Re: webserver using name based virtual hosts, make problem
Hello, your apache config does not contain named virtual hosts, so your problem is in the fact that the ip for: > ServerName www.linuxspice.com is not > Listen 64.91.61.186:80 So this means if you specify http://www.linuxspice.com/case.jpg it will not be the same as http://64.91.61.186/case.jpg, unless you are on a host which has set up this wrong name mapping, because it is http://63.85.86.80/case.jpg. Greetings Bernd -- (OO) -- [EMAIL PROTECTED] -- ( .. ) ecki@{inka.de,linux.de,debian.org} http://home.pages.de/~eckes/ o--o *plush* 2048/93600EFD eckes@irc +497257930613 BE5-RIPE (OO) When cryptography is outlawed, bayl bhgynjf jvyy unir cevinpl! -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: work but http://www.domain.com/file"> not work
On Tue, Dec 24, 2002 at 05:53:29AM -0700, eric lin wrote: > but in www.finitesite.com(a free webhosting company)'s my index.html > if I also put > http://www.domain.com/photo.gif";> then the photo is broken > when I vistie my finitesite page, www://www.finitesite.com/fsshl > -but using static ip 12.34.56.78 work i do not fully understand, but you can just write this will work Greetings Bernd -- (OO) -- [EMAIL PROTECTED] -- ( .. ) ecki@{inka.de,linux.de,debian.org} http://home.pages.de/~eckes/ o--o *plush* 2048/93600EFD eckes@irc +497257930613 BE5-RIPE (OO) When cryptography is outlawed, bayl bhgynjf jvyy unir cevinpl! -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: OpenOffice.org new unstable packages available for testing
On Wed, Nov 13, 2002 at 11:03:55AM +1100, Rob Weir wrote: > can't use it. If anything, I would have thought that having the same > name as a Free office suite would be _good publicity_ (especially since > the office suite is evidently far better known than they are), but I > guess their legal department disagrees. Actually it is not so easy to allow someone to use your trademark, cause you have to defend it to keep it at all. Greetings Bernd -- (OO) -- [EMAIL PROTECTED] -- ( .. ) ecki@{inka.de,linux.de,debian.org} http://home.pages.de/~eckes/ o--o *plush* 2048/93600EFD eckes@irc +497257930613 BE5-RIPE (OO) When cryptography is outlawed, bayl bhgynjf jvyy unir cevinpl! -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: more questions about LFS
On Tue, Nov 20, 2001 at 02:53:13PM +0100, Wichert Akkerman wrote: > > The reason I ask is that some program seems to have problem with > > directories containing large files (cron report bellow), but I really > > don't see why. > > The getdents syscall encountering data it can't represent in this case. > strace the program and you'll see what happens exactly. In his case it is find, which is listing the large files in the DB Spool. He can eighter exclude the parent dir, or upgrade at least fileutils. Greetings Bernd -- (OO) -- [EMAIL PROTECTED] -- ( .. ) [EMAIL PROTECTED],linux.de,debian.org} http://home.pages.de/~eckes/ o--o *plush* 2048/93600EFD [EMAIL PROTECTED] +497257930613 BE5-RIPE (OO) When cryptography is outlawed, bayl bhgynjf jvyy unir cevinpl!
Re: Propossed Project: Odyssey
On Wed, Oct 24, 2001 at 01:12:02AM +0200, Alex de Landgraaf wrote: > To create a viable alternative to our main competetor, based on Debian > GNU/Linux. Do not forget www.boxedpenguin.com IMHO you should not use the Debian Project as a start for your trip, go out and do it in public. Greetings Bernd
Re: Problem with resolv.conf and search list
On Sun, Sep 16, 2001 at 02:26:49AM +0200, Bruno BEAUFILS wrote: > The resolver is unable to find it. Let's see it with an example : > > {watney-root-/etc}# host sole > sole.lifl.fr does not exist (Authoritative answer) host is not using the system resolver but contacting name servers directly. You may want to use ping to check it, instead. Greetings Bernd -- (OO) -- [EMAIL PROTECTED] -- ( .. ) [EMAIL PROTECTED],linux.de,debian.org} http://home.pages.de/~eckes/ o--o *plush* 2048/93600EFD [EMAIL PROTECTED] +497257930613 BE5-RIPE (OO) When cryptography is outlawed, bayl bhgynjf jvyy unir cevinpl!
Re: (OT) Storage (8*IDE HDs) any experiences?
On Sat, Apr 28, 2001 at 11:50:26PM +0200, Andreas Bombe wrote: > The IBM SCSI disk I have here has a jumper to delay spin up depending on > SCSI ID so that an array of those would spin up sequentially if they all > had those jumper set (and different IDs, which they need anyway). Sorry I missed the start of the thread. I would suggest you to buy a simple IDE-to-SCSI Raid Appliance. You don't have the trouble with sizing the Power supply. You get a neat chasis with plug-able disks and you also get the speed of SCSI and the ability to plug it into every server you desire. The prices are quite reasonable. I asume you need it at work, cause more than 4x36GB isnt realy needed for private persons, even if they have a large mp3 archive :) BTW: I would suggest to use only Master-Disks on those IDE Channels, since those are much faster. One IDE-to-SCSI Solutoin I saw had 8 IDE Channels for 8 Disks, so no slave needs to be used. Greetings Bernd -- (OO) -- [EMAIL PROTECTED] -- ( .. ) [EMAIL PROTECTED],linux.de,debian.org} http://home.pages.de/~eckes/ o--o *plush* 2048/93600EFD [EMAIL PROTECTED] +497257930613 BE5-RIPE (OO) When cryptography is outlawed, bayl bhgynjf jvyy unir cevinpl!
Re: Net-tools followup
On Mon, Feb 12, 2001 at 08:25:40PM -0800, Michael Epting wrote: > This was hilarious. I had shut down my laptop this morning after reading, > but not entirely absorbing, the above. Thanks for sharing that with us :) BTW: the Problem is upstream and fixed in 1.59. I have uploaded 1.58-2 which will fix that, too. Don't know why it is not installed yet. Sorry for that, didn't noticed it since it works on some systems, for example ipv6 using stations. Greetings Bernd
Re: gratuitous arp
On Thu, Feb 08, 2001 at 11:06:35PM -0500, [EMAIL PROTECTED] wrote: > i need to send a gratuitous arp to facilitate an ip-address takeover > scheme, so that other machines in the network will have correct > ethernet/ip address association. use fake/heartbeat which can do that, or if you want to do it yourself, use the arping tool. All of them only work for ipv4, afaik Greetings Bernd -- (OO) -- [EMAIL PROTECTED] -- ( .. ) [EMAIL PROTECTED],linux.de,debian.org} http://home.pages.de/~eckes/ o--o *plush* 2048/93600EFD [EMAIL PROTECTED] +497257930613 BE5-RIPE (OO) When cryptography is outlawed, bayl bhgynjf jvyy unir cevinpl!
Re: Bug#82710: A version for testing, please.
On Sun, Jan 21, 2001 at 07:02:05PM -0800, Joey Hess wrote: > It is completly pointless to file a bug against a package requesting > that it go into testing. I thought I'd point this out as I have seen > several bug reports like this lately. The maintainer of a package has > little control over whether the package goes into testing. In that case it was OK since adns was (for some unknown reason) not in unstable/testing as i had expected. Therefore i did a re-upload. > So when you filed this bug report on the 17th, adns version 1.0-3 had > been in unstable for about 10 days and was due to go into testing. Bernd > uploaded version 1.0-4 the next day (for no good reason). And 1.0-3 was > moved into testing right in the nick of time before 1.0-4 replaced it in > unstable. The good reason was, that adns was not at all in unstable, dont know why. I dont care if my new upload fixed the problem. Greetings Bernd -- (OO) -- [EMAIL PROTECTED] -- ( .. ) [EMAIL PROTECTED],linux.de,debian.org} http://home.pages.de/~eckes/ o--o *plush* 2048/93600EFD [EMAIL PROTECTED] +497257930613 BE5-RIPE (OO) When cryptography is outlawed, bayl bhgynjf jvyy unir cevinpl!
Re: annoucement: auto-login patch for xdm
On Sat, Jun 24, 2000 at 12:33:41PM +, Mircea Luca wrote: > I'm a regular user and I think it would be really cool if the autologin > would/could be implemented as specific to a run-level.This way the > sysadmin could specify the default-run level and for one user would be > great.It would be neat for a home user since the "admin " part is really > happening not too often. I agree, we could start xdm in rnlevel 3 and "su someuser startx" in runlevel 4. Greetings Bernd
Re: annoucement: auto-login patch for xdm
On Sat, Jun 24, 2000 at 06:07:24PM +0200, Oswald Buddenhagen wrote: > due to a relatively popular demand on such a (mis-)feature at debian-user, > i became interested in automatic login, too. Just a stupid question, why are ppl using xdm in the first place if they want an auto login? Whats wrong with using startx instead?! Greetings Bernd
ITP FOP (xml->pfd with xsl in java)
Hello, after soring out the version conflicts with lib-xp-java i will package FOP, a XML->PDF Flow Object XSL Engine. Greetings Bernd -- (OO) -- [EMAIL PROTECTED] -- ( .. ) [EMAIL PROTECTED],linux.de,debian.org} http://home.pages.de/~eckes/ o--o *plush* 2048/93600EFD [EMAIL PROTECTED] +497257930613 BE5-RIPE (OO) When cryptography is outlawed, bayl bhgynjf jvyy unir cevinpl! -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: /sbin and /usr/sbin be in a normal user's path ?! What about Sudo ?
On Wed, Dec 29, 1999 at 02:52:27AM +0100, Olivier Lemaire wrote: > I effectively disagree the idea of symlinks. Why don't we make a sudo package > included in the base install ? > I mean a "debian-customised" package who should be integrated in the > base system . Eventually, like shadows passwords are included . I guess u missed the topic here: a) traceroute is in /sbin (traceroute6 is in /usr/bin) b) normal users can execute /usr/sbin/traceroute (since it IS suid root) c) normal users need to put /usr/sbin in their path to execute this program d) FHS recommends to put in sbin only programs a normal (non admin) user dont want to use -> e) our recommended solution wold be to install traceroute in bin (i already repored that as an error half year ago) BUT f) our recommended solution would break scripts which use a hardwired /usr/sbin to traceroute -> g) our solution to this would be to move traceroute AND leave a symlink from the old location pointing to the newe one I dont see what sudo has to do with that Greetings Bernd -- (OO) -- [EMAIL PROTECTED] -- ( .. ) [EMAIL PROTECTED],linux.de,debian.org} http://home.pages.de/~eckes/ o--o *plush* 2048/93600EFD [EMAIL PROTECTED] +497257930613 BE5-RIPE (OO) When cryptography is outlawed, bayl bhgynjf jvyy unir cevinpl! -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Guessing the date style from the timezone for postgresql postinst
On Sat, Sep 18, 1999 at 03:58:02AM -0300, Nicolás Lichtmaier wrote: > > Here's a revised version of the script taking into account all comments > > so far. > I guess Argentina isn't the only country that uses the SQL format. There > must be some others too. It would be great to find a source for this > information Hmm... the question is why we dont simply use locales. Thats the POSIX way of describing national support and is supported by Java and Unix. Even NT has a centryl place to set up things like date, time and currency. It has nothing to do with a specific package, it should be asked in the libc, like the timezone. Greetings Bernd -- (OO) -- [EMAIL PROTECTED] -- ( .. ) [EMAIL PROTECTED],linux.de,debian.org} http://home.pages.de/~eckes/ o--o *plush* 2048/93600EFD [EMAIL PROTECTED] +497257930613 BE5-RIPE (OO) When cryptography is outlawed, bayl bhgynjf jvyy unir cevinpl!
Re: firewalling (ipchains) question
On Sat, Aug 14, 1999 at 12:56:20AM +0200, Peter Palfrader aka Weasel wrote: > ipchains -A output -j ACCEPT -i lo -s 0.0.0.0/0 -d 0.0.0.0/0 > ipchains -A input -j ACCEPT -i lo -s 0.0.0.0/0 -d 0.0.0.0/0 You can restrict this to 127/8 and all local addresses. In Addition to that you should DENY all incomming packages originating fropm one of your local addresses. > ipchains -A output -j ACCEPT -p tcp -s marvin 1024:65535 -d laus 1024:65535 ! > -y This above rule allows packages belonging to established connections in all ports, makes no sense. > ipchains -A output -j ACCEPT -p tcp -s marvin 1024:65535 -d laus smtp > > ipchains -A input -j ACCEPT -p tcp -s laus 1024:65535 -d marvin 1024:65535 ! > -y the above rule makes no sense > ipchains -A input -j ACCEPT -p tcp -s laus smtp -d marvin 1024:65535 ! -y thas fine, should work. > is this correct, did I miss something? > anything wich might need improvement? > and why does this not work with ssh? (if I substitute smtp with ssh) ssh is usig a priveledged source port as long as you dont give "-P" as an option to ssh. Greetings Bernd
Re: Poor interaction between chown and quota
Hello, > : 2) I use qpopper to offer email to our customers. Quotas are enforced > : (10M soft, 21M hard) on the /var partition, which therefore limits both > : the user's mailbox and the corresponding copy which qpopper creates > : beneath /var/spool/pop . You can user another POP3 Server, like qmail-pop3d or some other Poppers which do not need to copy the whole mailbox. Greetings Bernd -- (OO) -- [EMAIL PROTECTED] -- ( .. ) [EMAIL PROTECTED],linux.de,debian.org} http://home.pages.de/~eckes/ o--o *plush* 2048/93600EFD [EMAIL PROTECTED] +497257930613 BE5-RIPE (OO) If privacy is outlawed only Outlaws have privacy -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: [1.2 installation]: how to tell X to follow swapping of control and caps lock from loadkeys
Hello, > My system (1.2, from Infomagic CDs) doesn't seem to have it. I have > the manual pages, but no such executable (either installed or listed > in the Contents file). Which specific package is it in? I think there is a dependencie missing. Hmm.. no its not missing.. hmm.. some systems might not have VGA cards.. anyway.. its in the svga16 server package, since it will start up an vga server in the default vga mode which is supported on most systems without configuration. Therefore you will have a X Setup program toedit the XF86config file. For your questions I can't help much, dont have the time to figure it out, but have you looked in the Keyboard FAQ, yet? /usr/doc/kbd/kbd.FAQ.txt.gz and XF86Config(5x) together with the documentation for the applications which dont work correctly should help. And dont forget that console setup is completely different from X-kbd setup. Within X it differs from application to application. Probably you need to setup xterm correctly before shells and apllications within the shell will work. Greetings Bernd -- TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word "unsubscribe" to [EMAIL PROTECTED] . Trouble? e-mail to [EMAIL PROTECTED]
Re: [1.2 installation]: how to tell X to follow swapping of control and caps lock from loadkeys
> Where's the documentation on that? It seems to be hiding pretty well here > on my system. E.g., the XF86Config man page doesn't seem to say what options > can go in the options after "XbdOptions". > > Also, why do you suggest "microsoft"? (How do I see what all that would get > me?) Why dont u use the grafical setup tool XF86Setup? There is a menu point for configuration of the keyboard. It will display the keyboards you may select and allows you to use checkboxes for the options. This tool should be started automatically if you istall the Xfree86 3.2 packages! Can't you rember it or din't u see it yet? Greetings Bernd -- (OO) -- [EMAIL PROTECTED] -- ( .. ) [EMAIL PROTECTED],linux.de,debian.org} http://home.pages.de/~eckes/ o--o *plush* 2048/93600EFD [EMAIL PROTECTED] +4972573817 BE5-RIPE (OO) If privacy is outlawed only Outlaws have privacy -- TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word "unsubscribe" to [EMAIL PROTECTED] . Trouble? e-mail to [EMAIL PROTECTED]
Re: ping reply without OS
Hello, > My real complain is when I read "System halted", my assumption has > always been that the cpu has executed the x86 HALT instruction . Why > not, it consumes a lot less enery in this state. It does. But on the other hand interrupt handler may still be active. On linux for example the CPU is halted in the idle task, too. Therefore it will consume much less energy. Thats why you can even get ping replies if your kernel is in an endless loop, cause the incomming data and the irq from the card will interrupt its work and calls the bottom half handler. It's an error if the kernel forgets to unregister all those interrupt routines on halt, but its an understandable 'feature'. But it should NOT happen if you shut down the interface before halt (ifconfig down). Greetings Bernd -- (OO) -- [EMAIL PROTECTED] -- ( .. ) [EMAIL PROTECTED],linux.de,debian.org} http://home.pages.de/~eckes/ o--o *plush* 2048/93600EFD [EMAIL PROTECTED] +4972573817 BE5-RIPE (OO) If privacy is outlawed only Outlaws have privacy -- TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word "unsubscribe" to [EMAIL PROTECTED] . Trouble? e-mail to [EMAIL PROTECTED]
Re: It happened again.
Hi, > I'm on a 386 DX40; 8M/1G. I've never had any of these problems while > on Ethernet at school, but when I went home and plugged myself in to > PPP, I noticed that my swap filled completely within a few hours, > which resulted in my having to hard-reset. try "ps axm" and shift+scrllock to see where the memory vanishes to. Greetings Bernd -- TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word "unsubscribe" to [EMAIL PROTECTED] . Trouble? e-mail to [EMAIL PROTECTED]
Re: Help generating a boot disk for install
> I'm trying to install a new disk drive and would like to take the > 5 disk set I currently have that I used to initially install Debian > and replace the "boot" disk with one with a custom kernel. > > I tried a make zdisk, followed by a rdev /dev/fd0 /dev/fd0. Just read readme.txt on the bootdisk (dos filesystem). Greetings Bernd -- TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word "unsubscribe" to [EMAIL PROTECTED] . Trouble? e-mail to [EMAIL PROTECTED]
Re: PGP
Hello, > I'm not sure about PGP, but DES actually gets _weaker_ if encrypted with > two keys. Three keys does make it much stronger, though, as you say. actually encrypting 3 times with keys of size n if never stronger as encrypting one tome with keysize n*3 (if there is no waekness in the algorithm for special keysizes). The reason why 3DES exists at all is simply because the keysize of DES (56) was too small for nowadays needs and it IS hard to find new secure methods. There is no proof that 3DES is as strong as a modified DES with 168 bit would be. It is expected that it is weaker, and that it is much slower. Using Algorithms like IDEA or others which support larger keys is the better solution. Thats one reason why PGP does not use DES or 3DES. Greetings Bernd -- TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word "unsubscribe" to [EMAIL PROTECTED] . Trouble? e-mail to [EMAIL PROTECTED]
Re: Re[2]: PGP
Hello, > The International Version of PGP is a slightly modified algorithm with > fewer bits. No. This is not true at all. The international PGP Version has the same algorithms with the same number of bits. There is completely no difference between the algortihms used. In facte the International Version was capable to build Larger Keys than the american one. The Reason for this is that RSA in america requires all to use RSAREF library for non-commercial use. There is a european rewrite of this RSA lib. Because it is a rewrite there are no copyright problems with the lib. Because it is not in america u r free to use RSA, cause the RSA patent is only (if at all) valid in the states. The Block chifre used in PGP (IDEA) is developed in Swiss and uses 128Bit in the international and american Version. > Currently, it is illegal under the Data Encryption and > Privacy Act (modified) of 1995 to export encryption programs which use > 56+ bits outside the United States. IMHO is the limit 40Bits for Block chifres. Anyway, it IS illegal to export PPG from the sates (even if that is totally nonsense, since the encrypting algorithms are developed in the free world.) > 1) encrypt with key 1 > 2) decrypt with key 2 > 3) encrypt with key 3 For most existing encryption algorithms there is no proof that will show you that u r realy more secure with that. > Wish everyone all the luck in the world to crack that. Even a machine > capable of a billion processes per second would have to have a million > such processers in order to break even 30bit keys in less time than > the universe is old! Of course the algorithm which uses 3x30 Bits is considered an algorithm with 90bits and illegal to export, too. BTW: afaik is the RSA License valid on US therretory not for US citizens. This is just like even in the states german citizens have to drive like US Law says. a) it is illegal to use PGP-i without RSAref in the states due to RSA Inc. beeing the patent holder for RSA and requires to use RSAref. b) is is illegal to use PGP outside of USA, due to the copyright of RSAI on RSAREF. c) it is illeagl to export PGP from US, due to ITAR rules. d) it IS should be legal to use PGP-i with RSAREF in the states. Just recompile. e) ASCON ZH has the (even in europe) valid patent on IDEA and can charge fees for commercial PGP usage (in the staes and in europe). AFAIK the will not yet charge fees in Europe, since there is no commercial Distributor in Europe and they don't want to mess with small money amounts of thousands of commercial endusers. Greetings Bernd -- (OO) -- [EMAIL PROTECTED] -- ( .. ) [EMAIL PROTECTED],linux.de,debian.org} http://home.pages.de/~eckes/ o--o *plush* 2048/93600EFD [EMAIL PROTECTED] +4972573817 BE5-RIPE (OO) If privacy is outlawed only Outlaws have privacy -- TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word "unsubscribe" to [EMAIL PROTECTED] . Trouble? e-mail to [EMAIL PROTECTED]
Re: A newbie recursion problem...:-))))
Hi, > BTW I'm running the 2.0.25 kernel. Oh...where can I define the max > number of processes > for a user??? Its defined in the Kernel Headers. The number of processes allowed for a user is half the number allowed on the system. 4 process slots are reserved for root. You can limit this with setrlimit(2). See "help ulimit" in bash. #include : --- #define NR_TASKS512 #define MAX_TASKS_PER_USER (NR_TASKS/2) #define MIN_TASKS_LEFT_FOR_ROOT 4 --- The Problem here is not the amount of process slots used, but the amount of virtual memory... worst case u get "256*unshared" about 300k for a shell = 75M menory used by one user. This means if you add 50MB swap to your 40MB ram the above test should not block you system anymore. Of course larger process will use more memory. There is no overall limit for ram used by one user... You can use the lshell to enforce some limits: lshell.conf: default C60P30D20F24// Default limits, 60 min's CPU time, 30 processes, // 20Mb, 24 file descriptors 30*20MB=600MB swap needed to be safe... Greetings Bernd -- (OO) -- [EMAIL PROTECTED] -- ( .. ) [EMAIL PROTECTED],linux.de,debian.org} http://home.pages.de/~eckes/ o--o *plush* 2048/93600EFD [EMAIL PROTECTED] +4972573817 BE5-RIPE (OO) If privacy is outlawed only Outlaws have privacy -- TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word "unsubscribe" to [EMAIL PROTECTED] . Trouble? e-mail to [EMAIL PROTECTED]
Re: Swap overdraft ?
Hi, Bruce: > No, but if you add some swap space you can test if that's the problem. > If you can find an empty partition, you can set it up with "mkswap" and > "swapon" to be a second swap partition. If that works, you can add it to > /etc/fstab so that it's started automaticaly. for testing or temporaryly short swapspce a swapfile is easier. >From mkswap(8): # dd if=/dev/zero of=swapfile bs=1024 count=8192 # mkswap swapfile 8192 # sync # swapon swapfile Greetings Bernd -- TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word "unsubscribe" to [EMAIL PROTECTED] . Trouble? e-mail to [EMAIL PROTECTED]
[no subject]
Hello, > > Wed Aug 21 13:10:46 1996 Guy Maor <[EMAIL PROTECTED]> > > (Debian 1.1.6) > > o Added mount 2.5l-1 > > Fixes major security hole. > > It seems to me that Bernd Eckenfels did not known about the mount security > hole. Sure I did, thats why I told the user to upgrade. I had never a suid mount on my system. (oh.. I know, not important, but I have to watch my reputation here :) Anyway: > As I know, the unique place where you can know that there are some > packages that MUST be updated due to security holes are linux-security, > perhaps linux-alert (but I do not sign it), and debian-users. We tried to get an annoucement about security bugs together for debian-announce (for the lpr bug, for example), but the problem with this is, that the persons who have time to write an alert usually dont know what neeeds to be put into the alert, and the ppl who know about the whole dont have the time to write something. Anyway.. you will see all security FAQ updates concerning debian crossmailed to debian-announce. Mailing the Log with security upgrades to the stable tree will be a good idea, too. We should to that for rex. > about security-hole updated packages in debian-announce. Yes, we talked about this already. Greetings Bernd -- (OO) -- [EMAIL PROTECTED] -- ( .. ) [EMAIL PROTECTED],linux.de,debian.org} http://home.pages.de/~eckes/ o--o *plush* 2048/93600EFD [EMAIL PROTECTED] +4972573817 BE5-RIPE (OO) If privacy is outlawed only Outlaws have privacy -- TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word "unsubscribe" to [EMAIL PROTECTED] . Trouble? e-mail to [EMAIL PROTECTED]
Re: restarting X w/o reboot
Hi, > Over the past couple of days I've been playing with my XF86Config file, > and having to reboot each time to see the results really sucks. I'm > positive there is a better way but a check to the xdm man page reveals > nothing. You can end the Server by pressing ctrl+alt+backspace. (if you ahve allowed that in the config file) then xdm will restart a new one with new configuration. It depends on the configuration, even xdm can restart the x-server automatically after logout, if you put DisplayManager.DISPLAY.terminateServer This boolean resource specifies whether the X server should be terminated when a session termi- nates (instead of resetting it). in xdm's resources. Additionally you can kill the x-server from comamnd line with "killall X". All this won't require you to reboot. If you have the following translation in the xdm resources: xlogin*login.translations: #override\ CtrlR: abort-display()\n\ F1: set-session-argument(failsafe) finish-field()\n\ CtrlReturn: set-session-argument(failsafe) finish-field()\n\ Return: set-session-argument() finish-field() you can even terminate the xdm with ^r in the login window. (if you have started the xdm from inittab it will be restarted and startes a new server, too). Greetings Bernd -- (OO) -- [EMAIL PROTECTED] -- ( .. ) [EMAIL PROTECTED],linux.de,debian.org} http://home.pages.de/~eckes/ o--o *plush* 2048/93600EFD [EMAIL PROTECTED] +4972573817 BE5-RIPE (OO) If privacy is outlawed only Outlaws have privacy -- TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word "unsubscribe" to [EMAIL PROTECTED] . Trouble? e-mail to [EMAIL PROTECTED]
Re: Swap overdraft ?
Hello, > This might explain some strange problems I've been having. Is there a > way to to turn this off? No. You can only add some swap to your system if you reach the mimit. AFAIK there is somewhere a small 'daemon' which adds swap if needed. Of course the swap needs to be reserved, first. You can play around with rlimit to limit the problem. And you can cick ass all users who try to exploit that :). Generally a large swap makes u rather safe (with low resource limits). Greetings Bernd -- TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word "unsubscribe" to [EMAIL PROTECTED] . Trouble? e-mail to [EMAIL PROTECTED]
Re: security
> > o Added mount 2.5l-1 > > Fixes major security hole. > I now installed mount 2.5j from buzz I guess 2.5j is OLDER than 2.5l... umm... > The hack _still works_ so it seemed to be an other problem. Please be sure to get the fixed version of mount, and then try again. You should be able to get it from buzz-fixed or in buzz-upgrades. Greetings Bernd -- TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word "unsubscribe" to [EMAIL PROTECTED] . Trouble? e-mail to [EMAIL PROTECTED]
Re: security
Hi, > /* Mount Exploit for Linux, Jul 30 1996 whats your version of the mount package? Should be fixed long ago... (if it isnt another bug in mount): Wed Aug 21 13:10:46 1996 Guy Maor <[EMAIL PROTECTED]> (Debian 1.1.6) o Added mount 2.5l-1 Fixes major security hole. This is in buzz-fixed! Greetings Bernd -- TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word "unsubscribe" to [EMAIL PROTECTED] . Trouble? e-mail to [EMAIL PROTECTED]
Re: Goodbye, all!
Hello, not, I am NOT a major participaint in the Projekt, only one of 100 Developers and this is my personal oppinion: > However, my belief in Debian and what is stands for is, largely, unshaken. > On the other hand, I should point out that Nixon's real crime was in trying > to *cover up* watergate. In light of that, I would recommend that, now that > the leak has happened, that there be a full disclosure of what the whole > deal was about to begin with. Well, all the trouble about happened in the last few days, there was realy no time to announce anything, yet. > o How close did Debian 1.2 come to being released after the X 3.1 bug was > known? The bootdisks where finished 2 day ago. This means if we won't have sliped the date we would have published quite a few parts of the system without testing. Additionally there are a lot of bugs still in the release which could be considered show-stoppers (like suid-perl is one of the bugs I realy would need to be fixed) > o Who was in favor of releasing it with X 3.1 and why? Brian and a few other developers voted for releasing with 3.1, since they think Debian sliped release dates too often. They considered the Xt whole a minor cause "only" local users are able to exploit it. > o Who was in favor of waiting, and why? Cause releasing a distribution with a bug who enables all local users to gain root would be a bad reputation. Ian and Bruce voted to wait. > o Who has resigned as a result of all of this and what did they control? I could list what was happening here, but I don't think that I am the right person to do. ALL DDEVELOPERS are able to know what have happened. I dont think that users need this information (but I am not the one who has to do that decision. Perhaps Bruce will post anything about it?) > However, I'll also point out that I have only ever tried to put X on a > Debian system *once* and even *that* one didn't work. So, the X 3.1 hole > doesn't affect me at all. Perhaps we can release everything except the > X 3.1... with the understanding that the X 3.2 package will be forthcoming > in a week or two. I perosnally LOVE the new XF86_setup tool. Hey.. I get a graphical setuptool without entering anything! PErhas you will like Xfree86 3.2, too? Anyway, the problem here is, that you can't release a Linux Distribution without X. The major Problem here are not the FTP Debian Users, but the CD Manufacturer. They like to sell official 1.2 Debian CDs in the Minute Bruce announces the Release. If they have to sell them without X11 they will be anoyed. Greetings Bernd -- TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word "unsubscribe" to [EMAIL PROTECTED] . Trouble? e-mail to [EMAIL PROTECTED]
Re: Replacing CPP with GCC
Hi, > You can do this one of two ways (There may actually be more ways than > this): > dpkg -i --force-conflicts /path-to-package/gcc*.deb > dpkg --purge cpp You can even NOT do it, since gcc Depends: on cpp. Actually it would have deleted cpp already if it conflicts with gcc. Greetings Bernd -- TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word "unsubscribe" to [EMAIL PROTECTED] . Trouble? e-mail to [EMAIL PROTECTED]
Re: icmpinfo
Hello, > How to fix it? I checked the resolv.conf and there is already > a line nameserver 127.0.0.1 for every nameserver line in resolv.conf you have to check if there is a nameserver running on that host (dig soa . @127.0.0.1). Remove all lines which don't have an nameserver running. Hmm.. if dst and source port are exchanged the problem can be created by other hosts querying your name server. You nameserver is too slow to anser, and the other host stoped alread waiting for your answer, then it will send a similiar icmp error. Greetings Bernd -- TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word "unsubscribe" to [EMAIL PROTECTED] . Trouble? e-mail to [EMAIL PROTECTED]
Re: icmpinfo
Hi, > 10:59:08.535381 x.xx..xxx.xx > yy.yy..yyy.yy: icmp: > x.xx..xxx.xx udp port route unreachable (frag 22923:[EMAIL > PROTECTED]) > [tos 0xc0] same problem, you are using an non-functionalnameserver. Greetings Bernd -- TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word "unsubscribe" to [EMAIL PROTECTED] . Trouble? e-mail to [EMAIL PROTECTED]
Re: icmpinfo
Hello, looks like you are sending UDP:53 (nameserver queries) to 127.0.0.1 and there is no process to answer those, therefore you get Port Unreachable" errors. look in /etc/resolv.conf for an invalid 127.0.0.1, or start a nameserver. Greetings Bernd -- TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word "unsubscribe" to [EMAIL PROTECTED] . Trouble? e-mail to [EMAIL PROTECTED]
Re: list of changes buzz -> re ?
> individually. I'm running dpkg-ftp right now, but my ISP > is extremely slow and downloading approximately > 21mb is going to take hours. I have a much faster shell > account elsewhere, though. A list of things that > have changed would help. Thanks! > > (Or perhaps a dpkg-shell-ftp kludge? :-) ftp+sz ...) I think dftp can handel this, since you can run it on your shell account with a list of Files to fetch. See dftp --help for instructions. Greetings Bernd -- TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word "unsubscribe" to [EMAIL PROTECTED] . Trouble? e-mail to [EMAIL PROTECTED]
Re: making disk bootable
Hello, > the MBR is "master boot record". this is the actual software that brings > up the system. The MBR in this case is initialized when you install LILO. > Its not something you "install" then add LILO. It *IS* LILO. lilo can be installed as the MBR, but in debian it isnt. Debian has a package called mbr. Lilo depends on it. This little Program will be installed into the master boot record of the system by liloconfig. The PAckage mbr enables you to select the partition to boot from. This is a small subset of the functionality lilo offers, but it is easier for beginners. Read /usr/doc/mbr/README. Greetings Bernd -- TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word "unsubscribe" to [EMAIL PROTECTED] . Trouble? e-mail to [EMAIL PROTECTED]
Re: making disk bootable
Hello, > How do I install the mbr package? Is it a normal .deb package? Right now > my /dev/hda does NOT have an MBR... I need to install it in order to use > lilo. Will liloconf help me out? Yes. Just install lilo with dselect and the mbr package will be present, too. Then run liloconfig, and all should be fine. Of course you can read the Lilo docmentation, too. Greetings Bernd -- TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word "unsubscribe" to [EMAIL PROTECTED] . Trouble? e-mail to [EMAIL PROTECTED]
Re: making disk bootable
Hi, > How do I go about inserting an mbr if my current setup isn't using LILO > (and thus hasn't made the hd bootable)? You should install lilo in the root-fs partition. Then it will be loaded if there is a normal MBR and the partition is activated, or you can install the debians mbr package into the MBR. Try to boot from disk and use the liloconf for this (both). Greetings Bernd -- TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word "unsubscribe" to [EMAIL PROTECTED] . Trouble? e-mail to [EMAIL PROTECTED]
Re: Which proccess using a tcp port?
> Sure, although probably not in the way you had in mind. AFAIK there is > currently no tool that lists open connections along with a list of > processes that created them. Sure it is.. try "lsof". Additionally "netstat -tae" will ist the uid which is listening on a socket (of course this is root in most cases). Greetings Bernd -- TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word "unsubscribe" to [EMAIL PROTECTED] . Trouble? e-mail to [EMAIL PROTECTED]
Re: DSelect Suggestions...
Hi, > Maybe dselect can have an option such 'make a virtual package from my > currently installation' and let you edit, add and change the > configuration. This is called: dpkg --get-selections [ ...] get list of selections to stdout dpkg --set-selections set package selections from stdin And would need a simple "read/write selection list file" menue with selection single list-files. This is how it is done in a lot of commercial applications. You can supply a few pre defined files like: minimal installation, www-server installation and so on. Users are able to add new lists with customized selections of packages. Perhaps an unselect feature is needed? Greetings Bernd -- TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word "unsubscribe" to [EMAIL PROTECTED] . Trouble? e-mail to [EMAIL PROTECTED]
Re: socket permission problems
Hi, > rlogin to another host gives "rmcd: socket: permission denied" > Works fine for root. > > On starting X, I get the grey background, but no windows; > I kill it, and it's been trying to connect to a socket > and getting connection refused, errno = 13. > Again, works fine for root. is /usr/bin/rlogin and /usr/bin/X11/X SUID root? Greetings Bernd -- TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word "unsubscribe" to [EMAIL PROTECTED] . Trouble? e-mail to [EMAIL PROTECTED]
Re: Lilo problem after kernel upgrade to 2.0.25
> boot=/dev/sda3 > root=/dev/sda3 > compact > install-/boot/boot.b ^typo? Anyway, did u run lilo after installing the new kernel? What did it reported? (try lilo -v for more output). Greetings Bernd -- TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word "unsubscribe" to [EMAIL PROTECTED] . Trouble? e-mail to [EMAIL PROTECTED]
Re: Lilo problem after kernel upgrade to 2.0.25
Hi, > LILO Loading linux > Wrong loader, giving up... How does your lilo.conf look like? Greetings Bernd -- TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word "unsubscribe" to [EMAIL PROTECTED] . Trouble? e-mail to [EMAIL PROTECTED]
Re: mkwhatis?
Hi, > > How do i generate a whatis database in Debian Linux? I dont have the whole Mail with the question, but in Debian you dontneed to run mkwhatis. mandb is building its own database for apropos and whatis everytime new pages are detected. Of course yu can rerun mandb to rebuild this index. Greetings Bernd -- TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word "unsubscribe" to [EMAIL PROTECTED] . Trouble? e-mail to [EMAIL PROTECTED]
Re: pppd problems
> # pon > Sorry - this system lacks PPP kernel support (from pppd, I think) AFAIK is this a 2.0.24 Kernel problem, since others reported that, too. Greetings Bernd -- TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word "unsubscribe" to [EMAIL PROTECTED] . Trouble? e-mail to [EMAIL PROTECTED]
Re: Xbase Installation Problems
Hi, > I think I found the cpp package but haven't been able to locate the > elf-x11r6lib package. Can anyone clue me on on where it might be found > exactly? I've already taken a look around the Debian.org site but didn't > find it. The Package is called xlib. Why dont you simply use dselect with the ftp method for that? It will prompt you for all the dependencies. > I also looked in the XFree86 web site and was wondering if the binaries > listed there for their 3.2 version would work with the Debian system. You may be able to replace some installed Programs (like the X-Server) with new 3.2 binaries. But if you arent experienced with X11 Administration/Installation youshould not do that. > Can > anyone tell me if this will work as the alternative? Do you still use dpkg > or dselect to get it installed? No. You will need to copy those files by hand. This will probably produce a broken setup and dpkg will be unable to upgrade. Simply wait a few days if youneed 3.2, and it will be available as a debian package. But if youonly want to get it work, thaen just install the xlib with deselect. Greetings Bernd -- TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word "unsubscribe" to [EMAIL PROTECTED] . Trouble? e-mail to [EMAIL PROTECTED]
nm /lib/libc.so
Hi, some softwre PAckages run nm on libc to get the available functions. This wont work with ELF anymore. nm only prints symbols for .a files. Arent the symbols in .so needed for linking? Greetings Bernd -- (OO) -- [EMAIL PROTECTED] -- ( .. ) [EMAIL PROTECTED],linux.de} http://home.pages.de/~eckes/ o--o *plush* 2048/A2C51749 [EMAIL PROTECTED] +4972573817 *plush* (OO) If privacy is outlawed only Outlaws have privacy -- TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word "unsubscribe" to [EMAIL PROTECTED] . Trouble? e-mail to [EMAIL PROTECTED]
Re: Ctrl-Alt-Del doesn't work under X?
Hi, > |The way we have handled this at a customer installation is that > |we created a user "shutdown" who was privileded to run shutdown. > > You are not the only one to suggest this... the problem with this is > that it is highly insecure (well, you might say so is C-A-Del from the > keyboard, but this implies access to a card-controlled, monitored > room in our case), people can reboot from all over the net. And our > machines are teaching PCs, i.e. connected to the net. There is no problem with checking for /dev/ttyXX as the controlling tty of he shutdown user's login. Greetings Bernd y -- TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word "unsubscribe" to [EMAIL PROTECTED] . Trouble? e-mail to [EMAIL PROTECTED]
Re: ircII.servers file
Hi, > I've edited the ircII.servers file, but when I run irc (the version I > took in the Debien distribution), it doesn't change anything in the > servers list. > I've compiled an irc-ii client, and the result is the same. AFAIK ircII is looking for /usr/lib/irc/ircII.servers" if there is no Environment variable. This file should be a link to /etc/ircII.servers. I will fix this in 2.9.3roof (yes, the 3 is added handish, cause the words wont sort in the right order for versions). Greetings Bernd -- TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word "unsubscribe" to [EMAIL PROTECTED] . Trouble? e-mail to [EMAIL PROTECTED]
Re: 386 Dx-40
Hi, > A Q. Q. is anyone out there using still using a 386 dx-40 (running > Linux) and if so could you let us know what problems you are having if any > I am considering the purchase of one.. I'm running a 386DX33-256k-8M-1GB/ide-270MBsyquest-ET4000/1MB with no problems. Sure X11 is very Memory consuming but the system is very usable in textmode. I have attached a vt220, a V.34+ Modem and a second Display with MDA. My Mainboard does not allow to upgrade the RAM :( With 16MB this system would even be useable for some X11 work. Greetings Bernd -- (OO) -- [EMAIL PROTECTED] -- ( .. ) [EMAIL PROTECTED],linux.de} http://home.pages.de/~eckes/ o--o *plush* 2048/A2C51749 [EMAIL PROTECTED] +4972573817 *plush* (OO) If privacy is outlawed only Outlaws have privacy
Re: no liloconfig?
Hi, > However, I noticed that liloconfig is not included in the lilo package. At > least, I couldn't find it. I managed to copy it off a Slackware CD I had > lying around, but I was wondering why it wasn't included -- it's not that > big, and is very useful! There is no liloconfig included in the upstream lilo package. I'm currently writing something like that but it will take some time. The base system needs to be fixed (storing MBR before mbr is installed and stuff like this), therefoer I dont think using Slacks's liloconfig is ok for beeing included without changes. Can you please send me the source of the tool privately? Thanks Bernd -- (OO) -- [EMAIL PROTECTED] -- ( .. ) [EMAIL PROTECTED],linux.de} http://home.pages.de/~eckes/ o--o *plush* 2048/A2C51749 [EMAIL PROTECTED] +4972573817 *plush* (OO) If privacy is outlawed only Outlaws have privacy
Re: cfs Debian package available!
Hi, > > 1. I need a non US and a non Canada Web site, otherwise it would become > > illegal to export Debian without the permission of either government and > > AT&T. I vote for a non-us (or euro or whatever) Section for things like: xntp, SSLeay, ssh, cfs... There is already SSLeay and ssh on the Uni-Mainz (GERMANY), perhaps we can build a euro-master for distributiing that part of debian? Greetings Bernd -- (OO) -- [EMAIL PROTECTED] -- ( .. ) [EMAIL PROTECTED],linux.de} http://home.pages.de/~eckes/ o--o *plush* 2048/A2C51749 [EMAIL PROTECTED] +4972573817 *plush* (OO) If privacy is outlawed only Outlaws have privacy
Re: Debian 1.2 release date?
Hi, > Is the release of Debian 1.2 around the corner as scheduled? How about the PAckages with "Distribution: unstable" shouldnt we change this to Distribution: rex" since it would require changing if the new release becomes stable, too? Greetings Bernd
Re: char-major-10
Hi, > how exactly i add the alias : > alias char-major-10 char-major-10-%d ? add in /etc/conf.modules: alias char-major-10 misc or even better load misc.o from /usr/src/linux/drivers/char/misc.o (or /lib/modues/current/misc/mic.o) This module will request itself the char-major-10-%d modules and you will get another missing entry in the logs with the minor number added. Greetings Bernd
Re: char-major-10
Hi, > so is it "10," / "10" ? ls -l /dev |grep "10," From: /usr/src/linux/Documantation/devices.txt: 10 charNon-serial mice, misc features 0 = /dev/logibm Logitech bus mouse 1 = /dev/psauxPS/2-style mouse port 2 = /dev/inportbm Microsoft Inport bus mouse 3 = /dev/atibmATI XL bus mouse 4 = /dev/jbm J-mouse 4 = /dev/amigamouse Amiga mouse (68k/Amiga) 5 = /dev/atarimouse Atari mouse 6 = /dev/sunmouse Sun mouse 7 = /dev/amigamouse1 Second Amiga mouse 128 = /dev/beep Fancy beep device 129 = /dev/modreq Kernel module load request 130 = /dev/watchdog Watchdog timer port 131 = /dev/temperature Machine internal temperature 132 = /dev/hwtrap Hardware fault trap 133 = /dev/exttrp External device trap 134 = /dev/apm_bios Advanced Power Management BIOS 135 = /dev/rtc Real Time Clock 136 = /dev/qcam0QuickCam on lp0 137 = /dev/qcam1QuickCam on lp1 138 = /dev/qcam2QuickCam on lp2 139 = /dev/openprom SPARC OpenBoot PROM BTW: if you add the alias for char-major-10 you will get requests for char-major-10-%d (with %d is a number from the above list) and you should know which device is missing. Greetings Bernd
Re: char-major-10
Hi, > > Sep 9 03:53:44 sim modprobe: Can't locate module char-major-10 > > You are running kerneld. You go to open a character device with major > number 10. There is no driver for the device and kerneld tries to load > it. char-major-10 is handled by the drivers/char/misc.o (which will be installed in the kernel if: #if defined (CONFIG_BUSMOUSE) || defined(CONFIG_UMISC) || \ defined (CONFIG_PSMOUSE) || defined (CONFIG_MS_BUSMOUSE) || \ defined (CONFIG_ATIXL_BUSMOUSE) || defined(CONFIG_SOFT_WATCHDOG) || \ defined (CONFIG_PCWATCHDOG) || \ defined (CONFIG_APM) || defined (CONFIG_RTC) || defined (CONFIG_SUN_MOUSE) ). If none of those options are installed into the kernel, and it will be compiled as a module if one of the above options are build as modules. Therefore there is one alias needed: alias char-major-10 misc Each single device with major 10 will be requested from kerneld with: char-major-10-%d, therefore the following aliases are needed in addition: alias char-major-10-0 busmouse alias char-major-10-1 psaux alias char-major-10-2 msbusmouse alias char-major-10-4 amigamouse alias char-major-10-5 atarimouse alias char-major-10-6 ? alias char-major-10-130 wdt (or softdog) alias char-major-10-131 wdt alias char-major-10-134 apm_bios alias char-major-10-135 rtc (this is what i read from the source, it is neighter complete nor i am sure if it is correct). Greetings Bernd -- (OO) -- [EMAIL PROTECTED] -- ( .. ) [EMAIL PROTECTED],linux.de} http://home.pages.de/~eckes/ o--o *plush* 2048/A2C51749 [EMAIL PROTECTED] +4972573817 *plush* (OO) If privacy is outlawed only Outlaws have privacy
Re: files without package
Hi, > /etc/passwd~ > Looks like a temp file. Can anyone shed some light on this? This can be created by editing /etcpasswd by hand Delete it.. > > /usr/bin/[* > This is junk. Blow it away. No, this is the Binary "test", it is needed for things like "[ -f "bla" ]" for shells wich dont support builtin test support. This is required from POSIX afaik. > /dev/initctl| > /dev/printer= > /dev/xconsole| > Are there really these symbols on the end? Those are named pipes and unix domain sockets needed to operate the system. Greetings Bernd
Re: Problem unpackagin Debian-1.1.4
Hello, > I had this happen to me with two system installations I was running of > 1.1.4 (from a CD I wrote a few weeks ago). Has anyone seen this on a > later system than 1.1.4? I have seen this a few times with 1.1.0-2. My question if it is possible was answered with no :) Oh Well, glad the Problem is finally recognized. Greetings Bernd
Re: wrong /dev/console messes up mouse -- why?
Hi, > Anyone know why /dev/console is important to gpm or to x in this way? I > don't think it's a bug, I just wanna figure out _why_ this happens.. I reported it to the Maintainer and Upstream deveoper already. GPM should use /dev/tty0 instead of /dev/console, since /dev/console might be pointing to other hardware some times. Should be fixed in recent Packages? Greetings Bernd
Re: mailing list
> A good thing to see is some news mecanism. Aren't time to put > Debian list on news groups? linux.debian.users. Go and get the Linux Hierachy. Greetings Bernd
Re: cron
Hi, > If anyone really knows how to get cron to stop pestering me, let me = > know.=20 simply avoid that cron jobs produce output if the operate normally. Then you will only get mails if something went wrong. Thats how it is suppoed to work. Greetings Bernd
Re: ipfwadm?
Hi, # ipfwadm -F -i masquerade -P all -S 192.168.210.0/0 -D 0.0.0.0/0 this is OK. > The reason for the question is this; the ipfwadm -M -l shows no masquerade > rule set. ipfwadm -M -l (or netstat -M) will only show you masqueraded connections, not the rules. The rules are displayed with "ipfwadm -F -l". > So, I ran tcpdump on wb2oyc while doing this. Sure enough, there I see > packets sent from the Web host directly to the address of the laptop (!) > which is assigned the address in the 192.168 reserved space and shouldn't > ever get thru my ISP's router! I think tcpdump is collecting the already masqueraded packets. You need to snoop from an other host. Or simply use telnet to loginto any system which will show you the source you are connecting from. Greetings Bernd
Re: Not keeping correct time
Hi, > I have these two lines in a script that cron runs nightly for root > > netdate tcp > clock -u -w clock is inteligent enough to correct systematic errors. The options for this are controled in /etc/adjtime. The clock is adjusted everytime you boot. If you want this more frequently, put an "clock -au" into cron.daily. Of course netdate is the better solution, as long as you have net-access. Greetings Bernd
Re: StarOffice under Debian
Hi, > The guys at StarDivision are considering making a version with statically > linked Motif :) but "...cannot promise any release date for these > versions..." :-( I read some articles that it runs with lesstiff (well, at lest it starts with it after some patching..) Sorry, can't rember the location of the page about that topic. Of course this software needs a high end PC to run. If you dont have 32MB you will find yourself sleeping in front of the 'puter very often. Greetings Bernd
Re: German manpages
Hi, > Please get the actual release of it, the documentation contains a > paragraph inspired by Ray Dassen that describes how to activate them. Well, setting LANG works with them, thanks. But I cant find any documentation in the binary package... (the readme itself desnt contain anything (btw: it is in german *ugh*)). Greetings Bernd
Re: Problem with 3C509 ifconfig
> >ping: sendto: Network is unreachable > >ping: wrote 166.117.11.123 64 chars, ret=-1 > >Destination Gateway Genmask Flags MSS Window irtt > >Iface > >166.117.11.125 0.0.0.0 255.255.255.255 UH 1500 0 0 eth0 > >127.0.0.0 0.0.0.0 255.0.0.0 U 3584 0 0 lo There is no default an no net route, therefore the kernel doesnt know how to reach 166.117.11.123. Greetings Bernd
Re: inetd killing pop3d
Hi, > inetd[139]: pop-3/tcp server failing (looping), service terminated > Anyone know what the inetd daemon.log entry means or what may be causing = > it?=20 There is a limt of 40connections/minute in inetd. If you have more connections in a minut inetd will disable the service for 10minutes for loop-prevention. You can specify a higher limit for the servive with: pop-3 stream tcp nowait.100 root/usr/sbin/tcpd /usr/sbin/in.pop3d NOTE: since you wrote you wont get that many requests there is eighter an error in the connection detection of inetd, or your pop3d isnt executed everytime a connection is comming in (check hosts.* and the tcpd syslog). Greetings Bernd -- (OO) -- [EMAIL PROTECTED] -- ( .. ) [EMAIL PROTECTED],linux.de} http://home.pages.de/~eckes/ o--o *plush* 2048/A2C51749 [EMAIL PROTECTED] +4972573817 *plush* (OO) If privacy is outlawed only Outlaws have privacy
Re: LILO trouble
Hi, > Now, I decided to convert into Debian (I just love it's package system), so I > through out the Slackware stuff and installed the three disks base system. I > had to install LILO by hand because the instalation package tried to install > it on the linx partion, which is the second partion on the secon harddisk > (/dev/hdb2). I placed it on (/dev/hda). Then I rebootet. Then insted of the > LILO text that is supposed to show up when LILO loads I only got "L" followd > by "04" repeated in what seemsed to infinity. # 0x04 "Sector not found". This typically indicates a geometry mismatch. #If you're booting a raw-written disk image, verify whether it was #created for disks with the same geometry as the one you're using. If #you're booting from a SCSI disk or a large IDE disk, you should check, #whether LILO has obtained correct geometry data from the kernel or #whether the geometry definition corresponds to the real disk geometry. #(See section "Disk geometry".) Removing COMPACT may help too. So may #adding LINEAR. You can see if the Geometry in the Bios is the same as Linux reports on startup of the kernel. If not, you should specify the geometry in lilo.conf as you have enterd it in the System Bios. Greetings Bernd PS: read /usr/doc/lilo/Manual.txt (of lilo_19-1.deb). -- (OO) -- [EMAIL PROTECTED] -- ( .. ) [EMAIL PROTECTED],ka.sub.org} http://home.pages.de/~eckes/ o--o *plush* 2048/A2C51749 [EMAIL PROTECTED] +4972573817 *plush* (OO) If privacy is outlawed only Outlaws have privacy
Re: how to boot single-user mode?
Hi, > I'm assuming you use lilo. when you boot up and get the lilo prompt, If you dont get the lilo prompt you need to hold down the shift-key before the kernel is loading. This will be a user option in liloconfig. BTW: instead of 'single' you can also use 'emergency' which will even skip the sysinit script (in case you have a REAL problem that you systemget stuck before it is able to enter single user mode). Greetings Bernd
Re: IPX and loopback
Hi, > I'm not clear what the "real" fix should be. its kind of a bug in ifconfig an will be fixed in a future release of ifconfig by me. Greetings Bernd net-tools upstream maintainer
Re: The "*" character (was: Latex )
> >It would be helpful if you could tell us what version of the packages > >you have installed. For example, if you would run this commands: > > > > dpkg -l *tex* > > I noticed that this doesn't work under tcsh, but does work under > bash. Is there a difference between how the * character is treated > under the two shells? '*tex*' works with both shells. bash will not replace a clobber pattern with the empty string if no match is found, tcsh does (AFAIK). bash(1) # Pathname Expansion # After word splitting, unless the -f option has been set, # bash scans each word for the characters *, ?, and [. If # one of these characters appears, then the word is regarded # as a pattern, and replaced with an alphabetically sorted # list of pathnames matching the pattern. If no matching # pathnamesarefound,and the shell variable # allow_null_glob_expansion is unset, the word is left # unchanged. If the variable is set, and no matches are # found, the word is removed. When a pattern is used for # pathname generation, the character `.'' at the start of # a name or immediately following a slash must be matched # explicitly, unless the shell variable glob_dot_filenames # is set. The slash character must always be matched # explicitly. In other cases, the `.'' character is not # treated specially. and bash(1) set # -u Treat unset variables as an error when per- # forming parameter expansion. If expansion # is attempted on an unset variable, the # shell prints an error message, and, if not # interactive, exits with a non-zero status. # Greetings Bernd -- (OO) -- [EMAIL PROTECTED] -- ( .. ) [EMAIL PROTECTED],ka.sub.org} http://home.pages.de/~eckes/ o--o *plush* 2048/A2C51749 [EMAIL PROTECTED] +4972573817 *plush* (OO) If privacy is outlawed only Outlaws have privacy
Re: Problems booting with new kernel...
Hi, > VFS: Cannot open root device 03:02 your IDE driver is missing or can't find the disk. Is there any lines about IDE disks on the screen? Greetings Bernd
Re: LILO vs LOADLIN (was Re: LILO and W95)
Hi, > The DOS+LOADLIN solution is in my opinion a very practical and safe one. Yes, that is true. And I would suggest everyone who starts with Linux to use this combination, if: - he has a Dos system - she doesnt need the additional boot password security - has a minute more time > I read > "much safer than LILO" somewhere and some time ago, but I cannot recall why > nor > if it has changed with the last versions of LILO for which horror histories > abound. Anybody knows? Well, with lilo you can mess up your configuration if you do it wrong. On the other hand lilo is very flexible and supports the fanciest situations (like booting dos from drive d:). I'm just trying to upload a new lilo package. My auto config script is not yet finished, o the upload is basically a new upstream version, until I'm finisched with "liloconfig", which should help a little bit. Greetings Bernd
Re: LILO and W95
Hi, > other = /dev/hda1 > label = win95 > loader = /boot/any_d.b AFAIK any_d.b is used to swap C: and d: drive. If you OS is on the first drive you need to run chain.b instead. Greetings Bernd -- (OO) -- [EMAIL PROTECTED] -- ( .. ) [EMAIL PROTECTED],ka.sub.org} http://home.pages.de/~eckes/ o--o *plush* 2048/A2C51749 [EMAIL PROTECTED] +4972573817 *plush* (OO) If privacy is outlawed only Outlaws have privacy
Re: Ipfwadm
Hi, > Just one more thang... I know ping wont work through this, but is there > something I can do to make FTP operational from all the other machines > besides the Linux box? you can eighter use passive FTP from the PC (Netscape does this for example), or you need to load the ip_masq_ftp module. (With depmod ip_masq_ftp, or by inserting a line into /etc/modules and reboot). Greetings Bernd
Re: Wingate/IPFWADM
> 192.168.0.9 is the linux box, named CURLEY > 192.168.0.3 is a win95 box named CADZILLA > 192.168.0.4 is a win95 box named BLOO > ipfwadm -F -m -a accept -S 192.168.0.3/24 -D 0.0.0.0 You can manage this with two commands (one for each host): "ipfwadm -F -a masq -S 192.168.0.3 -D 0/0" "ipfwadm -F -a masq -S 192.168.0.4 -D 0/0" or: "ipfwadm -F -a masq -S 192.168.0.0/29 -D 0/0" (will masquerade host 192.168.0.1-192.168.0.7) You can look at the Rules with "ipfwadm -F -ln" The -m Option is ONLY used to display the active connections, NOT for setting a masquerade connection. The Default Destination must be given with a /0 netmask, or masquerading will only be used if you try to connect to the HOST 0.0.0.0. Greetings Bernd -- (OO) -- [EMAIL PROTECTED] -- ( .. ) [EMAIL PROTECTED],ka.sub.org} http://home.pages.de/~eckes/ o--o *plush* 2048/A2C51749 [EMAIL PROTECTED] +4972573817 *plush* (OO) If privacy is outlawed only Outlaws have privacy