RE: [SLUG] Disable mouse thingie
You should be able to disable the touchpad in the laptop's BIOS - generally you can have internal, external or both. Plugging in the external PS/2 rodent *should* disable the internal touchpad. Jon -Original Message- From: Alan L Tyree [EMAIL PROTECTED] Sent: 14/12/02 10:30:09 To: Sydny Linux User Group [EMAIL PROTECTED] Subject: [SLUG] Disable mouse thingie Hi all, I have a laptop that my wife uses for email and things. Running X, RH8. Problem is that the built-in mouse substitute is a nuisance. It is too easy to rest hands on it while typing. I have another mouse attached through the PS2 port. How do I disable the built in? I tried commenting out one of the sections in XF86config, but both mouse connections still work. Any help greatly appreciated. alan -- -- Alan L Tyree[EMAIL PROTECTED] http://www.law.usyd.edu.au/~alant Tel: +61 2 4782 2670 Mobile: +61 419 638 170 Fax: +61 2 4782 7092 -- SLUG - Sydney Linux User's Group - http://slug.org.au/ More Info: http://lists.slug.org.au? /listinfo/slug -- SLUG - Sydney Linux User's Group - http://slug.org.au/ More Info: http://lists.slug.org.au/listinfo/slug
[SLUG] General question Re: Securing Redhat Linux
Redhat has been known to be buggy and insecure to say the least, however it is my choice amung all distributions. My question is probably a security question that applies to all OS in general: In my case, I'm setting up a firewall that is directly exposed to the internet, and will be my frontline defense against attacks and intrusions. Provided that I - install only what I need - are aware of the functions of utils/packages that I install - do not install things that can be used against me eg. compilers, sudo, screen, debugfs, dd etc. - do not install any irrelevant servers/daemons eg. httpd, ftpd, named, rpc*d etc. - keep my packages updated stable - securing any services at the application level eg. customising kernel, xinetd, /etc/security/* etc. - monitor and apply errata (redhat.com/errata/) - monitor all logs - spend some time monitoring security advisories - use network monitoring, auditing, intrusion tools eg. snort, tripwire, user space plugins for iptables - physically isolate machines and services through better network topology/structure with security in mind I think any distribution can be ironclad. The difference then would be the effort required to secure a box OS. So provided that I stick to the fundamental security concepts, am I wasting my time with Redhat compared to Debian or Slackware etc ? There're a lot of other little things that I've come to be aware of over the years eg. mount (ro) /, find / -perms +444 etc etc. I'm reading some security guides, Redhat 8.0 has an Official Red Hat Linux Security Guide (http://www.redhat.com/docs/manuals/linux) and other Redhat related security guides can be found at linuxdoc.org. Does anybody have further advice/suggestions on securing a Redhat box ? - don't use computers maybe ? :) I'm looking forward to having a less embarassing setup, and taking better security measures this time around. -- SLUG - Sydney Linux User's Group - http://slug.org.au/ More Info: http://lists.slug.org.au/listinfo/slug
Re: [SLUG] General question Re: Securing Redhat Linux
On Tue, 2002-12-17 at 14:49, Minh Van Le wrote: I think any distribution can be ironclad. I think that any distribution can be equally insecure. If you spend enough time on it you can convince yourself that any box is secure. Secure systems is one area where debian excels though. Debian packaging policy means that old, reliable software is used in favour of newer, possibly more functional, but possibly also less secure software. If nothing else debian packages are much more a known quantity than other distributions (debian stable, not unstable et al). Debian maintainers also do helpful things like disabling the no-encryption option on ssh. They also had that bug fix for ssh out before anyone else (I don't even know if that made its way into redhat etc - I assume it did but no-one made the same fuss about it that debian did) You theoretically can make redhat as secure as debian, but I would argue that your time would be better spent on more important aspects of system security. I like redhat and its bretheren, but I don't use it on servers. btw - you wanna be careful with tripwire et al. What happens when someone hacks your box and replaces the tripwire executable with one that sends an email at the alotted time intervals reporting that everything is ok? It's better than nothing, but don't rely on it. HTH James. -- SLUG - Sydney Linux User's Group - http://slug.org.au/ More Info: http://lists.slug.org.au/listinfo/slug
Re: [SLUG] General question Re: Securing Redhat Linux
I have a tendency to agree with what you have there. This may be only my thoughts and someone can counter argue this point. I do install compilers on to my firewall, in case I want to compile a package mind you I never install any servers, especially either telnetd or sshd, on my firewall. If I want to make a mod to my firewall I have to do it locally. Isolate machines through topologies is excellent idea, you don't want to mix live or potentially vulnerable servers with workstations. So you will have a DMZ where you will house your servers that can access the Internet, and a LAN network which will be completely seperate to the DMZ. Even though I have 6 machines at home I have broken my network environment into DMZ, and LAN. My machines on the LAN can only access services I what them to access on the DMZ, My DMZ can only access DNZ, Web, mail, ssh services on the internet. My LAN uses NAT to access internet protocols. A Distro is a Distro, some have more issues than others but if you have a look at most of redhat issues to date most of the problems exist if the user already has access to the box and wants to elevate their privileges. Provided that I - install only what I need - are aware of the functions of utils/packages that I install - do not install things that can be used against me eg. compilers, sudo, screen, debugfs, dd etc. - do not install any irrelevant servers/daemons eg. httpd, ftpd, named, rpc*d etc. - keep my packages updated stable - securing any services at the application level eg. customising kernel, xinetd, /etc/security/* etc. - monitor and apply errata (redhat.com/errata/) - monitor all logs - spend some time monitoring security advisories - use network monitoring, auditing, intrusion tools eg. snort, tripwire, user space plugins for iptables - physically isolate machines and services through better network topology/structure with security in mind I think any distribution can be ironclad. The difference then would be the effort required to secure a box OS. So provided that I stick to the fundamental security concepts, am I wasting my time with Redhat compared to Debian or Slackware etc ? There're a lot of other little things that I've come to be aware of over the years eg. mount (ro) /, find / -perms +444 etc etc. I'm reading some security guides, Redhat 8.0 has an Official Red Hat Linux Security Guide (http://www.redhat.com/docs/manuals/linux) and other Redhat related security guides can be found at linuxdoc.org. Does anybody have further advice/suggestions on securing a Redhat box ? - don't use computers maybe ? :) I'm looking forward to having a less embarassing setup, and taking better security measures this time around. -- SLUG - Sydney Linux User's Group - http://slug.org.au/ More Info: http://lists.slug.org.au/listinfo/slug -- SLUG - Sydney Linux User's Group - http://slug.org.au/ More Info: http://lists.slug.org.au/listinfo/slug
RE: [SLUG] Disable mouse thingie
On Tue, 2002-12-17 at 19:28, Jon Biddell wrote: You should be able to disable the touchpad in the laptop's BIOS - generally you can have internal, external or both. Plugging in the external PS/2 rodent *should* disable the internal touchpad. Thanks for this - I had put the problem aside. The F10 key, which is supposed to bring up the bios during boot, doesn't work. According to some stuff on the Compaq (now HP) site, that is because I don't have the setup program installed. Of course, since I wiped everything to put on Linux. Both the external mouse and the touchpad move the pointer. I have commented out the section in XF86config for the second mouse, but both devices still work. any other ideas gratefully received. -- -- Alan L Tyree[EMAIL PROTECTED] http://www.law.usyd.edu.au/~alant Tel: +61 2 4782 2670 Mobile: +61 419 638 170 Fax: +61 2 4782 7092 -- SLUG - Sydney Linux User's Group - http://slug.org.au/ More Info: http://lists.slug.org.au/listinfo/slug
RE: [SLUG] Disable mouse thingie
Ah, yes... Compaq The BIOS setup tools are in a hidden partition on the hard drive (and I think the actual BIOS may be loaded from there as well on some models)... Didn't think the laptops went this way, but it doesn't surprise me... Jon = Thanks for this - I had put the problem aside. The F10 key, = which is supposed to bring up the bios during boot, doesn't = work. According to some stuff on the Compaq (now HP) site, = that is because I don't have the setup program installed. Of = course, since I wiped everything to put on Linux. = = Both the external mouse and the touchpad move the pointer. I = have commented out the section in XF86config for the second = mouse, but both devices still work. Apart from opening it up and physically disconnecting the touchpad, a rather permenant solution, I guess have a look at the Compaq/HP website to see if there's a bootable setup disk that you could use. I know on the servers I used to manage we used SmartStart to configure them - not perfect, but pretty useful - maybe that would work on a notebook ??? Jon -- SLUG - Sydney Linux User's Group - http://slug.org.au/ More Info: http://lists.slug.org.au/listinfo/slug
WAS: Re: [SLUG] General question Re: Securing Redhat Linux IS:question re: sshd
On 18 Dec 2002, Kevin Saenz wrote: I do install compilers on to my firewall, in case I want to compile a package mind you I never install any servers, especially either telnetd or sshd, on my firewall. If I want to make a mod to my firewall I have to do it locally. Can you explain why you exclude sshd? Sure, telnet passes clear passwords and text, but the entire sshd communication is encrypted and has been proven extremely difficult to crack, particularly where key-exchange authentication is used instead of passwords. -- SLUG - Sydney Linux User's Group - http://slug.org.au/ More Info: http://lists.slug.org.au/listinfo/slug
Re: [SLUG] General question Re: Securing Redhat Linux
I asked a similar question to this the other day ( See my post 'Learning about security'). Basically I wanted to know: If a firewall explicitly DROP's all new connections on the external (ppp0 in my case) interface, how can a cracker get access to the sshd/telnetd/httpd/whatever running on that firewall machine? The firewall does allows ESTABLISHED or RELATED connections on that inteface though. ( Ala Rusty's quick Firewall rules from the HOWTO) cheers Steve At 18 December 2002, Kevin Saenz [EMAIL PROTECTED] wrote: I never install any servers, especially either telnetd or sshd, on my firewall. If I want to make a mod to my firewall I have to do it locally. -- We live in an age of continuous partial attention. --Ms. Linda Stone, researcher and VP at Microsoft http://www.helmsdeep.net/capn-k/ Linux | Windows | CAD | Audio Visualisation and more -- SLUG - Sydney Linux User's Group - http://slug.org.au/ More Info: http://lists.slug.org.au/listinfo/slug
Re: WAS: Re: [SLUG] General question Re: Securing Redhat Linux IS:question re: sshd
Probably I am a little too paranoid, I just don't want anyone to logon to the box at all. My theory is if there are no services open then people cannot log on to the box. My firewall is just there to forward and filter packets. I agree with you with the power of sshd. I just believe that if someone wants to get in then there is no way of stopping them. If there is no port for them to logon to then how can they gain access unless they are a local user? Yes I could use IPtables to filter the access to specific addresses and ports. I just wanted to ensure that my box was a tight as you could get it. I do install compilers on to my firewall, in case I want to compile a package mind you I never install any servers, especially either telnetd or sshd, on my firewall. If I want to make a mod to my firewall I have to do it locally. Can you explain why you exclude sshd? Sure, telnet passes clear passwords and text, but the entire sshd communication is encrypted and has been proven extremely difficult to crack, particularly where key-exchange authentication is used instead of passwords. -- SLUG - Sydney Linux User's Group - http://slug.org.au/ More Info: http://lists.slug.org.au/listinfo/slug
[SLUG] Mandrake and apache error
I have been trying to get a virtual host up and running on my LAN now what I have noticed is I can not access my virtual host. http produces the error of [Tue Dec 17 22:57:46 2002] [error] [client 10.0.0.3] client denied by server configuration: /opt/apache/www on the browser I get a 403 when I do a ls -la on /opt/apache/www the ownership is apache:apache with drwxr-x-r-x can anyone help? Thanks Kevin -- SLUG - Sydney Linux User's Group - http://slug.org.au/ More Info: http://lists.slug.org.au/listinfo/slug
Re: WAS: Re: [SLUG] General question Re: Securing Redhat Linux IS: question re: sshd
Quoting Kevin Saenz [EMAIL PROTECTED]: Probably I am a little too paranoid, I just don't want anyone to logon to the box at all. My theory is if there are no services open then people cannot log on to the box. My firewall is just there to forward and filter packets. I agree with you with the power of sshd. I just believe that if someone wants to get in then there is no way of stopping them. If there is no port for them to logon to then how can they gain access unless they are a local user? Yes I could use IPtables to filter the access to specific addresses and ports. I just wanted to ensure that my box was a tight as you could get it. I guess a little too paranoid indeed. I couldn't live without sshd, since every machine I've ever installed is completely headless. However if I couldn't have sshd, I'd be just as happy to tweak the kernel and hook up a serial cable to be a console from another machine with has a terminal client and/or old wyse terminal :) -- SLUG - Sydney Linux User's Group - http://slug.org.au/ More Info: http://lists.slug.org.au/listinfo/slug
Re: [SLUG] Mandrake and apache error
Quoting Kevin Saenz [EMAIL PROTECTED]: I have been trying to get a virtual host up and running on my LAN now what I have noticed is I can not access my virtual host. http produces the error of [Tue Dec 17 22:57:46 2002] [error] [client 10.0.0.3] client denied by server configuration: /opt/apache/www on the browser I get a 403 when I do a ls -la on /opt/apache/www the ownership is apache:apache with drwxr-x-r-x Have you looked through your httpd.conf (assuming this contains all the apache configuration options) to confirm that /opt/apache/www isn't restricted in some way. It might be nothing to do with the permissions on the filesystem. Mind you apache.apache is strange, but I guess thats mandrakes way. Debian has www-data.www-data. If need be, I'd be happy to look through your apache configs if so forwarded. Cheers -- SLUG - Sydney Linux User's Group - http://slug.org.au/ More Info: http://lists.slug.org.au/listinfo/slug
Re: [SLUG] Mandrake and apache error
Quoting Kevin Saenz [EMAIL PROTECTED]: I have been trying to get a virtual host up and running on my LAN now what I have noticed is I can not access my virtual host. http produces the error of [Tue Dec 17 22:57:46 2002] [error] [client 10.0.0.3] client denied by server configuration: /opt/apache/www on the browser I get a 403 when I do a ls -la on /opt/apache/www the ownership is apache:apache with drwxr-x-r-x Have you looked through your httpd.conf (assuming this contains all the apache configuration options) to confirm that /opt/apache/www isn't restricted in some way. It might be nothing to do with the permissions on the filesystem. Mind you apache.apache is strange, but I guess thats mandrakes way. Debian has www-data.www-data. If need be, I'd be happy to look through your apache configs if so forwarded. Cheers -- SLUG - Sydney Linux User's Group - http://slug.org.au/ More Info: http://lists.slug.org.au/listinfo/slug
Re: [SLUG] Mandrake and apache error
This is the only thing I dislike about Mandrake http.conf file is broken down to several files. I have been trying to get a virtual host up and running on my LAN now what I have noticed is I can not access my virtual host. http produces the error of [Tue Dec 17 22:57:46 2002] [error] [client 10.0.0.3] client denied by server configuration: /opt/apache/www on the browser I get a 403 when I do a ls -la on /opt/apache/www the ownership is apache:apache with drwxr-x-r-x Have you looked through your httpd.conf (assuming this contains all the apache configuration options) to confirm that /opt/apache/www isn't restricted in some way. It might be nothing to do with the permissions on the filesystem. Mind you apache.apache is strange, but I guess thats mandrakes way. Debian has www-data.www-data. If need be, I'd be happy to look through your apache configs if so forwarded. Cheers -- SLUG - Sydney Linux User's Group - http://slug.org.au/ More Info: http://lists.slug.org.au/listinfo/slug -- SLUG - Sydney Linux User's Group - http://slug.org.au/ More Info: http://lists.slug.org.au/listinfo/slug
Re: [SLUG] Mandrake and apache error
Quoting Kevin Saenz [EMAIL PROTECTED]: This is the only thing I dislike about Mandrake http.conf file is broken down to several files. Which is how apache conf files use to be. ie.. access.conf, srm.conf, httpd.conf to name a few. I believe the new preferred way is to have httpd.conf only, and debian has started to do this as of woody. meanwhile, I'd grep each of those files you have and see if any of them might be causing restrictions on your directory in question. Cheers -- SLUG - Sydney Linux User's Group - http://slug.org.au/ More Info: http://lists.slug.org.au/listinfo/slug
Re: [SLUG] Mandrake and apache error
Mandrake has commonhttpd.conf httpd.conf vhosts/Vhosts.conf ssl/ssl.conf to name a few Quoting Kevin Saenz [EMAIL PROTECTED]: This is the only thing I dislike about Mandrake http.conf file is broken down to several files. Which is how apache conf files use to be. ie.. access.conf, srm.conf, httpd.conf to name a few. I believe the new preferred way is to have httpd.conf only, and debian has started to do this as of woody. meanwhile, I'd grep each of those files you have and see if any of them might be causing restrictions on your directory in question. Cheers -- SLUG - Sydney Linux User's Group - http://slug.org.au/ More Info: http://lists.slug.org.au/listinfo/slug
[SLUG] Netmeeting and Linux Server
Hi, Has anyone any experience running MS Netmeeting from MS desktops thorugh a RH7.2 server? The server provides Proxy and firewall and Optus cable connection. _ Simon Bryan IT Manager OLMC Parramata ICQ#: 137562751 _ -- SLUG - Sydney Linux User's Group - http://slug.org.au/ More Info: http://lists.slug.org.au/listinfo/slug
[SLUG] OpenMosix vs Grid engine
Hi all, Anyone know what is the difference between Open Mosix clustering vs the Grid Engine project http://gridengine.sunsource.net/ as far as the end user's application software is concerned? Regards, Jill. -- Jill Rowling, System Administrator Eng. Systems Dept, Aristocrat Technologies Australia Level 2, 55 Mentmore Ave Rosebery NSW 2018 Phone: (02) 9697-4484 Fax: (02) 9663-1412 Email: [EMAIL PROTECTED] -- IMPORTANT NOTICES This email (including any documents referred to in, or attached, to this email) may contain information that is personal, confidential or the subject of copyright or other proprietary rights in favour of Aristocrat, its affiliates or third parties. This email is intended only for the named addressee. Any privacy, confidence, copyright or other proprietary rights in favour of Aristocrat, its affiliates or third parties, is not lost because this email was sent to you by mistake. If you received this email by mistake you should: (i) not copy, disclose, distribute or otherwise use it, or its contents, without the consent of Aristocrat or the owner of the relevant rights; (ii) let us know of the mistake by reply email or by telephone (+61 2 9413 6300); and (iii) delete it from your system and destroy all copies. Any personal information contained in this email must be handled in accordance with applicable privacy laws. Electronic and internet communications can be interfered with or affected by viruses and other defects. As a result, such communications may not be successfully received or, if received, may cause interference with the integrity of receiving, processing or related systems (including hardware, software and data or information on, or using, that hardware or software). Aristocrat gives no assurances in relation to these matters. If you have any doubts about the veracity or integrity of any electronic communication we appear to have sent you, please call +61 2 9413 6300 for clarification. -- SLUG - Sydney Linux User's Group - http://slug.org.au/ More Info: http://lists.slug.org.au/listinfo/slug
[SLUG] configuring ftpaccess
I am trying to configure a server for ftp access over the internet. This particular server is running RH 7.1 with wu-ftp. I have compared the ftpaccess file on that system to another server running RH 8.0 and they look the same, however, I am unable to ftp to the system running 7.1. SSH is okay and other services are okay. The xinet.d file for wu-ftp on both systems are exactly the same. I consistently get a connection refused message. I am unable to find anything in the logs that might give me a clue about what is wrong. I am probably forgetting some basic thing but this it the first time I have worked with xinetd (formerly used inetd on other systems). What should I look for? Thanks, Dennis -- SLUG - Sydney Linux User's Group - http://slug.org.au/ More Info: http://lists.slug.org.au/listinfo/slug
[SLUG] Networking Problem
I have just successfully installed Smoothwall 1.0 on a PII box (after changing DLink530TX+ rev D for a Rev A nic). Using a crossover cable I can successfully access the Smoothwall box from my K6 PC running Mandrake 9.0. (uses a Dlink DFE 530TX rev A nic) Trying the same thing from my K7 box (modem attached, setup and working), also with Mandrake 9.0, I can successfully ping the Smoothwall box from a terminal, both as Root and as User. However, when I try to access the Smoothwall box via a browser (Konqueror, Galeon or Opera ) I get an error message, either network problem, connection refused or could not connect, depending on the browser. On this box Mandrake shows the Lan Config as eth0 192.168.1.3 dhcp via rhine up (DLink DFE 530TX+ rev D nic). I have tried connecting with Shorewall, privoxy and the modem on and off in all combos, ensuring that I reset the browser proxy settings accordingly, with the same result. Am I correct in thinking that the problem stems from having the external modem connected and installed on the K7 box whilst also having this box connected to the Smoothwall box? (ie Mandrake is set to use the Modem for internet connection, but the Nic for Lan connection.) If so, is there a fix for this, preferably without having to remove the modem (I also run Win XP on the K7 and can't get the DLink card installed under same - no apparent driver on DLink site for XP). Once I get the nic installed under XP I'll permanently attach modem to Smoothwall box, and update Mandrake settings. Thanks in advance for any help or suggestions. Bill [EMAIL PROTECTED] -- SLUG - Sydney Linux User's Group - http://slug.org.au/ More Info: http://lists.slug.org.au/listinfo/slug
Re: [SLUG] configuring ftpaccess
Quoting Dennis M. Gray [EMAIL PROTECTED]: I am trying to configure a server for ftp access over the internet. This particular server is running RH 7.1 with wu-ftp. I have compared the ftpaccess file on that system to another server running RH 8.0 and they look the same, however, I am unable to ftp to the system running 7.1. SSH is okay and other services are okay. The xinet.d file for wu-ftp on both systems are exactly the same. I consistently get a connection refused message. iptables or ipchains aint blocking the port by any chance? Thanks Michael -- SLUG - Sydney Linux User's Group - http://slug.org.au/ More Info: http://lists.slug.org.au/listinfo/slug
[SLUG] Rsync problem
A week or so ago I had problems with ssh not quitting when run in a cron script. This time I have a problem with rsync seemingly stalling. The difference this time is that is seems to stall irrespective of whether it runs under cron or standalone. Any clues as to where I should be looking -- Howard. LANNet Computing Associates - Your Linux people Contact detail at http://www.lannetlinux.com Flatter government, not fatter government. - me Get rid of the Australian states. -- If electricity comes from electrons, does morality come from morons? -- SLUG - Sydney Linux User's Group - http://slug.org.au/ More Info: http://lists.slug.org.au/listinfo/slug
Re: [SLUG] Rsync problem
I recently had a similar problem (rsync stalling when ssh'd accross a network) which was solved by adding -vvv to the options. It seemed to be some sort of timing problem, which forcing verbose mode resolved. Since then i've removed the -vvv and it no longer stalls. This proves that administering linux is not an exact science, and that your problem may also be resolved with newt's eyes or frog's livers, or both in a mysterious combination. David. On Wed, 18 Dec 2002, Howard Lowndes wrote: A week or so ago I had problems with ssh not quitting when run in a cron script. This time I have a problem with rsync seemingly stalling. The difference this time is that is seems to stall irrespective of whether it runs under cron or standalone. Any clues as to where I should be looking -- Howard. LANNet Computing Associates - Your Linux people Contact detail at http://www.lannetlinux.com Flatter government, not fatter government. - me Get rid of the Australian states. -- If electricity comes from electrons, does morality come from morons? -- SLUG - Sydney Linux User's Group - http://slug.org.au/ More Info: http://lists.slug.org.au/listinfo/slug -- SLUG - Sydney Linux User's Group - http://slug.org.au/ More Info: http://lists.slug.org.au/listinfo/slug
Re: [SLUG] Rsync problem
quote who=Howard Lowndes A week or so ago I had problems with ssh not quitting when run in a cron script. This time I have a problem with rsync seemingly stalling. The difference this time is that is seems to stall irrespective of whether it runs under cron or standalone. Is rsync not returning after its done the work, or similar? We had a similar issue at home over dialup, which was fixed by a reduced MTU. - Jeff -- Are you XFire's crazy girlfriend? And if so, shine on you crazy diamond! - Paul Cameron -- SLUG - Sydney Linux User's Group - http://slug.org.au/ More Info: http://lists.slug.org.au/listinfo/slug
Soln --Re: [SLUG] RH7.3 + Gnome = X crashing
Simon Wong wrote: Was X working before on this installation? This was a fresh install on new hardware. Have you looked through the X log in /var/log/XFree86.0.log? Nope, but all it said was a repeated message about Trident, which with no date or time isn't that helpful. What I now believe is/was the problem is the RedHat Upate agent. All the crashes occurred whilst this was running, which was most of the time as I was trying to update the machine (still am). As the update agent turns out to be a rather poor ftp program, I've reverted to using wget off the Aarnet mirror to download all the rpms, then use update agent to install them. So long as most rpms are put into /var/spool/up2date, the RH update agent recognises them and installs them. For some reason this doesn't happen with some, i.e. kernel ones can have problems, which is back to playing Rusiian roulette. . This is the third day without using the RH update agent for retrieval, so I'm fairly sure that was the problem. (Must remember to bump the FSB back up to 133Mhz to get full grunt again). Thanks all. -- Terry Collins {:-)}}} Ph(02) 4627 2186 Fax(02) 4628 7861 email: [EMAIL PROTECTED] www: http://www.woa.com.au Wombat Outdoor Adventures Bicycles, Books, Computers, GIS People without trees are like fish without clean water -- SLUG - Sydney Linux User's Group - http://slug.org.au/ More Info: http://lists.slug.org.au/listinfo/slug
[SLUG] OpenMosix vs Grid engine
Jill == Jill Rowling Rowling writes: Jill Hi all, Anyone know what is the difference between Open Mosix Jill clustering vs the Grid Engine project Jill http://gridengine.sunsource.net/ as far as the end user's Jill application software is concerned? It's my understanding (which could be quite wrong) that a computing grid is a much larger thing than a cluster multiple clusters can participate in a grid; and a grid can be heterogenous. When you're writing code for a cluster, you use OpenMPI or something. I don't think that MPI will work over a grid --- a grid is more a way to distribute jobs to clusters or machines within the grid (like NQS but bigger). See http://www.gridcomputing.com for more details. However, this leads to another question: Does the Grid Engine implement a cluster or a grid? SETI@home is an example of a grid computation. Peter C -- SLUG - Sydney Linux User's Group - http://slug.org.au/ More Info: http://lists.slug.org.au/listinfo/slug
Re: [SLUG] Rsync problem
On Wed, 2002-12-18 at 14:03, Howard Lowndes wrote: A week or so ago I had problems with ssh not quitting when run in a cron script. This time I have a problem with rsync seemingly stalling. The difference this time is that is seems to stall irrespective of whether it runs under cron or standalone. Any clues as to where I should be looking Are you sure this isn't a hardware problem, try a large ftp. Regards, Malcolm V. -- SLUG - Sydney Linux User's Group - http://slug.org.au/ More Info: http://lists.slug.org.au/listinfo/slug
Re: [SLUG] Rsync problem
On Wed, 2002-12-18 at 14:16, David wrote: I recently had a similar problem (rsync stalling when ssh'd accross a network) which was solved by adding -vvv to the options. It seemed to be some sort of timing problem, which forcing verbose mode resolved. Since then i've removed the -vvv and it no longer stalls. Check your MTU size Hack fixes (like above) are cool, but fixing the problem rather than masking the symptoms is even cooler :-) -- SLUG - Sydney Linux User's Group - http://slug.org.au/ More Info: http://lists.slug.org.au/listinfo/slug
Re: [SLUG] Rsync problem
On Wed, 18 Dec 2002, David wrote: This proves that administering linux is not an exact science, and that your problem may also be resolved with newt's eyes or frog's livers, or both in a mysterious combination. No, it only proves you don't know what your problem was caused by. If you are curious or if the problem reoccurs delving into the sys and rsync logs will provide some clues. -=-=-==-=-=--=-=-=-=-=-=-=-=-=-=-=-= Graeme Robinson - Graenet consulting www.graenet.com - internet solutions -=-=-=-=-=-=-=-=-=-=-==---=-=--=-=-= -- SLUG - Sydney Linux User's Group - http://slug.org.au/ More Info: http://lists.slug.org.au/listinfo/slug
[SLUG] New Woody Install not finding proxy server
Dear List, I have just downloaded and installed Woody on a box via 4 floppies and a network install through a proxy. After restarting the new systems I can not get any updates from Debian.org. It is asking for a format of http://proxy.user.host:port . The proxy server is 192.168.0.1:6588 and the client box is 192.168.0.10 Why should there be a problem after down loading a minimal Woody install of around 25 Megs? The new box remembered the proxy settings from the download. I have looked on the Debian website and can not find anything. It is obviously a simple thing but can not find the answer. Merry Christmas to all on the list. Richard Hayes Nada Marketing - 113-115 Oxford St Sydney Australia Tel: (+61-2) 9360 Fax +(61-2) 9361 0094 Mob +(61) 0414 618 425 UK +(44) 0845 0537 592 http://www.nada.com.au -- SLUG - Sydney Linux User's Group - http://slug.org.au/ More Info: http://lists.slug.org.au/listinfo/slug
[SLUG] gnump3d experiences
Hi, I just install gnump3d onto a pentium 90 at work which a friend and I use for testing stuff out, as well as allowing him to learn a bit more about debian. Anyways, I must say gnump3d is great. Its nice being able to select mp3 songs that are stored on this machine and then played over the lan to our winamp clients. Highly recommend it to anyone wanting to do something similar. All I need now is to buy a larger hard drive for home and put my songs onto it via samba, and setup a similar thing. Sweet. -- SLUG - Sydney Linux User's Group - http://slug.org.au/ More Info: http://lists.slug.org.au/listinfo/slug
Re: [SLUG] New Woody Install not finding proxy server
Quoting Richard Hayes [EMAIL PROTECTED]: Dear List, I have just downloaded and installed Woody on a box via 4 floppies and a network install through a proxy. After restarting the new systems I can not get any updates from Debian.org. It is asking for a format of http://proxy.user.host:port . Don't quote me, from memory http_proxy=http://proxy.domain.com:3128/; export http_proxy Should do the trick Not sure if http_proxy is lowercase or uppercase. Give both a whirl and see which works for you. Thanks -- SLUG - Sydney Linux User's Group - http://slug.org.au/ More Info: http://lists.slug.org.au/listinfo/slug
Re: [SLUG] Rsync problem
On Wed, Dec 18, 2002 at 02:46:26PM +1100, Graeme Robinson wrote: No, it only proves you don't know what your problem was caused by. If you are curious or if the problem reoccurs delving into the sys and rsync logs will provide some clues. Good luck though! I've had similar problems with rsync over many different machines, over rsh, ssh, solaris, hpux, linux, with no apparent cause or resolution except by waving around a rubber chicken. Search through the rsync mailing list archives and you'll see many references to it, with the occasional fix with the comment 'yeah we've got it THIS time' I think it must be something fundamental to the rsync protocol which is broken. Matt -- SLUG - Sydney Linux User's Group - http://slug.org.au/ More Info: http://lists.slug.org.au/listinfo/slug
Re: [SLUG] New Woody Install not finding proxy server
On Wed, Dec 18, 2002 at 03:01:56PM +1100, Michael Fox wrote: http_proxy=http://proxy.domain.com:3128/; No trailing slash (maybe it works, I don't know, I've only ever used it without one), but otherwise correct. Not sure if http_proxy is lowercase or uppercase. Give both a whirl and see Lowercase. Cheers, John -- whois [EMAIL PROTECTED] GPG key id: 0xD59C360F http://kirriwa.net/john/ -- SLUG - Sydney Linux User's Group - http://slug.org.au/ More Info: http://lists.slug.org.au/listinfo/slug
RE: [SLUG] Rsync problem
The only problems I've had were with getting MacOS9 files off a MacOSX system transferred to a Linux system. I ended up doing it manually in the OS9 application and using ftp to transfer the stuff across. Other things to look for: - time/date synchronisation on both machines - files which are being opened and updated while the rsync is progressing. I suspect the file seeks on rsync might be relying on the opened file being fairly static. For short files, it should not be an issue, but for longer ones, strange things might happen if the file gets written by another process. Cheers, Jill. -- Jill Rowling, System Administrator Eng. Systems Dept, Aristocrat Technologies Australia Level 2, 55 Mentmore Ave Rosebery NSW 2018 Phone: (02) 9697-4484 Fax: (02) 9663-1412 Email: [EMAIL PROTECTED] -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] Sent: Wednesday, 18 December 2002 15:10 To: Graeme Robinson Cc: David; Howard Lowndes; Mail List - SLUG Subject: Re: [SLUG] Rsync problem -- IMPORTANT NOTICES This email (including any documents referred to in, or attached, to this email) may contain information that is personal, confidential or the subject of copyright or other proprietary rights in favour of Aristocrat, its affiliates or third parties. This email is intended only for the named addressee. Any privacy, confidence, copyright or other proprietary rights in favour of Aristocrat, its affiliates or third parties, is not lost because this email was sent to you by mistake. If you received this email by mistake you should: (i) not copy, disclose, distribute or otherwise use it, or its contents, without the consent of Aristocrat or the owner of the relevant rights; (ii) let us know of the mistake by reply email or by telephone (+61 2 9413 6300); and (iii) delete it from your system and destroy all copies. Any personal information contained in this email must be handled in accordance with applicable privacy laws. Electronic and internet communications can be interfered with or affected by viruses and other defects. As a result, such communications may not be successfully received or, if received, may cause interference with the integrity of receiving, processing or related systems (including hardware, software and data or information on, or using, that hardware or software). Aristocrat gives no assurances in relation to these matters. If you have any doubts about the veracity or integrity of any electronic communication we appear to have sent you, please call +61 2 9413 6300 for clarification. -- SLUG - Sydney Linux User's Group - http://slug.org.au/ More Info: http://lists.slug.org.au/listinfo/slug
Re: [SLUG] New Woody Install not finding proxy server
At 03:01 PM 18/12/2002 +1100, Michael Fox wrote: Quoting Richard Hayes [EMAIL PROTECTED]: Don't quote me, from memory http_proxy=http://proxy.domain.com:3128/; export http_proxy Should do the trick Not sure if http_proxy is lowercase or uppercase. Give both a whirl and see which works for you. Dear Michael, I am not using Squid as the proxy ie 3128 is not the port. Thanks Anyway Richard Hayes Nada Marketing - 113-115 Oxford St Sydney Australia Tel: (+61-2) 9360 Fax +(61-2) 9361 0094 Mob +(61) 0414 618 425 UK +(44) 0845 0537 592 http://www.nada.com.au -- SLUG - Sydney Linux User's Group - http://slug.org.au/ More Info: http://lists.slug.org.au/listinfo/slug
Re: [SLUG] New Woody Install not finding proxy server
Quoting John Clarke [EMAIL PROTECTED]: On Wed, Dec 18, 2002 at 03:01:56PM +1100, Michael Fox wrote: http_proxy=http://proxy.domain.com:3128/; No trailing slash (maybe it works, I don't know, I've only ever used it without one), but otherwise correct. At first I typed it without and then adding it. Guess I knew it was without somehow. Oh well no big deal. If it don't work I am sure they will let us know. Not sure if http_proxy is lowercase or uppercase. Give both a whirl and see Lowercase. Guess I remembered it after all :) - Michael -- SLUG - Sydney Linux User's Group - http://slug.org.au/ More Info: http://lists.slug.org.au/listinfo/slug
Re: [SLUG] New Woody Install not finding proxy server
Quoting Richard Hayes [EMAIL PROTECTED]: At 03:01 PM 18/12/2002 +1100, Michael Fox wrote: Quoting Richard Hayes [EMAIL PROTECTED]: Don't quote me, from memory http_proxy=http://proxy.domain.com:3128/; export http_proxy Should do the trick Not sure if http_proxy is lowercase or uppercase. Give both a whirl and see which works for you. Dear Michael, I am not using Squid as the proxy ie 3128 is not the port. Thanks Anyway Umm you can put any hostname you like and port. I was just showing an example.. ie http_proxy=http://proxy.blah.com:port; export http_proxy Does this make it clearer? -- SLUG - Sydney Linux User's Group - http://slug.org.au/ More Info: http://lists.slug.org.au/listinfo/slug
Re: [SLUG] Learning about security.
Hi Steve, Common sense is the simplest and most overlooked form of security. HOWTO ones, what mechanisms might someone have for getting in, especially if I am running server programs on that same machine? Learn about the ports that the services use, ie POP 110, SMTP 25 etc. keep the ports closed on the services that you are not using. Can someone spoof the interface? I wouldn't think so (but also wouldn't know!) Or can they spoof an established connection? Spoof or sniff? Spoofing is where steals an IP, yours or anyone elses to get access, sniff is when someone evesdrops on you. If you are worried about people sniffing, use data encryption SSL etc. Dont use Telnet, use SSH Also, can anyone recommend any good 'across the board' security books,i.e covering the other major OS(es) as well? Typical attacks, how to avoid them and system design/implementation considerations? "Hacking Exposed" has been touted as one option. Opinions? I dont really think that having a vast knowledge of specific attacks can help you very much. The three things to remember are: Proper configuration (ie only run what you use) Proper policy Keep all your software up to date! Best online info: www.CERT.org Good book: Security Complete (Sybex) it covers most OSs and is very reasonably priced $40 luck, ~dec Steve Downing wrote: I'd like to expand on my security skills, it's definately an important topic. One quick question, if my iptables rules are like rusty's Netfilter HOWTO ones, what mechanisms might someone have for getting in, especially if I am running server programs on that same machine? In a nutshell those rules are: Drop on the ppp0 interface, unless the packet is flagged as a established or related connection. Accept new connections on any interface but ppp0. Can someone spoof the interface? I wouldn't think so (but also wouldn't know!) Or can they spoof an established connection? Also, can anyone recommend any good 'across the board' security books, i.e covering the other major OS(es) as well? Typical attacks, how to avoid them and system design/implementation considerations? "Hacking Exposed" has been touted as one option. Opinions? 'ta Steve
[SLUG] Re: Rsync problem
On Wednesday 18 December 2002 14:03, Howard Lowndes wrote: A week or so ago I had problems with ssh not quitting when run in a cron script. This time I have a problem with rsync seemingly stalling. The difference this time is that is seems to stall irrespective of whether it runs under cron or standalone. Any clues as to where I should be looking Try it with a few --verbose switches and post the ouput? Paul. -- SLUG - Sydney Linux User's Group - http://slug.org.au/ More Info: http://lists.slug.org.au/listinfo/slug
Re: [SLUG] OpenMosix vs Grid engine
quote who=Rowling, Jill Anyone know what is the difference between Open Mosix clustering vs the Grid Engine project http://gridengine.sunsource.net/ as far as the end user's application software is concerned? It's essentially the difference between 'single-image clustering' and 'multiple-image' (or even heterogeneous) clustering. With OpenMosix, everything is handled at the kernel level, allowing you to run and migrate any process [1] within the cluster. There are no special tools to run process on the cluster, because you're already a member of it (though there are utilities to say 'run this process on that node', etc). The Grid Computing stuff that Sun ships, from what I've worked out, is not as cool. :-) You must run processes with the q* utilities, it works with jobs and queues, handles multiple architectures, etc. So, OpenMosix acts like a big fat SMP box that you can just keep adding processors to (which prefers processes to threads), whereas Sun's Grid computing stuff is basically just a job/queue-driven processing farm with the ability to grok multiple archs as part of the cluster. Two random good sources of info: http://gridengine.sunsource.net/project/gridengine/howto/howto.html http://sourceforge.net/docman/display_doc.php?docid=9562group_id=46729 - Jeff [1] Except when the process uses stuff that OpenMosix doesn't support yet, like mmap, etc. -- 'Cause remember, smug is beautiful. - Zachary Beane -- SLUG - Sydney Linux User's Group - http://slug.org.au/ More Info: http://lists.slug.org.au/listinfo/slug
RE: [SLUG] OpenMosix vs Grid engine
Hi Jeff, Thanks for that. What I'm trying to do is speed up some programs we use at work. Some of them take a week to run on a PC (er, maths and statistics...:) and there are a number of machines around the place that are idle at night. I was looking for something maybe not as inefficient as SETI@home that could be run on a variety of OSs: Linux, IRIX, Solaris, WinNT preferably without too much pain but preferably controlled from one node (ie the programmer's work area). It's important that the job run at low priority because the various machines have other tasks that must be done at certain times, and this application is supposed to only run when the machine is otherwise idle. Regards, Jill. -- Jill Rowling, System Administrator Eng. Systems Dept, Aristocrat Technologies Australia Level 2, 55 Mentmore Ave Rosebery NSW 2018 Phone: (02) 9697-4484 Fax: (02) 9663-1412 Email: [EMAIL PROTECTED] -Original Message- From: Jeff Waugh [mailto:[EMAIL PROTECTED]] Sent: Wednesday, 18 December 2002 17:04 To: Slug@slug. org. au (E-mail) Subject: Re: [SLUG] OpenMosix vs Grid engine quote who=Rowling, Jill Anyone know what is the difference between Open Mosix clustering vs the Grid Engine project http://gridengine.sunsource.net/ as far as the end user's application software is concerned? It's essentially the difference between 'single-image clustering' and 'multiple-image' (or even heterogeneous) clustering. -- IMPORTANT NOTICES This email (including any documents referred to in, or attached, to this email) may contain information that is personal, confidential or the subject of copyright or other proprietary rights in favour of Aristocrat, its affiliates or third parties. This email is intended only for the named addressee. Any privacy, confidence, copyright or other proprietary rights in favour of Aristocrat, its affiliates or third parties, is not lost because this email was sent to you by mistake. If you received this email by mistake you should: (i) not copy, disclose, distribute or otherwise use it, or its contents, without the consent of Aristocrat or the owner of the relevant rights; (ii) let us know of the mistake by reply email or by telephone (+61 2 9413 6300); and (iii) delete it from your system and destroy all copies. Any personal information contained in this email must be handled in accordance with applicable privacy laws. Electronic and internet communications can be interfered with or affected by viruses and other defects. As a result, such communications may not be successfully received or, if received, may cause interference with the integrity of receiving, processing or related systems (including hardware, software and data or information on, or using, that hardware or software). Aristocrat gives no assurances in relation to these matters. If you have any doubts about the veracity or integrity of any electronic communication we appear to have sent you, please call +61 2 9413 6300 for clarification. -- SLUG - Sydney Linux User's Group - http://slug.org.au/ More Info: http://lists.slug.org.au/listinfo/slug
RE: [SLUG] configuring ftpaccess
I think it has to do with my ipchains settings. I have not been able to figure out entry for allowing ftp. If I turn off ipchains, I can connect. The current entry is ACCEPT tcp -y anywhere anywhere any - ftp (I intend to restrict it further once I get the entry working but with this one, I still cannot connect.) -Original Message- From: David [mailto:[EMAIL PROTECTED]] Sent: Wednesday, 18 December 2002 1:54 PM To: Dennis M. Gray Subject: Re: [SLUG] configuring ftpaccess have you checked your /etc/hosts.allow /etc/hosts.deny files? xinetd blocks ftp by default, although it sounds like you have already looked at that On Wed, 18 Dec 2002, Dennis M. Gray wrote: I am trying to configure a server for ftp access over the internet. This particular server is running RH 7.1 with wu-ftp. I have compared the ftpaccess file on that system to another server running RH 8.0 and they look the same, however, I am unable to ftp to the system running 7.1. SSH is okay and other services are okay. The xinet.d file for wu-ftp on both systems are exactly the same. I consistently get a connection refused message. I am unable to find anything in the logs that might give me a clue about what is wrong. I am probably forgetting some basic thing but this it the first time I have worked with xinetd (formerly used inetd on other systems). What should I look for? Thanks, Dennis -- SLUG - Sydney Linux User's Group - http://slug.org.au/ More Info: http://lists.slug.org.au/listinfo/slug -- SLUG - Sydney Linux User's Group - http://slug.org.au/ More Info: http://lists.slug.org.au/listinfo/slug
Re: [SLUG] Rsync problem
On Wed, 2002-12-18 at 14:38, Malcolm V wrote: On Wed, 2002-12-18 at 14:03, Howard Lowndes wrote: A week or so ago I had problems with ssh not quitting when run in a cron script. This time I have a problem with rsync seemingly stalling. The difference this time is that is seems to stall irrespective of whether it runs under cron or standalone. Any clues as to where I should be looking Are you sure this isn't a hardware problem, try a large ftp. Reminds me of a problem at work where the card was set to full duplex and the network gear only accepted half. ftp was very messed up which surprised me. -- -- Thanks KenF OpenOffice.org developer -- SLUG - Sydney Linux User's Group - http://slug.org.au/ More Info: http://lists.slug.org.au/listinfo/slug