Linux-Misc Digest #871, Volume #25 Tue, 26 Sep 00 09:13:01 EDT
Contents:
Re: view long filenames on msdos partition (Markus =?iso-8859-1?Q?B=F6hmer?=)
Re: New Linux Install (John)
Re: How to make updatedb include /root/* (Andreas Kähäri)
Re: [Q] zImage¿Í vmlinuz´Â ¾î¶² Â÷ÀÌ°¡ ÀÖ³ª¿ä? (Andreas Kähäri)
Re: get user ID from user name (John Thompson)
Cron and Mail to root ("Tobias Dresbach")
Re: window size (Eric)
Re: mpet player for linux 6.2 (Eric)
intel i810 - sound - where do I start to fix this ?! (Neil)
Re: New Linux Install (Chris Sherlock)
Why I can't redirect both stdout and stderr? (Carfield Yim)
XFree86 4.0.1 and Nvidia Geforce 256 (Jochen Engels)
Re: XFree86 4.0.1 and Nvidia Geforce 256 (Jochen Engels)
Xnest ([EMAIL PROTECTED])
Re: Why I can't redirect both stdout and stderr? (Robert Kiesling)
Kernel pb RH 6.1 / Cyrix 6x86 (jean christophe godefroy)
Re: VPN client software (Scott Twitchell - EWB Support)
Re: Why I can't redirect both stdout and stderr? ("Doug")
Re: Ipchains: MSN & AOL Messenger Port#s? (Quad)
Re: Why I can't redirect both stdout and stderr? (Robert Kiesling)
Re: Newbie: Printer Setup (Quad)
Re: Why I can't redirect both stdout and stderr? (-ljl-)
Re: BIND ACL Workarounds (was: Re: been hacked...have a question) (Luke Vogel)
----------------------------------------------------------------------------
From: Markus =?iso-8859-1?Q?B=F6hmer?= <[EMAIL PROTECTED]>
Subject: Re: view long filenames on msdos partition
Date: Tue, 26 Sep 2000 10:26:39 +0200
Chris Cera wrote:
>
> I have an msdos partition, but all my stuff has the crappy
> /mnt/dos/progra~1 problem. Is there any way that I can view
> these as their normal filenames? I'm using win98 on that
> particular partition. Thanks.
> --
> /"\ c h r i s c e r a
> \ / ASCII RIBBON CAMPAIGN [EMAIL PROTECTED]
> X AGAINST HTML MAIL,
> / \ AND NEWS TOO, dammit
I guess you must have compiled in the support for the vfat support into
the Kernel, or load it via module.
then you have to mount the partition with:
mount /dev/xxx /mountpoint -t vfat
This should work.
--
Markus Boehmer
Systemadministrator & Databasedeveloper
SSI Schaefer Shop GmbH
mailto:[EMAIL PROTECTED]
------------------------------
From: John <[EMAIL PROTECTED]>
Subject: Re: New Linux Install
Crossposted-To:
comp.os.linux.hardware,comp.os.linux.setup,comp.os.linux.advocacy,alt.os.linux.mandrake
Date: 26 Sep 2000 15:50:44 +0800
In comp.os.linux.hardware Raymond Laia <[EMAIL PROTECTED]> wrote:
>> "James M. Luongo" wrote:
>>
>> I plan on installing Linux Mandrake 7.1 for the first time. I need some
>> help. How big should the partitions be? And, I heard something about
>> LiLo not recognizing a Linux partition after a certain disk cylinder (or
>> sector, whatever). I think it was 1023, but I'm not sure. Is this
>> true? Help!
> Hallo James, I don't know how big is your harddisk. But I make a good
> experience with 2 GB. The normal setup eats ca. 1,2 GB of your disk.
> Don't worry about LILO and the disk cylinder. The LILO version in
> Mandrake 7.1 can cope with more cylinders. If you like a pretier
> Bootmanager then you can try GRUB. Mandrake will ask you to choose at
> the end of installation.
James is right to worry about the number of culinders; my 30 Gbyte drive is
definitely too big to be unpartitioned. However, LILO (and more importantly,
the BIOS) can be kept happy by making a /boot partition of 16 Mbytes or so.
I also have an 8.6 Gbyte drive that can't be booted (I got caught) unless you
take precautions.
If your installer gives you the option to make a boot disk during the install process,
take it. Better safe than sorry; getting a Linux system up when it won't boot from the
HDD
is not a task for a novice.
After boot, there's no problem with parition locations or sizes.
For partition sizes, read your manual;-)
I do recomment you make /home a separate partition - it's a matter of space management.
However, it's not critical - you can install everything into one partition
(subject to 1024 cylinders); later you can add a new drive, copy everything from
/home to it, moun the drive as /home and all is well. No drive letters get changed,
everything's in the same place.
Oh.
Do record your partition information on paper (sfdisk -l | lpr) and print your
/etc/fstab.
In the event you need to restore your root filesystem or whole drive (as I did last
week - dud
drive), you will need the information.
--
------------------------------
Subject: Re: How to make updatedb include /root/*
From: Andreas Kähäri <[EMAIL PROTECTED]>
Date: 26 Sep 2000 11:08:10 +0100
In article <[EMAIL PROTECTED]>, Bev <[EMAIL PROTECTED]> wrote:
>It currently includes nothing in /root or any of its subdirectories when
>it's run as a cronjob (updatedb&), but includes it when I do it by hand
>(updatedb&). What can possibly be the difference?
Check your /etc/updatedb.conf for the PRUNEPATHS variable.
/A
--
Andreas Kähäri, <URL:http://hello.to/andkaha/>. Junk mail, no.
========================================================================
What part of "GNU" did you not understand? <URL:http://www.gnu.org/>
------------------------------
Subject: Re: [Q] zImage¿Í vmlinuz´Â ¾î¶² Â÷ÀÌ°¡ ÀÖ³ª¿ä?
From: Andreas Kähäri <[EMAIL PROTECTED]>
Date: 26 Sep 2000 11:13:24 +0100
In article <[EMAIL PROTECTED]>,
Kweon Hwee <[EMAIL PROTECTED]> wrote:
>Ä¿³ÎÄÄÆÄÀÏ¿¡¼¿ä..
>ÃÖÁ¾ÀûÀ¸·Î »ý¼ºµÈ /usr/src/linux/arch/i386/boot/zImageÆÄÀÏ°ú
>±×³É /usr/src/linux/¿¡ »ý¼ºµÇ´Â vmlinux¿Í´Â ¹«½¼ Â÷ÀÌ°¡ ÀÖ´ÂÁö
>¾Ë°í ½Í½À´Ï´Ù. ¶È°°Àº ¶§¿¡ »ý¼ºµÇ´Âµ¥µµ µÎ ÆÄÀÏÀÇ ¿ë·®Àº ¸¹ÀÌ
>Â÷ÀÌ°¡ ³³´Ï´Ù. Âü°í·Î ÀúÀÇ °æ¿ì¿¡,
>zImage´Â 522236ÀÓ¿¡ ¹ÝÇÏ¿© vmlinux´Â 1299432ÀÔ´Ï´Ù.
>ÀÌ µÎÆÄÀÏÀÌ ÀüºÎ Ä¿³Î À̹ÌÁöÀ̸é..
>±× »ç¿ë¸ñÀûÀÌ ´Ù¸¥°ÇÁö¿ä..
>¾î¶² Ã¥¿¡¼± /bootµð·ºÅ丮¿¡ zImage¸¦ Ä«ÇÇÇ϶ó±¸ÇÏ°í..
>¶Ç ´Ù¸¥ Ã¥¿¡¼± vmlinux¶ó°í ÇÏ´Â °Í °°Àºµ¥... -_-;
>¸÷½Ã ±Ã±ÝÇÕ´Ï´Ù. ¾Ë°í °è½ÅºÐ!!
>
>
You seem to have some kind of trouble with compiling the kernel,
right? Since I can not read your post, I can only refer you to the
documents in /usr/src/linux/Documentation/ and the
/usr/src/linux/README file.
There's also a Kernel HOWTO available at
<URL:http://www.linuxdoc.org/HOWTO/Kernel-HOWTO.html>.
/A
--
Andreas Kähäri, <URL:http://hello.to/andkaha/>. Junk mail, no.
========================================================================
What part of "GNU" did you not understand? <URL:http://www.gnu.org/>
------------------------------
From: John Thompson <[EMAIL PROTECTED]>
Crossposted-To: alt.os.linux,comp.os.linux.networking
Subject: Re: get user ID from user name
Date: Mon, 25 Sep 2000 20:37:41 -0500
James Knott wrote:
> That does not seem to work in Redhat 6.2. According to "man id",
> there is no -u option.
How odd. Running RH v6.1 here:
ID(1) FSF ID(1)
NAME
id - print real and effective UIDs and GIDs
SYNOPSIS
id [OPTION]... [USERNAME]
DESCRIPTION
Print information for USERNAME, or the current user.
-a ignore, for compatibility with other versions
-g, --group
print only the group ID
-G, --groups
print only the supplementary groups
-n, --name
print a name instead of a number, for -ugG
-r, --real
print the real ID instead of effective ID, for -ugG
-u, --user
print only the user ID
--help display this help and exit
--version
output version information and exit
--
-John ([EMAIL PROTECTED])
------------------------------
From: "Tobias Dresbach" <[EMAIL PROTECTED]>
Subject: Cron and Mail to root
Date: Tue, 26 Sep 2000 12:09:30 +0200
Hi all,
i have a "big" problem with cron and my backup. every night cron starts a
backup with tar. that works fine. but the problem is that after the backup a
very big email about what tar has done is sent to root .
how can i avoid this? i have removed the entry mailto=root in /etc/crontab
but it doesn´t work. i use suse 7.0.
thanks in advance for your help
tobias
------------------------------
From: Eric <[EMAIL PROTECTED]>
Subject: Re: window size
Date: Tue, 26 Sep 2000 12:20:34 +0200
Reply-To: [EMAIL PROTECTED]
jawwad wrote:
>
> hi i m jawwad so pls help me about that what is window size?
> & can i c window size or can i change this window size?
> if i changment this so wheare?
>
> --
> Posted via CNET Help.com
> http://www.help.com/
I'm sorry jawwad, but I fail to understand your question.
perhaps you should try a NG that is in your native language.
(I expect that to be french, And i'm not sure if teh following exist,
but look for
fr.comp.os.linux.*
ch.comp.os.linux.*
)
Or rephrase your question more clearly/extensively.
Eric
------------------------------
From: Eric <[EMAIL PROTECTED]>
Subject: Re: mpet player for linux 6.2
Date: Tue, 26 Sep 2000 12:24:29 +0200
Reply-To: [EMAIL PROTECTED]
[EMAIL PROTECTED] wrote:
>
> The Red Hat website says an mpeg video viewer is included in the
> distribution, i can't find it. where is it, what's the name of the program? I
> only see mpg123, the mp2/mp3 player.
>
> If it is not in the distribution, where can i find the player?
> thanks.
>
> Sent via Deja.com http://www.deja.com/
> Before you buy.
They're probably referring to xanim
Eric
------------------------------
From: Neil <[EMAIL PROTECTED]>
Crossposted-To: comp.os.linux.hardware
Subject: intel i810 - sound - where do I start to fix this ?!
Reply-To: [EMAIL PROTECTED]
Date: Tue, 26 Sep 2000 11:23:07 +0100
HI
Can anyone give me some clues as to how I sort out this mess ! I don't
understand exactly what these kernel messages mean.
I'm running SuSE 6.3/6.4 kernel 2.2.13.
TIA
Neil
Starting sound driver: snd-card-intel8x0 ...
/lib/modules/2.2.13/misc/snd-intel8x0.o: unresolved symbol snd_pcm_new
/lib/modules/2.2.13/misc/snd-intel8x0.o: unresolved symbol _snd_magic_kcalloc
/lib/modules/2.2.13/misc/snd-intel8x0.o: unresolved symbol _snd_magic_kfree
/lib/modules/2.2.13/misc/snd-intel8x0.o: unresolved symbol snd_pcm_transfer_done
/lib/modules/2.2.13/misc/snd-intel8x0.o: unresolved symbol snd_kcalloc
/lib/modules/2.2.13/misc/snd-intel8x0.o: unresolved symbol
snd_pcm_lib_transfer_size
/lib/modules/2.2.13/misc/snd-intel8x0.o: unresolved symbol snd_device_new
/lib/modules/2.2.13/misc/snd-intel8x0.o: unresolved symbol snd_pcm_dma_alloc
/lib/modules/2.2.13/misc/snd-intel8x0.o: unresolved symbol snd_ac97_write_lock
/lib/modules/2.2.13/misc/snd-intel8x0.o: unresolved symbol
snd_ac97_write_bitmask_lock
/lib/modules/2.2.13/misc/snd-intel8x0.o: unresolved symbol snd_pcm_dma_free
/lib/modules/2.2.13/misc/snd-intel8x0.o: unresolved symbol synchronize_irq
/lib/modules/2.2.13/misc/snd-intel8x0.o: unresolved symbol _snd_kfree
/lib/modules/2.2.13/misc/snd-intel8x0.o: unresolved symbol snd_ac97_mixer
/lib/modules/2.2.13/misc/snd-intel8x0.o: unresolved symbol snd_pcm_lib_ioctl
/lib/modules/2.2.13/misc/snd-intel8x0.o: unresolved symbol
snd_pcm_lib_transfer_fragment
/lib/modules/2.2.13/misc/snd-intel8x0.o: unresolved symbol snd_pcm_set_mixer
/lib/modules/2.2.13/misc/snd-intel8x0.o: unresolved symbol snd_kmalloc
/lib/modules/2.2.13/misc/snd-intel8x0.o: insmod
/lib/modules/2.2.13/misc/snd-intel8x0.o failed
/lib/modules/2.2.13/misc/snd-intel8x0.o: insmod snd-card-intel8x0 failed
done
------------------------------
Date: Tue, 26 Sep 2000 21:47:20 +1000
From: Chris Sherlock <[EMAIL PROTECTED]>
Crossposted-To:
comp.os.linux.hardware,comp.os.linux.setup,comp.os.linux.advocacy,alt.os.linux.mandrake
Subject: Re: New Linux Install
>From what I understand, the new LBA32 extensions in LILO will circumvent
this problem. I don't know much more about this as I haven't had to
worry about hitting the 1024 cylinder ceiling yet.
Would someone care to comment?
Chris
"James M. Luongo" wrote:
>
> I plan on installing Linux Mandrake 7.1 for the first time. I need some
> help. How big should the partitions be? And, I heard something about
> LiLo not recognizing a Linux partition after a certain disk cylinder (or
> sector, whatever). I think it was 1023, but I'm not sure. Is this
> true? Help!
> --
> ------------------------
> James M. Luongo x1427
> Draper Laboratory Room 4207
> ------------------------
------------------------------
From: Carfield Yim <[EMAIL PROTECTED]>
Subject: Why I can't redirect both stdout and stderr?
Date: Tue, 26 Sep 2000 10:52:18 GMT
Why I can't redirect both stdout and stderr in the following command?
I haven't set the $PATH, is it relate?
[carfield@Classifier ~/DocClassifier]$ bin/count_speech_freq
>output.txt 2>error.txt
Ambiguous output redirect.
Sent via Deja.com http://www.deja.com/
Before you buy.
------------------------------
From: Jochen Engels <[EMAIL PROTECTED]>
Subject: XFree86 4.0.1 and Nvidia Geforce 256
Date: Tue, 26 Sep 2000 13:24:58 +0200
... does not work. I installed Xfree with the Xinstall script and the
Nvidia 0.9.4 kernel and GLX rpms. After changing module nv to nvidia in
XF86Config, x doesn't start. There is no error in
/var/log/Xfree86.0.log, it terminates with signal 11.
Any help?
------------------------------
From: Jochen Engels <[EMAIL PROTECTED]>
Subject: Re: XFree86 4.0.1 and Nvidia Geforce 256
Date: Tue, 26 Sep 2000 13:48:40 +0200
Jochen Engels schrieb:
>
> ... does not work. I installed Xfree with the Xinstall script and the
> Nvidia 0.9.4 kernel and GLX rpms. After changing module nv to nvidia in
> XF86Config, x doesn't start. There is no error in
> /var/log/Xfree86.0.log, it terminates with signal 11.
> Any help?
Now i tried the 0.9.5 drivers, and it tells me that the card has not
been detected correctly and that maybe the NVidiakernel file might not
have been installed correctly...
--
Jochen Engels <[EMAIL PROTECTED]> (Internet-Solutions)
* ID-PRO Deutschland GmbH * Am Hofgarten 20 * D-53113 Bonn
* http://open-for-the-better.com
------------------------------
From: [EMAIL PROTECTED]
Subject: Xnest
Date: Tue, 26 Sep 2000 11:42:03 GMT
I am trying to put a Xnest inside of an existing Xnest. I'm not sure if
this is possible but what I am trying is:
Xnest :1.0 -geometry 660x500+620+495 -ac &
Xnest :2.0 -display sisko:1.0 -geometry 660x500+620+495 -ac &
but I get the error of:
X Error of failed request: BadDrawable (invalid Pixmap or
Window parameter)
Major opcode of failed request: 55 (X_CreateGC)
Resource id in failed request: 0x0
Serial number of failed request: 10
Current serial number in output stream: 29
Any ideas would b ehelpful. Thanks
TIm
Sent via Deja.com http://www.deja.com/
Before you buy.
------------------------------
From: [EMAIL PROTECTED] (Robert Kiesling)
Subject: Re: Why I can't redirect both stdout and stderr?
Reply-To: [EMAIL PROTECTED]
Date: 26 Sep 2000 07:49:56 -0400
In article <8qpv4t$6hf$[EMAIL PROTECTED]>,
Carfield Yim <[EMAIL PROTECTED]> wrote:
>Why I can't redirect both stdout and stderr in the following command?
>I haven't set the $PATH, is it relate?
>
>[carfield@Classifier ~/DocClassifier]$ bin/count_speech_freq
>>output.txt 2>error.txt
>Ambiguous output redirect.
Because one output handle is always blocking the other, and the shell
doesn't know which to write to. What you have to do is duplicate the
first handle *after* specifying the redirect. Bash (in this case),
has this syntax:
$ bin/count_speec_freq >>output.txt 2>&1
The setting of $PATH is most likely unrelated. Handles are internal
to the shell.
--
Robert Kiesling
Linux FAQ Maintainer
[EMAIL PROTECTED]
------------------------------
From: jean christophe godefroy <[EMAIL PROTECTED]>
Subject: Kernel pb RH 6.1 / Cyrix 6x86
Date: Tue, 26 Sep 2000 13:55:40 +0200
Hi,
I have installed a redhat 6.1 on a 6x86 computer.
Kernel is 2.2.12
When i try to compile the kernel it crashes.
I found some explanation on the net but only with the RH 5.0.
When i upgrade kernel to 2.2.16 i get the same problem.
Does anyone had the same problem or can give me an advice ?
Thanks in advance.
--
Jean Christophe Godefroy
------------------------------
Date: Tue, 26 Sep 2000 08:02:03 -0400
From: Scott Twitchell - EWB Support <[EMAIL PROTECTED]>
Crossposted-To: comp.os.linux.networking,comp.os.linux.setup
Subject: Re: VPN client software
My work has a VPN switch. I Have to start the VPN client software (currently in W 98)
and log in with a username and password (to get access through the gateway).
Scott
SCHeckler wrote:
> Define 'VPN' Are you talking about PPTP? SSH tunnels? ISAKMP?
>
> In <[EMAIL PROTECTED]>, Scott Twitchell - EWB Support wrote:
> >Does anyone know of any VPN client software for linux (I'm running Red Hat
> >6.1). I access my work network through VPN in windows but want to try it
> >through linux.
> >
> >Thanks,
> >
> >Scott
> >
> >
>
> --
> Gregory Spath
> [EMAIL PROTECTED], [EMAIL PROTECTED]
> SCHeckler in #mtbike on EFNet, fr33f411 on AIM
> http://freefall.homeip.net/
------------------------------
From: "Doug" <[EMAIL PROTECTED]>
Subject: Re: Why I can't redirect both stdout and stderr?
Date: Tue, 26 Sep 2000 23:17:00 +1000
"Robert Kiesling" <[EMAIL PROTECTED]> wrote in message
news:8qq2h4$5kp$[EMAIL PROTECTED]...
> Because one output handle is always blocking the other, and the shell
> doesn't know which to write to. What you have to do is duplicate the
> first handle *after* specifying the redirect. Bash (in this case),
> has this syntax:
>
I thought this was the case too but when I run
bin/count_speech_freq output.txt 2>error.txt
under Cygwin Bash 2.04.0 it works fine.
Any thoughts?
Doug
------------------------------
From: Quad <[EMAIL PROTECTED]>
Crossposted-To: comp.os.linux.networking
Subject: Re: Ipchains: MSN & AOL Messenger Port#s?
Date: Tue, 26 Sep 2000 12:03:09 GMT
IPTRAF?
Ill try to find it online and give it a try.
Is there any sites out there that list programs and the ports they use?
That would be a great resource tool.
Thanks
Quad
In article <01c02733$bfffc680$0201a8c0@pc2>,
"Philippe BLATIERE" <[EMAIL PROTECTED]> wrote:
> > I am wondering if anyone knows the ports that AOL and MSN instant
> > messengers use?
>
> I really don't know AOL and MSN instant messenger but to know the port
> used, I think you just need to use something like iptraf to read the
port
> used by the packets.
>
>
--
Quad
MCSE, MCP+I, CNA, A+
Sent via Deja.com http://www.deja.com/
Before you buy.
------------------------------
From: [EMAIL PROTECTED] (Robert Kiesling)
Subject: Re: Why I can't redirect both stdout and stderr?
Reply-To: [EMAIL PROTECTED]
Date: 26 Sep 2000 08:09:16 -0400
In article <8qq3f6$o72$[EMAIL PROTECTED]>,
Doug <[EMAIL PROTECTED]> wrote:
>
>"Robert Kiesling" <[EMAIL PROTECTED]> wrote in message
>news:8qq2h4$5kp$[EMAIL PROTECTED]...
>> Because one output handle is always blocking the other, and the shell
>> doesn't know which to write to. What you have to do is duplicate the
>> first handle *after* specifying the redirect. Bash (in this case),
>> has this syntax:
>>
>I thought this was the case too but when I run
>
>bin/count_speech_freq output.txt 2>error.txt
>
>under Cygwin Bash 2.04.0 it works fine.
>Any thoughts?
Because there's only one redirect, and the output is going to
different files, so there's no ambiguity (according to the shell).
By default, Linux blocks on I/O writes too, just like every other OS
that I'm familiar with, unless a program specifies otherwise.
Thoughts!? :(.
--
Robert Kiesling
Linux FAQ Maintainer
[EMAIL PROTECTED]
------------------------------
From: Quad <[EMAIL PROTECTED]>
Subject: Re: Newbie: Printer Setup
Date: Tue, 26 Sep 2000 12:05:56 GMT
Guys thanks so much, ill try it when I get home and let you know how it
worked out.
Thanks
Quad
In article <[EMAIL PROTECTED]>,
Bob Martin <[EMAIL PROTECTED]> wrote:
> Quad wrote:
> >
> > Hi
> >
> > I have a Xerox XJ6C printer. It doesnt come with drivers for linux
and
> > from what I have researched, its not supported. Does anyone know a
> > different print driver that might work with my printer?
> >
> > Or any other way I might set it up?
> >
> > Thanks
> >
>
> Try www.linuxprinting.org, it's listed as mostly working.
> --
>
> Bob Martin
>
--
Quad
MCSE, MCP+I, CNA, A+
Sent via Deja.com http://www.deja.com/
Before you buy.
------------------------------
From: -ljl- <[EMAIL PROTECTED]>
Subject: Re: Why I can't redirect both stdout and stderr?
Date: Tue, 26 Sep 2000 12:11:56 GMT
In article <8qpv4t$6hf$[EMAIL PROTECTED]>,
Carfield Yim <[EMAIL PROTECTED]> wrote:
> Why I can't redirect both stdout and stderr in the following command?
> I haven't set the $PATH, is it relate?
>
> [carfield@Classifier ~/DocClassifier]$ bin/count_speech_freq
> >output.txt 2>error.txt
> Ambiguous output redirect.
This works on my machine:
cat bookmarks.html >junk 2>err
[@lou2 labash]$ ls -l err junk
-rw-rw-r-- 1 labash labash 0 Sep 26 07:04 err
-rw-rw-r-- 1 labash labash 45633 Sep 26 07:04 junk
Don't have 'bin/count_speech_freq' :-)
--
Louis-ljl-{ Louis J. LaBash, Jr. }
Sent via Deja.com http://www.deja.com/
Before you buy.
------------------------------
From: Luke Vogel <[EMAIL PROTECTED]>
Reply-To: [EMAIL PROTECTED]
Crossposted-To: comp.os.linux.admin,comp.os.linux.help,comp.os.linux.security
Subject: Re: BIND ACL Workarounds (was: Re: been hacked...have a question)
Date: Tue, 26 Sep 2000 22:30:31 +1000
Grega Bremec wrote:
>
> ...and MIchael Erskine used the keyboard:
> >
> >One of the most important things you can do is ensure that DNS is set up
> >properly with ACL's in the /etc/named.conf file. That task is
> >non-trivial.
I would like some clarification on this (ACL's) ... can anyone point me
at a good resource for sample configurations etc. I have been unable to
find a good clear guide on setting up BIND ACL's properly. (I find the
BIND documentation and site minimalist in this regard)
I did read an interesting paper from Craig Rowland of psionic (of
PortSentry HostSentry LogCheck fame) and he describes in reasonable
detail the steps to put named in a chrooted hole.
I'm wondering if it would be feasible to put other necessary daemons
(say sendmail and httpd) into a similar chrooted hole to enhance
security yet again?
Comments?
--
Regards
Luke
PLEASE NOTE: Spamgard (tm) installed.
----
When the only tool you own is a hammer,
all problems begin to resemble nails.
----
http://www.bell-bird.com.au
mailto:[EMAIL PROTECTED]
----
------------------------------
** FOR YOUR REFERENCE **
The service address, to which questions about the list itself and requests
to be added to or deleted from it should be directed, is:
Internet: [EMAIL PROTECTED]
You can send mail to the entire list (and comp.os.linux.misc) via:
Internet: [EMAIL PROTECTED]
Linux may be obtained via one of these FTP sites:
ftp.funet.fi pub/Linux
tsx-11.mit.edu pub/linux
sunsite.unc.edu pub/Linux
End of Linux-Misc Digest
******************************
