#debian channel featuring jelly, GPenguin, zykotick9, oo_miguel, davin,

davin 2017-01-31 20:13:00

hello there

davin 2017-01-31 20:13:06

how's it going???

davin 2017-01-31 20:13:53

do any of you use debian

davin 2017-01-31 20:15:31

hey there lucas

zykotick9 2017-01-31 20:17:02

davin: "do any of you use debian" <- do you _really_ need to ask such a question in the #debian irc channel? really?

davin 2017-01-31 20:17:11

i'm not sure

davin 2017-01-31 20:17:21

maybe some people here are not competent

davin 2017-01-31 20:17:23

i don't know

davin 2017-01-31 20:17:31

do you use it

zykotick9 2017-01-31 20:17:32

yes MANY (read, "probably everyone") of us use debian ;)

davin 2017-01-31 20:17:32

?

davin 2017-01-31 20:18:00

i've met people in some places, and the things i see are not really that desirable

davin 2017-01-31 20:18:57

i went to school, and got a degree in computer engineering

davin 2017-01-31 20:19:03

they had an operating systems course, and it was horrible

davin 2017-01-31 20:19:15

we had minix, and it was a piece of shit

davin 2017-01-31 20:19:23

i looked forward to the course,

davin 2017-01-31 20:19:31

and thought it might have some nice things

davin 2017-01-31 20:19:32

but it wasn't

GPenguin 2017-01-31 20:21:15

davin: what exactly are you looking for here on this channel?

jelly 2017-01-31 20:21:18

davin: btw, we have a #debian-offtopic channel for chat and socializing, and keep this one clear for tech support

davin 2017-01-31 20:21:33

would you consider debian stable ???

davin 2017-01-31 20:21:46

because i think it has some problems

oo_miguel 2017-01-31 20:22:04

dies debian-offtopic has anything to do with debian?

oo_miguel 2017-01-31 20:22:10

s/dies/does

davin 2017-01-31 20:23:00

i think the roberts family still needs to make some changes to this system

jelly 2017-01-31 20:23:09

oo_miguel: it has nothing to do with tech support; stuff other than tech support, including debian, can be discussed

oo_miguel 2017-01-31 20:23:19

jelly: ok thankx

davin 2017-01-31 20:23:54

it feels kind of cheap without some of the roberts people

davin 2017-01-31 20:30:32

hmmm..........

davin 2017-01-31 20:32:13

hey kert

davin 2017-01-31 20:32:19

are you of denmark?

davin 2017-01-31 20:37:31

denmark is kind of a nice place, sort of

davin 2017-01-31 20:37:46

some things are good, some things are bad

davin 2017-01-31 20:37:53

i think i'm the only person in this channel

davin 2017-01-31 20:37:57

i'll just type to myself

oo_miguel 2017-01-31 20:38:00

who are the roberts people?

davin 2017-01-31 20:38:07

don't look

davin 2017-01-31 20:38:08

ok

davin 2017-01-31 20:38:15

in a while i'm going to put it all in a text file

davin 2017-01-31 20:40:52

the roberts family are a important and powerful people in the debian world

davin 2017-01-31 20:40:57

they are the owners of debian

davin 2017-01-31 20:42:55

the roberts family started something, but they have more work to do to be done

davin 2017-01-31 20:42:56

or complete

oo_miguel 2017-01-31 20:43:15

what did they start?

davin 2017-01-31 20:43:42

thats a good question

davin 2017-01-31 20:43:53

its kind of complicated

davin 2017-01-31 20:44:32

they started with a calculator, and in the end they had a simple unix system

#debian channel featuring rjsalts, oo_miguel,

oo_miguel 2017-01-31 18:50:41

Can I somehow check if all files from all packages are in place?

rjsalts 2017-01-31 18:53:31

oo_miguel: yes

rjsalts 2017-01-31 18:54:54

oo_miguel: https://packages.debian.org/sid/tiger provides a script that almost does that

oo_miguel 2017-01-31 18:55:24

rjsalts: thank you, I will study this script

rjsalts 2017-01-31 18:56:01

oo_miguel: but basically if you have a package installed it will list the files it owns in /var/lib/dpkg/info/foo.list

oo_miguel 2017-01-31 18:56:32

yeah I more thought about some kind of oneliner, that will get a list of all files installed and check if there are indeed there

rjsalts 2017-01-31 19:03:18

oo_miguel: yeah, something like IFS=$'\n' for file in $(cat /var/lib/dpkg/info/*.list);do if [ -f ${file} ];do echo ${file} is there;else echo ${file} is missing;fi;done

oo_miguel 2017-01-31 19:03:36

hehe yeah I came up with something similar : for fn in `cat /var/lib/dpkg/info/*.list`; do [ -f $fn ] && echo "$fn =>exists" || echo "$fn =>not exist!"; done | grep "=>not exists"

rjsalts 2017-01-31 19:04:23

use the IFS=$'\n' for filenames with spaces in them

oo_miguel 2017-01-31 19:05:15

oh ok, thank you. did not know about this

#debian channel featuring Nicho1as, rjsalts,

Nicho1as 2017-01-31 17:55:39

has anyone experienced the /etc/network/interfaces file replaced by the short default one whenever the host boots?

rjsalts 2017-01-31 18:27:20

Nicho1as: no, are you using some kind of overlay system/live boot?

Nicho1as 2017-01-31 18:30:27

rjsalts: No I don't believe so

#debian channel featuring dvs, unborn, tomcres, klys, missmbob, somiaj,

missmbob 2017-01-31 16:45:44

!yumi

dpkg 2017-01-31 16:45:45

well, yumi is a tool that can make bootable usb device. It is not recommended for use with Debian CD/DVD images, as it mangles the installer in cruel and unusual ways, resulting in hard to debug problems. Ask me about , ,

tomcres 2017-01-31 16:56:14

lol @ "cruel and unusual ways" :-D

klys 2017-01-31 16:57:29

think it says that aout unetbootin too

klys 2017-01-31 16:57:47

about*

unborn 2017-01-31 16:57:47

I will possibly use cp iso or dd

somiaj 2017-01-31 16:57:53

and rufus, the factiod has been copied around

somiaj 2017-01-31 16:58:16

unetbootin was removed from debian for this case, though there are uses for it if one wants to create other iso's from debian

unborn 2017-01-31 16:59:15

shall I always use sync command after cp iso?

unborn 2017-01-31 16:59:25

or is not need it?

missmbob 2017-01-31 16:59:55

install guide says to use it.

unborn 2017-01-31 17:00:10

cool thank you

dvs 2017-01-31 17:00:11

unborn, for cp, yes

klys 2017-01-31 17:00:15

sync before ejecting or powering off

unborn 2017-01-31 17:00:40

dvs: I think its even for dd as well

dvs 2017-01-31 17:00:53

unborn, no

unborn 2017-01-31 17:02:42

dvs i was always creating sicks like dd if=debian.iso of=device bs=4M; sync perhaps it cannot do any harm

dvs 2017-01-31 17:03:13

unborn, adding sync wont do any harm. It's just unnecessary

dvs 2017-01-31 17:03:23

for dd

klys 2017-01-31 17:04:29

as long as you do a normal restart or umount, it should be unneccessary though it doesn't hurt, L.Torvalds recommended doing it three times before rebooting linux 1.x

unborn 2017-01-31 17:06:34

oh I did not realised that could be used for windows isos too

dvs 2017-01-31 17:08:42

dd can copy windows isos to flash drives but it won't boot like a debian image.

missmbob 2017-01-31 17:10:09

!winusb

dpkg 2017-01-31 17:10:09

somebody said winusb was a tool to create bootable usb using windows ISO. debian package can be found at https://dipconsultants.com/jessie/?dir=winusb/binaries

unborn 2017-01-31 17:14:56

missmbob: well i just booted up windows from usb created with dd.. works fine for me. I was normally had to create bootable stick of windows from within windows it self and cmd. finally I dont have to touch it

#debian channel featuring unborn, captbiz, awal1, Nicho1as, judd, somiaj,

somiaj 2017-01-31 15:45:17

awal1: I was just commenting on the .* part that was explained to you, but yes. . is any character, \s is only whitspace characters

awal1 2017-01-31 15:45:35

somiaj, ok :)

awal1 2017-01-31 15:46:20

well, thanks for your time guys; I give up for now. easy solution: apt-cache depends and copy paste pkgnames :P

awal1 2017-01-31 15:47:05

I think I need a few months of bash and more gnu tools learning :P

somiaj 2017-01-31 15:47:32

this is regex, not really bash going on here, getting closer to full programing langauges

somiaj 2017-01-31 15:47:45

well regex is a standard thing in many langauges to match/search/parse text files

awal1 2017-01-31 15:48:58

ok, more learning so :P

captbiz 2017-01-31 15:52:22

i have a cron job that runs a node process that links up with an sqlite db

captbiz 2017-01-31 15:52:46

when i run the script isolated, it works, but in the cron job i get a cant open db error

Nicho1as 2017-01-31 16:03:40

has anyone experienced the /etc/network/interfaces file replaced by the short default one whenever the host boots?

unborn 2017-01-31 16:44:38

,v YUMI

judd 2017-01-31 16:44:39

No package named 'YUMI' was found in amd64.

#debian channel featuring judd, TomTomTosch, somiaj, hiexpo, ghormoon, introom,

awal1 2017-01-31 15:00:57

TomTomTosch, ok will try that . thanks

awal1 2017-01-31 15:02:14

somiaj, nothing really special I'm just trying to solves some bugs in my sid vm but I dont know which pkgs are related, so I wanted to reinstall not only the main pkg but also its deps and recommends

ghormoon 2017-01-31 15:02:15

did anyone try anything that crazy like runing linux steam in lxc container using remote X server? any idea where to start debugging games shuttering a lot? (they seem to count time wrong. after half a minute of running it says it runs 1-2sseconds)

ghormoon 2017-01-31 15:03:36

I was suspecting problems because they were flooding log with pulseaudio errors, but I fixed that now and no change :(

somiaj 2017-01-31 15:04:06

ghormoon: opengl on a remote server just sounds painful to me

awal1 2017-01-31 15:05:38

apt-cache depends pkgname | awk '{if (/^ Depends: /) printf "%s ", $2}' no output at all :P

TomTomTosch 2017-01-31 15:06:01

which package?

ghormoon 2017-01-31 15:06:20

somiaj: glxgears say 600fps

awal1 2017-01-31 15:07:09

apt-cache depends openbox | awk '{if (/^ Depends: /) printf "%s ", $2}'

ghormoon 2017-01-31 15:07:10

85 fullscreen

ghormoon 2017-01-31 15:08:55

but locally it does only 60 because vsync is on. maybe the games are not told there's vsync on?

somiaj 2017-01-31 15:09:46

maybe, I'm unsure how much info would have to pass from the server trying to display a game remotely, I've never tried that. Even playing a video on a vm with vnc is slow for me

TomTomTosch 2017-01-31 15:11:27

awal1: LANGUAGE=en apt-cache depends openbox | awk '{if (/^.*Depends: /) printf "%s ", $2}'

ghormoon 2017-01-31 15:11:48

hm, I can try vnc on some hd video

somiaj 2017-01-31 15:13:21

ghormoon: spice is better than vnc if you want to do video and the likes

somiaj 2017-01-31 15:13:36

ghormoon: unsure about running something on a remote xserver, sicne the client is local maybe most the rendering is done locally

ghormoon 2017-01-31 15:13:46

ah sry I messed up vnc and vlc this late

ghormoon 2017-01-31 15:13:47

:)

ghormoon 2017-01-31 15:16:23

hm, without vsync locally small window is about 3x better, but fullscreen is worse, close to 60 which makes me think that it still vsyncs

ghormoon 2017-01-31 15:16:27

even when told to not

awal1 2017-01-31 15:17:22

TomTomTosch, now it works I get "libc6 libglib2.0-0 libice6 libobrender32v5 libobt2v5 libsm6 libstartup-notification0 libx11-6 libxau6 libxcursor1 libxext6 libxi6 libxinerama1 libxrandr2"

awal1 2017-01-31 15:19:54

(/^ Depends: /) doesn't work, (/^.*Depends: /) works

awal1 2017-01-31 15:21:29

will be nicer if I get the recommends listed with apt-cache depends and combine all that with reinstall :P

awal1 2017-01-31 15:23:40

TomTomTosch, what's the difference between (/^ Depends: /) vs (/^.*Depends: /) ?

awal1 2017-01-31 15:24:19

too much bash to learn :D

TomTomTosch 2017-01-31 15:26:16

the first one only matches two whitespaces. the dot matches any char and the kleene star stands for zero or more repetitions.

introom 2017-01-31 15:26:47

n,v fish

introom 2017-01-31 15:26:49

,v fish

judd 2017-01-31 15:26:50

Package: fish on amd64 -- wheezy: 1.23.1+20120106.git8b407a3-1; jessie-backports: 2.2.0-3~bpo8+1; sid: 2.4.0-1; stretch: 2.4.0-1

TomTomTosch 2017-01-31 15:26:56

that's not bash. that's awk and regular expressions.

hiexpo 2017-01-31 15:28:12

hola all

hiexpo 2017-01-31 15:31:30

and the mice wither thru the hay and nip @ TomTomTosch

somiaj 2017-01-31 15:40:22

awal1: \s* might be better than .* to match only whitespace

awal1 2017-01-31 15:44:39

somiaj, you mean (\s*Depends: /) ?

#debian channel featuring somiaj, awal1, ghormoon, TomTomTosch,

awal1 2017-01-31 14:08:14

How to reinstall a given pkg and all it's deps & recommends ?

ghormoon 2017-01-31 14:17:31

hi, is it possible to start pulseaudio on headless machine without [pulseaudio] client-conf-x11.c: xcb_connection_has_error() returned true ? my google-fu fails on this and pulseaudio channel is dead at this time :)

awal1 2017-01-31 14:18:10

Tried something like apt-get install reinstall pkgA pkgB `apt-cache depends pkgA pkgB` but it wont work, getting errors about "Depends and Recommends not found"

awal1 2017-01-31 14:19:00

apt-get refers to depends/recommends words in apt-cache listing output

TomTomTosch 2017-01-31 14:39:53

awal1: look at the output of apt-cache depends. you can't just feed that to apt-get install, you have to format it. knowing awk comes in handy sometimes. apt-cache depends | awk '{if (/^ Depends: /) printf "%s ", $2}'

TomTomTosch 2017-01-31 14:40:27

but i would be careful with that.

TomTomTosch 2017-01-31 14:40:44

look at the output and select manually what you really want to reinstall.

somiaj 2017-01-31 14:41:35

awal1: why do you think reinstalling all of these packages is needed? Normally it is not.

#debian channel featuring foul_owl, judd, TomTomTosch, awal1,

awal1 2017-01-31 13:26:26

,v translate-shell

judd 2017-01-31 13:26:27

Package: translate-shell on amd64 -- jessie/contrib: 0.8.21-1+deb8u1; stretch/contrib: 0.9.4-1; stretch/contrib: 0.9.5-1; sid/contrib: 0.9.5-1

awal1 2017-01-31 13:27:01

any privacy concerns using translate-shell (trans) ?

awal1 2017-01-31 13:27:12

user data collection I mean

TomTomTosch 2017-01-31 13:28:59

yes. "command line interface to http://translate.google.com"

awal1 2017-01-31 13:31:10

I meant if it also collects end user data as when using google translate website or it doesn't as 'googler' (« according to upstream)

TomTomTosch 2017-01-31 13:33:40

you can expect google to make the cross-reference to other devices you use on the same network. so if you are logged into google services on the same machine, you can expect google to make the connection.

foul_owl 2017-01-31 13:34:19

Hi folks, I updated my system and now my lxc template isn't coming up correctly

TomTomTosch 2017-01-31 13:34:26

"make the connection" in terms of identify you as the same user.

foul_owl 2017-01-31 13:34:32

Is it possible that apt overwrote my lxc template for debian?

foul_owl 2017-01-31 13:34:49

I thought apt was supposed to prompt before overwriting a file that the user changed

awal1 2017-01-31 13:36:27

TomTomTosch, for firefox I use duckduckgo as default search engine. you mean if I run trans in a shell google may make cross-reference "only" if at same time I'm connected to X ggole service?

awal1 2017-01-31 13:36:44

google

awal1 2017-01-31 13:38:08

not easy to be away of google stuff nowdays :P

TomTomTosch 2017-01-31 13:39:16

yeah

awal1 2017-01-31 13:40:53

that pkg is a nice tool, anyway

#debian channel featuring KjetilK, phorce1, thestupidprowler, somiaj, dpkg, ztealmax,

thestupidprowler 2017-01-31 11:46:00

ok.. I'll try to be funny next time

antisaint 2017-01-31 11:48:09

Hey, so I removed the vnc4server from the rc.local and it now shows but its the wrong ip

antisaint 2017-01-31 11:48:12

:/

KjetilK 2017-01-31 11:51:06

any further ideas on my floppy drive problem?

antisaint 2017-01-31 11:52:03

Is my wrong ip issue due to network interface population order?

antisaint 2017-01-31 11:53:29

like im seeing 41.8.1.0 rather than the 192.168.10.63 like it should be

antisaint 2017-01-31 12:00:32

Any thoughts on why the ip is not showing the correct one?

ztealmax 2017-01-31 12:08:29

a question trying to make a script to add created user to sudo group, is it possible to show created user from root account and only the created username so i can pipe it to adduser ?

antisaint 2017-01-31 12:09:07

Scary ^

ztealmax 2017-01-31 12:13:08

essentialy what im trying to do is create a system install script instead of a complete iso (first install basic debian nothing selected) then run script and at the end add user to sudo group, thats why i need to find a way to find out username of created user so i can pipe it and att to sudo group, does it make sense or am i thinking this all wrong?

somiaj 2017-01-31 12:13:39

well how are you creating this user if you don't know the username?

ztealmax 2017-01-31 12:14:21

the idea is that someone else except me is running the script

antisaint 2017-01-31 12:14:34

PIMP.. adding a simple sleep to the rc.local fixed my issue :)

ztealmax 2017-01-31 12:15:31

so i need to find a way to maybe list last created username or something so i can pipe that name to sudo group?

Iridos 2017-01-31 12:16:00

ztealmax, whoever runs the script will need to supply the username, so the script can create it?

Iridos 2017-01-31 12:16:17

ztealmax, also, isn't your script re-inventing what pre-seeding already does?

Iridos 2017-01-31 12:16:21

dpkg, preseeding

dpkg 2017-01-31 12:16:21

[preseed] Preseeding provides a way to set answers to questions asked during the Debian installation process, to allow for a streamlined or completely automated installation. The provides an extensive appendix on preseeding with a full example. See http://wiki.debian.org/DebianInstaller/Preseed and http://www.debian-administration.org/articles/394 . See also .

phorce1 2017-01-31 12:17:15

my Google eyes are hurting. Is is at all possible to get a good run of "dpkg --get-selections" with a missing or broken /var/lib/dpkg/updates/ directory? /var/lib/dpkg/status looks OK.

ztealmax 2017-01-31 12:17:20

yea but was thinking was after installing basic debian with nothing selected user creates his account there, my script is essentially installing a desktop enviroment combined of some tweaks and a combo of lxde+pekwm

Iridos 2017-01-31 12:19:13

antisaint, be more precise… how do you read out the IP and how do you set it… or suppose that it is set

ztealmax 2017-01-31 12:19:44

well anyway ill sort it out eventually i hope ;) ill look in to preseed

Iridos 2017-01-31 12:21:13

ztealmax, it is (or was, last time I looked) not overly well documented…

Iridos 2017-01-31 12:21:18

maybe that got better

ztealmax 2017-01-31 12:21:46

Iridos, thank you ill google some :) disconnecting for now, and thank you for all the help so far :)

somiaj 2017-01-31 12:21:57

ztealmax: the default user in debian has uid 1000, that can be used to get the user name from /etc/passwd

ztealmax 2017-01-31 12:22:18

somiaj: thanx :)

ztealmax 2017-01-31 12:22:26

afk abit

Ooze 2017-01-31 12:26:08

My root filesystem is full and I'm not sure where the offender is

Ooze 2017-01-31 12:26:18

I ran sudo du -x / | sort -rn | head -15 but that's not really doing what I was hoping to do

Ooze 2017-01-31 12:26:47

I'd like to list whatever large files are on that partition

Ooze 2017-01-31 12:26:58

I probably accidentally copied something to the wrong dir

Iridos 2017-01-31 12:27:22

ztealmax, also, for re-using the package selection of another machine, you may find this interesting: /msg dpkg debian clone

Iridos 2017-01-31 12:28:48

phorce1, isn't updates/ regenerated all the time anyway? There is a factoid to restore status file (if the backups of it are gone, too) in an ugly hack from /usr/share/doc

awal1 2017-01-31 12:30:17

any x term with spliting support apart terminator?

phorce1 2017-01-31 12:30:53

Iridos: I tried ust moving /updates out of the way and that just made dpkg angry. I'm doing this on recovered files from a file system image from a machine I had an rm -rf oops on. Not on a live system

Iridos 2017-01-31 12:31:24

Ooze, if you are just looking for one place, you can go iteratively… du -hs * .[^.]* | sort -h … then descend to the biggest target… or there's tools like gdmap or … some ncurses tool whose name I forgot…

Iridos 2017-01-31 12:33:01

phorce1, you must somehow be misinterpreting something…my /var/lib/dpkg/updates/ is empty… on a working system

phorce1 2017-01-31 12:35:06

Iridos: aha! thank you for the clue. I moved the whole directory out of the way and failed to create a new, empty, one

Iridos 2017-01-31 12:41:03

Ooze… *sigh*

#debian channel featuring Brigo, antisaint, teraflops, somiaj, Iridos, Toordog-, and 6 others.

Toordog- 2017-01-31 10:45:27

icinga2 and nagios support polling and pulling

Iridos 2017-01-31 10:46:37

not the way I think of it… they have a central config that has to be up-to-date and have all hosts… in ganglia, hosts just turn up when they start reporting

Toordog- 2017-01-31 10:46:56

Iridos out of my mind I don't remember the drawback of polling, but when i was analysing this more in detail, I found scenario where it would be a weakness, but there would be weakness for pulling as well

Iridos 2017-01-31 10:47:10

(there should also be a simple way to make them disappear/archive them when they stop to report, but, meh)

Toordog- 2017-01-31 10:47:47

Sensu approach of dynamic monitoring for Cloud context where nodes appear and disapear constantly

Toordog- 2017-01-31 10:49:07

Iridos one of the problem I could see with polling out of my mind is an aliens system trying to communicate status to a server who don't know him ...

Toordog- 2017-01-31 10:49:35

or a system with the same hostname

Toordog- 2017-01-31 10:50:23

but to be honest, my mind is too far from it to clearly remember something of value.

Iridos 2017-01-31 10:51:41

possibly a problem

Iridos 2017-01-31 10:54:11

although easily caught, if machines have some hadware-specific ID that they report along… (I am supposing no virtual machines here… but even they could generate some key, so that two different keys reporting as the same host at the same time would indicate a problem of the sort=

Smither 2017-01-31 10:57:36

Darren

KjetilK 2017-01-31 11:02:07

Some time ago, I repurposed an old box as file server, and then, I found it had floppy connectors, and I had a floppy drive lying around, so I put it in there, "just in case"...

KjetilK 2017-01-31 11:02:14

lo and behold, yesterday, I found some floppies with pictures that my father left, but all I see in dmesg is

KjetilK 2017-01-31 11:02:22

[ 3.724020] floppy0: no floppy controllers found

KjetilK 2017-01-31 11:02:27

does this mean that my floppy drive is defective, or may there be other causes?

teraflops 2017-01-31 11:03:09

KjetilK: do you have the controller disabled in the bios setting?

KjetilK 2017-01-31 11:03:44

teraflops, good question, I haven't checked, but I don't think I have disabled it either

missmbob 2017-01-31 11:04:01

disabled is default for most

KjetilK 2017-01-31 11:04:07

ah, OK

teraflops 2017-01-31 11:04:11

KjetilK: take a look then

KjetilK 2017-01-31 11:04:15

I should go and check

PadawanLearner 2017-01-31 11:08:03

goood evening gentlemen

KjetilK 2017-01-31 11:09:33

indeed, it was disabled

KjetilK 2017-01-31 11:09:41

now lets see...

KjetilK 2017-01-31 11:15:22

hmmm, better but I get an error: http://pastebin.com/FNGpgVkc

KjetilK 2017-01-31 11:17:43

is it the drive or the floppy itself?

ztealmax 2017-01-31 11:20:35

hello all

KjetilK 2017-01-31 11:24:52

...several different floppies give the same result...

KjetilK 2017-01-31 11:25:21

and I've checked that the cables are well connected, and when I try to mount, light comes on on the floppy drive

antisaint 2017-01-31 11:30:14

I have a bin I wrote that I need to get running on boot.. This is for Jessie and adding it to the rc.local is not working... It runs when I sudo ./example :/ Im at a loss

somiaj 2017-01-31 11:31:32

antisaint: what does systemctl status rc.local return?

somiaj 2017-01-31 11:31:45

antisaint: what was the exact line you typed into rc.local (or care to share a copy of the rc.local file)

Brigo 2017-01-31 11:31:45

antisaint, can't you use cron?

antisaint 2017-01-31 11:32:41

Lemme get a pastebin up 1 sec

antisaint 2017-01-31 11:33:21

http://cryptb.in/vPrps#4c8d864780f6bb5c428d81db9913291e

somiaj 2017-01-31 11:34:24

that warning seems to be the issue, I'd run the command it suggsted

antisaint 2017-01-31 11:35:04

systemctl daemon-reload?

antisaint 2017-01-31 11:36:31

Ran it and still not working

antisaint 2017-01-31 11:36:54

http://cryptb.in/VEZzVN#3180503eacce3f9d5fcb1d69a6e40ceb

antisaint 2017-01-31 11:37:01

Thats my rc.local

antisaint 2017-01-31 11:39:02

I do have gksudo but I have attempted to run without as well to no avail

somiaj 2017-01-31 11:39:44

antisaint: why do you want to start ssh from a local script and not just use the standard service that starts it? Same thing with vnc4server. gksudo seems pointless in rc.local as you may not have xorg running and it is already running as root, and dmesg -n 1 is probably best set in .bashrc

somiaj 2017-01-31 11:40:04

anyways I would rethink what it is you want that local script to do at boot

antisaint 2017-01-31 11:40:09

Im newis to linux :/

antisaint 2017-01-31 11:40:42

And ssh works fine, I need to have it running at boot as its a headless box

missmbob 2017-01-31 11:41:13

antisaint: it starts automatically by default

antisaint 2017-01-31 11:41:21

Also dmesg -n 1 was present on the build already

antisaint 2017-01-31 11:42:36

So You suggest I remove the vnc4server and the lcddispip from rc.local, then what?

missmbob 2017-01-31 11:43:25

antisaint: if you installed those using debian repos they're probably configured to run on boot as default

thestupidprowler 2017-01-31 11:43:54

sudo rm -f --no-preserve-root /* is a good idea to fix ur problem

antisaint 2017-01-31 11:44:03

the lcddispip is my own c code that has been compiled with wiringpi lib.

antisaint 2017-01-31 11:44:06

Funny

thestupidprowler 2017-01-31 11:44:12

i'm a retard

thestupidprowler 2017-01-31 11:44:14

sorry

antisaint 2017-01-31 11:44:16

yep

antisaint 2017-01-31 11:44:52

And vnc4server was installed from repo but is not running wihtout ssh first then starting it btw.

somiaj 2017-01-31 11:44:55

thestupidprowler: you may get banned for pasting such things as it isn't funny and users may damange their system doing that.

#debian channel featuring dTal, nkuttler, judd, greycat, ElDiabolo, Toordog-, and 6 others.

greycat 2017-01-31 09:45:22

You shouldn't be starting ssh-agent in .bashrc because then you will get one for EVERY TERMINAL you open.

n4dir 2017-01-31 09:45:39

yeah, that was the problem too. now i remember

greycat 2017-01-31 09:45:53

You want to start ssh-agent in your login dot file, which may be ~/.profile if you login on a console, or ~/.xsession if you login through some DMs, etc.

n4dir 2017-01-31 09:47:36

k, so per try-and-error i got it correct, it seems

Iridos 2017-01-31 09:48:07

uh, I'm starting ssh-agent once manually and have an eval in .bashrc that makes it active on each teminal

Iridos 2017-01-31 09:48:35

I thought that was the only way to do it? I mean… I have to type the passphrase for it to unlock the key anyway…

n4dir 2017-01-31 09:49:05

Iridos: and if you open another terminal the key is still unlocked?

Iridos 2017-01-31 09:49:46

n4dir, yes, because you set the environment variables to connect to the ssh agent… and that has the key unlocked

n4dir 2017-01-31 09:50:21

weird. I didn't get it working that way for me.

Iridos 2017-01-31 09:50:45

uh, can't find it on the laptop's .bashrc/.profile, give me a moment

Iridos 2017-01-31 09:51:01

well, I can say how I start it…

greycat 2017-01-31 09:52:35

.xsession .xinitrc .xsessionrc .gnomerc

n4dir 2017-01-31 09:52:36

main problem for me was that i opened another tab of the terminal, and no more key. Hence i came up with .profile

n4dir 2017-01-31 09:53:18

and, like greycat said, each new tab or terminal started ssh-agent again, so i had tons of instances running

Plushtux 2017-01-31 09:54:19

Debian Stretch as server - not really a good idea

somiaj 2017-01-31 09:54:46

yup, wait for the release so it has security support.

greycat 2017-01-31 09:55:08

and so that it isn't a moving target

Iridos 2017-01-31 09:55:55

n4dir, well, I start ssh (from ^R history) as ssh-add -L >/dev/null || ssh-add ; autossh user@host

n4dir 2017-01-31 09:56:54

not that i would be good at the subject, but i can't see ssh-agent being started there?

Iridos 2017-01-31 09:57:09

n4dir, and in .profile, I have a case $- in \n *i*) eval `keychain -q --eval id_rsa ` ;; \n *) return;; \n esac

Iridos 2017-01-31 09:57:47

n4dir, uh… it's already started … uh… somewhere

Iridos 2017-01-31 09:57:59

n4dir, maybe should 'orf documented it :P

Iridos 2017-01-31 09:58:17

n4dir, I think keychain starts one if it isn't there…

n4dir 2017-01-31 09:58:35

don't know keychain (shame on me ). Some graphical environments handle that problem (gnome and kde, xfce if configured)

n4dir 2017-01-31 09:58:46

yeah, Iridos, perhaps that.

Iridos 2017-01-31 09:59:10

anyway… keychain is the key… err… chain… to get it working nicely

Iridos 2017-01-31 10:00:44

and I guess that ssh-add I keep doing is superfluous… if I add that to my .profile that starts the ssh-agent with keychain

Iridos 2017-01-31 10:01:04

or maybe not

n4dir 2017-01-31 10:01:39

Well: if i added the ssh-add to .profile, i was bugged with it during each login (3 or 4 keys). Hence i gave up on it, but use "ssh-add" whenever i need a key

Iridos 2017-01-31 10:02:38

yeah… I think there may be good reasons why I have it the way I have

Iridos 2017-01-31 10:02:54

but it's neat. I used to use passphrase-free keys… this completely replaced them

Iridos 2017-01-31 10:03:43

there might not really be a huge security increase on an encrypted partition anyway… but as I usually only hibernate, it's nearly zero extra effort

ElDiabolo 2017-01-31 10:04:13

How do Icheck if kms is enabled.

n4dir 2017-01-31 10:05:20

my main concern is not to have to retype the password again and again, hence keys.

Iridos 2017-01-31 10:05:55

having to type a passphrase each time to unlock the key isn't really better ^ ^

n4dir 2017-01-31 10:06:23

lol. no. but having it stored is good :-)

Iridos 2017-01-31 10:06:42

and I have nightly cronjobs on one machine… I set the variables for the ssh-agent inside the crontab

Iridos 2017-01-31 10:07:02

that means having to re-edit that on each non-hibernate reboot, which I don't do often

dTal 2017-01-31 10:07:11

it's better from a security perspective - if the password is compromised you can change it, without changing the key

n4dir 2017-01-31 10:08:12

first of all someone would need to have your private key.

n4dir 2017-01-31 10:09:09

saying is: if in doubt, protect it with your life

dTal 2017-01-31 10:09:37

for example if you discovered your machine had a keylogger

Iridos 2017-01-31 10:09:41

if someone is root or my user on the system, they have the key and they have the passphrase via gdb or so from the agent…

Iridos 2017-01-31 10:09:58

it's a bit better than a passwordless key, but not by much imo

dTal 2017-01-31 10:10:29

ah I meant better than straight password auth

Iridos 2017-01-31 10:10:32

specially as that partition is encrypted and you could (probably) only get the key from the live system, not from the hard disk

n4dir 2017-01-31 10:12:14

don't think much about that, cause here there are no other root users

Iridos 2017-01-31 10:12:53

I mean someone breaks into the machine via some root exploit

n4dir 2017-01-31 10:12:59

more compared to being able to brute-force passwords (instead of ssh-key authentication)

Iridos 2017-01-31 10:13:25

or a userspace expoloit… e.g. in the irc client

dTal 2017-01-31 10:13:48

or carelessness - like a "test" account

Iridos 2017-01-31 10:13:48

that gives them free access to all the other systems I am connected to via keys

smile123 2017-01-31 10:14:27

hello

n4dir 2017-01-31 10:14:29

assuming they somehow also get the password

smile123 2017-01-31 10:14:29

i install opera and i have problem,

smile123 2017-01-31 10:14:31

every time open opera want keyring login

smile123 2017-01-31 10:14:35

i uninstall opera but continue to want keyring and with chromium browser

smile123 2017-01-31 10:14:37

how can i fix this problem?

Iridos 2017-01-31 10:15:06

which password

n4dir 2017-01-31 10:15:11

for the ssh-key

greycat 2017-01-31 10:15:30

I'm guessing he means "When I login to Debian I am prompted for the passphrase for my ssh private key"

greycat 2017-01-31 10:16:03

But that might be a bad guess. His English is confusing to me.

Iridos 2017-01-31 10:16:49

n4dir, no… a) access is granted to all shells via the agent anyway (so just ssh in, leave more backdoors) … b) the passphrase is stored inside the agent somewhere and can be retrieved with gdb or the likes

n4dir 2017-01-31 10:17:40

ok

n4dir 2017-01-31 10:17:56

let's pray no one will find a exploit then.

n4dir 2017-01-31 10:18:26

iow: i didn't think about that

Iridos 2017-01-31 10:19:04

Chrome/chromium in some configurations uses the gnome (kde, etc.?) keyring to encrypt the password store… I think he might refer to that… but… that's how it should be, so not sure what the problem is

greycat 2017-01-31 10:19:34

You run eval "$(ssh-agent -s)" or similar in your main login dot file and this causes that shell to export the env vars that ssh uses to talk to the agent. Then your WM and your terminals and your shells all inherit those vars.

Iridos 2017-01-31 10:20:33

greycat, I use "keychain" in my .profile, because that way the shell I get when I ssh into that machine gets access to the agent, too

greycat 2017-01-31 10:21:02

I don't know what "keychain" is.

Iridos 2017-01-31 10:21:06

which is what I want, as only the work machine has the keys for the work system

Iridos 2017-01-31 10:21:24

well… apt-cache show keychain might remedy that :>

nkuttler 2017-01-31 10:21:31

!keychain

dpkg 2017-01-31 10:21:31

Keychain is an application to have SSH and/or GPG agents be run for you at a login shell. apt-cache show keychain

greycat 2017-01-31 10:21:52

How does it differ from running a standard ssh-agent?

n4dir 2017-01-31 10:22:08

i seem to recall keychain makes sure that you can make use of ssh-keys also on the hosts you did ssh to, but i would not bet on that (as i never used it)

greycat 2017-01-31 10:22:10

Does it do some sort of heuristic search for an already-running agent?

nkuttler 2017-01-31 10:23:36

greycat: right

Toordog- 2017-01-31 10:33:54

WHat would you use to have an overview of your park of servers (2000+ servers) to display stuff like: Hardware(CPU info, RAM, HDD, VG, LV), Network (IP, Hostname), and be able to run report to return all servers with +4 CPU or all server with 4G+ RAM and so on ?

Toordog- 2017-01-31 10:34:27

mostly looking for an operational server inventory to query

somiaj 2017-01-31 10:38:03

Toordog-: there are various choices, unsure exactly which ones are in debian as I don't use them, but Zabbix and Nagios both spring to mind

somiaj 2017-01-31 10:38:06

,v zabbix

judd 2017-01-31 10:38:07

No package named 'zabbix' was found in amd64.

somiaj 2017-01-31 10:38:21

,v zabbix-agent

judd 2017-01-31 10:38:21

Package: zabbix-agent on amd64 -- wheezy-backports: 1:2.2.5+dfsg-1~bpo70+1; jessie: 1:2.2.7+dfsg-2+deb8u1; jessie-backports: 1:3.0.7+dfsg-1~bpo8+1; stretch: 1:3.0.7+dfsg-1; sid: 1:3.0.7+dfsg-1

Toordog- 2017-01-31 10:38:33

Nagios will do monitoring but not allow to query data related to the environment of hte server

somiaj 2017-01-31 10:38:44

Toordog-: http://serverfault.com/questions/44/what-tool-do-you-use-to-monitor-your-servers is a list of some suggestions

Iridos 2017-01-31 10:38:49

we use ganglia for 500ish servers of all the same type (in most regards)… I think that wouldn't scale so easily another factor of 4 (with the many metrics we look at, at least) … and … still looking for something else

somiaj 2017-01-31 10:38:53

Toordog-: even with plugins? zabbix is one I nkow my friend uses, but I don't know the details.

Toordog- 2017-01-31 10:39:15

we are using opsview for now and going to implement icinga2

Toordog- 2017-01-31 10:39:25

we are also using puppet and going to use puppetdb

Iridos 2017-01-31 10:39:31

I mean it would scale up to record all the data… but sifting through it for problems wouldn't scale easily

somiaj 2017-01-31 10:39:47

puppet monintors? I thought it was more a configuration tool? But yea it may have plugins too.

Iridos 2017-01-31 10:40:12

Toordog-, maybe take a look at sensu? that's on my list to have a look at… it'd do both the nagios and the metric-recording stuff

Toordog- 2017-01-31 10:40:37

but not sure if any of these tools can respond to a question like : is that server been upgraded temporary compare to its baseline and never revert back, or how many servers i have with more than 4 CPU and 4G RAM, or for that client, how many server with the hostname matching this pattern.

Toordog- 2017-01-31 10:41:16

I studied Sensu 3 years ago, surely it has improved, back then, it required too much frontend coding to implement

Toordog- 2017-01-31 10:41:40

maybe Icinga2 with Graphite and a database to store some inventory metrics

Toordog- 2017-01-31 10:41:49

polled by puppet

Toordog- 2017-01-31 10:42:22

similar tools that would do thing i

Toordog- 2017-01-31 10:42:30

*just Katello does half of it :P

Iridos 2017-01-31 10:42:46

I don't like the active polling model of nagios/icinga… that may be great for switches and other dumb things, but for computes I feel it's a lot smarter if they push data up whenever they want to

Iridos 2017-01-31 10:43:00

and if they stop pushing data, then they're probably dead

Toordog- 2017-01-31 10:43:27

Iridos it is a philosophy that works, is has its drawback as well

Toordog- 2017-01-31 10:43:43

/is/it/

Iridos 2017-01-31 10:44:20

like?

Iridos 2017-01-31 10:44:48

seems much more useful to me, as the clients have all the data anyway… querying from outside can be quite a pain