Re: Wierd kern logs
it could be someone trying to exploit the rpc service please tell me you're not running rpc on a box that's visible to the net =) -- Daniel Quinlan [EMAIL PROTECTED] Netwise Australia ph: 07 3252 8111 "Engineering Your Network Solution" fax: 07 3216 0226 -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: apache_1.3.12 SSL error
I've just installed apache_1.3.12 and when I start apache ssl I get the following error :/# /etc/apache1/bin/apachectl startssl Syntax error on line 1024 of /etc/apache1/conf/httpd.conf: Invalid command 'SSLEngine', perhaps mis-spelled or defined by a module not included in the server configuration /etc/apache1/bin/apachectl startssl: httpd could not be started Any help would be greatly appreciated Make sure the LoadModule directive for mod_ssl comes before any SSL directives in the config file. This is an extract from my httpd.conf as generated, can someone see what is wrong?? ## SSL Global Context ## ## All SSL configuration in this context applies both to ## the main server and all SSL-enabled virtual hosts. ## # # Some MIME-types for downloading Certificates and CRLs # IfDefine SSL AddType application/x-x509-ca-cert .crt AddType application/x-pkcs7-crl.crl /IfDefine IfModule mod_ssl.c # Pass Phrase Dialog: # Configure the pass phrase gathering process. # The filtering dialog program (`builtin' is a internal # terminal dialog) has to provide the pass phrase on stdout. SSLPassPhraseDialog builtin # Inter-Process Session Cache: # Configure the SSL Session Cache: First either `none' # or `dbm:/path/to/file' for the mechanism to use and # second the expiring timeout (in seconds). #SSLSessionCachenone #SSLSessionCache shm:/etc/apache1/logs/ssl_scache(512000) SSLSessionCache dbm:/etc/apache1/logs/ssl_scache SSLSessionCacheTimeout 300 # Semaphore: # Configure the path to the mutual explusion semaphore the # SSL engine uses internally for inter-process synchronization. SSLMutex file:/etc/apache1/logs/ssl_mutex # Pseudo Random Number Generator (PRNG): # Configure one or more sources to seed the PRNG of the # SSL library. The seed data should be of good random quality. # WARNING! On some platforms /dev/random blocks if not enough entropy # is available. This means you then cannot use the /dev/random device # because it would lead to very long connection times (as long as # it requires to make more entropy available). But usually those # platforms additionally provide a /dev/urandom device which doesn't # block. So, if available, use this one instead. Read the mod_ssl User # Manual for more details. SSLRandomSeed startup builtin SSLRandomSeed connect builtin #SSLRandomSeed startup file:/dev/random 512 #SSLRandomSeed startup file:/dev/urandom 512 #SSLRandomSeed connect file:/dev/random 512 #SSLRandomSeed connect file:/dev/urandom 512 # Logging: # The home of the dedicated SSL protocol logfile. Errors are # additionally duplicated in the general error log file. Put # this somewhere where it cannot be used for symlink attacks on # a real server (i.e. somewhere where only root can write). # Log levels are (ascending order: higher ones include lower ones): # none, error, warn, info, trace, debug. SSLLog /etc/apache1/logs/ssl_engine_log SSLLogLevel info /IfModule IfDefine SSL ## ## SSL Virtual Host Context ## VirtualHost _default_:443 # General setup for the virtual host DocumentRoot "/etc/apache1/htdocs" ServerName computer.domain.name ServerAdmin [EMAIL PROTECTED] ErrorLog /etc/apache1/logs/error_log TransferLog /etc/apache1/logs/access_log # SSL Engine Switch: # Enable/Disable SSL for this virtual host. SSLEngine on # SSL Cipher Suite: # List the ciphers that the client is permitted to negotiate. # See the mod_ssl documentation for a complete list. #SSLCipherSuite ALL:!ADH:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP:+eNULL -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Very slow login
On Wed, 28 Jun 2000, Áts Attila wrote: Dear group, I've installed a server. Logging in at the console is very fast. But when I make a connection through Teknet or FTP it takes very long to get the login prompt. What can be the problem and the solution? Regards Attila It sounds like either identd or lack of reverse lookup entries in the DNS. /Roger - Roger Abrahamsson, Senior System/Network Admin Obbit AB Radhusespl.17D, S-90328 Umea, Sweden Phone: (+46)(0)90 133310Fax:(+46)(0)90 133370 -
Re: apache_1.3.12 SSL error
I've just installed apache_1.3.12 and when I start apache ssl I get the following error :/# /etc/apache1/bin/apachectl startssl Syntax error on line 1024 of /etc/apache1/conf/httpd.conf: Invalid command 'SSLEngine', perhaps mis-spelled or defined by a module not included in the server configuration /etc/apache1/bin/apachectl startssl: httpd could not be started Any help would be greatly appreciated Make sure the LoadModule directive for mod_ssl comes before any SSL directives in the config file. This is an extract from my httpd.conf as generated, can someone see what is wrong?? ## SSL Global Context ## ## All SSL configuration in this context applies both to ## the main server and all SSL-enabled virtual hosts. ## # # Some MIME-types for downloading Certificates and CRLs # IfDefine SSL AddType application/x-x509-ca-cert .crt AddType application/x-pkcs7-crl.crl /IfDefine IfModule mod_ssl.c # Pass Phrase Dialog: # Configure the pass phrase gathering process. # The filtering dialog program (`builtin' is a internal # terminal dialog) has to provide the pass phrase on stdout. SSLPassPhraseDialog builtin # Inter-Process Session Cache: # Configure the SSL Session Cache: First either `none' # or `dbm:/path/to/file' for the mechanism to use and # second the expiring timeout (in seconds). #SSLSessionCachenone #SSLSessionCache shm:/etc/apache1/logs/ssl_scache(512000) SSLSessionCache dbm:/etc/apache1/logs/ssl_scache SSLSessionCacheTimeout 300 # Semaphore: # Configure the path to the mutual explusion semaphore the # SSL engine uses internally for inter-process synchronization. SSLMutex file:/etc/apache1/logs/ssl_mutex # Pseudo Random Number Generator (PRNG): # Configure one or more sources to seed the PRNG of the # SSL library. The seed data should be of good random quality. # WARNING! On some platforms /dev/random blocks if not enough entropy # is available. This means you then cannot use the /dev/random device # because it would lead to very long connection times (as long as # it requires to make more entropy available). But usually those # platforms additionally provide a /dev/urandom device which doesn't # block. So, if available, use this one instead. Read the mod_ssl User # Manual for more details. SSLRandomSeed startup builtin SSLRandomSeed connect builtin #SSLRandomSeed startup file:/dev/random 512 #SSLRandomSeed startup file:/dev/urandom 512 #SSLRandomSeed connect file:/dev/random 512 #SSLRandomSeed connect file:/dev/urandom 512 # Logging: # The home of the dedicated SSL protocol logfile. Errors are # additionally duplicated in the general error log file. Put # this somewhere where it cannot be used for symlink attacks on # a real server (i.e. somewhere where only root can write). # Log levels are (ascending order: higher ones include lower ones): # none, error, warn, info, trace, debug. SSLLog /etc/apache1/logs/ssl_engine_log SSLLogLevel info /IfModule IfDefine SSL ## ## SSL Virtual Host Context ## VirtualHost _default_:443 # General setup for the virtual host DocumentRoot /etc/apache1/htdocs ServerName computer.domain.name ServerAdmin [EMAIL PROTECTED] ErrorLog /etc/apache1/logs/error_log TransferLog /etc/apache1/logs/access_log # SSL Engine Switch: # Enable/Disable SSL for this virtual host. SSLEngine on # SSL Cipher Suite: # List the ciphers that the client is permitted to negotiate. # See the mod_ssl documentation for a complete list. #SSLCipherSuite ALL:!ADH:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP:+eNULL
chrooted bind
Hello all, Im trying to chrooting bind. I carefully read http://www.psionic.com/papers/dns/dns-linux and chrooted bind work now, but ! when trying to zone transfer can't exec /usr/sbin/named-xfer: No such file or directory Best regards, Ant mailto:[EMAIL PROTECTED]
Re: chrooted bind
http://www.psionic.com/papers/dns/dns-linux and chrooted bind work now, but ! when trying to zone transfer can't exec /usr/sbin/named-xfer: No such file or directory is /usr/sbin/named-xfer present in your chrooted environment? hmm, never did it though,
Re: apache_1.3.12 SSL error
Hi guys, First, I haven't read this message stream closely, so I have probably missed something. I would suggest removing and reinstalling the package from the debian site. You may want to remove the 'standard' apache as well. I had looked at that package sometime back and it worked first try. Best of luck. Greg *** REPLY SEPARATOR *** On 6/29/00 at 5:34 PM Dariush Pietrzak wrote: mod_ssl module (I think that's what you asked the first time). Does it not work for you? It doesen't: apt-get install apache-perl libapache-asp-perl Reading Package Lists... Done Building Dependency Tree... Done The following packages will be REMOVED: apache libapache-mod-ssl The following NEW packages will be installed: apache-perl libapache-asp-perl is there something wrong with dependencies? or maybe there's some reason for that situation? regards, confused Eyck -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: apache_1.3.12 SSL error
On Thu, Jun 29, 2000 at 05:34:40PM +0200, Dariush Pietrzak wrote:
mod_ssl module (I think that's what you asked the first time). Does
it not work for you?
It doesen't:
apt-get install apache-perl libapache-asp-perl Reading Package Lists...
Done Building Dependency Tree... Done The following packages will be
REMOVED:
apache libapache-mod-ssl The following NEW packages will be installed:
apache-perl libapache-asp-perl
is there something wrong with dependencies? or maybe there's some reason
for that situation?
Ok, here's the deal ... libapache-mod-ssl depends on apache, and even
though apache-perl provides apache the dependency isn't satisfied. i
think that's because the apache dependency is version specific, but
that's a guess. IANADD.
I compiled my own libapache-mod-ssl package and editted the
Depends: line in the debian/control file.
I changed this:
Depends: ${shlibs:Depends}, openssl, apache (= 1.3.9-1), apache (=
1.3.9-99), make
to this:
Depends: ${shlibs:Depends}, openssl, apache (= 1.3.9-1) | apache-perl (=
1.3.9-1), apache (= 1.3.9-99) | apache-perl (= 1.3.9-13.1-1.21.2309-1),
make
Ugly, but it installs. You need apache-dev and libssl09-dev from
potato.
--
Nathan Norman Eschew Obfuscation Network Engineer
GPG Key ID 1024D/51F98BB7http://home.midco.net/~nnorman/
Key fingerprint = C5F4 A147 416C E0BF AB73 8BEF F0C8 255C 51F9 8BB7
pgpEImKFNyYw1.pgp
Description: PGP signature
Re: chrooted bind
On Thu, 29 Jun 2000, Ant wrote: Hello all, Im trying to chrooting bind. I carefully read http://www.psionic.com/papers/dns/dns-linux and chrooted bind work now, but ! when trying to zone transfer can't exec /usr/sbin/named-xfer: No such file or directory chmod +x $CHROOTDIR/lib/ld-linux.so.2 -- [-] there's a devil waiting outside your door -- -- a legintelligensebb liposzmk segtsg nlkl jutnak el a 25.000 - forintos krdsig.
