. John -- John Conover, cono...@rahul.net, http://www.johncon.com/
Dual Prolific PL2303 Serial Port USB devices have iSerial of 0?
I have two Prolific PL2303 devices on a machine. The output of lsusb is identical for both, including iSerial of 0, for both. Is there any way of doing udev SYMLINK+ with these devices? Thanks, John -- John Conover, cono...@rahul.net, http://www.johncon.com/
Re: udev alzheimers
David Wright writes: > On Thu 21 May 2020 at 13:02:49 (-0400), Gene Heskett wrote: > > On Thursday 21 May 2020 10:10:10 to...@tuxteam.de wrote: > > > On Thu, May 21, 2020 at 08:23:55AM -0400, Gene Heskett wrote: > > > > > > > > Since updating to stretch, udev has been randomly swapping ttyUSB0 > > > > and ttyUSB1 and sometimes ttyUSB2 around, confusing the hell out of > > > > heyu, a trs-80-coco3, and occasionally even nut. Nut (apc ups) is > > > > not on a usb-serial adapter, it just a usb cable but the other 2 are > > > > on individually unique FTDI adaptors. > > > > . . . Perhaps: /dev/serial/by-id /dev/serial/by-path may be of some help since they are symbolic links into /dev/ttyUSB* with additional identification. John -- John Conover, cono...@rahul.net, http://www.johncon.com/
Logitech C310 rule in /etc/udev/rules.d/25-webcam.rules?
udevadm info -a -p $(udevadm info -q path -n /dev/video0):
looking at device
'//devices/pci:00/:00:1a.7/usb1/1-1/1-1.4/1-1.4.1/1-1.4.1.4/1-1.4.1.4:1.0/video4linux/video0':
KERNEL=="video0"
SUBSYSTEM=="video4linux"
DRIVER==""
ATTR{index}=="0"
ATTR{dev_debug}=="0"
ATTR{name}=="UVC Camera (046d:081b)"
/etc/udev/rules.d/25-webcam.rules:
KERNEL=="video[0-9]*", \
SUBSYSTEM=="video4linux", \
SUBSYSTEMS=="usb", \
ATTRS{idVendor}=="046d", \
ATTRS{idProduct}=="081b", \
SYMLINK+="video-webcam"
erratically fails, with /dev/video-webcam ln -s to /dev/video0, and
the camera on /dev/video1, (after PNP.)
Is "SUBSYSTEMS=="usb"" the issue in the rule?
Thanks,
John
--
John Conover, cono...@rahul.net, http://www.johncon.com/
Correct syntax of sound devices, rules.d and/or modprobe.d
In /etc/udev/rules.d/*, and, /lib/modprobe.d/aliases.conf, is the correct name for sound devices "snd-usb-audio" or "snd_usb_audio"? Thanks, John -- John Conover, cono...@rahul.net, http://www.johncon.com/
Re: Some applications don't follow default browser settings
Tianyu Chen writes: > > I'm using Google Chrome (/opt/google/chrome/google-chrome) as my default > browser, which is set by `update-alternatives` command. However my > firefox-esr is always launching when links are opened in Telegram and > Mozilla Thunderbird. > > I'd like to know why firefox-esr is launching, and how can i switch to > Chrome? I'm not gonna removing my Firefox :( > Setting the default programs is kind of a mess, and there are two methods, which must agree, else conflicts occur: update-alternatives --set gnome-www-browser /usr/bin/google-chrome-stable update-alternatives --set x-www-browser /usr/bin/google-chrome-stable xdg-settings set default-web-browser google-chrome.desktop xdg-settings set default-url-scheme-handler mailto thunderbird.desktop The names of your programs may be different, be sure to check the executable names for google-chrome and thunderbird. Also, if you are using XFCE: Applications->Settings->Default Applications has to agree with the above settings, too. John -- John Conover, cono...@panix.com, http://www.johncon.com/
Re: multiple messages
Charles Curley writes: > On Sun, 11 Dec 2022 10:59:02 -0800 > David Christensen wrote: > > > Thunderbird message duplication bugs have existed for several years. > > My work-around is to periodically delete older messages and/or delete > > duplicates in Junk, Trash, etc.. > > This is one place claws-mail would come in handy. It has a tool for > deleting duplicate messages. > Or, if you are filtering/sorting incoming email through procmail(1), the References: header will contain a same ID for duplicate emails, (which is derived from the Message-ID: header.) Something like: :0 Wh :msgid.lock | formail -D $idcache_size msgid.cache in ~/.procmailrc will eliminate a duplicate email. John -- John Conover, cono...@panix.com, http://www.johncon.com/
Re: questions on iptables
=?UTF-8?B?UGlwZXLjgb/jgYvjgZM=?= writes: > > sudo /usr/sbin/iptables -F > sudo /usr/sbin/iptables -A INPUT -s 127.0.0.1 -j ACCEPT > sudo /usr/sbin/iptables -A INPUT -s xx.xx.xx.xx -j ACCEPT # my server > public IP > sudo /usr/sbin/iptables -A INPUT -p tcp --dport 22 -j ACCEPT > sudo /usr/sbin/iptables -A INPUT -p tcp --dport 80 -j ACCEPT > sudo /usr/sbin/iptables -A INPUT -p tcp -j DROP > iptables -F iptables -P INPUT ACCEPT iptables -P FORWARD ACCEPT iptables -P OUTPUT ACCEPT iptables -A INPUT -m state --state RELATED,ESTABLISHED -j ACCEPT iptables -A INPUT -p icmp -j ACCEPT iptables -A INPUT -i lo -j ACCEPT iptables -A INPUT -p tcp --dport 22 -j ACCEPT iptables -A INPUT -p tcp --dport 80 -j ACCEPT iptables -A INPUT -j REJECT --reject-with icmp-admin-prohibited iptables -A FORWARD -j REJECT --reject-with icmp-admin-prohibited iptables-save > /etc/iptables/rules.v4 ip6tables -F ip6tables -P INPUT ACCEPT ip6tables -P FORWARD ACCEPT ip6tables -P OUTPUT ACCEPT ip6tables -A INPUT -m state --state RELATED,ESTABLISHED -j ACCEPT ip6tables -A INPUT -p ipv6-icmp -j ACCEPT ip6tables -A INPUT -i lo -j ACCEPT ip6tables -A INPUT -p tcp -âdport 22 -j ACCEPT ip6tables -A INPUT -p tcp -âdport 80 -j ACCEPT ip6tables -A INPUT -j REJECT --reject-with icmp6-adm-prohibited ip6tables -A FORWARD -j REJECT --reject-with icmp6-adm-prohibited ip6tables-save > /etc/iptables/rules.v6 And, look in /etc/iptables to make sure, and reboot; then check for outbound connections with a browser. (Note how icmp is handled-it is required.) John -- John Conover, cono...@panix.com, http://www.johncon.com/
Re: questions on iptables
John Conover writes: > =?UTF-8?B?UGlwZXLjgb/jgYvjgZM=?= writes: > > > > sudo /usr/sbin/iptables -F > > sudo /usr/sbin/iptables -A INPUT -s 127.0.0.1 -j ACCEPT > > sudo /usr/sbin/iptables -A INPUT -s xx.xx.xx.xx -j ACCEPT # my server > > public IP > > sudo /usr/sbin/iptables -A INPUT -p tcp --dport 22 -j ACCEPT > > sudo /usr/sbin/iptables -A INPUT -p tcp --dport 80 -j ACCEPT > > sudo /usr/sbin/iptables -A INPUT -p tcp -j DROP > > > > iptables -F > iptables -P INPUT ACCEPT > iptables -P FORWARD ACCEPT > iptables -P OUTPUT ACCEPT > iptables -A INPUT -m state --state RELATED,ESTABLISHED -j ACCEPT > iptables -A INPUT -p icmp -j ACCEPT > iptables -A INPUT -i lo -j ACCEPT > iptables -A INPUT -p tcp --dport 22 -j ACCEPT > iptables -A INPUT -p tcp --dport 80 -j ACCEPT > iptables -A INPUT -j REJECT --reject-with icmp-admin-prohibited > iptables -A FORWARD -j REJECT --reject-with icmp-admin-prohibited > iptables-save > /etc/iptables/rules.v4 > > ip6tables -F > ip6tables -P INPUT ACCEPT > ip6tables -P FORWARD ACCEPT > ip6tables -P OUTPUT ACCEPT > ip6tables -A INPUT -m state --state RELATED,ESTABLISHED -j ACCEPT > ip6tables -A INPUT -p ipv6-icmp -j ACCEPT > ip6tables -A INPUT -i lo -j ACCEPT > ip6tables -A INPUT -p tcp -âdport 22 -j ACCEPT > ip6tables -A INPUT -p tcp -âdport 80 -j ACCEPT > ip6tables -A INPUT -j REJECT --reject-with icmp6-adm-prohibited > ip6tables -A FORWARD -j REJECT --reject-with icmp6-adm-prohibited > ip6tables-save > /etc/iptables/rules.v6 > > And, look in /etc/iptables to make sure, and reboot; then check for > outbound connections with a browser. (Note how icmp is handled-it is > required.) > Sorry, cut from my machine docs. The two ipv6 statement should obviously be: ip6tables -A INPUT -p tcp --dport 22 -j ACCEPT ip6tables -A INPUT -p tcp --dport 80 -j ACCEPT Also, if you have root access on another machine, for assurance: nmap -4 -Pn -sS -v -v IPV4_ADDRESS nmap -4 -Pn -sU -v -v IPV4_ADDRESS nmap -6 -Pn -sS -v -v IPV6_ADDRESS nmap -6 -Pn -sU -v -v IPV6_ADDRESS will take a lot of time to run, and should only find the two open ports. John -- John Conover, cono...@panix.com, http://www.johncon.com/
Re: Wear levelling on micro-sd cards
Tim Woodall writes: > > Do these cards have wear levelling? Have I just got unlucky that it's > the start of the card that is unwriteable and so I cannot continue on > the 12GB of space that has never been part of a partition? > Almost all SD cards from the major manufacturers in the last 5 years use wear leveling. Each "bit" can be re-written about 6K times before failures start. So, the more unused SD space is better, since wear leveling writes to a "bit" that has been written to fewer times. To test, say with a 16 GB SD, fill the SD to all except the last 1 KB, and with a looping script, write 1KB of 1's to the remainder of the SD, erase the "bits," then 1KB of 0's, erase the "bits", and so on; the SD card will fail within hours to a few days, (with luck-note that MTBF is mean time between failures, meaning that by MTBF, half will have failed, half still running; its a stochastic/probability issue; it does NOT mean that all are expected to last at least 6K writes.) Doing the same test without filling to the last 1 KB, and the SD card will last a very long time, (about 16 million total writes.) Obviously, a VM thrash is to be avoided on SD cards that are running near capacity. On the other hand, using an SD card for archival storage, (or backup,) in a write once, and store STP to protect the plastic out gassing failures, the failure rate is determined by quantum mechanics, and is quite long, (usually quoted as in excess of a century, to 3 sigma total recovery of data.) SSDs have related issues, too. John -- John Conover, cono...@panix.com, http://www.johncon.com/
Re: Wear levelling on micro-sd cards
Nicolas George writes: > John Conover (12022-12-26): > > So, the more unused SD space is better, since wear leveling writes to > > a "bit" that has been written to fewer times. > > > > To test, say with a 16 GB SD, fill the SD to all except the last 1 KB, > > and with a looping script, write 1KB of 1's to the remainder of the > > SD, erase the "bits," then 1KB of 0's, erase the "bits", and so on; > > the SD card will fail within hours to a few days, (with luck-note that > > MTBF is mean time between failures, meaning that by MTBF, half will > > have failed, half still running; its a stochastic/probability issue; > > it does NOT mean that all are expected to last at least 6K writes.) > > > > Doing the same test without filling to the last 1 KB, and the SD card > > will last a very long time, (about 16 million total writes.) > > Are you suggesting that the microcontroller of the SD card is capable of > decoding filesystem data structures to find out which sectors are > unused? > > I find it rather surprising. > > That implies a SD card could discard data from deleted file, defeating > recovery tools and steganography. > > If find it highly doubtful. > It is true that after the SD's microcontroller writes data to other LRU bits, it will overwrite deleted data in a bit-just like VM memory, or an HD. The algorithm the microcontroller uses is NOT a classical "buddy memory allocation" system, (a'la Knuth, that is used in VM memory or HD, which store in adjacent sectors, where possible, to avoid the latency of head moves, i.e., data fragmentation,) and is actually quite complicated. The function of the microcontroller is to permit LOGICAL segmentation, but the actual storage addressing mechanism is not necessarily segmented, (or contiguous in physical memory; likewise, the VM memory system in a PC, that maps physical memory into logical contiguous memory via the VM page table.) John -- John Conover, cono...@panix.com, http://www.johncon.com/
Re: Wear levelling on micro-sd cards
Stefan Monnier writes: > > To test, say with a 16 GB SD, fill the SD to all except the last 1 KB, > > and with a looping script, write 1KB of 1's to the remainder of the > > SD, erase the "bits," then 1KB of 0's, erase the "bits", and so on; > > I'm surprised. I would have expected uSD cards, just like SSDs to rely > mostly on a (small) amount of extra storage, i.e. the actual amount of > NAND storage is higher than that reported as being available. > > This way the uSD card knows for sure which blocks are in use and which > ones aren't (without having to rely on things like TRIM). > That's true, Stefan, and most SD cards are made with a larger size of physical memory than specified-inoperable bits can be mapped out/replaced during product QA/test. The remaining bits can be used for R/W, but, sooner or later, they wear out too-only delaying the inevitable in the above test. Quality SSDs will continue the mapping of inoperable bits through the life cycle of the device-but requires some sort of ECC to do the real time analysis, (archival grade SDs used to do this, but that market has deteriorated because of the additional expense.) John -- John Conover, cono...@panix.com, http://www.johncon.com/
Debian security team support for Bullseye?
How much longer will Debian security team support Bullseye? The LTS Wiki page is kind of confusing as to when I have to upgrade to Bookworm. Thanks, John -- John Conover, cono...@panix.com, http://www.johncon.com/
fstrim(8) Recommendation
I'm installing an SSD replacement for an HD in a small 24/7 mail server. I would appreciate suggestions for the most reliable way to do fstrim(8). Reliability is more important than speed, and the machine will require a swap partition. Thanks, John -- John Conover, cono...@panix.com, http://www.johncon.com/
Re: Debugging what is deleting/recreating /etc/resolv.conf with wrong configuration, on debian stable
On 2/22/23, daven...@tuxfamily.org wrote: > > There is an unidentified process that decides it's ok to delete and > recreate /etc/resolv.conf without asking user/admin, > The problem is, the problematic process is not work's VPN related and > creates the file with wrong resolver's IP. The IP corresponds to my home > router IP, which does has a DNS resolver and it works as it should. BUT > my home's router DNS obviously don't know jack about work internal > servers, on which I work⦠and work's proxy as well, which when it cannot > be resolved⦠breaks everything using HTTP. Might look at: /etc/network/interfaces.d/setup as explained in "man interfaces". (That file can/might be changed via the network symbol in the window manager's configuration bar/menu system, usually required with root/sudo privileges.) John -- John Conover, cono...@panix.com, http://www.johncon.com/
Re: Non-GUI Arduino IDE ?
Hi Jason. Maybe, http://www.johncon.com/john/archive/sprawACM0.txt, http://www.johncon.com/john/archive/sprawACM0.tar.gz, but I don't know the "Upload", etc., commands to the Arduino. If you do, (or can find out,) you can add them at the bottom of sprawACM0.c, second function up, (where the "switch" statement is the command interpreter.) Just an idea ... John Jason writes: > Does anyone know if there is a console based Arduino IDE available for > Debian? I am interested in making a portable programmer that could be > taken out on a job to edit and upload Arduino programs on site, without > messing with a mouse. > -- John Conover, cono...@rahul.net, http://www.johncon.com/
Formatting a 32G or 16G SD card?
I'm want to format a "standard" 16G/32G SD card to OEM format. Could someone please verify that the following will do this: mkdosfs -I /dev/sdX fdisk /dev/sdX n,p,1,default,default,w mkfs.vfat /dev/sdX1 It seems to work, but could someone please verify that its correct? Thanks, John -- John Conover, cono...@rahul.net, http://www.johncon.com/
Upgrading from Debian 9 to Debian 10, binary format confusion
I installed debian-live-10.1.0-amd64-xfce.iso from https://cdimage.debian.org/debian-cd/current-live/amd64/iso-hybrid/ Programs compiled on Debian 9, Amd64, fail to execute, with a wrong binary format error.[1] Programs compiled on Debian 8, i386, execute fine. Any help would be greatly appreciated, Thanks, John [1] The Debian 9 machine was Amd64, Muli-Arch for legacy print driver support. "dpkg --add-architecture i386" was run on the machine, and the appropriate libraries were installed. -- John Conover, cono...@rahul.net, http://www.johncon.com/
Re: Digtal microscope
Kamil =?iso-8859-2?Q?Jo=F1ca?= writes: > > I want to buy microscope, but I do not know if any would work under > linux. > I suspect that most of them are visible as a camera (with PTP/MTP > protocol) but I cannot found many descriptions. > > For example: > https://www.levenhuk.com/catalogue/microscopes/levenhuk-d2l/#more > does anybody had experiences with this? > KJ Most of the inexpensive USB microscopes, (~ 100 X, US $20 from the Internet stores,) will work with vlc(1), which does snap pictures of your work, etc. John BTW, make sure you buy one with the calibration slide, (its a small sheet of plastic with 0.1mm, or so, calibration marks,) that goes over your work for measuring. They are available separately, but pricy for a piece of plastic the size of a postage stamp. -- John Conover, cono...@rahul.net, http://www.johncon.com/
profile for sjphone using fwd
Does anyone have a profile for sjphone using fwd from behind a NAT? Thanks, John -- John Conover, [EMAIL PROTECTED], http://www.johncon.com/ -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
HP OmniBook 800CT and X?
An antique HP OmniBook 800CT will boot to the live Linux CD's, (both Knoppix and Ubuntu,) but the display is ragged under X. Any ideas on X on the 800CT would be greatly appreciated. Thanks, John -- John Conover, [EMAIL PROTECTED], http://www.johncon.com/ -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
sjphone vox?
Anyone using sjphone? I have SIP working, (I think,) but I don't get VOX in either direction. Under 323 and PC direct, I can dial localhost, it rings, and I can answer, and I can dial another machine on the LAN, and it rings, and answers, but no VOX in either direction. Its a Knoppix kernel 2.4 system, behind a 172 NAT, OSS, and kphone and skype work OK. Any suggestions would be greatly appreciated. John -- John Conover, [EMAIL PROTECTED], http://www.johncon.com/ -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
gschem for Debian 7?
Where is the .deb for gschem for Debian 7? Thanks, John -- John Conover, cono...@rahul.net, http://www.johncon.com/ -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/20131109025609.32201.qm...@rahul.net
Un-muting PulseAudio/ALSA?
I'm having trouble un-muting PulseAudio/ALSA. Can someone give me a reference on how to fix it? Thanks, John BTW, antagonizing the Google for an answer resulted in a multitude of witchcraft solutions, none of which worked. -- John Conover, cono...@rahul.net, http://www.johncon.com/ -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/20140929202230.30870.qm...@rahul.net
lightdm's "Default Xsession"?
I use two WM, (xfce and fvwm.) Lightdm's "Default Xsession" is fvwm2.
How do I change lightdm's "Default Xsession" to xfce?
Thanks,
John
--
John Conover, cono...@rahul.net, http://www.johncon.com/
--
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Archive: https://lists.debian.org/20141024023816.21393.qm...@rahul.net
Re: lightdm's "Default Xsession"?
Andrei POPESCU writes: > On Vi, 24 oct 14, 09:33:59, Raffaele Morelli wrote: > > On 24/10/14 at 10:17am, Andrei POPESCU wrote: > > > On Jo, 23 oct 14, 19:38:15, John Conover wrote: > > > > > > > > I use two WM, (xfce and fvwm.) Lightdm's "Default Xsession" is fvwm2. > > > > > > > > How do I change lightdm's "Default Xsession" to xfce? > > > > > > I prefer to do this at system level (i.e. will work for any DM): > > > > > > update-alternatives --config x-session-manager > > > > That's smarter but doesn't always work. > > As an example I always use awesome and sometimes i3 but the command above > > returns only xfce4-session > > ie no alternatives. > > Those probably only install themselves as x-window-manager so this > should work instead > > update-alternatives --config x-window-manager > > Not exactly sure how display managers handle defaults when you have > both. Per user there is also ~/.dmrc. > In this particular case, the problem was an ~/.xinitrc, (linked to ~/.xsession, dated 1994!!! launching fvwm,) in the user's account. If a .xinitrc/.xsession file exists, it is executed as "Default Session" by lightdm, (regardless of the system's default session; BTW, but not as a login session, i.e., not via bash -l.) Obviously, none of the suggestions offered, (all competent,) in the list would work under these circumstances. Thanks to all, John -- John Conover, cono...@rahul.net, http://www.johncon.com/ -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/2014102529.20700.qm...@rahul.net
Changes in the way tar(1) constructs directory permissions
There has been changes in the way a tar(1) restore to a temporary
directory constructs directory ownerships; as login theuser, in
${HOME}:
mkdir xxx xxx/yyy; touch xxx/yyy/zzz
su
Password:
# cd /
# tar cvf home/theuser/aaa.tar home/theuser/xxx
home/theuser/xxx/
home/theuser/xxx/yyy/
home/theuser/xxx/yyy/zzz
# cd /home/theuser/
# mv xxx xxx.bak
# tar xvf aaa.tar
home/theuser/xxx/
home/theuser/xxx/yyy/
home/theuser/xxx/yyy/zzz
# ls -al home /home
/home:
total
drwxr-xr-x 6 rootroot 4096 Nov 6 23:52 ./
drwxr-xr-x 28 rootroot 4096 Nov 7 10:41 ../
drwxr-xr-x 72 theuser users16384 Nov 8 00:14 theuser/
home:
total
drwxr-xr-x 3 root root 4096 Nov 8 00:14 ./
drwxr-xr-x 72 theuser users 16384 Nov 8 00:14 ../
drwxr-xr-x 3 root root 4096 Nov 8 00:14 theuser/
^
^
^
I verified that the ownership of the restored directory, theuser/, was
correct in a 2012 version of Linux.
John
--
John Conover, cono...@rahul.net, http://www.johncon.com/
--
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Archive: https://lists.debian.org/20141108083251.16945.qm...@rahul.net
