[vox-tech] Unable to mount LVM drive after updating from Deb Sarge to Sid
Well, in a nutshell, the subject says it all. I recently went from Debian Sarge to Sid. In that process, quite a few packages were upgraded. I know the LVM package was one of them. I also went from a 2.6.7 (yes, I know that wasn't the most recent in Sarge) to 2.6.10. After rebooting into the new kernel, I realized I couldn't access the files on my LVM drive. A little poking around told me the drive wasn't mounting. I tried booting back into the 2.6.7 kernel, but I had the same problem. So, at this point I don't think it's a kernel problem. I'm also guessing it has nothing to actually do with upgrading LVM (although, I could of course be wrong about that). My guess as to what actually happened is some sort of corruption that reared it's head at just the wrong time. The machine had an uptime of around 2 months, and I'm guessing the problem could have occurred any time in that 2 months, and it just didn't show up until a reboot. Anyways, here's how the problem presents now... I've got 3 80GB drives in my system. /dev/hda has a number of partitions for /usr /home /boot etc, with the remainder in hda10 going to the LVM. I've also got hdf and hdh completely to the LVM. The problem LVM is showing seems to have to do solely with hdh. # cat /var/log/dmesg [cut] hdf: cache flushes not supported /dev/ide/host2/bus0/target1/lun0: Probing IDE interface ide3... hdh: MAXTOR 6L080J4, ATA DISK drive ide3 at 0x9800-0x9807,0x9c02 on irq 169 hdh: max request size: 128KiB hdh: 156355584 sectors (80054 MB) w/1819KiB Cache, CHS=65535/16/63, UDMA(133) hdh: cache flushes supported /dev/ide/host2/bus1/target1/lun0: p1 VP_IDE: IDE controller at PCI slot :00:11.1 ACPI: PCI Interrupt Link [ALKA] BIOS reported IRQ 0, using IRQ 20 ACPI: PCI Interrupt Link [ALKA] enabled at IRQ 20 ACPI: PCI interrupt :00:11.1[A] -> GSI 20 (level, low) -> IRQ 177 VP_IDE: chipset revision 6 VP_IDE: not 100% native mode: will probe irqs later VP_IDE: VIA vt8235 (rev 00) IDE UDMA133 controller on pci:00:11.1 ide0: BM-DMA at 0xb800-0xb807, BIOS settings: hda:DMA, hdb:pio ide1: BM-DMA at 0xb808-0xb80f, BIOS settings: hdc:DMA, hdd:DMA Probing IDE interface ide0... hda: ST380013A, ATA DISK drive [/cut] That all looks like it's supposed to. Or at least I think it does. I'm mainly showing it to show that hdh seems to be found just fine during bootup, It's just LVM that seems to have trouble with it. # /sbin/pvdisplay Couldn't find device with uuid 'dxlaHI-Bv7g-ID51-1Coy-gDnc-sKmJ-a5oWQ2'. Couldn't find device with uuid 'dxlaHI-Bv7g-ID51-1Coy-gDnc-sKmJ-a5oWQ2'. --- Physical volume --- PV Name unknown device VG Name media PV Size 74.55 GB / not usable 0 Allocatable yes (but full) PE Size (KByte) 4096 Total PE 19086 Free PE 0 Allocated PE 19086 PV UUID dxlaHI-Bv7g-ID51-1Coy-gDnc-sKmJ-a5oWQ2 --- Physical volume --- PV Name /dev/hdf VG Name media PV Size 74.53 GB / not usable 0 Allocatable yes (but full) PE Size (KByte) 4096 Total PE 19079 Free PE 0 Allocated PE 19079 PV UUID tcWV0m-lvQU-qrN7-HNF7-SKVB-T6om-3EneY7 --- Physical volume --- PV Name /dev/hda10 VG Name media PV Size 66.93 GB / not usable 0 Allocatable yes PE Size (KByte) 4096 Total PE 17135 Free PE 1 Allocated PE 17134 PV UUID WYNOmu-13s1-tE71-GsnF-abrr-c63H-xtL1eU I get similar error messages through most of the lvm commands. It always can't find the device with that uuid. The thing I don't understand is that the device with that uuid shows up in the pvdisplay command, but it doesn't seem to be able to figure out that it should be pointing at /dev/hdh. I've read through the manpages of all the lvm commands, and can't seem to find anything to point me in the right direction. I've also googled the best I could and tried to find a way to fix it there. Unfortunately, nothing helped, and most of what i did was at least a week or so ago, so I couldn't tell you at this point exactly what I've tried. I'm hoping someone here has a better idea than I do, because I am mostly clueless when it comes to LVM. Thanks, Rob ___ vox-tech mailing list vox-tech@lists.lugod.org http://lists.lugod.org/mailman/listinfo/vox-tech
Re: [vox-tech] Looking for recommendation: video capture/TV tuner
On Sat, Feb 19, 2005 at 03:02:43PM -0800, tech_dev(Alex Mandel) wrote: > The 2nd & 3rd are the same item, ASIN(Amazon #) is the same. > 1st one is USB other one is PCI. > > Looking at the manufacturer website, the only other thing I can find out > is that the USB device min. PC specs are higher 733MHZ over 500MHZ pci. > Also the USB transfer max is 12M/sec on usb 2.0, but I don't have > comparison numbers. > Other than that ZDNET gave the PCI version a 7.7 I know the 350 (and 250) is a nice card. I don't know much about the USB, other than the driver for the 250 and 350 (ivtv) does not support the USB device. There may be another driver that does, but I don't know of it. >From the ivtv FAQ: Q: Does IvyTV support the Hauppauge WinTV PVR USB2? (it has the same encoder chip, the Conexant CX23416) A: Not at this time, no. And likely not in the near future. ___ vox-tech mailing list vox-tech@lists.lugod.org http://lists.lugod.org/mailman/listinfo/vox-tech
Re: [vox-tech] a firefox question
On Thu, Feb 03, 2005 at 06:24:26AM -0800, Lewis Perdue wrote: > I don't suppose anyone knows a hack that will allow Firefox to support a > wheel mouse? I've gotten hooked on configuring mine to scroll down a page > at a time. Firefox does not support, so I went back to Mozilla. One of the annoyances to Firefox is it doesn't present nearly the configuration options of Mozilla. The good thing is the options are still there, just not available through the preferences interface. There is an extension (the name of which I can't remember at the moment) that fixes that problem. Luckily you can always manually configure it. Try typing 'about:config' in the address bar. This brings up a page with every possible configuration option and their current value. You can then filter down to the mousewheel options by typing 'mousewheel' in the filter bar. There are probably 3 options you're particularly interested in here: mousewheel.withaltkey.action, mousewheel.withcontrolkey.action, mousewheel.withshiftkey.action. Each one of course modifying what happens when you use that particular key while scrolling the mousewheel. You can double click on any of them and change the value. Setting to 1 makes the mousewheel scroll a page at a time. 2 is to go forward and back in your history (equiv. to the forward/back buttons). 3 causes the wheel to increase or decrease the font size (very handy on some sites that set it way too small...I bind that to ctrl). HTH - rob ___ vox-tech mailing list vox-tech@lists.lugod.org http://lists.lugod.org/mailman/listinfo/vox-tech
Re: [vox-tech] Re: vox-tech Digest, Vol 9, Issue 2
On Wed, Feb 02, 2005 at 04:02:17PM -0500, Peter Jay Salzman wrote: > On Wed 02 Feb 05, 12:50 PM, Norm Matloff <[EMAIL PROTECTED]> said: > > All that is nice, but I discovered it purely by accident. I'm so used > > to using the / key to do searches in vim that I unthinkingly did so in > > FF, and thus stumbled onto this cool feature. > > Ha ha ha!!! > > I forgot to list another major annoyance for me: I'm so used to emacs style > editing in bash, that ctrl-u is burned into my brain as "clear line". > Unfortunately, it displays the page source on FF. I've clicked away more > page sources than I care to admit. My major annoyance is something that changed somewhere between 0.8 (maybe even 0.9) and 1.0. Ctrl-W while the cursor was in a text box used to have the vi binding of deleting one word prior to the cursor. If you clicked outside of the text box, or there was no text box to begin with, Ctrl-W closes the current tab. Now in 1.0, it _always_ closes the tab. More than once I've lost a nearly completed form or a paragraph or two in a comment box. It is of course possible that this behavior was changed by an extension I installed, but I believe I haven't installed any new extensions since a while before 1.0 came out. > I know it's possible to change FF keybindings to emacs style or even vi > style, but that requires reading, which I can't do ATM. I've got to look into that. Anyone know if it's possible to change the keybindings only when an input box has focus? I am used to using Ctrl-W for closing tabs too... ___ vox-tech mailing list vox-tech@lists.lugod.org http://lists.lugod.org/mailman/listinfo/vox-tech
Re: [vox-tech] DPMS Problem?
On Wed, Jan 12, 2005 at 07:56:14AM -0800, John Wojnaroski wrote: > I've been trying to disable the power down feature of my monitor with zero > success... > > Went over the BIOS (shuttle MO), disabled the power saving options, > XF86Config file contains the "Options DPMS" line (Nvidia card), added the > line 'xset s noblank' to a shell script that starts the program. After about > 15 minutes of zero activity the screen blanks > > What did a miss or forget to add? There are two things that control whether the screen goes dark, both of which you mentioned. First is the screensaver, which doesn't by default power down the monitor, but will make the screen go black. I don't think setting "xset s noblank" does anything for you, because I believe the default is to not blank the screen when the screensaver kicks in. The other thing controlling screen blanking is DPMS. The "Options DPMS" line is turning DPMS on. Removing that line should fix your problem. But before you change that and restart X, you might want to just double check that the following fixes it for you. Try running xset -dpms which should turn DPMS off until X is restarted again. Also, even if the screensaver is set to noblank, it will still kick in and display whatever it's set pattern is (all black screen is default), without turning the monitor off, unless you turn the screensaver off. The way to do that is to run xset s off HTH, Rob ___ vox-tech mailing list vox-tech@lists.lugod.org http://lists.lugod.org/mailman/listinfo/vox-tech
Re: [vox-tech] debian woody to sarge upgrade = dead xserver
On Wed, Aug 25, 2004 at 08:40:37AM -0700, Ashleigh Smythe wrote: > Kevin - oops, I think the first time I tried your above suggestion I > accidentally commented out "Configured Mouse" - hence the immediate > error and no attempt to start X. But now I am sure I've commented it > out as you have above, and I am back to the original error - screen > goes black, then there is kind of a flash and I'm back out to the > prompt with the same error: Fatal server error: Caught signal 11. > Server aborting. And the the same XIO: fatal IO error 104... Again, we're going to need the actual error message to know what the problem is. If you look at the errors you posted, the first was (EE) xf86OpenSerial: Cannot open device /dev/input/mice No such device. and the next couple were just cascading from that one. Now that that problem is fixed/bypassed, you're probably getting a new error message. Try checking your log again, and most likely the first (EE) line will point you in the right direction. ___ vox-tech mailing list [EMAIL PROTECTED] http://lists.lugod.org/mailman/listinfo/vox-tech
Re: [vox-tech] debian woody to sarge upgrade = dead xserver
On Tue, Aug 24, 2004 at 10:01:04PM -0700, Ashleigh Smythe wrote: > Thanks for the ideas Doug. I have been just using the nv driver, not > the nvidia. I don't seem to have that one (maybe you meant I was to > get it and install it as a debian package?) - I get a slightly > different error when I try to startx with the "nvidia" driver - now > one of the "EE" errors is "Failed to load module "nvidia" (module > does not exist). The nvidia driver is the binary only (closed source) driver from Nvidia themselves. Your card should work with either one, but you have to specifically install that on for it to work. That's why you get the "module does not exist" error. At least until we you get the problem solved, I'd suggest sticking with the nv driver. > As for turning off devfs support I'm sorry to say that I don't know > how to do that - I'll google around about it next. Probably not necessary since you're not using the nvidia driver... > I finally got the error log and XF86Config-4 so I'll post those next. I saw the config posted, but not the log. Unfortunately the log file is the most important of the two. The actual error messages are the biggest missing peice of this puzzle right now. ___ vox-tech mailing list [EMAIL PROTECTED] http://lists.lugod.org/mailman/listinfo/vox-tech
Re: [vox-tech] debian woody to sarge upgrade = dead xserver
On Tue, Aug 24, 2004 at 03:03:37PM -0700, Ashleigh Smythe wrote: > Hi ya'll. Well I was finding packages a bit outdated with woody so I > thought I'd upgrade my home desktop (Dell Dimension 2400 Pentium 4, > 2.66 GHz) to sarge. I followed Rick Moen's directions for upgrading > potato to woody: [snip] > This all seemed to go fine, but upon reboot, startx aborts completely > and falls back to the command prompt. There is a long log in > /var/log/XFree86.0.log with the errors near the end being: > > Fatal server error: > Caught signal 11. Server aborting > > XIO: fatal IO error 104 (Connection reset by peer) on X server ":0:0" > after 0 requests (0 known processed) with 0 events remaining. > > I'm sorry I can't post the whole thing, I don't have a zip drive on my > lap top that I'm emailing on right now so the error message is stuck on > the desktop (no X, no email). I probably can later tonight if it seems > necessary. I've been doing dpkg-reconfigure xserver-xfree86 (the > XFree86 package is 4.3.0.dfsg.1-4) and looking at my XF86Config-4 file > and the settings seem to be as they was before in woody when X was > working - I'm using the nv driver which worked with my nvidia geforce2 > video card. I've also tried not installing the modules that are > listed in dpkg-reconfigure xserver-xfree86 - like dri and glx but that > didn't seem to change anything. One strange thing is that I'm certain > there was an option about not using framebuffers that I needed to use > to get X to work with woody, but now I don't see it in the xfree86 > reconfigure tool or in my XF86Config-4 file - I could be confused about > where that was though. > > Any suggestions? I've been googling for several hours but I think that > error message is pretty generic as people seem to be seeing it for all > kinds of things - mice, keyboards, wrong video cards. There's most likely a much better pointer to the error in the X log file. try looking at the /var/log/XFree86.0.log file. Near the top (about 10-15 lines down) you should see: Markers: (--) probed, (**) from config file, (==) default setting, (++) from command line, (!!) notice, (II) informational, (WW) warning, (EE) error, (NI) not implemented, (??) unknown. And continuing on down from there, most lines will start with one of those markers. If you do a search through the file for "(EE)" and tell us what you find, we can probably give you a much better idea what the actual problem is. (or it may even become obvious to you at that point) ___ vox-tech mailing list [EMAIL PROTECTED] http://lists.lugod.org/mailman/listinfo/vox-tech
Re: [vox-tech] Re: Partition question
On Mon, Aug 16, 2004 at 11:29:37PM -0700, Margo Schulter wrote: > > As long as you aren't planning on running SW and Gentoo at the > > same time (heh), you only need one swap partition. Nothing is > > saved from one boot to another, so they can both use the same > > one. > > Thanks for this tip. I'd like to look into this, and how it would > affect the installation procedure for the two distros. It shouldn't really affect either one. I haven't used either of the distros you're planning on in a while, but I've never seen an installer have a problem with using an existing swap partition. And like was mentioned, nothing is saved from one boot to another on the swap partition, so even if each installer decided to initialize/format the partition itself during the install, there's no harm done. > > That doesn't change anything about any of your plans, but I > > thought you'd like to know. :) > > Actually it might change my plans a bit, because rather than having > two 768M swap partitions, I could have a single shared 1G partition > plus a 256M boot partition for each. Your idea is the direction in > which I'm now leaning -- thanks! 256 is probably much much more than you'll ever need. I'm not sure how your needs compare to mine, but I've never filled even my 32MB /boot partition, and I've had over half a dozen custom kernels in there at once. I've currently got 12MB in there with 2 Debian installed kernels (2.4.27 and 2.6.7), but both of those include a 4MB+ initrd.img. For a kernel you're building yourself, you probably won't exceed about 2MB for the kernel, and if you do it right, you don't even need an initrd.img. I'd suggest a max of about 64MB per /boot, otherwise you're just wasting a lot of space. ___ vox-tech mailing list [EMAIL PROTECTED] http://lists.lugod.org/mailman/listinfo/vox-tech
Re: [vox-tech] Firefox Returns To Top, Ebay
On Mon, Aug 09, 2004 at 08:04:39PM -0700, mrp wrote: > > With FF he is returned to the *top* of the first page. > > With IE he is returned to the *current* item of > > interest. > > Hmm... I don't know if mine does this right now, but let me suggest a > different usage mode that may make thing much faster. I know you > said that opening the link in a new tab isn't any better, but I wonder > why? > > When I'm sorting through a long list of items that I may be interested in. > I scroll down the list, and every time I see an item I'm interested in, > I right-click on it and select "open in tab". A middle click will open a link in a new tab in one step, saving even more time ___ vox-tech mailing list [EMAIL PROTECTED] http://lists.lugod.org/mailman/listinfo/vox-tech
Re: [vox-tech] VNC - awesome!
On Mon, Jul 26, 2004 at 06:25:24PM -0700, Peter Jay Salzman wrote: > 1. A Google search turned up a number of different VNC clients like >"realvnc", "ultravnc", and "tightvnc". The one I downloaded was >from: > > http://www.realvnc.com/ > >The server was installed on a win2k machine and the rpm for my Linux >client was converted into a deb from an rpm via alien. I chose this >implementation (realvnc) because it was obviously GPL'd and the first >one I found. I had no way of comparing the different >implementations. > >Is there one implementation that's better than the others? Why did >this piece of software fork so many times? I hadn't heard of ultravnc before, but I'd guess it's just a customized version. Right from the RealVNC homepage is "RealVNC is a UK company founded in 2002 by a team from the world-leading AT&T Laboratories in Cambridge. The company was established to commercially develop, enhance and promote VNC, the innovative remote access software with a widespread international user base." VNC was originally developed by Olivetti Research Labs (AKA ORL... who did a lot of other really cool stuff) and a couple years back they were bought out by AT&T and are now called AT&T Labratories Cambridge (http://www.uk.research.att.com/). The RealVNC people were are all former ORL employees who IIRC, left to form their own company sometime after the buyout. TightVNC (xtightvnc package on debian) is what I use. It includes some performance enhancements over the original (it's backwards compatible though. The extra features are only available if both ends support it). Their main focus I believe is optimizing the compression, which makes it easier to use over a lower bandwidth connection (like when I'm fixing a problem on my parent's Win98 box 3000 miles away over a cable modem connection). > 2. The server is a win2k machine. When using VNC, the machine is taken >over; you can't log in at the console. Is there a way to make Win2k >multi-user? I was under the impression that this OS is considered by >Microsoft to be a server class OS. Can't more than one person log >in? Is there a registry setting or something? Sorry. I really >don't know much about Windows. This is probably a really dumb >question. MS has a different view on things than your standard UNIX user. Remember, Windows is all about the GUI. Up through Win2K, I don't believe there's really any way for multiple users to be logged onto the same computer at a time. I believe with WinXP this may have changed, but I don't know the details (I haven't even touched a WinXP box yet). ___ vox-tech mailing list [EMAIL PROTECTED] http://lists.lugod.org/mailman/listinfo/vox-tech
Re: [vox-tech] bittorrent - no seeds but distributed copies increase
On Mon, Jul 26, 2004 at 04:23:40PM -0700, Peter Jay Salzman wrote: > On Mon 26 Jul 04, 4:18 PM, Peter Jay Salzman <[EMAIL PROTECTED]> said: > > > > i'm using something i installed by "hand". i'm such a casual bittorrent > > users (and it was installed so long ago) that i no longer remember which > > bittorrent implementation it is. however, whatever it is, it has 3 > > clients: > > > > btdownloadgui.py > > btdownloadcurses.py (what i always use) > > btdownloadheadless.py > > after poking around, i just found: > >/usr/local/bin/bittorrent-CVS-shadowsclient > > looks like i pulled it off of a cvs version of shadowsclient. still > can't find a version number, but the files look like their from early to > mid 2003. and > i notice on debian there's: > >un bittornado >un bittornado-gui >un bittorrent > > i'll give one of them a try. maybe bittornado. it sounds very > powerful.;-);-) BitTornado (http://bittornado.com/) is actually TheSHADOW's experimental client. ;-) (In other words, just an upgraded version of what you're currently running) ___ vox-tech mailing list [EMAIL PROTECTED] http://lists.lugod.org/mailman/listinfo/vox-tech
Re: [vox-tech] bittorrent - no seeds but distributed copies increase
On Mon, Jul 26, 2004 at 03:32:08PM -0700, Ken Bloom wrote: > Hi, Pete, >My research project this summer concerns BitTorrent. (Although I'm > currently working on the choking algorithm, not the piece selection > algorithm.) What program is giving you the display right now? Is it a > client, or a tracker on the web? I don't see the string "distributed" > anywhere in Bram Cohen's 3.4.2 sources. The wording of "distributed copies" was originally added by ChocoEd's statistics patch (http://www.edkeyes.org/btstats.html) to Bram's official client. The number of distributed copies is generally shown in your client, and only counts the peers (usually not counting seeds)[0] you are connected to. I don't believe I've ever seen a tracker show the distributed copies. >What I do observe is that the Knoppix BitTorrent site > (http://torrent.unix-ag.uni-kl.de:6969/) displays average progress for > its downloads. Average progress there is currently 29% on the english > downloads, reporting 62 seeds and 12 "leechers" (who are downloading > and uploading - because the tracker has no clue if a peer isn't > uploading). Obviously if the seeds were included in this "average" > then this number would have to be higher than 50%, so I think that > this tracker averages across the peers that don't have the complete > file yet. Is it possible that "distributed copies" means "average > progress"? Nope. Average copies (sometimes seend as XX.X% done/downloaded) is just pretty much what you said. Add up the percentage complete of all the peers, and divide by the number of peers. Going back to Samuel's 5 part file example (slightly modified): Alice 1 2 3 4 Bob 1 3 4 Carol 2 3 (nobody has piece 5) Our average copies is (80% + 60% + 40%)/3 or 60%, but our distributed copies is 0.80 (or 80%) because we can make 0.8 complete copies with what is out there. If Carol suddenly gets piece 5 (from some unknown seed) our average copies goes to (80% + 60% + 60%)/3 or 66%, but your distributed copies goes to 1.80 (Alice's 4 pieces and Carol's piece 5 make 1. Bob's 3 and Carol's piece 2 make the .8. Carol's last piece is not counted.) [0] Some clients will include seeds in this count, but will usually name it something different, like "Available copies" ___ vox-tech mailing list [EMAIL PROTECTED] http://lists.lugod.org/mailman/listinfo/vox-tech
Re: [vox-tech] bittorrent - no seeds but distributed copies increase
On Mon, Jul 26, 2004 at 02:46:48PM -0700, Peter Jay Salzman wrote: > On Mon 26 Jul 04, 2:37 PM, Samuel N. Merritt <[EMAIL PROTECTED]> said: > > On Mon, Jul 26, 2004 at 02:08:22PM -0700, Peter Jay Salzman wrote: > > > Question: > > > > > > How does the "distributed copies" get larger when there are no seeds? > > > > I think that "distributed copies" measures how many complete copies of > > the file you could get if you took all the pieces that everyone has and > > assembled them. > > > > For example, consider a five-part file. > > Alice has: 1 2 3 4 > > Bob has: 3 4 5 > > Carol has: 1 2 4 > > > > You could make one complete copy of the file from all this, so there'd > > be 1 distributed copy. If Carol got piece 5 from Bob, then you could > > assemble two complete copies. > > > > That's the integer part of distributed copies; I'm not sure where the > > fractional part comes from. Maybe it's the size of the largest > > distributed incomplete subfile divided by size of file, but that's just > > a shot in the dark. IIRC, that's exactly how it works. So in the above example you would have 1.8 distributed copies. (Alice's 4 peices and Bob's #5 is one. Carol's 1 and 2, and Bob's 3 and 4 make another, and we ignore the last Carol's last peice because we alread counted Bob's) > ok. this was my understanding. > > > > Does the tracker ever inject packets into the torrent when needed (like > > > when seeds == 0 and distributed copies < 1.0)? > > > > No. The tracker doesn't have a local copy of the file. If there are no > > seeds and < 1 distributed copy, everyone's download will stall before > > finishing > > this was also my understanding. but my question still stands: how does > the distributed copies increase if there are no seeds? > > i'm looking at a bittorrent right now. it's remained constant at: > >seeds: 0 seen now, plus 0.983 distributed copies >peers: 19 seen now, 98.4% done at 0.2 kB/s > > that ".983 distributed copies" has been creeping upwards. last i looked > at it, about 15 minutes ago, it was at .97. i've noticed this happen > before too. > > how exactly does that number increase when there are no seeds? > > pete In some newer BT clients there's an option for a mode called superseed. If you activate superseed mode (usually only used by the original seeder) you won't appear as a seed to the tracker, even though you have a full copy of the torrent. It also activates a more intelligent seeding mode. Clients will know which peices are available from other clients, and will usually try to request the most rare peice the find to try to increase the number of distributed copies faster. In superseed mode, a seed will tell the tracker it has no peices. When a client connects to the superseed, it will tell the client it has just received a peice (and I believe tell the client that is the only peice it has) forcing the client to only request that peice. Once that peice has been downloaded by the client, the superseed will not offer another peice to that client until it sees another client with that peice (meaning that the first client had sent it on) The main advantage of this mode is that the original seed usually ends up sending less data out before the second seed appears (meaning one client has a full copy). IIRC, it's something like 1.1 copies on average in superseed mode, compared to 1.25 - 1.5 copies in normal seeding mode. ___ vox-tech mailing list [EMAIL PROTECTED] http://lists.lugod.org/mailman/listinfo/vox-tech
Re: [vox-tech] Debian configuration: X and modem and zip]
On Sat, Jul 24, 2004 at 15:23:55PM -0700, Ashleigh Smythe wrote: > I'm still working my way through the rest of Rick's graphics comments > to figure out what to do - I only ruled out upgrading to Sarge for > the moment because I don't have it on CD (bought Woody from > aboutdebian.com) and I don't have a modem to apt-get it with! Maybe > I should solve the modem problem (i.e. buy a real dang modem!) and > then I'll have download options for the graphics issue. If you're local to the Davis/Sacramento areas (There's a lot of people on the LUGoD lists who aren't...but I see now you have a ucdavis.edu address) I'm sure you can find someone on the list with a broadband connection who is willing to burn a disc for you and meet up with you somewhere to get it to you. I'd offer, but I'm on the north end of Sacramento, and only get down to Davis about every other month. ___ vox-tech mailing list [EMAIL PROTECTED] http://lists.lugod.org/mailman/listinfo/vox-tech
Re: [vox-tech] Tripwire or equivalent
On Tue, Jun 29, 2004 at 19:10:49PM -0700, Lewis Perdue wrote: > Back when our server was originally cracked, someone suggested that we look > at tripwire to monitor things once we had a clean install ... well, we've > got a clean install, but our investigation of Tripwire shows a GIANT > corporate Dilbert empire with layer upon layer of obfuscation and a set of > sticky hurdles to clear before even getting an evaluation unit ... they > boast of being able to monitor 2,500 servers, but Geez, folks how about > something for one or two servers? > > Isn't there an open-source alternative for this bloatware poster child? > Even something that does a simple checksum kinda thing on key system and > .conf files would be welcome. Just to add a little more info to Rod's post, what you most likely stumbled upon is Tripwire, Inc. (www.tripwire.com). What you're looking for is the open source Tripwire software at www.tripwire.org, which is originally developed and supported by Tripwire, Inc. (by the way, if you google "tripwire" those are links one and two respectively.) ___ vox-tech mailing list [EMAIL PROTECTED] http://lists.lugod.org/mailman/listinfo/vox-tech
Re: [vox-tech] Kernel upgrade from Sarge (fresh install) 2.4.25 -> 2.6.3 or 5
On Sat, May 01, 2004 at 18:37:59PM -0500, [EMAIL PROTECTED] wrote: > > > The steps I made in building my new kernel are as follows: > > > > > > apt-get install libncurses5 libncurses5-dev make gcc g++ patch > > > apt-get install bin86 kernel-package module-init-tools > > > apt-get install kernel-source-2.6.3 > > > > all this stuff is irrelevent. > > irrelevent because it's obvious or it doesn't effect building the kernel? > If the later, every howto or article about building a kernel on deb has the > reader install some combo of those before they build the kernel Irrelevent to the kernel panic problem. It's necessary stuff for building the kernel, but if you were missing something here, you'd see the problem long before you were trying to actually boot your new kernel. I think Jonathan pretty much covered the reasons you got your panic... I've had the same issues before, and it was lack of IDE device and filesystem support in my kernel. (well, actually lack of a proper initrd, but that's easily fixed by building those things into your kernel) ___ vox-tech mailing list [EMAIL PROTECTED] http://lists.lugod.org/mailman/listinfo/vox-tech
Re: [vox-tech] Heretical WinXP Q re: burning Knoppix CD's
On Thu, Apr 29, 2004 at 10:15:27AM -0700, Jonathan Stickel wrote: > Richard: If you have CD writer, I'm sure it came with CD burning > software. I haven't seen a CD writer not come with something, usually > Roxio or Nero. If it came with a prebuilt computer, then somewhere in > your box of documentation and installation CDs, there should be burning > software. It may be several versions old, but usually you can upgrade > for free. Unless the computer came with the burner pre-installed, and the OEM made the bonehead decision that the builtin WinXP burning program was good enough. ___ vox-tech mailing list [EMAIL PROTECTED] http://lists.lugod.org/mailman/listinfo/vox-tech
Re: [vox-tech] extended ascii characters
On Fri, Apr 23, 2004 at 20:50:40PM -0700, Jimbo wrote: > Greetings: > A few years ago my wife caught a malicious virus that not only wiped > out the hard drive but also labeled it with a blinking smiley face. I > couldn't reformat it since I couldn't duplicate the name of the hard > drive. I find that this is an extended ASCII character but unable to > duplicate it via dos. I find web pages of reference to this character > but none tell me how to create it. > > I think that I might be able to recreate this smiley face by a > combination of [alt] and [1-9] keys in either 2 or 10 key strokes. > Randomly pecking at the keyboard for 5 minutes got me nowhere. > > Does anybody have a clue as to what I am talking about? Not really sure what this has to do with Linux but First I am curious why you can't reformat the hard drive just because you can't duplicate the name of the hard drive? What tool are you using to do the formatting with? As far as "recreating" the smiley face, you have the right idea with your combination of [alt] and [0-9] (not [1-9]) in a few keystrokes... I'm not sure exactly where this works and doesn't, but it's been years since I used it (when I did, it was on Windows) but the combo was to hold alt and type the 3 digit decimal code for the ascii character you wished to use. I believe leading zeros were not required, so it's possible for 2 and even 1 digit codes to work. For the smiley face, the code is either 001 or 002, depending on whether it's a white or black face. ___ vox-tech mailing list [EMAIL PROTECTED] http://lists.lugod.org/mailman/listinfo/vox-tech
Re: [vox-tech] [non-linux] windows ME PC automatically restarts
On Sun, Apr 11, 2004 at 22:48:06PM -0700, dylan wrote: > > i apologize in advance for this windows-related question > > the other day my dad noticed that IE icon was no longer on his desktop > (windows ME), and all normal efforts to make it come back did not work. > also, he has noticed that since the IE icon has dissapeared from the desktop > the machine will no longer shutdown _properly_ ... to elaborate, after > shutting the machine down the screen goes dark for about 5 minutes, and then > the machine re-boots and is back in windows again. the only way to turn it > off is to unplug it. > > not using a windows machine, and i am not sure what to say about some people > claiming that this behavior might be indicative of some kind of virus. Any chance it's an eMachine? I'm not sure about the virus possibility or the IE problem, but I have seen a similar reboot issue a number of times, most often with eMachines. It was usually traced back to a dying power suply. The one time it wasn't, it had to do with a dead CMOS battery. (My roommate had to put her eMachine on a power strip with a switch... sometimes it would reboot when told to shut down. Other times it would randomly decided to boot back up, anywhere from minutes to hours later.) ___ vox-tech mailing list [EMAIL PROTECTED] http://lists.lugod.org/mailman/listinfo/vox-tech
Re: [vox-tech] IDE cdrw/dvdrw
On Fri, Apr 02, 2004 at 10:31:41AM -0800, Mark K. Kim wrote: > Oh... so that's what you wanted =P The new version of cdrecord supposedly > don't need ide-scsi work-around but can write directly to IDE. I think > most people were trying to help you do it the "new" way and seth just > showed you the old way... =P I believe it requires kernel 2.6 do do this. > BTW, last time I checked Kernel 2.6.x didn't support ide-scsi. Hmm... When was that? I could have sworn it's always supported it. I know I've had it working on 2.6, but I don't remember the exact version off the top of my head. ___ vox-tech mailing list [EMAIL PROTECTED] http://lists.lugod.org/mailman/listinfo/vox-tech
Re: [vox-tech] Gentoo - Backup Sys Config Files & Grub vs LILO
On Fri, Mar 19, 2004 at 20:01:48PM -0800, Rick Moen wrote: > Quoting Edward Elliott ([EMAIL PROTECTED]): > > Is there any reason to prefer LILO over Grub? > > 2) You happen to already be familiar with LILO and so don't get > traumatised by silly and easily avoided new-user pitfalls[1], and LILO > isn't broken, so you keep using it. This is pretty much the reason I was going to give. For me, LILO has always worked, always been the default bootloader on every distro I've installed, and I've never had a good reason to switch. To me, the choice of bootloader isn't nearly as important as choice of mailserver/ftp daemon/distro/many other things. All I care is that it works. I don't touch a bootloader config more than once every 6 months or so... Heck, I don't even see a bootloader more than about once a month. One of these days, I'll get around to learning grub, and I may even switch my systems over to using it, but until then, there's no benifit (as in time savings or even increased ease of administration) to switching. > [1] See "Zen of LILO" on http://linuxmafia.com/kb/Kernel . ___ vox-tech mailing list [EMAIL PROTECTED] http://lists.lugod.org/mailman/listinfo/vox-tech
Re: [vox-tech] AC97 Sound Card
On Mon, Mar 08, 2004 at 12:24:23PM -0800, Bill Kendrick wrote: > On Thu, Feb 26, 2004 at 10:32:49AM -0600, Jennifer Thomas wrote: > > i'm not even sure if the problem is the sound card, but when i play music > > from any player or given any file to download or a link to the internet > > that would require any sound, the sound sounds like the chipmunks are > > speaking or singing and it's sped up. what's going on? i have an IBM > > NetVista computer, it's pretty old. > > Perhaps applications are playing at a frequency that's higher than your > card can handle??? > > *shrug* Just a wild guess. I've never seen... err... heard anything like > that. I'm also pretty newbie when it comes to sound hardware & software. I knew the "chipmunk" symptom sounded familiar. There was a thread about it here just about a year ago. Check this link out. Subject: [vox-tech] mp3 files sound like alvin and the chipmunks http://lugod.org/mailinglists/archives/vox-tech/2003-04/msg00173.html ___ vox-tech mailing list [EMAIL PROTECTED] http://lists.lugod.org/mailman/listinfo/vox-tech
Re: [vox-tech] Re: [vox] Syncing Palm Pilot
On Thu, Feb 19, 2004 at 13:56:48PM -0800, Jonathan Stickel wrote: > Moving to vox-tech; sorry about the momentary cross-post on vox (didn't > see it started there until after I sent my response) Oops. I meant to post to vox-tech. :) > Jonathan Stickel wrote: > >I'm no expert, but I've struggled a little myself getting my Handspring > >to sync. It sure looks like all your kernel modules are loading > >properly, the important ones being usbserial and visor. > > > >Have you checked to see if a "usb-serial" device "magically" appears in > >/dev when you push the cradle button? It will be something like > >/dev/usb/tts/1 or /dev/usbts1. This is what you tell your palm software > >to use (perhaps through a /dev/pilot symlink). > > > >FWIW: I had a 2.4 kernel where my Handspring would randomly sync only > >50% of time, and I could never figure out why. All my kernal modules > >loaded, the usbserial device appeared, I had OK log messages, but no > >sync. Since I've compiled a 2.6 kernel, it syncs everytime! I used to have issues with my Handspring, but my Palm has always worked flawlessly. I thought the /dev/usb/tts/1 was only for devfs, which I am not using. I've always used /dev/ttyUSB0, which always exists. Will /dev entries automatically appear if I am not using devfs? ___ vox-tech mailing list [EMAIL PROTECTED] http://lists.lugod.org/mailman/listinfo/vox-tech
Re: [vox-tech] accessing an exchange server using OSS
On Sun, Feb 08, 2004 at 14:59:50PM -0800, Peter Jay Salzman wrote: > at work, i use windows. at home, i use linux. i know there's a lot of > people in the same position. > > i'd like to find a way of checking work mail from home. people talk > about something called an "exchange server" as if it were a mail spool. > perhaps an MTA. it sounds like it does different things. > > can someone tell me what an "exchange server" is? I can give you the basics... It's been 4+ years since I had to work with it. First, it does work like an MTA. It also works as a calendar server. It also does task lists, server side address book...pretty much everything you can do in MS Outlook can be stored on the exchange server. > and can i access one using open source tools (preferably mutt)? One of the big things is by default, it uses it's own protocols. In other words, no SMTP, POP3, IMAP, etc. If you can get those turned on, (or in Exchange speak, install the connector) then you can use the standard OSS tools to connect. That only gets you mail though, not calendar or other features. Ximian does have a "Connector for Microsoft Exchange" for Evolution that lets you connect to an Exchange 2000 or 2003 server. It is a proprietary product (individual licenses are $69/seat), and does have the requirement of "OWA (Outlook Web Access) active on that Exchange Server." So, I think they've got the mail protocol reverse engineered, but not the (non-web access) calendar protocol. You may also find some more info at: http://www.linuxmafia.com/faq/VALinux-kb/ms-exchange-replacements.html http://www.linuxmafia.com/faq/Mail/groupware.html Not sure how up to date those are. I don't think you choices have changed all that much in the last few years though. HTH, Rob ___ vox-tech mailing list [EMAIL PROTECTED] http://lists.lugod.org/mailman/listinfo/vox-tech
Re: [vox-tech] Can YAST create a FAT32 Partition?
On Sat, Jan 31, 2004 at 13:28:25PM -0800, Robert G. Scofield wrote: > Thanks to those of you who told me I need a new hard drive. > > I'd like to create a dual boot system on the new hard disk (which I haven't > purchased yet). I'd like to do all of the partitioning from YAST. According > to the YAST documentation YAST can delete FAT32 partitions. YAST can resize > FAT32 partitions. But the documentation doesn't say whether YAST can create > a FAT32 partition. The documentation assumes that one is partitioning to add > Linux to a hard drive where Windows already exists. > > Does anybody know if YAST can create a FAT32 partition? I don't use SuSE, so I can't answer the specific YAST question...but every partition tool I've used has been able to create a FAT32 partition. You also need to be able to format it (which is different from creating a partition and marking it's type) but that is generally pretty simple too. The big gotcha comes when you decide to install Windows. It's generally best to install Windows before you install Linux on a dual boot system because Windows will blindly write to your MBR, overwriting Lilo or Grub. Keep a boot disk handy if that's the way you want to go. ___ vox-tech mailing list [EMAIL PROTECTED] http://lists.lugod.org/mailman/listinfo/vox-tech
DeCSS Haiku (Was Re: [vox-tech] Toil! But success)
On Thu, Jan 29, 2004 at 13:27:00PM -0800, Rick Moen wrote: > Cheers, We write preciselyWe say exactly > Rick Moen Since such is our habit inHow to do a thing or how > [EMAIL PROTECTED] Talking to machines; Every detail works. > Excerpt from Prof. Touretzky's decss-haiku.txt @ http://www.cs.cmu.edu/~dst/ I wouldn't be surprised if Rick's already seen this, but this came to my attention yesterday, and I'd been meaning to post on it anyways, his sig just reminded me. Seth Schoen (currently Staff Technologist for EFF) recently posted "The History of the DeCSS Haiku" to his website at http://www.loyalty.org/~schoen/haiku.html ) where, amongst a lot of other interesting information about the Haiku, he finally identifies himself as being the original author. ___ vox-tech mailing list [EMAIL PROTECTED] http://lists.lugod.org/mailman/listinfo/vox-tech
Re: [vox-tech] amd64
On Sun, Jan 18, 2004 at 02:59:09AM -0800, Bill Broadley wrote: > Things are going well, one came with redhat-9 which worked with new > problems, the leading contenders seem to be Fedora, RHEL, and SUSE. > Gentoo has a live cd. I know debian has a project, not sure how mature > it is. If my vague memory serves I believe freebsd-5.2 or similar has > opteron support. I know nothing about amd64 or Debian's project, but I ran across this today, and thought it might be of interest. The Debian GNU/Linux AMD64 HOWTO: http://alioth.debian.org/docman/view.php/1314/21/debian-amd64-howto.html ___ vox-tech mailing list [EMAIL PROTECTED] http://lists.lugod.org/mailman/listinfo/vox-tech
Re: [vox-tech] spams originating from my friends server
On Tue, Jan 20, 2004 at 11:08:21AM -0800, Bill Kendrick wrote: > Thankfully, I check my email on my ISP, so I don't have to download all of > that junk. Also, I use Mutt, so it was easy to hit [L]imit, type > "failure", and then hold the [D]elete key down for a few seconds to wipe > 'em out. Or in one step as [D]elete-patern "failure" (as opposed to [d]elete) Also probably quicker than your limit as [T]ag-pattern [;](apply next function to all tagged messages) [d]elete That's the power of programs with more features you can ever remember... ;-) ___ vox-tech mailing list [EMAIL PROTECTED] http://lists.lugod.org/mailman/listinfo/vox-tech
Re: [vox-tech] X fonts too small!
On Tue, Jan 20, 2004 at 07:56:02AM -0800, Jonathan Stickel wrote: > There is a little gui to switch your gtk themes, including fonts, which > then auto-writes the files Pete mentions below. For gtk2, it's called > switch2, and I'm sure there is another for gtk1 (probably switch1 or > something). I'm guessing you can apt-get it in Debian. I like it > because you can preview the theme before applying it. apt-get install gtk-theme-switch:-) Includes both switch and switch2 ___ vox-tech mailing list [EMAIL PROTECTED] http://lists.lugod.org/mailman/listinfo/vox-tech
Re: [vox-tech] Bewbie Needs Compile Help
On Fri, Jan 16, 2004 at 10:23:26AM -0800, Robert G. Scofield wrote: > I wanted to put an "N" in front of "ewbie", but there are too many people on > this list that would know I was lying. > > I've been given these instructions: > > #./configure > #make > Log in as root on your machine > #make install > > But when I type "make" I get the error message that make is an unknown > command. So what do I do? Depends on which distro you're running. If you don't have make, there's a good you don't have gcc either. (although the configure step often checks for this) Probably missing some other dev packages too. On Debian, 'apt-get install make' would install make... or 'apt-get install gcc' which will install make also as a dependency. ___ vox-tech mailing list [EMAIL PROTECTED] http://lists.lugod.org/mailman/listinfo/vox-tech
Re: [vox-tech] rusty newbie CD mounting woes
On Sun, Jan 11, 2004 at 15:50:50PM -0800, Jonathan Stickel wrote: > I agree that the problem might be that this drive is writing device. > For writing, ide-scsi must be specified for it (although I hear the new > cdrecord gets around this). You may do this a couple ways; you should > check your distribution for its recommended method. I like to implement > this in grub with "hdc=ide-scsi" (assuming your cdrom is hdc: 2nd ide > cable, first device). Just a note on ide-scsi, cdrecord and 2.6.x kernels. I just upgraded to 2.6.1 yesterday. To use cdrecord you need to prepend ATAPI to your -dev= argument. For instance 'cdrecord -scanbus' that you would use with ide-scsi changes to 'cdrecord -scanbus -dev=ATAPI' and 'cdrecord -dev=0,0,0 file.iso' becomes 'cdrecord -dev=ATAPI:0,0,0 file.iso' That's of course assuming your ATAPI device numbers stay the same. I'd assume they would (mine did anyways) as long as you don't have any actual SCSI devices on your box to throw the original numbers off. You can of course still use the ide-scsi interface to burn cd's, it's just that it's unnecessary now. (with 2.6.x version kernels) ___ vox-tech mailing list [EMAIL PROTECTED] http://lists.lugod.org/mailman/listinfo/vox-tech
Re: [vox-tech] Best way to clear a BIOS password
On Fri, Jan 09, 2004 at 16:02:20PM -0800, Ken Herron wrote: > --On Friday, January 09, 2004 15:31:59 -0800 Bill Kendrick > <[EMAIL PROTECTED]> wrote: > > >I'm assuming the best way to clear a BIOS's unknown password (and > >probably any other settings; d'oh!) is to remove the batter for a while. > > Actually, the normal method is to short out a jumper on the motherboard. > Look for a single two-pin jumper block somewhere near the battery and/or > the BIOS chip. Short it out for a couple of minutes while the computer is > turned off. Since the computer is off, shorting out the wrong jumper > should be harmless. Like Dave mentioned, this is sometimes a 3 pin, with (for example) pins 1-2 normally jumpered, and 2-3 to reset. It's also commonly labeled "Clear CMOS". I've used it dozens of times back when I was doing computer repair, and I never had to short it for more than about 5 seconds. ___ vox-tech mailing list [EMAIL PROTECTED] http://lists.lugod.org/mailman/listinfo/vox-tech
Re: [vox-tech] debian woody sources for openoffice
On Tue, Jan 06, 2004 at 14:08:11PM -0800, Rick Moen wrote: > Quoting Richard Burkhart ([EMAIL PROTECTED]): > > > Anyone have a line on an APT repository for Openoffice (preferably 1.1, > > compiled for Woody) *THAT WORKS*? > > I just verified that this one works for my unstable = sarge laptop. > deb http://borft.student.utwente.nl/debian unstable main contrib Doesn't sarge == testing, and sid == unstable? Either way, OO.o 1.1 has been in unstable since 10-1-03 and in testing since 10-20-03... Unless you're running woody, you don't need to change your sources.list. ___ vox-tech mailing list [EMAIL PROTECTED] http://lists.lugod.org/mailman/listinfo/vox-tech
Re: [vox-tech] debian woody sources for openoffice
On Tue, Jan 06, 2004 at 16:04:35PM -0800, Richard Burkhart wrote: > Will try with the source that you put on list ... but ... I've had the same > problem with about 6 other sources -- that openoffice.org directs > debian'ites to for installing. Not sure what sites openoffice.org is directing you to, but you can check the Debian OO.o team's list of mirrors at http://openoffice.debian.net/mirrors.html I just checked the first 3 mirrors on the list, and all of them work for me, but that also includes the one you've been having problems with. ___ vox-tech mailing list [EMAIL PROTECTED] http://lists.lugod.org/mailman/listinfo/vox-tech
Re: [vox-tech] New phishing vulnerability
On Fri, Dec 12, 2003 at 04:52:52PM -0800, Larry Ozeran wrote: > After clicking the "Click me" link in NS 4.7 my address bar shows: > http://[EMAIL PROTECTED]/ But the question is what does it show in the status bar while hovering? The 0x01 bug only affects IE, but the %00 bug affects both IE and Moz (at least 1.5) I'd be interested what NS 4.7 does. ___ vox-tech mailing list [EMAIL PROTECTED] http://lists.lugod.org/mailman/listinfo/vox-tech
Re: [vox-tech] New phishing vulnerability
On Fri, Dec 12, 2003 at 12:52:07AM -0800, Bill Kendrick wrote: > Ah - here we go :) > > > New IE Bug Hides Real Site Address > from the can't-blame-the-user-for-this-one dept. > posted by michael on Thursday December 11, @08:37 (ie) > http://slashdot.org/article.pl?sid=03/12/11/1319212 Reading the comments turned up something even scarier (when combined with this). First, I found out how to put the 0x01 directly in the html with a . Second, there's a bug in both IE and Mozilla (just tested with 1.5.whatever's latest in Debian Sid) that nothing after a %00 will show up in the status bar. Combine the two, and (in IE) nothing after the username shows up in either the status bar or the URL bar. POC http://wizardstower.net/ie.html The "Click me" link points to http://www.paypal.com&[EMAIL PROTECTED] but on IE I see nothing after .com, and on Moz I see nothing after the 0x01 character (showing as one of those funky 'unknown character' type boxes) ___ vox-tech mailing list [EMAIL PROTECTED] http://lists.lugod.org/mailman/listinfo/vox-tech
Re: [vox-tech] New phishing vulnerability
On Thu, Dec 11, 2003 at 09:48:10PM -0800, Ken Bloom wrote: > The button requires scripting, not the exploit. > The button read the code, and you'll see that the JavaScript way of > demonstrating the exploit is easier to stick in an HTML file than it > would be to actually try and stick an ASCII character #1 in there. Actually, there's a really simple way to do it. will put a literal 0x01 character in the html file. No need for javascript or anything. ___ vox-tech mailing list [EMAIL PROTECTED] http://lists.lugod.org/mailman/listinfo/vox-tech
Re: [vox-tech] New phishing vulnerability
> I use old browsers. MSIE 5.50 and Netscape 4.77 both work OK for me. > (i.e. http://[EMAIL PROTECTED]/security/ex01/vun2.htm > displays on the address line for both) Well, it was an IE specific vulnerability, so NS should be just fine. Try going to their proof of concept link ( http://www.zapthedingbat.com/security/ex01/vun1.htm ) and clicking the "Test Exploit" button. In Mozilla 1.5 on Linux, I see http://[EMAIL PROTECTED]/security/ex01/vun2.htm which is what I cut and pasted into my email. On IE 5.0 on Windows, there was nothing after http://www.microsoft.com ... and actually, if I go into the URL bar on IE and type http://www.microsoft.com, I will see in the history, almost the same link I see in Mozilla, except with the %01 replaced by a box (standard unprintable character) Sorry for the confusion. That's why I had included the whole mail with their POC link included. I should have explained further. ___ vox-tech mailing list [EMAIL PROTECTED] http://lists.lugod.org/mailman/listinfo/vox-tech
[vox-tech] New phishing vulnerability
There was a thread[1] about 2 months ago about email scams and making URLs look innocent, mostly by putting the site you're trying to look like in as a username in your URL i.e. http://[EMAIL PROTECTED]/scam.html I thought today's Internet Explorer vulnerability might be of interest... This came across bugraq-digest today. The quick synopsis: add a 0x01 character (HTML %01) to a URL and MSIE will not display anything after that character in the URL bar. Their exploit link is http://[EMAIL PROTECTED]/security/ex01/vun2.htm which shows as http://www.microsoft.com in IE. They tested on 6.0 with SP1 and other patches...I've verified it on my wife's computer running IE 5.0 Subject: Internet Explorer URL parsing vulnerability Date:Tue, December 9, 2003 8:44 am To: [EMAIL PROTECTED] Internet Explorer URL parsing vulnerability Vendor Notified 09 December, 2003 # Vulnerability ## There is a flaw in the way that Internet Explorer displays URLs in the address bar. By opening a specially crafted URL an attacker can open a page that appears to be from a different domain from the current location. # Exploit ## By opening a window using the http://[EMAIL PROTECTED] nomenclature an attacker can hide the real location of the page by including a 0x01 character after the "@" character. Internet Explorer doesn't display the rest of the URL making the page appear to be at a different domain. # POC ## http://www.zapthedingbat.com/security/ex01/vun1.htm # Tested ## Internet Explorer Version 6.0.2800.1106C0 Updates: SP1, Q810847, Q810351, Q822925, Q330994, Q828750, Q824145 # Credit ## Zap The Dingbat http://www.zapthedingbat.com/ [1] [vox-tech] one of the most pernicious spams i've ever seen. http://lugod.org/mailinglists/archives/vox-tech/2003-09/msg00172.html ___ vox-tech mailing list [EMAIL PROTECTED] http://lists.lugod.org/mailman/listinfo/vox-tech
Re: [vox-tech] Tar, MySQL, and cron-ed backups
> Why not just export the the databases with MySQL-dump and back up the > exported files instead of the live databases? Right at the bottom of the email you quoted... >> Somebody with a suggested workaround using mysqldump that doesn't quite >> work for me: >> http://ben.milleare.com/archives/16.html ___ vox-tech mailing list [EMAIL PROTECTED] http://lists.lugod.org/mailman/listinfo/vox-tech
Re: [vox-tech] "delete from server when deleted locally" for pop email clients
> Actually, I am using Mozilla/Netscape for my email client now. The > option "delete from server when moved from inbox" is not satisfactory, > although it helps. I like to move my stuff to folders for organization, > but I still want those emails on the server for when I check my mail > from another machine. Ah yes, I forgot about that... IIRC if you use filters to sort your mail, it doesn't get deleted. (I know it's not the greatest solution, but it always worked for 98% of my mail) >> I'm stuck away from my computer at the moment, so I can't install and >> check, but I belive I'd used that feature in either CronosII or >> sylpheed. > > I think I tried Sylpheed, and it didn't have what I wanted. I'll check > again with the latest release. It seems CronosII might be an abandoned > project (last date of activity is summer 2002). Well, it'd been about a year since I'd touched a GUI mail client ;) You might also check Sylpheed-Claws. It's the bleeding edge branch. IIRC, it's developed seperately from Sylpheed, but they merge changes between the two regularly. I can't believe it's so hard to find this feature in a Linux mail client...Of course I've never really found a GUI client I liked anyways. If I knew a language other than perl, I'd be temped to write my own. ___ vox-tech mailing list [EMAIL PROTECTED] http://lists.lugod.org/mailman/listinfo/vox-tech
Re: [vox-tech] "delete from server when deleted locally" for pop email clients
> There is one pop email client feature I value a great deal: the option > to keep mail on the server _until deleted locally_. This is extremely > useful when checking email from more than one computer. The email > clients I know of that do this correctly are Outlook Express, Eudora, > and Calypso. Mozilla and Netscape do it partially ("delete from server > when moved from the inbox"). > > I have done exhaustive searches for a Linux supported email client with > this feature, and have found none. Does anyone know of any? > > I know that IMAP email is another option. However, not all email servers > support it, and I find it to be slower and less stable than pop. Well, to start with, Mozilla and Netsacape are both available for Linux...And if you don't want to install all of mozilla, They have seperated out the browser and mail components now. Check out http://www.mozilla.org/projects/thunderbird/ I'm stuck away from my computer at the moment, so I can't install and check, but I belive I'd used that feature in either CronosII or sylpheed. Lately I use mutt or SquirrelMail (web based) more than anything, but I had always thought that was a pretty standard option. Maybe because I spent so many years using Netscape. ___ vox-tech mailing list [EMAIL PROTECTED] http://lists.lugod.org/mailman/listinfo/vox-tech
Re: [vox-tech] Boot Disk Not a True Rescue
> On Sunday 30 November 2003 12:53, Edwin P. Groot wrote: >> Where do I get a root floppy with tools to >> repair with when things go wrong? > > Floppix looks like a nice little tool too. > > http://floppix.ccai.com/ "Floppix has no hard drive support; you cannot access, modify, damage or destroy anything installed on the hard drive." In other words, it's like knoppix in that it runs from the disk and lets you check out a small distro of Linux, but doesn't touch your hard drive...The difference here is it doesn't even have support for accessing the hard drive, so it doesn't work as a rescue disk, just something to play with. ___ vox-tech mailing list [EMAIL PROTECTED] http://lists.lugod.org/mailman/listinfo/vox-tech
Re: [vox-tech] Boot Disk Not a True Rescue
> Hi there, > Hope you guys can solve something that's been bothering me. I am > using a Debian 3 distribution as a workstation at work, and I had made the > boot floppy during the installation process. I tested this boot floppy > for > safety's sake, and it says it will mount root from /dev/sda1. It not only > does that, but starts the init process on that partition, starting up my > workstation in the usual way. > Now what use is that floppy if that partition is damaged, or I hosed > some files while recompiling the kernel? But it does help if you compiled a new kernel, and overwrote the previous one without backing it up, and it ends up being bad... Or what if installed LILO improperly, and LILO hangs on bootup, now you've got a disk for booting from... or you're dual booting between Linux and Windows, and you have to do a windows reinstall, and it overwrites your MBR. Now you've got a way to boot into linux to reinstall LILO. The boot disk isn't exactly intended as a rescue disk, it's merely a disk you can boot from. It used to be a much more useful thing. Older systems had issues like not being able to boot from SCSI (often if it wasn't built into the MB) without booting from a floppy to load the SCSI driver first, or if you were dual booting between Windows and Linux, on a larger drive, and your /boot partition wasn't within a certain area at the first part of the drive, it wouldn't be bootable, so you needed a floppy to boot from. Neither of these are usually issues anymore, and boot floppies are pretty much an unnecessary thing anymore (aside from the "rescue" type floppy sets like Tom's Root Boot and such which someone already sent a link to) ___ vox-tech mailing list [EMAIL PROTECTED] http://lists.lugod.org/mailman/listinfo/vox-tech
Re: [vox-tech] Mozilla crash on paste?
> And for your further entertainment, here's a simple page > that will crash Mozilla: > > http://sunsetsystems.com/crash.html Which version? I'm running 1.5 here, and I had no problems. ___ vox-tech mailing list [EMAIL PROTECTED] http://lists.lugod.org/mailman/listinfo/vox-tech
Re: [vox-tech] Mozilla crash on paste?
> > I'm working on Melissa's desktop box, a Debian Woody system with a > backport > of Mozilla (Mozila 1.5: "Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.5) > Gecko/20031115 Debian/1.5-3.he-1") and am noticing it crashes (as in, the > window _vanishes_) whenever I paste into it! > > It doesn't matter if I'm pasting into the URL bar at the top, into a text > form on a web page, or simply middle-clicking on some whitespace on the > page as a shortcut to go to whatever URL's in the clipboard/selection. > > Anyone else seen this? Or could it be a problem at the XF86 level? > > Gnome Term seems to be unaffected, so I'm thinking maybe it's Moz, and > I should just keep apt-get upgrading til it stops. :^/ I ran into a problem the other day with Moz where the I could click and scroll with the mouse as much as I wanted, but as soon as I used the keyboard, whether to type in the URL bar or a text form, or even the arrow keys to scroll, Moz would completely freeze up on me for about 3 minutes. Once it came back, everything worked fine until I restarted Moz. Turns out it was an issue with "Find As You Type". Turning that off (In Preferences->Advanced->Keyboard Navigation) fixed the problem. Not exactly the same problem you're having, but they may just be related... ___ vox-tech mailing list [EMAIL PROTECTED] http://lists.lugod.org/mailman/listinfo/vox-tech
Re: [vox-tech] User with root privileges
On Thu, 20 Nov 2003 13:13:49 -0800, Rod Roark <[EMAIL PROTECTED]> wrote: Having root privileges means your UID is 0 - i.e. you are logged in as root. I have never tried this, but I suppose you could go into /etc/passwd, etc/shadow and /etc/group and rename root to some other name. But there is surely a better way to do whatever it is that your friend wants to do. I'd suggest going with Tim's method. You can have multiple usernames with the same UID. The only confusion will be when programs will grab a name to match a UID, it will grab the first one, assuming there is no others. i.e. ls will show your files as belonging to root if your UID is 0 you're logged in under another name. I've seen the problem with renaming root... I had a friend who decided "I wonder what would happen if I renamed root to God" and all sorts of programs started getting confused. of course he may have just missed making the change in /etc/shadow or /etc/group, but I'm not sure I'd want to take the chance. ___ vox-tech mailing list [EMAIL PROTECTED] http://lists.lugod.org/mailman/listinfo/vox-tech
Re: [vox-tech] BLASPHEMY (i.e., removing Linux from a dual-boot system)
On Tue, 28 Oct 2003 00:40:35 -0800 (PST), David Margolis <[EMAIL PROTECTED]> wrote: On Mon, 27 Oct 2003, Michael J Wenk wrote: You do this(as I recall) lilo -U If I remember correctly, the _restore_ feature of lilo requires that you backed up the original MBR somewhere. Correct, but just for the record, you don't need to manually back up the MBR, LILO does it automatically. ___ vox-tech mailing list [EMAIL PROTECTED] http://lists.lugod.org/mailman/listinfo/vox-tech
Re: [vox-tech] BLASPHEMY (i.e., removing Linux from a dual-boot system)
On Mon, 27 Oct 2003 21:30:34 -0800, Richard S. Crawford <[EMAIL PROTECTED]> wrote: On Mon, 2003-10-27 at 21:02, Mark K. Kim wrote: You can't uninstall LILO like that. Uninstalling LILO recreates the MBR using the backup MBR... since the partition you had the original LILO (which also had the original MBR) is gone, you can't uninstall LILO. What you wanna do here is REinstall LILO. Make it boot directly into Windows without prompting. Create a lilo.conf file then run: I'm not sure I understand how that will work, since lilo.conf lives in /etc, on the Linux side... am I right? If that's the case, then LILO won't be able to see lilo.conf. If you had cut one less line in your quoting you would have seen: lilo -C lilo.conf man lilo says: -C config-file lilo reads its instructions about what files to map from its config file, by default /etc/lilo.conf. This option can be used to specify a non-default config file. ___ vox-tech mailing list [EMAIL PROTECTED] http://lists.lugod.org/mailman/listinfo/vox-tech
Re: [vox-tech] possible to exit ssh with a program running?
On Thu, 23 Oct 2003 08:17:47 -0700, Jonathan Stickel <[EMAIL PROTECTED]> wrote: I know that if I start a terminal window in X, run a program, and then manually close the window, the program dies. I also know that if I secure-shell into another machine and run a program, I cannot exit without first ending that program. Is there any way to start a program for a shell window and leave it running when I close the window? Also, is there anyway to leave a program running remotely, started through an ssh session, and exit ssh? The later would be very helpful, although I suspect these two issues are related. My research involves running computer simulations on several computers on campus. I would really like to ssh into the machines from home, start the simulations (which generate output to text files), and then exit the ssh sessions with the simulations in progress. This way I could close my internet connection (dial-up :( ) and turn my home computer off while the multi-day simulations run. man screen SCREEN(1) SCREEN(1) NAME screen - screen manager with VT100/ANSI terminal emulation SYNOPSIS screen [ -options ] [ cmd [ args ] ] screen -r [[pid.]tty[.host]] screen -r sessionowner/[[pid.]tty[.host]] DESCRIPTION Screen is a full-screen window manager that multiplexes a physical ter- minal between several processes (typically interactive shells). Each virtual terminal provides the functions of a DEC VT100 terminal and, in addition, several control functions from the ISO 6429 (ECMA 48, ANSI X3.64) and ISO 2022 standards (e.g. insert/delete line and support for multiple character sets). There is a scrollback history buffer for each virtual terminal and a copy-and-paste mechanism that allows moving text regions between windows. Screen lets you run a program (or programs) from inside it, and then detatch from screen, essentially sending it to the background, and then log out of the terminal while screen continues to run, keeping whatever was running within it going. Another nice feature of screen is it can create multiple windows-I like to think of them as tabs, similar to how you can have multiple tabs in gnome-terminal. I can for instance ssh into server1, run screen, start a process, open a new tab, ssh to server2 in tab 2 and start a process there, open tab3 and ssh to server3...etc. Now once you have all your processes going, detatch from screen, log out of server1, and close your internet connection. When you ssh back in to server1 a week later, run screen and reattach to the running session. All your tabs are still there, with your ssh connections still active. ___ vox-tech mailing list [EMAIL PROTECTED] http://lists.lugod.org/mailman/listinfo/vox-tech
Re: [vox-tech] ripping video: wierd interleaving effect on fast motion
On Wed, 15 Oct 2003 16:22:10 -0700, Ken Herron wrote: One nice feature of tivo (and replaytv) is that they can be set to control an external cable/satellite converter instead of using their internal tuner for everything. They come with a little ifrared LED that sticks onto the converter's IR port. The tivo/replaytv sets its own tuner to channel 4 (or uses a composite video input) and changes channels by sending remote-control commands to the converter. This way, you can record from scrambled channels and so on. Do any of the convert-your-PC-into-a-tivo products have anything like this? MythTV does support this via an "IR Blaster"...an IR transmitter that connects generally via a serial port. Any blaster device supported by the lirc driver will work. I've even seen schematics with RadioShack part numbers included that you can put together for a few bucks. Some cable/satellite systems also have some sort of data port on the back of the unit, often RJ-11, but also commonly as a 9pin serial port. The unit can be controlled via this port also (well, most units anyways. The protocol varies depending on manufacturer) and more reliably than via IR. I used MythTV pretty heavily for a while, but I currently don't have a card with TV-Out, so it became more trouble than it was worth. Watching on a 17" monitor in the computer room isn't nearly as comfortable as watching a 32" from the couch. :) I haven't used it since July (around the 0.10 release) but it was pretty rock solid back then, and it looks like a lot of new features have been added since then. Development is quite fast paced. I was using CVS and rebuilding at least a couple times a week to get the new features. ___ vox-tech mailing list [EMAIL PROTECTED] http://lists.lugod.org/mailman/listinfo/vox-tech
Re: [vox-tech] using xmodmap to swap modifier key locations
On Wed, 8 Oct 2003 22:05:50 -0700, Henry House <[EMAIL PROTECTED]> wrote: The manual page for xmodmap lists the following example (exact quote): ! ! Swap Caps_Lock and Control_L ! remove Lock = Caps_Lock remove Control = Control_L keysym Control_L = Caps_Lock keysym Caps_Lock = Control_L add Lock = Caps_Lock add Control = Control_L which is said to turn the left caps lock key into a control key and the left control key into a caps lock key. It does not work. On my system, running the above commands (saved to a file, then run using 'xmodmap ') turns the left control key into a shift key (!) and has no effect on the caps lock key. Neither xmodmap nor the x server print any errors or other messages. Does anyone have a suggestion? My XFree86 config file follows. [snip] Section "InputDevice" Identifier "Keyboard1" Driver "Keyboard" Option "AutoRepeat" "500 30" #Option "XkbRules""xfree86" #Option "XkbModel""pc101" #Option "XkbLayout" "us" EndSection I know this isn't quite what you were asking for specifically, but I wasn't sure if xmodmap was a requirement. In your InputDevice section for your keyboard in your XFree86 config, you can try adding the following: Option "XkbOptions" "ctrl:swapcaps" I haven't used that specific option, but I do use "ctrl:nocaps" and it's been working great here. (it turns your caps lock into a second left control, without switching l-ctrl into caps lock) ___ vox-tech mailing list [EMAIL PROTECTED] http://lists.lugod.org/mailman/listinfo/vox-tech
Re: [vox-tech] OT: one of the most pernicious spams i've ever seen.
On Thu, Sep 25, 2003 at 20:00:51PM -0700, Mitch Patenaude wrote: > On Thursday, Sep 25, 2003, at 11:23 US/Pacific, Rob Rogers wrote: > >I see a couple other problems with this idea too. First, this is the > >first phishing scheme I've seen that loaded the actual homepage. Most > >just steal their logos. > > Yes.. that was actually what got me thinking.. when image files > are loaded with a referrer that isn't "local" maybe they should be > replaced with fraud warnings. It's not 100% effective, and if it became > widespread then it would relatively easy to circumvent, but it would > probably prevent a few ID thefts. While referrer is optional, it's > controlled by the browser, and the people most likely to fall for these > schemes are going to be running stock browsers without things like > privacy screening proxies that strip them out. Which is quite easy to do, is done frequently via .htaccess, and doesn't work in 99.9% of these cases because they're being served off of the fake webserver, not linked directly from the real one. > > Secondly, I'm almost potitive that your browser > >wouldn't send encoded characters in the referer. Your browser would > >have > >already decoded them, and it would send them unencoded. > > Why would your browser decode them? The browser usually does nothing > with a URL except pass it unmodified to the server. When I write log > processing scripts.. I have to decode them if I want to get consistent > results. Sorry. I was thinking back to my earlier email where I was discussing encoding a domain name to look innocuous. Here was my example: http://www.citibank.com%2e%61%33%6b%73%64%2e%50%69%53%65%4d%2e%4e%65%54 which unencoded becomes http://www.citibank.com.a3ksd.PiSeM.NeT (using the actual base domain from the original email) This much your browser would have to decode to do a DNS lookup, and I've never seen a browser show it encoded. Whether or not it sends it encoded in the referer, I can't speak with any authority, but I highly doubt it does. As for anything after the servername and/or port #, I realize it does send that encoded. I appologize for not making myself clear at first. > >As for usernames, I don't think your browser would EVER send that as > >part of the referer. > > Yet they are.. Along with the CGI arguments, This was used a while > back to steal hotmail/webmail accounts. Send somebody HTML email with > an tag which gets fetched from a server you have access to, and > the referrer (used to) give you a fully functional URL into their > mailbox. This has been fixed with almost all web-based email clients > now. > > > That would be a MAJOR security flaw. > > And it has been exploited... Again, I still had my previous emails in my head, and was continuing from there, making assumptions about things without specifying them. I believe we're talking about two very different things here. The only Hotmail exploits I've seen have had to do with a username as an argument at the end of a URL. for instance http://www.hotmail.com/cgi-bin/login?lang=EN&country=US&login=user1 In that case, your browser has no idea what/where your username is, or even if there is one there. There is really no way to tell (assuming "login" could be replaced by anything). What I was talking about was a URL formated in the form we saw in the original email: http://username:[EMAIL PROTECTED]/ If you can show a case where a browser was passing on that whole URL, including the username and password, I'd be interested in seeing it. I'm not saying it hasn't happened, but I'd be surprised. That is what I was refering to as a "MAJOR security flaw." Actually, I take that back. I wouldn't be surprised to see that it has happened. I would be surprised to see one of the major browsers that still has such a security hole in it. ___ vox-tech mailing list [EMAIL PROTECTED] http://lists.lugod.org/mailman/listinfo/vox-tech
Re: [vox-tech] one of the most pernicious spams i've ever seen.
On Thu, Sep 25, 2003 at 13:58:13PM -0700, Micah J. Cowan wrote: > On Thu, Sep 25, 2003 at 09:33:08AM -0700, Michael J Wenk wrote: > > > > Also, guess it doesn't hurt to say that you should never have your PIN > > for online banking match the one for your ATM. Or if you're forced, be > > bloody sure that the site you enter it, really is your bank's site. > > Do you know of banks that let you choose two different PINs, one for > online, one for ATM? That'd be nice... Golden 1. In fact, my ATM pin and my "Telephone Teller" passcode are different (even different lengths), and my online password includes letters and symbols. ___ vox-tech mailing list [EMAIL PROTECTED] http://lists.lugod.org/mailman/listinfo/vox-tech
Re: [vox-tech] OT: one of the most pernicious spams i've ever seen.
On Thu, Sep 25, 2003 at 11:04:54AM -0700, Michael J Wenk wrote: > On Thu, Sep 25, 2003 at 10:23:11AM -0700, Mitch Patenaude wrote: > > On Thu, Sep 25, 2003 at 06:30:32AM -0700, [EMAIL PROTECTED] wrote: > > >http:// > > >www.citibank.com:[EMAIL PROTECTED]/3/ > > >?IYTEw > > >4eVTtbH1w6CpDrT > > > > Maybe a way for places like Citibank, Paypal and other fraud prone sites > > to help prevent this would be to check the referer, and if it's a > > strangely > > formed url that looks like it might be fraudulent (uses username, lots > > of > > encoded characters, etc), put up a fraud warning instead of the main > > page. > > > > What do you guys think? > > My only question/concern would be... What controls the referrer? Is it > mutable? If so, its just another layer for a cracker to hit. I guess > for every layer added, some lazy crackers stop doing it is probably a > good enough reason... The referrer is controlled by the browser (and is definitely not required). It was brought up at a LUGOD meeting a while back (the Don Marti DMCA meeting) that doing a 302 redirect (page has temporarily moved) was one way of avoiding sending a referer. I don't know if that was specific to any certain browser, but it wouldn't be hard to test for anyone who is running a webserver. I see a couple other problems with this idea too. First, this is the first phishing scheme I've seen that loaded the actual homepage. Most just steal their logos. Secondly, I'm almost potitive that your browser wouldn't send encoded characters in the referer. Your browser would have already decoded them, and it would send them unencoded. As for usernames, I don't think your browser would EVER send that as part of the referer. That would be a MAJOR security flaw. ___ vox-tech mailing list [EMAIL PROTECTED] http://lists.lugod.org/mailman/listinfo/vox-tech
Re: [vox-tech] one of the most pernicious spams i've ever seen.
On Thu, Sep 25, 2003 at 07:36:13AM -0700, Mitch Patenaude wrote: > I've seen a lot of these (my email address is 7 years old.. and has > been published a lot. I get a lot of spam). > > Bruce Schneier called these "URL semantic attacks", but now that I've > heard it, I like phishing better. I've seen a couple of really devious > variations. Both of these require HTML email. (I know.. it's evil, but > common) both had an apparently perfectly valid looking ebay or paypal > URL, but when clicked on went to www.eboy.net and www.paypa1.com > (that's a 1 in the second URL, not an "L"). > > The ways they achieved the perfectly looking URL were: > > 1) The entire message (supposedly) from ebay was actually an > image/link, not just the blue underlined text. (but I didn't know this > until I followed it.. I knew it was a scam, but I wanted to see how it > worked.) > > 2) The "URL" was actually inside another tag. They > scammers had just escaped the brackets. > > I'm thoroughly convinced that most people don't have the technical > savvy to try to detect URL fraud, and so must be trained to do so > contextually rather than technically (Why would my bank send me an > email asking for my PIN, especially since I didn't give them this email > address.) I figure that most geeks aren't going to fall for this, but > I imagine that a lot of identity theft occurs this way. I think people need to learn to be wary of giving out ANY personal info online no matter what the circumstances. The most common cases of phishing do seem to go after ebay/papal, and the larger ISPs (mainly AOL and MSN). One recent one posing as an MSN page came as an email saying your credit card charge didn't go through, and your MSN account would be canceled if you didn't update your info. On the page it asked for: Name CC# CCV (that 3 digit number at the end of the signature panel) Pin # Mother's maiden name. MSN Acct name MSN password Social security # I don't see how you could not be suspicious at giving away that much info, but there were a couple dozen people taken in by it. ___ vox-tech mailing list [EMAIL PROTECTED] http://lists.lugod.org/mailman/listinfo/vox-tech
Re: [vox-tech] one of the most pernicious spams i've ever seen.
On Thu, Sep 25, 2003 at 07:24:56AM -0700, [EMAIL PROTECTED] wrote: > > i didn't know this. so, an URL is of the form: > > URL = user:[EMAIL PROTECTED] > > where lowercase "url" is what i used to think of as being an url. and > the "user:password@" portion is optional. Right. You've probably even seen it for an ftp url...works the same way for http, just not seen as often. As a side note, Opera gave me the following in a popup when I tried to click on your URL Security warning: You are about to go to an address containing a username. Username: www.citibank.com Server: a3ksd.pisem.net Are you sure you want to go to this address? This would be a nice feature for the open source browsers (some may even have it already...I'm stuck on Windows at the moment, so I can't check) ___ vox-tech mailing list [EMAIL PROTECTED] http://lists.lugod.org/mailman/listinfo/vox-tech
Re: [vox-tech] one of the most pernicious spams i've ever seen.
On Thu, Sep 25, 2003 at 09:49:45AM -0400, Rob Rogers wrote: > On Thu, Sep 25, 2003 at 06:30:32AM -0700, [EMAIL PROTECTED] wrote: > > when you feed a browser the given url, the citibank page comes up. but > > you also get a small page with a form that asks for your bank account > > number and PIN. > [snip] > > my question is -- how is this done? how does this URL: > > > > http://www.citibank.com:[EMAIL PROTECTED]/3/?IYTEw > > 4eVTtbH1w6CpDrT > > > > bring up citibank.com's webpage and then another page with the > > account/PIN grabber? i've never seen anything like this before. Hit send too soon... the other thing I wanted to bring up is it's not uncommon to see this sort of URL encoded in hex after the part they want you to see. This one was confusing enough, but you'll often also see something like: http://www.citibank.com%2e%61%33%6b%73%64%2e%50%69%53%65%4d%2e%4e%65%54 which unencoded becomes http://www.citibank.com.a3ksd.PiSeM.NeT Just as in the url in your email, most people will see everything up to the first "unusual" character, and won't bother to look any further. By the way, this method of trying to steal personal info by trying to appear as coming from a legitimate company is called phishing. ___ vox-tech mailing list [EMAIL PROTECTED] http://lists.lugod.org/mailman/listinfo/vox-tech
Re: [vox-tech] one of the most pernicious spams i've ever seen.
On Thu, Sep 25, 2003 at 06:30:32AM -0700, [EMAIL PROTECTED] wrote: > when you feed a browser the given url, the citibank page comes up. but > you also get a small page with a form that asks for your bank account > number and PIN. [snip] > my question is -- how is this done? how does this URL: > > http://www.citibank.com:[EMAIL PROTECTED]/3/?IYTEw > 4eVTtbH1w6CpDrT > > bring up citibank.com's webpage and then another page with the > account/PIN grabber? i've never seen anything like this before. If you break down that url it looks like: www.citibank.com <- username : <- seperator ac=VybznNffNxknAUxPrfE2jYaQUptJ <- password @ <- at (duh) a3ksd.PiSeM.NeT <- servername /3/?IYTEw4eVTtbH1w6CpDrT <- misc crap And doing a wget on that url gives me this (comments added) http://citibank.com/us/index.htm";> Even if you don't know HTML, it's fairly easy to see what it's doing. It's immediately redirecting you to the citibank page, and telling your browser to give you the popup at the same time. ___ vox-tech mailing list [EMAIL PROTECTED] http://lists.lugod.org/mailman/listinfo/vox-tech
Re: [vox-tech] Perl question: determining the computer's IP address
On Thu, Jun 26, 2003 at 14:05:56PM -0500, Jay Strauss wrote: > > #!/usr/bin/perl > my @ip = (`ifconfig` =~ m/addr:([^\s]+)\s/); > print join(":",@ip),"\n"; > > NOTE: run this a root (or someone who has access ifconfig), I didn't and it > took me 10 mins before I figured out my script was right but my user was > wrong You sure it's the user, and not the $PATH? ifconfig is generally in /sbin which most "normal" users don't have in their path, but I've never had a problem running /sbin/ifconfig on any of a dozen systems I've tried it on. ___ vox-tech mailing list [EMAIL PROTECTED] http://lists.lugod.org/mailman/listinfo/vox-tech
Re: [vox-tech] Mounting Remote Filesystems by SSH
On Sun, Jun 08, 2003 at 22:07:20PM -0700, Richard S. Crawford wrote: > Let's say I have an account on a remote system. Is it at all possible > to mount the directories in my account on the remote system via SSH? I believe what you're looking for is LUFS (Linux Userland Filesystem http://lufs.sourceforge.net ) HTH, Rob ___ vox-tech mailing list [EMAIL PROTECTED] http://lists.lugod.org/mailman/listinfo/vox-tech
Re: [vox-tech] Unwanted ReBoot
On Tue, Jun 03, 2003 at 12:32:57PM -0700, Jim Angstadt wrote: > > --- Jim Angstadt <[EMAIL PROTECTED]> wrote: > > > > --- "Mark K. Kim" <[EMAIL PROTECTED]> wrote: > > > On Tue, 3 Jun 2003, Jim Angstadt wrote: > > > > apmd loads at 2, 3, 4, and 5. > > > > Do you think I should turn it off and then try > > poweroff and shutdown? > > I turned off apmd and did 'shutdown -h now' which > hung at 'Sending all processes the TERM signal', > as has sometimes happened. > > Did another shutdown -h now' which rebooted. > > Apparently, apmd has no effect in this case. Any chance this is an e-machines box? Some of them are know for this sort of problem (My ex-roommate had this problem, and I've seen it with a few other e-machines boxes when I was working at a repair shop...plus it's pretty well documented on the web). The Diagnosis was generally a bad power supply. ___ vox-tech mailing list [EMAIL PROTECTED] http://lists.lugod.org/mailman/listinfo/vox-tech
Re: [vox-tech] monitor woes :(
On Sat, Mar 29, 2003 at 17:29:56PM -0800, Peter Jay Salzman wrote: > has anyone ever taken a monitor to a repair shop? are monitors > generally items that are worth getting fixed or replaced? Depends on the monitor. For a 15" or even a cheap 17" it's probably better to replace. 2 years ago when I was working in a computer repair shop the place we sent our monitors out to charged somewhere around $75-90 (Size dependent) plus parts for a repair... Not sure the prices now, but I'm guessing they've more likely gone up than down. ___ vox-tech mailing list [EMAIL PROTECTED] http://lists.lugod.org/mailman/listinfo/vox-tech
Re: [vox-tech] enabling DMA on cd/dvd combo drive
On Thu, Mar 13, 2003 at 14:57:26PM -0800, Ryan wrote: > works like a champ. thanks a lot. You're welcome. > so why is the symlink /dev/cdrom pointing a scsi device by default? Linux uses a scsi-emulation layer for ide burners. I don't know all the details, I just know it doesn't work without the emulation, and it makes all burners operate as scsi devices (as far as the kernel is concerned). I'm sure someone else can explain it much better than that. ___ vox-tech mailing list [EMAIL PROTECTED] http://lists.lugod.org/mailman/listinfo/vox-tech
Re: [vox-tech] enabling DMA on cd/dvd combo drive
On Thu, Mar 13, 2003 at 14:39:07PM -0800, Ryan wrote: > as requested: > > $ls -l /dev/cdrom > lrwxrwxrwx1 root root9 Mar 7 10:06 /dev/cdrom -> > /dev/scd0 There's the problem. hdparm only likes IDE devices, and /dev/cdrom is pointing to a SCSI device. > $dmesg | grep hd > Kernel command line: ro root=LABEL=/ hdc=ide-scsi > ide_setup: hdc=ide-scsi > ide0: BM-DMA at 0xf000-0xf007, BIOS settings: hda:DMA, hdb:pio > ide1: BM-DMA at 0xf008-0xf00f, BIOS settings: hdc:DMA, hdd:pio > hda: WDC WD800JB-00CRA1, ATA DISK drive > hdc: SAMSUNG CDRW/DVD SM-332B, ATAPI CD/DVD-ROM drive > hda: 156301488 sectors (80026 MB) w/8192KiB Cache, CHS=9729/255/63, > UDMA(100) > hda: hda1 hda2 hda3 hda4 < hda5 > hdparm -d1 /dev/hdc should work. At least it won't give you an error. Not actually positive if it will do anything (haven't tested here, but I've got a similar setup and it doesn't give the error it does on /dev/cdrom) ___ vox-tech mailing list [EMAIL PROTECTED] http://lists.lugod.org/mailman/listinfo/vox-tech