Re: Firewall rules question
Tom Rauschenbach [EMAIL PROTECTED] writes: Does anyone know if they are trying to establish a reverse connection like FTP does ? Well, they do, sort of. But (by default) they're using a UDP (a connectionless protocol) for this data-stream. No SYN bits to deal with with UDP... Questions: Are your firewall rules allowing your system to freely make outgoing connections to arbitrary ports (in particular, ports 80, 554, 7070, and 8080)? What does your firewall do with incoming UDP datagrams (particularly those destined for UDP ports 6970-7170)? Are you doing any sort of NAT? --kevin -- Kevin D. Clark (CetaceanNetworks.com!kclark) | Cetacean Networks, Inc. | Give me a decent UNIX Portsmouth, N.H. (USA)| and I can move the world alumni.unh.edu!kdc (PGP Key Available)| * To unsubscribe from this list, send mail to [EMAIL PROTECTED] with the text 'unsubscribe gnhlug' in the message body. *
Re: Firewall rules question
On Tue, 4 Dec 2001, Tom Rauschenbach wrote: I am aware that my current filewall rules are too simplistic ... You might want to post your firewall ruleset/script so we can get an idea of what you *are* doing... :-) -- Ben Scott [EMAIL PROTECTED] | The opinions expressed in this message are those of the author and do not | | necessarily represent the views or policy of any other person, entity or | | organization. All information is provided without warranty of any kind. | * To unsubscribe from this list, send mail to [EMAIL PROTECTED] with the text 'unsubscribe gnhlug' in the message body. *
Why am I getting daily hits on my firewall on the nntp port?
Is there some sort of nntpd vulnerablility that people are trying to exploit? I'm not running nntpd but I get this at least twice a day. It's sort of annoying. :-( -- -Time flies like the wind. Fruit flies like a banana. Stranger things have - -happened but none stranger than this. Does your driver's license say Organ -Donor?Black holes are where God divided by zero. Listen to me! We are all- -individuals! What if this weren't a hypothetical question? [EMAIL PROTECTED] -- Forwarded message -- Date: Wed, 5 Dec 2001 01:06:01 -0500 From: Cron Daemon [EMAIL PROTECTED] To: [EMAIL PROTECTED] Subject: Cron root@syslang /usr/local/bin/firewall_report.pl -n 1 IP Chains rejections on host 'syslang' For Tuesday, December 4, 2001 Hits IP Address Starting Ending - --- 4 24.82.120.76 03:17:56 - 03:18:17 [ nntp ] 4 172.189.36.193 16:27:53 - 16:28:14 [ nntp ] 2193.41.215.59 03:36:04 - 03:36:07 [ sunrpc ] * To unsubscribe from this list, send mail to [EMAIL PROTECTED] with the text 'unsubscribe gnhlug' in the message body. *
Linux Frame-Buffer Console
Can anyone tell me what the following text means and whether it might apply to my Redhat 7.0 system? (I certainly get quite a few hangs running VMware, although I am otherwise happy with the product.) Kernel is binary RPM from Redhat, 2.2.17-14. In the following, Workstation is the VMware Workstation product (version 2.0). From http://www.vmware.com/support/ws2/ts/install_config_ts_ws_linux.html: Workstation Incompatible with Linux Frame-Buffer Console Workstation is not compatible with the Linux Frame-Buffer Console (fbcon) driver. Running Workstation on a kernel compiled with fbcon support may result in the entire system hanging. Workstation will improve this problem and will in future fail with a meaningful message if fbcon is detected. Reports from the field indicate that running fbset -depth 0 -a before launching Workstation fixes the problem by switching the virtual terminal to VGA compatible mode. I installed fbset fbset-2.1-6.i386.rpm and: [root@granite rpms 52]# fbset --verbose Linux Frame Buffer Device Configuration Version 2.1 (23/06/1999) (C) Copyright 1995-1999 by Geert Uytterhoeven Opening frame buffer device `/dev/fb0' open /dev/fb0: No such device [root@granite rpms 53]# ls -l /dev/fb* lrwxrwxrwx1 root root3 Jan 17 2001 /dev/fb - fb0 crw---1 mark root 29, 0 Aug 24 2000 /dev/fb0 crw---1 mark root 29, 32 Aug 24 2000 /dev/fb1 crw---1 mark root 29, 64 Aug 24 2000 /dev/fb2 crw---1 mark root 29, 96 Aug 24 2000 /dev/fb3 crw---1 mark root 29, 128 Aug 24 2000 /dev/fb4 crw---1 mark root 29, 160 Aug 24 2000 /dev/fb5 crw---1 mark root 29, 192 Aug 24 2000 /dev/fb6 crw---1 mark root 29, 224 Aug 24 2000 /dev/fb7 [root@granite rpms 54]# Any ideas? Thanks. -- Mark Polhamus -- [EMAIL PROTECTED] * To unsubscribe from this list, send mail to [EMAIL PROTECTED] with the text 'unsubscribe gnhlug' in the message body. *
Interesting Article
Don't know if anyone read the article linked off of /. last night about How to make Software Projects fail, but it's quite interesting. Here's a choice quote: http://www.softwaremarketsolution.com/ Moore's law makes much of the whining about bloatware ridiculous. In 1993, Microsoft Excel 5.0 took up about $36 worth of hard drive space. In 2000, Microsoft Excel 2000 takes up about $1.03 in hard drive space. All adjusted for inflation. So stop whining about how bloated it is. (The guy being interviewed used to work at MS, in case that's not obvious :) The article is quite interesting, and he make some really good (business) points about software projects. -- Seeya, Paul God Bless America! ...we don't need to be perfect to be the best around, and we never stop trying to be better. Tom Clancy, The Bear and The Dragon * To unsubscribe from this list, send mail to [EMAIL PROTECTED] with the text 'unsubscribe gnhlug' in the message body. *
Fwd: SANS NewsBites Vol. 3 Num. 49
With the recent focus on security, and with everyone scrambling to clean up messes caused by worms, I thought this might be of interest. If people really object to me reposting this stuff here, please let me know, and I won't! I hope you enjoy... DM - Forwarded message from The SANS Institute [EMAIL PROTECTED] - From: The SANS Institute [EMAIL PROTECTED] To: DEREK MARTIN (SD544808) [EMAIL PROTECTED] Date: Wed, 5 Dec 2001 8:14:09 -0700 (MST) Subject: SANS NewsBites Vol. 3 Num. 49 Precedence: bulk Errors-To: [EMAIL PROTECTED] To: DEREK MARTIN (SD544808) From: Alan for the SANS NewsBites service Re: December 5 SANS NewsBites Goner is a dangerous worm that is spreading far too rapidly. However, it caused no problem at all in those organizations that block attachments of most malicious types. An increasing number of organizations use filtering and secure configuration management to protect their users and reduce the cost of cleaning up after worms and other attacks. Makes sense to me. AP ** SANS NEWSBITES The SANS Weekly Security News Overview Volume 3, Number 49 December 5, 2001 Editorial Team: Kathy Bradford, Dorothy Denning, Roland Grefer, Vicki Irwin, Bill Murray, Stephen Northcutt, Alan Paller, Marcus Ranum, Howard Schmidt, Eugene Schultz ** TOP OF THE NEWS 5 December 2001 Goner Worm Hits Hard 30 November 2001 Security Patch Demand is Overwhelming 28, 29 30 November 2001 WU-FTPD Vulnerability 28, 29 30 November 2001 Appeals Courts Uphold DCMA 26 28 November 2001 Google Search Results Could Present Security Problem THE REST OFTHE WEEK'S STORIES 5 December 2001 US Cyber Security Chief Asks Vendors To Do More To Protect Users 3 December 2001 Federal Agencies Need Security Specialists 30 November 2001 Dreamcast Game Screensaver Infected with Kriz Virus 30 November 2001 Gary McGraw Interview 30 November 2001 Government Sites Defaced 26 November 2001 Sklyarov Hearing Date Set 29 November 2001 National IDs Won't Work 27 28 November 2001 McNealy Interview 29 November 2001 Russian Man Arrested in ATM Fraud Case 29 November 2001 Former Cisco Accountants Sentenced for Fraud 28 November 2001 GSA Team to Review GovNet Input 27 November 2001 Network Associates Denies Working with FBI 26 November 2001 Disclosure Waiting Period Wouldn't Work 26 November 2001 Security Funds Misallocated, Says Oppenheimer VP UPCOMING TRAINING OPPORTUNITIES **SANS Cyber Defense Initiative (5 tracks), San Fran. CA, Dec. 16-22 **Microsoft IIS Security in multiple cities **Hackers Beware: Live! in multiple cities **Ewarfare in multiple cities **Marty Roesch's Intrusion Detection with Snort in multiple cities **SANS Gateway Asia (2 tracks), Singapore, Jan 10-15 **SANS Down Under (1 tracks), Melbourne, Jan 10-15 **SANS Darling Harbour (4 tracks), Sydney, Jan 19-24 **Plus new, on-line, security training programs. See www.sans.org for details. Sponsored by NetIQ ** Free Security Guide from NetIQ. Learn How to Unlock Your Firewall's Secrets with Security Manager. Find out how to maximize the return on your firewall investment. Download NetIQ's free white paper, Reporting and Incident Management for Firewalls: The Keys to Unlocking Your Firewall's Secrets. Visit http://www.netiq.com/f/form/form.asp?id=397 ** TOP OF THE NEWS --5 December 2001 Goner Worm Hits Hard The goner worm comes by email, offers a screen saver, spreads rapidly, infects large numbers of user files, and tries to delete firewall and antivirus software. http://www.cnn.com/2001/TECH/internet/12/04/goner.worm/index.html --30 November 2001 Security Patch Demand is Overwhelming IT managers are overwhelmed with patches and updates, according to a recent study. A UK-based study found that most companies would have to make an average of 5 updates every work day to keep up with the steady flow of fixes from security vendors. http://www.computerworld.com/storyba/0,4125,NAV47_STO66215,00.html --28, 29 30 November 2001 WU-FTPD Vulnerability CERT/CC has issued a warning about a vulnerability in the Washington University FTP daemon that could allow crackers to gain complete control of computer systems unless patches are installed. A group of vendors had agreed to release their patches on December 3, but Red Hat mistakenly released an advisory on November 27. http://news.cnet.com/news/0-1003-200-8007615.html?tag=prntfr http://www.theregister.co.uk/content/55/23082.html http://www.computerworld.com/storyba/0,4125,NAV47_STO66202,00.html --28, 29 30 November 2001 Appeals Courts
Re: Interesting Article
- Original Message - From: mike ledoux [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Wednesday, December 05, 2001 12:41 PM Subject: Re: Interesting Article -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On Wed, Dec 05, 2001 at 11:44:10AM -0500, Paul Lussier wrote: Don't know if anyone read the article linked off of /. last night about How to make Software Projects fail, but it's quite interesting. Here's a choice quote: http://www.softwaremarketsolution.com/ I hadn't seen this before, but this guy 'Joel' lost all credibility when he promised to commit ritual suicide via web cam if we discover any category one bugs in the product. If he's stupid enough to believe that his company has eliminated every bug in a content management system product, he's stupid enough that I probably shouldn't care about anything else he has to say. His comments on bloatware that you quote are particularly inane, as they completely ignore the other negative effects of bloatware to focus on how cheap disk space has become. He didn't say every bug, he said every category one bug. And I'm sure he's defining what category one is! :) It's a marketing ploy, pure and simple. I'm surprised you fell for it. That said, he does make at least one interesting point about Microsoft's success, that I think might be particularly discussion-worthy in relation to open-source and free software: Microsoft always figured that it's better to let the hardware catch up with the software rather than spending time writing code for old computers owned by people who aren't buying much software any more. I'm not saying that he's right, just that it might be worth discussing, particularly in light of the hardware demands of recent Linux distributions. Actually, I agree with most of what he said in the article except the bloatware thing. But he's focused on the wrong part of the problem. The SIZE of the bloatware is no longer the problem, what with cheap memory and hard drive space. The REAL problem is speed. People don't buy new computers any more to get more RAM or bigger hard drives. They get them to make their systems and programs boot and load FASTER. Having a 200 MB program is not a problem any more, as long as the first window is up and useable inside of 2 seconds. As far as the hardware demands of recent Linux systems, the reason they are so big is because there are: a) Driver Modules for EVERY piece of hardware under the sun. I am playing with the 2.4.14 kernel. I did my menuconfig, and burned my kernel. Took like 5 minutes to compile, and another 5 minutes for the modules. Well, I didn't get everything I wanted in there, so I used the default .config file from /usr/src/linux (mandrake 8.1 system.) The dang thing took almost an hour to build the modules!! When I looked at the .config file more closely, there were modules for EVERY disk controller, sound chip, ethernet chip, video chip, and peripheral device there is (well, almost.) b) Scores of different programs that do the same thing. This is not necessarily a bad thing, but when you've got Gnome, KDE, Sawmill, Sawfish, WindowMaker, IceWM, and FVWM(2) for desktops and Netscape, Opera, Konqueror, Mozilla, and Galeon for browsers (I know I've forgotten all the text browsers and probably a half a dozen others, but my point has been made, I think) you're going to have a darn big distribution. And I think that the whole VMM issue with the lower 2.4.x kernels has contributed to the perception that Linux is becoming bloated and slow. I disagree. If you take the above into consideration, and build a streamlined kernel that has only what you need (and SOME of what you MIGHT need) and strip away all the programs you don't use, you can have a small fast operating system that puts MS to shame. Still. Sure KDE2 sucks on my P166. But I don't USE KDE2 on my P166. I use WindowMaker. The right tool for the job. And it works great. And so does KDE2 on my dual PIII/1000! Rich Cloutier President, C*O SYSTEM SUPPORT SERVICES www.sysupport.com * To unsubscribe from this list, send mail to [EMAIL PROTECTED] with the text 'unsubscribe gnhlug' in the message body. *
Re: Fwd: SANS NewsBites Vol. 3 Num. 49
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 At some point hitherto, Michael O'Donnell hath spake thusly: If people really object to me reposting this stuff here, please let me know, and I won't! [Snip thoughtfull stuff] but not as a regular thing. I think the best approach is to be sure that each such posting contains subscription/access info so that those of us who wish to receive the material on a continuing basis can arrange it for themselves. And I would have done that, except that I don't think you CAN subscribe to the SANS Newsbites, unless you pay them large amounts of money to attend one of their security conferences. Which is why I thought I'd post it here. Not likely to see it, unless you're already a SANS member/patron/whatever. - -- Derek Martin [EMAIL PROTECTED] - - I prefer mail encrypted with PGP/GPG! GnuPG Key ID: 0x81CFE75D Retrieve my public key at http://pgp.mit.edu Learn more about it at http://www.gnupg.org -BEGIN PGP SIGNATURE- Version: GnuPG v1.0.6 (GNU/Linux) Comment: For info see http://www.gnupg.org iD8DBQE8DoB3djdlQoHP510RAogzAKCzEdVh0IyRLRIJ2GLF6nFg6X4S5QCfUG2S OWq/VzQO09emNDoFxm0RkTc= =/FZy -END PGP SIGNATURE- * To unsubscribe from this list, send mail to [EMAIL PROTECTED] with the text 'unsubscribe gnhlug' in the message body. *
Re: Older Machines
I'll add a recommendation for Nev's, as I recently asked Dennis to build a box for me. 256Mb/266MHz/20Gb etc; he did it, it loaded Linux without a hitch, and I was very pleased with his enthusiasm the price, and the ability to buy a systems with no Microsoft software. I also picked up a couple of monitors (their real specialty). Similarly pleased with them. While we were putting my system together I mentioned GNHLUG and Linux's appropriateness for older hardware. Although he's not personally a Linux enthusiast (at least, not yet), Dennis indicated that he'd be happy to help build Linux boxes. Nev's is almost directly opposite the end of the runway. Phone: 880-0300 Bill [EMAIL PROTECTED] wrote: Hello to GNHLUG, source of old machines ... Nev's Monitor Depot 28 Charron Ave., Unit 13, (near Nashua Airport) Nashua NH 03063 Email: [EMAIL PROTECTED] Had some Pentium (MMX) 233 Mhz, AT Case, and used Laptops yesterday. As a matter of fact, they have lots of junk (floppies [drives], early CDROMS, misc motherboards, etc) They do recycling with a number of contacts, so their inventory goes up and down. located near, and on East side of Bellavance Beverage in Nashua. cheers paulc * To unsubscribe from this list, send mail to [EMAIL PROTECTED] with the text 'unsubscribe gnhlug' in the message body. * -- We have to make a management decision Jerry Mason, Morton Thiokol, Inc. 27 January 1986 * To unsubscribe from this list, send mail to [EMAIL PROTECTED] with the text 'unsubscribe gnhlug' in the message body. *
Re: Interesting Article
- Original Message - From: mike ledoux [EMAIL PROTECTED] To: Rich C [EMAIL PROTECTED] Sent: Wednesday, December 05, 2001 3:19 PM Subject: Re: Interesting Article [snip] As far as the hardware demands of recent Linux systems, the reason they are so big is because there are: a) Driver Modules for EVERY piece of hardware under the sun. I am playing with the 2.4.14 kernel. I did my menuconfig, and burned my kernel. Took like 5 minutes to compile, and another 5 minutes for the modules. Well, I didn't get everything I wanted in there, so I used the default .config file from /usr/src/linux (mandrake 8.1 system.) The dang thing took almost an hour to build the modules!! When I looked at the .config file more closely, there were modules for EVERY disk controller, sound chip, ethernet chip, video chip, and peripheral device there is (well, almost.) This shouldn't impact the performance of the system at all--the whole point of using modules is that you aren't wasting resources to support hardware that isn't being used. Yes, it will take longer to build the kernel and modules, as you're building a lot of stuff that you don't need, but it shouldn't impact runtime performance, which is what is really important. No, but having all these on the disk sure adds to the space requirements. It was more of a recent observation of mine while building a variation of a stock kernel as opposed to one I configured from scratch. At any rate, my comment was more the demands of the recent distributions, not the kernel itself. If you take the time to build your own Linux system from the ground up, you can still make it run well on a 386 or 486. b) Scores of different programs that do the same thing. This is not necessarily a bad thing, but when you've got Gnome, KDE, Sawmill, Sawfish, WindowMaker, IceWM, and FVWM(2) for desktops and Netscape, Opera, Konqueror, Mozilla, and Galeon for browsers (I know I've forgotten all the text browsers and probably a half a dozen others, but my point has been made, I think) you're going to have a darn big distribution. This is where I thought the interesting discussion could come in. It used to be that you could take a RedHat distribution and install it on a low-spec machine (think 486, 8MB RAM, 500MB disk) with no problems. Try that with RH 6.x or 7.x--good luck. The sad part about all of this (to me, anyway) is that the big stumbling block here isn't the actual software, so much as the installation routines. But Red Hat and Mandrake and Debian too, as I recall, have options for standard text installs, like the old days. It's not the default, but you can do it. Same with the Init scripts. You don't HAVE to run Aurora (Mandrake) if you don't want to. And I think that the whole VMM issue with the lower 2.4.x kernels has contributed to the perception that Linux is becoming bloated and slow. I'll agree with that. I disagree. If you take the above into consideration, and build a streamlined kernel that has only what you need (and SOME of what you MIGHT need) and strip away all the programs you don't use, you can have a small fast operating system that puts MS to shame. Still. Right, but this is *way* beyond a new Linux user, who was probably told that Linux would make their old hardware useful again. Hell, this is probably beyond most people that have been using Linux for years. Good point. The new distros are solving the problems that new Linux users have traditionally had with Linux: it was just too foreign to them as it was. They are making 1) user-friendly point-and-click installation programs while AT THE SAME TIME doing 2) the automation tasks like hardware probing and auto configuration that are REALLY useful. So if I understand you right, you are saying that what we need for older systems is something that does #2 without necessarily doing #1? Rich Cloutier President, C*O SYSTEM SUPPORT SERVICES www.sysupport.com * To unsubscribe from this list, send mail to [EMAIL PROTECTED] with the text 'unsubscribe gnhlug' in the message body. *
Re: Fwd: SANS NewsBites Vol. 3 Num. 49
To: DEREK MARTIN (SD544808) From: Alan for the SANS NewsBites service Re: December 5 SANS NewsBites Goner is a dangerous worm that is spreading far too rapidly. However, it caused no problem at all in those organizations that block attachments of most malicious types. [...] AP I, personally, found the e-mail interesting and informative. Thanks, Derek! However, AP's opinion is, in my oh, s humble opinion, silly. Gee, doctor, the patient has a headache. Quick, get out that axe, nurse! One shouldn't be forced to change a fully-functioning server's configuration to attempt to cope with buggy software. And keeping all executable attachments from being mailed is Just Dumb. I think it's stooopid that MS is going to enforce this behavior with Office XP (or, at least, so said reports re: the Office XP beta), and I think servers that enforce this are equally dumb. What do you mean you didn't get the NDA from the lawyer? Well, the server thought it was a virus because it had an extension of .DOC. While I grant that there might be some validity in considering any MS attachment a virus, to immediately reject them out-of-hand is nothing short of pure idiocy. Instead, a multi-pronged approach should be used: - Always, relentlessly, drive into your users' heads that they must be cautious and vigilent in opening attachments, no matter how innocuous they appear. Importantly, immediately after hearing a (reliable) report of a new virus, inform all your users. The virus you guard against at the server, that slips in through Yahoo Mail, is one that shouldn't be allowed in, regardless. - Most e-mail server mailing lists cook up a filter for the virus-du-jour a few hours after the virus is announced. Make use of said filter. - Immediately, and without hesitation, zap that damn feature in Winblows wherein file extensions are hidden from the user, thus making something like pieBillGates.MPG.scr look like pieBillGates.MPG. - Have some virus detection software on your client PCs. Have it update *daily*, preferably from an in-house source so you have control over it. Viruses suck, but they're a fact of life for the modern sysadmin. It's up to us to be vigilent, but not unthinkingly so -- we still have users to support, who rely heavily on e-mail. There is absolutely no reason an intelligent, pro-active sysadmin should need to emasculate his mail server... and, possibly, force people into creating and making use of backdoors akin to Yahoo Mail. $.02 (+/- $3.1415E7) -Ken * To unsubscribe from this list, send mail to [EMAIL PROTECTED] with the text 'unsubscribe gnhlug' in the message body. *
Re: Linux Friendly DSL (Update)
Kenny, That sounds pretty good. What is their stated policy on having your machine be a hackerz' scanbox? ATT Broadband seems to have a two strikes and you're out policy. I.e. if it happens twice that a hacker breaks into your machine and uses to scan other machines or DDOS, you lose your service. Thanks, Karl On Mon, 03 Dec 2001, Kenneth E. Lussier [EMAIL PROTECTED] wrote: All, Several people wanted updates on Direct TV's DSL service. Well, so far I'm impressed. $50/month. Here is what I have: 768K down / 256k up Static IP address Upto 6 accounts/e-mail addresses through them. Express permission to run smtp, dns, web, ftp, etc. Install instructions for Linux/UNIX. DirectTV will act as primary or secondary DNS for my domain if I want them to. * To unsubscribe from this list, send mail to [EMAIL PROTECTED] with the text 'unsubscribe gnhlug' in the message body. *
Re: Older Machines
Another outfit well deserving of a plug is Computrend, in Derry. They are a refurbisher, and deal mostly in peripherals; they can usually come up with exactly the printer, monitor or terminal your fussy Linux system likes best. Talk to Al Kaufman when you call; he's a fellow Linuxer, and he'll understand why you just have to have that one particular model. :) http://www.computrendnh.com mailto:[EMAIL PROTECTED] They are in the last building on the short road that runs beside Dial Drug Video, off Rt. 28 just north of Hood Commons. And at 603-426-5111. You'll also see their tables (and usually Al manning them) at the local computer shows at venues such as Rockingham Park. http://www.ncshows.com On Tue, 4 Dec 2001 [EMAIL PROTECTED] wrote: Hello to GNHLUG, source of old machines ... Nev's Monitor Depot 28 Charron Ave., Unit 13, (near Nashua Airport) Nashua NH 03063 Email: [EMAIL PROTECTED] Had some Pentium (MMX) 233 Mhz, AT Case, and used Laptops yesterday. As a matter of fact, they have lots of junk (floppies [drives], early CDROMS, misc motherboards, etc) They do recycling with a number of contacts, so their inventory goes up and down. located near, and on East side of Bellavance Beverage in Nashua. -- Bill Mullen [EMAIL PROTECTED] Dec 5, 2001 * To unsubscribe from this list, send mail to [EMAIL PROTECTED] with the text 'unsubscribe gnhlug' in the message body. *
VA Linux Changes Name to VA Software Corp.
http://dailynews.yahoo.com/h/nm/20011205/tc/tech_valinux_dc_1.html Wednesday December 5 4:29 PM ET VA Linux Changes Name to VA Software Corp. FREMONT, Calif. (Reuters) - VA Linux (news - web sites) Systems Inc. (Nasdaq:LNUX - news), once a hardware, software and services company that has transformed itself into a collaboration software vendor, announced on Wednesday that shareholders voted to change the company's name to ``VA Software Corp.,'' effective immediately. The Fremont, California-based company said the new name better identifies its primary business of developing, marketing, selling and supporting the SourceForge collaborative software development platform. ``The board also believes that the name 'VA Linux Systems' is primarily identified with our former Linux hardware systems and consulting businesses,'' Chief Executive Larry Augustin said in a statement. * To unsubscribe from this list, send mail to [EMAIL PROTECTED] with the text 'unsubscribe gnhlug' in the message body. *
does this make any damn sense at all?
I have an ISDN line coming into my house. I have a network running there that contains, among other things, a mailserver... 'pop.threeofus.com' and 'mail.threeofus.com'... I have an account there, my wife has an account on the machine.. a few other people do too... these are all pop accounts. We also have an ATT cable modem. Plugged into that is an wireless base station which has a built in dhcp server. Before @home folded, my wife had no problem connecting to the 'net via ATT/@home cable via her wireless card and picking up mail with a pop client off my network on the ISDN line... After ATT took over the @home network, she can still connect to the 'net via ATT via her wireless card, but she can NO LONGER pick up her mail with a pop client off the home network on the ISDN line. I firmly believe the problem lies with ATT.. but I'm not 100% sure.. can anyone assist me in trouble shooting this?.. my wife is tired of using webmin to read her mail on the linux mail server on my network. TIA, J. -+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+- Joshua S. Freeman | preferred email: [EMAIL PROTECTED] pgp public key: finger [EMAIL PROTECTED] http://www.threeofus.com -+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+- * To unsubscribe from this list, send mail to [EMAIL PROTECTED] with the text 'unsubscribe gnhlug' in the message body. *
Re: does this make any damn sense at all?
Okay: first things first -- can you telnet to port 110 on pop.threeofus.com, from her machine? Here's a sample session of how I do it: telnet ursa 110 Trying 10.20.1.31... Connected to ursa.xanoptix.com (10.20.1.31). Escape character is '^]'. +OK ursa.xanoptix.com Cyrus POP3 v1.5.19 server ready user kend +OK Name is a valid mailbox pass foopass +OK Maildrop locked and ready list +OK scan listing follows 1 1549 2 2414 3 2353 4 2397 5 2381 What this has done is actually exactly the same as what a POP mail client does: it logs in, authenticates, then lists the messages in the inbox, along with their sizes. (You can then look at the contents of the messages with the retr command, thusly: retr 1.) If you're not able to log in with the above, it looks like something is probably broken. As I was able to connect to your POP server, but got no challenges when I entered user foo, I'm wondering if your POP server is really working. You might want to check your /etc/services and xinetd config, and make sure that the correct application for port 110 is being launched. Good luck! -Ken On Wed, 5 Dec 2001, Joshua S. Freeman wrote: I have an ISDN line coming into my house. I have a network running there that contains, among other things, a mailserver... 'pop.threeofus.com' and 'mail.threeofus.com'... I have an account there, my wife has an account on the machine.. a few other people do too... these are all pop accounts. We also have an ATT cable modem. Plugged into that is an wireless base station which has a built in dhcp server. Before @home folded, my wife had no problem connecting to the 'net via ATT/@home cable via her wireless card and picking up mail with a pop client off my network on the ISDN line... After ATT took over the @home network, she can still connect to the 'net via ATT via her wireless card, but she can NO LONGER pick up her mail with a pop client off the home network on the ISDN line. I firmly believe the problem lies with ATT.. but I'm not 100% sure.. can anyone assist me in trouble shooting this?.. my wife is tired of using webmin to read her mail on the linux mail server on my network. TIA, J. -+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+- Joshua S. Freeman | preferred email: [EMAIL PROTECTED] pgp public key: finger [EMAIL PROTECTED] http://www.threeofus.com -+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+- * To unsubscribe from this list, send mail to [EMAIL PROTECTED] with the text 'unsubscribe gnhlug' in the message body. * * To unsubscribe from this list, send mail to [EMAIL PROTECTED] with the text 'unsubscribe gnhlug' in the message body. *
Re: Fwd: SANS NewsBites Vol. 3 Num. 49
On Wed, 5 Dec 2001, Ken Ambrose wrote: - Always, relentlessly, drive into your users' heads that they must be cautious and vigilent in opening attachments, no matter how innocuous they appear. Your average corporate user's head is more dense then Neutronium. User education will not solve this problem everywhere. Furthermore, what about all the home users out there? As far as the other defenses you mention go, I note most of them are reactive, i.e., they all start with, After the virus is discovered What if you are one of those unlucky ones to get hit before the virus is discovered by the community? - Immediately, and without hesitation, zap that damn feature in Winblows wherein file extensions are hidden from the user, thus making something like pieBillGates.MPG.scr look like pieBillGates.MPG. Except that some extensions are still hid, always, and various Microsoft programs (including parts of Windows) turn it back on again, as can the users, and, well, in general, this is just way harder than it needs to be. Microsoft does not design their software with security in mind. Their decision to not allow any .EXE attachments in Outlook 2002 only emphasizes this. If their software was, in general, secure, it would not be a problem. The .EXE blocking thing attempts to solve the problem by bypassing it, but the fundamental problem is still there: Microsoft software is not designed with security in mind. Until/unless that changes, the problem will remain. Viruses suck, but they're a fact of life for the modern sysadmin. Not in an all-Unix shop. ;-) -- Ben Scott [EMAIL PROTECTED] | The opinions expressed in this message are those of the author and do not | | necessarily represent the views or policy of any other person, entity or | | organization. All information is provided without warranty of any kind. | * To unsubscribe from this list, send mail to [EMAIL PROTECTED] with the text 'unsubscribe gnhlug' in the message body. *
Re: does this make any damn sense at all?
If I read the description of your setup correctly, it sounds like under the old arrangement your wife would basically go out onto the Internet via the ATT connection, rattle around inside the Internet cloud and then enter your ISDN-connected network and finally connect to your POP server on that network. Does your POP server do some kind of authentication based on the originating IP address which maybe now appears different? Does it try to contact something like an identd which is no longer accessible? * To unsubscribe from this list, send mail to [EMAIL PROTECTED] with the text 'unsubscribe gnhlug' in the message body. *
Re: does this make any damn sense at all?
On Wed, 5 Dec 2001, Joshua S. Freeman wrote: I have an ISDN line coming into my house. I have a network running there that contains, among other things, a mailserver... 'pop.threeofus.com' and 'mail.threeofus.com'... If I try connecting to pop.threeofus.com on TCP port 110, I get the connected message from Telnet, but a few seconds later your end disconnects. That usually means TCP-wrappers is hosed, or DNS is hosed, or both. Or are you using IP address restrictions deliberately? If I try connecting to mail.threeofus.com on TCP port 25, the SMTP banner starts out as 220 localhost.localdomain ESMTP Your system appears to think it's canonical name is localhost.localdomain. That may be a problem. The MX record for threeofus.com points to mail.threeofus.com, which is a CNAME record. MX records should only point to canonical names. That is likely not causing many problems, but should be fixed eventually. Have you checked the system logs? -- Ben Scott [EMAIL PROTECTED] | The opinions expressed in this message are those of the author and do not | | necessarily represent the views or policy of any other person, entity or | | organization. All information is provided without warranty of any kind. | * To unsubscribe from this list, send mail to [EMAIL PROTECTED] with the text 'unsubscribe gnhlug' in the message body. *
Re: does this make any damn sense at all?
On Wed, 5 Dec 2001, mike ledoux wrote: I've seen this claim a number of times, and have never really understood it. Why should you not point a MX record at a CNAME? 'cause the RFCs say not to. Sure, most mailers deal with it, but there is no guarantee it will not cause problems down the road. Why ask for trouble? -- Ben Scott [EMAIL PROTECTED] | The opinions expressed in this message are those of the author and do not | | necessarily represent the views or policy of any other person, entity or | | organization. All information is provided without warranty of any kind. | * To unsubscribe from this list, send mail to [EMAIL PROTECTED] with the text 'unsubscribe gnhlug' in the message body. *
Re: Linux Friendly DSL (Update)
Hi Karl, et al. Here are some excerpts from the service agreement (available online @ http://www.directvdsl.com/products/agreement.asp ): 2.0 Accounts and Passwords. This Agreement applies to all user IDs associated with your account. You are responsible for the use of each of such user IDs, whether used under any name or by any person, and for ensuring full compliance with this Agreement by all users of your user IDs, Service, or account. You are responsible for maintaining the confidentiality of your passwords. In the event of a breach of security, you will be liable for any unauthorized use of the Service until you notify the DIRECTV Broadband Order Center at 1-888-773-3349. You might also want to look at the Acceptable Use Policy @ http://www.directvdsl.com/products/use.asp. There is actually nothing in there specifically mentioning port scanning. It does prohibit the use of the service for attempting to unlawfully gain access to resources, but doesn't every AUP? C-Ya, Kenny Karl J. Runge wrote: Kenny, That sounds pretty good. What is their stated policy on having your machine be a hackerz' scanbox? ATT Broadband seems to have a two strikes and you're out policy. I.e. if it happens twice that a hacker breaks into your machine and uses to scan other machines or DDOS, you lose your service. Thanks, Karl On Mon, 03 Dec 2001, Kenneth E. Lussier [EMAIL PROTECTED] wrote: All, Several people wanted updates on Direct TV's DSL service. Well, so far I'm impressed. $50/month. Here is what I have: 768K down / 256k up Static IP address Upto 6 accounts/e-mail addresses through them. Express permission to run smtp, dns, web, ftp, etc. Install instructions for Linux/UNIX. DirectTV will act as primary or secondary DNS for my domain if I want them to. * To unsubscribe from this list, send mail to [EMAIL PROTECTED] with the text 'unsubscribe gnhlug' in the message body. * -- --- Kenneth E. Lussier Geek by nature, Linux by choice PGP KeyID C0D2BA57 Public key http://pgp.mit.edu:11371/pks/lookup?op=getsearch=0xC0D2BA57 * To unsubscribe from this list, send mail to [EMAIL PROTECTED] with the text 'unsubscribe gnhlug' in the message body. *
Re: Fwd: SANS NewsBites Vol. 3 Num. 49
Well, then, mister smartypants, what's this: http://www.sans.org/newlook/digests/newsbites.htm That looks like a digest that runs about a week behind. Oh, well - it was still worth it if only as an excuse to say smartypants for the first time since I was twelve... I do still think we ought to not routinely forward traffic from other channels onto the GNHLUG list. My email to Derek was originally private but said: I definitely appreciate such postings on an occasional basis as examples of outside resources that might be of interest to GNHLUG folks (and I've generated my share of such postings) but not as a regular thing. I think the best approach is to be sure that each such posting contains subscription/access info so that those of us who wish to receive the material on a continuing basis can arrange it for themselves. If SANS doesn't choose to make that newsletter available to people who haven't paid some exorbitant conference fee, that's their prerogative, like it or not. It'd be bad enough to clutter the GNHLUG list with material available on other channels, but worse to be violating some kind of access agreements while doing so. * To unsubscribe from this list, send mail to [EMAIL PROTECTED] with the text 'unsubscribe gnhlug' in the message body. *
Re: Fwd: SANS NewsBites Vol. 3 Num. 49
In a message dated: Wed, 05 Dec 2001 18:22:36 EST Benjamin Scott said: Viruses suck, but they're a fact of life for the modern sysadmin. Not in an all-Unix shop. ;-) I agree. I personally, have never been the victim of a virus, nor have any of my Unix users ever been subjected to this nonsense on their Unix systems. I've had to clean up after a virus once. After that once, we put a procmail-based virus scanner on the mail server and nothing has gotten through since (doesn't mean it won't in the future, just that it hasn't in over a year so far :) Virii are a fact of life for the sysadmin who is not ever vigilant and for the user who doesn't know how to properly use the tools given them to do their job. * To unsubscribe from this list, send mail to [EMAIL PROTECTED] with the text 'unsubscribe gnhlug' in the message body. *
Re: does this make any damn sense at all?
This is good feedback/information sadly.. i'm not skilled enough (yet) to figure out where to go (on my system) to fix these things... is anyone here willing to meet me on the phone and help me work out the things that have been pointed out in this thread? I promise to take good notes and learn from the experience... J. On Wed, 5 Dec 2001, Benjamin Scott wrote: On Wed, 5 Dec 2001, Joshua S. Freeman wrote: I have an ISDN line coming into my house. I have a network running there that contains, among other things, a mailserver... 'pop.threeofus.com' and 'mail.threeofus.com'... If I try connecting to pop.threeofus.com on TCP port 110, I get the connected message from Telnet, but a few seconds later your end disconnects. That usually means TCP-wrappers is hosed, or DNS is hosed, or both. Or are you using IP address restrictions deliberately? If I try connecting to mail.threeofus.com on TCP port 25, the SMTP banner starts out as 220 localhost.localdomain ESMTP Your system appears to think it's canonical name is localhost.localdomain. That may be a problem. The MX record for threeofus.com points to mail.threeofus.com, which is a CNAME record. MX records should only point to canonical names. That is likely not causing many problems, but should be fixed eventually. Have you checked the system logs? -- Ben Scott [EMAIL PROTECTED] | The opinions expressed in this message are those of the author and do not | | necessarily represent the views or policy of any other person, entity or | | organization. All information is provided without warranty of any kind. | * To unsubscribe from this list, send mail to [EMAIL PROTECTED] with the text 'unsubscribe gnhlug' in the message body. * -+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+- Joshua S. Freeman | preferred email: [EMAIL PROTECTED] pgp public key: finger [EMAIL PROTECTED] http://www.threeofus.com -+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+- * To unsubscribe from this list, send mail to [EMAIL PROTECTED] with the text 'unsubscribe gnhlug' in the message body. *
Re: does this make any damn sense at all?
On Wed, 5 Dec 2001, Bill Mullen wrote: On Wed, 5 Dec 2001, Joshua S. Freeman wrote: Well, it seems very eager to hang up on me, I'll say that, but it's making the initial connection at least ... though I'd feel a lot better if your server made some small effort to identify itself ... can you retrieve via POP from other networks? now that I've test that.. it would seem, no.. i can't Do you use SSL (pop3s) instead of regular POP? nope Are there any restrictions based on IP address on the POP daemon (that haven't been updated since ATT recently made a bunch of IP subnet number changes)? maybe.. where should I look for those? Does it listen on something other than standard POP port 110? nope Any recent changes to the POP daemon config, or maybe the firewall config? nope Perhaps this technique will help: http://linuxdocs.org/HOWTOs/mini/Secure-POP+SSH.html i'll check it out... THANKS punmode=truly_horrid Keep us posted, ok? /punmode -- Bill Mullen [EMAIL PROTECTED] Dec 5, 2001 -+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+- Joshua S. Freeman | preferred email: [EMAIL PROTECTED] pgp public key: finger [EMAIL PROTECTED] http://www.threeofus.com -+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+- * To unsubscribe from this list, send mail to [EMAIL PROTECTED] with the text 'unsubscribe gnhlug' in the message body. *
mail problems addenda (workaround)
so.. for the meanwhile, I just added a line to my /etc/aliases file so that any mail that comes in for her gets forwarded to her attbroadband account.. and her client looks for mail there.. but.. still.. i'd like to get things working right again.. the wierd thing is though.. it was all working fine when it was @home rather than attbroadband.. hrm. J. -+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+- Joshua S. Freeman | preferred email: [EMAIL PROTECTED] pgp public key: finger [EMAIL PROTECTED] http://www.threeofus.com -+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+- * To unsubscribe from this list, send mail to [EMAIL PROTECTED] with the text 'unsubscribe gnhlug' in the message body. *
changing from 5 to 6 for Dec. 12 meeting..... Subject: # for Dec12th Subject: # for Dec 12th
Found another person to tag along CmdrRoot On 05 Dec 2001 10:08:09 -0500, Paul Lussier wrote: Hi all, The GNHLUG Holiday Gathering is next Wednesday, 12 December. Our guest speaker is Jon 'maddog' Hall, who will be speaking on The 12 Days of Linux The event, like last year, will be held at Martha's Exchange in Nashua, NH. Directions are available from our website: http://www.gnhlug.org/marthas_directions.html Dinner will be at 18:00 (hopefully), with the meeting beginning around 19:00ish. If you haven't RSVP'ed yet, you have until the end of today to do so! Please e-mail me: [EMAIL PROTECTED] with a subject line of: Subject: # for Dec 12th where '#' is the number of people you're rsvp'ing for. Thanks! -- Paul Lussier Chairman, Nashua Chapter, Greater New Hampshire Linux User's Group (GNHLUG) Senior Systems and Network Engineer Mission Critical Linux, Inc. ** To unsubscribe from this list, send mail to [EMAIL PROTECTED] with the following text in the *body* (*not* the subject line) of the letter: unsubscribe gnhlug-announce ** * To unsubscribe from this list, send mail to [EMAIL PROTECTED] with the text 'unsubscribe gnhlug' in the message body. * * To unsubscribe from this list, send mail to [EMAIL PROTECTED] with the text 'unsubscribe gnhlug' in the message body. *
Re: Fwd: SANS NewsBites Vol. 3 Num. 49
Obviously. From http://www.sans.org/newlook/digests/newsbites.htm : To subscribe please email [EMAIL PROTECTED] with the subject NewsBites subscription. C-ya, Kenny PS You get subscribed every time you attend a SANS conference or class mike ledoux wrote: I'm not going to make the argument that you have to be already affiliated with SANS to subscribe to the current list, but I will say that I couldn't find a way. But then, I didn't try very hard. -- --- Kenneth E. Lussier Geek by nature, Linux by choice PGP KeyID C0D2BA57 Public key http://pgp.mit.edu:11371/pks/lookup?op=getsearch=0xC0D2BA57 * To unsubscribe from this list, send mail to [EMAIL PROTECTED] with the text 'unsubscribe gnhlug' in the message body. *
Re: Linux Frame-Buffer Console
mike ledoux wrote: -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On Wed, Dec 05, 2001 at 11:19:42AM -0500, Mark Polhamus wrote: Can anyone tell me what the following text means and whether it might apply to my Redhat 7.0 system? (I certainly get quite a few hangs running VMware, although I am otherwise happy with the product.) Kernel is binary RPM from Redhat, 2.2.17-14. [...] I installed fbset fbset-2.1-6.i386.rpm and: [root@granite rpms 52]# fbset --verbose Linux Frame Buffer Device Configuration Version 2.1 (23/06/1999) (C) Copyright 1995-1999 by Geert Uytterhoeven Opening frame buffer device `/dev/fb0' open /dev/fb0: No such device [root@granite rpms 53]# ls -l /dev/fb* lrwxrwxrwx1 root root3 Jan 17 2001 /dev/fb - fb0 crw---1 mark root 29, 0 Aug 24 2000 /dev/fb0 [...] Any ideas? It looks like you don't have framebuffer support compiled into your kernel. You can verify this by checking /proc/devices, but not being able to open char-major 29 as root is a pretty good indication. Since it looks like that text about VMware only applies to people using framebuffer console support, I'd guess it doesn't apply to you. - -- [EMAIL PROTECTED] OpenPGP KeyID 0x57C3430B Holder of Past Knowledge CS, O- Put your wasted CPU cycles to use: http://www.distributed.net/ -BEGIN PGP SIGNATURE- Version: GnuPG v1.0.6 (GNU/Linux) Comment: For info see http://www.gnupg.org iD8DBQE8Dlc85rgdHFfDQwsRAoZpAKCawsapV+sD5vWBPFLYaGHjdqIi2wCeLXkA W6S0Sh0Ht4oMvvSBdk/v9k8= =ENVe -END PGP SIGNATURE- * To unsubscribe from this list, send mail to [EMAIL PROTECTED] with the text 'unsubscribe gnhlug' in the message body. * Looks like /proc/devices thinks it's there: [root@granite ~ 4]# cat /proc/devices Character devices: 1 mem 2 pty 3 ttyp 4 ttyS 5 cua 7 vcs 10 misc 14 sound 29 fb 36 netlink 62 ttyLT 99 ppuser 119 vmnet 128 ptm 136 pts 162 raw 180 usb 254 pcmcia Block devices: 1 ramdisk 2 fd 3 ide0 9 md 22 ide1 [root@granite ~ 5]# [root@granite ~ 8]# strace fbset execve(/usr/sbin/fbset, [fbset], [/* 30 vars */]) = 0 uname({sys=Linux, node=granite.polhamus.lan, ...}) = 0 brk(0) = 0x804f6b0 open(/etc/ld.so.preload, O_RDONLY)= -1 ENOENT (No such file or directory) open(/etc/ld.so.cache, O_RDONLY) = 3 fstat64(3, 0xbfffec0c) = -1 ENOSYS (Function not implemented) fstat(3, {st_mode=S_IFREG|0644, st_size=37342, ...}) = 0 old_mmap(NULL, 37342, PROT_READ, MAP_PRIVATE, 3, 0) = 0x40017000 close(3)= 0 open(/lib/libc.so.6, O_RDONLY)= 3 read(3, \177ELF\1\1\1\0\0\0\0\0\0\0\0\0\3\0\3\0\1\0\0\0`\274\1..., 1024) = 1024 fstat(3, {st_mode=S_IFREG|0755, st_size=5072386, ...}) = 0 old_mmap(NULL, 1182920, PROT_READ|PROT_EXEC, MAP_PRIVATE, 3, 0) = 0x40021000 mprotect(0x40139000, 36040, PROT_NONE) = 0 old_mmap(0x40139000, 20480, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED, 3, 0x117000) = 0x40139000 old_mmap(0x4013e000, 15560, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x4013e000 close(3)= 0 munmap(0x40017000, 37342) = 0 getpid()= 6922 open(/dev/fb0, O_RDONLY) = -1 ENOSYS (Function not implemented) open(/dev/fb0, O_RDONLY) = -1 ENOSYS (Function not implemented) open(/dev/fb0, O_RDONLY) = -1 ENODEV (No such device) write(2, open /dev/fb0: No such device\n, 30open /dev/fb0: No such device ) = 30 _exit(1)= ? [root@granite ~ 9]# I'm not sure why strace shows three open() calls, the source shows only one. So I'm still not sure. What exactly is a frame-buffer console? Does it have anything to do with my video driver? Is there a boot option I can use to get the same effect as the fbset invocation? [root@granite redhat 31]# X -showconfig XFree86 Version 3.3.6 / X Window System (protocol Version 11, revision 0, vendor release 6300) Release Date: January 8 1999 If the server is older than 6-12 months, or if your card is newer than the above date, look for a newer version before reporting problems. (see http://www.XFree86.Org/FAQ) Operating System: Linux 2.2.12-20smp i686 [ELF] Configured drivers: Mach64: accelerated server for ATI Mach64 graphics adaptors (Patchlevel 0) [root@granite redhat 32]# (I'm running an old XFree86 for VMware compatibility) -- Mark Polhamus -- [EMAIL PROTECTED] * To unsubscribe from this list, send mail to [EMAIL PROTECTED] with the text 'unsubscribe gnhlug' in the message body. *
Last chance to RSVP for the GNHLUG Holiday Gathering!!!
Hi all, The GNHLUG Holiday Gathering is next Wednesday, 12 December. Our guest speaker is Jon 'maddog' Hall, who will be speaking on The 12 Days of Linux The event, like last year, will be held at Martha's Exchange in Nashua, NH. Directions are available from our website: http://www.gnhlug.org/marthas_directions.html Dinner will be at 18:00 (hopefully), with the meeting beginning around 19:00ish. If you haven't RSVP'ed yet, you have until the end of today to do so! Please e-mail me: [EMAIL PROTECTED] with a subject line of: Subject: # for Dec 12th where '#' is the number of people you're rsvp'ing for. Thanks! -- Paul Lussier Chairman, Nashua Chapter, Greater New Hampshire Linux User's Group (GNHLUG) Senior Systems and Network Engineer Mission Critical Linux, Inc. ** To unsubscribe from this list, send mail to [EMAIL PROTECTED] with the following text in the *body* (*not* the subject line) of the letter: unsubscribe gnhlug-announce ** * To unsubscribe from this list, send mail to [EMAIL PROTECTED] with the text 'unsubscribe gnhlug' in the message body. *