gikoreno wrote on Sat, Jul 27, 2002 at 03:50:43PM -0400 :
When I look into /var/log/messages I get various of the following:
Security Warning: There are modifications for port listening on your machine :
A system that is under some load will list false listening ports because
some process is
Thanks Todd,
I'll keep that in mind (hadn't thought about it).
gikoreno
--- On Sun 07/28, Todd Lyons < [EMAIL PROTECTED] > wrote:
From: Todd Lyons [mailto: [EMAIL PROTECTED]]
To: [EMAIL PROTECTED]
Date: Sat, 27 Jul 2002 23:33:29 -0700
Subject: Re: [expert] how to acknowledge changes to
Hi everyone:
I looked in the XFS (SGI) mailing lists and found the following links to be useful:
http://marc.theaimsgroup.com/?l=linux-xfs=101697728801467=2
http://marc.theaimsgroup.com/?l=linux-xfs=101701227031491=2
http://marc.theaimsgroup.com/?l=linux-xfs=101701969005112=2
civileme grabbed a keyboard and wrote:
Well, you noted I was very terse in my message. I hate to be the bearer
of bad news. But first try
Put in CD#1
cd /mnt/cdrom
rpm -ivh --force basesystem-8.2-1mdk.i586.rpm
This will generally blow away anything done to /bin /sbin or /lib
Use
James Sparenberg grabbed a keyboard and wrote:
If you find Tripwire a bit much to install you might look at
Snort (from freshmeat) it's a little less of a hassle to install
and is on par with the free version of TripWire.
Ah, it's a fresh meat product. :-)
Thanks, James. I'll go over
Did you read this
http://news.zdnet.co.uk/story/0,,t269-s2118919,00.html
What are the main issues with the kernel at the moment?
With VM (virtual memory) on high-end machines, we have some problems.
We have IDE problems too. Some chipsets are corrupting data, which I'm
really worried about.
Well, I guess it had to happen. If you hang around this stuff long
enough, eventually you're going to need a database.
I know, this may be a really subjective question, but what's the
comparison between php mysql? Is one better/worse, easier/harder than
the other? Or are they just different?
On Sunday 28 July 2002 00:35, Damian G wrote:
hey, instead of killing/reviving the poor arts all the time, have you
tried to make your game work with artswrapper? as in
[user@localhost user]$ artswrapper nameofmyveryimportantsoftware
maybe it'll help. that wrapper stuff is supposed to make the
PHP is a scripting language not a database
MYSQL is a database not a language
if you want to make db based websites you're going to need both unless you
use something else for the site scripting (Perl)
On 28 Jul 2002, Ric Tibbetts wrote:
Well, I guess it had to happen. If you hang around
Yeah,
Sorry, my fingers typed that before my brain caught up with them.
Ric
On Sun, 2002-07-28 at 09:48, Seppo Järvinen wrote:
PHP is a scripting language not a database
MYSQL is a database not a language
if you want to make db based websites you're going to need both unless you
use
While looking at yesterday's events in /var/log/messages, I noticed a lot
of iptables messages for TCP:80 (http). Three ip address accounted for the
majority of the messages. One of the addresses, 63.209.80.235, happens to
be from mandrake.com
. Going to http://www.mandrake.com this
Do you mean artswrapper or soundwrapper? I use soundwrapper to run
uhm.. i really dunno what's the difference..
xmms, but for things where sound sycnchronization is important (games,
video applications, etc.) it introduces way too much lag, even though
I have artsd running with
ML 8.2 has the quota system applied in the kernel. BTW have you tried to
use the linuxconf program to setup quotas on the file system?
gikoreno wrote:
Hi everyone:
I looked in the XFS (SGI) mailing lists and found the following links to
be useful:
James Sparenberg wrote:
David
If you find Tripwire a bit much to install you might look at
Snort (from freshmeat) it's a little less of a hassle to install
and is on par with the free version of TripWire.
James
Apples and oranges: they are two *completely* different programs.
On Sunday 28 July 2002 08:20 am, you wrote:
While looking at yesterday's events in /var/log/messages, I noticed a lot
of iptables messages for TCP:80 (http). Three ip address accounted for the
majority of the messages. One of the addresses, 63.209.80.235, happens to
be from mandrake.com
.
The links I showed below explain why it is not possible to use the command as a normal user. There is an if statement that is not right.
The patch I was referring to is the one that fixes this if statement, and therefore gives normal users the ability to check their own quota again. I don't know
Okay, now I see what you are saying, as I'm heading off to the shallow
end of the pool ;-)
Larry
gikoreno wrote:
The links I showed below explain why it is not possible to use the
command as a normal user. There is an if statement that is not right.
The patch I was referring to is the
On Monday 29 July 2002 02:10 am, James Sparenberg wrote:
David
If you find Tripwire a bit much to install you might look at
Snort (from freshmeat) it's a little less of a hassle to install
and is on par with the free version of TripWire.
James
Maybe you ment something like AIDE? Snort
I've seen a problem for many different versions (latest 8.2) of Mandrake
with Samba before, and I may have even inquired about it before.
Whether it is a problem with Samba I have no idea, but I suspect not.
I'm trying to get some info/advice about what might be potentially the
problem
Rob,
this is neither a fix or a reason. But it might enable you to
fix the situation without a reboot. It sounds like what
happened was that samba was desperately trying to access a
non-existent share and took up all of your CPU cycles, thereby
fuzzing up your DHCPD. What I would do is.
On Sun, 28 Jul 2002 14:18:54 -0500
J. Craig Woods [EMAIL PROTECTED] wrote:
James Sparenberg wrote:
David
If you find Tripwire a bit much to install you might look
at Snort (from freshmeat) it's a little less of a hassle to
install and is on par with the free version of
On the subject of Crackers. Note this IP block owned by ATT
12.234.0.0/24 If been getting hit heavily from there by a number
of compromised M$ boxes. I've alerted ATT but so far no answer,
(it is Sunday though). So for the moment I'm blocking the entire
IP block. . It's coming from NJ. See
James Sparenberg wrote:
DrJung,
Your are again as you very often are, correct. However I
suggested Snort because it is a possible intrusion that he has,
not just a changed file. Tripwire doesn't tell you for example
where the intruder is coming from. I find this to be a lot more
James Sparenberg wrote:
On the subject of Crackers. Note this IP block owned by ATT
12.234.0.0/24 If been getting hit heavily from there by a number
of compromised M$ boxes. I've alerted ATT but so far no answer,
(it is Sunday though). So for the moment I'm blocking the entire
IP block.
Thanks to all for the suggestions of snort and tripwire. Once I get my
system back up on its feet, I plan on installing both to keep an eye on my
system.
I'm also going to make sure that my FTP server and sshd server are
listening to non-standard ports, to make it harder for someone to find
Rob Gillen wrote:
Some of you might already be familiar with the strange way that Linux
will often disallow umount-ing or listing directory contents of a
mounted smb share, returning the error text, Input/output error. I
believe this error happens when a smb share is mounted, then that
26 matches
Mail list logo