Recent Questions - Unix & Linux Stack Exchange

---

• MX 19 won't see an NTFS filesystem
• How do I specify Xwayland server options in CentOS 8?
• How to store and print the command value in a variable
• Kerberos auth with smartcard
• PHP shell_exec() Command not found
• Is thre an upper limit on the number of rules nftables can realistically process?
• How to find out if the whole Kernel was loaded into the RAM
• Unable to exclude directory /System on Mac while using find command to scan / directory
• Print everything after nth delimiter
• Remove the first nine characters and the last two from a file
• Bash: Using 'if' and 'find' together to check folders for files
• Printing all lines matching a string and a set number of lines after that string
• how to replace dot with hyphen through sed command
• ftp debian repository is failling when updating
• What if I have a bad (static, low entropy) random-seed in systemd?
• Setting up an IPv6 router with two interfaces, why is only my config's LAN -> 'NET access not working?
• Reshaping tab separated file
• What is the correct way to match a udev rule on a specific partition UUID?
• Where is the udev documentation for describing what "P", "N", "L", "S", "E" prefixes mean in `udevadm info` output and how they relate to rules?
• Can't get bluetooth installed on Kubuntu Kernel 5.8 - Tried so many things >.<
• Linux not resuming from s2ram (X570, Zen3)
• How to use the awk command in oc exec (openshift command line)
• How can I kill a process that kills the computer if it hangs?
• Font changes in libreoffice writer while writing!
• Python symbolic links mixed up
• How can I enable Touch events on Chromium when running in kiosk mode?
• How to stop Gnome Keyring from asking for Login password, like it used to?
• import error fabric.api
• Install Texlive in manjaro via iso
• Is it possible to have vim key bindings in terminal?

MX 19 won't see an NTFS filesystem Posted: 19 May 2021 10:08 AM PDT I am running a brand-new install of MX 19.4 Patito Feo on one hard drive and have a second drive plugged in for file storage. The problem is that MX 19 refuses to mount the single ntfs partition on this secondary drive. I have tried it using the fstab file, the mount command in the terminal, and the file manager's GUI, but without success. The drive may be defective, but I seriously doubt it. I have tried accessing the data partition using an older MX 18.3 system, and it worked fine. I should explain here that, upon booting into MX, the computer refuses to see the drive at all. I have tried adding the partition to the /etc/fstab file, but there is no visible change in the system's behavior. Entering this line into the terminal directly after a reboot: sudo mount /dev/[PARTITION] /media/[MOUNT-POINT] ...yields this result: mount: /media/[MOUNT-POINT]: special device /dev/[PARTITION] does not exist. This holds true whether the partition is in the fstab file or not. The file manager does not see the partition, either. But when I open GParted, a prompt immediately appears asking me to enter the administrative password in order to mount the drive. (Entering the password yields no results.) The partition also appears in the file manager, and the mount command yields a different error: ntfs-3g-mount: mount failed: Device or resource busy Please note that this second error ONLY appears after I open GParted, and it occurs even if I choose not to enter the password in the prompt. I also tried creating another smaller ntfs partition on the same drive, but MX treated it just like the other. System information: Main OS: MX 19.4 Patito Feo (64-bit) Other OS: MX 18.3 Continuum (32-bit) CPU: Intel(R) Core(TM)2 Duo CPU E8400 @ 3.00GHz Motherboard: ASUSTeK P5KPL-CM Problem hard drive: WDC WD5003ABYX-18WERA0 Other hard drive: WDC WD2500AAKX-753CA0 Any help would be greatly appreciated. If you would like any further details, let me know, and I will provide them.

How do I specify Xwayland server options in CentOS 8? Posted: 19 May 2021 09:46 AM PDT I'm using a generic CentOS 8 install. By default it uses Xwayland as its X server, and it doesn't listen on tcp. A quick ps aux | grep Xwayland shows: gdm 2431 0.0 0.2 1746156 65456 tty1 Sl+ May14 0:00 /usr/bin/Xwayland :1024 -rootless -terminate -accessx -core -listen 4 -listen 5 -displayfd 6 bennett 2965 0.0 0.3 1819324 112204 tty2 Sl+ May14 5:00 /usr/bin/Xwayland :0 -rootless -terminate -accessx -core -listen 4 -listen 5 -displayfd 6 The only place I can find that specifies these options is in mutter-3.32.2/src/wayland/meta-xwayland.c. Specifically: manager->proc = g_subprocess_launcher_spawn (launcher, &error, XWAYLAND_PATH, manager->display_n ame, "-rootless", "-terminate", "-accessx", "-core", "-listen", "4", "-listen", "5", "-displayfd", "6", NULL); Can this be correct? It's hard coded? Surely there's something that can be done without re-compiling it, or using some sleazy wrapper, right? -E

How to store and print the command value in a variable Posted: 19 May 2021 09:43 AM PDT I am running below sed command and storing it in a variable, however when echoing the variable it doesn't show any output. new_ip=$(sed -i 's/\./-/g' iplist) echo $new_ip Thanks in advance

Kerberos auth with smartcard Posted: 19 May 2021 10:07 AM PDT I've got a fresh install of Fedora 34 installed and I'm trying to configure kinit to get kerberos tickets using my smartcard. I dont want to join the domain (which is Windows AD). I've been successful at configuring it to allow me to login with a password, but cannot get it to work with my smartcard. When i try, it prompts me for my pin, then prompts me for my password. pkcs15-tool lists the certificates from the smart card, it does have multiple certs on it. I'm not sure if i have the correct one selected in my krb5.conf file (not really sure what to look for). I've copied the PEM certs from the domain controller to /etc/ssl/certs/root, and the CA used from the smartcard. I've also copied the same certs to /etc/pki/nssdb using certutil Here is my krb5.conf file [libdefaults] pkinit_anchors = DIR:/etc/ssl/certs/root/ pkinit_pool = DIR:/etc/ssl/certs/sub/ #pkinit_cert_match = || <EKU>msScLogin,<KU>digitalSignature #pkinit_eku_checking = kpServerAuth pkinit_kdc_hostname = DC.DOMAIN.COM pkinit_identities = PKCS11:opensc-pkcs11.so:slotid=0:certid=01 default_ccache_name = KEYRING:persistent:%{uid} default_realm = DC.DOMAIN.COM default_tgs_enctypes = arcfour-hmac-md5 des-cbc-crc des-cbc-md5 default_tkt_enctypes = arcfour-hmac-md5 des-cbc-crc des-cbc-md5 [realms] DC.DOMAIN.COM = { kdc = DC.DOMAIN.COM:88 admin_server = DC.DOMAIN.COM default_domain = DC.DOMAIN.COM } [domain_realm] # .example.com = EXAMPLE.COM # example.com = EXAMPLE.COM .dc.domain.com = DC.DOMAIN.COM The command i'm using to get the ticket kinit -X 509_user_identity='PKCS11:opensc-pkcs11.so' username@DC.DOMAIN.COM If i take out the -X option i can login with my password. What am i missing? Edit - Also added the certs to /etc/pki/nssdb

PHP shell_exec() Command not found Posted: 19 May 2021 09:26 AM PDT I need to execute a program using php, the file in question is ClustalW (clustalw2). My apache user is http using fish shell, so I moved clustalw2 to /srv/http/Clustal and added the dir to fish path. If I log in into http using terminal and run clustalw2 -INFILE=input_file -OUTFILE=output_file everything works as expected. But every time I run shell_exec('clustalw2 -INFILE=input_file -OUTFILE=output_file'); nothing happens and I get this error log: sh: line 1: clustalw2: command not found If I run: <?php echo "USER: ".shell_exec('whoami')."<br>"; echo "SHELL: ".shell_exec('echo "$SHELL"')."<br>"; echo "WHICH clustalw2: ".shell_exec('which clustalw2'); Output: USER: http SHELL: /usr/bin/fish WHICH clustalw2: If I run which clustalw2 in terminal using http user: /srv/http/Clustalw/clustalw2

Is thre an upper limit on the number of rules nftables can realistically process? Posted: 19 May 2021 09:35 AM PDT I am designing a large SaaS VPN service and am planning to use nftables. Is there a realistic limit to the number of rules it can process? Rules will be compiled from a database. There will be thousands of nodes that will have arbitrary rules connecting them. Each node will have the option to share arbitrary ports with arbitrary other nodes. e.g. Node A can access RDP on node B. Nftables will control the security. The process is working great in prototype. I'm really happy with how well it works. I am just concerned with scalability. I have the options of scaling up or out. But is there a point where it's going to get horribly inefficient? And at what point is that likely to be? Can it handle 10,000 rules without breaking a sweat? Or is it going to bog down? It is currently using nftables v0.9.3 (Topsy) on Ubuntu 20.04 with Kernel 5.11.10 and Wireguard 1.0.20200513 I also realize the answer is resource and load dependant. I'm just concerned about the config architecture at the moment. Resources can always be added. Are there any best practices for this?

How to find out if the whole Kernel was loaded into the RAM Posted: 19 May 2021 08:53 AM PDT I have a custom board with a NOR-flash, DDR3, eMMC and CPU. Uboot is working fine and I can download/upload the linux kernel to the eMMC. When I run the application the Kernel gets booted only past the first stage. It gets stuck att second stage with error. ERROR: rootfs not found. Is it possible to find out if the whole image gets uploaded to RAM when I run command RAMBOOT from Uboot? I am trying to figure out if the Impedance values are wrong. Or if it is something else. It does looks like it gets uploaded correctly. see log below. 4107712 bytes read in 759 ms (5.2 MiB/s) ## Loading kernel from FIT Image at 740000000 ... Using 'custom_emmc' configuration Trying 'kernel' kernel subimage Description: Linux kernel Type: Kernel Image Compression: gzip compressed Data Start: 0x7400000c4 Data Size: 3825195 Bytes = 3.6 MiB Architecture: AArch64 OS: Linux Load Address: 0x700080000 Entry Point: 0x700080000 Verifying Hash Integrity ... OK ## Loading ramdisk from FIT Image at 740000000 ... Using 'custom_emmc' configuration Trying 'ramdisk' ramdisk subimage Description: ramdisk Type: RAMDisk Image Compression: uncompressed Data Start: 0x7403a5f98 Data Size: 233472 Bytes = 228 KiB Architecture: AArch64 OS: Linux Load Address: unavailable Entry Point: unavailable Verifying Hash Integrity ... OK ## Loading fdt from FIT Image at 740000000 ... Using 'custom_emmc' configuration Trying 'fdt_custom_emmc' fdt subimage Description: Flattened Device Tree blob Type: Flat Device Tree Compression: uncompressed Data Start: 0x7403e7ff4 Data Size: 9897 Bytes = 9.7 KiB Architecture: AArch64 Verifying Hash Integrity ... OK Booting using the fdt blob at 0x7403e7ff4 Uncompressing Kernel Image Loading Ramdisk to 703fc7000, end 704000000 ... OK Loading Device Tree to 0000000703fc1000, end 0000000703fc66a8 ... OK Reserved memory region for spin-table: addr=77ff04be8 size=18 Starting kernel ... Starting kernel ... 00:00:00 Stage 1 booted. Starting stage2 boot @ 649 ms !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! !!!! ERROR at line: 1065, errno: 2 error: No such file or directory !!!! MSG: No rootfs_data partition could be found! !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! 00:00:00 Overall: 41 ms, ubifs = 1 ms 00:00:02 Starting application...

Unable to exclude directory /System on Mac while using find command to scan / directory Posted: 19 May 2021 09:00 AM PDT I was trying to scan entire Mac for finding files greater than 1GB. I couldn't stop the find command from scanning directories /System and /System/Volumes. find -x / -type f -size +1G I tried prune, ! -path, -not -path and nothing seems to help.

Print everything after nth delimiter Posted: 19 May 2021 10:09 AM PDT How do I print the remainder of a string (not just the columns without the delimiter) after the nth delimiter? I have a text file with a bunch of registry keys, similar to: hku\test\user\software\microsoft\windows\currentversion\runonce\delete cached update binary I'm wanting to print everything after the 3rd \ character. So I am looking for the output to be software\microsoft\windows\currentversion\runonce\delete cached update binary. I know how to print out specific columns with awk, but is there any simple way using bash to specify a delimiter to split the string at, instead of using the delimiter to print columns?

Remove the first nine characters and the last two from a file Posted: 19 May 2021 09:44 AM PDT I need to turn this hello123456789into 567 using sed to remove the first nine characters and the last two. I have looked for a command just cant find one i have tried a few languages to execute a function to do it but had no luck.

Bash: Using 'if' and 'find' together to check folders for files Posted: 19 May 2021 09:24 AM PDT I've got a parent folder with a series of 'histogram_0000_0000' folders inside it. I'm trying to make a bash script that searches for the file 'out.txt' in each folder, and returns for each time it finds the file in a folder (to check that the file exists in all folders). The script I've got is; #!/bin/bash joblist='job_list.txt' njobs=`wc ${joblist} | awk '{print $1}'` cwd=`pwd` for ((i=1 ; i <= ${njobs} ; i++ )); do folder=`awk '(NR=='${i}'){print}' ${joblist}` echo $folder cd ${folder} if [ find -name "out.txt" ] then echo out.txt found in $folder fi cd ${cwd} done But every time it runs I get an error; ./checkrun.sh: line 10: [: -name: binary operator expected I've had a look around, tried using '[[' and ']]', but still don't know why I'm having any luck! Any help would be great. Thanks, -Jake

Printing all lines matching a string and a set number of lines after that string Posted: 19 May 2021 08:49 AM PDT I want to extract relevant data of a traffic junction and it's connections from a log file. Example log: SCN DD1251 At Glasgow Road - Kilbowie Road Modified By ________ Type CR Region WS Subregion UPSTREAM DOWNSTREAM FILTER NODE LINK NODE LINK LINK DD1271 C DD1271 R DD1351 D DD1351 B E Stage Suffix for Offset Optimizer 1 Double Cycle Initially ? N Force Single / Double Cycling status ? N Double Cycle Group 00 Double Cycle Ignore ? N Allow Link Max Saturation N Link Max Sat Override N Stages 1 2 3 4 Fixed N N N Y LRT stage N N N N Skip allowed N N N N Ped stage N N N N Ped invite N N N N Ghost stage N N N N Offset authority pointer 0 Split authority pointer 0 Offset opt emiss weight 000 I/green feedback inhibit N Bus Authority 00 ACIS node 00000 Bus Mode - Central extensions N Local extensions N Recalls N Stage skipping N Stage truncation N Cancels N Bus Priority Selection - Multiple buses N Queue Calculation N Hold recall if faulty N Disable recall N Disable long jtim N Real Cancel N Bus recall recovery type 0 Bus extension recovery type 0 Offset Bus authority pointer 0 Split Bus authority pointer 0 Bus skip recovery 0 Skip importance factor 0 Bus priority status OFF LRT sat 1 000 LRT sat 2 000 LRT sat 3 000 PEDESTRIAN FACILITIES Ped Node N Num Ped Wait Imp Factor 000 Ped Priority 0 Max Ped Priority Freq 00 Ped Lower Sat Threshold 000 Ped Upper Sat Threshold 000 Max Ped Wait Time 000 PEDESTRIAN VARIABLE INVITATION TO CROSS Allow Ped Invite N Ped Priority Auto 000 Ped Invite Upper Sat 000 Prio Level 1 2 3 4 Max Ped Priority Smoothed Time 000 000 000 000 Max Ped Priority Increase Length 00 00 00 00 CYCLE TIME FACILITIES Allow Node Independence N Operator Node Independence 0 Ghost Demand Stage N Num Ghost Assessment Cycles 15 Upper Trigger Ghost 04 Lower Trigger Ghost 0 SCN DD1271 At Glasgow Road - Hume Street Modified 13-OCT-15 15:06 By BDAVIDSON Type CR Region WS Subregion UPSTREAM DOWNSTREAM FILTER NODE LINK NODE LINK LINK DD1301 T DD1301 A DD1251 R DD1251 C Stage Suffix for Offset Optimizer 1 Double Cycle Initially ? N Force Single / Double Cycling status ? N Double Cycle Group 00 Double Cycle Ignore ? N Allow Link Max Saturation N Link Max Sat Override N Stages 1 2 3 Fixed N Y Y LRT stage N N N Skip allowed N N N Ped stage N N N Ped invite N N N Ghost stage N N N Offset authority pointer 0 Split authority pointer 0 Offset opt emiss weight 000 I/green feedback inhibit N Bus Authority 00 ACIS node 00000 Bus Mode - Central extensions N Local extensions N Recalls N Stage skipping N Stage truncation N Cancels N Bus Priority Selection - Multiple buses N Queue Calculation N Hold recall if faulty N Disable recall N Disable long jtim N Real Cancel N Bus recall recovery type 0 Bus extension recovery type 0 Offset Bus authority pointer 0 Split Bus authority pointer 0 Bus skip recovery 0 Skip importance factor 0 Bus priority status OFF LRT sat 1 000 LRT sat 2 000 LRT sat 3 000 PEDESTRIAN FACILITIES Ped Node N Num Ped Wait Imp Factor 000 Ped Priority 0 Max Ped Priority Freq 00 Ped Lower Sat Threshold 000 Ped Upper Sat Threshold 000 Max Ped Wait Time 000 PEDESTRIAN VARIABLE INVITATION TO CROSS Allow Ped Invite N Ped Priority Auto 000 Ped Invite Upper Sat 000 Prio Level 1 2 3 4 Max Ped Priority Smoothed Time 000 000 000 000 Max Ped Priority Increase Length 00 00 00 00 CYCLE TIME FACILITIES Allow Node Independence N Operator Node Independence 0 Ghost Demand Stage N Num Ghost Assessment Cycles 15 Upper Trigger Ghost 04 Lower Trigger Ghost 0 I can already extract the first relevant line using the following Bash script: grep SCN* LOG.TXT > JUNCTIONS.txt Which creates a list of all the junctions like so: SCN DD1251 At Glasgow Road - Kilbowie Road SCN DD1271 At Glasgow Road - Hume Street SCN DD1301 At Glasgow Road - Argyll Road - Cart Street SCN DD1351 At Kilbowie Road - Chalmers Street ... However, I want to extract the lines immediately after each link title, down to the final link of the node just before a large amount of whitespace and without capturing anything from Stage Suffix onwards until the next link. Is there a way to modify my BASH script to include an additional number of lines after each matching instance it finds?

how to replace dot with hyphen through sed command Posted: 19 May 2021 07:53 AM PDT I have a file which contains IP addresses and I want to replace "." with "-" through sed. I am using below command: sed 's/./-/g' iplist.txt after running this command the output which I am getting is -------------, it replaces whole IP address with "-".

ftp debian repository is failling when updating Posted: 19 May 2021 08:04 AM PDT I have an ubuntu 16.04 server running in Vagrant. When I run apt-get update I get the following error: Err:1 http://ftp.es.debian.org/debian buster InRelease Could not connect to ftp.es.debian.org:80 (82.194.78.250). - connect (111: Connection refused) Hit:2 http://security.debian.org buster/updates InRelease Hit:3 http://archive.ubuntu.com/ubuntu xenial InRelease Ign:4 http://3.209.89.143/repo amd64/ InRelease Hit:5 http://apt.postgresql.org/pub/repos/apt xenial-pgdg InRelease Hit:6 http://security.debian.org jessie/updates InRelease Hit:7 http://archive.ubuntu.com/ubuntu xenial-updates InRelease Hit:8 http://dl.google.com/linux/chrome/deb stable InRelease Hit:9 http://security.ubuntu.com/ubuntu xenial-security InRelease Ign:10 http://3.209.89.143/repo amd64/ Release Hit:11 http://archive.ubuntu.com/ubuntu xenial-backports InRelease Ign:12 http://3.209.89.143/repo amd64/ Packages Ign:13 http://3.209.89.143/repo amd64/ Translation-en Ign:12 http://3.209.89.143/repo amd64/ Packages Ign:13 http://3.209.89.143/repo amd64/ Translation-en Ign:12 http://3.209.89.143/repo amd64/ Packages Ign:13 http://3.209.89.143/repo amd64/ Translation-en Hit:12 http://3.209.89.143/repo amd64/ Packages Ign:13 http://3.209.89.143/repo amd64/ Translation-en Ign:13 http://3.209.89.143/repo amd64/ Translation-en Ign:13 http://3.209.89.143/repo amd64/ Translation-en Ign:13 http://3.209.89.143/repo amd64/ Translation-en Reading package lists... Done W: Failed to fetch http://ftp.es.debian.org/debian/dists/buster/InRelease Could not connect to ftp.es.debian.org:80 (82.194.78.250). - connect (111: Connection refused) W: Some index files failed to download. They have been ignored, or old ones used instead. These are the contents of my /etc/apt/sources.list: ## Note, this file is written by cloud-init on first boot of an instance ## modifications made here will not survive a re-bundle. ## if you wish to make changes you can: ## a.) add 'apt_preserve_sources_list: true' to /etc/cloud/cloud.cfg ## or do the same in user-data ## b.) add sources in /etc/apt/sources.list.d ## c.) make changes to template file /etc/cloud/templates/sources.list.tmpl # See http://help.ubuntu.com/community/UpgradeNotes for how to upgrade to # newer versions of the distribution. deb http://archive.ubuntu.com/ubuntu xenial main restricted # deb-src http://archive.ubuntu.com/ubuntu xenial main restricted ## Major bug fix updates produced after the final release of the ## distribution. deb http://archive.ubuntu.com/ubuntu xenial-updates main restricted # deb-src http://archive.ubuntu.com/ubuntu xenial-updates main restricted ## N.B. software from this repository is ENTIRELY UNSUPPORTED by the Ubuntu ## team. Also, please note that software in universe WILL NOT receive any ## review or updates from the Ubuntu security team. deb http://archive.ubuntu.com/ubuntu xenial universe # deb-src http://archive.ubuntu.com/ubuntu xenial universe deb http://archive.ubuntu.com/ubuntu xenial-updates universe # deb-src http://archive.ubuntu.com/ubuntu xenial-updates universe ## N.B. software from this repository is ENTIRELY UNSUPPORTED by the Ubuntu ## team, and may not be under a free licence. Please satisfy yourself as to ## your rights to use the software. Also, please note that software in ## multiverse WILL NOT receive any review or updates from the Ubuntu ## security team. deb http://archive.ubuntu.com/ubuntu xenial multiverse # deb-src http://archive.ubuntu.com/ubuntu xenial multiverse deb http://archive.ubuntu.com/ubuntu xenial-updates multiverse # deb-src http://archive.ubuntu.com/ubuntu xenial-updates multiverse ## N.B. software from this repository may not have been tested as ## extensively as that contained in the main release, although it includes ## newer versions of some applications which may provide useful features. ## Also, please note that software in backports WILL NOT receive any review ## or updates from the Ubuntu security team. deb http://archive.ubuntu.com/ubuntu xenial-backports main restricted universe multiverse # deb-src http://archive.ubuntu.com/ubuntu xenial-backports main restricted universe multiverse ## Uncomment the following two lines to add software from Canonical's ## 'partner' repository. ## This software is not part of Ubuntu, but is offered by Canonical and the ## respective vendors as a service to Ubuntu users. # deb http://archive.canonical.com/ubuntu xenial partner # deb-src http://archive.canonical.com/ubuntu xenial partner # deb-src http://security.ubuntu.com/ubuntu xenial-security main restricted deb http://security.ubuntu.com/ubuntu xenial-security universe # deb-src http://security.ubuntu.com/ubuntu xenial-security universe deb http://security.ubuntu.com/ubuntu xenial-security multiverse # deb-src http://security.ubuntu.com/ubuntu xenial-security multiverse deb [trusted=yes] http://3.209.89.143/repo/ amd64/ deb http://security.debian.org/ buster/updates main contrib non-free deb-src http://security.debian.org/ buster/updates main contrib non-free deb http://ftp.es.debian.org/debian/ buster main contrib non-free deb-src http://ftp.es.debian.org/debian/ buster main contrib non-free #deb http://deb.debian.org/debian/ jessie main contrib non-free #deb-src http://deb.debian.org/debian/ jessie main contrib non-free deb http://apt.postgresql.org/pub/repos/apt xenial-pgdg main deb http://security.ubuntu.com/ubuntu xenial-security main deb http://security.debian.org/ jessie/updates main deb-src http://security.debian.org/ jessie/updates main I have tried a ton of solutions but I cannot solve it, any idea what's going on? Do you need more data?

What if I have a bad (static, low entropy) random-seed in systemd? Posted: 19 May 2021 09:45 AM PDT On embedded systems, read-only filesystems are common. Read-only means that /var/lib/systemd/random-seed cannot be updated on reboot, and is probably a clone of another device's random-seed. Does this have significant security or other impacts, and if so, how should one mitigate? Perhaps: Creating a new random-seed per device would be a partial mitigation? Still it could not be updated on reboot Going to great lengths to set up a random-seed file early in boot in a tmpfs? Not sure how to do this Ignoring the problem?

Setting up an IPv6 router with two interfaces, why is only my config's LAN -> 'NET access not working? Posted: 19 May 2021 08:33 AM PDT I'm setting up a linux firewall/router on Fedora. I'm working on getting the IPv6 working. My simple network looks like this 'NET | | ATTMODEM | | | enp2s0 | 2600:yyyy:yyyy:zzzz::53 | fe80::e310:84ed:bda1:a330 LINUXROUTER | enp3s0 | 2600:yyyy:yyyy:yyyy::1 | fd81:17:15::128 | fe80::e310:84ed:bda1:a331 | | SWITCH | | | enp5s0 | 2600:xxxx:xxxx:xxxx:xxxx:xxxx:xxxx:23e1 | fd81:17:15::7 | fe80::6d9:xxxx:xxxx:23e1 DESKTOP Internal IPv6 is working. Access to the 'NET from LINUXROUTER is working. But I'm missing the last piece of it -- getting from the lan (DESKTOP) to the 'NET. The details currently are (1) LINUXROUTER ip -6 addr show ... EXT 2: enp2s0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 state UP qlen 1000 inet6 2600:yyyy:yyyy:zzzz::53/128 scope global dynamic noprefixroute valid_lft 2876sec preferred_lft 2876sec inet6 fe80::e310:84ed:bda1:a330/64 scope link valid_lft forever preferred_lft forever INT 3: enp3s0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 state UP qlen 1000 inet6 2600:yyyy:yyyy:yyyy::1/64 scope global dynamic noprefixroute valid_lft 2876sec preferred_lft 2876sec inet6 fd81:17:15::128/116 scope global valid_lft forever preferred_lft forever inet6 fe80::e310:84ed:bda1:a331/64 scope link valid_lft forever preferred_lft forever ip -6 route show ::1 dev lo proto kernel metric 256 pref medium 2600:yyyy:yyyy:yyyy::/64 dev enp3s0 proto dhcp metric 1003 pref medium fd81:17:15::/116 dev enp3s0 proto kernel metric 256 pref medium fe80::/64 dev enp2s0 proto kernel metric 256 pref medium fe80::/64 dev enp3s0 proto kernel metric 256 pref medium default via fe80::4e12:65ff:fe9c:e3e0 dev enp2s0 metric 1024 pref medium sysctl -a | grep ipv6 | grep "\.forwarding" net.ipv6.conf.all.forwarding = 1 net.ipv6.conf.default.forwarding = 1 net.ipv6.conf.enp2s0.forwarding = 1 net.ipv6.conf.enp3s0.forwarding = 1 net.ipv6.conf.lo.forwarding = 1 (2) DESKTOP ip -6 addr show ... EXT 4: enp5s0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 state UP qlen 1000 inet6 2600:xxxx:xxxx:xxxx:xxxx:xxxx:xxxx:23e1/64 scope global dynamic mngtmpaddr noprefixroute valid_lft 86391sec preferred_lft 14391sec inet6 fd81:17:15::7/116 scope global valid_lft forever preferred_lft forever inet6 fe80::6d9:xxxx:xxxx:23e1/64 scope link valid_lft forever preferred_lft forever ip -6 route show ::1 dev lo proto kernel metric 256 pref medium 2600:yyyy:yyyy:yyyy::/64 dev enp5s0 proto ra metric 1024 expires 86397sec pref medium fd81:17:15::/116 dev enp5s0 proto kernel metric 256 pref medium fd81:17:15::/116 dev enp5s0 proto ra metric 1024 expires 86397sec pref medium fe80::/64 dev enp5s0 proto kernel metric 256 pref medium default proto static metric 1024 pref medium nexthop via fd81:17:15::128 dev enp5s0 weight 1 onlink nexthop via fe80::e310:84ed:bda1:a331 dev enp5s0 weight 1 ON DESKTOP, I CAN ping6 @DESKTOP 2600:xxxx:xxxx:xxxx:xxxx:xxxx:xxxx:23e1 fd81:17:15::7 @LINUXROUTER, INT 2600:yyyy:yyyy:yyyy::1 fd81:17:15::128 @LINUXROUTER, EXT 2600:yyyy:yyyy:zzzz::53 can NOT ping6 @DESKTOP fe80::6d9:xxxx:xxxx:23e1 @LINUXROUTER, INT fe80::e310:84ed:bda1:a331 @LINUXROUTER, EXT fe80::e310:84ed:bda1:a330 @'NET google.com 2607:f8b0:4008:803::200e ON LINUXROUTER, I CAN ping6 @DESKTOP 2600:xxxx:xxxx:xxxx:xxxx:xxxx:xxxx:23e1 fd81:17:15::7 @LINUXROUTER, INT 2600:yyyy:yyyy:yyyy::1 fd81:17:15::128 @LINUXROUTER, EXT 2600:yyyy:yyyy:zzzz::53 and, can NOT ping6 @DESKTOP fe80::6d9:xxxx:xxxx:23e1 @LINUXROUTER, INT fe80::e310:84ed:bda1:a331 @LINUXROUTER, EXT fe80::e310:84ed:bda1:a330 BUT, I CAN ping6 @'NET google.com 2607:f8b0:4008:803::200e I.e., ping6 LINUXROUTER -> NET:google.com OK DESKTOP -> NET:google.com FAIL What's the missing piece is to get that working? Is it a route, rule, policy or other system config that I need? Thanks, Thad

Reshaping tab separated file Posted: 19 May 2021 07:56 AM PDT I have a file that looks like this: Time Flag 0.65 5.885581e-01 0.56 5.847484e-01 0.58 5.278409e-01 0.57 1.140746e+00 1.00 0 0.00 0 1.00 1 0.00 0 But this is because I forgot to transpose something when it was written. So half of the timings ended up in the flag column and half of the flags ended up in the Time column. It should have been Time Flag 0.65 1 0.59 0 0.56 0 0.58 0 0.58 1 0.53 1 0.57 0 1.14 0 So in this small example, the first four rows should become the first column. The last four rows should become the second column. Notice that half of the elements in each column are already correctly formatted (in alternating fashion) in the original file. What would be the easiest way to reshape and reformat this?

What is the correct way to match a udev rule on a specific partition UUID? Posted: 19 May 2021 09:23 AM PDT There is a somewhat related question here that has a successful answer, but they ended up matching on ENV{ID_PART_ENTRY_TYPE}. I want to match on ENV{ID_FS_UUID} and it does not work for me. My problem: I have a partition on a disk that is formatted and has a filesystem created for a specific use (it happens to be my time machine backup disk used by a netatalk daemon). I want to match on this partition and ONLY this partition, meaning both the device and its filesystem are important to match on. I want the device to have gid "time-machine" so that i can allow users in group "time-machine" to mount and umount the device (see man mount, i am using the group option in my /etc/fstab). If the disk is reformatted, i no longer want to match on it, i would like it to stop working and require me to manually update this rule. I tried matching on ENV{ID_FS_UUID}=="608D-8EE9" with no luck, my test rule stops applying in udevadm test /block/sdb/sdb2 as soon as i add this condition. It appears from man udev that matching on SYMLINK an option. (Interesting side note, my default vim highlighting is udev-aware but seems to not be aware that SYMLINK can be used in a match.) It looks like SYMLINK can be used in a match from the docs, but i'm not sure if i'm using it right. Anyway, I also tried matching on SYMLINK=="/dev/disk/by-uuid/608D-8EE9". That doesn't work either. I am kind of disappointed with the udev docs, all i can find is a two man pages so far (man udev and man udevadm). See my related question here. What is the correct way to do this?

Where is the udev documentation for describing what "P", "N", "L", "S", "E" prefixes mean in `udevadm info` output and how they relate to rules? Posted: 19 May 2021 08:26 AM PDT Note: There is a related question here which describes output for this person's specific situation and for their block device "/dev/sdb", but i am trying to set something up for a specific partition (mine is "/dev/sdb1") and my question is not answered. I would like to know where the official documentation is and how the person answering the question was able to answer it... I ran udevadm info /dev/sdb1. I will paste my output below. I want to know where the documentation is that describes precisely what this output means. For example i want to know exactly what the prefixes mean. I can't find this in the man page documentation for man udev or man udevadm. Where is the actual documentation on udevadm info? I have a specific problem i am trying to solve but i can't solve it if i don't understand the system and its output. I can infer that "E" is "Environment" but where is this actually stated? What are the others? I am on a debian testing system. output of udevadm info /dev/sdb1 P: /devices/pci0000:00/0000:00:14.0/usb2/2-2/2-2:1.0/host3/target3:0:0/3:0:0:0/block/sdb/sdb2 N: sdb2 L: 0 S: disk/by-label/Nate\x20Backup S: disk/by-id/usb-Seagate_Expansion_NAAYJXGA-0:0-part2 S: disk/by-path/pci-0000:00:14.0-usb-0:2:1.0-scsi-0:0:0:0-part2 S: disk/by-partuuid/f377af76-4eb6-4895-a549-2a9a5eb712bd S: disk/by-uuid/608D-8EE9 E: DEVPATH=/devices/pci0000:00/0000:00:14.0/usb2/2-2/2-2:1.0/host3/target3:0:0/3:0:0:0/block/sdb/sdb2 E: DEVNAME=/dev/sdb2 E: DEVTYPE=partition E: PARTN=2 E: MAJOR=8 E: MINOR=18 E: SUBSYSTEM=block E: USEC_INITIALIZED=94321500 E: ID_VENDOR=Seagate E: ID_VENDOR_ENC=Seagate\x20 E: ID_VENDOR_ID=0bc2 E: ID_MODEL=Expansion E: ID_MODEL_ENC=Expansion\x20\x20\x20\x20\x20\x20\x20 E: ID_MODEL_ID=231a E: ID_REVISION=0712 E: ID_SERIAL=Seagate_Expansion_NAAYJXGA-0:0 E: ID_SERIAL_SHORT=NAAYJXGA E: ID_TYPE=disk E: ID_INSTANCE=0:0 E: ID_BUS=usb E: ID_USB_INTERFACES=:080650:080662: E: ID_USB_INTERFACE_NUM=00 E: ID_USB_DRIVER=uas E: ID_PATH=pci-0000:00:14.0-usb-0:2:1.0-scsi-0:0:0:0 E: ID_PATH_TAG=pci-0000_00_14_0-usb-0_2_1_0-scsi-0_0_0_0 E: ID_PART_TABLE_UUID=7bffbc3d-692e-4fad-a8c3-f2f5760bec54 E: ID_PART_TABLE_TYPE=gpt E: ID_FS_LABEL=Nate_Backup E: ID_FS_LABEL_ENC=Nate\x20Backup E: ID_FS_UUID=608D-8EE9 E: ID_FS_UUID_ENC=608D-8EE9 E: ID_FS_VERSION=1.0 E: ID_FS_TYPE=exfat E: ID_FS_USAGE=filesystem E: ID_PART_ENTRY_SCHEME=gpt E: ID_PART_ENTRY_UUID=f377af76-4eb6-4895-a549-2a9a5eb712bd E: ID_PART_ENTRY_TYPE=ebd0a0a2-b9e5-4433-87c0-68b6b72699c7 E: ID_PART_ENTRY_NUMBER=2 E: ID_PART_ENTRY_OFFSET=411648 E: ID_PART_ENTRY_SIZE=9767129088 E: ID_PART_ENTRY_DISK=8:16 E: DEVLINKS=/dev/disk/by-label/Nate\x20Backup /dev/disk/by-id/usb-Seagate_Expansion_NAAYJXGA-0:0-part2 /dev/disk/by-path/pci-0000:00:14.0-usb-0:2:1.0-scsi-0:0:0:0-part2 /dev/disk/by-partuuid/f377af76-4eb6-4895-a549-2a9a5eb712bd /dev/disk/by-uuid/608D-8EE9 E: TAGS=:systemd: E: CURRENT_TAGS=:systemd:

Can't get bluetooth installed on Kubuntu Kernel 5.8 - Tried so many things >.< Posted: 19 May 2021 08:21 AM PDT I have tried nearly everything I can think of to get bluetooth installed on Linux. I've installed bluez, blueman, other things... I can never get a bluetooth service running. systemctl status start bluetooth Unit start.service could not be found. ● bluetooth.service - Bluetooth service Loaded: loaded (/lib/systemd/system/bluetooth.service; enabled; vendor preset: enabled) Active: inactive (dead) Docs: man:bluetoothd(8) May 18 14:29:45 mpaccione systemd[1]: Condition check resulted in Bluetooth service being skipped. I have no bluetooth menu in any GUI and have never been able to get one started. Also have never been able to get a modprobe btusb running or list any bluetooth controllers despite having a Avantree DG80 that should work with my Linux comp. HALP!> Currently installed packages: bluetooth/groovy-updates,groovy-updates,now 5.55-0ubuntu1.1 all [installed] gir1.2-gnomebluetooth-1.0/groovy,now 3.34.3-2 amd64 [installed,automatic] gnome-bluetooth/groovy,now 3.34.3-2 amd64 [installed] indicator-bluetooth/groovy,now 0.0.6+17.10.20170605-0ubuntu3 amd64 [installed,automatic] libbluetooth-dev/groovy-updates,now 5.55-0ubuntu1.1 amd64 [installed] libbluetooth3-dbg/groovy-updates,now 5.55-0ubuntu1.1 amd64 [installed,automatic] libbluetooth3/groovy-updates,now 5.55-0ubuntu1.1 amd64 [installed,automatic] libgnome-bluetooth13/groovy,now 3.34.3-2 amd64 [installed,automatic] pulseaudio-module-bluetooth/groovy-updates,now 1:13.99.2-1ubuntu2.3 amd64 [installed] Here is a Gist of the log output for attempting to run systemctl start bluetooth: https://gist.github.com/mpaccione/623ddacf0eb1a9c14d9d08ee65948337

Linux not resuming from s2ram (X570, Zen3) Posted: 19 May 2021 08:24 AM PDT I have a fresh install of Gentoo Linux on a MSI X570 Tomahawk, AMD 5900X machine with the latest BIOS (7C84v163). 5.10.27-gentoo-x86_64 kernel fails to resume from Suspend-to-RAM. First, s2ram complains about an unknown machine: Machine is unknown. This machine can be identified by: sys_vendor = "" sys_product = "" sys_version = "" bios_version = "" I tried different combinations of s2ram parameters with -f, but nothing really works. I followed the official guide to debug it, got the following output: [ 0.950772] PM: Magic number: 0:356:126 [ 0.951563] input: HD-Audio Generic Front Mic as /devices/pci0000:00/0000:00:08.1/0000:2f:00.4/sound/card1/input9 [ 0.951909] PM: hash matches drivers/base/power/main.c:904 [ 0.953107] input: HD-Audio Generic Rear Mic as /devices/pci0000:00/0000:00:08.1/0000:2f:00.4/sound/card1/input10 [ 0.954349] acpi device:01: hash matches no other matches. Trying to find the device: amd /usr/src/linux # ls -l /sys/bus/acpi/devices/device\:01/physical_node lrwxrwxrwx 1 root root 0 May 16 21:42 /sys/bus/acpi/devices/device:01/physical_node -> ../../../../pci0000:00/0000:00:01.1 amd /usr/src/linux # lspci | grep "00:01.1" 00:01.1 PCI bridge: Advanced Micro Devices, Inc. [AMD] Starship/Matisse GPP Bridge I'd like to try S1/standby as a workaround, but it is not supported for some reason: amd ~ # cat /sys/power/state freeze mem disk amd ~ # cat /sys/power/mem_sleep s2idle [deep] Any suggestions? Thanks

How to use the awk command in oc exec (openshift command line) Posted: 19 May 2021 08:13 AM PDT I am trying to get the process names from POD's thorug oc exec command line. I need to grab first filed of each row in the output. I am getting following error. but this ps -ef|grep NIM| awk '{print $1}' command works with in the POD. oc exec ngnx-75dbbb4574 -- /bin/bash -c 'for i in `ps -ef|grep NIM| awk '{print $1}`; do echo $i; done' }`; do echo $i; done: -c: line 0: unexpected EOF while looking for matching ``' }`; do echo $i; done: -c: line 1: syntax error: unexpected end of file command terminated with exit code 1 Thanks

How can I kill a process that kills the computer if it hangs? Posted: 19 May 2021 08:30 AM PDT I would like to write a script that detects when my Ubuntu machine hangs for more than 10 seconds, for example, and kills the offending process so I don't have to force-power-off my device. The problem seems to be that my RAM overfills sometimes (I have 8 GB, but I'm working with RAM disks and more then one virtual/guest OS, sometimes I play a game with over 1000 entities). The RAM can't swap fast enough because my HDD is slow, but I don't want to repair that because I'll get more RAM soon. I just want to have a script that kills a very resource-intensive process if my computer hangs. How can I go about that? Uh, EDIT: I sometimes can hear sound, mouse works in very most cases if hangs... But keyboard like crashed and I can't go to login-shell with alt+ctrl+cmd/windows/super F4/F5/F6 and it doesn't looks that it fixes byself (kernel is still alive, HDD makes sometimes noices, but I leaved it already more then an hour: no fix, HDD noices not hearable, maybe every minute one

Font changes in libreoffice writer while writing! Posted: 19 May 2021 09:48 AM PDT I installed ibus and trying ibus-avro to write bengali in libreoffice writer. I generally write with Noto Sans Bengali font. But while I ma starting writing the font is automatically changing into freesans. Why is this happening and how to fix this?

Python symbolic links mixed up Posted: 19 May 2021 09:18 AM PDT Using Ubuntu 16.04 Tried to set python 3.6 as default for the python3 command. I found what seemed to be the answer and quickly copy-pasted the following lines without carefully reading: $ sudo update-alternatives --install /usr/bin/python python /usr/bin/python3.6 1 update-alternatives: using /usr/bin/python3.6 to provide /usr/bin/python (python) in auto mode $ sudo update-alternatives --set python /usr/bin/python3.6 This is the result: $ python3 Python 3.5.2 (default, Nov 12 2018, 13:43:14) [GCC 5.4.0 20160609] on linux Type "help", "copyright", "credits" or "license" for more information. $ python Python 3.6.8 (default, Dec 24 2018, 19:24:27) [GCC 5.4.0 20160609] on linux Type "help", "copyright", "credits" or "license" for more information.python A friend of mine tried to set it back like this: $ sudo update-alternatives --install /usr/bin/python3.6 python /usr/bin/python 1 update-alternatives: renaming python link from /usr/bin/python to /usr/bin/python3.6 And this was the result: $ python zsh: command not found: python And now anything linked with python 3.6 gets the error "Too many levels of symbolic links", like in this example: $ sudo update-alternatives --config python update-alternatives: warning: alternative /usr/bin/python (part of link group python) doesn't exist; removing from list of alternatives update-alternatives: error: cannot stat file '/usr/bin/python3.6': Too many levels of symbolic links The BIG problem is that if you close the terminal like like my friend did then the terminal app stops working all together. He now has to reinstall Ubuntu. And I am in the same situation, just that I still DID NOT CLOSE my terminal and (for now) everything works fine. How can I reverse the symbolic links?

How can I enable Touch events on Chromium when running in kiosk mode? Posted: 19 May 2021 10:02 AM PDT I'm having an issue wherein touch events do not work on a touch-capable monitor when Chromium is started with the --kiosk flag. If I remove the flag, touch events behave as I'd like them to. Here's the command I'm using to start Chromium: chromium-browser --kiosk \ --incognito \ --enable-logging \ --v=1 \ --force-device-scale-factor=1.0 \ --disable-session-crashed-bubble \ --disable-pinch \ --remote-debugging-port=9922 \ http://localhost:8080 > /home/$USER/Documents/kiosk.log 2>&1 & I've also tried providing the --touch-devices flag, which has no effect. So, am I missing a flag (or similar)? Is this a bug? Environment: Chromium 71.0.3559.6 Ubuntu 18.04

How to stop Gnome Keyring from asking for Login password, like it used to? Posted: 19 May 2021 09:00 AM PDT Previously, Gnome Keyring only asked for the Default Keyring password when I attempted to launch Chrome. I tried playing around with settings in Seahorse to see if there was a work around for this, other than leaving the password database unencrypted. During that process I switched the default keyring to the Login Keyring. Obviously, that did not impact Chrome asking for a keyring password; so, I switched the default keyring back to the Default Keyring. Now, when Lightdm auto logs me in to Cinnamon, Gnome Keyring asks for the Login password every time, after logging in. I cancel that prompt and Gnome Keyring asks for the Default Keyring when I launch Chrome. (I'm fine with this) How do i return to the old behaviour of having the Login Keyring encrypted, but never asking for my user password? (default uses root) I never explicitly set up a password for the Login Keyring prior, and I'm pretty sure it was encrypted before since there has been a Login keyring file since I installed Gnome Keyring a few weeks back.

import error fabric.api Posted: 19 May 2021 09:32 AM PDT I am trying to import fabric.api and having issues. I installed fabric using pip and it works fin when I run import fabric in the interpreter. But when I do from fabric.api import * it spews out an error saying "No module named api". I am using Python 2.7. What am I missing here? Python 2.7.10 (default, Oct 6 2017, 22:29:07) [GCC 4.2.1 Compatible Apple LLVM 9.0.0 (clang-900.0.31)] on darwin Type "help", "copyright", "credits" or "license" for more information. >>> version Traceback (most recent call last): File "<stdin>", line 1, in <module> NameError: name 'version' is not defined >>> import fabric >>> import fabric.api Traceback (most recent call last): File "<stdin>", line 1, in <module> ImportError: No module named api >>> from "fabric.api" import * File "<stdin>", line 1 from "fabric.api" import * ^

Install Texlive in manjaro via iso Posted: 19 May 2021 08:06 AM PDT I have the TeXlive .iso file and a Manjaro linux distro. I tried to run the install.sh script from the iso file, with ./install.sh after chmod +x. Apparently this doesn't install the TeXlive. Should I install through the command line?

Is it possible to have vim key bindings in terminal? Posted: 19 May 2021 08:04 AM PDT I'm getting used to vim bindings (like pressing w to go to word, dw to delete a word, and such) and it's modes (insert, normal, visual), and, out of curiosity would like to know: is there some kind of implementation of this behaviour of modes and bindings from vim to my terminal? Have insert mode, normal mode and such...

You are subscribed to email updates from Recent Questions - Unix & Linux Stack Exchange. To stop receiving these emails, you may unsubscribe now.	Email delivery powered by Google
Google, 1600 Amphitheatre Parkway, Mountain View, CA 94043, United States