Re: [expert] w2k shutdown from mdk
On Thu, 21 Nov 2002, Tony S. Sykes wrote: > Does anybody know how to shut a w2k box down remotely from MDK9.0 (needs > to be a clean shutdown). Format c: ? (that'll save you from a lot of future grief as well :) ) -- ./mvh Christian Jul Jensen "I'm not quite sure what I'm participating in. I joined the conversation because I wanted to type the word "esperanto" and email it to thousands of people for no reason at all. :-)" -- Allen Smith @ TYPO3-devel-list Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com
Re: [expert] cron / at
On Tue, 19 Nov 2002, Sridhar wrote: > I am using anacron straight out of an install from disk and have not > configured anacron. anacrontab seems to contain default values. Should I > do anything in anacrontab? No. I think your problem might be that anacron is not started at all. Try 'chkconfig --list' is it in the list? Is it 'on' for your runlevel? If not: 'chkconfig --add anacron' and 'chkconfig --level 2345 anacron on' should do. -- ./mvh Christian Jul Jensen "I'm not quite sure what I'm participating in. I joined the conversation because I wanted to type the word "esperanto" and email it to thousands of people for no reason at all. :-)" -- Allen Smith @ TYPO3-devel-list Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com
Re: [expert] cron / at
On Mon, 18 Nov 2002, Sridhar wrote: > I did not have anacron installed. I installed it from 9.0 disks. Now > when I start anacron and check the status it tells it's dead. It tells it's dead? What exactly happens? Do you have a meaningful /etc/anacrontab ? -- ./mvh Christian Jul Jensen stud.scient.dat proff.scriptkiddie Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com
Re: [expert] changing permissions fails quietly
On Tue, 19 Nov 2002, bascule wrote: > i just made a link in cron.daily so that slocate gets run each morning, noting > the permissions on the daily msec link i tried to set teh same for the > slocate link but i can't, any ideas man chmod says: chmod never changes the permissions of symbolic links; the chmod system call cannot change their permissions. This is not a problem since the permissions of symbolic links are never used. However, for each symbolic link listed on the command line, chmod changes the permissions of the pointed-to file. In contrast, chmod ignores symbolic links encountered during recursive directory traversals. -- ./mvh Christian Jul Jensen stud.scient.dat proff.scriptkiddie Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com
Re: [expert] Firewalled packets are being filtered out
Thanks for your help Toshiro and John On 18 Nov 2002, Toshiro wrote: > > > > I've configured a webserver, which runs perfectly on it's own net. The > > > > problem is that it's behind a firewall and everything that comes through > > > > that firewall are being ignored by the server. > > > > > > > > Must be some kind of spoof-protection. Because the packets get trapped by > > > > rp_filter. > > > > > > > > So I've disabled rp_filter, I've set all iptables rules to ACCEPT, and > > > > I've tried lowering the security level with msec. Nothing changed. I've > > > > used tcpdump to see what's going on, and I can see that packets coming > > > > from a machine on the internal net, gets answers. But packets arriving > > > > through the firewall arrives at the interface, but no answer is sent. So I > > > > know for sure that the problem is at this machine. > > > > > > Have you configured NAT? > > > > No, this machine is not the firewall itself, only a http-server. It's > > packets coming through another firewall that are being filtered out. In > > that case NAT shouldn't be necessary since it's not doing any > > gatewaying/routing. Or am I wrong here...? > > No, you're right, you don't have to do anything in the webserver, my question > wasn't right :) what I wanted to ask you is whether the NAT in the firewall is > configured OK. > > Also, your firewall should allow to pass all packets with a connection already > established; for example, if your firewall were a Linux box with iptables you > should have something like that: > > iptables -A FORWARD -m state --state ESTABLISHED,RELATED -j ACCEPT Well, I'm not administering the firewall, and since there are a number of other webservers (older RH's) running behind, I think it has to be some kind of security om this webserver. -- ./mvh Christian Jul Jensen stud.scient.dat proff.scriptkiddie Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com
Re: [expert] Firewalled packets are being filtered out
Hallelujah! I Thought I would never get an answer. On 18 Nov 2002, Toshiro wrote: > El lun, 18-11-2002 a las 07:40, Christian Jul Jensen escribió: > > Hi List > > > > I've configured a webserver, which runs perfectly on it's own net. The > > problem is that it's behind a firewall and everything that comes through > > that firewall are being ignored by the server. > > > > Must be some kind of spoof-protection. Because the packets get trapped by > > rp_filter. > > > > So I've disabled rp_filter, I've set all iptables rules to ACCEPT, and > > I've tried lowering the security level with msec. Nothing changed. I've > > used tcpdump to see what's going on, and I can see that packets coming > > from a machine on the internal net, gets answers. But packets arriving > > through the firewall arrives at the interface, but no answer is sent. So I > > know for sure that the problem is at this machine. > > Have you configured NAT? No, this machine is not the firewall itself, only a http-server. It's packets coming through another firewall that are being filtered out. In that case NAT shouldn't be necessary since it's not doing any gatewaying/routing. Or am I wrong here...? -- ./mvh Christian Jul Jensen stud.scient.dat proff.scriptkiddie Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com
Re: [expert] cron / at
On 18 Nov 2002, SainTiss wrote: > Hi, > > I'm trying to figure out how cron/at work/cooperate... > > How, for example, does cron determine that the scripts in > /etc/cron.daily need to be executed? Does it just do that at midnight? > Or does it know when 24 hours have passed since the last execution? Cronjobs are specified by /etc/crontab. On mandrakesystems (and others as well) crontab is initially configured to run the scripts in fx. cron.daily once every day. The format of the file is: minute hour day_of_month month weekday user action so 22 4 * * 0 root run-parts /etc/cron.weekly runs "run-parts /etc/cron.weekly" as root every monday (0) at 4:22 (am) > Also, I believe that, if the system is down when the execution should > take place, at takes over... When does the execution of the > /etc/cron.daily scripts take place in that case? "at" simply runs a job at a specified time. Could be a script that checks if cronjobs has been run. But usually if you have a system that is not up all the time anacron takes care of the cronjobs -- ./mvh Christian Jul Jensen stud.scient.dat proff.scriptkiddie Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com
[expert] Firewalled packets are being filtered out
Hi List I've configured a webserver, which runs perfectly on it's own net. The problem is that it's behind a firewall and everything that comes through that firewall are being ignored by the server. Must be some kind of spoof-protection. Because the packets get trapped by rp_filter. So I've disabled rp_filter, I've set all iptables rules to ACCEPT, and I've tried lowering the security level with msec. Nothing changed. I've used tcpdump to see what's going on, and I can see that packets coming from a machine on the internal net, gets answers. But packets arriving through the firewall arrives at the interface, but no answer is sent. So I know for sure that the problem is at this machine. I'm totally stuck, any help or hint would be greatly appreciated. -- ./mvh Christian Jul Jensen stud.scient.dat proff.scriptkiddie Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com
