>
>
> Don't host your email on just any old cheap VPS. Many VPS providers have
> bad reputations for not policing spam senders, and as a consequence large
> email services like gmail often block whole ip ranges that belong to these
> VPS providers.
>
At least make sure the IP address isn't blackli
Unless you enable unattended upgrades explicitly (
https://wiki.debian.org/UnattendedUpgrades) Debian wouldn't download them
automatically.
Some tools may send multicast requests (I think Avahi does:
https://wiki.debian.org/Avahi)
You can use `tcmpdump` to check all your Internet traffic, and then
Try to disable it. Then, enable. Use "sys":
https://karlcode.owtelse.com/blog/2017/01/09/disabling-usb-ports-on-linux/
https://askubuntu.com/questions/1338682/is-it-possible-to-disable-usb-port-with-known-physical-location
On Thu, May 19, 2022 at 1:51 AM Jason wrote:
> Hello,
>
> What is the bes
Hello.
First of all, Jessie is old, use Bullseye instead.
When creating new VM, did you choose "Debian 64" as OS type? Did you add
NAT network adapter to it?
Also, I can't see any image
>
How exactly do you go to the second page? Is it a hyperlink in HTML or
what? If so, what is url?
file:// protocol will not bring you to the server.
On Fri, May 20, 2022 at 7:44 PM ldmko...@yahoo.com
wrote:
> I am having a problem with Apache2. I have set a new configuration and
> have three htm
> My link to the second page is via a url "var/www/
> ldmdomain.info/html/Picture1.html".
>
should be http://ldmdomain.info/Picture1.html probably
I am not aware of such books, but to develop deep understanding one
probably needs long path.
1. How memory/cache/hdd (ssd/nvme not covered) works: h
ttps://www.amazon.com/Memory-Systems-Cache-DRAM-Disk-ebook/dp/B00BXETR06
2. General understanding of PC architecture:
https://www.mindshare.com/Books
>
> If I can't solve this by tomorrow, I'll look at Debian Stretch (as that's
> still lighter than Bullseye)
>
If you believe Bullseye is too modern to your hardware, you are probably
wrong. You can install server (no GUI) version of Bullseye on any 64bit
CPU, including those on socket 775 from the
>
> AFAIK it also works on 32bit machines,
>
>
Yes, you just need to choose the right installer. But I do not know
what is the oldest CPU supported.I believe we may need SSE, so any CPU
produced after ~ 2005 is also ok)
>
>
> RAM, disk space... and so on :/
>
What makes you think so? One person on this thread said he runs Bullseye on
a laptop from 2003.
Linux itself is not resource hungry, only certain applications may have
special requirements.
What is your hardware, and which apps are you going to run there?
On Tue, May 24, 2022 at 10:27 PM ldmko...@yahoo.com
wrote:
> I am still confused. I have quadruple checked the .conf files, rechecked
> to step to create a virtual domain and still I get 404 when trying to
> access the second page of html.
>
1. Which URL do you see in your browser bar exactly?
What about
>
> On Tue, May 24, 2022 at 10:27 PM ldmko...@yahoo.com
> wrote:
>
> I am still confused. I have quadruple checked the .conf files, rechecked
> to step to create a virtual domain and still I get 404 when trying to
> access the second page of html.
>
>
> 1. Which URL do you see in your
30 GB of logs, wow. Do you use logrotate?
On Thu, May 26, 2022 at 6:14 PM Peter Ehlert wrote:
> /root partition was 40 GB, about 15 GB was free
> /swap 20 GB, unused
>
> hibernate
>
> restart failed
>
> Using Gparted I found /root was full
> resized /root to 50 GB
> boots properly now
>
> /var/l
>
>
>
> -P INPUT ACCEPT
> -P FORWARD ACCEPT
> -P OUTPUT ACCEPT
> -N f2b-sshd
> -A INPUT -p tcp -m multiport --dports 22 -j f2b-sshd
> -A f2b-sshd -s 62.204.41.56/32 -j REJECT --reject-with
> icmp-port-unreachable
> -A f2b-sshd -s 61.177.173.48/32 -j REJECT --reject-with
> icmp-port-unreachable
> -A
>
>
>
> A little more digging shows the new server is using fail2ban and nft
> tables, so I
> need help on how to properly allow https and http inbound.
>
>
I am not familiar with nft, bit you can switch to iptables using
``update-alternatives``
# update-alternatives --set iptables /usr/sbin/iptab
>
> I am running an Apache server and using Qualys Lab’s server checker. It
> shows no access to the server.
>
> Have you tried to telnet to port 80 from home? Do you see apache
listening this port using ``ss``?
>
> Whatever attempt I make to change the ports disappears when I reboot.
>
> Sure,
>
>
> $ sudo su
> # telnet 80
> Trying 0.0.0.80...
>
1. You are using telnet wrong: it should be "telnet [host] [port]". Please
read "man telnet".
2. You do not need sudo to use telnet, do not do that
3. You should also check that Apache is running and listening to this port,
use ``ss
>
> $ telnet x.y.z.w 80
> Trying x.y.z.w...
> telnet: Unable to connect to remote host: No route to host
>
But you can ssh to this host, right?
Well, that means the firewall blocks your request and sends the ICMP
message "no route to host".
Switch to the legacy iptables using ``update
>
>
>
> Does anyone have a good reason for me to NOT install and enable UFW?
>
>
ufw can't be used with ipset AFAIK, and I use ipset for many reasons
(fail2ban, block access outside of my country etc).
But If you only SSH your host from one static IP, you probably do not need
fail2ban at all.
Anyw
>
>
>
> Good to know. But does fail2ban require ipset?
>
No, but having several thousand rules is not convenient, so I prefer ipset
> They never have before in over 15 years, and, before I got this server
> started, its mate was serving fine. But if the ufw doesn't work, I'll ask
> them.
>
I'd s
>
>
>> Do I have to switch all four *legacy *tables?
>
yes
> When running those, I'm told neither the arptablrs nor the ebtables are
> registered (not installed). Should I install them?
>
No.
So, you now have legacy (classic) iptables, right?
What is the output of ``iptables -L -v -n`` and ``iptables -S`` ?
>
>
> > and ``iptables -S`` ?
>
> -P INPUT ACCEPT
> -P FORWARD ACCEPT
> -P OUTPUT ACCEPT
> -N f2b-sshd
> -A INPUT -p tcp -m multiport --dports 22 -j f2b-sshd
> -A f2b-sshd -s 61.177.173.50/32 -j REJECT --reject-with
> icmp-port-unreachable
> -A f2b-sshd -s 61.177.173.7/32 -j REJECT --reject-with
>
btw, are you able to ping server?
On Sun, May 29, 2022 at 7:26 PM Tom Browder wrote:
> On Sun, May 29, 2022 at 10:33 AM IL Ka wrote:
> >
> >
> >> When running those, I'm told neither the arptablrs nor the ebtables are
> registered (not installed). Should I inst
>
>
> I must say, I can not realy understand how you can ping and not
> telnet/access your web server.
>
>
Some router between OP and his server has something like
-I FORWARD -j REJECT --reject-with icmp-host-unreachable
>
>
> ssh gives me a login prompt
>
>
Btw, I highly recommend:
* Block SSH access from any IP except one you are going to use to manage
this server
* If you have dynamic IP, you can add all your ISP network, or, at least,
your country: (list can be downloaded here
https://blog.ip2location.com/kno
You are probably looking for unattended installation and
configuration using "noninteractive" dbconf frontend.
https://manpages.debian.org/bullseye/debconf-doc/debconf.7.en.html#Unattended_Package_Installation
On Mon, May 30, 2022 at 6:10 AM Emanuel Berg wrote:
> Have a look at this blog post a
Hello,
> I have tried a couple of times, but debian-gcc team didn't
> respond to my earlier queries (but I shall post a copy of this one
> there too, just in case).
debian-gcc maintainers maintain the gcc package for Debian, they are not
responsible
for teaching people C or C++.
I suggest you
IMHO: It is better to have a firewall and block (policy -- drop) INPUT and
FORWARD by default.
And open only ports that must be opened.
This will help if you install some software that listens for 0.0.0.0 by
accident
On Mon, May 30, 2022 at 4:42 PM Greg Wooledge wrote:
> On Mon, May 30, 2022 at
>
>
> The header files are very, very complex and they can't be understood.
>
No reason to read header files.
Both C and C++ have ANSI standards, which developers code against.
Just read standard and do not bother with reading header files.
But start with a good book.
Studying C by reading header
>
>
> Noninteractive is the word! Thank you.
>
>
This is a technical term covered by debconf(7) :)
https://manpages.debian.org/bullseye/debconf-doc/debconf.7.en.html
The idea is covered here:
https://manpages.debian.org/bullseye/debconf-doc/debconf-devel.7.en.html
With a non-interactive frontend
>
>
> I think the idea is that nothing is accepted
it depends on policy (-P): either ACCEPT, REJECT or DROP
> unless it is in response to
> a request.
>
You must enable it explicitly, i.e.
-A INPUT -m state --state RELATED,ESTABLISHED -j ACCEPT
> What's to stop some spurious instructions being
Hello.
Do you have "relayhost" set to gmail SMTP server?
https://www.postfix.org/postconf.5.html#relayhost
Did you call postmap(1) to build password file?
http://www.postfix.org/postmap.1.html
Here are a couple of tutorials:
http://postfix.cs.utah.edu/SOHO_README.html#client_sasl_enable
https://
Remove mod_python
$ sudo apt purge libapache2-mod-python
no reason to use it in 2022.
Frankly, I see no reason to use apache for python either: I recommend
python application server (gunicorn or uwsgi) and light frontend like nginx
or lighthttpd to terminate HTTPS and serve static files.
You can
Hi
> - git pull
>
Fetch data from remote repository and merge local branch or rebase it on
top of new commits.
> - git pull -b karma
>
I do know what "-b" is.
Documentation also doesn't: https://git-scm.com/docs/git-pull
$ git pull -b asd
error: unknown switch `b'
There is "git checkout -b"
>
> According to (1), that would be the ''-b, -w, --ignore-space-at-eol, and
> --ignore-cr-at-eol' option and the 'repository'.
>
>
This is a "git diff" option, not "git pull" option AFAIK
Old printer connected via LPT port was accessed using /dev/lpt
Because several processes shouldn't print at the same time, there was a
spooler called lpd and the client tool called lpr.
https://www.linuxtopia.org/online_books/linux_system_administration/linux_printer_HOWTO/setup_002.html
On Tue,
Hello.
There is a list of alternatives in ``sensible-browser`` including
``www-browser``, ``x-www-browser`` etc.
This makes me think that all alternatives must be documented somewhere in
debian policy.
Something like "each developer of X-based browser must register it as
x-www-browser alternative
Hi.
I am not familiar with nvidia, but I believe you need KMS/DRM mode:
(See modeset setting)
https://download.nvidia.com/XFree86/Linux-x86_64/396.51/README/kms.html
This was an idea behind the DRM/KMS: both Xorg and Framebuffer (graphical
mode linux command line console) work on top of the driver
>Just out of curiosity what is MTA short for?
Mail Transfer Agent.
This is a server that must be able to:
* get email message from MUA (mail user agent)
* forward/route it to the destination (or to the right direction at least)
* As last step, MTA sends message to the MDA (mail delivery agent) th
Check that
* connection is not blocked by firewall: ``sudo iptables -L``
* your ssh is listening for port 22: ``ss -l -t``
* your ip address is correct: ``ip addr``
On Tue, Feb 16, 2021 at 7:50 PM Paul Scott wrote:
> My LAN used to have 1 or two computers and/or debices and my Debian
> Linux mac
>
>
> paul@Joy4:~$ sudo iptables -L
> [sudo] password for paul:
> Chain INPUT (policy ACCEPT)
> target prot opt source destination
>
> Chain FORWARD (policy ACCEPT)
> target prot opt source destination
>
> Chain OUTPUT (policy ACCEPT)
> target prot opt source
>
>
> paul@Joy4:~/music/pima$ systemctl status ssh``
>
> ● ssh.service - OpenBSD Secure Shell server
> Loaded: loaded (/lib/systemd/system/ssh.service; enabled; vendor
> preset: enabled)
> Active: active (running) since Tue 2021-02-16 11:53:13 MST; 21h ago
> Docs: man:sshd(8)
>
Hello.
Install debian. Then, enable non-free software (you can do that while
installing or later: https://wiki.debian.org/SourcesList)
Then, install this package:
https://packages.debian.org/en/sid/firmware-realtek
I think you can also download .deb file, copy it to your machine using USB
flash dr
>
>
> Anyone correct me if I am wrong, to install (or run ) a file with .bin
> extension you need to make that file executable.
>
This file is firmware: a special program written for hardware by the vendor
(kind of BIOS).
You shouldn't execute it. Instead, you must load it to the hardware.
https:
If Debian can't detect your network card, I suggest using Debian DVD iso to
install Debian, and then deal with the network card.
https://cdimage.debian.org/debian-cd/current/amd64/iso-dvd/
You need "debian-10.8.0-amd64-DVD-1.iso". It can be used to install Debian
without a network connection.
You
>
>
> I can't answer that now, because I run
> "ls -l /usr/bin/pulseaudio" every minute to find when it disappears,
> and curiously, it didn't disappear this night
> I'll see what happens after removing the ls command in cron.
>
You could use ``inotify-tools``
https://packages.deb
Hello.
Try to download and install "debian-10.8.0-amd64-DVD-1.iso"
from here:
https://cdimage.debian.org/debian-cd/current/amd64/iso-dvd/
On Wed, Feb 24, 2021 at 8:48 PM M.R.P. zensky
wrote:
> Hello I am installing Debian on a amd processor computer. I connect to the
> net with wifi. I have tr
>
>
> Is that what you want? A local network defined entirely by hosts files?
> You can do that. It's easy. Just edit your /etc/hosts files to contain
> the names and addresses of your machines.
>
> In this scenario, your resolv.conf file will be used only to look up
> hosts that live outside of
>
> Please do not do that.
>
>
> You will find a iso here which includes most of the non-free firmware here:
>
> https://cdimage.debian.org/images/unofficial/non-free/images-including-firmware/10.8.0+nonfree/amd64/iso-dvd/
>
> Please take the time to read AND understand the information on that site
>
>
> I would like to pipe search results to a text processor.
>
Do you want rendered results or plain HTML ?
In latter case you need ``wget``
> Synaptic led me to "surfraw" and "w3m".
>
There is also a browser named "lynx".
Not sure which one suits your needs best.
Try them all!
>
> > richard
>
> Aren't Windows DLLs roughly analogous to Linux library packages?
>
In most cases yes. On Windows you can install the library to the "System32"
and access it from anywhere.
But since most software in Windows is installed not from "repository" but
from some random places instead, "DLL hell" may
>
> Thanks for the explanation. But I guess that the Windows style is
> becoming increasingly common in the Linux world as well,
You mean "side by side", right?
I agree. Some developers took another approach and compiled all their code
statically.
AFAIK "Go" language does it by default, so all l
>
>
> Eh?
>
> $ apt-cache policy python3
>
> python3:
> Installed: 3.9.1-1
> Candidate: 3.9.1-1
> Version table:
> *** 3.9.1-1 900
> 900 http://ftp.us.debian.org/debian testing/main amd64 Packages
> 100 /var/lib/dpkg/status
> 3.7.3-1 800
> 800 http://ftp.us.debia
>
> So, what is the best winderz emulator we have, to run this:
>
> Dremel3DSlicer-1.2.3-win64.exe
>
> Which file says is a:
>
> Dremel3DSlicer-1.2.3-win64.exe: PE32 executable (GUI) Intel 80386, for MS
> Windows, Nullsoft Installer self-extracting archive
>
There is a tool named Wine.
It is not a
>
> > https://en.wikipedia.org/wiki/Wine_(software)
> >
> > https://wiki.debian.org/Wine
>
> And those destructions get me into fix-broken hell instantly as it want
> to remove xorg.
An official Debian instruction broke your installation?
Hm.. It works for me, at least on testing (bullseye)
Here
Hi.
ExecStart=/usr/bin/prometheus $ARGS
>
> I know I can simply override the unit file with one in
> /etc/systemd/system, but what if I wanted to use this variable? Where
> would I set it?
>
See "EnvironmentFile" directive above.
Check manual pages for more info:
https://www.freedesktop.org/softw
Hi.
Running Bullseye on an Acer Aspire 5 I have no sound - "No output or
> input devices found"
>
Is it an output of pulseaudio?
If you run "$ pavucontrol" (Pulse Audio control), or "$ pacmd list-sinks",
what do you see?
> $ pacmd list-sinks
> 2 sink(s) available.
>
pulseaudio is aware of both of your soundcards (although one is physically
muted).
Which software reports "No output or input devices found"?
Since both devices are connected via alsa driver, you may try to use "$
alsamixer", make sure it is not muted
Hi.
A couple of questions.
* Do you use EFI or MBR/BIOS mode?
* You have a SATA disk, right? Does your controller set to the AHCI mode?
Was it set to AHCI in the previous motherboard?
On Fri, Mar 5, 2021 at 6:13 PM kaye n wrote:
> Hello Friends!
>
> Desktop Computer One has a hard drive that
>
> I'm not sure what protocol would be running over the USB2 interface - maybe
> PPTP - equivalent to some of the dial-up protocols.
>
A small note: PPTP works on top of IP, it is a VPN protocol.
It encapsulates PPP protocol (which I believe you were talking about).
PPP can run IP over point-to-
>
>
> When i got my last hardware, one challenge was UEFI booting, iirc. After
> dealing with it, i sort of lost track of what was happening in that arena.
> However, i don't want to get involved with that again.
>
Motherboard firmware could be switched to the legacy BIOS/MBR mode, so you
do not
>
>
> The reason for the two networks is that my modem-router is electrically
> incompatible with one of my computers.
>
hmm, I never heard about such things)
Is your electrical grounding configured correctly?
In my country some old apartments do not have third (ground) wire. I've
seen a lot of gl
A random thought:
Check mac addresses, make sure they aren't the same.
On Mon, Mar 8, 2021 at 3:36 AM Dan Hitt wrote:
>
>
> On Sun, Mar 7, 2021 at 4:25 PM IL Ka wrote:
>
>>
>>> The reason for the two networks is that my modem-router is electrically
>>&
>
>
>
> [Although, i guess i do not know the mac addr of the modem-router --- is
> there a user-level move i can make on my debian box to see what the mac
> addr of my modem-router is?
>
$ ping [your_rounter_ip]
$ arp -a
you should see a list of all your ethernet neighbours along with their ip
an
>
>
> Also ip a. Someday you may no longer have arp:
> <
> https://dougvitale.wordpress.com/2011/12/21/deprecated-linux-networking-commands-and-their-replacements/
> >
>
Yes, "$ ip neighbor" (or "ip n" for short) is the correct syntax on modern
Linux.
Thanks.
>
>
> In my case it was some OLD device, 10+ years old that never heard of a
> Gigabit interface and actually would even work on a 10Mbit port. This
> device will connect correctly on an older gigabit switch but NOT on a more
> modern Gigabit switch. :-(
Ethernet ports should negotiate speed, but
101 - 167 of 167 matches
Mail list logo
