read write.as

#howto posts

from Organized Chaos Rebooted

Post Installation Task For Boot and other items!

MSI Dragon Logo

The MSI GV62 -8RD Laptop is a great value for dollar Vs. capabilities. Best of all it runs our favorite OS without a hitch. OK there is a little tweaking, and a compromise to take place. But once you get past both, you have a system that is a scorcher!

So first let's dive in to the compromise. The system comes with the NVIDIA GP107M [GeForce GTX 1050 Ti Mobile]. If you want this thing to look as pretty as it can be you will have to go against the wishes of the FSF. If you don't know what the FSF is then just do your thing.

The second item on the list is the system will hang after a Linux installation is completed. The problem here is the quiet splash setting in grub. To get past this issue, as soon as the system starts to boot do the following:

Press e
Delete "Quiet splash"
Replace with "nomodeset"
Press F10 to reboot.

This is all great but what is nomodeset?

The newest kernels have moved the video mode setting into the kernel. So all the programming of the hardware specific clock rates and registers on the video card happen in the kernel rather than in the X driver when the X server starts. This makes it possible to have high resolution nice looking splash (boot) screens and flicker free transitions from boot splash to login screen. Unfortunately, on some cards this doesn't work properly and you end up with a black screen. Adding the nomodeset parameter instructs the kernel to not load video drivers and use BIOS modes instead until X is loaded.

All said and done, I had installed, rebooted and configured nomodeset. Then I boot into the OS, I went straight for the NVIDIA driver configuration. Once that is done, reboot and you should be golden! You'll have a beautiful start screen in all it's high resolution glory.

For this laptop the best installs (as I distro hop like no bodies business) have been

  • LinuxMint
  • Ubuntu
  • MXLinux

All find the hardware and you are up and running quickly. If you are purist, try PureOS but you will have to make compromises going this route as mentioned earlier in this post.

G. Love #HowTo #Install #Linux #Video

— G. Love

 
Read more...

from Organized Chaos Rebooted

An Innerwebs Article

Internet Security

I thought Mastodon was already secure?

A brilliant article written by The head bee of innerwebs.social @atrayofbees. A very detailed explanation of cryptography and the impact of choices made to run a lean, mean, secure mastodon instance.

But more importantly...principals that are applicable to server hardening as a whole. Hope you enjoy this as much as I did.

6/28/2019 – Innerwebs instance maybe offline? Considering the certificate expired, one would question this article. 🤓 Whatever the situation is I wish them well. And thank them for the information provided.

G. Love #Linux #InfoSec #HowTo #Encryption

— G. Love

 
Read more...

from Organized Chaos Rebooted

Or known as “What the Fu@k!?!? ... Fu@k! Fu@k! Fu@k!”

System Failure

So we talked about the golden rule, Patch Patch Patch. Even went as far to write a nifty article on the 3 simple commands to make you a patching fool! But then disater strikes! As mentioned in that article the two commands you should pay attention to apt-get autoremove & apt-get autoclean.

So in all faireness this has been fixed as of two days ago. But it's still worth walking through. So what is it we are talking about? It's the fact that direct dependencies of ubiquity should not be autoremovable!.

In a clean install of Xubuntu 18.10, if an unsuspecting user (ME!) runs 'apt autoremove', it will remove 'cryptsetup' and 'lvm2' making the system non-bootable at next restart if an encrypted(LUKS+LVM) root partition was selected during the ubiquity installer wizard:


$    sudo apt update && sudo apt --auto-remove full-upgrade && cat /run/reboo*
     The following packages will be REMOVED:
     cryptsetup cryptsetup-bin cryptsetup-initramfs cryptsetup-run dmeventd 
     libdevmapper-event1.02.1 liblvm2app2.2 liblvm2cmd2.02 libreadline5 lvm2

This will make the system non-bootable upon restart if LUKS+LVM are active on the root partition. This would, by extension, make any auto-mounted partitions(home, etc.) unavailable after boot as well!

And it sure did and it sure sucks! So with a little help from my friend SearX. I was able to recover, the article linked about goes into a lot more detail, and outlines a fair number of steps. I only had to do a portion of those to get back in working order.

When boot failed I can reboot and see the boot options menu. At this point I select the Advanced Options and boot off the old kernel. Score! As I am able to unlock my drive and boot the system. Great but I want to use the new Kernel! And here is how we do it....

Run the following commands in this order...

Install lvm 2


$ sudo apt install lvm2

dpkg: error processing package lvm2 (--configure):
installed lvm2 package post-installation script subprocess returned error exit status 1
Processing triggers for initramfs-tools (0.130ubuntu3) ...
update-initramfs: Generating /boot/initrd.img-4.15.0-22-generic
Errors were encountered while processing:
lvm2
E: Sub-process /usr/bin/dpkg returned an error code (1)

Remove lvm2


$ sudo apt remove lvm2

Purge lvm 2


$ sudo apt purge lvm2

Install lvm2 again


$ sudo apt install lvm2
Reading package lists... Done
Building dependency tree 
Reading state information... Done
Suggested packages:
thin-provisioning-tools
The following NEW packages will be installed:
lvm2
0 upgraded, 1 newly installed, 0 to remove and 0 not upgraded.
Need to get 929 kB of archives.
After this operation, 3.391 kB of additional disk space will be used.
Get:1 http://id.archive.ubuntu.com/ubuntu bionic/main amd64 lvm2 amd64 2.02.176-4.1ubuntu3 [929 kB]
Fetched 929 kB in 5s (195 kB/s)
Selecting previously unselected package lvm2.
(Reading database ... 186578 files and directories currently installed.)
Preparing to unpack .../lvm2_2.02.176-4.1ubuntu3_amd64.deb ...
Unpacking lvm2 (2.02.176-4.1ubuntu3) ...
Processing triggers for ureadahead (0.100.0-20) ...
Setting up lvm2 (2.02.176-4.1ubuntu3) ...
update-initramfs: deferring update (trigger activated)
Created symlink /etc/systemd/system/sysinit.target.wants/blk-availability.service → /lib/systemd/system/blk-availability.service.
Created symlink /etc/systemd/system/sysinit.target.wants/lvm2-monitor.service → /lib/systemd/system/lvm2-monitor.service.
Created symlink /etc/systemd/system/sysinit.target.wants/lvm2-lvmetad.socket → /lib/systemd/system/lvm2-lvmetad.socket.
Created symlink /etc/systemd/system/sysinit.target.wants/lvm2-lvmpolld.socket → /lib/systemd/system/lvm2-lvmpolld.socket.
Processing triggers for systemd (237-3ubuntu10) ...
Processing triggers for man-db (2.8.3-2) ...
Processing triggers for ureadahead (0.100.0-20) ...
Processing triggers for initramfs-tools (0.130ubuntu3) ...
update-initramfs: Generating /boot/initrd.img-4.15.0-22-generic

Reboot and enjoy your system! You'll be back to normal. Again I can't stress enough to be cautious when using automated routines. And be prepared to do some work especially if you wing it. Which I still think is part of the fun. But not when you only have one system, so being cautious can save you a little grief. As mentioned earlier this has now be fixed as of 2/26/2019, but if you are like me you didn't have all the new bits when you firedaway. So I hope this helps you if you find yourself in a similar situation.

So with that reboot and enjoy! If you have questions SearX them. :–) Or you can reach me on mastodon.sdf.org. 🤓

G. Love #Linux #Xubuntu #HowTo

— G. Love

 
Read more...

from Organized Chaos Rebooted

Patch, Patch, Patch! For Debian Based Distros

Software Update

The golden rule, patch all your systems. Maintain good operational health, and ensure your security. Which I agree! It is the simple things that count. And while not the all-in-one solution to proper security practices. Patching is a necessary evil, but also effective. So beyond that security stuff..you have the cool things to look forward to like updates, new features, or corrective items to somethings that may not have worked properly.

So I was inspired to toss out this really simple document. Why? Because I keep getting asked by the Windows Admins, who are playing around with Ubuntu in their low cost VPS. How do I patch without a gui? So without dragging this on longer than necessary. I bring you the magic three lines.

Follow the steps below and rock on.....

First: we want to make sure all our repositories are up to date and fetch those updates, so run the following:

sudo apt-get update # Fetches the list of available updates

Second: We'll start with upgrading the current packages on the system:

sudo apt-get upgrade # Strictly upgrades the current packages

Third: We'll go out and install any distro updates also known affectionately as...“The New Shit!”:

sudo apt-get dist-upgrade # Installs updates (new ones)

Now as you go through this process you may be asked to invoke commands such as

apt-get autoremove & apt-get autoclean

Exercise caution and in my next post you'll understand why. As people make mistakes and sometimes autoremove is not coded properly. Yes it contains a bug. For example after running autoclean on Xubuntu, you will soon realize you can no longer boot your system! If...your primary drive is full disk encrypted. Now that is FUN! I have a post following this one on how to get out of that jam. But regardless, dependencies were missed and items removed that shouldn't have been. So before running any automated task, read through the output and make sure you understand what it is going to do. If you don't you can always wing it, or like me I'll do it anyway to see how bad it's gonna get.

But be prepared to have fun when things break!.... Because tossing the laptop across the room will only get you a broken os and now a broken laptop!

So with that reboot and enjoy! If you have questions SearX them. :–) Or you can reach me on mastodon.sdf.org. 🤓

G. Love #Linux #Ubuntu #HowTo

— G. Love

 
Read more...

from How to use Write.as

Creating a draft on Write.as / WriteFreely is easy. From the dropdown menu in the editor, select “Anonymous” (called “Draft” in WriteFreely) before publishing, write your post, and then press the Publish button. That's it!

This will create a post at a secret, but shareable, URL. You can choose to share that URL with someone you'd like to have review your draft, or just keep it to yourself to have it remain private. Now, you can continue editing this draft and saving updates with the Publish button. You can find it listed on your “Posts” page (again called “Drafts” in WriteFreely).

When you're ready to publish to your blog, navigate to your Posts / Drafts page, scroll down to your post, and click “move to {your blog}”. (If you have multiple blogs, instead you'll see a dropdown menu that says “move to...”) Once you do that, your post will be live on your blog!

#tutorial #HowTo #drafts #writeas #writefreely

 
Read more...

Join the writers and thinkers on Write.as

Start writing or create a public blog