Re: [expert] w2k shutdown from mdk
On Thu, 21 Nov 2002, Tony S. Sykes wrote: Does anybody know how to shut a w2k box down remotely from MDK9.0 (needs to be a clean shutdown). Format c: ? (that'll save you from a lot of future grief as well :) ) -- ./mvh Christian Jul Jensen I'm not quite sure what I'm participating in. I joined the conversation because I wanted to type the word esperanto and email it to thousands of people for no reason at all. :-) -- Allen Smith @ TYPO3-devel-list Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com
Re: [expert] cron / at
On Tue, 19 Nov 2002, Sridhar wrote: I am using anacron straight out of an install from disk and have not configured anacron. anacrontab seems to contain default values. Should I do anything in anacrontab? No. I think your problem might be that anacron is not started at all. Try 'chkconfig --list' is it in the list? Is it 'on' for your runlevel? If not: 'chkconfig --add anacron' and 'chkconfig --level 2345 anacron on' should do. -- ./mvh Christian Jul Jensen I'm not quite sure what I'm participating in. I joined the conversation because I wanted to type the word esperanto and email it to thousands of people for no reason at all. :-) -- Allen Smith @ TYPO3-devel-list Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com
Re: [expert] Firewalled packets are being filtered out
Thanks for your help Toshiro and John On 18 Nov 2002, Toshiro wrote: I've configured a webserver, which runs perfectly on it's own net. The problem is that it's behind a firewall and everything that comes through that firewall are being ignored by the server. Must be some kind of spoof-protection. Because the packets get trapped by rp_filter. So I've disabled rp_filter, I've set all iptables rules to ACCEPT, and I've tried lowering the security level with msec. Nothing changed. I've used tcpdump to see what's going on, and I can see that packets coming from a machine on the internal net, gets answers. But packets arriving through the firewall arrives at the interface, but no answer is sent. So I know for sure that the problem is at this machine. Have you configured NAT? No, this machine is not the firewall itself, only a http-server. It's packets coming through another firewall that are being filtered out. In that case NAT shouldn't be necessary since it's not doing any gatewaying/routing. Or am I wrong here...? No, you're right, you don't have to do anything in the webserver, my question wasn't right :) what I wanted to ask you is whether the NAT in the firewall is configured OK. Also, your firewall should allow to pass all packets with a connection already established; for example, if your firewall were a Linux box with iptables you should have something like that: iptables -A FORWARD -m state --state ESTABLISHED,RELATED -j ACCEPT Well, I'm not administering the firewall, and since there are a number of other webservers (older RH's) running behind, I think it has to be some kind of security om this webserver. -- ./mvh Christian Jul Jensen stud.scient.dat proff.scriptkiddie Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com
Re: [expert] changing permissions fails quietly
On Tue, 19 Nov 2002, bascule wrote: i just made a link in cron.daily so that slocate gets run each morning, noting the permissions on the daily msec link i tried to set teh same for the slocate link but i can't, any ideas man chmod says: chmod never changes the permissions of symbolic links; the chmod system call cannot change their permissions. This is not a problem since the permissions of symbolic links are never used. However, for each symbolic link listed on the command line, chmod changes the permissions of the pointed-to file. In contrast, chmod ignores symbolic links encountered during recursive directory traversals. -- ./mvh Christian Jul Jensen stud.scient.dat proff.scriptkiddie Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com
Re: [expert] cron / at
On Mon, 18 Nov 2002, Sridhar wrote: I did not have anacron installed. I installed it from 9.0 disks. Now when I start anacron and check the status it tells it's dead. It tells it's dead? What exactly happens? Do you have a meaningful /etc/anacrontab ? -- ./mvh Christian Jul Jensen stud.scient.dat proff.scriptkiddie Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com
[expert] Firewalled packets are being filtered out
Hi List I've configured a webserver, which runs perfectly on it's own net. The problem is that it's behind a firewall and everything that comes through that firewall are being ignored by the server. Must be some kind of spoof-protection. Because the packets get trapped by rp_filter. So I've disabled rp_filter, I've set all iptables rules to ACCEPT, and I've tried lowering the security level with msec. Nothing changed. I've used tcpdump to see what's going on, and I can see that packets coming from a machine on the internal net, gets answers. But packets arriving through the firewall arrives at the interface, but no answer is sent. So I know for sure that the problem is at this machine. I'm totally stuck, any help or hint would be greatly appreciated. -- ./mvh Christian Jul Jensen stud.scient.dat proff.scriptkiddie Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com
Re: [expert] cron / at
On 18 Nov 2002, SainTiss wrote: Hi, I'm trying to figure out how cron/at work/cooperate... How, for example, does cron determine that the scripts in /etc/cron.daily need to be executed? Does it just do that at midnight? Or does it know when 24 hours have passed since the last execution? Cronjobs are specified by /etc/crontab. On mandrakesystems (and others as well) crontab is initially configured to run the scripts in fx. cron.daily once every day. The format of the file is: minute hour day_of_month month weekday user action so 22 4 * * 0 root run-parts /etc/cron.weekly runs run-parts /etc/cron.weekly as root every monday (0) at 4:22 (am) Also, I believe that, if the system is down when the execution should take place, at takes over... When does the execution of the /etc/cron.daily scripts take place in that case? at simply runs a job at a specified time. Could be a script that checks if cronjobs has been run. But usually if you have a system that is not up all the time anacron takes care of the cronjobs -- ./mvh Christian Jul Jensen stud.scient.dat proff.scriptkiddie Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com
Re: [expert] Firewalled packets are being filtered out
Hallelujah! I Thought I would never get an answer. On 18 Nov 2002, Toshiro wrote: El lun, 18-11-2002 a las 07:40, Christian Jul Jensen escribió: Hi List I've configured a webserver, which runs perfectly on it's own net. The problem is that it's behind a firewall and everything that comes through that firewall are being ignored by the server. Must be some kind of spoof-protection. Because the packets get trapped by rp_filter. So I've disabled rp_filter, I've set all iptables rules to ACCEPT, and I've tried lowering the security level with msec. Nothing changed. I've used tcpdump to see what's going on, and I can see that packets coming from a machine on the internal net, gets answers. But packets arriving through the firewall arrives at the interface, but no answer is sent. So I know for sure that the problem is at this machine. Have you configured NAT? No, this machine is not the firewall itself, only a http-server. It's packets coming through another firewall that are being filtered out. In that case NAT shouldn't be necessary since it's not doing any gatewaying/routing. Or am I wrong here...? -- ./mvh Christian Jul Jensen stud.scient.dat proff.scriptkiddie Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com
