Re: [newbie] [OT] usb electric shock while connecting is shutting down computer
From: "Philippe Landau" <[EMAIL PROTECTED]>
> when i plug in my new Data-Tec D350U USB 2 external harddisk,
> i see a small electric flash which can cause
> my PC to shutdown instantly.
> i know USB is powered, carrying a small voltage,
> so the flash is not unexpected.
> also as it is used to send control signals
> i can understand that it powers down my PC.
> but it is risky for my data,
> so i would like to know if others saw that happen too.
>
> kind regards philippe
Did you discharge static electricity before plugging in the USB connector?
The flash is NOT expected. There's not really enough current that should
be drawn to create such a flash.
{^_^}
Want to buy your Pack or Services from MandrakeSoft?
Go to http://www.mandrakestore.com
Join the Club : http://www.mandrakeclub.com
Re: [newbie] Firewall for allowing ports selectively
From: "frengoGorgia" <[EMAIL PROTECTED]>
> Il mar, 2005-04-05 alle 21:05, Anne Wilson ha scritto:
> > On Tuesday 05 Apr 2005 19:37, jdow wrote:
> > >
> > > The cute problem is when you want to read a pdf file in your browser.
> > > It is probably better to save the pdf file and only allow AcroRead to
> > > access local files.
> >
> > I do tend to view the pdf in a browser first, then save it if it looks
useful.
>
> Anne ,
> when you open a Pdf embed in a web page ,your browser download it in its
> cache so you have a copy saved locally .
> So it's the same thing open the pdf or save it and display later
Are you sure it works that way, Frengo? There are indications that at
least one "widely distributed" (more's the shame) Web browser launches
AcroRead to reside in the browser window and passes it the file name
so that the file is downloaded by AcroRead.
{o.o}
Want to buy your Pack or Services from MandrakeSoft?
Go to http://www.mandrakestore.com
Join the Club : http://www.mandrakeclub.com
Re: [newbie] Firewall for allowing ports selectively
From: "Bryan Phinney" <[EMAIL PROTECTED]>
> On Tuesday 05 April 2005 06:26, Anne Wilson wrote:
>
> > > An app that knows the difference between these two things? That's not
> > > asking for much now, is it? If I could build such a thing, nobody on
> > > this group could afford it, Cisco and the other router manufacturers
> > > would be in a bidding war to buy it for themselves.
> >
> > No, a user that knows the difference.
>
> Should have been more clear here. Two scenarios, first a user that has
access
> which I covered below, second, an app that can do it at root level without
> user access which I was pointing out is quite a stretch.
>
> > > If you have a single personal firewall-like app for Linux, that
problem
> > > is solved. If you install such an app and count on it to protect you
> > > from insecure software, you are living in a fool's paradise.
> > >
> > > Again, I don't have any problem with someone coding this, nor with
> > > running it, I simply don't see the point. It is "Windows" dressing,
> > > nothing more.
> >
> > I don't think so. I accept that it is not good control, but the
> > alternative seems to be complete absence of control. If an application
> > needs to reach out to get data, as Acrobat Reader does, then it has to
have
> > that ability, and I see no reason why it could not equally well send out
> > packets. Perhaps that's because I don't understand firewalling deeply
> > enough, but the discussions on both lists are not explaining the things
we
> > need to understand, like this point.
>
> Well, let's cover that really quickly. If Acroread is only being used to
> access local data, it needs no Internet access at all. Thus, you could
> firewall it off and still use it. However, as I understand things, it
> integrates into a browser and may actually pull the pdf file itself.
> Assuming that is the functionality you want, there is an outgoing request
to
> pull the data from the web, and then incoming packets that contain the pdf
> file. You could probably block posts which is what is being suggested,
but
> this implies an intimate knowledge of the workings of the app, knowing
what
> to block versus accept. Given the audience for this, I think that assumes
> entirely too much.
>
> Also, if Acroread is really using embedded javascript/java for this type
of
> thing, it is possible that someone can code the web bug such that
> communication is sent on a port other than port 80 and well above what
would
> be considered a security area that fits within the first 1024 ports.
Again,
> this requires some type of intimate knowledge of what is being done and
thus
> what needs to be blocked.
So you simply block all ports for AcroRead. That's as easy as only
blocking port 80.
The cute problem is when you want to read a pdf file in your browser.
It is probably better to save the pdf file and only allow AcroRead to
access local files. So watch, the Acrobat people will include a little
app that AcroRead talks to and that little app accesses the net. It has
a different name so it can still communicate. You get into an arms race
quite literally.
It may be that the way to handle this is in the court of public opinion.
Spray this information around to all your friends. If they stop using
AcroRead and use other tools instead maybe Adobe will get the message.
(For that matter - why use AcroRead on Linux, anyway?)
{^_^}Joanne
Want to buy your Pack or Services from MandrakeSoft?
Go to http://www.mandrakestore.com
Join the Club : http://www.mandrakeclub.com
Re: [newbie] back to Windows
From: "Aron Smith" <[EMAIL PROTECTED]>
> On Monday 04 April 2005 09:16 pm, Mikkel L. Ellertson wrote:
> > Ron Hunter-Duvar wrote:
> > >On April 2, 2005 05:26, Daniel Anderson wrote:
> > >>On Friday 01 April 2005 04:49 pm, Erylon Hines wrote:
> > >>>On Friday 01 April 2005 12:40 pm, Daniel Anderson wrote:
> > >>>| I'm going back to my TRS80 model 4.
> > >>>|
> > >>>| Dan
> > >>>
> > >>>OMG! I had one of those. I think it cost- like -
> > >>>$1650, which is probably about $10,000 in today's dollars.
> > >>
> > >>I still have mine, still works, dabbled a little in basic with it. I
put
> > >> in the extra memory and two 720k drives. Paid $50 for it used.
> > >>
> > >>>And the first 386/25. I still have that laying around somewhere, or
at
> > >>>least pieces of it--4 MEGS of RAM-whoo hoo--that was one hell of a
> > >>>machine. I actually ran Linux on it, for a while, kernel 1.x
something,
> > >>>maybe 1.2, I can't remember exactly. Yup, them were the good ole
days.
> > >
> > >I've got you all beat. I started on a Cosmac Elf with 256 bytes of
static
> > > ram, a hex keypad and 2-digit 7-segment display! An RCA-1802, the best
8
> > > bit cpu ever built. Composite tv output (40x25), and audio tape
storage
> > > were also available. My brothers and I soldered the components onto
the
> > > motherboard ourselves.
> > >
> > >And I walked to work bare feet in the snow, 5 miles, up hill both ways
> > > 8^).
> >
> > Do you really want to start comparing who has the oldest hardware
> > sitting around? I think there is a lady on this list that has us all
> > beat. (Especial after I junked the model 33 teletype last year.)
> An ASR 33? I would have killed to get one of those back in the old days
:-D
Not worth it. Traditionally the earliest amateur computers were built
out of Strowger relays and pinball machine parts. As for earliest "micro-
computer" I have a friend who still has his 4004 based computer. (And for
what it is worth perhaps the earliest micro-computer multitasking OS
went into the OM-55 satcom modem for the Navy. It was built by Magnavox
in Torrance back when 8080s were about $100-$150 a piece. On the other
paw there may be something even older than that. But COSMAC ELF is a piker.
Trust me on that one. Even my Processor Technology Sol PC is relatively
new on the block compared to the first toys out there. (6502 based
thingies need not apply. And I think the Sol PC design predated the
COSMAC and F8 chips, too.)
(I passed up acquiring a mostly built Altair when its owner died of
pancreatic cancer. I was playing with bigger iron, some nice Hewlett
Packard 8500 consoles based on their 2100S mini-computer. I built
myself a nice interactive circuit analysis program. That was before
"They" discovered I could commit software as well as design fancy
Radio Frequency electronics. All of which is mooted by the couple
people I know who built pinball machine and Strowger relay based
"things".)
{^_-} Joanne
Want to buy your Pack or Services from MandrakeSoft?
Go to http://www.mandrakestore.com
Join the Club : http://www.mandrakeclub.com
Re: [newbie] back to Windows
From: "riccardo" <[EMAIL PROTECTED]>
> On Saturday 02 April 2005 03:11 am, Josenildo Marques wrote:
> > that a seemingly stupid message can bring out good
> > memories
>
> ~ likewise, i too have best memories of TRS80
> ~ it had terrific Manual , with interesting illustrations and great
> teaching method.
I had a Processor Technology Sol PC, which morphed into a more normal
S100 bus machine that I used until a short while after 19851102, the
"birth date" of my Amiga 1000. I adopted Amigas to my heart - and
still rather like them and their UI innovations. (Liked Amigas so
much I even added a Linux kernel hack for correctly reading Amiga
hard disk partitions. That was easy since I wrote the most commonly
used Amiga hard disk partitioning tool.)
{^_-}(Yeah, I am "THAT" jdow.)
Want to buy your Pack or Services from MandrakeSoft?
Go to http://www.mandrakestore.com
Join the Club : http://www.mandrakeclub.com
Re: [newbie] back to Windows
From: "Hugh Dixon" <[EMAIL PROTECTED]>
> [JDOW>>] April Fools has existed since the days of the Roman Empire.
>
> {^_-}
>
Did the Romans get to Brazil?
[JDOW>>] Rumor has it that this ancient Roman (and perhaps earlier)
tradition may have made it to Brazil via Portugal. A lot of other
things may have, too. But that's only rumor. I didn't see if with my
own eyes. (I'm ancient, but not THAT ancient.)
{^_-}
Want to buy your Pack or Services from MandrakeSoft?
Go to http://www.mandrakestore.com
Join the Club : http://www.mandrakeclub.com
Re: [newbie] back to Windows
From: "M.Schild" <[EMAIL PROTECTED]>
> I'm going to uninstall this OS as soon as possible from my computer... I
> can't stand it any longer. Linux sucks !
> And I'm going to get a Microsoft Certificate and install Windows XP,
> which I have never used.
> Linux has no future ! And this list sucks, too ! Fare you well !
So they have an april´s fool in Brazil too? :-)
Maryse
[JDOW>>] April Fools has existed since the days of the Roman Empire.
{^_-}
Want to buy your Pack or Services from MandrakeSoft?
Go to http://www.mandrakestore.com
Join the Club : http://www.mandrakeclub.com
Re: [newbie] back to Windows
From: "Anders Lind" <[EMAIL PROTECTED]>
> >
> > What exactly do you mean by troll ?
>
> A person that just post an inflammatory email with the only
> reason to start a fight
>
> /anders
If you apply for a return of your leg with proper respect and humility
I am sure it will be returned, Anders.
{^_-}
Want to buy your Pack or Services from MandrakeSoft?
Go to http://www.mandrakestore.com
Join the Club : http://www.mandrakeclub.com
Re: [OT} amusing sig block was Re: [newbie] Network Card Not Working in Full Duplex Mode
From: "Mikkel L. Ellertson" <[EMAIL PROTECTED]>
> jdow wrote:
> > From: "Amy" <[EMAIL PROTECTED]>
> >
> >>"Several friends have asked me if I will again leave the country. In
> >>light of the failure--a second time--to count all the votes, that
> >>won't be necessary. My country has left me."
> >> ~Greg Palast
> >
> >
> > Oh, that's no problem as the Washington State people discovered. Keep
> > looking for ballots until you find enough to elect your candidate. See,
> > no problem at all. Pretty soon we'll see a candidate win with more
> > votes counted than there were registered voters
> >
> > {^_-} But that's all off topic. (It'd be fun to have one of those
> > GMail invites so I could say I threw one away, too. *I* am
> > not going to let Google store all my email No WAY!)
> >
> >
> I was thinking of one to replace one of my other "throw away" accounts.
> You know, the ones you use when need an email account for something, but
> you know it is going to get flooded with SPAM because you used it. :-)
>
> Mikkel
I have that one solved. "myjunk" is the sort of name that even
spammers ignore. The account I have with that sort of name on it is the
second cleanest I have. Even the account "only for special friends" gets
the rare spam to it. The spammers "guess" at the name to use based on
my email headers.
{^_-} (And yes, I am a Charles Addams fan. I remember avidly searching
New Yorker magazine whenever I was visiting my grandparents. His
cartoons and "The Yeggs" were by favorites. I like absurdities
if they are gently promulgated. And now I need some real Girl
Scouts for my cookie recipe)
Want to buy your Pack or Services from MandrakeSoft?
Go to http://www.mandrakestore.com
Join the Club : http://www.mandrakeclub.com
[OT} amusing sig block was Re: [newbie] Network Card Not Working in Full Duplex Mode
From: "Amy" <[EMAIL PROTECTED]>
> "Several friends have asked me if I will again leave the country. In
> light of the failure--a second time--to count all the votes, that
> won't be necessary. My country has left me."
> ~Greg Palast
Oh, that's no problem as the Washington State people discovered. Keep
looking for ballots until you find enough to elect your candidate. See,
no problem at all. Pretty soon we'll see a candidate win with more
votes counted than there were registered voters
{^_-} But that's all off topic. (It'd be fun to have one of those
GMail invites so I could say I threw one away, too. *I* am
not going to let Google store all my email No WAY!)
Want to buy your Pack or Services from MandrakeSoft?
Go to http://www.mandrakestore.com
Join the Club : http://www.mandrakeclub.com
Re: [newbie] Microsoft overrules EU Council
From: "Fernando Arturo Gómez Flores" <[EMAIL PROTECTED]>
> - Original Message -
> From: "Duncan Anderson" <[EMAIL PROTECTED]>
> > Stephen Kühn wrote:
> >
> > >On Mon, 2005-03-07 at 23:13, Kaj Haulrich wrote:
> > >
> > >
> > >>Here's to democracy, EU-style :
> > >>
> > >>http://wiki.ffii.org/Cons050307En
> > >>
> > >>In short : The Microsoft puppet-state Luxembourg denied council
> > >>members from Poland, Portugal and Denmark their request to change
> > >>the Directive on Software Patent from an A-item to a B-item.
> > >>
> > >>So friends, that was it : forget about software development in
> > >>Europe.
> > >>
> > >>Kaj Haulrich.
> > >>
> > >>
> > >
> > >That is completely ridiculous.
> > >Hell is going to break loose and there are going to be heaps of very
mad
> > >folks.
> > >
> > >I don't think they'll get away with it.
> > >
> > >
> > Huh, this is the kind of dictatorial fascism that Europe is so good at.
> > They have proved it over and over again in the past, so why should this
> > be any different? Greed rather than justice, for ever!
> >
> > Bunch of Nazis!
> >
> >
>
> Pardon me? Are you blamming Europe? Haha, wasn't U.$. who allowed
Microsoft
> to become such a huge beast? Isn't the U.$. responsable for the "savage
> capitalism"? Didn't the U.S. destroyed all communism efforts in the world
> (and I'm not talking about the USSR-like governments and no, I'm no
> communist)? I think it is only that Europe is being infected with U.$.
> "savage capitalism", that's all. If we pretend to "free" Europe, we should
> be working first on "Free" the U.$. That's why it is very interesting
> finding non-profit people like GNU community ACTUALLY in the U.$.
>
> By the way, sooner or later, the entire Latin american market will be
flood
> with Microsoft's policies if we don't act quickly. While L.A. countries
are
> developing their economies, there is a huge oportunity for Unix to become
> The O.S. in these markets (because Unix can reduce costs for the
enterprises
> and governments). This is our opportunity to "vaccinate" L.A. from U.$.
> "savage capitalism", and I really hope we all can do something (i.e.
> Mandrake in Brazil). I'm doing my part here in Mexico, by selling cheapest
> computers with Linux installed, offering cheapest Web Hosting in Linux
> servers and by writting cheap commercial programs and systems for Unix and
> POSIX O.S. =).
Lest we forget, Sony and other "Entertainment Industry" companies are
very pro DMCA and software patents as a means of "protecting" their
supposed "rights" with regards to copy protection and the like. It really
does look like the science fiction scenarios with large corporations
being the real world rulers, often fighting formal wars with each other,
is coming to pass. It ain't gonna be purty folks.
{^_^}
Want to buy your Pack or Services from MandrakeSoft?
Go to http://www.mandrakestore.com
Join the Club : http://www.mandrakeclub.com
Re: [newbie] Microsoft overrules EU Council
From: "Duncan Anderson" <[EMAIL PROTECTED]>
> Stephen Kühn wrote:
>
> >On Mon, 2005-03-07 at 23:13, Kaj Haulrich wrote:
> >
> >
> >>Here's to democracy, EU-style :
> >>
> >>http://wiki.ffii.org/Cons050307En
> >>
> >>In short : The Microsoft puppet-state Luxembourg denied council
> >>members from Poland, Portugal and Denmark their request to change
> >>the Directive on Software Patent from an A-item to a B-item.
> >>
> >>So friends, that was it : forget about software development in
> >>Europe.
> >>
> >>Kaj Haulrich.
> >>
> >>
> >
> >That is completely ridiculous.
> >Hell is going to break loose and there are going to be heaps of very mad
> >folks.
> >
> >I don't think they'll get away with it.
> >
> >
> Huh, this is the kind of dictatorial fascism that Europe is so good at.
> They have proved it over and over again in the past, so why should this
> be any different? Greed rather than justice, for ever!
>
> Bunch of Nazis!
That is an uncalled for aspersion, Duncan. However, I would remark that
Europe has centuries of tradition with autocratic governments. Their
tradition with a voter based government at any level, Republic or outright
Democracy, is rather thin on the ground. Autocracy is the natural form of
government in much of Europe. "Democracy" (starting out as something a bit
different called "Republic") is the basic tradition in the US. The US was
settled by hard working people who were fed up to here with the
European autocrats. So we never developed the autocratic tradition. (And
if you look at the behavior of our Senate, in particular, be afraid,
be very afraid. It may be that autocracy is the natural form of government
for homo-sapiens. Look to gorilla packs, bonobo packs, and chimpanzee
packs and ask what form of "governance" they have.) "Bunch of Monkeys"
might be the better aspersion to cast.
{^_^}
Want to buy your Pack or Services from MandrakeSoft?
Go to http://www.mandrakestore.com
Join the Club : http://www.mandrakeclub.com
[newbie] Ping?
Did I say too much and get knocked off the list or did it REALLY go
silent all of a sudden.
{O.O}
Want to buy your Pack or Services from MandrakeSoft?
Go to http://www.mandrakestore.com
Join the Club : http://www.mandrakeclub.com
Re: [newbie] Give spamassassin a chance?
From: "Fajar Priyanto" <[EMAIL PROTECTED]>
> On Friday 25 February 2005 10:33 pm, Tango Echo wrote:
> > Have any of you successfully setup a spamassassin
> > proxy on Mandrake for a medium sized network? I'm
> > thinking of purchasing a barracuda device for spam
> > filtering, but thought of giving OSS a chance 1st.
> > But is it worth it, or will it require lots of time
> > reading docs and configuring? I seem to be finding
> > that OSS may only work in networks where the admin
> > isn't low on free time since RTFM seems to be the
> > mantra. Sure, the commercial packages are expensive,
> > but you get what you need right away. Would a SA
> > proxy be as simple as building a 10.1 box w/2 NICs,
> > installing webmin and SA, then doing a quick config
> > thru webmin?
> >
> > TIA
>
> Well, if you talk about a total newbie here, I mean in terms of setting up
> mail server, antivirus dan spamassassin, you'd better off with the
commercial
> one. But, I have setup qmail+clamav+spamassassin and the performance in
> filtering out virus and spam is quite good. We even can train spamassassin
to
> recognize spam using bayes probability, this is most effective.
For my single user case I accept a few false hits for the LKML because
I must filter them or accept that they are a spam relay mailing list
and accept the spam. Otherwise I have about one per week escape the
spam filters and a few people who persist in using broken mailers
falsely trigger the spam filters.
Out of 1200 or so messages per day roughly 100 to 180 are spam and
of that maybe 1 or 2 a week escape the filtering. Of the remaining
hams about 1 or 2 per day from one particular person gets triggered
as spam. Off hand I would say that better than 99.9% spam captured
and less than 0.1% ham falsely tagged is not had at all.
{^_-}
Want to buy your Pack or Services from MandrakeSoft?
Go to http://www.mandrakestore.com
Join the Club : http://www.mandrakeclub.com
Re: [newbie] Give spamassassin a chance?
From: "Tango Echo" <[EMAIL PROTECTED]>
> Have any of you successfully setup a spamassassin
> proxy on Mandrake for a medium sized network? I'm
> thinking of purchasing a barracuda device for spam
> filtering, but thought of giving OSS a chance 1st.
> But is it worth it, or will it require lots of time
> reading docs and configuring? I seem to be finding
> that OSS may only work in networks where the admin
> isn't low on free time since RTFM seems to be the
> mantra. Sure, the commercial packages are expensive,
> but you get what you need right away. Would a SA
> proxy be as simple as building a 10.1 box w/2 NICs,
> installing webmin and SA, then doing a quick config
> thru webmin?
Well fr33 (may I call you that for short?) may I suggest a good place
to spend some time hanging out would be the SpamAssassin user's list.
It can be found at mailto:[EMAIL PROTECTED] It
will undoubtably prove to be a good friendly place for your learning
experience. (Hint, the SpamAssassin documentation could use some rather
sincere help.) {^_-}
There are some problems with SA 3.0.2 that may mitigate against using
it in a production environment. SA 2.64 does not have this problem; but,
it lacks features. The problem is peculiar. The site wide setup involves
"spamc" and "spamd". Spamc is a tool that accepts a message, feeds it to
spamd (the daemon) for processing via an ip connection, and then spits
the message back out for further processing. (I call it via procmail
here.) Spamd spawns several children that perform the actual processing.
It is something like Apache in this respect. The spamd children are
reused once they are freed by a current use. I and a couple others have
discovered that a setup which allows per user rules does not work right
for any given spamd the second time a given spamd is used. The first
time it picks up the per user rules and scores just fine. The second
time it fails to pick up the per user scores even though it picks up
the rules just fine.
This is not likely to affect a typical office use for SpamAssassin.
Per user rules are regarded as "risky" even though no known risk beyond
a generic aversion to running "any old user rule" has been found. So
the only time to use 2.64 is when you see enough plus side with "safe
users who are clever enough to write their own rules." Otherwise use
3.0.2 and enjoy. It is nice.
Once you have it installed visit http://www.rulesemporium.com/. The SARE
Ninjas are the spammer's worst nightmares shy if the FBI stopping by to
arrest them. The various rule sets on the site are very well maintained
and very effective for tagging spam versus ham. I ever so highly recommend
the work of the Ninjas. (And once YOU get the knack of writing regular
expressions for rules feel free to pass them along.)
{^_^} Joanne
Want to buy your Pack or Services from MandrakeSoft?
Go to http://www.mandrakestore.com
Join the Club : http://www.mandrakeclub.com
Re: [newbie] Thunderbird problems
From: "Rosemary McGillicuddy" <[EMAIL PROTECTED]>
> > if the program hangs you type on in your konsole ps -ef | grep
> > thunderbird You will see serveral processes. Kill those processes
> > using kill -9 the xxx is the pid number that needs to be killed.
> >
> > hope that helps
> > kevin
>
> Hi Kevin
> the straight line after ef and before grep is a forwards slash?
> Thanks
> Rosemary
No. It is the upper case version of the backslash. "/" = slash,
"\" = backslash, "|" is a vertical bar or "pipe" in the parlance.
{^_^}
Want to buy your Pack or Services from MandrakeSoft?
Go to http://www.mandrakestore.com
Join the Club : http://www.mandrakeclub.com
Re: [newbie] OT humour
From: "Aron Smith" <[EMAIL PROTECTED]>
> On Tuesday 22 February 2005 09:31 am, [EMAIL PROTECTED] wrote:
> > If this is old I apologise but it's new to me.
> > http://nolte-net.de/en/article/unix_hotline.html
> I like the one on their site which will make sense if you are an
> Abbot & Costello fan
> Unix tech support
==8<--
[EMAIL PROTECTED] root]# what
-bash: what: command not found
==8<--
We have identified a major error in Mandrake. The missing "what" command
must be replaced soonest or I'll have to do something drastic like turn
my firewall machine into a Windows machine.
{O,o}
Want to buy your Pack or Services from MandrakeSoft?
Go to http://www.mandrakestore.com
Join the Club : http://www.mandrakeclub.com
Re: [newbie] NTP
From: "Rosemary McGillicuddy" <[EMAIL PROTECTED]>
> On Fri, 18 Feb 2005 17:53, Mikkel L. Ellertson wrote:
> > Rosemary McGillicuddy wrote:
> > > Thought I had installed NTP using software installer but this is what
I
> > > get in terminal.
> > >
> > > [EMAIL PROTECTED] rosemary]$ ntpd -q
> > > bash: ntpd: command not found
> > > [EMAIL PROTECTED] rosemary]$ which ntp
> > > which: no ntp in
> > >
(/usr/bin:/bin:/usr/bin:/usr/local/bin:/usr/X11R6/bin/:/usr/games:/home/r
> > >osemary/bin) [EMAIL PROTECTED] rosemary]$
> > >
> > >
> > >
> > > It doesn't appear to have installed.
> > >
> > > I'll try looking at log files if I can work out how to find them
> > >
> > > Thanks
> > > Rosemary
> >
> > Rosemary,
> > This is because ntpd in in the /usr/sbin directory, and that is not on
> > the path of a normal user. You would have to use "/usr/sbin/ntpd -q"
> > instead. I am not sure, but I suspect you have to be root for it to
> > actually change the system time.
> >
> > Mikkel
>
> Hmmm - it is in /etc and has ntp.conf there. Instructions say to add a
line
> to that file but I can't find how to get into it - I am a newbie! Been
> looking at linux command pages but stuck.
> Solong as I don't boot to windows the time is fine anyway!
Rosemary, you must su to root, "su -l" then enter the root password.
Then you can edit /etc/ntp.conf. When you are done you must issue a
a restart to the ntp daemon, "service ntp restart". Then you can ^D
out of the su session.
It is also best if you append "noapic nolapic" to the boot commands
so that the PIC is not in use. The APIC is supposed to make things
faster. So of course it makes it slower for ntp, or something. It gets
horrid jitter and time synchronization is poor without those commands.
{^_^}
Want to buy your Pack or Services from MandrakeSoft?
Go to http://www.mandrakestore.com
Join the Club : http://www.mandrakeclub.com
Re: [newbie] Dumbest test I've ever seen
From: "Kaj Haulrich" <[EMAIL PROTECTED]>
> Don't bother looking here :
>
>
http://www.choice.com.au/viewArticle.aspx?id=104575&catId=100276&tid=18&p=1
>
> And here I thought the Aussies were bright :-(
>
> Stephen and Franki : don't you have asylums down under ?
>
> Kaj Haulrich.
The criteria were somewhat weak. But given that it was a journalist
who did the tests and installs it is fair to consider him to be more
of a talking head mentality than a technoid mentality. That is fair,
too. He was performing his tests for Aunt Tilly not for the average
highly computer literate technoid such as we are or are approaching
as a state of being.
Mandrake is not ready for Aunt Tilly. Although it does install and
come up usable. It is enough different that people used to Apples,
as I suspect is the case with the reviewer, are not going to get
along with Mandrake/KDE all that well. (I noticed he had faults
with Windows in this regard that seem a little off the mark.) I
note that the reviewer is not particularly security conscious.
Otherwise the scores would be tilted quite differently than they
were with Apple and Linux getting far higher scores than Windows.
The reviewer was a journalist (dumb about tech to begin with)
writing for Aunt Tillies.
(As an aside, if you think a journalist's review of the OSs tested
is far off base do remember that it is journalists who are largely
shaping your opinions of what is going on in the world today with
their biases and outright ignorance as a starting point. Just
contemplate the point. It's not worth debating.)
{^_-} (I rather like Linux over the years I've used and abused it.
I very much liked AmigaDOS in its day. I make my income off
Microsoft's OS. It has some nice near real time characteristics
and is the only OS supported for Matrox Digisuite cards. But
when it comes to Macs I am severely challenged to get them to
do anything but what THEY want to do. I guess I'm dumb with them
or they require a mode of thinking I'm not good at.)
Want to buy your Pack or Services from MandrakeSoft?
Go to http://www.mandrakestore.com
Join the Club : http://www.mandrakeclub.com
Re: [newbie]
From: "Igor B" <[EMAIL PROTECTED]>
> I want to get a code of all Linux including terminal with shell and
graphic environment
In a technical sense there is no way to do this. You can approximate it
many ways. The source for Linux itself can be obtained from www.kernel.org
with a complete record of all its versions, developmental and production
versions. (Good luck picking one that ideally suits you without a lot of
study before hand.) This alone is not particularly useful, either. It
has no particularly useful shell around it nor convenient ways to start
and manipulate the various services that are inherent in the kernel,
such few of them as there are.
Now, if you want all of the source for a particular distribution of
Linux you are still out of luck. Some source is not freely distributable.
Notable among this is the NVidia graphics drivers. You have to use their
binary distribution and take it on faith. You also get a very large
compilation of source code.
If your requirement is more sane and acknowledges that "all Linux" as
used in the vernacular may mean all of the Open Source portions of a
specific distribution then you can generally go to a mirror site for
that particular distribution and find the source. Mandrake, Red Hat,
Fedora, and probably some others use "rpm" as their packaging tool.
The source files are located in "SRPM" or "SRPMS" directories on these
sites. You have to commit some directory drilling to find them. But once
found they are quite obvious. Start at the top level for the mirror,
drill down until you find the distribution in which you are interested,
one presumes Mandrake if you ask here. For Mandrake you can drill into
"official/10.1" to get to the interesting material for the latest
material that is publicly available. Drill from there for the SRPMS
for the distribution. You may also want to visit "updates/10.1" to
find updated SRPMS for the updated packages since 10.1 was released.
The total download is probably 3 to 6 CDROMs. And unless you are running
a Linux system that is more or less up to date they are useless as a
stand alone. Bootstrapping Linux from raw source is not generally done
with Mandrake Linux. I understand this is Debian's initial install
mechanism, though. And once a minimalist Debian is installed you can
use it to build your own install CDROMs for Mandrake Linux if that is
your intent. Of course, the full set of SRPMS is interesting if you
wish to audit a few bullion lines of code for some reason, such as a
self appointed GPL policeman might wish to do. (And if you do find
something missing that should be there politely inform the Mandrake
people. I am sure they will rectify it as soon as their fingers can
trek the keyboard with the correct commands to do so.
{^_^}
Want to buy your Pack or Services from MandrakeSoft?
Go to http://www.mandrakestore.com
Join the Club : http://www.mandrakeclub.com
Re: [newbie] spam
From: "Anne Wilson" <[EMAIL PROTECTED]>
On Tuesday 04 Jan 2005 08:47, Martin Hardie wrote:
> Hi All
>
> I have been getting a load of mail with docs attached such as:
>
> xx.pif
>
> It is prompting me to consider some spam filter like spamassassin but i
> have no idea where to start
>
> any suggestions?
>
> Martin
http://mandrake.vmlinuz.ca/bin/view/Main/MaiL
<< Anne, once he gets there if he wants to use a splendid kludge to
<< allow something crappy like Outlook Express to be used as an MUA
<< and still enjoy easy training for new spam message formats that
<< slip through the filters I can help.
{^_-} It is a gnarly kludge but it works wonderfully for me.
Want to buy your Pack or Services from MandrakeSoft?
Go to http://www.mandrakestore.com
Join the Club : http://www.mandrakeclub.com
Re: [newbie] spam
From: "Martin Hardie" <[EMAIL PROTECTED]>
> Hi All
>
> I have been getting a load of mail with docs attached such as:
>
> xx.pif
>
> It is prompting me to consider some spam filter like spamassassin but i
have
> no idea where to start
>
> any suggestions?
Martin, for that kind of spam you need to consider a compound approach.
I'm happy with a simple postfix->procmail->nk-vir->SpamAssassin path.
Most want more AV protection and use ClamAV instead. I made the mistake
of learning at least some of the procmail syntax so that's easier for me
than setting Amavis and ClamAV with SpamAssassin.
Some things to remember.
1) SpamAssassin is not a filter. It is a spam scoring tool and annotating
tool. You use something following SpamAssassin to dispatch the spam to
/dev/null, a special spam folder, or a combination of those tricks.
2) ClamAV and nk-vir are at different ends of a spectrum of virus diverter
engines. I don't know ClamAV very well. But nk-vir diverts spam to a spam
storage place, on the linux machines. I check it there with the simple
command line utility, "mail". It is WAY too dumb to infect me with anything
other than a social engineering virus.
3) None of the above tools works without some form of wrapper and dispatch
engine, procmail, milters, Amavis, or the like. Budget a day or so to get
it working. (It is worth it. Once it's working your life becomes ever so
much easier.)
4) All of the above "feature" false positives. Given that "Murphy was an
optimist" there will be false positives that include your job offer from
Google or something else equally critical to your future. Budget a little
time, 10-15 minutes at the outside, to scan at least the titles of the
spams and viruses to make sure nothing critical got into your dumpster.
5) With SpamAssassin there is a phenomenon called add on rule sets. There
are many publicly available rule sets. IMAO the best is at the SARE,
SpamAssassin Rules Emporium. Visit it. Install the rule sets. Watch the
spam tagging accuracy climb dramatically.
6) With SpamAssassin you MUST train the Bayes filter on YOUR mail mix.
Collect at least 200 (1000 preferred) each of spams and hams that you
have personally vetted. Feed them to SpamAssassin's "salearn" tool.
Bayes will kick in nicely.
7) Personal prejudices re SA: Turn off automatic Bayes training and
automatic whitelisting, at least until Bayes is well trained and you
have achieved high accuracy spam filtering. I've watched many newbies
experience munged Bayes databases and whitelists (which are miss named
anyway) due to false training via the automatic training features on
newly installed SpamAssassins. The SpamAssassin WIKI is a help. Sadly
it could all be better documented. (If you actually LIKE writing
documentation and fighting spam the SA developers would welcome you with
open arms! And if you know someone who wants to employ a perl expert
who happens to like fighting spam, Duncan, the chief SA developer, needs
some summer employment. ANYTHING that we all can do to support this team
is worthwhile.)
8) If you experience difficulties the SpamAssassin users mailing list
at Apache.org is well worth your time and effort.
{^_^} Joanne
Want to buy your Pack or Services from MandrakeSoft?
Go to http://www.mandrakestore.com
Join the Club : http://www.mandrakeclub.com
Re: [newbie] folding@home
From: "Kenneth" <[EMAIL PROTECTED]>
> Is creeb a specialised computer science term or a typo error
> for creep? I found this as one of the definitions for creep:
Very local term for "quibble" or minor clarification.
{^_^}
Want to buy your Pack or Services from MandrakeSoft?
Go to http://www.mandrakestore.com
Join the Club : http://www.mandrakeclub.com
Re: [newbie] folding@home
From: "Kenneth" <[EMAIL PROTECTED]>
> When I run [EMAIL PROTECTED] ("nice" setting 19) the Gnome system monitor
> reports cpu usage at a 100% flatline without my running any other
> progs but Gnome and system monitor. This doesn't sound very "nice"
> to me - although it does appear that I can still run multiple major
> applications with no apparrent problems.
>
> Is this constant 100% cpu usage something I need to be
> concerned about?
That is exactly what nice 19 means, Kenneth. Whenever the CPU is not
idle this application is scheduled to run. If the machine is idle then
nothing else runs. (Of course, your CPI activity monitor will show that
it is taking some of the CPU since it runs at a higher priority.)
If ANY higher priority tasks are on the OS's ready queue, programs
that are ready to run rather than waiting on IO or a timer timeout,
these tasks will get scheduled in preference to the nice 19 task with
a minor creeb. I understand that there is a "fairness" factor calculated
into the Linux kernel that allows even a nice 19 surrounded by a hoard
of higher priority tasks a wee bit of time to run every now and then.
{^_^}
Want to buy your Pack or Services from MandrakeSoft?
Go to http://www.mandrakestore.com
Join the Club : http://www.mandrakeclub.com
Re: [newbie] boot CD
You might try reading the manual documentation provided with the CDs. {^_^} (And turn off html mail, please. It is a virus vector.)
Original Message -
From:
Song Sourisak
To: [EMAIL PROTECTED]
Sent: 2004 December, 21, Tuesday
18:53
Subject: [newbie] boot CD
Hi All,
How can I make a bootable cd with folders
containing the 3 CD of MDK 10.1?
I tried with Nero or Roxio EZ CD Creator
but it always ask me for the source of the image file (*.img). Hence, I
download a trial version of MagicISO or ISObuster ..but no
succes.
Can someone just give some lead becaue i'm
kinda lost.
TIA.
Song.
Re: [newbie] Re: The effect of
/initrd doesn't matter at all. /opt and /sys by definition must be
readable my normal users. /var is a general variable data storage
area for all users. As such at least portions of it must remain
read write. So by definition it, too, must remain read/write.
{^_^}Joanne
- Original Message -
From: <[EMAIL PROTECTED]>
>> . The /dev, /proc and /sys dirs have turned back to be readable by other
>> users, what I don't want.
>> Any other hints will be appreciated.
>>
> The system will not work with those set unreadable to other than root.
> {^_^}
I just checked and indeed, even with a sec level=4 and even 5,
some subdirs of '/' remains readable to normal users: /initrd, /opt, /sys
and /var (not /dev nor /proc though).
Thanks,
Rodolfo
Want to buy your Pack or Services from MandrakeSoft?
Go to http://www.mandrakestore.com
Join the Club : http://www.mandrakeclub.com
Re: [newbie] Re: The effect of 'chgrp' is not permanent?
From: <[EMAIL PROTECTED]>
. The /dev, /proc and /sys dirs have turned back to be readable by other
users, what I don't want.
Any other hints will be appreciated.
The system will not work with those set unreadable to other than root.
{^_^}
Want to buy your Pack or Services from MandrakeSoft?
Go to http://www.mandrakestore.com
Join the Club : http://www.mandrakeclub.com
Re: [newbie] Re: The effect of 'chgrp' is not permanent?
Basically, Rodolfo, you cannot do what you want. In reality Linux has
exactly one root account with multiple doors into the account, each
with slightly different characteristics and names for login. But they
are all the same account, account 0. So you can create all the root
accounts you want with all the names you want but they are still "root".
Linux is not Windows. Nor can it easily be bent to act like Windows in
this regard. You MIGHT be able to pervert SELinux to achieve the effect
you want, since it is access list based. However, your level of
ignorance in this regard betrays itself in your asking how to do this.
It is basically bloody stupid to attempt to run the machine as a user
with too many privileges. The really easy ability to run programs as
root or log a terminal session in as root for performing "rootish"
tasks makes living as a root account rather silly. It also means
you must run "chkrootkit" several times a day to keep your system
clean. You also must run urpmi several times a day to stay absolutely
up to date on security patches. Or else keep it as a hobby machine with
absolutely nothing personal or critical on it. In spite of the touching
comments here about Linux being virus free it is not compromise free.
It just has a longer lifetime when the typical configuration is exposed
to the Internet, days rather than minutes. Within a year it would not
really be your machine anymore even though you'd be paying the electric
bill to keep it running for its owner.
{^_^}
- Original Message -
From: <[EMAIL PROTECTED]>
Thanks Todd, thanks Richard:
Todd wrote:
>I really
>question the need to have your entire system group owned by a simple
>user. Sounds like a recipe for disaster to me. Better to su when you
>need to, or learn how to set up sudo.
Richard wrote:
>"Are you sure you know what you're
>doing?"
>
>To me this is highly dangerous from the point of view of system security
>and stability.
>
>What are you trying to achieve? There has to be a better way.
Todd, Richard:
if I only allow the group 'rodolfo' to read those directories
and not to modify them in any way, then I don't see the danger.
Anyhow, if the system tries so hard to oppose to what I'm doing
it's quite clear that I'm trying to achieve what I want the wrong way.
What I wish to do though is quite simple.
'rodolfo' is a normal user, but Rodolfo (me) is also the superuser,
whereas say, 'alberto' is only a normal user.
Then I wish to adopt for alberto a security level 4, i.e. alberto
should not be able to see the '/' nor the '/home' directory
(although he should be able to see and use the /mnt directory)
and for rodolfo a level security 2, i.e. he should be able to see
(but not to modify) the '/' dir and its subdirs.
Now, the command 'chmod' as far as I know cannot diversify different
permissions to different users: if I do, e.g., 'chmod -r /',
this will prevent *all* users (not only alberto) to read the '/' directory.
Even if I do 'chmod u-r /' or 'chmod g-r /' or 'chmod o-r /'
the problem remains unless I don't first change the ownership
of the dirs whose readability I want to attribute to rodolfo and not to
alberto.
That's why I did, under a security level 2:
# chgrp rodolfo /
# chgrp rodolfo /*
# chmod o-r /
# chmod o-r /*
# chmod o+rwx /mnt
# chmod g+rwx /mnt
; but, as we saw, the first two operations were not permanent.
Maybe you could suggest a better way to achieve this purpose?
Sorry if I was a little confusing, but the matter is not immediate to
explain.
Thanks,
Rodolfo
Regala e regalati Libero ADSL: 3 mesi gratis, navighi veloce e scarichi a
1.2 Mega.
Abbonati subito senza costi di attivazione su http://www.libero.it
>
> Want to buy your Pack or Services from MandrakeSoft?
> Go to http://www.mandrakestore.com
> Join the Club : http://www.mandrakeclub.com
>
>
Want to buy your Pack or Services from MandrakeSoft?
Go to http://www.mandrakestore.com
Join the Club : http://www.mandrakeclub.com
Re: [newbie] help on port forwarding
From: "amalasingh" <[EMAIL PROTECTED]>
> Folks,
>
> I am a mdk10.1 user. I am trying to access my localhost by
> typing my WAN IP address.
>
> But it just goes to the Router firewall page. I checked my
> router settings(especially virtual server configuration) all
> set correctly. Also confirmed with the router vendor.
>
> The vendor says we need technical expertise to forward the
> local server. Is that true? Do I need to have some networking
> knowledge to do forward even my http local server??
>
> I use just default ports(80)
>
> Please help me.
>
> Cheers
> Amala Singh
At a good guess it sounds like a router issue rather than a problem
on your computer. The Router needs to be configured to do the port
forwarding you want. You need the router manual for that, probably.
{^_^}
Want to buy your Pack or Services from MandrakeSoft?
Go to http://www.mandrakestore.com
Join the Club : http://www.mandrakeclub.com
Re: [newbie] Virus laden e-mail
I figure the damage is already done by the time it gets to that mailbox
over quota message. The Chinese government probably raises heck with the
ISP Word is that they snoop EVERYTHING.
{^_-}
- Original Message -
From: "J" <[EMAIL PROTECTED]>
> >Hey, Dude, where's your sense of fun? Every once and awhile I'll send an
> >email to the Chinese ISPs that forward spam to me thanking them for the
> >order for 10,000 Bibles telling them they'll be forwarded as soon as we
> >can get them onto the shipping container.
>
> Heh
>
> Every time I try to mail a Chinese ISP, I get "sorry, mailbox over quota"
> Humph.
>
> JRH
>
>
> - Original Message -
> From: "jdow" <[EMAIL PROTECTED]>
>
> > From: "J" <[EMAIL PROTECTED]>
> >
> > > JoeHill wrote
> > >
> > > I have resorted to doing a WHOIS on the domain name, and if any info
is
> > found to be false, taking it up with the registrar... at least the site
> gets
> > pulled, if only to pop up elsewhere a day or so later.
> >
> > Hey, Dude, where's your sense of fun? Every once and awhile I'll send an
> > email to the Chinese ISPs that forward spam to me thanking them for the
> > order for 10,000 Bibles telling them they'll be forwarded as soon as we
> > can get them onto the shipping container.
> >
> > {O.O}
Want to buy your Pack or Services from MandrakeSoft?
Go to http://www.mandrakestore.com
Join the Club : http://www.mandrakeclub.com
Re: [newbie] Virus laden e-mail
From: "J" <[EMAIL PROTECTED]>
> JoeHill wrote
>
> I have resorted to doing a WHOIS on the domain name, and if any info is
found to be false, taking it up with the registrar... at least the site gets
pulled, if only to pop up elsewhere a day or so later.
Hey, Dude, where's your sense of fun? Every once and awhile I'll send an
email to the Chinese ISPs that forward spam to me thanking them for the
order for 10,000 Bibles telling them they'll be forwarded as soon as we
can get them onto the shipping container.
{O.O}
Want to buy your Pack or Services from MandrakeSoft?
Go to http://www.mandrakestore.com
Join the Club : http://www.mandrakeclub.com
Re: [newbie] Virus laden e-mail
Glad I proved helpful once I had time to write an extended reply.
{^_-}
- Original Message -
From: "Inhabitant of Zion" <[EMAIL PROTECTED]>
> Hi
>
> OK I've read with interest some of your replies. It would seem that
> what I have actually been doing is rejecting any emails sent to me
> whereby the user is not registered on my server.
...
> Anyway it seems to have done the trick as the problem seems to have
> resolved itself.
>
> Cheers
>
> --
> John Willby Registered Linux user number 321644
Want to buy your Pack or Services from MandrakeSoft?
Go to http://www.mandrakestore.com
Join the Club : http://www.mandrakeclub.com
Re: [newbie] Virus laden e-mail
From: "Bryan Phinney" <[EMAIL PROTECTED]>
> On Thursday 16 December 2004 20:09, JoeHill wrote:
>
> > > Ideally what I want to do is to get my server to just say "Bog off"
> > > when the delivery attempt is made.
> >
> > Well, AFAIK, the only way to do that is with a bounce, and there's the
rub.
>
> Actually, not necessarily. In Postfix, if you setup to reject the message
you
> basically send a reject code 554 which tells the originating server that
the
> mail is rejected. It does NOT bounce to the FROM address, it actually
drops
> the mail at the connecting server. So, if this is a virus propagating
> machine, it is the one receiving the bounce, not the spoofed address.
Humble (moi! humble?) request, please be careful with terminology, even
if AOL and Microsoft are sloppy as hell. Bounce sends a message back to
the purported sender, [EMAIL PROTECTED] Rejects simply reject it from the
server forwarding the email to your mailbox. The purported sender is not
involved and never sees the failure unless something ELSE, like the sending
server, informs him of the error.
> If you are using fetchmail or the like and pulling mail from a server, you
are > indeed unable to drop the connection machine, however, most mail
servers that
> relay are set to simply drop mail when they receive a 554 reject code, so
no
> bounce message is ever sent, the mail just drops. Of course, some might
> actually try to send a reject to the From address assuming that is the
> originator, but with all the mail viruses today, most mail servers don't
> bother.
100% correct. If you use fetchmail you're stuck. Filtering is all you
can do. I reiterate SARE is WONDERFUL.
> However, for viruses, it is impossible to issue a 554 on connect because
the
> only way to know it is a virus is to download the body and by the time you
> get all of the mail, it is simply too late to reject it. So, the only
choice
> is to drop it yourself unless you want to go to the trouble of manually
> bouncing the mail to the From which would be pointless.
Mostly true. If you do notice them coming from a single IP address in
your mail logs you can use iptables to drop the packets on the floor.
> > Something to check out:
> >
> > http://agriroot.aua.gr/~nikant/nkvir/
> >
> > Just add it to your .procmailrc, follow the instructions to make sure
it's
> > config'd properly, and you can /dev/null them if you want (though it's
not
> > recommended). I've been using this recipe for over a year and only had
one
> > false positive.
>
> Also, you could install and run Amavis, amavis-new, etc. along with clamav
> which has Mandrake RPM's available. That will provide virus detection and
> filtering and gives you the option of disregarding all notification and
> dumping viruses or you can collect them and impress your friends.
>
> I have 8 different ones now, including 4 variations on the same virus. I
am
> competing against my friend that runs Windows, but I am starting to doubt
> that I will ever catch up. I guess Windows really is just better at some
> things than Linux. ;-}
nkvir is sufficient to capture many varieties of viruses. I dump them. But
I've had far more than eight distinct viruses caught. If I used only linux
for working and recreation I'd not bother with Windows virus detection. If
I ran an ISP I'd forward the virus unless the user specifically requests
some form of AV protection at the ISP. I'd likely suggest they use something
like Norton which can provide AV filtering on incoming email. This is for
the same reason that I advocate SpamAssassin type scoring rather than
elimination for an ISP. (Of course, I use ssl for speaking to a secure pop
and imap server pair on our mail server. So AV filtering is mostly a human
operation. Fortunately SA tags almost all of them as spam as a side effect.)
If that is 8 different LINUX attacking viruses "I'm impressed."
{^_-}
Want to buy your Pack or Services from MandrakeSoft?
Go to http://www.mandrakestore.com
Join the Club : http://www.mandrakeclub.com
Re: [newbie] Virus laden e-mail
From: "JoeHill" <[EMAIL PROTECTED]>
> > Ideally what I want to do is to get my server to just say "Bog off"
> > when the delivery attempt is made.
>
> Well, AFAIK, the only way to do that is with a bounce, and there's the
rub. When
> you bounce, you just doubled the 'damage' that the spam mail caused, and
as jdow
> so politely pointed out, you may be bouncing to someone who never sent
anything,
> unless you can bounce to the originating IP, but I haven't the faintest
idea how
> you could configure Postfix/Procmail/whatever to do something like that.
I'd
> like to do the same thing, I'm sure a lot of people very annoyed with spam
and
> viruses would, but...
I react rather strongly to being victimized by a "joe job" and the
bounces that people who've not spent 2 minutes to really think about
the problem send ME instead of the real originator. There is nothing
you can do about being a victim "joe job" other than to ride it out.
(Well, if you manage to find the real author of the joe job software
or the people who commissioned the joe job attacks and break a few
instructional bones it might do some good, briefly. {^_-}) The best
help you can provide for the "joe job" is not to facilitate the attack
by not bouncing emails like that. (It has gotten to the point it's not
a good policy to bounce anything except on a full mailbox. It can lead
to YOU getting attacked since a fair number of the "no such user"
emails you receive are fishing for real users, some are intended to
bounce and victimize the purported rather than actual sender, and the
small remaining number seem to be designed to either target or harrass
the system administrators.
There are ways to drop email cleanly. "Greylisting" is one such tactic
that has its rather vocal proponents. It tends to lead to delays in
receiving many legitimate emails. If those delays do not harm you then
greylisting is an excellent approach. It may be a little difficult to
setup, though. Another technique is to cull IP addresses from the
Received-From chains, check them with several black hole lists, and
if your "score" from these checks is high enough you terminate the
transaction. This can be very time consuming in your MTA. However,
if it is a one person setup that should be no particular problem. If
it is for an ISP with thousands of subscribers it could bring the
mail server machines to their knees fairly quickly.
All in all using a tool like a well trained SpamAssassin with some
carefully selected "SARE", SpamAssassin Rules Emporium, rule sets and
the SURBL black list can lead to VERY accurate spam tagging. I am
rather partial to spam tagging as opposed to simply dumping, at least
on a single user or very small office configuration. Some legitimate
emails can trigger rules that normally have very low miss rates. So
I score the spams and have OutlookExpunge sort the spam into a spam
folder. I look at the dozen or so lowest scoring spams to cull out
things like the rare LKML message that triggers too many "chickenpox"
or "tripwire" rules. Then I make a really quick scan of the rest to
see if anything looks "real" - or to be honest looks like it might
have some humor value. (Some of the recent spate from the Orient are
priceless for their translations into English that differ from the
plain text and HTML versions. Stilted is too polite a term for how
silly they get.) Then I may check the Bayes scores for a fwe of the
lower scoring items and feed them to Bayes if Bayes did not think they
were fairly spammy already. It all takes as little as 2 or 3 minutes
per day if I don't have time to mine it for the humor value. I can
spare that to avoid the rare critical message (say due to at least
one of AOL's mail tools misformatting messages in a spammy way) that
gets tagged as spam. I also expect one or two escaped spams to run
wild in my mailbox, like the set that just struck one of the Mandrake
lists. Spam evolves so fast it's hard for the spam fighters to win
all the time. But so far today in about 700 messages SA is managing
100%, though.
> > I had hoped that adding the IP or the sender details to the black list
> > of Spam Assassin might do this but it does not.
Typically with a joe job you are getting bounce messages from all over
the place. I've had to remove "Postmaster" and its synonyms from any
hint of whitelisting within SpamAssassin. Too many such messages are
simply joe job bounces or viruses. (NK-VIR suggested below is a good
bet. It's not 100%. (I turned off much of its "scam" filtering. I leave
that to SpamAssassin. Nigerian scam testing mal-triggers too often. Er,
and osm eof them are the funniest of all.) Setting up ClamAV plus
SpamAssassin reporedly works very well for viruses. It can be a bear
to se
Re: [newbie] Virus laden e-mail
From: "Inhabitant of Zion" <[EMAIL PROTECTED]>
> >
> > Yes, your MSN monicker is indeed correct. You are a sillydilly.
> >
> >
>
> Well OK then rather that telling me how stupid I am why not
> make some sort of constructive suggestion.
In a word: SpamAssassin
{^_^}
Want to buy your Pack or Services from MandrakeSoft?
Go to http://www.mandrakestore.com
Join the Club : http://www.mandrakeclub.com
Re: [newbie] Virus laden e-mail
To: <[EMAIL PROTECTED]>
> >
> > So zap them before they even hit your machine:
> >
> >
>
> Just found out how to set my server to return to sender all mails to
> unknown users.
>
> Not ideal but at least I am getting a bit of peace and quite again!
>
> :-)
>
> --
> John Willby Registered Linux user number 321644
> ICQ: 92791912 MSN: [EMAIL PROTECTED]
Yes, your MSN monicker is indeed correct. You are a sillydilly. NEVER
return to sender. It is highly impolite and turns you into a spam relay.
The Return-Path:, Reply-To:, and From: headers in spam mail are virtually
always forged. So you are forwarding the spam to innocents. When I find
some idiot doing this I place a divert to /dev/null block on them in my
procmail script. If they ever do have to send me real email it's too bad
for them. They're gone.
{^_^}
Want to buy your Pack or Services from MandrakeSoft?
Go to http://www.mandrakestore.com
Join the Club : http://www.mandrakeclub.com
Re: [newbie] Virus laden e-mail
From: "Greg Meyer" <[EMAIL PROTECTED]>
> Is anybody else on this list getting bombarded with virus laden e-mail
from a
> particular ip address in Australia?
>
> Whoever it is is sending to the address that I use for the Mandrake lists,
so
> I am thinking it may be one of our newbie windows users.
>
> If you use windows and are in Australia, please check your box for
viruses.
> --
> /g
For what it is worth a netski variant went through one of the Mandrake
lists this morning.
{^_^}
Want to buy your Pack or Services from MandrakeSoft?
Go to http://www.mandrakestore.com
Join the Club : http://www.mandrakeclub.com
Re: [newbie] Installed Webmin but can't access it.
From: "Stephen Kühn" <[EMAIL PROTECTED]>
> On Wed, 2004-12-15 at 18:19, SnapafunFrank wrote:
>
> > REBOOT WHAT??? I didn't and except for kernel rebuilding I never
> > reboot. Am I missing out on some cool thing here or what? (Maybe the
> > windows uses here can enlighten me?)
>
> There should be no reason to restart/reboot. If anything, if Webmin is
> inaccessible, in a term do a "service webmin restart" - but I've never
> had to do that before and I've installed Webmin on heaps of machines
> (workstations and servers).
Of course, if you are down on the commandline doing this you might
also want to make sure it's turned on for reboots using chkconfig:
chkconfig --list
The list of service names is found with "ls /etc/init.d". I expect
it to be webmin in this case, of course. You can turn it "off and on
at boot time" using "chkconfig webmin off" and "chkconfig webmin on"
respectively.
{^_^}
Want to buy your Pack or Services from MandrakeSoft?
Go to http://www.mandrakestore.com
Join the Club : http://www.mandrakeclub.com
Re: [newbie] Samba user adding
From: <[EMAIL PROTECTED]>
> Ok - that was what happened if you set "brosable = yes" in samba2. That
Careful about typographical errors, Mikkel. "browsable".
{^_-}
Want to buy your Pack or Services from MandrakeSoft?
Go to http://www.mandrakestore.com
Join the Club : http://www.mandrakeclub.com
Re: [newbie] mndk 10.1 official root login
From: <[EMAIL PROTECTED]>
>
> > Hi all,
> >
> > I have installed mndk 10.1 official and created an account (except
> > root). I could login with my account, but the only available account to
> > login at the login window was my account. I don't know how can I login
> > as root ? In fact, the problem is even worse. I have deleted that
> > account too and now a window just ask me for password and nothing is
> > accepted. Noe my system is completely dangled thanks to mndk, anybody
> > help ? urgent...
> >
> > Thanks,
> >
> > Danesh
> >
> >
> I am not sure how to do a GUI root login, but you can get a command line
> login by hitting Ctrl-Alt-F1. This will at least let you add a normal
> user so you can use the system untill someone with 10.1 experence can tell
> you how to log in as root from the GUI...
>
> Mikkel
Um, at that level of knowledge it's still not hard. At the first prompt
type your desired user name. In this case "root". At the second prompt
type the account's password. Bang, Bob's your uncle.
{^_^}
Want to buy your Pack or Services from MandrakeSoft?
Go to http://www.mandrakestore.com
Join the Club : http://www.mandrakeclub.com
Re: [newbie] mndk 10.1 official root login
From: "Danesh Daroui" <[EMAIL PROTECTED]>
> Hi all,
>
> I have installed mndk 10.1 official and created an account (except
> root). I could login with my account, but the only available account to
> login at the login window was my account. I don't know how can I login
> as root ? In fact, the problem is even worse. I have deleted that
> account too and now a window just ask me for password and nothing is
> accepted. Noe my system is completely dangled thanks to mndk, anybody
> help ? urgent...
>
> Thanks,
>
> Danesh
All hope is not lost. First you need to be willing to work from the
commandline. "Cntl-Alt-F1" will present you with your commandline
prompt. Once there you can login as the root user. You're 1/3 of the
way home here.
As a test hit "alt-f2" and try to login as the alternate user you
created. If you can login you're 2/3 of the way home. If not you
must create a new user the hard way. "man adduser" is a start.
Mandrake appears to create users with a group the same as the
user name. Factor that into your "adduser" command. (I am not sure
of all the Mandrake options here. I'm a RedHat/Fedora fugitive and
new to Mandrake myself.) Some reading on the man page should help.
Once you've created the user give it a password with the "passwd"
command. If you created "newbie" then use "passwd newbie" to set
that account's password. You are now 2/3 of the way home.
Go back to the X-Windows login page. Perhaps refresh it by entering
a password. At worst you'd have to "telinit 3" then "telinit 5" to
get it to refresh and recognize the new user, if Mandrake did it
right. At that point login as the new user. Go to the system
administration tools for managing the system, select -system->
configuration->KDE->system->login. Then select the user's tab and
proceed to think negatively. Click on the users you do NOT want to
be able to login the X-Windows system via the login screen. If that
works you are done. If not you have to cheat. Go back to the commandline
and issue the "telinit 3" command as root. Then issue the "startx"
command to get into X-Windows as root. You should be able to use
the above steps from there.
{^_^}
Want to buy your Pack or Services from MandrakeSoft?
Go to http://www.mandrakestore.com
Join the Club : http://www.mandrakeclub.com
