return to OCLUG Web Site
A Django site.
November 20, 2011

Brenda Butler
bjb
linuxbutler
» debian kernel source build package bug

The official Debian kernel building tools are a thing of wonder. But, it didn’t do what I wanted, which was to build the exact version of the kernel that I’m running. I guess it is only ever used to build the latest version.

debian bug 649394

Here is the best documentation I found for this task. It refers to this which is also pretty good.

Also, reportbug failed (it was unable to get the list of open bugs for this package from the Bug Tracking System) — I used debian-bug in debian-el package (as noted at the bottom of this page). To actually send the mail, use ctrl-c ctrl-s in the mail buffer (or ctrl-c ctrl-c if you want to send the email and exit emacs).

UPDATE:

Maybe I misunderstood … maybe the -5 is not the patch level I’m aiming for. We shall see.

UPDATE:

No, the -5 is the “ABI” level, and has nothing to do with the Debian patch level. So there was no bug. I was supposed to build with all the patches. Live and learn …

October 29, 2011

Brenda Butler
bjb
linuxbutler
» Still can't start X under Xen 4.0 hypervisor

X starts and promptly exits.

http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=646987

But only under the Xen Hypervisor.

This time the keyboard device is there even under the hypervisor, but xinit “cannot invoke xkbcomp” under the hypervisor. It’s there in /usr/bin/xkbcomp, but xinit cannot “invoke” it under the hypervisor while it can invoke it when it’s not running under the hypervisor. Mysterious.

June 4, 2011

Brenda Butler
bjb
linuxbutler
» identd in ipv6 under inetd

identd provides the “auth” service (see /etc/services). On Debian, it can be provided by any of several packages, including ident2, nullidentd and oidentd.

If you want to have an identd that can talk IPv6, you can choose oidentd.

If you are running it from inetd, you should configure your inetd to respond to IPv6 as well. I’m using openbsd-inetd, and the lines in /etc/inetd.conf to make it listen on both IPv4 and IPv6 for the auth service are:

auth stream tcp4 nowait root /usr/sbin/tcpd /usr/sbin/oidentd -I
auth stream tcp6 nowait root /usr/sbin/tcpd /usr/sbin/oidentd -I

Note the protocol, which specifies IPv4 or IPv6. Also note the -I option to oidentd, to make it read from stdin and write to stdout and to exit after answering one request (needed for inetd operation).

I briefly considered nullidentd, but the description made it sound like it would only ever return one static string. Not quite what I was looking for, and I didn’t investigate further.

March 10, 2011

Brenda Butler
bjb
linuxbutler
» IPv6 howto for Debian and SixXS

I found this procedure for starting to use IPv6 on a home network. It is specific to Debian and the SixXS tunnel broker. Many thanks to Martin Krafft for this very nice description that starts with the firewall rules and moves on from there.

November 3, 2010

Bart Trojanowski
jukie
Bart's Blog
» ipv6 on your desktop in 2 steps

Some people have been telling me that they "have no time" or "are too lazy" to setup IPv6 on their desktop, but would like to.

Below are 2 easy steps to get IPv6 running on your Debian Linux sytem (shoudl be identical on Ubuntu, and similar distros).

If you're not running Linux, check out these pages instead: MacOS X, Windows.

[Read More]

February 15, 2010

Bart Trojanowski
jukie
Bart's Blog
» Debian on UBIFS upgrade on SheevaPlug

I picked up a SheevaPlug recently. In a few weeks I'll try to use it as a git server in a classroom setting at Flourish Conf, where I will be speaking about Git.

This platform consists of a 1.2 GHz ARM processor (Feroceon 88FR131 rev 1 (v5l)), 512M of SDRAM, 512M of NAND flash, 1Gbit ethernet, USB, SD card reader, and ... well, that's it.

[Read More]

January 16, 2010

Bart Trojanowski
jukie
Bart's Blog
» adding an external encrypted volume under Debian

One of my old(er) USB-connected disks started to make a noise. So, it's time to replace it.

Here are the steps I took to create an encrypted USB volume that I can attach to my laptop.

[Read More]

» squid and apt

In the past few months apt-get update started failing when using a squid3 web cache.

It woudl give errors like these...

  • 404 Not Found [IP: 149.20.20.135 80]
  • The HTTP server sent an invalid reply header [IP: 130.89.149.227 80]
  • Failed to fetch .../Packages 404 Not Found [IP: 149.20.20.135 80]
  • Failed to fetch .../Sources 404 Not Found [IP: 149.20.20.135 80]
  • etc

[Read More]

June 18, 2009

Bart Trojanowski
jukie
Bart's Blog
» nfs local caching with fscache and cachefilesd on Lenny

The idea is to put a caching layer between filesystems, that tend to be slow, and the user, who is impatient. This is accomplished by the fscache kernel module, and the cachefilesd user space daemon. The kernel module intercepts what would be disk/network access and redirects it to the daemon. The daemon uses local media, which supposedly is faster, to cache recent data.

The new Linux native implementation is very generic, and can be used to accelerate anything like floppies and CD-ROMs. I am interested in this because I find NFS slow.

Read more about it at Linux Magazine.

[Read More]

March 24, 2009

Bart Trojanowski
jukie
Bart's Blog
» android true type font

Following a random tweet on identi.ca I upgraded my proprotional fonts on Debian/Sqeeze to ttf-droid.

I expect that some day this font will be packaged by Debian, but for now I had to:

    wget 'http://launchpadlibrarian.net/21202254/ttf-droid_1.00%7Eb112%2Bdfsg-0ubuntu1_all.deb'
    sudo dpkg -i ttf-droid_1.00\~b112+dfsg-0ubuntu1_all.deb

Because I am a big console junkie I don't use proprtional fonts much, but they do look nice on the web.

March 6, 2009

Dave O'Neill
dmo
blog
» Fixing the name of App::Ack on Debian

ack is a great "programmer's grep" tool. If you don't already use it, check it out. Now, ack is packaged as part of Debian Testing (Lenny), but unfortunately there's a name conflict. Debian already ships a Kanji code converter named ack, so the ack that I want gets renamed to ack-grep.

I want to run 'ack' on all my systems, not 'ack' on some and 'ack-grep' on others, so I abused Debian's 'alternatives' system to let me do this with:

    update-alternatives --install ack ack /usr/bin/ack-grep 100

And voila, it creates me a /usr/bin/ack that Just Works, and is known to Debian so future packages won't (I hope) break that symlink.

October 9, 2008

Dave O'Neill
dmo
blog
» Configuring bind9 in a chroot, lenny version

A while ago, I blogged the chrooting of bind9 on Debian, so I wouldn't forget how to do it. Things have changed slightly for Lenny, so here's the update.

[Read More]

» Configuring bind9 in a chroot, lenny version

A while ago, I blogged the chrooting of bind9 on Debian, so I wouldn't forget how to do it. Things have changed slightly for Lenny, so here's the update.

more

July 13, 2008

Bart Trojanowski
jukie
Bart's Blog
» four steps to reproducible Debian installs

For ever now some friends and I have been talking about making essential packages, which would pull in all the tools that we often use on Debian. So here goes...

With the power of the equivs package, this is actually a very short procedure.

[Read More]

July 4, 2008

Dave O'Neill
dmo
blog
» Fixing the name of App::Ack on Debian

ack is a great "programmer's grep" tool. If you don't already use it, check it out. Now, ack is packaged as part of Debian Testing (Lenny), but unfortunately there's a name conflict. Debian already ships a Kanji code converter named ack, so the ack that I want gets renamed to ack-grep.

I want to run 'ack' on all my systems, not 'ack' on some and 'ack-grep' on others, so I abused Debian's 'alternatives' system to let me do this with:

    update-alternatives --install ack ack /usr/bin/ack-grep 100

And voila, it creates me a /usr/bin/ack that Just Works, and is known to Debian so future packages won't (I hope) break that symlink.

May 27, 2008

Dave O'Neill
dmo
blog
» Setting up etckeeper

etckeeper is a tool, packaged in Debian, that lets you track revisions to /etc in a Git repository. Here's how to install and configure it.

[Read More]

May 13, 2008

Pythian
pythian
» Debian OpenSSL Package Introduces Vulnerability

The highlight today of probably every Linux-related mailing list and IRC channel was the announcement of CVE-2008-0166, affecting OpenSSL libraries on Debian-based Linux distributions, including the popular Ubuntu.

According to the Debian Security Advisory, a change made to Debian’s OpenSSL package makes its random number generator predictable. Obviously this is less than desirable in a random number generator used for things like, say, all of your SSH keys.

The vulnerability has been present since September of 2006, and Debian strongly suggests throwing your old keys out completely:

It is strongly recommended that all cryptographic key material which has been generated by OpenSSL versions starting with 0.9.8c-1 on Debian systems is recreated from scratch.

Debian has now disabled public key authentication on their project servers until further notice, and are generating new keys for those servers and new certificates for db.debian.org.

So all you Debian and Ubuntu folks out there will probably want to do the same for your own keys and certificates. Note that this patch was never used by the upstream OpenSSL team nor by other distros like Fedora or RHEL (or CentOS), so they are not affected.

April 12, 2008

Dave O'Neill
dmo
blog
» Configuring Bind9 in a chroot

Every now and then, I move my nameserver to a new machine, and I have to google for the recipe for chrooting it on Debian. So, this time, I'm documenting it here.

[Read More]