openSUSE Users December 2012

users@lists.opensuse.org

96 participants
98 discussions

[opensuse] netconfig running multiple times quickly
by Scott Simpson 26 Dec '12

26 Dec '12

OpenSUSE 12.2 I'm getting messages like Dec 23 10:56:35 madhatter netconfig: open lock for netconfig failed. Abort. in my messages file. I put the following debugging in /etc/sysconfig/network/scripts/functions.netconfig: function openLock() { test -z "$1" && return 1 PRGNAME=$1 PID=$$ PIDPATH="/var/run/$PRGNAME.pid" date >> /tmp/netconfig_debug echo "PRGNAME=$PRGNAME, PID=$PID, PIDPATH=$PIDPATH" >> /tmp/netconfig_debug if [ -e $PIDPATH ]; then # check if the process is still running OLDPID=`cat $PIDPATH` echo "OLDPID=$OLDPID" >> /tmp/netconfig_debug if [ ! -e "/proc/$OLDPID/cmdline" ]; then debug "pid does not exists; remove lock" # pid does not exists; remove lock rm $PIDPATH echo "Removing lock" >> /tmp/netconfig_debug else if grep "$PRGNAME" /proc/$OLDPID/cmdline >/dev/null 2>&1 ; then debug "process still running" echo "process still running" >> /tmp/netconfig_debug # process still running return 1; else debug "this pid is a different process; remove the lock" # this pid is a different process; remove the lock echo "pid is different process. Removing lock" >> /tmp/netconfig_debug rm $PIDPATH fi fi fi echo "lockfile created" >> /tmp/netconfig_debug echo -n "$PID" > $PIDPATH debug "lockfile created ($PIDPATH) for PID $PID" return 0 } and I get the following debug lines: Sun Dec 23 08:52:17 PST 2012 PRGNAME=netconfig, PID=25741, PIDPATH=/var/run/netconfig.pid lockfile created Sun Dec 23 08:52:17 PST 2012 PRGNAME=netconfig, PID=25737, PIDPATH=/var/run/netconfig.pid Sun Dec 23 08:52:17 PST 2012 PRGNAME=netconfig, PID=25745, PIDPATH=/var/run/netconfig.pid OLDPID=25741 OLDPID=25741 process still running process still running Sun Dec 23 08:52:22 PST 2012 Sun Dec 23 08:52:22 PST 2012 PRGNAME=netconfig, PID=25737, PIDPATH=/var/run/netconfig.pid lockfile created PRGNAME=netconfig, PID=25745, PIDPATH=/var/run/netconfig.pid OLDPID=25737 process still running Sun Dec 23 08:52:28 PST 2012 PRGNAME=netconfig, PID=25745, PIDPATH=/var/run/netconfig.pid lockfile created Notice how it is starting up a bunch of netconfig in parallel. Why is this happening? (I'm using NetworkManager for my interfaces). -- To unsubscribe, e-mail: opensuse+unsubscribe(a)opensuse.org To contact the owner, e-mail: opensuse+owner(a)opensuse.org

2 2

[opensuse] Setting up VNC - problems (was: XDMCP as an alternative to a KVM switch
by Anton Aylward 24 Dec '12

24 Dec '12

Well I tried for VNC rather than XDMCP. I installed TigerVNC on my desktop and on my mandriva-upgraded-to-Mageia2 server (thanks for the reference to that solution!) It went remarkably well. There's now a TigerVNC client menu item and I get a window asking for the server and the password. After starting (manually, I haven't bolted it into systemd yet) the server on the server, I filled in the popup and LO! IT WORKED FIRST TIME !! But I'm not pleased because it didn't really work. I got the window from the server (ain't it nice having a big screen so you can have an almost as bit window to another machine ... :-) ) BUT what was in it wasn't my desktop. It was a couple of xterms with error messages about 'locale'. I've tried fiddling with the ~/.vnc/xstartup but so far have had not resolved that. Googling around has produced some examples and ideas but none have worked so far. If anyone has any suggestions I'm open to ideas. Thanks. -- It is bad luck to be superstitious. - Andrew W. Mathis -- To unsubscribe, e-mail: opensuse+unsubscribe(a)opensuse.org To contact the owner, e-mail: opensuse+owner(a)opensuse.org

4 9

[opensuse] Audacity MP3 support
by James Knott 24 Dec '12

24 Dec '12

I'm trying to modify some MP3 files, but when I try to import an existing MP3 file, I get an error "This version of Audacity was not compiled with MP3 files support". However, the help say LAME is required to support MP3. I have LAME installed, yet still get that error. What is necessary to work with MP3 files? I can work with OGG files without problem. tnx jk -- To unsubscribe, e-mail: opensuse+unsubscribe(a)opensuse.org To contact the owner, e-mail: opensuse+owner(a)opensuse.org

1 1

[opensuse] How to get sshguard working in 12.2
by Lew Wolfgang 21 Dec '12

21 Dec '12

Hi Folks, I started to use sshguard <http://www.sshguard.net/> with openSuSE 12.1. The package I had been using for many years to protect Internet facing servers from brute force attacks still worked, but it was a hassle to update the regex log scanning glue when bumping OS versions. I really like sshguard, but I had some issues installing it in 12.1 even though the package was available in the openSuSE "security" repository. The main problem was SuSEfirewall2 re-initializing the iptable rules after sshguard during the boot process. Christian (IIRC) helped me to sort things out with the SysV init scripts. But what worked in 12.1 failed in 12.2, it seems that systemd is behaving differently. So I re-addressed the issue and figured out a workaround using custom firewall rules. It would be nice if all this could be sorted out for 12.3, but I thought it valuable to document a workaround for 12.2. sshguard is a good package, but it will never work out-of-the-box without some fumbling around. My workaround will only protect ssh, but it's easy to modify to include other services. Another note: The workaround below doesn't seem to work with IPv6, so I included a line to disable IPv6 in the ssh daemon. This will work in my environment and should give me a chance to sort out what's wrong. Regards, Lew 1: Add the sshguard package from the security repository zypper addrepo http://download.opensuse.org/repositories/security/openSUSE_12.2/ opensuse-security zypper install sshguard 2: Edit /etc/sysconfig/sshguard and change ATTACK_ATTEMPTS from 4 to 40: ATTACK_ATTEMPTS="40" 3: In /etc/init.d/sshguard comment out the lines as shown: # Reset status of this service rc_reset case "$1" in start) echo -n "Starting SSHGUARD " # iptables_start setup_cmdline /sbin/startproc -q $SSHGUARD_BIN $cmdline rc_status -v ;; stop) echo -n "Shutting down SSHGUARD " /sbin/killproc -q -TERM $SSHGUARD_BIN # iptables_stop rc_status -v 4: Enable the sshguard service in yast, or by running: insserv sshguard 5: Enable custom firewall rules in /etc/sysconfig/SuSEfirewall2 by uncommenting the line as shown: FW_CUSTOMRULES="/etc/sysconfig/scripts/SuSEfirewall2-custom" Then comment out the following line: #FW_CUSTOMRULES="" 6: In /etc/sysconfig/scripts/SuSEfirewall2-custom, add the two lines as shown: fw_custom_after_chain_creation() { # these rules will be loaded after the various input_* and forward_* chains # are created. # You can use this hook to allow/deny certain IP protocols or TCP/UDP # ports before the SuSEfirewall2 generated rules are hit. #example: always filter backorifice/netbus trojan connect requests and log them. #for target in LOG DROP; do # for chain in input_ext input_dmz input_int forward_int forward_ext forward_dmz; do # iptables -A $chain -j $target -p tcp --dport 31337 # iptables -A $chain -j $target -p udp --dport 31337 # iptables -A $chain -j $target -p tcp --dport 12345:12346 # iptables -A $chain -j $target -p udp --dport 12345:12346 # done #done Add>>> iptables -N sshguard Add>>> iptables -I INPUT 4 -p tcp --dport 22 -j sshguard true } 7: 7: In /sbin/SuSEfirewall2 comment out the FW_CUSTOMRULES line: #FW_CUSTOMRULES="" 8: To make sshd listen only for IPv4 traffic, uncomment the AddressFamily line and change to: AddressFamily inet Then run "/etc/init.d/sshd restart" A reboot at this time is probably advisable to reset/initialize everything. -- To unsubscribe, e-mail: opensuse+unsubscribe(a)opensuse.org To contact the owner, e-mail: opensuse+owner(a)opensuse.org

1 0

[opensuse] how to add boot parameters at boot time in 12.2?
by Carlos F. Lange 21 Dec '12

21 Dec '12

There used to be an input field for additional boot parameters at the boot selection screen, but there is nothing anymore now with 12.2. Even if I choose the Additional Options boot option, it just offers me regular mode and safe mode, without a field to enter new options. What am I doing wrong? -- Carlos F Lange -- Recursive: Adj. See Recursive. -- -- To unsubscribe, e-mail: opensuse+unsubscribe(a)opensuse.org To contact the owner, e-mail: opensuse+owner(a)opensuse.org

6 9

[opensuse] Quick Launch Behavior
by SuSE User 21 Dec '12

21 Dec '12

Not sure if this is a bug or a "feature". I have been delaying moving from 11.4 to 12.2 because of the quick launch behavior on KDE in 12.2. When I click on either the dolphin or firefox icon in the quick launch area they launch but the quick launch icon is covered and I'm unable to launch a second instance. Is this "feature" customizable ? Gary Ernst-- To unsubscribe, e-mail: opensuse+unsubscribe(a)opensuse.org To contact the owner, e-mail: opensuse+owner(a)opensuse.org

3 2

[opensuse] OT: ATTN: Facebook picture posters - Instagram (which is owned by Facebook) says it now has the right to sell your photos
by Duaine Hechler 21 Dec '12

21 Dec '12

-- Duaine Hechler Piano, Player Piano, Pump Organ - Tuning, Servicing & Rebuilding (314) 838-5587 / dahechler(a)att.net / www.hechlerpianoandorgan.com Home & Business user of Linux - 12 years -- To unsubscribe, e-mail: opensuse+unsubscribe(a)opensuse.org To contact the owner, e-mail: opensuse+owner(a)opensuse.org

3 3

[opensuse] Kerberos Access & Ticket Management
by Adam Tauno Williams 20 Dec '12

20 Dec '12

openSUSE 12.2 x86_64 gnome-shell-3.6.2-1.2.x86_64 I access resources in an Active Directory domain from my laptop. What is the best way to manage Kerberos tickets from GNOME3? I has assumed there would be a Kerberos "online account", but that isn't available. Adding Kerberos to 'the system' via YaST does not work well as it is my laptop and that assumes my account == my AD account. -- Adam Tauno Williams GPG D95ED383 Systems Administrator, Python Developer, LPI / NCLA -- To unsubscribe, e-mail: opensuse+unsubscribe(a)opensuse.org To contact the owner, e-mail: opensuse+owner(a)opensuse.org

2 1

[opensuse] How to set up a fast search for file names?
by Davi C. Rodrigues 20 Dec '12

20 Dec '12

I do like the fast and simple interface of krunner. I just start typing on the desktop and it starts the search. Problem: I cannot configure it to look for file names only. Most of the time, the single search engine I need is for file names, not for file contents. Is there a way to set this? The desired output I can achieve by using the Find within Dolphin, except for two issues: 1) It takes more time to open Dolphin, press Ctrl+F and then starting typing. 2) Each typed word in the search field must appear in the same order of the file name. Hence, if a file is named "Dogs and cats need air.pdf", a search with the entry "cats air" will not find that file. Any ideas? Thanks Davi -- To unsubscribe, e-mail: opensuse+unsubscribe(a)opensuse.org To contact the owner, e-mail: opensuse+owner(a)opensuse.org

2 2

[opensuse] thunderbird and encripted passwords
by Carlos E. R. 20 Dec '12

20 Dec '12

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Hi, After learning that the keylock icon on the accounts means that the connection is secure, I wondered if I could secure those that are not. I tried connection security STARTTLS and SSL/TLS, no go. I found that "encripted password" works, though, so that's a good small thing. In fetchmail I see in the log: fetchmail 18516 - - 6.3.19 querying imap.telefonica.net (protocol IMAP) at 2012-12-20T13:46:26 CET: poll started fetchmail 18516 - - Trying to connect to 213.4.149.65/143...connected. fetchmail 18516 - - IMAP< * OK IMAP4 PROXY server ready fetchmail 18516 - - IMAP> A0001 CAPABILITY fetchmail 18516 - - IMAP< * CAPABILITY IMAP4 IMAP4rev1 UIDPLUS IDLELOGIN-REFERRALS NAMESPACE QUOTA CHILDREN SORT AUTH=CRAM-MD5 fetchmail 18516 - - IMAP< A0001 OK capabilities listed fetchmail 18516 - - IMAP> A0002 AUTHENTICATE CRAM-MD5 so it is using "CRAM-MD5". Is that the same that Thunderbird calls "encripted password"? (Telefonica security is a joke. Look at this log entry: <2.6> 2012-12-19 01:56:46 minas-tirith postfix 11167 - - setting up TLS connection to smtp.telefonica.net[213.4.149.228]:25 <2.6> 2012-12-19 01:56:47 minas-tirith postfix 11167 - - certificate verification failed for smtp.telefonica.net[213.4.149.228]:25: untrusted issuer /C=US/O=RTFM, Inc./OU=Widgets Division/CN=Test CA20010517 <2.6> 2012-12-19 01:56:47 minas-tirith postfix 11167 - - Untrusted TLS connection established to smtp.telefonica.net[213.4.149.228]:25: TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits) See the RTFM part? X'-) ) - -- Cheers Carlos E. R. (from 11.4, with Evergreen, x86_64 "Celadon" (Minas Tirith)) -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.16 (GNU/Linux) iF4EAREIAAYFAlDTEh8ACgkQja8UbcUWM1w+twD/YT5s14iMRbZB41FwHZe6/wax cAyq7RRFNGoPQ33oPsUA/1qAnW47rBqTXP8o5ZjIOq8XixXbjHzg9ciHg+060Pm0 =o3Ut -----END PGP SIGNATURE----- -- To unsubscribe, e-mail: opensuse+unsubscribe(a)opensuse.org To contact the owner, e-mail: opensuse+owner(a)opensuse.org

1 0

← Newer
1
2
3
4
5
6
7
8
9
10
Older →

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

2005

2004

2003

2002

2001

2000

1999

1998

1997

1996

1995

1994

1993

1992

openSUSE Users December 2012