Re: iptables log target logs everything to tty*. Why?
On Fri, 2006-06-23 at 00:18 +0200, Erik Persson wrote:
Hey!
I'm running a debian sarge as a router for a network, and I'm using
iptables. I need to log certain stuff from iptables, and I thus have
rules like:
${PROG} -A FORWARD -i eth1 -o eth0 -p tcp --dport 135 -m limit
--limit 1/s -j LOG --log-prefix Blaster portscan
This however has the not so desirable side effect of writing every log
message from iptables to all tty:s as well as to /var/log/messages. And
I can tell you it is very annoying!
First I just thought it had something to do with syslogd and checked
syslogd.conf. I could not find any rule that would generate this
behavior, but to be on the safe side I stopped syslogd.
The messages kept on coming.
Then I thought it might be klogd and I killed it off as well. The
messages kept on coming on the ttys. Then I tried klogd -c 0 whithout
any luck.
Does anyone know how to get rid of this other than just removing the log
rules from iptables?
/Erik Persson.
Another option is to make the action in the rules ULOG and change
--log-prefix to --ulog-prefix. This needs the ulog-daemon for logging
though, but it's available on debian. Install it and all your messages
will be sent to ulog.
Philippe De Ryck
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: mount pendrive fstab entry ?
On Sat, 2006-06-17 at 21:00 +0100, B.Hoffmann wrote: Hi all, after some experimenting my fstab entry for mounting a pendrive now looks like this dev/sda/media/usbdrive autorw,user,noauto 0 0 but it still doesn't work (obviously or would not post). Before wasting more time on trying to figure out this relatively simple issue I thought maybe you guys would hopefully be kind enough and give me a quick solution just by posting what entry you got. Ah, and it's formatted in ext2 so auto in above is probably wrong? Or should it work with auto? Thanks a lot once again. (It's been a while since last posting here anyway) You can see the list of available partitions using fdisk -l /dev/sda. Then try mouting it by hand first (as root): mount /dev/sdaX /media/usbdrive. If that works, then edit your fstab (just faster by hand :)). Also check syslog for mount errors (check in real time using: tail -f /var/log/syslog in a terminal) Good luck Philippe De Ryck -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: mount pendrive fstab entry ?
On Sun, 2006-06-18 at 11:28 +0100, B.Hoffmann wrote: Thanks works perfect now. Kind Regards, B.Hoffmann Linux User #398054 -Zenwalk- -Ubuntu- -Debian (Sarge)- Oh crap, ignore my last message, didn't see this one Philippe De Ryck -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: Network Installation
On Wed, 2006-06-14 at 00:39 +0200, Miroslaw Dobrzanski-Neumann wrote: Hello, I've tried to install sarge over netowrk but I failed to do it for the following reasons Infrastructure: Internet access via DSL WLAN Router **ONLY WLAN* with WPA, The target computer uses successfully ASUS WL 138g PCI WLAN Card That implicats that in order to install debian the bootstraping process must contain the following 1. ndiswrapper 2. wpa_supplicant None of them is included on the minimal CD. They are neither conatined on the first installation CDROM nor on second nor on third nor Because the computer has only CD ROM drive one must get about 12 CDROMS to get both tools and be finally able to perform network installation (at this stage no more needed) I would be very glad if you could place the both tools on both the minimal and the first CDROM. Hi, Don't know about the cdrom, but there may be another solution. There is a package debootstrap which basically downloads all the repositories, puts them in a folder (for instance a seperate partition mounted somewhere) and you can configure what you need to configure. Afterwards, you boot that system and finish the installation. Debootstrap needs a running Linux (Debian = maybe knoppix?) but there are LiveCD's out there that can help you with that. Just a suggestion Regards Philippe De Ryck -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: GNOME new file selection dialogs
On Wed, 2006-06-14 at 12:33 -0700, Kelly Clowers wrote: On 6/14/06, Michael Marsh [EMAIL PROTECTED] wrote: On 6/14/06, Kelly Clowers [EMAIL PROTECTED] wrote: And returning to the original topic, I don't get the hate for the GTK file picker. Given a choice, I will take the QT version, but ever since I learned that you can just start typing a path, it hasn't bothered me much. Of course, I also usually just download to ~/Downloads and if it needs moved, I move it from the command line. Where the suckitude of the new GTK file picker really shines is when you need to specify that a file should be opened with a program in /usr/bin. Unless they've fixed that recently. I really don't like typing /usr/bin/xine and then waiting a minute for the OK button to become clickable. Well, perhaps not a full minute, but on a 1GHz laptop it's an excruciatingly long wait nonetheless. Oh yeah, I always forget about that because SeaMonkey has a non-GTK path field for that (you can click on the Chose button and get the GTK picker, but why would you, unless you forgot the path or the name?). Yeah, the waiting on /usr/bin isssue is bad and needs to be fixed. I run Ubuntu 5.10 (Breezy) here (shame on me :)) and it takes long to load indeed, but I can select the app and click the open button while the contents are loading. This is in Gnome 2.12.1. Regards Philippe De Ryck -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: Mixed dual-monitor setup: too weird?
On Sun, 2006-06-11 at 13:23 -0500, Reid Priedhorsky wrote: Hi folks, I'm contemplating a dual-monitor setup consisting of a 1280x1024 LCD and a 1024x768 LCD. There's a couple of sources of oddity here: the difference in resolution and the different display technologies. Has anyone tried a setup like this? Is it OK, or too weird to use? Thanks, Reid Why would that be weird? Of course, you won't have two identical screens or a symmetric setup, but that works just fine. I am talking about two separate screens in the config, not xinerama or other stuff. That's how I use it and how I like it. Good luck! Philippe De Ryck -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: ejecting CD in a program....
On Fri, 2006-06-09 at 23:17 +0100, Digby Tarvin wrote: Anyone know the reason for this mysterious behaviour?: I am writing a little application which has to wait for a CD to be loaded into the drive, obtain some data from the CD, and then eject it ready for the next one What I have found is that if there is initially no CD in the drive, the program waits successfully, but fails to eject. If there is an initial CD in the drive it does not need to wait, and the eject succeeds.. With a little trial and error, I have found that closing and re-opening the device before the eject can solve the problem, but ONLY with a sleep between close and open. If I leave the device open, then no amount of sleeping before the eject will help... ... Hi, No solution here, but maybe you could check out the source of the command eject? This works pretty good, so maybe you find some clues in there. Good luck Philippe De Ryck -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: Security updates and apt-get
On Sat, 2006-06-10 at 15:18 +0200, Lubos Vrbka wrote: Very good! I will schedule upgrades with crontab plan. i think this is not very good idea. from time to time, apt/aptitude/dselect/whatever you will use needs human intervention during update/upgrade. an error can occur, or other problems. imho, you should perform the update/upgrade personally. Maybe you can put together a little script to check for updates and notify you when there are updates pending. I don't know if something like this already exists? You can also subscribe to a notification list of package updates. I believe this covers all the updates in stable (correct me if I'm wrong). Regards Philippe De Ryck -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: Slow initial connection to NFS mounts
On Tue, 2006-05-30 at 07:31 -0400, [EMAIL PROTECTED] wrote: I have been migrating my boxes from Mandrake 2005 to ubuntu and now kubuntu. My server is a debian install. I have noticed that the ubuntu machines take a much longer time to establish the connection to the NFS server. Once the connection is done everything works fine. The Mandrake boxes connect quickly. I am talking several minutes for 5 mounts. Any suggestions? Hi, Do you have portmap running on the ubuntu machines? (/etc/init.d/portmap start) Hope this solves your problem! Philippe De Ryck -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: probleempje..?!
On Mon, 2006-05-29 at 15:14 +0200, -=greya=- wrote: hi, ik heb onlangs de Debian 64bit netwerk-installatie cd gedownload, deze herkent mijn SATA-DVD brander niet,maar ik raak ook niet verder dan de herkennings module van de cd ..? terwijl dit ee netwerk installatie cd zou zijn..?, t'is net of of de software in een loop wordt gedrukt,ik kom telkens bij het zelfde puntje uit, DE HERKENNINGS MODULE VAN DE CD GROETJES This is an english list, so try that :) I'll translate your post for now: I have recently downloaded the Debian 64bit network installation disc, which does not recognize my SATA-DVD burner, but I can't get past the cd recognition module ...? While this should be an network installation ...? It's like the software gets into a loop, I end up at the same point over and over the cd recogintion module Greets Now, a possible answer: Even if you have a network installation, the system can't install itself from nothing. Therefore, it will load the installation routine from the CD (kernel, app), which allows you to prepare your harddrive and install the base system. This base system will handle the rest of the installation. I don't know about your hardware, but SATA-DVD burner sounds quite new. I honestly don't know how good that is supported. which version did you download? Philippe De Ryck -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: nfs mount question
On Wed, 2006-05-17 at 06:33 -0500, Hugo Vanwoerkom wrote: Hi, I finally managed to fix all the nfs ports: http://www.lowth.com/LinWiz/1.09/notes/nfs_help.php?popup=1 But using nfs with the firehol firewall up still does not work. The mount hangs. Anybody knows how to figure out *why* the mount hangs? H Don't know to figure out how, but I know the solution :) Try installing portmap on the client. I've searched for this problem too, and that solved it for me. Good luck Philippe De Ryck -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: ieee that doesn't suck
On Sat, 2006-05-13 at 22:31 -0400, Tom Allison wrote: I think I just wasted a bunch of money on a IEEE1394 firewire card. I can load modules and see a device on the PCI bus using lspci. But there isn't anything in the /proc/bus/ that matches 'ieee1394' I can't get any more information on how to debug this crap or what to do with the ieee1394 device mailing list. So I'm just going to appeal the greater population of the distrobution I am using. Can someone identify a currently available PCI based IEEE1394 card that doesn't suck? I can't run gscanbus because it crashes my system. I can't get any significant logs from dmesg or anything else. I can't get any response from the ieee1394 mailing list. This reminds me when I first tried to use USB devices under linux, but I was hoping that firewire was a bit more mature than USB was 5 years ago. Yeah, I'm frustrated, but I'm also stuck. Tom, This is not a solution for your problems, but it might provide you with some useful information: If I have some piece of hardware that is giving me a hard time I try a liveCD (knoppix, ubuntu, gentoo, ...) that has good hardware support (i like knoppix and ubuntu, don't use gentoo that much). Once the system is booted, you can check out your new hardware to see if it works. If it does, you might be able to determine all the necessary modules and packages. If it doesn't, I'm afraid that a solution might not be that simple ... I have firewire both on my laptop as my desktop, and it works out of the box (I do use ubuntu on my user systems). Hope my advice was at least a bit useful. It might help (not to me, but maybe to others) if you provided some information about the device (lspci output for instance). Good luck Philippe De Ryck -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: Accessing mail from remote
On Thu, 2006-05-04 at 15:06 +0200, Mauro Condarelli wrote: Hi, I use Mozilla to read my mail. I have full control of my MTA. I do receive mail either via smtp or via fetchmail. Mail is then moved from system mailbox to local folder by Mozilla Thunderbird. Mozilla Thunderbird uses mailbox formatted files. So far so good. The problem: I would like to access my archived mail from remote, possibly from behind a firewall. That would mean to set up a web server on my firewall or somewhere in DMZ. I know that much, but after that I'm in the dark. What should I install? I do not need anything fancy, just a web interface to read mail *from mailboxes in my HOME*. If that proves too complex I can do with a pop3 (I already have qpopper installed on my firewall/mail server) server that can serve out my archived mail (currently I can only see my unread mail via pop3. i.e.: the mail that sits in /var/mail/...). Is there an easy way to achieve this? TiA Mauro Hi, I suggest a simple server that fetches your mail from all your inboxes and then an imap server to serve it to clients. This way, you can read your mail from everywhere, and always see the same messages and stuff. I have this setup running perfectly: fetchmail, courier-imap (ssl), spamassassin, filtering with procmail, SMTPS (postfix, to send mails from networks without smtp available or from my laptop (no need to constantly switch smtp's)) and to finish the job: squirrelmail for web access (apache2). I read my mail mostly in evolution, but occasionaly when I'm on a foreign system I use the webmail, which is pretty awesome. I believe that, if you're going to setup a webserver anyway that this might be quite a good solution! Philippe De Ryck -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: Samba Password Expiration
On Sat, 2006-04-29 at 12:35 -0700, Brian Minton wrote: On Tue, 22 Jul 2003 20:55:23 -0500 Ian Melnick [EMAIL PROTECTED] wrote Hi all, I recently upgraded to sarge, and now my samba passwords expire every couple of weeks (i think). I also think it's using this new password database. How do I turn off password expiration? Thanks! I seem to be having the same problem, my samba passwords all keep expiring. I noticed that there was no resolution on the list archives, so I thought I'd ask again. thanks, Brian Minton As promised, here are the notes I've kept about this: pdbedit -c [X ] $username now don't ask me what I was thinking when I wrote this down, but maybe it can help someone :) (I don't even know if this is correct!) Philippe De Ryck -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
RE: Machine Hostname
On Sun, 2006-04-30 at 13:44 +0200, Amir Saad wrote: Thanks Roberto, it worked. I have another question, will that affect on another service that were started before setting the hostname?. I believe that my DHCP sends the hostname but I don't know why it is not set when the machine boots. Thanks. I've had the same issue a couple weeks back. The solution is to have no hostname defined. When this is the case, dhclient will set the hostname to the one received from dhcp. You can delete your hostname this way: just remove /etc/hostname and you should be ready to go. Of course, instead of removing you should do mv /etc/hostname /etc/hostname.bak so you can easily restore your system if something goes wrong. Good luck Philippe De Ryck -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: Samba Password Expiration
On Sat, 2006-04-29 at 12:35 -0700, Brian Minton wrote: On Tue, 22 Jul 2003 20:55:23 -0500 Ian Melnick [EMAIL PROTECTED] wrote Hi all, I recently upgraded to sarge, and now my samba passwords expire every couple of weeks (i think). I also think it's using this new password database. How do I turn off password expiration? Thanks! I seem to be having the same problem, my samba passwords all keep expiring. I noticed that there was no resolution on the list archives, so I thought I'd ask again. thanks, Brian Minton Hi, I don't know for sure if this might help, but I have written something down about this. Unfortunately, I don't have access to the computer containing the document until monday evening. I'll look it up ASAP and let you guys know. From what I remember, I looked up the command and it was pdbedit. It seems to set some samba options, but I don't know the exact options. Hope this will help, but I'll post the info in my document monday anyway. Philippe De Ryck -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: sata sil3114 support
On Thu, 2006-04-27 at 14:55 +0200, Lubos Vrbka wrote: -BEGIN PGP SIGNED MESSAGE- Hash: RIPEMD160 hi guys, is it possible to use disk connected to sil3114 sata controler in debian (or linux, this is not distro-specific, it think)? i checked the kernel config and found there only support for 3112, that is different chipset, i think, unfortunately :( the 4 sata ports belonging to the nvidia chipset are already occupied and i would like to add more drivers to my machine - and the remaining 4 sata ports are connected to 3114... so is there any way how to get it working? google wasn't very useful when looking for a solution, but maybe i just used bad query. thanks for any hints. with best regards, Hi, quick google search (query: kernel sil image support without the ) gives the silicon image site with linux drivers as first hit. You might want to check it out. The kernel driver silicon image indeed only states 3112. I thought I saw some other silicon image driver somewhere else, but don't remember where. Might want to take a look at that too. Good luck Philippe De Ryck -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: After recent Debian sid upgrade 2.6.16 to 2.6.16, vmware-config.pl fails
On Mon, 2006-04-24 at 20:04 +, RParr wrote: I have been running VMware 5.5.1 under Debian sid with 2.6.15 kernel and X.org 6.8.x. Now, after dist-upgrading to 2.6.16 kernel and X.org 7.0 (and a lot of other upgrades that came along as part of the deal), building vmmon module via vmware-config.pl fails. vmware-config.pl starts with a message that the kernel was built with gcc 4.0.3 and the build is to use 4.0.4. I said yes, proceed, as I thought this a minor version difference which would be ok. The next part fails with the following messages Any ideas would be greatly appreciated ... vmware output ... Just a suggestion, but maybe an update of the modules can help. You can find them by the name of any-any update. Use at your own risk :) Philippe De Ryck -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: Thought on receiving two answers...
On Wed, 2006-04-19 at 23:10 +0100, Magnus Therning wrote: I am sure I'm not the only one who gets mildly irritated with people sending replies both to the sender (my personal email address) and to the list. I am also sure I'm not the only one who accepts this practice, especially on mailing lists that are open for everyone to post to (as opposed to open only to subscribers). What I can't quite understand is why no-one has tried to solve this problem. Or maybe I just don't know about it? AFAICS it would be possible to get mailing list managing software, like mailman, to add a header to email sent to lists indicating the senders preference. Then well-behaved mail clients can use that header as a hint when the user replies to a mailing list. What do you think? /M The reason I think it is useful is because there might be a lag on the messages on the mailing list. If you're dealing with an issue that you'd like resolved ASAP the personal reply might be quite nice. I for one see my own messages appearing on the mailinglist with quite a lag. Sometimes a few hours, sometimes a day ... Philippe De Ryck (PS: posted this one only to the list :)) -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: grub-install in chroot not respected? [solved]
On Wed, 2006-04-19 at 18:03 -0700, Christopher Nelson wrote: On Wed, Apr 19, 2006 at 11:21:20PM +0100, Wackojacko wrote: Christopher Nelson wrote: snip this appeared to have worked, as did subsequent 'grub-install's, but when I rebooted, I was back in my debian setup on hdb, not the one on hda. Just a guess but you probably have grub installed on hdb also and the BIOS may be set to boot from this instead of hda. Try changing the boot order in the BIOS. If still no success disconnect hdb and see if hda will boot. I did indeed have grub install on hdb, but the boot order in BIOS was correct. I tried disconnecting hdb but got error 21. What ended up working for me was editting the boot stanza in grub to point to my hda install, then running grub-install from there. Still don't know why it didn't work in the chroot though, would be interested to find out. -- Christopher Nelson -- [EMAIL PROTECTED] --- Send some filthy mail. There has been a post a few days ago where you can find another solution to your problem: run grub with the new root-dir as parameter (no chroot required) grub-install --root-directory=new/ /dev/hdX this way, grub will use your root-to-be-directory and not the current root directory. Philippe De Ryck -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: statd not binding to outgoing-port
On Sat, 2006-04-15 at 09:05 -0500, Hugo Vanwoerkom wrote: Sumo Wrestler (or just ate too much) wrote: Hugo Vanwoerkom wrote: Hi, In according to: http://nfs.sourceforge.net/nfs-howto/security.html#FIREWALLS one way to force statd to fixed ports is with the -p and -o options. So I added STATDOPTS=-p 854 -o 856 to /etc/init.d/nfs-common. [...] Did you add that line before the invoking of /etc/default/nfs-common or after. Perhaps you should examine /etc/default/nfs-common, as that might be a better place for your settings. Note: I've never explicitly used rpc.statd or nfs. I just looked at the scripts on my system. /etc/init.d/nfs-common has code to invoke /etc/default/nfs-common. /etc/default/nfs-common sets STATDOPTS. If you set STATDOPTS before the invokation of /etc/default/nfs-common, your settings will be lost. Good point. Thanks. I completely forgot to look at /etc/default/nfs-common. Let me try it again. H Hi, I've been working with NFS this weekend and had some fun with the ports too. Now I have everything on a fixed port so nfs will work through the firewall. I have the following in my docs: in /etc/defaults/nfs-* (common and kernel-server) you can set the ports for the daemons (as noted before) except for lockd. I've found that this can be fixed by putting the ports in /proc/sys/fs/nfs/nlm_* (tcpport/udpport) and restarting the nfs-server. A fix to the init-script of the nfs-server should take care of this. Philippe De Ryck -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Network printing
Hi, Maybe not very Debian-specific, although I need a working solution on Debian systems :) I have a small network (8 PC's, one server (for netboot and nfs)) with all Debian machines. I need a shared printer in this environment, and I have an old printserver (small box with parallel and ethernet port) available. My question is: what would be the best setup? I want the print traffic to be sent to the server where it gets queued and eventually printed. I know there's cups (used it in other environments) and samba, but I think this might be a little strange for linux only machines. Does anyone have a suggestion? Thanks Philippe De Ryck -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: chroot problem with grub
On Thu, 2006-04-13 at 12:13 -0600, Justin Guerin wrote: Hi, I've had to move my install to a new physical disk. I made an image of my two partitions (/boot and /), and they restored properly. Now, I only need to run grub-install to install the boot loader. When I boot from Knoppix, I can mount the / to /mnt/target, then mount /boot to /mnt/target/boot, and /proc to /mnt/target/proc, but I can't get grub-install to work properly. When I chroot /mnt/target, and run grub, grub can't see the drives (error 21). However, when I back out of the chroot, grub sees the drives just fine. Can anyone tell me how grub accesses the bios to find out information about drives? I'm not passing something through the chroot, but I have no idea what. The device nodes are available in the chroot, and so is proc. I'm running as root, and I know I have access to the device nodes. Any help is appreciated. Justin Justin, I don't think it is necessary to chroot at all. The knoppix disk has grub on board, so you can use that command. The command also has a command line switch to specify a device (/dev/hda for instance) and you can also specify a root-dir. If you specify as root-dir the mount point of your system (/mnt/target) grub will take the config file from /mnt/target/boot/...) and everything should work just fine. If you search the internet (or the manual perhaps) for this specific info you'll find a lot more. Good luck Philippe De Ryck -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: syslog
On Wed, 2006-04-12 at 18:22 +0100, Adam Hardy wrote: I have way too much logging coming from hddtemp, which outputs a couple of lines every 5 seconds into /var/log/syslog. I tried to find a config file to control this but found nothing in /etc/default/hddtemp, or any reference from man hddtemp. I tried excluding it via /etc/syslog,conf, but I don't know which facility.priority it is being logged with. How can I find out? Thanks Adam Hi Adam, I know this is not a direct solution for your problem, but you might consider using syslog-ng. This gives you a lot more control over the logging, and you can easily filter out hddtemp and log that to a seperate file or even /dev/null. The default syslog-ng install has a config file to simulate syslog's behaviour, so you shouldn't even notice any difference. Then you can edit the config file and filter out hddtemp's logging. Just a suggestion Philippe De Ryck -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: Where did my Debian menu go?
On Mon, 2006-04-10 at 16:14 -0500, Ron Johnson wrote: On Mon, 2006-04-10 at 21:51 +0100, Tim Beauregard wrote: -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Hello, Once upon a time I had a Debian menu in the Gnome applications drop-down list, where I had access to all the installed software (eg mldonkey) that didn't automatically appear in the main categories (I presume those are 'menu-aware' applications). This Debian menu item disappeared after an upgrade, I guess it was about six months ago. I miss it! Is there a package that I need? I don't want to create a menu of my own, I'd rather have it done for me as each package is installed. Whenever this happens to me on Sid, I reboot, and the menu comes back. Yes, I said *reboot*. :( If I'm not mistaken, the package menu takes care of this. It might be possible that the menu is just hidden. Use the menu editor to find this out. Good luck! Philippe De Ryck -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: Using Ubuntu when I'm used to Debian.
On Mon, 2006-04-03 at 06:19 -0600, Hodgins Family wrote: Hi Phillipe: One issue that comes up is the way Ubuntu uses the sudo command. During installation, newcomers (with prior experience in Linux) are caught off guard when they are not asked to set up a root account and password. It can be unnerving. A root password CAN be set up, though. And tasks that newcomers may have used the root account for in the past can also be done *by issuing the sudo command as a user*. As an example to make a root password: As a user, enter a terminal and type: sudo passwd root Ubuntu thinks it over and then asks for your user password... To alter the fstab file As user, enter a terminal and type: sudo vi /etc/fstab Ubuntu ask for your user password... It seems a bit twisted compared to other systems and some people are steamed by it. Yes, I forgot about that one. The first time I installed Ubuntu this was the case, but I quickly had to reinstall (not because of Ubuntu) and since then I use the expert-setup (boot options of the install cdrom). This way you are asked to setup a root password like other distro's. So if you're experienced with debian, expert-setup won't be a problem! I've used Debian before too (a few years) and the plug and play support in Ubuntu is really great. Even my USB-scanner which is not officially supported works just fine. On servers I still prefer Debian because I feel I'm slightly more in control (mainly package dependencies) than with Ubuntu. Another difference might be the repositories (universe, multiverse) but that one is quite easy to figure out using the excellent ubuntu forums. Philippe -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: Incredibly slow to boot - any ideas?
On Fri, 2006-03-31 at 15:53 +0100, N.Pauli wrote: On Fri, 31 Mar, Philippe De Ryck wrote: On Thu, 2006-03-30 at 23:19 +0100, N.Pauli wrote: On Thu, 30 Mar, Philippe De Ryck wrote: On Thu, 2006-03-30 at 11:45 +0100, N.Pauli wrote: Dear All, All of a sudden my machine has become incredibly slow to boot up and to launch anything - boot up took over 5 minutes and launching an app like Mozilla or OpenOffice can take just as long. All the while the harddisk drive light is burning constantly. It is as if there is some process that never completes, takes a long time to time out and restarts itself whenever I launch an app. Once I'm in, apps seem to run fairly normally. I've looked at 'top' and can't see any culprit there. I had this happen once before and it was solved by making sure that nothing was plugged in to a usb port while booting up or even logging on. The last significant things I have done prior to this happening do a normal update and upgrade using Synaptic and install Liferea. Can anybody give me any clues on where I can start looking to resolve this? The machine is a 1100 Mhz Intel Celeron with 256 Mb RAM so it shouldn't be struggling. I'm running Debian GNU/Linux testing / unstable and the 2.6.12-1-386 kernel. Just an idea, but you might look into HDD-trouble. See what hdparm -tT /dev/... says. See what smartctl -a /dev/... says (good explanation can be found here: http://www.linuxjournal.com/article/6983). Maybe a monitor for disk activity can be useful too (gkrellm for example shows activity and speed). Good luck Philippe De Ryck Philippe, That article on SMART Control was worth the price of admission alone! I'm going to run the short test over night and see if that brings up anything because all the other signs are healthy - yet the disk hangs for minutes on end at the slightest provocation. I tried to run the short (2 minute) test during the day but gave up after 40 minutes. Nigel Nigel, I found the article very useful too! You say your disk hangs but all the attributes indicate a healthy disk. One way to know this for sure is to put your disk in another machine. If it works fine, you can exclude the disk. If it still hangs, you probably know for sure that the disk (or the content) is screwed. I've had some bad experience with an NVIDIA nforce2 chipset (incredibly slow) but since you haven't changed anything important on your setup, that wouldn't be the case. It might be another component that's failing. What does 'hdparm -tT /dev/hda' say? Are the speeds reasonable? Thanks for the suggestion, Philippe. Here's the output: ** debianoak:/home/nbp# hdparm -tT /dev/hda /dev/hda: Timing cached reads: 1192 MB in 2.00 seconds = 595.20 MB/sec Timing buffered disk reads:6 MB in 3.24 seconds = 1.85 MB/sec ** That looks reasonable to me - very fast from the cache and a lot slower when it has to be buffered (on the hard drive, presumably). But, what do I know!? As noted by Brian, that is quite bad indeed. Around 50MB/sec is quite good. On my laptop I get around 25MB/sec, which is not marvellous but quite ok. A suggestion (aside from the -I suggestion from Brian): Do you have DMA enabled? You can check this by doing: 'hdparm -d /dev/hda' as root. If it says DMA is disabled, try enabling it: 'hdparm -d1 /dev/hda'. If this succeeds, 'hdparm -tT /dev/hda' should give some better results. If it shows an error message, post it. If DMA is enabled and you still get those shitty speeds something else is quite wrong. You can try to run the hdparm stuff from a livecd if you want to rule out your own software (kernel-image for instance). I can suggest knoppix, which has all the necessary tools available. Good luck! Philippe De Ryck Following up Listrcv's suggestion I had a good look in /var/logs/syslog and it looks as if it may be something to do with gconf2 being upgraded. This is from my notes: # According to Synaptic's history, at 12:19 on 29/03/06 the following upgrades happened: # gconf2 (2.12.1-9) to 2.12.1-12 # gconf2-common (2.12.1-9) to 2.12.1-12 # These are the lines from syslog that bracket that time. Mar 29 11:34:01 localhost -- MARK -- Mar 29 11:39:01 localhost /USR/SBIN/CRON[7813]: (root) CMD ( [ -d /var/lib/php5 ] find /var/lib/php5/ -type f -cmin +$(/usr/lib/php5/maxlifetime) -print0 | xargs -r -0 rm) Mar 29 11:54:01 localhost -- MARK -- Mar 29 12:09:01 localhost /USR/SBIN/CRON[8549]: (root) CMD ( [ -d /var/lib/php5 ] find /var/lib/php5/ -type f -cmin +$(/usr/lib
Re: disk space (when i use cp)
On Fri, 2006-03-31 at 22:51 +0100, Wackojacko wrote: jlmb wrote: Pol Hallen wrote: Hi all :-) i have 1Gb free on my debian, when i cp from ftp server to usb hd the space on my system decrease.. a lot.. and often is zero.. it's correct?! i copy to usb hd not system hd :-( tnks :-) I see no reason why your system hd is being filled when copying data from an external server to your USB hd. Recheck that you're really copying to your external USB hd. jorge I had this happen when the external device was not mounted (DVD-RAM in my case). As I understood it, if you copy to the mount point and the device is not mounted the data will be copied to the local hdd. HTH Wackojacko That's a possible explanation, but your description is not very accurate :) A mount point is basically a directory. You can put stuff in that directory and just use it as a directory. If you want to mount a drive, you need to select a directory where the drive will be mounted. Again, this can be any directory, even one that you use as a normal directory. The moment you mount the drive, the directory contents will still exist, but are unreachable in the filesystem. The content of the directory however has become the content of the mounted media. The moment you unmount this media, your previous content stored in the directory will appear again. Now, after this explanation, it should be clear why data copied to a mount point where nothing is mounted can be copied locally. If you have a mount point in a mount point for instance (/mnt/usbdisk1/somedir/usbdisk2 where usbdisk* are both mountpoints) and you copy something to usbdisk2 (which is not mounted) your data will be copied to usbdisk1, since the mount point is located on that disk. Philippe De Ryck -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: Incredibly slow to boot - any ideas?
On Thu, 2006-03-30 at 23:19 +0100, N.Pauli wrote: On Thu, 30 Mar, Philippe De Ryck wrote: On Thu, 2006-03-30 at 11:45 +0100, N.Pauli wrote: Dear All, All of a sudden my machine has become incredibly slow to boot up and to launch anything - boot up took over 5 minutes and launching an app like Mozilla or OpenOffice can take just as long. All the while the harddisk drive light is burning constantly. It is as if there is some process that never completes, takes a long time to time out and restarts itself whenever I launch an app. Once I'm in, apps seem to run fairly normally. I've looked at 'top' and can't see any culprit there. I had this happen once before and it was solved by making sure that nothing was plugged in to a usb port while booting up or even logging on. The last significant things I have done prior to this happening do a normal update and upgrade using Synaptic and install Liferea. Can anybody give me any clues on where I can start looking to resolve this? The machine is a 1100 Mhz Intel Celeron with 256 Mb RAM so it shouldn't be struggling. I'm running Debian GNU/Linux testing / unstable and the 2.6.12-1-386 kernel. Just an idea, but you might look into HDD-trouble. See what hdparm -tT /dev/... says. See what smartctl -a /dev/... says (good explanation can be found here: http://www.linuxjournal.com/article/6983). Maybe a monitor for disk activity can be useful too (gkrellm for example shows activity and speed). Good luck Philippe De Ryck Philippe, That article on SMART Control was worth the price of admission alone! I'm going to run the short test over night and see if that brings up anything because all the other signs are healthy - yet the disk hangs for minutes on end at the slightest provocation. I tried to run the short (2 minute) test during the day but gave up after 40 minutes. Nigel Nigel, I found the article very useful too! You say your disk hangs but all the attributes indicate a healthy disk. One way to know this for sure is to put your disk in another machine. If it works fine, you can exclude the disk. If it still hangs, you probably know for sure that the disk (or the content) is screwed. I've had some bad experience with an NVIDIA nforce2 chipset (incredibly slow) but since you haven't changed anything important on your setup, that wouldn't be the case. It might be another component that's failing. What does 'hdparm -tT /dev/hda' say? Are the speeds reasonable? Good luck Philippe -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: Incredibly slow to boot - any ideas?
On Thu, 2006-03-30 at 11:45 +0100, N.Pauli wrote: Dear All, All of a sudden my machine has become incredibly slow to boot up and to launch anything - boot up took over 5 minutes and launching an app like Mozilla or OpenOffice can take just as long. All the while the harddisk drive light is burning constantly. It is as if there is some process that never completes, takes a long time to time out and restarts itself whenever I launch an app. Once I'm in, apps seem to run fairly normally. I've looked at 'top' and can't see any culprit there. I had this happen once before and it was solved by making sure that nothing was plugged in to a usb port while booting up or even logging on. The last significant things I have done prior to this happening do a normal update and upgrade using Synaptic and install Liferea. Can anybody give me any clues on where I can start looking to resolve this? The machine is a 1100 Mhz Intel Celeron with 256 Mb RAM so it shouldn't be struggling. I'm running Debian GNU/Linux testing / unstable and the 2.6.12-1-386 kernel. Thanks, Nigel -- Nigel Pauli Network Manager St. John's School, Northwood Just an idea, but you might look into HDD-trouble. See what hdparm -tT /dev/... says. See what smartctl -a /dev/... says (good explanation can be found here: http://www.linuxjournal.com/article/6983). Maybe a monitor for disk activity can be useful too (gkrellm for example shows activity and speed). Good luck Philippe De Ryck -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: Hard disk failure?
+20m 10 Spin_Retry_Count0x002b 213 205 157Pre-fail Always - 21 11 Calibration_Retry_Count 0x002b 253 252 223Pre-fail Always - 0 12 Power_Cycle_Count 0x0032 253 253 000Old_age Always - 308 192 Power-Off_Retract_Count 0x0032 253 253 000Old_age Always - 0 193 Load_Cycle_Count0x0032 253 253 000Old_age Always - 0 194 Temperature_Celsius 0x0032 253 253 000Old_age Always - 30 195 Hardware_ECC_Recovered 0x000a 253 252 000Old_age Always - 1435 196 Reallocated_Event_Count 0x0008 253 253 000Old_age Offline - 0 197 Current_Pending_Sector 0x0008 253 253 000Old_age Offline - 0 198 Offline_Uncorrectable 0x0008 253 253 000Old_age Offline - 0 199 UDMA_CRC_Error_Count0x0008 164 010 000Old_age Offline - 190 200 Multi_Zone_Error_Rate 0x000a 253 252 000Old_age Always - 0 201 Soft_Read_Error_Rate0x000a 253 252 000Old_age Always - 2 202 TA_Increase_Count 0x000a 253 252 000Old_age Always - 0 203 Run_Out_Cancel 0x000b 253 252 180Pre-fail Always - 0 204 Shock_Count_Write_Opern 0x000a 253 252 000Old_age Always - 0 205 Shock_Rate_Write_Opern 0x000a 253 252 000Old_age Always - 0 207 Spin_High_Current 0x002a 213 205 000Old_age Always - 21 208 Spin_Buzz 0x002a 253 252 000Old_age Always - 0 209 Offline_Seek_Performnce 0x0024 193 192 000Old_age Offline - 0 99 Unknown_Attribute 0x0004 253 253 000Old_age Offline - 0 100 Unknown_Attribute 0x0004 253 253 000Old_age Offline - 0 101 Unknown_Attribute 0x0004 253 253 000Old_age Offline - 0 Good luck Hope I helped (a little) Philippe De Ryck -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: backing up a drive
On Tue, 2006-03-21 at 00:17 -0500, Robert Brockway wrote: On Mon, 20 Mar 2006, Philippe De Ryck wrote: A pointer: take a dump of the entire drive (dd if=/dev/hda) and not just partition. I've had some systems that wouldn't accept the restored version (PC wouldn't boot anymore due to no OS found) unless the whole disk was restored. I've done this plenty of times over the years. You just need to rerun a boot loader following the partition restore. Lilo does well for this. The bootloader can be run from a local Linux partition or from a live cdrom as is preferred by the admin. Think about disaster recovery which ever way you go (eg, the entire disk is toast). Rob Well, I'll elaborate on the situation I encountered. I didn't look into it very much, because when the problem occurred I didn't have the time to do so. Since it was a Windows-only system, there was no lilo installed. If I restored only hda1 the PC wouldn't boot. I tried a lot of options: I tried to restore the MBR using lilo, to no avail. I tried restoring the MBR using the WindowsXP repair console (or whatever that thing is called) using fixmbr and fixboot, all to no avail. The system didn't recognize the operating system. In the repair console however, I could connect to the installation and everything was where it was supposed to be. This is where I gave up (It cost me way more time than I had to spare). If anyone can elaborate on this that would be great. I believe the hardware has been decomissioned a few weeks ago, so I would be able to run some tests (in the future, because the schedule is packed right now). Any suggestions welcome! Philippe De Ryck PS: if this should be in a new thread, feel free to reply in a new one! -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: backing up a drive
On Tue, 2006-03-21 at 09:24 +1100, Star King of the Grape Trees wrote: Micha Feigin wrote: I want to make an exact backup of a hard drive (copy one drive to another). It contains a program who's copy protection checks changes to the system so unless I can restore it exactly the program will stop running (it's a veterinary clinic software so I don't think that there is a free alternative) Thanks Sometimes that is not enough. Some programs also check things such as CPU ID, and other serial numbers. dd or cat is probably sufficient, but you will get a file that is the SAME size as the HDD. So, I would get another HDD that is *exactly* equal or larger, and use the actual hard disc as the destination file. (ie, /dev/hdd) (Could someone else please confirm this?) I use system images *a lot* and the easiest way for me is to boot the source-pc with a knoppix-disk and then use dd if=/dev/hdX | netcat ... to transfer the image to another machine running linux. The file is received on that machine by netcat ... hda.img. This works perfectly (at least if you restore to the same machine). I believe it would give the same result if you do it directly to the disk as suggested. Of course, you can use knoppix to partition the disk and make it a file. That's easier to store (bzip2 it and put it on a DVD for instance). If you're unsure, find a spare machine, install windows98 and try to backup and restore it (backup it, delete some files in windows and restore the partition to verify that everything works and is there). This way you're quite sure your backup will work on the actual system. A pointer: take a dump of the entire drive (dd if=/dev/hda) and not just partition. I've had some systems that wouldn't accept the restored version (PC wouldn't boot anymore due to no OS found) unless the whole disk was restored. Good luck Philippe De Ryck -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: file transfer between two debian sarge machines in a lan
On Thu, 2006-02-23 at 07:33 -0800, L.V.Gandhi wrote: Two machines with sarge installed are in a lan connected to dhcp server. What is the simplest way to transfer files between them. Both have different single user. -- L.V.Gandhi http://lvgandhi.tripod.com/ linux user No.205042 If you use SCP, you probably don't need extra software. If I'm correct, SSH is almost installed by default. A simple command like the following would do the trick: scp FILE1 FILE2 FILE3 [EMAIL PROTECTED]:destination_folder where destination_folder is the folder on the destination host where you want the files. If you want to transfer whole directories, use scp -r Good luck Philippe De Ryck -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: howto check open ports ?
On Wed, 2006-02-22 at 16:24 -0500, Stephen R Laniel wrote: On Wed, Feb 22, 2006 at 11:18:41PM +0200, Mehmet Fatih Akbulut wrote: i am now behind a firewall [at dormitory], and i want to check open ports. is there a handy program that does this job for me ;) want to find an open port for apache to run. because 80. port blocked to people outside the dorm. i both need an openport seeker program and info if apache will work let's say i change its port from 80 to 5055 [assuming this port is open] ? many thanks in advance. Any ports above 1023, I believe, are unprivileged. Quite often people set Apache to work over port 8080; almost no one blocks ports that high. You could also use nmap to scan ports. But nmap is only going to scan privileged ports to see which ones are open; it's not going to tell you that ports 8080 and above are open, because they always are. I believe this info is quite incorrect. I use nmap often, and it scans quite high (for instance, 3389, RDP is detected just fine). If port 8080 is open by default depens on how your firewall is configured. If you follow the approach: ACCEPT ALL and deny what I don't want, it is possible that it is still open. The right way is: DENY ALL and allow what I need/want. To be able to run apache through a firewall though means that the network can't be NAT-ed, because then you'd need a mapping that tells the firewall to forward traffic for port x to IP y. If the firewall only protects your host directly, then an open port would suffice to make apache accessible. What you mean by privileged ports are ports that can only be opened with sufficient rights. For instance, a normal user would not be able to run apache on port 80, but root can. Just for the record, below is nmap output on port 8080 on my router at home: PORT STATESERVICE 8080/tcp filtered http-proxy filtered means that it is stopped by something. If there is nothing listening on that port it would be closed and if there is something listening it would be open! If I made a mistake anywhere, feel free to correct me! Philippe De Ryck -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Terminal Server
Hi, I have a few specific questions about a possible TS setup. As you may have seen in my previous post, I'm looking for a good setup for a couple of debian machines (somewhere around 8 to 10) in a school environment. I have a bunch of older machines (P3 500 with 128Mb RAM) that have some trouble running XP smoothly. I don't need a lot of functionality, basically, the next items are required: * browser (firefox) * office (openoffice) The responses on my previous post pointed me to LTSP, which I already knew. My questions are the following: * If I would opt for clients that use a remote X-server (XDMCP), I believe I would need quite a strong server (CPU and RAM). Is this correct? * The second option is a central image, which gets booted via Etherboot. I believe that this setup would be a good alternative. Is it correct to assume that the only function of the server is to serve the image, and thus doesn't need powerful hardware? Can anyone elaborate on the system requirements? The machines would be connected to one 100Mbit switch. I would opt for the OS-image read only on an NFS-share and maybe use the local HDD for swap. Thanks Philippe De Ryck -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Debian workstations in a school environment
Hello, I'm a network administrator in a highschool in Belgium. Right now all our workstations run Windows. There is however a possibility for me to convert some old machines that have quite some trouble running XP smoothly to linux. The problem is however that I'm not that experienced managing linux workstations. I've been a linux user for quite some time now (about 3 years) and I like debian (and ubuntu). There's however a big difference between my computer and public computers at school. I want things as secure as possible, and lockdown as tight as possible. I was wondering if there are any documents (there must be!) available on these issues. I know it is possible, I've seen machines that disallow console login (only X was allowed) and a whole lot else. I can't seem to get much useful out of google ... Hope anyone can help me Kind regards Philippe De Ryck -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
