Re: [gentoo-user] openssh-7.1_p1-r2 won't allow "nxserver" to connect [continued]
I meant the log for the SSH server, on the machine you are trying to connect to, not the nx log. On the SSH server, run grep sshd /var/log/messages Here it is: Nov 29 11:07:18 tiger kernel: audit: type=1109 audit(1448795238.479:95): pid=12140 uid=0 auid=4294967295 ses=4294967295 msg='op=PAM:bad_ident grantors=? acct="?" exe="/usr/sbin/sshd" hostname=192.168.62.40 addr=192.168.62.40 terminal=ssh res=failed' Nov 29 11:07:18 tiger audit: CRYPTO_KEY_USER pid=12140 uid=0 auid=4294967295 ses=4294967295 msg='op=destroy kind=server fp=SHA256:c8:65:0c:ad:44:4d:7e:a3:b7:1b:2a:34:5f:a6:a9:61:16:26:21:8d:20:de:80:27:ce:50:dc:6c:ed:8d:c9:f8 direction=? spid=12140 suid=0 exe="/usr/sbin/sshd" hostname=? addr=192.168.62.40 terminal=? res=success' Nov 29 11:07:18 tiger audit: CRYPTO_KEY_USER pid=12140 uid=0 auid=4294967295 ses=4294967295 msg='op=destroy kind=server fp=SHA256:59:9f:43:66:77:9e:77:a7:66:77:71:0c:8c:0c:aa:28:61:b4:69:be:ec:77:ed:46:7f:eb:3f:eb:e7:b0:de:7e direction=? spid=12140 suid=0 exe="/usr/sbin/sshd" hostname=? addr=192.168.62.40 terminal=? res=success' Nov 29 11:07:18 tiger audit: CRYPTO_KEY_USER pid=12140 uid=0 auid=4294967295 ses=4294967295 msg='op=destroy kind=server fp=SHA256:b9:48:9f:4f:b7:bd:63:39:b5:49:e9:41:89:0b:64:b2:6a:6a:6d:03:2e:b1:ae:49:9d:9f:89:18:02:28:b3:8c direction=? spid=12140 suid=0 exe="/usr/sbin/sshd" hostname=? addr=192.168.62.40 terminal=? res=success' Nov 29 11:07:18 tiger audit: CRYPTO_KEY_USER pid=12140 uid=0 auid=4294967295 ses=4294967295 msg='op=destroy kind=server fp=SHA256:3a:ae:49:b7:b1:94:f6:b3:a4:88:62:45:b3:36:5d:1f:46:9d:c9:9d:e2:a7:1b:23:94:c2:f9:1b:a4:0e:46:99 direction=? spid=12140 suid=0 exe="/usr/sbin/sshd" hostname=? addr=192.168.62.40 terminal=? res=success' Nov 29 11:07:18 tiger audit: USER_LOGIN pid=12140 uid=0 auid=4294967295 ses=4294967295 msg='op=login acct="nx" exe="/usr/sbin/sshd" hostname=? addr=192.168.62.40 terminal=ssh res=failed' [root@tiger ~]# -- Neil Bothwick Why is the word abbreviation so long?
[gentoo-user] Again a small embedded arch problem with Gentoo
Hi, two "identical" (better read: expected to be identical... ;) Arietta G25 tiny embedded systems have a Gentoo installed each. Both are updated always at the same time. On both I copied the same source of VIM (git repo) and tried to update the local repo than. One said: Arietta G25 B:CVS-Archive/VIM>./update.sh Already up-to-date. (ok, nice and fine) but the other said: fatal: unable to access 'https://github.com/vim/vim.git/': SSL certificate problem: certificate has expired [1]1983 exit 1 ./update.sh a 'ping' does not show any problems though (so this is no errornous error message). Again: Both are handled and exspected to be identical. But they behave differently. What happens, which makes them different by using the same command sequences? What needs to be done to fix the certificate problem? (they were updates just half an hour before). Thank you very much in advance for any help! Best regards, Meino
Re: [gentoo-user] Again a small embedded arch problem with Gentoo
On 2015-11-29 06:57, meino.cra...@gmx.de wrote: Hi, two "identical" (better read: expected to be identical... ;) Just a quick suggestion - you should use ansible or puppet to keep them in sync. Arietta G25 tiny embedded systems have a Gentoo installed each. Both are updated always at the same time. On both I copied the same source of VIM (git repo) and tried to update the local repo than. One said: Arietta G25 B:CVS-Archive/VIM>./update.sh Already up-to-date. (ok, nice and fine) but the other said: fatal: unable to access 'https://github.com/vim/vim.git/': SSL certificate problem: certificate has expired [1]1983 exit 1 ./update.sh What is the date on the board that failed? The only thing I can think of is that the date is incorrect, and far enough off to cause an SSL error. Alec
Re: [gentoo-user] Again a small embedded arch problem with Gentoo
Alec Ten Harmsel [15-11-29 13:16]: > > > On 2015-11-29 06:57, meino.cra...@gmx.de wrote: > >Hi, > > > >two "identical" (better read: expected to be identical... ;) > > Just a quick suggestion - you should use ansible or puppet to keep them > in sync. > > >Arietta > >G25 tiny embedded systems have a Gentoo installed each. Both are > >updated always at the same time. > >On both I copied the same source of VIM (git repo) and tried to > >update the local repo than. > > > >One said: > >Arietta G25 B:CVS-Archive/VIM>./update.sh > >Already up-to-date. > > > >(ok, nice and fine) > > > >but the other said: > >fatal: unable to access 'https://github.com/vim/vim.git/': SSL > >certificate problem: certificate has expired > >[1]1983 exit 1 ./update.sh > > > > What is the date on the board that failed? The only thing I can think > of is that > the date is incorrect, and far enough off to cause an SSL error. > > Alec > Hi Alec, oh YEAH! Thats's it! The ntp-sync command seems to have failed... The system time said 19.Oct.2015 (which is not the usual 1.1.1970) I resynced the time and and the problem is gone! Thanks! :) Best regards, Meino
Re: [gentoo-user] Weird "df" output
On Sat, 28 Nov 2015 18:52:23 -0500, waltd...@waltdnes.org wrote: > > And an extended partition is a special type of primary partition. > > > > Or you can avoid all this legacy idiocy and confusion by using GPT, > > which lets you have a sensible number of partitions without fragile > > kludges. > > The entire point of my bindmounting procedure (remember the original > post?) is to minimize the number of partitions without strangling root > if a logger goes wild. I generally run with 3 partitions, including > swap. So if you only need 3 partitions, why bother with an extended one in the first place? I'd still use GPT, it's just so much nicer. Or if you want to be properly bleeding edge, use btrfs and do away with all that bind mounting stuff, and get even more confusing df output... -- Neil Bothwick Everything should be made as simple as possible, but no simpler. pgpcDEtPTXeKB.pgp Description: OpenPGP digital signature
