Re: [linux-security] Re: Chrooting bind 8.1.2 under debian 2.0
On Fri, 17 Jul 1998, Cougar wrote: [mod: It is slightly less trivial than 'chroot(/)', but if you can execute arbitrary code as root, you can break out of the chrooted environment. --REW] My idea is to run named non-root UID/GID. As named needs to bind port 53 which is below 1024 there are problem to execute it. One solution is to rewrite named code (like httpd) another is to make the hole into the kernel. Both are nonstandard solutions. There are also possible to use [mod: Patches are floating around. -- REW] Patches? Bind 8.1.2 has command-line options for running as non-root UID/GID and chrooted. It binds to port 53 before dropping root. This is only a problem if you have interfaces appearing/disappearing randomly that you need named to bind to. Most real name servers probably don't have that problem. -- Jon Lewis [EMAIL PROTECTED] | Spammers will be winnuked or Network Administrator | drawn and quartered...whichever Florida Digital Turnpike| is more convenient. __http://inorganic5.fdt.net/~jlewis/pgp for PGP public key -- Unsubscribe? mail -s unsubscribe [EMAIL PROTECTED] /dev/null
Re: pppd 2.3.1
On Mon, 24 Nov 1997, Chuma Agbodike wrote: Does pppd version 2.3.1 have demand dial built into it or does one still Does ppp 2.3.1 have documentation, or do you still have the read the source to see what features are built in? -- Jon Lewis [EMAIL PROTECTED] | Unsolicited commercial e-mail will Network Administrator | be proof-read for $199/message. Florida Digital Turnpike| __http://inorganic5.fdt.net/~jlewis/pgp for PGP public key -- TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word unsubscribe to [EMAIL PROTECTED] . Trouble? e-mail to [EMAIL PROTECTED] .
Re: [Linux-ISP] problems with st0 - HELP! :)
On Fri, 27 Dec 1996, Ricardo Kleemann wrote: Dec 27 09:17:00 irvine kernel: st0: Error with sense data: extra data not valid Current error st09:00: sns = 70 3 Dec 27 09:17:00 irvine kernel: ASC= 3 ASCQ= 2 Dec 27 09:17:00 irvine kernel: Raw sense data:0x70 0x00 0x03 0x00 0x00 0x00 0x00 0x0a 0x00 0x00 0x00 0x00 0x03 0x02 0x00 0x2a Any clues out there? Bad cables or a dirty tape drive? -- Jon Lewis [EMAIL PROTECTED] | Unsolicited commercial e-mail will Network Administrator | be proof-read for $199/hr. Finger [EMAIL PROTECTED] for PGP public key___ -- TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word unsubscribe to [EMAIL PROTECTED] . Trouble? e-mail to [EMAIL PROTECTED]
[Linux-ISP] Re: problems with st0 - HELP! :)
On Fri, 27 Dec 1996, Ricardo Kleemann wrote: Dec 27 09:17:00 irvine kernel: st0: Error with sense data: extra data not valid Current error st09:00: sns = 70 3 Dec 27 09:17:00 irvine kernel: ASC= 3 ASCQ= 2 Dec 27 09:17:00 irvine kernel: Raw sense data:0x70 0x00 0x03 0x00 0x00 0x00 0x00 0x0a 0x00 0x00 0x00 0x00 0x03 0x02 0x00 0x2a When was the last time you cleaned the drive? DAT's need frequent cleaning. -- Jon Lewis [EMAIL PROTECTED] | Unsolicited commercial e-mail will Network Administrator | be proof-read for $199/hr. Finger [EMAIL PROTECTED] for PGP public key___ ~~ To [un]subscribe to this list, contact [EMAIL PROTECTED] Please send contributions for the mailing list to: [EMAIL PROTECTED] Please contact the mailing-list-owner as: [EMAIL PROTECTED] -- TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word unsubscribe to [EMAIL PROTECTED] . Trouble? e-mail to [EMAIL PROTECTED]
Re: [Linux-ISP] NCR 825 ctrler
On Thu, 10 Oct 1996, Ricardo Kleemann wrote: Would you say the Buslogic is better due to higher cost? I've always heard good things about the NCR controllers relative to Linux, but does the fact that they are _much_ cheaper than the BT or Adaptec mean they are poor performers? Has anyone made any comparisons? There are definitely some shortcuts taken on the NCR or some bells and whistles on the Buslogic...depending on how you look at it. My impression is that Buslogic has been as helpful as possible with Leonard Zubkoff writing the Buslogic Linux driver. The 825 has a BIOS...but the 810 based cards do not, and can't be used to boot from a SCSI disk unless your system BIOS has the appropriate BIOS extensions built in. Most Pentiums do...but some don't. -- Jon Lewis [EMAIL PROTECTED] | Unsolicited commercial e-mail will Network Administrator | be proof-read for $199/hr. Finger [EMAIL PROTECTED] for PGP public key___ -- TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word unsubscribe to [EMAIL PROTECTED] . Trouble? e-mail to [EMAIL PROTECTED]
Re: [Linux-ISP] Re: NCR 825 ctrler
On Thu, 10 Oct 1996, Daniel Stringfield wrote: Well, I will say this about Adaptec... Just like many other name brands, you pay for the name. Thats why Digi International makes you pay through the nose! You pay $2 for the board, $700 for the Digi logo. Another problem iwht the high-end name brands is that they sometimes have the attitude that only they can write drivers, and so there's no point in releasing programming info, cause that will only encourage the writing of bad drivers. However, since most big name brands don't bother with Linux drivers, that generally means either some poor programmer has to reverse engineer the thing or no driver will be written...and we won't use their product. -- Jon Lewis [EMAIL PROTECTED] | Unsolicited commercial e-mail will Network Administrator | be proof-read for $199/hr. Finger [EMAIL PROTECTED] for PGP public key___ -- TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word unsubscribe to [EMAIL PROTECTED] . Trouble? e-mail to [EMAIL PROTECTED]
Re: [Linux-ISP] NCR 825 ctrler
On Thu, 10 Oct 1996, Ricardo Kleemann wrote: I saw a price list which had the NCR 825 controller, and it said it's a Fast Wide controller. Is that true? Why is it so much cheaper than the Adaptec, for example? Is it a poor performer? The price was about $100 cheaper than the adaptec. The NCR 8xx based cards are typically very cheap and fast. There are some interesting comments about them in the SCSI-HOWTO. I think they're cheap because they are one of the first SCSI controllers to be totally integrated into 1 chip. The NCR 810 based card is basically one chip, one 40mhz osscilator, a few capacitors and resistors and a PCI card. Anyone use it? Is it worth to buy it? I've not gotten an 825 yet, but I have around a dozen 810's in use. They've become the standard FDT SCSI card. At about $59 each, they're hard to pass up. I'd get the 825 if you want fast-wide on a budget, or a BT-958 if you're not. I'd pass on the Adaptec since they seem to be less cooperative about releasing programming info and the 29xx driver seems to have been slow to stabilize because of this (I assume). -- Jon Lewis [EMAIL PROTECTED] | Unsolicited commercial e-mail will Network Administrator | be proof-read for $199/hr. Finger [EMAIL PROTECTED] for PGP public key___ -- TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word unsubscribe to [EMAIL PROTECTED] . Trouble? e-mail to [EMAIL PROTECTED]
