Hey Everyone.. lots of updates..and 103 users on the list
and counting!
--David
02/03/99 Added a Linux Gazzette URL for more distribution discussions
* Sent [Section 6]
Update *
02/02/99 Added IP multicast and a comment to the rc.firewall scripts.
Though it was in the simple rc.firewall script, it was missing
from the strong version. Doh!
[Section 10]
Caught a serious typo: -V CANNOT have a subnet mask appended to it.
Though this is inconsitant with the other commands, this has been
confirmed. Thanks to [EMAIL PROTECTED] for catching this.
[Section 10]
Added an example /etc/brutab file for configuring Bru
[Section 29]
02/01/99 Added a little section to make sure that nothing has
been added to the cron file that you don't want to run.
[Section 8]
Added a few little intro blurbs on what SYSLOG and LOGROTATE are.
[Section 9]
Added the "w" output to the sendlog's "vitals" output
[Section 9]
In the rc.firewall rulesets, redirectted the debugging
info to /tmp/rc.firewall.dump
[Section 10]
Doh! Fixed a script mistake that updated the root.hints.db file
for Bind!
Was: if [ `grep -c SERVFAIL /var/named/root.hints.new` = 1 || `grep -c
ROOT-SERVERS /var/named/root.hints.new` = 0]
Now: if [ `grep -c SERVFAIL /var/named/root.hints.new` = 1 ] || [
`grep -c
ROOT-SERVERS /var/named/root.hints.new` = 0]
[Section 24]
01/30/99 Added the TZ variable to the /etc/profile for Rh5.2 users.
Why isn't it preset?!?!
Deleted extra maillog entry in /etc/syslog.conf for RH
users. Its there by default
[Section 9]
01/29/99 Updated the URL for the Get-date program
[Section 5]
01/28/99 MASQ and NON-MASQ rc.firewall: Added commented out debugging
echo statements right after the enviroment vars to help users
fix their rc.firewalls.
NON-MASQ rc.firewall: Deleted the un-used $intif, $intip,
and $intnet enviroment vars
[Section 10]
Started a format addition that will be phased into ALL sections
of TrinityOS. Specifically, the backup section now has a
"prerequisits" section that states what is assumed, files that
will be created/edited/etc. Hopefully this will make TrinityOS
easier for the newbie.
[Section 29]
01/27/99 Fixed the year in the top header. Doh!
[Section 1]
Updated the IP MASQ WWW URL
[Section 5]
Fixed a spelling mistake
[Section 10]
Cleaned up and reminded MASQ users to not use just simple
IPFWADM ruleset. I recommend that ALL users use a strong
firewall ruleset.
[Section 10]
Updated the Internic pricing for registering a domain from
$75/2yrs to $70/2yrs
[Section 24]
Thanks to [EMAIL PROTECTED] for all the comments!
01/26/99 Updated the MASQ and NON-MASQ rc.firewall to v2.65 and v2A.65
- Removed the /32 bit subnet mask from the intip, dgw, secondarydns,
and securehost variables and manually placed them back within the
rulesets themselves. This is for users who use DHCP and/or PPP that
wouldn't get the correct netmask. Also, the netmask built into
these
variables would break the IPPORTFW section.
- Added the LOOPBACK variable for better readibilty
- Cleaned the comment sections a little
[Section 10]
01/24/99 Added a line towards the end of the run-rpmwatch script to
remind the user of a good Errata mirrror site.
[Section 43]
01/23/99 Added IPFWADM rulesets for both the MASQ and Non-MASQ firewalls
to accept DHCP IP addressing from the external interface
[Section 10]
Updated the DHCPcd section to remind the user to un #ed out
the "DHCP client" ruleset in section [Section10]
[Section 25]
01/22/99 Clarified the DHCP statements in the rc.firewall line
to reflect that they are for SERVING DHCP addresses and
not GETTING DHCP an address.
[Section 10]
01/21/99 Corrected an elusive typo for ip_forward
[Section 10]
Added a whole little section how to test and check
possibly questionable RPMs from the /contrib directories.
Upgraded to Sendmail v8.9.2 and made the required
changes to the 8.9.x config files. The new configs also
support anti-spam stuff using the Realtime Blackhole List.
[Section 25]
01/20/99 Clarified the need for users to change the IP addresses
and internal/external interface names in the rc.firewall
script.
[Section 10]
01/19/99 Corrected the vars passed to PPPd as
[Section 10]
01/15/99 Changed the MASQ and NON-MASQ IPFWADM firewall version to
v2.50
[Section 10]
Cleaned up (split up) the explict INPUT section for internal and
external hosts.
[Section 10]
Added a /32 mask to the intip, extip, dgw, secondarydns, and
securehost variables. Also deleted a few explict and possibly
incorrect /24 and /32 bit masks within the IPFWADM ruleset.
[Section 10]
Cleaned up the IPPORTFW area to use all environment vars and added
the $portfwip var.
[Section 10]
Deleted a duplicate line for the "outgoing from local net on remote
interface, stuffed masquerading, deny" ruleset
[Section 10]
Deleted a errored IPFWADM line that was already #ed out line
to allow in ALL incoming traffic. Thanks to
[EMAIL PROTECTED] for all of these points!
[Section 10]
Added a version number to the run-rpmwatch script
[Section 43]
Added rpm-watch to a weekly CRON job
[Section 43]
01/14/99 Changed the MASQ UDP timeout back to 60 seconds and made
the recommendation to ICQ users to change their ICQ Firewall
settings to a timeout of 30 seconds.
[Section 10]
Added the IDE HD performance optimization section
[Section 49]
.----------------------------------------------------------------------------.
| David A. Ranch - Linux/Networking/PC hardware [EMAIL PROTECTED] |
!---- ----!
`----- For more detailed info, see http://www.ecst.csuchico.edu/~dranch -----'
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
For daily digest info, email [EMAIL PROTECTED]
