Re: Virtualitzar servidor linux
He estat buscant he trobat una solució però segueix sense funcionar-me, la poso per si algú s’ha trobat i sap per orientar-me una mica. L’error es el següent. Loading sd_mod module kmod: failed to exec /sbin/modprobe -s -k scsi-hostadapter, errno = 2 Y el que eh trobat es fer un chroot y fer el següent echo 'alias acsi_hostadapter BusLogic'/etc/modules.conf mkinitrd --preload=BusLogic --with=BusLogic -f /boot/initrd-2.6.22.1-41.fc.img 2.6.22.1-41.fc Però no dona resultat. Per apuntar alguna cosa ... No hauria de ser /etc/modprobe.d/aliases enlloc de /etc/modules.conf penso que aquest va quedar obsolet per modprobe.conf i ara amb tota la jerarquia que pots trobar a /etc/modprobe.d/ ... Ho has provat generant un nou initrd amb les initramfs-tools i afegint el nom del mòdul que vols carregar a /etc/initramfs-tools/modules Sort ... -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: Virtualitzar servidor linux
* David Trigo Chávez [EMAIL PROTECTED]: Pel que he pogut veure es tema de la controladora raid, que hem peta. Però si estàs executant sota una màquina virtual de VMware, el maquinari no és pas el mateix que tens al hoste. Si la cosa no ha canviat molt des què jo ho havia provat el VMware t'ofereix un PC sencer amb el seu propi maquinari força genèric per tal que no doni problemes. Si el pet el fot la màquina virtual de VMware, aleshores segurament només et calgui desactivar aquest controlador i, si vols RAID, muntar-lo amb programari. En qualsevol cas, el RAID l'hauria de muntar l'hoste, no pas la màquina virtual. Serà molt més ràpid i només caldrà que en muntis 1 per a totes les màquines virtuals que vulguis, que l'utilitzaran com si es tractés de raid per maquinari, de forma totalment transparent. -- Alex Muntada [EMAIL PROTECTED] http://alexm.org/
Re: Virtualitzar servidor linux
* Lluís Gili [EMAIL PROTECTED]: sé que hi ha una eina que es diu virt-p2v de red-hat, però que potser pot migrar qualsevol distribució, és un cd arrencable que fa una imatge del disc i la copia per ssh a una altre màquina Molt interessant. Gràcies, Lluís! -- Alex Muntada [EMAIL PROTECTED] http://alexm.org/
Re: Arrêt du système [resolu]
Le Saturday 26 July 2008 10:37:13 luc schimpf, vous avez écrit : Bernard a écrit : Bonjour, Je me permets de relancer un post. Depuis plusieurs semaines, et suite à une mise à jour de ma Débian Etch 4, l'arrêt de la machine ne peut se faire proprement qu'en console et en root. Apparemment des scripts qui ne s'executes pas correctement. Il m'avait été conseiller de patienter jusqu'a une prochaine mise à jour du fichier. Mais le problème persiste. Certain d'entre vous auraient des infos ? Bonjour, J'ai eu le même problème il y a quelque temps, et aucune mise à jour n'a eu d'effet... C'était le programme keytouch (gestion des touches spéciales du clavier) qui posait problème, je l'ai viré et remplacer par lineak et tout est rentré dans l'ordre... Si ça peut aider -- Luc Schimpf www.au-ptit-bon-air.eu Merci pour la réponse. Effectivement Keytouch sous certaine version semble empêcher l'extinction correcte de la session en cours. Mais je le garde quand même vu que dans Lineak mon clavier n'est pas dans la liste, et que la mécanique et moi... Une alternative à la console est le Ctrl+Alt+Backpace, puis extinction normale. Pour ceux qui ne peuvent se loger en Root évidement. -- Lisez la FAQ de la liste avant de poser une question : http://wiki.debian.org/DebFrFrenchLists Vous pouvez aussi ajouter le mot ``spam'' dans vos champs From et Reply-To: To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: Instal et config modem externe ?
Thomas Harding a écrit, dimanche 3 août 2008, à 23:34 : m.jem wrote: Débrancher et rebrancher l'alim du modem : le numéro n'a pas été joint avec succès plusieurs fois de suite, et est tombé en « liste noire ». C'est bizarre, parce qu'en essayant de me connecter, que le modem soit branché ou non sur la ligne téléphonique, la réponse est toujours la même... le modem affiche : BLACKLISTED un wvdialconf reconnait qu'il y a un modem, il trouve une commande d'initialisation. Même en débranchant le modem et en le rebranchant toujours le même résultat, et à la première tentative de numérotation... J'ai bien écrit débrancher *l'alim* du modem la blacklist est *dans la mémoire du modem* et si tu as la flemme de te mettre à quatre pattes sous ton bureau, http://www.linux-kheops.com/doc/config/config.php?ptd=ppp/sintes/faqd.html -- Les numeros brules J'ai un « %X2 » qui traîne dans une chaîne de commandes AT pour un Olitec speedcom 2000... -- Jacques L'helgoualc'h -- Lisez la FAQ de la liste avant de poser une question : http://wiki.debian.org/DebFrFrenchLists Vous pouvez aussi ajouter le mot ``spam'' dans vos champs From et Reply-To: To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
RE: OpenVPN / SAMBA
Salut, J'utilise aussi openvpn et nfs, et oui c'est très lent, en fait un peu tout est lent, c'est les joies du vpn je pense, maintenant je me goure peut-être, si ça se trouve ma config est pourrie, l'un des deux ISP se moque du monde (possible aussi, coté c'est une livebox, et un peu tout marche mal, avec ou sans vpn, coté serveur c'est une freeboite, j'ai plus confiance de ce coté). Enfin en résumé, essaie autre chose que samba (et que ssh qui est de toute façon ultra léger). Un transfert de fichier pourrait faire l'affaire, genre tu télécharges un fichier (assez gros quand même pour avoir le temps de voir) via ftp hors vpn, et tu télécharges le même toujours via ftp à travers le vpn. Enfin, c'est juste une idée : ) -Original Message- From: nono [mailto:[EMAIL PROTECTED] Sent: dimanche 3 août 2008 00:24 To: debian-user-french@lists.debian.org Subject: OpenVPN / SAMBA Salut à tous. J'ai un serveur OpenVPN qui marche, et un serveur SAMBA qui marche parfaitement en locale. En revanche, quand je me connecte de l'extérieur (donc depuis le vpn), et que j'accède au partage SAMBA, c'est horriblement lent. En ce qui concerne le VPN, tout est encapsulé sous UDP, l'accès au net marche sans aucun problème, mais comme je le disais, dès que j'accède au SAMBA, aie aie aie. Une idée? Merci. -- The information in this e-mail is confidential. The contents may not be disclosed or used by anyone other then the addressee. Access to this e-mail by anyone else is unauthorised. If you are not the intended recipient, please notify Airbus immediately and delete this e-mail. Airbus cannot accept any responsibility for the accuracy or completeness of this e-mail as it has been sent over public networks. If you have any concerns over the content of this message or its Accuracy or Integrity, please contact Airbus immediately. All outgoing e-mails from Airbus are checked using regularly updated virus scanning software but you should take whatever measures you deem to be appropriate to ensure that this message and any attachments are virus free. -- Lisez la FAQ de la liste avant de poser une question : http://wiki.debian.org/DebFrFrenchLists Vous pouvez aussi ajouter le mot ``spam'' dans vos champs From et Reply-To: To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
samba et exim4 incompatibles sous lenny?
Ne peut-on installer exim4 et samba sur la même bécane ??? Provisoirement (j'espère), j'ai installé samba 2:3.2.0-4 car la mise à jour de sécurité de samba3 sous lenny n'est pas installable: - en effet libldap-2.4-2 qui est une dépendance d'exim4-daemon-heavy et libldap2 (une dépendance de samba dans la dernière version de sécurité de lenny: 3.0.28-1~lenny1) sont en conflit. Cette incompatibilité existe depuis la correction du bug #475856 et le changement de librairie LDAP depuis la dernière mise à jour de sécurité de samba : http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=475856 $ apt-cache policy samba samba: Installé : 2:3.2.0-4 Candidat : 2:3.2.0-4 Table de version : *** 2:3.2.0-4 0 986 http://ftp.fr.debian.org lenny/main Packages 98 http://ftp.fr.debian.org sid/main Packages 100 /var/lib/dpkg/status 3.0.28-1~lenny1 0 988 http://security.debian.org lenny/updates/main Packages 3.0.24-6etch10 0 982 http://ftp.fr.debian.org etch/main Packages 984 http://security.debian.org etch/updates/main Packages $ apt-cache show smbclient | grep Depends Depends: samba-common (= 2:3.2.0-4), libc6 (= 2.7-1), libcomerr2 (= 1.33-3), libkrb53 (= 1.6.dfsg.2), libldap-2.4-2 (= 2.4.7), libncurses5 (= 5.6+20071006-3), libpopt0 (= 1.14), libreadline5 (= 5.2), libtalloc1, libwbclient0 (= 2:3.2.0) Depends: samba-common (= 3.0.28-1~lenny1), libc6 (= 2.7-1), libcap1, libcomerr2 (= 1.33-3), libkrb53 (= 1.6.dfsg.2), libldap2 (= 2.1.17-1), libncurses5 (= 5.6+20071006-3), libpopt0 (= 1.10), libreadline5 (= 5.2) Depends: samba-common (= 3.0.24-6etch10), libc6 (= 2.3.6-6), libcomerr2 (= 1.33-3), libkrb53 (= 1.4.2), libldap2 (= 2.1.17-1), libncurses5 (= 5.4-5), libpopt0 (= 1.10), libreadline5 (= 5.2) $ apt-cache show exim4-daemon-heavy | grep Depends Depends: exim4-base (= 4.69), libc6 (= 2.7-1), libdb4.6, libgnutls26 (= 2.4.0-0), libldap-2.4-2 (= 2.4.7), libmysqlclient15off (= 5.0.27-1), libpam0g (= 0.99.7.1), libpcre3 (= 7.4), libperl5.10 (= 5.10.0), libpq5 (= 8.3~beta1), libsasl2-2, libsqlite3-0 (= 3.5.9), debconf (= 0.5) | debconf-2.0 Depends: exim4-base (= 4.63), libc6 (= 2.3.6-6), libdb4.3 (= 4.3.28-1), libgnutls13 (= 1.4.0-0), libldap2 (= 2.1.17-1), libmysqlclient15off (= 5.0.24-2), libpam0g (= 0.76), libpcre3 (= 4.5), libperl5.8 (= 5.8.8), libpq4 (= 8.1.4), libsasl2-2, libsqlite3-0 (= 3.3.8), debconf (= 0.5) | debconf-2.0 S'agit-il d'un bug à signaler? Une prochaine mise à jour corrigera t-elle cette incompatibilité? Est-il urgent d'attendre? ;-) merci de votre aide. signature.asc Description: Ceci est une partie de message numériquement signée
Re: migration etch - lenny
Le lundi 04 août 2008 à 14:24 +0900, Charles Plessy a écrit : D'après packages.debian.org, samba a besoin de libldap-2.4-2 et non de libldap2. ok, mea culpa je précise: - j'ai exim4 installé et qui dépend donc de libldap2 - et je veux installer samba3 (dernière mise à jour de sécurité) qui dépend de libldap-2.4-2 - libldap2 et libldap-2.4-2 sont en conflit Merci de m'avoir aidé à préciser ma question que j'ouvre dans un nouveau fil: - samba et exim4 incompatibles sous lenny? -- --- Ma cle GPG est disponible sur http://www.keyserver.net (0x3E8D8B07) A6FD F7B5 1D15 0294 F4E1 E6D8 C873 E9AB 3E8D 8B07 --- signature.asc Description: Ceci est une partie de message numériquement signée
Re: samba et exim4 incompatibles sous lenny?
Le Mon, Aug 04, 2008 at 03:18:10PM +0200, patrick a écrit : Ne peut-on installer exim4 et samba sur la même bécane ??? Provisoirement (j'espère), j'ai installé samba 2:3.2.0-4 car la mise à jour de sécurité de samba3 sous lenny n'est pas installable: - en effet libldap-2.4-2 qui est une dépendance d'exim4-daemon-heavy et libldap2 (une dépendance de samba dans la dernière version de sécurité de lenny: 3.0.28-1~lenny1) sont en conflit. Rebonjour, je pense que si la version de Lenny est supérieure à celle de security.debian.org, c'est bien celle-là qu'il faut installer, et que donc il n'y a pas de problème. Amicalement, -- Charles Plessy Debian Med packaging team, Tsurumi, Kanagawa, Japan -- Lisez la FAQ de la liste avant de poser une question : http://wiki.debian.org/DebFrFrenchLists Vous pouvez aussi ajouter le mot ``spam'' dans vos champs From et Reply-To: To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: samba et exim4 incompatibles sous lenny?
Le lundi 4 août 2008, patrick a écrit : Ne peut-on installer exim4 et samba sur la même bécane ??? Provisoirement (j'espère), j'ai installé samba 2:3.2.0-4 car la mise à jour de sécurité de samba3 sous lenny n'est pas installable: - en effet libldap-2.4-2 qui est une dépendance d'exim4-daemon-heavy et libldap2 (une dépendance de samba dans la dernière version de sécurité de lenny: 3.0.28-1~lenny1) sont en conflit. Cette incompatibilité existe depuis la correction du bug #475856 et le changement de librairie LDAP depuis la dernière mise à jour de sécurité de samba : http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=475856 $ apt-cache policy samba samba: Installé : 2:3.2.0-4 Candidat : 2:3.2.0-4 Table de version : *** 2:3.2.0-4 0 986 http://ftp.fr.debian.org lenny/main Packages 98 http://ftp.fr.debian.org sid/main Packages 100 /var/lib/dpkg/status 3.0.28-1~lenny1 0 988 http://security.debian.org lenny/updates/main Packages 3.0.24-6etch10 0 982 http://ftp.fr.debian.org etch/main Packages 984 http://security.debian.org etch/updates/main Packages $ apt-cache show smbclient | grep Depends Depends: samba-common (= 2:3.2.0-4), libc6 (= 2.7-1), libcomerr2 (= 1.33-3), libkrb53 (= 1.6.dfsg.2), libldap-2.4-2 (= 2.4.7), libncurses5 (= 5.6+20071006-3), libpopt0 (= 1.14), libreadline5 (= 5.2), libtalloc1, libwbclient0 (= 2:3.2.0) Depends: samba-common (= 3.0.28-1~lenny1), libc6 (= 2.7-1), libcap1, libcomerr2 (= 1.33-3), libkrb53 (= 1.6.dfsg.2), libldap2 (= 2.1.17-1), libncurses5 (= 5.6+20071006-3), libpopt0 (= 1.10), libreadline5 (= 5.2) Depends: samba-common (= 3.0.24-6etch10), libc6 (= 2.3.6-6), libcomerr2 (= 1.33-3), libkrb53 (= 1.4.2), libldap2 (= 2.1.17-1), libncurses5 (= 5.4-5), libpopt0 (= 1.10), libreadline5 (= 5.2) Hum étrange. La version de samba dans sid et lenny sont identiques d'après http://packages.qa.debian.org/s/samba.html pourtant tu as des dépendances différentes que les miennes pour smbclient. Es-tu sur une architecture autre que x86 (je ne sais pas si des dépendances peuvent être différentes suivant les archis). $ apt-cache show exim4-daemon-heavy | grep Depends Depends: exim4-base (= 4.69), libc6 (= 2.7-1), libdb4.6, libgnutls26 (= 2.4.0-0), libldap-2.4-2 (= 2.4.7), libmysqlclient15off (= 5.0.27-1), libpam0g (= 0.99.7.1), libpcre3 (= 7.4), libperl5.10 (= 5.10.0), libpq5 (= 8.3~beta1), libsasl2-2, libsqlite3-0 (= 3.5.9), debconf (= 0.5) | debconf-2.0 Depends: exim4-base (= 4.63), libc6 (= 2.3.6-6), libdb4.3 (= 4.3.28-1), libgnutls13 (= 1.4.0-0), libldap2 (= 2.1.17-1), libmysqlclient15off (= 5.0.24-2), libpam0g (= 0.76), libpcre3 (= 4.5), libperl5.8 (= 5.8.8), libpq4 (= 8.1.4), libsasl2-2, libsqlite3-0 (= 3.3.8), debconf (= 0.5) | debconf-2.0 S'agit-il d'un bug à signaler? Une prochaine mise à jour corrigera t-elle cette incompatibilité? Est-il urgent d'attendre? ;-) merci de votre aide. Cordialement, Thomas Preud'homme -- Why Debian : http://www.debian.org/intro/why_debian signature.asc Description: This is a digitally signed message part.
Re: samba et exim4 incompatibles sous lenny?
Le Mon, Aug 04, 2008 at 03:44:38PM +0200, Thomas Preud'homme a écrit : Table de version : *** 2:3.2.0-4 0 986 http://ftp.fr.debian.org lenny/main Packages 98 http://ftp.fr.debian.org sid/main Packages 100 /var/lib/dpkg/status 3.0.28-1~lenny1 0 988 http://security.debian.org lenny/updates/main Packages 3.0.24-6etch10 0 982 http://ftp.fr.debian.org etch/main Packages 984 http://security.debian.org etch/updates/main Packages $ apt-cache show smbclient | grep Depends Depends: samba-common (= 2:3.2.0-4), libc6 (= 2.7-1), libcomerr2 (= 1.33-3), libkrb53 (= 1.6.dfsg.2), libldap-2.4-2 (= 2.4.7), libncurses5 (= 5.6+20071006-3), libpopt0 (= 1.14), libreadline5 (= 5.2), libtalloc1, libwbclient0 (= 2:3.2.0) Depends: samba-common (= 3.0.28-1~lenny1), libc6 (= 2.7-1), libcap1, libcomerr2 (= 1.33-3), libkrb53 (= 1.6.dfsg.2), libldap2 (= 2.1.17-1), libncurses5 (= 5.6+20071006-3), libpopt0 (= 1.10), libreadline5 (= 5.2) Depends: samba-common (= 3.0.24-6etch10), libc6 (= 2.3.6-6), libcomerr2 (= 1.33-3), libkrb53 (= 1.4.2), libldap2 (= 2.1.17-1), libncurses5 (= 5.4-5), libpopt0 (= 1.10), libreadline5 (= 5.2) Hum étrange. La version de samba dans sid et lenny sont identiques d'après http://packages.qa.debian.org/s/samba.html pourtant tu as des dépendances différentes que les miennes pour smbclient. J'ai aussi été enduit d'erreur un moment, mais en y regardant bien, on voit que ce sont les dépendances pour chacune des trois versions disponibles. (Le mot-clé « Depends: » apparaît trois fois ci-dessus). Bonne soirée, -- Charles -- Lisez la FAQ de la liste avant de poser une question : http://wiki.debian.org/DebFrFrenchLists Vous pouvez aussi ajouter le mot ``spam'' dans vos champs From et Reply-To: To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: samba et exim4 incompatibles sous lenny?
Le lundi 4 août 2008, Charles Plessy a écrit : Le Mon, Aug 04, 2008 at 03:44:38PM +0200, Thomas Preud'homme a écrit : Table de version : *** 2:3.2.0-4 0 986 http://ftp.fr.debian.org lenny/main Packages 98 http://ftp.fr.debian.org sid/main Packages 100 /var/lib/dpkg/status 3.0.28-1~lenny1 0 988 http://security.debian.org lenny/updates/main Packages 3.0.24-6etch10 0 982 http://ftp.fr.debian.org etch/main Packages 984 http://security.debian.org etch/updates/main Packages $ apt-cache show smbclient | grep Depends Depends: samba-common (= 2:3.2.0-4), libc6 (= 2.7-1), libcomerr2 (= 1.33-3), libkrb53 (= 1.6.dfsg.2), libldap-2.4-2 (= 2.4.7), libncurses5 (= 5.6+20071006-3), libpopt0 (= 1.14), libreadline5 (= 5.2), libtalloc1, libwbclient0 (= 2:3.2.0) Depends: samba-common (= 3.0.28-1~lenny1), libc6 (= 2.7-1), libcap1, libcomerr2 (= 1.33-3), libkrb53 (= 1.6.dfsg.2), libldap2 (= 2.1.17-1), libncurses5 (= 5.6+20071006-3), libpopt0 (= 1.10), libreadline5 (= 5.2) Depends: samba-common (= 3.0.24-6etch10), libc6 (= 2.3.6-6), libcomerr2 (= 1.33-3), libkrb53 (= 1.4.2), libldap2 (= 2.1.17-1), libncurses5 (= 5.4-5), libpopt0 (= 1.10), libreadline5 (= 5.2) Hum étrange. La version de samba dans sid et lenny sont identiques d'après http://packages.qa.debian.org/s/samba.html pourtant tu as des dépendances différentes que les miennes pour smbclient. J'ai aussi été enduit d'erreur un moment, mais en y regardant bien, on voit que ce sont les dépendances pour chacune des trois versions disponibles. (Le mot-clé « Depends: » apparaît trois fois ci-dessus). Bonne soirée, -- Charles Ah oui en effet cela se voyait beaucoup moins une fois le texte formatté par kmail avec des et la coupure à 80 caractères. Quoiqu'il en soit la version qu'il a installé est bien la bonne pour lenny puisque son numéro de version est plus récent que celui dans les dépôts security. Cordialement, Thomas Preud'homme -- Why Debian : http://www.debian.org/intro/why_debian signature.asc Description: This is a digitally signed message part.
[Résolu] Re: samba et exim4 incompatibles sous lenny?
Hum étrange. La version de samba dans sid et lenny sont identiques d'après http://packages.qa.debian.org/s/samba.html pourtant tu as des dépendances différentes que les miennes pour smbclient. J'ai aussi été enduit d'erreur un moment, mais en y regardant bien, on voit que ce sont les dépendances pour chacune des trois versions disponibles. (Le mot-clé « Depends: » apparaît trois fois ci-dessus). Rebonjour à tous et bonsoir à Charles, Les lignes Depends étaient bien alignées sagement chez moi quand j'ai composé le message mais après reformatage à 80 c/lignes c'est vrai que c'est le binz': donc, I'm sorry. Je me suis lourdement planté effectivement: - exim4 et samba dans leur version lenny sont compatibles! Dans ma migration etch - lenny, en installant la dernière version, c'est d'ailleurs ce que j'ai fait comme Mr Jourdain de la prose sans le savoir... Debian c'est décidément top moumoutte! En particulier, le sources.list au carré: http://forum.debian-fr.org/viewtopic.php?f=8t=5659 -- --- Ma cle GPG est disponible sur http://www.keyserver.net (0x3E8D8B07) A6FD F7B5 1D15 0294 F4E1 E6D8 C873 E9AB 3E8D 8B07 --- signature.asc Description: Ceci est une partie de message numériquement signée
Re: Instal et config modem externe ?
Jacques L'helgoualc'h a écrit : Thomas Harding a écrit, dimanche 3 août 2008, à 23:34 : m.jem wrote: Débrancher et rebrancher l'alim du modem : le numéro n'a pas été joint avec succès plusieurs fois de suite, et est tombé en « liste noire ». C'est bizarre, parce qu'en essayant de me connecter, que le modem soit branché ou non sur la ligne téléphonique, la réponse est toujours la même... le modem affiche : BLACKLISTED un wvdialconf reconnait qu'il y a un modem, il trouve une commande d'initialisation. Même en débranchant le modem et en le rebranchant toujours le même résultat, et à la première tentative de numérotation... J'ai bien écrit débrancher *l'alim* du modem la blacklist est *dans la mémoire du modem* et si tu as la flemme de te mettre à quatre pattes sous ton bureau, http://www.linux-kheops.com/doc/config/config.php?ptd=ppp/sintes/faqd.html -- Les numeros brules J'ai un « %X2 » qui traîne dans une chaîne de commandes AT pour un Olitec speedcom 2000... Je n'étais bien mis à quattre pattes sous mon bureau, débranchage et rébranchage (à plusieurs reprise, j'étais plus téméraire que courageux). Suite au (super, merci) lien que tu m'as donné, j'ai joué la carte de l'apprentissage. J'ai un problème particulier : lorsque je lance atfv j'obtiens tout un tas d'informations dont bizarrement un numéro de téléphone complètement différent de celui que je suis censé utiliser. Comme mon numéro de départ semble être blacklisté par le modem, je le remplace - pour voir - par celui que me renvoie atfv... je demande la connexion... le modem va jusqu'à composer le numéro et ça cause... le numéro que vous avez demandé n'est pas attribué et patati Mon hypothèse, le modem est bridé avec un numéro autorisé... il faudrait que j'arrive à le modifer : je n'ai aucune idée de comment je peux faire cela ??? (en ajoutant des %X2 ou 4 à ma chaine d'initialisation le numéro subit toujours le même sort) Merci -- Partagez et publiez vos images avec http://partage-images.net Et pourquoi pas visiter http://cerisier.info -- Lisez la FAQ de la liste avant de poser une question : http://wiki.debian.org/DebFrFrenchLists Vous pouvez aussi ajouter le mot ``spam'' dans vos champs From et Reply-To: To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: Instal et config modem externe ?
m.jem a écrit, lundi 4 août 2008, à 21:38 : Jacques L'helgoualc'h a écrit : [...] J'ai un problème particulier : lorsque je lance atfv j'obtiens tout un tas d'informations dont bizarrement un numéro de téléphone complètement différent de celui que je suis censé utiliser. Comme mon numéro de départ semble être blacklisté par le modem, je le remplace - pour voir - par celui que me renvoie atfv... je demande la connexion... le modem va jusqu'à composer le numéro et ça cause... le numéro que vous avez demandé n'est pas attribué et patati A priori, au moins il n'est pas surtaxé :) --- tu sais à quoi il peut correspondre ? Mon hypothèse, le modem est bridé avec un numéro autorisé... il faudrait que j'arrive à le modifer : je n'ai aucune idée de comment je peux faire cela ??? Ce modem a été fourni par un FAI ? Si le modem est vraiment bridé, il faudrait sans doute remplacer son firmware... http://www.olitec.com/pub/mans2mc.pdf donne (à la fin) les commandes AT d'olitec, on peut préconfigurer quelques numéros. (en ajoutant des %X2 ou 4 à ma chaine d'initialisation le numéro subit toujours le même sort) Le numéro brûlé n'est pas ressuscité ? Essaie d'appeler ton propre numéro, est-il aussi blacklisté ? -- Jacques L'helgoualc'h -- Lisez la FAQ de la liste avant de poser une question : http://wiki.debian.org/DebFrFrenchLists Vous pouvez aussi ajouter le mot ``spam'' dans vos champs From et Reply-To: To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: [HS]Orange smtp Postfix
FIX Jerome [EMAIL PROTECTED] writes: Le Thursday 31 July 2008 15:37:38 Frédéric LAURENT, vous avez écrit : Bonjour à tous, Depuis cette semaine, je me retrouve devant un soucis de smtp, en effet, plus moyen d'envoyer grace à mon serveur de mail. J'ai donc changer le relayhost wanadoo en orange dans mon main.cf et il demande une authentification.(host smtp.orange.fr[193.252.22.84] said: 554 [EMAIL PROTECTED]: Recipient address rejected: Missing Authentication (in reply to RCPT TO command)) Pour info, losrque je passe par le smtp en direct grace à thunderbird, pas de problème et pas besoin de mot de passe Une petite lumière? Merci d'avance. Fred. Hello, J'avais eu il y a quelques temps le problème. Voici mes notes : http://www.zapoyok.info/post/2007/10/16/Orange-et-blocage-du-port-25-smtp- pour-eviter-les-serveurs-de-mails-zombie J'utilise aussi smtp.orange.fr en smarthost avec exim4, alors ce fil m'inquiète un peu car je n'ai encore été notifié d'aucun problème. J'ai refait un test à l'instant et je n'ai rencontré aucun souci à l'expédition Je précise que je n'ai configuré aucune authentification SMTP, mais Orange est mon FAI alors ça explique peut-être. -- Léo. -- Lisez la FAQ de la liste avant de poser une question : http://wiki.debian.org/DebFrFrenchLists Vous pouvez aussi ajouter le mot ``spam'' dans vos champs From et Reply-To: To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: [HS]Orange smtp Postfix
Leopold BAILLY a écrit, lundi 4 août 2008, à 22:57 : FIX Jerome [EMAIL PROTECTED] writes: Le Thursday 31 July 2008 15:37:38 Frédéric LAURENT, vous avez écrit : Bonjour à tous, Depuis cette semaine, je me retrouve devant un soucis de smtp, en effet, plus moyen d'envoyer grace à mon serveur de mail. J'ai donc changer le relayhost wanadoo en orange dans mon main.cf et il demande une authentification.(host smtp.orange.fr[193.252.22.84] said: 554 [EMAIL PROTECTED]: Recipient address rejected: Missing Authentication (in reply to RCPT TO command)) Pour info, losrque je passe par le smtp en direct grace à thunderbird, pas de problème et pas besoin de mot de passe Une petite lumière? Merci d'avance. Fred. Hello, J'avais eu il y a quelques temps le problème. Voici mes notes : http://www.zapoyok.info/post/2007/10/16/Orange-et-blocage-du-port-25-smtp- pour-eviter-les-serveurs-de-mails-zombie J'utilise aussi smtp.orange.fr en smarthost avec exim4, alors ce fil m'inquiète un peu car je n'ai encore été notifié d'aucun problème. J'ai refait un test à l'instant et je n'ai rencontré aucun souci à l'expédition Je précise que je n'ai configuré aucune authentification SMTP, mais Orange est mon FAI alors ça explique peut-être. Le problème de Frédéric s'explique peut-être par un changement de sa configuration DNS : quand je cherche à résoudre l'IP de son serveur, j'obtiens (via le réseau orange) : ~ $ host 193.252.22.84 193.252.22.84 does not exist, try again mais en demandant ailleurs ~ $ host 193.252.22.84 ns2.orange.fr Name: smtpauth.wanadoo.fr Address: 193.252.22.84 Ce serveur smtpauth est plutôt destiné aux clients orange connectés à l'extérieur... À l'intérieur d'orange, ~ $ host smtpauth.orange.fr smtpauth.orange.fr CNAME smtp.orange.fr smtp.orange.fr A 193.252.22.74 smtp.orange.fr A 193.252.22.64 smtp.orange.fr A 80.12.242.141 smtp.orange.fr A 80.12.242.86 smtp.orange.fr A 80.12.242.61 smtp.orange.fr A 80.12.242.52 smtp.orange.fr A 80.12.242.16 smtp.orange.fr A 80.12.242.10 smtp.orange.fr A 193.252.23.66 smtp.orange.fr A 193.252.22.91 et vu du dehors : ~ $ host smtpauth.orange.fr ns2.orange.fr smtpauth.orange.fr A 193.252.22.84 smtpauth.orange.fr A 193.252.22.86 Par ailleurs, cf. news:fr.comp.mail.serveurs, les serveurs ordinaires d'orange seraient fréquemment blacklistés, et il vaudrait mieux utiliser comme « smarthost » smtp-msa.orange.fr (port 587, authentification). ~ $ host smtp-msa.orange.fr ns2.orange.fr smtp-msa.orange.fr does not exist at ns2.orange.fr (Authoritative answer) ~ $ host smtp-msa.orange.fr smtp-msa.orange.fr A 193.252.22.72 -- Jacques L'helgoualc'h -- Lisez la FAQ de la liste avant de poser une question : http://wiki.debian.org/DebFrFrenchLists Vous pouvez aussi ajouter le mot ``spam'' dans vos champs From et Reply-To: To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
update-notifier est fou?
Bonjour, Depuis quelques temps l'update notifier de Gnome n'arrête pas de me dire qu'il y a des mises à jours alors qu'il n'y en a pas. Est-ce juste chez moi ou c'est pareil chez vous? Gaëtan -- Lisez la FAQ de la liste avant de poser une question : http://wiki.debian.org/DebFrFrenchLists Vous pouvez aussi ajouter le mot ``spam'' dans vos champs From et Reply-To: To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Situs Debian.org
Salam Halo semua! Ada yang tertarik untuk menerjemahkan situs debian.org sehingga muncul pilihan Bahasa Indonesia? Yuk, kerja sama-sama! -- Zaki Akhmad -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
kredit tanpa agunan 5 hr saja..dr HSBC
Pinjaman uang tunai tanpa agunan dari hsbc memberikan kemudahan bagi anda untuk mendapatkannya dengan persyaratan yang sangat mudah dan flexible cukup dengan fc ktp dan fc credit card (sisi depannya saja), fc billing tagihan 1 bulan terakhir (bila ada) dan bunga yang sangat kompetitif ,proses hingga pencairan hanya membutuhkan MAXIMAL 5 hari kerja saja.kemudahan pembayaran yg dapat dilakukan via ATM BCA,LIPPO,BII atau pun dapat juga lewat kantor pos. DIBANTU HINGGA CAIR hubungi : windi 94624222 or [EMAIL PROTECTED] PERHITUNGAN BUNGA/BULAN TENOR Jml.Pinjaman12 bulan 24 bulan 36 bulan 8.000.000 - 14.999.999 1.87% 1.87 %. - 15.000.000 - 125.000.000 1.70% 1.75 %. 1.80 %. TABEL ANGSURAN PINJAMAN 1 TAHUN 2 TAHUN 3 TAHUN 8,000,000 816,267 482,933 9,000,000 918,300 543,300 10,000,000 1,020,334 603,666 10,500,000 1,071,350 633,850 11,000,000 1,122,367 664,033 12,000,000 1,224,401 724,400 13,000,000 1,326,434 784,766 14,000,000 1,428,467 845,133 15,000,000 1,505,000 887,500 686,667 16,000,000 1,605,333 946,667 732,444 17,000,000 1,705,6671,005,833 778,222 18,000,000 1,806,0001,065,000 824,000 19,000,000 1,906,3331,124,167 869,778 20,000,000 2,006,6671,183,333 915,556 21,000,000 2,107,0001,242,500 961,333 22,000,000 2,207,3331,301,667 1,007,111 23,000,000 2,307,6671,360,833 1,052,889 24,000,000 2,408,0001,420,000 1,098,667 25,000,000 2,508,3331,479,167 1,144,444 25,500,000 2,558,5001,508,750 1,167,333 26,000,000 2,608,6671,538,333 1,190,222 27,000,000 2,709,0001,597,500 1,236,000 28,000,000 2,809,3331,656,667 1,281,778 29,000,000 2,909,6671,715,833 1,327,556 30,000,000 3,010,0001,775,000 1,373,333 31,000,000 3,110,3331,834,167 1,419,111 32,000,000 3,210,6671,893,333 1,464,889 33,000,000 3,311,0001,952,500 1,510,667 34,000,000 3,411,3332,011,667 1,556,444 35,000,000 3,511,6672,070,833 1,602,222 36,000,000 3,612,0002,130,000 1,648,000 37,000,000 3,712,3332,189,167 1,693,778 38,000,000 3,812,6672,248,333 1,739,556 39,000,000 3,913,0002,307,500 1,785,333 40,000,000 4,013,3332,366,667 1,831,111 41,000,000 4,113,6672,425,833 1,876,889 42,000,000 4,214,0002,485,000 1,922,667 43,000,000 4,314,3332,544,167 1,968,444 44,000,000 4,414,6672,603,333 2,014,222 45,000,000 4,515,0002,662,500 2,060,000 46,000,000 4,615,3332,721,667 2,105,778 47,000,000 4,715,6672,780,833 2,151,556 48,000,000 4,816,0002,840,000 2,197,333 49,000,000 4,916,3332,899,167 2,243,111 50,000,000 5,016,6672,958,333 2,288,889 55,000,000 5,518,3333,254,167 2,517,778 60,000,000 6,020,0003,550,000 2,746,667 65,000,000 6,521,6673,845,833 2,975,556 70,000,000 7,023,3334,141,667 3,204,444
Re: Mis problemas con nscd (LDAP)
José Miguel Sánchez Alés escribió: Antes de nada, un saludito a la lista. Hace poco adquirí una kurobox[1] y quiero montar en ella un pequeño servidor de usuarios y de ficheros (LDAP+NFS y si tengo tiempo quizás monte samba). El caso es que he empezado por LDAP y, antes de probar con un cliente, quiero hacer el propio servidor cliente LDAP e ir probando las configuraciones. El problema es que al ir a instalar nscd (ver. 2.7-10), el programa casca con un segmentation fault. No llega a completarse la instalación, porque la postinstalación incluye levantar el servicio y casca. He, incluso, probado a ejecutar directamente: # nscd -d A ver qué pasaba, pero instantáneamente da un Segmentation fault. Así que me temo que es un bug y poco tengo que hacer. Me he pasado por la página de bugs, pero no he visto nada al respecto. Pensé compilarlo (aunque imagino que compilando las fuentes que proporciona debian con las herramientas de debian obtendré el mismo ejecutable que me descargo y volverá a fallar), pero al comprobar que nscd forma parte de las glibc se me cayó el alma a los pies: en una kurobox, puedo pasarme un día esperando que compilen. Como ahora mismo estoy de prestado y no poseo otro ordenador con linux, no puedo compilarlas más rápidamente. Al grano. Mi batería de preguntas es: a) ¿Alguien sabe algo al respecto? Yo, ya lo he dicho, no he visto nada en la web. Puedo poner el resultado de strace -f nscd, aunque yo estas cosas no sé interpretarlas y no sé si servirá para algo. b) Si paso de instalar nscd, ¿funciona el cliente LDAP? Como esto es simplemente el servidor y sólo quiero probar en él mismo mis configuraciones antes de ponerlas en clientes aparte, me importa poco que la cosa tenga un pobre rendimiento. Lo importante es que logre instalarlo luego en los clientes. nscd hace simplemente de cache, no es estrictamente necesario, ¿verdad? c) Suponiendo que me animase a compilarlo, ¿la compilación con las herramientas de debian me generaría los distintos ficheros .deb que surgen de las fuentes de glibc u obtendría un solo macro-paquete .deb? Se admiten sugerencias de cambia esta variable de configuración antes a ver si así funciona. d) Si lograse otro ordenador con linux más potente para compilar, ¿bastaría con crear una variable de ambiente ARCH=arm para que los .deb fuesen paquetes válidos para mi kurobox? Muchas gracias de antemano y espero haber cumplido con la netiqueta (ya digo que estoy de prestado y tengo que escribir directamente desde gmail). [1]es un micro arm9 y estoy usando una debian armel (lenny). Para qué quieres nscd? Tienes los usuarios montados sobre ldap? nscd se encarga de cachear las respuesta del sistema de resolución de nombres (el que resuelve los uid y gid a nombres de usuarios del sistema entre otras cosas). No es absolutamente necesario, pero en sistemas con muchos usuarios puede ser de ayuda para mejorar el rendimiento. Has modificado algo en /etc/nsswitch? Es un archivo bastante crítico para el sistema y si no puede acceder a los medios de resolución de nombres te puede dar un segmentation fault Por último: probaste en etch? Si te da errores en testing no hay mucho que hacer porque es una versión en desarrollo. Saludos -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
ayuda con exim4
hola a todos: tengo el siguiente dilema, tengo dos servidores con Debian etch y exim4 que comparten el mismo dominio MX ejemplo.com y comparten usuarios, lo que necesito es que los mensajes que llegan al servidor mx1.ejemplo.com y no sea para un usuario local lo reenvié para mx2.ejemplo.com. gracias -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: Por favor.. ayuda con LAN (squid + iptables + etc)
Julián Esteban Perconti escribió: Jose Luis Gómez escribió: Que tal Jose, ANTES QUE NADA DE NADA, Muchas gracias por tomarse el tiempo de escribirme y por la claridad. Voy a las citas: No desesperes hombre, si lo mejor es cuando fallan las cosas, así se aprende. OK Centrémonos ... lo primero, -creo yo- pasa por quitar cosas innecesarias que nos pueden estar liando alguna. La topologia de red que aportaste, tiene toda la pinta de poder hacerse unas cosas que te voy a decir yo ahora , si me equivoco, me lo dices. OK 1) Esa es TODA tu red, es decir, no vas a poner en marcha una DMZ segmentada ni nada complejo, por lo tanto, pon mascara /24 (255.255.255.0) en la config de todas tus interfaces ... Ok, no habra dmz, mascara en /24 listo. 2) El broadcast y el network, no es necesario en tu configuración de red, coméntalo. Comentado. 3) Olvídate de IPTABLES, toda la red está dentro del mismo segmento, no es necesario el nateo de paquetes. No vamos a tener que cambiar las tramas ethernet para nada, quita los nateos. Quizá más adelante, si fuera menester publicar puertos o algo así. Necesito puertos. Creo que no puedo olvidarme de iptables, mas aún si mi intencion es un firewall mediante este mismo. 4) Rutas, como trabajamos en el mismo segmento de red, tampoco hay que enrutar nada, simplemente, nos aseguramos que la ruta por defecto mande los paquetes para arriba, es decir, que la default route, sea en server1 el modem, en server2 la interfaz que conecta con server1 y en los clientes la interfaz que conecta con server2. Esto lo va a poner bien solo si acertamos con la gateway, pero nos aseguramos. El modem lo único que hace es servir al servidor1 para que tenga conexion a internet. El df gateway es server1 (eth1, 192.168.0.1) 5) Gateway : Este es un punto delicado, tu diseño de red, supongo que por falta logística es un poco peculiar. Todas las máquinas deberian tener de gateway al modem, si este nos da la posibilidad, si solo da servício a la máquina a la que está enchufado, entonces la gateway de toda la red debería ser server1 (y quizá ahí si tengamos que utilizar iptables). idem, efectivamente, hay que hacer uso de iptables. pero en server1 y 2. pero lo que me esta trabando son que reglas usar en el iptables de server2 para que redirija a server1 y tampoco se si tengo que cambiar algo en el iptables de server1. 6) Haz una serie de pruebas, me da pánico tener de cabecera de red un modem ... intenta lo primero, quitar el modem e intentar tener conectividad por red entre server1 y server2. Esto si es importante, ve paso a paso, primero asegura la conectividad entre server1, server2 y los clientes, que se vean todos y más tarde peleamos lo del modem, que va a ser otra guerra. Entre server1 y 2 hay total conectividad es decir desde Server2 a Server1. ping 192.168.1.1 desde server2 (192.168.1.2) no tengo ping por que no esta hablitado el icmp. ping www.google.com desde server2 (192.168.1.2) exitoso. y visceversa. desde los clientes pings a 192.168.0.1 y 192.168.1.2 exitoso. Aquí ya tienes algo para ir tirando, despues del testamento que acabo de escribir, me voy a permitir una opinión personal del tipo que siempre he odiado y es, contestar a una duda con mejor utiliza esto otro ... tengo esta duda de perl , mejor utiliza python ... siempre lo he odiado, pero te lo voy a decir. Lo que estás montando es una puta guarrada, es la cochinada superlativa, la anti-red ... Todas las máquinas conectadas en serie y en cabecera un modem guarrindongo ... gastate 4 duros y pillate un router, el más cochino que veas, aunque sea neutro. En ebay tienes Cisco-Pix tirados de precio ... por 15 € te pillas el peor router de la historia y vas a ser un 30% más feliz, como poco. Espero que te aporte algo compañero. Jaja... cuando hay hambreno hay pan duro alguien digo alguna vez. al margen... mi idea principal es tener una idea mas amplia de redes, iptables, debian. y como interconectar servidores, etc. pero desde un principio se que lo mejor es un router. Bueno voy a ver que sigo haciendo. Estoy sacando algunas cositas del sitio de guimi, para ir probando.. pero hasta ahora nada..creo que lo de iptables que hay en guimi es para una conexion a internet con ip statica y no dinamica como la mia (speedy argentina, WARNING jaja) Gracias Jose!! de verdad.! ¿donde esta guimi? Hola. Metiendo la cucharada donde no me llaman, si la cosa es ruteo, ¿Por que no pruebas Quagga? te convierte la maquina en router. Solo por comentar. -- Por favor, NO utilice formatos de archivo propietarios para el intercambio de documentos, como DOC y XLS, sino HTML, PDF, TXT, CSV o cualquier otro que no obligue a utilizar un programa de un fabricante concreto. Internet Explorer y Outlook son muy peligrosos por sus continuos problemas de seguridad. Utilice alternativas libres: http://www.mozillaes.org/
Comando analogo
Listeros, Busque pero no encontre, un comando analogo al de windows ipconfig /displaydns que muestas las direcciones almacenadas en cache. muchas gracias -- --- - El conocimiento es poder - - y el saber nos hace libres. - --- irrealnet.blogspot.com.ar Linux User #405757 Machine Linux #310536 -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: Habilitar y deshabilitar conexiones en una red interna.
El día 3 de agosto de 2008 8:42, Miguel Da Silva - Centro de Matemática [EMAIL PROTECTED] escribió: Marcos Delgado escreveu: El día 2 de agosto de 2008 15:04, Miguel Da Silva - Centro de Matemática [EMAIL PROTECTED] escribió: Marcos Delgado escreveu: Hola. Hay un servidor que sirve de gateway a Internet para una red interna. He estado buscando algún programa para poder cerrar o abrir la conexión de las máquinas según la dirección IP. Aún no he tenido éxito. El servidor es un debian estable. Si alguien me puede dar alguna recomendación se lo agradecería. Saludos. Marcos Delgado. ip_forward iptables? Y ya que estamos... como se implementa este gateway, con que software?! Saludos. -- Miguel Da Silva Administrador Junior de Sistemas Unix Centro de Matemática - http://www.cmat.edu.uy Facultad de Ciencias - http://www.fcien.edu.uy Universidad de la República - http://www.rau.edu.uy Pues con iptables y nat. Los rangos de IP internos van de 10.0.0.2 al 10.0.0.13; el servidor permite a la conexión a internet, eso ya esta implementado. Lo que necesito es indicarle al servidor que cierre la salida a internet a una o varias IP y después de un tiempo les permita el acceso otra vez. Lo anterior sin que el resto de las computadoras pierda la conexión. Eso es lo que no se si se puede hacer, y en caso afirmativo, como hacerlo. Gracias por la atención. Marcos Delgado. Sí se puede e inclusive a tenés todo lo necesario para hacerlo (iptables). Falta leer un poco sobre este software y listo; recomiendo Iptables Tutorial http://iptables-tutorial.frozentux.net/iptables-tutorial.html. Excelente material. Saludos. -- Miguel Da Silva Administrador Junior de Sistemas Unix Centro de Matemática - http://www.cmat.edu.uy Facultad de Ciencias - http://www.fcien.edu.uy Universidad de la República - http://www.rau.edu.uy Vale, parece que nos es tan poca la lectura necesaria, al menos para algo tan concreto como lo que estoy necesitando, de todas maneras sigo leyendo. Gracias. Marcos Delgado. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
/dev/hda1: clean
Cuando recién instalé Lenny estuve luchando por dejar bien configurado el virtualbox. En eso me equivoqué en algunas partes del proceso por lo que un par de veces no me quedó más remedio que reiniciar a lo cavernícola. El caso es que en una de esas ocasiones me salió un mensaje que indicaba algo como: root filesystem error. Luego de eso logré dejar bien configurado el VirtualBox y ahora todo anda bien. Mi inquietud es la siguiente: Al iniciar me sale: /dev/hda1: clean y todo anda normalmente. ¿El mensaje /dev/hda1: clean es suficiente para dar por hecho de que el anterior root filesystem error quedó arreglado? Sorry si sueno paranoico pero es que el término root en un mensaje de advertencia me ha dejado un poco asustado. Gracias a todos por el apoyo brindado durante mi tiempo de usuario de Debian. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
kcron - Ejecucion sobre kde
Hola a todos, Estoy intentando ejecutar una aplicacion de python con entorno grafico (qt3) cada 5 minutos... Para ello, he programado el kcron, pero no me funciona correctamente, ya que por lo que veo, ejecuta las aplicaciones como si estuviera en consola... dando el error de Cannot connect to X server (Veo que se ejecutan por los logs, ya que no aparece nada en el entorno grafico...) Me gustaria saber si hay alguna manera de programar tareas sobre kde que se ejecuten sobre las X. Saludos y gracias anticipadas -- xve -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: Por favor.. ayuda con LAN (squid + iptables + etc)
Carlos Miranda escribió: Quetal... Veo que nadie te dió algo úitl para ayudarte... Yo te voy a ayudar... 1° porque no pones todo en el 1er servidor? Ya esta todo en el 1er servidor. Es para probar mi idea... 2° el 2do servidor no podria ser SAMBA directamente..? si, podria 3° se conecta bien por pppoe? perfecto. Saludos On Fri, Aug 1, 2008 at 8:30 AM, Julián Esteban Perconti [EMAIL PROTECTED] wrote: Hola listeros, por tercera y ultima vez pido un poco de ayuda en esta locura que tengo en la cabeza, para ahorrar un de tiempo lo que trato de hacer es lo que dibujado esta en el siguiente link: http://img217.imageshack.us/img217/6569/dibujokg2.jpg Recién termino de hacer pruebas y desde las 12:00 que estoy tratando de que la cosa funcione, pero no lo logré, llegué a tener ping de las ifaces de server2 pero nunca llego a server1 desde los clientes; hice masquerade, forward, etc en server2, todo lo que pude hasta donde mis conocimientos. Todas las ifaces estan dentro de la misma red y netmask. Sin embargo, al hacer ping de un cliente (192.168.0.14) hacia el gateway server1 (192.168.0.1) (host unreacheable), pero desde un cliente a cualquiera de la ifaces de server2 recibed..24 ms..etc etc. En síntesis, desde un cliente no puedo llegar a server1, teniendo que pasar antes por server2. Alguna ayudita? Todo tipo de cualquier cosa será bienvenida. Muchas Gracias. [ ME VOY A DORMIRR!! ] PD: en todas las pcs uso debian 4.0r4 kernel 2.6.18-6-486. Mejor doy mas datos de config: server1 //etc/network/interfaces/ auto eth1 iface eth0 inet manual (pppoeconf) auto iface eth1 inet static address 192.168.0.1 netmask 255.255.255.240 bcast 192.168.0.15 network 192.168.0.0 server2 auto eth1 inet static address 192.168.0.10 gateway 192.168.0.1 netmask 255.255.255.240 bcast 192.168.0.15 network 192.168.0.0 ## eth1 es la iface primaria.. auto eth0 inet dhcp (192.168.0.9) cliente1 auto eth0 #iface eth0 inet dhcp # nada!! iface eth0 inet static address 192.168.0.14 gateway 192.168.0.1 #(probe también con .0.9 y .0.10, nada, nunca llego a 192.168.0.1) netmask 255.255.255.240 bcast 192.168.0.15 network 192.168.0.0 /iptables en server2 #pruebas /#todas las policys en accept echo 1 /proc/sys/net/ipv4/ip_forward iptables -t nat -A POSTROUTING -o eth1 -j MASQUERADE # nada. iptables -t nat -A POSTROUTING -o eth0 -j MASQUERADE # nada. descarte problemas de cableado y conexion, y demas, simplemente no es ese el problema. Ahora si me voy, gracias gente. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED] -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: Llavero USB no monta con 2.6.26
yo por ejemplo en lenny con el kernel 2.6.25 no me montaban algunas unidades flash externas pero en cambio con el kernel 2.6.22 si. 2008/8/1 Daniel [EMAIL PROTECTED] Antes de sacar el cañón (formateo) para matar las moscas como acaban de sugerir, por qué no prueba con el antiguo kernel que tenías, no sea que tenga un bug el nuevo kernel. Las nuevas versiones del kernel estable no son siempre tan... estables también pueden entrar nuevos bugs. Saludos Daniel
Re: OT vista panoramica de marte
prueba -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: Trixa med ipchains...
Hej Magnus! Ditt problem är rätt vanligt, men till att börja med skall jag förtydliga att detta inte är ipchains utan netfilter som ställs in med kommandot iptables. Ipchains har jag för övrigt obefintliga kunskaper om. För att vara ännu lite petigare så har du ett allvarligt problem i din brandvägg som öppnar upp möjligheten för en illasinnad person att köra godtyckligt UDP program på din dator 192.168.0.12 (vesta) på port 80. HTTP protokollet går nämligen enbart över TCP för att tillhandahålla en webbsida. Så till ditt problem. Du har redan fått ett par förslag på hur du kan lösa ditt problem med alt. 1 så det kommer jag inte kommentera. Däremot har du inte fått några förslag på hur du löser problemet med alt. 2. Detta tänker jag försöka förklara för dig och listan. Om någon har några andra åsikter, eller om jag missförstått något själv, så rätta mig gärna :-) Grundproblemet till att det inte fungerar med din externa adress inne ifrån ditt LAN är att du bara routar från $OUTSIDE. Om du väl hade routat från $INSIDE också så hade det ändå inte fungerat. Varför frågar du dig säkert. Svaret är lite komplicerat men jag skall försöka förklara. När du försöker surfa till tex http://wiki.ihse.net/ så kommer först en förfrågan till din DNS om vad wiki.ihse.net har för ipadress, svaret blir då 77.110.63.65 (din externa adress). Vidare kommer din webbläsare att försöka ansluta till just 77.110.63.65, eftersom du DNAT:at, Destination Network Address Translation, in denna till vesta kommer vesta i sin tur få en förfrågan på port 80 med avsändare satt till den dator du surfade ifrån och svaret på förfrågan skickas dit. Så långt har allt gått rätt till, men när svaret når den dator du surfar ifrån kommer denna att slänga paketet som ogiltigt då den inte räknade med att svert skulle komma från 192.168.0.2 (vesta) utan från 77.110.63.65 (routern). Lösningen till det här är att köra något som heter SNAT, Source Network Address Translation, på routern som gör i princip samma sak som DNAT, fast motsatt. Det DNAT åstadkommer är att den översätter vilken ip som förfrågan egentligen skall till, i ditt fall 192.168.0.2. SNAT berör istället varifrån förfrågan kom. Om du skulle köra det på din router skulle det innebära att även om du surfade från, låt säga 192.168.0.123 så skulle vesta (måldatorn) inte se detta utan istället din routers ipadress. Nedanstående skiss är en princip skiss över hur paketen går i ditt LAN. Utan SNAT: webbklient - router - vesta - webbklient Med SNAT: webbklient - router - vesta - router - webbklient Hoppas detta gjorde dig/er klokare. Mvh, Torbjörn Svensson Quoting Magnus Ihse Bursie [EMAIL PROTECTED]: Jag blir inte klok på hur jag ska göra för att få till det här. Någon som kan hjälpa till? /Magnus This message was sent using IMP, the Internet Messaging Program. pgpSvsggCXBUL.pgp Description: PGP Digital Signature
RES: Quota group não funciona
Encontrei uma solução para o problema de quota para grupo que não funcionava em estações com Windows XP acessando compartilhamentos do Samba. Estava usando como owner da pasta o root e no samba estava utilizando force user = root. Alterei o owner para outrouser e no samba mudei force user = outrouser. Funcionou perfeitamente. Atenciosamente, Rogério Naressi. -Mensagem original- De: Rogério Oliveira Naressi [mailto:[EMAIL PROTECTED] Enviada em: quinta-feira, 31 de julho de 2008 15:23 Para: 'Lista Debian' Assunto: Quota group não funciona Lista, Estou há tempos com um problema de quota para grupos, já pesquisei muito e não encontro a solução. Será que ninguém teria uma idéia para o problema abaixo? Configurei quota para grupo em um servidor Debian Etch com Samba, acessando via Shell a quota funciona perfeitamente. Quando acesso por uma estação Windows XP um compartilhamento a quota para grupo não funciona. Mas se acesso o mesmo compartilhamento por uma estação Windows Vista a quota para grupo funciona perfeitamente. O engraçado que tinha a mesma configuração em um Debian Sarge e funcionava tudo perfeitamente. Arquivos de configurações: FSTAB: /dev/sdb1 /other ext3grpquota0 2 SMB.CONF, compartilhamento other: [other] comment = Informatica path = /other valid users = @other admin users = admin write list = @other force user = root force group = other create mask = 0770 force create mode = 0770 security mask = 0770 force security mode = 0770 directory mask = 0770 force directory mode = 0770 directory security mask = 0770 force directory security mode = 0770 browseable = No Alguma sugestão? Já pesquisei muito e não consegui resolver. Obrigado, Rogério Naressi -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED] -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Iceweasel 3.x dando falha de segmentação
Pessoal, ando tenho alguns problemas frequentes com o iceweasel 3 e alguns sites que funcionam normal com o iceweasel 2. Vejam: [EMAIL PROTECTED] ~]$ iceweasel http://www.americanas.com.br/ ColorfulTabs Log: clrtabsInit ColorfulTabs Log: setCtPref name: ColorfulTabs version: 3.2 ColorfulTabs Log: ColorfulTabs Log: scheme value: random ColorfulTabs Log: initTabcontext true appending*** e = [Exception... Component returned failure code : 0x80570016 (NS_ERROR_XPC_GS_RETURNED_FAILURE) [nsIJSCID.getService] nsresul t: 0x80570016 (NS_ERROR_XPC_GS_RETURNED_FAILURE) location: JS frame :: chro me://browser/content/utilityOverlay.js :: getShellService :: line 307 data: n o] ** Message: GetValue variable 1 (1) ** Message: GetValue variable 2 (2) ** Message: GetValue variable 1 (1) ** Message: GetValue variable 2 (2) ** Message: GetValue variable 1 (1) ** Message: GetValue variable 2 (2) ** Message: GetValue variable 1 (1) ** Message: GetValue variable 2 (2) ** Message: GetValue variable 1 (1) ** Message: GetValue variable 2 (2) ** Message: GetValue variable 1 (1) ** Message: GetValue variable 2 (2) ** Message: GetValue variable 1 (1) ** Message: GetValue variable 2 (2) ** Message: GetValue variable 1 (1) ** Message: GetValue variable 2 (2) ** Message: GetValue variable 1 (1) ** Message: GetValue variable 2 (2) ** Message: GetValue variable 1 (1) ** Message: GetValue variable 2 (2) Falha de segmentação Qual deve ser o problema? [EMAIL PROTECTED] ~]$ dpkg -l | grep iceweasel ii iceweasel 3.0.1-1 ii iceweasel-l10n-pt-br 1:3.0.1+debian-1 Valeu Inte Ronaldo -- Without adventure, civilization is in full decay. -- Alfred North Whitehead -- Prof. Ronaldo Reis Júnior | .''`. UNIMONTES/Depto. Biologia Geral/Lab. de Biologia Computacional | : :' : Campus Universitário Prof. Darcy Ribeiro, Vila Mauricéia | `. `'` CP: 126, CEP: 39401-089, Montes Claros - MG - Brasil | `- Fone: (38) 3229-8187 | [EMAIL PROTECTED] | [EMAIL PROTECTED] | http://www.ppgcb.unimontes.br/lbc | ICQ#: 5692561 | LinuxUser#: 205366 -- Favor NÃO ENVIAR arquivos do Word ou Powerpoint Prefira enviar em PDF, Texto, OpenOffice (ODF), HTML, or RTF. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: dispositivo USB
Bom dia, Tento usar o #udevmonitor abs Bruno Sampayo ..:: Andi || Gaucho ::.. escreveu: Bruno Faiçal, _/Mas o meu problema é que, quando coloco o pen na porta USB, ele não me diz em qual arquivo de bloco (sda, hda, sdb, hdb, ... ) ele foi atribuído, nem mesmo com o dmesg... /_cara, digita na console: # fdisk -l ai ele vai te dizer onde foi atribuido... obs: geralmente eh sempre atribuido ao primeiro por exempplo tu colocou um pendrive, ele vai reconhecer em, /dev/sdb1 agora teu disco eh IDE e tu colocou um CD: /dev/hda1 #primeira particao /dev/hda2 #segunda particao /dev/hda3 #terceira particao e é provavel que o CDROM seja atribuido a esse device eh claro que estou considerando que tu tem um disco IDE e tenha 2 particoes no disco uma pro / e outra pra swap... falouuu!!! 2008/8/2 Paulino Kenji Sato [EMAIL PROTECTED] mailto:[EMAIL PROTECTED] 2008/8/2 Bruno Faiçal [EMAIL PROTECTED] mailto:[EMAIL PROTECTED]: Pessoal, me desculpem, acho que não fui muito claro. A minha controladora e as portas USB estão perfeitas... Sei como são reconhecidas. Mas o meu problema é que, quando coloco o pen na porta USB, ele não me diz em qual arquivo de bloco (sda, hda, sdb, hdb, ... ) ele foi atribuído, nem mesmo com o dmesg... Gostaria de saber se alguém possui alguma dica de como acessa-lo de outra forma. De nos mais informações, como: Saída do programa lsusb, com o pendrive conectado. Ultimas linhas (a partir do ponto que sinaliza a detecção de algo no USB) do dmesg depois de conectar o pendrive, espere pelo menos um minuto. Marca, modelo e capacidade do pendrive. Versão do kernel, e se e original do debian ou uma versão compilador por você. Lista dos modulos carregados (lsmod). Qualquer outra informação que achar relevante. -- Paulino Kenji Sato http://www.nobel.com.br -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] mailto:[EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED] mailto:[EMAIL PROTECTED] -- []'s ..:: Andi || Gaúcho ::.. -- Bruno Sampayo [EMAIL PROTECTED] Tel.: +55(011) 50973005 Engenharia Samurai Projetos Especiais -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: Problemas com letras maiusculas...
Bruno, O Console-data eu ja testei e não resolveu, vou testar o kbd e volto para contar o resultado Abraços Fábiocs 2008/8/2 Bruno Schneider [EMAIL PROTECTED] 2008/7/30 Rafael Teixeira Duarte escreveu: Só pra registrar, tenho o mesmo problema, acho que é um problema geral, já procurei bastante coisa, e testei em várias (no mínimo umas 4 ou 5) maquinas diferentes. Até o momento sem solução. Eu também encontrei esse problema em duas máquinas com Debain testing (Lenny) atualizado. Ambas têm teclado ABNT2 tipo PS/2. O keymap usado parece correto. Esse parece ser um bug conhecido: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=417850 mas que os DDs estão com dificuldade de reproduzir. Tem uma parte na discussão do #417850 que chama a atenção: O Christian Perrier pergunta Do you use kbd or console-tools ? e o Carlos Laviola diz que depois de instalar o kbd o problema sumiu. Pelo que eu entendi, o pacote kbd vai substituir o pacote console-tools e com ele o problema não existe. Não estou com tempo para ficar mexendo muito nisso agora, mas quem puder, teste e coloque os resultados na lista. -- Bruno Schneider http://www.dcc.ufla.br/~bruno/ http://www.dcc.ufla.br/%7Ebruno/ -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Processador para Virtualização.
Gente, estou querendo adquirir uma nova máquina, mas gostaria de experimentar alguma que já tenha recursos embutidos para virtualização, o chamado VT. Qualquer processador Dual Core2 ou Quad já possui essa opção ou terei de adquirir alguma outra em particular. Estou optando por Core 2 Quad Q6600 por achar que já está apta para ser usada em virtualização. Estou certo ? -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: Iceweasel 3.x dando fal ha de segmentação
Olá Ronaldo, On Mon, Aug 04, 2008 at 09:26:54AM -0300, Ronaldo Reis Junior wrote: ... ando tenho alguns problemas frequentes com o iceweasel 3 e alguns sites que funcionam normal com o iceweasel 2. Vejam: [EMAIL PROTECTED] ~]$ iceweasel http://www.americanas.com.br/ ColorfulTabs Log: clrtabsInit ColorfulTabs Log: setCtPref name: ColorfulTabs version: 3.2 ColorfulTabs Log: ColorfulTabs Log: scheme value: random ColorfulTabs Log: initTabcontext true appending*** e = [Exception... Component returned failure code : 0x80570016 (NS_ERROR_XPC_GS_RETURNED_FAILURE) [nsIJSCID.getService] nsresul t: 0x80570016 (NS_ERROR_XPC_GS_RETURNED_FAILURE) location: JS frame :: chro me://browser/content/utilityOverlay.js :: getShellService :: line 307 data: n o] ... Falha de segmentação ... [EMAIL PROTECTED] ~]$ dpkg -l | grep iceweasel ii iceweasel 3.0.1-1 ii iceweasel-l10n-pt-br 1:3.0.1+debian-1 A versão que utilizo também é essa ai, porém não tenho nenhum problema quanto a utilização. Por acaso, os problemas que você está tendo não estão relacionados às extensões do Firefox que você está utilizando ? Faça um teste: # para não utilizar seu perfil atual do Firefox (extensões, # preferências, etc.) mv .mozilla{,.old} # testando iceweasel http://www.americanas.com.br/ Também pode ser problema com o plugin do flash-player. Desabilite-o e faça um teste. []s -- _(~)_ )( [[ n1ghtcr4wler ]] (@_@) xmpp:[EMAIL PROTECTED] signature.asc Description: Digital signature
Redirecionar destino para nao passar pelo firewall
Galera como faço para redirecionar um destino para que ele nao passe pelo proxy. Tentei com mascareda e return e nao consegui sucesso. iptables -v -t nat -A PREROUTING -i $IF_LAN -p TCP -s $LAN_ADDR -d 10.1.254.254 --dport 80 -j RETURN iptables -v -t nat -A PREROUTING -p tcp -s $LAN_ADDR -d $GRRF_ADDR --dport 80 -j MASQUERADE Aguardo ajuda gUSTAVO
RE: Redirecionar destino para nao passar pelo firewall
Eu acho mais facil fazer assim: -A POSTROUTING -p tcp -m tcp -d 10.1.254.254 -o eth0 -j SNAT --to-source (ip valido) * eth0 tem que ser sua interface de rede que esta conectada diretamente com a internet Acho que é isso que vc esta querendo fazer. Date: Mon, 4 Aug 2008 12:09:54 -0300 From: [EMAIL PROTECTED] To: debian-user-portuguese@lists.debian.org Subject: Redirecionar destino para nao passar pelo firewall Galera como faço para redirecionar um destino para que ele nao passe pelo proxy. Tentei com mascareda e return e nao consegui sucesso. iptables -v -t nat -A PREROUTING -i $IF_LAN (eth1) -p TCP -s $LAN_ADDR -d 10.1.254.254 --dport 80 -j RETURN iptables -v -t nat -A PREROUTING -p tcp -s $LAN_ADDR -d $GRRF_ADDR --dport 80 -j MASQUERADE Aguardo ajuda gUSTAVO _ Confira vídeos com notícias do NY Times, gols direto do Lance, videocassetadas e muito mais no MSN Video! http://video.msn.com/?mkt=pt-br
Re: Redirecionar destino para nao passar pelo firewall
Title: Manfra Cia. Ltda. Depende da ordem que o Masquerade est colocado, que deve ser antes do redirect, se voc est usando proxy transparente. Acho que o masquerade o que voc quer mesmo. gunix escreveu em 04/08/2008 12:09: Galera como fao para redirecionar um destino para que ele nao passe pelo proxy. Tentei com mascareda e return e nao consegui sucesso. iptables -v -t nat -A PREROUTING -i $IF_LAN -p TCP -s $LAN_ADDR -d 10.1.254.254 --dport 80 -j RETURN iptables -v -t nat -A PREROUTING -p tcp -s $LAN_ADDR -d $GRRF_ADDR --dport 80 -j MASQUERADE Aguardo ajuda gUSTAVO -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Redirecionar destino para nao passar pelo firewall
Eu nao uso proxy tranparente. Uso proxy autenticado... Porem este software GRRF nao tem onde preencher as informacoes do proxy. O que quero e que este destino nao passe no proxy para nao ter erro. Att Gustavo 2008/8/4 Paulo [EMAIL PROTECTED] Depende da ordem que o Masquerade está colocado, que deve ser antes do redirect, se você está usando proxy transparente. Acho que o masquerade é o que você quer mesmo. gunix escreveu em 04/08/2008 12:09: Galera como faço para redirecionar um destino para que ele nao passe pelo proxy. Tentei com mascareda e return e nao consegui sucesso. iptables -v -t nat -A PREROUTING -i $IF_LAN -p TCP -s $LAN_ADDR -d 10.1.254.254 --dport 80 -j RETURN iptables -v -t nat -A PREROUTING -p tcp -s $LAN_ADDR -d $GRRF_ADDR --dport 80 -j MASQUERADE Aguardo ajuda gUSTAVO
rede win samba
Estou usando o debian testing e ao acessar uma rede win pelo nautilus e ao tentar abrir uma pasta da a seguinte mensagem abaixo e fico sem acessar a pasta. O conteúdo da pasta não pôde ser exibido Desculpe, não foi possível exibir todo o conteúdo de USUARIOS.` Alguem sabe o que pode ser isso pois e só com o debian - no fedora, arch e outros não acontece Fernando Novos endereços, o Yahoo! que você conhece. Crie um email novo com a sua cara @ymail.com ou @rocketmail.com. http://br.new.mail.yahoo.com/addresses
Re: Redirecionar destino para nao passar pelo firewall
On Mon, Aug 4, 2008 at 1:42 PM, gunix [EMAIL PROTECTED] wrote: Eu nao uso proxy tranparente. Uso proxy autenticado... Porem este software GRRF nao tem onde preencher as informacoes do proxy. Provavelmente você tenha alguma regra no seu firewall para redirecionar os computadores que não tenham o proxy configurado para o servidor proxy, antes dessa regra você deve criar outra regra que libera o acesso para o destino desta aplicação.
Re: Redirecionar destino para nao passar pelo firewall
Exataento isso que to fazendo Porem os usuários usam proxy com atenticacao. Gostaria que apensas este endereco nao passe pelo proxu ou libera este endereco no proxy. att Gustavo 2008/8/4 Anderson Silva [EMAIL PROTECTED] On Mon, Aug 4, 2008 at 1:42 PM, gunix [EMAIL PROTECTED] wrote: Eu nao uso proxy tranparente. Uso proxy autenticado... Porem este software GRRF nao tem onde preencher as informacoes do proxy. Provavelmente você tenha alguma regra no seu firewall para redirecionar os computadores que não tenham o proxy configurado para o servidor proxy, antes dessa regra você deve criar outra regra que libera o acesso para o destino desta aplicação.
Script para o K3b
Caros Amigos... Sei que a lista é para solução de dúvidas pertinentes ao Debian mas se alguém souber como se faz e puder ajudar Preciso criar na área de trabalho (uso o KDE) um atalho para fazer backup diário de uns arquivos. Os arquivos estão no caminho: home/proteu/a/AUX* - no caso são todos os arquivos que começam com AUX. Alguém sabe qual a linha de comando que usando o K3b eu conseguiria ja executar o k3b com este projeto todo pronto, automatico, sendo nescessário só a confirmação da gravação! Agradeço, Fábiocs
Re: Script para o K3b
Talvez isso aqui te ajude: http://www.dotlinux.net/modules.php?name=Sectionsop=Viewid=136 2008/8/4 Fábio de Sousa [EMAIL PROTECTED] Caros Amigos... Sei que a lista é para solução de dúvidas pertinentes ao Debian mas se alguém souber como se faz e puder ajudar Preciso criar na área de trabalho (uso o KDE) um atalho para fazer backup diário de uns arquivos. Os arquivos estão no caminho: home/proteu/a/AUX* - no caso são todos os arquivos que começam com AUX. Alguém sabe qual a linha de comando que usando o K3b eu conseguiria ja executar o k3b com este projeto todo pronto, automatico, sendo nescessário só a confirmação da gravação! Agradeço, Fábiocs -- Wagner Santos 81 9127 9823 / 81 8781 9823 wagnerpaxs @NOSPAM gmail.com wagner @NOSPAM dotlinux.net ICQ: 83709017 | Jabber: [EMAIL PROTECTED] Linux User #408917 DotLinux.Net - http://www.dotlinux.net/ Debian-PE - http://pe.debianbrasil.org/
Re: Script para o K3b
Fábio de Sousa escreveu: Preciso criar na área de trabalho (uso o KDE) um atalho para fazer backup diário de uns arquivos. Os arquivos estão no caminho: home/proteu/a/AUX* - no caso são todos os arquivos que começam com AUX. Alguém sabe qual a linha de comando que usando o K3b eu conseguiria ja executar o k3b com este projeto todo pronto, automatico, sendo nescessário só a confirmação da gravação! Será que não seria melhor utilizar o genisoimage (antigo mkisofs) e o cdrecord? http://www.guiadohardware.net/tutoriais/backup/ Att, Renato -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: Script para o K3b
Melhor é usar o mkisofs pra fazer o iso a partir da pasta e o cdrecord pra gravar o iso. Basicamente: sudo mkisofs -pad -v -R -J -V Titulo do cd -o nomedaiso.iso /pasta/de/origem depois sudo cdrecord dev='/dev/scd0' -v speed=8 -fs=16 -eject -data nomedaiso.iso Para mais informações: http://under-linux.org/wiki/index.php/Tutoriais/Aplicativos/CdRecord Dae vc monta um script que mude o nome e titulo do cd pela data atual. Tem mais detalhes pro seu script tudo o que vc quer. Mas o pessoal ajuda ae. Luciana Fábio de Sousa escreveu: Caros Amigos... Sei que a lista é para solução de dúvidas pertinentes ao Debian mas se alguém souber como se faz e puder ajudar Preciso criar na área de trabalho (uso o KDE) um atalho para fazer backup diário de uns arquivos. Os arquivos estão no caminho: home/proteu/a/AUX* - no caso são todos os arquivos que começam com AUX. Alguém sabe qual a linha de comando que usando o K3b eu conseguiria ja executar o k3b com este projeto todo pronto, automatico, sendo nescessário só a confirmação da gravação! Agradeço, Fábiocs -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Liberando MSN proxy autenticado.
Tinha uma regra no squid que era assim. acl ldapNetMSN external ldap_group NetMSN acl msnLIB url_regex -i gateway.dll Em baixo liberava assim http_access deny msnLIB !ldapNetMSN sendo que a regra era a primeira do squid ou seja, sem blqueios anteriores. Porem nao estou consegundo autenticar no msn com proxy autenticado. Alguem sabe me dizer o que posso testar? Att Gustavo
Drag n drop iceweasel X openoffice
Pessoal, o drag n drop de imagens do iceweasel 3.0 para o openoffice funciona em linux ouo só em windows? Quando eu tento ele copia o endereço da imagem e não a imagem em si. Inte Ronaldo -- Maybe Computer Science should be in the College of Theology. -- R. S. Barton -- Prof. Ronaldo Reis Júnior | .''`. UNIMONTES/Depto. Biologia Geral/Lab. de Biologia Computacional | : :' : Campus Universitário Prof. Darcy Ribeiro, Vila Mauricéia | `. `'` CP: 126, CEP: 39401-089, Montes Claros - MG - Brasil | `- Fone: (38) 3229-8187 | [EMAIL PROTECTED] | [EMAIL PROTECTED] | http://www.ppgcb.unimontes.br/lbc | ICQ#: 5692561 | LinuxUser#: 205366 -- Favor NÃO ENVIAR arquivos do Word ou Powerpoint Prefira enviar em PDF, Texto, OpenOffice (ODF), HTML, or RTF. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Debian Day Brasil 2008, RS, Porto Alegre, 16 agosto
Os usuários do Projeto Debian avançam para comemorar o 15º aniversário pelo mundo todo no dia 16 de agosto. [0] E você é nosso convidado para participar do Debian Day 2008 , RS, Porto Alegre. [1] Será um dia inteiro com palestras, painéis de debate, lan party com jogos para GNU / Linux, demonstrações de programas, demonstrações de instalações, confraternização, trocas de conhecimentos e dicas. Confira a programação na página do evento. [2] Há outras cidades pelo Brasil organizando seus eventos locais. [3] Palestras e painéis do evento serão transmitidos on-line pela TV Software Livre e arquivos torrent serão disponibilizados no futuro. [4] Outros grupos locais de usuários Debian interessados em transmitirem seus eventos devem consultar a página do evento para saberem como. A interação com outros usuários e a oportunidade de trocar idéias diretamente são importantes e ainda não são substituídas pela transmissão via internet. A oficina de instalação avançada e a lan party não serão transmitidas. Venha participar. Divulgue. Veja como se inscrever na página do evento. [2] [0] http://wiki.debian.org/DebianDay2008 [1] http://www.debian-rs.org [2] http://wiki.debian.org/pt_BR/DebianDayBrasil2008RsPortoAlegre [3] http://wiki.debian.org/DebianDayBrasil2008 [4] http://tv.softwarelivre.org/ -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
VMWARE - Duas placa de rede
Boa noite, Preciso instalar um firewall em cima de uma máuqina virtual com duas placas de rede. Ao instalar o Debian no Host, vejo as duas placas, ao configurar o VMWARE, pergunta qual placa de rede usar para os guests, informei a eth0. Ao instalar o firewall, reconheceu apenas uma placa, a que informoei anteriormente. Porque não consigo visualizar a outra placa? Agradeço desde já, Ricardo Novos endereços, o Yahoo! que você conhece. Crie um email novo com a sua cara @ymail.com ou @rocketmail.com. http://br.new.mail.yahoo.com/addresses
Debian on ARTiGO?
I am considering purchasing an ARTiGO Pico-ITX builder kit to run Etch for a small office mail/webserver. The VIA website suggests that the hardware is not fully supported by the standard Linux kernel. Has anyone had experience with Etch on this machine? Will it run with the standard kernel, will require a backported kernel or will patching be required? -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: Making an image of my HDD
On 2008-08-01 22:09, Shachar Or wrote: On Friday 01 August 2008 10:15, Johannes Wiedersich wrote: rsync -ax / [EMAIL PROTECTED]:/backup/dir/ Does the -x option mean that it will not read mounts like /dev, /proc and such? Please, read man rsync: [snip] -x, --one-file-system This tells rsync to avoid crossing a filesystem boundary when recursing. This does not limit the user’s ability to specify items to copy from multiple filesystems, just rsync’s recursion through the hierarchy of each directory that the user specified, and also the analogous recursion on the receiving side during deletion. Also keep in mind that rsync treats a “bind” mount to the same device as being on the same filesystem. If this option is repeated, rsync omits all mount-point directories from the copy. Otherwise, it includes an empty directory at each mount-point it encounters (using the attributes of the mounted directory because those of the underlying mount-point directory are inaccessible). If rsync has been told to collapse symlinks (via --copy-links or --copy-unsafe-links), a symlink to a directory on another device is treated like a mount-point. Symlinks to non-directories are unaffected by this option. Johannes signature.asc Description: OpenPGP digital signature
Request to check for /dev/.static/dev in /etc/blkid.tab
Hi all, Apparently udev 0.125-3 is going to be in Lenny (it's not yet in Lenny, but apparently the release-team will be giving an exemption to let it in despite the freeze). One of the changes in udev 0.125-3 is that /dev/.static/dev is going to be going away. (Rightly so, it's a hack). However, this interacts poorly with a bug in the blkid library which will fail to get rid of stale /dev/.static/dev entries in /etc/blkid.tab. (See Bug#493216) The fix is fairly simple, but I'm trying to get a sense of how many Debian users have this problem and will get bitten when they upgrade to Lenny. So, if folks could type the following command into a terminal window: grep /dev/.static /etc/blkid.tab, and if you see any output, could you drop me a quick e-mail with the results of the grep command? If you do find any output, I'd appreciate knowing when/how your system was installed, and if you may have ever explicitly typed a command such as blkid /dev/.static/dev/sda1. I can't see a situation where a /dev/.static/dev entry would get into the blkid.tab file, except by explicit user action, but the submitter of bug #493216 claims he's never done this. The workaround to this problem is fairly simple: rm /etc/blkid.tab or blkid -g as root will do it; but if it turns out there are large numbers of users suffering from this problem, I'd like to so I can petition the release-team for my own freeze window exception to get in a very simple patch to fix this bug before Lenny ships. Thanks, regards, - Ted -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: serial port no longer working after refresh
On Sat, Aug 02, 2008 at 09:42:54PM +0200, Helmut Neumeier wrote: today i have refresh my debian etch system and now the serial port is no longer working i get no data from the port, maybe the problem is comming from the libc6 because this one was also updated. when i boot with knoppix everything is working the hardware is ok. kernel 2.6.18-6-686 libc6 2.3.6.dsl-13etch7 cat /proc/tty/driver/serial serinfo:1.0 driver revision: 0: uart:16550A port:03F8 irq:4 tx:0 rx:0 1: uart:unknown port:02F8 irq:3 2: uart:unknown port:03E8 irq:4 3: uart:unknown port:02E8 irq:3 dmesg|grep 8250 Serial: 8250/16550 driver $Revision: 1.90 $ 4 ports, IRQ sharing enabled serial8250: ttyS0 at I/O 0x3f8 (irq = 4) is a 16550A PC= Toshiba T9000 What is no longer working? Your external modem? What error messages are you seeing? -- Chris. == One, with God, is always a majority, but many a martyr has been burned at the stake while the votes were being counted. -- Thomas B. Reed -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: dhclient booting
Hi, I'm using Debian Sid too, and I have the same problem but for me it is on wlan0 interface and I don't have any problem with eth0. The problem appears on several wireless access points with or without encryption, strangely, on some access points it works better than on others (another machine had no problem with those AP). I had the problem on different kernel version. The machine is a Dell inspiron 1501, and others who are using the same model don't encounter that problem but they all use Ubuntu (www.ubuntu1501.com). I didn't go further in testing. Hope this can help in some way, I will do some other tests. Regards -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: Making an image of my HDD
On Monday 04 August 2008 11:09, Johannes Wiedersich wrote: On 2008-08-01 22:09, Shachar Or wrote: On Friday 01 August 2008 10:15, Johannes Wiedersich wrote: rsync -ax / [EMAIL PROTECTED]:/backup/dir/ Does the -x option mean that it will not read mounts like /dev, /proc and such? Please, read man rsync: Of course I read it... [snip] -x, --one-file-system This tells rsync to avoid crossing a filesystem boundary when recursing. This does not limit the user’s ability to specify items to copy from multiple filesystems, just rsync’s recursion through the hierarchy of each directory that the user specified, and also the analogous recursion on the receiving side during deletion. Also keep in mind that rsync treats a “bind” mount to the same device as being on the same filesystem. If this option is repeated, rsync omits all mount-point directories from the copy. Otherwise, it includes an empty directory at each mount-point it encounters (using the attributes of the mounted directory because those of the underlying mount-point directory are inaccessible). If rsync has been told to collapse symlinks (via --copy-links or --copy-unsafe-links), a symlink to a directory on another device is treated like a mount-point. Symlinks to non-directories are unaffected by this option. Johannes -- Shachar Or | שחר אור http://ox.freeallweb.org/ -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Nagios 3 Problem
Dear All, I have installed, but i have a problem. Nagios does not start. error is below, proxy:/etc/nagios3/conf.d# nagios3 -v ../nagios.cfg Nagios 3.0.3 Copyright (c) 1999-2008 Ethan Galstad (http://www.nagios.org) Last Modified: 06-25-2008 License: GPL Reading configuration data... Warning: Duplicate definition found for host 'murat' (config file '/etc/nagios3/conf.d/switch.cfg', starting on line 24) Error: Could not add object property in file '/etc/nagios3/conf.d/switch.cfg' on line 26. *** One or more problems was encountered while processing the config files... Check your configuration file(s) to ensure that they contain valid directives and data defintions. If you are upgrading from a previous version of Nagios, you should be aware that some variables/definitions may have been removed or modified in this version. Make sure to read the HTML documentation regarding the config files, as well as the 'Whats New' section to find out what has changed. switch.cfg file define host{ use generic-switch ; Inherit default values from a template host_name murat ; The name we're giving to this switch alias Allied Telesis Switch ; A longer name associated with the switch address 192.168.5.2 ; IP address of the switch hostgroups switches; Host groups this switch is associated with } define hostgroup{ hostgroup_name switches; The name of the hostgroup alias Network Switches; Long name of the group } thanks, regards. -- #!/bin/bash Murat Ugur EMINOGLU www.fedoraturkiye.com www.murat.ws liste[at]fedoraturkiye.com -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re:how to make a boot disk and ...
...Which important directories to tar/gzip. Want to make a custom system image on dvd for me. Thanks _ Sent from my phone using flurry - Get free mobile email and news at: http://www.flurry.com -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: chkrootkit infected ports 2881
Adam Hardy on 03/08/08 14:13, wrote: My webserver system is actually a UML slice of a system at memset.co.uk and all it does is run Apache Tomcat and sshd and the stuff from memset - I thought it was pretty safe until I came back today and found my nightly email report from chkrootkit said: The following suspicious files and directories were found: /lib/init/rw/.ramfs INFECTED (PORTS: 2881) The .ramfs started appearing when I upgraded chkrootkit, so I never worried about it, but Friday night's INFECTED alert was a slap in the face with a wet fish. Saturday night's report went back to normal - no mention of the port. I scanned it from grc.com/x/portprobe and it came back as closed. The only mention I can find in the logs is: [EMAIL PROTECTED]:~# grep 2881 /var/log/* /var/log/setuid.today: 2881 660 1 root disk 0 Wed Apr 30 11:32:37 2008 /dev/rd/c1d30 r and that's a PID, not a port, right? So how bad does this look? Should I clean the system? If it is rooted, how can I tell what the security flaw was? My password at that point (since changed) was CE0dff2*£ so if it was a brute force attack, then wow, they did well. I talked to the support at the hosting company and they looked at the system and said they couldn't see anything wrong with it - but they can re-image it for me which normally costs a fee. Is it worth re-imaging my system and re-installing everything? I still have no idea what chkrootkit means when it says a port is infected. Adam -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: chkrootkit infected ports 2881
Le lundi 4 août 2008, Adam Hardy a écrit : Adam Hardy on 03/08/08 14:13, wrote: My webserver system is actually a UML slice of a system at memset.co.uk and all it does is run Apache Tomcat and sshd and the stuff from memset - I thought it was pretty safe until I came back today and found my nightly email report from chkrootkit said: The following suspicious files and directories were found: /lib/init/rw/.ramfs INFECTED (PORTS: 2881) The .ramfs started appearing when I upgraded chkrootkit, so I never worried about it, but Friday night's INFECTED alert was a slap in the face with a wet fish. Saturday night's report went back to normal - no mention of the port. I scanned it from grc.com/x/portprobe and it came back as closed. The only mention I can find in the logs is: [EMAIL PROTECTED]:~# grep 2881 /var/log/* /var/log/setuid.today: 2881 660 1 root disk 0 Wed Apr 30 11:32:37 2008 /dev/rd/c1d30 r and that's a PID, not a port, right? So how bad does this look? Should I clean the system? If it is rooted, how can I tell what the security flaw was? My password at that point (since changed) was CE0dff2*£ so if it was a brute force attack, then wow, they did well. I talked to the support at the hosting company and they looked at the system and said they couldn't see anything wrong with it - but they can re-image it for me which normally costs a fee. Is it worth re-imaging my system and re-installing everything? I still have no idea what chkrootkit means when it says a port is infected. Adam I don't think it's that important. chkrootkit seems a little hazardous since there was a bug about chkrootkit killing a random process (in fact one of its test was sending a signal to process 12345, this bug has been corrected). I think a good anti-rootkit should be launched from another system to be sure it's not deactivated by a smart rootkit. Regards, Thomas Preud'homme -- Why Debian : http://www.debian.org/intro/why_debian signature.asc Description: This is a digitally signed message part.
Re: SOLVED: DMA is turned off on my HDD
Florian Kulzer wrote: On Tue, Jul 29, 2008 at 21:57:56 +0300, Anton Liaukevich wrote: I have read some docs in the inet. I have understood what is initrd, how to use initramfs-tools debian package (in particular, update-initramfs command and /etc/initramfs-tools/modules file). I have being intended to add blacklist ide-generic string to /etc/initramfs-tools/modules file to run initramfs-tools -k $(uname -r) -u command but when I opened this file I was shocked. That is I have seen: # Added by Debian Installer ide-generic I decided simply delete this string from modules file (and update initrd then). And it has solved the problem! I am glad to hear that you have DMA working now. Nevertheless, I don't understand why Debian Installer add this ill-started module to /etc/initramfs-tools/modules file. Seems the bug to be Debian-specific. If the information on the Debian driver check page is correct, i.e. if you really need kernel 2.6.25 for the amd74xx module to work with your controller, then it may be reasonable to add ide_generic to /etc/modules to reduce the risk of the system not booting at all. (The installer has kernel 2.6.24.) However that may be, please send an installation report to the Debian installer team, describing your problems. Now I'm intended to update initrd for all my kernels ;). Watch out, the 2.6.24 kernel might need ide_generic to use the controller at all. I have ventured to update initrd for all my kernels and the result is good! But I have one more question. There is list of my kernels: leva:/home/anthony# awk '{if ($1==kernel $NF!=single) print $2}' /boot/grub/menu.lst /boot/vmlinuz-2.6.25-2-686 /boot/vmlinuz-2.6.24-1-686 /boot/vmlinuz-2.6.24-1-486 468-kernel is needed for me in case I will change my cpu to 686-incompatible :) or I will transport my hdd to old computer and boot Debian from it. But can I boot at least one of my kernels if I simply change my motherboard to one with non-nVidia chipset (that don't use amd74xx module) (after updating initrd for all kernels)? ide-generic module seem to be not-loaded: [EMAIL PROTECTED]:~$ lsmod | grep 'ide' video 19728 0 output 3712 1 video ide_cd_mod 32864 0 cdrom 31872 1 ide_cd_mod ide_disk 13952 8 ide_pci_generic 4228 0 [permanent] ide_core 100312 4 ide_cd_mod,ide_disk,ide_pci_generic,amd74xx But it is included in initrd: [EMAIL PROTECTED]:~$ zcat /boot/initrd.img-$(uname -r) | cpio --quiet -t | grep -E '(ide|ata|amd)[^/]*\.ko' lib/modules/2.6.25-2-686/kernel/drivers/ata/sata_sil.ko lib/modules/2.6.25-2-686/kernel/drivers/ata/sata_sis.ko lib/modules/2.6.25-2-686/kernel/drivers/ata/sata_sx4.ko lib/modules/2.6.25-2-686/kernel/drivers/ata/sata_svw.ko lib/modules/2.6.25-2-686/kernel/drivers/ata/sata_uli.ko lib/modules/2.6.25-2-686/kernel/drivers/ata/sata_via.ko lib/modules/2.6.25-2-686/kernel/drivers/ata/sata_vsc.ko lib/modules/2.6.25-2-686/kernel/drivers/ata/pata_artop.ko lib/modules/2.6.25-2-686/kernel/drivers/ata/sata_mv.ko lib/modules/2.6.25-2-686/kernel/drivers/ata/sata_nv.ko lib/modules/2.6.25-2-686/kernel/drivers/ata/sata_sil24.ko lib/modules/2.6.25-2-686/kernel/drivers/ata/ata_generic.ko lib/modules/2.6.25-2-686/kernel/drivers/ata/sata_promise.ko lib/modules/2.6.25-2-686/kernel/drivers/ata/pata_sis.ko lib/modules/2.6.25-2-686/kernel/drivers/ata/sata_qstor.ko lib/modules/2.6.25-2-686/kernel/drivers/ata/pata_marvell.ko lib/modules/2.6.25-2-686/kernel/drivers/ata/ata_piix.ko lib/modules/2.6.25-2-686/kernel/drivers/ata/sata_inic162x.ko lib/modules/2.6.25-2-686/kernel/drivers/ata/libata.ko lib/modules/2.6.25-2-686/kernel/drivers/ide/pci/amd74xx.ko lib/modules/2.6.25-2-686/kernel/drivers/ide/pci/ide-pci-generic.ko lib/modules/2.6.25-2-686/kernel/drivers/ide/ide-core.ko lib/modules/2.6.25-2-686/kernel/drivers/ide/ide-pnp.ko lib/modules/2.6.25-2-686/kernel/drivers/ide/ide-disk.ko lib/modules/2.6.25-2-686/kernel/drivers/ide/ide-cd_mod.ko lib/modules/2.6.25-2-686/kernel/drivers/ide/ide-tape.ko lib/modules/2.6.25-2-686/kernel/drivers/ide/legacy/ide-cs.ko lib/modules/2.6.25-2-686/kernel/drivers/ide/ide-generic.ko lib/modules/2.6.25-2-686/kernel/drivers/ide/ide-floppy.ko lib/modules/2.6.25-2-686/kernel/drivers/scsi/eata.ko lib/modules/2.6.25-2-686/kernel/drivers/block/paride/paride.ko Similarly for other kernels: [EMAIL PROTECTED]:~$ zcat /boot/initrd.img-2.6.24-1-686 | cpio --quiet -t | grep 'ide-generic' lib/modules/2.6.24-1-686/kernel/drivers/ide/ide-generic.ko [EMAIL PROTECTED]:~$ zcat /boot/initrd.img-2.6.24-1-486 | cpio --quiet -t | grep 'ide-generic' lib/modules/2.6.24-1-486/kernel/drivers/ide/ide-generic.ko -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: chkrootkit infected ports 2881
Thomas Preud'homme on 04/08/08 11:48, wrote: Le lundi 4 août 2008, Adam Hardy a écrit : Adam Hardy on 03/08/08 14:13, wrote: My webserver system is actually a UML slice of a system at memset.co.uk and all it does is run Apache Tomcat and sshd and the stuff from memset - I thought it was pretty safe until I came back today and found my nightly email report from chkrootkit said: The following suspicious files and directories were found: /lib/init/rw/.ramfs INFECTED (PORTS: 2881) The .ramfs started appearing when I upgraded chkrootkit, so I never worried about it, but Friday night's INFECTED alert was a slap in the face with a wet fish. Saturday night's report went back to normal - no mention of the port. I scanned it from grc.com/x/portprobe and it came back as closed. The only mention I can find in the logs is: [EMAIL PROTECTED]:~# grep 2881 /var/log/* /var/log/setuid.today: 2881 660 1 root disk 0 Wed Apr 30 11:32:37 2008 /dev/rd/c1d30 r and that's a PID, not a port, right? So how bad does this look? Should I clean the system? If it is rooted, how can I tell what the security flaw was? My password at that point (since changed) was CE0dff2*£ so if it was a brute force attack, then wow, they did well. I talked to the support at the hosting company and they looked at the system and said they couldn't see anything wrong with it - but they can re-image it for me which normally costs a fee. Is it worth re-imaging my system and re-installing everything? I still have no idea what chkrootkit means when it says a port is infected. Adam I don't think it's that important. chkrootkit seems a little hazardous since there was a bug about chkrootkit killing a random process (in fact one of its test was sending a signal to process 12345, this bug has been corrected). I think a good anti-rootkit should be launched from another system to be sure it's not deactivated by a smart rootkit. Hopefully that is simpler than it sounds! What anti-rootkit are you thinking of? I use chkrootkit and rkhunter. Adam -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
wher the config for xorg
Hi, In previous release of xorg, debian etch for example , all options of xorg are saved on /etc/X11/xorg.conf,. now with lenny , I don't find in xorg.conf specifications for depth or resolution for example, Where are they stored ?. On ubuntu, the monitor caracteristics are stored (owned by user ) in /home/user/.gnome2/monitors.xml . If I want to change it for all users ??? thanks bela
Re: chkrootkit infected ports 2881
Monday 04 August 2008, Adam Hardy wrote : Thomas Preud'homme on 04/08/08 11:48, wrote: Le lundi 4 août 2008, Adam Hardy a écrit : Adam Hardy on 03/08/08 14:13, wrote: My webserver system is actually a UML slice of a system at memset.co.uk and all it does is run Apache Tomcat and sshd and the stuff from memset - I thought it was pretty safe until I came back today and found my nightly email report from chkrootkit said: The following suspicious files and directories were found: /lib/init/rw/.ramfs INFECTED (PORTS: 2881) The .ramfs started appearing when I upgraded chkrootkit, so I never worried about it, but Friday night's INFECTED alert was a slap in the face with a wet fish. Saturday night's report went back to normal - no mention of the port. I scanned it from grc.com/x/portprobe and it came back as closed. The only mention I can find in the logs is: [EMAIL PROTECTED]:~# grep 2881 /var/log/* /var/log/setuid.today: 2881 660 1 root disk 0 Wed Apr 30 11:32:37 2008 /dev/rd/c1d30 r and that's a PID, not a port, right? So how bad does this look? Should I clean the system? If it is rooted, how can I tell what the security flaw was? My password at that point (since changed) was CE0dff2*£ so if it was a brute force attack, then wow, they did well. I talked to the support at the hosting company and they looked at the system and said they couldn't see anything wrong with it - but they can re-image it for me which normally costs a fee. Is it worth re-imaging my system and re-installing everything? I still have no idea what chkrootkit means when it says a port is infected. Adam I don't think it's that important. chkrootkit seems a little hazardous since there was a bug about chkrootkit killing a random process (in fact one of its test was sending a signal to process 12345, this bug has been corrected). I think a good anti-rootkit should be launched from another system to be sure it's not deactivated by a smart rootkit. Hopefully that is simpler than it sounds! What anti-rootkit are you thinking of? I use chkrootkit and rkhunter. Unfortunetely I haven't any reference but hoping a rootkit on your computer being launched once a day will protect you is like hoping an anti-virus will protect you even if a smart virus infect your computer between 2 launch. It's better than nothing but I don't think it's sufficient. I think you can safely discard this warning from chkrootkit or if you're cautious (it's very good) then ask to the maintener or better to the upstream developer of this software. Adam Regards, Thomas Preud'homme -- Why Debian : http://www.debian.org/intro/why_debian signature.asc Description: This is a digitally signed message part.
Re: wher the config for xorg
Monday 04 August 2008, abdelkader belahcene wrote : Hi, In previous release of xorg, debian etch for example , all options of xorg are saved on /etc/X11/xorg.conf,. now with lenny , I don't find in xorg.conf specifications for depth or resolution for example, Where are they stored ?. Maybe there is no depth and resolution specifications since xorg is now able to guess most of the parameters. Try filling xorg.conf accordingly to what you want. It should work. On ubuntu, the monitor caracteristics are stored (owned by user ) in /home/user/.gnome2/monitors.xml . If I want to change it for all users ??? thanks bela Regards, Thomas Preud'homme -- Why Debian : http://www.debian.org/intro/why_debian signature.asc Description: This is a digitally signed message part.
Re: [Solved] Re: how to close port 113 ident xinetd
On Sun, Aug 3, 2008 at 12:04 PM, Gregory Seidman [EMAIL PROTECTED] wrote: [...] xinetd uses separate configuration files for each of the services it provides (assuming your /etc/xinetd.conf has the line includedir /etc/xinetd.d per the Debian default). Part of the pidentd package is an xinetd config file that is placed in the /etc/xinetd.d directory. When you uninstalled pidentd that file was removed, but you still had to restart xinetd for it to reread its config (which no longer included the ident service). OK - that makes sense now. Thanks! -- Jimmy -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
diffing two large compressed (.bz2 or .lzma) files?
Is there a utility that can efficiently output the differences between two large compressed files? Note: one can assume that the compressed files just differ in a few places, so that the utility MUST NOT take more than a few megabytes (whether in RAM, swap or disk). bzdiff (from the bzip2 package) first decompresses one of the file to a temporary file, thus is not a solution (it filled up my partition!). I've also tried process substitution (with zsh, but this is also supported by bash): diff (bunzip2 -c file1.bz2) (bunzip2 -c file2.bz2) and diff --speed-large-files (bunzip2 -c file1.bz2) (bunzip2 -c file2.bz2) but in both cases, diff takes too much swap (I think the problem with process substitution is that diff cannot control how the files are decompressed, but perhaps diff doesn't cope well with this either). I've taken the example of .bz2, but I may switch to lzma. So, I'm interested in possibilities for both. -- Vincent Lefèvre [EMAIL PROTECTED] - Web: http://www.vinc17.org/ 100% accessible validated (X)HTML - Blog: http://www.vinc17.org/blog/ Work: CR INRIA - computer arithmetic / Arenaire project (LIP, ENS-Lyon) -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: chkrootkit infected ports 2881
Adam Hardy on 03/08/08 14:13, wrote: [...snip] I talked to the support at the hosting company and they looked at the system and said they couldn't see anything wrong with it - but they can re-image it for me which normally costs a fee. Is it worth re-imaging my system and re-installing everything? I still have no idea what chkrootkit means when it says a port is infected. Adam Hi, Chkrootkit is known to fall for quite a few false positive, for example if you run Portsentry or such anti-portscan demon, it also can detect legitimate services like dhcpd or such as sniffers, which isn't really incorrect but not a problem. I never heard of 2881 as being one of those, but maybe getting in touch with the dev team could give you an easy answer. http://www.chkrootkit.org/ Maybe the only way to know for sure would be scanning all traffic from another system regarding this port to see if anything suspicious can be spotted, and maybe running an integrity check with debsum or such on conf files, comparing the result with a backup from an earlier state or a known sane system. What would really be interesting is to spot the precise day when the warning first occurred from your system logs, and see if you can spot any change in configuration that could have triggered it (update ?). That is, if your system really is infected you cannot trust anything and especially not the logs... Tom -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: Nvidia GeForce FX5200 problems
On Thursday 31 July 2008, Frank McCormick wrote: On Thu, 31 Jul 2008 21:18:47 -0500 I have just about given up on this card. Ubuntu Gutsy for some reason ( different xorg I guess ) handled it with no problem. On Sid I can't even get X up. I'm in Sid now again using (uuugh) Intel video. Hi, I used this card for a while with no problems? Have you tried the nv driver or only the binary nvidia? Does the card show up when you run lspci? Have you tried running startx from a terminal window? Is there a load dri line in your xorg.conf? If so, try commenting it out. -Chris | Christopher Judd, Ph. D. | | Research Scientist III | | NYS Dept. of Health [EMAIL PROTECTED] | | Wadsworth Center - ESP | | P. O. Box 509518 486-7829 | | Albany, NY 12201-0509 | IMPORTANT NOTICE: This e-mail and any attachments may contain confidential or sensitive information which is, or may be, legally privileged or otherwise protected by law from further disclosure. It is intended only for the addressee. If you received this in error or from someone who was not authorized to send it to you, please do not distribute, copy or use it or any attachments. Please notify the sender immediately by reply e-mail and delete this from your system. Thank you for your cooperation. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
TeX: system's default paper size
There is a discussion going on on d-d [1], whether TeX should support other paper formats as *system-wide* default for paper size, apart from 'a4paper' and 'letter'. Does anyone on this list have a desire and/or could give some arguments, why and where it would be useful to use a system's default different from 'a4' or 'letter'? (This discussion applies only to TeX/texlive and only on the system's default. Different paper sizes can also be set on a per document basis.) See [1] for further information from the DD of texlive. Johannes [1] http://lists.debian.org/debian-devel/2008/08/msg00044.html signature.asc Description: OpenPGP digital signature
RE:Re: how to avoid cheking md5sum ?
Hi, Thanks to all, My question was precise, I know about dependances, pb between debian and ubuntu etc... Please I asked if it possible to run dpkg without checking md5sum ! just this please. thanks bela
Re: chkrootkit infected ports 2881
thveillon.debian on 04/08/08 13:48, wrote: Adam Hardy on 03/08/08 14:13, wrote: [...snip] I talked to the support at the hosting company and they looked at the system and said they couldn't see anything wrong with it - but they can re-image it for me which normally costs a fee. Is it worth re-imaging my system and re-installing everything? I still have no idea what chkrootkit means when it says a port is infected. Adam Hi, Chkrootkit is known to fall for quite a few false positive, for example if you run Portsentry or such anti-portscan demon, it also can detect legitimate services like dhcpd or such as sniffers, which isn't really incorrect but not a problem. I never heard of 2881 as being one of those, but maybe getting in touch with the dev team could give you an easy answer. http://www.chkrootkit.org/ Maybe the only way to know for sure would be scanning all traffic from another system regarding this port to see if anything suspicious can be spotted, and maybe running an integrity check with debsum or such on conf files, comparing the result with a backup from an earlier state or a known sane system. What would really be interesting is to spot the precise day when the warning first occurred from your system logs, and see if you can spot any change in configuration that could have triggered it (update ?). That is, if your system really is infected you cannot trust anything and especially not the logs... I got that message in the email from early Saturday morning's cronjob. I have been following instructions on http://www.cert.org/tech_tips/intruder_detection_checklist.html and I found that step 2 (look for setuid and setgid files) produces a file list: [EMAIL PROTECTED]:~# find / -xdev -user root -perm -4000 -print /bin/su /bin/mount /bin/umount /bin/ping /bin/ping6 /sbin/unix_chkpwd /usr/bin/newgrp /usr/bin/chfn /usr/bin/chsh /usr/bin/gpasswd /usr/bin/passwd /usr/bin/X /usr/bin/sudo /usr/bin/gpg /usr/bin/sudoedit /usr/bin/netselect /usr/bin/traceroute.lbl /usr/lib/pt_chown /usr/lib/openssh/ssh-keysign /usr/lib/apache/suexec.disabled /usr/lib/libfakeroot-tcp.so /usr/lib/libfakeroot-sysv.so Again, I'm stumbling in the dark here. cert.org doesn't explain what this list of files signifies, it just implies that I shouldn't see it. Also, I still have no idea what chkrootkit detected which made it decide to send an INFECTED alert on that port. Regards Adam -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: chkrootkit infected ports 2881
Thomas Preud'homme on 04/08/08 13:39, wrote: Monday 04 August 2008, Adam Hardy wrote : Thomas Preud'homme on 04/08/08 11:48, wrote: Le lundi 4 août 2008, Adam Hardy a écrit : Adam Hardy on 03/08/08 14:13, wrote: My webserver system is actually a UML slice of a system at memset.co.uk and all it does is run Apache Tomcat and sshd and the stuff from memset - I thought it was pretty safe until I came back today and found my nightly email report from chkrootkit said: The following suspicious files and directories were found: /lib/init/rw/.ramfs INFECTED (PORTS: 2881) The .ramfs started appearing when I upgraded chkrootkit, so I never worried about it, but Friday night's INFECTED alert was a slap in the face with a wet fish. Saturday night's report went back to normal - no mention of the port. I scanned it from grc.com/x/portprobe and it came back as closed. The only mention I can find in the logs is: [EMAIL PROTECTED]:~# grep 2881 /var/log/* /var/log/setuid.today: 2881 660 1 root disk 0 Wed Apr 30 11:32:37 2008 /dev/rd/c1d30 r and that's a PID, not a port, right? So how bad does this look? Should I clean the system? If it is rooted, how can I tell what the security flaw was? My password at that point (since changed) was CE0dff2*£ so if it was a brute force attack, then wow, they did well. I talked to the support at the hosting company and they looked at the system and said they couldn't see anything wrong with it - but they can re-image it for me which normally costs a fee. Is it worth re-imaging my system and re-installing everything? I still have no idea what chkrootkit means when it says a port is infected. Adam I don't think it's that important. chkrootkit seems a little hazardous since there was a bug about chkrootkit killing a random process (in fact one of its test was sending a signal to process 12345, this bug has been corrected). I think a good anti-rootkit should be launched from another system to be sure it's not deactivated by a smart rootkit. Hopefully that is simpler than it sounds! What anti-rootkit are you thinking of? I use chkrootkit and rkhunter. Unfortunetely I haven't any reference but hoping a rootkit on your computer being launched once a day will protect you is like hoping an anti-virus will protect you even if a smart virus infect your computer between 2 launch. It's better than nothing but I don't think it's sufficient. Yes, you are right, and I have been too slack to get around to changing it. I am looking at installing tripwire (after a fresh install) to be able to check up what is going on after the fact. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
need sarge
For historical reasons, I need to install sarge . http://www.debian.org/releases/sarge has release information, but none of the links on that page lead to a page where you can actually *download* sarge. I will need to download the basic sarge plumbing *and* I will need access to a network mirror that has all the sarge packages. Can someone give me a direction? Thanks Best Regards, Vwaju New York City -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: need sarge
On Mon, 2008-08-04 at 06:54 -0700, Vwaju wrote: For historical reasons, I need to install sarge . http://www.debian.org/releases/sarge has release information, but none of the links on that page lead to a page where you can actually *download* sarge. I will need to download the basic sarge plumbing *and* I will need access to a network mirror that has all the sarge packages. Can someone give me a direction? http://ftp.debian.org/dists/ -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: need sarge
Hi Vwaju, On Mon, 4 Aug 2008 06:54:29 -0700 (PDT) Vwaju [EMAIL PROTECTED] wrote: For historical reasons, I need to install sarge . snip Can someone give me a direction? I can't, I'm afraid, but I was wondering if you could expand on the historical reasons that require sarge? Dan -- Daniel Watkins (Odd_Bloke) signature.asc Description: PGP signature
Re: chkrootkit infected ports 2881
Monday 04 August 2008, Adam Hardy wrote : thveillon.debian on 04/08/08 13:48, wrote: Adam Hardy on 03/08/08 14:13, wrote: [...snip] I talked to the support at the hosting company and they looked at the system and said they couldn't see anything wrong with it - but they can re-image it for me which normally costs a fee. Is it worth re-imaging my system and re-installing everything? I still have no idea what chkrootkit means when it says a port is infected. Adam Hi, Chkrootkit is known to fall for quite a few false positive, for example if you run Portsentry or such anti-portscan demon, it also can detect legitimate services like dhcpd or such as sniffers, which isn't really incorrect but not a problem. I never heard of 2881 as being one of those, but maybe getting in touch with the dev team could give you an easy answer. http://www.chkrootkit.org/ Maybe the only way to know for sure would be scanning all traffic from another system regarding this port to see if anything suspicious can be spotted, and maybe running an integrity check with debsum or such on conf files, comparing the result with a backup from an earlier state or a known sane system. What would really be interesting is to spot the precise day when the warning first occurred from your system logs, and see if you can spot any change in configuration that could have triggered it (update ?). That is, if your system really is infected you cannot trust anything and especially not the logs... I got that message in the email from early Saturday morning's cronjob. I have been following instructions on http://www.cert.org/tech_tips/intruder_detection_checklist.html and I found that step 2 (look for setuid and setgid files) produces a file list: [EMAIL PROTECTED]:~# find / -xdev -user root -perm -4000 -print /bin/su /bin/mount /bin/umount /bin/ping /bin/ping6 /sbin/unix_chkpwd /usr/bin/newgrp /usr/bin/chfn /usr/bin/chsh /usr/bin/gpasswd /usr/bin/passwd /usr/bin/X /usr/bin/sudo /usr/bin/gpg /usr/bin/sudoedit /usr/bin/netselect /usr/bin/traceroute.lbl /usr/lib/pt_chown /usr/lib/openssh/ssh-keysign /usr/lib/apache/suexec.disabled /usr/lib/libfakeroot-tcp.so /usr/lib/libfakeroot-sysv.so Again, I'm stumbling in the dark here. cert.org doesn't explain what this list of files signifies, it just implies that I shouldn't see it. Also, I still have no idea what chkrootkit detected which made it decide to send an INFECTED alert on that port. Regards Adam Executables with setuid set and user root will have root rights even if they are launched by a user not being root. Programs with setuid set are launched with the right of the owner of the program (here root). So it could be security hole and the list of such programs must be as smaller as possible. Here I don't see strange program which shouldn't have setuid set so it's fine don't worry. Regards, Thomas Preud'homme -- Why Debian : http://www.debian.org/intro/why_debian signature.asc Description: This is a digitally signed message part.
Problem installing gcc4.1 with synaptic
I tried to install gcc4.1 using synaptic and got the following message: Please insert the disk labeled: Debian GNU/Linux 4.0 r3 _Etch_ - Official amd64 NETINST Binary-1 20080218-14:10 in drive /cdrom/ I don't get it, is gcc not in the repository? (wtf?) André Martin Timpanaro -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: Problem installing gcc4.1 with synaptic
Monday 04 August 2008, André Timpanaro wrote : I tried to install gcc4.1 using synaptic and got the following message: Please insert the disk labeled: Debian GNU/Linux 4.0 r3 _Etch_ - Official amd64 NETINST Binary-1 20080218-14:10 in drive /cdrom/ I don't get it, is gcc not in the repository? (wtf?) André Martin Timpanaro Oh yes it is, I have it on my etch server. Could you show us your sources.list please ? Regards, Thomas Preud'homme -- Why Debian : http://www.debian.org/intro/why_debian signature.asc Description: This is a digitally signed message part.
Re: NFS is working again, but problem not solved.
On Mon, 04 Aug 2008 14:41:04 +1000, Alex Samad wrote: On Mon, Aug 04, 2008 at 02:27:01AM +, Hendrik Boom wrote: On Sun, 03 Aug 2008 22:15:25 -0400, Andrew Reid wrote: [snip] /usr 172.25.1.4(rw,sync,no_root_squash,map_identity) what about map_identity ? you using nis/ldap ? Not that I'm aware of. Not unless Debian introduced it without telling me. They don't sound like services I could be using without being aware of it, but ... is there an easy way of telling whether they are operating? Incidentally, while the NFS outage happened, I set up shadow (the NFS client above) to serve one of its partitions to another machine on the net, and that worked, so it looks as if the problem was specific to april as NFS server (or shadow as NFS client). Now what's different about april is: It's an AMD64 running in 64-bit mode. It is running etch/stable. All the others are running lenny. The partition being shared out is an LLVM partition on RAID1. Is it conceivable that the kernel NFS server in etch fails to start up without DNS being available to interpret the configuration file, even if no domain names appear in it? If there's any chance of it, I might be able to reproduce the situation that obtained on Saturday on by shutting off the DSL modem and serving NFS from another machine that's dual-boot etch and lenny. It that works (i.e.failes properly) it will probably be an etch-specific problem, and the looming upgrade of our server to lenny will fix the problem. -- hendrik -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: chkrootkit infected ports 2881
Adam Hardy on 04/08/08 14:50, wrote: thveillon.debian on 04/08/08 13:48, wrote: Adam Hardy on 03/08/08 14:13, wrote: [...snip] I talked to the support at the hosting company and they looked at the system and said they couldn't see anything wrong with it - but they can re-image it for me which normally costs a fee. Is it worth re-imaging my system and re-installing everything? I still have no idea what chkrootkit means when it says a port is infected. Adam Hi, Chkrootkit is known to fall for quite a few false positive, for example if you run Portsentry or such anti-portscan demon, it also can detect legitimate services like dhcpd or such as sniffers, which isn't really incorrect but not a problem. I never heard of 2881 as being one of those, but maybe getting in touch with the dev team could give you an easy answer. http://www.chkrootkit.org/ Maybe the only way to know for sure would be scanning all traffic from another system regarding this port to see if anything suspicious can be spotted, and maybe running an integrity check with debsum or such on conf files, comparing the result with a backup from an earlier state or a known sane system. What would really be interesting is to spot the precise day when the warning first occurred from your system logs, and see if you can spot any change in configuration that could have triggered it (update ?). That is, if your system really is infected you cannot trust anything and especially not the logs... I got that message in the email from early Saturday morning's cronjob. I have been following instructions on http://www.cert.org/tech_tips/intruder_detection_checklist.html and I found that step 2 (look for setuid and setgid files) produces a file list: [EMAIL PROTECTED]:~# find / -xdev -user root -perm -4000 -print /bin/su /bin/mount /bin/umount /bin/ping /bin/ping6 /sbin/unix_chkpwd /usr/bin/newgrp /usr/bin/chfn /usr/bin/chsh /usr/bin/gpasswd /usr/bin/passwd /usr/bin/X /usr/bin/sudo /usr/bin/gpg /usr/bin/sudoedit /usr/bin/netselect /usr/bin/traceroute.lbl /usr/lib/pt_chown /usr/lib/openssh/ssh-keysign /usr/lib/apache/suexec.disabled /usr/lib/libfakeroot-tcp.so /usr/lib/libfakeroot-sysv.so Again, I'm stumbling in the dark here. cert.org doesn't explain what this list of files signifies, it just implies that I shouldn't see it. Also, I still have no idea what chkrootkit detected which made it decide to send an INFECTED alert on that port. More suspicious stuff has turned up in my investigations. The following is the nmap output when I run it from the suspect rooted system: Not shown: 65529 closed ports PORT STATE SERVICE 22/tcpopen ssh 25/tcpopen smtp 80/tcpopen http 443/tcp open https 3306/tcp open mysql 12121/tcp open unknown But when I run nmap from my home machine to scan it remotely, I see these extra ports are open: Not shown: 65524 closed ports PORT STATESERVICE 22/tcpopen ssh 25/tcpopen smtp 80/tcpopen http 443/tcp open https 1720/tcp filtered H.323/Q.931 3306/tcp open mysql /tcp filtered irc 6667/tcp filtered irc 6668/tcp filtered irc 6669/tcp filtered irc 12121/tcp open unknown So I have 1720, , 6667, 6668 and 6669 open and nmap is ignoring them. Isn't that conclusive evidence that nmap on the suspected machine is some hacker's version? -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: Nvidia GeForce FX5200 problems
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On Mon, 04 Aug 2008 08:55:11 -0400 Christopher Judd [EMAIL PROTECTED] wrote: On Thursday 31 July 2008, Frank McCormick wrote: On Thu, 31 Jul 2008 21:18:47 -0500 I have just about given up on this card. Ubuntu Gutsy for some reason ( different xorg I guess ) handled it with no problem. On Sid I can't even get X up. I'm in Sid now again using (uuugh) Intel video. Hi, I used this card for a while with no problems? Have you tried the nv driver or only the binary nvidia? The nv driver Does the card show up when you run lspci? Yes. Have you tried running startx from a terminal window? Yes, blank screen...then lockup. Is there a load dri line in your xorg.conf? If so, try commenting it out. Tried it with and without. And with a few other options. As I said Ubuntu Gutsy setup the card fine. But I can't get it running under Sid. Maybe I'll try after X has been upgraded a few more times :) - -- Frank -- [EMAIL PROTECTED] -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.9 (GNU/Linux) iEYEARECAAYFAkiXFdMACgkQnQV1aTcQlJv26ACfX2IDRqwrCJaXD2ui3k9EK3eA 7jAAnA9QovreK996vB9Wx8yc7iyBWSUK =rZ6i -END PGP SIGNATURE- -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: re: how to close port 113
Jude DaShiell wrote: Install and run arno-iptables-firewall and tell it your internet port like eth0 or ppp0 and leave the rest of the defaults alone. Port 113 will be closed once this is done since one of the defaults with arno-iptables-firewall is to first deny all ports then only open up those you specifically choose to open. In general my advice would be to make your system secure /without/ a firewall. I.e. do not run services that you do not need, and make the ones you /do/ need only accessible from the LAN, not from the outside world. Then, you can run a firewall as a double security. It is dangerous to rely on firewalls only for security because it so easy to make mistakes with them. Regards, Jan -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
kde4 without losing kde3?
I've found the installation instructions for installing KDE4 on my Sid box (http://pkg-kde.alioth.debian.org/experimental.html), but I'm unclear if this supersedes my working KDE3 setup or not. Can I use these instructions to install 4, and if 4 causes me to much grief, be able to switch back to 3? Or, if 4 doesn't work for me, can I purge the 4 packages, remove the experimental stuff from my sources.list file, and reinstall 3 and be back to normal? (Will I have to move my ~/.kde? directory? (I'll make a backup of my version 3 .kde stuff first, just in case.)) Thanks! -- Kent West *))) http://kentwest.blogspot.com -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Errors using debuild for building CPAN package
Trying to install a couple of CPAN modules using dh-make-perl. I've used wget, and then tar. I descend into the modules directory and go with: debuild. I get: sh: gcc: command not found dpkg-architecture: warning: Couldn't determine gcc system type, falling back to default (native compilation) dpkg-gencontrol: warning: unknown substitution variable ${misc:Depends} sh: gcc: command not found dpkg-architecture: warning: Couldn't determine gcc system type, falling back to default (native compilation) dh_md5sums dh_builddeb dpkg-deb: building package `libstring-random-perl' in `../libstring- random-perl_0.22-1_all.deb'. dpkg-genchanges sh: gcc: command not found dpkg-architecture: warning: Couldn't determine gcc system type, falling back to default (native compilation) dpkg-genchanges: including full source code in upload dpkg-buildpackage (debuild emulation): full upload; Debian-native package (full source is included) Now signing changes and any dsc files... Could not find a signing program (pgp or gpg)! debuild: fatal error at line 1155: running debsign failed Any tips for a Debian novice? -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: Problem installing gcc4.1 with synaptic
On Mon, 4 Aug 2008 11:33:08 -0300 André Timpanaro [EMAIL PROTECTED] wrote: Hello André, I tried to install gcc4.1 using synaptic and got the following message: Please insert the disk labeled: Debian GNU/Linux 4.0 r3 _Etch_ - Official amd64 NETINST Binary-1 20080218-14:10 in drive /cdrom/ I don't get it, is gcc not in the repository? (wtf?) Comment out any references to CDs/DVDs in your etc/apt/sources.list and it won't try to load packages from CD, but straight from the 'net. IME, local sources take precedence. In this day of always on connections, it might seem anachronistic to retain such reference by default, but many people still use dial-up, so the CD references have some value. -- Regards _ / ) The blindingly obvious is / _)radnever immediately apparent Black man got a lot of problems, but he don't mind throwing a brick White Riot - The Clash signature.asc Description: PGP signature
Re: kde4 without losing kde3?
Kent West wrote: I've found the installation instructions for installing KDE4 on my Sid box (http://pkg-kde.alioth.debian.org/experimental.html), but I'm unclear if this supersedes my working KDE3 setup or not. Can I use these instructions to install 4, and if 4 causes me to much grief, be able to switch back to 3? Or, if 4 doesn't work for me, can I purge the 4 packages, remove the experimental stuff from my sources.list file, and reinstall 3 and be back to normal? (Will I have to move my ~/.kde? directory? (I'll make a backup of my version 3 .kde stuff first, just in case.)) Thanks! Hi Kent! I was tried some kde4 packages from experimental (konqueror, kmail, kget, akregator). At least akregator from kde3 is working fine now for me. -- Eugene V. Lyubimkin aka JackYF signature.asc Description: OpenPGP digital signature
Re: SOLVED: DMA is turned off on my HDD
On 08/04/08 06:39, Anton Liaukevich wrote: Florian Kulzer wrote: On Tue, Jul 29, 2008 at 21:57:56 +0300, Anton Liaukevich wrote: I have read some docs in the inet. I have understood what is initrd, how to use initramfs-tools debian package (in particular, update-initramfs command and /etc/initramfs-tools/modules file). I have being intended to add blacklist ide-generic string to /etc/initramfs-tools/modules file to run initramfs-tools -k $(uname -r) -u command but when I opened this file I was shocked. That is I have seen: # Added by Debian Installer ide-generic I decided simply delete this string from modules file (and update initrd then). And it has solved the problem! I am glad to hear that you have DMA working now. Nevertheless, I don't understand why Debian Installer add this ill-started module to /etc/initramfs-tools/modules file. Seems the bug to be Debian-specific. If the information on the Debian driver check page is correct, i.e. if you really need kernel 2.6.25 for the amd74xx module to work with your controller, then it may be reasonable to add ide_generic to /etc/modules to reduce the risk of the system not booting at all. (The installer has kernel 2.6.24.) However that may be, please send an installation report to the Debian installer team, describing your problems. Now I'm intended to update initrd for all my kernels ;). Watch out, the 2.6.24 kernel might need ide_generic to use the controller at all. I have ventured to update initrd for all my kernels and the result is good! But I have one more question. There is list of my kernels: leva:/home/anthony# awk '{if ($1==kernel $NF!=single) print $2}' /boot/grub/menu.lst /boot/vmlinuz-2.6.25-2-686 /boot/vmlinuz-2.6.24-1-686 /boot/vmlinuz-2.6.24-1-486 468-kernel is needed for me in case I will change my cpu to 686-incompatible :) or I will transport my hdd to old computer and boot Debian from it. AFAICT, the only currently-shipping ia32 686-incompatible chips are the Via C7 chips which go in little semi-embedded machines. But can I boot at least one of my kernels if I simply change my motherboard to one with non-nVidia chipset (that don't use amd74xx module) (after updating initrd for all kernels)? Yes. That's how I moved my hard drive from my old machine to the new one. -- Ron Johnson, Jr. Jefferson LA USA Scientists are people, too. IOW, they also crave power, money, respect, and influence, and they also fear for their jobs. Each can be a healthy motivator, but each has the ability to turn a good scientist into a bad one; and in some cases, they can turn a good scientist into a charlatan. http://thefutureofthings.com/book/3/the-bomb-that-never-was.html -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: Problem installing gcc4.1 with synaptic
On 2008-08-04 16:33 +0200, André Timpanaro wrote: I tried to install gcc4.1 using synaptic and got the following message: Please insert the disk labeled: Debian GNU/Linux 4.0 r3 _Etch_ - Official amd64 NETINST Binary-1 20080218-14:10 in drive /cdrom/ I don't get it, is gcc not in the repository? (wtf?) It is, but if a package is in multiple repositories, apt will simply choose the first entry. If you have a fast Internet connection and don't want to fiddle around with the CD-ROM, just remove the entry for it from your sources.list and run apt-get update. Sven -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: Errors using debuild for building CPAN package
Gmail wrote: Trying to install a couple of CPAN modules using dh-make-perl. I've used wget, and then tar. I descend into the modules directory and go with: debuild. I get: sh: gcc: command not found dpkg-architecture: warning: Couldn't determine gcc system type, falling back to default (native compilation) dpkg-gencontrol: warning: unknown substitution variable ${misc:Depends} sh: gcc: command not found dpkg-architecture: warning: Couldn't determine gcc system type, falling back to default (native compilation) dh_md5sums dh_builddeb dpkg-deb: building package `libstring-random-perl' in `../libstring-random-perl_0.22-1_all.deb'. dpkg-genchanges sh: gcc: command not found dpkg-architecture: warning: Couldn't determine gcc system type, falling back to default (native compilation) dpkg-genchanges: including full source code in upload dpkg-buildpackage (debuild emulation): full upload; Debian-native package (full source is included) Now signing changes and any dsc files... Could not find a signing program (pgp or gpg)! debuild: fatal error at line 1155: running debsign failed Any tips for a Debian novice? Try dpkg-buildpackage -b, it don't treat debsign errors as fatal. -- Eugene V. Lyubimkin aka JackYF signature.asc Description: OpenPGP digital signature
Re: Nvidia GeForce FX5200 problems
On 08/04/08 07:55, Christopher Judd wrote: On Thursday 31 July 2008, Frank McCormick wrote: On Thu, 31 Jul 2008 21:18:47 -0500 I have just about given up on this card. Ubuntu Gutsy for some reason ( different xorg I guess ) handled it with no problem. On Sid I can't even get X up. I'm in Sid now again using (uuugh) Intel video. Hi, I used this card for a while with no problems? As did I, for 2+ years. But that was on an earlier kernel (.20, maybe) and an earlier driver (94.x.x, maybe). Have you tried the nv driver or only the binary nvidia? Does the card show up when you run lspci? Have you tried running startx from a terminal window? Is there a load dri line in your xorg.conf? If so, try commenting it out. -- Ron Johnson, Jr. Jefferson LA USA Scientists are people, too. IOW, they also crave power, money, respect, and influence, and they also fear for their jobs. Each can be a healthy motivator, but each has the ability to turn a good scientist into a bad one; and in some cases, they can turn a good scientist into a charlatan. http://thefutureofthings.com/book/3/the-bomb-that-never-was.html -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: Errors using debuild for building CPAN package
Gmail wrote: Trying to install a couple of CPAN modules using dh-make-perl. I've used wget, and then tar. I descend into the modules directory and go with: debuild. I get: sh: gcc: command not found dpkg-architecture: warning: Couldn't determine gcc system type, falling back to default (native compilation) dpkg-gencontrol: warning: unknown substitution variable ${misc:Depends} sh: gcc: command not found dpkg-architecture: warning: Couldn't determine gcc system type, falling back to default (native compilation) dh_md5sums dh_builddeb dpkg-deb: building package `libstring-random-perl' in `../libstring-random-perl_0.22-1_all.deb'. dpkg-genchanges sh: gcc: command not found dpkg-architecture: warning: Couldn't determine gcc system type, falling back to default (native compilation) dpkg-genchanges: including full source code in upload dpkg-buildpackage (debuild emulation): full upload; Debian-native package (full source is included) Now signing changes and any dsc files... Could not find a signing program (pgp or gpg)! debuild: fatal error at line 1155: running debsign failed Any tips for a Debian novice? Apparently you do not have the gcc compiler. It is best to run 'aptitude install build-essential' to pull it and other basic packages for program compilation. However, the module you want seems to be packaged for Debian (as are a lot of other Perl modules). Install it with 'aptitude install libstring-random-perl' and it should be done. -- |Rain| with sane code, maybe I could figure out the renderer :) LordHavoc rain: I'd probably be the one writing the renderer |Rain| well, er, uh Eduardo M KALINOWSKI [EMAIL PROTECTED] http://move.to/hpkb -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: Mplayer plugin
Frank McCormick wrote: -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 It seems Firefox uses the mplayer plugin for many if not most of the movies and feeds on many sites. But in my system is doesn't work most of the time. The mplayer window comes up (full screen once in a while), I click play...it says getting playlist...connecting to whatever then that's it. Clicking play again simply repeats the whole process. I have tried turning various features on and off but can't seem to find the combination that works. My latest problem is videos from the nasa.gov site. Can anyone offer any advice ? Thanks Hi Frank, The videos on the NASA site play on my FFx with no problems. I'm using FFx 3.0.1 on Debian Lenny with the mplayerplug-in plugin dated 2007/1/7. Cheers, Jonathan -- Registerd Linux user #445917 at http://counter.li.org/ -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: ATI FireGL V5200, proprietary and open source drivers
Hello, please use ENVY to install the newest Driver on your Debian Like System. I ve install Ubuntu 7.10 on my Lenovo Z61p (Fire GL V5200 mobil) and only the envy installed version of ATI-Driver works with 3D OpenGL an Compiz 3D Desktop. Please check that fglrx-info shows no MESA Driver! Good luck., Andreas, Germany Jim McCloskey schrieb: Recently, I have posted to both of these lists: http://lists.debian.org/debian-user/2008/07/msg02029.html http://lists.debian.org/debian-laptop/2008/07/msg00012.html about the struggles I've had with the ATI graphics adapter (Mobility FireGL V5200) in my Thinkpad T60p. The proprietary driver supplied by ATI (fglrx) has proved a nightmare for me---suspend/resume hasn't worked, no xv extension, frequent X crashes, freezes, no hardware acceleration, the slow scrolling problem with Firefox/Iceweasel 3, which has now also been documented by many others. I concluded, though, with this: | So there are still no very good choices for linux users who have | made the mistake of buying a system which includes one of these new | ATI adapters. This turns out not to be true, and I want to withdraw it. I've been using both available open source drivers in the past week: the radeonhd driver (xserver-xorg-video-radeonhd) and the radeon driver (xserver-xorg-video-radeon) from current testing (soon to be stable), and both now give excellent dependable results with this card. At present, I'm using the radeon driver from testing with an absolutely minimalist xorg.conf, and: . all routine stuff is fine (Firefox 3, moving windows, moving from screen to screen etc) . suspend/resume works fine . the xv video extension works fine, and so video playback is good . hardware acceleration is enabled; I get about 1900 frames per second with glxgears, which is more than good enough to run GoogleEarth, the only 3D application I care about These results are achieved by installing the latest libdrm and mesa libraries (libdrm2, libgl1-mesa-dri, libgl1-mesa-glx, libglu1-mesa, mesa-utils, libgl1-mesa-dev) and crucially by installing up to date versions of the kernel drm modules from the git repository at freedesktop.org. This last sounds intimidating, but fortunately it has been made easy by Debian/Ubuntu developer Tormod Volden, who has provided a script here: http://bazaar.launchpad.net/~xorg-edgers/xorg-server/xorg-pkg-tools/files called `easy-drm-modules-installer'. This script calls git to download the latest development snapshots, compiles the modules against the running kernel and installs them. Rebooting causes those modules to be used rather than the current kernel modules. This is, obviously, recent development software and so one has no right to expect stability, but so far for me at least there have been no problems. This is real progress, I think. Jim -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: chkrootkit infected ports 2881
Thomas Preud'homme wrote: I don't think it's that important. chkrootkit seems a little hazardous since there was a bug about chkrootkit killing a random process (in fact one of its test was sending a signal to process 12345, this bug has been corrected). That anyone could code such a thing was astounding.. until I looked at the part of chrootkit's code that's responsible for the INFECTED PORTS message: bindshell () { PORT=114|145|465|511|600|1008|1524|1999|1978|2881|3049|3133|3879|4000|4369|5190|5665|6667|10008|12321|23132|27374|29364|30999|31336|31337|37998|45454|47017|47889|60001|7222 So, rootkits only bind to this small list of high ports? If I were writing a rootkit, mine wouldn't. I've got a list right here; why would I choose any of the ports on it? Why is something on port 2881 any more indicative of a rootkit than something on port 2880? I'd suggest instead that it's _less_ indicative of a good rootkit! OPT=-an for P in `echo $PORT | ${sed} 's/|/ /g'`; do if ${netstat} ${OPT} | ${egrep} ^tcp.*LIST|^udp | ${egrep} \ [.:]${P}[^0-9.:] /dev/null 21 then PI=${PI} ${P} fi done if [ ${PI} != ] then echo INFECTED (PORTS: $PI) So, the netstat program can be trusted? No rootkit authors will ever consider replacing it with a version that doesn't show their ports? And this looks for any processes listening on one of the ports for TCP, or for any UDP that happens to be using the port whatsoever. That includes local processes using UDP with that port, but it will also match if the remote side is using UDP on that port. Yes, something listening on a strange TCP port is unusual. But only as unusual as running a ftp client or bittorrent download, or any of a number of other things. The UDP part of the check is much less defensible; systems use UDP with random ports in regular operation. You may have heard of the recent DNS vulnerability -- the fix for that is to use randomised UDP ports when making queries. In summary, chrootkit has plenty of false positivies (just check the list archives), and will only ever have correct positives if rootkit authors are slower to update than it is, or stupid. When was chkrootkit last updated? December. The rootkits it's trying to detect? 3 am last night. -- see shy jo signature.asc Description: Digital signature
Re: need sarge
On Aug 4, 10:40 am, Daniel Watkins [EMAIL PROTECTED] wrote: Hi Vwaju, On Mon, 4 Aug 2008 06:54:29 -0700 (PDT)Vwaju [EMAIL PROTECTED] wrote: For historical reasons, I need to install sarge . snip Can someone give me a direction? I can't, I'm afraid, but I was wondering if you could expand on the historical reasons that require sarge? Dan -- Daniel Watkins (Odd_Bloke) signature.asc 1KDownload Thanks, Robert! I downloaded Contents-i386.gz from http://ftp.debian.org/dists/sarge/. As I understand it, this is not an archive, but a single compressed file. I gunzipped it, which yields an 111MB file. I am not sure what I have now. If this is sarge, how do I install it? Dan -- Linux System Administration (O'reilly) is a cookbook how-to for teaching Linux networking by builiding an internet server. It was written when sarge was the current version of Debian. Unfortunately, because of many changes between sarge and etch, the book seems to be just about useless unless your running sarge. ( Unless, of course, you already know how to build a Linux network server, but then why would you do the project at all?) -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: chkrootkit infected ports 2881
Adam Hardy wrote: Not shown: 65529 closed ports PORT STATE SERVICE 22/tcpopen ssh 25/tcpopen smtp 80/tcpopen http 443/tcp open https 3306/tcp open mysql 12121/tcp open unknown But when I run nmap from my home machine to scan it remotely, I see these extra ports are open: Not shown: 65524 closed ports PORT STATESERVICE 22/tcpopen ssh 25/tcpopen smtp 80/tcpopen http 443/tcp open https 1720/tcp filtered H.323/Q.931 3306/tcp open mysql /tcp filtered irc 6667/tcp filtered irc 6668/tcp filtered irc 6669/tcp filtered irc 12121/tcp open unknown So I have 1720, , 6667, 6668 and 6669 open and nmap is ignoring them. Isn't that conclusive evidence that nmap on the suspected machine is some hacker's version? filtered != open Filtered means that a firewall, filter, or other network obstacle is blocking the port so that Nmap cannot tell whether it is open or closed. -- man nmap The only unusual thing here is that port 12121. netstat -p can probably tell you what program is listening on that port. (Well, I don't know why you have a SQL server listening for connections from the outside world either.) -- see shy jo signature.asc Description: Digital signature
debian module ssl on the squid program
Is there any outside support to enable the ssl in squid (a module) without having to compile the squid in the system? Puts, and to really concerned about this issue of having to compile the squid in the system if you can not install the module only. Thnx. -- Márcio Luciano Donada mdonada at auroraalimentos dot com dot br Aurora Alimentos - Cooperativa Central Oeste Catarinense Departamento de T.I. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]