Nxl67002 - Ubuntu: Difference between revisions

From miki
Jump to navigation Jump to search
(→‎LAMP: New wiki nxpwiki)
Line 601: Line 601:
mysql> CREATE DATABASE mikido;
mysql> CREATE DATABASE mikido;
mysql> GRANT ALL PRIVILEGES ON mikido.* TO miki@localhost IDENTIFIED BY '********';
mysql> GRANT ALL PRIVILEGES ON mikido.* TO miki@localhost IDENTIFIED BY '********';
mysql> CREATE DATABASE nxpwiki;
mysql> GRANT ALL PRIVILEGES ON nxpwiki.* TO nxp@localhost IDENTIFIED BY '********';
mysql> quit
mysql> quit
</source>
</source>

Revision as of 13:52, 7 July 2011

Introduction

This is the configuration page for the Ubuntu Lucid Lynx 10.04 LTS (amd64) partition on NXL67002.

Configuration Files

All configuration files can be found here.

Repositories

Content of /etc/apt/preferences:

Package: *
Pin: release a=natty-updates
Pin-Priority: 250

Package: *
Pin: release a=natty
Pin-Priority: 200

Package: etckeeper
Pin: release a=natty-updates
Pin-Priority: 990

Package: etckeeper
Pin: release a=natty
Pin-Priority: 900

Package: *
Pin: release a=lucid-backports
Pin-Priority: 400

Installed Applications

[2010-05-03] Gnome DO (gnome-do)
[2010-05-10] Midnight Commander (mc) [2010-05-31] see reference page. Use vi as standard viewer/editor. Installed version from mc official repository to fix file highlighting issue.
[2010-05-10] Vim (vim, exuberant-ctags)
[2010-05-10] Opera (opera) [2010-12-21] v 11.00.1156 Use .pac file at http://localhost/proxy.pac to circumvent .pac file bug
[2010-05-10] VirtualBox 3.2.4 (virtualbox-3.2) [2010-05-26] Local settings. Updated to 3.2.4! — See VirtualBox
[2010-05-10] Samba (smbclient smbfs)
[2010-05-10] KeePassX (keepassx)
[2010-05-11] Privoxy (privoxy)
[2010-05-11] AutoSSH (autossh)
[2010-05-11] apt-file (apt-file)
[2010-05-11] SSH Tunnel script (sshtunnel.pl, libssl-dev) Thierry Walrant's Perl script sshtunnel.pl
[2010-05-11] GNU C/C++ compiler (g++)
[2010-05-26] UltraEdit 1.2.0.7 (uex)
[2010-05-27] MBR (mbr) To create VirtualBox rawdisk
[2010-05-27] Courier IMAP (courier-imap courier-doc courier-imap-ssl) Install instructions and local settings
[2010-05-28] SSH (ssh) Local settings
[2010-05-28] p7zip (p7zip-full p7zip-rar)
[2010-05-28] dlocate (dlocate)
[2010-05-28] Thunderbird (thunderbird)
[2010-05-28] Synergy (synergy) [2011-07-07] Updated to 1.4.2beta1.3.7!
See global config — Added /usr/bin/synergyc to /etc/suoders + alias in ~/.bashrc — Server
[2010-05-31] Courier-POP3 (courier-pop courier-pop-ssl)
[2010-05-31] AutoFS (autofs) See local config
[2010-05-31] XSel (xsel)
[2010-05-31] LAMP (apache2 php5 mysql-server mysql-client php5-mysql) See local config
[2010-05-31] PHPMyAdmin (phpmyadmin) Install for apache2 + configure phpmyadmin database + see local config
[2010-06-01] Psi (psi) See local config
[2010-06-01] MS Truetype core fonts (ttf-msttcorefonts-installer)
[2010-06-01] Compiz config settings manager (compizconfig-settings-manager)
[2010-06-01] Ubuntu restricted extras (ubuntu-restricted-extras) shall install automatically libdvdread4
[2010-06-01] libdvdcss2 Installed via sudo /usr/share/doc/libdvdread4/install-css.sh (see also [1])
[2010-06-03] GVim (vim-gnome) To enable support of X clipboard
[2010-06-07] CUPS PDF (cups-pdf) Allow CUPS to access ~/PDF:
sudo aa-complain cupsd
[2010-06-08] Qiv (qiv)
[2010-06-09] Grub2 Splash Image (ubuntu-splash-image) (from lucid-splash-image.deb) installed with sudo dpkg -i --force-architecture lucid-splash-image.deb
[2010-06-11] Racoon (racoon) For RSA key generation, see Crypto
[2010-06-14] GPG Agent (gnupg-agent) Added use-agent at end of ~/.gnupg/gpg.conf
[2010-06-14] Rename utils (renameutils)
[2010-06-30] Ruby (ruby) ... for Vim plug-in snipMate.vim
[2010-07-07] LaTeX (texlive texlive-xetex latex2hml) Including XeTeX package
[2010-07-07] TeX Extra packages (texlive-plain-extra texlive-science) Soul package requires CTAN color package - see [2]
[2011-01-14] Added texlive-science.
[2010-07-14] gThumb (gthumb)
[2010-07-14] QIV (qiv)
[2010-07-30] Vim/Cscope (cscope)
[2010-08-09] Wine (wine) See Wine page
[2010-08-09] Nautilus Audio Converter (wavpack mppenc libmpcdec3 faac flac vorbis-tools faad lame libid3-3.8.3-dev nautilus-script-audio-convert) Enable script ConvertAudioFile (Menu PreferenceNautilus Scripts Manager). See Linux audio.
[2010-08-11] HTTrack (httrack)
[2010-08-11] C/C++ documentation (manpages-posix-dev stl-manual) Make SGI doc available at http://localhost/sgi :
ln -s /usr/share/doc/stl-manual/html /var/www/sgi
[2010-08-13] Meld (meld) Diff tool
[2010-08-31] Gnome Terminator (terminator) See Gnome Terminator
[2010-09-01] Google Earth (googleearth googleearth-data) Requires Medibuntu repository
[2010-09-03] Sage 4.2.1 Recovered from AndLinux. Restored old workspaces from ~beq06659/.sage and /root/.sage. See Sage
[2010-09-03] NTL (libntl-dev, libntl-5.4.2)
[2010-09-03] GMP (libgmp3-dev,libgmp3c2,gmp-ecm)
[2010-09-06] Flash Plugin 10 (flashplugin-installer) First need to enable Ubuntu partner repository (deb http://archive.canonical.com/ubuntu lucid partner). Next
sudo aptitude autoremove "flashplugin-*"
sudo aptitude install flashplugin-installer
[2010-09-13] tnef (tnef,ytnef) Parsing winmail.dat attachment
[2010-09-14] Evolution plugins (evolution-plugins-experimental) For opening Winmail.dat attachment in Evolution
[2010-09-14] Evolution RSS (evolution-rss)
[2010-09-14] Quicktime plugin (gnome-mplayer,gecko-mediaplayer) To play Quicktime content in Opera, Firefox
[2010-09-16] Recoll desktop search (recoll) See also Recoll page.
[2010-09-17] Macbuntu 10.04 theme [2011-02-20] Updated v2.3! — See Macbuntu page. Check log + uninstall script in ~/.macbuntu. no wobbly windows, no hot corners.
[2010-09-17] pdftk (pdftk)
[2010-09-20] GNU Go (gnugo)
[2010-09-20] Various Go games (qgo uligo)
[2010-09-20] Panda glGo 1.4.1 See local page
[2010-09-20] Quarry (quarry) Board games Go, Amazons, and Reversi
[2010-09-21] MDF to ISO Converter (mdf2iso) CD image conversion utility
[2010-09-21] MountManager (mountmanager) ...to mount mdf CD images
[2010-09-22] X File Explorer (xfe)
[2010-09-27] Oracle/Sun Java JDK 1.6 (sun-java6-jdk)
[2010-09-27] Eclipse 3.5.2 Galileo (eclipse)
[2010-09-27] Eclipse 3.6 Helios local install in ~/eclipse
[2010-09-28] Javadoc Installed on http://nxl67002ux/. JDK 1.4.2 in /data/www/javase/1.4.2/docs; JDK 6u21 in /data/www/javase/6/docs
[2010-09-30] Gimp (gimp)
[2010-10-26] Graphical Disk Map (gdmap)
[2010-10-26] KDirStat (kdirstat)
[2010-10-26] Google Chrome (chromium-browser)
[2010-11-16] PuddleTag (puddletag python-qt4 python-pyparsing python-mutagen python-configobj python-musicbrainz2) [2010-12-23] v 0.9.11 See local page
[2010-11-26] PCSC Tools (pcsc-tools) For ATR_analysis.
[2010-11-26] Color Diff (colordiff)
[2010-12-09] ——— Ubuntu Lucid Lynx 10.04 LTS (i386) ———
[2010-12-12] gparted (gparted)
[2010-12-23] Diffuse (diffuse)
[2011-01-10] 4Pane (4pane) See Linux Software#4Pane
[2011-01-16] NFS Server (nfs-kernel-server nfs-common portmap) See NFS for more details; Created entries in /etc/exports.
[2011-01-26] GIT (git-gui gitk git-doc gitweb)
[2011-02-02] WireShark (wireshark tshark)
[2011-02-02] bsdiff (bsdiff)
[2011-02-14] Some git browsers (qgit gitg source-highlight) [2011-02-21] gitg updated to 0.0.7!
[2011-02-14] qmail (ucspi-tcp qmail) See qmail page
[2011-02-22] socat (socat)
[2011-02-22] multitee (multitee)
[2011-02-23] colortail (colortail)
[2011-02-28] Word Diff (wdiff)
[2011-03-01] etckeeper (etckeeper) v 0.52 from Natty
[2011-03-01] Amarok (amarok kubuntu-restricted-extras) v 2.4 from lucid-backports — See Local settings
[2011-03-01] VLC (vlc)
[2011-03-02] dwww (dwww)
[2011-03-02] apt-rdepends (apt-rdepends)
[2011-03-02] GraphViz (graphviz) To plot package dependencies with apt-cache dotty and apt-rdepends -d
[2011-03-02] Gufw (gufw) graphical front-end to ufw
[2011-03-17] pipe viewer (pv)
[2011-03-17] Perl-doc html (perl-doc-html) Available from dwww, section Programming/perl
[2011-04-06] WiFi backport 2.6.37
(linux-backports-modules-wireless-2.6.37-lucid-generic-pae)
Try to solve frequent WiFi disconnect
[2011-05-12] Perl Audio Converter (pacpl)
[2011-06-07] PowerTop (powertop)
[2011-06-29] NTP (ntp) Set system to synchronize with NTP server automatically (servers: ntp0.nl.net, ntp1.nl.net, ntp2.nl.net, ntp.univ-lyon1.fr)
[2011-07-04] SVN plugin for Nautilus (nautilus-script-collection-svn)
nautilus-script-manager enable Subversion
[2011-07-05] Samba Server (samba smbfs) See local config
[2011-07-07] Acrobat Reader (acroread) Edit mime type in ~/.local/share/applications/mimeapps.list:
[Added Associations]
application/pdf=acroread.desktop;evince.desktop;gimp.desktop

Add to ~/.mailcap:

application/pdf; acroread '%s'; test=test -n "$DISPLAY"; nametemplate=%s.pdf
application/x-pdf; acroread '%s'; test=test -n "$DISPLAY"; nametemplate=%s.pdf
application/x-bzpdf; acroread '%s'; test=test -n "$DISPLAY"; nametemplate=%s.pdf.bz2
application/x-gzpdf; acroread '%s'; test=test -n "$DISPLAY"; nametemplate=%s.pdf.gz

Un-installed applications:

[2010-09-17] [2010-09-16] Mac4Lin Gnome theme See Mac4Line page. Installed in ~/mac4lin. Used MakeTechEasier version + Opera user stylesheet fix.
Uninstalled (theme too dark, Macbuntu theme is much better + Opera much better).
[2010-12-09] [2010-06-09] Foxit Reader bin in /usr/local/bin, icon in /usr/share/pixmaps/foxitreader.png, .desktop in /usr/share/applications/.
Edit mime type in ~/.local/share/applications/mimeapps.list to associate with application/pdffiles
Not as good as windows version
[2011-01-20] [2011-01-13] NoMachine NX Server (nxclient, nxnode, nxserver) See NoMachine. Enabled CUPS printing.Not needed anymore
[2011-02-17] [2010-09-16] Courier-MTA (courier-mta courier-mta-ssl) so that mails are sent to Courier mailboxesReplaced by qmail

Simple Settings

  • GRUB — Added to file /etc/grub.d/40_custom: (Not needed anymore since VirtualBox boots Windows directly, so no risk of booting host again)
    set default="Microsoft Windows XP Professional (on /dev/sda2)"
    
  • CRON - cron script for automatic backup of wikis on Noekeon's (see config files).
  • SUDO - keep environment variable http_proxy
  • PROXY - script for automatic setup of network environment (proxy, ssh...) (see config files).
  • Security — Disabled control-alt-del in console as recommended in Ubuntu Server Guide. Comment out the following line in the file /etc/init/control-alt-delete.conf:
#exec shutdown -r now "Control-Alt-Delete pressed"
  • SUDO - keep environment variable GREP_OPTIONS

Detailed System Settings

1st install

  • 1st install on [2010-05-03]
  • Distribution: Ubuntu 10.04 LTS amd64
  • Installation method: Net boot install from Internet using GRUB
  • Language: English
  • Location: Europe, Belgium Time
  • Computer name: NXL67002UX
  • Keyboard layout: USA, USA
  • Name: beq06659
  • Login name: beq06659
  • Update: Install security updates automatically
  • Software to install: Ubuntu Desktop
  • Partition: see main page

Kernel

  • [2010-02-02] — Install the Maverick backport kernel 2.6.35 (see Ubuntu page).
  • [2010-02-03] — Reverted to Lucid default kernel 2.6.32 (2.6.35 not any better).

File System

  • For details, see /etc/fstab.
  • NTFS partition:
    • C: → do not mount automatically. Risk of corruption if mounted while VirtualBox is running!
    • D: → mount as /win/d.
  • NTFS partition must be mounted without umask=007,gid=46, or will get operation not permitted when modifying timestamps:
/dev/sda2               /win/c          ntfs        ro,users,nls=utf8,exec   0       2
/dev/sda7               /win/d          ntfs        users,nls=utf8,exec      0       2
  • File system structure:
/:                                        
  drwxr-xr-x root      root      boot/       # /dev/sda3
  drwxr-xr-x root      root      data/       # /dev/sda8
  drwxr-xr-x root      root      net/
  lrwxrwxrwx root      root      sage -> /data/sage-4.2.1/
  drwxr-xr-x root      root      smb/
  drwxr-xr-x root      root      win/
/data:
  drwxr-xr-x root      root      home/
  drwxr-xr-x beq06659  beq06659  sage-4.2.1/
  drwxr-xr-x www-data  root      www/
/home/beq06659:
  lrwxrwxrwx beq06659  beq06659  Documents -> /windows/d/Profiles/beq06659/My Documents/
/net:
  # NFS autofs
/smb:
  drwxr-xr-x root      root      mnemosyne/   # SMB autofs
/var:
  lrwxrwxrwx root      root      www -> /data/www/
/win:
  drwxr-xr-x root      root      c/           # /dev/sda2
  lrwxrwxrwx root      root      d/           # /dev/sda7

Network

  • Edited /etc/hosts (added names for intranet)
  • Added to /etc/apt/apt.conf:
Acquire::http::proxy "http://localhost:8118/";
Acquire::ftp::proxy "ftp://localhost:8118/";
Acquire::https::proxy "https://localhost:8118/";
  • Added to /etc/environment:
http_proxy="http://localhost:8118/"
ftp_proxy="ftp://localhost:8118/"
https_proxy="https://localhost:8118/"
NXP network
sshproxy
  • Connect to NXP proxy with sshtunnel (with NTLM auth. if needed)
  • Forward IMAP/SMTP ports
  • Opens a SOCKS5 proxy
privoxy
  • Forward to ssh SOCKS5 proxy.
  • Provide http proxy server.
apt-get, wget, browsers
  • through privoxy (through environment variables or .pac file)
ftp
  • Direct connection (no solution...)
HOME network
sshproxy
  • Direct connection
  • Forward IMAP/SMTP ports
  • Opens a SOCKS5 proxy (not used)
privoxy
  • Direct connection
  • Provide http proxy server.
apt-get, wget, browsers
  • through privoxy (through environment variables or .pac file)
ftp
  • SAMBA/NFS CLIENT - Mount mnemosyne shares as NFS autofs (see [3]) and as SMB autofs
    • Enabled/created the following automounters in /etc/auto.master:
    • /net           /etc/auto.net
      /smb/mnemosyne /etc/auto.smb.mnemosyne
      
    • Created configuration file /etc/auto.smb.mnemosyne (mount options: allow_utime=22,umask=002,noperm,iocharset=utf8,credentials=/etc/auto.smb.mnemosyne.*)
    • Created SMB credential files /etc/auto.smb.mnemosyne.* (see man mount.cifs)
    • Created path for mount points:
    • sudo mkdir /net
      sudo mkdir -p /smb/mnemosyne
      #ls /net/mnemosyne
      #sudo mkdir -p /mnt/mnemosyne
      #for i in /net/mnemosyne/volume1/*; do sudo ln -s $i /mnt/mnemosyne/$(basename $i); done
      
  • NXP Wired (see Linux Admin#Network Manager - Search Path)
    • Added local domain name be-leu01.nxp.com to /etc/resolv.conf
  • NXP Wireless (see Linux Admin#Wireless Network)
    • Network name (SSID): WLAN-WBI
    • Wireless security: Dynamic WEP (802.1x)
    • Authentication: TLS
    • Identity: michael.peeters@nxp.com
    • User certificate / CA certificate / Private key: imported from Windows (NXP Enterprise CA 1 for Client Authentication, Secure Email, serial 2F DF 1F D4 00 00 00 00 5E 1C)

Firewall

  • Moved user rules to /etc/ufw so that they can be tracked by etckeeper
  • cd /lib/ufw
    sudo mv user* /etc/ufw
    sudo ln -s /etc/ufw/user.rules
    sudo ln -s /etc/ufw/user6.rules
    
  • Enabled ufw
  • sudo ufw enable
    
  • Policy:
  • sudo ufw allow from 192.168.11.2                   # Enable full access from local virtualbox
    sudo ufw allow from 172.19.0.0/16 to any port 22   # Enable - from home local network - SSH
    

Preferences

  • Theme
  • The mighty Macbuntu 10.04 theme! Reverted changes:
    • Fonts — see below.
    • TerminalColors select Use colors from system theme (was set to Gray on black built-in schemes). Keep transparent background 95%.
    • Panel — add back System Monitor. We don't add back the bottom task panel.
    • In Configuration Editor, /apps/metacity/general/button_layout: menu:minimize,maximize,close
  • Appearance
    • (before Macbuntu) Fonts — ApplicationTahoma 9; DocumentSans 8; DesktopSans 8; Title → Sans Bold 9; Fixed widthMonospace 8
    • (after Macbuntu) Fonts — ApplicationLucida Grande 9; DocumentLucida Grande 9; DesktopLucida Grande 9; Title → Lucida Grande 10; Fixed widthLucida Console 9 (originally Lucida Console 10)
    • Fonts — rename ~/.fonts.conf to ~/.fonts.conf.macbuntu to disable macbuntu hinting settings override.
  • Appearance
    • Isabelle Hires Noir&Blanc crop-despeckle 936x1200.png, in ~/etc.
  • Keyboard Layout (System-Wide)
    • Layout: Belgium (default) + USA, no separate layout
      Custlayout Belgium (file /usr/share/X11/xkb/symbols/be) to allow AltGr-; → '<' and AltGr-: → '>', and support Greek letters with AltGr-Shift.
    • Options: Capslock affects all keys, Alt+CapsLock or Right Ctrl+Right Shift switch layout, right alt chooses 3rd level.
      (because Alt+Shift,Left Ctrl+Left Shift prevents ctrl-alt-shift shortcuts to work, Right Ctrl conflicts with VirtualBox)
  • Keyboard Shortcuts
  • Shortcut Action Remark
    Super-E Home Folder Hack Super is mapped to Win keys not needed anymore it seems
  • Window List Panel (see here)
    • Window List Content → Show windows from all workspaces
    • Restoring Minimized Windows → Restore to native workspace
  • Fonts
    • System fonts (/usr/local/share/fonts):
    Added BitStream Vera 1.10
    Added jsMath fonts (Linux variant, darkness 20 file, see here)
    Added all jsMath extra fonts (dark version from this page)
    • User fonts (~/.fonts):
    Added Tahoma
  • Compiz
    • General Option - Move Window: SuButton2
      because AButton3 is used in OpenOffice to move columns / rows
    • Static Application Switcher: Use AAlt for Next Window (current workspace)
    • Scale: Multi-Output ModeOn all output devices, darken background, Emblem for overlay icon
    • Ring Switcher: Enabled + Use SuTab for Next Windows (All Workspaces) + Allow Mouse Selection
    • Enhanced Zoom Desktop: Disabled
    • Negative: Disabled
    • Desktop Wall: enabled Edge Flip Move.
    • Put : disabled Put Pointer, enabled Put To Next Output (Superz) selected Avoid Offscreen.
    Frequently used Compiz shortcuts (bold are custom ones)
    Shortcut Action Remark
    SASpace
    SuButton3
    General Options - Window Menu
    CALeft
    CARight
    Desktop Wall - Move
    SCALeft
    SCARight
    Desktop Wall - Move with window
    SSue Expo Key
    AF7 Move Window
    Suz Windows Put To Next Output
    AF8
    SuButton2
    Resize Window
    SuTab
    SSuTab
    Ring Switcher (All Workspaces)
    Suw
    Sua / TopLeft / TopRight
    Scale windows Current viewport
    All windows
    ATab
    SATab
    Static application switcher Current viewport

Detailed Application Settings

Amarok

Courier IMAP

  • Install (reference here):
    • Create directories for web-based administration
    • SSL Certificate: /etc/courier/pop3d.pem, /etc/courier/imapd.pem
    • Postfix configuration: local only
    • System mail name: nxl67002ux.wbi.nxp.com
    • Created /etc/courier/userdb, and kept entries for root, localuser and beq06659
    • Use password from /etc/courier/userdb (method authuserdb).

Firefox

  • Theme: macfox3 1.1.4
  • Extensions:
    • AutoPager 0.6.1.12
    • Cycle Input Focus 1.0.0
    • Delicious Bookmarks 2.1.072
    • Fast Dial 2.23b1
    • FireGestures 1.5.7
    • Live HTTP headers 0.16
    • User Agent Switcher 0.7.2

Gnome DO

  • Autostart, Quiet mode, notification icon, Glass theme
  • Launch key: <alt>+space (! disable first Gnome global shortcut for Activate the window menu)

LAMP

Install the servers:

sudo apt-get install apache2 php5 mysql-server mysql-client php5-mysql
# --> Defined password for MySQL root user
sudo vi /etc/apache2/apache2.conf
# --> Added lines at line 32:
#     #MIP CUSTOM
#     ServerName "nxl67002ux"
# Restart apache server to activate php module...
sudo /etc/init.d/apache restart

# Move www root dir to /data disk
sudo mv /var/www /data
sudo ln -s /f /data/www /var/www

Apache configuration file is at /etc/apache2/apache2.conf

By default, Apache root http directory is /var/www

Create databases that will store local copies of cryptokiwi and mikiwiki wiki, and of mikido:

MYSQL_HISTFILE=/dev/null mysql --user=root -p mysql
mysql> CREATE DATABASE cryptokiwi;
mysql> GRANT ALL PRIVILEGES ON cryptokiwi.* TO kiwi@localhost IDENTIFIED BY '********';
mysql> CREATE DATABASE mikiwiki;
mysql> GRANT ALL PRIVILEGES ON mikiwiki.* TO miki@localhost IDENTIFIED BY '********';
mysql> CREATE DATABASE mikido;
mysql> GRANT ALL PRIVILEGES ON mikido.* TO miki@localhost IDENTIFIED BY '********';
mysql> CREATE DATABASE nxpwiki;
mysql> GRANT ALL PRIVILEGES ON nxpwiki.* TO nxp@localhost IDENTIFIED BY '********';
mysql> quit

Nautilus

  • Default view: List View
  • Display, date format: YYYY-MM-DD hh:mm:ss
  • List View: zoom 33%
  • Icon View, Compact View: zoorm 66%
  • Preview: all set to Never, and only for files smaller than 500kB (to prevent thumbnailing PDFs...)

Psi

(recovered from previous settings on Gryphon at ~/.psi)

  • Gnome: Added Psi as startup program (Psi, /usr/bin/psi, Communicate over the jabber network).
  • OptionsEventsEnable popup notifications (all notifications)
  • Modify Account... → Changed resource to work-ux
  • Modify Account...Automatically reconnect if disconnected
  • Modify Account...Proxylocalhost:8118

Samba

   security = user
   username map = /etc/samba/smbusers

# [...]

[homes]
   comment = Home Directories
   browseable = no
 
# [...]
 
[c]
   comment = Windows Drive C
   browseable = yes
   path = /win/c
   printable = no
   guest ok = no
   read only = yes
   create mask = 0700

[d]
   comment = Windows Drive D
   browseable = yes
   path = /win/d
   printable = no
   guest ok = no
   read only = yes
   create mask = 0700

SSH

  • Installed SSH-Tunnel
  • Files recovered from other installation (ssh-tunnel v2.26 + patch):
/usr/local/bin
-rwxr-xr-x 1 root root ssh-agent-refresh_andlinux.sh
-rwxr-xr-x 1 root root ssh-agent-refresh.sh
-rwxr-xr-x 1 root root ssh.pl
-rwxr-xr-x 1 root root ssh-tunnel.pl
  • User beq06659 - configuration file in directory ~/.ssh:
    • id_rsa || id_rsa.pub || authorized_keys || config* || proxy.conf* || clbanner.txt
  • Disabled SSH Key Agent from Gnome Startup Applications

Terminal

Vim

  • Added ~/.bash_completion from [4] (modified to also take alias v=gvim)

VirtualBox

  • See virtual machine configuration log.
  • Installed with apt (original version 3.2.0)
  • VirtualBox is launched as user root (because it seems that only the current user and root can access PulseAudio in a same X session — see [5])
  • Allow user beq06659 to launch VirtualBox through user root. Add to /etc/sudoers:
beq06659	ALL=NOPASSWD: /usr/bin/VirtualBox
  • Helper script to add to e.g. ~/bin :
#First allow user vbox to connect to X11
#xhost +SI:localuser:vbox
#sudo su vbox -c /usr/bin/VirtualBox&

#New config - run VirtualBox as root to allow sound
sudo /usr/bin/VirtualBox&

Wine

See Configuration NXP Dell Latitude E6500 - Wine.

To Do

Hardware

  • Issue — Heavy HW interrupts related to intel graphic card, power saving (sleep), and use of DVI/HDMI interface (module i915, drm, drm_kms_helper).
    • 2.6.32 kernel — udevd eats CPU resource! Launchpad bug 440411, talked on forum 1356215. There was a partial workaround, but it does not work anymore on 2.6.32.28:
    sudo service udevd stop
    sudo service udevd start     # After this unfortunately there is no battery state icon anymore (unless reboot, or maybe suspend)
    udevadm monitor              # Check that there is no events triggered
    
    • 2.6.35 kernel (Maverick) — Install a newer version of the kernel, like 2.6.35. But then we have issues with the processes [kslowd001] ... [kslowd004] that hog the cpu even more, and make mouse movements jerky. Launchpad bug 662946, 661012 (dup). See fix in forum 1594239 (Install latest kernel 2.6.37 with partial fix with module drm_kms_helper / i915..., or install kernel 2.6.34). Other links [6]. Workaround:
    echo N > /sys/module/drm_kms_helper/parameters/poll
    # OR...
    echo "options drm_kms_helper poll=N">/etc/modprobe.d/local.conf   # As root.
    
    • Some issues seem to be fixed in the latest kernel 2.6.33 for Lucid. See [7] (drm/i915: Disable FBC on 915GM and 945GM...)
    • Workarounds to investigate
      • Install kernel 2.6.34 as suggested at [8]
      • Install latest kernel 2.6.33 for Lucid from Ubuntu Kernel ([9])
  • Issue — Frequent wireless disconnect.
    • Reference HW info on this machine
    • My other bugs in launchpad.
    • Related to intel 5300 chipset (module iwlagn) and 802.11n networks.
    • Done — Installed a linux-backports-modules-wireless package (linux-backports-modules-wireless-2.6.37-lucid-generic-pae).
      • Brought some improvements, in particular with kernel 2.6.32-32. Not disconnection, max ssh connect 1.2s, but still some drop to 1Mb/s. Still old firmware version 8.24.2.12 (file iwlwifi-5000-2.ucode)
    • Done — Installed a compat-wireless package from compat-wireless project (linux-backports-modules-wireless-lucid-generic-pae).
      • Not sure it does anything better. Still stuck with the old firmware version 8.24.2.12 (file iwlwifi-5000-2.ucode)
    • SOLVED — Force upgrade the iwlagn driver as indicated on this forum (see also bug 794291, and post on tech drive-in where I first learned about this solution):
    #Remove any linux backports modules
    sudo apt-get autoremove linux-backports-modules-wireless*
    
    #Download and install the compat-wireless iwlagn driver
    wget http://www.orbit-lab.org/kernel/compat-wireless-2.6-stable/v2.6.38/compat-wireless-2.6.38.2-2-ns.tar.bz2
    sudo apt-get install build-essential linux-headers-$(uname -r)
    sudo apt-get remove lsh-server
    tar jxvf compat-wireless-2.6.38.2-2-ns.tar.bz2 
    cd compat-wireless-2.6.38.2-2-ns/
    make
    sudo make install
    
    #Now reboot... or you can try reload the module:
    
    sudo make unload
    sudo modprobe iwlagn
    sudo modprobe bnep
    sudo modprobe btusb
    sudo modprobe rfcomm
    sudo modprobe sco
    sudo /etc/init.d/networking restart
    
    #Check driver:
    lshw -C network
    # ...
    # configuration: broadcast=yes driver=iwlagn driverversion=2.6.32-32-generic-pae firmware=8.83.5.1 build 33692 ip=134.27.182.162 latency=0 multicast=yes wireless=IEEE 802.11abgn
    modinfo iwlagn
    # filename:       /lib/modules/2.6.32-32-generic-pae/updates/drivers/net/wireless/iwlwifi/iwlagn.ko
    # ...
    # firmware:       iwlwifi-5000-5.ucode
    

    Running my ssh tests over WiFi show a very steady connection, without drop of connection speed (however it's capped at 54 Mb/s)

VirtualBox

  • IssueVirtualBox - UE slower gui refresh since update to VirtualBox 3.2.4 (previous version was 3.2.0)
  • IssueVirtualBox - ksoftirqd/0 taking 10-20% CPU. Possible work-around is to add nohz=off to kernel command line, i.e. in /boot/grub/menu.list) (see [10] and [11])
  • IssueVirtualBox - BT dongle not reconnecting after suspend. It used to work correctly in the past. Is it due to an update?
  • IssueVirtualBox - Cygwin very slow in VirtualBox (while (true); do date --utc; done | uniq -c gives me ~4 fork / second. As an alternative, try MSYS (MGWin), UWIN or Interix. Some other causes: [12]
    • SOLVED? — The speed issue seems to be solved in the last version (1.7.9). Fork is still slow though, but rxvt is blazing fast. rxvt still much slower.
  • IssueVirtualBox - Can't go to synergy client when VB guest is in fullscreen. See X#Synergy.
    • SOLVED? — Press host key (ctrl) before/after going to synergy client.

Other issues

  • Issuessh disconnects after some time, autossh can't reconnect. Even doing a simple ssh does not work anymore. Might be due to broken ssh-agent
    • Disable auto-run of Gnome ssh-agent, enabled back my ssh-agent script
  • Issuesynergy unstable. Sometimes CTRL key does not work anymore in the client...
    • Look for alternatives: Synergy+ (SynergyPlus), or x2x (see Synergy page on wikipedia).
  • IssueMidnight Commander does not colorize different file types. Check here.
    • SOLVED — Use mc official repository instead. See MC page
  • Issues — Serious interferences from Privoxy:
    • Reject URL like .../advies/... and .../ADV_AUTH.CAB (work-around: disable Privoxy AdBlocking via http://p.p).
    • Interference with Altran Timesheet. ActiveX / ASP.NET controls do not work in (Wine) Internet Explorer 6.
  • IssueOpera 11 - v11 does not support my autoproxy .pac file anymore.
  • IssueEvince, error in console EggSMClient-WARNING **: Failed to connect to the session manager.... It seems related to apparmor.
    • SOLVED — To solve it [13]:
    cd /etc/apparmor.d/disable
    sudo ln -s /etc/apparmor.d/usr.bin.evince usr.bin.evince
    sudo /etc/init.d/apparmor restart
    
  • Issueufw user[6].rules files should be stored in /etc/ufw instead of /lib/ufw so that they can be tracked by etckeeper (filed a bug in launchpad, 728128)
  • Issue — Kernel panic when updating to kernel 2.6.32-29, due to trailing dots in /boot/initrd file (bug submitted on launchpad 728430)
    • SOLVED — No problem with 2.6.32-30, but again same problem with 2.6.32-32. Problem gone after formatting /boot in Ext3.

Other To Do's

  • ToDo — Try avahi for ZeroConf name resolution and get rid of /etc/hosts.
  • ToDo — look at Compact Human Theme (see Delicious)
  • ToDo — look at Legacy font hinting engine (see Delicious)
  • ToDo — Try to make Nautilus more space efficient. Look at Idea #23573. Try Thunar or PCManFM, or Xfe (the latter does not use gtk theme)
  • ToDo — Also for Eclipse:
  • ToDo — Adapt the search path in /etc/resolv.conf depending on the current network (for now, we statically append be-leu01.nxp.com, when actually this should be done only when on NXP network).
  • ToDo — Pieces of software to try:
  • ToDo — Have a look at Brain Fuck Scheduler, a new kernel scheduler with much better latency for desktops (see [15])
  • ToDo — Install openvpn (+CA Cert authentication?), instead of relying on ssh-tunnel
  • ToDo — Install remote secure storage using encfs over sshf (so that only encrypted data is seen from the server).
  • ToDo— Try Dovecot instead of Courier IMAP? (Dovecot is apparently faster thanks to its index caching feature)
  • ToDo— Setup correct UFW rules for NFS (see [16])
  • ToDo— Look at [[17]] utility for ways to optimize PC power consumption. See also [on LessWatts.org].