HI
I have following issue ( kernel 3.2.28):
a device sending udp traffic to UDP Port x -> my udp app ( listen on port
x)
at first, it was working. my app did get udp traffic.
after a while, strace showed that my app stuck at recvfrom, no udp traffic
but tcpdump showed the udp traffic still
HI
Could any one tell what is the default umask for kernel, init, cron? is
it configurable?
google around , I could not find a clear answer.
assuming:
kernel --- > init --- > spawned tasks
so the kernel will set default umask , then the pass it to init?
what the default umask? where is the
I am assuming polgen is simiar to polgengui, but just a command
line.
http://magazine.redhat.com/2007/08/21/a-step-by-step-guide-to-building-a-new-selinux-policy-module/
min
On 04/26/2012 09:47 PM, Russell Coker wrote:
On Fri, 27 Apr 2012, Min Wang wrote:
just
aduit2allow to do the magic blindly?
min
On 04/26/2012 12:00 AM, Russell Coker wrote:
On Thu, 26 Apr 2012, Min Wang wrote:
I have something in /var/log/audit/audit.log like:
avc: denied { write } for pid=23739 comm="httpd" name="renderd.sock"
dev=dm-0
HI
I have something in /var/log/audit/audit.log like:
avc: denied { write } for pid=23739 comm="httpd" name="renderd.sock"
dev=dm-0 ino=1183752 scontext=unconfined_u:system_r:httpd_t:s0
tcontext=unconfined_u:object_r:var_run_t:s0 tclass=sock_file
use audit2allow it generates somethi
hi
thanks.
I used the tshark -i eth0 to see the traffic. It is my typo in
the postrouting nat table cause the issue. After fix it, all are good.
min
On 08/03/2011 01:57 AM, Yves-Alexis Perez wrote:
On mar., 2011-08-02 at 14:32 -0400, Min Wang wrote:
But it still does
Hi
I tried to setup ipsec tunnel on debian 6.0, following
http://www.ipsec-howto.org/x304.html using setkey/racoon
(ipsec-tools/racoon 0.7.3-12)
The diagram is like:
local-gw remote-gw
a.0/25 ---(a.12
use new style of apache2.conf. Let's see if it
works :)
--
Kind regards / Mit freundlichen Grüßen
Min Wang
--
To UNSUBSCRIBE, email to debian-security-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Archive: http://lists.debian.org/4ccb044e.4060...@gmail.com
ache2}]
| `-7*[apache2]
/etc/apache2.conf
# prefork MPM
StartServers 5
MinSpareServers 5
MaxSpareServers 10
MaxClients 30
MaxRequestsPerChild 0
Thanks
--
Kind regards
Min Wang
--
To UNSUBSCRIBE, email to debian-security-requ...@lists.debian.org
one1 kernel: [248110.952170] EIP:
[] svc_recv+0x38d/0x64a [sunrpc] SS:ESP 0068:c15bbf8c
Aug 30 11:49:49 debian-lenny-clone1 kernel: [248110.975160] ---[ end
trace 18acc2f34cea2d1d ]---
Thanks.
--
Kind Regards
Min Wang
--
To UNSUBSCRIBE, email to debian-security-requ...@lists.debian
Roberto De Oliveira wrote:
2010/8/27 Min Wang :
Hi
thanks.
I guess root_squash is to provent local root to rm /home/user2 on NFS
server.
( root_squash is default in /etc/exports ?)
but can not provent user su -user2, then do damage.
Kind regards
Min Wang
The big problem is the
Zaar Hai wrote:
On Fri, Aug 27, 2010 at 7:06 PM, Min Wang wrote:
user1 can log in as local root on Linux PC1,
Even though as root, user1 can not rm /home/user2,
but he can su - user2 on Linux PC1 then rm something.
You need NFS4 with gssapi. This way to access someone's file you
Hi
thanks.
I guess root_squash is to provent local root to rm /home/user2 on NFS
server.
( root_squash is default in /etc/exports ?)
but can not provent user su -user2, then do damage.
Kind regards
Min Wang
Yuan Ho wrote:
Hello,
Have you tried root_squash (export option)?
Regards
he can su - user2 on Linux PC1 then rm something.
Any idea how to do it without give up (1) )?
Thanks
Sincerely
Min Wang
--
To UNSUBSCRIBE, email to debian-security-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.o
14 matches
Mail list logo