Re: [gentoo-user] Mailing list and PGP/MIME
On Fri, 30 May 2008 00:11:51 +0100 Robert Bridge [EMAIL PROTECTED] wrote: On Fri, 30 May 2008 02:05:42 +0300 Daniel Iliev [EMAIL PROTECTED] wrote: On Thu, 29 May 2008 08:38:27 + (UTC) [EMAIL PROTECTED] wrote: W. Canis wrote: OK, I can't bring myself a proof of concept. Allow me to help you with that part. Personally I still think signatures in public mailing lists are overrated. NOT signed by Some Gentoo user with a security job and 5 minutes of time P.S. Daniel - I really hope this is ok with you. I took your dare literally for this one time. Your personality won't be abused by me again. No problem,..ehh..PSZ, I presume? :) It was I who gave the idea and the challenge. Don't worry, it's really fine by me. I admit I looks very much as if the message was sent by me and could be deceiving at first glance, but: FAKE: === Received: from observed.de (observed.de [81.169.134.89]) by pigeon.gentoo.org (Postfix) with ESMTP id AE151E05BC for gentoo-user@lists.gentoo.org; Thu, 29 May 2008 08:38:27 + (UTC) === NOT FAKE: === Received: from fg-out-1718.google.com (fg-out-1718.google.com [72.14.220.153]) by pigeon.gentoo.org (Postfix) with ESMTP id 3E5ACE0229 for gentoo-user@lists.gentoo.org; Mon, 26 May 2008 00:30:07 + (UTC) === Except that even that can be faked. The header is part of the payload, so can be whatever the user decides to put in, simply fake some a set of relay lines, and how do you know? Rob. Yes, you can insert headers before you send the message, but the SMTP server which receives the message for local delivery always has the final word. In this case pigeon.gentoo.org has added its headers to the proof of concept message and we can see that the mail from [EMAIL PROTECTED] was actually sent from elsewhere. Glad to hear you didn't mind, Daniel. Yes, you traced me correctly. And as Rob already noticed, that could be circumvented by spoofing the header a little more. Also you were correct to notice, that the receiving server has the last word - however many servers today do -not- perform reverse DNS lookups. You can basically put into the EHLO message whatever you want and the receiving server will buy it. So with some effort we could make it look as if the message was actually received from fg-out-1718.google.com. At least as long as pidgeon.gentoo.org doesn't do reverse DNS lookups, which frankly I didn't check. :) --Paul -- gentoo-user@lists.gentoo.org mailing list
Re: [gentoo-user] Help me reboot X
Can somebody help me stop and restart X? I'm using kdm for login. Just in case your X-Server is still responding AT ALL you can always try hitting Ctrl+Alt+Backspace to kill it. This will work up to a certain level of hanging. Then simply restart it by typing startx. Otherwise ssh into your box and use ps -ax | grep X or ps -e | grep X to get X's PID and then kill it using kill. kill has a priority switch. So kill [PID] might not work. However kill -9 [PID] will kill about anything on the spot. If the -9-switch fails to kill X you are having more serious troubles. My two cents Paul -- [EMAIL PROTECTED] mailing list
Re: [gentoo-user] Setting installation directories globally
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Hi, thank you all for your very clear and thus helpful statements. I am going to reconsider my plans. Maybe there are better structures. Or maybe I'll simply keep the gentoo-style structures and place some folders with symlinks under root. Anyways - thanks It's always a pleasure to post here (at least as long as people are not flaming on some semi-interesting subject. :) ) Many Greetings Paul -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.6 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFGOJCSaHrXRd80sY8RCpkbAJ97hnxcXTVk6s1BdJWBBxa4YNO5dgCgzrm1 NMEiU+yOLwzYkv6zhNqJ02A= =/cxF -END PGP SIGNATURE- -- [EMAIL PROTECTED] mailing list
[gentoo-user] Setting installation directories globally
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Hy everybody, can you please tell me if there is some way to set the install directory of an ebuild globally without changing the ebuild? Let me clarify: I want a few packages to not be merged under / directly but rather to be located under /something/*. I understand that the ebuilds contain directives of where to install the files through src_install(). However I don't believe it would be a good idea to edit ebuilds manually since it would lead to breakages during emerge --sync. So is there some file I can edit to change the install directory for a certain package? For example like setting wireshark /wifi firefox /stuff baselayout / (this is just a rough sketch of what I'm looking for.) All help would be greatly appreciated! Many Greetings Paul -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.6 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFGN3ilaHrXRd80sY8RCuhlAKDAg/ioaMe9TnFTy6g5dvqfStzWCgCcDL4E v+16b13Vj0m58U5LkXHlPGk= =ZCsw -END PGP SIGNATURE- -- [EMAIL PROTECTED] mailing list
Re: [gentoo-user] Setting installation directories globally
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 I thought about that too, but wouldn't that more or less create a new system. For instance if I emerged a library (say libpcap) with ROOT=/libs and then tried to emerge wireshark (which depends on libpcap) with ROOT=/analysis I think that wireshark would fail to start due to missing libraries. (Or it would pull in libpcap once more and merge it into /analysis thus resulting in several installed copies at once). Please correct me if I should be mistaken. Thanks for the help Paul Joshua Doll schrieb: Would ROOT= in the emerge command work? --Joshua Doll Paul Sebastian Ziegler wrote: Hy everybody, can you please tell me if there is some way to set the install directory of an ebuild globally without changing the ebuild? Let me clarify: I want a few packages to not be merged under / directly but rather to be located under /something/*. I understand that the ebuilds contain directives of where to install the files through src_install(). However I don't believe it would be a good idea to edit ebuilds manually since it would lead to breakages during emerge --sync. So is there some file I can edit to change the install directory for a certain package? For example like setting wireshark /wifi firefox /stuff baselayout / (this is just a rough sketch of what I'm looking for.) All help would be greatly appreciated! Many Greetings Paul -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.6 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFGN4B6aHrXRd80sY8RCg0fAJ41Oa2OFoXAtZXC0x1upa5L/v96mwCg+pFL FbaXM7poUpNFgJ/g0iGwXpE= =0PAB -END PGP SIGNATURE- -- [EMAIL PROTECTED] mailing list
Re: [gentoo-user] Setting installation directories globally
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 As far as I know there is no way to change the prefix via portage, since its all hardcoded (kinda makes me wonder why this was never added as a feature tho). Makes me wonder, too. I'm starting to think about writing a patch. It should be somehow possible to let portage override the settings within the ebuild. However I have never hacked up emerge before. Any suggestions by the pros out there? My best guess is that you're going to have to setup an overlay. This is what I would do (untested tho): Yeah, I thought about that too, but it pretty much eliminates the point of using Portage in the first place. Many Greetings Paul -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.6 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFGN6UwaHrXRd80sY8RCiv1AJ43A2CDbRqVyF6t2litmlJ7itpYmQCdEEC3 m3+MvVGHNBn248O1WyXv83Y= =Es17 -END PGP SIGNATURE- -- [EMAIL PROTECTED] mailing list
Re: [gentoo-user] Setting installation directories globally
Whats the purpose of this? To create a very clear directory structure for a small binary Linux distribution I am planning to build using Gentoo and Portage. -- [EMAIL PROTECTED] mailing list
Re: [gentoo-user] Recommendation
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 I dont know about your X Server (there are some great guides out there - don't despair, it never worked for me in the first run either) but I think I have a clue to whats with you network card: The LiveCD has a kernel with all the drivers enabled as modules (or probably build in). The kernel you compiled yourself will probably not have those. Try this: Find out what kind of network card you have (Bo Andresen wrote in his mail how to do this) - go back and configure the Kernel - you can find the ethernet-drivers under Device Drivers - Network Device Support - - Ethernet (10 or 100 Mbit) || Ethernet (1000 Mbit) || Ethernet (1 Mbit). Now find your card's driver (read the help-pages or search the web if you don't know it) and build it into your kernel (press y). Then recompile your kernel and boot it. You should see your card with ifconfig -a now. HTH Paul Scott W. McMikle schrieb: I have used Mandriva and Kubuntu and several other distributions before I thought I would give Gentoo a try because I like to tweak and learn more about Linux. The live cd works great on my machine, but when I attempted to install Gentoo on that same machine, X does not work, nor does my network connection. I have tried the Gentoo handbook, but I am unable to find the answers to solve my problems. I have found myself quickly over my head and now I begin to wonder if I am not quite ready for Gentoo. What would you all recommend? -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.6 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFF3MVcaHrXRd80sY8RCmUoAKDkTMYRcGsMiUScvsMcvk8IW1q7XQCg47LJ lMZoQdnx4W4HHzSZ2mGpnNE= =Q8vB -END PGP SIGNATURE- -- gentoo-user@gentoo.org mailing list
Re: [gentoo-user] Re: Did I just get hacked???
Hi Grant, personally (but this is by far only ONE possible setup for your task) I'd advise you to connect eth0 to wan through a box set up as a bridge (try brctl). If that box has a good wireless card and good drivers (this mostly means if that box isn't running Windows) you can also put that wireless-card into promiscuous mode lock it to your chanel and ssid and feed wireshark your WEP-Key or WPA-PSK for decryption. If not, then you'll have to use a second box for the wireless sniffing. BTW. current rootkits won't just replace ps or some other tools. Good rootkits do not run in userspace; they run in kernelspace. They directly intercept the function-calls. Just another thing to keep in mind while trying to scan for them. hth Paul Grant schrieb: A good rootkit will install a ps that won't show the 'bot processes. The one time a machine of mine got hacked, netstat still worked, but I don't know why a hacked netstat couldn't be installed as well. Looking through /proc/≤pid is probably still reliable. Hello Grant, I keep an old portable around, running wireshark and a flat hub. You can set your ethernet address to 0.0.0.0 and fire up wireshark. You can then sniff any (ethernet) segment of your network for nefarious traffic or male-configured network applictions. Ok, it sounds like the key to figuring this out is watching the outgoing network traffic for weird stuff. eth0 is on the WAN and wireless ath0 is on the local subnet. How would you monitor the outgoing traffic considering my setup? - Grant │ИМ╒▀╛z╦·з(╒╦j)b·bst== -- gentoo-user@gentoo.org mailing list
Re: [gentoo-user] Should we NEVER do an ``emerge -u world''?
If the problem is that your device is not mounted automatically you can simply try mount /dev/sda1 /mnt/whatever with the appropriate device and folder as root. Apart from that you could check /etc/fstab for the auto-argument. Or if this doesn't work you can check dmesg to see what happens to your device. Apart from this: You SHOULD do emerge -u world. However emerge -uD world might be smarter... Also don't forget to update your config-files with dispatch-conf or etc-update. hth Paul sdoma wrote: Hi, there is it again ... I've upgraded my system and things stop working. :((( After the upgrade there is no device coming up if I plug in an USB device. I'm on a stable (x86) system and I would need my USB disks just now. Any way to fix this quick? Thanks Frank -- gentoo-user@gentoo.org mailing list
Re: [gentoo-user] Exluding some apps from emerge --update world
Alex Fortwinder wrote: Hi list, I's like to update my system, however, I'd like to keep some of the packages as they are (X, firefox, kernel, etc) How do I go about it before i run emerge --update --deep --newuse world? Thanks in advance, Alex Hi, I'm not sure if I missed something here but removing the packages from the world-file (/var/lib/portage/world) should work. Also you could emerge them using the --oneshot option in the first place to avoid adding them to the world-file. However are you really sure you want to exclude packages with frequent security-issues like firefox and the kernel from being updated? MfG Paul -- gentoo-user@gentoo.org mailing list
Re: [gentoo-user] Internet connection sharing
Hi, maybe it would be easier to buy a PCMCIA-based wireless card. This would eliminate the need for cabeling the laptop down. I own several and even the cheap ones that come at 17 € have good reach and support WPA (sometimes even WPA2). Just a suggestion. HTH Paul 2006-06-11 (日) の 12:03 -0700 に Grant さんは書きました: My Gentoo workstation connects to my Gentoo router's wireless WPA connection just fine, but the wireless card built into my girlfriend's XP laptop does not support a WPA connection at all. I won't use WEP, but I really need to get her connected. The router's single ethernet port is being used by the DSL modem, but my workstation's ethernet port is free. What would I need to do to share my workstation's connection to the router with her via the workstation's ethernet port? Would I need to set my workstation up as a full-blown router via: http://www.gentoo.org/doc/en/home-router-howto.xml - Grant -- gentoo-user@gentoo.org mailing list
Re: [gentoo-user] Internet connection sharing
Hi, as far as I know getting her online shouldn't be a problem then. All the cards you can buy will probably ship with drivers for Windows XP so you'll get it running very fast. Afterwards you can just configure her laptop to access the wireless router you connect to with your workstation without having to switch to WEP since then she'll be able to use WPA. Paul 2006-06-11 (日) の 12:51 -0700 に Grant さんは書きました: Hi, maybe it would be easier to buy a PCMCIA-based wireless card. This would eliminate the need for cabeling the laptop down. I own several and even the cheap ones that come at 17 € have good reach and support WPA (sometimes even WPA2). Just a suggestion. HTH Paul You think the config would be tricky then? - Grant My Gentoo workstation connects to my Gentoo router's wireless WPA connection just fine, but the wireless card built into my girlfriend's XP laptop does not support a WPA connection at all. I won't use WEP, but I really need to get her connected. The router's single ethernet port is being used by the DSL modem, but my workstation's ethernet port is free. What would I need to do to share my workstation's connection to the router with her via the workstation's ethernet port? Would I need to set my workstation up as a full-blown router via: http://www.gentoo.org/doc/en/home-router-howto.xml - Grant -- gentoo-user@gentoo.org mailing list