make-kpkg and 2.4.16
hey. i've never tried to run make-kpkg on non-debian'ized kernel source before (ie. normally i download kernel-source-2.x.x). so i downloaded the source, cd'd into it and ran: make-kpkg --initrd --revision=2:adam.1.0 kernel-image and i get a package that looks and installs fine, but it won't boot. i don't have the exact error because i'm compiling the kernel again, but it's something along the lines of root: not found or something that makes me think that i've made a typo in my menu.lst but i haven't, it's all automatically generated by update-grub and is working fine for all my other kernels. is there somethign particular about building a debian kernel from scratch instead of from debian'ized source? is there somethign weird about 2.4.16? or did i just fat finger something in my kernel config and not want to admit it ... thanks, adam.
Re: make-kpkg and 2.4.16
Likely you didn't include support for your root fs or the hardware controlling the disk. I once left out support for my IDE controller. It didn't work out too well :-). hrm, i don't think so and i just doubled checked. i copied my .config from my 2.4.14 kernel (which works just fine) to the new kernel tree and ran make oldconfig and answered m to everything i could and n to everything else. under filesystems both ext3 and ext2 are enabled. under block devices everything is a module except initrd (and a couple weird things). but for some reason it can't find my initrd image even though it exists where menu.lst says it does. here's the actual error message i get (can't cut and paste so there might be a typo): Linux IP multicast router 0.06 plus PIM-SM RAMDISK: Couldn't find valid RAM disk image starting at 0. Freeing initrd memory: 3348k freed request_module[block-major-3]: Root fs not mounted VFS: Cannot open root device hda2 or 03:02 Please append a correct root= boot options Kernel panic: VFS: Unable to mount root fs on 03:02 grub config is identical to my working 2.4.14 config (except of course pointing to the 2.4.16 initrd and vmlinuz images). my root disk is hda2. it looks like it can't find the initrd file. with initrd what cannot be compiled as a module? adam.
Re: make-kpkg and 2.4.16
It is perfectly possible to say m to all types of disks and all filesystems. But then your kernel will not be able to access the disk. Your boot disk must be built into your kernel. i thought initrd solved that problem by allowing modules to be loaded into a ram disk before the disk was accessible (because grub/lilo directly support reading the initrd fiel from the disk). am i wrong? in which case which modules have to be built in for initrd to work? i had a similar problem when i first moved to 2.4 kernels and it turned out to be a not recent enough modutils. all i did was take the .config from kernel-image-2.4.14 copy it into the new src tree of 2.4.16 and run make oldconfig. i *should* have everything i need, and i've confirmed via diff that it doesn't look significantly different from my old 2.4.14 config file. adam.
Re: make-kpkg and 2.4.16
But in that case your initrd (or the 2nd floppy with the modules) will need to contain the modules compatible with your new kernel too. i understand that, but make-kpkg is supposed to (and always has in the past) taken care of that for me. Save yourself the headache and compile support for IDE and ext2fs into your kernel! further they are compiled into the kernel and it still doesn't work: heyzeus(larry)$ egrep INITRD|(EXT(2|3)) /boot/config-2.4.16 CONFIG_BLK_DEV_INITRD=y CONFIG_EXT3_FS=y CONFIG_EXT2_FS=y hrm, okay IDE was a module. i'm recompiling now. i don't think it's gonna make a difference though because grub should be able to access the disk enough to read the initrd file and load the modules. or maybe i'm dumb. adam.
using grub to install mbr on other hard drive.
hey. i'm building a debian disk image as a linux based 802.11b access point (using jouni malinen's host ap mode drivers). basically at this point it works but i'm trying to convert from lilo to grub because as i become familiar with it i like it a lot better. this image will be batch loaded onto fujitsu stylistic 1000's (which have a type 3 pcmcia hard drive). so the basic procedure will be: * put pcmcia drive in laptop (shows up as /dev/hde) * cfdisk /dev/hde * mke2fs /dev/hde1 * mount /dev/hde1 /mnt * tar Ixvf image.tar.bz2 /mnt * install mbr onto drive so it's bootable and here's where i get stuck. i can make it work with lilo but i can't figure out how to do it with grub. can anyone point me in the right direction please? thanks, adam.
syntax of /etc/cvs-pserver.conf
Hi. I'm trying to setup a CVS server with multiple allow-root commandline options. the new cvs 1.11.1p1-1 package does this with cvs-pserver wrapper instead of adding options directly to the /etc/inetd.conf file. however i can't find an example syntax of of the /etc/cvs-pserver.conf file anywhere for having multiple roots. from reading the wrapper script it looks like CVS_PSERV_REPOS should accept a space delimited series of roots, but i can't make that work. either repository works by itself but setting it like below (and HUP'ing inetd) i get authentication errors: # cat /etc/cvs-pserver.conf CVS_PSERV_REPOS=/cvsroot/test1 /cvsroot/test2 $ cvs login (Logging in to [EMAIL PROTECTED]) CVS password: cvs [login aborted]: unrecognized auth response from 127.0.0.1: Unknown command: `/cvsroot/test2' what am i doing wrong? thanks, adam.
Re: syntax of /etc/cvs-pserver.conf [solution]
I'm trying to setup a CVS server with multiple allow-root commandline options. the new cvs 1.11.1p1-1 package does this with cvs-pserver wrapper instead of adding options directly to the /etc/inetd.conf file. as always as soon as i post a question i figure out the answer. in case anyone else has this issue, the problem is that you didn't read very carefully when you installed the cvs package :-) the first page of the debconf it tells you to seperate the root's with a colon's. this is tested and works great for me. # cat /etc/cvs-pserver.conf CVS_PSERV_REPOS=/cvsroot/test1:/cvsroot/test2 as a side note though it would be nice if the syntax of this was mentioned in the README.Debian file. adam.
Re: PPPoE +Debian ?
Where can I find documentation that will explain the install and usage of PPPoE with Debian ? i just set this up this morning for an earthlink connection. it's pretty straight forward. from memory, quickly here are the steps (as root): first make sure your ethernet adapter is setup and does *NOT* have an ip address. this works for me (note: i have not yet found a way to enable the ethernet device to work to talk to local devices *and* to work with the pppoe driver. it works under windows but not under linux that i can see): in /etc/network/interfaces: auto eth0 iface eth0 inet static address 0.0.0.0 netmask 255.255.255.0 # ifdown eth0 # ifup eth0 now install and configure pppoe # apt-get install pppoe # vi /etc/ppp/peers/dsl-provider (set your username) # vi /etc/ppp/pap-secrets you're gonna need a line that looks like this: username * password start ppp # pon dsl-provider watch the connection with # plog (or tail -f /var/log/messages | grep pppd) everything else is just like a standard ppp connection, tweak as normal to your hearts content. i've thrown this up on my web site (been meaning to do that anyway) for future reference. if i've gotten anything wrong feel free to edit it (it's a wiki site so just make the changes). http://www.spack.org/index.cgi/PppoeSetup adam.
apt error: not a valid DEB package
i went to install powershell today and i got this. my immediate response was the the md5 check sum must not have matched (apt does that now ... right?). but it installed anyway... wtf? if it's going to get an error shouldn't it abort? adam. $ sudo apt-get install powershell Reading Package Lists... Done Building Dependency Tree... Done The following NEW packages will be installed: powershell 0 packages upgraded, 1 newly installed, 0 to remove and 295 not upgraded. Need to get 0B/72.7kB of archives. After unpacking 299kB will be used. E: /var/cache/apt/archives/powershell_0.80.2000.04.21-3_i386.deb not a valid DEB package. Selecting previously deselected package powershell. (Reading database ... 39702 files and directories currently installed.) Unpacking powershell (from .../powershell_0.80.2000.04.21-3_i386.deb) ... Setting up powershell (0.80.2000.04.21-3) ...
Re: portsentry
It is the first time I have read anything negative about portsentry. while a lot of what the author is saying is true portsentry and snort are two quite different things. really the only thing they have in common is that they are designed to improve the security of your network/server. portsentry is a very simple dynamic firewall. dynamic firewalls have their uses, but i certainly wouldn't run them on a production server for an isp (to prone to blocking the wrong thing), but for my personal machine it's great, it keeps moron's away by letting them think that they've crashed my machine so they can laugh and move on. for example i was just at defcon (big hacker conference). someone nmap'd my home server from the defcon network and it was immediately invisible to the defcon network. in my mind this is a good thing. snort is a network intrusion detection system. this is a much more complicated and full featured beast. snort does stateful (i think?) inspection of all network traffic by putting it's nic into promiscuous mode. it is not designed to take action when it sees something bad it's designed to report on it and allow you to analysse what sort of traffic is occuring on your network. this is great for corporate networks where you are always worried about someone attacking your firewall or getting in behind your firewall. they are both great pieces of software, but they serve different purposes. adam.
Boot disk doesn't recognize Compaq DL360's RAID controller
Hi. I'm trying to install Debian on a Compaq Proliant DL360 with the integrated smart raid controller. The error message I get is on boot up: scsi : 0 hosts. scsi : detaected total. Partition check: apm: BIOS not found. VFS: Cannot open root device 00:00 Kernel panic: VFS: Unable to mount root fs on 00:00 I am very familiar with Debian (but not with Compaq hardware or hardware RAID). My boss would like me to install Redhat (which does install correctly and recognise the /dev/ida/c0d? devices) but I don't want to, I'd like to stick with Debian because it's what I am most familar with. Any ideas? Adam.
2.4 kernel and 4GB+ of RAM
Hey all. I'm hoping for some advice here. I've just started a new job and one of the things they want me to do is to build a linux farm/cluster for running large simulation and regression tests. Some of these tests can be up to 4GB and in time they will grow larger. I have a limited understanding of the hardware restrictions of linux and have had a hard time finding good answers to these questions by searching google. So my questions are: * In the new 2.4 kernels can a single process address more then 2Gb of RAM? More then 4Gb of RAM? * Is this architecture dependent? If so what are the differences. * What is the hard limit for the total amount of ram usable by a 2.4 kernel. If I've missed a good place to read about all this pointers would be much appreciated as well. Thanks, Adam.
apache question, LocationMatch directive
hey. i'm trying to password protect a wiki site, or rather i don't want to password protect it yet, but i want to make sure that i know how to if i ever need to resist an attack on the site. i only want to password protect the normally open edit ability, i still want people to be able to view all the pages. using moinmoin a link to read a page looks like this: http://www.spack.org/wiki/index.cgi/SamplePage and then to edit it, it looks like this: http://www.spack.org/wiki/index.cgi/SamplePage?action=edit i thought i could use the LocationMatch directive to match this with something like: LocationMatch action=edit AuthName Edit Page AuthUserFile /etc/apache/htpasswd require valid-user /LocationMatch but it doesn't seem to work and i don't generate any errors. my only thought is that maybe the LocationMatch directive won't match get parameters but there is no mention of this restriction at apache.org which says it should match the entire url. does anyone have any idea what the problem is and how else i might accomplish this? adam.
Re: Mailman: Relay access denied
I just installed Mailman on my Potato server here at work and attempted to set up a test mailing list. None of the welcome messages were sent out. After digging around for a while, I found this in /var/log/mailman/smtp-failures: it means exactly what it says. that postfix isn't allowing you to relay through it. that means that: the request is coming from a non-local ip address for a non-local domain. if it is supposed to be a local domain you need to fix postfix to make oz.net, post.net and mattyt.net local domains. if they aren't suppoesd to be local domains (eg. they are hosted on a different box) then you need to add the ip address that mailman is trying to send to to the postfix's list of local ip's (normally maintained in /etc/postfix/access i believe). adam.
php4 can't use dba modules?
hi. i've been having an ongoing discussion with the author of phpwiki. i've also had a couple other problems with other php packages which use db stuff, at this point i'm not sure if the problems i'm having are my stupidity, a bug in the debian package or a programming issue with the programs i'm trying to run. however in both the packages i'm having problems with (phpwiki and sips) a couple other debian users have had problems. my question is this. are the db2 (dba_) extensions compiled in based on what i can find in the docs they are, and they are in the main php4 package. in order to enable them do i have to add anything to php.ini? if the script uses dba which is supposedly linked agains db2 ... why do i get gdbm errors? any help etc would be much appreciated. thanks, adam. -- Forwarded message -- Date: Tue, 06 Mar 2001 18:31:02 -0500 From: [EMAIL PROTECTED] Reply-To: [EMAIL PROTECTED] To: [EMAIL PROTECTED] Subject: Re: [Phpwiki-talk] problem with phpwiki using dba. Adam Shand wrote: Warning: Variable passed to reset() is not an array or object in /var/www/devel.spack.org/phpwiki/lib/dbalib.php on line 52 Warning: Variable passed to each() is not an array or object in /var/www/devel.spack.org/phpwiki/lib/dbalib.php on line 53 WikiFatalError Cannot open database 'wiki' : '/tmp/wikipagesdb', giving up. Yes, this is just PHP saying it got a variable that should be an array but was not. With the '@' removed you will get a verbose error message telling us what the problem is. now i get this: Warning: no such handler: gdbm in /var/www/devel.spack.org/phpwiki/lib/dbalib.php on line 39 Warning: no such handler: gdbm in /var/www/devel.spack.org/phpwiki/lib/dbalib.php on line 39 Warning: no such handler: gdbm in /var/www/devel.spack.org/phpwiki/lib/dbalib.php on line 39 I can't find any reference to this error on the PHP site... perhaps you could email the maintainer of the PHP package for Debian? I wish I could offer more but at the moment I'm stumped. ~swain Warning: Variable passed to reset() is not an array or object in /var/www/devel.spack.org/phpwiki/lib/dbalib.php on line 52 Warning: Variable passed to each() is not an array or object in /var/www/devel.spack.org/phpwiki/lib/dbalib.php on line 53 WikiFatalError Cannot open database 'wiki' : '/tmp/wikipagesdb', giving up. ___ Phpwiki-talk mailing list [EMAIL PROTECTED] http://lists.sourceforge.net/lists/listinfo/phpwiki-talk
stuck in apt loop with gnome-libs-data
hey. since i upgraded libc6 and dpkg (from unstable) i've been having a lot of problems with dpkg seg faulting trying to install stuff. currently i tried to upgrade gnumeric and it bombs out on gnome-libs-data like this: (Reading database ... 44809 files and directories currently installed.) Preparing to replace gnome-libs-data 1.2.8-helix1 (using .../gnome-libs-data_1.2.12-1_all.deb) ... Unpacking replacement gnome-libs-data ... dpkg: error processing /var/cache/apt/archives/gnome-libs-data_1.2.12-1_all.deb (--unpack): trying to overwrite `/usr/share/idl/name-service.idl', which is also in package libgnorba27 dpkg-deb: subprocess paste killed by signal (Broken pipe) Errors were encountered while processing: /var/cache/apt/archives/gnome-libs-data_1.2.12-1_all.deb E: Sub-process /usr/bin/dpkg returned an error code (1) the problem is that i can't upgrade anything else until this is fixed, and i get this over and over again when i run apt-get -f install or try to manually install the package with dpkg. i've had problems like this before and normally moving the problem file to /tmp and re-installing works (eg. mv /usr/share/idl/name-service.idl /tmp) to get my by ... but this time it doesn't. how do i get out of this? adam.
mysql dependancies in apache/mailman?
i just upgraded apache to the latest in unstable and there is now a mysql dependancy (mysql-common and libmysqlclient10). can anyone explain this to me? i don't use mysql. i also noticed that when i try to remove libmysqlclient10 it wants to remove mailman as well. adam.
any one running sips (sips.sourceforge.net)??
i've tried to get sips (a really nice and simple databaseless weblog) running on two different debian boxes without luck. for some reason it's not parsing some of the templates right. i thought maybe i'd tweaked something wrong but i just it again on a default install of debian and i get the same problem. it almost works but in one instance it doesn't parse the templates at all. the author swears it works and that i've done everything right so we're both baffled now. so i guess i'm just curious if anyone else is running this on a debian system, or knows of a default php setting in debian that might effect this. bone(larry)$ dpkg -l php4 apache ||/ Name VersionDescription +++-==-==- ii php4 4.0.4pl1-1 A server-side, HTML-embedded scripting ii apache 1.3.14-2 Versatile, high-performance HTTP server thanks, adam.
Re: make-kpkg question.
you definitely do not want use the patches for 2.2.18 with any other kernel, unless you really know what you are doing (you would have to make sure that the files that the patch changes are unchanged between 2.2.18 and whatever you will use). yah, i know that :) I don't know whether you can use non-debian tarball instead of debian source, but it's easy enough to check - get the kernel-source-2.2.17 and 'standard' kernel tarball for 2.2.17 and compare them - if they are different, you don't want to use tarball instead of kernel package. the problem is that there are lots of superficial differences (readme's etc) and i wasn't sure if it was just a couple text files which were inserted or if there was some greater significance that i was missing. thanks, adam.
Re: Banner server avoidence
Don Marti's posted a DNS hack which can be used to deny specific domains on a sitewide basis, if you run DNS. The advantage is that it's a one-time rule which works transparently for all systems on the local net. The bad news is that an extensive list of blocked sites is likely to be difficult to maintain and inconvenience some users: i like this solution: http://www.schooner.com/~loverso/no-ads/ it's an automatic proxy configuration script for netscape or ie that blocks ads. it does't control cookies (which junkbuster etc do) but it works great for banner ads. adam.
RE: IMAP/webmail
The IMP/HORDE combination is pretty good. i did a lot of research on this not too long ago and the one i liked best was squirrel mail. it just came out with 1.0pre1 so it's pretty close to stable (i'm using 0.65 with good luck). http://www.squirrelmail.org/ one of my requirements was not to require a database or zope. if you don't mind zope you might want to check out zope-worldpilot (debian package name). if you don't don't mind a database you should check out postaci (debian package) or basilix. http://www.basilix.org/ http://www.trlinux.com/ adam.
Re: installing pine
You can search the archives to find a link to the deb. There are licensing issues with pine so Debian doesn't include it but there are people who have built the debs. I just snagged the latest stable release (source) from the pine web site. I had to install a library or two but it was no big deal. Compiled just fine. You might want to try mutt. I like it a lot better. It took some configuring but it isn't as clunky as pine. pine, pico and pilot deb's are included in woody. you'll notice that the version numbers have an 'L' at the end of them. that signifies (i believe) that they are not an unmodified binary and allows debian to distribute the pine binaries that they want to and still comply with the license. heyzeus(larry)$ apt-cache search pine pico - Easy-to-use text editor found in Pine. pine - An e-mail reader with MIME and IMAP support. pilot - simple file system browser in the style of the Pine Composer. pine-docs - Getting started with email using Pine heyzeus(larry)$ apt-cache show pine | grep Version Version: 4.21L-0.3 adam.
Re: Network Monitoring recommendation
I am looking for a tool to monitor the through-put of my connection to the internet. I want to know if my connection is maxing out, or my users just have slow connections to the internet. Is there a debian package to do this, or a recommendation otherwise? if you want something simple get the mrtg and mrtg-utils debian packages. that will give you nice graphs of your bandwidth utilization. if you have a cisco of snmp capable switch it can also monitor bandwidth utilization of that. the mrtg-utils are three small programs that will generate stats for mrtg (apache usage, ip usage and cpu load) from a linux server. Can these tools determine what kind of traffic it is (http,ftp,etc.)? no. for that check out ntop or maybe ipac. basically just search freshmeat, there's lots of stuff out there and it just depends exactly what you want. adam.
make-kpkg question.
hey. i wanna build my own kernel using make-kpkg with some custom patches (the openwall patch and the sub domain patch from wirex) with the release 2.2.18 kernel (which isn't in debian yet). it looks like i can just put the patches into /usr/src/kernel-patches but my question is do i have to wait for an official debian kernel-source-2.2.18 package to come out or can i just use the 2.2.18pre21 (or even the 2.2.17 one for that matter) and download the official 2.2.18 tarball from kernel.org and use make-kpkg with that? adam.
konquerer won't run ...
i just tried to switch from windowmaker (which i've been using for years) to kde2. i did: # apt-get install task-kde # echo startkde ~/.xsession # startx when i run kde most things won't run and i get a lot of segfaults. when i open the control panel there's nothing in there. no modules, no icons. when i try and run konquerer (really the reason i'm trying kde cause i'm sick of netscape) it won't even start. is this something that has a known fix? i'm running a mostly woody system (it was pototo but large chucks of it have been upgraded as needed). adam.
Re: coping with a high-volume mailing list (like this one)?
oops sorry this was my comment about disconnected mode imap that started this ... didn't realise it'd been picked up on. Well I'm no expert, but I suspect that disconnected mode with IMAP means that after IMAP has downloaded all the mail headers, it disconnects, allowing the user to peruse the mail headers and mark the ones (s)he wishes to download, and mark the ones (s)he wishes to delete. Then the user reconnects, and IMAP causes all the downloads and deletes to happen quickly. more or less that's what it means. i've found imap to be very slow over a wan link. it's okay over ethernet but even over my 768k dsl it's slow. after playing around with the same server using outlook i'm inclined to blame pine for the slowness. as fas as i can tell pine doesn't cache any of the messages locally so every operation requires it to talk to the imap server, this is so slow that i went back to using fetchmail to download my mail and just using the imap server for my saved messages. pine also does all it's imap transactions in the foreground which is annoying. it would be nice if when you changed into a folder it showed you what was there and you could start reading and new message would just show up as usual, instead you have to wait for it to check and download all the message headers from that folder blah blah. that being said i love pine and have it's keystrokes imbedding in my brain from so many years of use. but roles are great in pine, i like the way it's collections work my only gripes are: - no disconnected mode imap - no good threading (but you can fake it close enough) - crappy mime support (no pgp/mime) it keeps being almost enough to make me change over but i can't find anything better. adam.
undefining m4 macro in sendmail.mc
hey. i just ran into a sendmail problem i haven't had to deal with before. the hoststatus stuff is messing with my laptop (it check when my laptop isn't connected and remembers that it can't get to hosts even after i plug the ethernet in grr i just forced about 20 messages from over the last two days off my laptop that i hadn't noticed were stuck in the queue). so here's my question. this is included in .../ostype/debian.m4: define(`confHOST_STATUS_DIRECTORY', `/var/lib/sendmail/host_status')dnl without modifing the debian.m4 file (which i don't want to do because my chagnes will get overwritten next time i upgrade) how do i underfine the confHOST_STATUS_DIRECTORY setting in my /etc/mail/sendmail.mc? just setting it to `' doesn't do it. adam.
undefining m4 macro in sendmail.mc (fwd)
answering my own question ... doh. i couldn't find documentation for this anywhere but the obvious works. in order to undefine a previously defined m4 variable just put this in the local /etc/mail/sendmail.mc: undefine(`confHOST_STATUS_DIRECTORY')dnl easy. duh. adam. -- Forwarded message -- Date: Mon, 4 Dec 2000 11:52:40 -0800 (PST) From: Adam Shand [EMAIL PROTECTED] To: Debian User List debian-user@lists.debian.org Subject: undefining m4 macro in sendmail.mc hey. i just ran into a sendmail problem i haven't had to deal with before. the hoststatus stuff is messing with my laptop (it check when my laptop isn't connected and remembers that it can't get to hosts even after i plug the ethernet in grr i just forced about 20 messages from over the last two days off my laptop that i hadn't noticed were stuck in the queue). so here's my question. this is included in .../ostype/debian.m4: define(`confHOST_STATUS_DIRECTORY', `/var/lib/sendmail/host_status')dnl without modifing the debian.m4 file (which i don't want to do because my chagnes will get overwritten next time i upgrade) how do i underfine the confHOST_STATUS_DIRECTORY setting in my /etc/mail/sendmail.mc? just setting it to `' doesn't do it. adam.
Re: konquerer won't run ...
You may also want to subscribe to debian-kde@lists.debian.org (low volume, so far :). cool, thanks i'll check that out. what about getting konqueror to support ssl? it's supposed to do it but where do i enable it? when i go to an ssl site i get told that konqueror doesn't support ssl?!? adam.
Re: creating a ssl cert with stunnel
if it is unsigned i think so. signed certs i think only have to match the domain. but where is the domain listed if not in the the common name of the cert? instead of fixing your ssl cert look into ditching outlook or fixing outlook. i don't want to do that. i use fetchmail (haven't used windows in years) but i have friends and family that use my server and they need to be able to use whatever tools they prefer to check their mail. i use sslwrap to provide SSL over IMAP4, with netscape it warns me that the host is not the same as the cert as well, because i am connecting to a CNAME rather then the real hostname. i don't think that sslwrap will make a difference unless the certificate is generated differently. i figured out how to generate a certificate the way i needed by running this. # openssl req -new -x509 -days 365 -nodes -out stunnel.pem -keyout stunnel.pem i just put . as the answer (which leaves it blank) to all the questions except cn (which got the fqdn of my server) and email which i put [EMAIL PROTECTED] in. fetchmail doesn't give me an error anymore (still waiting to hear back if outlook works) and the new cert looks like this: maus(larry)$ sudo openssl x509 -subject -dates -fingerprint -in /etc/ssl/certs/stunnel.pem subject=/CN=maus.spack.org/[EMAIL PROTECTED] notBefore=Nov 30 00:34:15 2000 GMT notAfter=Nov 30 00:34:15 2001 GMT MD5 Fingerprint=34:5C:8F:EA:39:77:86:FB:CB:BC:46:F7:6B:F7:D6:5D doesn't cause a problem, just have to click the continue button, and i prefer to see that come up so i know SSL is enabled :) you can do this with a correct cert as well (at least in netscape) just choose to only accept the certificate for that session. adam.
Re: coping with a high-volume mailing list (like this one)?
(Not for newbies, but...) I read all of my mail in Gnus, the singing, dancing mail- and newsreader for Emacs. Gnus' view of the world is that everything (including mail groups, mbox files, IMAP folders, ...) is a newsgroup, and reacts accordingly. does it support disconnected mode imap? that is my one big remaining gripe about pine (and as far as i know mutt's imap support is more primitive then pines still). adam.
Re: Printing in Woody
After upgrading to Woody, (and not changing anything) I can't print correctly anymore. I used magicfilterconfig to setup /etc/printcap using the HP laserjet4l driver. The first page is like: %PS-Adobe-3.0 having just discovered both cups and pdq i would recommend one of them. pdq (and the x client xpdq) is a very very simple print system. it requires no printcap, no queues and xpdq has a a wizard to help you setup new printers. there are of course debian packages :) cups is nicer but considerably more complicated (though you still don't have to deal with /etc/printcap). with cups you get qtcups (a slick qt window which you use as the print command which pops up a window like the windows print properties box). you can also get kups which is a kde gui to add/remove/configure printers and the queue (you don't have to be running kde to use it). there are debian packgaes for all this as well. adam.
creating a ssl cert with stunnel
i have stunnel installed and working to provide imap over ssl support but the certificate it creates seems not to match my hostname. when i run fetchmail i get a warning (which is okay) but outlook won't connect at all because of the mismatch. it looks like the problem is with the cn attribute but i don't know how to generate a cert with the correct info or actually what the requirements for the cert to be accepted are. fetchmail gives this error: fetchmail: Server CommonName mismatch: stunnel != maus.spack.org the cert looks like this: maus(root)# openssl x509 -subject -dates -fingerprint -in stunnel.pem subject=/O=spack.org/OU=maus/CN=stunnel/[EMAIL PROTECTED] notBefore=Nov 29 23:33:02 2000 GMT notAfter=Nov 29 23:33:02 2001 GMT MD5 Fingerprint=0D:FB:44:49:7D:B1:8C:3A:4C:2C:9B:F3:7D:45:72:11 so i assume the problem is that the cn of the cert doesn't equal maus.spack.org. is this the standard for host certificates that the common name attribute should equal the hostname? thanks, adam.
blatent self promotion: apt/dpkg beginner guide
hey. one of the recent debianplanet articles prompted me to tidy up an email i've had as an on going work for a couple years. basically everytime i convince some one to give debian a try and i have a little cheat sheet i mail to them to help them get started. it's got useful basic dpkg and apt commands as well as some other more advanced commands that come in hand later. if anyone is interested please take a look at: http://www.spack.org/geek/apt-help.html comments/corrections/etc are of course appreciated. thanks, adam.
RE: blatent self promotion: apt/dpkg beginner guide
i've updated the list with your corrections and suggestions. thanks for the input. adam. On Tue, 28 Nov 2000, Sean 'Shaleh' Perry wrote: /var/lib/dpkg/info location of the package maintainer scripts (postinst, prerm, etc) as well as other pieces of packaging data like md5sums, conffile lists, etc. auto-apt useful tool, play with it and document it here your data on dpkg --set-selections is wrong: sudo dpkg --set-selections hold foo dpkg: --set-selections does not take any argument proper call is: dpkg --set-selectionsenter foo holdenter Ctrl-D or maybe echo foo hold | dpkg --set-selections. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: IDS
I'm looking for recommendations for an Intrusion Detection system for my firewall. Preferably a debian package but not restricted to. Try aide http://packages.debian.org/unstable/admin/aide.html. aide or tripwire will both do host based intrusion detection. if you want network intrusion detection try snort. there is a debian package and there are lots of pre-written rules to detect attacks on snorts web site. it's also being very actively developed. adam.
Re: Zope newbie can't log in
I can log in on Zope as superuser and create a new user. But I can not log in as that user although anything is correct as far as the login name and password is concerned. i am new to zope as well but i just dealt with this the ohter day. it appears that the admin user can log in from anywhere (or that the post-install script for the debian package sets it that way), however a user you create, you must specify the hosts or domains that they can come from when you create the user in zope. i haven't tried to see if a * will allow access from anywhere yet. I have removed apache still can not log in as user - even user 'a' with password 'a' which I created as superuser. I have tried it on Mozilla, Netscape and Lynx. Links would not work with Zope because it ignores the :9673 part in references. apache has nothing to do with this if you are reaching zope on port 9673. and lynx should work just fine. just make sure you specify the url correctly. http://host.domain.com:9673/ adam.
signing gpg key with old key ...
... hey. i looked everywhere i can think to and i can't figure out how to do this. my old gpg key expired a few days ago so i generated a new one. now a lot of people had signed my old key so i want to sign me new key with my old key so it will be trusted as well. how do i sign my new public key with my old private key? any info or pointers i've missed would be appreciatd. thanks, adam.
Re: signing gpg key with old key ...
how do i sign my new public key with my old private key? okay sorry to follow up my own message but i just figured it out. sometimes it seems that i have to write down (or explain it to someone else) in order to figure it out. if you need to do this it seems impossible from with in the --edit-key menu you need to do it on the command line like this: # gpg -u old-key-id --sign-key new-key-id so now my next question is. my old key id is expired but i've used it to sign my new key. i don't want people to use my old key. should i revoke my old key or will that illegitimize it's signature on my new key? should i move the expire date on my old key (and update the keys server)? if i do that how do i stop people from using it? thanks, adam.
Re: pine (again!)
Mind you, I don't understand how come the debs don't compile out of the box, but that's another matter. if the binaries don't run it's a pretty sure guess that something weird is going on. i would solve that first. you can grab a debian package of pine from: http://members.mint.net/frodo/pine/ but until you solve that i wouldn't bother with trying to compile it. as far as compiling it if you have the deb-src line in your /etc/apt/sources.list file (sorry can't remember exact syntax off the top of my head) you should be able to do so with a line like: # apt-get --compile source pine finally, i would guess that the reson you can't compile pine is because you are missing a library package which is required. one of the tricky things about debian source packages is that dependancies are supported. you are responsible to make sure your system has all the needed libraries. a good rough guide to figure out which libraries are required is to look at the depends line for the binary version an dmake sure you have all the libraries and libraries-dev packages installed. sometimes it can be extra tricky because the -dev packages aren't obviously named, but it's a good place to start. if you then try and compile and you get an error with a missing .h file go to the debian search page and search for which package contains that file. you can find the package search page at: http://www.debian.org/distrib/packages.html good luck, hope that helps. adam.
Re: Which IMAP and POP3 servers ?
I do have a question. What is a good POP server to use with maildir mailboxes? I have few users who want to use POP instead of imap. Any suggestions? there are only a couple of options. qmail's popper (no a debian package i believe) or solid-pop3. cyrus has a pop/imap server but i don't believe it's mail store format is exactly the same as maildir, similar but differnt. i've used solid-pop3d and it seems to work okay, but i don't have any experience using it on production servers. adam.
webdav for debian ?
does anyone know of a recent package for libapache-mod-dav? from searching around on the web i found: http://www.debian.org/~flight/libapache-mod-dav/ but it's an older version which requires a version of apache 1.3.7-0. thanks, adam.
Re: webdav for debian ?
I have a libdav.so that I custom-compiled for my Debian potato web server running Apache 1.3.9. Should I send it to you? It needs the package libxmltok1 to run. no thanks, i just finished installing the module from source, i was impressed at how nicely it was put together. the only tricky part at all was figuing out that it required libxmltok1 when the autoconf complained about not being able to find expat. :) thanks though, i was just hoping there was a debian package so i could track newer versions as time went on :) adam.
openssh vs. ssh
hi. i recently changed mailserver that i pop my mail off of, and the new one uses openssh on debian instead of ssh on solaris. i used a preconnect to tunnel the session via ssh with a line like this: preconnect ssh -C -f -L 1100:maus.spack.org:110 maus.spack.org 'sleep 9' this used to work perfectly but now doesn't and the only thing i can figure is something different about the way open ssh handles port forwarding. does anyone know off what the deal is and how i need to change this to make it work? if not i'll go digging through the docs to see if i can figure it out. thanks, adam.
Re: About Centralizing Passwords
i'm not sure if ldap will store session information but i suspect it will. check out ldap and nss (pam modules to interface to ldap servers). there are packages for both for debian. adam. On Tue, 6 Jun 2000, Benjamin Hudgens wrote: I asked this yesterday and got a very limited response so I wanted to explain myself further. Is there a client/server protocol that supports centralizing password AND session information other than NIS. If I'm not mistaken, NIS requires that you STILL edit the password file and specify user dirs.. etc. Perhaps I'm reading this wrong.. Regardless, what I'm really needing is some protocal that will pass session data. So basically I want all my client servers to 'look' at a master server's password file to authenticate it's users. This includes default shell, home dir, etc.. I'm sure some of you have set up NIS successfully, so maybe you might point me in the right direction. If NIS does this, that would be great.. I can use radius for the password data and NIS for the session data.. If NIS doesn't, I'm SOL. SOMEONE has to have done this? Am I asking in the wrong place? Thank you! Benjamin -- Unsubscribe? mail -s unsubscribe [EMAIL PROTECTED] /dev/null
Re: Anyone know of any software for online banking??
I want a Linux replacement for Microsoft Money or Quicken. I have tried MoneyDance, XACC, GNU-Cash, and several others that are under development but none of them allow for downloading from my bank. This is currently my only reason for using any Microsoft programs and I want to totally convert to a Linux environment. I am interested even in commercial software as this is a very important part of my computing needs. gnucash, gnofin and moneydance all support importing quicken format files. i think one of them supports ms money format as well. my bank will let me download is quicken, ms or csv format. adam.
Re: BIND configuration files
Now is there any way to convert the other config files apart from
named.{boot,conf}?
the format of the actual db files didn't change between bind 4/8. all you
need to migrate is the named.boot - named.conf
adam.
generic apt question.
hey. at some point in the future i'd like to migrate the web based package finder i wrote (http://www.spack.org/debian/)to use apt as the back end (instead of manually ftping the Packages.gz files and hasing them into a pseudo database. however one of the features of the package finder is that it allows you to search unstable, frozen and stable. i know that in the sources.list file you can have lines for multiple versions of debian, what i'm not sure of is if that information is kept seperate for each version or if it is merged into one meta database. if anyone knows the answer (and can point me at a good resource for this before i start poking around all the docs) it would be much appreciated. thanks, adam.
Re: chaningen the username on outgoing mail in pine.
Is there some way i can change the username on mail sent by pine? the usual way to go is to configure your mta to do address rewriting. however, in pine you could add a custom header From: blabla - but this is not very clean. How do i change that in pine? I have cant find any information about that.. :( customer headers can be added in the pine menu (go to the main menu, then to setup, then config then search for custom, if you need help ^G will give you help on the highlighted option). however, i don't believe you can use custom headers to change the From: header. i tried this the other day and it didn't work. you can change the domain that is in the From: header by changing the Default Domain entry in the pine menu, but i don't believe there is any way to change the username other then to log in as a different user. adam.
Re: APM Disable
According to the only package I found on Debian's site concerning APM (apmd): The Debian default kernel does *not* contain APM support, because it causes problems on some computers. as of a few kernels ago in potato (at least a few months ago but i can't remember when) apm support *is* enabled but you have to turn it on with an option in your lilo.conf. i know this works cause i use it all the time on my laptop. to get apm add this to your lilo.conf (run lilo) and reboot: append=apm=on I don't remember how to change the screen saver settings, but a quick search of the Debian Mail archives should turn up something for you, as that's discussed fairly regularly on this list. check out the command xset. i believe that is what you want. adam.
Re: pop3 server w/ virtual domains
check out solidpop, there is a debian package of it as well (solid-pop3d). it supports virtual domains and a bunch of other useful stuff. adam. On Fri, 12 May 2000, Mario Olimpio de Menezes wrote: Hi, When using exim + virtual domains, is it possible to have a pop3 server also with virtual domains? I mean, if I have some users with same name under different domains, how to serve pop3 for them? Is it possible? Thanks Mario O.de MenezesMany are the plans in a man's heart, but IPEN-CNEN/SP is the Lord's purpose that prevails http://curiango.ipen.br/~mario Prov. 19.21 http://www.revistalinux.com.br -- Unsubscribe? mail -s unsubscribe [EMAIL PROTECTED] /dev/null
Re: XScreenSaver
I think WindowMaker has some kind of session manager, but if you can't figure out how to make that work, you can put this in ~/.xsession # We like a screensaver... if [ -f /usr/bin/X11/xscreensaver ]; then /usr/bin/X11/xscreensaver -no-splash fi if you run X by typing 'startx' rather then logging in through xdm you need to put the above lines in your ~/.xinitrc instead. adam.
maildir and pine ...
hey. i know that the debian versions of pine that are around are linked against libc-client4.7, and that libc-client has been patched to support maildir for uw-imap. does anyone know what is necessary to make pine support imap? and if it already does cause of the libc-client patches how do you specify it in the config file? thanks, adam.
Re: Procmail question-
Well there is a problem with this rule, it searches the entire email for
VBS. All i want it to search for is the attachment of a file name with
the extension of .vbs Okay can this be done? Im sure it can, just i can
not find any info on how to make it do this. Can someone purdy please
help me :)
procmail doesn't understand mime so there is no way to tell it delete
attachments which end with .vbs. however what you can do is use a rule
like the below one. we've been using this rule since the virus came out and
it's been working pretty well (caught almost 500 copies of it).
PATH=/bin:/usr/bin:/usr/local/bin
LOGFILE=/share/etc/procmail.log
:0:
* ^Subject: ILOVEYOU
/share/etc/ILOVEYOU
:0:
* .*name=.*\.vbs.*
/share/etc/ILOVEYOU
:0
* 5
{
:0 B:
* .*(name=.*\.vbs|[EMAIL PROTECTED]).*
/share/etc/ILOVEYOU
}
if you make /share/etc/ILOVEYOU a directory procmail will deliver each
message to a seperate file in that directory. the 5 means that for
messages which fail the above header check it only scans the first 50k of
the body for matching text.
adam.
can't get smtm to run
any body have this problem and no how to solve it?
heyzeus(larry)$ smtm
ERROR: Date::Manip unable to determine TimeZone.
Date::Manip::Date_TimeZone called at /usr/lib/perl5/Date/Manip.pm line 615
Date::Manip::Date_Init() called at /usr/lib/perl5/Date/Manip.pm line 1315
Date::Manip::ParseDate('today') called at /usr/bin/smtm line 68
it's not a permissions problem cause i tried running it with sudo and i get
the same thing.
thanks,
adam.
Re: [OT] VBS Script Summary (I love you)
If you have sendmail and you want to block this virus, you can just add the
following to your configurations:
HSubject: $CheckSubject
SCheckSubject
RILOVEYOU $#error $: 571 This message likely contains a virus.
You will of course also block any legitimate mail with that subject, but ...
You may wish to risk it depending on your situation.
for those that care here is what we applied to all our .mc files
(/etc/mail/sendmail.mc).
LOCAL_RULESETS
# to block the i love you virus.
HSubject: $Check_Subject
D{MPat}ILOVEYOU
D{MMsg}Blocked, may contain the i love you virus. More at:
http://www.europe.datafellows.com/v-descs/love.htm
#
SCheck_Subject
R${MPat} $* $#error $: 553 ${MMsg}
RRe: ${MPat} $* $#error $: 553 ${MMsg}
RFW: ${MPat} $* $#error $: 553 ${MMsg}
just put it at the end of your .mc file and run sendmailconfig and you
should be protected. make sure that the spaces seperating the left hand
side from the right hand side are tabs not spaces (ie. don't cut and paste
it and thing it'll be okay :-).
adam.
Re: mutt and courier-imapd
Adam just fyi there was a patch to courier imap to fix this Adam problem (and one with gnus) announced on freshmeat today. Where can I get this patch for Gnus? on freshmeat like i said. it's not a patch for gnus though, it's a patch to courier-imap to fix a compatibility problem with gnus. http://www.freshmeat.net/appindex/1999/10/28/941113147.html http://www.inter7.com/courierimap/ adam.
Re: mutt and courier-imapd
I couldn't see any patch file listed here... I did see one listed in http://www.debian.org/Bugs/db/63/63376.html, but doesn't it doesn't apply cleanly to courier-imap-0.31 (probably cutting and pasting from the web page messes it up). Where can I get a clean version of this patch? For now, I will try and request a copy of the bug report via mail. it doesn't take long. check freshmeat like i said. here is the announcement of the change: http://www.freshmeat.net/news/2000/04/30/957122794.html here is the change log which documents the change: http://www.inter7.com/courierimap/ChangeLog.txt so the version you need is 0.32beta1. and look according to freshmeat you can download that version at: http://www.inter7.com/courierimap/courier-imap-0.31.32pre1.tar.gz so don't even bother with the patch, just recompile the patched version. adam.
Re: multi line regex's in vi ...
that's useful, thanks. i've never used macro's in vi, i'll play with it. i need to check out wml as well as someone else suggested ;) adam. On Sat, 29 Apr 2000, Rick Younie wrote: On Sat, Apr 29, 2000, Adam Shand wrote: A two-liner is %s/^/p/ - add p to the start of each line %s/^p$// - remove any lines that contain only p nope won't work. it'll put a 'p ' at the beginning of every line which has text in it. thus this: Ah. Don't know how to do that with regex's but you can get it done with record/playback with Vim and Elvis. You probably already know this. qa - start recording to register a /^$ - go to first blank line cursor down insert and type P esc q - stop recording [EMAIL PROTECTED] - repeats the recorded keystrokes a bunch of times If you have multiple adjacent blank lines you'll need to squash them to one, :g/^$/,/./-j Gotta be an easier way though. Maybe one of the vi pros will drop in. Rick -- -- Unsubscribe? mail -s unsubscribe [EMAIL PROTECTED] /dev/null
Re: multi line regex's in vi ...
I'm no pro, but the following, without squashing works. And yes, I know that at the end of the file it might give an error. :g/^ *$/+1 s/^ *[^ ]/p/ that does indeed do the trick! now i just have to decipher the regex so i understand it. thanks! adam.
Re: mutt and courier-imapd
Thanks for tracking this down! Hopefully, it will be fixed in courier soon, but in the meantime, your patch works great! I've gone back to using courier again. just fyi there was a patch to courier imap to fix this problem (and one with gnus) announced on freshmeat today. adam.
Re: POP3 using SSH
This corresponds to the what the man page tells me to do. Using this exact setup, I get a parse error at user, which is the line following the above one. I don't know how to correct this. May someone show me their [working] config-file? here is my working config. the only thing i've changed is my password. -- set daemon 60 poll localhost port 1100 protocol pop3 uidl username larry password MyPass mda /usr/bin/procmail -d larry preconnect ssh -C -f -L 1100:localhost:110 calvino 'sleep 9' -- not i use procmail as my local delivery agent cause i found it worked a lot better that way then dumping to port 25. it also means i don't have to run a smtp daemon if i don't want to. you need to change calvino to be the name of your ssh host, and localhost to be the name of your mailhost (it can stay localhost if your ssh and mail host are the same). adam.
Re: multi line regex's in vi ...
So add p to any non-blank line? I'd like to know a one-liner for this too. You've got blank line with ^$ but how do you negate that? but what if a paragraph has more then one line. you have to detect the beginning of a new paragraph and then insert a 'p ' before the first line of text. A two-liner is %s/^/p/ - add p to the start of each line %s/^p$// - remove any lines that contain only p nope won't work. it'll put a 'p ' at the beginning of every line which has text in it. thus this: one lineladf aflkasd flaskdjf alskdfj alskdfja lskdjf alskdjf alsdkfj lasdkfj alkjdfalskjdf laskdfj laskdjf laksdjf alksjf ald lkadjflaksdjf laklj and the end of aldkfja ladkfj alksdjf oqieruoqiewjrlkdmflk adlf ladfj ladkf alkdjf lakd flaksdj flaksdfj. will become this: pone lineladf aflkasd flaskdjf alskdfj alskdfja lskdjf alskdjf alsdkfj plasdkfj alkjdfalskjdf laskdfj laskdjf laksdjf alksjf ald lkadjflaksdjf plaklj and the end of aldkfja ladkfj alksdjf oqieruoqiewjrlkdmflk adlf pladfj ladkf alkdjf lakd flaksdj flaksdfj. adam.
Re: multi line regex's in vi ...
while you can specify that a substitution take place on many lines (1,3s/// for lines 1-3, .,$s/// for lines here to end of file, or %s/// for lines all) VI is based on EX which is a line editor. yah, hence my question :) there may be some advanced voodoo mumbo-jumbo that will allow VIM (or ELVIS, another enhanced VI) to munge the double \n\n the way you want it to... that's what i wanted to know. i didn't think so but vim has lots of fancy mumbo jumbo in it :) try man wml for example (apt-get install wml if you don't have it)... cool, i'll check it out, thanks. adam.
reiserfs and debian ...
hi. i saw some articles here the other day about people using reiserfs. just a quick question. are the patches compatible with the patched debian kernel? does anyone know when a journaled filesystem (from what i've read reiserfs is the most mature one for linux so far) will be included in the default linux kernel (2.4?), or patched into the debian kernel? i can do it myself but it sure would be nice not to have to :) adam.
[OT] radius server that will forward to tacacs ...
does anyone know of a radius server that will forward authorization requests to a tacacs server? such a beast would make my life a lot easier in the near future. ideally what i would like to do is detect a realm either by username ([EMAIL PROTECTED]) or by dnis (number dialled to reach the nas device) and forward the auth request to a tacacs server via some sort of proxy. currently we run livingston radius and a customer that wants us to manage dialup pools for them run a tacacs server. we will convert them to radius in the long run but a proxy solution like the above would make the migration a lot easier. any other ideas? thanks, adam.
multi line regex's in vi ...
is there a way to match a pattern over more then one line in vi (i normally use vim)? i'm html formatting text documents and what i'd like to do is replace something like the below paragraphs: __ the first line of text, this is really boring, blah lah blh why do i care. html formatting text is really boring and vi saves me. the is a second line of text. __ with something like this __ p the first line of text, this is really boring, blah lah blh why do i care. html formatting text is really boring and vi saves me. p the is a second line of text. __ you can almost do this in vi with the command: :%s/^$/\rp / but it leaves the p on the line above (which of course works fine but offends my sense of neatness). is there a way to do multiline matching with vi/m or am i stuck with what i have. i would think that a command like the below one could do it, but vi seems to be line based not document based. :%s/^$^/\rp / thanks. adam.
silly gif/jpg - ascii art question.
hey. i friend wanted me to convert a picture he had into an ascii art image. the gimp has an option to export an image to AA format (which i assume is ascii art??) but it's greyed out. does anyone know what i have to do to enable this, i have the aalib stuff installed. if i am mistaken about the gimp export stuff, does anyone have another good program to do this? thanks, adam.
Re: crypto patch
you have to get the international kernal patch from either www.kerneli.org, or in the non-US section. Then you have to patch the kernel and recompile. with the new mellowing of usa crypto laws, is there any chance that the international kernel patch could be included in the default debian kernel? sure would be nice ... ipsec, s/wan, encrypted file systems oh my! adam.
Re: crypto patch
Probably not. Beside the crypto laws, there is also the DSFG that debian adheres to, and many of the encryption schemes have patents on them, thus makeing them non-free, and not in debian by default. oh yeah, i forgot about that ... still there are some that are patent unencumbered aren't there? If you're really hard core about security and encryption (and I'm going to be heretical here, but hey, I have to plug my home), try OpenBSD. Since it's main repository is in Canada, US crypto laws don't apply. I played with it a bit, but not enough to really get to know the advantages. Well, except for the ports. I wish GNU/Linux would have something like that. cd /ports/program. make. Automatic download, compilation, installation. No though required... yeah open bsd is nice, but i much prefer apt to the ports collection. before apt showed up i was almost tempted to switch to open/freebsd because the ports tree is so nice. the bummer about the ports tree is that can't clean up after itself as well as a binary package can, and my experience with freebsd is that the dependencies aren't handled nearly as well as debian handles them. and if you want to compile them there's always 'apt-get --compile source packagename'. if you haven't used it before here's how it works :) adam. heyzeus(larry)$ sudo apt-get --compile source portsentry Password: Reading Package Lists... Done Building Dependency Tree... Done Need to get 61.6kB of source archives. Get:1 http://http.us.debian.org woody/non-free portsentry 1.0-1.4 (dsc) [844B] Get:2 http://http.us.debian.org woody/non-free portsentry 1.0-1.4 (tar) [43.0kB] Get:3 http://http.us.debian.org woody/non-free portsentry 1.0-1.4 (diff) [17.7kB] Fetched 61.6kB in 1s (38.1kB/s) dpkg-source: extracting portsentry in portsentry-1.0 dpkg-buildpackage: source package is portsentry dpkg-buildpackage: source version is 1.0-1.4 dpkg-buildpackage: source maintainer is Guido Guenther (agx) [EMAIL PROTECTED] debian/rules clean DEB_BUILD_ARCH=i386 DEB_BUILD_GNU_CPU=i386 DEB_BUILD_GNU_SYSTEM=linux DEB_BUILD_GNU_TYPE=i386-linux DEB_HOST_ARCH=i386 DEB_HOST_GNU_CPU=i386 DEB_HOST_GNU_SYSTEM=linux DEB_HOST_GNU_TYPE=i386-linux dh_testdir dh_testroot rm -f build-stamp install-stamp # Add here commands to clean up after the build process. make -f Makefile clean make[1]: Entering directory `/tmp/portsentry-1.0' /bin/rm ./portsentry /bin/rm: cannot remove `./portsentry': No such file or directory make[1]: *** [clean] Error 1 make[1]: Leaving directory `/tmp/portsentry-1.0' make: [clean] Error 2 (ignored) dh_clean debian/rules build DEB_BUILD_ARCH=i386 DEB_BUILD_GNU_CPU=i386 DEB_BUILD_GNU_SYSTEM=linux DEB_BUILD_GNU_TYPE=i386-linux DEB_HOST_ARCH=i386 DEB_HOST_GNU_CPU=i386 DEB_HOST_GNU_SYSTEM=linux DEB_HOST_GNU_TYPE=i386-linux dh_testdir # Add here commands to compile the package. make -f Makefile debian-linux make[1]: Entering directory `/tmp/portsentry-1.0' Building for Debian GNU/Linux cc -O -Wall -DDEBIAN -DLINUX -DSUPPORT_STEALTH -o ./portsentry ./portsentry.c \ ./portsentry_io.c ./portsentry_util.c make[1]: Leaving directory `/tmp/portsentry-1.0' touch build-stamp debian/rules binary DEB_BUILD_ARCH=i386 DEB_BUILD_GNU_CPU=i386 DEB_BUILD_GNU_SYSTEM=linux DEB_BUILD_GNU_TYPE=i386-linux DEB_HOST_ARCH=i386 DEB_HOST_GNU_CPU=i386 DEB_HOST_GNU_SYSTEM=linux DEB_HOST_GNU_TYPE=i386-linux dh_testdir dh_testroot dh_clean -k dh_installdirs # Add here commands to install the package into debian/tmp. install portsentry `pwd`/debian/tmp/usr/sbin # install Debian specific stuff install --mode=644 portsentry.ignore.static `pwd`/debian/tmp/etc/portsentry install --mode=644 startup.conf `pwd`/debian/tmp/etc/portsentry install --mode=644 portsentry.conf.Debian `pwd`/debian/tmp/etc/portsentry/portsentry.conf install scripts/ppp/portsentry_ip-up.d `pwd`/debian/tmp/etc/ppp/ip-up.d/portsentry install scripts/ppp/portsentry_ip-down.d `pwd`/debian/tmp/etc/ppp/ip-down.d/portsentry install scripts/portsentry-* `pwd`/debian/tmp/usr/lib/portsentry touch install-stamp dh_testdir dh_testroot dh_installdebconf dh_installdocs ln -s CHANGES.gz `pwd`/debian/tmp/usr/share/doc/portsentry/changelog.gz dh_installexamples dh_installinit -udefaults 99 dh_installmanpages dh_installchangelogs dh_strip dh_compress dh_fixperms dh_suidregister dh_installdeb dh_shlibdeps dh_gencontrol dh_md5sums dh_builddeb dpkg-deb: building package `portsentry' in `../portsentry_1.0-1.4_i386.deb'. dpkg-genchanges -b dpkg-genchanges: binary-only upload - not including any source code dpkg-buildpackage: no source included in upload
Re: sendmail
I know this isn't the list for this, but I'm having some issues with a sendmail config. I'm trying to configure sendmail to forward *all* mail (incoming or outgoing) on a specific box to a different box (a mail server) but everything I've tried has the following debug output: you need to do one of three things, which depends on exactly how you want to do it. * enable a smart host, this means that it will deal with mail that it considers local (in the .cw file) but everything else gets routed to the smart host. you can do this with the DS (i think) command in the .cf file or by adding the below line to your /etc/mail/sendmail.mc and then running sendmailconfig define(`SMART_HOT', `esmtp:smarthost.domain.com')dnl * you can do the same thing if you have mailertable support built in by adding this line to your /etc/mail/mailertable file (and running makemap on it): .esmtp:smarthost.domain.com * and finally you can configure you sendmail as a null client (which is what it looks like you've done). i've never bothered with the null client setting cause i haven't needed it, but it should work. send to [EMAIL PROTECTED]: you should be redirecting to a host not an email address. are you? if you are redirecting to a host why is it trying to send it to a specific address? mailer 3 (nullclient), host `paladin.srn.com' user `spierson99', ruser `null' next=41667338, alias 0, uid 0, gid 0 flags=80006008QPRIMARY,QPINGONFAILURE,QPINGONDELAY,QRCPTOK owner=(none), home=(none), fullname=(none) orcpt=(none), statmta=(none), status=(none) rstatus=(none) specificity=0, statdate=Wed Dec 31 16:00:00 1969 or a slightly different output, but the results are always the same: [EMAIL PROTECTED] unknown i would assume that this is a legit error, the user doesn't exist. the question is why is the mail going to this user. Would anybody here give me a hand with this? Please respond to me privately to keep the list clean. i'll keep it public so people can see the answer, maybe someone will benifit :) adam.
Re: sendmail
i have no idea. is this dealt with in a Ruleset or with a command/option? i've set the following in the .cf file: you should configure it to be a null client using the /etc/mail/sendmail.mc file. the feature you want is described at: http://www.sendmail.org/m4/features.html one thing to be aware of is that a null client is a special configuration. you can't make any other configuration changes, it's a special, bare bones config. for example it's impossible to have any anti-spam rules in a null client config so if this is going to be a machine which is accessible by the world you probably don't want to use it. use one of the other mechanisms i described. # hub host (to which all mail is sent) DHpaladin.srn.com # `smart' host DSpaladin.srn.com # who I masquerade as (null for no masquerading) (see also $=M) DMsrn.com masquerading and smart host configs WILL NOT work in a null client config. i don't think this will be causing your problem but it could be confusing sendmail into doing something whacky. i thought perhaps this message was because [EMAIL PROTECTED] is a non-existent user on the target (paladin.srn.com). unless you've told your sendmail that hotmail.com is a local domain (by putting it into your /etc/mail/sendmail.cw file or a line into /etc/mail/mailertable) this is not the case. if you have done that then you need to remove that. adam.
Re: sendmail
that's the idea. i don't want to deal with anything. this host will simply be a box where people in an office will send mail out (which should be relayed to the actual mail server) so there's no need to do anti-spam business on this machine. how did you configure it to be a null client? did you just add the host to the null client line in the .cf file? if so you need to do more then that. you should use the sendmail.mc file to configure sendmail the way you want and then run sendmailconfig to generate the correct .cf file. haven't touched the .cw file or the mailertable files. i don't know then. adam.
Re: hang trying to sync hardware clock ...
It is very unlikely, but... a typo in the hwclock script could prevent the next message from appearing, yet the script is still completing, in which case the problem is in the script(s) being executed after hwclock. If the above yields nothing then check /etc/rcS.d and look at the script that come after Sxxhwclock when you list that dir. Whatever the outcome of this experiment is, you should report the problem to the debian-boot mailing list. well it's certainly something with the hwclock.sh script ... i booted into emergency mode off the rescue cd, and tried to run the hwclock script and got the same hang running: /etc/init.d# ./hwclock.sh show locked the box up completely. that should not happen. so i booted again and moved hwclock.sh to hwclock.sh-broken and it booted up properly. i'll play a bit more and then report it to someone once i have an idea what the problem actually is. The new ext2 features means you can't mount partitions created by the install when running a 2.0.x kernel, not a problem unless you try to downgrade to a 2.0.x kernel later on or still have slink running and try to mount potato partitions. The size of the HD should not make any difference. i know but when faced with the bizarre start eliminating the unknown and unfamiliar. I don't recall seeing any report of this problem go by on debian-boot, but you would have to check on that list (archives or ask) or with the bug tracking system (it should be under boot-floppies because dpkg -S /etc/init.d/hwclock doesn't return any package name). i'll check it out, thanks for the reply. adam.
Re: hang trying to sync hardware clock ...
Which would indicate that /sbin/hwclock is hanging the system. yah, but why? Doh, probably because there is no file named /etc/init.d/hwclock. hwclock.sh and hwclock are both in the util-linux package. not sure i follow this ... if i need util-linux why wouldn't the install have installed it? adam.
Re: sendmail
i found a file called clientproto.mc with the distribution and i modified it to say: okay. # This the prototype for a null client -- that is, a client that # does nothing except forward all mail to a mail hub. IT IS NOT # USABLE AS IS!!! divert(0)dnl VERSIONID(`@(#)clientproto.mc 8.12 (Berkeley) 5/19/98') OSTYPE(mpeix) is this a debian box? if it is then it needs to say OSTYPE(debian), i have no idea what mpeix is. FEATURE(nocanonify) FEATURE(nullclient, paladin.srn.com) after that i ran the m4 utility to create the .cf file i'm using. if it's a debian box, copy clientproto.mc to /etc/mail/sendmail.mc and then run /usr/sbin/sendmailconfig and you *should* be good to go. it didn't work quite right (as you saw before) and so i monkey'd around with it a bit with no luck. the generated .cf file (generated from the prototype above) has a masq and hub host defined so i assume it can't hurt to masq with a null client. any other thoughts? it might have them defined but they should be commented out. or if they aren't commented out they should have a null value. adam.
Re: apache_1.3.9-12_i386.deb
[Sun Apr 9 18:16:43 2000] [error] [client 194.145.136.134] Premature end of scr ipt headers: /home/andricik/public_html/works/test.cgi what happens when you run the program on the command line? what about if you first su to the user the web server runs as? (you may have to assign the web server userid a shell first) When I put test.cgi in /var/www or directly in public_html it is OK. Even in subdirectory it's OK. But if test.cgi is in the directory symlinked (like the works directory above) it fails. it sounds like it's a problem with following symlinks. one possibility is that the default apache config has change from allowing the following of symlinks to denying it. check out the directives followsymlinks and followsymlinksifownermatch (that might be wrong but their names are similar to that). When I renamed public_html to Html (which I used to use for years without any problems) it does not work at all, does not matter if the directory is symlinked or not. hrm, hard to say without actually looking, but that sounds like a permissions problem. Downgrading to apache_1.3.9-10_i386.deb. helped. I don't know if -11 has also the same problem. Any idea? keep a copy of your old configs, do the upgrade and then diff them and see if anything enlightening shows up. otherwise i'd hit the apache web site and look at the changelog too see what has changed between those two vesrions. apache is normally pretty good about listing incompatibilities between versions. adam.
Re: Mutt questions (Was: Looking for a good mail program)
Thing is there is an unneeded step in there. Exim doesn't need a delivery agent (procmail) not does it need a filter program (procmail) since both are build in. One could just use Exim for both of those so the path would be fetchmail - exim - mutt. or the other way around, fetchmail doesn't need exim and can deliver directly to procmail (this is what i do). i prefer this because then i don't need to run an mta on my laptop. my ~/.fetchmailrc looks like this: heyzeus(larry)$ cat ~/.fetchmailrc set daemon 60 poll localhost port 1100 protocol pop3 uidl username larry password MyPass mda /usr/bin/procmail -d larry preconnect ssh -C -f -L 1100:mailhost:110 sshhost 'sleep 9' this also tunnels through ssh which is nice cause you don't send your password in plain text, but it works better if you have passwordless ssh setup. adam.
hang trying to sync hardware clock ...
hey. i'm hoping someone knows the answer to this. i'm trying to do a fresh potato install and i've had this problem no matter what i try and do. i get to the point where i reboot off of the hard drive, everything boots up as normal until this point: Starting portmap daemon: portmap. Setting the System Clock using the Hardware Clock as reference... and then it hangs forever (i even left it over night and it never made it past this). i told it to set the hardware clock to GMT, am using the 2.2 features of ext2 and have a large ide drive (13.6 gb) which are the only things i've done differently from any other install. is this a known bug? any help appreciated, thanks. adam.
Re: sslwrap: how do I use it?
I have installed sslwrap, but I don't understand how do I actually _use_ it. I want to encrypt a [ftp,pop,etc...] connection between my computer and a remote machine. The remote machine has sslwrap installed too. What client do I use to connect, say, to the remote pop3 server, but with encription? not a direct answer to your question (cause i have never used sslwrap) but here are a couple other options. i use ssh to wrap my sessions. with a command like this: # ssh -C -f -L 1100:pophost:110 sshhost you setup a pop tunnel. pop host is the host you pop your mail off of, and ssh host is the closest host to it that you have an ssh account on (they can be the same but they aren't always). i use this in fetchmail with the below config but just set whatever your pop client is to pop mail from localhost on port 1100. heyzeus(larry)$ cat .fetchmailrc set daemon 60 poll localhost port 1100 protocol pop3 uidl username larry password MyPass mda /usr/bin/procmail -d larry preconnect ssh -C -f -L 1100:mail:110 calvino 'sleep 9' you can do a similar thing with ftp with a line like this, the only catch is to remember that you have to put your ftp client into passive mode for it to work (pretty much all ftp clients support this): # ssh -C -f -L 2100:ftphost:110 sshhost this is obviously a bit of a pain if you need to connect to a bunch of different servers so what i started doing was using a program called hsftp (you can find it on freshmeat). it's cool, basically it's an ftp client that doesn't really use ftp, it uses ssh/scp from an ftp like interface. unfortunately it's still pretty simple (doesn't support command line history or directly caching like ncftp but i'm hoping it will improve). eg. heyzeus(larry)$ hsftp badger.alaska.net Welcome to hsftp. Current remote directory is /home/larry Current local directory is /home/larry Use '?' or 'help' to get a list of commands. hsftp ? put -- upload file(s)|directory(s) to remote host get -- download file(s)|directory(s) from remote host mput, mget -- same as 'put', 'get' dir, ls -- list remote directory ldir-- list local directory cd -- change remote directory lcd -- change local directory pwd -- print working directories chmod -- 'chmod' in remote directory mkdir -- 'mkdir' in remote directory del, rm -- 'rm'in remote directory debug -- be more verbose ?, help -- this help message quit, bye -- quit the program hsftp ls bin etc mail hsftp ls -l total 3 drwxr-xr-x 2 root staff1024 Oct 8 1999 bin drwxr-xr-x 2 larrystaff1024 Mar 6 03:50 etc drwx-- 2 larrystaff1024 Mar 5 14:04 mail hsftp adam.
Re: problems w/ proftpd
i am getting an error now after updating my kernel the ftpd deamon says: - Fatal: Group: Unknown group 'root': therefore the service doesn't start any suggestion before i hose down the system?? do you have a group called root in your /etc/group file? i'll bet $$ that you don't (or that your /etc/group isn't readable by the user that proftpd runs as). heyzeus(larry)$ grep root /etc/group root:x:0:larry i'd be concerned about how it got removed though, that's a bad thing. adam.
Re: ssh loading at startup
The usual way to run sshd is via inetd, though. So maybe Beavis is asking the wrong question, maybe ssh into his box already works without any additional effort. If not, look in /etc/inetd.conf for a line mentioning ssh, perhaps there's something wrong with it. err, not true. and unless you have a very unusual setup you probably don't want to run ssh from inetd.conf. because everytime it starts it has to generate the session keys it can be quite slow to start if it has to fork from inetd. see the man page for details: -i Specifies that sshd is being run from inetd. Sshd is normally not run from inetd because it needs to generate the server key before it can respond to the client, and this may take tens of seconds. Clients would have to wait too long if the key was regenerated every time. However, with small key sizes (e.g. 512) using sshd from inetd may be fea sible. adam.
Re: Debian kernel VMware
May be there are some parameters I _must_ turn on in the kernel to run VMware? or may be I must install respective kernel-headers package? you need to have the real time clock enabled. other then that i don't think there is anything that is required (the default debian kernel used to provide it). i haven't played with vmware for quite a while but if you didn't have the rtc enabled vmware would just print out an error message when you tried to run it. adam.
Re: Help About Pine
Hi I want to add a code to my signature if is there any one who knows how I can do it please tell me for example I want to attach todays date or random test to my signature .. i haven't done this but it should be relatively trivial to use the 'sending-filter' feature of pine. write a perl script which takes the contents of your composed message, tacks on your dynamic signiture file and outputs the contents back to pine. this is how all the pgp/gpg filters for pine work so i know it's possible to do this way, i've just never done it so i'm not sure exactly what pine's requirements are and what it provides as input for the script and expects as output. adam.
kudos to makers of potato boot disks.
i just used to one to restore my system and they are *VERY* nice. all the in built help for various ways they can be used is very helpfull. thanks! adam.
Re: Limiting user access in ftp, ssh, samba, etc... 'passwords'
You can tell proftpd to allow logins without a valid shell. It can also set a default root directory for users so they can't see anything above that point. Is this what is called chroot? it's technically not a chroot jail since in a chroot jail even the daemon can't get outside the jail so you have to make copies of all libraries/ binaries etc that the user will need while in the jail. that being said though, yes, it's basically a chroot jail. adam.
problem mounting large partition ...
i'm sure this is a faq but i can't find the answer so i'm hoping someone here can give me a quick pointer to the right direction. i just got done installing slink on a 13Gb maxtor drive. my /var (where i like to keep everything) is just over 10Gb. when i boot it hangs on the message: /dev/hda3 on /var/ type ext2 (rw) i'm assuming that this is a problem with large partitions on 2.0.36 kernels but i can't get the damn thing mounted to upgrade the kernel. pointers or suggestions would be much appreciated. thanks, adam.
Re: Limiting user access in ftp, ssh, samba, etc... 'passwords'
I want to have easy freedom in limiting user access. I have killed telnetd, and only sshd. I want to allow some users access through ssh, some through ftpd, and some through samba. How can I turn off user access through ssh, but keep their account, and allow them access through ftp? Can I allow users access to shares through samba, and allow them to ftp in, but not ssh or telnet? i'm not sure what you're options are for samba as i haven't used it for a long time ... for ssh you have two ways. give them a shell which is useless (/bin/false or /bin/true or make your own, eg. /usr/local/bin/nossh). then when they log in they will be immediately logged out again. the other option is to use the AllowGroups option in the sshd_config file. create a group called ssh, and add it to the AllowGroups option and then only people in the ssh group will be able to log in. for ftp pretty much the only way to do this is via their shell. ftp will only allow people to login whose shell is listed in /etc/shells. give users you don't want to have ftp access a shell like /bin/false or /usr/local/bin/noftp and make sure that shell never gets added to /etc/shells. more advanced ftp daemons like proftpd or ncftpd may have other options allowing you to do this via groups like ssh but i've never investigated it. adam.
Re: Good Imap mail server?
I think I want to install an imap mail server on my linux server. Can someone recommend a good one that is debianized? Here is why I want one. I'm using several different computers on my home network, and want to be able to read my any of my e-mail from any computer here. I believe this is what imap will allow, along with allowing folders to be made on the server. it sounds like you want imap. the real benifit of imap though is that it allows you to read your mail from multiple clients (regardless of whether they are on the same computer or not) and keep your folder contents sync'd between all clients. eg you delete a message on one of them and next time you connect with another client that change will propagate. there are only three imap daemons that have been debianized (that i know of). uw-imap, courrier imap and cyrus. the uw one is pretty much the standard but has had a pretty scary history as far as remote root exploits go. it's been a lot better for a long time but i'm still wary. it works though and has been stable for a long time. courrier imap i've never run. it supports maildir (a good thing imho), is under very active delevopment and i've heard a lot of good things about it but it's still relatively new and probably isn't as stable. the granddaddy of them all is cyrus. it's blazingly fast, actively developed and very stable (i haven't run it though). however it uses a custom mail store format (similar to maildir but not compatible) and it behaves quite differently then other mail programs (as far as i am aware). adam.
floppy doesn't work since upgrading to 2.2
ever since i upgraded to 2.2 i've had very sporadic sucess using my floppy disk on my thinkpad 390. sometimes it seems to kinda work but most of the time it doesn't work at all. i'm currently trying to create a boot floppy for a potato resuce disk and getting this error: heyzeus(larry)$ sudo dd if=/tmp/rescue.bin of=/dev/fd0 bs=512 dd: /dev/fd0: Device not configured and i get this (over and over in the messages file): Mar 25 18:12:21 heyzeus kernel: floppy0: disk absent or changed during operation Mar 25 18:12:21 heyzeus kernel: end_request: I/O error, dev 02:00 (floppy), sector 2876 does anyone have any ideas? adam.
Re: floppy doesn't work since upgrading to 2.2 [solved]
sorry to follow up my own post but i finally figured out what i'd changed since this last worked. i was incorrect it wasn't the 2.2 kernels, it was that shortly after upgrading to 2.2 i added floppy=thinkpad to my lilo.conf (cause i have a thinkpad). i removed this and rebooted and it's all working the way it should be. that'll teach me for trying to fix a problem i hadn't had yet. sigh adam. On Sat, 25 Mar 2000, Adam Shand wrote: ever since i upgraded to 2.2 i've had very sporadic sucess using my floppy disk on my thinkpad 390. sometimes it seems to kinda work but most of the time it doesn't work at all. i'm currently trying to create a boot floppy for a potato resuce disk and getting this error: heyzeus(larry)$ sudo dd if=/tmp/rescue.bin of=/dev/fd0 bs=512 dd: /dev/fd0: Device not configured and i get this (over and over in the messages file): Mar 25 18:12:21 heyzeus kernel: floppy0: disk absent or changed during operation Mar 25 18:12:21 heyzeus kernel: end_request: I/O error, dev 02:00 (floppy), sector 2876 does anyone have any ideas? adam. -- Unsubscribe? mail -s unsubscribe [EMAIL PROTECTED] /dev/null
Re: problem mounting large partition ...
I won't ask why, but you should probably follow the fhs standard or you might break things. which is? I don't recall what the limit is, but with a large partition that may contain many small files, you're likely to run out of inodes. And that's no fun. I'd suggest breaking up var into smaller partitions: /var, /var/spool, /var/lib and /var/cache for instance. Larger partitions also have longer fsck times. i've had bad luck in the past with non primary partitions. i try and avoid them when i can. i like to keep user stuff (home dirs, web pages etc) out of /usr so i normally make a large /var and link stuff to it. You might try booting into single user mode, then see if you can mount the partition -- there may be some other reason why it hangs. For instance, if you used a new version of mkfs you might have made a filesystem that is incompatible with the older kernels. i've done a stock slink install and it hangs on the re-boot before you get to deselect. i don't think that is the problem. Also, their may be an issue with addressing 8GB drives -- does the kernel report the ``correct'' geometry at boot (C/H/S)? it didn't until i disabled the drive in bios and then cfdisk found it and reported it with the correct size. i'm gonna try an install with the potato disks and see if that helps. sigh ... back to floppies :) adam.
Re: SMTP password
a deb of 8.10 is now in the unstable archive and the upgrade from 8.9.3 is relatively painless. has it been compilied against the sasl libraries? i haven't seen a lot of doco on implementing SMTP AUTH but am very interested in this! the only really good docs are on claus' home page that was the url in my previous message. adam.
Re: SMTP password
There were no other way. Were can I get sendmail 8.10 and the sasl patches? there isn't a debian sendmail 8.10 package yet but there is the sasl packages (libsasl7 and libsasl-dev). download sendmail source from www.sendmail.org and there is some good info on how to make it all work in the docs in the tar ball and at www.sendmail.net. also there is good info on Claus' home page. http://www.sendmail.org/~ca/email/auth.html hope that helps, adam.
Re: alternatives to gnotepad+
I have long used gnotepad+ also, but lately, due to the reasons you have offered, I have used gxedit. It seems to be about at the point of functionality that gnotepad+ used to be when I thought it was so handy. You would have to try it yourself to see if it suited you. Gedit seems like it would be really nice and trim, but I've often had trouble with segfaults etc. while trying to use it. I'll keep trying, but for now I use gxedit. hrm, it's nice and has more (and more useful) features then gnotepad+ but it can't open more then one document at once which is my main requirement. i'll check out gedit as well. thanks though. adam.
Re: alternatives to gnotepad+
There's a plethora of editors out there. Ever tried XEmacs? XEmacs has pull-down menus, so you don't really have to memorize all the key combinations, and most importantly has very nice syntax highlighting features. emacs is way more then i need. all i want is a simple gui based text editor which will allow me to have more then one file open at a time inside it. emacs is *drastic* overkill for this :) Nedit is also worth mentioning if you need something simple. I personally like Vim. nedit would work but it won't allow multiple files to be open within one window. gnotepad+ and gedit are exactly what i want but buggy enough to not be very annoying to use (and c ain't my forte so i can't use the source unfortunately :-( ). adam.
Re: alternatives to gnotepad+
VIM is pretty easy to use ... and gVIM, the graphical interface to VIM is rather nice looking I think. yeah ... i can do that, but it's not quite what i had in mind. i did however just check the gedit homepage and it turns out that the debian package is quite out of date and that there are a lot of bugs fixed between the debian version and the current version ... so i'm compiling and hopefully if it's stable it will provide what i need. thanks all. adam.
Re: SMTP password
I have a problem: my ISP ask me for username and password to send e-mail by smtp. With Netscape is easy to configure it, but I don't know how to do that with smail or sendmail. Can somebody help me? the problem is: smtp has NO password at all (AFAIK). the point is, you have to do POP before SMTP to authorize yourself, which netscape does normally. actually with sendmail 8.10 and various other patches now available for other mta's smtp auth is starting to spread. it is possible that you are being asked for a password, though it's unusual that they will insist on one unless you are considered *OUTSIDE* of their ip space and thus get caught by their anti-relay rules. my first suggestion would be to do one of these things: * get your isp to add your ip address to their access list so you can send mail through their server without requiring authentication. * don't use your isp's mail servers, you obviously have a linux box just send mail directly from it (may be impossible if your isp filters port 25 traffic at their router but not many do). if neither of these are possible you're other options is to setup sendmail 8.10 with the sasl patches to talk smtp auth to their server. this is not a trivial solution though and i would recommend agaist it (simply because it's complicated) unless there really no other way. when using an mta (e.g. sendmail) you have to do a fetchmail before sending any e-mail. on one box i configured i simply put a fetchmail in the ppp-up script, that is, fetchmail is called directly after dialing in. a problem arises, if you stay on-line that long, that your authorization times out - then you would have to fetchmail before sending e-mail again. but i thing it is a good idea to run fetchmail as a daemon as long as you are on-line, so it checks for mail and holds your smpt-authorization open every, say 10, minutes. this will work if your isp supports pop before smtp, but if you are being prompted for a password that is most likely not the problem. adam.
alternatives to gnotepad+
hey. i've been a loyal user of gnotepad+ for quite a while but it seems to be getting buggier and buggier (and more and more features that i don't need). what i like about it is that it's one editor program with a bunch of tabs for multiple open documents so you can switch between them. i typically keep between 3 and 5 documents open and it's great but recently it's been causing more problems then it's worth and keeps eating the bottom 20% or so of my files (not good). so ... does anyone else out there know of an alternative? the simpler the better so long as it has multiple tabls (or a similar feature) to easily switch between files. thanks, adam.
Re: ethernet on laptop
When installing on my laptop, after the network setup I was asked which interface and selected PCMCIA not ethernet. you did it correctly. The PCMCIA card appears to be working OK but when I run ifconfig I get eth0 unknown interface errors. what do you mean it's working okay? if you type ifconfig -a do you see an eth0 interface? is it active? Is ifconfig eth0 netmask...etc. the correct command for a PCMCIA card. yes it should be. i sounds like either your pcmcia isn't configured correctly and thus isn't loading your network settings, you're card isn't supported under linux (or the version of pcmcia you're running) or pcmcia simply isn't running. you shouldn't need to configure your pcmcia stuff manually. check out your /etc/pcmcia/network.opts file. fill in the config there and then just run /etc/init.d/pcmcia start and see if that works any better. adam.
