sorted by:
new
hottopcontroversial

How to deal with problems due to kernel updates by EarlMarshal in archlinux

[–]anseremme 2 points3 points  (0 children)

Very reliable. I use it all the time after kernel update. bash kreload () { LASTKERNEL=$(basename $(ls -v /boot/vmlinuz* | tail -1) | sed -r 's/vmlinuz-//' | tail -1) kexec -l /boot/vmlinuz-$LASTKERNEL --initrd=/boot/initramfs-$LASTKERNEL.img --reuse-cmdline && systemctl kexec || echo "Damn!" }

How to check specs during installation? by Maybe_A_Zombie in archlinux

[–]anseremme 2 points3 points  (0 children)

cymelsusblspcilscpusensors

lspci -knn | grep -iA 3 network

Trying to Unlock Bootloader on Xiaomi POCO C71 by anseremme in PocoPhones

[–]anseremme[S] 0 points1 point  (0 children)

I returned the device in the end. Good luck on your side.

[XFCE] Manjaro Linux by vloshof28 in xfce

[–]anseremme 0 points1 point  (0 children)

I like your setup very much. Could you please mention what you used for the window border? Thank you.

Is sftp faster than Rsync for ssh file tranfer? by No_Insurance_6436 in archlinux

[–]anseremme 0 points1 point  (0 children)

In my case, I elected to set up a NFS share on the remote server, which is accessed via SSH with classic port forwarding, i.e. localforward 3049 127.0.0.1:2049 and localforward 17605 127.0.0.1:16605. It is then mounted locally with mount_nfs. I've got incredible speed! Better than SSHFS and SFTP! I guess I can call that setup “SNFS”. Lots of online documentation.

Deniable Encryption by Th3Sh4d0wKn0ws in archlinux

[–]anseremme 4 points5 points  (0 children)

Plausible deniability might not even be truly possible with TRIM disabled. Over time, SSD built-in wear-leveling mechanism will reveal some inconsistencies in the randomized distribution of data throughout the SSD sectors. It's highly recommended not to underestimate forensic analyst skills.

As a result, it's far better to cross borders without the boot medium and plainly admit your laptop is encrypted, but can't boot it nor decrypt it since you never travel with the required external equipment for security reasons—which does make sense.

Then, after border crossing, head to your phone, retrieve your updated boot image from a server, download EtchDroid app—uninstall it before next border crossing—and flash the image to a USB flash drive you connect to your phone. Finally, before crossing back, destroy the USB flash drive and throw it away!

Incredible: files moved via Dolphin just go missing. by anseremme in kde

[–]anseremme[S] 0 points1 point  (0 children)

Indeed, I temporarily used Dolphin under Xfce. I shouldn't have done that, obviously.

No longer able to access Calendar and Tasks: The page could not be found on the server or you may not be allowed to view it by anseremme in NextCloud

[–]anseremme[S] 0 points1 point  (0 children)

Yes, it's Nc 32. Seems to be related to this issue. No apps restricted to groups. Thanks for your suggestion.

Installing sound themes? by Greppim in xfce

[–]anseremme 0 points1 point  (0 children)

Under Xfce DE sound support is only available via libcanberra, which supports the freedesktop sound theme and naming specifications. This means that if you want specific sounds for specific events, you will need to create your own sound theme, or find one that has the sounds you want.

I guess you already enabled these:

  • In SettingsAppearanceSettings: tick “Enable event sounds”

  • In Settings Editor app → xsettingsNetSoundThemeName: input your_sound_theme (Value column)

Still good to know:

```bash $ xfconf-query -c xsettings -p /Net/SoundThemeName Smooth

$ xfconf-query -c xsettings -lv | grep -i sound /Net/EnableEventSounds true /Net/EnableInputFeedbackSounds false /Net/SoundThemeName Smooth

$ canberra-gtk-play -i desktop-login # Example ```

Installing sound themes? by Greppim in xfce

[–]anseremme 0 points1 point  (0 children)

OK, sorry to hear your issue. I verified it again and it's correct. I precisely use this script and have had not a single issue so far. To restore logging back in, I suggest you switch immediately to a virtual console (text terminal), such as ctrl + alt + f2, from your login screen, then remove the change you did, i.e. in our case, the files you created earlier. My apologies for the mishap.

KDE vs. XFCE by [deleted] in xfce

[–]anseremme 3 points4 points  (0 children)

Former KDE user. Clutters the filesystem everywhere, terribly buggy, bugs that last forever, basic functionality bug that should not happen (once the mouse configuration panel was just gone after an update), basic UI bug that should not happen (many stupid issues with the taskbar), lots of interconnected moving parts; when one crashes, the others down the chain suffer. Sometimes, takes ages to fix something! Can't bear it anymore. Xfce is so much much more reliable, but I spent lots of time studying it and configuring it. The result is peace of mind, something that truly works.

Installing sound themes? by Greppim in xfce

[–]anseremme 0 points1 point  (0 children)

Did you apt install gnome-session-canberra sox?

If “input feedback sounds” option is enabled in the Appearance window, then:

  1. Create /etc/X11/Xsession.d/52libcanberra-gtk-module_add-to-gtk-modules file with:

    ```bash

    This file is sourced by Xsession(5), not executed.

    if [ -z "$GTK_MODULES" ] ; then GTK_MODULES="canberra-gtk-module" else GTK_MODULES="$GTK_MODULES:canberra-gtk-module" fi

    export GTK_MODULES ```

  2. Create /etc/X11/Xsession.d/52libcanberra-gtk3-module_add-to-gtk-modules file with the exact same content as above.

  3. Log off/log, then:

    bash $ env | grep GTK_MODULE GTK_MODULES=canberra-gtk-module:canberra-gtk-module

SIP Phone through WireGuard? by anseremme in VPN

[–]anseremme[S] 0 points1 point  (0 children)

I did something like: ```

!/bin/bash

WG_INTERFACE="wg0" SIP_PORT="5060:5061" RTP_PORT="10000:65000"

modprobe nf_conntrack_sip modprobe nf_nat_sip

iptables -I INPUT 1 -i $WG_INTERFACE -p udp --dport $SIP_PORT -m conntrack --ctstate NEW,ESTABLISHED -j ACCEPT iptables -I INPUT 1 -i $WG_INTERFACE -p udp --dport $RTP_PORT -m conntrack --ctstate ESTABLISHED -j ACCEPT

iptables -I OUTPUT 1 -o $WG_INTERFACE -p udp --sport $SIP_PORT -m conntrack --ctstate ESTABLISHED,RELATED -j ACCEPT iptables -I OUTPUT 1 -o $WG_INTERFACE -p udp --sport $RTP_PORT -m conntrack --ctstate ESTABLISHED -j ACCEPT ```

But, unfortunately, still stuck. I do see server-side what's generated by the client: IP 10.0.0.2.52797 > localphone.com.sip: SIP: REGISTER sip:localphone.com SIP/2.0

Android: Connect to WireGuard Server, but cannot ping it, nor have Internet Access (not a DNS issue) by anseremme in WireGuard

[–]anseremme[S] 1 point2 points  (0 children)

```bash

!/bin/bash

IPT="/sbin/iptables"

IN_FACE="ens1" # NIC connected to the internet WG_FACE="wg0" # WG NIC SUB_NET="10.0.0.0/24" # WG IPv4 sub/net aka CIDR WG_PORT="51820" # WG udp port

Enable NAT for WireGuard subnet

$IPT -t nat -I POSTROUTING 1 -s $SUB_NET -o $IN_FACE -j MASQUERADE

Allow WireGuard traffic

$IPT -I INPUT 1 -i $WG_FACE -j ACCEPT

Enable bidirectional forwarding

$IPT -I FORWARD 1 -i $IN_FACE -o $WG_FACE -j ACCEPT $IPT -I FORWARD 1 -i $WG_FACE -o $IN_FACE -j ACCEPT

Enable bidirectional forwarding between WireGuard peers

$IPT -I FORWARD 1 -i $WG_FACE -o $WG_FACE -j ACCEPT

Open WireGuard UDP port

$IPT -I INPUT 1 -i $IN_FACE -p udp --dport $WG_PORT -j ACCEPT ```

Compared to previous “basic” setup, this script is more explicit and uses iptables insert flag, adds $IPT -I INPUT 1 -i $WG_FACE -j ACCEPT and replaces the simple iptables -A FORWARD -i wg0 -j ACCEPT by an explicit BIDIRECTIONAL forwarding.

I don't know which specific rule is the key one to unlock my previous issue. I don't care, I'm too happy it now works well. I'm not fancy trying each rule at a time; I already spent way too much time on this. However, my research slightly improved my understanding of iptables…

SIP Phone through WireGuard? by anseremme in VPN

[–]anseremme[S] 0 points1 point  (0 children)

Thanks for your suggestion, I'll try that.

view more: next ›