My Computer

As my day-to-day, personal computer, I use an ASUS KGPE-D16 (available from Vikings), running Libreboot.

I use it with Debian Buster (and Stretch in the past).

The "onboard" VGA graphics is useful for installing the OS, using ttys, etc. but is not powerful enough for many graphical applications.

So, I use a PCI graphics card (at the moment a GeForce GTX 780 Ti, but I previously used a GeForce 9500GT). In order to get this to work, you need to generate an xorg.conf and put it in /etc/X11.

Make sure the X server is not running.

X -configure
cp /etc/X11/xorg.conf

However, you will not be able to view ttys via the PCI graphics card (i.e. when you press Ctrl+Alt+F1). You can still view ttys via the onboard VGA, so you might want to keep both connected to your monitor.


Getting gnus to fetch local spool files on Debian Buster

Trying to get local mail in gnus using the "file" mail source, I was getting various errors, such as:

Mail source (file :path /var/mail/<user>) failed: (error Cannot get new mail)

This appears to have fixed them.

(setq mail-source-movemail-program "/usr/bin/movemail")


Below code will allow you to use C-y (yank) in ansi-term. Does not support M-y (yank-pop).

(add-hook 'term-mode-hook
          (lambda ()
            (define-key term-raw-map


For systemd

A modification of the script from the Securing Debian Manual.

Place firewall-systemd somewhere in your executable path. This allows you to setup, stop and clear firewall rules.

Modify the "ExecStart=/path/firewall-systemd start" line of the systemd unit file to point to where you put firewall-systemd, and place it in etc/systemd/system. This is the systemd unit file, and configures how systemd calls firewall-systemd.

Place the iptables rules file in etc, modifying as you see fit (see "man iptables" or netfilter documentation). This stores the rules you want loaded into the firewall. It was generated by running:

iptables-save > outputfile

firewall-systemd more-or-less does:

iptables-restore < /etc/iptables.rules


systemctl enable firewall.service

so that it will run everytime the computer is started.

For System V init

Here is the firewall script I use on all my computers. It is the one found on Securing Debian Manual but with LSB Init Headers added (see here and here for more information) and one bug fixed (information here).

Include in the REMOTE_TCP_SERVICES and REMOTE_UDP_SERVICES variables all the TCP and UDP ports (respectively) you want access to (for instance HTTP port 80). If you host services you want others to access modify TCP_SERVICES and UDP_SERVICES similarly.

Put the file into etc/init.d and call

insserv firewall

which will put it into the various etc/rc*.d directories so that the firewall will start each time you boot your system. I have configured it to bring the firewall up before the network is started, and bring it down after the network is stopped. You can change this behaviour by modifying the header between "### BEGIN INIT INFO" and "### END INIT INFO".


[FSF Associate Member] [FSFE Associate Member]