You are not logged in.
- Topics: Active | Unanswered
#251 Re: Devuan » Please add a hardened kernel by @anthraxx (Levente Polyak) » 2020-05-07 10:01:13
Sure Alpine package integrity is verified before installation, but after files have been installed how to verify them once again say like by
wajig integrity
in Devuan?
You could use something like this:
https://packages.debian.org/stable/fcheck
I think the best way to use this would be to scan the system while it's offline by using a live USB Devuan, with the database also stored on an external drive.
Phil
#252 Re: Devuan Derivatives » Refracta beowulf xfce isos » 2020-05-04 04:05:15
My test results:
1st attempt
===========
Version: refracta10-beta2_xfce_amd64-20200425_1600.iso
Error messages:
WARNING: Device /dev/loop0 not initialized in udev database even after waiting 10000000 microseconds.
WARNING: Device /dev/sda not initialized in udev database even after waiting 10000000 microseconds.
WARNING: Device /dev/sda1 not initialized in udev database even after waiting 10000000 microseconds.
WARNING: Device /dev/sda2 not initialized in udev database even after waiting 10000000 microseconds.
...and so on.I didn't know what to do about it, so I just waited to see what would happen. After a long wait, the boot process eventually "died" and I thought the system had frozen. I pressed the "Enter" key to see if anything would happen, and I was presented with a working command prompt.
2nd attempt
===========
Version: refracta10-beta2_xfce_i386-20200425_1631.iso
As before, error messages:
WARNING: Device /dev/loop0 not initialized in udev database even after waiting 10000000 microseconds.
WARNING: Device /dev/sda not initialized in udev database even after waiting 10000000 microseconds.I pressed Ctrl-C and the boot process continued. Eventually I was presented with an Xfce desktop. The mouse was unresponsive, so I tried pressing Ctrl-Alt-Delete and Ctrl-Alt-Backspace. Nothing happened. However, the system wasn't totally locked up because the clock was working.
Phil
#253 Re: Devuan Derivatives » Refracta beowulf xfce isos » 2020-04-25 16:35:33
Thank-you.
Get my key if you don't already have it.
$ gpg --recv-keys 094c5620
^^^ This didn't work.
Result:
$ gpg --recv-keys 094c5620
gpg: keyserver receive failed: No nameHowever, this appeared to work:
$ gpg --keyserver hkp://keys.gnupg.net --recv-keys 094c5620
gpg: key A73823D3094C5620: 1 signature not checked due to a missing key
gpg: key A73823D3094C5620: public key "fsmithred (aka fsr) <fsmithred@gmail.com>" imported
gpg: no ultimately trusted keys found
gpg: Total number processed: 1
gpg: imported: 1Phil
#254 Re: Devuan Derivatives » Refracta beowulf xfce isos » 2020-04-24 12:49:34
I looked around quite a bit and didn't see any instructions anywhere on how to verify the downloads using the SHA256SUMS.txt.asc file. Such instructions (or a pointer to where they are located) would be very helpful.
Phil
#255 Re: News & Announcements » Beowulf Beta is here! » 2020-03-19 22:34:17
is it possible to include package
"lsb"which i would need for the printer (epson) drivers.
On Ascii it was possible to install from Debian Jessie the packages; now it seems no more possible.
You could try downloading the package from here and installing it using gdebi, apt, or dpkg:
https://packages.debian.org/jessie/lsb
Phil
#256 Re: Installation » Security Updates for Beowulf not installed automatically » 2020-03-05 18:17:55
Devuan ASCII has the same problem. I encountered it last year.
See: https://dev1galaxy.org/viewtopic.php?pid=14632#p14632
Phil
#257 Re: Off-topic » HyperbolaBSD Roadmap relevance to Devuan » 2020-02-16 13:06:11
yeti wrote:So porting a De??an sibling to e.g. the NetBSD kernel, just would revive the old dreams.
—▷ https://www.debian.org/ports/netbsd/index
—▷ https://www.debian.org/ports/netbsd/alphaBesides those links show they have abandoned all such efforts in porting bsd's so the point is rather moot. Hypothetically, if a team of talented devs were to undertake such an endeavor then this might not be a moot point.
This one is not dead yet:
https://www.debian.org/ports/kfreebsd-gnu/
Check the mailing list archive and you'll see that the mailing list is still active.
Phil
#258 Re: Off-topic » NoScript-like tool for Palemoon 27.9 » 2020-01-28 23:51:17
I am using NoScript (v. 5.1.9) on Palemoon. Palemoon tries to dissuade people from installing NoScript, but you can safely ignore the warning and install it anyway. NoScript seems to work just fine on Palemoon.
Phil
#259 Re: Other Issues » Script for acting like systemctl? » 2020-01-10 21:00:35
I realize this is a bizarre topic. Bear with me.
It's not bizarre at all. I think it's a good idea. I had the same idea about two years ago when I was learning how to set up a Debian server.
Phil
#260 Re: Devuan » Debian considering going systemd init only » 2019-12-12 06:07:36
Voidlinux looks nice. Unluckily only a rolling release. If enough migrants from De??an gather around it, making a spinoff in a stable+security flavor could be a plan-b too.
This looks quite interesting:
https://www.hyperbola.info/
https://wiki.hyperbola.info/doku.php?id=:en:start
https://distrowatch.com/table.php?distr … =hyperbola
I learned about it yesterday.
Phil
#261 Re: News & Announcements » ASCII 2.1 point release » 2019-10-23 22:09:16
I'm not seeing any updates at all. The last update I saw was tcpdump on Monday.
#262 Re: Installation » firefox 52.9 esr » 2019-09-17 08:02:21
SeaMonkey does not support Encrypted Media Extensions and therefore cannot load the Widevine Content Decryption Module.
It doesn't matter because the OP didn't mention that as a requirement; he or she requires support for the old type of Firefox extensions. If someone also wants support for Widevine, then I recommend using Chromium, or a web browser based on Chromium such as Google Chrome, Opera, Vivaldi, etc. After all, there's nothing stopping anyone from having more than one web browser.
Phil
#263 Re: Installation » firefox 52.9 esr » 2019-09-16 05:19:09
It really isn't safe to use older browser versions. Have you considered using browsers that support legacy extensions and are still maintained with security and bug fixes? There's Pale Moon, Basilisk, and Iceweasel-UXP to choose from (and the upcoming Borealis Navigator). There are still choices out there.
While it can't be said that all legacy extensions will work on them, the vast majority will.
There's also SeaMonkey, and there's a deb package available for it from MX Linux.
For info on using the MX Linux repo with Devuan, see:
https://dev1galaxy.org/viewtopic.php?pid=17503#p17503
Phil
#264 Re: Desktop and Multimedia » wine32 » 2019-09-01 16:38:35
For comparison sake, and to give you some additional information, I am using Devuan ASCII and didn't have any problems installing WINE when I followed the Debian wiki. I also don't have any elogind packages installed. And now your experience has me wondering if there's been a big change between ASCII and Beowulf.
Phil
#265 Re: Desktop and Multimedia » wine32 » 2019-08-30 15:48:22
Be sure to study the wiki:
https://wiki.debian.org/Wine
Phil
#266 Re: Off-topic » ZombieLoad Attack (CVE-2018-12130), hyperthreading -how to disable it? » 2019-08-28 16:59:07
(... I suppose you are using latest firmware...)
That is correct.
Phil
#267 Re: Off-topic » Marginalizing systemd » 2019-08-27 14:30:33
So, a customer of ours is insisting on RHEL7 (don't know why but I suspect those that make such decisions are not very technically savvy).
I think you should ask them why they want RHEL7. And perhaps you could try to explain to them why it may not be the best choice for an embedded system.
Phil
#268 Re: Off-topic » ZombieLoad Attack (CVE-2018-12130), hyperthreading -how to disable it? » 2019-08-26 16:42:29
Here's mine:
# grep -R . /sys/devices/system/cpu/vulnerabilities
/sys/devices/system/cpu/vulnerabilities/spectre_v2:Mitigation: Full generic retpoline, STIBP: disabled, RSB filling
/sys/devices/system/cpu/vulnerabilities/spec_store_bypass:Vulnerable
/sys/devices/system/cpu/vulnerabilities/mds:Vulnerable: Clear CPU buffers attempted, no microcode; SMT disabled
/sys/devices/system/cpu/vulnerabilities/l1tf:Mitigation: PTE Inversion; VMX: EPT disabled
/sys/devices/system/cpu/vulnerabilities/spectre_v1:Mitigation: usercopy/swapgs barriers and __user pointer sanitization
/sys/devices/system/cpu/vulnerabilities/meltdown:Mitigation: PTIDoesn't look good. 
Phil
#269 Re: DIY » MX Repos for Devuan? » 2019-08-25 16:15:30
@pcalvert, why pin the rest of the repository to 50?
Because aptitude was trying to pull other packages (e.g., intel-microcode) from that repo during upgrades, and pinning the rest of the repository to 50 stopped that behavior. Pinning it to 100 didn't work. I thought it would, but it didn't.
Also, their Flash package downloads updated Flash versions without needing to be updated itself so using the .deb might be the best option.
I'm not sure what you mean by that.
Phil
#270 Re: DIY » MX Repos for Devuan? » 2019-08-24 13:10:51
I use an MX repo for one package by using apt-pinning.
/etc/apt/preferences.d/mxrepo-pinning :
Package: adobe-flashplugin
Pin: origin "mxrepo.com"
Pin-Priority: 100
Package: *
Pin: origin "mxrepo.com"
Pin-Priority: 50/etc/apt/sources.list.d/mx-17.list :
# MX Community Main and Test Repos
deb http://mxrepo.com/mx/repo/ stretch non-free main
#deb http://mxrepo.com/mx/testrepo/ stretch testDownload the repo keyring and install it:
wget http://mxrepo.com/mx/repo/pool/main/m/mx-archive-keyring/mx-archive-keyring_2018.2mx17_all.deb
sudo dpkg -i mx-archive-keyring_2018.2mx17_all.debPhil
#271 Off-topic » Knoppix 8.6 — first wide public release to abandon systemd » 2019-08-21 08:16:18
- pcalvert
- Replies: 9
#272 Re: Other Issues » [SOLVED] Security update delays » 2019-07-14 02:16:50
My results:
$ apt policy firefox-esr
firefox-esr:
Installed: 60.7.2esr-1~deb9u1
Candidate: 60.7.2esr-1~deb9u1
Version table:
*** 60.7.2esr-1~deb9u1 500
500 http://deb.devuan.org/merged ascii-security/main i386 Packages
100 /var/lib/dpkg/status
60.6.3esr-1~deb9u1 500
500 http://deb.devuan.org/merged ascii-updates/main i386 Packages
60.6.1esr-1~deb9u1 500
500 http://deb.devuan.org/merged ascii/main i386 PackagesDebian Stretch version: 60.8.0esr-1~deb9u1
Phil
#273 Re: Other Issues » [SOLVED] Security update delays » 2019-06-24 22:25:40
Update: The problem seems to have been fixed.
$ apt policy firefox-esr
firefox-esr:
Installed: 60.7.1esr-1~deb9u1
Candidate: 60.7.1esr-1~deb9u1
Version table:
*** 60.7.1esr-1~deb9u1 500
500 http://deb.devuan.org/merged ascii-security/main i386 Packages
100 /var/lib/dpkg/status
60.6.3esr-1~deb9u1 500
500 http://deb.devuan.org/merged ascii-updates/main i386 Packages
60.6.1esr-1~deb9u1 500
500 http://deb.devuan.org/merged ascii/main i386 PackagesPhil
#274 Re: Hardware & System Configuration » SDHC Nothing but Problems » 2019-06-24 02:13:33
This info may help:
SSD’s, Journaling, and noatime/relatime
https://tytso.livejournal.com/61830.html
Improving the Resilience of HDDs & Ext4
https://myles.sh/improving-the-resilience-of-your-hdds/
[Especially the section on tuning ext4.]
Phil
#275 Re: Desktop and Multimedia » Does this reminds you of systemd? » 2019-06-24 01:36:43
Try using aptitude. It may give you some other options, some of which may allow you to get rid of pulseaudio and pulseaudio-utils.
Phil
Board footer
