17[00:03:14] <HelloShitty> they will catch 6969 way sooner than 65534
18[00:04:21] <genr8_> the discussion I was having before was me saying that the attackers only scan for known patterns, not all 65,535 ports on the system = to save time. but the other guy said i was wrong and they do scan everything.
21[00:05:10] <HelloShitty> same goes for ictionary attacks on passwordds
22[00:05:30] <sponix> genr8_: that isn't a good argument. because it would depend on the attacker to make such a decision. Or how they script to do it for them
23[00:05:33] *** Joins: magyar (~magyar@replaced-ip)
30[00:07:03] <sponix> genr8_: most will do the low 1024 range because that is where all "default" service ports fall -- or at least most excluding a few like squid proxy
31[00:07:17] <sponix> So that is where they _start_
32[00:07:18] <genr8_> yes that too
33[00:07:31] <sponix> Then depends on their level of time and devotion to move on to other things
34[00:07:38] <genr8_> perhaps if your system shows up with something open, they flag it for deeper full scans.
35[00:09:01] *** debhelper sets mode: +l 1130
36[00:09:49] <genr8_> theres other things you can do, like use key-based SSH, set up port knocking, IP whitelisting, fail2ban, what else
37[00:10:22] <genr8_> Im probably staying off their radar better from the start
38[00:10:27] <HelloShitty> I'll see about fail2ban
39[00:10:33] <HelloShitty> nee to read a bit about it
40[00:11:10] <sponix> HelloShitty: sure... read what it can do for ssh. See if you feel it is needed
41[00:11:21] <HelloShitty> yeah
42[00:11:37] <sponix> HelloShitty: if you want to learn it, only accepting ssh "key based auth" and not even allowing passwords -- Is actually WAY secure
43[00:12:00] <sponix> HelloShitty: I don't do that though, because I have a program on my phone that only does ssh password auth and not keys :P
44[00:12:05] <HelloShitty> yes, I remember doing something like tha tin the past
45[00:12:17] <HelloShitty> ahh ok
46[00:13:45] <sponix> genr8_: I am surprised my port 80 Apache is only getting a handful of random attempts to check its security
47[00:15:09] <genr8_> yeah, i always check what theyre trying to attack/request and its always irrelevant stuff.
48[00:16:16] <genr8_> and i put my wordpress blog behind a /blog/ subdir and it seems to have helped a lot. theyre not finding it
49[00:16:54] <sponix> genr8_: good thing we are looking at logs.. my samba running on default ports -- 39,000 attempts LOL
50[00:17:06] <imMute> sponix: is it possible to only allow password auth for one user and have the phone program use a special user?
51[00:17:07] <genr8_> yea thats no bueno.
52[00:17:29] <genr8_> yes but that doesnt help.
53[00:17:56] <sponix> imMute: Yes, that is possible in the sshd_config you can specify only 1 user, or a single group, and a lot of other restrictions. You wan also limit to to only allow certain network ranges
54[00:18:21] <sponix> ssh and sshd are well thought out, and have a LOT of security baked in
55[00:19:21] <sponix> genr8_: sure it does, I will just take whatever ports smb uses by default from the outside world, and point them to some place void, so they don't come through from outside my network anymore :)
56[00:19:54] <sponix> SAMBA uses ports 137 – 139 and 445.
61[00:24:27] <genr8_> if anything you should use "PermitRootLogin prohibit-password"
62[00:25:30] <genr8_> thats the best option other than strict "PasswordAuthentication no" for everything
63[00:26:00] <imMute> IMO you shouldn't allow root for SSH at all
64[00:26:13] <sponix> hmm, I had better test and see of the fw rule on my router just does from outside in, or if it is going to block internally with the rules I set :P
65[00:26:39] <sponix> imMute: it is no longer allowed by default as of like 2008 or so
77[00:33:43] <karlpinc> I disagree also. The problem with sudo is that only a single set of credentials is required to become root -- user-level credentials.
78[00:34:07] <karlpinc> Naturally, much depends on how sudo is configured as to its benefits.
116[00:54:05] <sponix> LtL: Debian might have log rotation by default, but this smb.conf does a separate log file for every IP that makes a connection attempt -- thus the 39,000 was individual IP's -- some of those could have been multiple attempts also :P
117[00:55:08] <LtL> sponix: ah, okay i forgot about smb
118[00:59:01] *** debhelper sets mode: +l 1123
119[00:59:21] <genr8_> this freaking kernel is still compiling.... 2 hours
123[01:00:42] <sponix> genr8_: people still compile kernels in 2020 ?
124[01:00:55] <tmroland> how do you think your pc is running?
125[01:02:15] <sponix> my "PC" runs on Smoke
126[01:02:27] <sponix> as long as I don't let any of the smoke outta it -- it should keep on running
127[01:02:49] <genr8_> this is part of taking the debian 4.19 kernel, seeing whats in it, removing 60% of the crap and understanding what else I can enable to help the security posture
149[01:14:00] <genr8_> if I was an expert i'd explain it, but im trying to figure it out by trial and error cause nobody gives a shit but me, and anyone who does doesnt stay sane enough to tell the tale
150[01:14:01] <sponix> genr8_: starting out with OpenBSD could save time over all :)
155[01:15:15] <sponix> my rig doesn't have to be the spitting image of security -- it just has to be better than HelloShitty -- so they leave me alone and concentrate on them !!
163[01:23:33] <genr8_> Is there a channel to discuss better security stuff to do, from noob level of locking down SSH up to compiling your own kernel and everything in between ?
169[01:32:28] <genr8_> oh i think it actually did finish compiling, but it finished with an error, and theres no indication why or what to do next ;p typical
173[01:36:48] <dvs> genr8_: compiling a kernel is easy now. Just install the build-essential package then download and unpack the kernel source from kernel.org, then run "make deb-pkg" in the unpacked kernel directory
175[01:37:43] <joepublic> well, you have to either make a kernel config, or copy over the default one.
176[01:37:53] <genr8_> thats for the master tree. I was compiling the debian version. as described here: replaced-url
177[01:38:06] <joepublic> and if you copy over the default one, then you will have to chase down the error about not having a debian developer signers key
178[01:38:33] <dvs> ??? that's never happened to me
179[01:38:38] <genr8_> I have the config, and I have the vmlinux and the .mod's compiled , but it errored out after checking a buncha EXPORT_SYMBOLS and wont say why
180[01:38:44] <joepublic> you made a kernel with no .config? :)
181[01:38:56] <genr8_> I have the config.
182[01:39:01] *** debhelper sets mode: +l 1116
183[01:39:13] <genr8_> The debian version includes about 200 patches
184[01:39:16] <dvs> joepublic: I start with the config in the /boot directory then run "make oldconfig"
253[03:03:11] <Sark> So, I've got a bug I've been chasing for a while, and it's really, really, really getting irritating. I can't figure out why my middle mouse button doesn't work correctly.
254[03:03:23] <Sark> And everything I know about Linux input devices has changed recently, so I'm kinda lost.
256[03:04:03] <Sark> If I open xev, and click the middle mouse button, nothing registers until I release it. Then I get both a press and release event in quick succession.
257[03:04:09] <Sark> The left and right buttons behave as normal.
258[03:04:27] <Sark> I've tried three different mice, it's not the hardware. This also happens on at least one other computer.
259[03:05:12] <Sark> I'm lost and don't know where to begin to troubleshoot this.
279[03:34:51] <gry> Sark: i'm just asking to check whether it is only "middle click does not show in xev" issue, or "middle click does not click, and also it does not show in xev"
291[03:37:36] <Sark> It worked before, but I was on the previous release (or possibly older). With the same mice.
292[03:38:13] <Sark> I finally replaced my last old install machine with a new 64 bit computer, fresh install of current stable Debian - same mouse and keyboard I had before.
293[03:38:17] <Sark> And I'm fighting with it.
294[03:38:49] <gry> what desktop environment is it broken in?
298[03:39:31] <Adioins> reinstall the Desktop environment?
299[03:39:42] <Sark> It's happening on more tha one machine though.
300[03:39:44] <gry> and do you have an xorg.conf or you didn't create it?
301[03:39:50] <Sark> And there isn't much to reinstall.
302[03:39:50] <gry> twm on all of these machines?
303[03:39:54] <Sark> Yes.
304[03:40:05] <gry> does it also happen in another wm such as wmaker?
305[03:40:26] <Sark> I didn't have to manually create an xorg.conf since the new stuff uses xrandr and I don't have to manually configure xinerama for multi monitor support.
306[03:40:35] <Sark> This is just as-installed, un messed-with :)
315[03:55:05] *** Quits: nt1036 (~nt1036@replaced-ip) (Remote host closed the connection)
316[03:55:05] <Sark> gry: OK, I'm doing some more testing, and I went and rounded up more mice to try. The three I'd tried before all still don't work (two identical Sun mice and a Logitech, all USB).
317[03:55:25] <Sark> But then when I use an old Logitech PS/2 mouse with a converter to USB... that one works correctly.
321[03:56:07] <Sark> And I found a Microsoft USB mouse, and *that* one works too - the odd thing about that one is that it's only a two button mouse, but it has a scroll wheel that can be clicked as a button.
322[03:56:15] <Sark> That one works correctly.
323[03:56:44] <Sark> So somehow Linux is screwing up the input layer for the Sun and Logitech USB mice? How do I see which input driver is getting used here?
324[03:57:05] <Sark> There is no /var/log/Xorg.log like I would expect there to be.
362[04:43:26] <x033gg> need help got conky working and i love it, but i cannot seem to get it to display only on the desktop it keesp showing conky over firefox , irc, any IDE i have running im using XFCE4
363[04:44:23] <nvz> well, a good wm would let you set it to any layer you want.. but idk that one of those exists anymore :-/
366[04:46:58] <nvz> meh.. gotta reboot this machine I seem to have made a series of mistakes.. shutting down when I meant to suspend and booting the wrong kernel :P
373[04:49:44] <nvz> when I fire up the xfce vm and install conky and run it, its automatically on the desktop
374[04:49:48] <nvz> below all other windows
375[04:50:24] <mcossey> It'll likely have something to do with own_window and own_window_type. I'm having a hard time actually finding the doc options on those, but since it works OOB for vz, maybe try commenting those out if they are set?
418[05:12:11] <bn_work> dvs: how long has bullseye been in testing?
419[05:13:12] <dvs> bn_work: Just over a year? Right after buster was released last July
420[05:13:26] <dvs> !buster
421[05:13:26] <dpkg> Buster is the codename for the current <stable> release, Debian 10, released 2019-07-06. "Buster" is Andy's pet Dachshund in Toy Story, see replaced-url
423[05:14:27] <gry> Sark: sorry, i mean another window manager
424[05:15:17] <bn_work> dvs: how long is the normal test phase? is it trivial to upgrade from stretch to bullseye?
425[05:15:30] <Sark> Oh, no - I haven't. I don't have any others installed and I'm kinda in the middle of doing a bunch of other stuff, so I don't want to go messing with my X session.
426[05:15:41] <dvs> !testing
427[05:15:41] <dpkg> Testing is a continuously updated release between <stable> and <unstable>, currently codenamed <bullseye>. See replaced-url
428[05:15:44] <Sark> Especially since if I crash it, there's another bug that keeps me from being able to easily kill X.
429[05:15:51] *** Quits: arunesh (~darunesh@replaced-ip) (Remote host closed the connection)
430[05:15:53] <Sark> That's something *else* I need to track down.
431[05:17:15] <Sark> Since if something in X screws up, I can't kill it with control alt backspace like I should, and if I change to another virtual console with control alt F2, X just goes into never-never land and I can't get it back by hitting control alt F7.
432[05:17:33] *** Quits: rare_energy (~quassel@replaced-ip) (Quit: who knows)
433[05:18:03] <Sark> So... yeah. There's a lot of seriously hosed up stuff I need to track down. At the moment, I'm fighting with getty, which seems broken in it's own special way.
434[05:19:28] <Sark> If I spawn a getty process on /dev/ttyUSB0, I get a login prompt like I should. If I hit enter on that terminal, I get the login prompt again - as I should. If I type my user name and hit enter... nothing happens and the whole thing locks up.
445[05:31:51] <alex11> bn_work, FWIW i've inquired about wordpress before and i've gotten mixed responses, some people say the debian package is fine and others say not to use it
446[05:31:56] <alex11> do your research
447[05:32:16] <Sark> I'd try it but I'm in the middle of things and don't want to get locked out of X again!
461[05:36:03] <alex11> though if they want to update to testing and pull wordpress from sid that may be ok
462[05:36:21] <bn_work> yeah, I'm not a fan of WP either, I'm trying to see if our web dude will be happy with php 7.3 so I don't have to upgrade to bullseye yet
463[05:36:46] *** Quits: leorat (~leorat@replaced-ip) (Remote host closed the connection)
464[05:37:46] <bn_work> we're using a stable ver of wp and intend to keep it that way
495[06:05:57] <nvz> you can use packages.debian.org and /msg the bots for your personal needs. using them in the channel is for support purposes.. near as I can tell there is no ongoing issue regarding mariadb
504[06:15:44] <bn_work> is there a bot command to do an `apt show foo` to see what actual version of the software is in a given debian package release ver?
555[06:48:16] <themill> bn_work: that's not the "actual package version". The "actual package version" is the one that apt shows above. The 15.1 is version of mysql it's pretending to be / is compatible with. There's nothing that apt could possibly know to give it that info
567[06:53:55] <alex11> for packages that reflect your current mirror then apt show foo will be fine; if you want to see package versions in other releases you don't have (testing/sid) there's rmadison from the devscripts package (but devscripts is a ton of dependencies so really, just use packages.debian.org)
568[06:55:03] <bn_work> does one need to (or should one) reboot in between doing an `sudo apt upgrade` and `sudo apt full-upgrade`?
569[06:55:57] *** Quits: szorfein (~daggoth@replaced-ip) (Remote host closed the connection)
578[06:58:38] <alex11> apt install needrestart is a good way to keep abreast of service restarts/reboots (full reboots are generally firmware/kernel updates)
579[06:58:40] *** Quits: magyar (~magyar@replaced-ip) (Remote host closed the connection)
580[06:59:23] <alex11> for stable you don't usually need full-upgrade unless the notes for the point release (and of course stable -> nextstable upgrades) tell you you need to
581[07:00:41] <bn_work> alex11: how does needrestart work? do you query it and it just tells you what needs to restarted?
582[07:00:52] <alex11> no, it hooks into apt/dpkg
583[07:01:01] <alex11> it will automatically run on package upgrades
584[07:01:12] <khobo> hey guys.. so i'm doing a new debian install
585[07:01:17] <khobo> i do the guided partitioning
586[07:01:21] <bn_work> alex11: and restart whatever thing needed it?
587[07:01:26] <khobo> i get a swap, ext4, ESP
588[07:01:30] <alex11> it will generally tell you when it's necessary
589[07:01:31] <khobo> and then these 2 remainder free spaces
590[07:01:36] <khobo> 1.0mb and 334kb
591[07:01:39] <khobo> what's up with the smaller ones?
592[07:01:42] <bn_work> alex11: ok, thanks for the suggestion
593[07:03:27] *** Joins: magyar (~magyar@replaced-ip)
674[08:20:09] <dob1> /dev/sda1 * 2048 15131635 15129588 7.2G c W95 FAT32 (LBA) sudo mount /dev/sda1 /mnt/ or using -t vfat gives me mount: /mnt: wrong fs type, bad option, bad superblock on /dev/sda1, missing codepage or helper program, or other error.
693[08:34:52] <dob1> nvz, using it on windows it gives me a message that it needs to be formatted, maybe there is nothing... but fdisk found the filesystem
694[08:35:02] <dob1> (it's an usb key)
695[08:35:02] <nvz> dob1: perhaps you should check the kernel messages and use -v and figure out why
715[08:42:38] <nvz> this cinnamon roll doesn't sound like a valid filesystem either but I am not gonna get all rolled up about it.. I'm just gonna put some icing on it and eat it
795[10:16:45] <genr8_> joepublic, about the debian kernel compilation. Im now at the point of the signing key issue. certs/signing_key.x509 is 0 bytes, and "sign-file" fails to be able to sign my modules.
818[10:40:28] <genr8_> k. im trying to do too many things at once. recompiling a debian kernel, signing the modules and secureboot.... Im gonna have to figure that all out.
835[10:47:48] <Ashleee> so wanted to try out others
836[10:47:58] <Ashleee> (also this was amd64 case, so I wanted to try it out on arm64 as well)
837[10:48:53] <Ashleee> yup repackaging on top of buster initrd it works fine, so the sid's anna behaves a bit different in regards to kernel modules it seems
840[10:49:48] <sponix2ipfw> So install stable Buster. Then upgrade to Sid. That is the recommended method last I knew
841[10:50:14] <sponix2ipfw> !Sid
842[10:50:14] <dpkg> well, sid is the codename for <unstable>, named after the kid in Toy Story that breaks toys. The great thing about running sid is that when it breaks, you get to keep ALL the pieces!!
843[10:50:41] <sponix2ipfw> !unstable
844[10:50:42] <dpkg> Unstable is the status of a Debian release when packages can be added at any time, that can disrupt the integrity of the whole system! Ask me about <break>. If you have to ask whether you should use it or how, you shouldn't. replaced-url
845[10:51:04] <Ashleee> gotcha, thanks
846[10:51:12] <Ashleee> I know the point of testing/unstable :P
847[10:51:20] <Ashleee> but that's *exactly* why I wanted to try it out :D
848[10:51:24] <sponix2ipfw> Okay
849[10:52:17] <genr8_> maybe theres some kind of command line you need to pass to tell it to stop trying to download
850[10:52:22] <sponix2ipfw> If you check the topic there is a channel on a different network for sid
851[10:52:23] <genr8_> idk how this anna thing works
892[11:17:25] <TTT> hi, I'm playing XCOM-2 (2016 game) on Debian/Sid/XFCE, and it crashes if I switch to a different workspace. I run it windowed. If I just switch to different app on same workspace, that's fine. Different workspace=crash. This isn't the first game I noticed doing this. Compositor is disabled. Any ideas how to fix that?
927[11:36:03] <jelly> hegemoOn, advanced compared to? What have you read so far
928[11:36:37] <jelly> dpkg, tell hegemoOn about own repo
929[11:36:41] <TTT> ok, enabling compositor doesn't help. Workspace switch still kills the game. I'll try a different DE at some point, right now I have too much stuff open to log out and log back in
930[11:36:46] <jelly> dpkg, tell hegemoOn about reprepro
952[11:45:51] <sponix2ipfw> HelloShitty: I have to get some sleep. But will check back in later
953[11:46:08] <HelloShitty> sure, no problem
954[11:46:34] <HelloShitty> thank you
955[11:46:47] <sponix2ipfw> HelloShitty: you can /msg me if needed.
956[11:47:31] <jelly> hegemoOn, perhaps an expert here is willing to help in private. I wouldn't expect a lot of free help in public when you cannot show debug info in public as well
974[12:03:03] <TTT> RadoS, ok, on advice from #xfce, I tried using a different WM (marco --replace), game still crashes. nothing in ~/.xsession-errors. I had same thing happen with another game, Dominus Galaxia early versions
975[12:03:25] *** Quits: ChiLLabiS (~ChiLLabiS@replaced-ip) (Disconnected by services)
994[12:17:03] <bn_work> ratrace: not sure... the only files that seem to be affected are files in /etc/network (wouldn't those be auto-updated?) and /etc/mail/... + /etc/fail2ban/action.d/... (for actions I don't use)
999[12:18:46] <ratrace> if you want the new "predictable" naming, you'll have to adjust all your configs where the NIC name is explicitly mentioned. As to which name you'll get after reboot.... that's the uh.... rather unpredictable :))
1001[12:19:15] <ratrace> there's a way to test with udevadm but if that's remote over ssh and you 100% depend on getting back to the server post reboot, I recommend you keep ethX, and carefuly test new naming scheme first.
1002[12:19:22] <RoyK> IIRC it's predictable, and not "predictable" ;)
1003[12:19:25] <bn_work> ratrace: so just add that to boot line and reboot pre-upgrade?
1005[12:19:33] <RoyK> since ethX can change over time
1006[12:19:37] <bn_work> (or after?)
1007[12:19:42] <RoyK> just like sdX
1008[12:19:43] <ratrace> RoyK: it's "predictable" because you can't predict the name in advance
1009[12:20:02] <ratrace> and in some cases the NIC will change the name because something on the bus changed....
1010[12:20:21] <ratrace> the ACTUAL way to have NIC name constant is to bind it to MAC, which is what I do....
1011[12:20:38] <ratrace> bn_work: yes
1012[12:20:47] <RoyK> but then the god loki comes in and changes your mac addresess
1013[12:21:11] <bn_work> ratrace: yes, to which? :)
1014[12:21:39] <ratrace> RoyK: or he visits your BIOS and renames your enp3s0 to LULZ666..... really, could you qouote a more unlikely and unplausible case? :/
1015[12:21:46] <jelly> it's only predictable if your PCI bus never changes... which probably isn't the greatest assumption on VMs
1016[12:22:16] *** Quits: JohnML (~john1@replaced-ip) (Remote host closed the connection)
1017[12:22:18] <RoyK> ratrace: not right now, but lookup the nearest bible or some other religion text and you're bound to find one :D
1018[12:22:19] <ratrace> bn_work: yes add net.ifnames=0 to your kernel command line (assuming you have ethX naming scheme) prior to upgrade. BUT you should anyway have a backup way of accessing your server in case something else goes wrong
1019[12:22:30] <ratrace> RoyK: so your argument is moot :)
1020[12:22:36] *** eb0t_ is now known as eb0t
1021[12:22:39] <RoyK> just trolling
1022[12:22:42] <ratrace> ikr :)
1023[12:22:58] <jelly> PCI bus layout can change with: - BIOS settings - kernel boot params - VM device hot plug, of course
1024[12:23:14] <ratrace> jelly: and, as history has shown, bug in udev where removing a GPU would rename NICs....
1040[12:30:29] <ratrace> defined by config automation, the MACs are predictable, consistent and unique.
1041[12:30:31] <SanchoPensa> can anybody tell me, where e-book reader stores it's bookmarks?
1042[12:30:43] <ratrace> what ebook reader.....
1043[12:30:57] <Haohmaru> somewhere in your home dir?
1044[12:31:02] *** Quits: flakE (~flakE@replaced-ip) (Quit: Every once in a while I like to stick my head out of the window and smile for a satellite picture.)
1058[12:33:41] <ratrace> SanchoPensa: whatever the app name, Haohmaru's answer is the correct one, somewhere in your ~/. Consult the specific program documentation and/or config to find where exactly.
1059[12:34:00] <Haohmaru> SanchoPensa check the program's "About" dialog (if any)
1060[12:34:21] <SanchoPensa> ratrace: that program does not have any documentation, neither does it have any settings...
1076[12:36:53] <SanchoPensa> Haohmaru: I already did that before asking here...
1077[12:36:57] <ratrace> if it's a badly written program, it'll have ~/.something/... , and if it's a well written program, it'll use ~/.config/... or ~/.cache/... or ~/.local/...
1078[12:37:14] <ratrace> SanchoPensa: you can strace the program and find out exactly which files it touches and in what way
1083[12:38:39] <bn_work> jelly: oh, I guess that's to ignore any name changing shenanigans at the BIOS level
1084[12:38:44] <SanchoPensa> Haohmaru: it does. Since it can remember the bookmarks, when I re-open a closed doc. It does, however not save them IN the doc, since they are gone, when I move that doc to another location...
1085[12:39:26] <Haohmaru> some programs do similar things be creating a file with almost the same name as the input document, in the same folder
1086[12:39:42] <Haohmaru> thus there may be no single folder with these
1087[12:40:31] <Haohmaru> so check for a hidden ".my_fancy_document.whatever" in the same place as the original file
1088[12:40:59] <ratrace> jelly: biosdevname is not a kernel control?
1089[12:41:12] <ratrace> from what I see, it's some RedHat something something requiring a daemon?
1090[12:41:49] <ratrace> Haohmaru: "bookmarks" would imply a persistent configuration/cache/storage somewhere
1093[12:43:03] <Haohmaru> ratrace certain audio editting program generates a preview of your audio (which takes time) and saves it next to the original file with an extra file extension for next time
1098[12:45:01] <SanchoPensa> Haohmaru: I of course already did that.
1099[12:45:37] <ratrace> Haohmaru: that's terrible if they do that
1100[12:46:14] <SanchoPensa> ratrace: exactly. strace is the wrong weapon of choice, though, produces some 31.000 lines of output, that, for some reason, that I cannot quite understand, cannot be grepped....
1101[12:46:15] <ratrace> unless those are short-living transient files? but then I'm not really a fan of what .vim and libreoffice do, just like that
1102[12:46:41] <SanchoPensa> ratrace: wasn't there some file command, that also just shows the open files of a certain app?
1103[12:46:46] <SanchoPensa> or some lsof?
1104[12:46:53] <Haohmaru> ratrace they stay there, so that next time you load that same file - it doesn't have to re-generate that thing
1105[12:47:00] <ratrace> SanchoPensa: you're using it wrong then. you can either limit the strance syscall filter with -e, or use an ouput file, grep, and look for "open"
1106[12:47:02] <Haohmaru> it's for the graphical preview of the sound
1128[12:57:20] <SanchoPensa> ratrace: now that is one hell of a command! returns: /usr/bin/python2.7/usr/bin/ebook-viewer/media/me/BackStick/Psychology/Habits/[ FreeCourseWeb.com ] Unleash Your Badass Business - the ultimate workbook for manifesting the money and life you crave/[ FreeCourseWeb.com ] UnleashYourBadassBusinesst-LaurenElizLove.epub
1138[13:00:55] *** Quits: JohnML (~john1@replaced-ip) (Remote host closed the connection)
1139[13:01:14] <SanchoPensa> ratrace: Haohmaru: says in the documentation: When viewing EPUB format books, these bookmarks are actually saved in the EPUB file itself.
1140[13:01:18] <SanchoPensa> roflol
1141[13:01:26] <SanchoPensa> F*** no, they aren't? :D
1155[13:05:30] <ratrace> SanchoPensa: that particular module might not be the one though. There's numerous places where bookmarks are mentioned in the source code, and there doesn't seem to be one way to manage them
1156[13:05:44] <ratrace> SanchoPensa: but... that's your place to look for them.
1157[13:06:05] <Haohmaru> isn't there another program that can open these files? (preferably a better one)
1158[13:06:06] <ratrace> I'm still betting that strace would've shown you exactly which files it's touching, so you can deduce.
1159[13:06:20] <gry> SanchoPensa: there are many factors involved, maybe a bigger screen or more thinking a bit deeper
1160[13:06:35] <SanchoPensa> ratrace: I am afraid, you are right again, that class py doesn't give it away either...
1162[13:07:34] <SanchoPensa> ratrace: you are certainly right about strace too, only haven't figured out yet, how to use it properly, in order to get a usable result...
1165[13:08:42] <SanchoPensa> gry: currently there is also a thinking deeper involved, in how far it is actually gonna help me with my issue to find out, where the bookmarks are stored.
1166[13:08:43] <SanchoPensa> And that would be, how to take them along, when I move the document...
1167[13:08:47] <efloid> bn_work: it should be
1168[13:09:04] <ratrace> SanchoPensa: strace -f -o calibre.strace.txt <command to run calibre> ; then do something with the bookmarks int he program, and exit; grep calibre.strace.txt for occurences of "open" | grep "/home/me/" | less and see what pops up
1186[13:17:56] <ratrace> SanchoPensa: I don't know the .pub format, but btw, maybe bookmarks are stored inside them? does the file update mtime timestamps when you open it and manage bookmarks?
1187[13:19:01] *** debhelper sets mode: +l 1145
1188[13:19:05] <SanchoPensa> ratrace: the help text of the calibre page would suggest, that as a matter of fact it DOES save them inside the .epub.
1189[13:19:05] <SanchoPensa> Problem is, they are gone, once I move that file. Which sort of doesn't add up...
1201[13:24:48] <SanchoPensa> ratrace: I am moving them to another HDD on the same device, so, it would have to hard-code the HDD. But the fact, that the bookmarks are still gone, once I move the file back to it's original location, would argue against that...
1202[13:25:32] <SanchoPensa> ratrace: could it be some kind of inbuilt "safety", that deletes YOUR bookmarks, in case you spread that file, in order not to give away personal information...?
1203[13:26:17] <ratrace> no idea
1204[13:26:25] <SanchoPensa> ratrace: beats me too.
1205[13:26:30] <Haohmaru> bruh, i thought .pdf is bad
1206[13:26:32] <SanchoPensa> I will write to the author.
1207[13:26:51] <ratrace> Haohmaru: maybe it's not the format but just bad reader
1208[13:26:59] <SanchoPensa> Haohmaru: It is certainly not as bad as pdf... :D
1209[13:27:01] <Haohmaru> isn't there others?!
1210[13:27:14] <SanchoPensa> agree with ratrace
1211[13:27:24] <Haohmaru> perhaps something not written in SNEK
1213[13:29:30] *** Quits: flakE (~flakE@replaced-ip) (Quit: Every once in a while I like to stick my head out of the window and smile for a satellite picture.)
1264[14:14:52] <einfair> I already read that debian-backports is a repository with binary packages, which contain new software compiled for stable release. But I don't understand how to use this information and how it answers my question
1265[14:15:37] <alex11> they mean you can use the kernel from backports
1266[14:15:40] <Haohmaru> if you're running debian stable, you may install newer versions of things from "backports" (if there are any)
1267[14:15:43] <Haohmaru> !backports
1268[14:15:43] <alex11> backports.debian.org has instructions
1269[14:15:43] <dpkg> A backport is a package from a newer Debian branch, compiled from source for an older branch to avoid dependency and <ABI> complications. replaced-url
1280[14:19:56] <Adions> Hello.I installed Debian on Macbook Pro, but the fonts of the startup part of the program are so small that it is not clear. My current resolution is 2880x1880.How can I solve it?
1281[14:20:42] <alex11> not sure what "startup part of the program" means but maybe xrandr
1282[14:21:49] <centrix> alex11, yes. To top it off, I run "dpkg -l|grep -i nginx" expecting nothing, but getting a bunch of nginx related packages (linginx-mod-http-echo for instance).
1283[14:21:53] <Adions> xrandr --dpi 144 In this way, the screen flickered for a while without any change.
1284[14:22:23] <alex11> i guess you can try apt autoremove centrix
1285[14:22:43] <centrix> I dod so. Still, when I do apt-get remove libnginx-mod-http-echo I get that no such package installed.
1288[14:25:42] *** Quits: Immanuel (~Manu@replaced-ip) (Ping timeout: 272 seconds)
1289[14:27:07] <einfair> alex11: I used instructions from page replaced-url
1290[14:27:19] <einfair> E: Package 'linux-image' has no installation candidate
1291[14:27:29] <alex11> if you're on amd64 try linux-image-amd645
1292[14:27:30] <alex11> 64
1293[14:27:50] <centrix> alex11, I tried: apt-get purge --auto-remove packagename
1294[14:27:56] <centrix> That seems to work.
1295[14:28:02] <alex11> interesting
1296[14:28:03] *** Joins: Immanuel (~Manu@replaced-ip)
1297[14:28:41] <centrix> However, installing the nginx package, the nginx user account does not get created. Why?
1298[14:29:05] <centrix> Is the account creation provided by another package?
1299[14:30:17] <ksk> centrix: are you an experienced linuxuser? if not, please nopaste the following:
1300[14:30:21] <ksk> dpkg -l | grep nginx
1301[14:30:21] <dpkg> No packages found matching | grep nginx
1302[14:30:25] <ksk> apt-cache policy nginx
1303[14:30:46] <ksk> oh, this is debian and not #nginx. then:
1304[14:30:47] <ksk> !bat
1305[14:30:47] <dpkg> [Basic Apt* Troubleshooting]. To diagnose your problem, we need ALL OF THE FOLLOWING information: 1. complete output of your apt-get/apt/aptitude run (including the command used) 2. output from "apt-cache policy pkg1 pkg2..." for ALL packages mentioned ANYWHERE in the problem, and 3. "apt-cache policy". Use replaced-url
1318[14:38:23] <alex11> i'm not sure centrix is going to know what nopaste is
1319[14:38:38] <alex11> if you have access to xorg (ie a graphical browser) just stick that stuff on paste.debian.net
1320[14:39:33] <centrix> alex11, ??? We talked about nginx.
1321[14:40:14] <centrix> alex11, So far so good.
1322[14:40:37] <alex11> yes, ksk wants output but says "nopaste", which is a specific thing, and i'm saying that most users might not know what that is
1324[14:40:48] <alex11> if everything works to your satisfaction then you don't need to post output
1325[14:41:31] <centrix> Thanks. My other server was installed by another admin and reconfigured to run under a different account. None said so ...
1326[14:41:51] <centrix> I installed, but defaultly it runs as replaced-url
1327[14:42:41] <centrix> No problem there. I was just wondering why ... I have to create the account manually and reconfigure in its conf etc.
1328[14:42:48] <centrix> Thanks. So far so good :)
1329[14:44:11] <ksk> !paste
1330[14:44:11] <dpkg> Do not paste more than 2 lines to this channel. Instead, use for text: replaced-url
1331[14:46:45] <Fahrradkette> hi everybody. I'd like to install bullseye on a new laptop which doesn't have an ethernet adapter and its wifi adapter requires a non-free binary blob from intel. Where do I put the firmware binaries (or the deb packet or the tar file?) on the to-be installed system(running busybox)?
1352[14:56:42] *** Quits: kia (~kia@replaced-ip) (Client Quit)
1353[14:57:01] <ksk> there should be, yes.
1354[14:57:15] <oxek> regarding the unofficial cd images that contain firmware - are they built in the same environment on the same machines as the official ISOs? Or are they just random images submitted by unknown people?
1393[15:10:51] <esters> Good day, is there a method or way I can get a kernel dump or see what is causing my machine to crash to the extent that neither keyboard nor monitor is responding? Thanks!
1406[15:22:27] <ratrace> esters: are you looking for an actual dump you can use gdb on, or just the panic trace?
1407[15:23:09] <ratrace> the sysrq mentioned above has nothing to do with dumps, it only allows you to force a graceful reboot, in case of machine hangs
1408[15:23:58] <ratrace> (I mean, you can technically force otherwise non-panicking kernel dump via sysrq, but I don't think that's what you wanted)
1409[15:24:09] <esters> ratrace: I would like to see what is causing my box to fully lock and be unresponsive
1418[15:26:58] <ratrace> esters: well by default it's not persistent, but also by default it forwards to syslog which would've kept entries in plaintext if they exist
1422[15:27:37] <ratrace> esters: find in /var/log/kernel.log "Kernel command line: BOOT_IMAGE" and that's the start of boot session, so lines above that are from previous boot session
1423[15:27:57] <NetTerminalGene> ,v firefox
1424[15:27:58] <judd> Package: firefox on amd64 -- sid: 80.0.1-1
1441[15:37:31] <esters> ratrace: its empty, the only way i can reproduce is when i launch a kvm instance of kali linux
1442[15:37:43] <aderchox> Hi, there are some packages I want to make but Linux version 5 is needed, are there any consequences to upgrading my Debian's linux kernel to 5?
1444[15:38:20] <ratrace> esters: then you'll have to tail dmesg in a terminal, see if manages to kprint anything even if it doens't reach the logs. use dmesg -Tw (don't | tail)
1446[15:38:55] <ratrace> esters: if that fails, maybe getting kernel's serial output might catch any kprints, but.... at this point.... I'd say it's likely there's none, your kernel is hard-crashing due to some hardware issue
1447[15:39:00] <esters> ratrace: What about kdump-tools ?
1448[15:39:21] <ratrace> esters: if you know how to use them, you can produce a dump and then debug it separately, get a trace
1449[15:39:39] <oxek> when I do "export PAGER='less'", and then execute 'man less', I get "Error clone: main.c:2608 main: Operation not permitted". Full output is replaced-url
1459[15:43:53] <oxek> ratrace: any idea where the issue might be on my end then?
1460[15:45:11] <ratrace> oxek: check if any of the ENV vars that less is considering, is set
1461[15:45:29] <dka> hi, I have a Synology NAS server I want to use for docker volumes (generally running on a Debian Host), How should I map the users ? I have the choice for SQUASH: 'No mapping', 'Map root to admin', 'Map root to guest', 'Map all users to admin', 'Mao all users to guest'.
1462[15:45:31] <ratrace> oxek: btw.... PAGER=more man less works? you get the manpage with 'more' as the pager?
1463[15:45:48] <dka> I have tried with no mapping and the sound mount command says: mount.nfs: requested NFS version or transport protocol is not supported => what does that mean?
1464[15:45:51] <oxek> yes PAGER=more man less works
1465[15:45:54] <ratrace> dka: that synology thing is running debian buster?
1466[15:46:06] <dka> not at all, it run a custom linux
1467[15:46:18] <dka> the host I am trying to mount the synology volume on is running on debian
1468[15:46:26] <dka> I don't know any synology server running on debian
1469[15:46:28] <ratrace> dka: so then what does your question have to do with $debian?
1470[15:46:40] <dka> because the NFS mount must happen on debian
1471[15:46:53] <dka> I have one NAS (Synology), many debian hosts where I should mount NFS volume to
1472[15:47:05] <dka> I asked here the question => replaced-url
1473[15:47:09] <ratrace> next time lead with that :)
1474[15:47:31] <dka> I told before (generally running on a Debian host)
1491[15:49:50] <aderchox> Is it safe to upgrade Debian's Linux kernel to version 5?
1492[15:50:02] <dka> It's sounds a bit not possible, this would mean my new debian install up to date is not compatible with my new synology up to date. I am not counting how many corps use it for such needs
1493[15:50:16] <ratrace> aderchox: it's deemed safe enough to be offered via buster-backports
1494[15:50:27] <dka> aderchox, yes it is, depend on what you are doing but it should be, if you have old drivers which are not ported, you may have to take care of that first
1520[15:58:51] <n4dir> you should have gotten used to bizarre rules by now ...
1521[15:59:14] <cipherize> Oh, sorry, my hands are stuck in polite mode. I meant "stupid."
1522[15:59:26] <ratrace> cipherize: saved my head wrt ext4/mq corruption in 4.19
1523[15:59:35] <n4dir> my rule says to stay away 1.5 meters from the kernel.
1524[15:59:43] <n4dir> kernel distancing
1525[15:59:48] <ratrace> but you're free to use whatever you want. if you prefer !sns, maybe debian is not for you.
1526[16:00:12] <aderchox> ratrace I'm not an expert, but I ask just out of curiosity, how come a distribution used by large number of people such as Ubuntu uses the version 5?
1527[16:00:23] <aderchox> Or maybe I misunderstood your point.
1528[16:00:42] <ratrace> aderchox: you probably misunderstood my point. I'm talking about minor kernel releases, whenever a major bump happens
1529[16:01:00] <ratrace> it woulnd't be the first time that a number of point releases are needed to iron out some serious bugs
1530[16:01:13] <dka> What does the last line is supposed to do : replaced-url
1531[16:01:13] <cipherize> aderchox: He has no point. Ubuntu is simply using what was the latest LTS kernel release when the release occurred.
1532[16:01:15] <ratrace> 4.19 was particularly nasty in that regard with a bug that corrupted filesystems
1533[16:01:40] <dka> I added in /etc/fstab => nas:/volume4/DKA_MEDIA /srv/nas/media nfs rsize=8192,wsize=8192,timeo=14,intr , I restarted debian, i epxected the NFS volume to be mounted, instead, it is not mounted, why?
1534[16:02:43] <ratrace> cipherize: Ubuntu is not bound to LTS kernels like Debian is
1538[16:03:47] <aderchox> retraced yes sorry I just re-read your message and realized what you meant by point releases :)
1539[16:05:32] *** Quits: JohnML (~john1@replaced-ip) (Remote host closed the connection)
1540[16:05:37] <asterismo_l> hi, i recently compiled my own kernel with MPENTIUM4 architecture instead of 486, is there any tutorial on how to compile all system packages the same way?
1541[16:05:56] <cipherize> asterismo_l: One asks why?
1542[16:06:32] <asterismo_l> for fun
1543[16:06:35] <ratrace> asterismo_l: Northwood?
1544[16:06:56] <cipherize> Then perhaps you should do your own research.
1545[16:06:58] <tarzeau> cipherize: some software run measurable much faster with optimized code
1546[16:07:00] <joepublic> I am pretty sure it's not "emerge world" though that may be related
1547[16:07:13] <cipherize> tarzeau: That is a myth, to be quite frank.
1548[16:07:22] <tarzeau> cipherize: that is not true.
1562[16:09:28] <cipherize> The time taken to watch compiler spam fly by will outweigh the collective seconds you MIGHT save from "optimizations."
1563[16:09:37] <ratrace> with AMD64 the differences between CPUs are little so no significant benefit can be gained, EXCEPT when utilizing specific subsets of instructions like AVX512, but generally software utilizing those can autodetect and adapt, so recompiling is less important these days
1564[16:09:40] <tarzeau> matter of software, i rebuild some scientific software opitmized for, and yes it makes a difference
1565[16:10:12] <tarzeau> atlas/blas is an exception? even the README.Debian or README.source says so
1566[16:10:14] <ratrace> for OLDER cpus, it might be needed to recompile as modern packages are built for some minimum instruction set. I think 32-bit debian packages require at least SSE
1568[16:11:12] <tarzeau> and even more gains with nvidia cuda, vs no nvidia cuda (works not at all, or very slow)
1569[16:11:55] <ratrace> tarzeau: it does make a diference if specific software can utilize specific subsets of the instructoin set and doesn't do run-time autodetection
1582[16:17:23] <ratrace> asterismo_l: well, all pentium 4 are netburst based, I just wasn't sure if you typo'd "mpentium4" meaning "pentium 4M" which'd be the mobile variant
1583[16:18:37] <ratrace> also do you know if your variant is capable of 64-bit?
1596[16:26:10] <dka> I have issue to automount a NFS drive at startup on linux debian. I added in /etc/fstab the volume, but I still needs to mount it after reboot, why?
1597[16:26:14] <ratrace> asterismo_l: so that's 32-bit only then
1620[16:37:04] *** Quits: anonzzz (~nathan@replaced-ip) (Remote host closed the connection)
1621[16:37:34] *** Quits: flakE (~flakE@replaced-ip) (Quit: Every once in a while I like to stick my head out of the window and smile for a satellite picture.)
1685[17:23:57] <dka> This is my /etc/fstab replaced-url
1686[17:23:57] <dka>
1687[17:24:11] <dka> but the mount command now fail
1688[17:26:33] <th0r> dka, my (old school) solution was to write a simple bash script to mount the nfs drive and call it from the end of rc.local. But these days with systemd who know?
1689[17:26:34] <dka> On a scale of 1 to 10, how hard is it to mount a NFS drive on debian? just so I reallize why I am having so much pain
1690[17:26:53] <dka> th0r, that's what I am thinking to do, but normally /etc/fstab should do it
1691[17:27:14] <ratrace> dka: adding x-systemd.after=network-online.target in the mount options should resolve the issue on boot
1716[17:31:46] <dka> and that's the content of /etc/fstab => replaced-url
1717[17:31:49] <dka> do you see something wrong here?
1718[17:32:16] <greycat> dka: are you using /etc/network/interfaces or network-manager? If the former, make sure the ethernet interface is marked as auto, NOT as allow-hotplug.
1719[17:32:18] <dka> running moung /srv/nas/kopaxgroup does mount the drive, but I want it to be enabled on reboot
1720[17:32:29] <dka> I use /etc/network/interfaces because it's a server n
1721[17:32:41] <greycat> !auto
1722[17:32:41] <dpkg> Interfaces marked "auto" are waited for by things that wait for the network to be up (like systemd's network-online.target). "allow-hotplug" means the interface is removable or not always needed, so network-online won't wait for it.
1723[17:33:07] <dka> yes greycat it's written as allow-hotplug
1724[17:33:16] <ratrace> dka: did you have a startjob? can you mount manually after boot?
1725[17:33:16] <greycat> that's the (first) problem, then
1726[17:33:33] <dka> ratrace, yes i can mount manually
1727[17:34:11] <dka> greycat does s/allow-hotplug/auto/g is enough for that interface?
1728[17:34:29] <dka> Please be aware that I am connecting to it by distance, and if I fuck up the network I wont be able to access that server again
1734[17:36:45] <dka> ratrace, I already posted them
1735[17:36:52] <ratrace> oh missed that, thanks
1736[17:37:03] <dka> here they are again : replaced-url
1737[17:37:10] <dka> greycat, ?
1738[17:37:15] *** Quits: elxbarbosa (~user@replaced-ip) (Remote host closed the connection)
1739[17:37:17] <joepublic> I am still blocking back on that "set it to auto" step
1740[17:37:58] <dka> I can `sudo sed -i "s/allow-hotplug/auto/g" /etc/network/interfaces` but I am worried about it I can't lost the access to the machine it's not in my LAN
1741[17:38:08] <dka> Is it safe ?
1742[17:38:20] <greycat> Edit the file BY HAND like a HUMAN.
1743[17:38:30] <dka> I can't show you the manipulation like that
1744[17:38:36] <dka> so that's what I will do by hand
1747[17:38:51] <ratrace> if you make a mountpoint dependent on network-online.target then I wonder if it matters whether it's hotplug or auto. I've had issues with BIND being unable to get DNSSEC keys on boot even though it's scheduled after network-online.target AND the nic is "auto"
1748[17:38:53] <dka> this interface is connected with ethernet, I presume it should be safe
1749[17:39:12] <ratrace> so I was forced to write a simple service that pings ousside the network, and make bind depend on THAT exiting ok.
1750[17:39:13] <dka> but I need a confirmation from an expert
1751[17:39:15] <greycat> if you change the correct instance of "allow-hotplug" to "auto" it is safe. if you do some massive overkill sed -i command, I promise nothing.
1752[17:39:28] <dka> OK , I 'll do it greycat
1753[17:39:58] <dka> I have another interface with allow-hotplug
1754[17:39:59] <greycat> ratrace: there could be other issues as well, but this is *definitely* one of the issues dka is having
1755[17:40:10] <greycat> seen it *so* many times...
1756[17:40:11] <dka> it's the wifi, in the worst case, I can ssh in with that interface
1801[17:55:15] <JyZyXEL> imgur is just a blank gray page with ublocked firefox :P
1802[17:55:28] <ratrace> JyZyXEL: I wonder why :)
1803[17:56:02] <ratrace> that scorecardresearch.com, I had it on my DNS blacklist for ages, it used to serve malware in the past... quite surprised that imgur is using them.
1837[18:08:14] <gvth> Hi; does anyone know of a good no-hassle image sharing platform, like imgut but a free one that allows the use of Tor and ad-blockers?
1869[18:19:08] <ratrace> first of all please don't use enter as interpunction. your 4 posts could've been one sentence easily. it doesn't matter. swapfiles are easier to manage as you don't have to deal with extra partition, esp. with encryption
1870[18:19:21] <ratrace> that said, not all filesystems will support a swapfile
1892[18:27:03] <khobo> it loaded but it's all white?
1893[18:27:14] <khobo> also, it took a good minute to load up for some reason.. weird!
1894[18:27:37] <khobo> ugh... look i'm really really sorry about the enter as punctuation.. i'll try and stop. i've tried to stop before but it's a horrible habit to try and break
1895[18:27:52] <gvth> khobo: the image I uploaded was not white
1902[18:29:53] <raub> Is there a way to install slapd such that it does not ask for the password (i.e. I can feed one when I do apt-get install slapd)?
1956[18:51:04] <khobo> ^ this is what my hostfile looks like atm
1957[18:52:16] <khobo> i need to reset my router so that i can login to it.. freakin netgear. brb
1958[18:52:28] <ratrace> khobo: btw you do know you can use text pastebins if you have network on that machine? pastebinit package, or netcat to termbin.com or other similar socket pastebins
1977[19:01:12] <ca1ek> still couldn't get in, Connection refused
1978[19:01:37] <ca1ek> so I look at the iptables, and yes, the port is set to allow connections from any address
1979[19:01:47] <ca1ek> so I look if sshd is up, and it is
1980[19:01:51] <petn-randall> !enter
1981[19:01:51] <dpkg> The enter key is not a substitute for punctuation. Hitting enter unnecessarily makes it difficult to follow what you are saying. Consider using ',', '. ', ';', '...', '---', or ':' instead. If you hit enter too often, you will be autokicked by debhelper for flooding the channel.
1982[19:02:00] <ca1ek> sorry.
1983[19:02:44] <petn-randall> ca1ek: Is sshd listening on the port you expect? I'd also double-check that it's the same ports you've got in sshd_config and in ufw.
1984[19:03:01] <ca1ek> continuing, I ran `netstat` to find out if sshd is even listening on that port, and it is. Why the hell can't i connect? I changed the port, i restarted sshd, I opened up the firewall, i verified that sshd runs on expected port
1985[19:03:38] <petn-randall> ca1ek: Can you connect from the same machine?
1986[19:03:55] <ca1ek> you mean, via loopback? I'll try
1987[19:04:04] <petn-randall> ca1ek: Yeah
1988[19:04:20] <ca1ek> via loopback it works
1989[19:04:27] <ca1ek> so it's somewhere in the firewall
1990[19:05:00] <ca1ek> Or I'll just give up on it and do what I intended to do, which is to set up an vpn server
2024[19:17:39] <ca1ek> i just looked at bash history and found something from a year ago, when I also tried to fix it, anyways, just forget about it, looks like the network adapter is having issues to that it can't get ssh working doesn't matter much anymore
2025[19:18:01] <ca1ek> s/to/so
2026[19:18:40] *** Quits: fflori (~fflori@replaced-ip) (Remote host closed the connection)
2027[19:18:43] <jhutchins> Network adapters either work or don't work, they don't block some protocols but not others.
2028[19:18:46] *** Lord_of_Life_ is now known as Lord_of_Life
2049[19:51:04] <khobo> alright, im back. had some technical difficulties with my router and its firmware. I just tried pinging google and says it's unresolvable so must be my network. i'm using wifi right now and was able to download the correct packages on install so i know i have teh correct drivers. my host file looks like replaced-url
2053[19:55:59] <jhutchins> khobo: What makes you think your hosts file has anything to do with DNS? Do you understand what those lines actually define?
2054[19:56:23] <khobo> yeah i do
2055[19:56:28] <khobo> just covering bases
2056[19:56:32] <khobo> (LAN addresses)
2057[19:57:10] <khobo> err.. sorry for multiple lines *argh* so i just did ip a ..... and then an iwlist wlan0 scan and says interface doesn't support scanning
2083[20:20:04] *** Quits: Sigyn (sigyn@replaced-ip) (Quit: i've seen things you people wouldn't believe. spam bots on fire off the shoulder of sigyn. i watched k-line beams glitter in the dark near the Tannhäuser Gate. all these moments will be lost in time, like tears in rain. time to /die)
2103[20:48:31] <khobo> now... i changed /etc/network/interfaces and added my wpa-ssid... my network is wpa2 though
2104[20:48:37] <khobo> not sure if that matters?
2105[20:48:54] <karlpinc> Perhaps you're not getting dhcp settings (or are otherwise not setting your networking parameters).
2106[20:49:00] <jhutchins> !wpa
2107[20:49:01] <dpkg> Wi-Fi Protected Access (WPA) is a wireless encryption standard. A WPA supplicant for Debian systems is in the wpasupplicant package, read /usr/share/doc/wpasupplicant/README.Debian.gz to configure (especially "Troubleshooting" for association to hidden SSIDs). Since Debian 7 "Wheezy", it is possible to install Debian over a WPA-protected network. replaced-url
2108[20:50:30] <khobo> this is teh guide i've been following... i didnt do anything with supplicant though..
2109[20:50:46] <khobo> is it auto installed on buster? bc i can't apt get right now
2145[21:03:54] <ratrace> khobo: vim somefile; use ijlk or arrow keys to reach to line you wanna copy. shift-V to select line. j to copy it to buffer. :sp <anotherfile> to copy the other file in separate view. Ctrl-w to jump betwen them. position the caret where you want to paste the line, p to paste. :wq to save and close the buffer. :q to quit the original buffer.
2146[21:05:08] <istrive> <khobo> try gedit instead of nano...
2147[21:05:25] <ratrace> they're on the console, no g*
2218[21:50:34] *** Quits: Jerrynicki (~niklas@replaced-ip) (Remote host closed the connection)
2219[21:50:41] <cipherize> A user is defined uniquely by their UID.
2220[21:50:54] <ratrace> gribouille: you can have multiple users with same username, different IDs in different namespaces. but in single namespace, one user has only one UID. it can belong to multiple groups. what's your end goal?
2222[21:51:07] <cipherize> One user can only have one UID. Multiple users can have the SAME UID, but the system treats them as the same user, effectively.
2268[22:06:25] <oerheks> uid 500 sounds like a HFS+ thingy
2269[22:06:48] <ratrace> gribouille: well, on debian it's really in your best interest to change your uid to 1000 and chown the files. <1000 are system uids and some package might object you using 500
2270[22:07:36] *** dob1 is now known as Guest39383
2285[22:11:44] <greycat> You can create a two-line nfsmount.conf file that will force all NFS mounts to default to version 3, if that will help you. I can give you the two lines. I had to figure this out on my own, so I'm willing to share to avoid others having the same issues.
2286[22:12:00] <greycat> But if your NFS server is supporting version 4's wacky UID mapping shenanigans, then fine.
2287[22:12:12] *** dob\ is now known as dob1
2288[22:13:41] <ratrace> greycat: why would one not want v4?
2290[22:14:27] <greycat> because when you don't control the NFS server, and the NFS server isn't even a Unix machine, and you mount a share from it and all of your files show up as "nobody", it sucks
2298[22:16:28] <jhutchins> All of the NAS devices I've worked with do not support NFS4, and many will cause a default client to fail because it tries 4.
2299[22:16:35] <dka> On the server, I only checked the NFS4 version, replaced-url
2300[22:17:04] <dka> On the client, I only configured /etc/fstab: replaced-url
2301[22:17:42] <greycat> If you have not configured the client and server to do NFSv4 uid mapping, then you should force the client to use NFSv3 mounts only.
2331[22:29:29] <greycat> dka: that's why I said all that stuff that I said about having to figure it out on my own, and being willing to supply the file so others would have an easier time. The file does not exist by default. If you want it, you must create it from scratch.
2332[22:29:47] <greycat> But you apparently want the v4 way, and I can't help you with that.
2333[22:30:25] <dka> i dont want the v4 way
2334[22:30:40] <dka> I have 6 years old and I want to mount a NFS into debian so I can use docker
2335[22:30:55] <dka> How do I create the file from scratch ? I can disable v4
2354[22:35:38] <mutantturkey> has anyone succesfully installed virtualbox on Bullseye? the wiki seems to be misssing documentation on it (goes up to buster)
2355[22:35:55] <greycat> you realize that bullseye hasn't been released yet...?
2360[22:37:12] <mutantturkey> documenttion has, buster, and unstable. i tried one of the instructions but was unable to satisfy the dependencies
2361[22:37:29] <ratrace> there's no more vbox on debian (xcept in sid). dropped until further notice. you'll have to use oracle's debs (eww!) if you insist on vbox...
2362[22:37:35] <ratrace> or try porting from sid
2363[22:38:50] <mutantturkey> i have a vmdk appliance people are reporting issues with. I need to test it. i don't really care about licensing or insisting on vbox or what alternatives are. I honestly haven't run a virtual box type setup in a very long time as wine works for most of my applications or i just use a digitalocean box when i need it
2364[22:38:58] <mutantturkey> so.... yeah Idk
2365[22:39:00] <mutantturkey> let me try sid's option
2366[22:39:20] <ratrace> !ssb
2367[22:39:20] <dpkg> First, check for a backport on <debian-backports>. If unavailable: 1) Add a deb-src line for sid (not a deb line!); ask me about <deb-src sid> 2) enable debian-backports (see <bdo>) 3) apt update; apt install build-essential; apt build-dep packagename 4) apt -b source packagename 5) dpkg -i packagename-ver.deb To change compilation options, see <package recompile>; for versions newer than sid see <uupdate>.
2368[22:39:31] <ratrace> mutantturkey: ^^^
2369[22:39:46] <mutantturkey> danke
2370[22:40:01] <mutantturkey> !deb-src sid
2371[22:40:01] <dpkg> You can get apt to download source packages with a <deb-src> line in your <sources.list>. A suitable entry for the sid release is: "deb-src replaced-url
2372[22:40:05] <ratrace> you will be tempted to enable sid sources.... you will resist the temptation. :)
2373[22:40:10] <mutantturkey> ....?
2374[22:40:20] <ratrace> I mean.... sid repository in apt sources.list :)
2375[22:40:20] <mutantturkey> don't i want to do it for just 'backports' no main,etc.
2376[22:41:09] <ratrace> no, you need sid's deb-src, not the regular sid repo (non-src) .... in sources.list gah terminology
2377[22:42:14] <mutantturkey> im just going to install ubuntu
2378[22:42:44] <mutantturkey> appreciate the help tho
2379[22:43:09] <khobo> LMAO
2380[22:43:14] <khobo> i'm thinking the same thing
2394[22:48:57] <l0rd_hex> Hey friends, I have a question... what is the use of boot.img.gz (hd-media)? I have this USB key I carry around that has a few different distros (installers) on it and when I use memdisk to boot boot.img.gz it starts up the installer but then it starts looking for an ISO. The uncompressed boot.img is like 954 Mb, that's a lot to just go find an ISO
2396[22:50:40] <l0rd_hex> For my instance it's better to just memdisk boot the ISO but I thought the boot.img.gz would skip having to do that
2397[22:50:49] <sney> iirc it's a component of the older style flash drive installer, from before we had the hybrid iso. it should be described in the install guide
2398[22:50:50] <sney> !ig
2399[22:50:50] <dpkg> The Installation Guide for Debian 10 "Buster" can be found at replaced-url
2401[22:51:17] <mutantturkey> vmdk/vdi are formats, but they both can be used on virtualbox
2402[22:51:27] <l0rd_hex> but like, write almost a gig to your ole timey flash drive _plus_ have the ISO?
2403[22:51:51] <l0rd_hex> just seems like I'm missing the point of it
2404[22:52:18] <sney> it does sound unusual. there's probably a good reason for it to be like that, and I don't remember what that reason is, so look in the install guide
2405[22:52:28] <l0rd_hex> I will, thanks
2406[22:53:23] <cipherize> mutantturkey: We know. But vbox uses .vdi by default, and vmware uses .vmdk by default.
2408[22:53:39] *** Quits: mossman (~mossman@replaced-ip) (Remote host closed the connection)
2409[22:53:55] <l0rd_hex> "Booting the installation system directly from a hard disk is another option for many architectures. This will require some other operating system to load the installer onto the hard disk. This method is only recommended for special cases when no other installation method is available." seems odd, I would just use the vmlinuz and initrd
2410[22:54:38] <l0rd_hex> mmm they're actually talking about vmlinux/initrd there
2420[23:05:02] <l0rd_hex> sney: makes me wonder what's in it if it's almost 1 GB
2421[23:05:15] <l0rd_hex> some-sort of creme filling I hope
2422[23:06:14] <khobo> would anyone be willing to give me some 1on1 attention/action? in regards to getting this network daemon up and running? i still can't get my wifi to run properly
2464[23:50:56] <jhutchins> khobo: What logs have you checked?
2465[23:51:05] *** Quits: dvs (~hibbard@replaced-ip) (Remote host closed the connection)
2466[23:52:08] <khobo> jhutchins:
2467[23:52:24] <khobo> well i can't ping google.com that's for one nor can i ping any of my local ips
2468[23:52:40] <khobo> i can't figure out why i don't have access to the sudo command out of install...
2469[23:52:43] <khobo> isn't that nuts?
2470[23:52:53] <cipherize> khobo: Did you set a root password during install?
2471[23:53:02] <khobo> i did
2472[23:53:05] <khobo> it's fine.. but weird
2473[23:53:11] <jhutchins> khobo: You're working with a container, aren't you?
2474[23:53:15] <khobo> i am not
2475[23:53:21] <khobo> fresh buster install
2476[23:53:38] <jhutchins> K, thinking of someone else. I repeat, what log files have you looked at?
2477[23:53:59] <khobo> i havent looked at any.. a bit clueless at what i should look like. i know for a fact though my network/interfaces is not setup correctly
2478[23:54:14] <khobo> having a difficult following along with what needs to be done with the guide replaced-url
2479[23:55:36] <khobo> do you see the command line section? do i need to do that part as well as the supplicant stuff?
2489[23:58:46] <khobo> so trying for wifi atm... will need ethernet ultimately
2490[23:58:49] <khobo> but
2491[23:58:56] <khobo> 8086:15b7
2492[23:58:58] <jhutchins> khobo: That requires functional networking and access to a DNS server, I don't think you've gotten that far yet.
2493[23:59:18] <jhutchins> ,pciid 8086:15b7
2494[23:59:19] <judd> [8086:15b7] is 'Ethernet Connection (2) I219-LM' from 'Intel Corporation' with kernel modules 'snd-hda-intel', 'e1000e', 'ata-generic' in stretch. See also replaced-url
2495[23:59:20] <khobo> and the wifi card is 8086:24f3
2496[23:59:30] <khobo> but i pulled that firmware on install
2497[23:59:39] <khobo> so i could get the correct packages
2498[23:59:46] <khobo> which is why it sort of blows my mind wifi wasn't automatically setup
2499[23:59:49] <khobo> since i did it at install
2500[23:59:50] *** Quits: dez (uid92154@replaced-ip) (Quit: Connection closed for inactivity)