Debian User Forums

Unfortunately Thunderbird misbehaves when autoconfiguring mail accounts (last I remember was YEARS ago, and it still does). You can however set-up the account manually.

You could just use a screen locker, like slock (# apt install suckless-tools).
Just assign a keyboard combination to it, and that's it.

(in my case it's assigned to [WIN]-[L]. I use openbox).

Note that you can also have the systemd journal forward all[*] messages to syslog (e.g. rsyslogd).

[*] the systemd journal can miss events, due to various rate limiting options.

You can also disable the systemd journal completely and use exclusively rsyslogd, but it's quite messy.

Of course you can. I have three different programs bound to udp/53 on my server. One is OpenVPN (listening on WAN address), another is an unbound instance (listening on localhost, used as default resolver), and another unbound instance listening on a VPN address (used as resolver for VPN clients). A...

You could make the OpenVPN server listen on your WAN IP (which is what you need), and your DNS resolver could listen on localhost. This way both OpenVPN and DNS resolver can "share" UDP port 53. Note however that if you want to host a mail server, it is (generally) recommended not to host ...

you can use the numlockx program (apt install numlockx) and run "numlockx on" in one of your initialization scripts.
I have that in my .xsessionrc.

you mean that those commands are in your .bashrc, and yet they are not executed?
or you mean "why people don't put such commands in .bashrc"

Note that .bashrc is run by bash (not other shells), and only for interactive shells that are not a login shell.

Maybe you could log in to your DNS server (the X.X.X.X in your last message) and run (as root) netstat -plutn | grep 53 this will show which process is listening on port 53 (DNS). If you post here the output, it may help to identify what kind of service/server is running. Common DNS servers are bind...

You'd first need to find out which resolver you have installed in that server. Common options are bind (which you say you don't have) and unbound. Note that you dig test returns NOERROR if the server (192.168.45.67) provides a result. This doesn't say anything about whether it allows or not recursiv...

1- I can't get your point. When "PermitRootLogin no" is disable, then I should be able to log in with the root account. Is it otherwise? The default for PermitRootLogin is "prohibit-password", at least in the stable debian version. If you have something like # PermitRootLogin no...

TBH I don't think I actually need them, and I actually try to avoid using them (if I can use TOTP instead). I bought them because at some point Cloudflare and Yubikey had some offer where you could buy 2x for like USD 15, and wanted to test them. I also have two "SoloKeys" (one standard, o...

I use Bitwarden (actually, Vaultwarden), so I keep my TOTP's accessible from any device. Whenever I sign up or enable 2FA I make a copy of the data (or QR code) so that I can add it to Vaultwarden as well as to Aegis (Android). With Aegis you can also export the data to a file. I keep a copy (encryp...

My HP-48S calculator and my Nokia N900s. All of them working just fine ;-)

Gmail requires either SPF or DKIM for low-volume senders, and both + DMARC for higher volume. This has been "turned on" relatively recently, so maybe this is the issue. I don't have any e-mails from forums.debian.net at hand, except for the "welcome" e-mail from 2014, which had n...

Today 3.5.23 was released, among others like 3.6.13, 3.7.9 and 3.8.4 providing the new 'smtpd_forbid_bare_newline' option. I'm not sure debian will provide this as a security update (there is some debate wrt whether this is a security issue at all or not). But I guess at some point there will be upd...

what's that cron.hourly "killer"??

I don't think there's such a thing. And if it's something you hacked yourself, then just disable/remove/fix it.

I'd try removing that $(parse_git_branch), and/or reverting to whatever the default prompt was, in case this may be misbehaving.

I still think that there must be a systemd unit or timer configured for the www-data user, whose home is usually /var/www, so that systemd will look at /var/www/.config/systemd/user. I'm not very familiar systemd user units/timers (and I find them weird), but you said there is no /var/www/.config di...

When you type "ws2.org", how do you expect a browser to know that it has to connect to port 63 instead of the default 80? Hint: you can't, generally. (you could add an HTTPS record to your DNS, which allows to tell the browser which port to connect to, but some browsers might no support th...

If you must, use docker or some other sandbox. PHP7.4 is not included in bookworm, so you'd have to add extra non-debian repositories, potentially making a mess of your installation.

What's "for testing purposes" anyway? why not test with a supported version?