[SLUG] DNS Issue
Hi All This is probably an Obvious Question but I'm not sure where to look next. Running Fedora Core 4, set up a DNS server and DNS record for my machine. If I do #host kevnote I receive the correct IP Address. I'm trying to install Scalix Community Server. As part of the install it checks the network settings and comes back with an error Network Check Failed - IP Address associated with host name 'kevnote.tcgtech.dyndns.org is '127.0.0.1' Yet the Host request returns the correct info. Any ideas where I should be looking to rectify the 127.0.0.1 address? Kev -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Re: [SLUG] DNS Issue
First guess - have a look at /etc/hosts - it's probably there. Check /etc/nsswitch.conf - you'll probably find a line like: hosts: files dns This tells the system resolver routines to look in /etc/hosts first, then try DNS if that fails. When you're running host by hand, you're bypassing the file check and going straight to DNS. On 8/17/05, Kevin Fitzgerald [EMAIL PROTECTED] wrote: Hi All This is probably an Obvious Question but I'm not sure where to look next. Running Fedora Core 4, set up a DNS server and DNS record for my machine. If I do #host kevnote I receive the correct IP Address. I'm trying to install Scalix Community Server. As part of the install it checks the network settings and comes back with an error Network Check Failed - IP Address associated with host name 'kevnote.tcgtech.dyndns.org is '127.0.0.1' Yet the Host request returns the correct info. Any ideas where I should be looking to rectify the 127.0.0.1 address? Kev -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html -- There is nothing more worthy of contempt than a man who quotes himself - Zhasper, 2005 -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Re: [SLUG] NTPD behind a masquerade
On Wed, Aug 17, 2005 at 01:50:51PM +1000, Terry Collins wrote: I find that a lot of the syncs time out with my main ntp boxen. I suspect that the main servers are extremely overloaded now that every home use has easy to use software to enable them to sysnc with stratum 1 timeservers. Trying to sync with stratum 1 servers is the problem. Check pool.ntp.org. -- Christopher Vance -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Re: [SLUG] DNS Issue
On Wed, Aug 17, 2005 at 05:19:23PM +1000, Kevin Fitzgerald wrote: This is probably an Obvious Question but I'm not sure where to look next. Running Fedora Core 4, set up a DNS server and DNS record for my machine. If I do #host kevnote I receive the correct IP Address. I'm trying to install Scalix Community Server. As part of the install it checks the network settings and comes back with an error Network Check Failed - IP Address associated with host name 'kevnote.tcgtech.dyndns.org is '127.0.0.1' Yet the Host request returns the correct info. Any ideas where I should be looking to rectify the 127.0.0.1 address? Every time I've installed anything from Red Hat or Fedora, it put stupid things in /etc/hosts. Remove your hostname from every line in /etc/hosts which starts '127.0.0.1' or '::1'. Those addresses should have the name 'localhost' with no domainname. -- Christopher Vance -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Re: [SLUG] Lindows experience.
quote who=Sridhar Dhanapalan I think that's what I did on my system. I was unaware that Ubuntu is reliant upon sudo instead of su, and I thought that my root password was set to be the same as my user password. To change it, I used 'sudo passwd root', which of course removed the sudo functionality and reverted my system to a more traditional su setup. Note that it didn't remove the sudo functionality, you've just set a root password, which unlocks the root account. I recommend using sudo all the time regardless of the status of your root account - but given that setup, it makes sense to relock your root account. Is the sudo-type setup employed by Ubuntu the same as that used in Mac OS X? Very similar, yes. Also, are there any security implications of this? Doesn't it mean that in a default setup, any local user can gain root access? Please correct me if I'm wrong. Absolutely not. Have a look at /etc/sudoers to see the configuration. In warty, it gave full sudo access to the initial user created. In hoary, it gives full sudo access to members of the admin group (which the initial user is a member of). There is a FAQ about using sudo on the Ubuntu site (disconnected atm, so can't give you the URL), which discusses some of the security issues. It comes down to the fact that using sudo is highly recommended generally, we've just chosen to make that the default configuration. - Jeff -- linux.conf.au 2006: Dunedin, New Zealand http://linux.conf.au/ I look forward to someday putting foo-colored ribbons on my homepage declaring 'port 25 is for spam', and 'just say no to the Spam Message Transmission Protocol!' - Raph Levien -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
[SLUG] SQL-ledger and IDENT fatal error...
Hi all, I'm having some issues getting SQL-ledger to work and I'd be very grateful for any suggestions on where to look next. Basically, I'm running Ubuntu Hoary. I apt-get installed sql-ledger (btw, postgres didn't automatically get pulled in when I did that - should it have?) and set up the database users etc and have logged into the administration page. I am up to the step that tells me I should do a create dataset, but whatever I do (whether I put details in or not) it gives me the following error: Error! FATAL: IDENT authentication failed for user sql-ledger Now I've googled for answers and the FAQs all do mention this error - they tell me to edit pg_hba.conf and add local all all trust which I tried... to no avail. :( I googled further to find a suggestion to someone else, mentioning that they had had two copies around and it was seeing the wrong one... using find I see that I have both: /etc/postgresql/pg_hba.conf /var/lib/postgres/data/pg_hba.conf so that looks like a distinct possibility... I was hoping somebody would be able to help me to find out which one is the right one and what I do with it when I do... otherwise if anybody has any other good suggestions they would also be welcome. Thanks heaps, Taryn -- This .sig temporarily out-of-order. We apologise for any inconvenience - The Management -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
[SLUG] BOUNCE [EMAIL PROTECTED]: Non-member submission from [EMAIL PROTECTED]
From [EMAIL PROTECTED] Wed Aug 17 05:56:14 2005 Received: from mtl-smtpgw2.global.avidww.com (mtl-smtpgw2.global.avidww.com [172.24.33.104]) by paperboy.global.avidww.com (8.12.9/8.12.6) with ESMTP id j7H9uEvQ028891 for [EMAIL PROTECTED]; Wed, 17 Aug 2005 05:56:14 -0400 Received: from softgate2.softimage.com ([172.24.33.31]) by mtl-smtpgw2.global.avidww.com with Microsoft SMTPSVC(5.0.2195.6713); Wed, 17 Aug 2005 05:54:39 -0400 Received: from slug.org.au (IDENT:U2FsdGVkX1/+s/[EMAIL PROTECTED] [127.0.0.1]) by softgate2.softimage.com (8.12.11/8.12.1) with SMTP id j7H9eOsr032659 for [EMAIL PROTECTED]; Wed, 17 Aug 2005 05:40:26 -0400 Message-Id: [EMAIL PROTECTED] From: slug@slug.org.au To: [EMAIL PROTECTED] Subject: DELIVERY REPORTS ABOUT YOUR E-MAIL Date: Wed, 17 Aug 2005 11:56:44 +0200 MIME-Version: 1.0 Content-Type: multipart/mixed; boundary==_NextPart_000_0001_40F1F681.C43EE7E2 X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2600. X-MIMEOLE: Produced By Microsoft MimeOLE V6.00.2600. X-OriginalArrivalTime: 17 Aug 2005 09:54:39.0850 (UTC) FILETIME=[AF2A8CA0:01C5A311] This is a multi-part message in MIME format. --=_NextPart_000_0001_40F1F681.C43EE7E2 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit -- Virus Warning Message (on softgate2.softimage.com) Found virus WORM_MYDOOM.M in file [EMAIL PROTECTED] .scr (in [EMAIL PROTECTED]) The uncleanable file is deleted. - --=_NextPart_000_0001_40F1F681.C43EE7E2 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit The original message was received at Wed, 17 Aug 2005 11:56:44 +0200 from slug.org.au [122.69.193.168] - The following addresses had permanent fatal errors - [EMAIL PROTECTED] - Transcript of session follows - ... while talking to 140.59.50.242: 554 Service unavailable; [90.54.242.178] blocked using bl.spamcop.net, reason: Blocked Session aborted --=_NextPart_000_0001_40F1F681.C43EE7E2 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit -- Virus Warning Message (on softgate2.softimage.com) [EMAIL PROTECTED] is removed from here because it contains a virus. - --=_NextPart_000_0001_40F1F681.C43EE7E2-- -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Re: [SLUG] Switching a website to ssl
Julio Cesar Ody [EMAIL PROTECTED] writes: uses port 443, if you want to keep the https:// in the address bar). - check if your application uses absolute URLs (like in http://site/page.php; instead of page.php) in the page links. If yes, then change that to https, otherwise you'll be thrown out of the SSL enabled virtualhost when navigating. In this situation, I think it's convenient and a little more user friendly to redirect http to https. That way everyones old bookmarks still work, and if you type the url in manually, you don't need to remember/be bothered to put https:// in first. It also means http absolute urls in the application still work. This page has one way to do it. http://www.whoopis.com/howtos/apache-rewrite.html -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Re: [SLUG] SQL-ledger and IDENT fatal error...
Taryn East [EMAIL PROTECTED] writes: FATAL: IDENT authentication failed for user sql-ledger Now I've googled for answers and the FAQs all do mention this error - they tell me to edit pg_hba.conf and add local all all trust which I tried... to no avail. :( That's for unix socket connections, it's probably connecting via tcpip. You want something like host sql-ledger sql-ledger 127.0.0.1 255.255.255.255 md5 The first sql-ledger is the database name, if the database is called something different you'll have to fix that up, or replace it with all. The md5 line means the passwords will have to be set up correctly, you can replace with trust to disable passwords. The order of lines in pg_hba.conf is important. Probably put it underneath the first line that has 127.0.0.1 in it. then sudo /etc/init.d/postgresql reload Oh, and the reason postgres wasn't pulled in when you installed sql-ledger is because you can set it up to use a database on another box. So you don't have to install postgres on the same box as sql-ledger. -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Re: [SLUG] SQL-ledger and IDENT fatal error...
Michael Chesterton [EMAIL PROTECTED] writes: The order of lines in pg_hba.conf is important. Probably put it underneath the first line that has 127.0.0.1 in it. That should be above the line that looks like host all all 127.0.0.1 255.255.255.255 ident sameuser Also, the pg_hba.conf in etc is the right file, the other file in /var is a symlink to the one in /etc. -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Re: [SLUG] Lindows experience.
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On Tue, Aug 16, 2005 at 08:21:27AM +1000, Paul Trevethan wrote: While I believe that Lindow^H^H^Hspire is a wart on the face of free software, I was shocked to see Ubuntu seemingly taking the same path. Am I missing something? Yep - the difference between running every process as root and secure access to administrative functionality via sudo. :-) It's still kind of risky to have a normal user running with unrestricted sudo rights, not as risky as running everything as root. Malicious software that has taken over the user's account can usually find a way to trick them into entering their password, especially when they are in the habit of entering it at various times anyhow. It's nice to have root as a DIFFERENT password because it provides a warning flag to the user. Also, is it not true that Ubuntu's action with regard super user rights only applies to the first user created during install. All subsequent users created do not display these sudo traits and behave as a normally restricted user on any other Linux (apart from Lindows). So, on install create a user called lord or such. Then when installed, create all the other standard users you require. Yes, this is a sensible idea, isolate the danger as much as possible. Probably most ubuntu users don't understand they should do this, then again, in a desktop-oriented operating system security is typically going to be a bit more lax than in a server-oriented system. My view is that Lindows, in its attempt to be so much like Windows to supposedly make it easier for 'crossover', has in fact become so much like it to include its security vulnerability. Why not stay with Windows? Price... freedom... attitude... I think it is an excellent thing to have a Linux distro that has the stated purpose of being as similar to Microsoft as possible. I wouldn't use it myself but I fully encourage anyone else to use it if (and only if) their main criteria for measuring technological progress is comparing things to Microsoft. For example, each and every time someone does a review of Debian or RedHat and comes to the conclusion It's not like Microsoft, the reply should always be a resounding, You should be using Linspire, go review that instead. This leaves the rest of the Linux community to go and do things that are not identical to Microsoft. - Tel -BEGIN PGP SIGNATURE- Version: GnuPG v1.2.6 (GNU/Linux) iQIVAwUBQwMfCsfOVl0KFTApAQIJiw/9FTfMh0bRImSBV80WinSEs1Lbf5p6/tPA Rts/lueO3towy49IxcABXbdOZzfFPwDadYRgr4sBwCob880G2wdNJau5hb27WJl0 z5P1dS3hPRUjkNPUPnN9l4Wc5JARhP8EpjW9qt5asdyRMK0xN+mGiVIu3I/cJbkm 1g1L3o+rvmQ95Ld9u63yeDJQyegGvB+GsMQdEIFcQEHdSFMOZXfclzGP7AIcl+Wl ViUjBkOj6q7Ga2qTVODnV78bvft0q8bSbpgGjksQ/25KVm7PfHQCiyHtGVfpzQBk +iaG1GsvgqQnaWPmuqY1LTvlXhdkUmr7tjEcGBYjDrL4uvDWYEZUNmKyv1wSiAqP XJ2BMSnXG2q3wFkdBXgWWOh2+Dk5boTddWKKli0O2IT3cumV+BxLjOzHaBrrLfcD HGd4uh9rq0GBIR2YHFKfIk0GlupU/usq2/PCHGPCvynhxfg40/6gE53b9d1/wp8k wSTH9ojWvwZR7vCuVeaYGQaJ0UvSHpob377oJRJWPiq/B1eYXRI6b2jYwRL+Lekq qtzB65Xk4HMB3lIZnd6XXDQeWquW0WaRrypSeptdd2/kdfVZWEozNR1AVqiMPH31 D6J6ZswYzc60l2f1a8M7047wa0VDsl2BMwkE3YkaSCJlqB2CrTqJDvibszy9VkPA CFJgogV0d3Y= =pcJN -END PGP SIGNATURE- -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Re: [SLUG] Font Server [Was: Looking for a Linux repair shop]
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On Tue, Aug 16, 2005 at 10:50:17AM +1000, Jeff Waugh wrote: Font servers are irrelevant these days, as modern tookits use client side font selection and rendering (fontconfig and Xft). Once upon a time, it was handy to have a font server running on your network so all your X servers (hardware terminals) could have access to the same fonts. Back when discs were small and all fonts were bitmap and compression was black magic, it seemed a good idea to avoid having many copies of the fonts spread around the network. This was probably about the same time that /usr/share was actually shared. - Tel -BEGIN PGP SIGNATURE- Version: GnuPG v1.2.6 (GNU/Linux) iQIVAwUBQwMgycfOVl0KFTApAQLtTxAAnOpZorbzxiZN1Kc0+Y1/Hhg11RD1Tvi3 88cETIngNMeZB6nlYby+azSeLqkDxYwMTvaWaueaby/Spgjxox2eSRvaR5wV79DR yW1A9Q9rxkr6zgh1dHm/0EWBpswFNlKOUX3yoAZnLTsyhtm7Rr4DEYfJvFTpO+CT 3wq7y3eakn5MRgXaOqns75ukpF6+uJDSWIVatSZQvhQb85XDN5Tbb53uwjvqOY/O kxRNP33b35BU9MpMRtpJlIzJPP9BAmR3mZDkmb5MeXlvP9p4PYsim6+620xZeG7j c7I5Tnpi3E0QaczCvebYyQuFUPehRQKBRk5R1VZM0MKNm+HcPeRB+s7UPQifhsT0 RsC+bjvWjqN9F4RZyiGVEJrUF6zgf1DM6GjtnKgQ/eM5Dy6LDliTrCoX60vHYqxe Wf1xcyuMuqh853IckyxV3I2+Z6OZXWd/4ezb0XEtFzLJ/2U6V4v/vpHsEMd6n1d4 RsJp9AnW0sT4/XeG7L9acxNPqe/oiv7M/37tkV6IUL6pJDlUjMGpyq0o8u2GzvRO y4KtHgTCxE4AYcDvYr2+PZC4m7LzT6b81KO8Z3h93zkBGQqBp90pMKx7rYgwu/C7 0yLn62yYuBBGlF8IZdmoLIRHRgmCWaBTi0gai3MBau/M5qa07pVEWkqOAxhaqinn orIWhsc/F90= =n9Dz -END PGP SIGNATURE- -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Re: [SLUG] turning html mail into text ?
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On Wed, Aug 17, 2005 at 10:04:07AM +1000, Voytek wrote: what is the best way to turn html mail into text, preferebaly before it ends in my inbox ? lynx -dump foo.html output.text if procmail, is there a ready made recipe for that ? You might need to use munpack followed by a bit of perl that looks at the unpacked files and makes decisions about what to keep, what to convert and how to pack it all up again. Someone else may have a suggestion for a good Open Source MIME translation engine, certainly procmail doesn't do it natively (yet). Remember that MIME email can contain a whole tree of mixed bits possibly including multiple copies of the same message in various formats. Also, spammers routinely send malformed MIME in an attempt to sneak past statistical filters (e.g. a large text block that looks honest to the filter, then an HTML block containing a completely different message that will be viewed in preference to the text). Might be a complex job to get it to handle all the variations correctly. - Tel -BEGIN PGP SIGNATURE- Version: GnuPG v1.2.6 (GNU/Linux) iQIVAwUBQwMlXsfOVl0KFTApAQIB9w/+LT1JAemw9VZLQ5MsGaYTO5go2/zgYLuA qZIWDYwAZ7fOgFyq9tJxloDGacNkRejfmY3pMiBcydS6DejLAErMbgT8r5QxiPyH pKgJ97zfdGKPV+Di2UMfROEH3NLsdUtAe4zSnruAlJhdPRpEeOpS4VpH2OjQMRkf HHymdheUjw7FqcRSXOaGC7rvPkrZ7xLLUYESj35ZIN7wk3KgG3aYe0VUaZDmv2ob 1qvSIb9Ct7///hG/eqwp9W6iDqDgL30yzmrj0zHtOQtJh+o5Y+90Odgd7FuN31U6 GNSUl3W5+Qa6qLCFodqCNW8BfYyAW9M3Q9444X5uUzgrhb3up3CjpB/J7p+G8VUK p3Uvat6KGz8IOgA2Od8rtwRN5Gm78UW1nCrlvBPS8Ecmos/S27z2KfBxDirWoa3e r84xy/+nNoL1Hyuln15abVjivMVbnVkaQZNAZvyoEOKsDpgoYoIwp4MHdDDGko89 W4gzpv7wnZxchFFavlk5/Ji7a17Ym1fZ6Db1/umkXB1WRfqLfZEXFfluIJSsOKrf cZH7umvjOuXhAGgKQZdTWQ2In+HFvU3Piwz9Rv8mxaw3nUrD2QFTaVqXUEQEgzLN Typ0FznZV/viEqXHglRKx9DkS+aSGSje3lpZIHLpF93VMMFdfxMLmctJ+Nx+diYn bs8QDlcPFuw= =LM8t -END PGP SIGNATURE- -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
[SLUG] kdeinit using 99% of processor
Hi all, I've just noticed an odd event in 'top'. FC3 3G P4 512Mb RAM 'top' is revealing a kdeinit process using 99% of the CPU. I've identified the process as konqueror: ps aux | grep 13081 patrick 13081 47.4 4.9 38052 24696 ? R23:01 1:51 kdeinit: konqueror --silent patrick 13129 0.0 0.1 5640 688 pts/2R+ 23:05 0:00 grep 13081 [EMAIL PROTECTED] ~]$ If I kill konqueror, it all goes back to normal. I'm not sure why it would be using so much of the cpu. I've done a quick google, and though others seem to have experienced the same, I couldn't quite find a solution... maybe I'm too tired (it is a bit late :)) Any ideas Thanks, Patrick -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Re: [SLUG] linux locks up cisco - but how/why?
At 09:08 AM 17/08/2005, Glen Turner wrote: DaZZa wrote: The Cisco device would block the bad port if it detects a problem. The switch ports in the c8?? are too dumb to do that. Aye. It's probably a jabbering network interface card (eg, sending the last packet repeatedly, with corruption). These are usually isolated by the switch, but we're talking household kit here (which tends to do cut-through switching which will pass jabbering frames whereas enterprise switches usual take the slower but safer path of receiving and checking the entire packet before re-transmitting it). I've found it to be the opposite .. commodity gear uses store-and-forward rather than other schemes. Rob -- All biography is ultimately fiction. This is random quote 225 of 1268. Distance from the centre of the brewing universe [15200.8 km (8207.8 mi), 262.8 deg](Apparent) Rennerian Public Key fingerprint = 6219 33BD A37B 368D 29F5 19FB 945D C4D7 1F66 D9C5 -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Re: [SLUG] How to complain about SORBS?
On 8/12/05, [EMAIL PROTECTED] [EMAIL PROTECTED] wrote: [EMAIL PROTECTED] wrote on 12/08/2005 12:53:44 PM: On Fri, Aug 12, 2005 at 10:34:52AM +1000, Martin ([EMAIL PROTECTED]) wrote: $quoted_author = Jobst Schmalenbach ; ;; ANSWER SECTION: mms.vic.edu.au. 300 IN MX 10 mail.mms.vic.edu.au. mail.mms.vic.edu.au.157 IN A 150.101.158.78 we are talking about 150.101.158.78, no? I could be way off track here but I think you will have problems with more than just SORBS I believe a number of mail servers now will refuse connections if the rdns does not resolve to a host with an MX record. -- James -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Re: [SLUG] SQL-ledger and IDENT fatal error...
You did restart your Postgresql after you changed pg_hba.conf...? Taryn East wrote: Hi all, I'm having some issues getting SQL-ledger to work and I'd be very grateful for any suggestions on where to look next. Basically, I'm running Ubuntu Hoary. I apt-get installed sql-ledger (btw, postgres didn't automatically get pulled in when I did that - should it have?) and set up the database users etc and have logged into the administration page. I am up to the step that tells me I should do a create dataset, but whatever I do (whether I put details in or not) it gives me the following error: Error! FATAL: IDENT authentication failed for user sql-ledger Now I've googled for answers and the FAQs all do mention this error - they tell me to edit pg_hba.conf and add local all all trust which I tried... to no avail. :( I googled further to find a suggestion to someone else, mentioning that they had had two copies around and it was seeing the wrong one... using find I see that I have both: /etc/postgresql/pg_hba.conf /var/lib/postgres/data/pg_hba.conf so that looks like a distinct possibility... I was hoping somebody would be able to help me to find out which one is the right one and what I do with it when I do... otherwise if anybody has any other good suggestions they would also be welcome. Thanks heaps, Taryn -- Howard. LANNet Computing Associates - Your Linux people http://lannet.com.au -- When you just want a system that works, you choose Linux; When you want a system that just works, you choose Microsoft. -- Flatter government, not fatter government; Get rid of the Australian states. -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
[SLUG] Linux Ethernet Bridging - Is there a legitimate use?
I have been doing some reading on Linux ethernet bridging - brctl and ebtables - and I can see how it could be used covertly on a network. What I would be interested to know is any examples where it has legitimate use on a fully owned and managed network that could not be achieved by other means. One that springs to mind is to extend a link beyond the 100m limit, but that could be done by using an off the shelf switch. Are there others. I would be interested in hearing of any examples that you are able to disclose... -- Howard. LANNet Computing Associates - Your Linux people http://lannet.com.au -- When you just want a system that works, you choose Linux; When you want a system that just works, you choose Microsoft. -- Flatter government, not fatter government; Get rid of the Australian states. -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Re: [SLUG] Linux Ethernet Bridging - Is there a legitimate use?
On Thu, Aug 18, 2005 at 08:17:04AM +1000, Howard Lowndes wrote: I have been doing some reading on Linux ethernet bridging - brctl and ebtables - and I can see how it could be used covertly on a network. What I would be interested to know is any examples where it has legitimate use on a fully owned and managed network that could not be achieved by other means. One that springs to mind is to extend a link beyond the 100m limit, but that could be done by using an off the shelf switch. Are there others. I would be interested in hearing of any examples that you are able to disclose... Bridges are often useful in diagnostic or security roles where you want to insert a machine into a network (perhaps temporarily) without reconfiguring things - you can just drop it in inline and everything Just Works. Linux Journal also had a useful article on bridges this year: http://www.linuxjournal.com/article/8172 Cheers, Gavin -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Re: [SLUG] NTPD behind a masquerade
Trying to sync with stratum 1 servers is the problem. Check pool.ntp.org. Err don't think I'm trying to do that, my config is; server 0.pool.ntp.org server 1.pool.ntp.org server 2.pool.ntp.org -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Re: [SLUG] Linux Ethernet Bridging - Is there a legitimate use?
They're used extensively with wireless networks. When setting up a wireless network you generally have it bridged with your normal physical network, or you NAT it (NAT is vil!). You'll find that most wireless ap's are configured to bridge out of the box. The Linksys WRT54* ap's are good examples of Linux ethernet bridging at work. Cheers, Lindsay Howard Lowndes wrote: I have been doing some reading on Linux ethernet bridging - brctl and ebtables - and I can see how it could be used covertly on a network. What I would be interested to know is any examples where it has legitimate use on a fully owned and managed network that could not be achieved by other means. One that springs to mind is to extend a link beyond the 100m limit, but that could be done by using an off the shelf switch. Are there others. I would be interested in hearing of any examples that you are able to disclose... -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Re: [SLUG] Linux Ethernet Bridging - Is there a legitimate use?
Howard Lowndes wrote: I have been doing some reading on Linux ethernet bridging - brctl and ebtables - and I can see how it could be used covertly on a network. What I would be interested to know is any examples where it has legitimate use on a fully owned and managed network that could not be achieved by other means. One that springs to mind is to extend a link beyond the 100m limit, but that could be done by using an off the shelf switch. Are there others. I would be interested in hearing of any examples that you are able to disclose... In the beginnig, the network bridge (Bridge) was invented to join two or more networks as one. Then Cisco invented the Router, and the Bridge dropped in popularity because Routers are easier to implement and manage. Then with many Routers on the network performance dropped due to latency caused by routing and many network engineers realised that they needed the bridge to minimize latency. So, again they invented the Switch which is really a Bridge with lots of network interfaces. Bridges work on layer-two whilst routers work on layer-three. In this view, it is deemed to be less risky and network engineers again made bridges that worked in cooperation with firewalls and came up with the term transparent bridging. There are other ideas around bridges but from these you can figure out that you can do lots of things with bridges in combination with other technologies, including those things that nobody has yet figured out. I hope this is helpful. O Plameras -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Re: [SLUG] Linux Ethernet Bridging - Is there a legitimate use?
...and then Lindsay Holmwood said: ap's are configured to bridge out of the box. The Linksys WRT54* ap's are good examples of Linux ethernet bridging at work. For what it's worth, pretty much the first thing I did with my WRT54G after reflashing it was to disable the wireless-wired bridge.. -- Pete -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Re: [SLUG] Linux Ethernet Bridging - Is there a legitimate use?
Out of interest, why did you do that? Peter Hardy wrote: ...and then Lindsay Holmwood said: ap's are configured to bridge out of the box. The Linksys WRT54* ap's are good examples of Linux ethernet bridging at work. For what it's worth, pretty much the first thing I did with my WRT54G after reflashing it was to disable the wireless-wired bridge.. -- Pete -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
[SLUG] Software Freedom Day
So is anyone planning activities for Software Freedom Day? Need any help? Trent -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
[SLUG] Xen and the art of disk allocation
Hi there An interesting one. I am looking at allocating space on a spare 686 for several distros and probably playing with Xen at the same time. My plan is: /dev/hdb1 gentoo, xen kernel install, mbr etc /dev/hdb2 debian install bootable from xen or standard mbr /dev/hdb3 something else... My usual work environment is gentoo with java so I can do most of my stuff by booting of the first partion. The reason for using partions was to keep things really clean and allow me to test stuff. I have been told in the past that I can test stuff in livecds etc but thats tricky for postgresql/openldap etc etc. There are other ways of doing this. I think I could be using weird file systems to pretend they are partions for example. Does anyone have any thoughts? BTW. For those of you who are considering the new gui gentoo installer Most interested in responses... Stuart -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Re: [SLUG] Linux Ethernet Bridging - Is there a legitimate use?
G'day... Howard said I have been doing some reading on Linux ethernet bridging - brctl and ebtables - and I can see how it could be used covertly on a network. What I would be interested to know is any examples where it has legitimate use on a fully owned and managed network that could not be achieved by other means. Have to say that Oscar provided a great discussion. Some examples I'd give would be: a) traffic analysis (what type of traffic is going where, an applied purpose may be to shape or prioritise traffic appropriately) b) network intrusion detection system (detect if anyone gains unauthorised access to the network and gather as much information as possible) c) program debugging (viewing actual behaviour vs expected behaviour) d) egineering/reverse engineering/interoperability (what communication is occuring, can we recognise patterns / cause and effect that allow us to be able to create an application/protocol that is interoperable) Also, FWIW, a hub is a bridging device that echoes everything it receives on one port on all other ports whilst a switch is a bridging device that maintains a table of what address is connected to what port and (where possible) only echoes what it receives on one port onto the appropriate port (it does this through a process of observation). All the best... Regards, Michael Kraus Software Developer [EMAIL PROTECTED] Direct Line 02 8306 0007 Wild Technology Pty Ltd , ABN 98 091 470 692 Sales - Ground Floor, 265/8 Lachlan Street, Waterloo NSW 2017 Admin - Level 4 Tiara, 306/9 Crystal Street, Waterloo NSW 2017 Telephone 1300-13-9453 | Facsimile 1300-88-9453 http://www.wildtechnology.net DISCLAIMER CONFIDENTIALITY NOTICE: The information contained in this email message and any attachments may be confidential information and may also be the subject of client legal - legal professional privilege. If you are not the intended recipient, any use, interference with, disclosure or copying of this material is unauthorised and prohibited. This email and any attachments are also subject to copyright. No part of them may be reproduced, adapted or transmitted without the written permission of the copyright owner. If you have received this email in error, please immediately advise the sender by return email and delete the message from your system. -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Re: [SLUG] Lindows experience.
quote who=[EMAIL PROTECTED] Probably most ubuntu users don't understand they should do this, then again, in a desktop-oriented operating system security is typically going to be a bit more lax than in a server-oriented system. The same setup is used in Ubuntu whether you install it as a desktop or a server. From my POV, using sudo is a no-brainer for a server too, though locking root feels (only) slightly less sensible. - Jeff -- GNOME Summit: October 8th-10th http://live.gnome.org/Boston2005 o/~ we all live in a yellow subroutine o/~ - auspex -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Re: [SLUG] Linux Ethernet Bridging - Is there a legitimate use?
quote who=Howard Lowndes I have been doing some reading on Linux ethernet bridging - brctl and ebtables - and I can see how it could be used covertly on a network. What I would be interested to know is any examples where it has legitimate use on a fully owned and managed network that could not be achieved by other means. I've built mail firewall devices that operate without an IP address. You'd just drop it in between the mail server and the switch, and it'd (mostly) self-configure. It short-circuited web and mail traffic to really nicely lock down access to an Exchange server behind it (most of the features were designed to protect Exchange, but it would work with any SMTP server). - Jeff -- linux.conf.au 2006: Dunedin, New Zealand http://linux.conf.au/ Whatcha wanna be when you grow up? Eight and a half. -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
[SLUG] sending email from a laptop
My laptop needs to connect to different SMTP servers, depending on the network I'm on. What I'd like to do is have some sort of mail server running on my laptop, and then have it try different SMTP servers until sending mail succeeds on one of them ie from my mail client send to 127.0.0.1:25 and have the listening program just work it out. At the moment I'm using Postfix - can I do this in Postfix? What about another mail transport program? PS I know there's packages out there that can detect which network I'm on (and set environment variables etc), but for various reasons I don't want to do that. -- Sonia Hamilton. GPG key A8B77238. . Veni Vidi Linux! -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
[SLUG] Filesystem problem
I've got myself into a real pickle. I use Fedora Core 3. It's on hdb, while hda is devoted to WinXP. I understood that if I created a partition on hbd with filesystem type vfat, that partition could be shared by both FC3 and WinXP. I tried to achieve that on installation of FC3, but, contrary to my expectation, the relevant partition was given filesystem type ext3 instead. I wanted to change the filesystem type of the relevant partition, hdb3, from ext3 to vfat. I knew about parted, which was installed as part of my FC3 distribution. I read the manual and it seemed to me that if I started parted, told it I wanted to edit hdb3 and then issued the command mkfs 3 fat32, I'd get for hdb3 the filesystem type vfat. Because I was worried about it, I sought assurance on the parted mailing list that that would work and was given that assurance. I tried it and the first thing I was told was that hdb3 was mounted and I'd have to unmount it before I could change its filesystem type. I was a bit surprised by that, since the parted manual says: If you modify the partition table of a disk that contains a partition that is currently mounted then you should reboot immediately; otherwise Linux won't know about the changes you made to the partition table. That seemed to me to imply that I could change hdb3's filesystem type even if hdb3 was mounted. However, I followed the implied instruction on the screen and unmounted hdb3. I then issued the command to change hdb's filesystem type to vfat. I assume it worked, because next I got the root prompt again, with no intervening error message. Next, I rebooted, following, as I thought, what had appeared in the manual. That was obviously a mistake. I gather now that I should have remounted hdb3 before rebooting, because of what happened on reboot. I set out the relevant bit: Checking filesystems fsck.ext3: Unable to resolve 'LABEL=/shared' [failed] An error occurred during the file system check. Dropping you to a shell: the system will reboot when you leave the shell. Give root password for maintenance (or type Control-D to continue): (I add that /shared was the mountpoint for hdb3.) When I typed Control-D, that just got me into a loop. The machine rebooted and when I chose Linux as my OS, I got the same message again. On the other hand, when I gave the root password, I got the following message: (Repair filesystem) 1 # I have no idea how I'm to respond to that root prompt and so can't get back into Linux. Any help would be very much appreciated. Thanks. -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
[SLUG] timeline generation software
Does anyone know of some (open source) software that will generate a pretty look timeline? I'd like something that takes: 1975 Foo 1976 Bar 1980 Baz 1985 Qar and produces something like this in EPS: + | 1975 19801985 |Foo Baz Qar +-+--+-+--+ 1976 Bar I'm sure I could manually do this in Xfig, but that will take me all day. I'm also sure I could write something myself to do it but that sounds like perverse procrastination, so I'd prefer not to. Thanks, Benno -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
RE: [SPAM - FORGED HEADERS ] - [SLUG] Filesystem problem - Email found in subject
AFAIK from what you've told me you need to edit /etc/fstab so that it is correct (currently it has /shared as ext3 rather than vfat) The prompt that is: (Repair filesystem) 1 # Is fine, it's just your prompt, it just looks a bit different when you're in this mode that's all. You should never change the type of a mounted filesystem. Unmount it. Make the changes to it. **Edit the filesystem configuration files**. Remount it to ensure it all works. Reboot. Having said that, it's also best to format a partition using that partition types native OS i.e. it's best to let windows create a windows filesystem (fat32). (However, this is old advice and I don't know if this is still the current recommendation.) All the best. Regards, Michael Kraus Software Developer [EMAIL PROTECTED] Direct Line 02 8306 0007 Wild Technology Pty Ltd , ABN 98 091 470 692 Sales - Ground Floor, 265/8 Lachlan Street, Waterloo NSW 2017 Admin - Level 4 Tiara, 306/9 Crystal Street, Waterloo NSW 2017 Telephone 1300-13-9453 | Facsimile 1300-88-9453 http://www.wildtechnology.net DISCLAIMER CONFIDENTIALITY NOTICE: The information contained in this email message and any attachments may be confidential information and may also be the subject of client legal - legal professional privilege. If you are not the intended recipient, any use, interference with, disclosure or copying of this material is unauthorised and prohibited. This email and any attachments are also subject to copyright. No part of them may be reproduced, adapted or transmitted without the written permission of the copyright owner. If you have received this email in error, please immediately advise the sender by return email and delete the message from your system. -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
