this is #debianan IRC-Channel at freenode
(freenode IRC service closed
2021-06-01)
0[00:00:00] <jhutchins> ,pciid 8086:24f3
1[00:00:01] <judd> [8086:24f3] is 'Wireless 8260'
from 'Intel Corporation' with kernel modules
'iwlwifi', 'snd-hda-intel',
'ata-generic' in stretch. See also
replaced-url
11[00:01:49] <khobo> and then i can move it adn ethernet jack
it
12[00:02:10] <khobo> jhutchins: i'm all ears man but this
is pretty nuts the hoops they're making me jump through to get
this up and running
13[00:02:25] <khobo> the wifi network firmware has been
installed.. i can scan for networks last i checked
14[00:02:36] <jhutchins> Please don't just say something
doesn't work. Tell us what you did, what you expected to
happen, and EXACTLY what happened instead. Show what
commands/configurations you used. Pastebin if necessary.
15[00:02:47] <khobo> see i cant pastbin
16[00:03:00] <khobo> bc its on a airgaped machine at the moment
17[00:03:01] <jhutchins> khobo: Did you scan dmesg for entries
about the firmware?
48[00:10:03] <khobo> alright searching iwifi... "detected
intel (r) dual band wireless AC 8260
49[00:10:09] <khobo> i told you i installed the correct
firmware for this at install
50[00:10:11] <jhutchins> I have to go do something else right
now, I'll leave you to it. Good luck. It's not impossible,
it's not even hard with Intel, but there are basic things that
are hard to know.
51[00:10:30] <khobo> at install i was able to grab the packages
from the netinstall
52[00:10:36] <khobo> so wifi works at a hardware level
53[00:10:48] <khobo> configuring on other hand i'm very
lost on
54[00:10:52] <jhutchins> khobo: I suggested you search for
firmware to see if it's actually loading, not just installed.
55[00:11:12] <jhutchins> khobo: It would probably be easiest to
set up with Network Manager (see which docs).
56[00:11:16] <jhutchins> Gotta go.
57[00:11:19] <khobo> well looks like i see an entry saying
73[00:17:13] <jhutchins> khobo: I'm afraid you're
hitting a time in irc where most participants in the US are ending
their work days and the Europeans have gone to bed. You might have
better luck in the morning.
89[00:22:48] <greycat> if you're pressing q to exit, then
I assuming you're in less(1) which is *the* most common and
standard pager on Linux, and is the same thing you've probably
used when you read man pages in the past.
90[00:22:57] <greycat> because you did read some man pages,
right? right.
91[00:23:44] <greycat> basically, anything that decides to show
you output in a controlled, not-just-flooding-your-terminal way,
probably uses less. git, systemctl, man, etc.
185[02:17:21] <genr8_> i probably shoulda checked this earlier
before I started spending a day on rebuilding Buster kernel.
"Prepare to release linux (4.19.146-1). Bump ABI to 11"
186[02:17:51] <genr8_> that was 4 days ago. new kernel for
Buster should be out soon.
replaced-url
365[06:18:21] <genr8_> the "Dont worry its all taken care
of" mentality is killing us, especially when its taken care of
in the least technically advanced way. its a house of cards built
out of wet ramen noodles that people left in the sun and said
"hey look building materials"
366[06:18:58] <genr8_> now your OS is built out of freaking
noodles and you can live in it, but if it rains, everything falls
apart and you die of mold.
367[06:19:29] <genr8_> we're better than this
368[06:19:54] <TuxCrazy> genr8_, ok
369[06:21:18] <genr8_> we had 25 years to fix dynamic libraries,
shared/static compilation, build systems, and unifying the million
linux distros/flavors - and we squandered it. now terrible
noddle-tech is winning
373[06:22:40] <bigfluff> hello friends, i have an alias set in
my ~/.bashrc to open a remote ssh/screen session
374[06:23:05] <bigfluff> this works great, but in gnome-terminal
the tab remains titled 'user@localhost' (to my
workstation, not the remote ssh server)
375[06:23:13] <bigfluff> any way to solve this so my tab has a
more apt title?
376[06:24:16] <themill> bigfluff: there's a terminal title
escape sequence you can echo to set it
413[07:05:31] <nvz> I usually compile in screen for multiple
reasons not the least of which is to reference the current running
kernel's messages and such in chosing options
414[07:06:27] <genr8_> thats like a bandaid on the output spam
430[07:27:34] <nvz> so.. my x240 laptop here running buster to
my recollection has never popped up those dialogs for ssh
connections where I unlock my ssh key.. on my t440 it does this.
/usr/bin/ssh-agent -D -a /run/user/1001/keyring/.ssh is running
presumably started by my session. What else might I need to check
for?
431[07:28:24] <nvz> I can ssh/scp/ssh-fs from a terminal window
and get a prompt to unlock my key in the terminal, but this makes
things like caja's connect to server thing not work cause it
has no way to access my keys and the server doesnt allow password
logins
446[07:36:15] <n4dir> genr8_: or making an according setting.
Like xfce's autostart stuff. - I'd assume such happens in
DE's automatically, but it doesn't it seems
447[07:36:20] <n4dir> (always)
448[07:36:38] <genr8_> yep
449[07:36:39] <nvz> yeah just installing seahorse didnt change
anything
450[07:36:56] <nvz> I should just go grab the other machine and
see what the difference is between the two sessions
451[07:37:00] <genr8_> I went through a VERY similar issue when
I switched from Linux Mint/MATE to Debian/XFCE
452[07:37:01] <n4dir> starting it?
453[07:37:27] <nvz> cause on the other one even if I run a
command from terminal I get a GUI dialog for unlocking the key, not
a prompt on the terminal
456[07:38:57] <genr8_> its all very confusing to me, theres a
lot of interactions
457[07:39:13] *** Kel is now known as Guest15577
458[07:39:42] <n4dir> same here, but i had the problem the other
way around: making the ssh-agent working for the terminal without a
DE. Anyway: confusing
466[07:46:07] <nvz> yeah I think its polkit indeed
467[07:47:53] <genr8_> your ssh-agent is running with -D
"foreground mode" and -a "bind address" which is
pointed to your keyring, but mine is pointed to the default
SSH_AUTH_SOCK=/tmp/ssh-eaOds9D1Gtr8/agent.777
468[07:48:46] <genr8_> woops. 7772*. and my PID 7772 is : 7772
0.0 0.0 2388 1460 ? Ss Sep19 0:00 /bin/sh /etc/xdg/xfce4/xinitrc --
/etc/X11/xinit/xserverrc
495[07:55:34] <nvz> and yes, the user I typically use on the
x240 is uid 1001
496[07:56:29] <nvz> I normally leave the x240 on the dock on my
livingroom tv.. so presumably the guests I dont have could be using
this machine.. so I use a different user called "tv" which
is 1001
497[07:56:49] <genr8_> I also have running:
/usr/lib/policykit-1-gnome/polkit-gnome-authentication-agent-1
498[07:57:13] <nvz> I get the same output as
gnome-keyring-daemon with that set thing
510[08:00:56] <nvz> I'm gonna fire up this Opti780USFF
desktop over here.. it at least also has buter.. not good comparing
this buster x240 to the sid t440
511[08:01:09] <nvz> comparing apples to oranges :P
512[08:01:32] <n4dir> after reading the arch wiki i am as smart
as before, and the mate wiki has nothing like that. I'd
probably try the #mate channel
513[08:01:36] <n4dir> (too)
514[08:02:07] *** Quits: kupi (uid212005@replaced-ip) (Quit: Connection closed for inactivity)
515[08:02:23] *** Quits: nt1036 (~nt1036@replaced-ip) (Remote host closed the connection)
516[08:02:30] <nvz> I don't use this desktop like AT ALL so
it should be a totally fresh buster install
518[08:03:44] <genr8_> on my GNOME buster, SSH_AUTH_SOCK is set
to /run/user/1000/keyring/ssh , and ssh-agent is running with
/usr/bin/gnome-session as the command line
519[08:04:14] <nvz> well both these laptops have two ssh-agents
520[08:04:19] <nvz> one as you say with the mate-session
521[08:04:30] <nvz> and the other with the -D crap I mentioned
earlier
522[08:05:20] <genr8_> are you sure you don't have seahorse
?
537[08:10:51] <genr8_> maybe its just not assosciated to the
right host ?
538[08:10:53] <nvz> I replaced details in that.. but
user@host:port is my server and the /home/tv/.ssh/id_foo is the
local ssh key for it on this machine
539[08:10:58] <n4dir> using a display-manager?
540[08:11:10] <nvz> yes, lightdm
541[08:11:50] <n4dir> damnit. As said: very confusing, with many
things involved. Good luck, back to read-mode
561[08:20:28] <genr8_> This module can be used to provide
authentication for anything run locally that supports PAM. It was
written specifically with the intention of permitting authentication
for sudo without password entry
562[08:20:48] <genr8_> This module provides authentication via
ssh-agent. If an ssh-agent listening at SSH_AUTH_SOCK can
successfully authenticate that it has the secret key for a public
key in the specified file, authentication is granted, otherwise
authentication fails.
563[08:21:23] <nvz> so in other words it hooks ssh-agent i.e.
your keys into pam..
564[08:21:28] <nvz> sounds disgusting
565[08:22:51] <genr8_> it may have implications but I like the
idea of it
570[08:25:10] <nvz> I never explicitly told the t440 to do this,
and it had done it even before I'd foolishly upgraded it to sid
571[08:25:47] <n4dir> you could set the sources list in the sid
installation to testing and then just wait. If you don't want
to reinstall
572[08:25:51] <nvz> I was reading upstream changelogs and wanted
to see the latest MATE and XFCE and rather than do it in a vm.. I
just upgraded my main machine to sid like a du-mass
573[08:26:04] <genr8_> its some kind of ssh-agent , keyring,
dbus and polkit madness
574[08:26:14] <nvz> yeah I hadnt reinstalled cause the ssd is a
bit old and I didnt wanna trash it
575[08:26:22] <nvz> thrash rather
576[08:26:33] <n4dir> then i'd do what i said. Can't
lose much
577[08:26:36] <nvz> figured I'd wait until I was ready to
buy a new drive
580[08:27:02] <nvz> I have other drives here but not other ssds
:P
581[08:27:16] <genr8_> if it dies, you'll be ready.
582[08:27:27] <nvz> ready to go back to a slow can o rust :P
583[08:27:46] <nvz> I got both these laptops running the OS on
ssd right now and I like it :D
584[08:28:16] *** Quits: tryte (~tryte@replaced-ip) (Remote host closed the connection)
585[08:28:17] <nvz> fwiw I made polkit respect sudoers and crap
somehow on my father's machine and made it so he'd never
have to enter a password on anything
586[08:28:24] <nvz> I didnt know about the ssh pam hook thing
590[08:31:38] <nvz> whats odd now is, I deleted that entry in
seahorse and now its not even showing the thing to unlock the key on
this x240 in the terminal anymore its just hanging
591[08:31:51] <nvz> but I'm still able to do it from the
desktop over there with the same command
592[08:32:17] <n4dir> in the configs of mate,
polkit-mate-authentication-agent-1.desktop is set to autostart?
593[08:32:57] <nvz> yes and its in the process list as running
636[08:43:38] <nvz> whats odd is, currently gnome-keyring-daemon
is eating up 100% of cpu4
637[08:43:45] <nvz> probably since I deleted that entry in
seahorse
638[08:44:01] <nvz> I'm gonna relog see if this mess I made
with that clears up
639[08:44:04] <genr8_> kill it and make a new one
640[08:44:14] <genr8_> you know you can just shut these
processes down and launch them yourself
641[08:44:45] <nvz> yes, I know.. but since we obviously are
confused about the relationship between all these processes.. wanna
let them do their thing naturally :P
642[08:45:25] <genr8_> the parent/child relationship doesnt
affect that. the command line does
643[08:45:25] <n4dir> tell me about it, when i screwed it all
with jack i just reboot ...
644[08:45:35] *** Quits: Downer (downer@replaced-ip) (Remote host closed the connection)
645[08:45:41] <nvz> ok, on relog its doing it the way it was
before now, showing the unlock key prompt in the terminal
670[08:51:11] <genr8_> i wonder how I re-enabled it, i forgot.
671[08:51:19] <jelly> !DontZap
672[08:51:19] <dpkg> Since Debian 6.0 "Squeeze",
terminating an X server via Ctrl+Alt+Backspace ("zapping")
is disabled by default. To enable, run «dpkg-reconfigure
-pmedium keyboard-configuration» and answer Yes when asked if
Ctrl+Alt+Backspace can terminate the X server (or «setxkbmap
-option terminate:ctrl_alt_bksp»).
673[08:51:22] <nvz> jelly: yeah I ran across it awhile back but
dont recall where
674[08:51:40] <genr8_> I definitely did not run that to do it
675[08:51:54] <nvz> ah.. thats where I ran into it.. running
through dpkg-reconfigure keyboard-configuration for an issue someone
had in here
680[08:52:37] <nvz> but these days when shtf I often just use a
SAK
681[08:52:47] <nvz> heh
682[08:53:09] <nvz> I got a few things running on this x240 I
dont need I realize
683[08:53:15] <jelly> more often than that I just ssh in from
the phone, if the system is still responsive
684[08:53:32] <nvz> like /usr/games/bzfs -advertise NONE seems
to be starting automatically running as user "games"
685[08:53:48] <nvz> which I assume is something with
bzflag's server
686[08:53:59] <nvz> though I never knew it to run automatically
687[08:56:11] <nvz> since its parent process is init, there is
apparently a service installed and activated
688[08:56:22] <genr8_> I forgot what you were working on to
begin with. you can open SSH servers in Caja ?
689[08:57:06] * nvz stops and disables bzflag.service
690[08:57:34] <nvz> yes I was trying to go to "Connect To
Server" in caja and connect via ssh to my server
691[08:57:48] <genr8_> i had no idea that was even a thing
692[08:58:05] <nvz> but I cant because it won't hook to the
ssh-agent and use my key, and there is no passwords allowed on my
server so.. it kinda needs my key
733[09:07:42] <genr8_> oh. nm i see what youre saying. yes what
i pasted is not polkit.
734[09:08:11] <nvz> I am having a tough time figuring out what
it is cause when it comes up on the t440 it locks everything
735[09:08:24] <nvz> I can't get to another window to figure
out what process is spawning it
736[09:08:52] <nvz> and on the t440(sid) it doesnt look like
that anymore it doesnt have the radio buttons for how long to
remember the password
737[09:09:50] <nvz> just says Unlock private key in the title
bar, shows that key icon and heading is Enter password to unlock the
private key and then subheading is An application wants access to
the private key "user@t440", but its locked
738[09:10:02] <nvz> then just shows the password box and Cancel
and Unlock buttons
739[09:10:22] <nvz> and it totally locks my session, wont even
let me move the password window
740[09:10:36] <nvz> until i auth or cancel it
741[09:11:00] <nvz> so I can't even screenshot the
dialog..even the hotkey for a screenshot is disabled while its open
753[09:15:16] <genr8_> <nvz> well the login keyring is
unlocked and shows user@host:port//home/tv/.ssh/id_foo network
password <-- thats how mine shows up too
754[09:15:36] <nvz> and yours is working
755[09:15:50] <genr8_> yes. it unlocks my login keyring
automatically when my session loads. It didnt used to.
756[09:16:32] <nvz> well is the ssh key in the login keyring?
757[09:16:36] <nvz> cause on the t440 its not
758[09:16:38] <genr8_> no
759[09:16:45] <nvz> its under OPenSSH keys
760[09:16:50] <genr8_> yes
761[09:16:53] <nvz> on this x240 its in the login keyring
762[09:17:05] <genr8_> that doesnt seem right
763[09:17:22] <nvz> well there is nothing in the seahorse now..
there was only that in the login keyring.. and I removed it
764[09:17:36] <nvz> but on my t440 I got all the chrome crap in
the login keyring
765[09:17:48] <nvz> and I got two entries for ssh keys in the
OpenSSH Keys
766[09:18:03] <genr8_> the login keyring only stores the
PASSWORD for the ssh key.
767[09:18:14] <nvz> using ssh did not trigger the login keyring
dialog on fresh login on the t440
768[09:18:16] <genr8_> the OpenSSH key area refers to the actual
keys.
769[09:18:23] <nvz> only opening chromium prompted to unlock the
login keyring
770[09:18:29] <nvz> which thats another thing I'd like to
figure out
771[09:18:37] <genr8_> thats something else
772[09:18:42] <nvz> how to unlock the login keyring with
fingerprint at lightdm
773[09:18:48] <genr8_> thats probably just down to the filename
in .local/share/keyrings
774[09:18:51] <nvz> if I use password to login, it unlocks the
login keyring
775[09:18:57] <nvz> but if I use fingerprint it does not
776[09:19:06] <genr8_> well thats another thing too then
777[09:19:21] <nvz> yeah.. its all confusing as hell :P
778[09:19:30] <genr8_> /.local/share/keyrings/login.keyring
SHOULD get unlocked automatically on login. any other filename
doesnt.
779[09:20:09] <nvz> yeah well apparently libpam-fprintd throws a
wrench in that
780[09:20:24] <genr8_> well forget that for now thats even more
layers
781[09:20:30] <nvz> heh
782[09:20:31] <jelly> perhaps your pam config is suboptimal
783[09:20:40] <nvz> yeah well undoubtedly
784[09:20:44] <jelly> (don't ask me how to make it better)
785[09:20:56] <nvz> for one thing I have to fail or timeout the
fingerprint to even login with password
786[09:21:13] <nvz> and I never could figure out a way to allow
multiple fingers
787[09:21:29] <nvz> you can enroll multiple, but only the last
one enrolled seems to actually auth
788[09:21:38] <jelly> I have an IR camera now, wonder where
face-based auth is for Linux
789[09:21:39] *** Quits: yanmaani (~yanmaani@replaced-ip) (Remote host closed the connection)
790[09:22:00] <jelly> fingerprints are so 2009
791[09:22:00] <nvz> idk but we got a face based mouse in debian
792[09:22:05] <nvz> ,i evicam
793[09:22:06] <judd> No package named 'evicam' was
found in buster/amd64.
811[09:26:00] <genr8_> I had to do that when I switched
DE's
812[09:26:03] <nvz> jelly: fwiw I also ran across a python
script that can turn your cam into a light sensor and auto-adjust
backlight based on lighting conditions
813[09:26:10] <genr8_> to actually unlock my login keyring on
login
814[09:26:56] <genr8_> Logging in should be enough to trigger
the unlock. starting chromium to do it is unusual.
815[09:27:09] <nvz> genr8_: ah.. well I only have login.keyring
a login.keyring.temp-<number> and user.keystore in mine
816[09:27:21] <genr8_> then it should be working.
817[09:27:27] <genr8_> idk what the temp one is
818[09:27:29] <nvz> genr8_: well chromium is the only thing
using my login keyring
819[09:27:44] <genr8_> thats not good then
820[09:27:51] <nvz> and I never told it to.. thats just default
behavior for chomium
821[09:27:58] <genr8_> the DE should be using your login
keyring.
822[09:28:01] <nvz> to use the login keyring to store its
passwords
829[09:29:33] <genr8_> it shouldnt matter whats in it. just that
it gets unlocked.
830[09:30:17] *** Quits: n4dir (~n4dir@replaced-ip) (Remote host closed the connection)
831[09:30:28] <nvz> yeah I got that on the x240 but not on the
t440
832[09:30:39] <genr8_> all of those launch various parts of the
gnome-keyring-daemon. "--components=pkcs11" ,
"--components=secrets", "--components=ssh". but
in the process list it shows up only as
"/usr/bin/gnome-keyring-daemon --daemonize --login"
853[09:38:05] <nvz> most likely via login and creation of my
user slice when I login via lightdm
854[09:38:17] <genr8_> what makes you think that
855[09:38:18] <nvz> which I don't really understand that
crap either
856[09:38:21] <nvz> I KNOW that
857[09:38:38] <ecraven> hello ;) quick question about a
packaging control file: are Build-Depends automatically also
Depends? if I build-depend on jdk, will that mean my package
automatically depends on jdk as well?
858[09:38:45] <nvz> I can see the hierarchy in the ps list, I
can see what happens when the session manager isn't being told
to start them..
859[09:38:50] <genr8_> no
860[09:38:53] <nvz> I can see what cgroup its in
861[09:38:54] <genr8_> ecraven, no
862[09:39:06] <ecraven> genr8_: thanks!
863[09:39:27] <nvz> ecraven: no, because often the build depends
are headers and the depends are binaries
864[09:39:42] <ecraven> that's what I thought ;) thank you!
865[09:40:08] <nvz> its not always the case, but typically
916[09:48:09] <nvz> which I think means some folk seriously
overlooked some shit
917[09:48:23] <genr8_> i think theres an explanation
918[09:48:31] <nvz> there had better be :P
919[09:48:39] <nvz> LUCY, YOU GOT SOME SPLAININ TO DO..
920[09:48:46] <genr8_> instead of LightDM forking the children,
it sends the child's parent back to systemD
921[09:48:58] <nvz> yes but wth is lightdm even doing this
922[09:48:59] <nvz> and how
923[09:49:05] <genr8_> the X sessions.
924[09:49:06] <nvz> this should be the session manager
925[09:49:20] <nvz> and if I'm unchecking this crap in the
session manager's prefs.. why is it still starting?
926[09:49:25] <genr8_> lightDM sets off a chain of events, and
somehow it re-parents itself under systemD
927[09:49:32] <genr8_> you must have duplicate DE shit
928[09:49:48] <nvz> that means the UI most users know.. what
they see as "startup applications" is not in fact having
any real control over their startup applications
942[09:51:47] <nvz> ratrace: for breaking session management in
DEs
943[09:51:48] <genr8_> you said your lightDM starts
x-session-manager
944[09:51:54] <nvz> genr8_: indeed
945[09:51:57] <genr8_> its that.
946[09:51:59] <genr8_> for me, that points to ->
/usr/bin/startxfce4
947[09:52:08] <genr8_> that kicks off the chain of events and
sources a bunch of /etc config files
948[09:52:13] <ratrace> nvz: how? someone mentioned re-parenting
to systemd.... that it?
949[09:52:16] <genr8_> .XsessionRC and the like
950[09:52:50] <genr8_> yes, somehow the gnome-keyring-daemon
gets re-parented to systemD even though lightDM starts the session
and the session starts the keyring
951[09:52:59] <ratrace> that's lightdm doing
952[09:52:59] <genr8_> and a bunch of other daemonic shit is
started
954[09:53:22] <ratrace> systemd can't do that, and on linux
any process that loses parent process gets reassigned to pid 1
955[09:53:30] <genr8_> ohhhhh
956[09:53:31] <nvz> ratrace: I've as of right now on this
machine gone into (ON MATE)
System>Preferences>Personal>Startup Applications and
disabled pulse audio, polkit, 3 different gnome-keyring things one
that hooks the login keyring, one that hooks polkit, and one that
hooks ssh.. and all but polkit-auth-agent are still starting up
regardless
957[09:53:32] <ratrace> so ask lightdm why it does that
958[09:53:38] <genr8_> So thats why
959[09:53:45] <nvz> no, its not
960[09:53:47] <ratrace> looking at my process list, stuff's
all NOT direct children of lightdm
961[09:53:48] <nvz> he's correct in what he said
962[09:53:57] <nvz> however its not pid1 (init) that is the
parent
963[09:54:16] <genr8_> it is for me
964[09:54:28] <ratrace> nvz: are you sure..... pstree -p
965[09:54:31] <nvz> on here its pid 1227 systemd
966[09:54:49] <genr8_> is there a full command line for that ?
976[09:56:23] <nvz> the big issue I'm stuck on now.. is
that the UI.. the DE's startup applications dialog.. thats
suppose to manage the session's startup apps.. unchecking stuff
in there has no effect on the majority of things in there by
default..
977[09:56:31] <nvz> something else is starting all this crap
978[09:56:42] <nvz> and not obeying the DE's GUI tool
1008[10:02:18] <nvz> and I dont think its just MATE, I think they
somehow got systemd doing this stuff now and the stuff in ANY DE is
just duplicating it
1009[10:02:26] <ratrace> you looked at the usual suspects like
/etc/xdg/autostart and whatsit dir in ~/ ?
1010[10:02:34] <genr8_> no, its part of the systems'
"Xsession" files in general
1044[10:08:24] <ratrace> all this.... is reason why YotLD never
came and never will come, unless RH somehow manages to extinguish
everything but gnome.
1045[10:08:35] <ratrace> (and microsoft agrees)
1046[10:09:52] <genr8_> gnome is basically linux microsoft
1047[10:10:09] <genr8_> even on Debian its filled with suspicious
shit
1048[10:10:36] *** Quits: greknod (~greknod@replaced-ip) (Remote host closed the connection)
1049[10:10:44] <genr8_> Ubuntu should be taken out back and shot
for championing its toxicity
1051[10:11:18] <genr8_> wtf dude theres an infestation of
crickets in my house suddenly
1052[10:11:30] <mossylane> blame ubuntu
1053[10:11:34] <ratrace> that's for badmouthing the
Microsoft satanspawn. shush now! :)
1054[10:11:51] <genr8_> I went downstairs to get food and theres
like 2 in the kitchen and 3 down in the basement, came back upstairs
and 1 just jumped out in front of me in my bedroom on the carpet
1079[10:23:31] <ratrace> oh yea I remember that one. thought I
was pwnd. wanted to hunt down the author of it and bash his or her
computer with a pickaxe.
1083[10:25:02] <genr8_> I still consider it suspicious cause its
from gnome. theres a ton of stuff like that
1084[10:25:03] *** Quits: rare_energy (~quassel@replaced-ip) (Quit: who knows)
1085[10:25:28] <genr8_> if I was being cynical, I would say they
name it obviously like that, so you still have the choice to find it
and remove it, but if you do nothing, you're pwnd.
1086[10:26:17] <genr8_> I really despise auto-installed invasive
shit on the system. its up to us to care enough to not use it and
combat it.
1090[10:27:16] <ratrace> I got sick of gnome when I realized it
had a ton of little config processes for stuff I will never ever
use. then there was that thumbnailer vuln that allowed windows
malware to be run if you had wine installed.... that broke the
camel's back, I was done with big DEs and all the nonsense they
do in the name of "convenience"
1092[10:27:20] <nvz> genr8_: I considered making a tool for that
to make it easier to have them all installed without your menus
beign horribly cluttered
1093[10:28:46] <nvz> well I learned a couple things.. but I still
havent solved ANY of my issues
1119[10:33:33] <ratrace> if a process tree falls in the computer,
and there's no sysadmin to see it, did it cause one to scream
anyway?
1120[10:33:38] <nvz> it seems to be something related to AIGLX,
modeset..
1121[10:34:02] <jelly> that
1122[10:34:06] <genr8_> Kernighan and Ritchie
1123[10:34:08] <jelly> _is_ the Xorg log?
1124[10:34:33] <nvz> jelly: tail end of the last one (.old) after
I switched to tty2 and back
1125[10:34:45] <nvz> and logged in again
1126[10:34:53] <nvz> cause of course X had died :P
1127[10:35:02] <nvz> like it does every time I switch VT
1128[10:35:33] <jelly> don't do that, then
1129[10:35:35] <nvz> but as I said, these two machines are nearly
identical.. the hardware differences in the x240 and t440 are
minute.. mostly a larger screen
1130[10:35:38] <nvz> jelly: heh
1131[10:35:40] <genr8_> maybe its some kind of framebuffer
console thing thats using your videocard for the TTYs
1132[10:35:53] <nvz> they both use the same CPU i5-4300U
1133[10:36:00] <jelly> are both intel-gpu only?
1134[10:36:01] <nvz> integrated intel hd 44000
1135[10:36:04] <nvz> yes
1136[10:36:08] <nvz> and one does that, the other doesnt
1157[10:38:40] <genr8_> it sounds suspiciously like theres a
graphics conflict of interest between the VT TTY and the X session
1158[10:38:42] <ksk> Franciman: feel free to just ask it, dont
ask to ask :)
1159[10:38:48] <Franciman> I don't quite understand the
systemd unit that gets installed, it requires a bip-config.service
1160[10:38:48] <jelly> genr8_, I mean, this is not debatable; the
drivers require and use kms ("modeset") and fb to set up
graphical modes on each connected display
1166[10:39:19] <nvz> on the T440 I had generate an xorg.conf and
only option I changed is the PageFlip I set to "Off" on
the t440 cause if I dont it spews to the log two lines a second..
doesnt do that on the x240 which has this issue with the server
dying when I switch VT
1167[10:39:30] <nvz> both using modesetting driver not the intel
one
1168[10:39:52] <jelly> Franciman, dpkg -L packagename will show
package contents
1169[10:40:30] <genr8_> Franciman, the .service files are in
/lib/systemd/~somewhere~
1170[10:41:05] <genr8_> you can also run "systemctl status
bip-config.service" or "systemctl show
bip-config.service"
1171[10:41:09] <ksk> combine these two previous statements to
find the systemd unit for your service ;)
1210[11:12:40] <hjarvard> how do i check if agent is running
correctly? `systemctl status --user ssh-agent` reports agent is
running, SSH_AUTH_SOCK seems to be correct
1211[11:12:44] *** Quits: wilson (~wilson@replaced-ip) (Ping timeout: 246 seconds)
1220[11:19:15] <genr8_> Run ssh-add on the client machine, that
will add the SSH key to the agent. Confirm with ssh-add -l (again on
the client) that it was indeed added.
1221[11:19:59] <genr8_> When you generate a new SSH key, ssh-add
must be invoked for the ssh-agent to become aware of the new private
key (per
replaced-url
1294[12:32:15] <Fox> shreerama: did you unzip -t first to see if
it's a corrupted zip file ?
1295[12:33:53] <shreerama> unzip -t file.zip returns same error
1296[12:35:15] <shreerama> Fox : this is the erro =>
End-of-central-directory signature not found. Either this file is
not a zipfile, or it constitutes one disk of a multi-part archive.
In the latter case the central directory and zipfile comment will be
found on the last disk(s) of this archive.
1447[14:55:41] <j2mb0> ok i have tried to post about the problem
in #linux but it was going nowhere ... i will try here again: i am
using debian bullseye and cant install audacious
1449[14:56:47] <j2mb0> if i run "apt install audacious"
i get: "audacious : Depends: libaudcore5 (= 4.0.4-1) but
1:3.10.1-dmo1 is to be installed : Unable to correct problems, you
have held broken packages.@
1450[14:57:15] <fireba11> so .. do you have packages that are set
to hold?
1451[14:57:27] <n4dir> !bat
1452[14:57:27] <dpkg> [Basic Apt* Troubleshooting]. To diagnose
your problem, we need ALL OF THE FOLLOWING information: 1. complete
output of your apt-get/apt/aptitude run (including the command used)
2. output from "apt-cache policy pkg1 pkg2..." for ALL
packages mentioned ANYWHERE in the problem, and 3. "apt-cache
policy". Use
replaced-url
1453[14:58:57] <j2mb0> how can i unhold all packges if any?
1457[14:59:13] <dpkg> hold is a status flag that tells the
package manager to not automatically upgrade a package. To hold a
package 'echo $package hold|dpkg --set-selections' or
'aptitude hold $package'. Note that prior to
<stretch> "aptitude hold" is ignored by other
package managers and aptitude won't necessarily use holds set
with dpkg; see Debian bug #137771. See also <hold list>,
<unhold>.
1458[14:59:20] <j2mb0> no packages found
1459[14:59:20] <dvs> ah, debian multimedia
1460[14:59:38] <n4dir> !unhold
1461[14:59:39] <dpkg> Removing a <hold> status flag can be
achieved through «echo packagename install | dpkg
--set-selections», or «aptitude unhold
packagename» if the package is held in aptitude.
1480[15:11:31] <j2mb0> here ist sources.list:
paste.debian.net/1164293
1481[15:11:49] <fireba11> j2mb0: ouch
1482[15:13:11] <dvs> j2mb0: you must have some files in
/etc/apt/sources.list.d
1483[15:13:17] <j2mb0> basically, i want to understand how to
solve this kind of problems, i have no idea where to start, the
whole dependency mechanism is confusing
1484[15:13:41] <fireba11> j2mb0: okay, currently testing =
bullseye but you don't want to mix those tho terms, otherwise
you get some mix up when testing bevomes stable.
1485[15:13:52] <j2mb0> dvs: i do have, but i dont understand why
would that be a problem
1486[15:13:59] <fireba11> j2mb0: also you have some (commented
out) ubuntu sources that will mess things up
1487[15:14:09] <dvs> j2mb0: because it reads those repos as
sources too
1488[15:14:21] <dvs> as if they were in sources.list
1489[15:14:22] <j2mb0> there i have apps-specific resources
1496[15:15:18] <dpkg> i heard chrome is Mozilla's term for a
theme or skin, or "Google Chrome", a web browser by Google
based on Chromium, ask me about <chromium>. For VIA UniChrome
/ Chrome9 support, ask me about <openchrome>.
1497[15:15:30] <wwilliam> !chromium
1498[15:15:30] <dpkg> Chromium is an open source web browser
produced by Google, based on WebKit. Google Chrome is based on
Chromium. Ask me about <pepper flash>.
replaced-url
1499[15:15:30] <dvs> j2mb0: comment those sources out?
1500[15:15:40] <j2mb0> and test again?
1501[15:15:48] <dvs> then apt update
1502[15:15:53] <wwilliam> how do i install google chrome on
debian 10?
1512[15:18:31] <ratrace> wwilliam: google chrome, and not
chromium?
1513[15:18:36] <j2mb0> now i am getting after running apt update
i get E: The value 'buster' is invalid for
APT::Default-Release as such a release is not available in the
sources
1532[15:24:10] <fireba11> j2mb0: what does cat
/etc/debian_version say?
1533[15:24:37] <j2mb0> omg i just removed those 2 files and
updating, lemme check 1 sec
1534[15:25:36] <j2mb0> bullseyes/sid
1535[15:25:37] <n4dir> the only time i ran in a Default-Release
was when mixing testing and unstable. But that i didn't run in
it doesn't mean that much
1547[15:28:47] <dpkg> Debian's main repository has lots of
great multimedia packages with more included in each release. Ask me
about <search> to find them and <rfp> if something is
not yet packaged. The old <deb-multimedia.org> has not been a
"must have" repo for multimedia support for several
releases; it now mostly contains poor quality packages or current
Debian packages recompiled incompatible with other packages in
Debian.
1550[15:29:17] <dpkg> We recommend against using
deb-multimedia.org; these unofficial packages are known to cause
many hard to debug problems. They are not in Debian either because
the they are poor in quality or for legal reasons. See
replaced-url
1551[15:29:52] <n4dir> <dmm remove> is probably the right
one
1575[15:37:42] <fireba11> j2mb0: it most likely was broken bevore
you started, you just didn't know
1576[15:38:21] <j2mb0> i cant afford time for reinstalling my
operating system at the mean time, do i leave it like this until i
have time again? i am scared not to be able to work on this machine
1577[15:39:08] <j2mb0> i still dont understand how it all works
tho ... otherwise i would have realized logically that the problem
is really hard to solve in details
1582[15:40:37] <karlpinc> j2mb0: If you're running bullseye
you could try #debian-next. (Maybe just wait and see if bullseye
fixes itself...) Not much help, I know.
1583[15:40:39] <cybrNaut> "man logger" does not seem to
give a way to specify the output filename. What am i missing?
1584[15:40:49] <n4dir> two rules of thumb: 1) you don't want
to add third party repos or packages and 2) you don't run
testing. Both to avoid confusing situations
1589[15:42:17] <cybrNaut> karlpinc: that seems to be for input
files
1590[15:42:20] <fireba11> j2mb0: as far as i can tell you ended
up with a hodgepodge of packages from different versions not
intended to be mixed. it might be still sortable, but a clean
reinstall as soon as you can spare the time is probably a good idea
for you
1593[15:43:02] <n4dir> though if i'd reinstall anyway i
would probably first try if upgrading to sid may help
1594[15:43:22] <n4dir> (probably won't, the situation seems
pretty messed up)
1595[15:43:27] <cybrNaut> well, maybe that's a badly written
man page. This makes it look like it's for output file:
replaced-url
1596[15:43:56] <karlpinc> cybrNaut: Humm. Seems so. Usually if
you want to log to a file you either: configure rsyslogd (et-al) to
write to that file, or just use >.
1597[15:44:54] <fireba11> n4dir: for boxes i really need working
i make imageS/LVM snapshots when i upgrade ... learned the hard way
installing in a hurry is no fun
1598[15:45:08] <karlpinc> cybrNaut: Or >> or pipe to tee
or....
1599[15:45:25] <n4dir> yeah, or like that. fireba11. Many ways to
handle such situations.
1651[16:13:50] <haarp> hello. on debian 10, i can touch
/etc/nginx/sites-enabled/foo as root. when the same is attempted by
knockd, a daemon running as root, it fails with "Read-only file
system". this is factually incorrect, the fs is rw. is this
some protection measure? i haven't installed selinux or
anything like this, it's basically a minimal netinstall.
1652[16:14:33] <ratrace> haarp: unless the knockd service is
running in a namespace which sees /etc as readonly
1653[16:15:46] <haarp> ah. never dealt with namespaces. how would
i debug this?
1658[16:17:04] <ratrace> haarp: also, are you talking about
knockd, the port-knocking server?
1659[16:17:43] <haarp> correct. and before you lecture me, yes,
things are secure, port-knocking is only meant as an additional
measure ;)
1660[16:18:00] <ratrace> haarp: wasn't gonna lecture, but
ask wth is knockd doing about touching nginx config files?
1661[16:18:25] <haarp> whitelisting ips
1662[16:18:45] <haarp> i'd do it on a firewall level, but
that doesn't allow control on a site-by-site basis
1663[16:19:54] <ratrace> haarp: well then you can do two things.
1) have a custom path in /var/ where knockd can write, and then
include that into nginx config. 2) make it less restrictive and run
knockd without ProtectSystem=full
1690[16:48:38] <oxek> wwilliam: don't use chromum from
debian repos anymore, it has been deprecated and is no longer being
updated - not even security updates will be coming
1722[17:13:25] <jhutchins> istrive: You realize that it's a
highly proprietary format that Microsoft does NOT want you to open
without Access.
1723[17:14:48] <jhutchins> istrive: In fact, most databases can
only be opened by the software that created them. Other software
will either have to convert them as it opens them or will require
that you dump the original and import it.
1727[17:16:17] <istrive> metter of fact I only care about dumping
the data from the MDB so I can import into another database... After
Upgrading to MS 365 the file is no recognized by MS!!! WTH?
1728[17:17:09] <cipherize> oxek: That's not really how that
works. Where is an official-ish statement that verifies what
you've said re: chromium?
1729[17:17:11] <jhutchins> istrive: Well, I'd contact
Microsoft support - you do pay for that - and find out if
you're supposed to do something to convert/update/import it.
1782[18:04:49] <jhutchins> oxek: Remember that upstream version
numbers and Debian version numbers are not necessarily the same, and
important fixes are often backported to an earlier, more stable
version.
1800[18:12:17] <oxek> the recommendation still stands - do not
use the chromium packages from debian, and don't expect them to
be updated during the lifetime of debian-stable if you're
already using them.
1810[18:19:51] *** Quits: mibo (~mibo@replaced-ip) (Remote host closed the connection)
1811[18:20:03] <jhutchins> bmomjian: Lingering apt source entry
from an upgrade?
1812[18:20:08] *** AreThree is now known as r3
1813[18:20:57] <bmomjian> I have tons of them.
1814[18:21:34] <bmomjian> I got rid of all the old packages that
were _only_ stretch or earlier, but now I have many that are both
stretch and my current buster.
1843[18:39:44] <jelly> bmomjian, you have both stretch and buster
repos enabled. show the output of just "apt-cache policy"
1844[18:39:46] <oxek> bmomjian: post your sources.list
1845[18:39:54] <jelly> in fact
1846[18:39:55] <jelly> !bat
1847[18:39:55] <dpkg> [Basic Apt* Troubleshooting]. To diagnose
your problem, we need ALL OF THE FOLLOWING information: 1. complete
output of your apt-get/apt/aptitude run (including the command used)
2. output from "apt-cache policy pkg1 pkg2..." for ALL
packages mentioned ANYWHERE in the problem, and 3. "apt-cache
policy". Use
replaced-url
1856[18:43:05] <bmomjian> I need that for yubico-piv-tool and
id-utils, which are not supported on Buster. Once I remove those
lines, the Stretch lines go away, so I guess I am OK.
1857[18:43:38] <jhutchins> !frankendebian
1858[18:43:38] <dpkg> When you get random packages from random
repositories, mix multiple releases of Debian, or mix Debian and
derived distributions, you have a mess. There's no way anyone
can support this "distribution of Frankenstein" and
#debian certainly doesn't want to even try. Ask me about
<reinstall>
1859[18:43:58] <oxek> ,checkbackport id-utils
1860[18:43:59] <judd> Backporting package id-utils in
sid→buster/amd64: all build-dependencies satisfied using
buster.
1861[18:44:06] <jelly> bmomjian, it's not a horrible issue
to keep repos for the previous, OLDER release around.
1889[18:48:36] <bmomjian> I wonder if I should adjust the
sources.list so I am only getting those packages from Stretch.
1890[18:48:45] <bmomjian> I don't need newer versions.
1891[18:48:55] <bmomjian> Stretch is working just fine, but I am
getting this policy output.
1892[18:49:01] *** debhelper sets mode: +l 1153
1893[18:49:13] <oxek> bmomjian: your sources.list should look
like this in the ideal case
replaced-url
1894[18:49:35] <jelly> nah, this is good enough, because in
general versions of software in stretch should ALWAYS be strictly
lower or equal than versions in buster
1900[18:50:57] <jelly> (but is a reasonably contained mess)
1901[18:52:20] <oxek> I'd still stand by saying that having
stretch repos in your sources.list on buster is a bad idea
1902[18:52:34] <bmomjian> I am confused there is a
buster-updates, buster/updates, and buster-backports.
1903[18:52:50] <jelly> it's slightly bad. Not
catastrophically bad.
1904[18:52:58] <bmomjian> Can I specify just what packages I need
from Stretch?
1905[18:53:00] <jelly> !buster/updates
1906[18:53:00] <dpkg> On Debian 10 "Buster" systems,
there are two repositories that you should have in your sources.list
aside from your main mirror. You should have an entry for
"buster/updates" which is security updates (ask me about
<security>) and also an entry for "buster-updates"
which is other updated packages. See also <sources.list>.
1909[18:53:27] <jelly> bmomjian, you can tell apt which release
is considered default
1910[18:53:34] <jelly> !buster-updates
1911[18:53:35] <dpkg> buster-updates is a suite providing updates
to some packages (from <proposed-updates>) prior to a
<point release>. All packages from buster-updates will be
included in point releases.
replaced-url
1914[18:53:57] <dpkg> Some packages intended for Bullseye (Debian
11) but recompiled for use with Buster (Debian 10) can be found in
the buster-backports repository. See
replaced-url
1917[18:54:28] <dpkg> To make wheezy be preferred over other
releases in your sources.list, put APT::Default-Release
"wheezy"; in /etc/apt/apt.conf (create if needed). Or use
"jessie", "stable" or "testing" (make
it match the name used in /etc/apt/sources.list). Note that some apt
front-ends like Synaptic are reported to ignore Default-Release.
Also ask me about <tum>.
1929[19:08:56] <hmuller> curious, if nothing is using
/dev/mapper/loop0p#, and kpartx -d <img> doesn't remove
it is the solution just to delete /dev/mapper/loop0p#?
1932[19:11:32] <jelly> hmuller, no, just removing the created
device node does not tell the kernel to delete references to actual
device. If you have leftover device-mapper based devices you can use
low level device-mapper tools to delete them
1951[19:21:03] *** Lord_of_Life_ is now known as Lord_of_Life
1952[19:21:33] <hmuller> was wierd. low level tools removed the
mappings. but kpartx still wanted to use the the next device number.
losetup -D cleaned up
2051[20:43:54] <dpkg> We recommend against using
deb-multimedia.org; these unofficial packages are known to cause
many hard to debug problems. They are not in Debian either because
the they are poor in quality or for legal reasons. See
replaced-url
2052[20:44:24] <jelly> sometimes there's no build other than
theirs
2053[20:44:32] <sney> it's nice to see backports so close to
the dmo versions lately
2054[20:44:45] <n4dir> no idea bout the quality, but librazik has
an amazing amount of multimedia ( audio) applications.
2128[21:20:17] <NetTerminalGene> this may give you an idea
2129[21:20:25] <greycat> Yes, see where it says "2019"?
2130[21:20:50] <greycat> that is the timeline TO WHICH I HAVE
BEEN REFERRING ALL THIS TIME and I even LINKED TO A PAGE THAT HAS
THIS ON IT
2131[21:20:52] <NetTerminalGene> i know that there will be no
68.13
2132[21:22:31] <greycat> OK, fuck this, I've wasted way too
much time on this bullshit today. I give up. If they have
documentation of when firefox-esr 68 support expires, I cannot find
it.
2163[21:38:57] <greycat> more importantly, it says "When Fx
81.0 Release and Fx 78.3 ESR are out the the older Fx 68.0 ESR
channel will be End Of Life"
2164[21:40:33] <greycat> why they can't just state this on
their actual web site is beyond me, but oh well, gotta spend all
their time to make it look like a coporate mobile phone web site
with no information on it
2165[21:41:27] *** Quits: mezzo (~mezzo@replaced-ip) (Quit: leaving)
2166[21:41:37] <ratrace> also, it appears currently the bump from
68 to 78 in debian is blocked.....
replaced-url
2308[23:13:03] <LtL> lnav does multiple files too.
2309[23:14:13] *** Quits: MrFixIt (~Sam@replaced-ip) (Remote host closed the connection)
2310[23:15:31] <jhutchins> karlpinc: I use logwatch. It's a
bit of a pain on a public webserver because it lists every phishing
http request, but otherwise pretty good.
2311[23:16:12] <karlpinc> petit looks kind of cool
2312[23:16:32] <karlpinc> jhutchins: You're a
traditionalist. :)
2313[23:17:13] <jhutchins> karlpinc: Hardcore.
2314[23:18:27] *** Quits: yuta (~pi@replaced-ip) (Quit: WeeChat 2.9)
2315[23:18:29] <jhutchins> THere was an apache analyser I used
for a while, and it could supposedly be made to analyse just about
any log, but it sure wasn't point-and-click, and I eventually
didn't bother to install it after an upgrade.