Re: security check
If you don't pop mail from this machine, turn off inetd completely (you don't need it). If you do, put a # sign in front of all _except_ pop3, then stop and start inetd. Then also run: netstat -tupan and look at all your open ports. If you don't need the service, turn it off. If you only need the service locally, block it with iptables from external use. You should protect your system with iptables: iptables -t filter -i -A FORWARD -m state --state ESTABLISHED,RELATED -j ACCEPT iptables -t filter -A INPUT -i -m state --state ESTABLISHED,RELATED -j ACCEPT iptables -t filter -A FORWARD -i -m state --state NEW,INVALID -j DROP iptables -t filter -A INPUT -i -m state --state NEW,INVALID -j DROP replace ext_dev with your external device, i.e., ppp0 (or ppp+), eth0, etc. On Wed, 13 Feb 2002 23:35:17 -0600 begin daddy <[EMAIL PROTECTED]> spewed forth: > With my recent hacker scare I decided to look into my security. Here > is a portion of my inetd.conf file. I only use my internet > connection receive email (pop3) and surf the internet at this point. > What can I turn off? > > #echo dgram udp waitrootinternal > discard stream tcp nowait rootinternal > discard dgram udp waitrootinternal > daytime stream tcp nowait rootinternal > daytime dgram udp waitrootinternal > #chargen stream tcp nowait rootinternal > #chargen dgramudp waitrootinternal > time stream tcp nowait rootinternal > time dgram udp waitrootinternal > # > # These are standard services. > # > ftp stream tcp nowait root/usr/sbin/tcpd in.ftpd -l -a > telnet stream tcp nowait root/usr/sbin/tcpd in.telnetd > > # > # Mail and news > # > # Do not uncomment either unless you *really* know what you are doing. > # Both are started as standalone daemons from the /etc/rc.d scripts. > #smtp stream tcp nowait root/usr/bin/smtpd smtpd > #nntp stream tcp nowait root/usr/sbin/tcpd in.nntpd > > # > # Shell, login, exec and talk are BSD protocols. > # > shell stream tcp nowait root/usr/sbin/tcpd in.rshd > login stream tcp nowait root/usr/sbin/tcpd in.rlogind > execstream tcp nowait root/usr/sbin/tcpd in.rexecd > talkdgram udp waitnobody.tty /usr/sbin/tcpd in.talkd > ntalk dgram udp waitnobody.tty /usr/sbin/tcpd in.ntalkd > #dtalkstream tcp waitnobody.tty /usr/sbin/tcpd in.dtalkd > > # > # Pop and imap mail services et al > # > pop2stream tcp nowait root/usr/sbin/tcpd ipop2d > pop3stream tcp nowait root/usr/sbin/tcpd ipop3d > imapstream tcp nowait root/usr/sbin/tcpd imapd > # > # The Internet UUCP service. > # > uucp stream tcp nowait uucp/usr/sbin/tcpd /usr/sbin/uucico -l > # > # Tftp service is provided primarily for booting. Most sites > # run this only on machines acting as "boot servers." Do not uncomment > # this unless you *need* it. > # > #tftp dgram udp waitroot/usr/sbin/tcpd in.tftpd > #bootps dgram udp waitroot/usr/sbin/tcpd bootpd > # > # This is for the finger service > # > finger stream tcp nowait nobody /usr/sbin/tcpd in.fingerd -u > /var/run/.ppp_socket stream unixnowait root > /usr/sbin/ppp-envoy ppp-envoy -da > # > # Finger, systat and netstat give out user information which may be > # valuable to potential "system crackers." Many sites choose to > disable > # some or all of these services to improve security. > # > #systat stream tcp nowait nobody /usr/sbin/tcpd /bin/ps -auwwx > #netstat stream tcp nowait nobody /usr/sbin/tcpd /bin/netstat --inet > # > # Authentication > # > authstream tcp nowait root/usr/sbin/in.identd in.identd > swatstream tcp nowait.400 root/usr/sbin/tcpd swat > # > # End of inetd.conf > > Sometime in the near future I would like to use this box as a gateway > to a home network. Would I need to reactivate anything at that > point? Thanks for the input. > > Mark > ___ > Linux-users mailing list - http://linux.nf/mailman/listinfo/linux-users > Subscribe/Unsubscribe info, Archives,and Digests are located at the > above URL. Ciao, David A. Bandel -- Focus on the dream, not the competition. -- Nemesis Racing Team motto Internet (H323) phone: 206.28.187.30 ___ Linux-users mailing list - http://linux.nf/mailman/listinfo/linux-users Subscribe/Unsubscribe info, Archives,and Digests are located at the above URL.
Re: Sendmail Masquerading Question
On Wed, 13 Feb 2002 22:43:41 -0500 begin Ian <[EMAIL PROTECTED]> spewed forth: [snip] > > But no matter what combination of DM / CM / CG (shooting wildly at then > end) I cannot prevent it from mailing out [EMAIL PROTECTED] when I > send from the sendmail box. Which of course bounces as domain doesn't > exist. Remove the CG item(s). You need: DMmarchak.ca FEATURE(masquerade_envelope) (this goes in your .mc file, then rebuild w/ m4) you can always test: sendmail -bt /tryflags hs /try esmtp [EMAIL PROTECTED] /try local [EMAIL PROTECTED] (all should resolve completely (and finally) to [EMAIL PROTECTED]) D to quit. Ciao, David A. Bandel -- Focus on the dream, not the competition. -- Nemesis Racing Team motto Internet (H323) phone: 206.28.187.30 ___ Linux-users mailing list - http://linux.nf/mailman/listinfo/linux-users Subscribe/Unsubscribe info, Archives,and Digests are located at the above URL.
Re: Another Microsoft marketing success
On Mon, 11 Feb 2002 09:43:16 +0100 begin Roger Oberholtzer <[EMAIL PROTECTED]> spewed forth: > On Mon, 11 Feb 2002 05:17:06 +0530 > "zohar" <[EMAIL PROTECTED]> wrote: > > | I think the main point for needing windows is its ease of use but > | needs fast hardware. > | This is not understood by the people because nowadays hardware is not > | as much costly as it was before. > | > | If someone could give the CDs of the customized version of Linux that > | also includes office suite (Staroffice 6.0) and a GUI that makes > | operating easy then it can make a big hole in Microsoft's monopoly as > | it can also perform on a slow HW also whose lower cost government can > | afford.. > > There are two major things Linux would need - in addition to an office > suite: > > Keyboard/character set support. So many are sending e-mail to friends > that REQUIRE alternate character sets. Especially mixed ones. Type an > e-mail address as expected, but enter the content as, say, Urdu. MS > does this sort of thing very well. Linux supports kayboards, but not > input methods (right to left text as an example). Don´t know about all this (the Urdu, writing right to left, etc), but I have no problems with ñáéíóúü for my Spanish. (in Spanish, año means year, but ano means anus -- very embarrasing wishing folks happy backside instead of happy new year). > > Web telephone. No kidding. Local phone companies in Africa and the > Middle East charge BIG bucks for international calls. One big sales area > on PCs are things like net2phone. They are very popular. Some people I > know even bought a PC for this alone. Anything else they could get it to > do would be gravy. There is Linux telephony - but not out of the box. > so get ohphone or speakfreely, hook up a headset/mike and call me. Personally, I´m using a phone connected to a quicknet phonejack card. Worked pretty much "out of the box" for me. Granted I upgraded phonedev.o and ixj.o, and ohphone and speakfreely are not boxed in any distro I've used, but it's available. Ciao, David A. Bandel -- Focus on the dream, not the competition. -- Nemesis Racing Team motto Internet (H323) phone: 206.28.187.30 ___ Linux-users mailing list - http://linux.nf/mailman/listinfo/linux-users Subscribe/Unsubscribe info, Archives,and Digests are located at the above URL.
Re: Ping
On Mon, 11 Feb 2002 00:17:37 -0500 begin Ian <[EMAIL PROTECTED]> spewed forth: pong David A. Bandel -- Focus on the dream, not the competition. -- Nemesis Racing Team motto Internet (H323) phone: 206.28.187.30 ___ Linux-users mailing list - http://linux.nf/mailman/listinfo/linux-users Subscribe/Unsubscribe info, Archives,and Digests are located at the above URL.
Re: freecell
On Sun, 10 Feb 2002 13:19:03 -0800 (PST) begin Net Llama <[EMAIL PROTECTED]> spewed forth: > Greetings, > Does anyone know of a very good FreeCell game? I've tried Ace of > Penguins and XFreecell, and neither is really up to snuff. As much as I > hate to admit it, the MS version seems to be the gold standard to which > the others are not comparing. > Well, since you seem to like KDE, I assume you've tried kpat (the old xpat2). But my favorite is PySOL. Not sure if the Caldera's version of Python is up to it, so you may need to upgrade that, but PySOL is king in my house. When I did an upgrade, I nearly had a mutiny on my hands until I put PySOL back on. You'd have thought I'd deleted their bank accounts! Ciao, David A. Bandel -- Focus on the dream, not the competition. -- Nemesis Racing Team motto Internet (H323) phone: 206.28.187.30 ___ Linux-users mailing list - http://linux.nf/mailman/listinfo/linux-users Subscribe/Unsubscribe info, Archives,and Digests are located at the above URL.
Re: Resend [Postifix on Redhat 7.2]
On Tue, 05 Feb 2002 22:19:38 -0500
begin Ian <[EMAIL PROTECTED]> spewed forth:
[snip]
>
> from postfix.spec:
>
> ---
> %triggerin -- db4
> rm -rf %{ROOT}/lib/libdb*
> %{copy_cmd}
> copy /lib/libdb-4.0.so %{ROOT}/lib
> copy /lib/libdb.so %{ROOT}/lib
> ---
I hate it when they do stuff like the above, especially if db-3.2 really
is sufficient and the program doesn't rely on new db-4 stuff. That's what
the above would suggest, but I'd just change the spec file and try. Worst
it can do is segfault.
>
> ---
> BuildRequires: gawk, perl, sed, ed, db4-devel
> ---
>
> So, I have db3-devel installed, all I need to do is update the
> references and files in the above statements?
>
> rpm -bb postfix.spec
>
> Or am I oversimplifying this?
I'd at least give it a shot. You'll find out soon enough if you've
oversimplified it.
Ciao,
David A. Bandel
--
Focus on the dream, not the competition.
-- Nemesis Racing Team motto
Internet (H323) phone: 206.28.187.30
___
Linux-users mailing list - http://linux.nf/mailman/listinfo/linux-users
Subscribe/Unsubscribe info, Archives,and Digests are located at the above URL.
Re: ssh X11 forwarding weirdness
On Tue, 5 Feb 2002 21:37:22 -0800 (PST) begin Net Llama <[EMAIL PROTECTED]> spewed forth: [snip] > > I see nothing, as if $DISPLAY has no set value. not good. This value should have been set by SSH. [snip] > > On boxB, its the newest stable version of OpenSSH, built from SRPM > downloaded from the openssh FTP server. On boxA its the latest > 'blessed' version from Caldera, 2.9 i think. I've had to back off 3.0. I've had nothing but problems with it. It may be a configuration issue, but it sure shouldn't be that much harder than 2.9. Drop HostB back to 2.9 if you can. Check your config, and try again. Ciao, David A. Bandel -- Focus on the dream, not the competition. -- Nemesis Racing Team motto Internet (H323) phone: 206.28.187.30 ___ Linux-users mailing list - http://linux.nf/mailman/listinfo/linux-users Subscribe/Unsubscribe info, Archives,and Digests are located at the above URL.
Re: Resend [Postifix on Redhat 7.2]
On Tue, 05 Feb 2002 21:15:50 -0500 begin Ian <[EMAIL PROTECTED]> spewed forth: > > After wrangling with Sendmail some more...I've decided to repost this > one from a few days back. > > Original Message > Subject: Postifix on Redhat 7.2 > Date: Sat, 02 Feb 2002 14:59:31 -0500 > From: Ian <[EMAIL PROTECTED]> > Reply-To: [EMAIL PROTECTED] > To: [EMAIL PROTECTED] > > OK, > > I've always had a bugger working with sendmail, but I had almost > immediate success when I experimented with postfix. Postfix however > isn't included with RH7.2 W/S. > > I found an SRPM for postifix built by redhat, but it needs 'db4-devel' > to build. Which was available from the same spot as the Postfix rpms. > So I built all the db4 rpms, which obsolete/conflict with the installed > db3 packages already there. > > db4-devel conflicts with db3-devel: (Sorry 'bout the wrap) > > # [root@innie i386]# rpm -ivh --test ./db4-devel-4.0.14-2.i386.rpm > # Preparing... ### [100%] > # file /lib/libdb.so from install of db4-devel-4.0.14-2\ > conflicts with file from package db3-devel-3.2.9-4 > # file /usr/include/db.h from install of db4-devel-4.0.14-2\ > conflicts with file from package # db3-devel-3.2.9-4 > # file /usr/lib/libdb_cxx.so from install of db4-devel-4.0.14-2\ > conflicts with file from package db3-devel-3.2.9-4 > > I can't remove db3 without causing problems: > > # [root@innie root]# rpm -e --test db3 > # error: removing these packages would break dependencies: > # db3 = 3.2.9 is needed by db3-devel-3.2.9-4 > # db3 = 3.2.9 is needed by db3-utils-3.2.9-4 > # libdb-3.2.so is needed by perl-5.6.0-17 > # libdb-3.2.so is needed by sendmail-8.11.6-3 > # libdb-3.2.so is needed by python-1.5.2-35 > # libdb-3.2.so is needed by nss_ldap-172-2 > # libdb-3.2.so is needed by php-4.0.6-7 > # libdb-3.2.so is needed by db3-utils-3.2.9-4 > # libdb-3.2.so is needed by apache-1.3.22-2 > # libdb-3.2.so is needed by pam-0.75-19 > > So, my question is: > > Can I safely force the db4-devel rpm to overwrite the db3-files it > conflicts with? > > If not, what to do? [ Please don't say "learn sendmail" ;) ] My suggestion would be to d/l the SRPM and rebuild postfix using db-3.2 on your system now. If you can't, I'd find a test box (one you can break), try the above, then run some apps that were built against 3.2 to see if they segfault. Ciao, David A. Bandel -- Focus on the dream, not the competition. -- Nemesis Racing Team motto Internet (H323) phone: 206.28.187.30 ___ Linux-users mailing list - http://linux.nf/mailman/listinfo/linux-users Subscribe/Unsubscribe info, Archives,and Digests are located at the above URL.
Re: anyone have success with the new Mozilla-0.9.8 ?
On Tue, 5 Feb 2002 17:32:56 -0800 (PST) begin Net Llama <[EMAIL PROTECTED]> spewed forth: [snip] > > That script is not of my creation, it came with Mozilla, and i'll also > note that the same exact script came with the previous version of > Mozilla. So, i'd say the odds are not the script, but the mozilla > binary. I could be wrong, which is why i'd like to know of anyone else > has had any success with Mozilla-0.9.8 from the binary tarball. > > FWIW, i installed the RPMs for Mozilla-0.9.8 on the same box, and it > runs just fine, but those are compiled for i386, whereas the tarball is > compiled for i686. > And what chip are you running? An Athlon or a Duron? Or P-III or P-IV? Ciao, David A. Bandel -- Focus on the dream, not the competition. -- Nemesis Racing Team motto Internet (H323) phone: 206.28.187.30 ___ Linux-users mailing list - http://linux.nf/mailman/listinfo/linux-users Subscribe/Unsubscribe info, Archives,and Digests are located at the above URL.
Re: ssh X11 forwarding weirdness
On Tue, 5 Feb 2002 17:49:02 -0800 (PST) begin Net Llama <[EMAIL PROTECTED]> spewed forth: [snip] > > All of that checks out. I made sure to set that stuff up beforehand. > Still, no go. I ssh from boxA to boxB, run whatever, and it appears on > the monitor for boxB. When you log in (from A to B), do you see: Warning: Remote host denied X11 forwarding. (this means X connections are denied, just like it says) if not, while loggd in remotely on HostB, when you enter echo $DISPLAY, do you see: HostB:10.0 or do you see something else? > But wait, this only gets weirder. > If i reboot boxA, type "xhost +", then SSH into boxB, and try to run, > say, an xterm, it appears on boxB (bad). If I log out, run "xhost +" > again (on boxA), and then SSH back into boxB (from boxA), I can run an X > app just fine, and it appears on boxA. > Why should I need to run 'xhost +' twice? I know there has to be > something i'm missing here (beyond the inherent security issues > involved). I'd bet my bottom $ the X session isn't tunneled on SSH. You should not have to run xhost + on the local box (or the remote one) to have an X session from the remote box show up locally. [snip] > > Ahhh...ok. Yea, i was aware of that command, i just never connected the > description with the name. OK, so what would you recommend? > > The thing that I don't understand is why i'm having so many problems. > When i run through this routine on any box at work, it works, no > xhost'ing needed. > > thanks for your help. > What version of SSH are you running on each system? I rarely use X11 forwarding, so I'm fishing a little here, but I've heard of problems with openssh-3.x and X forwarding. Who packaged/built the RPM/deb/tarball you're using? Ciao, David A. Bandel -- Focus on the dream, not the competition. -- Nemesis Racing Team motto Internet (H323) phone: 206.28.187.30 ___ Linux-users mailing list - http://linux.nf/mailman/listinfo/linux-users Subscribe/Unsubscribe info, Archives,and Digests are located at the above URL.
Re: Script help
On Wed, 06 Feb 2002 03:26:27 +0800 begin "Tom Wilson" <[EMAIL PROTECTED]> spewed forth: > Hi all, > > First, my script abilility rests in /dev/null. That being said, what I > am *trying* to do is get a text file with a list of MAC addresses and > the corresponding IP's for certain ranges of IP's. > > Part of my solution: > --- > for i in `seq 100 120`; do > ping -c 5 -w 5 192.168.0.$1 | arp >> macadd.txt Let's analyze this line for a second. You ping an address 5 times. (I'll ignore the typo and assume it's $i not $1). Then pass it to arp as an argument. Or do you? Try this: ping -c 1 192.168.0.2 ping -c 1 192.168.0.3 (let's assume both can be pung) echo 192.168.0.2 | arp oops. looks like arp doesn't know how to accept piping of an argument. Several utilities have this problem. Make the line: ping -c 1 -w 2 192.168.0.$i && arp -n 192.168.0.$i | grep -v Iface >> mac.txt the changes: we really don't need to ping something 5 times to get it's MAC address, and a 2 second wait is really too long, but better than 5. The && says, if the ping exited unsuccessfully (we couldn't ping the system), then we don't want to run arp, but if successful, we do. Then forcefeed arp the same IP so we only get one line. The -n is, well, do you really want to resolve the hostname? The grep -v gets rid of the Header line. > done > --- > [snip] Ciao, David A. Bandel -- Focus on the dream, not the competition. -- Nemesis Racing Team motto Internet (H323) phone: 206.28.187.30 ___ Linux-users mailing list - http://linux.nf/mailman/listinfo/linux-users Subscribe/Unsubscribe info, Archives,and Digests are located at the above URL.
Re: NO $#@&^*% MAIL!
On Tue, 5 Feb 2002 12:36:33 -0700 begin "Glenn Williams" <[EMAIL PROTECTED]> spewed forth: > Would some kind soul please e-mail me off-list if you see this message? > > Thanks. > > Regards, > > Glenn Williams - [EMAIL PROTECTED] > Registered Linux User # 135678 - since 1994 > Amateur Radio Packeteer since 1988 > > ___ > Linux-users mailing list - http://linux.nf/mailman/listinfo/linux-users > Subscribe/Unsubscribe info, Archives,and Digests are located at the > above URL. Yep, it's working. David A. Bandel -- Focus on the dream, not the competition. -- Nemesis Racing Team motto Internet (H323) phone: 206.28.187.30 ___ Linux-users mailing list - http://linux.nf/mailman/listinfo/linux-users Subscribe/Unsubscribe info, Archives,and Digests are located at the above URL.
Re: ssh X11 forwarding weirdness
On Tue, 5 Feb 2002 06:39:14 -0800 (PST) begin Net Llama <[EMAIL PROTECTED]> spewed forth: [snip] > > Do you happen to know the syntax for this? I'm looking at both files > and not seeing any variable for DISPLAY. in sshd_config: X11Forwarding yes X11DisplayOffset 10 the X11DisplayOffset tells you what the first number will be, i.e., mine will be 10:0. in ssh_config: ForwardX11 yes So if you're going from HostA to HostB, check HostA's ssh_config file (ForwardX11 no is the default), then check the HostB sshd_config file. Again, X11Forwarding no is the default. As for access controls, I'm talking xhost here. If you fire up X with the -ac option, or you run xhost +, then access controls are turned off. Type xhost with no arguments and it will tell you what, if any, are your access controls. But if you can suddenly pop up a box on the other host without first logging into X and turning off access controls, then they are off. Not good unless you want some prankster like me getting your attention by running a quick script that puts 1000 iterations of xeyes on your screen. ;-) Ciao, David A. Bandel -- Focus on the dream, not the competition. -- Nemesis Racing Team motto Internet (H323) phone: 206.28.187.30 ___ Linux-users mailing list - http://linux.nf/mailman/listinfo/linux-users Subscribe/Unsubscribe info, Archives,and Digests are located at the above URL.
Re: ssh X11 forwarding weirdness
On Mon, 4 Feb 2002 20:55:08 -0800 (PST) begin Net Llama <[EMAIL PROTECTED]> spewed forth: > I've got 2 boxes networked together with a patch cable. I can SSH back > & forth between them without a single problem. > However, if i try to run an X app while SSH'ed into either, the > resulting behavior is very very weird: > 1) Some applications refuse to run altogether with the error "Error: > Can't open display:". Netscape is one of them. Others do run, however, > this leads to the 2nd bit of weirdness > 2) They appear on the monitor of the box where they are running (the box > I'm SSH'd into) rather than the box where the ssh client is running. > > I've never seen such strange behavior before, and i've worked with > similar setups. Anyone have any ideas? Check to make sure SSH has set your DISPLAY variable. It will usually be 10:0 or 11:0. If it's 0:0, you'll be opening the screen on the other system. You may need to tweak /etc/ssh/sshd_config and /etc/ssh/ssh_config And why do you have access controls turned off in these systems anyway? Ciao, David A. Bandel -- Focus on the dream, not the competition. -- Nemesis Racing Team motto Internet (H323) phone: 206.28.187.30 ___ Linux-users mailing list - http://linux.nf/mailman/listinfo/linux-users Subscribe/Unsubscribe info, Archives,and Digests are located at the above URL.
Re: Poor Man's Remote Admin
On Mon, 04 Feb 2002 17:51:45 -0600 begin Michael Hipp <[EMAIL PROTECTED]> spewed forth: > I'm setting up a simple lan server for a client. It's behind a NAT > router so I can't actually do any remote admin. But I can at least keep > track of "how goes it" on the server with a simple script file that runs > 1-2 times per day and emails me the output of, say: > > df > ps -aux > free > tail --lines=50 /var/log/messages > dmesg > > Anything else that would be useful? > > What is the easiest way to send a simple text email from the command > line? > Look around for something called "dailyscript". I still have it (and have customized it heavily, so it probably won't work for you). I just mash it around a bit for each distro/release. Wouldn't be without it. Ciao, David A. Bandel -- Focus on the dream, not the competition. -- Nemesis Racing Team motto Internet (H323) phone: 206.28.187.30 ___ Linux-users mailing list - http://linux.nf/mailman/listinfo/linux-users Subscribe/Unsubscribe info, Archives,and Digests are located at the above URL.
Re: Wierd mail problem...
On Mon, 4 Feb 2002 13:40:59 -0800 begin Bill Campbell <[EMAIL PROTECTED]> spewed forth: > On Mon, Feb 04, 2002 at 04:11:22PM -0500, David A. Bandel wrote: > ... > >There are one or two pop3 servers (cucipop comes to mind) that will > >exhibit this behavior when an e-mail is larger than 2Mb. But if that's > >the case, you have idiots working in the ISP who should limit incoming > >mail (sendmail will do this) to under 2Mb in size but haven't. > > While I agree with the sentiment, it doesn't work in the Real World(tm) > where customers insist on using e-mail to do file transfers instead of > ftp. They bitch like crazy with 2MB limits, and many ISPs kick this up > to 8MB or so. I don't know how many times I've gotten calls where some > idiot's mailed the family photo album as a Word document full of BMP > attachments. Then they wondered why they could never retrieve their mail > from the server-- even it it's on the same LAN! The last time I had to > fix one of these, the user's mailbox was well over 100MB, and contained > three copies of the same 33MB message. Been there. Done that. Got the t-shirt. Not all pop3 servers exhibit this behavior, so a better pop3 server is needed. Guys that work at ISPs really should have a clue, but ... I've been working with one here whose network guy doesn't understand the importance of the proper netmask on a router. Go figure. I have a very large client that sends equally large (mostly autocad files) attachments. And when the network goes down from here to Sweden (their headquarters), and folks are sending each other 9Mb mp3's as well as all the large autocad files, the predictable always happens. I've rescued them twice, and both times expanded their /var filesystem. But it will happen again next time the transatlantic line goes down in the middle of the morning. I bet even the 20Gb /var they now have will fill (largest disk drive I could get on short notice). That's up from the 9Gb one I put on the first time (their original install was done by their first administrator who only put a 300Mb /var filesystem in on a dedicated e-mail server with 100+ engineers using it). Fortunately, they don't have one of those silly limited pop3 servers or they'd have had two nightmares. Ciao, David A. Bandel -- Focus on the dream, not the competition. -- Nemesis Racing Team motto Internet (H323) phone: 206.28.187.30 ___ Linux-users mailing list - http://linux.nf/mailman/listinfo/linux-users Subscribe/Unsubscribe info, Archives,and Digests are located at the above URL.
Re: fstab problems
On Mon, 04 Feb 2002 12:42:35 -0800 begin "Robert L. Hemus" <[EMAIL PROTECTED]> spewed forth: > Ladies & Gentlemen, > I'm back at the trough. Appreciate any and all help. > > I was monkeying around with the /etc/fstab on hdb1 and buggered it up > and need help. Following The Llama's advice I had purchased Running > Linux 3rd Ed. and am able to get at the file, but can't seem to get it > right. Here is a copy of the file I have on hdb3; > devpts /dev/pts devpts gid=5,mode=620 0 0 > /proc /proc proc defaults 0 0 > /dev/cdrom /mnt/cdrom iso9660 ro,user,noauto,exec 0 0 > /dev/fd0 /mnt/floppy auto defaults,user,noauto 0 0 > /dev/hdb2 swap swap defaults 0 0 > */dev/hdb3 / ext2 defaults 1 3 > /dev/hda1 /mnt/hda1 vfat ro 0 0 > */dev/hdb1 /mnt/hdb1 ext2 defaults 1 0 > > Would exchanging the *'d lines make it work? I thought I'd done that, > but it didn't seem to work. I saved it in emacs with C-x C-s. The > reason I think it is the fstab file is on bootup the systems> Fail's and when it gets to it freezes. By the > way I have to start the hdb3 with a rescue floppy. So/Or could the > be the buggered one? If "Checking Filesystems" fails, then the filesystems won't mount. Naturally, if the filesystems aren't mounted read-write (which they aren't if the filesystem check failed), then syslog can't create its named pipe or attach to the log files (because they aren't writable). Once you've booted with the rescue disk, run fsck on the various file systems (/dev/hdb1 and /dev/hdb3). Then reboot. Note: the filesystems should not be mounted (or if the root filesystem, it should be mounted read-only -- yes, that's correct, read-only). Ciao, David A. Bandel -- Focus on the dream, not the competition. -- Nemesis Racing Team motto Internet (H323) phone: 206.28.187.30 ___ Linux-users mailing list - http://linux.nf/mailman/listinfo/linux-users Subscribe/Unsubscribe info, Archives,and Digests are located at the above URL.
Re: Wierd mail problem...
On Mon, 4 Feb 2002 07:36:13 -0500 begin Bill Day <[EMAIL PROTECTED]> spewed forth: > I am having a wierd problem.. using 1 of 2 accounts with my ISP's mails > ervice the account I used to use [EMAIL PROTECTED] will no longer > complete downloads. Gets approximately 3/4 way through the dl of mail > (135 of 195 messages) and I get disconnected. This is the wierd part. > first it was in KMail, 2.1.1. So I deleted the accoutn and a set it > back up on KMail. continued the same behavior. > > Second I setup the account on a Windows box with LookOut 5.5(128bit) and > the problem has continues. I even tried this in pine on a console as > well. > > My question, would a malformed mail header cause this? Or has anyone > ever experienced this? > > I was not running an imap setup(haven't had time to set it up). > > I am going to contact the ISP today and have them 'reset' the account. > Of course it is run through winders, the ISP, so its really got me.I > have a total of 3, 1 for the wife and 2 for me. Only one does this. my > other one and hers do not do this from any client here. > There are one or two pop3 servers (cucipop comes to mind) that will exhibit this behavior when an e-mail is larger than 2Mb. But if that's the case, you have idiots working in the ISP who should limit incoming mail (sendmail will do this) to under 2Mb in size but haven't. Ciao, David A. Bandel -- Focus on the dream, not the competition. -- Nemesis Racing Team motto Internet (H323) phone: 206.28.187.30 ___ Linux-users mailing list - http://linux.nf/mailman/listinfo/linux-users Subscribe/Unsubscribe info, Archives,and Digests are located at the above URL.
MySQL front ends, was: Re: no printing from kmail
On Tue, 5 Feb 2002 00:38:23 +1130 begin Mike Andrew <[EMAIL PROTECTED]> spewed forth: > On Mon, 4 Feb 2002 23:18, Ted Ozolins wrote: > > Aside from tutorials on the > > web, and help from some local programmers, I'll be attempting to set > > up Mysql for this. > > sometimes I practice really really hard to be an idiot. This is one > where I went the extra mile and outdid myself. I cannot find *anything* > out there in gui land that even begins to do it. All this talk about > mysql etc is find and good but what front end are you going to use. I've > tried Kylix, hk_classes, even kde's not-for-public-consumption Kbase, I > cannot find a single front end that will let me enter data into a > (mysql) dbase or any other 'server'. > > And it's this that gets me really really confuzed because, if there's a > server such as mysql, where the hell is the front end for it? What > obvious bit have I missed? > xmysql, webmin mysql module, phpmysqladmin, and there are others (tk module, ...) Ciao, David A. Bandel -- Focus on the dream, not the competition. -- Nemesis Racing Team motto Internet (H323) phone: 206.28.187.30 ___ Linux-users mailing list - http://linux.nf/mailman/listinfo/linux-users Subscribe/Unsubscribe info, Archives,and Digests are located at the above URL.
Re: Fwd: SuSE noshow at LWCE NY 2002
On Sun, 3 Feb 2002 23:23:38 -0500 begin dep <[EMAIL PROTECTED]> spewed forth: [snip] > > mandrake isn't doing all that well in europe, either -- suse is doing > much better there, because despite its many obvious shortcomings, it > has a caldera-like desire to achieve and maintain stability. mandrake > is in many ways little more than a broken red hat. And my experience lately has been: SuSE == RH (European style) == totally borken. Mandrake on the other hand (8.1) has been nearly flawless. The 8.2 Beta is even better. BTW, ELX does nothing but segfault on first bootup after install for me. (Perhaps it's my Athlons and Durons?) Ciao, David A. Bandel -- Focus on the dream, not the competition. -- Nemesis Racing Team motto Internet (H323) phone: 206.28.187.30 ___ Linux-users mailing list - http://linux.nf/mailman/listinfo/linux-users Subscribe/Unsubscribe info, Archives,and Digests are located at the above URL.
Re: MS product placement
On Mon, 4 Feb 2002 15:33:31 +1130 begin Mike Andrew <[EMAIL PROTECTED]> spewed forth: > On Sat, 2 Feb 2002 13:47, David A. Bandel wrote: > > > > "The stunning success of the U.S. tech-powered boom in the 1990s > > > drew some 500,000 highly skilled H1-B visa holders from around the > > > world and > > > Yeah, the H1-B's worked cheap, while the highly skilled, highly paid > > US workers went unemployed. > > Not this H1-B, I was highly skilled, and highly paid. America has a > habit of going to sleep for a decade then waking up to discover the > outside world has overtaken them (viz the HP / Motorola memory chip > wakeup call, viz the collapse of Fairchild) America also has the > phenonemal ability to re-invent itself. You were written off 15 years > ago, It took a decade of imports, such as myself, to give your > industries the breathing space they needed with new college Grads. The > 'highly paid US workers' retrained during that time to get, highly paid. > No-one ever said to me, ozzie go home. I would have been more than happy > to. Yep, Mike, you're exactly the Indian subcontinent H1-B I was talking about. Couldn't communicate with them. They could code in C. But I speak English and Spanish, not C or Indian (any dialect). And the ones I knew of were not well paid, no where near as well paid as the English speaking C programmers who were looking for (and not finding) work they could make a living off. Ciao, David A. Bandel -- Focus on the dream, not the competition. -- Nemesis Racing Team motto Internet (H323) phone: 206.28.187.30 ___ Linux-users mailing list - http://linux.nf/mailman/listinfo/linux-users Subscribe/Unsubscribe info, Archives,and Digests are located at the above URL.
Re: LVM with vanilla RH 7.2 kernel?
On Sun, 3 Feb 2002 11:38:49 +0100 (CET) begin Zoran <[EMAIL PROTECTED]> spewed forth: [snip] > > *** Ah yes, that was exactly the reason why I decided to share this with > the list. Modprobe gives obviously > > modprobe: Can't locate module lvm-mod > > because it doesn't exist. See above. > normally, this would not be directly compiled into the kernel -- have you checked dmesg to make sure it hasn't been? how about RH's build source? [snip] > > I started looking a bit deeper and came to the conclusion that the rpm > package kernel doesn't provide this. It's in the kernel but you still > have to recompile it!? it's either compiled in or it's not. If not, guess you do have to recompile. > > Since the issue is to install this by only using the stuff you get from > Red Hat I havent't tried to patch or recompile anything. > > What puzzles me is that even upgrading the kernel from a rpm package > doesn't change this. The module is not in the 2.4.2-2, 2.4.7-10 or > 2.4.9-21... > > What are you using, SuSE? On one box, but not the one with LVM on it. The SuSE box is only an XDM client. I also run Mandrake, Caldera, and Linux From Scratch (the box with LVM). Ciao, David A. Bandel -- Focus on the dream, not the competition. -- Nemesis Racing Team motto Internet (H323) phone: 206.28.187.30 ___ Linux-users mailing list - http://linux.nf/mailman/listinfo/linux-users Subscribe/Unsubscribe info, Archives,and Digests are located at the above URL.
Re: LVM with vanilla RH 7.2 kernel?
On Sun, 3 Feb 2002 00:39:07 +0100 (CET) begin Zoki <[EMAIL PROTECTED]> spewed forth: > Did somebody have a go at it? > > I tried to get it working with a standard 2.4 RH kernel, explicitely > install everything from rpm packages just to find out that it doesn't > work the way it is. not w/ RH > > The library liblvm.so and the lvm module are missing from the lvm rpm > package, so does that mean it isn't supported in the RH's 7.2 kernel or > am I overlooking something? > > In case it's not supported why does the install create /dev/lvm and > install lvm? modprobe lvm-mod Then you have a short sequence of ??create (pvcreate, lvcreate, vgcreate) sequences to stumble through. Then you need to run vgchange. Finally, you should be able to mount your vg. Notes: if you're going to stripe across pv's, the pv's must be the same size and should be on separate physical disks (SCSI is best here, same as for RAID). Otherwise, you're limited to the smallest pv. Ciao, David A. Bandel -- Focus on the dream, not the competition. -- Nemesis Racing Team motto Internet (H323) phone: 206.28.187.30 ___ Linux-users mailing list - http://linux.nf/mailman/listinfo/linux-users Subscribe/Unsubscribe info, Archives,and Digests are located at the above URL.
Re: QuickBooks Alternative
On Sat, 02 Feb 2002 13:27:27 -0600 begin Michael Hipp <[EMAIL PROTECTED]> spewed forth: > Does anyone know of a good Linux alternative to Intuit QuickBooks? Or > does anyone know of a way to run QB on Linux (Wine supposedly doesn't > work)? > > QB is the biggest hurdle I seem to face in getting Linux into small > businesses (right after the office suite). > If your budget is limited ($0), sql-ledger works well. There are one or two more as well. If you have deep pockets, then I suggest AppGen. Ciao, David A. Bandel -- Focus on the dream, not the competition. -- Nemesis Racing Team motto Internet (H323) phone: 206.28.187.30 ___ Linux-users mailing list - http://linux.nf/mailman/listinfo/linux-users Subscribe/Unsubscribe info, Archives,and Digests are located at the above URL.
Re: MS product placement
On Fri, 1 Feb 2002 20:43:58 -0500 begin Joel Hammer <[EMAIL PROTECTED]> spewed forth: [snip] > > "The stunning success of the U.S. tech-powered boom in the 1990s drew > some 500,000 highly skilled H1-B visa holders from around the world and > helped establish international business norms." > (My note: They didn't import 500,000 lawyers.) Yeah, the H1-B's worked cheap, while the highly skilled, highly paid US workers went unemployed. > > and > > "Want to talk to someone in Sofia about a new business venture? Well > it helps that you can email each other Microsoft Excel and Powerpoint > documents,..." > > Such a shameless plugging of a proprietary product is really > distasteful. I suppose it will have a powerful subliminal effect on > businessmen and other decision makers. Equally distasteful is the > vision of the golden world to come, where American citizens will work > for less but will have the satisfaction of using microsoft software. > Well for those who haven't been living under a rock for the past 2 years, US workers will have to take wage cuts so companies can send more money to M$ to pay for all the subscription licenses they can't do business without. Ciao, David A. Bandel -- Focus on the dream, not the competition. -- Nemesis Racing Team motto Internet (H323) phone: 206.28.187.30 ___ Linux-users mailing list - http://linux.nf/mailman/listinfo/linux-users Subscribe/Unsubscribe info, Archives,and Digests are located at the above URL.
Re: Attn Sendmail experts
On Thu, 31 Jan 2002 14:42:47 -0500 begin Tim Wunder <[EMAIL PROTECTED]> spewed forth: [snip] > My question is: WTF is my ".mc file"? > > I've got a bunch of files with .mc extensions in > /usr/share/sendmail/cf/cf. Should I edit the "generic-linux.mc", > "generic-openlinux.mc" file, or the "mail.cs.mc" file? Or should I be > looking somewhere else? use the generic-openlinux.mc file. But you should already have genericstable support (in hash format). > > Also, this is telling me to use "`dbm /etc/mail/genericstable'". When I > made my virtusertable.db, I had to use "makemap hash" because my version > of makemap didn't support "dbm", should I convert this to "`hash > /etc/mail/genericstable'"? you are correct. > > BTW I'm running sendmail-8.11-1 on Caldera eWorkstation 3.1. I believe you already have what you need, you just need to create the genericstable and genericstable.db. You will also need CG lines (outgoing domains) or sendmail will refuse to rewrite per the genericstable stuff. Now, if you have defined DM (masquerade_as) and also have (masquerade_envelope), you'll almost certainly need FEATURE(limited_masquerade). You can check out your changes like this: sendmail -bt -d21.9 /tryflags hs /try local <[EMAIL PROTECTED]> you can use +d to get out. Ciao, David A. Bandel -- Focus on the dream, not the competition. -- Nemesis Racing Team motto Internet (H323) phone: 206.28.187.30 ___ Linux-users mailing list - http://linux.nf/mailman/listinfo/linux-users Subscribe/Unsubscribe info, Archives,and Digests are located at the above URL.
New virus?
Anyone seen or heard anything about a new virus? I just received a mail from (No From) with No Subject, just an attachment: MGDACGMG.EXE. Naturally, it doesn't run (executable bit isn't set ;-) ). ??? David A. Bandel -- Focus on the dream, not the competition. -- Nemesis Racing Team motto Internet (H323) phone: 206.28.187.30 ___ Linux-users mailing list - http://linux.nf/mailman/listinfo/linux-users Subscribe/Unsubscribe info, Archives,and Digests are located at the above URL.
Re: Mandrake 8.2 Beta Announced!
On Thu, 31 Jan 2002 08:58:33 -0700 begin Tyler Regas <[EMAIL PROTECTED]> spewed forth: > David, > > Where'd you get the second CD? I was using Linux ISO but every time I > tried to fetch CD 2 it would come up as CD 1. It took me 11 hours ( LISO > being the fastest source ) and I didn't want to duplicate it > unnecessarily. > Umm. There's two CDs on every site I've seen. Even the md5ums file shows two CDs. Afraid I don't know what this Linux ISO is you're talking about. The two files I've been d/l are called: MandrakeLinux-8.2beta1-CD?.iso Ciao, David A. Bandel -- Focus on the dream, not the competition. -- Nemesis Racing Team motto Internet (H323) phone: 206.28.187.30 ___ Linux-users mailing list - http://linux.nf/mailman/listinfo/linux-users Subscribe/Unsubscribe info, Archives,and Digests are located at the above URL.
Re: Mandrake 8.2 Beta Announced!
On Thu, 31 Jan 2002 21:21:16 -0500 begin Keith Antoine <[EMAIL PROTECTED]> spewed forth: > On Monday 28 January 2002 02:17 pm, Tyler Regas warbled: > > Mandrake (via SlashDot) has announced that the beta ISOs for 8.2 are > > now available. I know I'm going to check it out! > > > > Tyler > > I cannot get the iso's without joining their dama club, too costly. What club (he asks as MandrakeLinux-8.2beta-CD2.iso is on the last 100Mb)? I've joined no club. Ciao, David A. Bandel -- Focus on the dream, not the competition. -- Nemesis Racing Team motto Internet (H323) phone: 206.28.187.30 ___ Linux-users mailing list - http://linux.nf/mailman/listinfo/linux-users Subscribe/Unsubscribe info, Archives,and Digests are located at the above URL.
Re: logging...
On Wed, 30 Jan 2002 18:02:12 -0500
begin Bill Day <[EMAIL PROTECTED]> spewed forth:
> so far a total of 2 have stopped and the 3rd has never started:
> messages and cron have stopped loggin
> named never started logging to /var/log/named
> despite stopping named, cron and syslog then starting syslog cron and
> named?
>
> but why would messages top logging too..?
>
> anyone..?
>
OK, and sometimes if I dig just a _tiny_ bit, the answer is in front of my
face:
logging {
channel "default_syslog" {
// Send most of the named messages to syslog.
syslog local2;
severity debug;
};
the above from a bind-9 named.conf. It's programable. But don't use
local2, ppp uses local2. Try using local3-local7.
Ciao,
David A. Bandel
--
Focus on the dream, not the competition.
-- Nemesis Racing Team motto
Internet (H323) phone: 206.28.187.30
___
Linux-users mailing list - http://linux.nf/mailman/listinfo/linux-users
Subscribe/Unsubscribe info, Archives,and Digests are located at the above URL.
Re: logging...
On Wed, 30 Jan 2002 18:02:12 -0500 begin Bill Day <[EMAIL PROTECTED]> spewed forth: > so far a total of 2 have stopped and the 3rd has never started: > messages and cron have stopped loggin > named never started logging to /var/log/named > despite stopping named, cron and syslog then starting syslog cron and > named? > > but why would messages top logging too..? > > anyone..? > probably because there is no facility called named. You _must_ use the correct facility names. And since you put named in two places (messages and named), those probably won't work. from man syslog.conf: The facility is one of the following keywords: auth, auth priv, cron, daemon, kern, lpr, mail, mark, news, security (same as auth), syslog, user, uucp and local0 through local7. The keyword security should not be used anymore I don't rightly remember, so you need to check the bind documentation, but I believe bind syslogs via kern (and possibly daemon). Ciao, David A. Bandel -- Focus on the dream, not the competition. -- Nemesis Racing Team motto Internet (H323) phone: 206.28.187.30 ___ Linux-users mailing list - http://linux.nf/mailman/listinfo/linux-users Subscribe/Unsubscribe info, Archives,and Digests are located at the above URL.
Re: hey Bandel! (was Re: BIND 9.x: Part II)
On Wed, 30 Jan 2002 09:08:58 -0500 begin Bill Day <[EMAIL PROTECTED]> spewed forth: [snip] > > --- > $TTL 1D > > @ 1D IN SOA localhost. > root.localhost 42 ; > serial (d. adams) 3H > ; refresh 15M ; retry > 1W ; expiry > 1D ); minimum your problem is in this section above. All else looks good. The problem is, you don't reference anywhere what your reverse zone is. You have $TTL 1D (your zone's default time to live), then you have an @, which needs to reference the domain (which needs to be listed before this @), but can't because the domain isn't listed. This is why named is whining at startup. > > 1D IN NS localhost. > 1 1D IN PTR localhost. > > > Again, thanks for all your help. > > -- > Bill Day ( a.k.a. BadMan ) 188133 http://counter.li.org > #linux-usersirc.openprojects.net:6667 > > Our crystal tears now fall upon the ashes, but from the dust shall > grow a spirit, to be in compassion for those who are lost, and one in > determination to break those who dare test our resolve to be free... > 9/11/01 > > http://www.daysdomain.com/tribute.html > > 8:30am up 181 days, 23:24, 15 users, load average: 0.00, 0.00, 0.00 > ___ > Linux-users mailing list - http://linux.nf/mailman/listinfo/linux-users > Subscribe/Unsubscribe info, Archives,and Digests are located at the > above URL. -- Focus on the dream, not the competition. -- Nemesis Racing Team motto Internet (H323) phone: 206.28.187.30 ___ Linux-users mailing list - http://linux.nf/mailman/listinfo/linux-users Subscribe/Unsubscribe info, Archives,and Digests are located at the above URL.
Re: hey Bandel! (was Re: BIND 9.x: Part II)
On Tue, 29 Jan 2002 20:12:55 -0500 begin Bill Day <[EMAIL PROTECTED]> spewed forth: > hey david, something else... > > attached is my named.conf I have yet to get a dns book, so I am truly > lost in its 'operations'. > > Where in this file would I locate the reverse information? It's not, it's locate in: /var/named/pz/127.0.0 and /var/named/pz/192.168.1 (the above names came from your named.conf file) Ciao, David A. Bandel -- Focus on the dream, not the competition. -- Nemesis Racing Team motto Internet (H323) phone: 206.28.187.30 ___ Linux-users mailing list - http://linux.nf/mailman/listinfo/linux-users Subscribe/Unsubscribe info, Archives,and Digests are located at the above URL.
Re: hey Bandel! (was Re: BIND 9.x: Part II)
On Tue, 29 Jan 2002 16:06:17 -0500 begin Bill Day <[EMAIL PROTECTED]> spewed forth: > On Saturday 26 January 2002 07:48, you were heard blurting out: > > Greek ... > > I appreciate your help David, but what will the reverse zone file > contain differently that the forwards...? > instead of: hostname IN A IP you have: 0.0.127.in-addr.arpa. IN PTR hostname.domain.name. see the difference? The rest is the same (SOA). Ciao, David A. Bandel -- Focus on the dream, not the competition. -- Nemesis Racing Team motto Internet (H323) phone: 206.28.187.30 ___ Linux-users mailing list - http://linux.nf/mailman/listinfo/linux-users Subscribe/Unsubscribe info, Archives,and Digests are located at the above URL.
Re: Passwords: How are they stored?
On Sun, 27 Jan 2002 15:03:46 -0500 Joel Hammer <[EMAIL PROTECTED]> spewed into the bitstream: > Hmmm... > Hmmm.. > Yes. Now that you mention it. > I wonder why I didn't think of that myself? Umm. Depends on the distro, but this is configurable. You can force users to put in their old password before they can change it, or not. See /etc/pam.d/passwd (and the pam_passwd.so module README). Note that there is a facility for storing old passwords in MD5 hash in /etc/security/opasswd so that you can't simply alternate between two old passwords. > Thanks, > Joel > > On Sun, Jan 27, 2002 at 02:24:02PM -0500, Bruce Marshall wrote: > > On Sunday 27 January 2002 12:20 pm, Joel Hammer wrote: > > > I thought that for security reasons, the actual password is never > > > stored on the computer, just the encrypted form. If so, how can the > > > computer know that I have tried to "cheat" and when asked to alter > > > my password, I just changed the case of one letter. > > > > Did it not ask for your old password in order to change the new one? > > (as a normal user you should have been asked.) > > > ___ > Linux-users mailing list - http://linux.nf/mailman/listinfo/linux-users > Subscribe/Unsubscribe info, Archives,and Digests are located at the > above URL. -- Focus on the dream, not the competition. -- Nemesis Racing Team motto Internet (H323) phone: 206.28.187.30 ___ Linux-users mailing list - http://linux.nf/mailman/listinfo/linux-users Subscribe/Unsubscribe info, Archives,and Digests are located at the above URL.
Re: Passwords: How are they stored?
On Sun, 27 Jan 2002 12:20:25 -0500 Joel Hammer <[EMAIL PROTECTED]> spewed into the bitstream: > I thought that for security reasons, the actual password is never stored > on the computer, just the encrypted form. If so, how can the computer > know that I have tried to "cheat" and when asked to alter my password, I > just changed the case of one letter. > In DES, you have a 13 character hash, the first two are a salt (in MD5 this is a 4 character salt). If you use the same salt as the old password and create a new hash, then compare the new and old hash, and you know the difference between a and A (or b and B, etc, they are just representations of numbers after all) then what you've done to your password is fairly obvious from an analytical standpoint. Ciao, David A. Bandel -- Focus on the dream, not the competition. -- Nemesis Racing Team motto Internet (H323) phone: 206.28.187.30 ___ Linux-users mailing list - http://linux.nf/mailman/listinfo/linux-users Subscribe/Unsubscribe info, Archives,and Digests are located at the above URL.
Re: Sharing /home Among Distros?
On Sat, 26 Jan 2002 20:24:11 -0600 Michael Hipp <[EMAIL PROTECTED]> spewed into the bitstream: > What are the problems to overcome in sharing /home among different > distros? > > I have /home as a separate partition on Caldera 3.1 and I'd like to > share it with Desktop/LX (aka Redmond Linux). And maybe Mandrake and Elx > eventually. They all use KDE so that makes some things easier. I've been doing this for _years_ without a problem. I also have a common /boot partition with only two kernel images (the latest one and the old one). I point LILO at the new one for all distros, just change the label= and root= line. > > One problem: on COL 3.1 I'm michael:x:500:100 whereas on Desktop/LX I'm > michael:x:100:100. Presumably I could just change the uid and chown > everything in /home/michael??? Why don't you just edit one passwd file so they're both the same? Typically, I just use one passwd, group, shadow file that's copied to each distro. I do make sure any system user entries are added where they might be needed. Ciao, David A. Bandel -- Focus on the dream, not the competition. -- Nemesis Racing Team motto Internet (H323) phone: 206.28.187.30 ___ Linux-users mailing list - http://linux.nf/mailman/listinfo/linux-users Subscribe/Unsubscribe info, Archives,and Digests are located at the above URL.
Re: hey Bandel! (was Re: BIND 9.x: Part II)
On Sat, 26 Jan 2002 05:33:31 -0500 Bill Day <[EMAIL PROTECTED]> spewed into the bitstream: > > > [root@linuxbox /root]# dig -x 127.0.0.1 SOA > > ; <<>> DiG 9.2.0 <<>> -x 127.0.0.1 SOA > ;; global options: printcmd > ;; Got answer: > ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 35519 > ;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0 > > ;; QUESTION SECTION: > ;1.0.0.127.in-addr.arpa.IN SOA > > ;; AUTHORITY SECTION: > 0.0.127.in-addr.arpa. 10800 IN SOA b.root-servers.net. > root.b.root-servers.net. 19970624 360 3600 390 360 > > ;; Query time: 2287 msec > ;; SERVER: 127.0.0.1#53(127.0.0.1) > ;; WHEN: Sat Jan 26 05:30:53 2002 > ;; MSG SIZE rcvd: 99 > > [root@linuxbox /root]# dig -x 192.168.1 SOA > > ; <<>> DiG 9.2.0 <<>> -x 192.168.1 SOA > ;; global options: printcmd > ;; Got answer: > ;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 7018 > ;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0 > > ;; QUESTION SECTION: > ;1.168.192.in-addr.arpa.IN SOA > > ;; AUTHORITY SECTION: > 168.192.in-addr.arpa. 0 IN SOA blackhole.iana.org. > crain.icann.org. 19971502 10800 900 604800 86400 > > ;; Query time: 558 msec > ;; SERVER: 127.0.0.1#53(127.0.0.1) > ;; WHEN: Sat Jan 26 05:31:02 2002 > ;; MSG SIZE rcvd: 106 > > > Also these are in tail f-f /var../messages I guess this mean that it is > able to query in reverse...? > Jan 26 05:30:50 linuxbox named[23782]: Jan 26 05:30:50.966queries: info: > client 127.0.0.1#2837: query: 1.0.0.127.in-addr.arpa IN SOA > Jan 26 05:31:02 linuxbox named[23782]: Jan 26 05:31:02.275queries: info: > client 127.0.0.1#2837: query: 1.168.192.in-addr.arpa IN SOA > Based on the above, I'd say your /etc/named.conf has entries for reverse, but you haven't created the reverse zone files. You need reverse zone files for every IP range you have a forward in. In your case, you need zone files for 127.0.0.0/8 and 192.168.1.0/24. Difference between a forward and reverse zone: the reverse zone uses PTR RRs to point to A RRs. Create reverse zone files, make sure /etc/named.conf point to the correct file names (the name of the zone file is unimportant). Ciao, David A. Bandel -- Focus on the dream, not the competition. -- Nemesis Racing Team motto Internet (H323) phone: 206.28.187.30 ___ Linux-users mailing list - http://linux.nf/mailman/listinfo/linux-users Subscribe/Unsubscribe info, Archives,and Digests are located at the above URL.
Re: hey Bandel! (was Re: BIND 9.x: Part II)
On Fri, 25 Jan 2002 21:02:46 -0500 Bill Day <[EMAIL PROTECTED]> spewed into the bitstream: > Not really.. (Capiche..) but I'll give er hell... 8^) > > From fresh start I get this: > > Jan 25 20:46:14 linuxbox named[23782]: starting BIND 9.2.0 -u named > Jan 25 20:46:14 linuxbox named[23782]: using 1 CPU > Jan 25 20:46:14 linuxbox named[23782]: loading configuration from > '/etc/named.conf' > Jan 25 20:46:14 linuxbox named[23782]: listening on IPv4 interface lo, > 127.0.0.1#53 > Jan 25 20:46:14 linuxbox named[23782]: the key 'rndc-key' is too short > to be secure self-expanatory > Jan 25 20:46:14 linuxbox last message repeated 3 times > Jan 25 20:46:14 linuxbox named[23782]: command channel listening on > 127.0.0.1#953 > Jan 25 20:46:14 linuxbox named[23782]: Jan 25 20:46:14.352general: > error: dns_master_load: pz/127.0.0:3: no current owner name pls post the result of: dig -x 127.0.0.1 SOA > Jan 25 20:46:14 linuxbox named[23782]: Jan 25 20:46:14.356general: > error: zone 0.0.127.in-addr.arpa/IN: loading master file pz/127.0.0: no > owner Jan 25 20:46:14 linuxbox named[23782]: Jan 25 20:46:14.359general: > error: dns_master_load: pz/192.168.1:3: no current owner name pls post the result of: dig -x 192.168.1 SOA > Jan 25 20:46:14 linuxbox named[23782]: Jan 25 20:46:14.362general: > error: zone 1.168.192.in-addr.arpa/IN: loading master file pz/192.168.1: > no owner Jan 25 20:46:14 linuxbox named[23782]: Jan 25 > 20:46:14.363general: info: running > [snippage of SOA info that does not pertain to errors above] Ciao, David A. Bandel -- Focus on the dream, not the competition. -- Nemesis Racing Team motto Internet (H323) phone: 206.28.187.30 ___ Linux-users mailing list - http://linux.nf/mailman/listinfo/linux-users Subscribe/Unsubscribe info, Archives,and Digests are located at the above URL.
Re: hey Bandel! (was Re: BIND 9.x: Part II)
On Fri, 25 Jan 2002 19:54:19 -0500
Bill Day <[EMAIL PROTECTED]> spewed into the bitstream:
> ; <<>> DiG 9.2.0 <<>> daysdomain.com
not quite. I need your SOA:
dig daysdomain.com SOA
Note, this should be for whatever zone BIND is barfing on. If it's a
reverse, use a valid IP: dig -x 127.0.0.1 SOA
My SOA looks like:
; <<>> DiG 8.3 <<>> pananix.com SOA
;; res options: init recurs defnam dnsrch
;; got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 4
;; flags: qr aa rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 2, ADDITIONAL: 2
;; QUERY SECTION:
;; pananix.com, type = SOA, class = IN
;; ANSWER SECTION:
pananix.com.2W IN SOA ns1.panamanow.com.
david.pananix.com. (2002012500
; serial1W ; refresh
1H ; retry
4W ; expiry
2W ); minimum
Capiche?
Ciao,
David A. Bandel
--
Focus on the dream, not the competition.
-- Nemesis Racing Team motto
Internet (H323) phone: 206.28.187.30
___
Linux-users mailing list - http://linux.nf/mailman/listinfo/linux-users
Subscribe/Unsubscribe info, Archives,and Digests are located at the above URL.
Re: hey Bandel! (was Re: BIND 9.x: Part II)
On Fri, 25 Jan 2002 11:42:20 -0500 Douglas J Hunley <[EMAIL PROTECTED]> spewed into the bitstream: > Bill Day babbled on about: > > The secret for the example and then having secret in the named.conf, > > rndc.conf and rndc.key I replaced all the 'secrets with the pass and > > then also replaced all the quoted spots next to it with my output from > > encode, as soon as I returned it to secret and left the output from > > the pass and mmencode it fired up. > > > OIC. You changed the > secret "c2VjcmV0"; > > in /etc/named.conf and actually changed the word secret. you should only > change the value inside the quotes. I'll change the page to make it more > clear and use a different example. > > > Jan 23 15:24:56 linuxbox named[20466]: Jan 23 15:24:56.504general: > > error: dns_master_load: pz/127.0.0:3: no current owner name > > It still has the 'no owner' problem and 'no current owner'. > > I have no idea on this one. Perhaps David knows? post your SOA (dig domain.dom SOA or dig -x IP SOA). I suspect your authority section is hosed. Ciao, David A. Bandel -- Focus on the dream, not the competition. -- Nemesis Racing Team motto Internet (H323) phone: 206.28.187.30 ___ Linux-users mailing list - http://linux.nf/mailman/listinfo/linux-users Subscribe/Unsubscribe info, Archives,and Digests are located at the above URL.
Re: problem
On Thu, 24 Jan 2002 21:50:01 +0800 "Chang[linuxism]" <[EMAIL PROTECTED]> spewed into the bitstream: > > you pay for what you think is important. > Most of us here don't (if not won't) find > the GUI and M$ marketing important at all. > > > Apart from this XP was good, has very quick boot time, good > > integration of file types, etc. > > > > Now after using XP it is clear to me that windows has the same way of > > doing things that Linux does, only GUI make it easy for newbies. > I had a good laugh yesterday. At a demo, the guy doing the demo was using Windows XP Professional (in the demo he was connected to a Linux box). He had a laptop, 1GHz CPU, 256Mb RAM, and it took several minutes to accomplish even the simplest task (over 2 minutes wait to change the IP and get it on the client's network -- I was surprised that he didn't have to reboot, but that would not have taken any longer). My poor old 333 Celeron laptop, with only 128 Mb of memory, had changed everything and I had time to go through over 30 mails and respond to quite a few before he was done with just the IP change. Ciao, David A. Bandel -- Focus on the dream, not the competition. -- Nemesis Racing Team motto Internet (H323) phone: 206.28.187.30 ___ Linux-users mailing list - http://linux.nf/mailman/listinfo/linux-users Subscribe/Unsubscribe info, Archives,and Digests are located at the above URL.
Re: [Fwd: Screem]
On Mon, 21 Jan 2002 08:19:58 -0500 Ian <[EMAIL PROTECTED]> spewed into the bitstream: [snip] > > It is an X function: /usr/X11R6/bin/xkill No, it is an X application (utility, whatever), but _not_ an X function. And I have no Window Managers that I run with any key sequence I'm aware of that will automagically run xkill. I can run it from a command line (or put an icon up that will call it), but I cannot execute it as the original poster had said. Ciao, David A. Bandel -- Focus on the dream, not the competition. -- Nemesis Racing Team motto Internet (H323) phone: 206.28.187.30 ___ Linux-users mailing list - http://linux.nf/mailman/listinfo/linux-users Subscribe/Unsubscribe info, Archives,and Digests are located at the above URL.
Re: an interesting experience
On Sun, 20 Jan 2002 20:17:32 -0600 "Michael Hipp" <[EMAIL PROTECTED]> spewed into the bitstream: > My point is that we need to make this stuff *simple*. Rather than brag > about how we're able to do hard things. Let's brag about how an ordinary > joe doesn't need to do hard things 'cause it's all easy (in Linux). > Before Windoze 98 hit the streets, I had a laptop running Linux. I remember folks eyes popping wide open when I'd reach over and pop out the PCMCIA card while the system was running. Then a minute later, pop it back in and it just worked. The only think I had to do was configure a few values in the /etc/pcmcia/network.opts file. My wireless card (Orinoco) works the same, but I also have a wireless.opts file I had to edit. I was told (don't know first-hand) that Windoze didn't (does it now?) allow you to just pop stuff in and out at leisure. Had to stop it by hand first, then it would tell you that you could safely eject it. And folks whine about having to mount and unmount a floppy in Linux. Geesh. Now, someone, somewhere may have a GUI way to edit those /etc/pcmcia/*.opt files. I don't, it would just slow me down. And the edit is a one-time thing. Done once, forgotten forever. So please don't tell me Windoze is easier, because it just ain't true. My prime example is the registry -- now there's a nightmare. Ciao, David A. Bandel -- Focus on the dream, not the competition. -- Nemesis Racing Team motto Internet (H323) phone: 206.28.187.30 ___ Linux-users mailing list - http://linux.nf/mailman/listinfo/linux-users Subscribe/Unsubscribe info, Archives,and Digests are located at the above URL.
Re: wierd response
On Sun, 20 Jan 2002 11:03:04 +1000 Keith Antoine <[EMAIL PROTECTED]> spewed into the bitstream: > > I have ext2 on my $HOME partition and did a: > > kantoine@linux:~> su > Password: > linux:/home/kantoine # tune2fs -j /dev/hda10 > tune2fs 1.24a (02-Sep-2001) > Creating journal inode: > tune2fs: Permission denied > while trying to create journal file > > Whats this as I was in ROOT at the time not sued... > You have a slight problem with the root partition. You can't change it to ext3 while it's mounted (not even read-only), and you can't unmount it. You'll find you can't even change the kind of ext3 mount it is (ordered, journaling, writeback) once the kernel mounts it. Don't even try, you run the risk of damaging your filesystem. Easiest way is to boot to root on another (spare) partition, change the old /, then reboot to the original /. Ciao, David A. Bandel -- Focus on the dream, not the competition. -- Nemesis Racing Team motto Internet (H323) phone: 206.28.187.30 ___ Linux-users mailing list - http://linux.nf/mailman/listinfo/linux-users Subscribe/Unsubscribe info, Archives,and Digests are located at the above URL.
Re: [Fwd: Screem]
On Fri, 18 Jan 2002 17:19:33 -0500 Bruce Marshall <[EMAIL PROTECTED]> spewed into the bitstream: [snip] > > Not related to your main questions, but you are aware that a > Ctl-Alt-ESC in X will give you a skull-and-crossbones for a cursor? > After getting that, just click in any window and that window will be > killed. OK, well, it's not an X function. It's either a KDE (window manager) function, or a Gnome (middleware) function. But this doesn't work in Blackbox, Ion, or XFCE (my choices in order of preference). Ciao, David A. Bandel -- Focus on the dream, not the competition. -- Nemesis Racing Team motto Internet (H323) phone: 206.28.187.30 ___ Linux-users mailing list Archives, Digests, etc at http://linux.nf/mailman/listinfo/linux-users
Re: network/ limited number of ips
On Fri, 18 Jan 2002 10:32:02 -0600 "Schmeits, Roger" <[EMAIL PROTECTED]> spewed into the bitstream: [snip] > > Why bootp? you assign a specific IP to a specific MAC. Tradeoff between a static IP and a completely dynamic one. You'll use dhcpd to do this, it just takes a little more setup. Ciao, David A. Bandel -- Focus on the dream, not the competition. -- Nemesis Racing Team motto Internet (H323) phone: 206.28.187.30 ___ Linux-users mailing list Archives, Digests, etc at http://linux.nf/mailman/listinfo/linux-users
Re: Fwd: [fsl-discuss] Standards: Register: Phillips moves to put 'poison' label on protected audio CDs
On Fri, 18 Jan 2002 14:01:55 -0500 Tim Wunder <[EMAIL PROTECTED]> spewed into the bitstream: > Douglas J Hunley wrote: > > Looks like Phillips actually has a clue! Go Phillips! > > > OK. I admit it. I'm confused... > If these "protected audio" CDs are playable in an ordinary CD player, > how, exactly, are they copy protected? Can't I just plug the output of > my CD player into the input of my soundcard and record the audio as a > .wav, then burn it to CD? No. Apparently, they will play in one of them Sony Walkman CD players, but not in your computer CD player/burner, unless that player is also a DVD player. But Phillips wants _all_ CD players to be able to play the music. Ciao, David A. Bandel -- Focus on the dream, not the competition. -- Nemesis Racing Team motto Internet (H323) phone: 206.28.187.30 ___ Linux-users mailing list Archives, Digests, etc at http://linux.nf/mailman/listinfo/linux-users
Re: Congress to look at software liability?
On Fri, 18 Jan 2002 15:54:49 +0100 Roger Oberholtzer <[EMAIL PROTECTED]> spewed into the bitstream: [snip] > > I would be concerned about how they defined responsible. As a programmer > I guess I would need some form of malpractice insurance to protect > against law suits. Can damages be for more than the cost of the product? > If so, perhaps a free product could have to pay $$$ liabilities? Bye bye > open source (or at least free to use) software. Something has to pay the > malpractice insurance. > > Who determines what a flaw is? Unless I provide EVERYTHING and > the user can be proven to have done EXACTLY what I said, how can > I be held responsible? > > I guess the Indian programmers will really benefit. Once the programming > is done elsewhere (out of the law's jurisdiction), just move the company > there as well. Well, I have a couple of offshore companies here in Panama, and as long as it doesn't cost me any money, the programs could be "laundered" through one of them (the author still retaining rights, just allowing the program to be moved out of the US and away from incredibly clueless US lawmakers). > > If you can't define it properly, how can you legislate it properly? you can't. Which means it will not be well-thought, which leads to even worse state-by-state implementation of -- GIGO (garbage in, garbage out). > > I can also see this leading to a whole set of government regulations as > to how software is made so that liability can be determined. This could > result in it being more difficult to sell software in the US from > abroad? Like the FDA does for drugs. > Uh huh, so how do you prevent folks from d/l "foreign" software? Ciao, David A. Bandel -- Focus on the dream, not the competition. -- Nemesis Racing Team motto Internet (H323) phone: 206.28.187.30 ___ Linux-users mailing list Archives, Digests, etc at http://linux.nf/mailman/listinfo/linux-users
Re: network/ limited number of ips
On Fri, 18 Jan 2002 07:37:10 -0600 "Schmeits, Roger" <[EMAIL PROTECTED]> spewed into the bitstream: [snip] > > >the internet using a single public ip address and an access list of > >internal ip's that you assign. If it's an ip address not allowed to be > >masqueraded, then nobody can "steal services" from you. A good reason > >to stay away from DHCP and use fixed addressing. > > With the cisco 350 I can register the network cards by MAC address. > Preventing anyone from stealing a ip address. I prevent this by using iptables and only accepting known MAC addresses. However, this will _not_ prevent someone from reconfiguring their MAC address (i.e., doing a MAC address takeover) and breaking into your net, but it does make it a little more difficult. Combine that with WEP and you should be OK against 99% of folks who want to try to break in. > > > >40 ip addresses should be a no brainer to administer. > I am terrible lazy... no cure for this, but I'd suggest using bootp rather than dhcp or static IPs. Ciao, David A. Bandel -- Focus on the dream, not the competition. -- Nemesis Racing Team motto Internet (H323) phone: 206.28.187.30 ___ Linux-users mailing list Archives, Digests, etc at http://linux.nf/mailman/listinfo/linux-users
Re: Xscreensaver-4.0
On Thu, 17 Jan 2002 19:34:09 -0800 (PST) Net Llama <[EMAIL PROTECTED]> spewed into the bitstream: [snip] > > Ugh. I've had [gtk|glib]-devel-1.2.10 installed for months, yet i don't > have glib.h installed. I've also got gnome-devel* installed. This > looks to be leading down a dependency path of hell. > Could I build against lesstif instead? Hrmmm...something like: > ./configure --with-lesstif=? if you have glib-devel-* installed and you have no glib.h anywhere on your system, either: 1. glib.h was accidentally erased somehow (solution: reinstall glib-devel-* --force) or 2. the RPM you installed is terminally borken. If this is the case, I'd confirm it, then send a bug report to whomever created it because without glib.h, might as well not have glib-devel-* installed. Once you have glib.h on your system, your build should go just fine. Ciao, David A. Bandel -- Focus on the dream, not the competition. -- Nemesis Racing Team motto Internet (H323) phone: 206.28.187.30 ___ Linux-users mailing list Archives, Digests, etc at http://linux.nf/mailman/listinfo/linux-users
Re: Xscreensaver-4.0
On Thu, 17 Jan 2002 16:11:56 -0800 (PST) Net Llama <[EMAIL PROTECTED]> spewed into the bitstream: [snip] > /usr/include/gtk-1.2/gdk/gdktypes.h:33: glib.h: No such file or > directory [snip] > /usr/include/gtk-1.2/gtk/gtktypeutils.h:31: glib.h: No such file or > directory run locate glib.h. If it's on your system, then the build software can't find it. You may need to modify your make file, find the line with the other -I/path/to/includes and put another -I/path/to/glib.h in. If glib.h is not on your system, you need the glib-devel-* and gtk-devel-* RPMs (at least, possibly even the gnome-devel-* RPMs). Ciao, David A. Bandel -- Focus on the dream, not the competition. -- Nemesis Racing Team motto Internet (H323) phone: 206.28.187.30 ___ Linux-users mailing list Archives, Digests, etc at http://linux.nf/mailman/listinfo/linux-users
Re: Fwd: Need help to get back on the list
On Thu, 17 Jan 2002 20:58:57 + Dallam Wych <[EMAIL PROTECTED]> spewed into the bitstream: Dallam, Would you mind turning off signatures for posting to the list? Sylpheed keeps popping up this annoying dialogue box: can't verify signature from (?). thanx, David A. Bandel -- Focus on the dream, not the competition. -- Nemesis Racing Team motto Internet (H323) phone: 206.28.187.30 ___ Linux-users mailing list Archives, Digests, etc at http://linux.nf/mailman/listinfo/linux-users
Re: Fwd: Need help to get back on the list
On Wed, 16 Jan 2002 18:47:55 -0800 (PST) Net Llama <[EMAIL PROTECTED]> spewed into the bitstream: > Hrmmmcan someone (Mike or Doug prolly) explain why there is no MX > record here: > 3. dig linux.nf cause you didn't ask for it: [david@tole david]$ dig linux.nf MX ; <<>> DiG 8.3 <<>> linux.nf MX ;; res options: init recurs defnam dnsrch ;; got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 4 ;; flags: qr rd ra; QUERY: 1, ANSWER: 2, AUTHORITY: 2, ADDITIONAL: 3 ;; QUERY SECTION: ;; linux.nf, type = MX, class = IN ;; ANSWER SECTION: linux.nf. 3m11s IN MX 100 linux.nf. linux.nf. 3m11s IN MX 200 mail.panamanow.net. ;; AUTHORITY SECTION: linux.nf. 3m11s IN NS ns1.nf. linux.nf. 3m11s IN NS ns2.nf. ;; ADDITIONAL SECTION: linux.nf. 3m11s IN A 204.210.228.123 mail.panamanow.net. 1H IN A 209.127.112.14 ns2.nf. 1d23h29m30s IN A 203.12.249.101 ;; Total query time: 131 msec ;; FROM: tole.pananix.com to SERVER: default -- 209.127.112.13 ;; WHEN: Wed Jan 16 22:18:49 2002 ;; MSG SIZE sent: 26 rcvd: 160 And panamanow.net is one of my (several) domain names. Ciao, David A. Bandel -- Focus on the dream, not the competition. -- Nemesis Racing Team motto Internet (H323) phone: 206.28.187.30 ___ Linux-users mailing list Archives, Digests, etc at http://linux.nf/mailman/listinfo/linux-users
Re: Bind
On Wed, 16 Jan 2002 20:22:48 -0600 "BadMan" <[EMAIL PROTECTED]> spewed into the bitstream: > I boobed my BIND someplace.. > > Jan 16 19:57:31 linuxbox named[27991]: starting BIND 9.2.0 > Jan 16 19:57:31 linuxbox named[27991]: using 1 CPU > Jan 16 19:57:31 linuxbox named[27993]: loading configuration from > '/etc/named.conf' > Jan 16 19:57:31 linuxbox named[27993]: /etc/named.conf:26: option > 'check-names' is not implemented delete this option line (check-names) > Jan 16 19:57:31 linuxbox named[27993]: /etc/named.conf:53: option > 'memstatistics-file' is not implemented delete this option line (memstatistics-file) > Jan 16 19:57:31 linuxbox named[27993]: /etc/named.conf:71: option > 'use-id-pool' is obsolete delete this line (use-id-pool) > Jan 16 19:57:31 linuxbox modprobe: can't locate module net-pf-10 add to /etc/modules.conf: alias net-pf-10 ipv6 > Jan 16 19:57:31 linuxbox named[27993]: no IPv6 interfaces found why did you build bind --with-ipv6 if you're not using ipv6? > Jan 16 19:57:31 linuxbox named[27993]: listening on IPv4 interface lo, > 127.0.0.1#53 > Jan 16 19:57:31 linuxbox named[27993]: the key 'rndc-key' is too short > to be secure so you won't be able to use rndc (replacement for ndc). Please read the rndc documentation. > Jan 16 19:57:31 linuxbox last message repeated 3 times > Jan 16 19:57:31 linuxbox named[27993]: command channel listening on > 127.0.0.1#953 > Jan 16 19:57:31 linuxbox named[27993]: Jan 16 19:57:31.643general: > error: dns_master_load: pz/127.0.0:3: no current owner name your zone file is hosed (pls review SOA entry) > Jan 16 19:57:31 linuxbox named[27993]: Jan 16 19:57:31.646general: > error: zone 0.0.127.in-addr.arpa/IN: loading master file pz/127.0.0: no > owner > Jan 16 19:57:31 linuxbox named[27993]: Jan 16 19:57:31.648general: > error: zone 1.168.192.in-addr.arpa/IN: loading master file pz/192.168.1: > file not found can't find zone file 192.168.1 (this is a zone file name?!) > Jan 16 19:57:31 linuxbox named[27993]: Jan 16 19:57:31.649general: info: > running > Jan 16 19:57:57 linuxbox named[27993]: Jan 16 19:57:57.063queries: info: > client 127.0.0.1#2801: query: mail.abcs.com IN A > > And of course my nixbox cant get nothing out, i.e. mail, pings > nslookups/digs or hosts calls.. I still ahve port 53 blocked in my > firewall of course it's showing up in messages as well. > > I see one spot where I prolly boobed.. I cahnged 192.168.1 to 192.168.0 > (assume- yeah I know) that this was pertaining to my first 3 octets of > my local network..? you _do_ have a hints file? After all, named is running -- only warning messages, no fatal errors. > > Any ideas of what I should do here...? > O'Reilley has this really good book called DNS and BIND. I highly recommend it. Ciao, David A. Bandel -- Focus on the dream, not the competition. -- Nemesis Racing Team motto Internet (H323) phone: 206.28.187.30 ___ Linux-users mailing list Archives, Digests, etc at http://linux.nf/mailman/listinfo/linux-users
Re: Kylix Licensing
On Tue, 15 Jan 2002 18:49:44 -0500 Jerry McBride <[EMAIL PROTECTED]> spewed into the bitstream: > On Tue, 15 Jan 2002 09:36:14 -0500 Kurt Wall <[EMAIL PROTECTED]> > wrote: > > > Yow! Guess I won't be using Kylix: > > > > 12. AUDIT. During the term of this License and for one > > (1) year thereafter, upon reasonable notice and during > > normal business hours, Borland or its outside auditors will > > have the right to enter your premises and access your > > records and computer systems to verify that you have paid > > to Borland the correct amounts owed under this License > > and determine whether the Products are being used in > > accordance with the terms of this License. You will > > provide reasonable assistance to Borland in connection > > with this provision. You agree to pay the cost of the audit > > if any underpayments during the period covered by the > > audit amount to more than five percent (5%) of the fees > > actually owed for that period. > > > > > Damn! I wonder it they'll be waring long,black hooded robs and dragging > a torture device behind them? No, worse. They'll do it just the way M$ and the BSF do, they'll come in dragging lawyers behind them. They've put a couple of companies out of business here in Panama. All they've (M$ and their lackies) made here is enemies. Ciao, David A. Bandel -- Focus on the dream, not the competition. -- Nemesis Racing Team motto Internet (H323) phone: 206.28.187.30 ___ Linux-users mailing list Archives, Digests, etc at http://linux.nf/mailman/listinfo/linux-users
Re: Fwd: Need help to get back on the list
On Tue, 15 Jan 2002 10:58:46 -0500 Douglas J Hunley <[EMAIL PROTECTED]> spewed into the bitstream: [snip] > > 451 [EMAIL PROTECTED] reply: read error from linux.nf. > > ... while talking to mail.panamanow.net.: > >>> RCPT To:<[EMAIL PROTECTED]> > > <<< 550 5.7.1 <[EMAIL PROTECTED]>... Relaying denied. IP name > possibly forged [68.33.0.214] Doug, you still using my server as backup? May not be a good idea for the moment, at least not until the pending lawsuit against Cable & Wireless Panama is resolved. (They've been harrassing me -- or they're more incompetent that even I imagined -- by dropping my line from time to time). However, as long as I can _resolve_ the backup MX (which may be the problem here), I should be queueing mail for linux.nf. > > That possibly forged ip is the one I was assigned by @HOME. If you > could forward this to the list, maybe someone could let me know how to > solve this. Just means the reverse doesn't resolve to the name given. Ciao, David A. Bandel -- Focus on the dream, not the competition. -- Nemesis Racing Team motto Internet (H323) phone: 206.28.187.30 ___ Linux-users mailing list Archives, Digests, etc at http://linux.nf/mailman/listinfo/linux-users
Re: devfs was Re: cdrom help
On Mon, 14 Jan 2002 23:39:31 +1130 Mike Andrew <[EMAIL PROTECTED]> spewed into the bitstream: > On Mon, 14 Jan 2002 02:57, David A. Bandel wrote: > > > If you have something better (than devfs), I know lots of folks who > > would like to hear your idea of how to do it. > > We have no argument about the 'goodness' of devfs. devfs is going to > happen, because it has to. But if there's a better way to implement it, that would be a good thing. As it stands, it's not that it's good, bad, or indifferent, it's that it's the _only_ way to dynamically create what you need. > > I have run devfs (past tense) I agreed with it, it did not agree with > me. Sorry to hear that. I haven't had any problems with it or I'd have abandoned it long ago. But it works well enough I just stick with it. > > I admire your ability to use it. Richard Gooch has a *lot* of > documentation to catch up on because 80% of what is there is a 1998 > argument as to why devfs is needed (in preference to other > alternatives). It is scant, to non-existent, on HOW to use it. True. I'd say the documentation is the code, but it's nearly unintelligible to any but a kernel hacker (which I ain't). > > > so you need to tell whoever owns the sr_mod module that he's got to > > rename is scd_mod because he's wrong -- no? > > This is facetious. The point being that the ramifications of > implementing scdX in preference to srX were not thought out fully. > Redhat is not alone, unique or the leader of this new wrinkle. And, I'd > fight anyone who said the kernel must change because of *any* distro. True. I should have put a tongue in cheek emoticon with this. But I haven't seen any use of scd#, only of sr#. OTOH, I don't run RH or direct derivitives (at least not direct enough to have RH's problems). > > _because_ sr_mod is hardwired, _because_ many automounters hunt srX, > this new approach may die a death and everyone will revert to srX. Right > now, there is confusion everywhere about the duality of scdX /srX and > there's no magic-cure. I don't argue the author must change, I point out > the reasons why thingz iz as they iz. My view is that the dynamic > assignment of devfs will rule the day and things will revert. Documentation is great. And you can document the use of scd# forever. But until devfs + all the major distros implement it (and RH and a few of its followers aren't all the major distros), it's nothing but words. And a number of distros do use devfs (gentoo and sorcerer come to mind, so I'm not exactly alone). Meanwhile, any documentation should probably cover both (as much of an annoyance as that is). > > > I've been using devfs since it came out. I prefer it. It may not be > > perfect, but it's a damn site better than creating thousands of > > useless device nodes > > No contest. -- Focus on the dream, not the competition. -- Nemesis Racing Team motto Internet (H323) phone: 206.28.187.30 ___ Linux-users mailing list Archives, Digests, etc at http://linux.nf/mailman/listinfo/linux-users
Re: cdrom help
On Mon, 14 Jan 2002 02:19:15 +1130 Mike Andrew <[EMAIL PROTECTED]> spewed into the bitstream: > On Sun, 13 Jan 2002 23:36, David A. Bandel wrote: > > > > modern distros deprecate the use of srX, get rid of them, literally. > > > Promise from me that you can do no harm by deleting them. > > > > What's your source for this? > > /usr/src/linux/Documentation/devices.txt plus That's what I get for not reading every word of every piece of documentation with every new relaese. now I have to wonder when this happened. :-(. OTOH, if I spent all my time rereading every single document with every single release of every single package, I might be up to reading in kernel version 1.2.10 about now. Maybe up to 2.2.18 in 2005. > > latest releases of most Distros (RH7.1/2 eg) only have /dev/scdX nodes. > not srX nodes. Most of what RH does is wrong, so don't use them as a measure of anything. > > >I run 2.4.17 w/ devfs > > all bets are off. devfs is a good idea, badly implemented, attrociously > documented. It doesn't work with the LABEL=/ statement in /etc/fstab If you have something better, I know lots of folks who would like to hear your idea of how to do it. The reason for devfs is the explosion of devices and the limited major/minor numbers available. In fact, devfs is supposed to do away with the device numbers problem because there aren't enough numbers for every device in the world. While you may not have but a few devices connected to your system, if you had one that either didn't have a major/minor because there were no more, or because another device you're using is using the major/minor this new device needs, you're SOL (sorry, out of luck). > > >when I modprobe ide-scsi then sr_mod, > >the only devices created are sr0 and sr1. > >These devices are created dynamically by sr_mod. > > Being pedantic, modules don't do this. devfs intercepts the registration > and makes (and destoys) nodes on the fly. It picks up on the internally > named 'sr' labels because, by convention, the names of device drivers > are associated, programatically, with /dev/names. sr_mod, is an > unfortunate choice. so you need to tell whoever owns the sr_mod module that he's got to rename is scd_mod because he's wrong -- no? > > Ignoring devfs for the moment, the only thing any driver, and any > application, looks for is major / minor numbers, you can call the thing, > and address the thing, as /dev/elephants for all that it matters. (it's > just a lookup to the major/minor number). yes, I know how major/minors work (currently). But that's also their drawback. While I don't call any device foo, I have created device nodes with this name just to show how it works to others. > > kernel messages invoked by sr_mod refer to it's device nodes as sr0 ... > etc. BUT, these are hardwired internal printk messages of sr_mod. > Popular useage these days is /dev/scd0. So, the guy that programs sr_mod is as lost as I am (or hasn't read the recent documentation changes and/or doesn't take RH as gospel). > > Regardless, the point being is that both names /dev/scdX AND /dev/srX > mean the same thing, they are both the same major minors and cause added > confusion in an already confused and idiotic scsi node tree. ( I am > referring to both the dynamic assignment of /dev/sxx anything, and the > tree jumps to accomodate a squillion scsi minor nodes). No, it doesn't. You can't create that many device nodes because of the limitation of the major/minor numbers. > > If it were not recommended to use scdX, and, if distros hadn't already > pre-empted this by removing /dev/srX nodes, I would just as emphatically > reverse my stance and remove scdX anything. Whatever whichway, the > duality causes problems. (witness the screams in /etc/fstab by many > users) > > To be truthfull David, I hadn't considered devfs, it's an added wrinkle > to the mess. I've been using devfs since it came out. I prefer it. It may not be perfect, but it's a damn site better than creating thousands of useless device nodes (which, BTW, take up inodes/disk space). On my personal distro (mine, Chiriqui Linux, the one I created which boots from a CD and runs in RAM mounting /usr from the CD) uses devfs -- or I would have to create each device by hand for just what I need or I'd waste precious space). Sure would like to hear your idea of a replacement for devfs. Ciao, David A. Bandel -- Focus on the dream, not the competition. -- Nemesis Racing Team motto Internet (H323) phone: 206.28.187.30 ___ Linux-users mailing list Archives, Digests, etc at http://linux.nf/mailman/listinfo/linux-users
Re: FreeBSD again
On Sun, 13 Jan 2002 22:14:20 +1130 Mike Andrew <[EMAIL PROTECTED]> spewed into the bitstream: > On Sun, 13 Jan 2002 14:30, Ken Moffat wrote: > > > I vote for it. (not that this is a democracy) > > I'm curious about FreeBSD. > > me too. > I may be mistaken (often am), but I believe "me too" is trademarked AOLusers. ;-) Ciao, David A. Bandel -- Focus on the dream, not the competition. -- Nemesis Racing Team motto Internet (H323) phone: 206.28.187.30 ___ Linux-users mailing list Archives, Digests, etc at http://linux.nf/mailman/listinfo/linux-users
Re: cdrom help
On Sun, 13 Jan 2002 21:33:19 +1130 Mike Andrew <[EMAIL PROTECTED]> spewed into the bitstream: [snip] > > modern distros deprecate the use of srX, get rid of them, literally. > Promise from me that you can do no harm by deleting them. What's your source for this? I run 2.4.17 w/ devfs (the latest). At boot, I have neither scd# nor sr# devices, but when I modprobe ide-scsi then sr_mod, the only devices created are sr0 and sr1. These devices are created dynamically by sr_mod. The info is built into the module. If what you say is true, then I don't understand why I only get sr# and not scd#. ????? [snip] Ciao, David A. Bandel -- Focus on the dream, not the competition. -- Nemesis Racing Team motto Internet (H323) phone: 206.28.187.30 ___ Linux-users mailing list Archives, Digests, etc at http://linux.nf/mailman/listinfo/linux-users
Re: ingenuity sought
On Sat, 12 Jan 2002 19:18:30 -0800 "Kevin O'Gorman" <[EMAIL PROTECTED]> spewed into the bitstream: > On Sat, Jan 12, 2002 at 09:49:33PM -0500, David A. Bandel wrote: > > On Sat, 12 Jan 2002 21:13:48 -0500 > > dep <[EMAIL PROTECTED]> spewed into the bitstream: > > > > > greets, folks! > > > > > > i'm engaged in a little project here, and it's moving along nicely > > > except that i hope to do a thing or two that i do not know how to > > > do. > > > > > > the project is this: last september i took pictures of the wedding > > > of some friends, all digital, all 1600x1200 so that they print > > > nicely. i hope to put together a cd of them for them -- in fact, > > > several, so they can send them to their friends. i have a nice > > > little script that generates cute little thumbnails and so on, all > > > in html, so anyone will be able to use the cd to view the pictures. > > > > > > the problem is that most people do not have 1600x1200 monitors, so > > > viewing will be a pain unless i can *also* provide, for computer > > > viewing, say 640x480 images. > > > > > > there are a couple hundred pictures. opening them one after another > > > in the gimp and downsizing them is something that unappeals to me so > > > much you cannot believe it. > > > > Well, I know if you're using html to get the images, you can size them > > within the html code, so you can have three html pages, one that > > renders thumbnails, one that shows them at 640x480, and one that shows > > them full size. > > > > Would that do it for you? > > I would hope not. When you do that, the whole image has to be > downloaded, and resized at the browser. That can be impossibly slow for > a large collection. Umm, this is all on a CD. So it would be local to the machine, no downloading necessary. That, or I can't read and understand what dep said. Ciao, David A. Bandel -- Focus on the dream, not the competition. -- Nemesis Racing Team motto Internet (H323) phone: 206.28.187.30 ___ Linux-users mailing list Archives, Digests, etc at http://linux.nf/mailman/listinfo/linux-users
Re: ingenuity sought
On Sat, 12 Jan 2002 21:13:48 -0500 dep <[EMAIL PROTECTED]> spewed into the bitstream: > greets, folks! > > i'm engaged in a little project here, and it's moving along nicely > except that i hope to do a thing or two that i do not know how to do. > > the project is this: last september i took pictures of the wedding of > some friends, all digital, all 1600x1200 so that they print nicely. i > hope to put together a cd of them for them -- in fact, several, so > they can send them to their friends. i have a nice little script that > generates cute little thumbnails and so on, all in html, so anyone > will be able to use the cd to view the pictures. > > the problem is that most people do not have 1600x1200 monitors, so > viewing will be a pain unless i can *also* provide, for computer > viewing, say 640x480 images. > > there are a couple hundred pictures. opening them one after another > in the gimp and downsizing them is something that unappeals to me so > much you cannot believe it. Well, I know if you're using html to get the images, you can size them within the html code, so you can have three html pages, one that renders thumbnails, one that shows them at 640x480, and one that shows them full size. Would that do it for you? Ciao, David A. Bandel -- Focus on the dream, not the competition. -- Nemesis Racing Team motto Internet (H323) phone: 206.28.187.30 ___ Linux-users mailing list Archives, Digests, etc at http://linux.nf/mailman/listinfo/linux-users
Re: Problemo with Sendmail....
On Sat, 12 Jan 2002 18:53:46 -0500 Bill Day <[EMAIL PROTECTED]> spewed into the bitstream: > I seem to be unbale to send outside the local intranet with Sendmail > > Works great for incoming mail, i.e [EMAIL PROTECTED] to [EMAIL PROTECTED] > and [EMAIL PROTECTED] to [EMAIL PROTECTED] works as well. > > but if anyone all users with an account) try to send any mail out of my > domain.com to anydomain.com, rejected by the local server and cant be > sent. > > Incoming(Outside in): > > Jan 12 18:48:43 linuxbox sendmail[18766]: SAA18766: > from=<[EMAIL PROTECTED]>, size=1000, class=0, pri=31000, nrcpts=1, > msgid=<002701c19bc9$2ce93fa0$[EMAIL PROTECTED]>, proto=ESMTP, > relay=mail1.abcs.com [206.160.232.150] (may be forged) > Jan 12 18:48:43 linuxbox sendmail[18767]: SAA18766: > to=<[EMAIL PROTECTED]>, delay=00:00:02, xdelay=00:00:00, mailer=local, > relay=local, stat=Sent Jan 12 18:48:48 linuxbox ipop3d[18769]: pop3 > service init from 192.168.0.2 Jan 12 18:48:48 linuxbox ipop3d[18769]: > Login user=bill host=bill [192.168.0.2] nmsgs=1/1 > Jan 12 18:48:48 linuxbox ipop3d[18769]: Logout user=bill host=bill > [192.168.0.2] nmsgs=0 ndele=1 > > Outgoing(Inside out): > > Jan 12 18:49:01 linuxbox sendmail[18771]: SAA18771: ruleset=check_rcpt, > arg1=<[EMAIL PROTECTED]>, relay=bill [192.168.0.2], reject=550 > <[EMAIL PROTECTED]>... Relaying denied > Jan 12 18:49:01 linuxbox sendmail[18771]: SAA18771: > from=<[EMAIL PROTECTED]>, size=0, class=0, pri=0, nrcpts=0, > proto=SMTP, relay=bill [192.168.0.2] > > Domain exchange(Inside domain): > > Jan 12 18:49:28 linuxbox sendmail[18773]: SAA18773: > from=<[EMAIL PROTECTED]>, size=821, class=0, pri=30821, nrcpts=1, > msgid=<003801c19bc9$498e9f60$[EMAIL PROTECTED]>, proto=SMTP, relay=bill > [192.168.0.2] > Jan 12 18:49:28 linuxbox sendmail[18774]: SAA18773: > to=<[EMAIL PROTECTED]>, ctladdr=<[EMAIL PROTECTED]> (500/100), > delay=00:00:01, xdelay=00:00:00, mailer=local, relay=local, stat=Sent > > This is all I can find. Im sure it something that Im missing yep: create a file called /etc/[send]mail/access put the following line in it: 192.168.0.2 RELAY or alternately: daysdomain.com RELAY (for the above daysdomain.com to work, you'll need DNS resolving to your 192.168.0 addresses) then: makemap hash access.db < access Now try to send mail (should work). You don't even need to restart sendmail. > > TIA, > > -- > Bill Day ( a.k.a. BadMan ) 188133 http://counter.li.org > > Our crystal tears now fall upon the ashes, but from the dust shall > grow a spirit, to be in compassion for those who are lost, and one in > determination to break those who dare test our resolve to be free... > 9/11/01 > > http://www.daysdomain.com/tribute.html > > 6:30pm up 164 days, 9:01, 14 users, load average: 0.00, 0.02, 0.00 > ___ > Linux-users mailing list > Archives, Digests, etc at http://linux.nf/mailman/listinfo/linux-users Ciao, David A. Bandel -- Focus on the dream, not the competition. -- Nemesis Racing Team motto Internet (H323) phone: 206.28.187.30 ___ Linux-users mailing list Archives, Digests, etc at http://linux.nf/mailman/listinfo/linux-users
Re: opinions on this iptables script
On Sat, 12 Jan 2002 21:29:30 +1000 "Lavinius Romio Petru" <[EMAIL PROTECTED]> spewed into the bitstream: > So far so good, but you can be using --sport too to only allow > connections from priveleged ports, and I olso played with something like > this > /sbin/iptables -I INPUT -i eth0 -p tcp --tcp-flags ACK ACK --dport 80 \ I'd drop the --tcp-flags ACK ACK > -m string --string 'cmd.exe' -j REJECT --reject-with tcp-reset Might be more fun to make the target -j MIRROR and send the request back where it came from. > and add it permanent for a few days as well as for root.exe, but it > looks good so far!!! I'll reserve judgement until I have time to go through it thoroughly (2003 perhaps?). Ciao, David A. Bandel -- Focus on the dream, not the competition. -- Nemesis Racing Team motto Internet (H323) phone: 206.28.187.30 ___ Linux-users mailing list Archives, Digests, etc at http://linux.nf/mailman/listinfo/linux-users
Re: iptables 1.2.4
On Fri, 11 Jan 2002 19:35:45 +0800 Chang <[EMAIL PROTECTED]> spewed into the bitstream: > Mr. Bandel said the patch-o-matic is the best. > I am gonig to try it tonight.. and see if there > would be more options in make menuconfig... No, I said `make patch-o-matic` gives you more stuff, including alpha code. This may not be the best depending on your comfort level. > > > I've always just done 'make pending-patches' followed by 'make' and > > hten'make install' > > -- > The pivotal point is the "second chance", judged by another set of > criteria. > In Linux We Trust -- http://linux.nf and news://news.hkpcug.org > ___ > Linux-users mailing list > Archives, Digests, etc at http://linux.nf/mailman/listinfo/linux-users Ciao, David A. Bandel -- Focus on the dream, not the competition. -- Nemesis Racing Team motto Internet (H323) phone: 206.28.187.30 ___ Linux-users mailing list Archives, Digests, etc at http://linux.nf/mailman/listinfo/linux-users
Re: iptables 1.2.4
On Thu, 10 Jan 2002 19:30:45 +0800 "Chang [linuxism]" <[EMAIL PROTECTED]> spewed into the bitstream: > do I need to make pending-patches before make patch-o-magic? > The INSTALL/README seemed to suggest that... > No. The pending-patches is a very small subset of patch-o-matic (not patch-o-magic). The most-of-pom target is a slightly larger subset. pending-patches: patches scheduled (and approved) for inclusion in the kernel most-of-pom: pending-patches plus experimental patches known to work and that don't collide with each other patch-o-matic: pending-patches plus most-of-pom plus all others. Be _very_ careful what you select here. In some cases, you'll be told which patches toast other patches, in some cases not. Also, some patches are _very_ alpha and may cause all kinds of unforseen problems. Ciao, David A. Bandel -- Focus on the dream, not the competition. -- Nemesis Racing Team motto Internet (H323) phone: 206.28.187.30 ___ Linux-users mailing list Archives, Digests, etc at http://linux.nf/mailman/listinfo/linux-users
Re: iptables 1.2.4
On Wed, 09 Jan 2002 21:43:23 +0800 Chang <[EMAIL PROTECTED]> spewed into the bitstream: > Now I am getting adventurous... what should I do to get the patch > applied? Also, I didn't see the string target match option in make > menuconfig... kernel is 2.4.17 the string.patch is only available if you run `make patch-o-matic` in the iptables directory. You will not get it with make pending-patches or make most-of-pom. Ciao, David A. Bandel > > -=== > > Welcome to Rusty's Patch-o-matic! > > Each patch is a new feature: many have minimal impact, some do not. > Almost every one has bugs, so I don't recommend applying them all! > --- > Already applied: ipt_MIRROR-ttl ipt_REJECT-checkentry ipt_LOG 2.4.1 > > Testing... tos-fix.patch NOT APPLIED (1 rejects out of 1 hunks) > The tos-fix patch: >Author: Rusty Russell <[EMAIL PROTECTED]> >Status: Included in kernel 2.4.2 > >This fixes a bug in the checksum calculation of the TOS bit mangling >target. > > Do you want to apply this patch [N/y/t/f/q/?] y > Testing patch tos-fix.patch... > Failed to patch copy of /usr/src/linux > TEST FAILED: patch NOT applied. > - > Do you want to apply this patch [N/y/t/f/q/?] > -- Focus on the dream, not the competition. -- Nemesis Racing Team motto Internet (H323) phone: 206.28.187.30 ___ Linux-users mailing list Archives, Digests, etc at http://linux.nf/mailman/listinfo/linux-users
Re: Maxtor 80 meg drive
On Mon, 7 Jan 2002 21:08:35 -0500 Joel Hammer <[EMAIL PROTECTED]> spewed into the bitstream: > I want to use this drive to boot several versions of linux. If I can > get a cheap copy of XP, I will want to put that on there, too. I will > use most of this drive as a big storage unit for: > 1. All those mp3's which my family loads off the internet (five > people can fill up a hard drive fast with mp3's). > 2. Backing up my home network. > 3. I will back up the working partitions (linux, XP) to another computer on > my home network. > Joel > Have you thought about using LVM? I'd keep a small /boot (15-20Mb) with an initrd which basically runs vgscan then vgchange -a y. Then as you fill a volume, you just add another chunk. Ciao, David A. Bandel -- Focus on the dream, not the competition. -- Nemesis Racing Team motto Internet (H323) phone: 206.28.187.30 ___ Linux-users mailing list Archives, Digests, etc at http://linux.nf/mailman/listinfo/linux-users
Re: iptables example
On Sun, 06 Jan 2002 16:14:28 +0800 Chang <[EMAIL PROTECTED]> spewed into the bitstream: > > Is my iptables ok? I wanted to submit it indeed... :) > > -- > The pivotal point is the "second chance", judged by another set of > criteria. > In Linux We Trust -- http://linux.nf and news://news.hkpcug.org #explicitly enable ECN # some software may need eco to be disabled... if [ -e /proc/sys/net/ipv4/tcp_ecn ] then echo 1 > /proc/sys/net/ipv4/tcp_ecn fi Disable the above, still too many borken firewalls on the internet. # create my own logdrop chain $IPT -N logdrop $IPT -A logdrop -j LOG -m limit --limit 10/minute --log-prefix "iptables " # according to ibm's article, this could fool into believing # that there are actually no service activated at my ports. $IPT -A logdrop -j REJECT -p tcp --reject-with tcp-reset $IPT -A logdrop -j REJECT -p udp --reject-with icmp-port-unreachable There's an experimental psd match you can add if you use `make patch-o-matic` in iptables made for port scans. If this is just for folks trying to connect to closed ports, you're already dropping those. $IPT -A INPUT -i $OUTIF -p tcp --sport $UP_PORTS --dport $UP_PORTS -m state --state ESTABLISHED -j ACCEPT $IPT -A OUTPUT -o $OUTIF -p tcp --sport $UP_PORTS --dport $UP_PORTS -m state --state ESTABLISHED,RELATED -j ACCEPT The above are redundant. You already have these covered in the more general state match higher up. #if using static IP, use source NAT $IPT -t nat -A POSTROUTING -o $OUTIF -j SNAT --to $OUTIP you really should specify the source addresses you want to nat (-s x.x.x.x) like in the commented out line a little below the above Lots of confusing redundancy. Rules that will never be used. Looks like several scripts cobbled together from all the overlap. Needs general cleaning up (get rid of all the unused lines). Ciao, David A. Bandel -- Focus on the dream, not the competition. -- Nemesis Racing Team motto Internet (H323) phone: 206.28.187.30 ___ Linux-users mailing list Archives, Digests, etc at http://linux.nf/mailman/listinfo/linux-users
Re: opinions on iptables scripts?
On Thu, 3 Jan 2002 22:35:02 -0500 Douglas J Hunley <[EMAIL PROTECTED]> spewed into the bitstream: [snip] > > exactly. I know what I want open and to whom. that I can probably implement. > I just wanted to see what this list thought was decent starting points to > examine how others are doing the iptables things. The saving grace is that while being more powerful, Netfilter by default doesn't allow new connections from outside (if you're using the state table). > > > > > For those who enjoyed my basic Netfilter article, I'll have another (more > > advanced) article RSN. > > what's the URL of the previous article? also, post the new URL when it goes > online please. thanks! http://www.linuxjournal.com/article.php?sid=4815 Ciao, David A. Bandel -- Focus on the dream, not the competition. -- Nemesis Racing Team motto Internet (H323) phone: 206.28.187.30 ___ Linux-users mailing list Archives, Digests, etc at http://linux.nf/mailman/listinfo/linux-users
Re: allowing sinlge-login only?
On Fri, 4 Jan 2002 16:07:24 -0800 "Kevin O'Gorman" <[EMAIL PROTECTED]> spewed into the bitstream: > Nobody has mentioned it, but there's a real danger that you could wind > up unable to administer your system. This is particularly true because > the original question referred to the root user. Well, if PAM is used (and it should be), the limits apply to all _except_ root. PAM will not screw you over by not allowing multiple root sessions. This is deliberate. The root user should never be restricted. If you need to restrict users, they should never be allowed to admin via root. Sudo, yes, but as root, no. > > Suppose something goes wrong with the on allowed root connection. What > then? You could even find yourself hitting RESET just to reclaim the > ability to administer the system. Not the best result. > Ciao, David A. Bandel -- Focus on the dream, not the competition. -- Nemesis Racing Team motto Internet (H323) phone: 206.28.187.30 ___ Linux-users mailing list Archives, Digests, etc at http://linux.nf/mailman/listinfo/linux-users
Re: opinions on iptables scripts?
On Thu, 3 Jan 2002 19:58:20 -0500 Joel Hammer <[EMAIL PROTECTED]> spewed into the bitstream: > I still use them, so, they're not entirely dead. You can configure tcpd > wrappers with your firewall. Since you can spawn scripts with tcpd > wrappers when certain events occur, you can have very tight control over > security. tcp wrappers is good, but limited -- mostly by what it can watch (TCP, but not UDP) connections. iptables is maturing rapidly and quite well. Some things you'll find in the `make patch-o-matic` target include: port scan detection, NETLINK target support, strings support (yes, search for strings inside packets -- preferably, you'll only use this with connection tracking, which reassembles packets first), much more. > > I think that changing technologies/software everytime you > want a new feature is overkill. I believe it was the Bard who penned: I believe it's great we have choices. > > "Do not dull thy palm with the entertainment of each new hatch'd, > unfledg'd courage." > > Joel > > > Yes but ipchains is a dead issue. > ___ > Linux-users mailing list > Archives, Digests, etc at http://linux.nf/mailman/listinfo/linux-users Ciao, David A. Bandel -- Focus on the dream, not the competition. -- Nemesis Racing Team motto Internet (H323) phone: 206.28.187.30 ___ Linux-users mailing list Archives, Digests, etc at http://linux.nf/mailman/listinfo/linux-users
Re: opinions on iptables scripts?
On Thu, 3 Jan 2002 18:06:52 -0500 Douglas J Hunley <[EMAIL PROTECTED]> spewed into the bitstream: > Looking at Freshmeat, I see like 50 different firewall scripts (iptables > based). What are you guys using? > rc.firewall? > shorewall? > mon mothma? > others? > I have firewalls in a number of places (companies, organizations, individuals). Each one custom rules. Some things (almost) never change, and those are the basis for the scripts I provided LJ with my article. My recommendation: decide exactly what you want to do and implement those rules. Don't use a canned script. If you don't know what you want, perhaps you shouldn't try (alone), but get someone knowledgeable to help. For those who enjoyed my basic Netfilter article, I'll have another (more advanced) article RSN. Ciao, David A. Bandel -- Focus on the dream, not the competition. -- Nemesis Racing Team motto Internet (H323) phone: 206.28.187.30 ___ Linux-users mailing list Archives, Digests, etc at http://linux.nf/mailman/listinfo/linux-users
Re: christmas and its HOT!
On Tue, 1 Jan 2002 10:27:48 -0500 Joel Hammer <[EMAIL PROTECTED]> spewed into the bitstream: Another good temperature link: http://www.rci.rutgers.edu/~jup/metric/fahrenheit.html discusses Fahreneit and Roemer David A. Bandel -- Focus on the dream, not the competition. -- Nemesis Racing Team motto Internet (H323) phone: 206.28.187.30 ___ Linux-users mailing list Archives, Digests, etc at http://linux.nf/mailman/listinfo/linux-users
Re: christmas and its HOT!
On Tue, 1 Jan 2002 10:27:48 -0500 Joel Hammer <[EMAIL PROTECTED]> spewed into the bitstream: [snip] > Which unit is more convenient for measuring air temperature, Fahrenheit or > Centigrade? > Centigrade is based on the freezing and boiling points of water. Dr. > Fahrenheit, on the other hand, traveled all over Europe and, using his > device, set 100 to the hottest temperature normally expected and set 0 to > the lowest temperature normally expected, ie, the Fahrenheit scale was > designed for a particular use, measuring air temperature. Ummm. Where'd you get this little bit of wisdom? I learned it this way: On the Fahrenheit scale, the freezing point of water is 32 degrees and the boiling point is 212 degrees. Zero Fahrenheit was the coldest temperature that the German-born scientist Gabriel Daniel Fahrenheit could create with a mixture of ice and ordinary salt. He invented the mercury thermometer and introduced it and his scale in 1714 in Holland, where he lived most of his life. The above from the nasa.gov site discussing Fahrenheit, Celsius (centigrade), and Kelvin. Ciao, David A. Bandel -- Focus on the dream, not the competition. -- Nemesis Racing Team motto Internet (H323) phone: 206.28.187.30 ___ Linux-users mailing list Archives, Digests, etc at http://linux.nf/mailman/listinfo/linux-users
Re: christmas and its HOT!
On Tue, 1 Jan 2002 09:41:19 -0500 "Burns MacDonald" <[EMAIL PROTECTED]> spewed into the bitstream: > David spake: > > That would be fine if you stuck to inches all the time but: > > 12 inches = 1 foot > > 3 feet = 1 yard > > yards = 1 mile > > > From my Navy years: > 1760 yards to a nautical mile. A nautical mile is 1 minute of latitude at > the equator. > a 'cable' is 200 yards > a shackle is about 90 feet > a fathom is 6 feet > And you got this information where? [david@tole david]$ units 2112 units, 59 prefixes You have: 1 statutemile You want: yards * 1760.0035 / 0.00056818068 You have: 1 nauticalmile You want: yards * 2025.3718 / 0.0004937365 You have: 1 fathom You want: feet * 6.12 / 0.1633 You have: 1 shackle Unknown unit 'shackle'. You have: 1 cable You want: yards * 202.53718 / 0.004937365 Nice program, units. Be careful: nm == nanometers (as in light wavelength, not in nautical miles; there are other gotchas with the program as well -- consult /usr/share/units.dat for all the gory details). Looks like you need to put the definition of shackle into units (or did you just misspell it?). Ciao, David A. Bandel -- Focus on the dream, not the competition. -- Nemesis Racing Team motto Internet (H323) phone: 206.28.187.30 ___ Linux-users mailing list Archives, Digests, etc at http://linux.nf/mailman/listinfo/linux-users
Re: Postifx (Was: "Re: Is This Thing On?")
On Mon, 31 Dec 2001 09:06:35 -0500 [EMAIL PROTECTED] spewed into the bitstream: > On December 31, Keith Morse enlightened our ignorance thusly: > > On Mon, 31 Dec 2001 [EMAIL PROTECTED] wrote: > > > > > I *still* dislike sendmail > > > > > > Ah, but this is what postfix is for! > > Agreed, but I couldn't figure out how to configure the relaying stuff > so I could still get email. It built and installed without incident. > It is more a difficulty understanding relaying (or anti-relaying, > rather) configuration directives, which denseness on my part also > afflicts me vis-a-vis sendmail. I looked at the docs, looked at > examples, my eyes glazed over, so I returned to the evil I know > (sendmail). > Well, at least I'm not the only one with this problem. I have only postfix on one system, but I'm getting ready to install sendmail from source -- why? because I know how to configure it. Ciao, David A. Bandel -- Focus on the dream, not the competition. -- Nemesis Racing Team motto Internet (H323) phone: 206.28.187.30 ___ Linux-users mailing list Archives, Digests, etc at http://linux.nf/mailman/listinfo/linux-users
Re: dhcp help, please...
On Sat, 29 Dec 2001 23:33:22 -0500 Jerry McBride <[EMAIL PROTECTED]> spewed into the bitstream: [snip] I'll let someone else handle the first question. > > Also, what happens when the lease expires? Is a new lease automatically negotiated or do I have to manually intervene in some manner like restarting the firewall, etc. RFC 2131 should answer all your questions about how DHCP works (dhcprequest, dhcprelease, dhcpinform, dhcp..., etc.). Bottom line, unless you are blocking udp ports 67 and 68, all dhcp lease renewals are automagic. Ciao, David A. Bandel -- Focus on the dream, not the competition. -- Nemesis Racing Team motto Internet (H323) phone: 206.28.187.30 ___ Linux-users mailing list Archives, Digests, etc at http://linux.nf/mailman/listinfo/linux-users
Re: DNS server won't start in eD2.4
On Sat, 29 Dec 2001 18:02:09 -0800 "Kevin O'Gorman" <[EMAIL PROTECTED]> spewed into the bitstream: > On Sat, Dec 29, 2001 at 08:23:30PM -0500, [EMAIL PROTECTED] wrote: > > On December 29, Kevin O'Gorman enlightened our ignorance thusly: > > > This is very odd. > > > > > > My 'named' server won't start from SysV. > > > > > > It won't start from a root shell if I try > > > # cd /etc/rc.d/rc3.d > > > # ./S10named start > > > > > > However, it will start if I do it by sourcing the file: > > > # . ./S10named start > > > > You know, of course, that S10named is just a symlink to > > /etc/rc.d/init.d/named? What happens if you invoke this script > > directly? You can also edit it, add "set -x" at the top for debugging > > output, and then evaluate the differences between the two invocations > > to see what's going wrong? > > > > Kurt > > I did that, and it's no where near as helpful as one would hope. For > one thing, the differences first show up during the sourcing of > /etc/rc.d/init.d/functions, which is (1) common to pretty much all > of the SysV files, and (b) not causing problems for any of the others. > > For what it's worth, here's the script of both shutdown and startup, > done both ways. You'll note that I do them in a subshell because > there's an explicit 'exit' at the end of the script, which otherwise > messes with me when I source it. > [snippage] do another stop, then start. (the stop to get rid of the .pid file, the start to try to restart named). Then tail /var/log/messages. You've probably toasted your named.conf or one of your zone files and named refuses to start. If it's not obvious, send it to the list. Ciao, David A. Bandel -- Focus on the dream, not the competition. -- Nemesis Racing Team motto Internet (H323) phone: 206.28.187.30 ___ Linux-users mailing list Archives, Digests, etc at http://linux.nf/mailman/listinfo/linux-users
Re: questions
On Thu, 27 Dec 2001 22:28:38 +0530 "zohar" <[EMAIL PROTECTED]> spewed into the bitstream: > CALDERA says that it providing a solution of UNIX and LINUX integrating it. > What other than networking is the same between this two OS. Shorter list would be what's different. Let's see, what's the same (list incomplete): POSIX compliance filesystem structures (single tree versus idiotic, changing alphabet soup) regex designed to be multi-tasking, multi-user (true multi-tasking, not pre-emptive) boot sequence (BSD or SysV) use of semaphores use of pipes uniformity of location for config files (/etc) etc., etc., etc. > > I have heard many times in last few days that normal firewall can only > blocks the packets that come from Windows while they are not effective on > the packets that come from other OS. Can you give me some more knowledge > related to it. Which Firewall can handle this kind of situation. Who is the ill-informed that passed on this bit of misinformation? While different OS' react differently to various situations (sending a SYN-ACK as the initial packet, XMAS tree scans, martian packets, etc.), thus the ability to "fingerprint" an OS via TCP, the RFC's are fairly explicit about how IP, ICMP, BGP, etc., work. So there's really little variation to a legitimate IP packet, and all UNIX/Linux firewalls will discard garbage (I have no clue if this is true with "other than UNIX/Linux OS'", but that's over 106 flavors of UNIX last time I looked). The current Linux firewall code is not only very robust, it's stateful. It can perform NAT (both source and destination), and a myriad other things including rudimentary port scan detection, searching for strings inside of packets, etc., etc., ... > > On one site it was mentioned that an e-mail can be multiparty other than > pure HTML or text and this are more likely to contain ActiveX and scripting > like more powerful programs which are made able to run some malicious code. > Please say something more about this and which mail application can better > handle this. This is a M$ problem. UNIX will not automagically allow this. You must save the malicious attachment, make it executable, then deliberately run it (assuming it would even run on your system). Would anyone go to that much trouble when a simple `rm -Rf /*` will do? > > What is UPX file compressor of Visual Basic. Visual Basic? Folks here speak Perl, C, C++, and more, but there's no such thing as Linux Visual Basic. Ciao, David A. Bandel -- Focus on the dream, not the competition. -- Nemesis Racing Team motto Internet (H323) phone: 206.28.187.30 ___ Linux-users mailing list Archives, Digests, etc at http://linux.nf/mailman/listinfo/linux-users
Re: copying over 50000 files in a directory?
On Thu, 27 Dec 2001 19:51:45 +0800
Chang <[EMAIL PROTECTED]> spewed into the bitstream:
>
> 1. is it possible to have 5 files in a directory?
> 2. how to copy it given the limit of the cp command?
I'd use the find command:
find . -exec cp {} \;
Find is my favorite as well for backups using cpio (preferred) or tar.
Ciao,
David A. Bandel
--
Focus on the dream, not the competition.
-- Nemesis Racing Team motto
Internet (H323) phone: 206.28.187.30
___
Linux-users mailing list
Archives, Digests, etc at http://linux.nf/mailman/listinfo/linux-users
LFS
Well, the saga continues. Since LFS w/ 2.4.16 seemed to have problems compiling X, thought I'd see how 2.4.17 fared. Here, glibc-2.2.4 won't compile. Complains about incosistencies in the operand in the spinlock definition in spin.h. If it's not one thing it's another. Ciao, David A. Bandel -- Focus on the dream, not the competition. -- Nemesis Racing Team motto Internet (H323) phone: 206.28.187.30 ___ Linux-users mailing list Archives, Digests, etc at http://linux.nf/mailman/listinfo/linux-users
Re: christmas and its HOT!
On Sun, 23 Dec 2001 00:30:18 -0500 Lee <[EMAIL PROTECTED]> spewed into the bitstream: > Jay Nugent wrote: > > > Greetings, > > > > On Sat, 22 Dec 2001, Lee wrote: > > > > > Jay Nugent wrote: > > > > > > >Snip > > > > >Too bad we blew it back in the late 70's, early 80's when we were > > > > *supposed* to move over to the metric system. Base-10 is FAR better a > > > > measurement scale than Base-the-kings-feet and other arbitrary scales. > > > > > > Metric is just as arbitrary as a king's foot being 12 inches long rather than 10 and > > > 36 inches from tip of his nose to finger tips. In the universe there's nothing more > > > arbitrary than the circumference of the Earth or boiling and freezing point of pure > > > water at one standard Earth atmosphere. > > > >Yeah, but how do you start from scratch unless you happen to have the > > king's body laying around somewhere. At least with a *water* standard, > > your referance is available in abundance on the vast majority of the > > planet. There was only ONE king and he's pretty rotted away by now so we > > can't really be sure that our measurement system is even in calibration > > anymore... ;-) We can recalibrate against a water standard at anytime. > > > > --- Jay > > Actual we don't need to. The US bureau of Standards maintains a metal standard for the > inch, foot, yard in a temperature controled environment along with metric and atomic > standards for wave length standards. As far as pure water there is no such thing in the > universe. Any planet that has sufficient atmosphere pressure and te mperature to > maintain water in the liquid state also has gasepus impurities that end up in the water > effecting it's boilling and freezing points. > That's not all that affects the boiling and freezing points. I doubt you'll find many other planets that have the same gravity as wee do (thus the same psi at sea level, which also affects the measurement). Ciao, David A. Bandel -- Focus on the dream, not the competition. -- Nemesis Racing Team motto Internet (H323) phone: 206.28.187.30 ___ Linux-users mailing list Archives, Digests, etc at http://linux.nf/mailman/listinfo/linux-users
Re: Windows98: Command prompt?
On Sat, 22 Dec 2001 10:02:12 -0500 Joel Hammer <[EMAIL PROTECTED]> spewed into the bitstream: > A bit OT but: [snip] > He is tired of windows98 crashing several times per day. > So, he is going to install XP professional ($20 [no upgrade] from his school > bookstore.) I may be tempted at that price. > Joel Please check out the patches. For anyone anywhere to take complete control of your XP machine, all you have to do is ... connect to the Internet. I'm sorry, this is frighteningly stupid -- even for M$. Imagine _millions_ of zombies in the hands of a 13 year old who wants to DDOS everyone off the Internet. Ciao, David A. Bandel -- Focus on the dream, not the competition. -- Nemesis Racing Team motto Internet (H323) phone: 206.28.187.30 ___ Linux-users mailing list Archives, Digests, etc at http://linux.nf/mailman/listinfo/linux-users
Re: X410 missing includes
On Fri, 21 Dec 2001 11:40:13 -0700 Collins Richey <[EMAIL PROTECTED]> spewed into the bitstream: > On Fri, 21 Dec 2001 11:03:30 -0500 > "David A. Bandel" <[EMAIL PROTECTED]> wrote: > > > Anyone have any idea what include files I might be missing? make > > World goes fine, but make install blows up as follows: > > make[5]: Entering directory `/usr/src/xc/lib/GL/mesa/src/drv/sis' > > rm -f sis_alloc.o > > gcc -c -fno-strength-reduce -pipe -ldl -Wall > > -I../../../../../../exports/inclu > > de/X11 -I../../../../../../include/extensions > > -I../../../../../../extras/Mesa/sr > > c -I../../../../../../extras/Mesa/include > > -I../../../../../../lib/ > > GL/mesa/src/drv/common -I../../../../../../lib/GL/mesa/src/drv/sis > > -I../../../.. > > /../../lib/GL/dri -I../../../../../../lib/GL/glx > > -I../../../../.. > > /../exports/include -I../../../../../../exports/include/GL > > -I../../ > > ../../../../lib/GL/mesa/dri > > -I../../../../../../programs/Xserver/GL/ > > dri > > -I../../../../../../programs/Xserver/hw/xfree86/os-support- > > I../../../../../../programs/Xserver/hw/xfree86/drivers/sis > > -I../../ > > ../../../../lib/GL/dri/drm > > -I../../../../../../lib/GL/mesa/src/X - > > I../../../../../.. -I../../../../../../exports/include -Dlinux > > -D__i386__-D_PO > > SIX_C_SOURCE=199309L -D_POSIX_SOURCE -D_XOPEN_SOURCE -D_BSD_SOURCE > > -D_SVID_SOURC > > E -D_GNU_SOURCE -DFUNCPROTO=15 -DNARROWPROTO -DXTHREADS > > -D_REENTRANT-DXUSE_ > > MTSAFE_API-DMALLOC_0_RETURNS_NULL -DGLXEXT -DXF86DRI > > -DGLX_DIRECT_RENDERING > > -DGLX_USE_DLOPEN -DGLX_USE_MESA -DSIS_USE_HW_CULL -DUSE_X86_ASM > > -DUSE_MMX_ASM - > > DUSE_3DNOW_ASM -DUSE_KATMAI_ASM -DSIS_STEREO=0 > > sis_alloc.c > > sis_alloc.c: In function `sis_alloc_fb': > > sis_alloc.c:124: `SIS_IOCTL_FB_ALLOC' undeclared (first use in this > > function) > > sis_alloc.c:124: (Each undeclared identifier is reported only once > > sis_alloc.c:124: for each function it appears in.) > > sis_alloc.c: In function `sis_free_fb': > > sis_alloc.c:154: `SIS_IOCTL_FB_FREE' undeclared (first use in this > > function) > > sis_alloc.c: In function `sis_alloc_agp': > > sis_alloc.c:197: `SIS_IOCTL_AGP_ALLOC' undeclared (first use in this > > function) > > sis_alloc.c: In function `sis_free_agp': > > sis_alloc.c:224: `SIS_IOCTL_AGP_FREE' undeclared (first use in this > > function) > > make[5]: *** [sis_alloc.o] Error 1 > > Just a wild guess. > > Sure looks like something screwed up in the kernel headers to me. > Over several recent 2.4.x releases, I had to remove SIS_*** stuff even > to compile the kernel. No, my kernels have all built flawlessly. Ciao, David A. Bandel -- Focus on the dream, not the competition. -- Nemesis Racing Team motto Internet (H323) phone: 206.28.187.30 ___ Linux-users mailing list Archives, Digests, etc at http://linux.nf/mailman/listinfo/linux-users
Re: X410 missing includes
On Fri, 21 Dec 2001 09:21:18 -0800 (PST) Net Llama <[EMAIL PROTECTED]> spewed into the bitstream: > Hrmmm...that's quite odd. Any info on the box where you're trying to > build this (kernel ver, glibc ver, distro, etc)? LFS (hacked), kernel ver 2.4.16, glibc 2.2.4 (w/ linux-threads). > > I've built X410 from source in the past and never had a single problem. > Have you been able to build this in the past? > Do you have a SiS videocard? You might be able to hack the install > script to ignore the SiS crap if you don't need it. I've built from source before too (on a LFS box w/ 2.4.9 + glibc-2.2.4). First time it's blown up. Same host.def file, same change in site.def (to look at the host.def). > > --- "David A. Bandel" <[EMAIL PROTECTED]> wrote: > > Anyone have any idea what include files I might be missing? make > > World > > goes fine, but make install blows up as follows: > > make[5]: Entering directory `/usr/src/xc/lib/GL/mesa/src/drv/sis' > > rm -f sis_alloc.o > > gcc -c -fno-strength-reduce -pipe -ldl -Wall > > -I../../../../../../exports/inclu > > de/X11 -I../../../../../../include/extensions > > -I../../../../../../extras/Mesa/sr > > c -I../../../../../../extras/Mesa/include > > -I../../../../../../lib/ > > GL/mesa/src/drv/common -I../../../../../../lib/GL/mesa/src/drv/sis > > -I../../../.. > > /../../lib/GL/dri -I../../../../../../lib/GL/glx > > -I../../../../.. > > /../exports/include -I../../../../../../exports/include/GL > > > > -I../../ > > ../../../../lib/GL/mesa/dri > > -I../../../../../../programs/Xserver/GL/ > > dri > > -I../../../../../../programs/Xserver/hw/xfree86/os-support > > - > > I../../../../../../programs/Xserver/hw/xfree86/drivers/sis > > > > -I../../ > > ../../../../lib/GL/dri/drm > > -I../../../../../../lib/GL/mesa/src/X - > > I../../../../../.. -I../../../../../../exports/include -Dlinux > > -D__i386__ > > -D_PO > > SIX_C_SOURCE=199309L -D_POSIX_SOURCE -D_XOPEN_SOURCE -D_BSD_SOURCE > > -D_SVID_SOURC > > E -D_GNU_SOURCE -DFUNCPROTO=15 -DNARROWPROTO -DXTHREADS > > -D_REENTRANT > > -DXUSE_ > > MTSAFE_API-DMALLOC_0_RETURNS_NULL -DGLXEXT -DXF86DRI > > -DGLX_DIRECT_RENDERING > > -DGLX_USE_DLOPEN -DGLX_USE_MESA -DSIS_USE_HW_CULL -DUSE_X86_ASM > > -DUSE_MMX_ASM - > > DUSE_3DNOW_ASM -DUSE_KATMAI_ASM -DSIS_STEREO=0 > > sis_alloc.c > > sis_alloc.c: In function `sis_alloc_fb': > > sis_alloc.c:124: `SIS_IOCTL_FB_ALLOC' undeclared (first use in this > > function) > > sis_alloc.c:124: (Each undeclared identifier is reported only once > > sis_alloc.c:124: for each function it appears in.) > > sis_alloc.c: In function `sis_free_fb': > > sis_alloc.c:154: `SIS_IOCTL_FB_FREE' undeclared (first use in this > > function) > > sis_alloc.c: In function `sis_alloc_agp': > > sis_alloc.c:197: `SIS_IOCTL_AGP_ALLOC' undeclared (first use in this > > function) > > sis_alloc.c: In function `sis_free_agp': > > sis_alloc.c:224: `SIS_IOCTL_AGP_FREE' undeclared (first use in this > > function) > > make[5]: *** [sis_alloc.o] Error 1 > > = > > Lonni J. Friedman [EMAIL PROTECTED] > David A. Bandel -- Focus on the dream, not the competition. -- Nemesis Racing Team motto Internet (H323) phone: 206.28.187.30 ___ Linux-users mailing list Archives, Digests, etc at http://linux.nf/mailman/listinfo/linux-users
X410 missing includes
Anyone have any idea what include files I might be missing? make World goes fine, but make install blows up as follows: make[5]: Entering directory `/usr/src/xc/lib/GL/mesa/src/drv/sis' rm -f sis_alloc.o gcc -c -fno-strength-reduce -pipe -ldl -Wall -I../../../../../../exports/inclu de/X11 -I../../../../../../include/extensions -I../../../../../../extras/Mesa/sr c -I../../../../../../extras/Mesa/include -I../../../../../../lib/ GL/mesa/src/drv/common -I../../../../../../lib/GL/mesa/src/drv/sis -I../../../.. /../../lib/GL/dri -I../../../../../../lib/GL/glx -I../../../../.. /../exports/include -I../../../../../../exports/include/GL -I../../ ../../../../lib/GL/mesa/dri -I../../../../../../programs/Xserver/GL/ dri -I../../../../../../programs/Xserver/hw/xfree86/os-support - I../../../../../../programs/Xserver/hw/xfree86/drivers/sis -I../../ ../../../../lib/GL/dri/drm -I../../../../../../lib/GL/mesa/src/X - I../../../../../.. -I../../../../../../exports/include -Dlinux -D__i386__ -D_PO SIX_C_SOURCE=199309L -D_POSIX_SOURCE -D_XOPEN_SOURCE -D_BSD_SOURCE -D_SVID_SOURC E -D_GNU_SOURCE -DFUNCPROTO=15 -DNARROWPROTO -DXTHREADS -D_REENTRANT -DXUSE_ MTSAFE_API-DMALLOC_0_RETURNS_NULL -DGLXEXT -DXF86DRI -DGLX_DIRECT_RENDERING -DGLX_USE_DLOPEN -DGLX_USE_MESA -DSIS_USE_HW_CULL -DUSE_X86_ASM -DUSE_MMX_ASM - DUSE_3DNOW_ASM -DUSE_KATMAI_ASM -DSIS_STEREO=0 sis_alloc.c sis_alloc.c: In function `sis_alloc_fb': sis_alloc.c:124: `SIS_IOCTL_FB_ALLOC' undeclared (first use in this function) sis_alloc.c:124: (Each undeclared identifier is reported only once sis_alloc.c:124: for each function it appears in.) sis_alloc.c: In function `sis_free_fb': sis_alloc.c:154: `SIS_IOCTL_FB_FREE' undeclared (first use in this function) sis_alloc.c: In function `sis_alloc_agp': sis_alloc.c:197: `SIS_IOCTL_AGP_ALLOC' undeclared (first use in this function) sis_alloc.c: In function `sis_free_agp': sis_alloc.c:224: `SIS_IOCTL_AGP_FREE' undeclared (first use in this function) make[5]: *** [sis_alloc.o] Error 1 Ciao, David A. Bandel -- Focus on the dream, not the competition. -- Nemesis Racing Team motto Internet (H323) phone: 206.28.187.30 ___ Linux-users mailing list Archives, Digests, etc at http://linux.nf/mailman/listinfo/linux-users
Re: Linksys Wireless Troubles
On Wed, 19 Dec 2001 16:15:32 -0800 Vern W Heesch <[EMAIL PROTECTED]> spewed into the bitstream: > [snip] > > > What card? The linux-wlan-ng stuff will NOT work on hermes cards. All > > cards that run the hermes chipset (Orinoco and a pile of others) run WEP. > > > > Try this: > > iwconfig eth# key s:mycryptokey > > > > Now, any station not running WEP can't talk to you. Windoze stations will > > run with "mycry". > > > > If you're using an Orinoco card, I suggest you upgrade your kernel (to at > > least 2.4.14), upgrade your wireless_tools (to at least > > wireless_tools.22.tar.gz) and also your /usr/include/linux/wireless.h. > > Caldera is hopelessly outdated in this arena. > > > > After you get stuff running, try: > > iwconfig eth# power on > > iwspy eth# > > ping remote system > > iwconfig eth# > > > > you'll see some stats about how good your connection is. There's also a > > graphical utility you can use which shows you your SNR (signal to noise > > ratio). > > > > Ciao, > > > > David A. Bandel > > David, > This sounds like a lot of work and I'm pretty new to linux, so..can you > recommend a distro that may be more up to date? One that works well on a > laptop? Oh, and I have the Linksys WAP11 and WPC11. Sorry. Every distro I've tried has had extremely poor support in the wireless area. I've tried several and _none_ work as is. Caldera is the closest, but still not good. Ciao, David A. Bandel -- Focus on the dream, not the competition. -- Nemesis Racing Team motto Internet (H323) phone: 206.28.187.30 ___ Linux-users mailing list Archives, Digests, etc at http://linux.nf/mailman/listinfo/linux-users
Re: Happpy B-day Doug
On Tue, 18 Dec 2001 21:42:17 -0500 Michael Scottaline <[EMAIL PROTECTED]> wrote: > On Tue, 18 Dec 2001 20:31:29 -0500 > "David A. Bandel" <[EMAIL PROTECTED]> wrote: > > > On Tue, 18 Dec 2001 12:47:32 -0500 > > Douglas J Hunley <[EMAIL PROTECTED]> wrote: > > > > [snip] > > > Computer games don't affect kids, I mean if Pac Man affected us as > > > kids, we'd be sitting around in darkened rooms munching pills and > > > listening to repetitive music. > > > > Hmmm. As I read this, I'm sitting in a darkened room munching M&Ms and > > listening to my favorite album over and over again. ??? > > > > David A. Bandel > == > Dark Side of the Moon??? How'd you guess? And more specifically, "Comfortably Numb" (my wife hates this song, but it's my favorite). Ciao, David A. Bandel -- Focus on the dream, not the competition. -- Nemesis Racing Team motto Internet (H323) phone: 206.28.187.30 ___ Linux-users mailing list Archives, Digests, etc at http://linux.nf/mailman/listinfo/linux-users
Re: Linksys Wireless Troubles
On Tue, 18 Dec 2001 09:35:47 -0800 Vern W Heesch <[EMAIL PROTECTED]> wrote: > On Tuesday 04 December 2001 06:41 pm, you wrote: > > On Tue, 4 Dec 2001 10:49:53 -0800 > > > > Vern W Heesch <[EMAIL PROTECTED]> wrote: > > > Thanks again David, with your help I almost there! > > > > Vern, > > > > When you get this all ironed out... why not write up a detailed > > step-by-step for the > > rest of us to follow? > > Jerry, > Sorry it took so long to respond. I got caught in the layoffs at work and > things have been rather hectic. I would have loved to write a step-by-step > for this, except that I can't seem to figure out how to get wep to work. I > could not get it to work with the orinoco module. I don't believe the orinoco > module is capable of this. I found in wireless.opts where it stated that to Bzt. Wrong answer. The orinoco module supports WEP. My silver cards do 40 and 104 (Windoze can only figure out how to do 40, but I use 104 between my Linux boxes -- they drop back to 40 when a Windoze box tries to talk to them). > use encription requires the wvlan_cs module, but I had no luck getting that > to load either. I then tried linux-wlan-ng and could never get it to work at > all. At this point I reloaded the machine with a newer version of caldera and > haven't had the time to try linux-wlan-ng again. Right now I am running the > orinoco module with no wep...again. :( What card? The linux-wlan-ng stuff will NOT work on hermes cards. All cards that run the hermes chipset (Orinoco and a pile of others) run WEP. Try this: iwconfig eth# key s:mycryptokey Now, any station not running WEP can't talk to you. Windoze stations will run with "mycry". If you're using an Orinoco card, I suggest you upgrade your kernel (to at least 2.4.14), upgrade your wireless_tools (to at least wireless_tools.22.tar.gz) and also your /usr/include/linux/wireless.h. Caldera is hopelessly outdated in this arena. After you get stuff running, try: iwconfig eth# power on iwspy eth# ping remote system iwconfig eth# you'll see some stats about how good your connection is. There's also a graphical utility you can use which shows you your SNR (signal to noise ratio). Ciao, David A. Bandel -- Focus on the dream, not the competition. -- Nemesis Racing Team motto Internet (H323) phone: 206.28.187.30 ___ Linux-users mailing list Archives, Digests, etc at http://linux.nf/mailman/listinfo/linux-users
Re: Happpy B-day Doug
On Tue, 18 Dec 2001 16:01:48 -0800 Tony Alfrey <[EMAIL PROTECTED]> wrote: > On Tuesday 18 December 2001 08:52 am,Ian wrote: > > Douglas J Hunley wrote: > > > Tony Alfrey babbled on about: > > > > Happy Birthday! I missed the start of the thread, but did > > > > someone say how old you are or do we really want to know? > > > > > > a ripe old 28 years today (dec 18) > > > > You old fogey...I'm not 28 for another 3 months! > > > > Errr...sorry, I take the fogey comment back...repsect for elders and > > all! > > Didn't we decide a very long while back (on the caldera list) that > David Bandel was the "old fogey"? Just because I feel like it doesn't mean it's true. Ciao, David A. Bandel -- Focus on the dream, not the competition. -- Nemesis Racing Team motto Internet (H323) phone: 206.28.187.30 ___ Linux-users mailing list Archives, Digests, etc at http://linux.nf/mailman/listinfo/linux-users
Re: Happpy B-day Doug
On Tue, 18 Dec 2001 12:47:32 -0500 Douglas J Hunley <[EMAIL PROTECTED]> wrote: [snip] > Computer games don't affect kids, I mean if Pac Man affected us as > kids, we'd be sitting around in darkened rooms munching pills and > listening to repetitive music. Hmmm. As I read this, I'm sitting in a darkened room munching M&Ms and listening to my favorite album over and over again. ??? David A. Bandel -- Focus on the dream, not the competition. -- Nemesis Racing Team motto Internet (H323) phone: 206.28.187.30 ___ Linux-users mailing list Archives, Digests, etc at http://linux.nf/mailman/listinfo/linux-users
Re: Win95 replacement
On Mon, 17 Dec 2001 22:52:09 -0500 Tim Wunder <[EMAIL PROTECTED]> wrote: > Previously, Anita Lewis chose to write: > > that's the general idea. I just finished installing slackware on a laptop > > with 4Mb RAM and using floppies. First there was the boot floppy with the > > So there might be a use for my old 486SX-33 Gateway laptop with 8MB RAM? > Hmmm. Maybe I could turn it into a linux terminal... It needs a NIC, though... > > Anybody done this? Made a linux terminal using an old laptop. Is 8MB and a > 486SX-33 enough horsepower for an X-Terminal? Depends on your video card. 8Mb is pushing the lower limit for a decent X server because typically, X will use about 3Mb of RAM. You will need swap. But once X is up and running, shouldn't be too bad. I've never tried with a 486 laptop because you can't change the video card, and almost all 486's need to have a better video card (and of course you'll connect a better monitor to the laptop). Ciao, David A. Bandel -- Focus on the dream, not the competition. -- Nemesis Racing Team motto Internet (H323) phone: 206.28.187.30 ___ Linux-users mailing list Archives, Digests, etc at http://linux.nf/mailman/listinfo/linux-users
Re: ssh public key
On Mon, 17 Dec 2001 11:44:07 +1000 Keith Antoine <[EMAIL PROTECTED]> wrote: [snip] > > Many thanks David, I was totally unsure whether that file would suffice. > I trust that you and yours have a very Merry Xmas and holiday period. > Best of the holidays to you and yours as well. Ciao, David A. Bandel -- Focus on the dream, not the competition. -- Nemesis Racing Team motto Internet (H323) phone: 206.28.187.30 ___ Linux-users mailing list Archives, Digests, etc at http://linux.nf/mailman/listinfo/linux-users
Re: ssh public key
On Mon, 17 Dec 2001 10:44:52 +1000 Keith Antoine <[EMAIL PROTECTED]> wrote: > I have a need to send the ISP that I am dealing with a ssh public key so as > he can include this in the sshd. I can then login and do maintenance on > Eastwind site instead of dialin that I no longer have. He said that i need to > export the key and send it to him; can anyone tell me what it is I need to do > to 'export' the key. Something was ssaid about it haning a 'begin' and "end' > statements. What I can find is all on one line and no statements. cd to $HOME/.ssh you should have a file called identity.pub send that The begin and end I've only seen on PGP keys. Ciao, David A. Bandel -- Focus on the dream, not the competition. -- Nemesis Racing Team motto ___ Linux-users mailing list Archives, Digests, etc at http://linux.nf/mailman/listinfo/linux-users
Re: ping - ignore
On Fri, 14 Dec 2001 19:05:50 -0700 Dave Anselmi <[EMAIL PROTECTED]> wrote: > "David A. Bandel" wrote: > > > > Nobody in this group can ignore! Sendmail is a principal reason why > > > linux will never appeal to the masses. > > > > This is a good example of a daemon 99.9% of Linux users should never use. > > My two MX boxes run sendmail. No other system does (and shouldn't). If > > you don't have an MX address pointing to the box, it shouldn't be running > > a mail server. > > I agree, and I try to set my systems up that way (well, exim slipped through > on one debian system). And you mean any mail server, not just sendmail. correct. > > In that case though, what do you do with programs like cron or other servers > that want to notify someone by mail (even if someone is local to the box)? I > expect there's a way to do it, but I've never seen a discussion that didn't > involve an MTA. there's a big difference between having sendmail installed and having it running (accepting on port 25). Programs can invoke sendmail without sendmail running. What I'm talking about (and most of the configurations entail) is having it listening on a socket 24x7. There are also Perl programs like send-email (? -- need to check on Freshmeat) that are much lighter and will do the job admirably. You just point them at your e-mail server (the one authorized to send e-mail to the world that you can relay through -- no, not the thousands of Korean open relays, your official, legal mail server). Ciao, David A. Bandel -- Focus on the dream, not the competition. -- Nemesis Racing Team motto ___ Linux-users mailing list Archives, Digests, etc at http://linux.nf/mailman/listinfo/linux-users
Re: mystery with mke2fs -j
On Sat, 15 Dec 2001 08:01:51 +1000 Keith Antoine <[EMAIL PROTECTED]> wrote: > On Saturday 15 December 2001 03:27, Net Llama enunciated: > > > > Yes, I know, but here no fdisk or change to partition tables, just > > > creting an empty fs - one works, one doesn't. > > > > Hrmmm...what's the '-j' switch? I can't find any reference to it in the > > man page. > > Have no idea if this has any bearing, seeing it works on one and not the > other. > The -j switch is used by tune2fs to install a journel to the ext2 fs and > enable it as ext3. I am unsure as i cannot find the switch as applied to ext2. and the answer is: root:~# mke2fs -? mke2fs 1.25 (20-Sep-2001) mke2fs: invalid option -- ? Usage: mke2fs [-c|-t|-l filename] [-b block-size] [-f fragment-size] [-i bytes-per-inode] [-j] [-J journal-options] [-N number-of-inodes] [-m reserved-blocks-percentage] [-o creator-os] [-g blocks-per-group] [-L volume-label] [-M last-mounted-directory] [-O feature[,...]] [-r fs-revision] [-R raid_opts] [-qvSV] device [blocks-count] the -j option for mke2fs debutted in 1.20. Caldera has 1.19. Ciao, David A. Bandel -- Focus on the dream, not the competition. -- Nemesis Racing Team motto ___ Linux-users mailing list Archives, Digests, etc at http://linux.nf/mailman/listinfo/linux-users
Re: ping - ignore
On Fri, 14 Dec 2001 04:16:23 -0700 Collins Richey <[EMAIL PROTECTED]> wrote: > On Thu, 13 Dec 2001 23:48:26 -0700 Myles Green > <[EMAIL PROTECTED]> wrote: > > > On Fri, 14 Dec 2001 00:36:42 -0500 > > [EMAIL PROTECTED] wrote: > > > > > I hate sendmail. > > > > me too ;) > > > > Nobody in this group can ignore! Sendmail is a principal reason why > linux will never appeal to the masses. This is a good example of a daemon 99.9% of Linux users should never use. My two MX boxes run sendmail. No other system does (and shouldn't). If you don't have an MX address pointing to the box, it shouldn't be running a mail server. Ciao, David A. Bandel -- Focus on the dream, not the competition. -- Nemesis Racing Team motto ___ Linux-users mailing list Archives, Digests, etc at http://linux.nf/mailman/listinfo/linux-users
Re: CDRW
On Tue, 11 Dec 2001 13:20:07 -0500 "Herbert H. DeLong" <[EMAIL PROTECTED]> wrote: > Is there a CDRW or CDW on the market and usable in Linux for a > 486DX2-66Mhz? How much RAM do you have? I highly recommend you go SCSI on the system you describe above. Two things about writing a CD: 1 - you can't let the buffer empty 2 - the system must be fast enough (or the disk write slow enough) that the write is never interrupted either of the above will guarantee an unusable CD > Also where is it available? I use COL e2.4. > > > Ciao, David A. Bandel -- Focus on the dream, not the competition. -- Nemesis Racing Team motto ___ Linux-users mailing list Archives, Digests, etc at http://linux.nf/mailman/listinfo/linux-users
