How to sign a file on Linux with GPG - TechRepublic | https://www.techrepublic.com/
You might be asking yourself this question, "What's to stop anyone from generating a gpg key with my information and then sending bogus data to a client?" Truth is, not much. However, I do have one very easy "work around" for this. What I do is create a new signing key that lasts only a day, and then in the comment section during the creation, enter a unique phrase. When I send the file to the recipient, I will have them verify the file and have them repeat the comment. If the comment is correct, I will give them the go-ahead to decrypt and use the file. If the comment isn't correct, they have a bogus file on their hands.
gpg  crypto  security  howto  newbie  tipsandtricks 
18 hours ago
mysql - Error Code: 1005. Can't create table '...' (errno: 150) - Stack Overflow | https://stackoverflow.com/
The problem in my case was trying to create a table (named "builds") that had a foreign key constraint in some other table, but the table those constraints pointed to didn't exist anymore. Removing the FK constraints allowed me to re-add the table.
mysql  primarykeys  dba  errormessage  sortof  solution 
19 hours ago
linux - What does "key_load_public: no such file or directory" mean? - Super User | https://superuser.com/
It means literally what it says: there is no such file or directory that ssh wanted to access.

However, it talks about the file mentioned below, not above. You have just the regular public keys, but you do not have the SSH certificates for them (presumably because you just don't need them). OpenSSH however will always try to load the associated .pub-cert file for each identity key.
ssh  ssh-agent  debugging  publickeyauthentication 
21 hours ago
keyring - Private SSH key with password no longer stays unlocked for session - elementary OS Stack Exchange | https://elementaryos.stackexchange.com/
Script 90x11-common_ssh-agent should somehow start your ssh-agent. But not add the keys. If you want to add a key with the first usage, you can configure ssh to do so in ~/.ssh/config:

AddKeysToAgent yes
ssh  ssh-agent  keyring  elementaryos  ubuntu  annoyance  solution 
22 hours ago
Bug #1596377 “Desktop takes a long time to initialize” : Bugs : elementary OS
Yup, seems like renaming (disabling) the file to at-spi-dbus-bus.desktop.disabled in /etc/xdg/autostart and the login delay no longer occurs
x  x11  elementaryos  annoyance  login  wm  desktopsession  workaround  solution 
22 hours ago
How Wonder Woman and The Last Jedi could make our politics worse | Toronto Star
It could do cultural work. Stowe’s novel galvanized abolitionist sympathizers, unnerved slaveholders and maybe even softened a few hard hearts. Nevertheless, Little Eva’s post-novelistic life as a commodity still functioned, in the words of one of her most severe critics, as an “introduction to consumerism.” Like other sentimental consumer products of the era, Eva responded to desires and beliefs consumers already had.

Thus, according to historian Robin Bernstein, while Eva emerged as the pinnacle of pious white innocence, the novel’s black characters (especially Uncle Tom and the slave girl Topsy) were marketed and sold to consumers as odious cultural stereotypes from which we have yet to fully recover. The circulation of Eva’s image sanded away the particularities of her character, and the intense intimacy that attended ownership during the period enabled her to become a vessel for reinforcing some very ugly cultural norms.
heroines  whitesaviors  america  consumerism 
How to resolve yum errors during update - CentOS - Server Fault | https://serverfault.com/
What worked for me

<code class="language-bash">
yum clean all # maybe didn't do anything, I dunno
yum distro-sync full # didn't work without the 'full'
yum update # no updates found after 'distro-sync'

See also: https://www.centos.org/forums/viewtopic.php?t=52898
<code class="language-bash">
package-cleanup --dupes
sysadmin  rpm  packagemanagement  yum  errormessage  dllhell  centos  centos7  solution 
3 days ago
bash - Temporarily suspend bash_history on a given shell? - Unix & Linux Stack Exchange | https://unix.stackexchange.com/
Turn Off
<code class="language-bash">
set +o history

Turn on

<code class="language-bash">
set -o history
bash  history  dammitbrain  solution 
3 days ago
Compose Key - Solus Forums
The terminal command works fine, but you can also install (might be installed by default) gnome-tweak-tool. You can search it in software gui or type

Code: Select all

sudo eopkg it gnome-tweak-tool

This worked for the Ubuntu Budgie remix, too.
composekey  specialcharacters  keyboard  inputmethod  ubuntu  linux  budgie  solution 
3 days ago
SecurityTeam/KnowledgeBase/SpectreAndMeltdown - Ubuntu Wiki
The one for CVE-2017-5753 is listed as "pending" as of 19 January 2018.
ubuntu  spectre  meltdown  vulnerability  kpti  patch  sysadmin  reference 
3 days ago
kernel - How to check that KPTI is enabled on my Ubuntu? - Ask Ubuntu
<code class="language-bash">
grep -q "cpu_insecure\|cpu_meltdown\|kaiser" /proc/cpuinfo && \
echo "patched :)" || echo "unpatched :("

Not super-reliable, since there are several separate vulnerabilities (and several mitigations); try https://github.com/speed47/spectre-meltdown-checker.
linux  kernel  kpti  meltdown  spectre  security  vulnerability  howto 
3 days ago
​Major Linux redesign in the works to deal with Intel security flaw | ZDNet
To say Linux developers were unhappy about this would be a massive understatement. When the set of fixes' name was changed from KAISER to Kernel Page Table Isolation (KPTI), some of the suggested names were User Address Space Separation, prefix uass_ and Forcefully Unmap Complete Kernel With Interrupt Trampolines, prefix fuckwit_.
linux  kernel  devel  kpti  aslr  meltdown  spectre 
3 days ago
17.04 - Errors updating zesty packages - apt update/upgrade - Ask Ubuntu
As described in release notes. Zesty will be supported for 9 months until January 2018. Therefore you can use old-releases site, to install zesty packages.

You'll need to change the "partner" repository to use 'archive.canonical.com', though. A global search-and-replace won't work for that one, it'll leave 'apt-get update' in a broken state.
apt  ubuntu  packagemanagement  oldversion  solution 
4 days ago
[TxMt] TextMate perl bundle issues | http://lists.macromates.com/
If you do, make sure you add a use Carp::Heavy; in the script you are running. I think this is due to clearing up a circular import that would happen otherwise (because of some cleverness in exception_handler.pm)

This was not AT ALL the problem I was having, but once I did a 'use Carp::Heavy;' I got this error message in the server logs:
foo.cgi: Attempt to reload Carp/Heavy.pm aborted., referer: https://foo.website/page
foo.cgi: Compilation failed in require at /usr/share/perl5/Carp.pm line 39., referer: https://foo.website/page
Version mismatch between Carp 1.11 (/usr/share/perl5/Carp.pm) and Carp::Heavy 1.36 (/var/www/perl5-local-lib/lib/perl5/Carp/Heavy.pm). Did you alter @INC after Carp was loaded?, referer: https://foo.website/page

and *that* led me to rearrange the imports so that Carp could Carp, after which it told me that I'd changed the API slightly for a module required by the CGI, and forgot to update it on this other server. So Perl was trying to Carp, but some trickery in the way all the modules were loaded (with a 'use lib' and 'local::lib' in there somewhere) was preventing it.
perl  errormessage  webdevel  webmaster  cgi  solution 
5 days ago
debian - How to use the command update-alternatives --config java - Stack Overflow | https://stackoverflow.com/
For this specific purpose, the package java-common contains a tool called update-java-alternatives.

In my case, 'sudo apt-get install --reinstall java-common' still didn't fix this after (sort of accidentally) installing then de-installing 'openjdk-9-jre' or 'jdk' left /etc/alternatives/java all fubar.

Then 'update-alternatives' was complaining about the symlink being dangling; so I did an 'ln -sf' to fix it, then I got this:
<code class=""># sudo update-alternatives --config java
There is only one alternative in link group java (providing
/usr/bin/java): /usr/lib/jvm/java-8-openjdk-amd64/jre/bin/java Nothing
to configure. update-alternatives: warning: forcing reinstallation of
alternative /usr/lib/jvm/java-8-openjdk-amd64/jre/bin/java because link
group java is broken</code>
after which it was pretty much working.
java  jre  jdk  debian  alternatives  sysadmin  errormessage  solution 
5 days ago
Java Installation on Debian using Apt-Get | DigitalOcean | https://www.digitalocean.com/
There can be multiple Java installations on one server. You can configure which version is the default for use in the command line by using update-alternatives, which manages which symbolic links are used for different commands.
There can be multiple Java installations on one server. You can configure which version is the default for use in the command line by using update-alternatives, which manages which symbolic links are used for different commands.
<code class="language-bash">
sudo update-alternatives --config java
debian  java  jdk  alternatives  solution 
5 days ago
Go Ahead, Put that Preposition at the End! | https://www.dailywritingtips.com/
This is the kind of arrant pedantry up with which I will not put. --Churchill

Those who lay down the universal principle that final prepositions are “inelegant” are unconsciously trying to deprive the English language of a valuable idiomatic resource, which has been used freely by all our greatest writers except those whose instinct for English idiom has been overpowered by notions of correctness derived from Latin standards.

The legitimacy of the prepositional ending in literary English must be uncompromisingly maintained; in respect of elegance or inelegance, every example must be judged not by any arbitrary rule, but on its own merits, according to the impression it makes on the feeling of educated English readers.
english  language  writing  style  grammar  solution 
5 days ago
dict.org- inasmuch | http://www.dict.org/
Inasmuch as ye did it not to one of the least of these, ye did it not to me. --Matt. xxv. 45.
english  adverb 
5 days ago
xml - Get xmllint to output xpath results n-separated, for attribute selector - Stack Overflow | https://stackoverflow.com/
You can try:

<code class="language-bash">
$ xmllint --shell inputfile <<< `echo 'cat /config/*/@*'`

You might need to grep the output, though, so as to filter the undesired lines.
xml  xmllint  xpath  textprocessing  webdevel  solution 
5 days ago
xpath @ZVON.org | http://zvon.org/
The tutorial here is great, and all the examples work out-of-the-box with 'xmllint --shell'.
xpath  xslt  xml  webdevel  tutorial  reference  solution 
5 days ago
xml - Access attribute specified by XPath with xml_grep - Stack Overflow | https://stackoverflow.com/
I suggest using the xpath program instead:
$ xpath x '//entry/@path'
Found 1 nodes:
-- NODE --

This program should come bundled with XML::Xpath.
xml  commandline  cli  textprocessing 
5 days ago
security - What is the difference between a cer, pvk, and pfx file? - Stack Overflow | https://stackoverflow.com/
Windows .cer files are ASN.1 DER encoded (you can decoded these with 'dumpasn1' on Linux or use http://www.lapo.it/asn1js/ for a web version--don't upload private keys there, though).

You can also decode with OpenSSL:

<code class="language-bash">
openssl asn1parse -inform der -in SomeIssuer.cer

# or, given a .cer file from Windows, something like this works:
openssl x509 -inform der -in SomeIssuer.cer -fingerprint -sha1

This was a helpful guide for decoding the various file extensions:

<code>Here are my personal, super-condensed notes, as far as this subject pertains to me currently, for anyone who's interested:

Both PKCS12 and PEM can store entire cert chains: public keys, private keys, and root (CA) certs.
.pfx == .p12 == "PKCS12"
fully encrypted
.pem == .cer == .cert == "PEM"
base-64 (string) encoded X509 cert (binary) with a header and footer
base-64 is basically just a string of "A-Za-z0-9+/" used to represent 0-63, 6 bits of binary at a time, in sequence, sometimes with 1 or 2 "=" characters at the very end when there are leftovers ("=" being "filler/junk/ignore/throw away" characters)
the header and footer is something like "-----BEGIN CERTIFICATE-----" and "-----END CERTIFICATE-----" or "-----BEGIN ENCRYPTED PRIVATE KEY-----" and "-----END ENCRYPTED PRIVATE KEY-----"
Windows recognizes .cer and .cert as cert files
.jks == "Java Key Store"
just a Java-specific file format which the API uses
.p12 and .pfx files can also be used with the JKS API
"Trust Stores" contain public, trusted, root (CA) certs, whereas "Identity/Key Stores" contain private, identity certs; file-wise, however, they are the same.</code>
ca  certificate  x509  webmaster  webdevel  fileextension  fuckina  solution 
6 days ago
How to View a Certificate Fingerprint as SHA-256, SHA-1 or MD5 using OpenSSL | Symantec | https://knowledge.symantec.com/
Seems to work, even though '-fingerprint' doesn't seem to be in the 'openssl' man page:
<code class="language-bash">
# SHA-256
openssl x509 -noout -fingerprint -sha256 -inform pem -in [certificate-file.crt]

# SHA-1
openssl x509 -noout -fingerprint -sha1 -inform pem -in [certificate-file.crt]

# MD5
openssl x509 -noout -fingerprint -md5 -inform pem -in [certificate-file.crt]</code>

If they came from Windows (in .cer) format, use '-inform der' (DER = Distinguished Encoding Rule). Der!
<code class="language-bash">
openssl x509 -inform der -in SomeIssuer.cer -fingerprint -sha1 -noout
ssl  openssl  cacert  ca  certificate  fingerprint  commandline  cli  solution 
6 days ago
If the Exercise Class Descriptions From My Gym Were Honest – The Everywhereist | http://www.everywhereist.com/
But the gyms and studios I frequent should also be held accountable, because the descriptions on their website are woefully vague: “energizing,” “fast-paced,” and “emphasizing strength and form” mean absolutely nothing. I’ve had naps and bowel movements that met all those criteria. But I think gyms rarely use more accurate descriptions, like “vomit in front of strangers” and “question if that’s sweat or urine on your pants,” because these might deter a more discerning customer.
fitness  truthinadvertising  humor 
8 days ago
I Tried Soylent. It Didn’t Go Well. – Geraldine DeRuiter – Medium | https://medium.com/
For those unfamiliar with this “food” product, Soylent is a high-protein drink designed to appeal to lifehackers, dieters, and doomsday cult members who are maybe a little shy and don’t want to come out of their bunker for communal meals. It has an incredibly long shelf-life, and provides you nutrition without all the pesky side-effects that food usually has, like chewing, tasting like something, and being an excuse for human interaction.

Now, you can understand why I was slightly concerned about ingesting something developed by guys who felt that the prep work for corn dogs and ramen was too much for them. Also, please explain to me how much time and effort is possibly spent purchasing those food items. You can literally buy them at a gas station.

10:06 pm: I have openly started weeping.
11:22 pm: I can’t sleep because I’m scared I will die.
8 days ago
11 Signs You Might Be a Vegan… – Fit Yourself Club | https://fityourself.club/
Like, the meal that’s best for my body is grass-fed, organic, humanely-raised, breast-fed, trust-funded, private-school-educated beef, with bacon and cheese — specifically gruyere and Velveeta, covered in half and half, or whipped cream, if available… and ranch dressing.

There’s a common argument in favor of carnivorous eating, which claims that once our very ancient ancestors started hunting… fast forward and we, as a species, moved from the short bus to driving the bus. Put another way, fat and calorie-dense game, made our brains grow and that’s why we have fidget spinners and iPhones (i.e., we’re highly intelligent).
8 days ago
« earlier      
acf addon addressbook advice alternativeto android animation annoyance apache api app apple applescript art article audio authentication automation backupandrecovery bash bestpractices bioinformatics blog browser bug by:20gnd c calendar centos chrome cli cloudstorage collaboration comic commandline compiler configfile console cplusplus crossplatform cs css culture dammitbrain database dba debian debugging design designinspiration devel disasterrecovery documentation driver dropbox ebook eclipse editor education email employment encryption errormessage essential extension eyecandy favorite filemanagement filesystem film firefox flask framework freeware from:twitter funny git github gmail gnome google graphics gui hacking hardware history hosting howto html html5 humor icons ide imageprocessing inspiration installation interesting ios iphone java javascript jquery keyboard language latex ldap learning library linux list lists mac markdown math matlab maybesolution mediawiki mobile movein mozilla music mysql mystuff needshelp networking newbie news nonfree opensource osx packagemanagement pdf perl photography php plugin politics printing privacy productivity programming projectstowatch python rails reference research ruby samplecode science scm script scripting searchandindex searchengine security service shell shellscripting socialmedia software solution ssh storage syntaxhighlighting sysadmin systemmonitoring terminal testing textprocessing thefuture theme thewaythingswere thunderbird tipsandtricks todo toolchain troubleshooting tutorial twitter ubuntu ui unix utility versioncontrol via:ifttt video vim visualization watchthisspace web webapp webapps webdesign webdevel webmaster wiki win7 windows wishlist wordpress work writing x11

Copy this bookmark: