DIY Linux

Read the debsums man page:$ man debsumsRESULTS are:OK The file's md5sum is good.FAILED The file's md5sum does not match.REPLACED The file has been replaced by a file from a different package.To verify individual applications:You can use debsums against individual packages:$ sudo debsums nano netbeansThe operation will show the nano Output but is going to show netbeans as not installed, because wehave not installed netbeans with apt-get or dpkg.To verify individual applications with dpkg:Next match the local and repo MD5 checksums. Both pin numbers must be the same. Usually whenyou download a package there is a file with the MD5 checksum, to match on the applicationsdownload site (web or FTP). But for the Debian repos use:$ sudo dpkg -VThe option -V, or --verify [package-name...], verifies the integrity of package-name or all packages ifomitted, by comparing information from the files installed by a package with the files metadatainformation stored in the dpkg database. The origin of the files metadata information in thedatabase is the binary packages themselves. That metadata gets collected at package unpack timeduring the installation process.Currently the only functional check performed is an md5sum verification against the stored value inthe files database. It will only get checked if the database contains the file md5sum. To check for anymissing metadata in the database, the --audit command can be used.The output format is selectable with the --verify-format option, which by default uses the rpmformat, but that might change in the future, and as such, programs parsing this command outputshould be explicit about the format they expect.Good method for intrusion detection?However I would NOT view this as a poor mans intrusion detection system. I would use something likeTripwire or OSSEC if you're really serious about doing something like this. Relying on any these typesof capabilities isn't really what they were intended to do. Rather these are more to confirm that nointentional changes were made to the system, which have now resulted in the files being out of sync.A would-be hacker could easily \"play games\" and change the database that the files' checksums arechecked against whether it's locally stored or online somewhere.True intrusion detection would require that the database of checksums be kept off line and onlybrought into the mix when a check wanted to be performed, and it would be brought in, in a readonlymode only!If you run unintentionally '$ sudo apt-get clean' to setup debsums, note that you have removed all thefiles in /var/cache/apt/archives. Follow these steps to restore the files from a backup:

Firstly, restore all the files from your hard drive in /var/cache/apt/archives. Skip the existent files andfolders like lock and partial/ to preserve the system permissions.For example we have installed debsums recently so that the files is not in teh backup. We require toknow the correct file permissions. To know what are the file permissions purge the program debsumsand reinstall it.In the terminal, go to archives/ to run a massive permissions change:$ cd /var/cache/apt/archivesVerify the system permissions of debsums:$ ls -hal debsums*Output:-rw-r--r-- 1 root root 48K Mar 18 15:20 debsums_2.0.53_all.debVerify the system permissions of the file lock:$ ls -hal lockOutput:-rw-r----- 1 root root 0 May 5 19:07 lockVerify the system permissions of the folder ./partial:$ cd ./partial$ ls -dhalOutput:drwxr-xr-x 2 root root 4.0K Aug 24 00:57 .List the content in partial:ls -halChange the permissions of all the files under partial as the debsum permissions:$ sudo chmod 644 *Go back to the directory (or folder) archives:$ cd ..Change the permissions of all the files under archives as the debsum permissions:$ sudo chmod 644 *Restore the previous previous permissions of the file lock:$ sudo chmod 640 lockRestore the previous previous permissions of the directory partial:$ sudo chmod 755 partialReferences:Topic: Integrity verification after Debian packages downloads.Web: http://ubuntuforums.org/showthread.php?t=1646925File: Verify the integrity A.pdfWeb: https://lists.debian.org/debian-user/2002/11/msg05664.htmlFile: Verify the integrity B.pdfWeb: http://unix.stackexchange.com/questions/115415/verifying-debian-ubuntu-packages-integrity-when-booting-from-a-read-only-dvdFile: Verify the integrity C.pdf

B- Verify the integrity of a new package installation:This option is better than simply double check changes between the programs and the checksumdatabases, as debsums and dpkg do, but anyways running these programs is good to detect systemintrusions and other integrity issues, at later point in the system’s life.Before download the packages check the MD5, SHA1 or SHA2 (256 bit, best option available)checksums.Verify the repo configuration file.After that update:$ sudo apt-get updateSearch the package to install, for example elvis:$ sudo apt-cache search 'elvis'Show the package information, in accordance with the results of the search:$ sudo apt-cache show elvis-tinyThe output will show the next info:MD5sum: 183f5a37245fb3495b2724a67b112880SHA1: 0c568f73f5a9de1f80fd8ab481133cf02fdcced2SHA256: 367f8f33cc1f00918cf06526ffe26aa10c4770962af806f9c7b2baf26e44f38fNow, it's time to install the package:$ sudo apt-get install elvis-tinyTo check verify the package use debsums, dpkg or the next method:Let's go to look for the package under archives:$ cd /var/cache/apt/archivesList elvis-tiny:$ ls -hal *elvis*Verify that the cache MD5sum number and the local MD5sum are equal:$ md5sum elvis-tiny_1.4-23_amd64.debOutput:183f5a37245fb3495b2724a67b112880 elvis-tiny_1.4-23_amd64.debThe numbers are equal so for that the package downloaded is a copy of the program in the repos andyou can trust it.You can also install these programs to verify download integrity:GtKHashwinMd5Sum (for Windows)The problem of Who watches the watcher?Sometimes happened that a hacker modified the Release file of the application to include their pirateApplication version checksums so you downloaded and installed an untrusted package with malware.It's time to introduce the concepts of Digital Signature, Web of Trust and Chain of Trust. These topicsaren't easy to understand but if you need more information browse The Network. Signatures are usedto recognize who the hell the software package does come from.

For example, the Web The Digital signatures are visible in your Web browsers, in the CertificateManager. This usage of signatures helps to identify phising attacks to your browser while navigating.Also, the software repositories keyrings are in /usr/share/keyrings, so the programs like APT verify theexistent signatures inside a keyring before download packages:esteban@ProLiant:/usr/share/keyrings$ lsdebian-archive-keyring.gpg debian-maintainers.gpgdebian-archive-removed-keys.gpg debian-nonupload.gpgdebian-edu-archive-keyring.gpg debian-role-keys.gpgdebian-edu-archive-removed-keys.gpg falktx.gpgdebian-keyring.gpg kxstudio-debian.gpgdebian-keyring.pgpPGP:Means Pretty Good PrivacyGnuPG:It is a free implementation of PGP. gpg is the OpenPGP only version of the GNU Privacy Guard(GnuPG). It is a tool to provide digital encryption and signing services using the OpenPGP standard.gpg features complete key management and all bells and whistles you can expect from a decentOpenPGP implementation.See the complete manual:$ man gpgFor example, when I download software from sources set-up in sources directories such as the file/etc/apt/sources.list and the key is unavailable I use gpg to retrieve new keys from keys servers I knowI will find these keys like this. The two commands as root, if you lack of sudo:$ gpg --keyserver pgpkeys.mit.edu --recv-key 01809745730456$ gpg -a --export 01809745730456 | sudo apt-key add -References:Topic: GnuPG DocumentationWeb: https://www.gnupg.org/documentation/Seahorse:It is a graphical user interface (GUI) for GnuPG.Install Seahorse:$ sudo nano /etc/apt/sources.list$ sudo apt-get update$ sudo apt-cache search seahorse$ sudo apt install seahorseWith seahorse I can easily:- Create my own keys- Export my key- Import a key- Sign a key

- Synchronize keys with keys servers- Revoke my keyWhat can do with my keys?:I.E: Facilitate the public part of the key through email messages with Evolution (MUA) to a contact inmy Chain of Trust.References:Book: PC Cuadernos, El Placer de aprender. Linux Ubuntu. Consejos y Trucos.Software installation table0-9/symbols:3d accelerationA:About myselfAbout xfceAccess promptAccessibilityAdobe flash playerAisleriot solitaireAlienAlien-arenaAlien-arena-serverAlsamixerguiAmdappsdk-3.0AmsynthAppearanceApplication finderAptana_studio_3Archive managerArdour-4Ati catalyst control centerAudaciousAudacityAudio mixerAvidemux (qt)Avidemux jobs managerB:BackgroundBastilleBlender

Blender-2.77a-linux-glibc211-x86_64BluefishBluetoothBluetooth managerBluetooth transferBoinc managerBracketsBraseroBulk renameC:Captive portalCadenceCairo-dockCairo-dock (fallback mode)CalculatorCalf plugin pack for jackCarlaCarla controlCatiaCd playerCd/dvd creatorCharacter mapCheeseChessChrootkitClamavClaudiaClaudia launcherClipitClipmanClocksCmailColorColor pickerColor profile viewerCompiz fusion iconCompiz startCompizconfig settings managerConky managerConnect to serverContactsCrack attackCreate launcher on the panel

CurlCustomize look and feelD:DarktableDarkstatDate & timeDconf editorDefault applications for lxsessionDesktopDesktop iconsDesktop preferencesDesktop searchDesktop session settingsDesktop sharingDesktopnovaDesktopnova-trayDetailsDiaDictionaryDisk image mounterDisk image writerDisk managementDisk usage analyzerDisksDisplaysDocument viewerDocumentsDrumkv1E:EchomixerEntangleEmerald theme managerEmpathyEnqueue in smplayerEnvy24 controlEspdiffEtherapeEtherape (as root)EtracerEvolutionEvolution calendarEx falso

Extreme tux racerF:Fail2banFairymaxFehFfado mixerFgcomFgelevFgfsFgjsFglrx-15.9FgpanelFgviewerFile managerFile manager pcmanfmFilesFilezilla clientFirefox web browserFive or moreFive-or-moreFlightgearFofixFont viewerFotoxxFour-in-a-rowFrescobaldiFrets on fireFretsonfireG:GalculatorGdebiGeditGiggleGimagereaderGit colaGit dagGiteye-1.10.0-linux.x86_64GitgGlassfish-4.1Gnome mplayerGnome shellGnome shell (wayland compositor)

Gnome shell classicGnome shell extension preferencesGnome system monitorGnome-chessGnome-klotskiGnome-mahjonggGnome-minesGnome-nibblesGnome-robotsGnome-sudokuGnome-tetravexGnoteGnu image manipulation programGoogleGoogle chromeGpartedGpssmoothGuitarixGuvcviewH:HandbrakeHardinfoHdajackretaskHdspconfHdspmixerHelpHiganHitoriHoichessHoixiangqiHtopHugin batch processorHugin calibrate lensHugin panorama creatorHugin pto generatorHydrogenI:IagnoIcc profile installerIcedoveIcedtea java web startIcedtea web control panel

IceweaselImage viewerImagemagick (display q16)IngenInkscapeIpJ:Jack keyboardJaminK:KeyboardKeyboard and mouseKeyboard layoutKingsoftKlotskiKxstudioKxstudio welcomeL:LeafpadLibreofficeLibreoffice baseLibreoffice calcLibreoffice drawLibreoffice impressLibreoffice mathLibreoffice writerLibreoffice xslt based filtersLifereaLights offLightsoffLightworksLinthesiaLinuxLinux-headers-3.16.0-4-amd64Linux-headers-3.16.0-4-commonLinux-kbuild-3.16Lispeak-masterLmmsLog outLogical volume managementLogout

LogslshwLshw-gtkLuksLxmusic simple music playerM:Main menuMahjonggMail readerMaldetMapsMaxqiMednafenMednafenMetacityMeterbridgeMidgsmoothMidisnoopMidnight commanderMime type editorMinesMinetestMinetest-mapperMinetestserverMixxxMonitor settingsMouse & touchpadMouse and touchpadMousepadMtpaint graphic editorMudita24MultibootusbMultimedia systems selectorMupen64plusMuseMusicMuttMutterMutter (wayland compositor)MypaintN:Natron

Netbeans ide 8.0.2Netbeans-8.0.2-linux.shNetfilterNetstatNetworkNetwork connectionsNetwork toolsNibblesNmapNon mixerNon sequencerNon session managerNon timelineNotesNotificationsNotifyosd configurationO:ObsOnline accountsOpen folder with thunarOpenarenaOpenbox configuration managerOpencv_createsamplesOpencv_haartrainingOpencv_performanceOpencv_traincascadeOpenjdk java 7 policy toolOpenscadOpenshot video editorOpenssh serverOpensslOpenvpnOrage calendarOrage globaltimeOrage preferencesOsmoP:Package installPackage logPackage sourcesPackage updaterPalaver-master

PanelParcellitePasswordPersonal file sharingPetri-fooPingPhasexPhotosPidgin internet messengerPolariPopcorn time cePowerPower managerPower statisticsPreferred applicationsPrint previewPrint settingsPrintersPrivacyProjectlibrePython (v2.7)Python (v3.4)Q:QjackctlQmidiarpQsamplerQsynthQtractorQuadrapasselR:RakarrackRarRawtherapeeReactivate hp laserjet 1018/1020 after reloading paperRecordmydesktopRegion & languageRemote desktop viewerRemote viewerRemovable drives and mediaReportbugRhythmboxRing

Ristretto image viewerRkhunterRmedigicontrolRobomongoRobotsRoot terminalRosegardenRun program...RygelS:Samplv1ScreenScreen readerScreenletsScreenlockScreensaverScreenshotScribusSeahorseSearchSearch and indexingSelinuxSensor viewerSeq24ServicesSession and startupSetbfreeSettingsSettings editorSettings managerShamaxShared foldersSimple scanSimplescreenrecorderSirius-1.0.1SkypeSmplayerSoftware installSoftware sourcesSooperlooperSoundSound recorderSpeedtest

SpotifySteadyflowSteamSteam.realStellariumSudokuSupertuxkartSwell foopSwell-foopSynaptic package managerSynthv1SysctlSystem logSystem monitorT:TaliTask managerTcpdumpTeamviewer 10TelegramTerminalTerminal emulatorTerrasyncTetravexTexstudioThunar file managerTime trackerTime tracking overviewTp-smapi-0.41TracerouteTransmissionTriggerTrigger-rallyTripwireTweak toolU:UfrawUgsmoothUmbrelloUniversal accessUnrarUsers

Users and groupsUxtermV:Vboxguest-4.1.18Vboxguestadditions-4.1.18VeracryptVideosView fileVimVirtual machine managerVirtualboxVirtualbox-4.3.36Vlc media playerVmpkW:Wacom tabletWeb browserWhere am i?Wicd network managerWindow managerWindow manager tweaksWineWiresharkWorkspacesWps presentationWps spreadsheetsWps writerX:XarchiverXboardXchat ircXfburnXfce terminalXjadeoXsane image scanning programXtermY:YasimYasim-proptestYumi

Z:Zynaddsubfx - alsaZynaddsubfx - jackThe most of the apps in the list have been found as follows:Group 1:Paste the next code onto the GNOME Terminal, and then hit enter:for file in /usr/share/applications/*.desktop;do while IFS== read -r key val do if [[ -z $key ]]; then continue else if [[ $key =~ ^\[Desktop\ Entry ]]; then interesting_field=1 elif [[ $key =~ ^\[ ]]; then interesting_field=0 fi fi [[ $interesting_field -eq 1 ]] && [[ $key == \"Name\" ]] && echo $val done < $filedoneAs I did, you can find and add more apps to your own list as follows:Starting from Group 2 some apps could lack of Icon, it depends on you or whether the app has beenmade to run only in the command line. Also I use folder names here to make two entries, one for theapp version in installation paths and a second one to the excutable in the groups paths. I don't use thisduplicates to app icons by creating new symlinks to second app versions under /usr/bin. For examplethere are blender and blender277.Group 2:List apps directories under /opt:$ ls /optGroup 3:List apps directories under /usr/games:$ ls /usr/games

Group 4: List apps under /usr/src:$ ls /usr/srcGroup 5: List apps under /usr/bin:$ ls /usr/binGroup 6: List apps under /usr/local:$ ls /usr/localGroup 7: List apps under /usr/local/bin:$ ls /usr/local/binGroup 8: List apps under /usr/local/src:$ ls /usr/local/srcGroup 9: List apps under /home/esteban/.linuxbrew/:$ ls /home/esteban/.linuxbrew/ (...)Group 10: List apps no Wine icon under /home/esteban/.wine/:$ ls /home/esteban/.wine/ (…)RepositoriesCreate a local Debian repositoryWhile I finish the guide, here are two overviews including installation steps. Check them out:References:Topic: Create local Debian repository with Aptl.Web: http://www.unixmen.com/introducing-aptly-a-debian-repository-management-tool/File: Aptly, A Debian Repository Management Tool.pdfTopic: Create local APT repository using installation media (CD-DVD-BluRay) packages:Web: http://www.unixmen.com/setup-local-apt-repository-using-installation-media-in-debian-8/File: Setup Local APT Repository Using Installation Media In Debian 8.pdfTopic: Applications available to create a Debian repository:Web: https://wiki.debian.org/HowToSetupADebianRepositoryFile: HowToSetupADebianRepository - Debian Wiki.pdfManage traditional software repositoriesBefore any installation using APT follow these steps:Backup a version of the repositories file:

$ ls /etc/apt$ sudo cp -dpR /etc/apt/sources.list /etc/apt/sources.listBAKTo create more file versions:$ sudo cp -dpR /etc/apt/sources.list /etc/apt/sources.listBAK2Open the repositories file:$ sudo nano /etc/apt/sources.listActivate/install only the repos that contain the package to install and its dependecies, usually sectionsmain, contrib and non-free.Search and find the package:$ sudo apt-cache search packageShow package information:$ sudo apt-cache show packageReview the repo section in the repos pool.At this point you could need to reopen sources.list or something under /etc/apt/ or/etc/apt/sources.list.d/ to activate-deactivate another or more repos. You can also search for packageson www.debian.org to avoid disabling/enabling many times.Update sources.list, /etc/apt and /etc/apt/sources.list.d/ installed repos in the APT database:$ sudo apt-get updateFInally youa are allowd to install the package:$ sudo apt install <package-name>Next is a copy of my file /etc/apt/sources.list, include important information to understand how to userepositories:## deb cdrom:[Debian GNU/Linux 8.0.0 _Jessie_ - Official Multi-architecture amd64/i386 NETINST #120150425-17:05]/ jessie main#deb cdrom:[Debian GNU/Linux 8.0.0 _Jessie_ - Official Multi-architecture amd64/i386 NETINST #120150425-17:05]/ jessie main# Original configuration after system installation, disabled#deb http://ftp.us.debian.org/debian/ jessie main#deb-src http://ftp.us.debian.org/debian/ jessie main#deb http://security.debian.org/ jessie/updates main#deb-src http://security.debian.org/ jessie/updates main# jessie-updates, previously known as 'volatile'#deb http://ftp.us.debian.org/debian/ jessie-updates main#deb-src http://ftp.us.debian.org/debian/ jessie-updates main# Jessie default + 'contrib'. Disable above while

# installing from this duplicate repo.# Packages: Flash plugin non-free, java-package, VirtualBox,#deb http://ftp.us.debian.org/debian/ jessie main contrib#deb-src http://ftp.us.debian.org/debian/ jessie main contrib# Jessie default + 'non-free'. Disable above while# installing from this duplicate repo.# Packages: libfaac-dev,#deb http://ftp.us.debian.org/debian jessie main non-free# Copy of the Original configuration after system installation, include# sections (repos) \"contrib\" and non-free# This the configuration I use the most, no fear of installation fails# because they are all Official repos.# Free software puritans would remove 'non-free'deb http://ftp.us.debian.org/debian/ jessie main contrib non-freedeb-src http://ftp.us.debian.org/debian/ jessie main contrib non-freedeb http://security.debian.org/ jessie/updates main contrib non-freedeb-src http://security.debian.org/ jessie/updates main contrib non-free# jessie-updates, previously known as 'volatile'deb http://ftp.us.debian.org/debian/ jessie-updates main contrib non-freedeb-src http://ftp.us.debian.org/debian/ jessie-updates main contrib non-free# Testing in progress for Debian 8 \"Jessie\" (These packages were in testing for a# while after I installed the newest Debian GNU/Linux Jessie, version 8.0, but later# on have been moved to the Official repos)# Packages: ATI drivers, Steam,#deb http://http.debian.net/debian/ jessie main contrib non-free# Backports are made to add new functionality to programs, and this sometimes# involves security.# Backports are packages taken from the next Debian release (called# \"testing\"), adjusted and recompiled for usage on Debian stable.# Because the package is also present in the next Debian release, you# can easily upgrade your stable+backports system once the next# Debian release comes out. (In a few cases, usually for security# updates, backports are also created from the Debian unstable# distribution.)# Backports cannot be tested as extensively as Debian stable, and# backports are provided on an asis basis, with risk of# incompatibilities with other components in Debian stable. Use with# care!

# It is therefore recommended to only select single backported# packages that fit your needs, and not use all available backports.# Taken from: http://backports.debian.org/# You can specify backports in the command line to do not disable the# Official repos sections main, contrib and non-free, for example:# $ sudo apt-get install -t wheezy-backports \"package\"# $ sudo aptitude install -t wheezy-backports \"package\"# Remember to type the actual running release to do not make installation# mistakes.# Instructions: http://backports.debian.org/Instructions/# Official Jessie Backports:# Packages: ffmpeg (But also Kdenlive, KDE and KXStudio install it as a# dependency package),# deb http://ftp.debian.org/debian jessie-backports main# Some time after the release of Jessie I added the new backports repo.# Backports are made to add new functionality to programs, and this sometimes# involves security.# Kodi specifications: Starting with Debian Jessie, Debian provides kodi via its# backports repository remember that those packages are not supported by team kodi# Packages: Kodi,#deb http://http.debian.net/debian jessie-backports main# It's a second backports repo I have added:# Packages: wine-development,#deb http://httpredir.debian.org/debian jessie-backports main# Sid (no codename) = Unstable Debian:# Packages: Gnash,#deb http://ftp.us.debian.org/debian sid main# A new configuration for the same sid include non free repos# Packages: virtualbox-guest-additions-iso 4.3.18-3, tlp,#deb http://ftp.us.debian.org/debian sid main non-free# Some time after the release of Jessie I added the new backports# repo. Backports are made to add new functionality to programs, and this sometimes# involves security.# Kodi specifications: Starting with Debian Jessie, Debian provides kodi via its# backports repository remember that those packages are not supported by team kodi# Packages: Kodi,#deb http://http.debian.net/debian jessie-backports main

# It's a second backports repo I have added:# Packages: wine-development,#deb http://httpredir.debian.org/debian jessie-backports main# Install only packages for your distribution realease to avoid damaging your system.# You could require section conventions to create sandboxes and for virtualization,# as follows:# Use 'stable' (Jessie), 'testing' (Stretch), 'unstable' (\"sid\", no codename yet)# or release-name when looking for old package versions, for example 'Squeeze'# An Official 'stable' mirror in Denmark just in case:#deb http://ftp.de.debian.org/pub/debian stable main contrib non-free# Unofficial (External) repositories. Proceed carefully:# Mint repo to install packages. It does not say the type which should mean is stable,# or more exactly \"latest stable\" no matter what is the stable release (meanwhile is# Jessie). No main, contrib or non-free have been specified, which means everything# is mixed here.# Packages: Firefox,#deb http://packages.linuxmint.com debian import# Deb multimedia repo. This repo is Unofficial and untrusted in the MIT but in their# own key servers.Some people recommends not to use it at all)# Packages: Avidemux(Qt),#deb http://deb-multimedia.org/ stable main non-free#deb-src http://deb-multimedia.org/ stable main non-free# Packages: libvidstab1.0,#deb http://deb-multimedia.org/ sid main non-free#deb-src http://deb-multimedia.org/ sid main non-free# Experimental are repos and packages rather than and considered after the old-stable,# stable, testing and unstable ones.End of file.Notes:The file does not contain installation repos under /etc/apt/ like KXStudio, or /etc/apt/sources.list.d/like Compiz-Fusio and Google Chrome.I don't install everything this way. There are many alternatives to install software in Linux and Debian.Somethimes you have to decide where from and what version to install, having more than one optionsavailable.To applications manually downloaded from the Internet I have a separate Repo folder instead of thecopy of the cached packages under /var/cache/apt/archives.

To use Debian and Tor repos Services available as Onion Services:References:Guide: TORResolving troubles with repositories:One of the most common issue is that when you run 'sudo apt-get update' get an error. The mostfrequent is a malformed file, so be strictly careful when you edit /etc/apt/sources.list or add newrepository files under /etc/apt and /etc/apt/sources.list.d/. Test also the network connections withtools like 'ping' and 'traceroute' to make sure that you can reach the repository servers. Make surethat the file is in good state, and then rerun the command to update and verify that the work 'done'comes up at the end of the process.Some months ago, Google Chrome announced their 32bit version would be deprecated, and removedthe browser from their repositories but the entry still remains in their repository file google-chrome.list, so still today running 'apt-get -update' returns this error:Output extract:Fetched 958 kB in 43s (21.9 kB/s)W: Failed to fetch http://dl.google.com/linux/chrome/deb/dists/stable/Release Unable to findexpected entry 'main/binary-i386/Packages' in Release file (Wrong sources.list entry or malformedfile)E: Some index files failed to download. They have been ignored, or old ones used instead.End of output.The error is not several, because you can skip it to download and install apps with 'sudo apt-getinstall', but it wasn't supposed to happen. There is a very simple workaround to clean up therepository file google-chrome.list and remove error.To fix this error on Ubuntu/Debian 64-bit, the repository must be specifically set for 64-bit only - thiscan be done by adding \"[arch=amd64]\" after \"deb\" in the /etc/apt/sources.list.d/google-chrome.list.To do this automatically, you can use the following command:$ sudo sed -i -e 's/deb http/deb [arch=amd64] http/' \"/etc/apt/sources.list.d/google-chrome.list\"References:Web: http://www.webupd8.org/2016/03/fix-failed-to-fetch-google-chrome_3.htmlFile: Fix `Failed To Fetch` Google Chrome Repository After Google Dropped Support For Its Browser OnLinux 32bit _ Web Upd8_ Ubuntu _ Linux blog.pdfNote:You can still download a 32bit version of Chrome from external sources. On 32-bit, you should removethe repository and stop using Google Chrome since it won't receive any security updates. Also, the 32-bit build configurations for Chromium continues to be supported, so you can still use Chromiumbrowser on 32-bit Linux distributions.References:Guide: Gooogle Chrome

Build a Minimal Debian Live DVD from source codeDebian from a scratchContent:References:Topic: DebianDevelopmentWeb: https://wiki.debian.org/DebianDevelopmentTopic: DebianPureBlends (replaces the old concept of \"Custom Debian Distributions\")Web: https://wiki.debian.org/DebianPureBlends?action=show&redirect=CustomDebianIntroduction:- Security first- Debian VS Gentoo and Arc- LFS- Install Debian from Netinstall/CD/DVD/BluRay or use a Live DiscBuilding objetives and steps:- Build a system from source in a chroot environment- Add the chroot environment to Grub2 to boot from Grub2 menu- Create a bootable Pendrive/ISO disc from the chrooted system- Create a Live DVD disc from the bootable Pendrive/ISO or the chrooted environmentIntroduction:- Security firstNSA: According to the ex-employee of NSA Edward Snowden NSA spies constantly the whole world.NSA is allowed to spy all the world through OSs, especially Windows and OSX, but also Linux.NSA spyware comes in the system code.NSA spyware comes in network equipment chips, for example in the CISCO routers.Julian Assange, prosecuted Wikileaks founder states: \"Transparency for The State, Privacy for the restof US\". His case is similar to the case of Aaron Swartz, known hacktivist who committed suicide.NSA can use information to manipulate the entire globe and invest. Remember the case of Boeing VSAirbus in the 50s and how English won the WII using microphones on captured NAZI military officers.NSA creates most of encryption algorithms to protect systems security, but you have not to trust them100% since they force OS companies to create backdoors for them in the OS.Most probable is that NSA know how to use systems and encryption software vulnerabilities to accessevery computer in the world.

It is supposed that NSA has the computational power to violate every security method on the planetearth.The best approach to avoid the mentioned type of NSA espionage is building your system from sourcein a secure way, to obtain a no malware inside system. In this way, at least you can read the code youbuild, but in the real world this impossible to achieve because just the kernel has millions of lines ofcode. The only solution for this is to create a \"trusted network\" to review the code.This is only a topic in the world of the security. The problem is that this is one of the cases when if youdon't do it in the correct order you can't go back later.- Debian VS Gentoo and ArcDistributions like Gentoo and its fork Arc, install software packages from source bu default, but at leastthe common system installation methods install a system base from binary packages that come fromthe network, DVD, etc.The case of Debian is similar. Common Debian installation methods install a base system from binarypackages, and when the system is ready you can continue installing more binary software.So, you see, neither Debian or Gentoo have instant methods to build their systems from source andalso their software. Some reasons are: build from source takes much time, the most of the sources areavailable to download, distributions like these modify the code to improve security and adapt thedeveloper source to their systems.In summary the only way to create a secure system is build it from source and after that build fromsource every package we want to add, and its direct and indirect dependencies, the recursivedependencies. This is possible because, obviously, someone had to build the installation DVDs, LiveCDs, etc we bought or download, right?- LFSIs the best option to create your own distribution. However my intention is improve security instead ofdevelop a new Linux flavor.The advantages of LFS are: Create your own distro, learning step by step. Give it a name it and beremembers by the history as distro creator, nothing new.References:Topic: Linux forksWeb: https://en.wikipedia.org/wiki/List_of_Linux_distributionsTopic: Comparison of Linux distributionsWeb: https://en.wikipedia.org/wiki/Comparison_of_Linux_distributionsTopic: Unix descendantsWeb: https://en.wikipedia.org/wiki/Unix-likeSome disadvantage of LFS are:The long time of set-up and build, it's difficult to add more packages to the personal distro, and they'renot many packages available, or you need to adapt the source of the software to build it in the newLinux system and make it work, which takes much more time, also, you don't have the advantages of adistribution like Debian, fore example you are not going to have DPKG and APT to download binaries

and sources reviewed by the distribution developers, but can build and install DPKG and APT later onover your LFS, which is going to start to make us think again in how easily should be start from scratchutilizing the advantages of a distro like Debian.LFS advantage:You have access to the source of the tools to build Linux like C, and C++, to partially make sure thatthere are not modifications in this tools that will create vulnerabilities or back doors on the systemand the packages built. The real problem is that if you follow the source chain levels you never knowwhere a tool can be retouched by someone to spy you include the NSA itself. Image that you need tocompile the LFS compilation tools from a system which has similar tools installed as binaries: C., C++,etc. Next question is what programming language do you need to build C, C++, etc? Every answershows up a new question. Originally, C was implemented in assembly language on a PDP-7 by Ritchieand Thompson. So, at the end to make sure what you are compiling with you need to write a C inassembly. Sounds crazy, but it is the only way to know everything in all the system layers. With LFS, atleast we start almost from the real scratch, but that also make think what to do next with my LFS, keepdeveloping My Own Distribution or install DPKG to make the most similar to Debian fork. On the otherhand, the Debian team recommend you to trust their system and packages because they test and re-build them before they add them to the Official Debian repositories: This is a trusted network.References:Web: https://en.wikipedia.org/wiki/C_(programming_language)Remember that you can test your own system looking for vulnerabilities and backdoors, and sniff thenetwork traffic, to monitor network packages, the package content and package size. I don't knownetwork packages rather than ICMP that can work behind the scenes to send information to NSA, butdon't discard the idea. There are also the exploits, a type of malware which can send, receive andshape secret messages created with unicode, oer the networks. I only can recommend you to protectthe building environment as possible and test the resultant system when finish to discard furtherproblems.- Install Debian from Netinstall/CD/DVD/BluRay or use a Live DiscTo do not leave Debian forever and make my own LFS, I am going trust Debian and assume that theyhaven't hacked their own project.This is going to give you the information you need about your hardware and system, to install yourDebian from a scratch.Building objetives and steps:- Build a system from source in a chroot environmentReferences:Topic: Install Debian from a scratch in Debian with debootstrap

Web: https://debian-administration.org/article/426/Installing_new_Debian_systems_with_debootstrapFile: Installing new Debian systems with debootstrap.pdfTopic: Installing Debian GNU/Linux from a Unix/Linux SystemWeb: https://www.debian.org/releases/stable/i386/apds03.htmlFile: D.3.pdfNote: From Windows you can use Ubuntu bash from the MS Shop, or CygWin.Prepare the file system to allocate the new system:1. If you choose to create the chroot in a directory you have to keep the previous system installationcomplete.2. If you choose to create the chroot in a new disc partition you can remove the previous systempartitions using tools like Gparted or fdisk, when the chrooted system has been added to the Grub2menu.3. If you choose to create the chroot in a new hard drive you can remove the system from the harddrive when the chrooted has been added to the Grub2 menu.In this case my choice is not option 3, no matter it's easier to format or remove a whole hard drivethan partitions. I am thinking on people who work on laptops that have not second HD/SSD device.I am going to free more or less 10 GB to create a basic system, but I want to use less to create a LiveDVD at the end.Setup a reproducible builds environment:References:Topic: Debian works on reproducible builds abilityFile: Debian está trabajando en compilaciones reproducibles.pdfWeb: http://dplinux.net/debiancontinuaconlascompilacionesreproducibles/File: Debian continúa con las compilaciones reproducibles - Detrás del pingüino.pdfTopic: How to make your software build reproduciblyFile: 2015-08-13-CCCamp15-outline.pdfTopic: Debian working on reproducible builds.Web: https://tuxdiary.com/2015/02/24/debian-reproducible-builds/File: Debian working on reproducible builds.pdfTopic: Reproducible builds Debian WikiWeb: https://wiki.debian.org/ReproducibleBuildsFile: ReproducibleBuilds - Debian WiKi.pdfTopic: Reproducible Builds HowtoWeb: https://wiki.debian.org/ReproducibleBuilds/HowtoFile: ReproducibleBuilds How to - Debian WiKi.pdfDownload the debootstrap source code using apt:Build debootstrap using reproducible builds environment:

Install debootstrap:Install minimal Debian using source sources instead of binary (DEB) packages:Install a minimal system using debootstrap. Remember that to create a Live DVD we need more sourcepackages built and installed, basically, no include the xserver, etc, up to Desktop Environments you canadd later.Reference:Topic: Installing Debian GNU/Linux from a Unix/Linux SystemWeb: https://www.debian.org/releases/stable/i386/apds03.htmlFile: D.3.pdfReview the system cache in /var/cache/apt/archives in the minimal system.The packages installed with debootstrap most be there.Next, go back to your system, and setup your Debian system sources.list file under /etc/apt/ todownload the sources of these packages.Create a local repository with Aptly to add the sources required by debootstrap to create the minimalsystem. Setup the file /etc/apt/sources.list accordingly.bian repository.References:Guide: Create a local Debian repositoryWeb: http://www.unixmen.com/introducing-aptly-a-debian-repository-management-tool/File: Aptly, A Debian Repository Management Tool.pdfInstall the new minimal system from \"our\" source repo all in the same deboopstrap installationcommand.Reference:Topic: Installing Debian GNU/Linux from a Unix/Linux SystemWeb: https://www.debian.org/releases/stable/i386/apds03.htmlFile: D.3.pdfTopic: Install the Linux kernel. The kernel requires special treatment in Debian.Web: See the guide \"Build the LInux kernel in this Blog\".- Add the chroot environment to Grub2 to boot from Grub2 menuReferences:Web: http://linuxblogcostarica.blogspot.com/2015/11/como-bootear-una-distro-instalada-en-un.htmlFile: Cómo bootear una distro instalada en un folder (chroot).pdfWeb: http://linuxblogcostarica.blogspot.com/2015/10/como-instalar-otra-distro-linux-en-la.htmlFile: De Linux y otros_ Cómo Instalar otra distro Linux en la misma partición.pdf- Create a bootable Pendrive/ISO disc from the chrooted system

To create an ISO using tool dd:Before use 'dd', remove it and rebuild it from source. If possible build its dependencies and recursivedependencies.References:Topic: Live systems manual. See the page 53, actually the page 58 or 61 from 101.File: live-manual.portrait.en.a4.pdfWeb: http://debian-live.alioth.debian.org/live-manual/stable/manual/html/live-manual.en.htmlNote: The resultant ISO image is persistent (writable, rather than Live CD/DVD/BlueRay).To burn an ISO image to a physical medium with xorriso:References:Topic: Live systems manual. Look for the section \"Burning an ISO image to a physical medium\", page18, actually page 23 or 26 of 101.File: live-manual.portrait.en.a4.pdfWeb: http://debian-live.alioth.debian.org/live-manual/stable/manual/html/live-manual.en.htmlAlso test the procedures:4.5.2 Copying an ISO hybrid image to a USB stick4.5.3 Using the space left on a USB stick4.6 Using a virtual machine for testing10.3 Persistence- Create a Live DVD disc from the bootable Pendrive/ISO or the chrooted environmentTo create a Live DVD we need even more source packages built and installed, basically, no include thexserver, etc, up to Desktop Environments you can add later, plus teh ability to install the system (whichis not built from source, or yes built, by creating the Live CD/DVD with just source repos setup in/etc/apt/sources.list file).You can use the same manual used in the section \"Create a bootable Pendrive/ISO disc from thechrooted system\", to verify what packages are required to build this Live system.IYou need to add all the software built from source of a Live system to the minimal debootrapinstallation and then create an bootable image.After that you can create your own Official Live ISO source using the tools in the referenced manual, soeverybody could add the source to the tools repositories, download, install and create customversions of the bootable drives or discs images.Modifying images with persistance, you can remaster your images to create your own version of aDebian Fork, as today Canonical makes Linux Ubuntu, basically.References:File: live-manual.portrait.en.a4.pdfWeb: http://debian-live.alioth.debian.org/live-manual/stable/manual/html/live-manual.en.htmlLive DVD VS Netinstall:

If you create Netinstall will need to download wireless drives, etc, but if you create a Live DVD, itshould contain the most of the proprietary (non free) and free drivers, etc.Set up and maintain a perfectly functional operating systemBack-up, Emergency and RestoreCloning and directory and system back-upsFirst of all, define a back-up strategy, defining:- Back-up data (What to copy)- Back-up frequency (Schedule)- Back-up automation (yes/No)- Back-up type (Complete, incremental or differential)- Back-up back-ups (Number of copies and location)You can use tools like:Disks:Make backups as HD image in img format.rsbackup:Backups are stored as complete filesystem trees on a (perhaps external) hard disk. Multiple backupsuse hard links between identical files to save space.Backups may be taken from multiple machines (over SSH) and stored to multiple disks.Backups may be made automatically, i.e. without relying on the operator to remember to make abackup.Clonezilla:Make a backup from this live DVD backup tool.Partimage:Make local and over the network partition backups and restoration.Rudiments backup:Backup using shell scripts.Manual backups:There are more solutions, but in my case for system maintenance and especially for backups, mymanual procedure is all right.

My Debian Workstation back-up procedure is very simple.Remember to keep the directory/file permissions and symlinks using the command 'cp -dpR':/etcReasons:sudoersfluxbox/apt/hostsresolve.confnetwork/interfaceskvm/firewall scriptmore.../home/esteban/DocumentsReasons:All my docs are here/var/cache/apt/archives:Reason:Contains all the DEB packages, except for after a new system have been installed from netinstall Disc(at leat)/home/Esteban/Downloads/to Debian 8 Jessie repoReason: The directory is the new mini-repo of packages downloaded to put into 2 remote/externalHDs/SSDs repository directory called: Debian 8 Jessie repoNotes:I don't backup these directories:/usrReason:I don't back up this directory but contains more software installations and configurations/optReason:I don't back up this directory but contains more software installations and configurations/home/esteban/DownloadsReason: I don't keep files in this directory. I put away the files in remote/external HDs/SSDs theweekends to free system space.

/home/esteban/Reason:To much files to backup. I restore virtual machines templates from a Virtual Applicance directory in aremote or external HD/SSD. In this case I can backup just the virtual machines to my VM backups orcreate/merge a templete.Hidden filesHidden config filesVirtualBox VMs/Documents/Downloads//var/lib/libvirtReasons:KVM virtual machines, qcow2 containers and ISO can be restored from here, but there are to muchfiles to backup, and I restore virtual machines templates from a Virtual Applicance directory in aremote or external HD/SSD. In this case I can backup just the virtual machines to my VM backups orcreate/merge a templete./bootReason:grub/I can restore Grub manually, from the installation CD/DVD or using tools like Knoppix live DVD oranother rescue CD/DVD.Data recoveryReferences:Topic: Restore a complete partition which includes the lost informationGuide: Mount and repair CD-DVD ROM ISO or HDs-SSDsInstallation of e2fsprogs and extundelete$ apt-cache search e2fsprogsOutput:e2fsck-static - statically-linked version of the ext2/ext3/ext4 filesystem checkere2fsprogs - ext2/ext3/ext4 file system utilitiese2fsprogs-dbg - debugging information for e2fsprogslibuuid-perl - Perl extension for using UUID interfaces as defined in e2fsprogsEnd of Output$ sudo apt-cache search extundeleteOutput:extundelete - utility to recover deleted files from ext3/ext4 partition

End of OutputReferences:Web: http://arkit.co.in/linux/recover-deleted-files-in-rhel-6/File: Recover Deleted files in RHEL 6 - Tech Tutorials.pdfEmergency keys combinationsThere are several low level shortcuts that are implemented in the kernel which can be used fordebugging andrecovering from an unresponsive system. Whenever possible, it is recommended that you use theseshortcutsinstead of doing a hard shutdown (holding down the power button to completely power off thesystem).A common idiom to remember this is \"Reboot Even If System Utterly Broken\" (also referred to as\"REISUB\").Alternatively, think of it as \"BUSIER\" backwards.Keyboard shorcut / description:Alt+SysRq+r = Unraw / Take control of keyboard back from X.Alt+SysRq+i = Kill / Send SIGKILL to all processes, forcing them to terminate immediately.Alt+SysRq+u = Unmount / Unmount and remount all filesystems read-only.Alt+SysRq+e = Terminate / Send SIGTERM to all processes, allowing them to terminate gracefully.Alt+SysRq+s = Sync / Flush data to disk.Alt+SysRq+b = Reboot / Reboot.** Note: Depending on the computer or keyboard, replace Alt+SysyRq with Alt+PrtScr or in notebookswith Alt+FN+SysRq or Alt+FN+PrtScr, followd by a shorcut.Complete the REISUB sequence in order to close the system the at least sub-normally and thenreboot.Tips:If you are using a display manager and after Alt+SysRq+e you are presented with the login screen (orfull desktop if autologin is enabled), it is most likely caused by Restart=always directive in therelevant service file. If necessary, edit the unit, however this should not prevent the \"REISUB\"sequencefrom working.If all the above combinations work except Alt+SysRq+b , try using the contralateral Alt key.On laptops that use Fn key to differentiate SysRq from PrtScrn, it may not actually be necessary to

use the Fn key (i.e., Alt+PrtSc+letter could work).You may need to press Ctrl along with Alt. So for example, full key shortcut would beCtrl+Alt+SysRq+b.References:Web: https://wiki.archlinux.org/index.php/Keyboard_shortcutsFile: Keyboard shortcuts - Reboot Linux from keyboard.pdfWeb: https://en.wikipedia.org/wiki/Magic_SysRq_keyNote: If the sequence fails the system is frozen. In this case you can still use CTRL+ALT+DEL or pressthe power button.Note: You can assign actions to keys. Look key binding in the guide of Li-Speak, in the section \"Setupthe keyboard keys:\" (Link)System RescueUse the menu rescue in the Distro installation disc or RescatuxFilesystemsBoot Loaders and Dual BootThis a very simple to way to lock the Grub2 boot menu, visible immediately after unlock the cryptpassword when the system starts.Preflight:First of all back-up the files involved on every step.Choose a Grub2 root user (MYUSER, not necessarily the system root), and a password but if you havechosen the root don't use the root password for the Grub2 configuration.Steps:Insert the next snippet at the end of the file /etc/grub.d/00_header:cat << EOFset superusers=\"root\"password root PASSWORD_HEREEOFTo setup one user:To setup the user root:$ sudo sed -i -e '/^menuentry /s/ {/ --users root {/' /etc/grub.d/10_linux /etc/grub.d/10_linux/etc/grub.d/10_linux /etc/grub.d/30_os-prober /etc/grub.d/40_custom

The resultant lines in the code of the files should have added: --users rootUNDO the changes:$ sudo sed -i -e '/^menuentry /s/ --users MYUSER[/B] {/ {/' /etc/grub.d/10_linux/etc/grub.d/20_memtest86+ /etc/grub.d/30_os-prober /etc/grub.d/40_customNote that there are types of commas (\"\", '', ``, ‘’) and dashes (-, -- ==> This is two single dashes).Save the new changes with:# update-grubDon't run the command anymore, otherwise the changes made will be restored to default.Reboot the machine to make sure the Grub2 editor has been locked.References:Web: http://www.dedoimedo.com/computers/grub-2.htmlFile: GRUB 2 bootloader - Full tutorial.pdfPENDING:This is out of the Blog. I need to improve this process to add a second user and avoid passwordprompts in the Grub2 screen.If you reboot at this point the the Grub2 splash is going to ask for the password every time you poweron the machine. To skip the recurrent password prompt just replace Grub2 user roo by adding theuser esteban:Add esteban to /etc/grub.d/00_header:cat << EOFset superusers=\"root\"password root PASSWORD_HEREpassword esteban PASSWORD_HEREEOF$ sudo sed -i -e '/^menuentry /s/ {/ --users esteban {/' /etc/grub.d/10_linux /etc/grub.d/10_linux/etc/grub.d/30_os-prober /etc/grub.d/40_customIf you open the files and search '--users' should look lines like this:$_get_device_id \"${DEVICE}\")' --users root --users esteban {

Dual Boot:Just say that if you have a dual boot with Windows the time will be affected and you will have tocorrect the issue.References:Guide: Set date, time and timezoneClean up the systemBleachbitStacerLogrotatePartitioningTo work on partitions and more:The tool I like the most is Gparted, but also you can use fdisk, and Disks:To install Gparted:Need to setup repos main, contrib and non-free to install NTFS package ntfs-3g:$ sudo nano /etc/apt/sources.list$ sudo apt-get update$ sudo apt-get install gpartedNote: To work on the active primary partition you can boot up the computer from a distro likeKnoppix, which is Live DVD and also has a Gparted out of the Box.SudoSudo is to execute root commands as user.On my Wheezy Desktop version sudo was more configured than on Debian Squeeze, maybe because isGnome or there is a package update. Curiously Jessie comes without the program and you shouldinstall it by yourself.# apt-get update# apt-get install sudoOn Jessie, simply add an user to sudoers but before just backup file.# cp -dpR /etc/sudoersBAK /etc/sudoersBAK# nano /etc/sudoersAdd an user below the root user record:esteban ALL=(ALL:ALL) ALLShow my user groups:$ id

Save changes and restart sudo service:# /etc/init.d/sudo restartOr use the new systemd method instead of sysVinit:# systemctl restart sudo.serviceOr use new systemd command supported by systemd:# systemctl restart sudoCheck personal user configuration:From root:# sudo -lFrom user:$ sudoOutput from user esteban:User esteban may run the following commands on ProLiant: (ALL : ALL) ALLFirst time you use sudo the root user (you or whoever he/she is) has to type the root password to letthe use execute root commands as user.Test the command (See.. as user):$ sudo apt-get updateAnd should work.Users, groups and terminals- Users- Groups- Terminals- UsersLog in as root from user:# sureturn to user:# exit# adduser esteban <GROUP>List of user IDs:# nano /etc/passwdNote: Don't confuse # adduser and # useradd which adds new users to the system. More info type $man <command>.

- GroupsList groups:# grep group_name_here /etc/group# vim /etc/groupAdd users to group staff (example using xcapncrunchx), and See Which Group Your Linux User BelongsTo:# adduser user groupList groups and users in specific group:# nano /etc/groupTo search for esteban in nano:CTRL + W amd type esteban.OR use:# grep staff /etc/group# grep xcapncrunchx /etc/groupCheck \"default\" or \"main\" user group:# groupsOR:# groups usernameRemove user from group, and See Which Group Your Linux User Belongs To:# deluser user groupGive permissions to the file:# chmod 755 mysql-cluster-gpl-7.2.10-linux2.6-i686.tar.gz# chown root mysql-cluster-gpl-7.2.10-linux2.6-i686.tar.gz# chgrp staff mysql-cluster-gpl-7.2.10-linux2.6-i686.tar.gzUntar the file:# cd /usr/local/# tar xvzf mysql-cluster-gpl-7.2.10-linux2.6-i686.tar.gzThe folder permissions are automatically set to owner: root and group: staff.- TerminalsClear the terminal:# cleanReset the terminal:

# resetRestore lost remote terminal sessions through ssh:# apt-get install screenI am not showing how to use screen. It's kind of complicated to understand it the first time you use it,but.. do it yourself.Run screen to open a new terminal session:# screen <parameters>References:Guide: See the Guide ScreenTopic: Screen know howWeb: https://www.rackaid.com/blog/linux-screen-tutorial-and-how-to/File: How To Use Linux Screen.pdfInstall Matrix like terminal fall:# apt-get update# apt-get install cmatrixRun with:$ cmatrixChange font color:Just edit your terminal profile:gnome-terminal: Edit -> Profiles -> EditUncheck option: Use colors from system theme.konsole: Settings -> Configure ProfilesOpen a new Xterm with green font:$ xterm -foreground greenSetup all the Xterm (instead of gnome-terminal) as greenon black:Create the file:/home/esteban/.Xresorces!! Comments begin with a \"!\" character.!XTerm*background: blackXTerm*foreground: greenXTerm*cursorColor: greenXTerm.vt100.geometry: 79x25XTerm*scrollBar: trueXTerm*scrollTtyOutput: false

or use this:!! Comments begin with a \"!\" character.!XTerm*Background: blackXTerm*Foreground: greenXTerm*transparent: trueXTerm*font: 9x15XTerm*saveLines: 1000XTerm*HiForeColor: whiteXTerm*HiBackColor: #c06077XTerm*geometry: 79x25Next, XResources are read from the file ~/.Xresources when you login, but if you wish to force them tobe reloaded you run the command:$ xrdb -merge ~/.XresourcesSet Xter geometry:$ Xterm -geometry 40x20Reference:Web: https://www.debian-administration.org/article/66/Customizing_your_xtermFile: Customizing your xterm.pdfXterm transparency:Reference:Topic: According to this article you cannot set transparency in Xterm.Web: http://forums.justlinux.com/showthread.php?110791-xterm-transparencyThe article says that you need eterm or aterm.To install Eterm:# apt-get install XtermTo run a term:# Eterm -X buttonbar=off --scrollbar=off -f blueTo run a Eterm with transparency:# Eterm -X buttonbar=off --scrollbar=off -f blue --trans trueNote: With this types of terminal you don't need toinstall gnome at all except for when there is a dependencyproblem, for example if gimp needs gnome to run, but you caninstall just x server xorg without gnome. I have installed

gnome but as I don't enter to gnome desktop I save RAM memory to other apps, but I spend memorywhen I call Nautilus so it is better to use rox instead.I don't like Eterm but here are more config options:Reference:Web: http://www.brain-dump.org/blog/entry/38/Fluxbox_startup_techniques_and_transparent_Eterm_on_desktopFile: Etermconfig.pdfFor example here you can define the layer number of the terminals in a very simple way. This can workif you RIGHT CLICK MENU > remember... the size and position of a term with fluxbox so that the nexttime when you start the system will look like waking up from hibernation and ordered.Install aterm:Aterm is teh best option because appears transparent by default, but I am not sure at this point if usesthe file .XResources. Anyways keep the file and remember to reload the configuration just in case:# apt-get update# apt-get install aterm# aterm# xrdb -merge ~./XresourcesMake aterm work with [group] and add the app to replace gnome-terminal in [app] of the file appsand ad it to file menu in fluxbox if you want. In my opinion the term group looks bad and preferred tokeep using gnome terminal but that is better to save resources. But in gnome terminal you can pastecommands and on the other terms you cannot (Reminds me Windows).You can see aterm and Eterm in the Fluxbox term menu. For fluxbox information see the Fluxboxguide. (LINK)Working with directoriesList directories:$ ls -hal$ ls *.tar$ ls -F$ ls --color *steba*Copy files or directories (origin to destiny)$ cp -dpR A BCut and move files or directories:$ mv A BDelete files or directories:$ rm -rf A B C D ESetGID:Take a look at the directory /usr/local:

# ls -hal /usrOutput:drwxrwsr-x 10 root staff 4.0K May 5 21:01 local'S' = The directory's setgid bit is set, but the execute bit isn't set.'s' = The directory's setgid bit is set, and the execute bit is set.SetGID = When another user creates a file or directory under such a setgid directory, the new file ordirectory will have its group set as the group of the directory's owner, instead of the group of the userwho creates it.To remove the setGID bit:chmod g-s eclipse/But don't do it on /usr/local.Taken from man chmod:You can set or clear the bits with symbolic modes like u+s and g-s, and you can set (but not clear) thebits with a numeric mode.To find mounted CDs or DVDs:$ ls /media/$ ls /media/esteban/To auto-complete command lines (commands and directories):Use TAB key while you type the command, directory or file on your mind.Gnome DesktopGnome Desktop Icons, Themes and CursorsReferences:Topic: Look for the section \"Install the User Themes extension:\" of the guide.Guide: Gnome Shell ExtensionsGnome Shell ExtensionsManage extensions:To manage extensions, include set ON/OFF, configure and upgrade, visithttps://extensions.gnome.org/local/You can also go to menu Applications > Tweak Tool > ExtensionsInstall the Battery Percentage extension:

Reference:Web: https://extensions.gnome.org/extension/818/battery-percentage/Install Battery Power Statistics Shortcut:Reference:Web: https://extensions.gnome.org/extension/175/battery-power-statistics-shortcut/Install the Caffeine extension:Reference:https://extensions.gnome.org/extension/517/caffeine/Install Multi Monitors extension:Reference:Web: https://extensions.gnome.org/extension/921/multi-monitors-add-on/Install fix-multi-monitors extension:Reference:Web: https://extensions.gnome.org/extension/1066/fix-multi-monitors/Install display button extension:Reference:Web: https://extensions.gnome.org/extension/939/display-button/Install cpufreq extension:Reference:Web: https://extensions.gnome.org/extension/1082/cpufreq/Install Hibernate Status Button:Reference:Web: https://extensions.gnome.org/extension/755/hibernate-status-button/Install Hubic Indicator extension:References:Web: https://extensions.gnome.org/extension/793/hubic-indicator/

Web: https://github.com/DoudTechData/hubic-indicatorWeb: https://forums.hubic.com/showthread.php?272-hubiC-for-Linux-beta-3-is-out-Web: http://mir7.ovh.net/ovh-applications/hubic/hubiC-Linux/2.1.0/Web: https://wiki.debian.org/es/hubiCFile: Install Hubic Indicator.pdf (Spanish)Steps to install the Hubic service:References:Guide:Sync devices in the Cloud.Install the Transparent windows extension:You need to install a Gnome extension.Reference:Web: https://extensions.gnome.org/extension/684/transparent-windows/Gnome extensions is on Beta version and Transparency is not working very good as the GitHub says.Reference:Web: https://github.com/saysilence/transparentwindowsYou should install the app manually like this:References:Topic: How to download the Extension from GitHub.com and then save the extracted file in:/home/esteba/.local/shell/gnome-shell/extensionsWeb: http://askubuntu.com/questions/196884/how-to-install-gnome-shell-extensions-offlineAfter installlation you will go to Tweak tool and see next Error:The controls to switch features on and off are not working.And the solution to the transparency Work in 3.14 is a manual change of the file metadata.json of theextension to add current version (\"3.14\") to the chain, like this:...\"shell-version\": [\"3.10\", \"3.14\"] ,...Why version 3.14?:$ gnome-shell --versionTerminals transparency is set up with this extension rather than in the previous Gnome 2. Read theinstructions in GitHub. You can also switch from everything transparent to everything opaque easily.DO NOT Install the Dynamic Panel Transparency extension, beucause is ugly and awesome terminaltransparency is not going to work if this extension is toggled ON:Web: https://extensions.gnome.org/extension/1011/dynamic-panel-transparency/

Install the MMOD Panel extension:Reference:Web: https://extensions.gnome.org/extension/898/mmod-panel/Install the Windows Blur Effects extension:Reference:Web: https://extensions.gnome.org/extension/891/windows-blur-effects/Install the Transparent Top Bar extension:Reference:Web: https://extensions.gnome.org/extension/857/transparent-top-bar/Install the extension PulseAudio Loopback Device:Web: https://extensions.gnome.org/extension/954/pulseaudio-loopback-device/Install the cpufreq extension:Web: https://extensions.gnome.org/extension/1082/cpufreq/Install the Language extension:This extension shows up instantly, when you add a second languageWeb: Hasn't web page.Install the User Themes extension:Reference:Web: https://extensions.gnome.org/extension/19/user-themes/To download themes:http://gnome-look.org/?xcontentmode=191I test downloading Granite:Web: http://gnome-look.org/content/show.php/Granite?content=170283&PHPSESSID=eg77j33asa4fhenl4cqm4pf4v1See the web to verify gnome Shell versions and specific instructions.Minimum required: GNOME 3.x

Downloads: 1902Submitted: Jun 7 2015Updated: Jun 14 2015Description:A cleaned up and simplified Gnome Shell 3.16 theme inspired by GTK's dark theme layout and colorscheme.INSTALLATION INSTRUCTIONSInstall Gnome Tweak Tool and enable the User Themes extension:https://extensions.gnome.org/extension/19/user-themes/.Go to Appearance->Shell Theme and browse for the downloaded .zip file. The theme will get installedand you have to select it from the drop down list.Cheers!I also downloaded Glassfull 3.14:http://gnome-look.org/content/show.php/Glassfull+3.14?content=166572&PHPSESSID=eg77j33asa4fhenl4cqm4pf4v1Minimum required: GNOME 3.xDownloads: 8491Submitted: Aug 14 2014Updated: May 26 2015Description:GNU/Linux = Debian 8 JessieGnome-Shell = 3.14.1Quite sharp corners and transparent elements with 1px border and blue selected.I also downloaded Novashell.Web: http://gnome-look.org/content/show.php/NovaShell?content=151522Visit the web site to follow the installation instructions and follow the icons link.To install themes:Use the tweak tool to install the zip file.Installation path:/home/esteban/.local/share/themesThemes recommended:Web: http://www.maketecheasier.com/8-gnome-shell-themes/File: 8 good-looking Gnome shell themes.pdfThis article is part of the Linux Desktop Themes series, and has link to great theme articles:5 Beautiful Icon Themes for Linux5 Great GTK Themes for Linux8 Good-looking Gnome Shell Themes5 Great Openbox Themes9 Great KDE Plasma Themes

9 Awesome Conky Themes9 Great Mate Themes [Linux]9 Great Themes for XFCE49 Great LXDE ThemesTo install/change icons:References:Web: http://www.maketecheasier.com/5-beautiful-icon-themes-for-linux/How to install icon themes:Icon themes can be installed in two ways. You can install your icons to the system directory, effectivelymaking your icon theme accessible to every user on the system. Alternatively, it’s possible to justenable it for one user only.Download an icon theme of your choice and extract the files inside the archive. For instance, if you’vechosen to download Dalisha (see the link below), you’d be extracting “Dalisha_2_2.tar.gz”. Onceextracted, a folder will appear (in this case it’s called Dalisha). Open a terminal window and enter thecommand(s) below to install the icon themes.Installing systemwide:$ sudo mv /path/to/icon/theme/folder/ /usr/share/icons/ -rInstalling for one user:$ mv /path/to/icon/theme/folder/ ~/.icons -r* Remember to change the filepath to where you have extracted the icon theme archive.Once the theme has been installed, enable the icon theme inside your desktop environment with theDE’s own configuration tool. Or, using your tool of choice. If you are not sure what tool to use, checkout Gnome Tweak Tool (it works with most GTK desktops). If you’re on KDE, just open the KDEapplication menu and search icons. It should be pretty straight-forward.Note:/home/esteban/.icons doesn't exist. If I want to install icons locally, do I have to recreate the directorybefore or is there another directory?I also found this place in my home/:/home/esteban/.local/share/iconsIf some theme do not charge before restart reload the desktop configuration like this:Press and hold ALT + F2, and then press R and then hit ENTER.Networking

Basic networkingTopics:- Most used networking commands- Networking applications you will find in Gnome- Ethernet installation in Gnome- Wireless installation in Gnome- Set up proxy- Bridge the Ethernet networking- Bridge the Wireless networking- Most used networking commandsCheckout the IP address status:# ifconfigMake a ping:# pingVerify host name:$ hostnameModify hostname:# nano /etc/hostnameVerify domain name:$ hostname --fqdnModify hosts file:# nano /etc/hostsModify DNS:# nano /etc/resolv.confModify Network card (no Network Manager in use):# nano /etc/network/interfacesRestart the networking service with systemd:# systemctl restart networking.serviceRestart networking service with sysVinit:/etc/init.d/networking restart

Verify the network-manager (Gnome) service status:# systemctl status network-manager.serviceTurn ON and OFF the ethernet interface (Useful to reestablish a broken connection):# ifup eth0# ifdown eth0- Networking applications you will find in GnomeApplications > NetworksApplications > Network tools- Ethernet installation in GnomeBecause of the Gnome installation, in order to run the Desktop properly use the default network toolto modify the IP address and networking configuration, the Gnome Network Manager:$ gnome-control-centerAnd then, select the option \"Network\"- Wireless installation in GnomeNext is an example of installation using my Laptop's Broadcom Wireless chipset.Status: System Netinstall disc didn't recognize the Wireless card, do then I finished using wired eth0setup, but now I want to go Wireless.Constantly, verify system mesages:$ less /var/log/messagesAnd then press END key to go to the end and await for new messages to come.List PCI hardware:$ lspciDisplay kernel messages to help finding PCI hardware errors:$ dmesgThere is an error that includes: \"Go tohttps://wireless.wiki.kernel.org/en/users/Drivers/b43#devicefirmware\"List PCI hardware, include vendor and chipset model:$ lspci -nnOutput extract:

01:00.0 Network controller [0280]: Broadcom Corporation BCM4312 802.11b/g LP-PHY [14e4:4315](rev 01)End of Output.To list only the Wireless device:$ lspci -nn -d 14e4:Search for Wireless modules, showing the status of modules in the Linux Kernel:$ lsmodAfter reboot attempt to list the new device interface:$ iwconfigAnd then No wireless modules but cfg80211 is presentMake sure repos \"main\" and \"contrib\" are in sources.list file:$ sudo nano /etc/apt/sources.listUpdate the repos DB:$ sudo apt-get updateSearch for the driver in the official Debian repos:$ apt-cache search firmware-linux-nonfree$ apt-cache search broadcomInstall a driver (but none of the list works):$ sudo apt-get install firmware-linux-nonfree$ sudo rebootAfter reboot attempt to list the new device interface:$ sudo iwconfig$ sudo ifconfig wlan0And then , list hardware again:$ lspciAn then, verify the kernel messages:$ dmesg$ dmesg | grep wirelessThen, verify kernel modules:$ lsmodThis time this command shows new wireless modules: b43, bcma, mac80211 and cfg80211. cfg80211depends on b43, mac80211.