Hey Everyone.. lots of updates..and 103 users on the list and counting! --David 02/03/99 Added a Linux Gazzette URL for more distribution discussions * Sent [Section 6] Update * 02/02/99 Added IP multicast and a comment to the rc.firewall scripts. Though it was in the simple rc.firewall script, it was missing from the strong version. Doh! [Section 10] Caught a serious typo: -V CANNOT have a subnet mask appended to it. Though this is inconsitant with the other commands, this has been confirmed. Thanks to [EMAIL PROTECTED] for catching this. [Section 10] Added an example /etc/brutab file for configuring Bru [Section 29] 02/01/99 Added a little section to make sure that nothing has been added to the cron file that you don't want to run. [Section 8] Added a few little intro blurbs on what SYSLOG and LOGROTATE are. [Section 9] Added the "w" output to the sendlog's "vitals" output [Section 9] In the rc.firewall rulesets, redirectted the debugging info to /tmp/rc.firewall.dump [Section 10] Doh! Fixed a script mistake that updated the root.hints.db file for Bind! Was: if [ `grep -c SERVFAIL /var/named/root.hints.new` = 1 || `grep -c ROOT-SERVERS /var/named/root.hints.new` = 0] Now: if [ `grep -c SERVFAIL /var/named/root.hints.new` = 1 ] || [ `grep -c ROOT-SERVERS /var/named/root.hints.new` = 0] [Section 24] 01/30/99 Added the TZ variable to the /etc/profile for Rh5.2 users. Why isn't it preset?!?! Deleted extra maillog entry in /etc/syslog.conf for RH users. Its there by default [Section 9] 01/29/99 Updated the URL for the Get-date program [Section 5] 01/28/99 MASQ and NON-MASQ rc.firewall: Added commented out debugging echo statements right after the enviroment vars to help users fix their rc.firewalls. NON-MASQ rc.firewall: Deleted the un-used $intif, $intip, and $intnet enviroment vars [Section 10] Started a format addition that will be phased into ALL sections of TrinityOS. Specifically, the backup section now has a "prerequisits" section that states what is assumed, files that will be created/edited/etc. Hopefully this will make TrinityOS easier for the newbie. [Section 29] 01/27/99 Fixed the year in the top header. Doh! [Section 1] Updated the IP MASQ WWW URL [Section 5] Fixed a spelling mistake [Section 10] Cleaned up and reminded MASQ users to not use just simple IPFWADM ruleset. I recommend that ALL users use a strong firewall ruleset. [Section 10] Updated the Internic pricing for registering a domain from $75/2yrs to $70/2yrs [Section 24] Thanks to [EMAIL PROTECTED] for all the comments! 01/26/99 Updated the MASQ and NON-MASQ rc.firewall to v2.65 and v2A.65 - Removed the /32 bit subnet mask from the intip, dgw, secondarydns, and securehost variables and manually placed them back within the rulesets themselves. This is for users who use DHCP and/or PPP that wouldn't get the correct netmask. Also, the netmask built into these variables would break the IPPORTFW section. - Added the LOOPBACK variable for better readibilty - Cleaned the comment sections a little [Section 10] 01/24/99 Added a line towards the end of the run-rpmwatch script to remind the user of a good Errata mirrror site. [Section 43] 01/23/99 Added IPFWADM rulesets for both the MASQ and Non-MASQ firewalls to accept DHCP IP addressing from the external interface [Section 10] Updated the DHCPcd section to remind the user to un #ed out the "DHCP client" ruleset in section [Section10] [Section 25] 01/22/99 Clarified the DHCP statements in the rc.firewall line to reflect that they are for SERVING DHCP addresses and not GETTING DHCP an address. [Section 10] 01/21/99 Corrected an elusive typo for ip_forward [Section 10] Added a whole little section how to test and check possibly questionable RPMs from the /contrib directories. Upgraded to Sendmail v8.9.2 and made the required changes to the 8.9.x config files. The new configs also support anti-spam stuff using the Realtime Blackhole List. [Section 25] 01/20/99 Clarified the need for users to change the IP addresses and internal/external interface names in the rc.firewall script. [Section 10] 01/19/99 Corrected the vars passed to PPPd as [Section 10] 01/15/99 Changed the MASQ and NON-MASQ IPFWADM firewall version to v2.50 [Section 10] Cleaned up (split up) the explict INPUT section for internal and external hosts. [Section 10] Added a /32 mask to the intip, extip, dgw, secondarydns, and securehost variables. Also deleted a few explict and possibly incorrect /24 and /32 bit masks within the IPFWADM ruleset. [Section 10] Cleaned up the IPPORTFW area to use all environment vars and added the $portfwip var. [Section 10] Deleted a duplicate line for the "outgoing from local net on remote interface, stuffed masquerading, deny" ruleset [Section 10] Deleted a errored IPFWADM line that was already #ed out line to allow in ALL incoming traffic. Thanks to [EMAIL PROTECTED] for all of these points! [Section 10] Added a version number to the run-rpmwatch script [Section 43] Added rpm-watch to a weekly CRON job [Section 43] 01/14/99 Changed the MASQ UDP timeout back to 60 seconds and made the recommendation to ICQ users to change their ICQ Firewall settings to a timeout of 30 seconds. [Section 10] Added the IDE HD performance optimization section [Section 49] .----------------------------------------------------------------------------. | David A. Ranch - Linux/Networking/PC hardware [EMAIL PROTECTED] | !---- ----! `----- For more detailed info, see http://www.ecst.csuchico.edu/~dranch -----' --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] For daily digest info, email [EMAIL PROTECTED]