#THIS FILE (/var/local/log/log) IS (and should remain) WORLD READABLE!!! #IT MAY (or may not) BE MADE FULLY OPEN TO READ FROM THE INTERNET! #FOR (E.G. SECURITY) SENSITIVE INFORMATION USE /var/local/log/log.secure #format of this file: #date of entries, in ISO (YYYY-MM-DD) format (e.g. as produced by #date -I, local timezone of /etc/localtime presumed) starting at #beginning of line and preceded by at least one completely empty line. #Date may optionally be followed by time data in ISO format (e.g. #date -Iseconds), or given as time range per ISO. #empty lines are only allowed immediately before the first entry for #any given date. For items that would otherwise include an empty line, #use at least a blank or tab on the line, or precede the line(s) with #some other character. #any line that would otherwise start in YYYY-MM-DD format but doesn't #match the day for that log entry must be preceded by one or more #characters on that line, e.g.: "for the earlier foo problem see the earlier #YYYY-MM-DD log entry." (notably including # or other characters preceding #that date entry) #since there are multiple systems administrators on this system, #one should generally note (e.g. by full name or login name) the entries #that one made (e.g. following date(+time) lines and tagging last entry for #any given set of entries done by that person. #consistently using this format has at least these advantages: #* easy to spot where entries for a given date start (/^$/) #* consistent International Y2K compliant, etc. date format (use by more # folks on the planet than any other date format) #* avoid ambiguity about the relevant date of an entry (e.g. # cross-references not confused with cross-referencing entry). #* reasonable tracking of who did/noted what (particularly useful in # case of multiple systems administrators (such as if there is # follow-up question or whatever) 2009-11-15 UTC Michael Paoli created: /var/local/log /var/local/log/log /var/local/log/log.secure To aviod probable disaster, I updated /etc/apt/sources.list so the main repositories and security updates are both using the same Debian version sflug:~# ed /etc/apt/sources.list 363 g/stable/p deb http://security.debian.org/ stable/updates main contrib non-free deb-src http://security.debian.org/ stable/updates main contrib non-free g/etch/p # etch deb http://ftp.us.debian.org/debian/ etch main contrib non-free deb-src http://ftp.us.debian.org/debian/ etch main contrib non-free g/stable/s//etch/gp deb http://security.debian.org/ etch/updates main contrib non-free deb-src http://security.debian.org/ etch/updates main contrib non-free w 359 q sflug:~# Created group and account (mpaoli) for Michael Paoli: # addgroup --gid 1607 mpaoli Adding group `mpaoli' (GID 1607) ... Done. # adduser --home /home/mpaoli --shell /bin/sh --uid 1607 --gid 1607 --disabled-password --gecos 'Michael Paoli,,1-415-344-7609,1-510-883-0772' mpaoli Adding user `mpaoli' ... Adding new user `mpaoli' (1607) with group `mpaoli' ... Creating home directory `/home/mpaoli' ... Copying files from `/etc/skel' ... # passwd mpaoli Enter new UNIX password: Retype new UNIX password: passwd: password updated successfully Added mpaoli to sudoers (uncommented existing entry in sudoers) # EDITOR=/usr/bin/vi VISUAL=/usr/bin/vi visudo 2009-11-21 UTC Michael Paoli DNS still not in place and operational - proceeded to take care of that and some other miscellaneous items. //verified trust paths and: upgraded debian-archive-keyring version 2007.07.31~etch1 to version 2009.01.31 applied security and critical bug updates: upgraded dpkg version 1.13.25 to version 1.13.26 upgraded libc6 version 2.3.6.ds1-13etch7 to version 2.3.6.ds1-13etch9+b1 upgraded tzdata version 2007k-1etch1 to version 2008e-1etch3 upgraded libpam-runtime version 0.79-5 to version 0.79-5+etch1 upgraded libpam0g version 0.79-5 to version 0.79-5+etch1 upgraded libpam-modules version 0.79-5 to version 0.79-5+etch1 upgraded login version 1:4.0.18.1-7 to version 4.0.18.1-7+etch1 upgraded perl-base version 5.8.8-7etch3 to version 5.8.8-7etch6 upgraded apt version 0.6.46.4-0.1 to version 0.6.46.4-0.1+etch1 upgraded libc6-xen version 2.3.6.ds1-13etch7 to version 2.3.6.ds1-13etch9+b1 upgraded apt-utils version 0.6.46.4-0.1 to version 0.6.46.4-0.1+etch1 upgraded dhcp3-common version 3.0.4-13 to version 3.0.4-13+etch2 upgraded dhcp3-client version 3.0.4-13 to version 3.0.4-13+etch2 upgraded libgnutls13 version 1.4.4-3+etch1 to version 1.4.4-3+etch5 upgraded libnewt0.52 version 0.52.2-10 to version 0.52.2-10+etch1 upgraded libsasl2-2 version 2.1.22.dfsg1-8 to version 2.1.22.dfsg1-8+etch1 upgraded libsasl2 version 2.1.22.dfsg1-8 to version 2.1.22.dfsg1-8+etch1 upgraded libssl0.9.8 version 0.9.8c-4etch3 to version 0.9.8c-4etch9 upgraded vim-common version 1:7.0-122+1etch3 to version 7.0-122+1etch5 upgraded vim-tiny version 1:7.0-122+1etch3 to version 7.0-122+1etch5 upgraded wget version 1.10.2-2 to version 1.10.2-2+etch1 upgraded whiptail version 0.52.2-10 to version 0.52.2-10+etch1 upgraded dselect version 1.13.25 to version 1.13.26 upgraded passwd version 1:4.0.18.1-7 to version 4.0.18.1-7+etch1 upgraded libisc11 version 1:9.3.4-2etch3 to version 9.3.4-2etch5 upgraded libdns22 version 1:9.3.4-2etch3 to version 9.3.4-2etch5 upgraded libisccc0 version 1:9.3.4-2etch3 to version 9.3.4-2etch5 upgraded libisccfg1 version 1:9.3.4-2etch3 to version 9.3.4-2etch5 upgraded libbind9-0 version 1:9.3.4-2etch3 to version 9.3.4-2etch5 upgraded liblwres9 version 1:9.3.4-2etch3 to version 9.3.4-2etch5 upgraded bind9-host version 1:9.3.4-2etch3 to version 9.3.4-2etch5 upgraded dnsutils version 1:9.3.4-2etch3 to version 9.3.4-2etch5 upgraded libkrb53 version 1.4.4-7etch6 to version 1.4.4-7etch7 upgraded openssh-client version 1:4.3p2-9etch2 to version 4.3p2-9etch3 upgraded openssh-server version 1:4.3p2-9etch2 to version 4.3p2-9etch3 upgraded libapr1 version 1.2.7-8.2 to version 1.2.7-9 upgraded libexpat1 version 1.95.8-3.4 to version 1.95.8-3.4+etch1 upgraded libpq4 version 8.1.11-0etch1 to version 8.1.18-0etch1 upgraded libaprutil1 version 1.2.7+dfsg-2 to version 1.2.7+dfsg-2+etch3 upgraded apache2-utils version 2.2.3-4+etch5 to version 2.2.3-4+etch11 upgraded apache2.2-common version 2.2.3-4+etch5 to version 2.2.3-4+etch11 upgraded apache2-mpm-prefork version 2.2.3-4+etch5 to version 2.2.3-4+etch11 upgraded apache2 version 2.2.3-4+etch5 to version 2.2.3-4+etch11 upgraded libxml2 version 2.6.27.dfsg-2 to version 2.6.27.dfsg-6+etch1 upgraded php5-common version 5.2.0-8+etch11 to version 5.2.0+dfsg-8+etch15 upgraded libapache2-mod-php5 version 5.2.0-8+etch11 to version 5.2.0+dfsg-8+etch15 upgraded mysql-common version 5.0.32-7etch6 to version 5.0.32-7etch11 upgraded libmysqlclient15off version 5.0.32-7etch6 to version 5.0.32-7etch11 upgraded libsnmp-base version 5.2.3-7etch2 to version 5.2.3-7etch4 upgraded libsnmp9 version 5.2.3-7etch2 to version 5.2.3-7etch4 upgraded php5 version 5.2.0-8+etch11 to version 5.2.0+dfsg-8+etch15 upgraded snmp version 5.2.3-7etch2 to version 5.2.3-7etch4 upgraded ssh version 1:4.3p2-9etch2 to version 4.3p2-9etch3 upgraded perl-modules version 5.8.8-7etch3 to version 5.8.8-7etch6 upgraded perl version 5.8.8-7etch3 to version 5.8.8-7etch6 upgraded perl-doc version 5.8.8-7etch3 to version 5.8.8-7etch6 added additional software: installed bind9 version 9.3.4-2etch5 installed bind9-doc version 9.3.4-2etch5 installed psmisc version 22.3-1 installed nvi version 1.79-25 shutdown running named: # /etc/init.d/bind9 stop based upon these files and their data from the older former host: file://sf-lug.com/var/named/chroot/etc/named.conf file://sf-lug.com/var/named/chroot/var/named/.sf-lug.com.swp file://sf-lug.com/var/named/chroot/var/named/sf-lug.com file://sf-lug.com/var/named/chroot/var/named/sf-lug.com.SAF file://sf-lug.com/var/named/chroot/var/named/sf-lug.com.SAFOLD placed these files: /etc/bind/.sf-lug.com.swp /etc/bind/sf-lug.com.SAF /etc/bind/sf-lug.com.SAFOLD /etc/bind/sf-lug.com and edited these files: /etc/bind/sf-lug.com /etc/bind/named.conf.local /etc/bind/named.conf.options restarted named: # (cd / && umask 022 && /etc/init.d/bind9 start) added additional software: installed less version 394-4 2010-01-07 Michael Paoli per Nathan Kuriger of evilmonkeys.com I've disabled DNS slave service for evilmonkeys.com. (just commented out for the moment - will likely pull it out more fully sometime later - in the meantime it's otherwise still there but "just" commented out - "just in case"). 2010-01-31 Michael Paoli applied security and critical bug updates: upgraded gzip version 1.3.5-15 to version 1.3.5-15+etch1 upgraded libc6 version 2.3.6.ds1-13etch9+b1 to version 2.3.6.ds1-13etch10+b1 upgraded libc6-xen version 2.3.6.ds1-13etch9+b1 to version 2.3.6.ds1-13etch10+b1 upgraded libisc11 version 1:9.3.4-2etch5 to version 9.3.4-2etch6 upgraded libdns22 version 1:9.3.4-2etch5 to version 9.3.4-2etch6 upgraded libisccc0 version 1:9.3.4-2etch5 to version 9.3.4-2etch6 upgraded libisccfg1 version 1:9.3.4-2etch5 to version 9.3.4-2etch6 upgraded libbind9-0 version 1:9.3.4-2etch5 to version 9.3.4-2etch6 upgraded liblwres9 version 1:9.3.4-2etch5 to version 9.3.4-2etch6 upgraded bind9 version 1:9.3.4-2etch5 to version 9.3.4-2etch6 upgraded bind9-host version 1:9.3.4-2etch5 to version 9.3.4-2etch6 upgraded dnsutils version 1:9.3.4-2etch5 to version 9.3.4-2etch6 upgraded libkrb53 version 1.4.4-7etch7 to version 1.4.4-7etch8 upgraded bind9-doc version 1:9.3.4-2etch5 to version 9.3.4-2etch6 upgraded php5-common version 5.2.0+dfsg-8+etch15 to version 5.2.0+dfsg-8+etch16 upgraded libapache2-mod-php5 version 5.2.0+dfsg-8+etch15 to version 5.2.0+dfsg-8+etch16 upgraded libexpat1 version 1.95.8-3.4+etch1 to version 1.95.8-3.4+etch3 upgraded libpq4 version 8.1.18-0etch1 to version 8.1.19-0etch1 upgraded php5 version 5.2.0+dfsg-8+etch15 to version 5.2.0+dfsg-8+etch16 tweaked /etc/fstab to use UUID for non-LVM device filesystem(s) and swap 2010-02-12 Michael Paoli installed bzip2 version 1.0.3-6 2010-02-15 Michael Paoli tweaked these two files: /etc/resolv.conf /etc/bind/named.conf.options to get ISP DNS servers into configuration, and to pull out some less functional DNS servers (e.g. ones that would refuse to do recursive queries for us). 2010-02-20 Michael Paoli likely the last of these for Debian 4.0 "etch", as its security support ended 2010-02-15: applied security and critical bug updates: upgraded mysql-common version 5.0.32-7etch11 to version 5.0.32-7etch12 upgraded libmysqlclient15off version 5.0.32-7etch11 to version 5.0.32-7etch12 screen(1) recommended for doing Debian operating system upgrade, so: installed screen version 4.0.3-0.3+b1 2010-04-04 Jim Stockford (presumed) on or about 2010-04-04 upgraded to Debian 5.0 (5.0.3?) 2010-07-02 Michael Paoli (from dom0) reconfigured domU hdc to be latest ISO, used apt-cdrom and some manual editing on /etc/apt/sources.list to update apt on information from latest ISO 2012-01-22 Michael Paoli applied security and critical bug updates (deferring kernel and related due to Xen dom0 interdependencies), and, notwitstanding the preceeding, upgraded from Debian 5.0.4 to Debian 5.0.9 upgraded debian-archive-keyring version 2009.01.31 to version 2010.08.28~lenny1 removed libxml2 version 2.6.32.dfsg-5+lenny1 removed libkrb53 version 1.6.dfsg.4~beta1-5lenny2 removed libssl0.9.8 version 0.9.8g-15+lenny6 removed libldap-2.4-2 version 2.4.11-1+lenny1 removed bind9 version 1:9.5.1.dfsg.P3-1+lenny1 removed bind9utils version 1:9.5.1.dfsg.P3-1+lenny1 removed bind9-host version 1:9.5.1.dfsg.P3-1+lenny1 removed dnsutils version 1:9.5.1.dfsg.P3-1+lenny1 purged libbind9-40 purged libisccfg40 purged libdns45 purged libisccc40 purged libisc45 purged liblwres40 upgraded base-files version 5lenny5 to version 5lenny10 upgraded dpkg version 1.14.29 to version 1.14.31 upgraded perl-base version 5.10.0-19lenny2 to version 5.10.0-19lenny5 upgraded tar version 1.20-1 to version 1.20-1+lenny1 upgraded apt version 0.7.20.2+lenny1 to version 0.7.20.2+lenny2 upgraded libbz2-1.0 version 1.0.5-1 to version 1.0.5-1+lenny1 upgraded tzdata version 2010a-0lenny1 to version 2011k-0lenny1 installed libxml2 version 2.6.32.dfsg-5+lenny4 installed libisc50 version 1:9.6.ESV.R4+dfsg-0+lenny4 installed libkrb53 version 1.6.dfsg.4~beta1-5lenny7 installed libssl0.9.8 version 0.9.8g-15+lenny15 installed libdns58 version 1:9.6.ESV.R4+dfsg-0+lenny4 installed libisccc50 version 1:9.6.ESV.R4+dfsg-0+lenny4 installed libisccfg50 version 1:9.6.ESV.R4+dfsg-0+lenny4 installed libbind9-50 version 1:9.6.ESV.R4+dfsg-0+lenny4 installed libldap-2.4-2 version 2.4.11-1+lenny2.1 installed liblwres50 version 1:9.6.ESV.R4+dfsg-0+lenny4 installed bind9utils version 1:9.6.ESV.R4+dfsg-0+lenny4 installed bind9 version 1:9.6.ESV.R4+dfsg-0+lenny4 installed bind9-host version 1:9.6.ESV.R4+dfsg-0+lenny4 installed dnsutils version 1:9.6.ESV.R4+dfsg-0+lenny4 upgraded libperl5.10 version 5.10.0-19lenny2 to version 5.10.0-19lenny5 upgraded bzip2 version 1.0.5-1 to version 1.0.5-1+lenny1 upgraded apt-utils version 0.7.20.2+lenny1 to version 0.7.20.2+lenny2 upgraded aptitude version 0.4.11.11-1~lenny1 to version 0.4.11.11-1~lenny2 upgraded cpio version 2.9-13 to version 2.9-13lenny1 upgraded dhcp3-common version 3.1.1-6+lenny4 to version 3.1.1-6+lenny6 upgraded dhcp3-client version 3.1.1-6+lenny4 to version 3.1.1-6+lenny6 upgraded iputils-ping version 3:20071127-1 to version 3:20071127-1+lenny1 upgraded man-db version 2.5.2-4 to version 2.5.2-5 upgraded nano version 2.0.7-4 to version 2.0.7-5 upgraded wget version 1.11.4-2+lenny1 to version 1.11.4-2+lenny2 upgraded libapr1 version 1.2.12-5+lenny1 to version 1.2.12-5+lenny4 upgraded mysql-common version 5.0.51a-24+lenny3 to version 5.0.51a-24+lenny5 upgraded libmysqlclient15off version 5.0.51a-24+lenny3 to version 5.0.51a-24+lenny5 upgraded libpq5 version 8.3.9-0lenny1 to version 8.3.16-0lenny1 upgraded libaprutil1 version 1.2.12+dfsg-8+lenny4 to version 1.2.12+dfsg-8+lenny5 upgraded apache2-utils version 2.2.9-10+lenny6 to version 2.2.9-10+lenny11 upgraded bind9-doc version 1:9.5.1.dfsg.P3-1+lenny1 to version 1:9.6.ESV.R4+dfsg-0+lenny4 upgraded dselect version 1.14.29 to version 1.14.31 upgraded php5-common version 5.2.6.dfsg.1-1+lenny8 to version 5.2.6.dfsg.1-1+lenny13 upgraded libwbclient0 version 2:3.2.5-4lenny9 to version 2:3.2.5-4lenny15 upgraded libxext6 version 2:1.0.4-1 to version 2:1.0.4-2 upgraded openssl version 0.9.8g-15+lenny6 to version 0.9.8g-15+lenny15 upgraded samba-common version 2:3.2.5-4lenny9 to version 2:3.2.5-4lenny15 upgraded smbclient version 2:3.2.5-4lenny9 to version 2:3.2.5-4lenny15 upgraded sudo version 1.6.9p17-2+lenny1 to version 1.6.9p17-3 upgraded perl-modules version 5.10.0-19lenny2 to version 5.10.0-19lenny5 upgraded perl version 5.10.0-19lenny2 to version 5.10.0-19lenny5 upgraded apache2.2-common version 2.2.9-10+lenny6 to version 2.2.9-10+lenny11 upgraded apache2-mpm-prefork version 2.2.9-10+lenny6 to version 2.2.9-10+lenny11 upgraded apache2 version 2.2.9-10+lenny6 to version 2.2.9-10+lenny11 upgraded libapache2-mod-php5 version 5.2.6.dfsg.1-1+lenny8 to version 5.2.6.dfsg.1-1+lenny13 upgraded php5 version 5.2.6.dfsg.1-1+lenny8 to version 5.2.6.dfsg.1-1+lenny13 2012-02-28 Michael Paoli converted this host from xen VM to qemu-kvm VM, removed most xen bits and installed necessary/appropriate bits for this host to run as guest VM under qemu-kvm with full hardware virtualization (e.g. including necessary boot bits and dependencies thereof). applied remaining security and critical bug updates: upgraded libssl0.9.8 version 0.9.8g-15+lenny15 to version 0.9.8g-15+lenny16 upgraded libxml2 version 2.6.32.dfsg-5+lenny4 to version 2.6.32.dfsg-5+lenny5 upgraded apache2-utils version 2.2.9-10+lenny11 to version 2.2.9-10+lenny12 upgraded apache2.2-common version 2.2.9-10+lenny11 to version 2.2.9-10+lenny12 upgraded apache2-mpm-prefork version 2.2.9-10+lenny11 to version 2.2.9-10+lenny12 upgraded apache2 version 2.2.9-10+lenny11 to version 2.2.9-10+lenny12 upgraded php5-common version 5.2.6.dfsg.1-1+lenny13 to version 5.2.6.dfsg.1-1+lenny16 upgraded libapache2-mod-php5 version 5.2.6.dfsg.1-1+lenny13 to version 5.2.6.dfsg.1-1+lenny16 upgraded openssl version 0.9.8g-15+lenny15 to version 0.9.8g-15+lenny16 upgraded php5 version 5.2.6.dfsg.1-1+lenny13 to version 5.2.6.dfsg.1-1+lenny16 2012-02-29 Michael Paoli reconfigured grub and kernel options, namely: grub - serial (ttyS0) and console (tty0) input/output, whichever has first input (key struck) then gets input/output (menu), or by default times out in 90 seconds and uses serial ttyS0 grub menu timeout 90 seconds, each menu item has kernel using: tty0 and ttyS0 for output default console input ttyS0, menu options to also select single user mode and/or console input tty0 2012-03-03 Michael Paoli added package at and dependencies thereof 2012-03-08 Michael Paoli made this log (/var/local/log/log) available again via: http://[www.]sf-lug.com/log.txt (ln -s /var/local/log/log /var/www/sf-lug/log.txt) 2012-03-11 Michael Paoli applied remaining security and critical bug updates, http://www.debian.org/News/2012/20120310 likely the very last for Debian 5.0 (Lenny) --> 5.0.10, upgraded base-files version 5lenny10 to version 5lenny11 upgraded linux-image-2.6.26-2-686 version 2.6.26-27 to version 2.6.26-29 upgraded libapr1 version 1.2.12-5+lenny4 to version 1.2.12-5+lenny5 upgraded libpq5 version 8.3.16-0lenny1 to version 8.3.17-0lenny1 and rebooted (to activate use newer kernel, etc.) purged removed but unpurged packages: purged libbind9-0 purged libdns22 purged libisc11 purged libisccc0 purged libisccfg1 purged liblwres9 purged libpq4 purged perl-doc 2012-03-14T18:00:00-0700--2012-03-14T20:00:00-0700 Michael Paoli upgraded from: Debian GNU/Linux 5.0.10 "Lenny" i386 to: Debian GNU/Linux 6.0.4 "Squeeze" i386 some/much of the "gory details" (saved script output) may be found in: /root/upgrades/5.0_lenny_to_6.0_squeeze/upgrade-squeeze* high-level overview (plus some specific details): earlier ran through and did relevant pre-upgrade steps from http://www.debian.org/releases/stable/i386/release-notes/ then mostly proceeded per: http://www.debian.org/releases/stable/i386/release-notes/ updated /etc/apt/sources.list updated /etc/apt/apt.conf to use /media/cdrom9/ but that still didn't quite work (accidentally told apt-cdrom to use /media/cdrom instead of /media/cdrom9), so for the time being to proceed, did: # ln -s /media/cdrom9 /media/cdrom /etc/nagios/nrpe.cfg saved copy of old version as: /etc/nagios/nrpe.cfg.BAK and saved copy of new version as: /etc/nagios/nrpe.cfg.dpkg-NEW and continued using old version Let udev installation, etc. make some config file changes on device names and to UUIDs, it made changes to files: /etc/fstab /etc/udev/rules.d/70-persistent-cd.rules and specifically to devices/references: /dev/hdc: /dev/cdrom PATH=pci-0000:00:01.1-scsi-1:0:0:0 it also indicated: Configuration files still contain deprecated device names The following configuration files still use some device names that may change when using the new kernel: /etc/fstab: /dev/sdb apparently insserv installation provided notification: Unable to migrate to dependency-based boot system Tests have determined that problems in the boot system exist which prevent migration to dependency-based boot sequencing: insserv: warning: script 'S25libdevmapper1.02' missing LSB tags and overrides, insserv: warning: script 'libdevmapper1.02' missing LSB tags and overrides, , package libdevmapper1.02 removed but not purged If the reported problem is a local modification, it needs to be fixed manually. If it's a bug in the package, it should be reported to the BTS and fixed in the package. See http://wiki.debian.org/LSBInitScripts/DependencyBasedBoot for more information about how to fix the problems preventing migration. error: Unable to migrate to dependency based boot sequencing. /etc/apache2/sites-available/default - kept old version remains to do: "post"-upgrade steps, reconciling some configuration bits, and similar wrap-up / follow-through. 2012-03-16 Michael Paoli continuing mostly with post-upgrade cleanup: per: http://www.debian.org/releases/stable/i386/release-notes/ch-upgrading.en.html#obsolete and also output during upgrade did: apt-get autoremove 2012-03-17 Michael Paoli purged the earlier removed: libdevmapper1.02 version 2:1.02.08-1 reviewed /etc/nagios/nrpe.cfg and /etc/nagios/nrpe.cfg.dpkg-dist and updated /etc/nagios/nrpe.cfg to match /etc/nagios/nrpe.cfg.dpkg-dist, removed: /etc/nagios/nrpe.cfg.BAK /etc/nagios/nrpe.cfg.dpkg-NEW restarted nagios-nrpe-server removed /media/cdrom symbolic link created directory /media/cdrom0 updated /etc/fstab: to use /media/cdrom0 instead of /cdrom for /dev/cdrom to use LABEL for /media/cdrom9 removed cdrom from /etc/apt/sources.list and readded with: # apt-cdrom -m -d=/media/cdrom9 add removed libvolume-id0 version 0.125-7+lenny3 installed eject version 2.1.5+deb1+cvs20081104-7.1 ran: # dpkg-reconfigure debconf and reconfigured debconf to use readline interface ran: # dpkg-reconfigure insserv sysv-rc and converted to dependency based boot purged earlier removed packages: purged libbind9-50 purged libdns58 purged libept0 purged libisc50 purged libisccc50 purged libisccfg50 purged liblwres50 purged libmysqlclient15off purged libradius1 purged libsensors3 purged libsysfs2 purged libtalloc1 purged libvolume-id0 purged libxcb-xlib0 purged radiusclient1 purged x11-common purged older no longer needed kernel: purged linux-image-2.6.26-2-686 changed timeout in /etc/default/grub to 90 seconds (probably "long enough" - will test) installed deborphan version 1.7.28.3+squeeze1 installed dialog version 1.1-20100428-1 removed dhcp3-common removed diff removed gcc-4.1-base removed gcc-4.3-base purged libconsole removed libdb4.2 removed libdb4.3 removed libdb4.4 removed libdb4.6 removed libkrb53 purged libldap2 purged libreadline5 purged libxapian15 removed mktemp removed netcat tested full powerdown & reboot carefully reviewed /etc/apache2/sites-available/default and /etc/apache2/sites-available/default.dpkg-dist and ended up matching /etc/apache2/sites-available/default up to /etc/apache2/sites-available/default.dpkg-dist restarted apache2 and tested removed use of IP 208.96.15.251 from this sytems (and updated config files) 2012-03-26 Michael Paoli applied remaining security and critical bug updates, upgraded libtasn1-3 version 2.7-1 to version 2.7-1+squeeze+1 upgraded libgnutls26 version 2.8.6-1+squeeze1 to version 2.8.6-1+squeeze2 2012-04-25 Michael Paoli applied stable security/critical/important bug fix update(s): upgraded linux-base version 2.6.32-41 to version 2.6.32-41squeeze2 upgraded linux-image-2.6.32-5-686 version 2.6.32-41 to version 2.6.32-41squeeze2 upgraded libssl0.9.8 version 0.9.8o-4squeeze7 to version 0.9.8o-4squeeze12 upgraded apache2.2-bin version 2.2.16-6+squeeze6 to version 2.2.16-6+squeeze7 upgraded apache2-utils version 2.2.16-6+squeeze6 to version 2.2.16-6+squeeze7 upgraded apache2.2-common version 2.2.16-6+squeeze6 to version 2.2.16-6+squeeze7 upgraded apache2-mpm-prefork version 2.2.16-6+squeeze6 to version 2.2.16-6+squeeze7 upgraded apache2 version 2.2.16-6+squeeze6 to version 2.2.16-6+squeeze7 upgraded firmware-linux-free version 2.6.32-41 to version 2.6.32-41squeeze2 upgraded libcurl3-gnutls version 7.21.0-2.1+squeeze1 to version 7.21.0-2.1+squeeze2 upgraded libwbclient0 version 2:3.5.6~dfsg-3squeeze6 to version 2:3.5.6~dfsg-3squeeze7 upgraded openssl version 0.9.8o-4squeeze7 to version 0.9.8o-4squeeze12 upgraded samba-common version 2:3.5.6~dfsg-3squeeze6 to version 2:3.5.6~dfsg-3squeeze7 upgraded smbclient version 2:3.5.6~dfsg-3squeeze6 to version 2:3.5.6~dfsg-3squeeze7 upgraded samba-common-bin version 2:3.5.6~dfsg-3squeeze6 to version 2:3.5.6~dfsg-3squeeze7 apache2 configuration fixes/cleanup, including fixing: [warn] NameVirtualHost *:80 has no VirtualHosts relocated (mv(1)ed): /etc/apache2/sites-enabled/OLD to: /etc/apache2/sites-enabled.OLD and in file: /etc/apache2/sites-available/sf-lug changed: ServerAdmin webmaster@localhost #ServerName www.sf-lug.com ServerName 208.96.15.251 to: ServerAdmin webmaster@localhost ServerName www.sf-lug.com 2012-04-25 Michael Paoli applied most stable security/critical/important bug fix update(s): upgraded base-files version 6.0squeeze4 to version 6.0squeeze5 upgraded libc-bin version 2.11.3-2 to version 2.11.3-3 upgraded libc6 version 2.11.3-2 to version 2.11.3-3 upgraded sysvinit version 2.88dsf-13.1 to version 2.88dsf-13.1+squeeze1 upgraded sysvinit-utils version 2.88dsf-13.1 to version 2.88dsf-13.1+squeeze1 upgraded sysv-rc version 2.88dsf-13.1 to version 2.88dsf-13.1+squeeze1 upgraded initscripts version 2.88dsf-13.1 to version 2.88dsf-13.1+squeeze1 upgraded tzdata version 2011n-0squeeze1 to version 2012c-0squeeze1 upgraded libc6-i686 version 2.11.3-2 to version 2.11.3-3 upgraded isc-dhcp-common version 4.1.1-P1-15+squeeze3 to version 4.1.1-P1-15+squeeze6 upgraded isc-dhcp-client version 4.1.1-P1-15+squeeze3 to version 4.1.1-P1-15+squeeze6 upgraded dhcp3-client version 4.1.1-P1-15+squeeze3 to version 4.1.1-P1-15+squeeze6 upgraded libssl0.9.8 version 0.9.8o-4squeeze12 to version 0.9.8o-4squeeze13 upgraded procps version 1:3.2.8-9 to version 1:3.2.8-9squeeze1 upgraded at version 3.1.12-1 to version 3.1.12-1+squeeze1 upgraded libkrb5support0 version 1.8.3+dfsg-4squeeze5 to version 1.8.3+dfsg-4squeeze6 upgraded libk5crypto3 version 1.8.3+dfsg-4squeeze5 to version 1.8.3+dfsg-4squeeze6 upgraded libkrb5-3 version 1.8.3+dfsg-4squeeze5 to version 1.8.3+dfsg-4squeeze6 upgraded libgssapi-krb5-2 version 1.8.3+dfsg-4squeeze5 to version 1.8.3+dfsg-4squeeze6 upgraded libxml2 version 2.7.8.dfsg-2+squeeze3 to version 2.7.8.dfsg-2+squeeze5 upgraded libisc62 version 1:9.7.3.dfsg-1~squeeze4 to version 1:9.7.3.dfsg-1~squeeze6 upgraded libdns69 version 1:9.7.3.dfsg-1~squeeze4 to version 1:9.7.3.dfsg-1~squeeze6 upgraded libisccc60 version 1:9.7.3.dfsg-1~squeeze4 to version 1:9.7.3.dfsg-1~squeeze6 upgraded libisccfg62 version 1:9.7.3.dfsg-1~squeeze4 to version 1:9.7.3.dfsg-1~squeeze6 upgraded libbind9-60 version 1:9.7.3.dfsg-1~squeeze4 to version 1:9.7.3.dfsg-1~squeeze6 upgraded liblwres60 version 1:9.7.3.dfsg-1~squeeze4 to version 1:9.7.3.dfsg-1~squeeze6 upgraded bind9-host version 1:9.7.3.dfsg-1~squeeze4 to version 1:9.7.3.dfsg-1~squeeze6 upgraded dnsutils version 1:9.7.3.dfsg-1~squeeze4 to version 1:9.7.3.dfsg-1~squeeze6 upgraded bind9utils version 1:9.7.3.dfsg-1~squeeze4 to version 1:9.7.3.dfsg-1~squeeze6 upgraded bind9 version 1:9.7.3.dfsg-1~squeeze4 to version 1:9.7.3.dfsg-1~squeeze6 upgraded libmagic1 version 5.04-5+squeeze1 to version 5.04-5+squeeze2 upgraded file version 5.04-5+squeeze1 to version 5.04-5+squeeze2 upgraded openssh-client version 1:5.5p1-6+squeeze1 to version 1:5.5p1-6+squeeze2 upgraded openssh-server version 1:5.5p1-6+squeeze1 to version 1:5.5p1-6+squeeze2 upgraded python-minimal version 2.6.6-3+squeeze6 to version 2.6.6-3+squeeze7 upgraded python version 2.6.6-3+squeeze6 to version 2.6.6-3+squeeze7 upgraded bind9-doc version 1:9.7.3.dfsg-1~squeeze4 to version 1:9.7.3.dfsg-1~squeeze6 upgraded firmware-linux-free version 2.6.32-41squeeze2 to version 2.6.32-45 upgraded php5-common version 5.3.3-7+squeeze8 to version 5.3.3-7+squeeze14 upgraded php5-cli version 5.3.3-7+squeeze8 to version 5.3.3-7+squeeze14 upgraded libapache2-mod-php5 version 5.3.3-7+squeeze8 to version 5.3.3-7+squeeze14 upgraded libapr1 version 1.4.2-6+squeeze3 to version 1.4.2-6+squeeze4 upgraded libexpat1 version 2.0.1-7 to version 2.0.1-7+squeeze1 upgraded mysql-common version 5.1.61-0+squeeze1 to version 5.1.63-0+squeeze1 upgraded libmysqlclient16 version 5.1.61-0+squeeze1 to version 5.1.63-0+squeeze1 upgraded libpq5 version 8.4.11-0squeeze1 to version 8.4.13-0squeeze1 upgraded libwbclient0 version 2:3.5.6~dfsg-3squeeze7 to version 2:3.5.6~dfsg-3squeeze8 upgraded linux-base version 2.6.32-41squeeze2 to version 2.6.32-45 upgraded openssl version 0.9.8o-4squeeze12 to version 0.9.8o-4squeeze13 upgraded php5 version 5.3.3-7+squeeze8 to version 5.3.3-7+squeeze14 upgraded samba-common version 2:3.5.6~dfsg-3squeeze7 to version 2:3.5.6~dfsg-3squeeze8 upgraded smbclient version 2:3.5.6~dfsg-3squeeze7 to version 2:3.5.6~dfsg-3squeeze8 upgraded samba-common-bin version 2:3.5.6~dfsg-3squeeze7 to version 2:3.5.6~dfsg-3squeeze8 upgraded sudo version 1.7.4p4-2.squeeze.2 to version 1.7.4p4-2.squeeze.3 upgraded ssh version 1:5.5p1-6+squeeze1 to version 1:5.5p1-6+squeeze2 2012-09-12 Michael Paoli applied most stable security/critical/important bug fix update(s): upgraded libisc62 version 1:9.7.3.dfsg-1~squeeze6 to version 1:9.7.3.dfsg-1~squeeze7 upgraded libdns69 version 1:9.7.3.dfsg-1~squeeze6 to version 1:9.7.3.dfsg-1~squeeze7 upgraded libisccc60 version 1:9.7.3.dfsg-1~squeeze6 to version 1:9.7.3.dfsg-1~squeeze7 upgraded libisccfg62 version 1:9.7.3.dfsg-1~squeeze6 to version 1:9.7.3.dfsg-1~squeeze7 upgraded libbind9-60 version 1:9.7.3.dfsg-1~squeeze6 to version 1:9.7.3.dfsg-1~squeeze7 upgraded liblwres60 version 1:9.7.3.dfsg-1~squeeze6 to version 1:9.7.3.dfsg-1~squeeze7 upgraded bind9utils version 1:9.7.3.dfsg-1~squeeze6 to version 1:9.7.3.dfsg-1~squeeze7 upgraded bind9 version 1:9.7.3.dfsg-1~squeeze6 to version 1:9.7.3.dfsg-1~squeeze7 upgraded bind9-host version 1:9.7.3.dfsg-1~squeeze6 to version 1:9.7.3.dfsg-1~squeeze7 upgraded dnsutils version 1:9.7.3.dfsg-1~squeeze6 to version 1:9.7.3.dfsg-1~squeeze7 upgraded bind9-doc version 1:9.7.3.dfsg-1~squeeze6 to version 1:9.7.3.dfsg-1~squeeze7 2012-11-30 Michael Paoli applied stable security/critical/important bug fix update(s): upgraded base-files version 6.0squeeze5 to version 6.0squeeze6 upgraded dpkg version 1.15.8.12 to version 1.15.8.13 upgraded libc-bin version 2.11.3-3 to version 2.11.3-4 upgraded libc6 version 2.11.3-3 to version 2.11.3-4 upgraded debian-archive-keyring version 2010.08.28 to version 2010.08.28+squeeze1 upgraded linux-base version 2.6.32-45 to version 2.6.32-46 upgraded linux-image-2.6.32-5-686 version 2.6.32-41squeeze2 to version 2.6.32-46 upgraded libc6-i686 version 2.11.3-3 to version 2.11.3-4 upgraded isc-dhcp-common version 4.1.1-P1-15+squeeze6 to version 4.1.1-P1-15+squeeze8 upgraded isc-dhcp-client version 4.1.1-P1-15+squeeze6 to version 4.1.1-P1-15+squeeze8 upgraded dhcp3-client version 4.1.1-P1-15+squeeze6 to version 4.1.1-P1-15+squeeze8 upgraded libisc62 version 1:9.7.3.dfsg-1~squeeze7 to version 1:9.7.3.dfsg-1~squeeze8 upgraded libdns69 version 1:9.7.3.dfsg-1~squeeze7 to version 1:9.7.3.dfsg-1~squeeze8 upgraded libisccc60 version 1:9.7.3.dfsg-1~squeeze7 to version 1:9.7.3.dfsg-1~squeeze8 upgraded libisccfg62 version 1:9.7.3.dfsg-1~squeeze7 to version 1:9.7.3.dfsg-1~squeeze8 upgraded libbind9-60 version 1:9.7.3.dfsg-1~squeeze7 to version 1:9.7.3.dfsg-1~squeeze8 upgraded liblwres60 version 1:9.7.3.dfsg-1~squeeze7 to version 1:9.7.3.dfsg-1~squeeze8 upgraded bind9-host version 1:9.7.3.dfsg-1~squeeze7 to version 1:9.7.3.dfsg-1~squeeze8 upgraded dnsutils version 1:9.7.3.dfsg-1~squeeze7 to version 1:9.7.3.dfsg-1~squeeze8 upgraded bind9utils version 1:9.7.3.dfsg-1~squeeze7 to version 1:9.7.3.dfsg-1~squeeze8 upgraded bind9 version 1:9.7.3.dfsg-1~squeeze7 to version 1:9.7.3.dfsg-1~squeeze8 upgraded exim4-config version 4.72-6+squeeze2 to version 4.72-6+squeeze3 upgraded exim4-base version 4.72-6+squeeze2 to version 4.72-6+squeeze3 upgraded exim4-daemon-light version 4.72-6+squeeze2 to version 4.72-6+squeeze3 upgraded exim4 version 4.72-6+squeeze2 to version 4.72-6+squeeze3 upgraded apache2.2-bin version 2.2.16-6+squeeze7 to version 2.2.16-6+squeeze10 upgraded apache2-utils version 2.2.16-6+squeeze7 to version 2.2.16-6+squeeze10 upgraded apache2.2-common version 2.2.16-6+squeeze7 to version 2.2.16-6+squeeze10 upgraded apache2-mpm-prefork version 2.2.16-6+squeeze7 to version 2.2.16-6+squeeze10 upgraded apache2 version 2.2.16-6+squeeze7 to version 2.2.16-6+squeeze10 upgraded bind9-doc version 1:9.7.3.dfsg-1~squeeze7 to version 1:9.7.3.dfsg-1~squeeze8 upgraded dselect version 1.15.8.12 to version 1.15.8.13 upgraded firmware-linux-free version 2.6.32-45 to version 2.6.32-46 upgraded lockfile-progs version 0.1.15 to version 0.1.15+squeeze1 and rebooted host 2012-12-04 Michael Paoli applied stable security/critical/important bug fix update(s): upgraded mysql-common version 5.1.63-0+squeeze1 to version 5.1.66-0+squeeze1 upgraded libmysqlclient16 version 5.1.63-0+squeeze1 to version 5.1.66-0+squeeze1 upgraded libxml2 version 2.7.8.dfsg-2+squeeze5 to version 2.7.8.dfsg-2+squeeze6 2012-12-12 Michael Paoli applied stable security/critical/important bug fix update(s): upgraded perl-base version 5.10.1-17squeeze3 to version 5.10.1-17squeeze4 upgraded libperl5.10 version 5.10.1-17squeeze3 to version 5.10.1-17squeeze4 upgraded perl-modules version 5.10.1-17squeeze3 to version 5.10.1-17squeeze4 upgraded perl version 5.10.1-17squeeze3 to version 5.10.1-17squeeze4 2013-01-18 Michael Paoli applied stable security/critical/important bug fix update(s): upgraded gpgv version 1.4.10-4 to version 1.4.10-4+squeeze1 upgraded gnupg version 1.4.10-4 to version 1.4.10-4+squeeze1 upgraded gnupg-curl version 1.4.10-4 to version 1.4.10-4+squeeze1 2013-01-21 Michael Paoli installed rsync version 3.0.7-2 2013-02-13 Michael Paoli applied stable security/critical/important bug fix update(s): upgraded libssl0.9.8 version 0.9.8o-4squeeze13 to version 0.9.8o-4squeeze14 upgraded libwbclient0 version 2:3.5.6~dfsg-3squeeze8 to version 2:3.5.6~dfsg-3squeeze9 upgraded openssl version 0.9.8o-4squeeze13 to version 0.9.8o-4squeeze14 upgraded samba-common version 2:3.5.6~dfsg-3squeeze8 to version 2:3.5.6~dfsg-3squeeze9 upgraded smbclient version 2:3.5.6~dfsg-3squeeze8 to version 2:3.5.6~dfsg-3squeeze9 upgraded samba-common-bin version 2:3.5.6~dfsg-3squeeze8 to version 2:3.5.6~dfsg-3squeeze9 2013-02-21 Michael Paoli applied stable security/critical/important bug fix update(s): upgraded libpq5 version 8.4.13-0squeeze1 to version 8.4.16-0squeeze1 2013-02-26 Michael Paoli upgraded to Debian 6.0.7 / applied stable security/critical/important bug fix update(s): upgraded base-files version 6.0squeeze6 to version 6.0squeeze7 upgraded gzip version 1.3.12-9 to version 1.3.12-9+squeeze1 upgraded perl-base version 5.10.1-17squeeze4 to version 5.10.1-17squeeze5 upgraded tzdata version 2012c-0squeeze1 to version 2012g-0squeeze1 upgraded libperl5.10 version 5.10.1-17squeeze4 to version 5.10.1-17squeeze5 upgraded linux-base version 2.6.32-46 to version 2.6.32-48squeeze1 upgraded linux-image-2.6.32-5-686 version 2.6.32-46 to version 2.6.32-48squeeze1 upgraded libisc62 version 1:9.7.3.dfsg-1~squeeze8 to version 1:9.7.3.dfsg-1~squeeze9 upgraded libdns69 version 1:9.7.3.dfsg-1~squeeze8 to version 1:9.7.3.dfsg-1~squeeze9 upgraded libisccc60 version 1:9.7.3.dfsg-1~squeeze8 to version 1:9.7.3.dfsg-1~squeeze9 upgraded libisccfg62 version 1:9.7.3.dfsg-1~squeeze8 to version 1:9.7.3.dfsg-1~squeeze9 upgraded libbind9-60 version 1:9.7.3.dfsg-1~squeeze8 to version 1:9.7.3.dfsg-1~squeeze9 upgraded liblwres60 version 1:9.7.3.dfsg-1~squeeze8 to version 1:9.7.3.dfsg-1~squeeze9 upgraded bind9-host version 1:9.7.3.dfsg-1~squeeze8 to version 1:9.7.3.dfsg-1~squeeze9 upgraded dnsutils version 1:9.7.3.dfsg-1~squeeze8 to version 1:9.7.3.dfsg-1~squeeze9 upgraded libldap-2.4-2 version 2.4.23-7.2 to version 2.4.23-7.3 upgraded bind9utils version 1:9.7.3.dfsg-1~squeeze8 to version 1:9.7.3.dfsg-1~squeeze9 upgraded bind9 version 1:9.7.3.dfsg-1~squeeze8 to version 1:9.7.3.dfsg-1~squeeze9 upgraded openssh-client version 1:5.5p1-6+squeeze2 to version 1:5.5p1-6+squeeze3 upgraded openssh-server version 1:5.5p1-6+squeeze2 to version 1:5.5p1-6+squeeze3 upgraded bind9-doc version 1:9.7.3.dfsg-1~squeeze8 to version 1:9.7.3.dfsg-1~squeeze9 upgraded firmware-linux-free version 2.6.32-46 to version 2.6.32-48squeeze1 upgraded ssh version 1:5.5p1-6+squeeze2 to version 1:5.5p1-6+squeeze3 upgraded perl-modules version 5.10.1-17squeeze4 to version 5.10.1-17squeeze5 upgraded perl version 5.10.1-17squeeze4 to version 5.10.1-17squeeze5 removed: /boot/initrd.img-2.6.26-2-xen-686.bak rebooted host rebooted host again (as dependency of rebooting physical host) 2013-03-04 Michael Paoli applied stable security/critical/important bug fix update(s): upgraded apache2.2-bin version 2.2.16-6+squeeze10 to version 2.2.16-6+squeeze11 upgraded apache2-utils version 2.2.16-6+squeeze10 to version 2.2.16-6+squeeze11 upgraded apache2.2-common version 2.2.16-6+squeeze10 to version 2.2.16-6+squeeze11 upgraded apache2-mpm-prefork version 2.2.16-6+squeeze10 to version 2.2.16-6+squeeze11 upgraded apache2 version 2.2.16-6+squeeze10 to version 2.2.16-6+squeeze11 2013-03-07 Michael Paoli applied stable security/critical/important bug fix update(s): upgraded php5-common version 5.3.3-7+squeeze14 to version 5.3.3-7+squeeze15 upgraded php5-cli version 5.3.3-7+squeeze14 to version 5.3.3-7+squeeze15 upgraded libapache2-mod-php5 version 5.3.3-7+squeeze14 to version 5.3.3-7+squeeze15 upgraded php5 version 5.3.3-7+squeeze14 to version 5.3.3-7+squeeze15 2013-03-09 Michael Paoli applied stable security/critical/important bug fix update(s): upgraded sudo version 1.7.4p4-2.squeeze.3 to version 1.7.4p4-2.squeeze.4 upgraded perl-base version 5.10.1-17squeeze5 to version 5.10.1-17squeeze6 upgraded libperl5.10 version 5.10.1-17squeeze5 to version 5.10.1-17squeeze6 upgraded perl-modules version 5.10.1-17squeeze5 to version 5.10.1-17squeeze6 upgraded perl version 5.10.1-17squeeze5 to version 5.10.1-17squeeze6 2013-03-26 Michael Paoli applied stable security/critical/important bug fix update(s): upgraded libxml2 version 2.7.8.dfsg-2+squeeze6 to version 2.7.8.dfsg-2+squeeze7 2013-03-30 Michael Paoli applied stable security/critical/important bug fix update(s): upgraded libisc62 version 1:9.7.3.dfsg-1~squeeze9 to version 1:9.7.3.dfsg-1~squeeze10 upgraded libdns69 version 1:9.7.3.dfsg-1~squeeze9 to version 1:9.7.3.dfsg-1~squeeze10 upgraded libisccc60 version 1:9.7.3.dfsg-1~squeeze9 to version 1:9.7.3.dfsg-1~squeeze10 upgraded libisccfg62 version 1:9.7.3.dfsg-1~squeeze9 to version 1:9.7.3.dfsg-1~squeeze10 upgraded libbind9-60 version 1:9.7.3.dfsg-1~squeeze9 to version 1:9.7.3.dfsg-1~squeeze10 upgraded liblwres60 version 1:9.7.3.dfsg-1~squeeze9 to version 1:9.7.3.dfsg-1~squeeze10 upgraded bind9-host version 1:9.7.3.dfsg-1~squeeze9 to version 1:9.7.3.dfsg-1~squeeze10 upgraded dnsutils version 1:9.7.3.dfsg-1~squeeze9 to version 1:9.7.3.dfsg-1~squeeze10 upgraded bind9utils version 1:9.7.3.dfsg-1~squeeze9 to version 1:9.7.3.dfsg-1~squeeze10 upgraded bind9 version 1:9.7.3.dfsg-1~squeeze9 to version 1:9.7.3.dfsg-1~squeeze10 upgraded bind9-doc version 1:9.7.3.dfsg-1~squeeze9 to version 1:9.7.3.dfsg-1~squeeze10 2013-04-04 Michael Paoli applied stable security/critical/important bug fix update(s): upgraded libpq5 version 8.4.16-0squeeze1 to version 8.4.17-0squeeze1 2013-04-20 Michael Paoli applied stable security/critical/important bug fix update(s): upgraded libcurl3-gnutls version 7.21.0-2.1+squeeze2 to version 7.21.0-2.1+squeeze3