Re: [gentoo-user] OT - Need help setting up a name-based virtual host in Apache
Daniel Iliev wrote: Michael Sullivan wrote: I hope this email gets to the list. My last post didn't. This is semi-urgent. Over the past year I've been developing a PHP-based web interface for my college's music festival. This web interface would allow participating directors to enter all their information via the Internet, rather than having to send it to us and having us do all the work. The interface is now ready for widespread use (as opposed to the handful of directors I've had testing it and returning feedback.) The problem is this: The web address of the interface is http://camille.espersunited.com/~festival . I want to them to be able to use http://festival.espersunited.com because it's easier to remember (some of them don't remember that they have bookmarks.) I created a file in /etc/apache2/vhosts.d for this: camille vhosts.d # cat 01_festival_vhost.conf VirtualHost * ServerName festival.espersunited.com DocumentRoot /home/festival/webspace/html Directory /home/festival/webspace/html Options Indexes FollowSymLinks Order allow,deny Allow from all /Directory /VirtualHost From the information I can find for what I'm trying to do, this seems to be the correct syntax. I set up a CNAME record in my espersunited.com DNS configuration to point festival.espersunited.com at camille.espersunited.com . However, when I reloaded apache2 and went to http://festival.espersunited.com, instead of seeing the interface at /home/festival/webspace/html/index.php, I saw /var/www/localhost/htdocs/index.html . Is something wrong with my config? Please help! -Michael Sullivan- Try to give festival an address, not a CNAME and please, send the output of apachectl configtest An A record would definitely be the best for this situation. I also saw that you were using apache2, you might want to try apache2ctl -S to check the syntax of the configuration files and see if apache is recognizing it as a virtual host. The configtest option only tells you if the syntax is OK, but doesn't provide other information. The -S option will give you a basic rundown of the virtual host configuration. You might want to try posting this to the apache users mailing list. You can find it at http://httpd.apache.org/lists.html Other than that, it looks good for the small section of the config file that you posted. Good Luck, Zack -- gentoo-user@gentoo.org mailing list
Re: [gentoo-user] X-Forwarding over wireless
Did you try to export the display manually? I also got some problems using -X but it works perfect by using export DISPLAY=your ip:0 maybe that helps. -- gentoo-user@gentoo.org mailing list
Re: [gentoo-user] ramfs - is it necessary ???
On Thu, 22 Feb 2007 09:50:22 +0200, Alan McKinnon wrote: But you are mostly right, around here in Gentoo-land it's become almost a guerilla rite of passage to be able to drop genkernel and roll your own (raid users excepted of course) Why? RAID support is as simple as selecting a couple of options in menuconfig. Or were you thinking of LVM? That needs an initr* to use it on /. Dropping genkernel is almost always a good thing. If you roll your own kernel, you will have a better understanding of what's going on and what you need. -- Neil Bothwick I wouldn't be caught dead with a necrophiliac. signature.asc Description: PGP signature
Re: [gentoo-user] off topic : Dolphin massacre in Japan
On Thu, 22 Feb 2007 06:50:54 +0200, Aggelos wrote: there is another difference: The killing of those dolphins. each year, in the numbers seen on the video, may be a threat to nature's ecological system. It may,m it may not, that is open to debate. What is not in doubt is that this has absolutely bugger all to do with this list. There are plenty of places to discuss such matters - this is not one of them. -- Neil Bothwick The severity of the itch is inversely proportional to the reach. signature.asc Description: PGP signature
Re: [gentoo-user] Simple Linux Router on a live CD?
Albert Hopkins wrote: On Tue, 2007-02-20 at 03:23 -0600, Dale wrote: That I can understand. I sometimes want someone to tell me something good to use so I can get a unbiased opinion. Yeah except a) opinions *are* biased and b) one's opinion was never asked and c) I've observed that asking a bunch of strangers for their opinion is just as (un)reliable as a Google search (recall how Google ranks pages). Any time you ask a questions, you are really asking for a opinion. Example, if you ask how to update the config files after doing a emerge -u world, you are about to get opinions because there is more than one way to do it. More than one command. So that could take care of a b. Since some things are just opinions, then you are right about c. However, I usually get better answers here provided I give enough information that someone can help. My problem is that usually I don't know what all info I need to post. That's a whole new ball of yarn there. Google ain't always right either. Sometimes I have more questions after a Google search than I did when I started searching. :/ As do I, but I always considered that a good thing. -m It could be a good thing. Just keep in mind that I confuse pretty easily sometimes. Throw me a curve ball and I'll miss it every time. LOL Dale :-) :-) :-) :-) -- www.myspace.com/dalek1967
[gentoo-user] Wireless PCI Network controller: RaLink RT2561/RT61 rev B 802.11 - Driver Problem
Hi - I'm trying to get a D-Link PCI network card running on my desktop PC. I've installed it and it runs under Windows XP (I dual boot). # lspci reports :01:00.0 Network controller: RaLink RT2561/RT61 rev B 802.11 net-wireless/ralink-rt61 was masked so I added to /etc/portage/package.keywords So I # emerge ralink-rt61 # slocate rt61.ko /lib/modules/2.6.17-gentoo-r8/net/rt61.ko # modprobe rt61 FATAL: Module rt61 not found What should I do next? Do I need to recompile my kernel and if so are there any options I need to ensure are selected (or not)? Many thanks, Richard -- gentoo-user@gentoo.org mailing list
Re: [gentoo-user] Re: Simple Linux Router on a live CD?
On Wednesday 21 February 2007, kashani wrote: Contrary to Eric Raymond's How to Ask Intelligent Questions it is actually very hard to ask good questions or even search about a subject you do not fully understand. That's an easy one. If you really don't know the subject or how to search for answers on it, then *just say so*. The poeple reading the post then know what the deal is, know up front they will have to take the poster through it step by step, and most important of all: they know that the poster is smart enough to say he doesn't know much. The worst possible question is: how long is a piece of string? You can avoid that so easily by saying I need to know how long a piece of string is, but I have no idea how to measure it and my knowledge of string is limited. Can someone walk me through the process please? If I read the first question, I get the distinct impression I'm talking to an idiot. The second question tells me I'm likely talking to an intelligent human, who just happens to be ignorant about something. alan -- Optimists say the glass is half full, Pessimists say the glass is half empty, Developers say wtf is the glass twice as big as it needs to be? Alan McKinnon alan at linuxholdings dot co dot za +27 82, double three seven, one nine three five -- gentoo-user@gentoo.org mailing list
Re: [gentoo-user] loop devices not present
On Wednesday 21 February 2007, Neil Bothwick wrote: On Wed, 21 Feb 2007 09:51:45 +0200, Alan McKinnon wrote: That would be true except I've beeen setting loop to M since many kernel versions back. I actually suspect it's more a udev thing, there has been a lot of activity and changes with the rules recently. But I'm too rushed to decrypt all the rules syntax and see what changed. My loop devices disappeared like this some time ago - are you using stable? I initially put loop in modules.autoload.d but since I use loop devices every time I boot, I moved them into the kernel instead. No, I'm using ~x86. I got things to a satisfactory state using modules.autoload.d just like you and get the best of both worlds. thanks alan -- Optimists say the glass is half full, Pessimists say the glass is half empty, Developers say wtf is the glass twice as big as it needs to be? Alan McKinnon alan at linuxholdings dot co dot za +27 82, double three seven, one nine three five -- gentoo-user@gentoo.org mailing list
Re: [gentoo-user] Wireless PCI Network controller: RaLink RT2561/RT61 rev B 802.11 - Driver Problem
On Thursday, 22 February 2007 19:23, Richard Watson wrote: Hi - I'm trying to get a D-Link PCI network card running on my desktop PC. I've installed it and it runs under Windows XP (I dual boot). # lspci reports :01:00.0 Network controller: RaLink RT2561/RT61 rev B 802.11 net-wireless/ralink-rt61 was masked so I added to /etc/portage/package.keywords So I # emerge ralink-rt61 # slocate rt61.ko /lib/modules/2.6.17-gentoo-r8/net/rt61.ko # modprobe rt61 FATAL: Module rt61 not found What should I do next? Do I need to recompile my kernel and if so are there any options I need to ensure are selected (or not)? Many thanks, Richard Is 2.6.17-gentoo-r8 the kernel you are currently running? It sounds like /usr/src/linux is pointing to the wrong kernel source. -- Raymond Lewis Rebbeck -- gentoo-user@gentoo.org mailing list
Re: [gentoo-user] ramfs - is it necessary ???
Thanks to all. Now it cleaner to me :-) Only (probably) last question: If I want to play with the Xen I can compile SATA support directly to kernel and it will be still OK ??? Once again thanks a lot. Pat On Thu, 22 Feb 2007 11:08:31 +0200, Alan McKinnon wrote On Thursday 22 February 2007, Neil Bothwick wrote: On Thu, 22 Feb 2007 09:50:22 +0200, Alan McKinnon wrote: But you are mostly right, around here in Gentoo-land it's become almost a guerilla rite of passage to be able to drop genkernel and roll your own (raid users excepted of course) Why? RAID support is as simple as selecting a couple of options in menuconfig. Or were you thinking of LVM? That needs an initr* to use it on /. hardware raid or software raid? A decent controller will just do raid and give you a b lock device to boot from. What about those stupid el-cheapo so-called raid controllers that are actually little more than bus adapters with four drives attached and you do the real raid in software? That will need an initr* Dropping genkernel is almost always a good thing. If you roll your own kernel, you will have a better understanding of what's going on and what you need. Yes, very true. But genkernel is a useful interim measure to help get our users from using a binary blob kernel to successfully rolling their own. alan -- Optimists say the glass is half full, Pessimists say the glass is half empty, Developers say wtf is the glass twice as big as it needs to be? Alan McKinnon alan at linuxholdings dot co dot za +27 82, double three seven, one nine three five -- gentoo-user@gentoo.org mailing list -- gentoo-user@gentoo.org mailing list
Re: [gentoo-user] Wireless PCI Network controller: RaLink RT2561/RT61 rev B 802.11 - Driver Problem
# modprobe rt61 FATAL: Module rt61 not found Is 2.6.17-gentoo-r8 the kernel you are currently running? It sounds like /usr/src/linux is pointing to the wrong kernel source. # ls -la /usr/src/linux /usr/src/linux - linux-2.6.17-gentoo-r8 Yes it's pointing to the correct kernel source - Thanks -- gentoo-user@gentoo.org mailing list
RE: [gentoo-user] off topic : Dolphin massacre in Japan
-Original Message- From: Aggelos [mailto:[EMAIL PROTECTED] Sent: 21 February 2007 18:23 To: gentoo-user@lists.gentoo.org Subject: Re: [gentoo-user] off topic : Dolphin massacre in Japan -snip- I would not define such a mail as spam. Aggelos -- gentoo-user@gentoo.org mailing list Spamming is the abuse of electronic messaging systems to send unsolicited bulk messages or to promote products or services, which are almost universally undesired. http://en.wikipedia.org/wiki/Spam_(electronic) I don't know about everyone else but I signed up here to recieve discussion on Gentoo Linux, not on dolphins. The issue here isn't that I agree or disagree with the cause you posted here about, I simply disagree that this was an appropriate place to post it. -- djn I do not represent anyone else in emails I send to this list. -- gentoo-user@gentoo.org mailing list
Re: [gentoo-user] Recommendation
failed to load /usr/lib/xorg/modules/extentsions/libGLcore.so failed to load module GLcore (loader failed, 7) failed to load module VESA (module does not exist, 0) failed to load module kbd (module does not exist, 0) failed to load module 'mouse (module does not exist, 0) No Drivers Available First you have to decide if you want to use the free or the closed nvidia driver. note: the closed source driver is only necessary if you need 3d support e.g. for games. Then set your VIDEO_CARDS variable in /etc/make.conf to the driver you want to use, this should pull in the driver you need as an dependency of xorg-server. nano -w /etc/make.conf add the line VIDEO_CARDS=nv #for open source driver or VIDEO_CARDS=nvidia #for the binary nvidia driver hit ctrl+x to exit and y to apply the changes then emerge -av xorg-server and see if the driver you want to use is pulled in as dependency after emerge is finished run xorgconfig. hope this helps. greez Jakob -- gentoo-user@gentoo.org mailing list
Re: [gentoo-user] ramfs - is it necessary ???
On Wednesday 21 February 2007 18:41, pat wrote: P.S. Question is what should be part of the initramfs :-| Any modules or userland utilities needed to mount your '/' filesystem, plus all the libraries and other utilities they depend on, plus a linuxrc or init script that will actually do the preparation, mount the filesystem, chroot/pivot_root/switch_root, and exec() the real /sbin/init binary. Actually, you can put *anything* you want to in the initramfs... embeded linux might never leave the initramfs. PS: A: It reverses the reading order of the conversation. Q: Why's top-posting so bad? A: Top-posting and insufficient quote trimming. Q: What's the most annoying thing on mailing lists and USENET? Please don't top-post. -- Boyd Stephen Smith Jr. ,= ,-_-. =. [EMAIL PROTECTED] ((_/)o o(\_)) ICQ: 514984 YM/AIM: DaTwinkDaddy `-'(. .)`-' http://iguanasuicide.org/ \_/ New GPG Key! Old key expires 2007-03-25. Upgrade NOW! pgpXrwdZ5KZm7.pgp Description: PGP signature
Re: [gentoo-user] ramfs - is it necessary ???
On Wednesday 21 February 2007 18:39, pat wrote: On Thu, 22 Feb 2007 01:13:56 +0100, Hemmann, Volker Armin wrote initrd/initramfs is mostly for distributions who want to compile everything as module, people with strange settings (like some kind of raid), or people too stupid to build their own kernel. ... so the initramfs is not necessary for the SATA drive when it is not a module ??? Because I think I need it because of the SATA drive. You really didn't need those extra two question marks. Anyway, if you'll compile the driver for your SATA controller (that runs the drive that holds '/') into the kernel and you don't have an exotic setup (software RAID/LVM/EVMS), you won't need an initrd/initramfs. Depending on how your software RAID is set up you may not need a initrd/initramfs for that either. (Linux won't autostart my software RAID because I raid together two whole drives instead of multiple partitions.) -- Boyd Stephen Smith Jr. ,= ,-_-. =. [EMAIL PROTECTED] ((_/)o o(\_)) ICQ: 514984 YM/AIM: DaTwinkDaddy `-'(. .)`-' http://iguanasuicide.org/ \_/ New GPG Key! Old key expires 2007-03-25. Upgrade NOW! pgp7ujROakz45.pgp Description: PGP signature
Re: [gentoo-user] Wireless PCI Network controller: RaLink RT2561/RT61 rev B 802.11 - Driver Problem
On Thursday 22 February 2007 02:53, Richard Watson wrote: (I'm just going to assume you've got the right package / module; I don't know anything about it particular hardware and your choices seem appropriate.) So I # emerge ralink-rt61 # slocate rt61.ko /lib/modules/2.6.17-gentoo-r8/net/rt61.ko # modprobe rt61 FATAL: Module rt61 not found What should I do next? ls -l /usr/src/linux uname -r (I think it's likely you never fixed up your /usr/src/linux symlink and ralink-rt61 is being compiled against the wrong kernel.) You might consider butting something like: ln -snf linux-$(uname -r) /usr/src/linux in local.start to fix up your kernel symlink on each boot. (Though, I hate to think what that would do if /usr/src/linux was a directory rather than a symlink.) Do I need to recompile my kernel and if so are there any options I need to ensure are selected (or not)? Probably not, but if you are actually running 2.6.17-gentoo-r8, then I'll need to see the output of dmesg around the time you modprobed rt61. -- Boyd Stephen Smith Jr. ,= ,-_-. =. [EMAIL PROTECTED] ((_/)o o(\_)) ICQ: 514984 YM/AIM: DaTwinkDaddy `-'(. .)`-' http://iguanasuicide.org/ \_/ New GPG Key! Old key expires 2007-03-25. Upgrade NOW! pgpjrqdHBQLeb.pgp Description: PGP signature
Re: [gentoo-user] ramfs - is it necessary ???
On Thursday 22 February 2007 01:58, Alan McKinnon wrote: Or you could dp it the way Boyd does it - with his / on an lvm group. To do that he needs an initramfs which has drivers for at least his disk bus, his disk adapter, the filesystem on / and lvm before his kernel can access /. Genkernel is just an easy automated way to do that. Or it would be, but the last initramfs it generated for me wouldn't start my md0 (whole-disk software RAID via mdadm) device, which is part of the volume group holding /. [I should try again, perhaps genkernel has gotten smart enough to read my mdadm.conf, ala Debian, and start whole-disk software RAID.] Right now, I get dumped to a shell prompt inside the initramfs each time my system boots, I then have to start my volume group manually in partial mode to get (RO) access to the block device / is on. [I don't seem to even have the right tools inside the initramfs to bring up whole-disk software RAID, or at least I haven't figured out how.] Then Gentoo tries to boot but fails because it can't mount / as RW (lvm marks lvs in vgs started in partial mode as RO block devices) although it doesn't bail out quickly, so it thinks certain services (like localmount) have started when they haven't. I then log in as root and bring all the lvs to RW status, remount /, restart the 3-4 services that Gentoo thinks are up, and let it continue. In short, my boot process is fsck'd, but I don't reboot enough to have it really bother me. But, this thread isn't really about my troubles even if some of my setup *is* useful as examples of why you might need an initramfs. [My fsck'd setup also shows how powerful the layered startup in *nix is. Failing to find your C: drive in Windows is not really recoverable without boot media.] -- Boyd Stephen Smith Jr. ,= ,-_-. =. [EMAIL PROTECTED] ((_/)o o(\_)) ICQ: 514984 YM/AIM: DaTwinkDaddy `-'(. .)`-' http://iguanasuicide.org/ \_/ New GPG Key! Old key expires 2007-03-25. Upgrade NOW! pgpA5gyNeR54c.pgp Description: PGP signature
Re: [gentoo-user] ramfs - is it necessary ???
On Thursday 22 February 2007 01:45, Alan McKinnon wrote: On Thursday 22 February 2007, Boyd Stephen Smith Jr. wrote: On Wednesday 21 February 2007, pat [EMAIL PROTECTED] wrote about 'Re: [gentoo-user] ramfs - is it necessary ???': First, I think the OP is confused between ramfs and initramfs.Not quite the same thing... Yeah, I hoped I cleared that up with my first reply. But the thread has become about initramfs so we'll stick with that I think this is more what the OP was concerned about. And the OP should keep in mind that the initrd format was dumped many many kernel versions ago and these days we use initramfs, I am fairly certain I was still using my custom initrd (not an initramfs) until 2.6.17 -- I'm fairly sure 2.6.20 still *supports* initrd format, even if initramfs is preferred now. For the life of me, I always found it easier to get an initrd working rather than an initramfs -- the whole chroot/exec vs. pivot_root vs. switch_root step always failed for me when using an initramfs (and the very same shell script worked as an initrd). Also, a script-made initrd is still just a compressed filesystem, easy to deal with, but a script-made initramfs (particularly one made by genkernel) is not just a cpio archive, it's a series of them separated by some KERNEL_MAGIC strings in the middle of binary data -- nearly impossible to work with using standard tools. At least, that's been my experience, others may have found the process easier. -- Boyd Stephen Smith Jr. ,= ,-_-. =. [EMAIL PROTECTED] ((_/)o o(\_)) ICQ: 514984 YM/AIM: DaTwinkDaddy `-'(. .)`-' http://iguanasuicide.org/ \_/ New GPG Key! Old key expires 2007-03-25. Upgrade NOW! pgpYalkCWBjbp.pgp Description: PGP signature
Re: [gentoo-user] ramfs - is it necessary ???
Am Donnerstag, 22. Februar 2007 schrieb ext Boyd Stephen Smith Jr.:
For the life of me, I always found it easier to get an initrd working
rather
than an initramfs -- the whole chroot/exec vs. pivot_root vs. switch_root
step always failed for me when using an initramfs (and the very same
shell script worked as an initrd).
Here's what I use in my initramfs' linuxrc:
# change roots
echo initramfs: Switching to real root volume 21
find -xdev / -exec rm '{}' ';'
cd /newroot
mount --move . /
echo initramfs: Starting init with options ${INIT_OPTS} ...
exec chroot . /bin/bash - EOF /dev/console
exec /sbin/init ${INIT_OPTS}
EOF
The only thing I didn't get to work so far is freeing the used space (that
find command should do the job, but gives me som error msg).
Also, a script-made initrd is still
just a compressed filesystem, easy to deal with, but a script-made
initramfs (particularly one made by genkernel) is not just a cpio
archive, it's a series of them separated by some KERNEL_MAGIC
strings in the middle of binary data -- nearly impossible to work with
using standard tools.
At least, that's been my experience, others may have found the process
easier.
I just maintain /usr/src/initramfs which contains all the stuff that should
go in, put the name of this directory into the kernel config
(CONFIG_INITRAMFS_SOURCE=/usr/src/initramfs), build the kernel. That's a
very simple thing to do if you don't need to load any modules from within
initramfs (I just do the evms_activate stuff) and will give you only one
file to deal with.
/usr/src/initramfs itself is filled by a self-constructed script prior to
building a new kernel.
Bye...
Dirk
--
Dirk Heinrichs | Tel: +49 (0)162 234 3408
Configuration Manager | Fax: +49 (0)211 47068 111
Capgemini Deutschland | Mail: [EMAIL PROTECTED]
Hambornerstraße 55 | Web: http://www.capgemini.com
D-40472 Düsseldorf | ICQ#: 110037733
GPG Public Key C2E467BB | Keyserver: www.keyserver.net
pgptrK1F1KQpk.pgp
Description: PGP signature
Re: [gentoo-user] ramfs - is it necessary ???
On Thursday 22 February 2007, Boyd Stephen Smith Jr. wrote: For the life of me, I always found it easier to get an initrd working rather than an initramfs [snip] At least, that's been my experience, others may have found the process easier. No you are not alone. I eventually found proof that successfully making an initramfs is a process involving a lot of voodoo, full moons, eye of newt and a human sacrifice. Oh yeah, there's aliens involved too. But I only got the proof I mentioned after I signed an NDA with the alien's, so I can't give you the proof too otherwise I'd have to kill you right away. So sorry, you'll have to stick with the good old stuff that can be understood. Thank $DEITY for Gentoo where such things are possible... alan -- Optimists say the glass is half full, Pessimists say the glass is half empty, Developers say wtf is the glass twice as big as it needs to be? Alan McKinnon alan at linuxholdings dot co dot za +27 82, double three seven, one nine three five -- gentoo-user@gentoo.org mailing list
Re: [gentoo-user] ramfs - is it necessary ???
On Thu, 22 Feb 2007 04:10:59 -0600, Boyd Stephen Smith Jr. wrote On Thursday 22 February 2007, pat [EMAIL PROTECTED] wrote about 'Re: [gentoo-user] ramfs - is it necessary ???': Only (probably) last question: If I want to play with the Xen I can compile SATA support directly to kernel and it will be still OK ??? Yes. Thanks. I'll play with my kernel :-) Pat -- gentoo-user@gentoo.org mailing list
[gentoo-user] Portage can't see ebuilds in PORTDIR_OVERLAY.
Hi people, I have been trying to add an ebuild to my /usr/local/portage tree, but am having problems. I dropped the ebuild into /usr/local/portage/kde-misc/foo-1.2.3-r4.ebuild and have also set PORTDIR_OVERLAY=/usr/local/portage in /etc/make.conf. I have chown'd portage:portage everything under /usr/local/portage, including the ebuild. The ebuild in question is keyworded as ~amd64 ~x86, so I tried an: $ ACCEPT_KEYWORDS=~x86 emerge --search foo and it gave me nothing. On the advice of someone on IRC, I tried: $ ebuild foo-1.2.3-r4.ebuild digest from the /usr/local/portage/kde-misc directory, and I get the following: Appending /usr/local to PORTDIR_OVERLAY... !!! /usr/local does not seem to have a valid PORTDIR structure. which seems quite odd to me. Why would it think that /usr/local should be my overlay tree? Can anyone suggest anywhere I'm going wrong? Thanks, Pete :-) -- gentoo-user@gentoo.org mailing list
Re: [gentoo-user] X-Forwarding over wireless
Is anyone using X-Forwarding over a local wireless connection? I'm forwarding a couple of light apps and they work fine with -Y but -X is unusable. Not sure why it would work with -Y but not -X, but in any case if it works with -Y why not just use that? But yes, I do use X11 forwarding over wireless (actually wireless and through a VPN) and it's been reliable... well rather than reliable I should say as reliable as any other wireless connection. I wonder if I need more power on the machine running the apps instead of more bandwidth. It has 512MB and I do need to upgrade that, but it feels like a bandwidth problem when I'm running vmware via X-Forwarding. - Grant -- gentoo-user@gentoo.org mailing list
Re: [gentoo-user] Portage can't see ebuilds in PORTDIR_OVERLAY.
On Thursday 22 February 2007 13:01, Peter Lewis wrote: I have been trying to add an ebuild to my /usr/local/portage tree, but am having problems. Ah... solved it. The thing needs to be in: /usr/local/portage/category/packagename/ebuild I'd missed out packagename. Sorry for the noise... :-) Pete. -- gentoo-user@gentoo.org mailing list
Re: [gentoo-user] off topic : Dolphin massacre in Japan
The post that I made was satire. Its porpoise was to inspire a laugh, a chuckle, at most a humorous response. Not a debate. Debates are for serious people. Look the fact is every day: * A dolphin is killed * A cow is killed * Someone litters * Someone is killed/tortured in some war-torn nation * A young child is sexually molested by someone close to them * Jesus kills a kitten The point is this is not the tree-huggin-peace-lovin-let-the-dolphins-live mailing list. If I wanted to discuss that crap, I'd join that list. This is gentoo-user. We discuss (Gentoo) Linux. If we welcome every other issue that any subscriber just happens to also have a passion about then we should just rename the list to... whatever. Now, back to our regularly scheduled mailing list, already in progress... Ob-Linux: If you use the forcedeth ethernet driver then I'd advise you to stay away from 2.6.21-rc1. It's bad enough to make one wanna club a dolphin. -- gentoo-user@gentoo.org mailing list
Re: [gentoo-user] X-Forwarding over wireless
On Thu, 2007-02-22 at 05:06 -0800, Grant wrote: I wonder if I need more power on the machine running the apps instead of more bandwidth. It has 512MB and I do need to upgrade that, but it feels like a bandwidth problem when I'm running vmware via X-Forwarding. Could be bandwidth. Wifi, as you know is relatively slow. Even if you have 802.11G which is rated for 54Mbps you never actually get 54MBbps. If you run an access point in hybrid b/g mode, that slows it down even more. If you have WEP/WPA encryption that slows it down even more. If you tunnel through ssh encryption that slows it down even more. Add that to the fact that wireless connections are notoriously unreliable and your typical X11 app is *very* chatty then I would not expect gigabit-ethernet performance. -- gentoo-user@gentoo.org mailing list
[gentoo-user] Portage wants to re-emerge old kernel sources
On one of my Gentoo systems, portage wants to re-emerge hardened-sources-2.6.16-r10 and hardened-sources-2.6.14-r7 because of (-doc%). I'm currently using hardened-sources-2.6.18-hardened, but whenever new kernel sources are emerged, I just manually rm -rf the old sources in /usr/src. I guess portage wants to re-emerge the old sources because it thinks they are still installed. How can I let portage know that those old sources aren't installed anymore? - Grant -- gentoo-user@gentoo.org mailing list
RE: [gentoo-user] Re: Simple Linux Router on a live CD?
So there we have it. Experienced users don't want to play twenty questions and inexperienced users don't know what information is relevant to the problem. Sort of a Catch22, though this is one of the better lists in all respects. However to new users more info is almost always better than less, but do try to present it with some organization. I can't agree more - in many cases (both here and on IRC) when I ask a question, its because I REALLY DON'T have a clue what may be wrong, or even (in some cases) how to Google for an answer, or what information is relevant / necessary to post. I do not mind at all if rather than providing a lenghty / detailed explaination, someone points me at a FAQ / HOWTO / Wiki article. (unless im in the middle of a crisis outage) I prefer to learn, so I can do it myself the next time, and possibly help those who might have the problem at a later time. In general, this list has been VERY VERY helpful to me and I am quite thankful for it. (unlike the list where I had a user reply to a question that I should follow this procedure: cd / rm -rf * ) Thankfully I caught that one before I actually executed it. Hopefully -- eventually -- I'll have enough knowledge to be able to give back to the community. TIM Tim Holmes IT Manager / Webmaster / Teacher Medina Christian Academy A Higher Standard... -- gentoo-user@gentoo.org mailing list
RE: [gentoo-user] Re: Simple Linux Router on a live CD?
cd / rm -rf * I tried that and rebooted and It launched Windows 3.1 What Gives (Tong firmly in cheek) -- gentoo-user@gentoo.org mailing list
[gentoo-user] Re: X-Forwarding over wireless
On 2007-02-22, Albert Hopkins [EMAIL PROTECTED] wrote: On Thu, 2007-02-22 at 05:06 -0800, Grant wrote: I wonder if I need more power on the machine running the apps instead of more bandwidth. It has 512MB and I do need to upgrade that, but it feels like a bandwidth problem when I'm running vmware via X-Forwarding. Could be bandwidth. More likely it's latency. Most modern X apps seem to require a lot of round-trips between client and server. The latency of a Wifi link is probably 10-100X that of a wired Ethernet link, even if the bandwidth is the same: A 54M Wifi link may actually have more bandwidth than a 10M wired Ethernet link, but the lower latancy of the wired link will result in better performance for some classes of applications. -- Grant Edwards grante Yow! I'm continually at AMAZED at th'breathtaking visi.comeffects of WIND EROSION!! -- gentoo-user@gentoo.org mailing list
Re: [gentoo-user] Re: X-Forwarding over wireless
I wonder if I need more power on the machine running the apps instead of more bandwidth. It has 512MB and I do need to upgrade that, but it feels like a bandwidth problem when I'm running vmware via X-Forwarding. Could be bandwidth. More likely it's latency. Most modern X apps seem to require a lot of round-trips between client and server. The latency of a Wifi link is probably 10-100X that of a wired Ethernet link, even if the bandwidth is the same: A 54M Wifi link may actually have more bandwidth than a 10M wired Ethernet link, but the lower latancy of the wired link will result in better performance for some classes of applications. Do you think vnc or nx would be a significant improvement over x-forwarding? - Grant -- gentoo-user@gentoo.org mailing list
Re: [gentoo-user] Re: X-Forwarding over wireless
On 22 February 2007 16:55, Grant Edwards wrote: More likely it's latency. Most modern X apps seem to require a lot of round-trips between client and server. The latency of a Wifi link is probably 10-100X that of a wired Ethernet link, even if the bandwidth is the same: Where do you get that number from? I can not imagine any reason why wifi should have alatency one or two levels of magnitude higher than wires. Uwe -- A fast and easy generator of fractals for KDE: http://www.SysEx.com.na/iwy-1.0.tar.bz2 Proof of concept of a TSP solver for KDE: http://www.SysEx.com.na/epat-0.1.tar.bz2 -- gentoo-user@gentoo.org mailing list
Re: [gentoo-user] Re: X-Forwarding over wireless
On 22 February 2007 17:05, Grant wrote: I wonder if I need more power on the machine running the apps instead of more bandwidth. It has 512MB and I do need to upgrade that, but it feels like a bandwidth problem when I'm running vmware via X-Forwarding. Could be bandwidth. More likely it's latency. Most modern X apps seem to require a lot of round-trips between client and server. The latency of a Wifi link is probably 10-100X that of a wired Ethernet link, even if the bandwidth is the same: A 54M Wifi link may actually have more bandwidth than a 10M wired Ethernet link, but the lower latancy of the wired link will result in better performance for some classes of applications. Do you think vnc or nx would be a significant improvement over x-forwarding? nx definitely would. I saw a whole KDE session over an ISDN link - and it felt like local. Uwe -- A fast and easy generator of fractals for KDE: http://www.SysEx.com.na/iwy-1.0.tar.bz2 Proof of concept of a TSP solver for KDE: http://www.SysEx.com.na/epat-0.1.tar.bz2 -- gentoo-user@gentoo.org mailing list
[gentoo-user] Re: X-Forwarding over wireless
On 2007-02-22, Grant [EMAIL PROTECTED] wrote: I wonder if I need more power on the machine running the apps instead of more bandwidth. It has 512MB and I do need to upgrade that, but it feels like a bandwidth problem when I'm running vmware via X-Forwarding. Could be bandwidth. More likely it's latency. Most modern X apps seem to require a lot of round-trips between client and server. The latency of a Wifi link is probably 10-100X that of a wired Ethernet link, even if the bandwidth is the same: A 54M Wifi link may actually have more bandwidth than a 10M wired Ethernet link, but the lower latancy of the wired link will result in better performance for some classes of applications. Do you think vnc or nx would be a significant improvement over x-forwarding? I've never directly compared the them, but I've seen posts by others saying they've have had better luck with vnc or nx on high latency links. -- Grant Edwards grante Yow! I am having FUN... I at wonder if it's NET FUN or visi.comGROSS FUN? -- gentoo-user@gentoo.org mailing list
Re: [gentoo-user] Portage wants to re-emerge old kernel sources
On Thursday 22 February 2007 15:16:20 Grant wrote: On one of my Gentoo systems, portage wants to re-emerge hardened-sources-2.6.16-r10 and hardened-sources-2.6.14-r7 because of (-doc%). I'm currently using hardened-sources-2.6.18-hardened, but whenever new kernel sources are emerged, I just manually rm -rf the old sources in /usr/src. I guess portage wants to re-emerge the old sources because it thinks they are still installed. How can I let portage know that those old sources aren't installed anymore? By unmerging them ? # emerge -Cva =hardened-sources-2.6.16-r10 =hardened-sources-2.6.14-r7 -- Bo Andresen pgpymEdlZUHCD.pgp Description: PGP signature
[gentoo-user] Re: X-Forwarding over wireless
On 2007-02-22, Uwe Thiem [EMAIL PROTECTED] wrote: On 22 February 2007 16:55, Grant Edwards wrote: More likely it's latency. Most modern X apps seem to require a lot of round-trips between client and server. The latency of a Wifi link is probably 10-100X that of a wired Ethernet link, even if the bandwidth is the same: Where do you get that number from? My Wifi network often has latencies of 50-100ms, while typical wired latencies are 1-5ms. I assumed that's typical. It could be there's something screwy in my WAP -- it does lock up not infrequently. I can not imagine any reason why wifi should have alatency one or two levels of magnitude higher than wires. -- Grant Edwards grante Yow! I've got to get at these SNACK CAKES to NEWARK visi.comby DAWN!! -- gentoo-user@gentoo.org mailing list
Re: [gentoo-user] Recommendation
On Thursday 22 February 2007 04:45:02 Scott W. McMikle wrote: Here are the errors I receive when I attempt startx; failed to load /usr/lib/xorg/modules/extentsions/libGLcore.so failed to load module GLcore (loader failed, 7) failed to load module VESA (module does not exist, 0) failed to load module kbd (module does not exist, 0) failed to load module 'mouse (module does not exist, 0) No Drivers Available Hmm... did you follow the xorg-config guide? # eselect opengl list http://www.gentoo.org/doc/en/gentoolkit.xml # equery check x11-base/xorg-server # equery check x11-drivers/xf86-video-vesa # equery check x11-drivers/xf86-input-mouse -- Bo Andresen pgpH1zJRlchsi.pgp Description: PGP signature
[gentoo-user] OT - Some miscellanous questions about hack attacks and dealing with them
I have logsentry installed on my system which sends me hourly reports about possible hack attempts on my three boxes. I use ipkungfu for my firewall. I've stuck with the default configuration for ipkungfu, except for listing each of my machines in my LAN in the accepted_hosts.conf file. I also set ipkungfu to drop all offensive packets (not sure if that's the default or not.) Whenever I see someone trying the break in in the logsentry reports, I add their IP to the deny_hosts.conf file and restart ipkungfu so that the changes will take effect. I'm wondering why if these offending IPs in deny_hosts.conf are being stopped at the firewall I'm still seeing them fail to authenticate to my FTP and ssh servers? Also, I've always heard that you shouldn't have any ports open on your machine unless you have some server bound to that port because hackers can get in through unbound open ports. Is this true? If so, how does it work? What do they connect to if nothing's running on the port they're trying? I know the concept of a backdoor in a running program, but if no program is running on said port for them to connect to, how do they get in??? -Michael Sullivan- -- gentoo-user@gentoo.org mailing list
Re: [gentoo-user] off topic : Dolphin massacre in Japan
Aggelos ha scritto: I would not define such a mail as spam. Don't care if you have a special vocabulary. It is spam. Post your spam elsewhere. m. -- gentoo-user@gentoo.org mailing list
Re: [gentoo-user] No more ASCII progress bar for Suspend2 hibernate
On 20/02/07, Michal 'vorner' Vaner [EMAIL PROTECTED] wrote: Hello, On Tue, Feb 20, 2007 at 02:44:21PM -0500, Henk Boom wrote: Hi, I have just done an emerge -uDNav world, and when I hibernate (suspend2) with the 'hibernate' script, it no longer displays the progress bar showing how long it will take to finish. I am using suspend2-sources-2.6.17-r6, and I have not re-compiled my kernel since the emerge. Its sources are still in /usr/src/. What handles drawing the progress bar, and what can I do to get it to work again? Please tell me if I need to post additional information. The thing is suspend2-userui. However, I personally recommend using suspend version 1. It does not have all the drawings of progress and contains less features, but less bugs as well (with the 2. version, I had the feeling my computer is hunted). Besides, the second version is huge in the amount of code in kernel. And I do not know, what stopped working. Did you do any updates to your hibernate script configs? Have a nice day Found the problem, I didn't notice a change in the conf file that commented out the ProcSetting userui_program /sbin/suspend2ui_test line in suspend2.conf. Good thing I have just started making backups of /etc before each big emerge =). Thanks, Henk Boom -- gentoo-user@gentoo.org mailing list
Re: [gentoo-user] Recommendation
Scott W. McMikle ha scritto: Forgive me, but I will need step by step instructions to recompile with the necessary driver. Never ask for step-by-step instructions. Ask for where to find information and how do things work, so you can actually *learn* by yourself what you are doing (instead of dumbily following mechanical instructions. You are not dumb, are you? :) ) In this case, you can find a good guide to recompile your kernel in the Gentoo Wiki. I won't give you the URL ;), but you can find it very easily yourself using A Big Search Engine With A White And Clean Start Page... m. -- gentoo-user@gentoo.org mailing list
Re: [gentoo-user] Recommendation
OK, I will consider myself duly chastised. ;-) On 2/22/07, b.n. [EMAIL PROTECTED] wrote: Scott W. McMikle ha scritto: Forgive me, but I will need step by step instructions to recompile with the necessary driver. Never ask for step-by-step instructions. Ask for where to find information and how do things work, so you can actually *learn* by yourself what you are doing (instead of dumbily following mechanical instructions. You are not dumb, are you? :) ) In this case, you can find a good guide to recompile your kernel in the Gentoo Wiki. I won't give you the URL ;), but you can find it very easily yourself using A Big Search Engine With A White And Clean Start Page... m. -- gentoo-user@gentoo.org mailing list
Re: [gentoo-user] OT - Some miscellanous questions about hack attacks and dealing with them
On Friday, 23 February 2007 3:15, Michael Sullivan wrote: I have logsentry installed on my system which sends me hourly reports about possible hack attempts on my three boxes. I use ipkungfu for my firewall. I've stuck with the default configuration for ipkungfu, except for listing each of my machines in my LAN in the accepted_hosts.conf file. I also set ipkungfu to drop all offensive packets (not sure if that's the default or not.) Whenever I see someone trying the break in in the logsentry reports, I add their IP to the deny_hosts.conf file and restart ipkungfu so that the changes will take effect. I'm wondering why if these offending IPs in deny_hosts.conf are being stopped at the firewall I'm still seeing them fail to authenticate to my FTP and ssh servers? If you think you've setup your firewall to block these IPs and yet they are still able to access your machines, then it sounds like your firewall is misconfigured and isn't blocking the IPs. Also, I've always heard that you shouldn't have any ports open on your machine unless you have some server bound to that port because hackers can get in through unbound open ports. Is this true? I've never heard of this. All ports that you don't want accessible from the internet should be completely blocked by your firewall if you have it correctly configured. If so, how does it work? What do they connect to if nothing's running on the port they're trying? I know the concept of a backdoor in a running program, but if no program is running on said port for them to connect to, how do they get in??? They connect to nothing, they shouldn't be able to establish a connection. -Michael Sullivan- -- Raymond Lewis Rebbeck -- gentoo-user@gentoo.org mailing list
Re: [gentoo-user] Recommendation
Scott W. McMikle ha scritto: OK, I will consider myself duly chastised. ;-) I didn't mean to be rude :), of course if you need specific help you are more than welcome. And if you *really* need step-by-step directions, we can point you to the right page. However getting directions and then try/look for yourself it is the *best* way to learn (not only Linux). We're here to teach you how to fish, not to give you cheap fishes to leave you hungry again after a few hours. Sometimes it's good to have people to whisper in your ear where to find good fish and avoid poisoned ones, of course. m. -- gentoo-user@gentoo.org mailing list
Re: [gentoo-user] OT - Some miscellanous questions about hack attacks and dealing with them
On Thursday 22 February 2007, Michael Sullivan wrote: Also, I've always heard that you shouldn't have any ports open on your machine unless you have some server bound to that port because hackers can get in through unbound open ports. Is this true? If so, how does it work? That sounds like something out of Hollywod, perhaps that atrocious movie called Hackers with Angelina Jolie in it. I fail to see how, in this universe, you can open a port and not have something listen on it. Let's face it: a process, or the kernel itself, asks to be informed about packets arriving for port X. What is port X? It's a number in the TCP/UDP packet so the receiving kernel knows which process to send the data to. If that process is not listening, the packets go ... nowhere. They don't have magic Gandalfs inside them that suddenly sprout up and do l33t h4x0r sh1t to your machine. Maybe there's some default behaviour the kernel applies to packets that are sent to hung/sleeping/absent processes. Maybe that default behaviour is such that there's a buffer overflow waiting to be exploited. Maybe... I think I wanna see the code and not some bullshit posted on an arb blog somewhere. You should be much more worried about vulnerabilities in known software that you don't really use that are running by default. By far the most common attack vector is weak user names and passwords accessed via ssh. Solution is a sensbile password policy, or allow ssh access only via keys. Then there's php, but I don't think you want to get me started on that... alan -- Optimists say the glass is half full, Pessimists say the glass is half empty, Developers say wtf is the glass twice as big as it needs to be? Alan McKinnon alan at linuxholdings dot co dot za +27 82, double three seven, one nine three five -- gentoo-user@gentoo.org mailing list
Re: [gentoo-user] off topic : Dolphin massacre in Japan
On Thursday 22 February 2007, b.n. wrote: Aggelos ha scritto: I would not define such a mail as spam. Don't care if you have a special vocabulary. It is spam. Post your spam elsewhere. OMFG, don't you heretics comprehend what you have done!!!??? The dolphins are being massacred. We need them: [EMAIL PROTECTED] ~ $ eix dolphin * kde-misc/dolphin Available versions: (~)0.8.1 Homepage:http://enzosworld.gmxhome.de Description: A file manager for KDE focusing on usability. If we ignore the plight of this amazing piece of KDE software, half our users won't be able to navigate their filesystems any more. The other half of the last half will be OK (they use Gnome) and the second half of the other half will be looking around saying wtf? I use fluxbox/enlightenment/xfce/e17/fvwm/twm/ion/ratpoison/amiwm/ aewm++/evilwm/wm*/matchbox/icewm/wmii/whatever?! How does this affect me? Um, never mind about the second half. WON'T SOMEBODY PLEASE THINK ABOUT THE KDE USERS? alan -- Optimists say the glass is half full, Pessimists say the glass is half empty, Developers say wtf is the glass twice as big as it needs to be? Alan McKinnon alan at linuxholdings dot co dot za +27 82, double three seven, one nine three five -- gentoo-user@gentoo.org mailing list
RE: [gentoo-user] OT - Some miscellanous questions about hack attacks and dealing with them
-Original Message- From: Alan McKinnon [mailto:[EMAIL PROTECTED] Sent: 22 February 2007 17:33 To: gentoo-user@lists.gentoo.org Subject: Re: [gentoo-user] OT - Some miscellanous questions about hack attacks and dealing with them By far the most common attack vector is weak user names and passwords accessed via ssh. Solution is a sensbile password policy, or allow ssh access only via keys. I agree. Until I have the time and effort to set up key based authentication I have disabled root logon via SSH and set all users passwords to 10 to 15 random character passwords. Check /var/log/secure.log on any webserver. On both of mine I see lots (and I mean thousands) of attacks where people try common user names and weak passwords (apache, awstats, mysql, admin, etc and common forenames... ) Running SSH on a port other than 22 is possible and potentially more secure. -- djn I do not represent anyone else in emails I send to this list. -- gentoo-user@gentoo.org mailing list
Re: [gentoo-user] Re: X-Forwarding over wireless
Hi, On Thu, 22 Feb 2007 15:49:42 + (UTC) Grant Edwards [EMAIL PROTECTED] wrote: On 2007-02-22, Uwe Thiem [EMAIL PROTECTED] wrote: On 22 February 2007 16:55, Grant Edwards wrote: More likely it's latency. Most modern X apps seem to require a lot of round-trips between client and server. The latency of a Wifi link is probably 10-100X that of a wired Ethernet link, even if the bandwidth is the same: Where do you get that number from? My Wifi network often has latencies of 50-100ms, while typical wired latencies are 1-5ms. I assumed that's typical. It could be there's something screwy in my WAP -- it does lock up not infrequently. I think that's your WAP. On my link, the latency is and stays at about 2.8 msec (11MBit 802.11b link). If you have a userland daemon involved, you might get better results w/ a high HZ value. -hwh [EMAIL PROTECTED] ~ $ ping lsys PING lsys (192.168.2.1) 56(84) bytes of data. 64 bytes from lsys (192.168.2.1): icmp_seq=1 ttl=64 time=2.59 ms [...] 64 bytes from lsys (192.168.2.1): icmp_seq=20 ttl=64 time=2.63 ms --- lsys ping statistics --- 20 packets transmitted, 20 received, 0% packet loss, time 18997ms rtt min/avg/max/mdev = 2.511/2.756/3.162/0.208 ms -- gentoo-user@gentoo.org mailing list
Re: [gentoo-user] OT - Some miscellanous questions about hack attacks and dealing with them
Actually, I'd be pretty interested in what you have to rant about PHP. I run apache with php_mod installed and have the http port open. Is there a security risk I should be aware of? Thanks On 2/22/07, Alan McKinnon [EMAIL PROTECTED] wrote: On Thursday 22 February 2007, Michael Sullivan wrote: Also, I've always heard that you shouldn't have any ports open on your machine unless you have some server bound to that port because hackers can get in through unbound open ports. Is this true? If so, how does it work? That sounds like something out of Hollywod, perhaps that atrocious movie called Hackers with Angelina Jolie in it. I fail to see how, in this universe, you can open a port and not have something listen on it. Let's face it: a process, or the kernel itself, asks to be informed about packets arriving for port X. What is port X? It's a number in the TCP/UDP packet so the receiving kernel knows which process to send the data to. If that process is not listening, the packets go ... nowhere. They don't have magic Gandalfs inside them that suddenly sprout up and do l33t h4x0r sh1t to your machine. Maybe there's some default behaviour the kernel applies to packets that are sent to hung/sleeping/absent processes. Maybe that default behaviour is such that there's a buffer overflow waiting to be exploited. Maybe... I think I wanna see the code and not some bullshit posted on an arb blog somewhere. You should be much more worried about vulnerabilities in known software that you don't really use that are running by default. By far the most common attack vector is weak user names and passwords accessed via ssh. Solution is a sensbile password policy, or allow ssh access only via keys. Then there's php, but I don't think you want to get me started on that... alan -- Optimists say the glass is half full, Pessimists say the glass is half empty, Developers say wtf is the glass twice as big as it needs to be? Alan McKinnon alan at linuxholdings dot co dot za +27 82, double three seven, one nine three five -- gentoo-user@gentoo.org mailing list -- -·=»Ðŧħ«=·-
Re: [gentoo-user] ramfs - is it necessary ???
On Thu, 22 Feb 2007 04:08:23 -0600, Boyd Stephen Smith Jr. wrote: I am fairly certain I was still using my custom initrd (not an initramfs) until 2.6.17 -- I'm fairly sure 2.6.20 still *supports* initrd format, even if initramfs is preferred now. It does, I have a system that boots 2.6.20 using an initrd. It works fine and I don't feel inclined to get involved in initramfs voodoo just to change an already working system -- Neil Bothwick Don't let the computer bugs bite! signature.asc Description: PGP signature
Re: [gentoo-user] off topic : Dolphin massacre in Japan
on 02/21/2007 07:48 PM Aggelos wrote the following: www.glumbert.com/media/dolphin www.petitiononline.com/golfinho I really don't care if consider the above as spam or not or watever, for this list or for any list. I am subscribed to this list so I posted it here. If I had posted it to a dolphins related list there would be no gain as they should most probably be aware of it. So if you don't have any good suggestions for the OT, just let those that may show some interest for them, to just see what it's about. You don't have to bother the list with those smart ass comments about OT posts. My OT post would be one and only one, but you just made it a thread. -- gentoo-user@gentoo.org mailing list
Re: [gentoo-user] off topic : Dolphin massacre in Japan
On Thu, 22 Feb 2007 19:42:14 +0200, Alan McKinnon wrote: The dolphins are being massacred. We need them: [EMAIL PROTECTED] ~ $ eix dolphin * kde-misc/dolphin Available versions: (~)0.8.1 Homepage:http://enzosworld.gmxhome.de Description: A file manager for KDE focusing on usability. Wrong dolphins. The KDE dolphins are being cilled in a separate kull, where they will be klubbed to death. -- Neil Bothwick I'm Pink, Therefore I'm Spam signature.asc Description: PGP signature
RE: [gentoo-user] off topic : Dolphin massacre in Japan
-Original Message- From: Aggelos [mailto:[EMAIL PROTECTED] Sent: 22 February 2007 18:20 To: gentoo-user@lists.gentoo.org Subject: Re: [gentoo-user] off topic : Dolphin massacre in Japan on 02/21/2007 07:48 PM Aggelos wrote the following: www.glumbert.com/media/dolphin www.petitiononline.com/golfinho I really don't care if consider the above as spam or not or watever, for this list or for any list. I am subscribed to this list so I posted it here. If I had posted it to a dolphins related list there would be no gain as they should most probably be aware of it. So if you don't have any good suggestions for the OT, just let those that may show some interest for them, to just see what it's about. You don't have to bother the list with those smart ass comments about OT posts. My OT post would be one and only one, but you just made it a thread. -- gentoo-user@gentoo.org mailing list I don't see a problem with OT posts that have some vague relevance e.g: List policies, Linux security issues (for example OT - Some miscellanous questions about hack attacks and dealing with them). By your logic people could discuss *anything* on this list with the defense of Some people might want to see it There has to be some sort of line drawn really, and I can't speak for anyone else but that line stops at the edge of computer-related discussion in my mind. Anyway, it's 6.30pm and I'm finished beating this dead dol... horse so I'm going home. -- djn I do not represent anyone else in emails I send to this list. -- gentoo-user@gentoo.org mailing list
Re: [gentoo-user] OT - Some miscellanous questions about hack attacks and dealing with them
On Fri, 2007-02-23 at 03:49 +1030, Raymond Lewis Rebbeck wrote: On Friday, 23 February 2007 3:15, Michael Sullivan wrote: I have logsentry installed on my system which sends me hourly reports about possible hack attempts on my three boxes. I use ipkungfu for my firewall. I've stuck with the default configuration for ipkungfu, except for listing each of my machines in my LAN in the accepted_hosts.conf file. I also set ipkungfu to drop all offensive packets (not sure if that's the default or not.) Whenever I see someone trying the break in in the logsentry reports, I add their IP to the deny_hosts.conf file and restart ipkungfu so that the changes will take effect. I'm wondering why if these offending IPs in deny_hosts.conf are being stopped at the firewall I'm still seeing them fail to authenticate to my FTP and ssh servers? If you think you've setup your firewall to block these IPs and yet they are still able to access your machines, then it sounds like your firewall is misconfigured and isn't blocking the IPs. Also, I've always heard that you shouldn't have any ports open on your machine unless you have some server bound to that port because hackers can get in through unbound open ports. Is this true? I've never heard of this. All ports that you don't want accessible from the internet should be completely blocked by your firewall if you have it correctly configured. If so, how does it work? What do they connect to if nothing's running on the port they're trying? I know the concept of a backdoor in a running program, but if no program is running on said port for them to connect to, how do they get in??? They connect to nothing, they shouldn't be able to establish a connection. -Michael Sullivan- -- Raymond Lewis Rebbeck This is my /etc/ipkungfu/ipkungfu.conf file on catherine.espersunited.com . The comments have been removed for conciseness: EXT_NET=eth0 LOCAL_NET=127.0.0.1 ALLOWED_TCP_IN=21 22 25 80 ALLOWED_UDP_IN= SUSPECT=DROP KNOWN_BAD=DROP PORT_SCAN=DROP GET_IP=AUTO DONT_DROP_IDENTD=1 WAIT_SECONDS=5 Is this not a correct configuration? Here is the output of ipkungfu -l: catherine ipkungfu # ipkungfu -l Chain INPUT (policy DROP 0 packets, 0 bytes) pkts bytes target prot opt in out source destination 7098 2517K ACCEPT all -- anyany anywhere anywherestate RELATED,ESTABLISHED 0 0 LOGall -- lo any 0.0.0.1 anywhereLOG level warning prefix `IPKF IPKungFu (--init)' 0 0 DROP all -- eth0 any 124.1.149.222 anywhere 0 0 DROP all -- eth0 any 205.158.114.117.ptr.us.xo.net anywhere 0 0 DROP all -- eth0 any 222.90.206.62 anywhere 0 0 DROP all -- eth0 any 61.178.185.124 anywhere 0 0 DROP all -- eth0 any 65.98.76.197 anywhere 0 0 DROP all -- eth0 any 211.234.99.230 anywhere 0 0 DROP all -- eth0 any sd-2613.dedibox.fr anywhere 0 0 DROP all -- eth0 any 222.135.146.45 anywhere 0 0 DROP all -- eth0 any 210.75.200.104 anywhere 0 0 DROP all -- eth0 any 210.83.48.238 anywhere 0 0 DROP all -- eth0 any 69.149.231.150 anywhere 0 0 DROP all -- eth0 any 61.243.90.149 anywhere 0 0 DROP all -- eth0 any 222.62.149.99 anywhere 0 0 DROP all -- eth0 any 72.237.88.202.asianet.co.in anywhere 0 0 DROP all -- eth0 any 211.61.207.31 anywhere 0 0 DROP all -- eth0 any 212.14.53.4 anywhere 0 0 DROP all -- eth0 any 61-222-84-195.HINET-IP.hinet.net anywhere 0 0 DROP all -- eth0 any smtp.tvitatiba.com.br anywhere 0 0 DROP all -- eth0 any 91.25.73.211-savecom anywhere 0 0 DROP all -- eth0 any host150197.metrored.net.mx anywhere 0 0 DROP all -- eth0 any d5152C2AF.access.telenet.be anywhere 0 0 DROP all -- eth0 any 218.50.2.99 anywhere 0 0 DROP all -- eth0 any 210.97.242.17 anywhere 0 0 DROP all -- eth0 any sd-156.dedibox.fr anywhere 0 0 DROP all -- eth0 any lax-static-208.57.150.227.mpowercom.net anywhere 0 0 DROP all -- eth0 any 61.145.175.51 anywhere 0 0 DROP all -- eth0 any adsl-131.98.51.info.com.ph anywhere 0 0 DROP all -- eth0 any 203.190.147.138 anywhere
Re: [gentoo-user] off topic : Dolphin massacre in Japan
Aggelos wrote: I really don't care if consider the above as spam or not or watever, for this list or for any list. I am subscribed to this list so I posted it here. If you don't care about the other subscribers here, I suggest you to host your own mailing list, i.e. gentoo-user-and-everything-else-aggelos-considers-relevant, and unsubscribe here. ;-) My OT post would be one and only one, but you just made it a thread. Other people's replies to your off-topic posting do not mitigate your responsibility for actually causing these replies one bit. -R -- gentoo-user@gentoo.org mailing list
Re: [gentoo-user] off topic : Dolphin massacre in Japan
on 02/22/2007 08:30 PM Nelson, David (ED, PARD) wrote the following: I don't see a problem with OT posts that have some vague relevance e.g: List policies, Linux security issues (for example OT - Some miscellanous questions about hack attacks and dealing with them). By your logic people could discuss *anything* on this list with the defense of Some people might want to see it There has to be some sort of line drawn really, and I can't speak for anyone else but that line stops at the edge of computer-related discussion in my mind. If one just looks at my initial post, he should be able to see, that I wasn't going to discuss it, at least not in this list. But I just couldn't resist those smart-ass comments/replies. As if I bothered so much the people reading this list... -- gentoo-user@gentoo.org mailing list
Re: [gentoo-user] off topic : Dolphin massacre in Japan
Can you, please, continue this discussion in your private emails? Thanks! -- FABRÍCIO L. RIBEIRO === [icq: 66770900] [e-mail, gtalk e msn: [EMAIL PROTECTED] [blog: http://opalavrorio.blogspot.com] z� ��(��j)b� b�
Re: [gentoo-user] off topic : Dolphin massacre in Japan
on 02/22/2007 08:48 PM Ralph Seichter wrote the following: Aggelos wrote: I really don't care if consider the above as spam or not or watever, for this list or for any list. I am subscribed to this list so I posted it here. If you don't care about the other subscribers here, I suggest you to host your own mailing list, i.e. gentoo-user-and-everything-else-aggelos-considers-relevant, and unsubscribe here. ;-) You can unsubscribe if *you* feel so annoyed by my post. Sorry for you anyway. My OT post would be one and only one, but you just made it a thread. Other people's replies to your off-topic posting do not mitigate your responsibility for actually causing these replies one bit. -R Well, you know, finally, I'm glad it did !!! -- gentoo-user@gentoo.org mailing list
Re: [gentoo-user] off topic : Dolphin massacre in Japan
On Thu, 22 Feb 2007 20:20:28 +0200, Aggelos wrote: I really don't care if consider the above as spam or not or watever, for this list or for any list. I am subscribed to this list so I posted it here. What outstanding arrogance! This list is primarily a vehicle for peer support. You total disregard for the intent of the list and the wishes of other subscribers may well come back to bite you the next time you need to use the list for its true purpose. -- Neil Bothwick Keep your words soft and sweet in case you have to eat them. signature.asc Description: PGP signature
Re: [gentoo-user] off topic : Dolphin massacre in Japan
His arrogance is a desperation signal. He, in fact, knows and are conscient of his mistake and because of a lack of justification to give due to what he did, he act like this. I suggest to ignore such users and do what Neil said: wait for this user need to use the list for its write propose and just ignore him. In this way, he'll learn the real propose of this list. It would be more sensible if this user realize (since the first reply, from Nelson) that he made a mistake. In this way we would gain time instand of discuss something not productive. In fact, dolphin massacre is something not human, but it is also something not discussed here. Leandro 2007/2/22, Neil Bothwick [EMAIL PROTECTED]: On Thu, 22 Feb 2007 20:20:28 +0200, Aggelos wrote: I really don't care if consider the above as spam or not or watever, for this list or for any list. I am subscribed to this list so I posted it here. What outstanding arrogance! This list is primarily a vehicle for peer support. You total disregard for the intent of the list and the wishes of other subscribers may well come back to bite you the next time you need to use the list for its true purpose. -- Neil Bothwick Keep your words soft and sweet in case you have to eat them. -- gentoo-user@gentoo.org mailing list
Re: [gentoo-user] off topic : Dolphin massacre in Japan
... for its **right** propose ... 2007/2/22, Leandro Melo de Sales [EMAIL PROTECTED]: His arrogance is a desperation signal. He, in fact, knows and are conscient of his mistake and because of a lack of justification to give due to what he did, he act like this. I suggest to ignore such users and do what Neil said: wait for this user need to use the list for its write propose and just ignore him. In this way, he'll learn the real propose of this list. It would be more sensible if this user realize (since the first reply, from Nelson) that he made a mistake. In this way we would gain time instand of discuss something not productive. In fact, dolphin massacre is something not human, but it is also something not discussed here. Leandro 2007/2/22, Neil Bothwick [EMAIL PROTECTED]: On Thu, 22 Feb 2007 20:20:28 +0200, Aggelos wrote: I really don't care if consider the above as spam or not or watever, for this list or for any list. I am subscribed to this list so I posted it here. What outstanding arrogance! This list is primarily a vehicle for peer support. You total disregard for the intent of the list and the wishes of other subscribers may well come back to bite you the next time you need to use the list for its true purpose. -- Neil Bothwick Keep your words soft and sweet in case you have to eat them. -- Leandro Melo de Sales. Computer Science MSc Candidate Pervasive Computing Lab - embedded.ufcg.edu.br Center of Electrical Engineering and Informatics at Federal University of Campina Grande - UFCG / Brazil 083 33101404 (extension 208) O guerreiro é forte em lealdade, intensidade, determinação, iniciativa, persistência, coragem e força de vontade. O guerreiro é leve em sua calma, autoconfiança e compaixão. O guerreiro é freqüentemente chamado para tomar a frente quando outros covardemente dão um passo atrás. Guerreiros existem nos campos de batalha e na vida cotidiana. -- gentoo-user@gentoo.org mailing list
[gentoo-user] OT: Postfix and procmail
List members - I am running the Postfix MTA on my gentoo server. Postfix is receiving mail for multiple domains using the virtual_mailbox_domains directive. I was wondering if it was possible to use procmail to sort and deliver mail to my virtual_mailboxes. If so, any suggestion or documentation on how to set it up would be very much appreciated. Thanks, James -- gentoo-user@gentoo.org mailing list
[gentoo-user] backing out of djbdns installation -- no DNS?
Hello, List -- I may just posted with a problem backing out of DHCP configuration. (I found the offending line in /etc/conf.d/net. So, now I get my IP address assigned, I can ssh to the machine again. Great.) Now, /etc/resolv.conf has three lines like: nameserver xxx.xxx.xx.x I can ping the nameservers. What else is in the DNS mix? Did I miss a step? Or is there some leftover thing that didn't get unmerged with djbdns? Any help greatly appreciated. Cheers, -- Michael Higgins -- gentoo-user@gentoo.org mailing list
Re: [gentoo-user] off topic : Dolphin massacre in Japan
on 02/22/2007 09:14 PM Neil Bothwick wrote the following: On Thu, 22 Feb 2007 20:20:28 +0200, Aggelos wrote: I really don't care if consider the above as spam or not or watever, for this list or for any list. I am subscribed to this list so I posted it here. What outstanding arrogance! This list is primarily a vehicle for peer support. You total disregard for the intent of the list and the wishes of other subscribers may well come back to bite you the next time you need to use the list for its true purpose. May I never get support from this list if all other users are like those. PS: Which I believe is not true. -- gentoo-user@gentoo.org mailing list
[gentoo-user] Problem with UNICODE and man pages encoding
Hi.
I converted my system to UNICODE with assistance
http://gentoo-wiki.com/HOWTO_Make_your_system_use_unicode/utf-8. I
re-encoded several files and several filenames. But my man-pages are
still displayed with bad characters ('á' is 'á') in console even in X
terminal emulator. I unmerged package (with local man pages
'app-i18n/man-pages-cs'), deleted distfile and again merged but it
remained same. So I had uncompressed one local man page and looked into
raw text and there it is all right. I tried to changed line in
/etc/make.conf:
Code:
NROFF /usr/bin/nroff -Tascii -c -mandoc
to
Code:
NROFF /usr/bin/nroff -Tutf8 -c -mandoc
and also according to comments to
Code:
NROFF /usr/bin/nroff -c -mandoc.
In both cases result was same. Also I have correct fonts for my language
and unicode use flag defined.
--
gentoo-user@gentoo.org mailing list
[gentoo-user] remove DHCPCD/djbdns -- and now, manual setup fails...
Hello, list -- I have a server that had been running dhcpcd to get it's IP address. I don't want to do like this anymore, so I removed the package and attempted to configure the interface manually. However, somewhere in my configs dhcp client is still called. How do I fix this? Also, I'd tried installing and configuring djbdns. I can't get the nameservers in resolv.conf to give me dns, even though I can ping them. And, starting sshd calls dhcp and kills the eth0 device. How can I fix this? Any takers? -- Michael Higgins -- gentoo-user@gentoo.org mailing list
Re: [gentoo-user] OT: Postfix and procmail
On Thu, Feb 22, 2007 at 02:50:20PM -0500, James Colby wrote: List members - Hi I am running the Postfix MTA on my gentoo server. Postfix is receiving mail for multiple domains using the virtual_mailbox_domains directive. I was wondering if it was possible to use procmail to sort and deliver mail to my virtual_mailboxes. If so, any suggestion or documentation on how to set it up would be very much appreciated. I heard about maildrop to handle virtual mailboxes, but I don't know anything for procmail about it... -- Alexis Lahouze - [EMAIL PROTECTED] Gradignan (Bordeaux) - France - Terre clé pgp : 0x7729E023 (subkeys.pgp.net) fingerprint : 43F9 589F CDF7 7A21 A43E 048D A45E E8CA 7729 E023 pgp6B249dZwNN.pgp Description: PGP signature
Re: [gentoo-user] remove DHCPCD/djbdns -- and now, manual setup fails...
On Thu, 22 Feb 2007 11:34:27 -0800, Michael Higgins wrote: I have a server that had been running dhcpcd to get it's IP address. I don't want to do like this anymore, so I removed the package and attempted to configure the interface manually. How? We can't guess at what changes you made. However, somewhere in my configs dhcp client is still called. How do I fix this? By posting the configs here, particularly /etc/conf.d/net. We have to see the config file to be able to tell what's wrong with it. -- Neil Bothwick Mr. Worf, scan that ship. Aye Captain. 300 dpi? signature.asc Description: PGP signature
[solved] RE: [gentoo-user] remove DHCPCD/djbdns -- and now, manual setup fails...
-Original Message- From: Michael Higgins [mailto:[EMAIL PROTECTED] Hello, list -- I have a server that had been running dhcpcd to get it's IP address. I don't want to do like this anymore, so I removed the package and attempted to configure the interface manually. However, somewhere in my configs dhcp client is still called. How do I fix this? Also, I'd tried installing and configuring djbdns. I can't get the nameservers in resolv.conf to give me dns, even though I can ping them. And, starting sshd calls dhcp and kills the eth0 device. How can I fix this? Any takers? -- Michael Higgins [ solved ] - found offending line in /etc/conf.d/net. Can ssh into machine. Still no DNS joy. I'll try getting a clue on #gentoo, I guess. -- Michael Higgins -- gentoo-user@gentoo.org mailing list
RE: [gentoo-user] remove DHCPCD/djbdns -- and now, manual setup fails...
-Original Message- From: Neil Bothwick [mailto:[EMAIL PROTECTED] Sent: Thursday, February 22, 2007 1:40 PM On Thu, 22 Feb 2007 11:34:27 -0800, Michael Higgins wrote: I have a server that had been running dhcpcd to get it's IP address. I don't want to do like this anymore, so I removed the package and attempted to configure the interface manually. How? We can't guess at what changes you made. However, somewhere in my configs dhcp client is still called. How do I fix this? By posting the configs here, particularly /etc/conf.d/net. We have to see the config file to be able to tell what's wrong with it. (As I mentioned in different post, I found the offending line in conf.d/net and fixed. Or, thought I did...) Here is /etc/conf.d/net: config_eth0=( 192.168.100.5 netmask 255.255.255.0 brd 192.168.100.255 ) routes_eth0=( default via 192.168.100.1 ) /etc/nsswitch.conf: passwd: compat shadow: compat group: compat # passwd:db files nis # shadow:db files nis # group: db files nis hosts: files dns networks:files dns services:db files protocols: db files rpc: db files ethers: db files netmasks:files netgroup:files bootparams: files automount: files aliases: files /etc/hosts: 127.0.0.1 localhost ::1 localhost /etc/resolv.conf: nameserver 209.116.241.10 nameserver 216.99.225.31 nameserver 216.99.233.253 . . . The problem is that I installed djbdns and ran the scripts to set it up. It didn't work to cache and serve dns queries, so I gave up. But unmerging it left me with no DNS at all. I was hoping to find out what these scripts overwrote that's hijacking my DNS requests. Anyway, if anyone on the list has removed djbdns and re-configured access directly to their ISP's nameservers, I'd like to know if it was effortless, or was there something else required. -- Michael Higgins -- gentoo-user@gentoo.org mailing list
Re: [gentoo-user] OT - Some miscellanous questions about hack attacks and dealing with them
Dan Cowsill wrote: Actually, I'd be pretty interested in what you have to rant about PHP. I run apache with php_mod installed and have the http port open. Is there a security risk I should be aware of? It really depends on how badly the PHP application you're running has been written. Assuming you're keeping up to date on PHP and your webapps and have funky applications .htaccess'ed off you're reasonably safe. However I'd highly recommend adding hardenedphp to your php USE flags as it stops a number of things. I've never had a problem with the hardened patch over the past year or so and frankly would not use any application that it broke. Another simple trick is to have an empty vhost as your primary and your real applications sites only accessible by name. This way little script kiddies scanning by IP or hostname hits Apache they are dumped to the first loaded vhost, your empty one, instead of your actual site. Then thay come up with nothing when they hit /var/www/localhost/htdocs/wordpress/ instead of the actual site tree. Doesn't stop a determined person, but has the added benifit of keeping x20x20x20x20 type crap out of your real logs. :-) kashani -- gentoo-user@gentoo.org mailing list
Re: [gentoo-user] Problem with UNICODE and man pages encoding
On Thursday 22 February 2007, jcd [EMAIL PROTECTED] wrote
about '[gentoo-user] Problem with UNICODE and man pages encoding':
Hi.
I converted my system to UNICODE with assistance
http://gentoo-wiki.com/HOWTO_Make_your_system_use_unicode/utf-8.
But my man-pages are
still displayed with bad characters ('á' is 'á') in console even in X
terminal emulator.
I tried to changed line in
/etc/make.conf:
Code:
NROFF /usr/bin/nroff -Tascii -c -mandoc
to
Code:
NROFF /usr/bin/nroff -Tutf8 -c -mandoc
and also according to comments to
Code:
NROFF /usr/bin/nroff -c -mandoc.
1) Those lines aren't the correct format for make.conf. Normally, you'd
use something like:
VARIABLE=value
2) NROFF isn't a valid make.conf variable. See the make.conf(5) manpage
for a list of valid make.conf variables.
I'm not sure exactly what you are trying to do, but I think it's more
likely controlled by an nroff USE flag or configuration file than a
portage configuration files.
--
Boyd Stephen Smith Jr. ,= ,-_-. =.
[EMAIL PROTECTED] ((_/)o o(\_))
ICQ: 514984 YM/AIM: DaTwinkDaddy `-'(. .)`-'
http://iguanasuicide.org/ \_/
New GPG Key! Old key expires 2007-03-25. Upgrade NOW!
pgppZ5luGN04j.pgp
Description: PGP signature
[gentoo-user] automount on the CLI
Hi All, I've looked around for an explanation, but I have failed to find enough to help me understand. Would you care to explain or point me to some relevant links. How is one meant to mount a USB stick when on a console? A long time ago I created relevant entries in my fstab, because back then automounting was quite involved and a tad unstable. I have still some entries like: # Flash Card /dev/sda/mnt/sdaauto,vfat,msdos noauto,user,noatime 0 0 /dev/sda1/mnt/sda1auto,vfat,msdos noauto,user,noatime 0 0 to be able to mount USB pen drives manually. However, because of these fstab entries when I automount them using a GUI (Konqueror), they are mounted under /mnt/sda not under /media/disk. What options do I have? -- Regards, Mick pgpbNHOnZNe1M.pgp Description: PGP signature
Re: [gentoo-user] off topic : Dolphin massacre in Japan
On Thu, 2007-02-22 at 07:34 -0600, Albert Hopkins wrote: Look the fact is every day: * [some things happen] * and someone hijacks a thread. Now, back to our regularly scheduled mailing list, already in progress... Ob-Linux: If you use the forcedeth ethernet driver then I'd advise you to stay away from 2.6.21-rc1. It's bad enough to make one wanna club a dolphin. speaking of which, I never got the forcedeth module working on my nforce 1 board - which board have you got? thanks, -- Iain Buchanan iaindb at netspace dot net dot au The price one pays for pursuing any profession, or calling, is an intimate knowledge of its ugly side. -- James Baldwin -- gentoo-user@gentoo.org mailing list
Re: [gentoo-user] Routing: how to enable..
On Sat, 17 Feb 2007 21:22:16 +0100 Roman Naumann [EMAIL PROTECTED] wrote: Hi, please forgive this most probably very simple question, but I cannot find the correct configuration file to enable routing... I have two PCs, one HAS a internet connection to the internet-proxy, the other one hasn't. The internet-pc (and I do not mean the proxy-pc) has two ethernet devices, ra0 and eth0. eth0 connects it with the non-internet pc. I set up a route to the internet-proxy-px on the internet-pc and it works fine on it, but the the non-internet pc can't use it! Even though the non-internet pc has it's default gw set to the eth0 ip of the internet pc. Thanks for your help. Michal 'vorner' Vaner was basically correct. PC2 is now a router, and in its tasks are included not only forwarding packets from PC3 to the outside world, but also forwarding them back to PC3. In the routing table PC2 will need routes to PC3 through eth0, and the same default it has now. Without the right routes, PC2 will try to respond to PC3 through ra0, the default route (I assume). Here is an annotated routing table from a router of mine. zeus ~ # route Kernel IP routing table Destination GatewayGenmask Flags Metric RefUse Iface 192.168.1.0 * 255.255.255.0 U 0 00 eth1 you can see there the route to the subnet it's plugged into, doesn't need to go through the default rout below. 192.168.10.0* 255.255.255.0 U 0 00 eth0 there's the subnet it forwards for, you'll notice it's different. In my case. There must of course be some way to distinguish between them for routing purposes, but you could also route to a host specifically. loopback* 255.0.0.0 U 0 00 lo default davey.spore.ath 0.0.0.0UG0 00 eth1 theres where all other traffic goes, through my internet firewall. However the same is true of the default router davey from the lastline above. davey ~ # route Kernel IP routing table DestinationGateway Genmask Flags Metric Ref Use Iface 192.168.2.0* 255.255.255.0 U 0 0 0 ath0 it routes to a wireless network just like PC1/PC2 in your configuration. 192.168.1.0 * 255.255.255.0 U 0 0 0 eth0 and same as before, for route to the subnet it's plugged into. c-24-245-14-0.h * 255.255.255.0 U 0 0 0 eth1 for comcast, my cable company's subnet im plugged into 192.168.10.0zeus.spore.ath. 255.255.255.0 UG 0 0 0 eth0 for the subnet above, this is what im talking about. loopback* 255.0.0.0 U 0 0 0 lo yep default c-3-0-ubr02.eag 0.0.0.0UG 0 0 0 eth1 and by default, out the cable modem on eth1. this last part is probably the problem Roman Naumann has or had. Don't forget you must enable ip forwarding if you desire to use it: zeus ~ # cat /proc/sys/net/ipv4/ip_forward 1 here you can see that ip_forward is set to 1 to indicate that i wish to enable forwarding for other computers. To set it as such, command the computer thusly. zeus ~ # echo 1 /proc/sys/net/ipv4/ip_forward -- gentoo-user@gentoo.org mailing list
Re: [gentoo-user] Did I just get hacked???
The contents of my /home/grant/vmware folder have suddenly disappeared. I haven't noticed anything else strange yet. I did configure and start shorewall for the first time yesterday instead of using a few iptables commands from the Gentoo Home Router Guide. I'm also running PenguinTV (a video RSS aggregator with an ebuild in bugs.gentoo.org) and transmission (a bittorrent client in portage) So someone breaks into your box and the only thing they can think of to do is remove your ~/vmware directory? It occurred to me this morning that a hacker could have gained access to my system via the vmware guest OS (XP) and then deleted the contents of vmware/ to cover his tracks. Does that sound like a possibility? - Grant -- gentoo-user@gentoo.org mailing list
Re: [gentoo-user] Portage wants to re-emerge old kernel sources
Am Donnerstag, den 22.02.2007, 15:30 -0800 schrieb Grant: On one of my Gentoo systems, portage wants to re-emerge hardened-sources-2.6.16-r10 and hardened-sources-2.6.14-r7 because of (-doc%). I'm currently using hardened-sources-2.6.18-hardened, but whenever new kernel sources are emerged, I just manually rm -rf the old sources in /usr/src. I guess portage wants to re-emerge the old sources because it thinks they are still installed. How can I let portage know that those old sources aren't installed anymore? By unmerging them ? # emerge -Cva =hardened-sources-2.6.16-r10 =hardened-sources-2.6.14-r7 How can I see which versions of hardened-sources portage thinks are currently installed? I guess I should manually unmerge old sources as above instead of using rm -rf. - Grant Yes, you can: $ equery list --duplicates [searchstring] In your case searchstring should be 'sources'. Without searchstring it looks for all duplicates, installed in so-called slots. 'man equery' for more info. The tool is in the gentoolkit package. P.S.: Hi gentoo-user! YAN - Yet Another Newbie! -- HTH, Marc Joliet signature.asc Description: Dies ist ein digital signierter Nachrichtenteil
[gentoo-user] Re: Portage wants to re-emerge old kernel sources
On Friday 23 February 2007, Grant wrote: On one of my Gentoo systems, portage wants to re-emerge hardened-sources-2.6.16-r10 and hardened-sources-2.6.14-r7 because of (-doc%). I'm currently using hardened-sources-2.6.18-hardened, but whenever new kernel sources are emerged, I just manually rm -rf the old sources in /usr/src. I guess portage wants to re-emerge the old sources because it thinks they are still installed. How can I let portage know that those old sources aren't installed anymore? By unmerging them ? # emerge -Cva =hardened-sources-2.6.16-r10 =hardened-sources-2.6.14-r7 How can I see which versions of hardened-sources portage thinks are currently installed? I guess I should manually unmerge old sources as above instead of using rm -rf. # default emerge search emerge -s hardened-sources # this works great for cleaning out old versions like you want emerge -Pp hardened-sources # fast portage searchtool emerge eix update-eix eix hardened-sources -- gentoo-user@gentoo.org mailing list
Re: [gentoo-user] Did I just get hacked???
On Thu, 22 Feb 2007 15:34:45 -0800, Grant wrote: It occurred to me this morning that a hacker could have gained access to my system via the vmware guest OS (XP) and then deleted the contents of vmware/ to cover his tracks. Does that sound like a possibility? Not unless you have the vmware directory mounted within the guest OS. The VM cannot access filesystems on the host unless they are created as disks on the VM or network mounted. -- Neil Bothwick Those who live by the sword get shot by those who don't. signature.asc Description: PGP signature
Re: [gentoo-user] Portage wants to re-emerge old kernel sources
On Fri, 23 Feb 2007 00:51:20 +0100, Marc Joliet wrote: How can I see which versions of hardened-sources portage thinks are currently installed? I guess I should manually unmerge old sources as above instead of using rm -rf. - Grant Yes, you can: $ equery list --duplicates [searchstring] It's also faster to rm -fr the directories before unmerging. You'd have to do it afterwards anyway, to remove the files that portage did not install (unless you run make mrproper) but doing it first speeds things up a lot as it avoids portage deleting each file individually. -- Neil Bothwick No maintenance: Impossible to fix. signature.asc Description: PGP signature
[gentoo-user] Re: off topic : Dolphin massacre in Japan
Aggelos [EMAIL PROTECTED] wrote: I really don't care if consider the above as spam or not or watever, for this list or for any list. I am subscribed to this list so I posted it here. That bit of brilliant thinking could be used to justify posting absolutely anything to any list, since you are subscribed to it. It could also be used to justify urinating in any kiddy pool you happen to be standing in. You don't have to bother the list with those smart ass comments about OT posts. My OT post would be one and only one, but you just made it a thread. The responses to your post are important; they discourage others from abusing the list as you have. (They should discourage you from doing it again as well, but that doesn't seem to be working very well.) It does create a lot of traffic which wouldn't have been necessary if you hadn't abused the list in the first place, but posting disapproval is the best way for a community to regulate itself when someone makes a choice as bad as the one you have made. Behaving however you want no matter how others feel about it is not only arrogant but rather stupid, at least in case you wanted to continue to use the list to discuss Gentoo issues. A simple it won't happen again would probably have sufficed to make the list useful to you going forward, and maybe it still would. -- gentoo-user@gentoo.org mailing list
[gentoo-user] Documentation annoyances
Thread re-named to reflect topic-drift On Wed, Feb 21, 2007 at 09:58:47AM +0200, Alan McKinnon wrote On the one hand, /usr/share/doc has been almost 2G big (!) at times, and otoh one can miss the really useful stuff I wouldn't mind terribly if it was actually usable. I'd like to be able to bookmark the docs in my browser. Here's a list of what's available to me, even with -doc... [m3000][waltdnes][~] find /usr/share/doc/ -name index.html /usr/share/doc/freeglut-2.4.0/doc/index.html /usr/share/doc/libxslt-1.1.17/html/html/index.html /usr/share/doc/libxslt-1.1.17/html/EXSLT/index.html /usr/share/doc/libxslt-1.1.17/html/index.html /usr/share/doc/lame-3.96.1/html/index.html /usr/share/doc/libsdl-1.2.11/html/docs/html/index.html /usr/share/doc/libsdl-1.2.11/html/docs/index.html /usr/share/doc/flac-1.1.2-r8/html/ru/index.html /usr/share/doc/flac-1.1.2-r8/html/index.html /usr/share/doc/docbook-sgml-utils-0.6.14/html/index.html /usr/share/doc/mutt-1.5.13-r1/index.html /usr/share/doc/syslog-ng-1.6.11-r1/html/index.html /usr/share/doc/libmpeg3-1.5.2-r3/html/docs/index.html /usr/share/doc/libsndfile-1.0.17/html/index.html /usr/share/doc/libvorbis-1.1.2/txt/doc/vorbisfile/index.html /usr/share/doc/libvorbis-1.1.2/txt/doc/index.html /usr/share/doc/libvorbis-1.1.2/txt/doc/vorbisenc/index.html /usr/share/doc/tiff-3.8.2/html/man/index.html /usr/share/doc/tiff-3.8.2/html/index.html /usr/share/doc/python-xlib-0.12-r1/html/index.html /usr/share/doc/transcode-1.0.2-r3/html/index.html /usr/share/doc/imagemagick-6.3.0.5/html/www/Magick++/index.html /usr/share/doc/imagemagick-6.3.0.5/html/www/index.html /usr/share/doc/imagemagick-6.3.0.5/html/index.html /usr/share/doc/gtklife-4.2/html/index.html /usr/share/doc/gqview-2.0.1/html/index.html /usr/share/doc/libogg-1.1.2/ogg/index.html /usr/share/doc/libogg-1.1.2/index.html /usr/share/doc/exiftool-6.44/html/TagNames/index.html /usr/share/doc/exiftool-6.44/html/index.html /usr/share/doc/ghostscript-esp-8.15.3/html/index.html /usr/share/doc/giflib-4.1.4/html/doc/index.html Guess what happens to the bookmarks next time there's a minor version bump to any of those programs (e.g. when I update world)? I suppose I should try to slap together a script that's run after emerge. It would run the find command above, process the output, and create a file ~/.docs.html with an unnumbered list of links to the actual documentation. Sounds like a plan. -- Walter Dnes [EMAIL PROTECTED] In linux /sbin/init is Job #1 My musings on technology and security at http://techsec.blog.ca -- gentoo-user@gentoo.org mailing list
Re: [gentoo-user] Documentation annoyances
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Walter Dnes wrote: Guess what happens to the bookmarks next time there's a minor version bump to any of those programs (e.g. when I update world)? I suppose I should try to slap together a script that's run after emerge. It would run the find command above, process the output, and create a file ~/.docs.html with an unnumbered list of links to the actual documentation. Sounds like a plan. That's the intended purpose of DOC_SYMLINKS_DIR which is documented in `man make.conf` (new in portage-2.1.2). Zac -BEGIN PGP SIGNATURE- Version: GnuPG v2.0.2 (GNU/Linux) iD8DBQFF3mg5/ejvha5XGaMRAoE7AJ969ILUL82Ykvhds+hQrT5s4/keTgCeLJeg TM2OKHsKC+3kEhz4SuJa1V4= =pNcg -END PGP SIGNATURE- -- gentoo-user@gentoo.org mailing list
Re: [gentoo-user] Problem with UNICODE and man pages encoding
Boyd Stephen Smith Jr. napsal(a):
On Thursday 22 February 2007, jcd [EMAIL PROTECTED] wrote
about '[gentoo-user] Problem with UNICODE and man pages encoding':
Hi.
I converted my system to UNICODE with assistance
http://gentoo-wiki.com/HOWTO_Make_your_system_use_unicode/utf-8.
But my man-pages are
still displayed with bad characters ('á' is 'á') in console even in X
terminal emulator.
I tried to changed line in
/etc/make.conf:
Code:
NROFF /usr/bin/nroff -Tascii -c -mandoc
to
Code:
NROFF /usr/bin/nroff -Tutf8 -c -mandoc
and also according to comments to
Code:
NROFF /usr/bin/nroff -c -mandoc.
1) Those lines aren't the correct format for make.conf. Normally, you'd
use something like:
VARIABLE=value
2) NROFF isn't a valid make.conf variable. See the make.conf(5) manpage
for a list of valid make.conf variables.
I'm not sure exactly what you are trying to do, but I think it's more
likely controlled by an nroff USE flag or configuration file than a
portage configuration files.
OK. If it isn't correct format and NROFF isn't valid variable, then it is bug
in gentoo package, because I just changed the parameters to /usr/bin/nroff. I
also didn't find any suitale USE flag.
--
gentoo-user@gentoo.org mailing list
Re: [gentoo-user] automount on the CLI
Neil Bothwick wrote: On Thu, 22 Feb 2007 23:15:28 +, Mick wrote: I've looked around for an explanation, but I have failed to find enough to help me understand. Would you care to explain or point me to some relevant links. How is one meant to mount a USB stick when on a console? A long time ago I created relevant entries in my fstab, because back then automounting was quite involved and a tad unstable. I have still some entries like: # Flash Card /dev/sda/mnt/sdaauto,vfat,msdos noauto,user,noatime 0 0 /dev/sda1/mnt/sda1auto,vfat,msdos noauto,user,noatime 0 0 to be able to mount USB pen drives manually. However, because of these fstab entries when I automount them using a GUI (Konqueror), they are mounted under /mnt/sda not under /media/disk. Remove the entries from /etc/fstab, then KDE will automount them under /media/volume name. To mount manually from a terminal or console, use pmount /dev/sda1, you don't need to be root to do this, to have the device mounted in the same place as with KDE. Isn't there another way that mounts automatically? Mine used to do that and I think it was ivman. I noticed it doesn't do that any more though. I don't have ivman installed so that may explain that. I seem to recall a clash with the new KDE and ivman or something. Dale :-) :-) :-) -- www.myspace.com/dalek1967
Re: [gentoo-user] ramfs - is it necessary ???
Am Donnerstag, 22. Februar 2007 schrieb ext Neil Bothwick: On Thu, 22 Feb 2007 04:08:23 -0600, Boyd Stephen Smith Jr. wrote: I am fairly certain I was still using my custom initrd (not an initramfs) until 2.6.17 -- I'm fairly sure 2.6.20 still *supports* initrd format, even if initramfs is preferred now. It does, I have a system that boots 2.6.20 using an initrd. It works fine and I don't feel inclined to get involved in initramfs voodoo just to change an already working system What is that voodoo you're talking about. I did boot my /-on-EVMS system with an initrd for years, only to find out that initramfs is so much easier to set up. If there's voodoo, it's in initrd. Bye... Dirk -- Dirk Heinrichs | Tel: +49 (0)162 234 3408 Configuration Manager | Fax: +49 (0)211 47068 111 Capgemini Deutschland | Mail: [EMAIL PROTECTED] Hambornerstraße 55 | Web: http://www.capgemini.com D-40472 Düsseldorf | ICQ#: 110037733 GPG Public Key C2E467BB | Keyserver: www.keyserver.net pgpTgJa9Zd4hf.pgp Description: PGP signature
Re: [gentoo-user] Portage wants to re-emerge old kernel sources
On Friday 23 February 2007, Neil Bothwick wrote: It's also faster to rm -fr the directories before unmerging. You'd have to do it afterwards anyway, to remove the files that portage did not install (unless you run make mrproper) but doing it first speeds things up a lot as it avoids portage deleting each file individually. Heh. I unmerged 4 old kernels packages a few days ago. The deleting took 20 minutes (!) Not surprising when you consider there were 30,000 files in each tree, and each one installed by portage has it's md5 sum checked, then deleted. rm -rf would've taken 20 seconds... alan -- Optimists say the glass is half full, Pessimists say the glass is half empty, Developers say wtf is the glass twice as big as it needs to be? Alan McKinnon alan at linuxholdings dot co dot za +27 82, double three seven, one nine three five -- gentoo-user@gentoo.org mailing list
