On Sunday 05 April 2015 09:46:49 Brian wrote:
> On Sun 05 Apr 2015 at 07:33:18 -0600, Paul E Condon wrote:
> > On 20150404_2240+0200, deloptes wrote:
> > > Paul E Condon wrote:
> > > > This is a place where Debian is really not newbie friendly.
> > >
> > > I think it never aimed to be - therefore
On Sun 05 Apr 2015 at 07:33:18 -0600, Paul E Condon wrote:
> On 20150404_2240+0200, deloptes wrote:
> > Paul E Condon wrote:
> >
> > > This is a place where Debian is really not newbie friendly.
> >
> > I think it never aimed to be - therefore you have ubuntu ... at least my
> > feeling
>
> In
On 20150404_2240+0200, deloptes wrote:
> Paul E Condon wrote:
>
> > This is a place where Debian is really not newbie friendly.
>
> I think it never aimed to be - therefore you have ubuntu ... at least my
> feeling
>
In the present, Debian relies on Ubuntu, but there are still short passages
of
Paul E Condon wrote:
> This is a place where Debian is really not newbie friendly.
I think it never aimed to be - therefore you have ubuntu ... at least my
feeling
--
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@li
t; Can any kind soul take pity on my less than perfect sight and
> > > > tell me where to find the md5sums and shasums for these
> > > > downloads? A URL would be great. I just can't find them.
> > > >
> > > > https://www.debian.org/devel/debi
Hi.
On Sat, 4 Apr 2015 11:16:30 +0100
Darac Marjal wrote:
> On Fri, 3 Apr 2015 21:51:54 -0600
> Paul E Condon wrote:
>
> > On 20150403_2316+0100, Lisi Reisz wrote:
> > > Can any kind soul take pity on my less than perfect sight and tell
> > > me where to
On Fri, 3 Apr 2015 21:51:54 -0600
Paul E Condon wrote:
> On 20150403_2316+0100, Lisi Reisz wrote:
> > Can any kind soul take pity on my less than perfect sight and tell
> > me where to find the md5sums and shasums for these downloads? A
> > URL would be great. I
On 20150403_2316+0100, Lisi Reisz wrote:
> Can any kind soul take pity on my less than perfect sight and tell me where
> to
> find the md5sums and shasums for these downloads? A URL would be great. I
> just can't find them.
>
> https://www.debian.org/devel/debian-
On Friday 03 April 2015 23:35:56 Reco wrote:
> Hi.
>
> On Fri, 3 Apr 2015 23:16:45 +0100
>
> Lisi Reisz wrote:
> > Can any kind soul take pity on my less than perfect sight and tell me
> > where to find the md5sums and shasums for these downloads? A URL would
>
ng up to the directory. That left the above
> directory in the url and it dipsplays the SUMS files and signature
> files for the entire directory.
>
> There is no link to the sums from that page. There is only the note
> describing the process this way:
>
> For CD and DVD ima
Hi.
On Fri, 3 Apr 2015 23:16:45 +0100
Lisi Reisz wrote:
> Can any kind soul take pity on my less than perfect sight and tell me where
> to
> find the md5sums and shasums for these downloads? A URL would be great. I
> just can't find them.
>
> https://www.debian.org
Lisi Reisz wrote:
> Can any kind soul take pity on my less than perfect sight and tell
> me where to find the md5sums and shasums for these downloads? A URL
> would be great. I just can't find them.
>
> https://www.debian.org/devel/debian-installer/?
That is a little diffi
Can any kind soul take pity on my less than perfect sight and tell me where to
find the md5sums and shasums for these downloads? A URL would be great. I
just can't find them.
https://www.debian.org/devel/debian-installer/?
Thanks
Lisi
--
To UNSUBSCRIBE, email to debian-user
there - but where is there?
>
> This?
> http://cdimage.debian.org/debian-cd/5.0.1/i386/iso-cd/MD5SUMS
Thanks. Appreciated. :-)
Lisi
--
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
debian-cd/5.0.1/i386/iso-cd/MD5SUMS
signature.asc
Description: Digital signature
is there?
>
> On the FTP server in the same directory as the image you downloaded is a
> file named MD5SUMS (and there's also SHA1SUMS). For example, this file has
> the sums for all of the the i386 CD images:
>
> http://cdimage.debian.org/debian-cd/5.0.1/i386/iso-cd/MD5SUMS
loaded is a file
named MD5SUMS (and there's also SHA1SUMS). For example, this file has the sums
for all of the the i386 CD images:
http://cdimage.debian.org/debian-cd/5.0.1/i386/iso-cd/MD5SUMS
- Chris Burkhardt
--
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org
wit
On Thu, 14 May 2009, Lisi Reisz wrote:
I am clearly going either blind or mad. In spite of spending quite some time
looking, I cannot find the MD5sum for 5.0.1, which I have just downloaded.
It surely must be there - but where is there?
dpkg -S `which md5sum`
coreutils: /usr/bin/md5sum
server:
I am clearly going either blind or mad. In spite of spending quite some time
looking, I cannot find the MD5sum for 5.0.1, which I have just downloaded.
It surely must be there - but where is there?
Help anyone?
TIA
Lisi
--
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org
with
ad the files which list these checksums:
> > >
> > > wget
> > > http://cdimage.debian.org/debian-cd/4.0_r1/i386/iso-dvd/MD5SUMS{,.sign}
> > > wget
> > > http://cdimage.debian.org/debian-cd/4.0_r1/i386/iso-dvd/SHA1SUMS{,.sign}
> >
> > I didn&
n.org/debian-cd/4.0_r1/i386/iso-dvd/MD5SUMS{,.sign}
> > wget
> > http://cdimage.debian.org/debian-cd/4.0_r1/i386/iso-dvd/SHA1SUMS{,.sign}
>
> I didn't notice until after I downloaded them that they are i386, but
> I have amd64, but it was easy enough to find the amd64 on
e.gpg files, so
> there are no signatures to check. (I looked at an old netinst CD and I
> downloaded the first Etch_r1 amd64 CD; I could not find a Release.gpg
> file on either one.)
>
> What you can do now is to check the md5sums and the sha1sums of the
> DVDs. If they match th
Daniel Burrows <[EMAIL PROTECTED]> writes:
> On Thu, Oct 04, 2007 at 04:22:06PM -0700, Carl Johnson <[EMAIL PROTECTED]>
> was heard to say:
> > I haven't seen any place where aptitude shows any of that
> > information. It just shows me a warning such as:
> >
> > WARNING: This version of acpid
On Fri, 05 Oct 2007 18:40:44 +0200, Florian Kulzer wrote:
> [ Felix, I hope this message also helps with your problem. ]
Thank you.
The posting gave a full explanation of my observations and a strategy
for dealing with the (probably non-existent) problem.
Felix
--
Felix Karpfen
Public Key 7
On Thu, Oct 04, 2007 at 04:22:06PM -0700, Carl Johnson <[EMAIL PROTECTED]> was
heard to say:
> I haven't seen any place where aptitude shows any of that
> information. It just shows me a warning such as:
>
> WARNING: This version of acpid is from an untrusted source!
>Installing th
not find a Release.gpg
file on either one.)
What you can do now is to check the md5sums and the sha1sums of the
DVDs. If they match then you can be reasonably sure that all the
individual packages on these DVDs are OK.
First you need to download the files which list these checksums:
wget htt
Florian Kulzer <[EMAIL PROTECTED]> writes:
> On Tue, Oct 02, 2007 at 21:02:41 -0700, Carl Johnson wrote:
>
> Did you try to remove all the DVD-related lines from your
> /etc/apt/sources.list, run "aptitude update" and then add the DVD(s)
> again using the "apt-cdrom" command? I think that should
On Wed, 03 Oct 2007 21:55:17 +0200, Florian Kulzer wrote:
> On Tue, Oct 02, 2007 at 21:02:41 -0700, Carl Johnson wrote:
>> Is there some way to get the system to re-read the release file? I
>> installed the key after I upgradeed the system to etch, so all
>> packages on my DVDs show as being un
Daniel Burrows <[EMAIL PROTECTED]> writes:
> On Tue, Oct 02, 2007 at 09:02:41PM -0700, Carl Johnson <[EMAIL PROTECTED]>
> was heard to say:
> > Daniel Burrows <[EMAIL PROTECTED]> writes:
> > > dpkg performs no key checking, at least on packages in the Debian
> > > archive. There was some exper
On Tue, Oct 02, 2007 at 09:02:41PM -0700, Carl Johnson <[EMAIL PROTECTED]> was
heard to say:
> Daniel Burrows <[EMAIL PROTECTED]> writes:
> > dpkg performs no key checking, at least on packages in the Debian
> > archive. There was some experimental code to stick embedded signatures
> > into .de
On Tue, Oct 02, 2007 at 21:02:41 -0700, Carl Johnson wrote:
> Daniel Burrows writes:
[...]
> > It shouldn't matter which frontend you use. All the major frontends
> > check the signature of the Release file when you download package lists
> > from the archive. The Release file contains a cryp
Daniel Burrows <[EMAIL PROTECTED]> writes:
> On Mon, Sep 24, 2007 at 05:37:51AM +, Felix Karpfen <[EMAIL PROTECTED]>
> was heard to say:
> > >> But How do you use the key(s) listed in "/etc/apt/trusted.gpg" to
> > >> authenticate the individual installed packages.
> > >
> > > Oh, dpkg autom
On Mon, Sep 24, 2007 at 05:37:51AM +, Felix Karpfen <[EMAIL PROTECTED]> was
heard to say:
> >> But How do you use the key(s) listed in "/etc/apt/trusted.gpg" to
> >> authenticate the individual installed packages.
> >
> > Oh, dpkg automatically checks it for you when you use apt-get/aptitude
On Sun, 23 Sep 2007 17:32:20 +0900, Osamu Aoki wrote:
(Edited)
>
> During etch in testing period, I recall several problems which
> errouneously made to report to be unsigned package.
Since gpg-signed packages is an "etch" innovation, it explains why I
had not encountered before the "warning" de
t;?
The key is created by the Debian ftp mater. He placed it to the mater
archive machine. Then there is nice automation to sign those official
packages. Since secret key is unavailable by people except ftp-master,
the proper signiture can not be faked by others. (I do not have access
to the se
On Thu, 13 Sep 2007 12:29:28 -0700, Andrew Sackville-West wrote:
> On Wed, Sep 12, 2007 at 09:25:39PM +, Felix Karpfen wrote:
>> How do you use the key(s) listed in "/etc/apt/trusted.gpg" to
>> authenticate the individual installed packages.
>
> sorry, beyond me. on my system it just works.
On Thu, 13 Sep 2007 12:29:28 -0700, Andrew Sackville-West wrote:
> On Wed, Sep 12, 2007 at 09:25:39PM +, Felix Karpfen wrote:
>> How do you use the key(s) listed in "/etc/apt/trusted.gpg" to
>> authenticate the individual installed packages.
>
> sorry, beyond me. on my system it just works.
content
> has not been altered, but the signer is unknown"?
I'm not sure.
>
> If so, then I am worrying about nothing!!
not if the package is a compromised package that's been signed by the
compromiser so that its signature is good but from an untrusted
source, but we'
quot; - i.e. "the content
has not been altered, but the signer is unknown"?
If so, then I am worrying about nothing!!
>>
>> Is there an alternative to "aptitude update" or do I have to live with the
>> missing md5sums and "untrusted packages"?
>
e".
these errors (untrusted packages) have to do with the new secure-apt
system which uses gpg keys to confirm the signatures on
packages. Install the debian-archive-keyring package and then update.
>
> Is there an alternative to "aptitude update" or do I have to live wi
By diligent lurking on this NG, I read of and tried the following
routines:
1. "debsums_gen -l" - which gave the following output (first two
lines):
Checking for packages without md5sums list
aalib1 akode alsaplayer at base-config base-files bc bin86 binutils
and
2."# apti
Björn Keil wrote:
Mathieu Malaterre schrieb:
On 4/11/07, Jeff D <[EMAIL PROTECTED]> wrote:
On Wed, 11 Apr 2007, Mathieu Malaterre wrote:
> Hello,
>
> I am trying to figure out what is the new command to verify that the
> md5sums files archived in my deb file (binary pa
I downloaded the set again using rsync this time and the md5sums checked
OK. Before, I had used "wget -c" as the download tool and it showed a
failure for all 3 dvd .iso. Therefore, the md5sums and sha1sums files
are fine, it is just the download that was flawed. no bug report
Since etch uses digital signatures for packages
(http://www.debian.org/releases/stable/i386/release-notes/ch-whats-new.en.html#s-pkgmgmt),
maybe "debsig-verify" is what you are looking for?
--
Regards,
Jörg-Volker.
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe".
Mathieu Malaterre schrieb:
>
> On 4/11/07, Jeff D <[EMAIL PROTECTED]> wrote:
>> On Wed, 11 Apr 2007, Mathieu Malaterre wrote:
>>
>> > Hello,
>> >
>> > I am trying to figure out what is the new command to verify that the
>> > md5sum
Oh I see, it checks installed package. So there is no tool for
checking md5sum on a .deb file directly ?
Thus whatever md5sums files shipped with my .deb will be installed and
later on, debsums will complains the md5 is wrong.
-M
On 4/11/07, Jeff D <[EMAIL PROTECTED]> wrote:
On Wed,
On Wed, 11 Apr 2007, Mathieu Malaterre wrote:
Hello,
I am trying to figure out what is the new command to verify that the
md5sums files archived in my deb file (binary package) is actually
correct.
Thanks,
-Mathieu
Ps: I know this is of limited value, but I need it...
Theres the debsums
Hello,
I am trying to figure out what is the new command to verify that the
md5sums files archived in my deb file (binary package) is actually
correct.
Thanks,
-Mathieu
Ps: I know this is of limited value, but I need it...
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of
ub/debian-cd/4.0_r0/i386/iso-dvd/
>
> and in both instances, the md5sums and sha1sums did NOT check OK.
>
> They appear to actually be good images, so I was just wondering if
> anyone else had the same problem. I noticed the dates of the sums files
> appeared newer.
>
ub/debian-cd/4.0_r0/i386/iso-dvd/
>
> and in both instances, the md5sums and sha1sums did NOT check OK.
>
> They appear to actually be good images, so I was just wondering if
> anyone else had the same problem. I noticed the dates of the sums files
> appeared newer.
>
Folks, I have downloaded the new dvd images from both the original
source here:
http://cdimage.debian.org/debian-cd/4.0_r0/i386/iso-dvd/
and a mirror here:
http://debian.cites.uiuc.edu/pub/debian-cd/4.0_r0/i386/iso-dvd/
and in both instances, the md5sums and sha1sums did NOT check OK.
They
ou browse to the debian-cd web site from the main debian site,
you'll see the list of isos including the one you downloaded. In that
directory you'll also see the file MD5SUMS.
Doug.
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
//cdimage.debian.org/debian-cd/4.0_r0/i386/jigdo-cd/
That's the place where the jigdo files are distributed from, and it
also contains an MD5SUMS file and a SHA1SUMS file. I know, as I did
the build and signed those files on Sunday morning :-)
--
Steve McIntyre, Cambridge, UK.
age.debian.org/debian-cd/4.0_r0/i386/iso-cd/MD5SUMS.
Your file's hash matches.
--
Kushal
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
I'm downloading the Etch i386 iso's with jigdo-lite (brilliant program) and,
while I've not experienced any problems with CD #1, I'd like to verify the
MD5SUM on each .iso after it's constructed as a final check.
Jigdo-lite prints this message after the .iso is generated:
OK: Checksums match,
On Sat, Jul 12, 2003 at 01:11:49AM +1000, bob parker wrote:
> I installed Woody and selected shadow passwords and rejected md5sums wrongly
> beleiving that to accept md5sum encryption would prevent me using shadow
> password encryption.
>
> I would like to change over to using
I installed Woody and selected shadow passwords and rejected md5sums wrongly
beleiving that to accept md5sum encryption would prevent me using shadow
password encryption.
I would like to change over to using md5 encryption for my passwords.
How would I do that?
Thanks
Bob Parker
--
To
How about:
$ cd /cdrom
$ md5sum -c md5sum.txt
Assuming you aren't burning a cdrw at the same time. And if that locks
up your computer, something is wrong. Mind you, it will take awhile. If
you want to be sure that it is still running, use the -v switch, so
that it outputs the f
Naively, I tried
md5sum /cdrom/*
and it locked my deb3.0 computer hard. (maybe because I had a disc burning
in /cdrw simultaneously?) I notice each CD comes with an md5sum.txt with the
sums for all files on the disk, how can I use it to make sure each disk is
perfect?
The debian.org downl
read-only media like cdrom
c ya
alvin
On Mon, 23 Sep 2002, Brad Tilley wrote:
> We run md5sums on all system binaries on our Debian servers and tar the actual
> binaries to a file and then burn everything to CD with other data about the
> server for security reasons. Do any other Deb
Brad Tilley said:
> We run md5sums on all system binaries on our Debian servers and tar the
> actual binaries to a file and then burn everything to CD with other data
> about the server for security reasons. Do any other Debian users do
> this? Is it worth the effort? Is this
We run md5sums on all system binaries on our Debian servers and tar the actual
binaries to a file and then burn everything to CD with other data about the
server for security reasons. Do any other Debian users do this? Is it worth
the effort? Is this too paranoid?
Below are the commands we
Is there someplace on debian.org from which I can get a file or files
containing the md5sums of all the packages? Not the packages' contents,
but the packages themselves.
I have some ISOs I got from another site (linuxiso.org) and I would like
to confirm the sums of all the packages before
On Mon, Sep 18, 2000 at 08:18:39AM -0300, Mario Olimpio de Menezes wrote:
> On Sun, 17 Sep 2000, Michael S. Fischer wrote:
>
> > Can someone please tell me how to use the Debian packaging tools to
> > scan a system for changed files based on the md5sums contained in the
> &g
On Sun, 17 Sep 2000, Michael S. Fischer wrote:
> Can someone please tell me how to use the Debian packaging tools to
> scan a system for changed files based on the md5sums contained in the
> .debs?
I've used a simple for bash, like this:
for F in `ls /var/lib/dpkg/info/*md5sums`
Can someone please tell me how to use the Debian packaging tools to
scan a system for changed files based on the md5sums contained in the
.debs?
I'm not on the list; please CC: me privately.
Thanks,
--
Michael S. Fischer <[EMAIL PROTECTED]>, AKA Otterley
Lead Hacketee
On Mon, Jan 31, 2000 at 04:13:26PM +0100, Gabor Gludovatz wrote:
> Hello,
>
> how can I calculate and compare the md5sums of the installed binaries with
> their original md5sum with dpkg?
Install the deb
Hello,
how can I calculate and compare the md5sums of the installed binaries with
their original md5sum with dpkg?
Corax
--
Gabor Gludovatz <[EMAIL PROTECTED]> http://www.sopron.hu/~ggabor/
Richard Drisko wrote:
Check out "man md5sum"
Do a "locate sum|less" and you'll find all files containing "sum".
hth,
kent
>
> Hi,
>
> Awhile ago I remember seeing something to verify the MD5 sums of binaries in
> installed packages. I don't remember if it was a script or a package or
> what
I did a,
~$ apropos md5sums
debsums (1) - Check the md5sums of a package
debsums_gen (8) - Generate /var/lib/dpkg/info/*.md5sums for
packages lacking it
dh_md5sums (1) - generate DEBIAN/md5sums file
Looks like there is one that checks .debs it's in the debsums package.
Hi,
Awhile ago I remember seeing something to verify the MD5 sums of binaries in
installed packages. I don't remember if it was a script or a package or
what but can somebody help me out I can't seem to find it at the moment.
Thanks
71 matches
Mail list logo
