randomuser1975 | I came in earlier about my bonked chmod. Is it possible to download a list of fresh-install permissions and use that to script a fix? | 02:23 |
---|---|---|
fsmithred | randomuser1975, try the desktop-live iso | 02:25 |
randomuser1975 | I don't have access to another computer at this time. Also, any solution I perform will be later as I am at work. I am simply seeking information at this time. | 02:26 |
fsmithred | also, you got an answer after you left | 02:26 |
fsmithred | <rwp> randomuser1975 did not stay long enough for an answer. But the permissions displayed in that photo looked okay to me. | 02:26 |
fsmithred | <rwp> I am not a fan of those "hardening" scripts. Maybe at one time those had a purpose. But now they just break things. | 02:26 |
fsmithred | <rwp> Because if there were a real problem to begin with then it would have gotten fixed in the OS distro already. | 02:26 |
randomuser1975 | The permissions are not. I can't even su because su can not access groups | 02:27 |
randomuser1975 | I can't start x11, init.d screams at me about sshkeys unsecured | 02:28 |
randomuser1975 | I can access root in the recovery console | 02:28 |
randomuser1975 | Fsmithred, rwp | 02:30 |
fsmithred | the permissions in that pic look right to me, too | 02:30 |
randomuser1975 | What's the problem then? | 02:30 |
fsmithred | you ran some script? What did the script do? | 02:31 |
randomuser1975 | Just a few select files/directories fucked? | 02:31 |
fsmithred | I have no idea what the problem is. | 02:31 |
randomuser1975 | The script was a solution posted to ubuntu forums | 02:31 |
randomuser1975 | It was 4 or 5 lines | 02:31 |
fsmithred | that doesn't explain what id did | 02:31 |
randomuser1975 | `chmod -R xxx /dir` | 02:31 |
fsmithred | yeah, that can definitely fuck things up | 02:32 |
randomuser1975 | Yes, I'm aware | 02:32 |
randomuser1975 | As I said, it found its way across the net it appears | 02:32 |
fsmithred | something below the level of / needs permissions that are not xxx | 02:33 |
randomuser1975 | It was posted originally to ubuntu forums as a solution to "I accidently ran chmod 777 /" | 02:33 |
fsmithred | ssh keys should be chmod 400, I know that much | 02:34 |
randomuser1975 | I meant xxx as a variable | 02:34 |
fsmithred | so did I | 02:34 |
randomuser1975 | Each line was different | 02:34 |
randomuser1975 | Yes | 02:34 |
fsmithred | which four dirs got hit? | 02:34 |
randomuser1975 | I can login but maybe the issues were not as big as I thoughy | 02:34 |
randomuser1975 | All of them | 02:34 |
randomuser1975 | The first line was a single chmod command for 5 or so dirs | 02:35 |
randomuser1975 | You can find it online | 02:35 |
fsmithred | for a few year, I wanted to post on ubuntu forum with the title "chmod 777: RESIST THE URGE" | 02:35 |
randomuser1975 | I'm not stupid enough to do /that/ | 02:36 |
fsmithred | normally you don't need to change the permissions on any system files | 02:36 |
randomuser1975 | I was just trying to reset the system to its default chmod | 02:36 |
randomuser1975 | Since my initial problems werw with alsa | 02:36 |
randomuser1975 | Then I discovered that freshclam couldn't access its libraries | 02:37 |
randomuser1975 | So I saught to fix it to defaults | 02:37 |
randomuser1975 | Found this | 02:37 |
randomuser1975 | Only after did I see it shared elsewhere and responses were "This is stupid" and "It bricked my system" | 02:38 |
randomuser1975 | Do you have any suggestion at this time? I must return to the floor at work. I get home at 11 pst | 02:39 |
fsmithred | only suggestion is to boot the live and see what permissions are in the dirs you changed | 02:40 |
fsmithred | assuming you don't want to reinstall | 02:40 |
randomuser1975 | Ok | 02:40 |
randomuser1975 | I'm on my lunchbreak now, seeking more info for when I go home | 05:06 |
randomuser1975 | I am curious why distros don't have a list of default permissions avalible on their sites | 05:06 |
randomuser1975 | It would benefit errors like this, and be wise from a security viewpoint | 05:07 |
randomuser1975 | Fsmithread, rwp | 05:07 |
randomuser1975 | Golinux | 05:07 |
randomuser1975 | After talking earlier about this, it does seem now less significant an issue than previously thought | 05:08 |
randomuser1975 | My only problem is I don't have another computer to download the live install nor a usb | 05:08 |
randomuser1975 | What are priority files I should look at to at least give me su and x11 | 05:09 |
golinux | Yes? | 05:09 |
randomuser1975 | Golinux, I've fucked my chmod and recommend that there be a file with fresh-install permissions | 05:10 |
golinux | I haven't been following your tale of woe . . . | 05:10 |
randomuser1975 | I think that'd benefit a lot of users of multiple distros | 05:11 |
golinux | I am drowning in colors atm | 05:11 |
golinux | https://dev1galaxy.org/files/356387.png | 05:11 |
randomuser1975 | Golinux, I will copypaste from the top | 05:12 |
onefang | I suspect "I fucked up X, there should be a readme for how to fix X" may result in looooooots of fix_X_README.txt. | 05:12 |
randomuser1975 | 5] randomuser1975: [Devuan 3] [Chmod] Issues with System-Wide Permissions | 05:12 |
randomuser1975 | [14:15] randomuser1975: I had run Lynis, a system security hardening script. Following its instructions, I changed the chmod to numerous files to much more secure | 05:12 |
randomuser1975 | [14:15] randomuser1975: ones. However, this caused permission errors with both alsa, and libraries. I saught the default permissions to restore my system at the directory root. In doing so, I discovered a script called "FixPermissions" originally posted to the Ubuntu Forums. Running this bricked my system. Looking around, this script apparentky has found its way around the net, bricking other people's systems (haha). | 05:12 |
randomuser1975 | [14:15] randomuser1975: | 05:12 |
randomuser1975 | [14:15] randomuser1975: I am able to access root only through the Kernel's recovery console. Attatched Image is the permission changes post-script. I have access to fix this, but I have no idea what to do. Please help. | 05:12 |
randomuser1975 | [14:17] randomuser1975: https://i.4cdn.org/g/1611432879315.jpg | 05:12 |
randomuser1975 | [14:20] randomuser1975: Reinstilation is undesirable at this time | 05:12 |
golinux | I can see it I just don't have brain space to process. | 05:12 |
randomuser1975 | Ok | 05:13 |
randomuser1975 | The issue may not be as severe as thought | 05:13 |
onefang | Copy permissions off a live ISO. | 05:13 |
randomuser1975 | I have root access through single-user mode, I just need to know what to fix for basic access then go from there | 05:13 |
randomuser1975 | I don't have the abilility to download nor run LiveISO at this time. It is my only computer rn | 05:14 |
randomuser1975 | So Idk if I'm asking if you could do it or not, but I need to start fixing somewhere | 05:14 |
randomuser1975 | As I said, I don't understand why distros don't have a list of default permissions | 05:15 |
randomuser1975 | I think it'd be trivial | 05:15 |
randomuser1975 | Host it on git or the site or ftp | 05:15 |
onefang | See my comment above. It might be trivial, but there's loooooots of trivials that add up to not so trivial. | 05:16 |
randomuser1975 | rpm apparently has the ability.to fix installed packages, but dpkg/apt does not | 05:16 |
randomuser1975 | Onefang, yeah, but all I seek is to restore system-wide chmod from the point of fresh-install | 05:17 |
onefang | It's documented. On the live ISOs. If you can download the document with these details, you could download a small ISO. | 05:18 |
randomuser1975 | I'm on my phone | 05:19 |
randomuser1975 | I could download both, but not mount or run it in the current state | 05:19 |
randomuser1975 | In fact, I believe I'll have to manually type it once I have it | 05:20 |
onefang | You have root access through single user mode, no dd or mount command? | 05:21 |
randomuser1975 | I have root through sum, I haven't had the opportunity to check much else. I own no usb nor blank cd at this time | 05:22 |
randomuser1975 | If I must, I suppose I could pick up these items | 05:22 |
onefang | Or loopback mount the ISO file. | 05:22 |
randomuser1975 | I'd rather attempt to wget a file, and prepend `chmod` to each line | 05:23 |
onefang | In the absence of such a file.... | 05:23 |
randomuser1975 | Once I have the iso, what command do I run to get the chmod of all files | 05:23 |
onefang | I would start with "ls -la", or something similar. | 05:24 |
randomuser1975 | Not tree? | 05:24 |
randomuser1975 | Let me ask this again, onefang, what files are priority | 05:26 |
randomuser1975 | As in, to get su and x11 running again | 05:26 |
tuxd3v | randomuser1975, what is your 'umask'? | 05:26 |
randomuser1975 | 022 | 05:27 |
randomuser1975 | Changed from 027 at lynis' suggestion before the bigger fuckup | 05:27 |
tuxd3v | well 0022 is the default for devuan | 05:28 |
tuxd3v | I also have it | 05:28 |
tuxd3v | the 027 is the one that should inibit you from doing things | 05:29 |
tuxd3v | its more restrictive :) | 05:29 |
randomuser1975 | Ah, I had it backwards iirc | 05:29 |
randomuser1975 | I'm not at my terminal rn | 05:29 |
randomuser1975 | I'm seeking info while on lunch at work | 05:29 |
randomuser1975 | I'll be back | 05:30 |
tuxd3v | the umask is something that you subtract from the forlder permissions to get the final permissions.. | 05:31 |
tuxd3v | ho.. gone? =.= | 05:31 |
tuxd3v | onefang, you said you broke your X? | 05:32 |
tuxd3v | was it an example to the user <randomuser1975, or you really broke it? | 05:32 |
tuxd3v | :) | 05:32 |
onefang | It was the theoretical generic X, not my X in particular. B-) | 05:33 |
tuxd3v | nice! | 05:34 |
tuxd3v | :) | 05:34 |
randomuser1975 | I am now at my terminal if anyone is willing to aide me further | 08:56 |
randomuser1975 | I have returned my umask to default 022 and am rebooting out of SUM | 08:58 |
rrq | chmod 4755 /bin/su | 08:58 |
randomuser1975 | .ok | 08:59 |
randomuser1975 | Going back to SUM to do that real quick | 08:59 |
randomuser1975 | Done | 09:00 |
randomuser1975 | Done | 09:00 |
randomuser1975 | It's now safe to login as standard to test it, I assume? | 09:00 |
randomuser1975 | I'm doing so now | 09:01 |
randomuser1975 | Inet.d screamed about ssh keys being fucked again | 09:02 |
randomuser1975 | Loging in | 09:02 |
rrq | same for fusermount mount ntfs-3g umount and rdisc6 | 09:02 |
randomuser1975 | I now have su working | 09:02 |
randomuser1975 | Those are all in /bin? | 09:03 |
randomuser1975 | I thought some were in /sbin | 09:03 |
rrq | mount.nfs | 09:03 |
randomuser1975 | it seems rdisc6 is not installed | 09:04 |
rrq | some few in /usr/bin as well | 09:04 |
rrq | that's fne | 09:05 |
randomuser1975 | Did for /sbin/mount.nfs | 09:05 |
randomuser1975 | I assume this is towards wgetting the iso | 09:06 |
rrq | bwrap chfn chsh firejail gpasswd ndisc6 newgrp passwd pmount procmail pumount rltraceroute6 sudo in /usr/bin | 09:06 |
randomuser1975 | All 4755 too? | 09:06 |
randomuser1975 | I don't use sudo | 09:06 |
rrq | yes | 09:06 |
rrq | for ssh it needs ~/.ssh to be 700 | 09:06 |
rrq | and possibly ~/.ssh/auhorized_keys to be 600 | 09:07 |
rrq | and you might want /etc/ssh/*key to be 600 as well | 09:08 |
randomuser1975 | Done. I don't have all the packages you list. I should probably reinstall firejail when done. I have use for it | 09:09 |
rrq | that's all fine | 09:09 |
randomuser1975 | After this, I'll probably publish my own default permissions file. I wonder if I could add it to apt | 09:10 |
randomuser1975 | Idk if I'll have time to maintain it | 09:10 |
randomuser1975 | Please continue | 09:10 |
randomuser1975 | And thank you, btw | 09:10 |
rrq | it should let you ssh to the box now and us su ... I don;t knwo about your x problem | 09:11 |
randomuser1975 | This is a laptop, I have no use to ssh in | 09:11 |
randomuser1975 | I have no other comp | 09:11 |
randomuser1975 | That was the impairment to fixing it | 09:12 |
rrq | fair enough. i misunderstood | 09:12 |
randomuser1975 | What should I do further | 09:12 |
randomuser1975 | The xorg log reads | 09:14 |
randomuser1975 | drmSetMaster: Permission denied | 09:14 |
rrq | further down it tells about a log file | 09:15 |
randomuser1975 | AddScreen/ScreenInit failed for driver 0 | 09:15 |
randomuser1975 | This is the log file | 09:15 |
rrq | further down it tells about another log file | 09:15 |
randomuser1975 | I'm in the only one, in .local/share/xorg/Xorg.0.log | 09:16 |
randomuser1975 | I grepped permission error | 09:16 |
randomuser1975 | There is also a dbus permission error at | 09:16 |
randomuser1975 | ./var/run/dbus/system_bus_socket | 09:17 |
randomuser1975 | The error is from dbus_core, and it may be minor as it is from org.freedesktop.Dbus.Error.AccessDenied | 09:18 |
randomuser1975 | This is x11 as a standard user | 09:19 |
randomuser1975 | I will try root | 09:19 |
randomuser1975 | X11 opens with root | 09:20 |
rrq | I believe there are quirks involved wrt running startx as root or non-root but you'll have to wait for other people on that ... I'm using the "standard Devuan xfce" setup | 09:20 |
randomuser1975 | This may be due to the change in ascii | 09:20 |
randomuser1975 | I remember having to change settings per a changelog due to this behavior | 09:20 |
randomuser1975 | Anyway, can we continue with checking anything else? | 09:21 |
randomuser1975 | The script included /proc and /dev | 09:22 |
rrq | you've got the sticky bit set on the programs that need that; all other programs should be "-rwxr-xr-x" (755) I suppose | 09:24 |
randomuser1975 | And /var | 09:24 |
randomuser1975 | Really evetything | 09:24 |
randomuser1975 | Is there an easy way to set that enmasse | 09:24 |
randomuser1975 | Does tor need the stickybit, btw | 09:25 |
randomuser1975 | Tor/torify/torsocks | 09:25 |
randomuser1975 | And fetchmail? | 09:25 |
rrq | don't know; if you have disk space you can set up a chroot with everything installed and check | 09:26 |
rrq | or use the live iso (and check it) | 09:28 |
randomuser1975 | Could you please guide me to download it? | 09:30 |
randomuser1975 | I have not used chroot before | 09:30 |
rrq | yes the live iso is "easier" .. let me find a fast mirror | 09:32 |
rrq | usually fast: https://mirror.leaseweb.com/devuan/devuan_ascii/desktop-live/devuan_ascii_2.1_amd64_desktop-live.iso | 09:33 |
rrq | its 1G | 09:33 |
rrq | command: wget https://mirror.leaseweb.com/devuan/devuan_ascii/desktop-live/devuan_ascii_2.1_amd64_desktop-live.iso | 09:33 |
rrq | saves it as file devuan_ascii_2.1_amd64_desktop-live.iso | 09:34 |
randomuser1975 | Ok | 09:34 |
rrq | do you have usb or dvd+media ? | 09:34 |
randomuser1975 | Downloading | 09:35 |
randomuser1975 | Not presently, no | 09:35 |
randomuser1975 | Which was another issue | 09:35 |
randomuser1975 | Also for record, I checked the ascii release notes and I have already enabled `allow_root_login` in xorg-common | 09:36 |
randomuser1975 | So the issue is not the known qwerk | 09:36 |
randomuser1975 | 65% | 09:36 |
randomuser1975 | 90% | 09:36 |
randomuser1975 | Done | 09:37 |
rrq | it's a little bit trickier to run it directly from the disk ... esp with wokring X11 hmmm | 09:37 |
rrq | without | 09:38 |
randomuser1975 | That's ok | 09:38 |
randomuser1975 | Should I extract the iso or attempt to mount it | 09:38 |
rrq | yes you can browse the dis; the running file system is inside a squasfs file on the disk | 09:39 |
rrq | so mount the disk | 09:39 |
rrq | then mount that squashfs | 09:39 |
randomuser1975 | Which is better, /mnt, or /media/sr0 | 09:40 |
rrq | mkdir /mnt/disk /mnt/fs | 09:40 |
randomuser1975 | One moment | 09:40 |
rrq | mount file /mnt/disk | 09:40 |
randomuser1975 | Mounted in read-only mode | 09:41 |
rrq | find the squasfs ... (I'm still downloading) | 09:41 |
rrq | then: mount /mnt/disk/squasfs /mnt/fs | 09:42 |
randomuser1975 | You mean /live/filesystem.squashfs? | 09:42 |
rrq | sounds good | 09:42 |
rrq | mount /mnt/disk/live/filesystem.squashfs /mnt/fs | 09:43 |
randomuser1975 | Done | 09:43 |
randomuser1975 | I'm in | 09:43 |
rrq | ok now you can review /mnt/fs and compare ... it doesn't have fetchmail installed though | 09:44 |
randomuser1975 | You know who I am, dontcha | 09:44 |
randomuser1975 | Heh | 09:44 |
randomuser1975 | What isvthe best way to compare | 09:45 |
rrq | the entries in /mnt/fs/dev are the initial static entries; the rest get created dynamically | 09:45 |
randomuser1975 | I'm sure there's a standard way | 09:45 |
rrq | make two "ls -alR" logs and diff them, perhaps? | 09:46 |
rrq | though only on subdirs below / ... not / itself | 09:46 |
rrq | skip /proc /dev and /sys which are (mostly) dynamic | 09:47 |
rrq | and /run | 09:47 |
rrq | re fetchmail and firejail and tor* it might be easiest to purge and install | 09:48 |
randomuser1975 | I performed it on both the fs and the system | 09:48 |
randomuser1975 | ./bin/ /sbin/ /etc/ /lib/ /usr/ | 09:49 |
randomuser1975 | Running a diff on both log files prints out content I do not understand | 09:49 |
randomuser1975 | I see why now | 09:50 |
randomuser1975 | It doesn't list permissions, it's colorcods | 09:50 |
rrq | it does get a bit messy... perhaps "diff -y --suppress-common-lines ..." and pipe that into a file | 09:51 |
randomuser1975 | Did so | 09:51 |
randomuser1975 | Numerous output here | 09:51 |
randomuser1975 | Still in a color-coded format I do not understand | 09:52 |
rrq | righ hmm, your ls has colors I suppose | 09:53 |
randomuser1975 | Yes | 09:53 |
randomuser1975 | But I expected numerical chmod | 09:53 |
rrq | maybe rerun with ls --color=never | 09:54 |
randomuser1975 | This list is still not saying chmod, only packagelists | 09:55 |
randomuser1975 | That is, filelists | 09:55 |
rrq | try: find . -type f | xargs -n 1 -I+ stat -c "%a %n" '+' | 09:56 |
rrq | to make the file lists | 09:56 |
rrq | or maybe put the name before the code: "%n %a" | 09:57 |
rrq | then diff gets happier | 09:57 |
randomuser1975 | Can I use xargs without x11? | 09:58 |
rrq | yes | 09:58 |
randomuser1975 | One moment | 09:58 |
rrq | that x means something else than X11 | 09:59 |
randomuser1975 | Ah | 09:59 |
rrq | "execute" maybe, or "execute for" | 10:00 |
rrq | https://en.wikipedia.org/wiki/Xargs | 10:00 |
rrq | xargs = "eXtended ARGuments" | 10:01 |
randomuser1975 | Sorry 'bout that | 10:01 |
randomuser1975 | I missed your instruction to purge and reinstall those packages | 10:01 |
randomuser1975 | So I did so | 10:01 |
randomuser1975 | Now to continue | 10:01 |
randomuser1975 | Now we're cooking with gas | 10:03 |
randomuser1975 | Command still running | 10:03 |
randomuser1975 | All these files are suffixed with the chmod | 10:03 |
randomuser1975 | Shouldn't they be prefixed? | 10:03 |
randomuser1975 | I'm changing the order | 10:04 |
rrq | as file lists it works better to have the file name first | 10:04 |
rrq | you maight even want to add an A nd B to the file lists, as "%n %a A" and "%n %a B" in order to postprocess them by mreging and getting rid those that are equal ... | 10:04 |
randomuser1975 | Verywell | 10:04 |
randomuser1975 | Ah yes | 10:04 |
randomuser1975 | This produces error | 10:05 |
randomuser1975 | "Cannot stat %n %a B | 10:05 |
randomuser1975 | I probably bonked syntax | 10:06 |
rrq | the quotes ? | 10:06 |
randomuser1975 | Nay | 10:06 |
rrq | find . -type f | xargs -n 1 -I+ stat -c "%n %a A" '+' | 10:06 |
randomuser1975 | "%n %a A" "%n %a B" '+'... | 10:07 |
randomuser1975 | Ah | 10:07 |
rrq | that would be for the laptop dirs | 10:07 |
randomuser1975 | This'll take a while I'm sure | 10:07 |
rrq | find . -type f | xargs -n 1 -I+ stat -c "%n %a B" '+' | 10:07 |
rrq | would be for the squashfs dirs | 10:07 |
randomuser1975 | I'm still in /mnt/fs | 10:07 |
randomuser1975 | So in this case | 10:07 |
randomuser1975 | A is the squashfs | 10:08 |
randomuser1975 | And B is the bonked system | 10:08 |
rrq | fair enough | 10:08 |
randomuser1975 | Interesting errors once going back to / | 10:09 |
randomuser1975 | ./rub/udev/* no such file or directory | 10:09 |
randomuser1975 | All of it being in /run/udev/links/x2f* | 10:10 |
rrq | skip /erun .. it's dynamic | 10:10 |
rrq | skip /dev /proc /run and /sys | 10:10 |
randomuser1975 | I'm running your command from / with no additional arguments | 10:10 |
rrq | then it'll traverse into /mnt/fs as well | 10:11 |
randomuser1975 | What should I do | 10:11 |
rrq | well.. wait :) | 10:11 |
randomuser1975 | I'm cding into dirs now and prepending the log with >> | 10:12 |
randomuser1975 | The original was in /root/log.log | 10:12 |
rrq | so you only get two lists then, A and B ? wwith A being rooted in the squasfs | 10:12 |
randomuser1975 | This one is /root/log1.log | 10:12 |
rrq | ok | 10:12 |
randomuser1975 | Yes | 10:12 |
randomuser1975 | I did /bin | 10:13 |
randomuser1975 | Now /usr | 10:13 |
randomuser1975 | Then /sbin | 10:13 |
randomuser1975 | Then /etc | 10:13 |
randomuser1975 | Then what | 10:13 |
rrq | cat /root/log.log /root/log1.log | sort -uk1,2 > /root/logX.log | 10:13 |
randomuser1975 | Any other dirs | 10:13 |
rrq | possibly /var | 10:14 |
randomuser1975 | Doing /var now | 10:15 |
rrq | all added into log1.log I hope | 10:15 |
rrq | then sorting | 10:16 |
randomuser1975 | your command prouuces a file with the forst 47 lines all B | 10:17 |
randomuser1975 | Ok, there are a few A mixed | 10:17 |
randomuser1975 | How do I sort through this then | 10:17 |
randomuser1975 | Is A only appearing when it's different from B? | 10:19 |
randomuser1975 | I'm confused | 10:19 |
rrq | you should find both A and B for the same file together where they differ in file mod | 10:19 |
randomuser1975 | The first instance of A I find is for /bin/bash | 10:20 |
randomuser1975 | It does not list B next to it | 10:20 |
rrq | a B line without preceding A line indicates a file that where not in the squashfs | 10:20 |
randomuser1975 | There are numerous | 10:20 |
randomuser1975 | It's almost all B | 10:20 |
rrq | an A line without an equal B line indicates a common file with equal file mod | 10:20 |
randomuser1975 | Ok | 10:21 |
randomuser1975 | So if there is a B with no A then it's fucked | 10:21 |
randomuser1975 | Should I be running diff? | 10:21 |
randomuser1975 | I'm using less | 10:21 |
randomuser1975 | None of these appear to be duplocates | 10:22 |
rrq | so .. hmm find all A lines that followed by same file B line (and differing file mod) .. would be an awk | 10:22 |
randomuser1975 | I'm not versed on awk | 10:22 |
rrq | maybe: awk '$1==F { print; } {F=$1;}' | 10:24 |
rrq | that should print all B lines preceded by an equal file (differing mod) A line | 10:24 |
randomuser1975 | Why couldn't I just do "chmod %n %f on squashfs, then | 10:24 |
randomuser1975 | Run it | 10:24 |
randomuser1975 | Do I cat the logx into awk? | 10:25 |
rrq | yes right | 10:25 |
rrq | unless file names have spaces in them ... | 10:25 |
randomuser1975 | This produces an incredibly short list | 10:26 |
randomuser1975 | Most of them being ./share and ./local | 10:27 |
randomuser1975 | All of them B | 10:27 |
randomuser1975 | Only things of note are the first two lines in ./etc and ./lib | 10:27 |
rrq | ok that's all files with different file mod on the squasfs | 10:27 |
randomuser1975 | One is /etc/ssl/openssl.cnf | 10:27 |
rrq | hmm so you need the A line I suppose; different awk | 10:28 |
randomuser1975 | The second is /lib/x86_64/libpopt.so.0.0.0 | 10:28 |
rrq | maybe: awk '$1==F { print F,M; } {F=$1; M=$2}' | 10:29 |
randomuser1975 | And the rest is mostly Wolfenstein Enemy Terretory and supertuxkart | 10:29 |
randomuser1975 | Same output except no letter, A or B suffixed | 10:30 |
rrq | yes but now the file mod of the squashfs | 10:30 |
randomuser1975 | It's the same files | 10:30 |
randomuser1975 | I doubt the squashfs hs SuprtTuxKart and Wolfensten: ET | 10:31 |
rrq | ok; file names with spaces gets messier | 10:31 |
randomuser1975 | There is one difference | 10:32 |
randomuser1975 | Openssl.cnf is 644 on second run | 10:32 |
randomuser1975 | As is libpopt.so.... | 10:33 |
randomuser1975 | These were 755 originally | 10:33 |
rrq | maybe: awk '{X=$0; $NF=""; $(NF-1)=""} $0==F { print Y; } {F=$0; Y=X}' | 10:34 |
rrq | that might handle filenames with spaces | 10:34 |
rrq | but the squashfs doesn't have them anyhow | 10:35 |
randomuser1975 | This produces null output | 10:36 |
rrq | ok, use: awk 'NF!=3 {next;} $1==F { print F,M; } {F=$1; M=$2}' | 10:37 |
rrq | that should discard all lines with spaces in file names | 10:38 |
rrq | then fix up those few files | 10:39 |
randomuser1975 | This again produces the same two files of significance, and only these two files | 10:39 |
randomuser1975 | ./etc/ssl/openssl.cnf 644 | 10:40 |
rrq | so all else is compatible; but of course the squasfs dowsn't have all files the laptop has | 10:40 |
randomuser1975 | ./lib/x86_64-linux-gnu/libpopt.so.0.0.0 644 | 10:40 |
randomuser1975 | Before going forward | 10:41 |
randomuser1975 | This is the /correct/ chmod? | 10:41 |
rrq | yes | 10:41 |
randomuser1975 | I think I should check /dev | 10:42 |
rrq | that should bring you back to having the x11 problem before "running random script to fix" | 10:42 |
randomuser1975 | Lemme check what dirs I had | 10:42 |
rrq | most of /dev is dynamic ... i.e. created at boot | 10:42 |
rrq | I need to go | 10:43 |
randomuser1975 | I did /bin, /usr, /sbin, /etc, /var | 10:43 |
randomuser1975 | Ok | 10:43 |
randomuser1975 | Thank you | 10:44 |
randomuser1975 | I'm trying it out | 10:44 |
randomuser1975 | I truly don't know if this worked, only two files have been modified | 10:44 |
randomuser1975 | On this checking awk at least | 10:44 |
randomuser1975 | And actually | 10:45 |
randomuser1975 | The second file chmod could not find | 10:45 |
gnarface | if you have a script that is getting tripped up by there being spaces in file names, you could just try changing $PS1 to a newline character | 11:07 |
deby | hello, installing things in debian can also enable services automatically. I'm not a fun of this. Can this happen in Devuan too? | 12:03 |
deby | for example if I only install apache2, then apache2 is run every time I boot the system. | 12:04 |
gnarface | deby: it's up to the individual package's maintainers, and yes, it's fairly common for them to be enabled by default. in fact, the ones that don't are the ones that have historically been the biggest problem for people. | 12:06 |
gnarface | deby: luckily it's far easier to disable them here than with systemd, so you really shouldn't worry. just delete the init script and it *really* isn't gonna start. | 12:07 |
gnarface | and no funny business like with systemd where they "oopsie" have it ignore that sometimes or just spastically relaunch everything that shuts down for any reason | 12:08 |
gnarface | it's not complex enough to make mistakes like that | 12:08 |
deby | gnarface: I see. The problem is, that if I'm not vigilant when installing stuff I might not become aware that some service was enabled. | 12:09 |
gnarface | deby: well for the most part if you learn how to manipulate the /etc/rc?.d/ symlinks they can be used to disable launch and usually won't be overwritten by updates | 12:10 |
gnarface | deby: mistakes are made though, it's good to be vigilant either way | 12:10 |
gnarface | i mean, if you're really paranoid about security but you don't trust yourself enough, you could always just run a firewall that blocks inbound traffic. that will work even if some service gets enabled accidentally | 12:11 |
onefang | sysv-rc-conf can be helpful to see what services are enabled, and disabling them. | 12:15 |
gnarface | i just use nmap or nc to run a quick portscan but yea that works too | 12:16 |
gnarface | there are more than one tools to edit the rc?.d symlinks but i prefer to do it by hand usually | 12:17 |
debdog | for the links: just rename them from S$something to K$something | 12:17 |
gnarface | yea, the logic is so simple it almost doesn't need documentation | 12:17 |
gnarface | you can kinda figure it out by inference and observation | 12:18 |
debdog | also, there's a readme inside that folder :) | 12:18 |
gnarface | heh yea | 12:18 |
gnarface | in /etc/init.d/ | 12:19 |
gnarface | oh, it's symlinked from all the /etc/rc?.d/ directories as well i see | 12:19 |
gnarface | at least on ceres | 12:19 |
nieuwland | hi | 13:20 |
nieuwland | we have an old devuan install here that i'm trying to update, but it cant find the package mirrors anymore.. did the mirror dns names change? it's set to nl.mirror.devuan.org whats the new name then? | 13:23 |
luser977 | it's standard for an installed service or server to start immediately. this is BAD. stopnthe service by hand after installing, configure, start again or disable in /etc/rc?.d/ as needed. | 13:24 |
luser977 | alas it's the same in devuan and debian. slackware has it right, no auto start. | 13:27 |
onefang | nieuwland: Use deb.devuan.org for your package mirror, the country code mirrors are deprecated. If you want one that is closer to you, look in https://pkgmaster.devuan.org/mirror_list.txt | 13:30 |
nieuwland | ok thannk! | 13:31 |
nieuwland | it works | 13:31 |
nieuwland | bbl | 13:31 |
user_ | Beowulf audio woes: continued: /etc/init.d/osspd start -> works but had to add: chown root.audio /dev/dsp /dev/adsp /dev/mixer; no sound from pulse | 18:55 |
user_ | syslog shows pulse trying to restart itself with every connection from osspd! | 18:55 |
user_ | Jan 24 19:53:43 beowulf pulseaudio[21771]: [pulseaudio] main.c: D-Bus name org.PulseAudio1 already taken. | 18:55 |
user_ | Jan 24 19:53:43 beowulf pulseaudio[21768]: [pulseaudio] main.c: Daemon startup failed. | 18:56 |
user_ | of course pulse is running, under xfce, just this... what the... | 18:56 |
user_ | Any ideas where to look? osspd provides /dev/dsp and /dev/mixer emulation for pulse | 18:56 |
user_ | -.- | 18:56 |
user_ | Anyone used padsp with a scripting language like perl or tcl? | 18:58 |
user_ | Excellent. Running an interp under padsp shows zero audio devices usable. | 19:01 |
user_ | padsp fakes open() on /dev/dsp but not stat() /dev/dsp | 19:02 |
user_ | Poettering, I hope you are hiccuping hard now. | 19:03 |
user_ | Right, the readme of osspd says it uses padsp as back end. Back to Poettering. | 19:08 |
user_ | So /usr/lib/osspd/ossp-padsp does something which pulse/padsp do not like | 19:13 |
user_ | No log or error messages even with --log=6 | 19:13 |
user_ | Is the /dev/dsp emulation in jack/jackd better? | 19:13 |
user_ | -.- <- this is Morse for 'K'. Means key. As in, answer please :) | 19:14 |
user_ | more strangeness, /dev/shm has several jack related things in it, but jack(d) is not running | 19:23 |
n4dir | try #lau perhaps | 19:26 |
user_ | #lau? | 19:26 |
n4dir | or #opensourcemusicians | 19:26 |
n4dir | ups: linux audio users, yes, lau. I forgot to spell it out | 19:26 |
user_ | right, this is more a #kernel question imho, or at least drivers | 19:26 |
user_ | fluidsynth does the midi job 10 times better than timidity. | 20:12 |
buZz | yeah, especially with a good soundfont | 20:12 |
user_ | Just for laughs, tmidity gets stuck and stutters while fluid does not. Neither is allowed high priority threads or low niceness | 20:13 |
user_ | What happens on beowulf if one deinstalls pulse and does not install jack? | 20:35 |
user_ | No sound? | 20:35 |
n4dir | not for firefucker, iirc. Else sure. | 20:35 |
n4dir | there is a workaround though. | 20:35 |
buZz | alsa should still work fine | 20:35 |
fsmithred | ff-esr does not need pulse | 20:38 |
fsmithred | tor-browser does, and it will work with apulse | 20:38 |
gnarface | user_: everything should still work with bare alsa, and most of it actually does, unless you have a broken driver | 20:41 |
gnarface | (partially-broken alsa driver is a common problem though) | 20:41 |
n4dir | i sure didn't find a way make amsynth and zynaddsubfx use anything but jack | 20:42 |
n4dir | and some more | 20:42 |
user_ | n4dir: amsynth works great with alsa here | 20:42 |
gnarface | well, "partially-broken" can mean that one driver can work for some hardware and software combinations but not others | 20:43 |
user_ | byebye pulse | 20:44 |
gnarface | the stupid shared snd_hda_intel driver has had a long-standing regression with surround sound on my onboard audio device, but after extensive testing it seems like VLC actually works right?!? maybe just for dts/ac3 content though, not sure | 20:44 |
user_ | That thing gave me hives for months. | 20:45 |
gnarface | anyway it suggests that the breakage can be patched around with a clever enough ~/.asoundrc, which is a situation i've seen before | 20:45 |
user_ | I would like to tinker as little as possible with this and just go on with my other projects. | 20:45 |
gnarface | sometimes the driver just misses part of the setup, but certain programs cover it | 20:45 |
gnarface | and in those cases sometimes you can make a custom config | 20:46 |
gnarface | in a fair world you shouldn't have to | 20:46 |
user_ | Is there an xfce tray volume control which works with alsa? | 20:59 |
user_ | there is an xfce4-alsa-plugin | 20:59 |
user_ | on github, depends on gtk... | 21:00 |
user_ | https://github.com/equeim/xfce4-alsa-plugin not in Beowulf | 21:00 |
fsmithred | volumeicon-alsa | 21:00 |
fsmithred | there is no more xfce mixer | 21:01 |
user_ | there is alsamixergui | 21:01 |
user_ | which looks like original Motif from 199x but hey | 21:01 |
user_ | pulse is GONE. | 21:01 |
fsmithred | yeah, it works | 21:03 |
fsmithred | does alsamixergui sit in the panel? Been a long time since I've used it. | 21:04 |
user_ | No | 21:04 |
user_ | I need to restart xfce it does not see the volumeicon now | 21:04 |
user_ | brb | 21:04 |
user_ | Hmm can't add volumeicon to a launcher in the tray. File path is /usr/bin/volumeicon but it does not appear in the launcher's config as installable binary?! | 21:06 |
fsmithred | no need for a launcher. Add it to startup applications. | 21:06 |
user_ | grr it's a tray only app | 21:06 |
fsmithred | why is that a problem? | 21:08 |
user_ | f.ex. it pulls in the network manager icon in the tray and the position is not controllable in the tray using the panel edit controls | 21:08 |
fsmithred | n-m icon should not be affected by volumeicon | 21:09 |
user_ | How come I can't move the tray icon around? | 21:13 |
fsmithred | dunno. I never tried that. | 21:14 |
user_ | AHH it is called "Notification Area" in the panel editor. And it can be moved with the arrows in the list. | 21:14 |
fsmithred | maybe they are in alphabetical order | 21:14 |
fsmithred | the whole thing moves, right? | 21:14 |
fsmithred | or can you move the individual items? | 21:15 |
user_ | yes the volume icon and the network manager icon are in a mini tray | 21:15 |
user_ | which is moved as one item using the arrows in the panel edit and cannot be dragged etc | 21:15 |
fsmithred | I have those two plus hexchat, and they are in alphabetical order from left to right | 21:15 |
user_ | Yes that thing is not so configurable. | 21:15 |
AmeliaFloofPC | is it possible to migrate to OpenRC from a SysVInit install | 21:16 |
fsmithred | yes. apt install openrc | 21:16 |
fsmithred | you'll get on-screen instructions for what to do wtih the symlinks | 21:16 |
fsmithred | at least I think you still have to do that manually. Maybe I'm wrong and it's automatic. | 21:17 |
AmeliaFloofPC | ok | 21:19 |
AmeliaFloofPC | no it did it all | 21:19 |
AmeliaFloofPC | I had to run a command that migrated them | 21:19 |
AmeliaFloofPC | but other than that I am now on OpenRC :) | 21:19 |
user_ | great. Now what? :) | 21:20 |
user_ | What's your beef with syvinit? | 21:20 |
AmeliaFloofPC | It was difficult for me to use | 21:20 |
AmeliaFloofPC | tbh | 21:20 |
AmeliaFloofPC | its nice and hella fuckin stable | 21:20 |
AmeliaFloofPC | I actually do have another issue.... Disk utils like parted and fdisk dont work even though they are installed. They say command not found whenever I run them (As user or as root) | 21:21 |
user_ | Ok so amsynth needs jack, does not run on bare alsa. | 21:24 |
user_ | in despite of permitting selection of alsa in the io controls | 21:24 |
user_ | qsynth also refuses to work w/o jack | 21:25 |
user_ | where does one find alsa-patch-bay ? Or Patchage? | 21:30 |
user_ | http://pkl.net/~node/software/alsa-patch-bay/ hmm not in beowulf packages | 21:31 |
user_ | And no dates on it. W3C HTML 3 compat suggests ancient history and elderberry flavor | 21:32 |
gnarface | AmeliaFloofPC: are you using a graphical login? check the release notes about it | 21:36 |
AmeliaFloofPC | yes? | 21:36 |
AmeliaFloofPC | is there a bug with parted and using xorg? | 21:36 |
AmeliaFloofPC | would switching to tty1 fix it? | 21:36 |
gnarface | i think it might be a permissions backend thing, there was a bug with those before anyway, it's mentioned in the release notes, certain combinations don't work | 21:37 |
gnarface | switching to tty1 might dodge it, not sure | 21:37 |
gnarface | worth a try | 21:37 |
n4dir | user_: alsa-patch-bay isn't the jack-alsa-bridge, is it? | 21:37 |
gnarface | AmeliaFloofPC: http://files.devuan.org/devuan_beowulf/Release_notes.txt | 21:38 |
gnarface | AmeliaFloofPC: you should read the whole thing really, but the part relevant to my earlier comment is the section "### Session management and policykit backends" | 21:38 |
gnarface | there might have been other things that could cause issues like this for you too though... they removed /sbin and /usr/sbin from root's default path | 21:40 |
AmeliaFloofPC | so Im kinda borked basically? | 21:41 |
fsmithred | use 'su -' | 21:42 |
gnarface | no, did you read it? | 21:42 |
gnarface | both issues have simple fixes | 21:42 |
AmeliaFloofPC | I already have a session manager tho | 21:42 |
gnarface | you just have to be aware of them | 21:42 |
fsmithred | the root path fix is independent of any session manager issues | 21:43 |
gnarface | yes, they're different issues | 21:43 |
AmeliaFloofPC | I was talking about the issue with fdisk and aprted | 21:43 |
gnarface | i was too | 21:43 |
fsmithred | that is the root path | 21:43 |
fsmithred | call /sbin/fdisk | 21:43 |
fsmithred | pretty sure it's there | 21:44 |
AmeliaFloofPC | OHHH | 21:44 |
AmeliaFloofPC | ok that makes sense | 21:44 |
AmeliaFloofPC | it works ty | 21:44 |
fsmithred | do you like to run graphical apps as root, started from a terminal? You won't be able to do that with 'su -' | 21:45 |
gnarface | well, not by default anyway | 21:45 |
gnarface | you can make some adjustments though... | 21:45 |
AmeliaFloofPC | do you know where parted is stored | 21:46 |
gnarface | dpkg -S parted | 21:46 |
AmeliaFloofPC | it doesnt mention the installed dir | 21:47 |
AmeliaFloofPC | just the pkg desc and if its installed and like conflicts | 21:47 |
gnarface | did you use capital "S" or lower-cased? | 21:48 |
AmeliaFloofPC | wait | 21:48 |
gnarface | case matters with these | 21:48 |
AmeliaFloofPC | got it to work. | 21:48 |
AmeliaFloofPC | I have parted | 21:49 |
AmeliaFloofPC | thank you guys | 21:49 |
user_ | Ok I made amsynth work on alsa w/o jack with vmpk etc. Requires manual patching with aconnect | 22:08 |
user_ | note: do not change midi instruments from vmpk - it crashes amsynth. | 22:09 |
n4dir | why not just use jack? | 22:12 |
user_ | I just wiped jack and pulse | 22:13 |
user_ | /dev/dsp is provided by alsa or by alsa oss compat? | 22:14 |
fsmithred | must be from alsa-oss because I don't have /dev/dsp. | 22:15 |
user_ | it's osspd | 22:15 |
fsmithred | alsa-utils does not provide /dev/dsp. That's all I know. | 22:16 |
user_ | stumper: with pulse, I had osspd-pulse and I modded /etc/init.d/osspd to add: chown root.audio /dev/dsp etc | 22:16 |
user_ | that worked. Now with osspd-alsa I have the exact same init.d file and the permissions stay root.root on /dev/dsp | 22:16 |
user_ | WHAT THE | 22:16 |
user_ | ok, this is beyond me. | 22:18 |
user_ | I have: chown root.audio /dev/dsp /dev/adsp /dev/mixer 2>/dev/null | 22:18 |
user_ | in osspd in /etc/init.d ; there is no other chown in there | 22:19 |
user_ | I run $@ start and it makes /dev/dsp root.root | 22:19 |
user_ | this is insane | 22:19 |
user_ | I checked I put it where it should be and it used to work | 22:19 |
fsmithred | try root:audio instead of root.audio | 22:20 |
user_ | Something changes perms on /dev/dsp after the script runs. If I change perms on the device manually after the fact they stay | 22:20 |
user_ | root.audio is correct for this machine | 22:20 |
fsmithred | dot works? | 22:20 |
fsmithred | ok | 22:20 |
user_ | I suspect the program deletes the device and re-creates it "later" since it's a daemon | 22:20 |
user_ | later meaning after the script runs | 22:20 |
user_ | adding a sleep 2 before chown in the script fixed it | 22:22 |
user_ | it was what I thought it was, daemon recreates file. | 22:22 |
* fluffywolf spots a floof! | 22:26 | |
user_ | you two get a room | 22:28 |
user_ | the amsynth link I posted above is unrelated to devuan/debian package amsynth, sorry, my mistake. | 22:29 |
grillon | hi there | 22:46 |
grillon | I have two vms on devuan in dhcp I set an IP for them on my default bridge network with libvirt. But my vms still obtain random adress. We have check host and libvirt conf(on libvirt channel) every thing seems ok, they think it's my guest configuration. Do you know what I could check? NB: if I wait few minutes and I do dhclient eth0, I obtain the good IP... | 22:52 |
grillon | If my interpretation of my tcpdump is good. Server want to give 192.168.122.151(as I want) but client reclaim 192.168.122.107 this is the IP I obtain after installing the vm... | 23:04 |
grillon | Ok I see it's in dhclient.eth0.leases | 23:06 |
grillon | can I just erase this file? | 23:06 |
n4dir | grillon you can always mv a file to a *.backup, to test | 23:09 |
n4dir | i guess i would consider if setting the wished IP static in the interfaces file. | 23:10 |
grillon | yes but I want to configure more than one guest | 23:10 |
grillon | let's try the backup file thank you | 23:10 |
grillon | it's just incrementing | 23:17 |
grillon | instead of 107 I obtain 108 then 109 then 110 etc. | 23:18 |
n4dir | i stick to i would try to enforce it also in /etc/network/interfaces, but i am neither in libvirt nor in static IP addresses. Perhaps pointless comment | 23:19 |
n4dir | if no one answers here you can probably also ask in #linux or such | 23:19 |
n4dir | doesn#t seem like a devuan specific problem | 23:19 |
n4dir | short version: good luck | 23:20 |
grillon | thank you I was on #virt channel and we check together libvirt conf and it's ok, they think problem is in my guest conf that's why I ask here | 23:21 |
n4dir | ah, good then. | 23:21 |
n4dir | just wait. or ask again if it will take to long. i guess | 23:22 |
grillon | thank you @n4dir I wait | 23:35 |
rrq | grillon: which dhcp server is used, and how is that configured for static service (i.e. [macaddress or cliet hostname]-to-[IP] assignments) | 23:38 |
grillon | I use a virtual bridge | 23:38 |
grillon | my config is https://controlc.com/ae87343e | 23:39 |
rrq | do you mean that the networking is set up using a bridge where VM taps gets gridbed to the host outboutn interface, and that that bridging is some wway is associated with dhcp service? | 23:40 |
rrq | gridbed = bridged, and outboutn = outbound | 23:40 |
grillon | yes tht's what I mean | 23:44 |
grillon | my virtual bridge is associated with my physical host interface and acte as gateway, switch, and dhcp server | 23:45 |
rrq | one issue would be that, if bridged with the outbound interface, the outer dhcp service (on a eg router) will see and act on dhcp requests; in competition with your gateway host dhcp ... but that's a different issue | 23:48 |
rrq | or not ... | 23:49 |
rrq | but, presumably that <dhcp>...</dhcp> block is intended to declare the static assignments | 23:51 |
grillon | host is not in the same network | 23:52 |
grillon | host network is 192.168.1.0/24 and guest network is 192.168.122.0/24 | 23:53 |
rrq | bridging operates at Etherent level, not IP level | 23:53 |
rrq | the purpose with bridging is to join interfaces to be on "the same network" | 23:53 |
grillon | I do not think my bridge act as dhcp server on host network | 23:54 |
grillon | it's like different physical network...physical and virtual | 23:54 |
grillon | in my tcpdump I see only my virtual machine talking to dhcp serveur | 23:55 |
rrq | yes, on inference from your conf, that is what the "nat" setup implies; that bridge only connects the VM taps into a network, and is also the gateway end of that nework | 23:55 |
grillon | yes as you said :-) | 23:56 |
rrq | all in all, you have a program servicing port 68 | 23:56 |
rrq | could be named *dhcp* something or perhaps dnsmasq | 23:56 |
rrq | or whatever the RH guys thinks is cute | 23:57 |
grillon | I have dnsmasq | 23:57 |
rrq | right; it will need a kill -HUP to re-read its static configuration | 23:58 |
rrq | if you do: pgrep -a dnsmasq | 23:58 |
rrq | it will tell you pid and all arguments used | 23:58 |
rrq | it should have and argument like --dhcp-hostsfile=/home/share/dhcphosts | 23:59 |
Generated by irclog2html.py 2.17.0 by Marius Gedminas - find it at https://mg.pov.lt/irclog2html/!