Re: A Linux version of system and network monitoring?
Crawford Rainwater wrote: > > Folks, > > Does anyone know of a Linux based system and network > monitoring program out there? Similar to Tivoli or > HP OpenView, preferably under GPL and free? If so, > links and such would be great. > > This would be used to monitor a remote system being > "up" or "down" along with potentially UPS networked > device as well. > > Thanks in advance. http://www.kernel.org/software/mon/ ? @+ -- DouRiX > > --- Crawford > > The I.T.E.C. Company > P.M.B. 146 > 368 South McCaslin Boulevard > Louisville, CO 80027 USA > (303) 604-2550 (voice) > (866) 604-2550 (toll free) > (303) 664-0036 (fax) > http://www.itec-co.com > > > * > The Information transmitted in this email is intended for the addressee only > and may contain confidential and/or privileged material. > > Any review, retransmission or other use of the contents by persons other > than the addressee is prohibited. > If you have received this email in error, please contact the sender and > delete the material. > > This message has been scanned by Norton Anti-Virus. > > -- > To UNSUBSCRIBE, email to [EMAIL PROTECTED] > with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED] -- Do-Risika RAFIEFERANTSIARONJY, SysAdmin mailto:[EMAIL PROTECTED] Simicro Internet, mailto:[EMAIL PROTECTED], http://internet.simicro.mg Tel : (+261) 20 22 648 83 (GMT +3), Fax : (+261) 20 22 661 83 -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: A Linux version of system and network monitoring?
29 Apr 2002, Crawford Rainwater wrote: > Folks, > > Does anyone know of a Linux based system and network > monitoring program out there? Similar to Tivoli or > HP OpenView, preferably under GPL and free? If so, > links and such would be great. > > This would be used to monitor a remote system being > "up" or "down" along with potentially UPS networked > device as well. > > Thanks in advance. > > --- Crawford http://www.netsaint.org/ might be what your looking for. -- /Martin Grape Network and System Admin Trema (Europe) AB Email : [EMAIL PROTECTED]| Trema (Europe) AB Phone : +46-8-4061161 | Drottningatan 33, 1st floor GSM : +46-70-6326350| S-103 24 Stockholm, Sweden -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: apache woes with xxx.sh.gz
On Tue, 30 Apr 2002, Patrick Hsieh wrote: > When I add .sh in AddHandler in httpd.conf, I hope apache to consider it > as cgi file. However, if I put a xxx.sh.xxx (xxx could be any string) > under DocumentRoot and open a http client to get it, my apache server > will see it as a cgi file and get cgi error. This is unexpected, since > xxx.sh.xxx is not in the cgi handler afterall. But what could make this? Do you have a ScriptAlias directive? Anyways, what specific CGI error? Jeremy C. Reed echo 'G014AE824B0-07CC?/JJFFFI?D64CB>D=3C427=>;>6HI2>
Re: avoid user direct accec *.html
Hello Craig Sanders <[EMAIL PROTECTED]>, I was considering to put static files outsides documentroot, however, I'm afraid it will add the directory complexity. And you said a real authentication method could useful. How? Since they are just static files, I can't embed authentication in them, right? On Tue, 30 Apr 2002 14:07:21 +1000 Craig Sanders <[EMAIL PROTECTED]> wrote: > On Tue, Apr 30, 2002 at 02:12:03AM +0800, Patrick Hsieh wrote: > > If I want to avoid user to directly access my .html files, say type > > the complete url in the browser, is it possible? > > > > In PHP, I can check the HTTP_REFERER to make sure connections > > originates from the same website. If the HTTP_REFERER is empty or not > > belongs to the same website, I can redirect the client to another > > webpage. However, when it comes to static .html or even .jpg files, is > > it possible to configure apache to avoid that situation? > > no. > > you can't trust user-supplied data such as HTTP_REFERER for anything. > > "security" based on HTTP_REFERER is as dumb as "security" based on IP > address. it doesn't work, and it can't work (sorry, but "sort of works > sometimes in conditions completely outside of my control" does not > qualify as "works"). > > some browsers don't provide HTTP_REFERER, and some privacy-enhancing > proxies strip it from all requests. in addition, it is trivially easy > for anyone to forge HTTP_REFERER in any request. > > > if you don't want static html (or any other file type) to be directly > fetchable by end-users then don't put them under your document root. > > alternatively, use a real authentication method to restrict access. > > craig > > -- > craig sanders <[EMAIL PROTECTED]> > > Fabricati Diem, PVNC. > -- motto of the Ankh-Morpork City Watch -- Patrick Hsieh <[EMAIL PROTECTED]> GPG public key http://pahud.net/pubkeys/pahudatpahud.gpg -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
UML Diagrams for the IP protocol stack
Hi everyone, I have been looking for the UML diagrams of the IP protocol stacks. I just wonder if anyone knows of one. I thought I have seen/heard of one but don't remember where at this moment. Appreciate all the helps. Bao -- Bao C. Havoice: (310) 922-0137 8D66 6672 7A9B 6879 85CD 42E0 9F6C 7908 ED95 6B38 Primary Perpetrator of "Slackware Linux Unleashed" -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: avoid user direct accec *.html
On Tue, Apr 30, 2002 at 02:12:03AM +0800, Patrick Hsieh wrote: > If I want to avoid user to directly access my .html files, say type > the complete url in the browser, is it possible? > > In PHP, I can check the HTTP_REFERER to make sure connections > originates from the same website. If the HTTP_REFERER is empty or not > belongs to the same website, I can redirect the client to another > webpage. However, when it comes to static .html or even .jpg files, is > it possible to configure apache to avoid that situation? no. you can't trust user-supplied data such as HTTP_REFERER for anything. "security" based on HTTP_REFERER is as dumb as "security" based on IP address. it doesn't work, and it can't work (sorry, but "sort of works sometimes in conditions completely outside of my control" does not qualify as "works"). some browsers don't provide HTTP_REFERER, and some privacy-enhancing proxies strip it from all requests. in addition, it is trivially easy for anyone to forge HTTP_REFERER in any request. if you don't want static html (or any other file type) to be directly fetchable by end-users then don't put them under your document root. alternatively, use a real authentication method to restrict access. craig -- craig sanders <[EMAIL PROTECTED]> Fabricati Diem, PVNC. -- motto of the Ankh-Morpork City Watch -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: avoid user direct accec *.html
> "PH" == Patrick Hsieh <[EMAIL PROTECTED]> writes: [...] PH> In PHP, I can check the HTTP_REFERER to make sure connections PH> originates from the same website. If the HTTP_REFERER is empty PH> or not belongs to the same website, I can redirect the client PH> to another webpage. [...] Please do NOT do this. It will seem to work most of the time, but it will most certainly fail for perfectly valid requests. Both HTTP 1.0 and 1.1 leave it as optional. If you must control access in this manner I'd say use some session mechanism or come up with a method that doesn't break under perfectly valid client behaviour. cheers, BM -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
A Linux version of system and network monitoring?
Folks, Does anyone know of a Linux based system and network monitoring program out there? Similar to Tivoli or HP OpenView, preferably under GPL and free? If so, links and such would be great. This would be used to monitor a remote system being "up" or "down" along with potentially UPS networked device as well. Thanks in advance. --- Crawford The I.T.E.C. Company P.M.B. 146 368 South McCaslin Boulevard Louisville, CO 80027 USA (303) 604-2550 (voice) (866) 604-2550 (toll free) (303) 664-0036 (fax) http://www.itec-co.com * The Information transmitted in this email is intended for the addressee only and may contain confidential and/or privileged material. Any review, retransmission or other use of the contents by persons other than the addressee is prohibited. If you have received this email in error, please contact the sender and delete the material. This message has been scanned by Norton Anti-Virus. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Help with managing multiple debian boxes in a lab
Hi, I was wondering if anybody knew a good way to keep a Debian Lab with over 15 computers in sync with eachother as far as software goes? Doing an apt-get install for all of the machines seems redundant. Is there away to setup a master Debian host that can be accessed by of a slave to maintain the slaves as clones of the master? Thanks --bash -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Traffic analysis tools
webalizer and analog come to mind straight away. Webtrends is the big commercial one. There was another... Urchin... or something like that, that claims to have bigger clients that Webtrends, but don't quote me on that, i'm not 100% sure. The above should do well. Freshmeat and Google are your friends. Sincerely, Jason http://www.zentek-international.com/ - Original Message - From: "Craig" <[EMAIL PROTECTED]> To: "Debian-ISP" <[EMAIL PROTECTED]> Sent: Monday, April 29, 2002 9:29 PM Subject: Traffic analysis tools > Hi Guys > > I am looking for traffic analysis tools for Apache > virtual hosts, any suggestions on what works well > and is relativley easy to configure ?> > > ..Craig :) > > > -- > To UNSUBSCRIBE, email to [EMAIL PROTECTED] > with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED] > > -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
apache woes with xxx.sh.gz
Hello list, When I add .sh in AddHandler in httpd.conf, I hope apache to consider it as cgi file. However, if I put a xxx.sh.xxx (xxx could be any string) under DocumentRoot and open a http client to get it, my apache server will see it as a cgi file and get cgi error. This is unexpected, since xxx.sh.xxx is not in the cgi handler afterall. But what could make this? -- Patrick Hsieh <[EMAIL PROTECTED]> GPG public key http://pahud.net/pubkeys/pahudatpahud.gpg -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Compiling RAID drivers in versus out (as a module)
Hi All, I would like to make the extremely important yet rarely mentioned fact that you should always compile critical drivers directly into the kernel and not as some module (all the essentials, like the 3w- driver if you have 3ware cards, etc.). The reason being is that if anything ever stuffs up (and you know it will happen, its only a matter of time), then at least you should have access to your RAID setup and other critical components... compiling as a module only adds an extra spanner into the works, and adds an extra chance that something has gone wrong on that side of things (and hence more debugging/troubleshooting when the big time comes that your server crashes for no reason, etc.). Just thought I'd point that out, although most of you on this list would already know that :-) (at least i hope you would ;-) ). Sincerely, Jason http://www.zentek-international.com - Original Message - From: "Tomasz Papszun" <[EMAIL PROTECTED]> To: "Andrew Kaplan" <[EMAIL PROTECTED]> Cc: <[EMAIL PROTECTED]> Sent: Monday, April 29, 2002 10:51 PM Subject: Re: installing adaptec 2400a RAID card > On Sun, 28 Apr 2002 at 13:03:10 -0400, Andrew Kaplan wrote: > > How do I install debain ( 2.2.r_6)with an Adaptec 2400a RAID card. On the CD > > I only see RedHat and Suse. > > > > Thanks, > > > > Andrew P. Kaplan > > Network Administrator > > CyberShore, Inc. > > http://www.cshore.com > > I have installed Debian potato on a machine with Adaptec 2100S RAID > controller. I don't know whether 2400a uses the same driver. > > It would be rather time-consuming for me to describe exactly the way I've > done it (English isn't my native language). > > Shortly: on another machine I have had to compile the kernel with > the dpt_i2o driver included (_not_ as a module). Having this new kernel, I > have replaced a kernel on a installation floppy with the new kernel. > During the installation I have had to do some "manual" changes. > > If above description isn't sufficient, write and I'll try to find the > details. > > Hope that helps > -- > Tomasz Papszun SysAdm @ TP S.A. Lodz, Poland | And it's only > [EMAIL PROTECTED] http://www.lodz.tpsa.pl/ | ones and zeros. > > > -- > To UNSUBSCRIBE, email to [EMAIL PROTECTED] > with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED] > > -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: avoid user direct accec *.html
Hello "Arthur H. Johnson II" <[EMAIL PROTECTED]>, OK. My situation is: If I want to avoid user to directly access my .html files, say type the complete url in the browser, is it possible? In PHP, I can check the HTTP_REFERER to make sure connections originates from the same website. If the HTTP_REFERER is empty or not belongs to the same website, I can redirect the client to another webpage. However, when it comes to static .html or even .jpg files, is it possible to configure apache to avoid that situation? On Mon, 29 Apr 2002 09:05:44 -0400 (EDT) "Arthur H. Johnson II" <[EMAIL PROTECTED]> wrote: > > Not sure I understand your question. > > -- > > Arthur H. Johnson II > Senior Systems Engineer > > The Linux Box > 206 S. Fifth Ave. Suite 150 > Ann Arbor, MI 48104 > > tel. 734-761-4689 > fax. 734-769-8938 > pgr. 734-882-0323 > > On Mon, 29 Apr 2002, Patrick Hsieh wrote: > > > Hello, > > > > In apache, if I want to avoid user directly access .html or .htm file, > > is it possible? > > > > I hope user will always use http://domain.con/dir/ or > > http://domain.con/dir/index.php, instead of direct access static .html > > or .htm file(referral access is ok). Is it possible in configuration? > > > > > > -- Patrick Hsieh <[EMAIL PROTECTED]> GPG public key http://pahud.net/pubkeys/pahudatpahud.gpg -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Traffic analysis tools
On Mon, 29 Apr 2002 13:29, Craig wrote: > I am looking for traffic analysis tools for Apache > virtual hosts, any suggestions on what works well > and is relativley easy to configure ?> At the time I wrote the tools in my logtools package for managing web logs it combined with Webalizer was (for my needs) the best way to do it, and the easiest way of getting results that I considered acceptable. Now that I've written the programs and some documentation for how to do it it's even easier for you than it was for me. -- If you send email to me or to a mailing list that I use which has >4 lines of legalistic junk at the end then you are specifically authorizing me to do whatever I wish with the message and all other messages from your domain, by posting the message you agree that your long legalistic sig is void. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Traffic analysis tools
On Mon, 29 Apr 2002, Craig wrote: > I am looking for traffic analysis tools for Apache > virtual hosts, any suggestions on what works well > and is relativley easy to configure ?> http://www.mrunix.net/webalizer/ Greetings, Richard. An OS is like swiss cheese, the bigger it is, the more holes you get! -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: avoid user direct accec *.html
Not sure I understand your question. -- Arthur H. Johnson II Senior Systems Engineer The Linux Box 206 S. Fifth Ave. Suite 150 Ann Arbor, MI 48104 tel. 734-761-4689 fax. 734-769-8938 pgr. 734-882-0323 On Mon, 29 Apr 2002, Patrick Hsieh wrote: > Hello, > > In apache, if I want to avoid user directly access .html or .htm file, > is it possible? > > I hope user will always use http://domain.con/dir/ or > http://domain.con/dir/index.php, instead of direct access static .html > or .htm file(referral access is ok). Is it possible in configuration? > > > -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
IP Masquerading and packet fragmentation problems
[ I realise that this may be off-topic for Debian-ISP, as I'm not an ISP. But the expertise is out there...] Since setting up a separate machine as firewall/router for my small home LAN, I've had problems with accessing large emails and certain web pages from machines on my LAN. Symptoms: The download of pages gets a few Kb, and then hangs. Short emails download OK, but for any large(ish) ones fetchmail gets a few KB after which it appears that nothing more is received (as if the pop3 server has hung itself) Oddly enough, when accessing the same emails and web pages from the firewall itself, everything works !? If I run tproxy (debian package: transproxy), and configure the firewall as a proxy in the browsers, the problem goes away. It is not 100% reproducible; it seems to be affected by other traffic on the line. I am beginning to suspect that it is packet fragmentation related; according to tcpdump, quite a few more packets appear on ppp0 (the internet connection) than on eth0 (my internal lan). I'm out of my depth here. Does my description above ring any bells? Any ideas to diagnose it will be welcome! The set-up: firewall: 2.4.18 kernel (ancient 66MHz 486dx, but it works :-) woody connects to ISP via diald/ppp. eth0 connected to home LAN (192.168.240.4/16) IP Masquerading, firewalling via shorewall (was quick to set up) DNS server with auth for LAN, forwarding for everything else DHCP server client: 2.4.18 kernel woody eth0 to home LAN firewall set up as default gateway -- Karl E. Jørgensen [EMAIL PROTECTED] www.karl.jorgensen.com Please study http://www.rfc855.org msg06206/pgp0.pgp Description: PGP signature
Re: installing adaptec 2400a RAID card
On Sun, 28 Apr 2002 at 13:03:10 -0400, Andrew Kaplan wrote: > How do I install debain ( 2.2.r_6)with an Adaptec 2400a RAID card. On the CD > I only see RedHat and Suse. > > Thanks, > > Andrew P. Kaplan > Network Administrator > CyberShore, Inc. > http://www.cshore.com I have installed Debian potato on a machine with Adaptec 2100S RAID controller. I don't know whether 2400a uses the same driver. It would be rather time-consuming for me to describe exactly the way I've done it (English isn't my native language). Shortly: on another machine I have had to compile the kernel with the dpt_i2o driver included (_not_ as a module). Having this new kernel, I have replaced a kernel on a installation floppy with the new kernel. During the installation I have had to do some "manual" changes. If above description isn't sufficient, write and I'll try to find the details. Hope that helps -- Tomasz Papszun SysAdm @ TP S.A. Lodz, Poland | And it's only [EMAIL PROTECTED] http://www.lodz.tpsa.pl/ | ones and zeros. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Traffic analysis tools
Hi Guys I am looking for traffic analysis tools for Apache virtual hosts, any suggestions on what works well and is relativley easy to configure ?> ..Craig :) -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]