How would Google treat a GitHub-Pages site, that is based on the same content as the GitHub repository itself?

I’ve just created a GitHub Pages "site", out of one of my repositories on Github. Basically it’s just a landing page, that pretty-prints my readme.md file(that is found in the repo). GitHub allows you to create such a site automatically.

I don’t know too much about SEO, but i’ve heard that google takes into account "duplicate" content, as a "devaluation" factor.

So i was wondering: If google finds a Github repo page, that outputs some readme.md file, and then finds a Github.io(GitHub Pages) page, that has almost the identical content- would it treat it as some duplicate, and apply some kind of penalty to it?

Risk of committing IdentityFile name for OpenSSH configuration to public repository

What is the risk of committing the IdentityFile line for each of my Host entries in my ~/.ssh/config to my public dotfiles repository? Would providing such information make it any easier for an attacker to compromise those keys?

cat ~/.ssh/config Host SE   Hostname security.stackexchange.com   User rage   IdentityFile ~/.ssh/security_key 

Versus

IdentityFile ~/.ssh/id_rsa 

Note: this is the default key name when invoking ssh-keygen.

How Secure is the Universe Repository?

I’m wondering about the security of downloading things from Universe. The Ubuntu help page seems to say that the community can make updates to pieces of software in that repo. Does that mean that just anybody can make changes, or that the maintainers of the original software can make changes?

For example, there’s an instance of Discord maintained in Universe, so can just anybody edit that instance, or only the Discord developers? Or do I misunderstand the whole thing?

Download multiple packages in parallel from a single repository with apt?

I’m painfully watching my apt dist-upgrade command download each package in a very long list, and what makes it painful is that packages are downloaded one-by-one. I fail to see why this process couldn’t be sped up by downloading multiple packages simultaneously!

For example, if apt is downloading Chrome (PPA), Syncthing (PPA), and Ubuntu system updates (non-PPA), three simultaneous downloads will begin, one for Chrome, one for Syncthing, and one for the Ubuntu system updates.

Since all update packages are downloaded before any installation even begins, I don’t see any reason why multiple packages for Ubuntu system updates coming from a single repository can’t be downloaded in parallel.

I would really like to know if anyone knows a way to make this happen? Can I downloaded multiple package upgrade files in parallel from a single repository when running apt dist-upgrade or apt upgrade?

apt-mirror local network repository

I have a segment of a network, that doenst have access to the internet. But it’s full with mashines which are Ubuntu 16.04 Time to time, from this segment of network i have to download some standart packages but i cant, becouse i have no chance to get internet in this zone. So i used apt-mirror, downloaded whole repos, which was indicated in initial source.list file of any ubuntu 16.04. Its about 500GB. But, when i try to install something more then “mc” or some generic package, i stuck in a dependency hell. For example, trying to install “sssd” i recieve:

root@ubuntu:~# apt-get install sssd Reading package lists... Done Building dependency tree        Reading state information... Done Some packages could not be installed. This may mean that you have requested an impossible situation or if you are using the unstable distribution that some required packages have not yet been created or been moved out of Incoming. The following information may help to resolve the situation:   The following packages have unmet dependencies:  sssd : Depends: python-sss (= 1.13.4-1ubuntu1.15) but it is not going to be installed         Depends: sssd-ad (= 1.13.4-1ubuntu1.15) but it is not going to be installed         Depends: sssd-common (= 1.13.4-1ubuntu1.15) but it is not going to be installed         Depends: sssd-ipa (= 1.13.4-1ubuntu1.15) but it is not going to be installed         Depends: sssd-krb5 (= 1.13.4-1ubuntu1.15) but it is not going to be installed         Depends: sssd-ldap (= 1.13.4-1ubuntu1.15) but it is not going to be installed         Depends: sssd-proxy (= 1.13.4-1ubuntu1.15) but it is not going to be installed E: Unable to correct problems, you have held broken packages. 

But how the hell it works, when i install packeges the from same repo, but not downloaded in my local pc, but from internet. It means, that apt-mirror doesnt download the whole repo and something miss. So, i have 2 questions:

  1. How can i download the whole repo, which will simulate the work of repo in the internet?
  2. If i cant, how can i add packeges to my own local repo and in some time fix dependencies?

Thank you!

Unable to install packages or rload repository

I’m having issues with updating or installing all packages in ubuntu 18.04.

I was trying to load openvpn so followed some instructions to edit my /etc/apt/source.list and now nothing is working. I have regenerated the source list using the ubuntu sources generator https://repogen.simplylinux.ch/generate.php but it doesn’t seem to help.

When I run sudo apt-get update I get the time out errors (see comment)

I have tried to change settings in the software & updates. However, when I try to reload the repositories I get the error saying download failed and to check internet connection. I have tried multiple servers including the main server and the same issues occurs.

When I try to install synaptic (and all other packages) I get these error messages Reading package lists… Done Building dependency tree
Reading state information… Done Package synaptic is not available, but is referred to by another package. This may mean that the package is missing, has been obsoleted, or is only available from another source

E: Package ‘synaptic’ has no installation candidate Reading package lists… Done Building dependency tree
Reading state information… Done Package synaptic is not available, but is referred to by another package. This may mean that the package is missing, has been obsoleted, or is only available from another source

E: Package ‘synaptic’ has no installation candidate

After trying everything I could, I opted to uninstall then reinstall 18.04. After reinstalling there are no improvements and I’m receiving the same errors.

If anyone has any ideas for a solution it would be much appreciated.

Errors while trying to create a signed local repository in Ubuntu

I am trying to create local signed repo for debian packages on one of our build systems. The intent is that after creating this signed repo, we will ship it as part of our installer along with the signing public key. Now, when the customer runs the installer, we untar the repo directory that we created, create /etc/apt/sources.list.d/<my-product>.list file & start installing the packages from this local repo.

Below are the steps I am following to create the repo.

  1. I place my debian packages in a directory, say /root/tempRepo
  2. Create Packages.gz
    dpkg-scanpackages /root/tempRepo /dev/null | gzip -9c > /root/tempRepo/Packages.gz
  3. Creating Release file for the repo
    apt-ftparchive release /root/tempRepo > /root/tempRepo/Release
  4. I already have created my gpg key & its in the key ring.
  5. Sign the repo
    gpg --clearsign -o /root/tempRepo/InRelease /root/tempRepo/Release
    gpg -abs -o /root/tempRepo/Release.gpg /root/tempRepo/Release
  6. So now my repo looks something like below,
    pkg1.deb pkg2.deb InRelease Packages.gz Release Release.gpg
  7. Along with the public key, I bundle this up and ship it as part of my installer.
  8. Now during installation, I untar the bundle and my repo is at /root/tempRepo (say).
  9. I run the below command to have the key available with apt.
    sudo apt-key add <path-to-pub-key>
    I make sure that the key has been imported using the command
    sudo apt-key list
  10. I create a file /etc/apt/sources.list.d/<my-product>.list with the below contents,
    deb file:/root/ tempRepo/ or deb file:/root/tempRepo ./
  11. On running sudo apt update or sudo apt-get update I get the below error trace,
Get:1 file:/root/tempRepo ./ InRelease [1,346 B] Hit:2 http://us.archive.ubuntu.com/ubuntu xenial InRelease Get:3 http://us.archive.ubuntu.com/ubuntu xenial-updates InRelease [109 kB] Get:4 http://us.archive.ubuntu.com/ubuntu xenial-backports InRelease [107 kB] Get:5 http://security.ubuntu.com/ubuntu xenial-security InRelease [109 kB] Fetched 325 kB in 0s (833 kB/s) Reading package lists... Done N: Can't drop privileges for downloading as file '/root/tempRepo/./InRelease' couldn't be accessed by user '_apt'. - pkgAcquire::Run (13: Permission denied) W: file:/root/tempRepo/./InRelease: Signature by key 47GH0FHSDGDJDJDYSIFB7679795D559EC6EEE749 uses weak digest algorithm (SHA1) E: Failed to fetch file:/root/tempRepo/./InRelease  Unable to find expected entry 'Packages' in Release file (Wrong sources.list entry or malformed file) E: Some index files failed to download. They have been ignored, or old ones used instead.```   

Where to put an header file for a git repository if it is missing during make?

I am installing from source and while make I get the error that a file is missing:

  CXX      src/math/libbitcoin_la-crypto.lo   CXX      src/math/libbitcoin_la-elliptic_curve.lo src/math/elliptic_curve.cpp:23:10: fatal error: secp256k1.h: No such file or directory  #include <secp256k1.h>           ^~~~~~~~~~~~~ compilation terminated. 

I think this header file can be found here so I could download it to include it. But I don’t know where to put it.

Also, I am not sure if this is a usefull thing to do.

The readme says ‘A minimal libbitcoin build requires boost and libsecp256k1.’ so I installed libsecp256k1 on my system already. But I am not certain that this is what they meant.

How to clone local repository

I have two folders sitting next to each other on my machine.

  • /Documents/Learning/Project1
  • /Documents/Learning/Test for git

Project1 has a local repository inside with one commit on it, and I’d like to copy it to the other folder. I’m running the commands:

/Documents/Learning/Test for git$   git clone /Documents/Learning/Project1 . fatal: repository '/Documents/Learning/Project1' does not exist  /Documents/Learning/Test for git$   git clone /Documents/Learning/Project1.git . fatal: repository '/Documents/Learning/Project1' does not exist  /Documents/Learning/Test for git$   git clone /Documents/Learning/Project1.git . fatal: repository '/Documents/Learning/Project1' does not exist  /Documents/Learning/Test for git$   git clone /Documents/Learning/Project1/.git . fatal: repository '/Documents/Learning/Project1' does not exist  /Documents/Learning/Test for git$   git clone /Documents/Learning/Project1 . fatal: repository '/Documents/Learning/Project1' does not exist  /Documents/Learning/Test for git$   git clone /Documents/Learning/Project1 . fatal: repository '/Documents/Learning/Project1' does not exist  /Documents/Learning/Test for git$   git clone /Documents/Learning/Project1.git . fatal: repository '/Documents/Learning/Project1' does not exist  /Documents/Learning/Test for git$   git clone /Documents/Learning/Project1/git . fatal: repository '/Documents/Learning/Project1' does not exist  /Documents/Learning/Test for git$   git clone /Documents/Learning/Project1/.git . fatal: repository '/Documents/Learning/Project1' does not exist 

But I keep getting an error saying repository doesn’t exist, what am I missing?

Cannot add APT repository: SSL handshake failed

I followed the procedure described here https://packages.sury.org/php/README.txt for adding an APT repository that has some packages i need to install ( for example i need php7.0-dev).

sudo apt-get -y install apt-transport-https lsb-release ca-certificates sudo wget -O /etc/apt/trusted.gpg.d/php.gpg https://packages.sury.org/php/apt.gpg sudo sh -c 'echo "deb https://packages.sury.org/php/ $  (lsb_release -sc) main" > /etc/apt/sources.list.d/php.list' sudo apt-get update 

AFAIU, the above commands intend to install the SSL certificate for packages.sury.org, so that the APT command can communicate to the packages.sury.org server via SSL.

Then the APT repository is added to sources.list.d.

On the last command, apt-get update, i get the following error:

W: Failed to fetch https://packages.sury.org/php/dists/trusty/main/binary-amd64/Packages gnutls_handshake() failed: Handshake failed

I think the SSL certificate has not been correctly installed to my local machine, so the first two commands were ineffective apparently.

What did go wrong?

Alternatively, would it be a good idea to clone the sury.org repository on a local website on my machine, with no SSL, and add the http://localhost repository instead of https://packages.sury.org? That would eliminate the need for APT to communicate via SSL.

Thanks