Re: Fedora in the Middle Kingdom
by J.Witvliet@mindef.nl
The great wall Won't permit ssh tunneling. I would suggest OpenVPN with http encapsulation.
Verstuurd vanaf mijn iPhone
> Op 2 sep. 2016 om 13:16 heeft Frederic Muller <fred(a)cm17.com> het volgende geschreven:
>
>> On 08/31/2016 10:48 PM, Sherman Grunewagen wrote:
>> I may soon be living in China, and wanted to ask those
>> with experience what VPN they've found that
>> works best to get through the GFC. I've done some research
>> on my own, and one name keeps coming up---ExpressVPN. But
>> I would like your opinions, esp. as it relates to Fedora.
>> (I'm running 21.)
>>
>> Thanks!
>> Sherman
>> --
>> users mailing list
>> users(a)lists.fedoraproject.org
>> To unsubscribe or change subscription options:
>> https://lists.fedoraproject.org/admin/lists/users@lists.fedoraproject.org
>> Fedora Code of Conduct: http://fedoraproject.org/code-of-conduct
>> Guidelines: http://fedoraproject.org/wiki/Mailing_list_guidelines
>> Have a question? Ask away: http://ask.fedoraproject.org
>
> Hey!
>
> Weekend is coming and I am a bit more available to reply. While I agree
> with Patrick about not running an outdated OS I think best is probably
> to use a server yourself and do ssh tunneling. Well that is if you have
> a server (as in VPS?) somewhere outside of China. Then you can find
> program such as elhttp which runs on your server, doesn't take much
> resources and helps you to tunnel your web traffic. On Fedora you can
> use a GUI (unmaintained though) application such as GSTM (you'll need
> gaskpass as well as a dependency).
>
> And you'll be all set!
>
> Hope that helps.
>
> Fred
> --
> users mailing list
> users(a)lists.fedoraproject.org
> To unsubscribe or change subscription options:
> https://lists.fedoraproject.org/admin/lists/users@lists.fedoraproject.org
> Fedora Code of Conduct: http://fedoraproject.org/code-of-conduct
> Guidelines: http://fedoraproject.org/wiki/Mailing_list_guidelines
> Have a question? Ask away: http://ask.fedoraproject.org
Dit bericht kan informatie bevatten die niet voor u is bestemd. Indien u niet de geadresseerde bent of dit bericht abusievelijk aan u is toegezonden, wordt u verzocht dat aan de afzender te melden en het bericht te verwijderen. De Staat aanvaardt geen aansprakelijkheid voor schade, van welke aard ook, die verband houdt met risico's verbonden aan het elektronisch verzenden van berichten.
This message may contain information that is not intended for you. If you are not the addressee or if this message was sent to you by mistake, you are requested to inform the sender and delete the message. The State accepts no liability for damage of any kind resulting from the risks inherent in the electronic transmission of messages.
7 years, 6 months
Fedora in the Middle Kingdom
by Sherman Grunewagen
I may soon be living in China, and wanted to ask those
with experience what VPN they've found that
works best to get through the GFC. I've done some research
on my own, and one name keeps coming up---ExpressVPN. But
I would like your opinions, esp. as it relates to Fedora.
(I'm running 21.)
Thanks!
Sherman
7 years, 6 months
qemu + plan9(virtfs) and access(still) denied
by lejeczek
hi everybody
I wonder if you had a chance to use virtfs with passthrough in qemu?
I have a host that passes through a directory to a guest, in the guest I can mount the tag successfully and list the content of the mountpoint, but when I try to create a file or make a dir I get "permission denied", but... I can remove files/dirs - is this not weird?
I believe I've fished out all denials and also with disabled silent denials I do not see anything.
I wonder if somebody can comment whether it is selinux problem? I'm on Centos 7.2 with elrepo's kernel 4.7.
many thanks.
L
7 years, 6 months
Installing Fedora 24 on Del Inspiron mini??
by Michael D. Setzer II
I'm now on my 4th attempt? Student had this little machine, and wanted to try
linux on it.
Seems to boot fine from the USB with the image, and runs the install fine,
and reboots from installed system fine as well.
After the first time, it seemed to have gone into Hibernation.
When I rebooted, it got to switching to root, and nothing.
Second attempt after wiping disk went as well, and was running the dnf
update, but college internet went down, so shut system down. Again, restart
seemed to hang with switching to root.
At this point, have it installed, and it has now downloaded all the updates,
and is dogint the upgrade of 1169 items. Hopefully, it not lock up on the
reboot. Just wondering if there is something that I might be missing. Am
using the 64bit version, and system currently has 1G of Ram and 140G disk?
+----------------------------------------------------------+
Michael D. Setzer II - Computer Science Instructor
Guam Community College Computer Center
mailto:mikes@kuentos.guam.net
mailto:msetzerii@gmail.com
Guam - Where America's Day Begins
G4L Disk Imaging Project maintainer
http://sourceforge.net/projects/g4l/
+----------------------------------------------------------+
http://setiathome.berkeley.edu (Original)
Number of Seti Units Returned: 19,471
Processing time: 32 years, 290 days, 12 hours, 58 minutes
(Total Hours: 287,489)
BOINC@HOME CREDITS
ABC 16613838.513356 | EINSTEIN 110776346.788695
ROSETTA 47879330.928336 | SETI 90737705.890617
7 years, 6 months
rpmbuild for cmake project error :: Found 'build_dir' in installed
files
by Adrian Sevcenco
Hi! I have a head scratching problem with a project (clhep) that i try to package.
It is cmake based and the spec file can be seen here:
https://github.com/adriansev/SPECS/blob/master/clhep.spec
the error that i get is :
Found '/home/adrian/rpmbuild/BUILDROOT/clhep-2.3.3.2-1.x86_64' in installed files; aborting
error: Bad exit status from /var/tmp/rpm-tmp.tOmNW2 (%install)
i imagine that it is a problem of setting the buildroot but have no idea
how this translate to cmake settings ..
What is the proper way for packaging cmake projects?
Thank you!
Adrian
7 years, 7 months
F24: waking up from hibernate no longer wakes nm-applet (however
existing connection works fine)
by Ranjan Maitra
Hi,
I understand that Fedora has gone the way of my hated linux distribution (Ubuntu) in actively disconnecting hibernate in a very disappointing distribution, but I still think that someone may know what to do so I thought that I would post this here and get suggestions and advice.
I have set up, after installation, hibernate with F24 using the techniques that are now required since the days of F22 (or so). Here is what I did:
1. In /etc/default/grub
add --> resume=UUID="****" <-- to the line GRUB_CMDLINE_LINUX=
where the uuid is obtained using blkid.
then I do the following:
2. sudo bash -x grub2-mkconfig
3. sudo bash -x grub2-mkconfig -o /boot/grub2/grub.cfg
and after rebooting, hibernate works.
However, of late, since F24, I have been having this problem that the laptop comes back from hibernate but the nm-applet does not. Basically, what happens is that the nm-applet has the disconnected symbol. The network does work (at the location it was working from when the laptop was hibernated). It will not work in a new location simply because nm-applet does not have the ability to provide me with a list of new possibly connections. I have not tried this part with ethernet but I suspect that the general idea would be similar.
The only way I can get back to using nm-applet to provide me with Wifi connections (beyond the one to which it has been connected) is by killing and restarting nm-applet. The process has to be repeated for every hibernate.
So, what should I be doing to avoid having to kill and restart my nm-applet? Is this a bug somewhere (some hook not being turned on, as used to happen with suspend in the bad old days of early Fedora) and if so, where should I file it (under what component in BZ)?
Many thanks and best wishes,
Ranjan
PS: As an aside, one of the parameters in: /etc/default/grub, I have GRUB_DISABLE_RECOVERY="true" -- I also tried with
GRUB_DISABLE_RECOVERY="false" but there was no visible effect. I am not completely sure what this parameter does because it seems to give me the same result irrespective of whether or not it is set to "true".
Best wishes,
Ranjan
____________________________________________________________
FREE 3D EARTH SCREENSAVER - Watch the Earth right on your desktop!
Check it out at http://www.inbox.com/earth
7 years, 7 months
Browser Privacy
by Drew Samson
Hello,
Perhaps this will help someone in their quest for greater online privacy
and enhance their computer security. I'm simply trying to give back to
the list for all the help I've received over the years. This is what I
do...
I use Firefox simply because it allows me to stay in control of my
browser. If you didn't know... "about:config" in the address bar allows
control of any available setting. While private browsing seems to work
well I like to keep everything in a single window to permit more
flexibility and take the tab-specific route to essentially equivalent
security that private browsing provides. So these are my plugins:
1. NoScript - virtually every exploit/tracking out there starts with the
scripting approach. This kills javacript & the others while providing
real-time total control of the tool.
2. Better Privacy - this tool deals with LSO tracking. This is just in
case since I don't use flash since I don't need it anymore. I'll get to
that later.
3. Privacy Badger - this blocks trackers websites use; it's sponsored by
eff.org. This is my Ghostery replacement since I don't like the recent
developments with that tool.
4. uBlock Origin - this is a FOSS ad blocker. I use this to replace
AdBlock Plus since I don't like recent developments with that tool
either. Then in preferences I enable the 3rd party filters: Fanboy
privacy, Fanboy social media, and hpHosts multipurpose list.
5. Cookie Controller - this deals with general-purpose cookies.
These are my security essential plugins. Here is how I'm able to play
videos on youtube & cnn etc. w/o flash.
1. I use the "Video Without Flash" plugin.
2. Install vlc with vlc extras also.
3. Install all the gstreamer & gstreamer1 plugins
I don't watch many video's but this gives me everything I need. Perhaps
there are some this approach won't play but I haven't run across them yet.
Back to Firefox configuration in about:config...
1. search on geo and change geo:enabled to false (double click it)
2. geo.wifi.uri - change to localhost
3. browser.search.geoSpecificDefaults - change to false
4. search for pocket - disable I don't want anything auto-updating my
system
Then in my Firefox preferences I remove all the default search engines
(they all try to track you) except DuckDuckGo and add the Startpage
search engine as my default. This will give you google results privately
and even provides a proxy thru which you may visit a site.
FWIW I do the same geo stuff in Thunderbird in the Config Editor.
I never get geographical-specific ads then and my browser does not
remember anything about me since Firefox is also set to delete all
history when it closes. The only thing sites are ever able to determine
about me is thru my isp provided ip address and then they customize
"stuff" for that location 100 miles away.
Then more generally about security...
I run this config inside a virtualbox vm. Yes that's Fedora running
inside Virtualbox on a Fedora host. Why? To provide a layer of
abstraction in case the worst happens, my primary system is not likely
to be compromised. In reality all of this resides in a single file on
the host which is then deleted or backed up or transferred easily. I run
another separate vm for banking and that is its only function in life.
It only boots once or twice a month so I can log in and pay bills or
transfer $ etc. I still use FF with the above config but simply provide
a permanent exception to NoScript so the bank or credit card site gives
me the best experience. I don't ever visit other sites or check email or
do anything else in my banking vm. Then I turn it off except to keep it
updated. I try not to browse the web on my host and always keep an
original vm "Fedora Master" copy so if I want to start from scratch - to
ensure no trackers are present it's a simple clone / file copy and I
have a brand new Fedora environment. I give it 4 cpu cores & 8gb ram
from the host and get good response & performance. I have plenty more on
the host. I have another vm dedicated solely to use TOR.
Then here are some other plugins I use to make things more convenient.
1. New Tab Override sets specific page for new tabs
2. Mozilla Archive Format
3. Toolbar Buttons adds icons for convenient tasks. It has an icon
for about:config and for noscript exceptions (so you don't have to pull
down a menu) and many others. I like it.
4. Download Flash & Video even when the option is not available on
the site
5. IdentFavIcon & FavIconReloader for when your bookmark loses its icon
This works for me and provides a good experience since I'm able to run
1920x1440 inside a vm since my host is running 2560x1600. However on my
13" laptop it can get frustrating fast since it all get's so small so I
rarely use vm's there. I just use the more general FF configuration.
Perhaps this will provide info you haven't considered before.
Drew
7 years, 7 months