Re: [ilugd] [OT] Fwd: [cc-lessigletter] CC in Review:LawrenceLessig on How it All Began
Sanjeev ghane Gupta wrote: snip Saying I could have come first, but I didn't means little. It does. Ask your significant earlier. :) snip -- Regards, Varun Varma --- Mindframe Software Services Pvt. Ltd. http://www.mindsw.com --- ___ ilugd mailinglist -- ilugd@lists.linux-delhi.org http://frodo.hserus.net/mailman/listinfo/ilugd Archives at: http://news.gmane.org/gmane.user-groups.linux.delhi http://www.mail-archive.com/ilugd@lists.linux-delhi.org/
[ilugd] Detecting
Ganesh wrote: Hi Sudev, Ping will only show network disconnection status and not the reason for disconnection (Like cable unplugged, link down, etc). Ping only echoes data packets using ICMP which gathers status alone and doesn't gather reason for failures. Each Ethernet adapter is made up of two components - a Media Independent Interface (MII) or an Attachment Unit Interface (AUI) and a Transceiver. The transceiver, as the name suggests, interacts with the physical media, while the MII/AUI provide a standarized interface to the transceiver. AUIs are quite old and you would likely find them only on very old 10mbps networks. You can use mii-tool or mii-diag under Linux to determine physical line status. You would not be able to determine which end the link went down from - either at the NICs side or the remote side, but then, there is no logical way of achieving this that I am aware of. Always happy to learn, though. -- Regards, Varun Varma --- Mindframe Software Services Pvt. Ltd. http://www.mindsw.com --- ___ ilugd mailinglist -- ilugd@lists.linux-delhi.org http://frodo.hserus.net/mailman/listinfo/ilugd Archives at: http://news.gmane.org/gmane.user-groups.linux.delhi http://www.mail-archive.com/ilugd@lists.linux-delhi.org/
Re: [ilugd] Postfix Maillog shows warning
Amit Sharma wrote: snip in all this my question is still left unanswered !! yes, i am able to telnet port 110 and my telnet service is also on. Good God! That's exactly what I was trying to explain in my last mail. You *don't* need your Telnet server to be on to use a telnet client! no Iptales/Firewall is running still unable to telnet port 25 also, nmap -sS 127.0.0.1 shows snip so that means port is open, then why i get [EMAIL PROTECTED] root]# telnet localhost 25 Trying 127.0.0.1... Connected to localhost. Escape character is '^]'. Connection closed by foreign host. You did not need to run nmap or netstat to see that your port was open. That is apparent - otherswise you have recieved a Connection refused, instead of a Connection closed by foreign host. Please understand that you are getting connected on the SMTP port, and then getting thrown off. Mail me your Postfix config file and the output of netstat -tnlp offlist. -- Regards, Varun Varma --- Mindframe Software Services Pvt. Ltd. http://www.mindsw.com --- ___ ilugd mailinglist -- [EMAIL PROTECTED] http://frodo.hserus.net/mailman/listinfo/ilugd Archives at: http://news.gmane.org/gmane.user-groups.linux.delhi http://www.mail-archive.com/[EMAIL PROTECTED]/
Re: [ilugd] Re: HTTP antivirus scanning??
V shekhar wrote: snip Is there Redhat RPM package available for viralator?? The answer to that mystery, my friend, lies in the following limeraiku[1]: An ode to AMS: And the fair maiden[2] saw his grave and wept, And the fair maiden cried, Why, oh, why, AMS, did you have to go away so soon, after we had just met? And the wise old man[3], smiled knowingly and pointed to his epitaph, which read: Here lies the man who could answer all your questions, but instead said: Have you asked Google yet? [1] This is quite close to a limerick, in that it follows the aabba rhyming scheme. It is close to a haiku in the wisdom it offers. Hence the term. [2] This makes certain assumptions about AMS's, er, orientation, which might not be altogether correct. [3] I had Raju in a flowing robe in mind. Specifically black, with a light gray belt. His trusty Motorola A760 in his right hand and a staff in his left. He points using his staff. The point, Shekhar, is that I butted in when you are asking for opinions/experiences, but now you are simply asking for a fact. And, that, you *can get from Google.* snip - You haven't specified your setup parameters, so one can't recommend what solution you should use. [SNIP] The setup will be around 80 PC.30-40 concurrent users. 1 Mbps internet conn one AV-gateway which will sit behind firewall. machine for AV Gw will be a P4 2.7GHz more than 512 MB ram and IDE based HDD I hope it will work as it will be dedicated for this. My educated guess would be yes, it would work. But, then, remember that I don't loose my job if it doesn't work. :) If you are interested in a thorough test before going live, you could perhaps set one up using a load tester like HTTPUnit or Apache JMeter to simulate multiple simultaneous client sessions. -- Regards, Varun Varma --- Mindframe Software Services Pvt. Ltd. http://www.mindsw.com --- ___ ilugd mailinglist -- [EMAIL PROTECTED] http://frodo.hserus.net/mailman/listinfo/ilugd Archives at: http://news.gmane.org/gmane.user-groups.linux.delhi http://www.mail-archive.com/[EMAIL PROTECTED]/
Re: [ilugd] Postfix Maillog shows warning
Peeyush Maurya wrote:
Hi Anil,
By default telnet is disabled..u need to enable it by
modifying the following
#vi /etc/xinetd.d/telnet
service telnet
{
flags = REUSE
socket_type = stream
wait= no
user= root
server = /usr/sbin/in.telnetd
log_on_failure += USERID
disable = no
}
# service xinetd restart
# telnet 127.0.0.1
u cant login using root password..use any other userid
u can try the following command to see wihch ports r open
on ur box
# nmap -sS 127.0.0.1
snip
Er..Piyush, you are completely wrong here. The OP is trying to use the
Telnet client to connect to the SMTP server port on his machine and you
are telling him how to setup a Telnet server. That's kind of like a user
asking why his browser isn't working and you suggesting that he setup
Apache.
Also, if you want to see what processes are listening on which ports,
try netstat -tunlp as root.
--
Regards,
Varun Varma
---
Mindframe Software Services Pvt. Ltd.
http://www.mindsw.com
---
___
ilugd mailinglist -- [EMAIL PROTECTED]
http://frodo.hserus.net/mailman/listinfo/ilugd
Archives at: http://news.gmane.org/gmane.user-groups.linux.delhi
http://www.mail-archive.com/[EMAIL PROTECTED]/
Re: [ilugd] Re: HTTP antivirus scanning??
V shekhar wrote: well i just started this weekend, yes google helped me quite a bit, but the point is i want to foillow something whinch really worked for someone.there are many options available, i want to straightaway follow the best option...:-) a lot of snip In all the noise, the actual problem got lost. We had setup Squid + Viralator + ClamAV on a client site with the following essential stats: - 250 users in /etc/passwd - 70 stations [The client runs shifts] - 25-30 concurrent browsing sessions - Intel Bonham Server - PIV, 512MB RAM, IDE Disks [RAID 1], running various server applications like proxy, mail server, DNS etc. Observations: - The performance was satisfactory - We had to discontinue because of the following problem: When a file is downloaded, Viralator's pop-up window opens up informing the user that the file is being downloaded and scanned. The problem is that this window does not show the progress of the download, and thus, for large downloads, end users are clue-less as to what's happening. Note: This was quite some time ago, and I did not set this up personally, so something might have been overlooked, including the fact the Viralator actually supported informing about progress or it does so now. Some flame baits for you: - There is nothing called a best option. If you believe in that sort of thing, look at Microsoft products. - You haven't specified your setup parameters, so one can't recommend what solution you should use. - Don't top post. -- Regards, Varun Varma --- Mindframe Software Services Pvt. Ltd. http://www.mindsw.com --- ___ ilugd mailinglist -- [EMAIL PROTECTED] http://frodo.hserus.net/mailman/listinfo/ilugd Archives at: http://news.gmane.org/gmane.user-groups.linux.delhi http://www.mail-archive.com/[EMAIL PROTECTED]/
Re: [ilugd] Streaming video clip on Linux
Vikram Mandal wrote: Hi, I need to have streaming vedio on a website. I have PHP, MySQL, and Linux. I came to know that Linux by defualt does not support real steaming. One needs to buy some server from the Real guys. My query is: 1. Does linux support any video streaming? If yes, in what format? 2. Are there any free modules that supports streaming real media video? 3. What alternatives do I have? Note: My client have real media files. The Helix Open Source Server produced/endorsed by Real: https://helixcommunity.org/ Or the Helix Basic Server developed/maintained by Real: http://www.realnetworks.com/products/evalservers.html Apart from this, you could try pseudo-streaming. Google for it. -- Regards, Varun Varma --- Mindframe Software Services Pvt. Ltd. http://www.mindsw.com --- ___ ilugd mailinglist -- [EMAIL PROTECTED] http://frodo.hserus.net/mailman/listinfo/ilugd Archives at: http://news.gmane.org/gmane.user-groups.linux.delhi http://www.mail-archive.com/[EMAIL PROTECTED]/
Re: [ilugd] add users
vivek khurana wrote: Hi! Is it possible to add users without becoming root?? In continuation to above question is it possible to do the same from php?? I'll suggest a completely different track - if possible store the system user information in an LDAP accessible database. Or perhaps even a MySQL db? http://pam-mysql.sourceforge.net/ No need for root access then. One problem that would still exist is creating a user's home directory. -- Regards, Varun Varma --- Mindframe Software Services Pvt. Ltd. http://www.mindsw.com --- ___ ilugd mailinglist -- [EMAIL PROTECTED] http://frodo.hserus.net/mailman/listinfo/ilugd Archives at: http://news.gmane.org/gmane.user-groups.linux.delhi http://www.mail-archive.com/[EMAIL PROTECTED]/
Re: [ilugd] [x-posted]Re: [FSF-WG] Bill Gates quote
Ankur Rohatgi wrote: -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On 04/12/2004 05:08 PM, Varun Varma wrote: | - Started threatening Ok i am being a flamebait for this email, but what the heck ... As much as i hate MS for my own reasons, i have to say they are what every business would dream of being. And good governance and active people movements should prevent that from happening. Yes they do have unusual and sometimes illegal practices but they other guys cave in largely because they want to be associated with MS , for no other reason but profit themselves. They do have choices but they choose the easy way of aligning with MS so they continue to make money. The fact that MS has the largest share is not because they made people use their products at gunpoint but at one time their OS was indeed a good product and people just got into using that product. While I agree that the success of Windows is based, in some part, [perhaps even a large part] on it's merits, please understand The fact that the OS turned into something else later and the large user base is being exploited by MS now, is a different story. I am not against the capatalistic principle. -- Regards, Varun Varma --- Mindframe Software Services Pvt. Ltd. http://www.mindsw.com --- ___ ilugd mailinglist -- [EMAIL PROTECTED] http://frodo.hserus.net/mailman/listinfo/ilugd Archives at: http://news.gmane.org/gmane.user-groups.linux.delhi http://www.mail-archive.com/[EMAIL PROTECTED]/
[ilugd] Bloopers
Hi, I accidently sent out some old mails from outbox to the list. Please ignore them. :) -- Regards, Varun Varma --- Mindframe Software Services Pvt. Ltd. http://www.mindsw.com --- ___ ilugd mailinglist -- [EMAIL PROTECTED] http://frodo.hserus.net/mailman/listinfo/ilugd Archives at: http://news.gmane.org/gmane.user-groups.linux.delhi http://www.mail-archive.com/[EMAIL PROTECTED]/
Re: [ilugd] tata indicom and linux
vivek wrote: On Sat, 2004-05-15 at 21:14, Sandip Bhattacharya wrote: Latency should be a major issue on these networks, as some people here on the list have told me earlier. That means while downloads will be fast, browsing will be fast, interactive sessions like ssh/telnet, voice, etc. will be crawling. Some people had reported latency to be worse than dialup in some cases. So unless you plan to do remote admin work using this, this could be a good option. But since people of this i did not know that :-( i thought i found one of the best methods of constant net connectivity, but this is disappointing as my work will involve ssh sessions. Why not use both simultaneously, if the economics permit it? Something like iptables -t NAT -A POSTROUTING -p tcp --dport ssh -j SNAT --to-source IP of cable provider will cause just the ssh traffic to go over you faster/un-reliable cable provider, while rest goes over the wireless dial-up do wireless connections such as these suffer from high latency or is it this reliance/tata indicom connections? It's got to be these connections. A broadband radio setup, which you cost you anywhere between 1L to 4L depending on the provider and the bandwidth involved, will give you a steady last mile RTT at about 4ms, while these phones give about 300ms best case and go upto 600ms under load. -- Regards, Varun Varma --- Mindframe Software Services Pvt. Ltd. http://www.mindsw.com --- ___ ilugd mailinglist -- [EMAIL PROTECTED] http://frodo.hserus.net/mailman/listinfo/ilugd Archives at: http://news.gmane.org/gmane.user-groups.linux.delhi http://www.mail-archive.com/[EMAIL PROTECTED]/
Re: [ilugd] Mozilla Firefox temporary internet files
Vikas Upadhyay wrote: Hi, I am using Mozilla Firefox 0.8 on Windows 2000 professional. While browsing, I saw a Wallpaper and now I want to use it. But, now I don't remember the URL. Can anybody tell me where on my local machine is the cache of Mozilla (something equivalent to Temporary Internet Files of IE). I searched google and through the menu of mozilla, but in vain ( i know i need to mention this fact ). Thanks in anticipation. Try about:cache as the URL. Works in Mozilla 1.6, don't know if it'll work on FireFox. -- Regards, Varun Varma --- Mindframe Software Services Pvt. Ltd. http://www.mindsw.com --- ___ ilugd mailinglist -- [EMAIL PROTECTED] http://frodo.hserus.net/mailman/listinfo/ilugd Archives at: http://news.gmane.org/gmane.user-groups.linux.delhi http://www.mail-archive.com/[EMAIL PROTECTED]/
Re: [ilugd] Re: [LIG] [OT] Sarovar, Fairplay, Apple
a lot of snip Two things: - Viksit seems to have a million bucks. Viksit - I am a cute blonde with blue eyes and naughty friends. - To the quote the Chink in Even the Cowgirls Get the Blues - Ha ha, ho ho and hee hee -- Regards, Varun Varma --- Mindframe Software Services Pvt. Ltd. http://www.mindsw.com --- ___ ilugd mailinglist -- [EMAIL PROTECTED] http://frodo.hserus.net/mailman/listinfo/ilugd Archives at: http://news.gmane.org/gmane.user-groups.linux.delhi http://www.mail-archive.com/[EMAIL PROTECTED]/
Re: [ilugd] SMBADDUSER in RHEL-AS
V Shekhar wrote: hello List, i m facing a strange problem, it seemd that the command smbadduser is not working on Redhat Enterprise Linux AS- The packages installed are: samba-client-3.0.0-14.3E samba-common-3.0.0-14.3E samba-3.0.0-14.3E redhat-config-samba-1.0.16-1 and the command is a part of samba-3.0.0-14.3E AFAIK. Try smbpasswd -a as an alternative. -- Regards, Varun Varma --- Mindframe Software Services Pvt. Ltd. http://www.mindsw.com --- ___ ilugd mailinglist -- [EMAIL PROTECTED] http://frodo.hserus.net/mailman/listinfo/ilugd Archives at: http://news.gmane.org/gmane.user-groups.linux.delhi http://www.mail-archive.com/[EMAIL PROTECTED]/
Re: [ilugd] SMBADDUSER in RHEL-AS
V Shekhar wrote: smbpasswd -a is creating the password fine, but is not making entry in the smbuser file. as intended by the command smbadduser It seems that smbadduser is not part of the binary RPMs provided for RHEL, though it is a part of source RPMS. A couple of solutions: - Grab the sources and build from them. - Grab just the smbadduser.in file from the source tarball and fix it by hand - it's a very small script, and you only need to provide the right directories -- Regards, Varun Varma --- Mindframe Software Services Pvt. Ltd. http://www.mindsw.com --- ___ ilugd mailinglist -- [EMAIL PROTECTED] http://frodo.hserus.net/mailman/listinfo/ilugd Archives at: http://news.gmane.org/gmane.user-groups.linux.delhi http://www.mail-archive.com/[EMAIL PROTECTED]/
Re: [ilugd] Re: [LIG] [OT] Sarovar, Fairplay, Apple
Sanjeev Ghane Gupta wrote: snip Please, folks, we jump on people who post technical questions without googling. Why not google before one discusses the law? Because everyone in this discussion, with you as the only notable exception, has taken a moral position on the topic, instead of a legal one. People, as Sanjeev has consistently pointed out, the law is the law - it is not what you want it to be. It has very narrow and specific definitions of what is/is not allowed. In a free society, you are allowed to disagree with laws. But the methods of disagreement are equally well defined...breaking laws and then claiming that you never agreed with them in the first place certainly isn't a mechanism. I certainly don't need to point out the anarchy that would arise if a well defined process is not followed for changing existing laws. If anyone feels strongly about changing copyright and/or IP laws, please file PILs or petitions to your local political representatives or relevant judicial review panels. Please don't support softwares/people who willfully break laws and look at loopholes like relocating to India as a safe-haven, even if you feel that the original law that forced them to do so is archaic. Regards, Varun Varma P.S.: Sanjee, the unfortunate thing in all of this is that you and I may be seen as the Devil's Advocates for suggesting that laws should be respected. --- Mindframe Software Services Pvt. Ltd. http://www.mindsw.com --- ___ ilugd mailinglist -- [EMAIL PROTECTED] http://frodo.hserus.net/mailman/listinfo/ilugd Archives at: http://news.gmane.org/gmane.user-groups.linux.delhi http://www.mail-archive.com/[EMAIL PROTECTED]/
Re: [ilugd] Re: [LIG] [OT] Sarovar, Fairplay, Apple
Sandip Bhattacharya wrote: Sigh...I would venture to guess this is what AMS had in mind while requesting [actually, demanding] that this thread be discontinued. The debate has already ventured into the territory of loud and fanatic shouting based on assumptions that-you-know-better-than-I-what society-needs and what-is-the-philosophical-reasoning-behind-Linux. I guess I am to blame as anyone else for that, by replying to a thread where almost no one seems to have done their basic research, including I. And it get's worse - I am going to reply to this mail. For anyone with legal/philosophical expertise, please forgive me - Mea about to Culpa and produce quasi-legal, quasi-philosophical ramblings. Varun Varma wrote: If anyone feels strongly about changing copyright and/or IP laws, please file PILs or petitions to your local political representatives or relevant judicial review panels. What is going on here is just the first step of such a thing. You cant just go ahead and file a petition without having a public debate over it. By deleting what followed below, you have taken the above quote out of context. I am not suggesting that a public debate should not happen - in fact I am contributing to one. Yes, this might not be the perfect forum for it - but again, let us not forget what this forum (ILUGD) is about - it is not just technology it is also the philosophy. Umm...I never said that it should not be discussed here. On the contrary, I quite believe that it should - why else would I post to this thread, *not* demanding that it be discontinued? What you have just said above, and in the next 3 paragraphs would have been better suited as a reply to AMS's mail and I am going to refrain from commenting on quite a few things which I don't agree with at all... To all those who say we stick to linux in all our talks here - well, you are right and wrong. Right, because this particular list has probably(some say mistakenly) given the impression that it is a strictly technical one. But wrong, if you say it should stay that way. I cant say this emphatically enough - ILUGD is not just about how to use Linux, it is also about how we sustain the techno-social environment in which Linux and the GNU movement came about in the first place. So subscribers of this list who are into Linux solely for technology or commercial benefits might sometime see discussions which might not bring direct technical or commercial benefits to them. The [EMAIL PROTECTED] list is unfortunately a catch-all for all discussions. There should ideally be a separate list for those interested in discussing freedom and other philosophical reasons on the line of LIG. But that might not be a good idea because: a. The traffic might not be good enough to merit a separate list. b. Most importantly, Linux users need to be made aware of larger issues. Linux is not just about software-for-free, it is also about software-that-should-be-setting-you-free. This is not a cliche - if you dont believe in this, you are not much different from a freeloader. That is why these discussions(in moderation) do have a place here. P.S.: Sanjee, the unfortunate thing in all of this is that you and I may be seen as the Devil's Advocates for suggesting that laws should be respected. Uhh...considering that 8 paragraphs follow my P.S., I think what exactly what I said in the P.S. is coming true...getting castigated for suggesting the legal procedure be followed. Just for fun, I am going to point out the logical fallacies committed in the reasoning below. Finding out exactly what they mean is left as an excercise to the reader... Nobody is saying that laws should not be respected - if that had been the case, the discussion here would have been about how to bypass the ban and spread the software as much as possible. [non causa pro causa] Laws are not written in stone - they change over time. Yes they do. But how? The point I am trying to make again and again is that there is a well established system for changing laws, and I am suggesting that be followed. For too long have Indian commercial laws like copyright laws not been subject to public scrutiny. Copyright laws the world over is going through a spate of public debates - they are being rewritten and re-interpreted. It is time that Indian laws reflect this world trend. [Ignoratio Elenti] The above statement has no bearing on the point at hand - a law has been broken, and that should not be supported. If private enterprise ran solely on the basis of - Dont-like-it-then-dont-buy-it, then life would be a living hell. If you own a hotel, could you just put up a sign saying Only people of so-called upper castes may enter ?. The answer is you cant. Because there is a limit to which private enterprise may dictate rules. These rules have to respect common social beliefs of equality and fairness. [non causa pro causa] Yes, I can't. Do you know why? Because
Re: [ilugd] [x-posted]Re: [FSF-WG] Bill Gates quote
Sandip Bhattacharya wrote: Snip To be fair to Billy the Gate, all marketing men round the world think the same way, and this practice (of making customers addicted to their products)is actually taught in some way or the other in marketing classes at business schools throughout the world. So while you are at blasting at Billy, take a look at business practices of FMCG companies in the brick and mortar world. The difference is that in the FMCG world, no single company has created [or probably has been allowed to create] the kind of monopoly that Microsoft has. I can understand Procter Gamble giving away free toothpaste to kids to get them addicted, but the fact is that people have a choice, which PG can't control. Here's how PG would be anti-competitive: - Started threatening toothbrush manufacturers that they would not have access to early releases of the next version of their toothpaste and their brushes might not be compatible, forcing other manufacturers to make brushes which are not compatible with anything but PGs toothpastes. This might sound a bit exaggerated, but I think the point comes through. - Started threating it's distribution chain that they better stock just their toothpaste or else... - Spreads FUD about how other toothpastes are high maintenance, require exceptional technical skills to use and can lead to broken teeth if not used properly, thus leading to a higher TCO. There is fine line between claiming that your product is better and scaring people about other products. The thing about anti-competitiveness is that, well, it's anti-competitive. It's when you stop improving your products/services in order to compete and start using any/all other pressure tactics to ensure a market position. Note: I have nothing against PG. -- Regards, Varun Varma --- Mindframe Software Services Pvt. Ltd. http://www.mindsw.com --- ___ ilugd mailinglist -- [EMAIL PROTECTED] http://frodo.hserus.net/mailman/listinfo/ilugd Archives at: http://news.gmane.org/gmane.user-groups.linux.delhi http://www.mail-archive.com/[EMAIL PROTECTED]/
Re: [ilugd] postfix rejecting mails for non-local users
Sandip Bhattacharya wrote: Srinivasa Rao wrote: let me make it clear my server downloads mails through fetchmail for abc.net and my postfix configured as abc.net as local domain now there are several users who are in otherlocations who are accessing mails directly from my isp's mailhost.now my local user whenever sends an email to the non local user in the domain abc.net my postfix rejects the messages saying user not exists which is obvously true but the mail needs to be delivered via dns to my isp's mailhost. Use a different domain for your internal use (like abc.off), configure fetchmail to rewrite the envelope recipient before sending mail to the local postfix server (fetchmail global parameters smtpaddress, AFAIK). Configure postfix to make this domain as the local domain. Downside is that mails sent to even local users using the original domain will be sent out to the Internet and downloaded again. This is absoultely the wrong the way. Look at: http://www.postfix.org/rewrite.html#luser_relay -- Regards, Varun Varma --- Mindframe Software Services Pvt. Ltd. http://www.mindsw.com --- ___ ilugd mailinglist -- [EMAIL PROTECTED] http://frodo.hserus.net/mailman/listinfo/ilugd Archives at: http://news.gmane.org/gmane.user-groups.linux.delhi http://www.mail-archive.com/[EMAIL PROTECTED]/
Re: [ilugd] postfix rejecting mails for non-local users
Sandip Bhattacharya wrote: Varun Varma wrote: This is absoultely the wrong the way. Look at: http://www.postfix.org/rewrite.html#luser_relay Interesting. fallback_transport seems to be the way to go. :) I should be reading up the postfix hacks more often. Quite a postfix specific solution though. Solves the OP's problem in any case. Umm...more of PostFix feature. That's why I choose particular MTAs in particular cases - depeding on the feature set they provide. Varun, while you could address the OP's problem with this Postfix hack what do you do when you are not using Postfix as in this case? Take up the absolute wrong way? ;) Nope. Generic solution for all MTAs: Create aliases/rewrite rules for offsite addresses. E.g., for sendmail, in /etc/aliases: offsiteuser: [EMAIL PROTECTED] E.g. Domain is: abc.net, create a hostname like mail.abc.net, which points to the IP[s] of the MX. The downside of this this is that the backup MXs would not be used in case the primary is down, but there are two solutions for that: - Set up the DNS to return IPs for mail.abc.net same as the MXs in round robin. - Setup the mail.abc.net as a CNAME pointing to abc.net. That way the MX resolution for mail.abc.net would be the same as for abc.net. Never tried it and it *might* fail on some MTAs, which start looking at the DNS query reply in detail instead of accepting the returned IPs. This approach would have the side effect to changing the envolope address to mail.abc.net for mails to offsite users that come from a particular site. Depending on how you see it, that's a feature/bug. With Exim you can do this by setting up routers/directors/transports accordingly. Anyone know how to do this in sendmail, without using aliases? I hate qmail, and never looked at Courier. And, yes, I don't know how to do this with M$ Exchange. Also, if you really need to create a local domain, I highly recommend creating it as a legitimate subdomain, e.g. delhi.abc.net - lets you use dynamic DNS, and in my opinion, looks better. -- Regards, Varun Varma --- Mindframe Software Services Pvt. Ltd. http://www.mindsw.com --- ___ ilugd mailinglist -- [EMAIL PROTECTED] http://frodo.hserus.net/mailman/listinfo/ilugd Archives at: http://news.gmane.org/gmane.user-groups.linux.delhi http://www.mail-archive.com/[EMAIL PROTECTED]/
Re: [ilugd] Transparent SMTP proxy
Raj Mathur wrote: -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 A client is running NAT on a Linux box for his bandwidth customers. Now he needs to be able to catch spam and virus e-mails at the NAT gateway itself. Is there any way to transparently redirect outgoing SMTP into a local Sendmail (preferred) or other mail server for the Milter-type stuff? Would a simple REDIRECT into a locally-running Sendmail do the trick? Reason I ask is because it doesn't work with Squid for port 80 -- you have to explicitly tell Squid it's acting as a transparent proxy. Raj, Not sure if sendmail (or any other MTA for that matter) is what you should be using. I guess that with a heavy amount of configuration wizardry, you could get it to work as an SMTP proxy instead of a relay. But why not look at stuff like anti-spam SMTP proxy (assp.sourceforge.net) which is custom built for this kind of work. Heck, your client could even run POP3Scan (p3scan.sourceforge.net) or PostArmor (www.postarmor.com) and protect his clients from incoming spam/viruses. Hope that helps... Regards, Varun Varma P.S. If you think I should have written spam/virii, have a look at: http://www.perl.com/language/misc/virus.html --- Mindframe Software Services Pvt. Ltd. http://www.mindsw.com --- ___ ilugd mailinglist -- [EMAIL PROTECTED] http://frodo.hserus.net/mailman/listinfo/ilugd Archives at: http://news.gmane.org/gmane.user-groups.linux.delhi http://www.mail-archive.com/[EMAIL PROTECTED]/
Re: [ilugd] RAID Configurations
Ritesh Agrawal wrote: Hi Group , I need your suggestions in configuring RAID - 5 for file servers , firstly i want to know which tools(open source s/w) should be used for managing RAID with less complexity,more flexiblity and support for resizing data volume(without losing of data integrity), Currently i am using 'mdm' and 'raidtools' but these don't solve my purpose. What do you think about 'EVMS's' functionalities and flexiblities ? which filesystem is more stable and easy to recover in case of disk failure (ext3,JFS,ReiserFS,Open GFS)? Here's what we do for a client: - SATA hardware RAID - 1 for protection against media failure - ext3 filesystem for protection against FS corruption due to unclean stops - LVM for volume management - to be able to expand/contract partition sizes and add devices to increase space if needed - rsync on a different partition for backup for protection against accidental deletions - Tape drive for archiving Regards, Varun Varma --- Mindframe Software Services Pvt. Ltd. http://www.mindsw.com --- ___ ilugd mailing list [EMAIL PROTECTED] http://frodo.hserus.net/mailman/listinfo/ilugd
Re: [ilugd] RAID Configurations
Ritesh Agrawal wrote: Ritesh Agrawal wrote: Hi Group , I need your suggestions in configuring RAID - 5 for file servers , firstly i want to know which tools(open source s/w) should be used for managing RAID with less complexity,more flexiblity and support for resizing data volume(without losing of data integrity), Currently i am using 'mdm' and 'raidtools' but these don't solve my purpose. What do you think about 'EVMS's' functionalities and flexiblities ? which filesystem is more stable and easy to recover in case of disk failure (ext3,JFS,ReiserFS,Open GFS)? Here's what we do for a client: - SATA hardware RAID - 1 for protection against media failure - ext3 filesystem for protection against FS corruption due to unclean stops - LVM for volume management - to be able to expand/contract partition sizes and add devices to increase space if needed - rsync on a different partition for backup for protection against accidental deletions - Tape drive for archiving Hi Varun , thanks for your so promptly response . Is Reiser FS is better than ext3 FS in terms of less corrupted data due to unclean shutdown and fast recovery ? because some time , ext3 remains still in unstable state after running fsck. so i have to backup all data then reinstallation of linux .however it happens rarely. Never used Reiser FS. For ext3, have you seen the various journaling modes - data, ordered writeback, which let you trade-off between speed and data integrity? -- Regards, Varun Varma --- Mindframe Software Services Pvt. Ltd. http://www.mindsw.com --- ___ ilugd mailing list [EMAIL PROTECTED] http://frodo.hserus.net/mailman/listinfo/ilugd
[ilugd] [OT] [Humor] IP over various media
Ladies and Gentlemen, As you know, the OSI model allows layering of protocols in such a manner that services running on upper layers are independent of the transport medium. Based on this reasoning, D. Waitzman had written RFC 1149 - A Standard for the Transmission of IP Datagrams on Avian Carriers - a scheme to transport IP packets through pigeons. This excellent proposal had not seem any implementation. Uptil now. The Carrier Pigeon Internet Protocol Working Group: http://www.blug.linux.no/rfc1149/ Not to be outdone, here's someone who has implemented IP over another innovative medium: Bongo Drums. http://eagle.auc.ca/~dreid/ Wish you a happy new year. -- Regards, Varun Varma --- Mindframe Software Services Pvt. Ltd. http://www.mindsw.com --- ___ ilugd mailing list [EMAIL PROTECTED] http://frodo.hserus.net/mailman/listinfo/ilugd
Re: [ilugd] LAN card Problem
nishant wrote: Hi All, I am using RedHat linux 8.0 with two lan cards assigned ip address 192.168.1.1 and 192.168.1.2. Now the problem that I am facing is that one of the Lan card takes up both the address. I figured this out using arp. How can I resolve the problem and have both the lan card taking up their addresses only. Assuming that both the LAN cards are plugged into the same switch/hub, what you are seeing is known behaviour with Linux. Set /proc/sys/net/ipv4/conf/eth0/arp_filter = 1 /proc/sys/net/ipv4/conf/eth0/arp_filter = 1 -- Regards, Varun Varma --- Mindframe Software Services Pvt. Ltd. http://www.mindsw.com --- ___ ilugd mailing list [EMAIL PROTECTED] http://frodo.hserus.net/mailman/listinfo/ilugd
Re: [ilugd] intel 845 gl chipset
LinuxLingam wrote: redhat8 works with intel 845 gl chipset, right? Yup. But, IIRC I had to upgrade to XFree86 4.3 to get the video drivers working without having to do any funny things. RedHat 9.0 works out of the box for 845. tried googling, and found myself doing a google thwack(?) [is that the right term for getting exactly one search result?] tried a more generic search 'redhat 845' and only got about 10 results. Ummm? I got 10,900 results for the same search. ?? !! Regards, Varun Varma --- Mindframe Software Services Pvt. Ltd. http://www.mindsw.com --- ___ ilugd mailing list [EMAIL PROTECTED] http://frodo.hserus.net/mailman/listinfo/ilugd
Re: [ilugd] Some Topics we gnubies want to discuss over Momos and Coffee
Ashwin Baindur wrote: snip I volunteer to put up a Gnubie related meet in December at my home. Open-air. A machine in which we install Linux. Good chai and some snakes. ^ I sincerely hope you mean snacks here. Or are you talking about Python and Anaconda? I'd offer beer if you can get Microsoft or SCO to subsidise it ;-). Anyone willing to help me, I'd appreciate since I'm mostly a Linux squib! (Dont know what a squib is?...Go re-read your Harry Potter. /snip Regards, Varun Varma --- Mindframe Software Services Pvt. Ltd. http://www.mindsw.com --- ___ ilugd mailing list [EMAIL PROTECTED] http://frodo.hserus.net/mailman/listinfo/ilugd
[ilugd] About RedHat Linux and Novell
There have been a lot of rumours lately about how free Linux is coming to an end. My 2 cents worth... RedHat discontinuing RHL: I think that RedHat, knowingly or not, handled their PR very badly with this one. With Fedora, RedHat had now moved to community driven development model one of the greatest successes of the open source movement. They have contributed a commercial product base [aka RHL] to the project, apart from providing technical and manpower resources. Hopefully, this would achieve what Debian couldn't [last update to the stable release on 16th December, 2002]. RedHat should be thanked for this, not condemned. There is going to be pressure on RedHat to make Fedora work. They can't have a highly visible project like this go bad it would reflect poorly on Linux itself and thus their own enterprise product base would be in jeopardy. They have built their entire credibility on the RHL product line - imagine what would happen to that if Fedora bums out. Remember, while RHL has been discontinued, the customers haven't been left in a lurch...Fedora offers an upgrade path to RHL. RedHat CEO saying You should buy Windows: I couldn't agree more. I am not going to recommend running Linux to my aunt...imagine the hoops uncle would have to go through to get a video player to work when he want's to see porn. Matthew Szulik's comments have to be taken in perspective. He is not saying that Linux is not meant for desktops - in fact he says that it is an excellent option for enterprise desktops. And people with a appetite for technology can use Linux very effectivelt as a desktop. But, is not for the average home user - not yet. Novell's acquisition of Suse: This, if anything, confirms the viability of Linux in the enterprise. Novell would be able to help Linux penetrate into a wider market. Linux penetration would continue to increase as it was, and Novell would simply add it's roster of enterprise customers to this base, making even more people look at Linux. Because of the various other networking/office/collaboration software that Novell makes, they might be able to offer a comprehensive Linux based alternative to the Microsoft platform. For very long, one of very thin criticisms for Linux has been it has no support the only support you can is from college kids on mailing lists. Novell is now committing it's support infrastructure to Linux. Also, this would make Novell compete with RedHat in the Enterprise Linux space. And we all know that healthy competition makes everyone better. Regards, Varun Varma --- Mindframe Software Services Pvt. Ltd. http://www.mindsw.com --- ___ ilugd mailing list [EMAIL PROTECTED] http://frodo.hserus.net/mailman/listinfo/ilugd
Re: [ilugd] Re: ram for speed
Arvind Sinha wrote: I dont know if you can resize the linux partitions without reinstalling the linux again. I dont think there are any partition resizers for linux as such. Arvind man parted Regards, Varun Varma --- Mindframe Software Services Pvt. Ltd. http://www.mindsw.com --- ___ ilugd mailing list [EMAIL PROTECTED] http://frodo.hserus.net/mailman/listinfo/ilugd
Re: [ilugd] Block copying
vivek khurana wrote: Hi! Everyone I had this thought today, that is it possible to block coppying of files from a particular directory to any other directory or device such as floppy etc.(provided respective file system is mounted). I had serched google and freshmeat but cannot find any command, utility or tweak for this. Does any one knows the trick. (asking this just for general knowledge) Umm...what's block copying? Are you sure you're not just looking for recursive copying... cp -r Regards, Varun Varma --- Mindframe Software Services Pvt. Ltd. http://www.mindsw.com --- ___ ilugd mailing list [EMAIL PROTECTED] http://frodo.hserus.net/mailman/listinfo/ilugd
Re: [ilugd] Block copying
vivek khurana wrote: Hi! Everyone I had this thought today, that is it possible to block coppying of files from a particular directory to any other directory or device such as floppy etc.(provided respective file system is mounted). I had serched google and freshmeat but cannot find any command, utility or tweak for this. Does any one knows the trick. (asking this just for general knowledge) Please ignore my previous mail about this subject - I had misunderstood what you wanted. I think Aseem Asthana has replied to your question over at LIP - well you did cross post! Regards, Varun Varma, - Mindframe Software Services Pvt. Ltd., A-50, Sector-39, NOIDA, U.P. - 201301, India http://www.mindsw.com - ___ ilugd mailing list [EMAIL PROTECTED] http://frodo.hserus.net/mailman/listinfo/ilugd
Re: [ilugd]outbound ppptp vpn connection
yogesh anand wrote: hi, Can anyone help me to setup outbound pptp vpn connections in redhat linux 8.This machine wud be working as a firewall too , so that multiple clients behind this firewall wud create pptp connection to outside pptp gateway. You have looked at http://pptp.sourceforge.net, right? Regards, Varun Varma, - Mindframe Software Services Pvt. Ltd., A-50, Sector-39, NOIDA, U.P. - 201301, India http://www.mindsw.com - ___ ilugd mailing list [EMAIL PROTECTED] http://frodo.hserus.net/mailman/listinfo/ilugd
Re: FW: [ilugd]outbound ppptp vpn connection
Atul Kumar wrote: -Original Message- From: Atul Kumar To: 'Varun Varma ' Sent: 10/9/2003 10:49 PM Subject: RE: [ilugd]outbound ppptp vpn connection Varun, I think this link is not working http://pptp.sourceforge.net Not Found The requested URL / was not found on this server. Apache/1.3.26 Server at pptp.sourceforge.net Port 80 My bad: http://pptpclient.sourceforge.net Regards, Varun Varma, - Mindframe Software Services Pvt. Ltd., A-50, Sector-39, NOIDA, U.P. - 201301, India http://www.mindsw.com - ___ ilugd mailing list [EMAIL PROTECTED] http://frodo.hserus.net/mailman/listinfo/ilugd
Re: [ilugd] pptpd, rh9, xp - encryption not happening.
Alok Sinha wrote: Team, Has anyone worked with pptpd, redhat 9 and xp clients, through rpms only. (without having to re-compile kernel) I am able to setup vpn connection, but not able to execute encryption. What am i missing. Wild guess here, but you do have the ppp_mppe module, right? Regards, Varun Varma --- Mindframe Software Services Pvt. Ltd. http://www.mindsw.com --- ___ ilugd mailing list [EMAIL PROTECTED] http://frodo.hserus.net/mailman/listinfo/ilugd
Re: [ilugd] Verisign Plays the M$ way
Tarun Upadhyay wrote: I don't see what is wrong. They have been running the root servers for too long and they are now trying to make some money out of it. Huh? They have not been running the root name servers for free! AFAIK, every registrar has to pay them for every domain registered under .com/.net. I think it's $6/pop... And they only do it for invalid domains. It is much better than pop up ads in flash that cover the screen. I can turn those off, for e.g. in an application like Mozilla or using add-ins for IE. I can't turn this off, without significant effort. I would think this is a legitimate way of making money. Slashdot has a an article: http://slashdot.org/articles/03/09/19/039214.shtml?tid=123tid=126tid=95tid=99 Basically, a cybersquatting company - Popular Enterprises LLC, is suing VeriSign for this move. How *legitimate* is your business if you are being sued by a cybersquatter? The issue of technical problems cropping up due to this also looks exaggerated to me. Clearly, any danger to SMTP servers can not be a concern as they would probably add wildcards for A type record and not MX records. Here's a sample email I had sent: - The following addresses had permanent fatal errors - [EMAIL PROTECTED] - Transcript of session follows - ... while talking to tarunpadhyay.com.: RCPT To:[EMAIL PROTECTED] 550 User domain does not exist. 550 [EMAIL PROTECTED]... User unknown Now, how do you expect a non-technical user to interpret this? - Call you and ask what happened to your domain? - Ask his support department? - Assume he has the wrong address and try again? Can somebody more knowledgeable enlighten me on what kind of things I can expect to break because of this from a system administration point of view and how can they be repaired. (just the facts please, not the rhetoric). Let's consider some other problems: - SMTP: As above - HTTP: --- Much more traffic across the Internet. Whereas earlier there would have been just a NXDomain DNS query result, now the entire site would be downloaded. --- Scripts which used domain lookup faliures to do interesting things would break. E.g. A company uses a script to check the expiration of it's own domains. - Other protocols: --- Take telnet for example: A domain lookup would have failed faster, but now a typo means that I end up waiting for a couple of minutes before being told Connection timed out. More Traffic. Syn packets would be sent, which would not have been earlier. Not a problem for an individual site, but consider the overall traffic increase on the Internet. Also, the problem is that domains not resolving is a key method for troubleshooting problems. Say some user has misconfigured their mail client...now they would call up the support chaps saying that they are getting a Connection refused message instead of Domain not found. How easy would it be for the support people to diagnose this? Regards, Varun Varma, - Mindframe Software Services Pvt. Ltd., A-50, Sector-39, NOIDA, U.P. - 201301, India http://www.mindsw.com - ___ ilugd mailing list [EMAIL PROTECTED] http://frodo.hserus.net/mailman/listinfo/ilugd
Re: [ilugd] How I will change the hardware address?
Srinivas wrote: How I will set the hardware address of my interface card. Using ifconfig how I will do that. Anyone help me.. Right out of man ifconfig... quote hw class address Set the hardware address of this interface, if the device driver supports this operation. The keyword must be followed by the name of the hardware class and the printable ASCII equivalent of the hardware address. Hardware classes currently supported include ether (Ethernet), ax25 (AMPR AX.25), ARCnet and netrom (AMPR NET/ROM). /quote So: #ifconfig dev [ethX] hw ether [MAC] Untested...lemme know if it works. Hope that helps... Varun Varma, - Mindframe Software Services Pvt. Ltd., A-50, Sector-39, NOIDA, U.P. - 201301, India http://www.mindsw.com - ___ ilugd mailing list [EMAIL PROTECTED] http://frodo.hserus.net/mailman/listinfo/ilugd
Re: [ilugd] (fwd) Linux: Help
Raj Mathur wrote: snip Respected Sir/Madam , Eesh! You think Raju is *respected*?? Actually, you think Raju is Sir/Madam... I am a student of final year computer engg. . I think computer engg. has many years to go. Don't think that this is the final year for computer engg. I am doing my project in linux o.s. .I am giving you details about the project .Please , let me know how can I begin my project . What are the things that I should study. PROJECT: We have a cyber lab in our college where the students have access to the internet.All of these machines are using windows-98 o.s.. Our job is to make a server in linux which will have control over all these machines.Server should have firewall in it , so as to restrict some of the websites.It should also have the information about every user that have been logged on to the machine in cyber lab. I think that a proxy like Squid is what you are looking for here. You can set up ACLs on various paramaters, including URLs, users, heck - even time of day. So porn can be allowed from 5PM onwards... Administrator should be able to monitor every action of the user of any machine of the lab. Umm..even when they sractch themsevles. Or should the monitoring be limited to just theit on-screen activities? He should be able to produce screen of any user on his terminal thus be able to see what that particular user is doing. As Robins mentioned, VNC. If the administrator has seen that some user has opened some website which is not in the list of restricted website of firewall but still its objectionable , he should be able to add it immediately to the list. Also he should be able to give a warning message to the user of that terminal if he don't stops he should be able to turn off his terminal. Jabber for getting the messages across to the terminal. Windoze - so with VNC, [s]he simply goes to Start button and, umm..stops the machine. Administrator should be able to do all this just by sitting on the server machine. For that, [s]he would have to study Zen Bhuddism. I mean, I don't think [s]he can do all this, by just *sitting* on the server machine - sitting on the server machine might damage it. [S]he would, most probably have to sit on a chair and use the server machine and the softwares mentioned above. Please , let me know suggestions from you. Squid, VNC, Jabber...and Zen Bhuddhism. Thanking You!! Welcoming you... Varun Varma, - Mindframe Software Services Pvt. Ltd., A-50, Sector-39, NOIDA, U.P. - 201301, India http://www.mindsw.com - ___ ilugd mailing list [EMAIL PROTECTED] http://frodo.hserus.net/mailman/listinfo/ilugd
Re: [ilugd] Building a module
Yashpal Nagar wrote: snip It still show me the entry Iface as eth0 not eth0:1 in 'route -n' My question is will route program should show eth0:1 or eth0:2 as the Iface parameter? I am using two ISPs with same linux box. Both ISPs are connected to switch and my linux box too. One ISP is ADSL and another one is broadband. When i assign both IPs(one private one public) no one can ping to my broadband IP. Here is details of 'route -n' ifconfig snip Where 192.168.168.1 is my LAN IP of ADSL router. I want ip 210.x.x.14 should get pinged from anywhere in world. Linux would always use aliases for secondary addresses. The problem here is of multiple gateways. If you run something like tcpdump -nei eth0 icmp while pinging your 210.x.x.14 address, you would most likely the destination ethernet address of the ICMP echo replies as the 192.168.168.1 address, i.e. Linux is trying to route the reply packets of your broadband ISP through the ADSL ISPs gateway. You could fix it by source routing, if you can use iproute2: #ip route add table isp1 210.x.x.14/30 dev eth0 src 210.x.x.14 proto static scope global #ip route add table isp1 default via 210.x.x.12 dev eth0 proto static scope global #ip rule add from 210.x.x.12/30 lookup isp1 prio 100 #ip route add table isp2 192.168.1.0/24 dev eth0 src 192.168.1. proto static scope global #ip route add table isp2 default via 192.168.1.0/24 dev eth0 proto static scope global #ip rule add from 192.168.168.0/24 lookup isp2 prio 100 Also, in /etc/iproute2/rt_tables, add entries for tables isp1 isp2 I think http://lartc.org has a section on this... BTW, I don't think 210.x.x.12 is a valid IP for a /30 subnet, since it would become the network address for that subnet. -- Regards, Varun Varma --- Mindframe Software Services Pvt. Ltd. http://www.mindsw.com --- ___ ilugd mailing list [EMAIL PROTECTED] http://frodo.hserus.net/mailman/listinfo/ilugd
Re: [ilugd] linux based server - Multi OS client
tanmaya Anand wrote: I want to create a linux based automation software for our office. This will consist of: 1. linux based server daemon 2. Client software for multiple OS(including linux, win, Mac) I want to create a simple linux based server program, which listen for requests on network, and on receiving one authenticates it with MySQL(or /etc/passwd), and then processing the request, like fetching the data from the database and sending back the result( raw text or binary data like graphs). Above is the basic outline of the server. It needs to communicate with the client over a secure protocal. This should be simple enough, so that clients can be easily written for multiple platforms. Can anyone help me out in designing the basic secure interaction authentication part of the two components. What about looking at Java with JAAS and TLS and perhaps client side certificates? - Cross platform...your clients/server would be completely portable - Secure - No network level programming Also, wouldn't a web based application do for you? Regards, Varun Varma --- Mindframe Software Services Pvt. Ltd. http://www.mindsw.com --- ___ ilugd mailing list [EMAIL PROTECTED] http://frodo.hserus.net/mailman/listinfo/ilugd
Re: [ilugd] IPTABLES
Amit, i use iptables -t nat -A POSTROUTING -o eth1 -j MASQUERADE to allow my linux box to act as gateway for my local windows system amd access internet. it works fine. how can i restrict the same thing for a specific ipaddress(es) only. expample my linux box should act as gateway only to say 192.168.1.10 and none other systems on my network. Something like: iptables -t nat -P POSTROUTING DROP iptables -t nat -A POSTROUTING -o eth1 -s 192.168.1.10 -j MASQUERADE Remember, there are *many* possible variations to achieve this result. Hope this helps, -Varun -- Mindframe Software Services Pvt. Ltd., A-50, Sector-39, NOIDA, U.P. - 201301, India http://www.mindsw.com ___ ilugd mailing list [EMAIL PROTECTED] http://frodo.hserus.net/mailman/listinfo/ilugd
