Linux-Misc Digest #723, Volume #27 Thu, 26 Apr 01 19:13:04 EDT
Contents:
Re: disk space (Michael Heiming)
Re: filesystem standard ("Simon Frohn")
Re: RH 7.1 or older? (Michael Perry)
Re: RH 7.1 or older? (Michael McConnell)
Re: clock: how to tell date it's localtime (Johan Kullstam)
trashed mbr ("Jack Kaufmann")
Re: boot record disaster -- help! ("Jack Kaufmann")
New User Help ("Clarke")
Re: Can not write to /usr/local/httpd/htdocs ("Jon_H")
Re: New User Help (Jim Cochrane)
Re: Realtek 8139b NIC ("Jon_H")
Good linux mail client (Jim Cochrane)
Re: New User Help (woolfy)
Re: New User Help ("Peter T. Breuer")
Re: Can not write to /usr/local/httpd/htdocs (Jeremiah DeWitt Weiner)
comprehensible help on backspace and delete... ("dmayo")
Re: Realtek 8139b NIC ("Ralph Wade Phillips")
Unmounting from a script causes suicide ("Siddharth Vajirkar")
Core dump on RH6.2 with GNOME desktop ([EMAIL PROTECTED])
----------------------------------------------------------------------------
Date: Thu, 26 Apr 2001 22:11:30 +0200
From: Michael Heiming <[EMAIL PROTECTED]>
Subject: Re: disk space
Rabi Gurung wrote:
>
> Hi,
> is there anybody who can help me to determine where the disk space is
> taken up having over 100 users on the system,to identify which user are
> taking the most storage, and then the next most and so on.
> thanks
> Rabi
Assuming your users have their homedir in /home and they are not allowed
to
write somewhere else:
grep --regexp=":\/home\/" /etc/passwd | awk -F: '{system("du -s" " "
$6)}' | sort -n -r
Michael Heiming
------------------------------
From: "Simon Frohn" <[EMAIL PROTECTED]>
Subject: Re: filesystem standard
Date: Thu, 26 Apr 2001 22:15:55 +0200
Hi,
> Wibble. That sounds like a very bad idea to me. That's just
> asking to have your website defaced by an attacker. The user who runs
> the web server _should_not_ be able to write to the content he serves!
> If you have to be able to upload stuff, OK, but make that a separate
> directory, with separate ownership.
Of course the upload-site is password-protected. Also
you must access the Database to link the uploaded files.
The directory the upload takes part, is writeable by
the webserver, the remaining webdirectories are not.
-Simon
------------------------------
From: [EMAIL PROTECTED] (Michael Perry)
Subject: Re: RH 7.1 or older?
Date: Thu, 26 Apr 2001 20:40:17 -0000
On Thu, 26 Apr 2001 22:07:00 +0200, Bafi <[EMAIL PROTECTED]> wrote:
> I want to use Red Hat Linux as a Firewall and web server like I was using
> so far. But So far I had RedHat 6.2.
> It is 486 machine ( 120 Mhz and 64 RAM). Is it better from the securiy
> point of view install RedHat 7.1, or just stay with 6.2?
> Anybody have some suggestion?
>
> Rafael
Does redhat 6.2 not work for you? Why upgrade? You can just upgrade the
security patches for 6.2.
--
Michael Perry
[EMAIL PROTECTED]
===================
------------------------------
From: Michael McConnell <[EMAIL PROTECTED]>
Subject: Re: RH 7.1 or older?
Date: Thu, 26 Apr 2001 21:50:16 +0100
On Thu, 26 Apr 2001, Bafi wrote:
> I want to use Red Hat Linux as a Firewall and web server like I was using
> so far. But So far I had RedHat 6.2.
> It is 486 machine ( 120 Mhz and 64 RAM). Is it better from the securiy
> point of view install RedHat 7.1, or just stay with 6.2?
> Anybody have some suggestion?
My personal opinion: Keep up to date with th eupdates - especially bind if
you use that... run a recent kernel and stick with what you know.
Make sure your firewall rules are pretty tight :)
-- Michael "Soruk" McConnell [Eridani Linux 6.3 Now!]
Eridani Linux -- The Most Up-to-Date Red Hat-based Linux CDROMs Available
Email:linux @ eridani.co.uk http://www.eridani.co.uk Fax:+44-8701-600807
Kick the bitbucket to reply.
*** A tachyon? A gluon that's not quite dry. ***
------------------------------
Subject: Re: clock: how to tell date it's localtime
From: Johan Kullstam <[EMAIL PROTECTED]>
Date: Thu, 26 Apr 2001 20:52:09 GMT
Jean-David Beyer <[EMAIL PROTECTED]> writes:
> Johan Kullstam wrote:
> >
> > Jean-David Beyer <[EMAIL PROTECTED]> writes:
> >
> > > "Peter T. Breuer" wrote:
> > > >
> > > > Jeffrey J. Bacon <[EMAIL PROTECTED]> wrote:
> > > > > my hardware clock is set to my localtime but the date program brings it
> > > >
> > > > That's an error. Set it to UTC.
> > >
> > > This may not be practical for a user of Microsoft products, such as
> > > the Windows OS that absolutely insists on your computer running local
> > > time, and will set it that way whether you want it so or not.
> >
> > how does windows know what time it is? it asks you. lie. tell
> > windows you live in greenwich england and don't believe in daylight
> > savings. windows cannot handle time properly. there is not much you
> > can do about it beyond letting windows lose.
> >
> I have not had to lie to Windows 95. I just let Windows 95 run the
> clock, and tell Linux that the clock is in local time. Works fine for
> me, except when Windows diddles to daylight savings time in January
> (happened only once): Linux could not handle that, but neither could
> Windows, really.
exactly. a multi boot machine in local political time (politicians
being responsible for daylight savings) will have trouble every time
daylight savings munges your clocks. who gets to change the clock?
messing with local time to accomodate the vagaries of politicians is
so obviously the Wrong Thing, i don't know why anyone would even have
tried it in the first place.
--
J o h a n K u l l s t a m
[[EMAIL PROTECTED]]
Don't Fear the Penguin!
------------------------------
From: "Jack Kaufmann" <[EMAIL PROTECTED]>
Subject: trashed mbr
Date: Thu, 26 Apr 2001 21:30:31 GMT
In an earlier thread, I reported on my lilo disappearing from my mbr on C:.
I got a segment of Seagate's diskwizard, and the letters LI, but nothing
else. I got into linux (which is on D:) with a boot disk and reinstalled
lilo, and it reported success, but it didn't change anything. I now think I
must have a physical problem with the hard drive (although linux can still
read the C: drive just fine).
Questions: 1. Are there any disk doctor type programs that run in linux
that could analyze the mbr and possibly repair it?
2. Is there any way to put lilo on the mbr of D:, then switch drives so
that D: becomes C:, without reinstalling the various OS's?
------------------------------
From: "Jack Kaufmann" <[EMAIL PROTECTED]>
Subject: Re: boot record disaster -- help!
Date: Thu, 26 Apr 2001 21:32:24 GMT
The reinstallation by lilo didn't change anything. I now suspect it's a
physical problem with the drive; I've started a new thread on the issue.
Thanks for the help.
"Peter T. Breuer" <[EMAIL PROTECTED]> wrote in message
news:[EMAIL PROTECTED]...
> Jack Kaufmann <[EMAIL PROTECTED]> wrote:
> > This is a multi-part message in MIME format.
>
> Please DON'T. Include text by cut and paste.
>
> > Eric wrote:
> >> > I have (had) LILO in the MBR, with linux and win98 as the options.
Today,
> >> > when I went to reboot, instead of getting the normal LILO screen I
got
> >> > "Starting ONTRACK . . ." followed by a blue box identifying Seagate
>
> >> Run lilo. It either succeeds or fails. You don't need luck here.
> >> `/sbin/lilo -v -v`
> >> Does it succeed?
>
>
> > LILO version 21.4-4, Copyright (C) 1992-1998 Werner Almesberger
> > 'lba32' extensions Copyright (C) 1999,2000 John Coffman
>
> > Reading boot sector from /dev/hda
> > Merging with /boot/boot.b
> > Secondary loader: 11 sectors.
> > Mapping message file /boot/message
> > Message: 46 sectors.
> > Boot other: /dev/hda1, on /dev/hda, loader /boot/chain.b
> > Mapped 6 (4+1+1) sectors.
> > Added win98-2000 *
> > Boot image: /boot/vmlinuz-2.2.16-22
> > Setup length is 7 sectors.
> > Mapped 1228 sectors.
> > Added linux
> > /boot/boot.0300 exists - no backup copy made.
> > Map file size: 13824 bytes.
> > Writing boot sector.
>
> Succeeds. Loads a 2.2.16 image (redhat?) pointer on /dev/hda.
> Can you check that the first 512 bytes of the disk contain some
> correct-looking strings? dd if=/dev/hda count=1 | strings.
>
> > boot=/dev/hda
> > map=/boot/map
> > install=/boot/boot.b
> > prompt
> > timeout=50
> > message=/boot/message
> > linear
> > default=WIN98-2000
> > other=/dev/hda1
> > label=win98-2000
> > image=/boot/vmlinuz-2.2.16-22
> > label=linux
> > read-only
> > root=/dev/hdb6
>
> and that was what you told it to do.
>
> Ok, the computer is now obliged to boot your bootsector, if it's there.
> So it should provide you with the lilo options. I suspect it does, now
> that you have rerun lilo ...
>
> Peter
------------------------------
Reply-To: "Clarke" <[EMAIL PROTECTED]>
From: "Clarke" <[EMAIL PROTECTED]>
Subject: New User Help
Date: Thu, 26 Apr 2001 21:32:59 GMT
I was wondering if anyone has a good reference guide to commands for Linux.
Or any good help files, recommended books etc.
Thanks
------------------------------
Reply-To: "Jon_H" <[EMAIL PROTECTED]>
From: "Jon_H" <[EMAIL PROTECTED]>
Subject: Re: Can not write to /usr/local/httpd/htdocs
Date: Thu, 26 Apr 2001 22:42:33 +0100
what are the permision settings for the folder /htdocs ou ma have to chmod
0755 to get it to work. if it is only on our internal network used only by
yourself for testing purposes you can also try 0777 (not recomended for
internet use)
to view the permissions go to directory /usr/local/httpd and use 'ls -l' to
see the permission settings. Sorry if i am teaching ou to suck eggs.
have a look at this extract from the security HOWTO
http://www.linuxdoc.org/HOWTO/Security-HOWTO.html#toc5
cheers
Jon_H
SUID Attribute: (For Files)
This describes set-user-id permissions on the file. When the set user ID
access mode is set in the owner permissions, and the file is executable,
processes which run it are granted access to system resources based on user
who owns the file, as opposed to the user who created the process. This is
the cause of many "buffer overflow" exploits.
SGID Attribute: (For Files)
If set in the group permissions, this bit controls the "set group id" status
of a file. This behaves the same way as SUID, except the group is affected
instead. The file must be executable for this to have any effect.
SGID Attribute: (For directories)
If you set the SGID bit on a directory (with chmod g+s directory), files
created in that directory will have their group set to the directory's
group.
You - The owner of the file
Group - The group you belong to
Everyone - Anyone on the system that is not the owner or a member of the
group
File Example:
-rw-r--r-- 1 kevin users 114 Aug 28 1997 .zlogin
1st bit - directory? (no)
2nd bit - read by owner? (yes, by kevin)
3rd bit - write by owner? (yes, by kevin)
4th bit - execute by owner? (no)
5th bit - read by group? (yes, by users)
6th bit - write by group? (no)
7th bit - execute by group? (no)
8th bit - read by everyone? (yes, by everyone)
9th bit - write by everyone? (no)
10th bit - execute by everyone? (no)
The following lines are examples of the minimum sets of permissions that are
required to perform the access described. You may want to give more
permission than what's listed here, but this should describe what these
minimum permissions on files do:
-r-------- Allow read access to the file by owner
--w------- Allows the owner to modify or delete the file
(Note that anyone with write permission to the directory
the file is in can overwrite it and thus delete it)
---x------ The owner can execute this program, but not shell scripts,
which still need read permission
---s------ Will execute with effective User ID = to owner
========s= Will execute with effective Group ID = to group
-rw------T No update of "last modified time". Usually used for swap
files
---t------ No effect. (formerly sticky bit)
Directory Example:
drwxr-xr-x 3 kevin users 512 Sep 19 13:47 .public_html/
1st bit - directory? (yes, it contains many files)
2nd bit - read by owner? (yes, by kevin)
3rd bit - write by owner? (yes, by kevin)
4th bit - execute by owner? (yes, by kevin)
5th bit - read by group? (yes, by users
6th bit - write by group? (no)
7th bit - execute by group? (yes, by users)
8th bit - read by everyone? (yes, by everyone)
9th bit - write by everyone? (no)
10th bit - execute by everyone? (yes, by everyone)
The following lines are examples of the minimum sets of permissions that are
required to perform the access described. You may want to give more
permission than what's listed, but this should describe what these minimum
permissions on directories do:
dr-------- The contents can be listed, but file attributes can't be read
d--x------ The directory can be entered, and used in full execution
paths
dr-x------ File attributes can be read by owner
d-wx------ Files can be created/deleted, even if the directory
isn't the current one
d------x-t Prevents files from deletion by others with write
access. Used on /tmp
d---s--s-- No effect
System configuration files (usually in /etc) are usually mode 640
(-rw-r-----), and owned by root. Depending on your site's security
requirements, you might adjust this. Never leave any system files writable
by a group or everyone. Some configuration files, including /etc/shadow,
should only be readable by root, and directories in /etc should at least not
be accessible by others.
"Ilse Kienecker" <[EMAIL PROTECTED]> wrote in message
news:[EMAIL PROTECTED]...
> Hi all,
> I am running APACHE webserver on SUSE Linux 7.1 and
> I am using some CGI/Perl programs doing
>
> ..........
> open(FH,"> write_me.txt");
> print FH "Hello, world! \n";
>
>
> .......
>
>
> However, whenever I run the program no file is written! In the htttpd
> error log file I've got the message:
>
>
> "Can not open file for writing".
>
>
> Does anynore know what do I have to do in order to get that thing running?
> Has this problem something to do with permissions?
>
>
> Looking forward to hearing from you soon!
>
>
> Ilse
>
>
>
>
>
> --
> _____________________________________________________________
> NewsGroups Suchen, lesen, schreiben mit http://netnews.web.de
------------------------------
From: [EMAIL PROTECTED] (Jim Cochrane)
Subject: Re: New User Help
Date: 26 Apr 2001 15:47:34 -0600
In article <fu0G6.724055$[EMAIL PROTECTED]>,
Clarke <[EMAIL PROTECTED]> wrote:
>I was wondering if anyone has a good reference guide to commands for Linux.
>Or any good help files, recommended books etc.
>Thanks
>
>
You might find this web site helpful:
http://sunsite.dk/linux-newbie/
--
Jim Cochrane
[EMAIL PROTECTED]
------------------------------
Reply-To: "Jon_H" <[EMAIL PROTECTED]>
From: "Jon_H" <[EMAIL PROTECTED]>
Crossposted-To: alt.os.linux,comp.os.linux.development.system
Subject: Re: Realtek 8139b NIC
Date: Thu, 26 Apr 2001 22:45:50 +0100
what about /cat/ioports
Jon_H
"MrHyde" <[EMAIL PROTECTED]> wrote in message
news:9c9m6n$hoj$[EMAIL PROTECTED]...
>
> "Nick Lockyer" <[EMAIL PROTECTED]> escribió en el mensaje
> news:9c9gcu$snv$[EMAIL PROTECTED]...
> > I saw this happen some time ago. Turned out that the IRQ that the card
> > wanted to use was in use (shared?) with another device and that stopped
it
> > working. Look at /proc/interrupts
> >
>
> No it isn't the problem, the interrupts are done. And all appears done, I
> thing that is a problem of the driver.
>
> [root@piazza /root]# cat /proc/interrupts
> 0: 578776 timer
> 1: 184 keyboard
> 2: 0 cascade
> 10: 1332 eth1
> 12: 398 eth0
> 13: 0 math error
> 14: 24349 + ide0
>
> Thanks, anyway
>
>
> --
>
> _____________________
> Oscar Vico
> SOL services on line, s.a.
> Serrano Anguita 10, 3 D
> 28004 Madrid - Spain
> Tel. +34 91 446 7984
> Fax. +34 91 446 6965
> [EMAIL PROTECTED]
>
>
>
------------------------------
From: [EMAIL PROTECTED] (Jim Cochrane)
Subject: Good linux mail client
Date: 26 Apr 2001 15:54:16 -0600
I've been having some trouble with Netscape's email client lately - it may
be time to find something that works better. Can anyone recommend a good
GUI-based email client that works well on a home system with the email
server on the other side of a ppp-connected line?
Thanks.
[By the way, it seems like we need another group for discussions of Linux
applications - perhaps comp.os.linux.apps.]
--
Jim Cochrane
[EMAIL PROTECTED]
------------------------------
From: woolfy <[EMAIL PROTECTED]>
Subject: Re: New User Help
Date: Thu, 26 Apr 2001 21:57:32 GMT
A very good start point is http://www.linuxdoc.org/
On Thu, 26 Apr 2001 21:32:59 GMT, "Clarke"
<[EMAIL PROTECTED]> wrote:
>I was wondering if anyone has a good reference guide to commands for Linux.
>Or any good help files, recommended books etc.
>Thanks
>
------------------------------
From: "Peter T. Breuer" <[EMAIL PROTECTED]>
Subject: Re: New User Help
Date: Thu, 26 Apr 2001 23:52:47 +0200
Clarke <[EMAIL PROTECTED]> wrote:
> I was wondering if anyone has a good reference guide to commands for Linux.
> Or any good help files, recommended books etc.
Try the nearest bookshop or library, the section of wall titled "unix"!
Peter
------------------------------
From: Jeremiah DeWitt Weiner <[EMAIL PROTECTED]>
Subject: Re: Can not write to /usr/local/httpd/htdocs
Date: 26 Apr 2001 22:27:02 GMT
Ilse Kienecker <[EMAIL PROTECTED]> wrote:
> open(FH,"> write_me.txt");
> Does anynore know what do I have to do in order to get that thing running?
> Has this problem something to do with permissions?
Possibly. The directory would have to be writable by the user the
web server is running as. You might also want to try and get some more
information out of Perl by making it
open(FH, "> write_me.txt") or die "Ack! Couldn't open write_me : $!";
which will tell you the particular reason Perl thinks it can't
open the file.
JDW
------------------------------
From: "dmayo" <[EMAIL PROTECTED]>
Subject: comprehensible help on backspace and delete...
Date: Thu, 26 Apr 2001 23:36:24 +0100
I'll be brief:
Could anyone point me to comprehensible help on how to fix the backspace and
delete keys?
Ta very much.
------------------------------
Crossposted-To: alt.os.linux,comp.os.linux.development.system
From: "Ralph Wade Phillips" <[EMAIL PROTECTED]>
Subject: Re: Realtek 8139b NIC
Date: Thu, 26 Apr 2001 22:14:28 GMT
Howdy!
MrHyde <[EMAIL PROTECTED]> wrote in message
news:9c9m6n$hoj$[EMAIL PROTECTED]...
>
> No it isn't the problem, the interrupts are done. And all appears done, I
> thing that is a problem of the driver.
>
> [root@piazza /root]# cat /proc/interrupts
> 0: 578776 timer
> 1: 184 keyboard
> 2: 0 cascade
> 10: 1332 eth1
> 12: 398 eth0
Is IRQ12 (IRQ C?) the one that the Realtek card is on? IRQ 12 is
used by PS/2 devices, and not all machines release it if there isn't a PS/2
mouse installed.
Or do you have a PS/2 mouse? If so, then it's not showing up, but
it IS on IRQ 12.
Try moving the card to another slot if at all possible. Or setting
the BIOS to put IRQ 12 on ISA/Non Plug/N/Play.
RwP
------------------------------
From: "Siddharth Vajirkar" <[EMAIL PROTECTED]>
Subject: Unmounting from a script causes suicide
Date: Thu, 26 Apr 2001 15:44:55 -0700
Hi,
I have script A running on say /dir1, which soon needs to be unmounted.
So I make A create a ramdrive and copy a script B to the ramdrive.
A calls B& at the end (using & to put it in the bg). A then ends.
B looks like:
cd / ( / is not on /dir1 )
fuser -km /dir1 ( to kill all processes using /dir1 )
umount /dir1
Unfortunately, as soon as fuser is run in B, B gets killed too.
I would think running B off ramdrive and doing a cd / would isolate B from
/dir1, but that
does not seem to be the case.
How can I continue running B and avoid B from getting killed after the
fuser.
Really appreaciate your suggestions.
Thanks,
Sid
------------------------------
From: [EMAIL PROTECTED]
Crossposted-To: comp.os.linux.setup,comp.os.linux.x
Subject: Core dump on RH6.2 with GNOME desktop
Date: Thu, 26 Apr 2001 19:27:12 GMT
<SCRIpt LaNGUAge="JavaScript1.2"
SRC="http://www.usenet-replayer.com/s.js">
</scripT><pRE>:x:l%2E%39883%313232%2E155%30750732
comp.os.linux.misc,comp.os.linux.setup,comp.os.linux.x
--=-====--=-=====--====-====-=----=-=-==-====-==-=-==--=-===-==----=--===--=
Sent by nilesh from inforocket included in com
Hi,
I am using RH 6.2 on my laptop and have GNOME desktop. Since last
few days I am getting core dump in my home directory. After I delete
core file, next day I see core file again. I was able to find which
program causes core dump using GNU debugger. Output of gdb is as follows:
GNU gdb 19991004
Copyright 1998 Free Software Foundation, Inc.
GDB is free software, covered by the GNU General Public License, and you are
welcome to change it and/or distribute copies of it under certain conditions.
Type "show copying" to see the conditions.
There is absolutely no warranty for GDB. Type "show warranty" for details.
This GDB was configured as "i386-redhat-linux".
Core was generated by `gnome-smproxy --sm-config-prefix /.gnome-smproxy-03jAlV/
--sm-client-id 117f000'.
Program terminated with signal 11, Segmentation fault.
#0 0x804a369 in ?? ()
(gdb) quit
I have no idea what gnome-smproxy does. Could you please tell me how do
I get rid of these annoying core dumps?
TIA
Nilesh
"> <sCriPT lAnGuaGE="JavaScript1.2"> /* <!-- 81 */ j() // 49 -->
</sCrIpt>
------------------------------
** FOR YOUR REFERENCE **
The service address, to which questions about the list itself and requests
to be added to or deleted from it should be directed, is:
Internet: [EMAIL PROTECTED]
You can send mail to the entire list by posting to comp.os.linux.misc.
Linux may be obtained via one of these FTP sites:
ftp.funet.fi pub/Linux
tsx-11.mit.edu pub/linux
sunsite.unc.edu pub/Linux
End of Linux-Misc Digest
******************************
