You are not logged in.
I saw 2 failed notices regarding apparmor. Is that critical?
No. For some truly bizarre reason Debian (and by extension Devuan) enables apparmor by default, but doesn't ship a default configuration for it that actually works properly.
Ignore it, disable it, or fix whatever it's moaning about, your choice.
According to 2 early pages of the User's Manual the Laptop can use 2 x PC4200, 200-pin, SO-DIMMs up to 2048MB each but according to a page towards the end, on Memory Expansion it mentions that only the following memory modules can be used.
The former will likely be the chipset limitation (which can be confirmed elsewhere, e.g. intel docs), the latter will be configurations the OEM tested with.
It's not particularly uncommon for a board to support, at least theoretically, DIMMs that weren't readily available when it was released.
As for getting some, I usually just go to ebay for stuff like this, and eat the (fairly reasonable for small items like memory) shipping (to NZ).
You cannot use apt / apt-get / aptitude to install a deb file directly.
AFAIK aptitude can't install from a file, but apt/apt-get has supported this for years. It'll even resolve dependencies for local packages (but not using local packages, at least not automatically, same as dpkg).
And what makes you think nftables is a daemon?
Power-profiles-daemon is expected to be started on-demand via dbus activation... Which is obviously only going to work with systemd.
If something is trying to start it that way, you'll see errors to the effect of "nothing provides the net.hadess.PowerProfiles name on dbus" or somesuch.
On Gentoo we have an (openrc) init script to start PPD explicitly at boot, but Devuan appears to be doing the usual "just pull from Debian & don't bother to check it works properly" thing Devuan does, so the package only contains a systemd .service definition.
If you want it to work, you'll probably have to write a sysv init script for it yourself or come up with some other way to start it on demand.
As for TLP, TLP does far more than PPD, but it's more work to set up and isn't (currently) integrated into the major (GNOME, KDE) DEs.
It works fine for my needs on the one ancient laptop I have ever bothered to own though, same as it always has.
if only 512M of RAM is installed, this isn't good enough to start from
512MB is fine for a netinstall, though the live desktop will likely choke. What it's not good enough for is pretty much any modern graphical web browser.
Frankly, for anything <2GB I wouldn't be running a full DE (even XFCE), and for <1GB It'd be a straight-up CLI-only install.
That's not to say you can't run a GUI with 512MB RAM, just that you probably won't like it very much.
How did you manage to have "mtbvfr wrote:" entered into the Message box?
By manually copy-pasting the text and the username like it's 1999, because golinux childishly disabled the quick-quote functionality some time back on account of a few users excessive use of it annoying him.
The full quoting annoyed a few (or more accurately, one) people. Removing the quick-quote links creates extra work any time a quote is warranted, and removes such niceties as timestamps and back-linking to the quoted post.
I don't have another 32-bit machine to test with.
Most (if not all) 64bit systems should still be able to boot the 32bit install media (at least in legacy/CSM mode). Even if the live kernel won't boot for some reason, you should still at least get to the boot menu.
All the extra " and spaces are to make the structure viewable when posting. Maybe there is a better way to do that . . .
In any capable and half-way modern board software, the post editor has a "disable BBCode" checkbox. This one apparently does not, having it as a global toggle reserved for administrators... Which you are, and so should know.
As already suggested, make sure the drive boots on something else... preferrably something more modern.
Blocksize shouldn't make any difference, and AFAIK XP didn't do any off-but-not-really-off "Fast startup" bollocks.
FWIW, I have found USB boot pretty hit-and-miss on machines from that era. There were several ways to make removable (CD, USB) devices bootable, and which worked with what BIOS was kinda down to luck.
Personally I'd just burn a CD, since that machine looks to have a fixed optical drive and CDs were still pretty much the standard install media at the time.
It'd also be interesting to try a bootable USB image from the period (e.g. knoppix or the like). If that works, you'd have somewhere to start with figuring out why the BIOS doesn't see the Devuan image as bootable.
I think I have some to work on that are even older
I have Jessie (last release supporting i586) running on a K6-2 from ~1998. It's quite usable, so long as you don't do anything silly like trying to run a modern GUI.
I'm sure it'd run Daedalus too, if only the "i386" build still meant "i386".
IIRC I used PLOP on a floppy disc to boot the CD, because BIOS CD boot was flaky as all hell and USB boot hadn't been invented yet (also only USB 1.0, which would have been painfully slow anyway).
I never said anything about capability. One can be the best programmer in the world, and still behave like an asshole.
Much of Lennart's code is excellent, some of it is even a good idea... The attitude exposed by his (and various other obvious parties as well) continual attempts to force everyone to get in line and do things according to "the plan" for GNU/Linux is that of an asshole.
His comments are replete with "I know best, do as I say" sentiment, and examples of "force x to do y, because it's the my future" are not at all difficult to find.
Usually these boil down to "Gentoo is resisting again, assimilate harder", or "Let's make not doing things our way as annoying as possible", while still waving the "it's open source, change it if you want" flag.
The headline is a garden-variety example of the latter. Doubtless any upstream bug reports or patches will be closed wontfix, with the usual "it's open-source, fork it if you really care that much"... Knowing full-well that this sanctimonious "taint" message is not quite annoying enough for anyone to actually do so.
Ordinarily all this would be a simple case of "dev is a twat, ignore", but he has unfortunately sold his ideas well enough to big corporate (IBM, Microsoft, etc.) that they now see them (systemd in particular) as the leverage they have always wanted to gain control of systems-level GNU/Linux development.
Much of the current direction within systemd is toward "trusted" computing, immutable operating systems, and homogenising the GNU/Linux landscape... These things sound like they are for the benefit of the end-user, but the natural end product - the computer as a cookie-cutter "secure" (for them) appliance, controlled by the vendor - is a holy-grail for big IT.
nothing but an MS registry for the Linux ecosytem
Uhh, sure... If you've been living under a rock for the last couple of decades. systemd does just a mite more than "registry" (a title better handed to the likes of, say, gconf) these days.
systemd v257 requires the merging of /bin and /sbin tries to strong-arm distributions into another pointless filesystem layout change, by inserting scary-sounding messages to incite bug reports from clueless users.
FTFY^
In other news: The sky is blue, the sun rose in the east again, and Lennart is still an asshole.
A non-booting kernel or broken driver really isn't a big deal, and frankly I have no idea why people seem to get so flustered by it (see recent Debian drama WRT out-of-tree nvidia driver "completely breaking" systems).
Pretty much every distro keeps old kernels around (and generates bootloader entries for them) for exactly this scenario.
Even without that, you can just boot a livecd/usb and set root= appropriately or chroot in. Unless one is silly enough to encrypt / and not keep a record of the key OFC... Or use secure retarded-boot, but that's really a bootloader issue and only makes using live media more annoying.
xtrx-dkms is fixed in sid/ceres/unstable, either wait for somebody to punt it to backports or just do it yourself.
I cannot find anything on the web about this.
It literally took me longer to write this post than it did to find the information above.
Difficult to believe that I am the only one.
Why? You're running an uncommon driver for uncommon hardware, on a backported kernel.
Expect this class of problem with new kernels and out-of-tree drivers.
PW makes each and every distro/DE on distrowatch crackle like hell when playing Midi-files.
FWIW, pipewire works just fine with fluidsynth (via ALSA sequencer port) here, and on every distro I've used that packages those.
Timidity OTOH, AFAICT has been pretty much a zombie project since 2004.
usrmerge is a filesystem layout change, not some kind of "corporate" conspiracy. It's not really necessary and it breaks a bunch of old assumptions, but it's far from the end of the world. It sure doesn't need a "warning" for anyone who hasn't been living in a cave for the past 5 years.
It also has nothing whatsoever to do with 32bit support or non-x86 architectures.
OTOH, the only thing not adopting merged /usr really breaks is systemd (and compatibility with systemd-based distros), largely because that sprawling behemoth of feature-creep apparently can't keep it's tentacles out of things traditionally found under /usr and not needed to bring the system up... But that's not exactly a surprising development.
How is this news (or "myth", "legend", "the truth", "nightmare", other infantile hyperbole in your link), or even particularly useful (beyond embedded systems with miserably small storage)?
Yes, you can compile in all the drivers you need and boot without dynamic /dev or early module loading. That's how it was done when compiling your own kernel was normal practice and booting from a floppy disk was a thing.
It's still quite possible to go that way, assuming you know what drivers you need to mount root. Systemd might make life difficult, but that's nothing new either.
I still have a bunch of Slackware 7 boot disks on my desk, and besides needing to pick the right one for your hardware (because that's the price for no initrd and a 1.4MB kernel), there's nothing particularly fun or novel about them... They're just minimal kernel images with disk controller and filesystem drivers compiled in.
So what? I mean it's trivial to boot even modern Slackware without an initrd, why the big writeup? That "guide" makes it sound like the dude just rediscovered fire or something
I would like to use it in scripts and not think about them.
Using unmaintained binaries from removed packages in scripts is the antithesis of "just forget about them". Sooner or later gksu will break (especially being GUI bloat linked against GTK), if you want reliable scripts use a supported method like pkexec.
If you must use gksu, at least port it properly (i.e. rebuild it against current libraries) rather than pulling in binary packages from an old release.
chkrootkit
False positives, read /usr/share/doc/chkrootkit/README.FALSE-POSITIVES.gz (and the other documentation).
Where can I find SCRIPTWHITELIST configuration?
In /etc/rkhunter.conf, of course.
I have no idea how to interpret these three.
The first is a list of files you should check out and whitelist if they're benign.
The second is chkrootkit being dumb, and is explained in the documentation.
The third is irrelevant, because you are not running OSX.
copy os use midnight commander
A thouroghly terrrible idea, as is using any other TUI or GUI file manager for this. Use rsync or plain cp, in archive mode or with explicit --preserve= parameters.
needed sudo permissions for copy os
No kidding. Of course you need root.
chmod -R 775 *
Yeah, don't do that either, unless you want to completely bork permissions.
UPD
i am use this instruction for clone os to another drive
https://askubuntu.com/a/741727
That post details using 'cp -a' to copy files, not mc.
The easiest way to fix this is almost certainly just copying the system again, this time with the right tools and options. You did make and test a backup before starting, right?
Personally I suggest using rsync from a liveCD/USB, or at least single-user mode so there aren't too many open files. Then run it again so it can verify the copy is correct.
You didn't mention how you copied the system. Did you preserve extended attributes (and in particular, POSIX capabilities)?
I have no idea how thunar handles user mounts these days (still GVFS?), but I wouldn't be at all surprised if there's a binary with CAP_SYS_ADMIN set to allow (un)mounting filesystems involved.
PASSWD and NOPASSWD
By default, sudo requires that a user authenticate before running a command. This behavior can be modified via the NOPASSWD tag.
Dependence on cloud nonsense aside, this really comes down to crowdstrike's implementation:
* Falcon sensor is an old-school kernel driver (as opposed to running in a kernel VM, e.g. eBPF modules).
* It's also marked as boot-critical, so "safe mode" doesn't bypass it.
* It loads files (and potentially executable code too) from userland without sufficient input validation.
* It's written in C++, it's not memory-safe, and invalid data (in this case a bunch of literal nothing) in a definition update caused a null-pointer dereference.
IOW, this is a crowdstrike fuckup, and a pretty serious one at that. Whoever came up with the architecture for falcon sensor (at least on Windows) should be fired immediately.
Not only is this a fragile single point of failure, the apparent lack of input validation makes it a rootkit waiting to happen as soon as somebody manages to sneak in a compromised definition update.
There are ways to do something like this without producing a massive SPOF (or at least making it more easily recoverable), and this all stinks of arrogance and "infallibility culture" at crowdstrike.
Their big shiny selling point is "instant updates", and to achieve that they sidestepped driver validation and threw out decades of best-practice when it comes to running code in kernel space. This is ring-0 plug-n-play printer driver levels of "don't do that".
Perhaps it will wake their customers up to the peril of granting IDDQD rights to a bunch of chimpanzees.
AV vendors abusing their privs to do stupid things isn't remotely new, we've had gratuitous SSL tampering for years, we've had easily hijackable update mechanisms, and we've had products that decompress potentially malicious payloads in kernel-space, to mention just a few dumb ideas off the top of my head.
Surely by now somebody has realised that giving J.Random AV slinger god-mode in the name of "muh securitee" and "users are too stupid to be trusted" is a bad plan... Surely.
You started this @Zapper, with your "bumbling morons" comment. If you expect to be treated with "decency", first try being decent yourself.
Your ongoing tendency to throw gratuitous insults at anyone and anything you perceive as an out-group or an "organisation" is infantile and irritating.
The developers behind Mullvad owe you nothing, and have done nothing to deserve your bile. They provide you software, gratis, and even go so far as to host repositories of debian packages. What exactly have you done for the FOSS community, besides whine?
Because no installer default can satisfy everyone? It's your system, you get to choose the disk layout.
As for triggering hibernation from the CLI, that would be either 'loginctl hibernate' (if you have [e]logind installed, which IIRC is the default setup) or 'pm-hibernate' from the pm-utils package.
IME most of the time this kind of thing isn't really about control, it's about liability (at least in the corporate world).
If a company contracts an external provider to handle endpoint protection, veeps who know nothing about IT get to tick their "all practicable steps to protect customer data" and "certified industry standard solution" boxes. If anything goes wrong they can just point at (and potentially sue) $external provider, with no risk of blowback.
The bigger and more widely known the provider, the harder they can lean on the "industry standard" "we're doing what everyone else is doing" angle.
This is how we end up here, not because of some grand conspiracy (not to say they're not out to get you, mind) but because big IT knows they can exploit human laziness and risk-aversion for profit, and their corporate customers often like dealing with a monopoly because of the "safety in numbers" effect.
As for "cloud" more generally, my answer (both personally and professionally) is "go away"... Unless the rep brought biscuits, in which case I'll pretend to listen while I eat them*. It simply does not and can not meet my reliability, serviceability and redundancy requirements.
I don't like surprises, and if I really do need to call somebody at 3am to figure out why a critical system isn't working, I expect the answer to be "I'll be on site, with parts, in 30 minutes" not some phone droid with "looks like $cloud whatever is down, better file a ticket".
'tis the same reason I prefer hardware solutions over inscrutable software "fixes", and local contractors over megacorps with 15 layers of bumbling bureaucracy between their technicians and reality.
*the biscuits, not the rep... Though the reverse is often tempting.
its the librewolf approach that they don't do that annoys me. They could just make it so derivatives default to a debian release like bookworm . But they don't.
The only difference is that the librewolf download page gives you a lazy copy-paste command to run with a scrap of shell doing "if not [list of supported releases] then use ubuntu focal"... Which is something neither are in any way obliged to provide, and one anyone with two brain cells to rub together could implement themselves or fix manually by changing a single word in the resulting source line.
The reason you are getting flack for your post is that you are calling people "bumbling morons" for not spoon-feeding you. Grow up, and learn to deal with the fact that you are running a distribution with a small userbase and will need to make your own decisions when it comes to compatibility with third-party repositories.
That is fundamentally annoying.
So are people who get out of sorts and start slinging shit like a brat when they're not spoon-fed copy-paste solutions to every little thing.
debian derivatives default to debian codenames. Is that unreasonable?
Yes, expecting third-party developers to be aware of every derivative and which debian codenames it's compatible with is unreasonable. They're already providing you software for nothing, if you want to use their convenient repository too then figuring out which release is appropriate for your system is your problem.
Hell, librewolf doesn't "default to debian codenames" anyway. Had you made the effort to actually read that shell snippet you'd see they default to "focal" for any release not on their list, and that's not the right choice for devuan either.
To wit:
Attention. We only build LibreWolf for Debian 11/12, Ubuntu 20/21/22 and Mint 20.2/20.3/21. If you don't use one of those distros, the above commands will install the Ubuntu 20 build for you which may or may not work. If you want to manually choose a different distro's build, then change the first of the above commands to point at that distro. E.g. to install the Debian 11 build, run distro=bullseye.
What, pray tell, is so "frustrating" about applying the same logic to mullvad, and setting the codename yourself in mullvad.list, or wherever else you choose to put the source definition?
As for what mulvad stuff you can "get to show up", how about you go look at the contents of the repository you added... Or perhaps you expect somebody else to take care of that for you (and call them morons if they don't) as well?