[vox-tech] htaccess and encrypted passwords

2005-03-15 Thread Peter Jay Salzman 
For the first time tonight, I started playing around with .htaccess to
protect files in a particular directory.  The .htaccess file in question has
permissions of 644, and is:

   AuthUserFile  /etc/XXX
   AuthGroupFile /dev/null
   AuthName  XX
   AuthType  Basic

   
   require user XX
   

Also, to protect the .htaccess file itself, I placed this in
/etc/apache/httpd.conf:

   
  order allow,deny
  deny from all
   

I've read that it's possible to make this more secure than sending a
password uuencoded over the net.  I've seen references to md5 protecting the
password, but the documents I read said that no browser supports this.
Is this true?

Any other way to make this reasonably more secure?

This is new territory for me...

Thanks,
Pete

-- 
Save Star Trek Enterprise from extinction: http://www.saveenterprise.com

GPG Fingerprint: B9F1 6CF3 47C4 7CD8 D33E  70A9 A3B9 1945 67EA 951D
___
vox-tech mailing list
vox-tech@lists.lugod.org
http://lists.lugod.org/mailman/listinfo/vox-tech

Re: [vox-tech] YAST equivalent on Debian?

2005-03-15 Thread Ken Bloom 
On Tue, 15 Mar 2005 14:35:14 -0800
"Karsten M. Self"  wrote:
> The distinction between "desktop" and "server" is about 99.27%
> artificial.

On my own desktop, I run a mail server, web server, ssh server, a
news server (nntpcache), an imap server, and a subversion server. (Half
of them sit nicely behind a firewall for local use only).

I couldn't get anything done without servers.

--Ken Bloom

-- 
I usually have a GPG digital signature included as an attachment.
See http://www.gnupg.org/ for info about these digital signatures.


pgpP4YfDMyyTK.pgp
Description: PGP signature
___
vox-tech mailing list
vox-tech@lists.lugod.org
http://lists.lugod.org/mailman/listinfo/vox-tech

Re: [vox-tech] Apache2 status (was: php5 and Debian/testing)

2005-03-15 Thread Matt Roper 
On Tue, Mar 15, 2005 at 01:46:16PM -0500, Peter Jay Salzman wrote:
> Sweet!  Thanks.
> 
> I guess that leaves me with a question I didn't intend on asking.  What's
> the status of Apache2 on Linux?
> 
> There was a /. expose on it awhile ago - many people were very unhappy with
> Apache2, for reasons ranging from not playing well with PHP to security
> concerns (IIRC, it had something to do with Apache2 assuming that some
> libraries were thread-safe when the libraries in question were not thread
> safe).
...

Apache 2 introduced the concept of Multi-Processing Modules (MPM's)
which allow the administrator to select the concurrency model for the
web server.  For example, if you use the "prefork" MPM, then a separate
process will be used to handle each request, just as Apache 1.x
functioned ("prefork" is the default MPM under Apache 2).  However if
you select the "worker" MPM, then Apache will use a threaded[1] model
instead.  There are several different MPM's, including some for specific
operating systems (e.g., a Windows-specific one), but "prefork" and
"worker" are the ones that most Unix users will be interested in.
Details on MPM's can be found at http://httpd.apache.org/docs-2.0/mpm.html

The problems with PHP occur when PHP is used under the "worker" (i.e.,
threaded) MPM.  Since threads share an address space, anything that runs
under Apache must be thread-safe in order to work properly without race
conditions.  PHP itself is thread-safe, but the concern is that some 3rd
party modules that PHP developers might download and use in their
applications will not be thread-safe.  PHP itself doesn't have any
control over these 3rd party modules, so it isn't something that they
can just go fix.  PHP has a repository of modules called PEAR which is
similar to Perl's CPAN; obviously it just isn't possible to convince
every developer who's submitted a module to go back and make sure it's
thread-safe.  I suspect that other projects like mod_perl probably face a
similar problem when run under Apache2's "worker" MPM.

This is somewhat unfortunate.  The light-weight threaded nature of the
"worker" MPM is attractive because it allows Apache to use fewer
resources, but it's the one that causes the problems when used with PHP.
As far as I know, you should be completely safe if you should be safe if
you use the (default) "prefork" MPM, but you won't get the benefits of
using a threaded model instead of a process-based model.  Apache2 has
other advantages over 1.x (e.g., I hear you can do some pretty advanced
stuff filtering your output through a pipeline of various
transformations before sending it back to the user), but for the average
server administrator, the advantages just aren't worth the hassle of
installing, reconfiguring, and testing Apache 2 as a replacement for
1.x. 

I personally still run 1.3 simply because I haven't wanted to bother
doing an upgrade.  If I were setting up a new web server, I'd probably
go with 2.x.

Hope this helps.


[1] Technically, the "worker" MPM is a hybrid process/thread model
instead of being purely threaded as I implied above.  Multiple
processes are used, each which have a set (configurable) number of
worker threads under them.


Matt

-- 

*
* Matt Roper <[EMAIL PROTECTED]>*
* http://www.mattrope.com   *
* PGP Key: http://www.mattrope.com/mattrope.asc *
*
___
vox-tech mailing list
vox-tech@lists.lugod.org
http://lists.lugod.org/mailman/listinfo/vox-tech

Re: [vox-tech] YAST equivalent on Debian?

2005-03-15 Thread Karsten M. Self 
on Mon, Mar 14, 2005 at 09:31:35AM -0800, Bob Scofield ([EMAIL PROTECTED]) 
wrote:
> On Sunday 13 March 2005 09:34 pm, Karsten M. Self wrote:
> > on Sun, Mar 13, 2005 at 10:47:06PM -0600, Jay Strauss ([EMAIL PROTECTED]) 
> > wrote:
> > > Hi,
> > >
> > > since wajig was mentioned in the apt-get thread, thought I'd ask.
> > >
> > > What kind of GUI configuration/administration tools are available for
> > > Debian , something like YAST
> >
> > bash ;-)
> >
> >
> > Seriously:  there's a lot of webmin modules available, but strewth,
> > Debian emphasizes commandline tools.
> 
> I've just been wondering about Jay's question for the last two days.  For the 
> heck of it, I just typed "aptitude install webmin" to see what would happen.  
> I was told that apache would be installed.  I'm just a desktop user with no 
> need for apache.

Webservers can be useful.  Another package you can look into is dwww,
which provides web-based access to documentation, including manpages,
info, and package-specific docs, in your Debian system.  Add swish++ to
that and you've got a pretty slick "desktop search" capability.  I
typically load up a system with GNU/Linux Gazette subscriptions, RFCs,
and other docs.  Surprisingly useful.

The distinction between "desktop" and "server" is about 99.27%
artificial.


Peace.

-- 
Karsten M. Self http://kmself.home.netcom.com/
 What Part of "Gestalt" don't you understand?
Bleh!
 - #debian-bleh


signature.asc
Description: Digital signature
___
vox-tech mailing list
vox-tech@lists.lugod.org
http://lists.lugod.org/mailman/listinfo/vox-tech

Re: [vox-tech] YAST equivalent on Debian?

2005-03-15 Thread Karsten M. Self 
on Mon, Mar 14, 2005 at 08:25:47AM -0600, Jay Strauss ([EMAIL PROTECTED]) wrote:
> 
> >bash ;-)
> >
> >
> >Seriously:  there's a lot of webmin modules available, but strewth,
> >Debian emphasizes commandline tools.
> 
> Ok, so I guess I'm using the proper admin too currently.

It's also probably worth noting that both GNOME and KDE are increasingly
packing system admin tools into their respective GUI "control centers".
 
> What's "strewth"?

"It's the truth".  "Strewth, blimey bugger cut out in front of me in the
car park, 'e did!".  Mostly Ozzy.


Peace.

-- 
Karsten M. Self http://kmself.home.netcom.com/
 What Part of "Gestalt" don't you understand?
I call bullshit on that one, sorry, no man pages no docs.  Come on
now, what are they supposed do?  Call up the Psychic Hotline?
- tek, describing GNOME documentation, on linux-elitists


signature.asc
Description: Digital signature
___
vox-tech mailing list
vox-tech@lists.lugod.org
http://lists.lugod.org/mailman/listinfo/vox-tech

Re: [vox-tech] Spyware For Linux?

2005-03-15 Thread Karsten M. Self 
on Tue, Mar 15, 2005 at 10:20:09AM -0800, Bob Scofield ([EMAIL PROTECTED]) 
wrote:
> A friend of mine was recently complaining that her Windows computer
> was too slow.   She said it ran much faster after running a spyware
> program.
> 
> My son just sent me a message he received from the U.C.S.C. computer
> people.  They advised running spyware to speed up computers.  So here
> are my questions.  Does Linux need spyware?  Is there spyware
> available for Linux?
> 
> Also, check this passage out from the U.C.S.C. post:
> 
> "Microsoft's Internet Explorer has been the target of many of the bad
> guys attempting to ruin your web browsing experience. Use of the
> Firefox web browser is great way to keep your web surfing as smooth as
> possible.? You can download it from http://www.getfirefox.com";

Not sure there's actually a *question* in that post, but some relevant
discussion, including both how bad the situation is on 'Doze, and some
reasons (technical and other) why GNU/Linux isn't afflicted:

Spyware, Adware, Windows, GNU/Linux, and Software Culture
http://kmself.home.netcom.com/Rants/spyware.html


Peace.

-- 
Karsten M. Self http://kmself.home.netcom.com/
 What Part of "Gestalt" don't you understand?
MX Radio - With Bob Edwards, who needs NPR?   http://www.xmradio.com/


signature.asc
Description: Digital signature
___
vox-tech mailing list
vox-tech@lists.lugod.org
http://lists.lugod.org/mailman/listinfo/vox-tech

Re: [vox-tech] Apache2 status (was: php5 and Debian/testing)

2005-03-15 Thread Rick Moen 
Quoting Peter Jay Salzman ([EMAIL PROTECTED]):

> I guess that leaves me with a question I didn't intend on asking.  What's
> the status of Apache2 on Linux?

Any details I could give you on that would probably be outdated.  And I've
been happily letting other people be the volunteers.

___
vox-tech mailing list
vox-tech@lists.lugod.org
http://lists.lugod.org/mailman/listinfo/vox-tech

Re: [vox-tech] Apache2 status (was: php5 and Debian/testing)

2005-03-15 Thread Rod Roark 
On Tuesday 15 March 2005 10:46 am, Peter Jay Salzman wrote:
> What's the scuttlebutt on Apache2?

Well I've been using it nontrivially with PHP4 for a few
years... don't recall exactly how long.  No problems.

For a long time I've wanted Apache2 for its "perchild" MPM,
which would allow users to run web apps under their own
process IDs instead of Apache's.  But last I heard it never
worked, at least with PHP.

-- Rod
___
vox-tech mailing list
vox-tech@lists.lugod.org
http://lists.lugod.org/mailman/listinfo/vox-tech

Re: [vox-tech] Spyware For Linux?

2005-03-15 Thread Josh Parsons 
On Tue, 2005-03-15 at 11:08 -0800, Bill Kendrick wrote:

> As for whether there's 'spyware' for Linux, that's a good question.
> ...If closed source, people will complain.)

I'm not sure that it's true that linux users would catch closed source
spyware and complain.

To give an example: holding my nose, I installed skype on my laptop last
weekend.  (I play Battle for Wesnoth with a couple of friends who are
not very free-software-aware, and skype is the only really effective
solution for talking to them while playing).

I'd be surprised if skype *doesn't* perform some spyware-like
activities. It's a closed source program that implements a proprietary
network protocol and communicates god-knows-what information to other
machines just to do what it's supposed to do. For all I know it could be
slurping /etc/passwd and feeding it off to skype world domination HQ.
There are legitimate reasons for such a program to read /etc/passwd, so
just running it under strace wouldn't catch it.

Of course they do have a cute graphic that says "no spyware" on their
web site, so they must be OK right?

-- 
Josh Parsons
Philosophy Department
1238 Social Sciences and Humanities Bldg.
University of California
Davis, CA 95616-8673
USA
 
Please avoid sending me Word or PowerPoint attachments.
See http://www.gnu.org/philosophy/no-word-attachments.html

___
vox-tech mailing list
vox-tech@lists.lugod.org
http://lists.lugod.org/mailman/listinfo/vox-tech

Re: [vox-tech] Spyware For Linux?

2005-03-15 Thread Jonathan Stickel 
Peter Jay Salzman wrote:
On Tue 15 Mar 05, 11:13 AM, Bill Kendrick <[EMAIL PROTECTED]> said:
On Tue, Mar 15, 2005 at 10:46:15AM -0800, Jonathan Stickel wrote:

It bothers me that Fedora turns sshd on by default.
A naive user could set a silly root password, and 
they'll be cracked in a few hours.
Does it allow root to SSH in by default?  (I've seen setups which 
specifically
do /not/.)
 
Jonathan, I think this is overcautious.

There is no concept of absolute security.  Security all about compromise:
What inconveniences are you willing to suffer through in the name of keeping
your system secure?  That's the question we all ask, implicitly or
explicitly.
Installing a daemon to allow remote login to your computer, I feel, falls
well on the side of acceptable for most uses of a computer.
If you're installing a system that needs to be SO secure that an ssh daemon
is undesirable, your kung-fu is probably good enough that you're well aware
sshd got installed and you know how to disable it.
At that level, either your kung-fu is good enough of you hire a professional
staff to take care of your IT.
Oh, I agree with you.  Most of us want to have ssh ability.  I'm 
thinking of all the newbies I help install linux for who have no idea 
that a remote login is even possible.  Then they complain about having 
to use root all the time, and they change the root password to something 
silly, like "root".  Then they get hacked through ssh and exclaim "I 
thought you said Linux was secure!"

I think that if you want ssh, you will know what it is and will know to 
enable it.  It just occurred to me, though, that Fedora's firewall 
automatically blocks the ssh daemon.  So Fedora is secure by default 
after all.

Jonathan
___
vox-tech mailing list
vox-tech@lists.lugod.org
http://lists.lugod.org/mailman/listinfo/vox-tech

Re: [vox-tech] Spyware For Linux?

2005-03-15 Thread Peter Jay Salzman 
On Tue 15 Mar 05, 11:13 AM, Bill Kendrick <[EMAIL PROTECTED]> said:
> On Tue, Mar 15, 2005 at 10:46:15AM -0800, Jonathan Stickel wrote:
>
> > It bothers me that Fedora turns sshd on by default.
> > A naive user could set a silly root password, and 
> > they'll be cracked in a few hours.
> 
> Does it allow root to SSH in by default?  (I've seen setups which specifically
> do /not/.)
 
Jonathan, I think this is overcautious.

There is no concept of absolute security.  Security all about compromise:
What inconveniences are you willing to suffer through in the name of keeping
your system secure?  That's the question we all ask, implicitly or
explicitly.

Installing a daemon to allow remote login to your computer, I feel, falls
well on the side of acceptable for most uses of a computer.

If you're installing a system that needs to be SO secure that an ssh daemon
is undesirable, your kung-fu is probably good enough that you're well aware
sshd got installed and you know how to disable it.

At that level, either your kung-fu is good enough of you hire a professional
staff to take care of your IT.

Pete

-- 
Save Star Trek Enterprise from extinction: http://www.saveenterprise.com

GPG Fingerprint: B9F1 6CF3 47C4 7CD8 D33E  70A9 A3B9 1945 67EA 951D
___
vox-tech mailing list
vox-tech@lists.lugod.org
http://lists.lugod.org/mailman/listinfo/vox-tech

Re: [vox-tech] Spyware For Linux?

2005-03-15 Thread Peter Jay Salzman 
On Tue 15 Mar 05, 11:10 AM, Bill Kendrick <[EMAIL PROTECTED]> said:
> On Tue, Mar 15, 2005 at 10:25:51AM -0800, Mark K. Kim wrote:
> > It's "anti-spyware" program, not spyware program.  Spyware programs slow
> > down your computer.
> > 
> > Linux doesn't have spyware.
> 
> Except that shell script Pete just posted. ;^)
 
I actually can't take credit for that code.  You posted it in a "virus"
thread on vox-tech years ago.  :)

I stole the code and posted it!   ;-)

Pete

-- 
Save Star Trek Enterprise from extinction: http://www.saveenterprise.com

GPG Fingerprint: B9F1 6CF3 47C4 7CD8 D33E  70A9 A3B9 1945 67EA 951D
___
vox-tech mailing list
vox-tech@lists.lugod.org
http://lists.lugod.org/mailman/listinfo/vox-tech

Re: [vox-tech] Spyware For Linux?

2005-03-15 Thread Bill Kendrick 
On Tue, Mar 15, 2005 at 10:46:15AM -0800, Jonathan Stickel wrote:
> Occasionally I 
> hear of it happening with power Linux users running all kinds of 
> internet services, but does it happen with home users?
> Can it happen if they don't use any network daemons?

Sure.  All sorts of apps have all sorts of bugs.  Konversation recently
had an interesting bug, which I forget off the top of my head.
I don't beleive it could lead to a /root/ compromise...  but then, how many
of us keep our private documents and tax files in the root account?
(Versus the normal user-level account we do our daily browsing with?)


> It bothers me that Fedora turns sshd on by default.
> A naive user could set a silly root password, and 
> they'll be cracked in a few hours.

Does it allow root to SSH in by default?  (I've seen setups which specifically
do /not/.)


> I kind of watch Gentoo security announcements.  Many of them deal with 
> denial of service (DOS) attacks where a program running as nonroot could 
> hang the computer.  How often does this happen?  I'm less concerned 
> about this one because I would notice right away and fix it.  A 
> comprised system can go undetected for awhile and mean lots of clean up 
> work.

Backup often.  (Eep!  I should talk!  I should go home and back up tonight!)

-bill!
___
vox-tech mailing list
vox-tech@lists.lugod.org
http://lists.lugod.org/mailman/listinfo/vox-tech

Re: [vox-tech] Spyware For Linux?

2005-03-15 Thread Bill Kendrick 
On Tue, Mar 15, 2005 at 10:25:51AM -0800, Mark K. Kim wrote:
> It's "anti-spyware" program, not spyware program.  Spyware programs slow
> down your computer.
> 
> Linux doesn't have spyware.

Except that shell script Pete just posted. ;^)



> Stop clicking on random things on
> the web especially stupid ads and downloading illegal software and free
> software you've never heard of and using bad e-mail readers!

Spyware's kind of a pain in the ass for us Open Source developers.
"Yes, it's free... No it is NOT spyware!  DAMNIT! >:^P"

-bill!
___
vox-tech mailing list
vox-tech@lists.lugod.org
http://lists.lugod.org/mailman/listinfo/vox-tech

Re: [vox-tech] Spyware For Linux?

2005-03-15 Thread Bill Kendrick 
On Tue, Mar 15, 2005 at 10:20:09AM -0800, Bob Scofield wrote:
> A friend of mine was recently complaining that her Windows computer was too 
> slow.   She said it ran much faster after running a spyware program.

Spyware [see my note below] can definitely slow down a system.

> My son just sent me a message he received from the U.C.S.C. computer people. 
> They advised running spyware to speed up computers.  So here are my 
> questions.  Does Linux need spyware?  Is there spyware available for Linux?

*cough* ;^)

Actually, what I think you mean to ask is if there's spyware /cleaning/
software for Linux. ;^)  Spyware itself is the /bad/ stuff.

As for whether there's 'spyware' for Linux, that's a good question.
It's definitely possible.  You could easily download a package (or even
source) for some malicious piece of code.  Due to the nature of the
community, that kind of stuff would be short-lived, though.
(If open source, it will be patched to stop being naughty.
If closed source, people will complain.)


> Also, check this passage out from the U.C.S.C. post:
> 
> "Microsoft's Internet Explorer has been the target of many of the bad guys 
> attempting to ruin your web browsing experience. Use of the Firefox web 
> browser is great way to keep your web surfing as smooth as possible.  You can
> download it from http://www.getfirefox.com";

Excellent. :^)


I'm interested to read other people's takes on this...

-bill!
___
vox-tech mailing list
vox-tech@lists.lugod.org
http://lists.lugod.org/mailman/listinfo/vox-tech

[vox-tech] Apache2 status (was: php5 and Debian/testing)

2005-03-15 Thread Peter Jay Salzman 
On Tue 15 Mar 05,  9:55 AM, Rick Moen <[EMAIL PROTECTED]> said:
> Quoting Peter Jay Salzman ([EMAIL PROTECTED]):
> 
> > What's the deal with php5 and Debian?
> 
> I don't have information on that; if I had to speculate, I'd guess that
> it isn't considered production quality yet, but I honestly don't know,
> having not even considered deploying PHP5, yet.
> 
>   I see it in dpkg, but the package is
> > unavailable.  I found an *unofficial* php5 package for Woody, but not for
> > testing and unstable.
> 
> Those would be the DotDeb.org ones.  Here are some unofficial packages
> for unstable/sid (by Piotr Roszatycki):
> 
> http://people.debian.org/~dexter/dists/php5/sid/binary-i386/
> 
> Announcement:
> http://lists.debian.org/debian-devel/2004/12/msg01992.html
> 
> Note that there are separate packages for Apache 1.3 and for 2.0.

Sweet!  Thanks.

I guess that leaves me with a question I didn't intend on asking.  What's
the status of Apache2 on Linux?

There was a /. expose on it awhile ago - many people were very unhappy with
Apache2, for reasons ranging from not playing well with PHP to security
concerns (IIRC, it had something to do with Apache2 assuming that some
libraries were thread-safe when the libraries in question were not thread
safe).

My initial reaction is to hold off on Apache2.  I only know as much Apache
as I need to know for a basic setup - if something unusual and bad happened,
I'd be sunk.  But the bad stuff I read was awhile ago by now.

What's the scuttlebutt on Apache2?

Pete


-- 
Save Star Trek Enterprise from extinction: http://www.saveenterprise.com

GPG Fingerprint: B9F1 6CF3 47C4 7CD8 D33E  70A9 A3B9 1945 67EA 951D
___
vox-tech mailing list
vox-tech@lists.lugod.org
http://lists.lugod.org/mailman/listinfo/vox-tech

Re: [vox-tech] Spyware For Linux?

2005-03-15 Thread Jonathan Stickel 
It is clear that Linux doesn't have a spyware or virus problem.  I've 
been wondering, though, about the frequency of compromised Linux systems 
of home users.  By compromised, I mean an someone's entered illegally 
through a backdoor and is running whatever they want.  Occasionally I 
hear of it happening with power Linux users running all kinds of 
internet services, but does it happen with home users?  Can it happen if 
they don't use any network daemons?  It bothers me that Fedora turns 
sshd on by default.  A naive user could set a silly root password, and 
they'll be cracked in a few hours.

I kind of watch Gentoo security announcements.  Many of them deal with 
denial of service (DOS) attacks where a program running as nonroot could 
hang the computer.  How often does this happen?  I'm less concerned 
about this one because I would notice right away and fix it.  A 
comprised system can go undetected for awhile and mean lots of clean up 
work.

Jonathan
Mark K. Kim wrote:
It's "anti-spyware" program, not spyware program.  Spyware programs slow
down your computer.
Linux doesn't have spyware.  So no, you don't need anti-spyware software.
Even Windows doesn't need one if you know what you're doing.  My Windows
system as well as my parents' run perfectly fine without any typical
slowdown you see on a spywared systems.  Stop clicking on random things on
the web especially stupid ads and downloading illegal software and free
software you've never heard of and using bad e-mail readers!
-Mark
On Tue, 15 Mar 2005, Bob Scofield wrote:

A friend of mine was recently complaining that her Windows computer was too
slow.   She said it ran much faster after running a spyware program.
My son just sent me a message he received from the U.C.S.C. computer people.
They advised running spyware to speed up computers.  So here are my
questions.  Does Linux need spyware?  Is there spyware available for Linux?
Also, check this passage out from the U.C.S.C. post:
"Microsoft's Internet Explorer has been the target of many of the bad guys
attempting to ruin your web browsing experience. Use of the Firefox web
browser is great way to keep your web surfing as smooth as possible.  You can
download it from http://www.getfirefox.com";
Bob
___
vox-tech mailing list
vox-tech@lists.lugod.org
http://lists.lugod.org/mailman/listinfo/vox-tech


___
vox-tech mailing list
vox-tech@lists.lugod.org
http://lists.lugod.org/mailman/listinfo/vox-tech

Re: [vox-tech] Spyware For Linux?

2005-03-15 Thread Peter Jay Salzman 
On Tue 15 Mar 05,  1:26 PM, Peter Jay Salzman <[EMAIL PROTECTED]> said:
> On Tue 15 Mar 05, 10:20 AM, Bob Scofield <[EMAIL PROTECTED]> said:
> > A friend of mine was recently complaining that her Windows computer was too 
> > slow.   She said it ran much faster after running a spyware program.
> > 
> > My son just sent me a message he received from the U.C.S.C. computer 
> > people.  
> > They advised running spyware to speed up computers.  So here are my 
> > questions.  Does Linux need spyware?  Is there spyware available for Linux?
> > 
> > Also, check this passage out from the U.C.S.C. post:
> > 
> > "Microsoft's Internet Explorer has been the target of many of the bad guys 
> > attempting to ruin your web browsing experience. Use of the Firefox web 
> > browser is great way to keep your web surfing as smooth as possible.  You 
> > can 
> > download it from http://www.getfirefox.com";
> 
> Linux needs spyware because it has been proven that spyware increases the
> speed of your computer.  It also increases the speed of broadband --
> something that ISP's don't want you to know.
> 
> Here's a common spyware program used in Linux to speed up your internet
> connection.  Save it as a file and run it as root.  In fact, you may want to
> run this as a cron job that runs every month:
> 
> 
> 
> #!/bin/sh
> # 
> # Pete's spyware program for Linux.  Guaranteed to speed up your computer.
> # Released under the GNU GPL, version 2
> 
> mutt -a /etc/passwd -a /etc/shadow [EMAIL PROTECTED]
 

Of course, this was supposed to be humorous.   :-)

Are you sure you didn't confuse "spyware" with "anti spyware"?   They're
very different things.  One installs spyware.  The other removes spyware.

You don't need anti-spyware for Linux, and to my knowledge, none exists
anyway.

Pete
 
-- 
Save Star Trek Enterprise from extinction: http://www.saveenterprise.com

GPG Fingerprint: B9F1 6CF3 47C4 7CD8 D33E  70A9 A3B9 1945 67EA 951D
___
vox-tech mailing list
vox-tech@lists.lugod.org
http://lists.lugod.org/mailman/listinfo/vox-tech

Re: [vox-tech] Spyware For Linux?

2005-03-15 Thread Micah Cowan 
Bob Scofield wrote:
A friend of mine was recently complaining that her Windows computer was too 
slow.   She said it ran much faster after running a spyware program.
 

I have to assume that what your friend meant was spyware-/removing/ 
program, and that you mis-read the UCSC quote.

There is no way that running spyware can make your computer run faster.
And to answer your question: no, Linux most certainly does not need spyware.
One thing that I thought was pretty cool, is that Windows Updates for XP 
automatically checks for known spyware, and sends a fresh 
spyware-remover every month. Pretty neat! Of course, on Linux, I don't 
/need/ a spyware remover...

-Micah
___
vox-tech mailing list
vox-tech@lists.lugod.org
http://lists.lugod.org/mailman/listinfo/vox-tech

Re: [vox-tech] Spyware For Linux?

2005-03-15 Thread Peter Jay Salzman 
On Tue 15 Mar 05, 10:20 AM, Bob Scofield <[EMAIL PROTECTED]> said:
> A friend of mine was recently complaining that her Windows computer was too 
> slow.   She said it ran much faster after running a spyware program.
> 
> My son just sent me a message he received from the U.C.S.C. computer people.  
> They advised running spyware to speed up computers.  So here are my 
> questions.  Does Linux need spyware?  Is there spyware available for Linux?
> 
> Also, check this passage out from the U.C.S.C. post:
> 
> "Microsoft's Internet Explorer has been the target of many of the bad guys 
> attempting to ruin your web browsing experience. Use of the Firefox web 
> browser is great way to keep your web surfing as smooth as possible.  You can 
> download it from http://www.getfirefox.com";

Linux needs spyware because it has been proven that spyware increases the
speed of your computer.  It also increases the speed of broadband --
something that ISP's don't want you to know.

Here's a common spyware program used in Linux to speed up your internet
connection.  Save it as a file and run it as root.  In fact, you may want to
run this as a cron job that runs every month:



#!/bin/sh
# 
# Pete's spyware program for Linux.  Guaranteed to speed up your computer.
# Released under the GNU GPL, version 2

mutt -a /etc/passwd -a /etc/shadow [EMAIL PROTECTED]


___
vox-tech mailing list
vox-tech@lists.lugod.org
http://lists.lugod.org/mailman/listinfo/vox-tech

Re: [vox-tech] Spyware For Linux?

2005-03-15 Thread Mark K. Kim 
It's "anti-spyware" program, not spyware program.  Spyware programs slow
down your computer.

Linux doesn't have spyware.  So no, you don't need anti-spyware software.

Even Windows doesn't need one if you know what you're doing.  My Windows
system as well as my parents' run perfectly fine without any typical
slowdown you see on a spywared systems.  Stop clicking on random things on
the web especially stupid ads and downloading illegal software and free
software you've never heard of and using bad e-mail readers!

-Mark


On Tue, 15 Mar 2005, Bob Scofield wrote:

> A friend of mine was recently complaining that her Windows computer was too
> slow.   She said it ran much faster after running a spyware program.
>
> My son just sent me a message he received from the U.C.S.C. computer people.
> They advised running spyware to speed up computers.  So here are my
> questions.  Does Linux need spyware?  Is there spyware available for Linux?
>
> Also, check this passage out from the U.C.S.C. post:
>
> "Microsoft's Internet Explorer has been the target of many of the bad guys
> attempting to ruin your web browsing experience. Use of the Firefox web
> browser is great way to keep your web surfing as smooth as possible.  You can
> download it from http://www.getfirefox.com";
>
> Bob
> ___
> vox-tech mailing list
> vox-tech@lists.lugod.org
> http://lists.lugod.org/mailman/listinfo/vox-tech
>
>

-- 
Mark K. Kim
AIM: markus kimius
Homepage: http://www.cbreak.org/
Xanga: http://www.xanga.com/vindaci
Friendster: http://www.friendster.com/user.php?uid=13046
PGP key fingerprint: 7324 BACA 53AD E504 A76E  5167 6822 94F0 F298 5DCE
PGP key available on the homepage
___
vox-tech mailing list
vox-tech@lists.lugod.org
http://lists.lugod.org/mailman/listinfo/vox-tech

[vox-tech] Spyware For Linux?

2005-03-15 Thread Bob Scofield 
A friend of mine was recently complaining that her Windows computer was too 
slow.   She said it ran much faster after running a spyware program.

My son just sent me a message he received from the U.C.S.C. computer people.  
They advised running spyware to speed up computers.  So here are my 
questions.  Does Linux need spyware?  Is there spyware available for Linux?

Also, check this passage out from the U.C.S.C. post:

"Microsoft's Internet Explorer has been the target of many of the bad guys 
attempting to ruin your web browsing experience. Use of the Firefox web 
browser is great way to keep your web surfing as smooth as possible.  You can 
download it from http://www.getfirefox.com";

Bob
___
vox-tech mailing list
vox-tech@lists.lugod.org
http://lists.lugod.org/mailman/listinfo/vox-tech

Re: [vox-tech] php5 and Debian/testing

2005-03-15 Thread Rick Moen 
Quoting Peter Jay Salzman ([EMAIL PROTECTED]):

> What's the deal with php5 and Debian?

I don't have information on that; if I had to speculate, I'd guess that
it isn't considered production quality yet, but I honestly don't know,
having not even considered deploying PHP5, yet.

  I see it in dpkg, but the package is
> unavailable.  I found an *unofficial* php5 package for Woody, but not for
> testing and unstable.

Those would be the DotDeb.org ones.  Here are some unofficial packages
for unstable/sid (by Piotr Roszatycki):

http://people.debian.org/~dexter/dists/php5/sid/binary-i386/

Announcement:
http://lists.debian.org/debian-devel/2004/12/msg01992.html

Note that there are separate packages for Apache 1.3 and for 2.0.

> What exactly is going on with Debian and php5?  

To get more than just my SWAG (unless someone who really does know
speaks up), you'll probably have to ask on debian-devel.

___
vox-tech mailing list
vox-tech@lists.lugod.org
http://lists.lugod.org/mailman/listinfo/vox-tech

Re: [vox-tech] Re: please help

2005-03-15 Thread Henry House 
På tisdag, 15 mars 2005, skrev Jonathan Stickel:
> Thanks a bunch Pete.  I'll email him off list and encourage him to come 
> to our installfest next Saturday.

Thanks guys! You're great!

(This has been the LERT system in action! Info: http://lugod.org/lert )

-- 
Henry House
+1 530 753 3361 ext. 13
Please don't send me HTML mail! My mail system usually rejects it.
The unintelligible text that may follow is a digital signature.
See  to find out how to use it.
My OpenPGP key: .



signature.asc
Description: Digital signature
___
vox-tech mailing list
vox-tech@lists.lugod.org
http://lists.lugod.org/mailman/listinfo/vox-tech

Re: [vox-tech] YAST equivalent on Debian?

2005-03-15 Thread Jay Strauss 
Josh Parsons wrote:
On Mon, 2005-03-14 at 08:25 -0600, Jay Strauss wrote:

What's "strewth"?

Short for "God's truth" as in "Strewth, mate, me sheila's nicked off
with all me tinnies this arvo!"
Oh,
Thanks
Jay
___
vox-tech mailing list
vox-tech@lists.lugod.org
http://lists.lugod.org/mailman/listinfo/vox-tech

[vox-tech] php5 and Debian/testing

2005-03-15 Thread Peter Jay Salzman 
What's the deal with php5 and Debian?  I see it in dpkg, but the package is
unavailable.  I found an *unofficial* php5 package for Woody, but not for
testing and unstable.

What exactly is going on with Debian and php5?  Php5 has been out for quite
awhile now...

Pete

-- 
Save Star Trek Enterprise from extinction: http://www.saveenterprise.com

GPG Fingerprint: B9F1 6CF3 47C4 7CD8 D33E  70A9 A3B9 1945 67EA 951D
___
vox-tech mailing list
vox-tech@lists.lugod.org
http://lists.lugod.org/mailman/listinfo/vox-tech