Re: [gentoo-user] Module philosophy: Compile-in or Load
I like compile-in, generally less work must be done (just a hair, but it is less) On 6/17/06, Mick [EMAIL PROTECTED] wrote: On 17/06/06, Anthony E. Caudel [EMAIL PROTECTED] wrote: Mick wrote: On 13/06/06, Ryan Tandy [EMAIL PROTECTED] wrote: Anthony E. Caudel wrote: How? make modules_install or the whole thing: make make modules_install then just modprobe the new module? # make modules modules_install # modprobe module Do you also need to run make install or is it not necessary to copy anything to /boot? Not necessary. Of course not necessary for the kernel (as Michael Weyershäuser already said), but what about the copy of the .config file? -- Regards, Mick -- gentoo-user@gentoo.org mailing list -- Erik -- gentoo-user@gentoo.org mailing list
[gentoo-user] Postfix Woes
I have a postfix mailserver setup on my system that uses pam for authentication. I can recieve email just fine, but whenever I try to send mail, my logs say that the connection to the server timed out on port 25. Does anyone have an idea as to what the problem is? -- Erik -- gentoo-user@gentoo.org mailing list
Re: [gentoo-user] Postfix Woes
#netstat -an|grep 25 tcp0 0 0.0.0.0:25 0.0.0.0:* LISTEN unix 3 [ ] STREAM CONNECTED 109125 On 4/25/06, John Jolet [EMAIL PROTECTED] wrote: On 4/25/06 6:22 PM, Erik Westenbroek [EMAIL PROTECTED] wrote: I have a postfix mailserver setup on my system that uses pam for authentication. I can recieve email just fine, but whenever I try to send mail, my logs say that the connection to the server timed out on port 25. Does anyone have an idea as to what the problem is? -- Erik What does netstat -an|grep 25 show? -- gentoo-user@gentoo.org mailing list -- Erik -- gentoo-user@gentoo.org mailing list
Re: [gentoo-user] Postfix Woes
Yeah, I have syslog-ng running. Here is the output: Apr 25 19:15:22 casusbelli postfix/pickup[23829]: 9CA9636623: uid=0 from=root Apr 25 19:15:22 casusbelli postfix/cleanup[23906]: 9CA9636623: message-id=[EMAIL PROTECTED] Apr 25 19:15:22 casusbelli postfix/qmgr[23830]: 9CA9636623: from=[EMAIL PROTECTED], size=453, nrcpt=1 (queue active) Apr 25 19:15:52 casusbelli postfix/smtp[23908]: connect to smtp.freeshell.org[192.94.73.18]: Connection timed out (port 25) Apr 25 19:15:52 casusbelli postfix/smtp[23908]: 9CA9636623: to=[EMAIL PROTECTED], relay=none, delay=30, status=deferred (connect to smtp.freeshell.org[192.94.73.18]: Connection timed out) On 4/25/06, John Jolet [EMAIL PROTECTED] wrote: On 4/25/06 6:40 PM, Erik Westenbroek [EMAIL PROTECTED] wrote: #netstat -an|grep 25 tcp0 0 0.0.0.0:25 0.0.0.0:* LISTEN unix 3 [ ] STREAM CONNECTED 109125 On 4/25/06, John Jolet [EMAIL PROTECTED] wrote: On 4/25/06 6:22 PM, Erik Westenbroek [EMAIL PROTECTED] wrote: I have a postfix mailserver setup on my system that uses pam for authentication. I can recieve email just fine, but whenever I try to send mail, my logs say that the connection to the server timed out on port 25. Does anyone have an idea as to what the problem is? -- Erik What does netstat -an|grep 25 show? Okay, and are you running syslog-ng? If so, is there anything in /var/log/messages (or /var/log/mail.log, depending on setup) at the time you try to send mail? Do a tail -f on the file in one window/console, at the same time you send the mail. -- gentoo-user@gentoo.org mailing list -- Erik -- gentoo-user@gentoo.org mailing list
Re: [gentoo-user] Postfix Woes
Not at all. I wanted to actually get the server up before I got that set up. On 4/25/06, John Jolet [EMAIL PROTECTED] wrote: On 4/25/06 7:16 PM, Erik Westenbroek [EMAIL PROTECTED] wrote: Yeah, I have syslog-ng running. Here is the output: Apr 25 19:15:22 casusbelli postfix/pickup[23829]: 9CA9636623: uid=0 from=root Apr 25 19:15:22 casusbelli postfix/cleanup[23906]: 9CA9636623: message-id=[EMAIL PROTECTED] Apr 25 19:15:22 casusbelli postfix/qmgr[23830]: 9CA9636623: from=[EMAIL PROTECTED], size=453, nrcpt=1 (queue active) Apr 25 19:15:52 casusbelli postfix/smtp[23908]: connect to smtp.freeshell.org[192.94.73.18]: Connection timed out (port 25) Apr 25 19:15:52 casusbelli postfix/smtp[23908]: 9CA9636623: to=[EMAIL PROTECTED], relay=none, delay=30, status=deferred (connect to smtp.freeshell.org[192.94.73.18]: Connection timed out) On 4/25/06, John Jolet [EMAIL PROTECTED] wrote: Hmmm, I've seen something similar when I'm running postfix, sending everything through clamav and spamassassin via amavis, and amavisd is not running or hung Are you using some sort of scanning program? -- gentoo-user@gentoo.org mailing list -- Erik -- gentoo-user@gentoo.org mailing list
[gentoo-user] Re: Postfix Woes
From both localhost and my SDF account I get the expected 220 casusbelli.homelinux.org ESMTP Postfix. I haven't emerged iptables yet, but I'm behind a router that has a firewall installed. I'll install iptables later for ssh tarpitting, but for right now I'm doing without it. I don't know if this has anything to do with it, but I don't know if how I set hostname and domainname has anything to do with it. in /etc/conf.d/hostname, the hostname is set to casusbelli, and in /etc/conf.d/domainname, the domainname is set to osen, and I have /etc/hosts set accordingly. But I don't know what to set myhostname and mydomain to in /etc/postfix/main.cf, I tried casusbelli and osen respectivly, and then casusbelli and homelinux.org respectivly, and neither works. It is also interesting to note that the domainname of my router is not osen, but gateway.2wire.net. How should I set these values or are they fine? My net is set up that the router is at 192.168.1.254, casusbelli at 192.168.1.65, and the windows computer on the netwok is 192.168.1.64, so in main.cf, mynetworks is set to 192.168.1.0/24 127.0.0.0/8, is this correct? On 4/25/06, John Jolet [EMAIL PROTECTED] wrote: On 4/25/06 7:48 PM, Erik Westenbroek [EMAIL PROTECTED] wrote: Not at all. I wanted to actually get the server up before I got that set up. On 4/25/06, John Jolet [EMAIL PROTECTED] wrote: On 4/25/06 7:16 PM, Erik Westenbroek [EMAIL PROTECTED] wrote: Yeah, I have syslog-ng running. Here is the output: Apr 25 19:15:22 casusbelli postfix/pickup[23829]: 9CA9636623: uid=0 from=root Apr 25 19:15:22 casusbelli postfix/cleanup[23906]: 9CA9636623: message-id=[EMAIL PROTECTED] Apr 25 19:15:22 casusbelli postfix/qmgr[23830]: 9CA9636623: from=[EMAIL PROTECTED], size=453, nrcpt=1 (queue active) Apr 25 19:15:52 casusbelli postfix/smtp[23908]: connect to smtp.freeshell.org[192.94.73.18]: Connection timed out (port 25) Apr 25 19:15:52 casusbelli postfix/smtp[23908]: 9CA9636623: to=[EMAIL PROTECTED], relay=none, delay=30, status=deferred (connect to smtp.freeshell.org[192.94.73.18]: Connection timed out) On 4/25/06, John Jolet [EMAIL PROTECTED] wrote: Hmmm, I've seen something similar when I'm running postfix, sending everything through clamav and spamassassin via amavis, and amavisd is not running or hung Are you using some sort of scanning program? From casusbelli...telnet localhost 25 What does that do? If that works, can you do it from another box? Also, the out put of iptables -L -- gentoo-user@gentoo.org mailing list -- Erik -- gentoo-user@gentoo.org mailing list
[gentoo-user] Re: Postfix Woes
no, I have a gentoo box and a windows box behind a router, and I don't want anything to do with my ISP's mail. I just mentioned the router and windows box and all that good stuff to see if 192.168.1.0/24 was right, because I don't really know how CIDR works. I just fired up mutt from my gentoo box, tried to send an email, and postfix gave me a bunch of connection timed out to smtp.freeshell.org crap. I can recieve email just fine, I'll email [EMAIL PROTECTED], and I log in and go into mutt and voila it is there, but I can't send anything. On 4/25/06, John Jolet [EMAIL PROTECTED] wrote: On 4/25/06 8:28 PM, Erik Westenbroek [EMAIL PROTECTED] wrote: From both localhost and my SDF account I get the expected 220 casusbelli.homelinux.org ESMTP Postfix. I haven't emerged iptables yet, but I'm behind a router that has a firewall installed. I'll install iptables later for ssh tarpitting, but for right now I'm doing without it. I don't know if this has anything to do with it, but I don't know if how I set hostname and domainname has anything to do with it. in /etc/conf.d/hostname, the hostname is set to casusbelli, and in /etc/conf.d/domainname, the domainname is set to osen, and I have /etc/hosts set accordingly. But I don't know what to set myhostname and mydomain to in /etc/postfix/main.cf, I tried casusbelli and osen respectivly, and then casusbelli and homelinux.org respectivly, and neither works. It is also interesting to note that the domainname of my router is not osen, but gateway.2wire.net. How should I set these values or are they fine? My net is set up that the router is at 192.168.1.254, casusbelli at 192.168.1.65, and the windows computer on the netwok is 192.168.1.64, so in main.cf, mynetworks is set to 192.168.1.0/24 127.0.0.0/8, is this correct? On 4/25/06, John Jolet [EMAIL PROTECTED] wrote: Okay, so you are attempting to send the email from a windows box, through the gentoo box to your isp email account? Is that correct? What happens if you do mail -s test [EMAIL PROTECTED] from the gentoo box. Does the mail go? Again, do the tail -f on the log. -- gentoo-user@gentoo.org mailing list -- Erik -- gentoo-user@gentoo.org mailing list
[gentoo-user] Re: Postfix Woes
NO!!! I HAVE SBC!!! AND IT HANGS! I guess I will just have to gateway through my isp. Thanks for the help. On 4/25/06, John Jolet [EMAIL PROTECTED] wrote: On 4/25/06 8:47 PM, Erik Westenbroek [EMAIL PROTECTED] wrote: no, I have a gentoo box and a windows box behind a router, and I don't want anything to do with my ISP's mail. I just mentioned the router and windows box and all that good stuff to see if 192.168.1.0/24 was right, because I don't really know how CIDR works. I just fired up mutt from my gentoo box, tried to send an email, and postfix gave me a bunch of connection timed out to smtp.freeshell.org crap. I can recieve email just fine, I'll email [EMAIL PROTECTED], and I log in and go into mutt and voila it is there, but I can't send anything. Okay, sorry, just trying to get the picture in my head. So you send a mail from the gentoo box TO the same gentoo box, what happens? In other words,you have a nonroot user bob and as root on that box you say mail -s test bob and send it that way, what happens? Bear in mind, your isp might block outgoing port 25 traffic except to it's servers. If that's the case, you'll have to put their smtp server in as your gateway. If you can send email from root on box to nonroot on box, make another client (windows or not) use that box for smtp and send email to nonroot users on box. If that works, we know smtp on that box is listening on localhost and on other addresses, and is willing to accept email. Then try telnet jolet.net 25 If you hang, your isp is blocking that traffic. Nothing you can do except bitch and make them your gateway. My co-worker had the same problem with sbc. -- gentoo-user@gentoo.org mailing list -- Erik -- gentoo-user@gentoo.org mailing list
Re: [gentoo-user] Install help
In /etc/rc.conf: Uncomment #DISPLAYMANAGER=xdm (you do this by removing the # in case you didn't know) If you are using Gnome, change xdm to gdm, and to kdm if you are using kde. Then, do rc-update add xdm default and it should start up at boot. On 4/20/06, Farhan Ahmed [EMAIL PROTECTED] wrote: Bob Bao wrote: Hi. I am a new gentoo user here. I downloaded gentoo 2.6 liveCD from gentoo website. After couple time trying, finally I successfully complete the installing. But, after log in, I only get a xterm window and a session window. I think suppose I should get a graphic user interface like boot Hi Bob and welcome to Gentoo, Which graphic desktop you have installed? If its plain X server (i.e., xorg-x11) then you'll get a very basic desktop, which you obviously dont want. If you installed kde, then probaby you've not modified your .xinitrc file. Execute this command from from console, echo exec startkde ~/.xinitrc next time you execute 'startx', kde will startup. for GNOME, execute this command first echo exec gnome-session ~/.xinitrc then startx will bring gnome up. For more info on other desktop's checkout the Gentoo docs at http://www.gentoo.org/doc/en/list.xml Hope this helps, Farhan Ahmed -- Place : Bangalore, Karnataka, India GPG Key : 8BE90E98 Skype ID: farhanahmed06 IRC Nick: farhanahmed / farhanahmed06 (irc.freenode.net) -- Erik -- gentoo-user@gentoo.org mailing list
Re: [gentoo-user] addusr (gentoo v. fedora)
or, we can just do it the easy way: useradd -d /home/user_name user_name. On 3/21/06, Nick Rout [EMAIL PROTECTED] wrote: On Tue, 21 Mar 2006 20:32:42 + THUFIR HAWAT wrote: On 3/21/06, John Jolet [EMAIL PROTECTED] wrote: .. if you add the -m argument to useradd, it will create the directory and own it by the user being added. .. Ah, thanks all for responding :) -Thufir Big tip of the day: emerge superadduser then utilise superadduser instead of adduser -- gentoo-user@gentoo.org mailing list -- Nick Rout [EMAIL PROTECTED] -- gentoo-user@gentoo.org mailing list -- Erik http://erikstotle.homelinux.org/ -- gentoo-user@gentoo.org mailing list
[gentoo-user] Re: Iptables Tarpit
thank you to all. I now have tarpits up and running smoothly. On 3/8/06, Andrew Frink [EMAIL PROTECTED] wrote: You could also just add the extensions USE flag to iptables and that should give you tarpit support On 3/7/06, Dave Jones [EMAIL PROTECTED] wrote: Erik Westenbroek wrote on 03/07/06 04:18: I am attempting create a tarpit to protect against SSH Brute force attempts. I tried this: --snip-- iptables -A SSH_Brute_Force -p tcp -j TARPIT After I type the last command typed I got this error message: iptables: No chain/target/match by that name What am I doing wrong? Hi Erik The standard Gentoo-sources kernel does not include the TARPIT target. You need to pick up an updated kernel iptables source from netfilter.org, and install it as follows: I assume you have a subversion client already installed on your machine. cd /usr/src Pick up patch-o-matic-ng: svn co https://svn.netfilter.org/netfilter/trunk/patch-o-matic-ng Pick up iptables source code: svn co https://svn.netfilter.org/netfilter/trunk/iptables Install kernel patches to iptables extra code cd patch-o-matic-ng ./runme extra Here you can select the targets/filters (e.g TARPIT) you want patching into the kernel iptables modules. After installing patches you must regenerate your kernel and modules to activate the patches, and then re-emerge iptables to pick up the kernel patches. make menuconfig make make modules_install make install Make sure that you have USE=extensions in your /etc/make.conf before you emerge iptables, or it will ignore the new non-standard extensions. emerge iptables This worked for me. Cheers, Dave -- gentoo-user@gentoo.org mailing list -- Erik http://erikstotle.homelinux.org/ -- gentoo-user@gentoo.org mailing list
Re: [gentoo-user] Iptables Tarpit
I guess TARPIT is not in the default installation of iptables, Ill just use labrea. On 3/6/06, Ryan Tandy [EMAIL PROTECTED] wrote: Erik Westenbroek wrote: iptables: No chain/target/match by that name I don't see a chain or other target named TARPIT - it's not defined anywhere on the page you referenced as far as I see, so you may have to dig it up elsewhere. -- gentoo-user@gentoo.org mailing list -- Erik http://erikstotle.homelinux.org/ -- gentoo-user@gentoo.org mailing list
[gentoo-user] Iptables Tarpit
hello I am attempting create a tarpit to protect against SSH Brute force attempts. I tried this: iptables -N SSH_Brute_Force iptables -A INPUT -p tcp --dport 22 -m state --state NEW -j SSH_Brute_Force iptables -A SSH_Brute_Force -s 192.168.1.254 -j RETURN iptables -A SSH_Brute_Force -m recent --name SSH --set --rsource iptables -A SSH_Brute_Force -m recent ! --rcheck --seconds 60 --hitcount 3 --name SSH --rsource -j RETURN iptables -A SSH_Brute_Force -j LOG --log-prefix SSH Brute Force Attempt: iptables -A SSH_Brute_Force -p tcp -j TARPIT After I type the last command typed I got this error message: iptables: No chain/target/match by that name What am I doing wrong? Here is the website I used as a reference for the tarpit: http://lists.netfilter.org/pipermail/netfilter/2005-June/060914.html -- gentoo-user@gentoo.org mailing list
