Linux-Misc Digest #531, Volume #25 Wed, 23 Aug 00 02:13:04 EDT
Contents:
Re: Best way to learn "real world" skills? (MH)
Re: Best way to learn "real world" skills? (MH)
Parallel printer not recognized. ("Peter Cheung")
Re: Firewall for Linux ("Peter Cheung")
Re: NFS umount problem ("D. C. & M. V. Sessions")
Re: Firewall for Linux (Donald K Knepshield)
Re: PC-NFS ("Peter Cheung")
missing man page (?) (Neil Zanella)
The source code of setlocale ([EMAIL PROTECTED])
Re: why suid'ed shutdown refuses to run? ([EMAIL PROTECTED])
Re: Parallel printer not recognized. (Prasanth A. Kumar)
Re: Firewall for Linux (Zebee Johnstone)
Testing Pan ("Chuck")
Re: Firewall for Linux (John Hovell)
----------------------------------------------------------------------------
From: MH <[EMAIL PROTECTED]>
Subject: Re: Best way to learn "real world" skills?
Date: Tue, 22 Aug 2000 21:09:25 -0700
Reply-To: [EMAIL PROTECTED]
"Andrew N. McGuire" wrote:
>
>
> Quite true, one way to get started is at an ISP. ISP's are big on
> Linux, and love to hire relatively inexperienced, but highly motivated
> individuals.. I was a senior admin at an ISP for a while, and we
> were always looking for new guys to teach stuff to. Don't be
> suprised if you get hired as a tape jockey at first though. Often
> times a brand new admin will get assigned the task of making sure
> the servers are backed up, adding user accounts, reading logs, and
> reporting errors. Fairly trivial things at first (and this is
> not just for ISP's either). If you stick with it though you will
> get to work with some interesting technologies and people will
> eventually start to come to you for help. After a couple years
> doing that kind of stuff, you can consider your foot pretty much
> in the door, but the learning doesn't stop, EVER.
>
> ~~ I am considering taking a 5-day "boot camp" on Linux Administration, but
> ~~ am concerned about the real benefits of such a short learning period,
> ~~ even if taught by reputable and knowledgeable professionals in a
> ~~ hands-on environment.
>
> I am generally weary of such 'crash courses'. Sometimes they do
> yield some good information, however more often than not, they are
> not worth the price.
>
> ~~ It seems I'm caught in a bit of a chicken-and-egg situation. Any
> ~~ suggestions based on your own experiences?
>
> Start with an ISP or University, work your way up the chain there,
> then once you REALLY have a handle on things, move out into the
> market where the real money can be made. Just be aware, that
> UNIX admin can be a tiring job, but then again you already have
> done Windows admin, so I would hate to see what your pager looks
> like. ;^)
>
Thanks for the response. You've pretty much reinforced my own
perceptions/expectations. I have considered working for an ISP.
Wouldn't mind the grunt work, at least for awhile, as long as I learning
something. What I wouldn't be happy about is the 24/7, as the newbie is
going to get the crappy shifts.
--
"The worst form of inequality is to try to make unequal things equal."
--Aristotle
------------------------------
From: MH <[EMAIL PROTECTED]>
Subject: Re: Best way to learn "real world" skills?
Date: Tue, 22 Aug 2000 21:18:09 -0700
Reply-To: [EMAIL PROTECTED]
Jason wrote:
>
> I learn the most when I tackle something with a project in mind. You
> already sound like you know what the boot camp will teach you if you managed
> to install and network a flock of 486's, you just need an application now.
> Get one of those boxs running a web server, get another running DNS, smack a
> web based email client in there somewhere. Get one of the boxs running
> Samba and NFS, do some firewalling and ipmasq, play with NFS and sendmail.
> In short, just think of something that you want to be able to do, not
> something that you would like to learn. When you feel ok with all of that,
> have some real fun and cluster those things. Nothing humbles a man like MPI.
> I bought every book I could find (all 3 of them) on MySQL trying to learn
> it, but didn't pick up nearly as much until I decided that I wanted to smack
> all of my MP3's into a database. Once I had a goal in mind, the rest came
> pretty quick. It's like the old saying, necessity is the mother of all
> invention. I guess that applies to the learning process too. And remember,
> you know you are learning something in Linux when you realize just how
> little you know.
>
You make some good points. I've got SAMBA and NFS shares, and intend to
do some firewalling stuff soon (I've got semi-preconfigured firewall up
now). I also plan on putting up a rudimentary website and email
service. However, this stuff all gets boring very quickly on a 3-box
system, since once it's up it's up. No loony-tunes users mucking about,
or dreaming up new technology "needs", to really test my skills. Also,
it's hard to know when you're missing something that may be vital in
"real world" settings, but which you never encounter on a 3-box network.
--
"The worst form of inequality is to try to make unequal things equal."
--Aristotle
------------------------------
From: "Peter Cheung" <[EMAIL PROTECTED]>
Subject: Parallel printer not recognized.
Date: Tue, 22 Aug 2000 21:32:32 -0700
Hi all,
RH Linux 6.1
P133
64MB Ram
Epson 740
2 NIC cards eth0 (int 11) and eth1 (int 10)
tried to add a new printer using printtool
but after clicking on 'Add', printtool comes back
and tells me that it cannot find a printer
in /dev/lp0, lp1 nor lp2. The printer is connected
and turned on. The printer cable is fine. I have two
sets of cables which worked with a PII system running
WinNT 4.0.
CMOS setting printer is set at SSP, and
Interrupt 7: tried ISA and PCI PnP as well as
Legacy ISA but still no go.
Any ideas?
Thanks in advance
------------------------------
From: "Peter Cheung" <[EMAIL PROTECTED]>
Crossposted-To:
alt.os.linux,comp.os.linux.networking,comp.os.linux.setup,uk.comp.os.linux
Subject: Re: Firewall for Linux
Date: Tue, 22 Aug 2000 21:40:24 -0700
Hi Jason,
there are MANY discussions going on in this newsgroup currently on just how
to set one
up. Just scan through the postings, or if you can't find any, go to dejanews
and look for
keywords 'ethernet' 'ipchains'; I recently did it (recent as in TODAY). It's
a bit of work, but it
sure feels good when everything is working. RH 6.1 and above has IPCHAINS
included in the
distribution and just needs to be configured properly. You will need two
NICs; make sure
they are generic enough that Linux supports them. Check for FAQs and HOWTOs.
There are LOTS of info out there as everybody is doing this...
Peter
"Jason Ng" <[EMAIL PROTECTED]> wrote in message
news:8nvg72$oiu$[EMAIL PROTECTED]...
> X-Priority: 3
> X-MSMail-Priority: Normal
> X-Newsreader: Microsoft Outlook Express 5.00.2919.6600
> X-MimeOLE: Produced By Microsoft MimeOLE V5.00.2919.6600
>
> Hi,
>
> I would like to install a firewall on my Linux box. Does anyone have any
> suggestions?
> I am a newbie for this and I want to know which one is good...
>
> Regards,
> Jason
>
>
------------------------------
From: "D. C. & M. V. Sessions" <[EMAIL PROTECTED]>
Subject: Re: NFS umount problem
Date: Tue, 22 Aug 2000 21:40:49 -0700
[EMAIL PROTECTED] wrote:
>
> On my RH6.1 boxes I unmounted my NFS'd CDROM from the import
> machine OK, but trying to unmount on the exporting machine I get the
> "device busy" error. umount -f doesn't work, same message. I tried also
> to use linuxconf to unmount, the linuxconf response says "umount
> successful" despite the command line error message "device busy". I'd
> like to find a way to determine what could be keeping the CD filesystem
> busy, as I can't open the CD drive to remove the CD. I'd like to be able
> to solve this without having to kill the NFS process. Is there a way to
> track down what's actually keeping the device busy [ps -ax only shows there
> are NFS processes active]?
fuser -m /dev/cdrom
--
| Bogus as it might seem, people, this really is a deliverable |
| e-mail address. Of course, there isn't REALLY a lumber cartel. |
| There isn't really a tooth fairy, but whois toothfairy.com works. |
+----------- D. C. & M. V. Sessions <[EMAIL PROTECTED]> ----------+
------------------------------
From: [EMAIL PROTECTED] (Donald K Knepshield)
Crossposted-To:
alt.os.linux,comp.os.linux.networking,comp.os.linux.setup,uk.comp.os.linux
Subject: Re: Firewall for Linux
Date: 23 Aug 2000 04:13:38 GMT
Jason Ng ([EMAIL PROTECTED]) wrote:
: Hi,
:
: I would like to install a firewall on my Linux box. Does anyone have any
: suggestions?
: I am a newbie for this and I want to know which one is good...
:
: Regards,
: Jason
PMFirewall is another one that works well. www.pmfirewall.com/PMFirewall
interested.
:
:
--
Kevin Knepshield
[EMAIL PROTECTED]
------------------------------
From: "Peter Cheung" <[EMAIL PROTECTED]>
Subject: Re: PC-NFS
Date: Tue, 22 Aug 2000 21:45:41 -0700
This is a multi-part message in MIME format.
=======_NextPart_000_00F9_01C00C82.51474180
Content-Type: text/plain;
charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
I agree,=20
I have had PCNFS on SUNs and it's nothing but problems.
Also you have to find the client programs for PC's and the PCNFS program =
totally screws up=20
your Windows Network stack. Using Samba. It's the way to go, since =
nothing needs to=20
be "installed" on the Windows side. I am assuming you are running =
windows since you
did say PCNFS.=20
BTW: the version I used for PCNFSProVersion2.
Peter
"Fabi=E1n A. Ju=E1rez Mart=EDnez" <[EMAIL PROTECTED]> wrote in =
message news:rMHo5.23$[EMAIL PROTECTED]...
Yes! SAMBA has many qualities on function... Really, you need to test =
before a choice!
Do it! I've three Client-Server installation on live and... problems? =
what problems.
T. Odensson <[EMAIL PROTECTED]> escribi=F3 en el mensaje de =
noticias 39a15e73$0$72531$[EMAIL PROTECTED]
> Thanks for the start but I need to get pcnfsd installed/configured. =
On
> Solaris it is rpc.pcnfsd, this is the daemon that I need to install =
or some
> type of similar daemon/service. I have looked at LDP and the only =
thing it
> says about PC-NFS is:
>=20
> >You don't want to run PC-NFS. You want to run samba.
> >samba is far better than PC-NFS and it works with Windows 3 for =
Workgroups
> and later >versions of Windows. It's faster and more secure too. Use =
it.
> Really.
>=20
> Well... this is of no help, really.
>=20
>=20
> I guess to be a little more specific, I am using WebNFS and it needs =
user
> authentication, pcnfsd will provide that authentication. Otherwise =
it will
> use the user/group nobody and you will not have any rights. I do =
NOT want
> to assign those file to nobody. I need to be able to "login" into =
WebNFS.
> Anyone have any ideas?
>=20
> Thanks for the help,
> T. Odensson
>=20
>=20
>=20
> > Hi! I presume you mean you need to connect a PC running PC-NFS to =
your
> > NFS server running on Linux, right? OR do you want to mount NFS
> > exported filesystems from a Windows NFS server into your Linux
> > filesystem?
> >
> > If you add the directories you want to export to "/etc/exports" (I =
think
> > it's called) on the Linux box and mae sure rpc.mountd (and =
possibly a
> > couple of other daemons) is running then PC-NFS should be able to =
see
> > the NFS daemon running on Linux and mount the shares. Use the =
"man
> > nfsd" to learn more. "man mount" might even have references to =
other
> > NFS man pages to read (on Linux of course). Lastly, there's the =
Linux
> > NFS HOWTO which you can find at the Linux Documentation Project
> > (http://www.linuxdoc.org) web site.
> >
> > Too bad Samba is not an alternative for your because that would be =
MUCH
> > cheaper than buying PC-NFS licenses. You can always run a free =
NFS
> > server on Windows and mount the NFS exports into your Linux =
filesystem.
> >
> > Good luck!
> >
> > Peace....
> >
> > Tom
> >
> >
> > Sent via Deja.com http://www.deja.com/
> > Before you buy.
>=20
>=20
=======_NextPart_000_00F9_01C00C82.51474180
Content-Type: text/html;
charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<HTML><HEAD>
<META content=3D"text/html; charset=3Diso-8859-1" =
http-equiv=3DContent-Type>
<META content=3D"MSHTML 5.00.2919.6307" name=3DGENERATOR>
<STYLE></STYLE>
</HEAD>
<BODY bgColor=3D#ffffff>
<DIV><FONT size=3D2>I agree, </FONT></DIV>
<DIV> </DIV>
<DIV><FONT size=3D2>I have had PCNFS on SUNs and it's nothing but=20
problems.</FONT></DIV>
<DIV><FONT size=3D2>Also you have to find the client programs for PC's =
and the=20
PCNFS program totally screws up </FONT></DIV>
<DIV><FONT size=3D2>your Windows Network stack. Using Samba. It's the =
way to go,=20
since nothing needs to </FONT></DIV>
<DIV><FONT size=3D2>be "installed" on the Windows side. I am assuming =
you are=20
running windows since you</FONT></DIV>
<DIV><FONT size=3D2>did say PCNFS. </FONT></DIV>
<DIV> </DIV>
<DIV><FONT size=3D2>BTW: the version I used for =
PCNFSProVersion2.</FONT></DIV>
<DIV> </DIV>
<DIV><FONT size=3D2>Peter</FONT></DIV>
<BLOCKQUOTE=20
style=3D"BORDER-LEFT: #000000 2px solid; MARGIN-LEFT: 5px; MARGIN-RIGHT: =
0px; PADDING-LEFT: 5px; PADDING-RIGHT: 0px">
<DIV>"Fabi=E1n A. Ju=E1rez Mart=EDnez" <<A=20
href=3D"mailto:[EMAIL PROTECTED]">[EMAIL PROTECTED]</A>> wrote =
in message=20
<A=20
=
href=3D"news:rMHo5.23$[EMAIL PROTECTED]">news:rMHo5.23$ef2=
[EMAIL PROTECTED]</A>...</DIV>
<DIV><FONT face=3D"Trebuchet MS" size=3D2>Yes! SAMBA has many =
qualities on=20
function... Really, you need to test before a choice!</FONT></DIV>
<DIV> </DIV>
<DIV><FONT face=3D"Trebuchet MS" size=3D2>Do it! I've three =
Client-Server=20
installation on live and... problems? what problems.</FONT></DIV>
<DIV> </DIV>
<DIV><FONT face=3D"Trebuchet MS" size=3D2>T. Odensson <<A=20
href=3D"mailto:[EMAIL PROTECTED]">[EMAIL PROTECTED]</A>> =
escribi=F3 en el=20
mensaje de noticias <A=20
=
href=3D"mailto:39a15e73$0$72531$[EMAIL PROTECTED]">39a15e73$0$7=
2531$[EMAIL PROTECTED]</A>...</FONT></DIV><FONT=20
face=3D"Trebuchet MS" size=3D2>> Thanks for the start but I need to =
get pcnfsd=20
installed/configured. On<BR>> Solaris it is rpc.pcnfsd, this =
is the=20
daemon that I need to install or some<BR>> type of similar=20
daemon/service. I have looked at LDP and the only thing =
it<BR>> says=20
about PC-NFS is:<BR>> <BR>> >You don't want to run PC-NFS. =
You want=20
to run samba.<BR>> >samba is far better than PC-NFS and it works =
with=20
Windows 3 for Workgroups<BR>> and later >versions of Windows. =
It's=20
faster and more secure too. Use it.<BR>> Really.<BR>> <BR>> =
Well...=20
this is of no help, really.<BR>> <BR>> <BR>> I guess to be a =
little=20
more specific, I am using WebNFS and it needs user<BR>> =
authentication,=20
pcnfsd will provide that authentication. Otherwise it =
will<BR>> use=20
the user/group nobody and you will not have any rights. I do NOT =
want<BR>> to assign those file to nobody. I need to be able =
to=20
"login" into WebNFS.<BR>> Anyone have any ideas?<BR>> <BR>> =
Thanks=20
for the help,<BR>> T. Odensson<BR>> <BR>> <BR>> <BR>> =
>=20
Hi! I presume you mean you need to connect a PC running PC-NFS =
to=20
your<BR>> > NFS server running on Linux, right? OR do you =
want to=20
mount NFS<BR>> > exported filesystems from a Windows NFS server =
into=20
your Linux<BR>> > filesystem?<BR>> ><BR>> > If you =
add the=20
directories you want to export to "/etc/exports" (I think<BR>> > =
it's=20
called) on the Linux box and mae sure rpc.mountd (and possibly =
a<BR>> >=20
couple of other daemons) is running then PC-NFS should be able to =
see<BR>>=20
> the NFS daemon running on Linux and mount the shares. Use =
the=20
"man<BR>> > nfsd" to learn more. "man mount" might even =
have=20
references to other<BR>> > NFS man pages to read (on Linux of=20
course). Lastly, there's the Linux<BR>> > NFS HOWTO which =
you can=20
find at the Linux Documentation Project<BR>> > (<A=20
href=3D"http://www.linuxdoc.org">http://www.linuxdoc.org</A>) web =
site.<BR>>=20
><BR>> > Too bad Samba is not an alternative for your because =
that=20
would be MUCH<BR>> > cheaper than buying PC-NFS licenses. =
You can=20
always run a free NFS<BR>> > server on Windows and mount the NFS =
exports=20
into your Linux filesystem.<BR>> ><BR>> > Good =
luck!<BR>>=20
><BR>> > Peace....<BR>> ><BR>> > Tom<BR>> =
><BR>>=20
><BR>> > Sent via Deja.com <A=20
href=3D"http://www.deja.com/">http://www.deja.com/</A><BR>> > =
Before you=20
buy.<BR>> <BR>> </FONT></BLOCKQUOTE></BODY></HTML>
=======_NextPart_000_00F9_01C00C82.51474180==
------------------------------
From: Neil Zanella <[EMAIL PROTECTED]>
Subject: missing man page (?)
Date: Wed, 23 Aug 2000 02:19:47 -0230
Hello,
I am trying to look at a man page but something is going wrong.
Given this information how do I look at the dirname man page in section 3?
Is the man page missing or is it part of a man page with a different name?
(BTW man 1 dirname brings up a page but not the one I wanted) Any ideas?
[nzanella@tulip nzanella]$ man -k dirname
dirname (1) - strip non-directory suffix from file name
dirname [File::Basename] (3) - extract just the directory from a path
[nzanella@tulip nzanella]$ man 3 dirname
No entry for dirname in section 3 of the manual
[nzanella@tulip nzanella]$ echo $MANPATH
/usr/lib/qt-2.1.0/man:/usr/local/maple/man:/usr/man:/usr/X11R6/man:/usr/lib/perl5/man:/usr/kerberos/man:/usr/local/man
Thanks,
Neil
------------------------------
From: [EMAIL PROTECTED]
Subject: The source code of setlocale
Date: Wed, 23 Aug 2000 04:39:28 GMT
Does anyone know where I can get the source code of setlocale for Linux
or Unix.
Thanks,
Bill
Sent via Deja.com http://www.deja.com/
Before you buy.
------------------------------
From: [EMAIL PROTECTED]
Subject: Re: why suid'ed shutdown refuses to run?
Date: Wed, 23 Aug 2000 04:48:45 GMT
In article <8ntflj$vrr$[EMAIL PROTECTED]>,
"Peter T. Breuer" <[EMAIL PROTECTED]> wrote:
> [EMAIL PROTECTED] wrote:
> : If the script is SUID, we just souldn't allow anyone to modify it.
> : How can one replace the script with arbitrary commands?
>
> Link tricks, if you must know.
You're getting real concise! What is this "link trick"?
> Personally I'm more worried about env vars and special character
> interpretations.
How about some examples?
Sent via Deja.com http://www.deja.com/
Before you buy.
------------------------------
Subject: Re: Parallel printer not recognized.
From: [EMAIL PROTECTED] (Prasanth A. Kumar)
Date: Wed, 23 Aug 2000 05:13:04 GMT
"Peter Cheung" <[EMAIL PROTECTED]> writes:
> Hi all,
>
> RH Linux 6.1
> P133
> 64MB Ram
> Epson 740
> 2 NIC cards eth0 (int 11) and eth1 (int 10)
>
> tried to add a new printer using printtool
> but after clicking on 'Add', printtool comes back
> and tells me that it cannot find a printer
> in /dev/lp0, lp1 nor lp2. The printer is connected
> and turned on. The printer cable is fine. I have two
> sets of cables which worked with a PII system running
> WinNT 4.0.
>
> CMOS setting printer is set at SSP, and
> Interrupt 7: tried ISA and PCI PnP as well as
> Legacy ISA but still no go.
>
> Any ideas?
>
> Thanks in advance
Verify you have the following line in /etc/conf.modules:
alias parport_lowlevel parport_pc
--
Prasanth Kumar
[EMAIL PROTECTED]
------------------------------
From: [EMAIL PROTECTED] (Zebee Johnstone)
Crossposted-To:
alt.os.linux,comp.os.linux.networking,comp.os.linux.setup,uk.comp.os.linux
Subject: Re: Firewall for Linux
Date: 23 Aug 2000 04:29:00 GMT
Reply-To: [EMAIL PROTECTED]
In comp.os.linux.setup on Wed, 23 Aug 2000 11:26:31 +0800
Jason Ng <[EMAIL PROTECTED]> wrote:
>Hi,
>
>I would like to install a firewall on my Linux box. Does anyone have any
>suggestions?
>I am a newbie for this and I want to know which one is good...
>
>
Like almost everything.. "it depends"
What do you want it for?
Do you want to control access in or out, if so what kind of control
and what kind of access?
Are you running software that uses special TCP ports, and do the ports
change? Some proprietary software is very bad mannered about ports.
Do you need logging, if so what do you want to log?
Do you want it free, or are you willing to pay?
There are lots of ways of firewalling, and they all have advantages
and disadvantages. So you need to think about what one is, why you
want it, and what things you want to do. That way you can decide what
it must have, what it mustn't have, and what you don't care about.
Then you can decide which one is good.
So your first job is to decide why you want one. List the reasons in
order.
Next, list the connections that will be made into and out of your
machine. What software, what ports.
Then decide what logging you want, incoming? outgoing? just the fact
of a connection? What the connection was? Who made it? URLs? FTP
sites?
Zebee
--
SAGE-AU: The System Administrator's Guild. www.sage-au.org.au
To advance the profession of System Administration by raising
awareness of the need for System Administrators, and educating
System Administrators in technical as well as professional issues.
------------------------------
From: "Chuck" <[EMAIL PROTECTED]>
Subject: Testing Pan
Date: Tue, 22 Aug 2000 22:55:13 -0700
This is a test of Pan, there is no need to response.
Thanks,
Chuck
------------------------------
From: John Hovell <[EMAIL PROTECTED]>
Crossposted-To:
alt.os.linux,comp.os.linux.networking,comp.os.linux.setup,uk.comp.os.linux
Subject: Re: Firewall for Linux
Date: Wed, 23 Aug 2000 05:44:12 GMT
Jason --
Whats the application? Is the Linux box an internet gateway or just a
standalone "personal" machine?
Corporate? Home?
Anything based on the ipchains package is a stateless filter which is behind
the times, but it is what Linux has.
Beyond this, you could try
www.snort.org -- very powerful... but maybe difficult to configure.
Other IPchains front-ends:
If you are new and want a GUI to play with, maybe gfcc (works with Gnome).
I think firestarter is popular with beginners.
As another poster said SeaWALL is supposedly really good... never tried it
myself.
With linux 2.4 coming up, ipchains will go away and become iptables
(stateful).
There are really dozens more to try. Tell me what you are trying to
accomplish, and I can recommend one that is for what you are trying to do.
Cheers,
John
Jason Ng wrote:
> Hi,
>
> I would like to install a firewall on my Linux box. Does anyone have any
> suggestions?
> I am a newbie for this and I want to know which one is good...
>
> Regards,
> Jason
------------------------------
** FOR YOUR REFERENCE **
The service address, to which questions about the list itself and requests
to be added to or deleted from it should be directed, is:
Internet: [EMAIL PROTECTED]
You can send mail to the entire list (and comp.os.linux.misc) via:
Internet: [EMAIL PROTECTED]
Linux may be obtained via one of these FTP sites:
ftp.funet.fi pub/Linux
tsx-11.mit.edu pub/linux
sunsite.unc.edu pub/Linux
End of Linux-Misc Digest
******************************
