openSUSE Users March 2017

users@lists.opensuse.org

80 participants
106 discussions

[opensuse] oS 13.1 : "gnome keyring socket is not owned with the same credentials as the user"

by ellanios82

Hello List am using Xfce : - in /var/log/warn : i see warning " The gnome keyring socket is not owned with the same credentials as the user login: /run/user/1000/keyring-4i77r7/control 2013-11-27T13:27:17.434100+02:00 su: gkr-pam: couldn't unlock the login keyring " ............... - any ideas how to fix ? thanks -- To unsubscribe, e-mail: opensuse+unsubscribe(a)opensuse.org To contact the owner, e-mail: opensuse+owner(a)opensuse.org

2 years, 1 month

[opensuse] IPv6 Rogue Router Security Issue

by Lew Wolfgang

Hi Folks, There seems to be a flurry of IPv6 talk going on, maybe this is time for me to bring up the rogue router problem again? I asked about this a couple of times over the years but could never find anyone to comment on it. First, here's the RFC that describes the problem: https://tools.ietf.org/html/rfc6104 Rogue routers have affected me personally at a customer's site. This is a large, professionally managed, dual-stacked network with a number of v4 class B addresses and thousands of hosts. Subnets seem to be /20 CIDR in size, so there are plenty of "neighbors" on any given subnet. I've encountered the situation where misconfigured Windows systems will advertise themselves as an IPv6 router. They then happily accept traffic and drop it all silently on the floor. This problem doesn't seem to bother other Windows boxes too much, but it absolutely kills SSH connections. SSH preferentially tries IPv6 port 22, which when sent to a dumb Windows box results in very long hangups and connection failures. My workaround for my cohort of Linux desktops and servers was to disable IPv6 for both ssh and sshd. This will work for as long as the host network supports dual stacks, but eventually? Then there's the issue of intentional MITM attacks using this vector. If a bad actor has physical access to a subnet, or has compromised a host on that subnet, your goose is cooked. This link mentions some mitigations, but they're quite technical and may require hardware support. https://community.infoblox.com/t5/IPv6-Center-of-Excellence/Holding-IPv6-Ne… So, what is the threat to a home IPv6 user who has WiFi and an Internet of Things with minimal/non-existent security? I personally feel safer behind a nice natted IPv4 firewall with ACL rules between my copper and WiFi subnets. I just feel that I have more control of the situation with a simpler network. Has SUSE addressed this issue? Tell me I don't have to worry about it! Regards, Lew -- To unsubscribe, e-mail: opensuse+unsubscribe(a)opensuse.org To contact the owner, e-mail: opensuse+owner(a)opensuse.org

3 years, 8 months

[opensuse] Again, trying to find a suitable video editor.

by Carlos E. R.

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hi, I simply can't find a suitable video editor that works. My goal is to extract the interesting parts of a TV recording. Ie, mark the start of the movie, the end, the commercials inside, and dump all that into a single file, perhaps recoding. One limitation is that movies here have two sound tracks, one in Spanish, and the other one in the original language, typically English. I want to keep both, obviously. I don't need any transition or effect, just a simple editor that allows me to remove unwanted sections. I have tried: pitivi - crashes on start LiVES - works for an hour at 100% CPU and can't load the file. dvbcut - says my mpeg file is not a video (and it certainly is!) tragtor - can convert, but not edit. openshot - almost. My video has two sound tracks, and this tool ignores the second track. cinelerra-cv - I can't make head or tails of it. I tell it to load a video file, it does, but then I don't see how to do anything. It doesn't even display the video. I may have to read the manual, but I dislike having to read a manual for a GUI. Still... kdenlive - Well... crashes too often. I can mark the cuts, but it does not display what I'm cutting. And only one sound track. HandBrake - no edit. Avidemux - one sound track only. Kino - abandonware. Lightworks ?? Shotcut - Segmentation fault on start. cer@Telcontar:~/Videos/Fusion/trabajo> shotcut QSqlDatabase: QSQLITE driver not loaded QSqlDatabase: available drivers: QMYSQL QMYSQL3 QSqlQuery::exec: database not open QSqlQuery::exec: database not open Database::Database(QObject*) Failed to get version. QSqlQuery::exec: database not open bool Database::upgradeVersion1() Failed to create thumbnails table. Database version is 0 Segmentation fault cer@Telcontar:~/Videos/Fusion/trabajo> Flowblade ?? I don't understand the tool. May need some reading. At least it runs. I would like something that would produce a command line to ffmpeg in a GUI. Then I could modify further the options. This would be ideal. tragtor works this way, but has no editor. - -- Cheers Carlos E. R. (from 13.1 x86_64 "Bottle" at Telcontar) -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.22 (GNU/Linux) iEYEARECAAYFAlbbJ80ACgkQtTMYHG2NR9UmagCeK8UbAAz5/lAjBvscdhzBuxtb WUQAn2jmzoy7810hldN4WwVWQktgVp2g =muqW -----END PGP SIGNATURE----- -- To unsubscribe, e-mail: opensuse+unsubscribe(a)opensuse.org To contact the owner, e-mail: opensuse+owner(a)opensuse.org

3 years, 9 months

[opensuse] html5 dependencies

by Richmond

This website: http://www.bbc.co.uk/html5 contains an html5 video. You have to be opted in to html5, it says if you are on the right hand side. This video wasn't working for me in seamonkey or firefox, until I enabled the Packman repository and installed Mplayer. So I think there are some dependencies which are not satisfied by installing firefox. But I think I read that firefox downloads some things on the fly for html5, so maybe it should check for libraries too? -- To unsubscribe, e-mail: opensuse+unsubscribe(a)opensuse.org To contact the owner, e-mail: opensuse+owner(a)opensuse.org

4 years, 2 months

[opensuse] Digikam, etc. cannot upload from iPhone 6S

by Dennis Gallien

Not sure if this is a KDE or Solid (or other) issue . . . sorry for message length but trying to include all relevant data I know of . . . Digikam has worked great importing/deleting photos from iPhone 6S for a year, working on 13.2. I recently upgraded 13.2 => 42.1 => 42.2 about a month ago. I can't honestly say whether this problem arose with the Leap upgrade, or with an update since. When Digikam opens it displays the following error message: The specified camera ("/org/kde/solid/udev/sys/devices/ pci0000:00/0000:00:12.2/usb1/1-1/1-1:4.2/net/eth2") is not supported. ~>lsusb shows the camera as: Bus 001 Device 002: ID 05ac:12a8 Apple, Inc. Switching to a different port , , , ~>lsusb Bus 004 Device 003: ID 05ac:12a8 Apple, Inc. Digikam then throws this error when started: The specified camera ("/org/kde/solid/udev/sys/devices/ pci0000:00/0000:00:13.2/usb4/4-2/4-2:4.2/net/eth1") is not supported. Yet still Digikam (and other photo apps) autodetects the phone. It is shown under the Import menu, and when Import for the phone is selected the second Digikam windows opens. At bottom it shows the correct camera media capacity and amount used, while under the Device menu it shows the phone is recognized on the correct usb port. It shows that upload and delete are supported functions. But it cannot see the photo files. (It is seen as an "iPhone5 (PTP mode)"; gphoto2 --list-cameras does not show iPhone6 but that was not a problem before; the udev hwdb shows the same phone ID for both iPhone5 and iPhone6. Tested this with my wife's iPhone 5 and the errors were the same.) gphoto2: --list-ports sees the correct port --list-folders sees the "store_feedface" folder but no files. --abilities shows iPhone 5 with USB support, file preview and upload = yes When I try kio camera:/ in Dolphin I get: camera:/Apple%2520iPhone%25205%2520(PTP%2520mode)@usb:001,002/ An "Apple iPhone 5 (PTP Model)" folder appears with the sub-folder "store_feedface" but no DCIM folder nor any photos. When I try gtkam it can see the iPhone "store-feedface" but not DCIM, no files. Experimenting with this app I once got this error, too: An error occurred in the io-library ('Could not claim the USB device'): Could not claim interface 0 (Device or resource busy). Make sure no other program (gvfs-gphoto2-volume-monitor) or kernel module (such as sdc2xx, stv680, spca50x) is using the device and you have read/write access to the device. Similarly, when I tried Shotwell it threw: Unable to fetch previews from the camera: Could not claim the USB device (-53) But strangely, darktable uploads (and deletes) the iPhone files even though it uses libgphoto2.so.6 just as all the other apps do. Still works fine with my Canon A570. Digikam Version 5.4.0 Using: KDE Frameworks 5.26.0 Qt 5.6.1 (built against 5.6.1) My suspicion is that the problem is connect to the error "could not claim USB device", as I've seen that several times. Just a wild-ass guess. I checked Bugzilla KDE and Solid, found multiple instances of PTP cameras being recognized but files not retrievable over the last ~5 years. But nothing recent. I did find a 2011 bug report on Ubuntu Launchpad which was reported again in Dec claiming a regression in Digikam, but it wasn't verified. (And that was Digikam4, not 5). Any suggestions where to look further? Again, apologies for length. TIA, Dennis P.S. KDE folks might want to note that the Device Notifier entry always displays the camera twice rather than just once when it's attached, and when the "Open with File Manager" option is chosen, the app errors on not finding the KDE4 version of Dolphin: KDEInit could not launch 'dolphin4': Could not open library 'libkdeinit5_dolphin4'. Cannot load library libkdeinit5_dolphin4: (libkdeinit5_dolphin4: cannot open shared object file: No such file or directory) -- To unsubscribe, e-mail: opensuse+unsubscribe(a)opensuse.org To contact the owner, e-mail: opensuse+owner(a)opensuse.org

4 years, 4 months

[opensuse] Other problems with 42.2

by James Knott

I've come across a couple of other problems with 42. One, the list of open windows, either the horizontal row of thumbnails or vertical list will open and I can't clear it. The other is clicking on the task bar has no effect. These, along with the locking desktop make 42.2 a pain to use. -- To unsubscribe, e-mail: opensuse+unsubscribe(a)opensuse.org To contact the owner, e-mail: opensuse+owner(a)opensuse.org

4 years, 5 months

[opensuse] Tor Browser failed

by Marc Chamberlin

Ok, I have tried this over a dozen times now, at different times of the day. Me thinks something is sick... I am running openSuSE Leap 42.2 on an x64 laptop. I used YaST to install Tor and trying to get it set up. When I run the Tor Browser launcher it brings up a dialog box telling me to download the Tor Browser. (I believe it is trying to get the latest version?) But every time it tries I get a failure report telling me that the Signature Verification Failed with an additional ominous warning telling me I might be under attack or there might be a networking problem. I don't have any other networking issues and if I am under attack I have no clue what to do about it. Nothing helpful is suggested in this warning, except just to try downloading it again. HUMP! As an aside, this Tor Browser down-loader needs to be more robust. It seems pretty amateurishly designed and has the feel of being an add-on enhancement. In this age, most down-loaders are designed so as not to require a complete redo of the download in the event of corruption. The way I understand them, most stage downloads in small checksumed pieces and sequenced so that the download can be reconstructed when finished. If any one piece fails, then only that piece needs to be resent, not the entire fricking package! And yeah I know, this is an all volunteer effort, but I am not sure who or where to report this to, is this an openSuSE distribution issue? Should I submit an enhancement request to OpenSuSE? Is this a TOR project issue and do I try to track down their enhancement request system?, or somewhere else? Is there another route I could take to get the Tor Browser, with instructions on how to integrate it within the OpenSuSE Tor package framework? It appears like I might be able to get it directly from the TOR website, but that comes as a tar package and I am not sure what, if anything, I need to do to integrate it with the rest of the OpenSuSE TOR package/framework that I downloaded/installed via YaST. As always, thanks in advance for helping... Marc. -- "The Truth is out there" - Spooky -- To unsubscribe, e-mail: opensuse+unsubscribe(a)opensuse.org To contact the owner, e-mail: opensuse+owner(a)opensuse.org

4 years, 5 months

[opensuse] STIX fonts

by Tom Kacvinsky

STIX fonts 2.0 has been released http://www.stixfonts.org I think this would be reat to have in openSUSE for Libre Office. There are five OpenType fonts, four for the regular alphabet, and one for math (laid out according to the Unicode extensions for mathematical symbols). Problem with using them for TeX is that they have yet to be split into several Type 1 fonts. as I don't think there is a Unicode/OpenType aware TeX just yet. What do you all think? Tom -- To unsubscribe, e-mail: opensuse+unsubscribe(a)opensuse.org To contact the owner, e-mail: opensuse+owner(a)opensuse.org

4 years, 5 months

[opensuse] getdelays not showing reason for delay... shouldn't it?

by L A Walsh

I've noticed several commands taking > 1 second that used to happen "instantaneously" and I'm trying to find out what's causing the delay. I try to use "getdelays", but it shows no more delay for a delayed command than for a sleep -- but a command like 'man' seems to have >1 sec of unaccounted for time: Example: First I try "sleep 1": # time getdelays -i -d -c /usr/bin/sleep 1 printing IO accounting print delayacct stats ON PID 30145 CPU count real total virtual total delay total delay average 3 1000000 1373539 79022 0.026ms IO count delay total delay average 0 0 0ms SWAP count delay total delay average 0 0 0ms RECLAIM count delay total delay average 0 0 0ms sleep: read=0, write=0, cancelled_write=0 1.00sec 0.00usr 0.00sys (0.19% cpu) --------- Total time = 1sec (w/get delays showing < 1ms delay). Looks fine. Then a man lookup ('man sleep>/tmp/man'): # time getdelays -i -d -c /usr/bin/man sleep >/tmp/man; tail -12 /tmp/man PID 31255 CPU count real total virtual total delay total delay average 113 1151000000 1149782817 1349827 0.012ms IO count delay total delay average 0 0 0ms SWAP count delay total delay average 0 0 0ms RECLAIM count delay total delay average 0 0 0ms man: read=0, write=0, cancelled_write=0 -------------- 1.19sec 0.00usr 0.00sys (0.25% cpu) =========================== 'man' is taking >1 second, even though "getdelays" shows there is less "delay" than for sleep -- so where would the time be going? Ideas? Thanks! -linda -- To unsubscribe, e-mail: opensuse+unsubscribe(a)opensuse.org To contact the owner, e-mail: opensuse+owner(a)opensuse.org

4 years, 5 months

[opensuse] Is a Squid caching proxy still useful?

by Bjoern Voigt

What do you think, is a Squid caching proxy server still useful these days? Personally I used the Squid caching proxy for SOHO networks on SuSE/openSUSE last time some years ago. Internet bandwidth is still limited and never enough. But I am unsure, if it's worth to setup Squid caching proxy servers today. I see a lot of factors, which make the acceleration effect of the caching proxy less effective: * better Internet bandwidth for most users compared with former times * busy caching proxy servers may slow down the traffic * the share of dynamic content is high today * many content can't be cached, because it may be somehow private (HTTPS, authenticated, cookies ...) * even static content is often marked as dynamic and so it can't be cached (HTTPS, cookies, ...) * CDNs cause the problem, that each user gets copies of the same content from different hosts * many requests (AJAX, REST ...) are pure dynamic and can not be cached * users do not expect proxy servers anymore and some browser apps (on mobile devices) can not deal with proxies * client-side caches in browsers may became better I see Squid proxies or other proxies (caching or not) still useful for special use-cases: * reverse proxies (static content can be controlled by you) * black listed or white listed Internet access * other security related use-cases: malware scanner on gateway, leak prevention, proxy-only Internet access, ... Greetings, Björn -- To unsubscribe, e-mail: opensuse+unsubscribe(a)opensuse.org To contact the owner, e-mail: opensuse+owner(a)opensuse.org

4 years, 5 months

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

2005

2004

2003

2002

2001

2000

1999

1998

1997

1996

1995

1994

1993

1992

openSUSE Users March 2017