Linux-Misc Digest #406, Volume #26 Mon, 27 Nov 00 09:13:02 EST
Contents:
new kernel: Out of Memory? (X)
Re: Where can I get a pre-built POSE for Linux ? (Stuart Bell)
Re: Can't mount or dd nonstandard floppy (Stefano Ghirlanda)
Does Apache support M$ ASP? (YY Lee)
Re: ipchains vs. iptables for firewalls?? (Mike Dowling)
Re: reporting wrong info? (Jean-David Beyer)
Re: I don't understand my password encoding (Jean-David Beyer)
Re: new kernel: Out of Memory? (Udo Wolter)
Re: Grub set up? ("philo")
Re: simple alias question (Sebastian Hans)
Re: Can't mount or dd nonstandard floppy ("John W. Krahn")
Re: What is a "software USB modem"? (Andrew Purugganan)
Re: GNOME Screensaver ? (Andrew Purugganan)
Re: new kernel: Out of Memory? (Silvan Kaiser)
Re: Where can I get a pre-built POSE for Linux ? (Peter da Silva)
R: Does Apache support M$ ASP? ("Umberto Nicoletti")
Re: Packet sniffer? (John English)
Re: brooktree BT848 capture card ("Anson Ho")
Re: brooktree BT848 capture card ([EMAIL PROTECTED])
Re: Help on rescuing my linux os on my PC ([EMAIL PROTECTED])
Re: Library Question ([EMAIL PROTECTED])
Re: ACL's i Linux filesystems, where is the discussion ([EMAIL PROTECTED])
----------------------------------------------------------------------------
From: X <[EMAIL PROTECTED]>
Subject: new kernel: Out of Memory?
Date: Mon, 27 Nov 2000 11:15:14 +0100
Hello,
i've a problem running self compiled kernels. When starting up the
kernel loads and halts with the message "Out of Memory!", afterwards the
system ist halted. This happes right away at startup wehn uncompressing
the kernelimage (Uncompressing .......).
I've no idea where this comes from, make zlilo output says kernel size
is about 410KB (i've tried dozens of configs in the last two days), is
this too large?
As a note, kernels from my SuSE Distribution run well, no problemss with
them. However i need to apply a small patch to my ethernet driver and
therefore i started to make my own kernel (could modify the module only
but if i'm already on the way....).
Can anybody give me a hint about the reason for this problem?
bye
Silvan
------------------------------
From: [EMAIL PROTECTED] (Stuart Bell)
Crossposted-To:
comp.sys.palmtops.pilot,alt.comp.sys.palmtops.pilot,comp.os.linux.development,comp.os.linux.development.apps
Subject: Re: Where can I get a pre-built POSE for Linux ?
Date: Mon, 27 Nov 2000 10:51:29 +0000
Arctic Storm <[EMAIL PROTECTED]> wrote:
> childish babble
As opposed to your self-indulgent techno-geek babble that flies in the
face of UseNet ettiquette? I think most people would prefer my kind;
you're the immature one who can't admit when he's wrong.
--
Macaddict at Tesco dot net:
Looking for a slot-load iMac service manual!
------------------------------
From: Stefano Ghirlanda <[EMAIL PROTECTED]>
Crossposted-To: alt.os.linux,alt.os.linux.slackware
Subject: Re: Can't mount or dd nonstandard floppy
Date: 27 Nov 2000 11:53:16 +0100
"Tim Allen, www.timallen.org" <[EMAIL PROTECTED]> writes:
> I have a stack of floppies from a (now defunct) Smith Corona wordprocessor.
> A writer friend desperately needs the files on them. I can't figure out how
> to mount the floppies, or even to sucessfully dd them. Help! My absolutely
> non-techy buddy has his life's work on these floppies, and I can't let him
> down. I'm on SlackWare 4.0.
Hi Tim,
after all you tried I don't have much to say. Anyway I have three
small suggestions which might do something useful:
1) try skip=2048 to start reading past the point causing trouble
2) try sdd instead of dd, I found it to be more robust at times:
ftp://ftp.fokus.gmd.de/pub/unix/sdd/sdd-1.22.tar.gz
3) if you can't figure out how to read the files, try
"dd if=filename | strings"
Good luck
--
Stefano
------------------------------
From: YY Lee <[EMAIL PROTECTED]>
Subject: Does Apache support M$ ASP?
Date: Mon, 27 Nov 2000 02:54:50 -0800
If I query what site a Web site is running and sez:
... runs Apache/1.3.14 (Unix) mod_perl/1.24_01 PHP/4.0.3pl1
FrontPage/4.0.4.3 on Linux
Does this mean that ASP is supported? If not how will I replace my M$
IIS to support ASP?
------------------------------
From: [EMAIL PROTECTED] (Mike Dowling)
Crossposted-To: comp.os.linux.security
Subject: Re: ipchains vs. iptables for firewalls??
Date: 27 Nov 2000 11:09:51 GMT
On Mon, 27 Nov 2000 09:44:25 GMT, Johan Kullstam <[EMAIL PROTECTED]> wrote:
>[EMAIL PROTECTED] (Patrick Schaaf) writes:
>
>> Johan Kullstam <[EMAIL PROTECTED]> writes:
>>
>> Nice. What did the developers / maintainers say to your problem
>> when you reported it?
I'm not on that list, and probably would not be competent to find the
cause or the problem anyway.
>are other people experiencing problems with smp and iptables?
No! It works like a dream for me.
Cheers,
Mike
--
My email address [EMAIL PROTECTED] above is a valid email
address. It is a mail alias. Once spammed, the alias is deleted, and
the integer 'N' incremented. Currently, mike[37,38] are valid. If
email to mikeN bounces, try mikeN+1.
------------------------------
From: Jean-David Beyer <[EMAIL PROTECTED]>
Subject: Re: reporting wrong info?
Date: Mon, 27 Nov 2000 06:49:46 -0500
Jason Wagner wrote:
>
> hey all,
>
> i have a dual cpu sun machine with 256mb ram running rh 6.2. if i
> configure the system so that not much of anything at all is running,
> coming off a clean boot, top reports 209mb in use! uptime reports .16 .12
> .17 when only root is logged in and just sitting at a prompt.
Sounds normal to me.
>
> i've got a pair of 100mhz cpus in there, 256mb ram, and barely anything
> running on the system, yet it behaves as though i'm doing some serious
> work.
How so?
>
> is there anything i can do about this? is the memory in use being
> incorrectly reported?
Probably not. Linux uses memory as it sees fit, and makes no attempt
to keep it free. If you run the top command, it will show you how
the memory is being used. Chances are that it is being used for
buffers and cache. It gives these spaces back only if it finds
something that needs it, so normally it should report that most of
your memory is being used.
> starting x and using things like gtop and xosview
> show the same thing... massive resources in use with not much happening on
> the system at all.
>
> conversly, i have a p75 with 48mb that has nearly 50% of resources
> available coming off a clean boot, and that with sendmail, apache, etc
> started. ( rh7.0 )
>
> i'm about to scrap the whole thing and go back to solaris, which would
> truly suck because i *know* linux should be orders of magnitude faster on
> this older/weaker hardware...
>
> any ideas?
>
> thanks!
--
.~. Jean-David Beyer Registered Linux User 85642.
/V\ Registered Machine 73926.
/( )\ Shrewsbury, New Jersey
^^-^^ 6:45am up 1 day, 14:13, 3 users, load average: 2.02, 2.06, 2.07
------------------------------
From: Jean-David Beyer <[EMAIL PROTECTED]>
Subject: Re: I don't understand my password encoding
Date: Mon, 27 Nov 2000 06:54:52 -0500
Alex Hart wrote:
>
> In my passwd file I see this:
>
> seif:$1$PpyX5YbW$Kd2cg7iBLKiwnU7be5H110:501:500:Erik
> Sert:/home/seif:/bin/bash
Good idea to enable shadow passwords. I could now apply password
cracking software and probably figure out yours.
What used to be done, and perhaps still is, is that they took a
standard string, that was once a bunch of spaces (6? 8?) and encrypted
them with your password. The resulting encrypted string was stored in
your /etc/password file. While this is a many to few mapping, it is
exceedingly difficult to determine the password from the encrypted
value of the standard string. Furthermore, the same standard string
and password can be encrypted in, IIRC, 4096 different ways to make
this more difficult.
But the reason to use shadow passwords is because /etc/passwd must be
publically readable, and because of this, a cracker can download the
file and crack it at his leisure. By using shadow passwords, your
encrypted password stuff is kept in another file that is readable only
by the super-user.
>
> what kind of encoding is this for the password. At 34 characters it's
> not plain crypt. I thought maybe it was MD5, but I was unable to
> reproduce this string with the Perl MD5 module. Can someone please tell
> me how I can verify a user's password against this string, and how I can
> know which encoding mechanism to use. Not all the entries in my passwd
> file look like this. Some of the passwords are encoded with crypt, and I
> know how to verify those.
>
> Thanks in advance.
> --
>
> - Alex Hart
>
> $j="592888088758319859281631592858792919873179698955";
> $p="push\@_,";$c="chop(\$_)";$_="$p$p($c.$c)+19;eval;
> +".$j;eval;%_=map{chr}reverse@_;foreach(sort+keys%_){print$_{$_}}
--
.~. Jean-David Beyer Registered Linux User 85642.
/V\ Registered Machine 73926.
/( )\ Shrewsbury, New Jersey
^^-^^ 6:50am up 1 day, 14:18, 3 users, load average: 2.07, 2.06, 2.07
------------------------------
From: Udo Wolter <[EMAIL PROTECTED]>
Subject: Re: new kernel: Out of Memory?
Date: 27 Nov 2000 11:40:57 GMT
X <[EMAIL PROTECTED]> wrote:
> i've a problem running self compiled kernels. When starting up the
> kernel loads and halts with the message "Out of Memory!", afterwards the
> system ist halted. This happes right away at startup wehn uncompressing
> the kernelimage (Uncompressing .......).
> I've no idea where this comes from, make zlilo output says kernel size
> is about 410KB (i've tried dozens of configs in the last two days), is
> this too large?
Hm, as zlilo (only compressed instead of gzipped/bzipped) it should even run
with 410KB. Anyway, much better would be a make bzImage or make
bzlilo. This should work.
Bye,
Udo
--
[EMAIL PROTECTED]
system engineer innominate AG
the linux architects
tel: +49-30-308806-84 fax: -698 http://www.innominate.com
------------------------------
From: "philo" <[EMAIL PROTECTED]>
Subject: Re: Grub set up?
Date: Mon, 27 Nov 2000 06:47:51 -0600
Follow up:
i've "solved"my problem temporarily by dual booting os/2
and linux on a 2 gig drive...
i'll probably soon, set up another drive where i can experiment a bit
until i get it right...
and test my configuration on a floppy
--
Philo
website : www.plazaearth.com/philo
dos win lin os/2 cp/m nde beos
------------------------------
From: Sebastian Hans <[EMAIL PROTECTED]>
Subject: Re: simple alias question
Date: Mon, 27 Nov 2000 14:19:54 +0100
Floyd Davidson wrote:
>
> Another alias you might consider is the command alias for bash.
> That is the kind that goes into ~/.bashrc and can invoke a long
> command line with a single short command. For example, you might
> have this in your ~/.bashrc file
>
> alias ts='telnet somebox.somehost.com'
>
> And from that time on you can just enter "ts" instead of the
> entire command line. If you do that often, "ts" is a good
> name. Try to use one letter alias for things you do *very*
> often, two letter commands for things done often, three letters
> for common commands, and four or more for things that you'll
> never remember the name from one time to the next unless it
> says exactly what it is.
I'd like to add this:
There is no way for a bash alias to accept command line parameters.
If you want to say something like "dosomethingwith something", you can
create a function like this:
function dosomethingwith {
# command line paramteres are available as $1, $2 ... so you can do
# very complicated stuff here
}
HTH
seb
--
-------------------=====#####OOOOOOOO#####=====----c---c----------
sebastian hans - [EMAIL PROTECTED] `\O/' don't panic
student of comp sci - technical university of munich \-^-/ ...just RUN
i'm a .signature virus! copy me into your ~/.signature to help me spread
------------------------------
From: "John W. Krahn" <[EMAIL PROTECTED]>
Crossposted-To: alt.os.linux,alt.os.linux.slackware
Subject: Re: Can't mount or dd nonstandard floppy
Date: Mon, 27 Nov 2000 13:20:59 GMT
"Tim Allen, www.timallen.org" wrote:
>
> I have a stack of floppies from a (now defunct) Smith Corona wordprocessor.
> A writer friend desperately needs the files on them. I can't figure out how
> to mount the floppies, or even to sucessfully dd them. Help! My absolutely
> non-techy buddy has his life's work on these floppies, and I can't let him
> down. I'm on SlackWare 4.0.
I would suggest that you (or your buddy) get SpinRite from Gibson
Research Corp. http://grc.com/spinrite.htm It is probably the best DOS
disk repair utility available. My second choice would be Norton
Utilities but it is not nearly as good as SpinRite.
HTH
John
------------------------------
From: [EMAIL PROTECTED] (Andrew Purugganan)
Subject: Re: What is a "software USB modem"?
Date: 27 Nov 2000 13:12:29 GMT
Lam Dang ([EMAIL PROTECTED]) wrote:
[ I just bought an AOpenFM56-USB modem for a
[ song at a local computer fair. Its describes
[ itself as an "external software USB modem."
[ Which software? Executed by which CPU?
I believe the term is used to apply to winmodems, where the
pentium/whatever chip does all the work that the other kind used to do.
By 'other' I mean REAL modems that are controller-driven, work in any
other OS, not plug-and-pray
If the AOpen website says it could run under DOS maybe you have a chance...
--
jazz
Registered linux user no. 164098 +--+--+--+ Litestep user no. 386
Doesn't it bother you, that we have to search for intelligent life
--- OUT THERE??
------------------------------
From: [EMAIL PROTECTED] (Andrew Purugganan)
Subject: Re: GNOME Screensaver ?
Date: 27 Nov 2000 13:19:22 GMT
Keith Leite ([EMAIL PROTECTED]) wrote:
[ I have tried to start the GNOME screensaver and for some reason it does
[ not show on the screen .... If I go into the
[ KDE area and start KDE's screensaver .... no problem .....
[ Is there some I can check with the GNOME area ???? I have already been
[ to the control panel .....
to start troubleshooting, set the time really low, like 1 minute for the
screensaver to activate
After one minute, get out of X. See what error messages appear, esp. the
ones that are screensaver-related. Post those mesages here so we can take
it one step further
If you usually boot your Linbox to a GUI logon you may have to set your
init runlevel to 3 (I use linuxconf to set this) to boot into console
mode. Logon and startx
--
jazz
Registered linux user no. 164098 +--+--+--+ Litestep user no. 386
Doesn't it bother you, that we have to search for intelligent life
--- OUT THERE??
------------------------------
From: Silvan Kaiser <[EMAIL PROTECTED]>
Subject: Re: new kernel: Out of Memory?
Date: Mon, 27 Nov 2000 14:29:03 +0100
Udo Wolter wrote:
> Hm, as zlilo (only compressed instead of gzipped/bzipped) it should even run
> with 410KB. Anyway, much better would be a make bzImage or make
> bzlilo. This should work.
Mmh, yep, bzlilo did the job, thanx.
However the kernel image isn't that smaller (2KB) than my last one.
Now i'll go on to the 'real' kernel problems... aha, kernel panic, here
we are...
bye
Silvan
------------------------------
From: [EMAIL PROTECTED] (Peter da Silva)
Crossposted-To:
comp.sys.palmtops.pilot,alt.comp.sys.palmtops.pilot,comp.os.linux.development,comp.os.linux.development.apps
Subject: Re: Where can I get a pre-built POSE for Linux ?
Date: 27 Nov 2000 13:20:38 GMT
Children, children, stop fighting!
Look, the bloke made a mistake, but geeze, why are you all jumping on him
like a bunch of wannabe Alpha Geeks. We're not all born knowing all possible
Usenet etiquette... if you asked him nicely to not dump such huge files next
time I'll bet he would be more than happy to listen.
--
Rev. Peter da Silva, ULC. WWFD?
"Be conservative in what you generate, and liberal in what you accept"
-- Matthew 10:16 (l.trans)
------------------------------
From: "Umberto Nicoletti" <[EMAIL PROTECTED]>
Subject: R: Does Apache support M$ ASP?
Date: Mon, 27 Nov 2000 14:32:35 +0100
There is a perl module for apache that will run asp.
Try to search for APACHE::ASP or ASP on the apache web site.
Or check out chilisoft commercial asp engine for UNIX-LiNUX.
YY Lee <[EMAIL PROTECTED]> wrote in message
[EMAIL PROTECTED]
> If I query what site a Web site is running and sez:
>
> ... runs Apache/1.3.14 (Unix) mod_perl/1.24_01 PHP/4.0.3pl1
> FrontPage/4.0.4.3 on Linux
>
> Does this mean that ASP is supported? If not how will I replace my M$
> IIS to support ASP?
>
------------------------------
From: John English <[EMAIL PROTECTED]>
Subject: Re: Packet sniffer?
Date: Mon, 27 Nov 2000 12:54:54 +0000
Paul Floyd wrote:
>
> On Fri, 24 Nov 2000 13:49:52 +0000, John English <[EMAIL PROTECTED]> wrote:
> >Can anyone recommend a utility to let me snoop network packets under
> >Linux? I'm trying to solve a problem on my home network (machine A
> >can ping machine B but B can't ping A). Having replaced cables and
> >network cards, I'm completely baffled and I need something low-level
> >to find out what's actually going across the network...
>
> tcpdump
Thanks to Paul and the others who responded. I'm getting a bit further
forward as a result; using tcpdump, I can see ARP packets on the Linux
box when I ping from the Windows box, but no echo requests after that.
Going the other way, the Windows box responds to the ARP packets but
then doesn't respond to the echo requests. I presume this means there's
something wrong with the TCP stack at the Windows end?
This is what I see on the Linux box using tcpdump:
========================
10.0.0.2 : ping 10.0.0.1
========================
22:57:24.598406 eth0 B arp who-has 10.0.0.1 tell 10.0.0.2
22:57:24.598454 eth0 > arp reply 10.0.0.1 (xx:xx:xx:xx:xx:xx) is-at xx:xx:xx:xx:xx:xx
(yy:yy:yy:yy:yy:yy)
========================
10.0.0.1 : ping 10.0.0.2
========================
22:57:37.279679 eth0 > 10.0.0.1 > 10.0.0.2: icmp: echo request
22:57:38.275894 eth0 > 10.0.0.1 > 10.0.0.2: icmp: echo request
22:57:39.275883 eth0 > 10.0.0.1 > 10.0.0.2: icmp: echo request
22:57:40.275886 eth0 > 10.0.0.1 > 10.0.0.2: icmp: echo request
22:57:41.275880 eth0 > 10.0.0.1 > 10.0.0.2: icmp: echo request
22:57:42.275858 eth0 > arp who-has 10.0.0.2 tell 10.0.0.1 (xx:xx:xx:xx:xx:xx)
22:57:42.276177 eth0 < arp reply 10.0.0.2 is-at yy:yy:yy:yy:yy:yy (xx:xx:xx:xx:xx:xx)
Can anyone see what the problem might be here?
=================================================================
John English | mailto:[EMAIL PROTECTED]
Senior Lecturer | http://www.it.bton.ac.uk/staff/je
Dept. of Computing | ** NON-PROFIT CD FOR CS STUDENTS **
University of Brighton | -- see http://burks.bton.ac.uk
=================================================================
------------------------------
From: "Anson Ho" <[EMAIL PROTECTED]>
Subject: Re: brooktree BT848 capture card
Date: Mon, 27 Nov 2000 21:21:45 +0800
Hi
Thanks for you reply. But I'm a newbie, would you please give more
details. I have tried to find more information about BTTV on the net. They
also mention video4linux. What is video4linux? should I install it?
Anson
> On Mon, 27 Nov 2000, Anson Ho wrote:
>
> U shoul use bttv from the kernel an for example xawtv
> > Hi,
> >
> > I have just installed a BT848 capture card in my PC. When I startup
my
> > RH6.2, my card is found on 'Checking new hardware'. Now I want to know
that
> > what driver & software I need to install so that I can play video
capturing
> > and video conferecing.
> >
> >
> > Thanks
> >
> > Anson
> >
> >
> >
>
------------------------------
From: [EMAIL PROTECTED]
Subject: Re: brooktree BT848 capture card
Date: Mon, 27 Nov 2000 14:01:02 GMT
Anson Ho <[EMAIL PROTECTED]> wrote:
> Hi,
> I have just installed a BT848 capture card in my PC. When I startup my
> RH6.2, my card is found on 'Checking new hardware'. Now I want to know that
> what driver & software I need to install so that I can play video capturing
> and video conferecing.
> Thanks
> Anson
These are the kernel modules I currently have loaded for my Brooktree card:
bttv, i2c-core, i2c-algo-bit, msp3400, tvaudio, tuner
(Yours might vary slightly, but you'll at least need bttv, which should
properly load whatever other modules you need).
I currently use xawtv to view video, MainActor to capture video, and I've never
gotten any video conferencing software to work under Linux.
For more info on V4L, check out:
http://roadrunner.swansea.linux.org.uk/v4l.shtml
Adam
------------------------------
From: [EMAIL PROTECTED]
Subject: Re: Help on rescuing my linux os on my PC
Crossposted-To: comp.os.linux.setup
Date: Mon, 27 Nov 2000 13:28:21 +0000
Jianxin Wang <[EMAIL PROTECTED]> did eloquently scribble:
> Hi , I have Linux mandrak 7.0 installed on my PC. Yestoday, I
> accidentally changed the configuration file (XF86Setup), and afterward,
> I can not start the X server. The os constantly tries to start the
> server, and left the screen blank most of the time. Is there any fix for
> it?
Yes. You can force linux to boot to a specific run time at boot up so that
it skips the X startup altogether.
Type 'linux 2' at the LILO prompt.
I guess that I may have to use the flopy boot disk to start the os
> or reinstall the os, but something suprizing happened after I tried to
> put the flopy into the drive: lilo ignores the flopy disk and still
> tries to start the os from the hard drive(I am sure the flopy drive is
> woring properly) !
Is the BIOS set up to boot from floppy?
It doesn't matter anyway, as you don't need to go to any drastic measures
such as reinstalling for something as simple as that.
I guess that I may need to change the CMOS settings,
> so I rebooted the machine and hitted the DEL key to invoke the CMOS
> setup, I got another surprise: I can not access the CMOS setup screen!
> the computer askes me to "Please enter current password:"!
You can return the BIOS to factory settings in most machines by turning off,
removing the battery for a few seconds and turning back on...
It looks like someone might have been messing with your machine, or it was
set up like that when you got it and you've never looked at the BIOS
before...
> I have never setup any password using the option of the setup superuser
> password in the CMOS, I had no trouble before in accessing the CMOS
> setup. What had happed here? What should I do to enable the CMOS access
> and rescue my linux os? Please help!
See above.
:)
--
______________________________________________________________________________
| [EMAIL PROTECTED] | |
|Andrew Halliwell BSc(hons)| "The day Microsoft makes something that doesn't |
| in | suck is probably the day they start making |
| Computer science | vacuum cleaners" - Ernst Jan Plugge |
==============================================================================
------------------------------
From: [EMAIL PROTECTED]
Subject: Re: Library Question
Date: Mon, 27 Nov 2000 13:21:49 +0000
Leo Cambilargiu <[EMAIL PROTECTED]> did eloquently scribble:
> Hello all:
> What is the difference between a static library and a linking one?
Upon compilation, a static lib is incorporated into the executable.
A dynamic lib exists as an independent entity and is only linked when the
program is started. This saves memory as the library can be shared between
many different programs rather than having 6 different programs all with the
same code hogging valuable resources...
> How do you declare which one to use?
GCC by default links dynamically...
I think the flag --static is used to force it to use static linking.
> How are linking librarys different from modules?
Modules are used by the kernel. They are effectively shared libs for the
kernel and contain code used for device drivers, file system types and
different executable formats...
--
| |What to do if you find yourself stuck in a crack|
| [EMAIL PROTECTED] |in the ground beneath a giant boulder, which you|
| |can't move, with no hope of rescue. |
|Andrew Halliwell BSc(hons)|Consider how lucky you are that life has been |
| in |good to you so far... |
| Computer Science | -The BOOK, Hitch-hiker's guide to the galaxy.|
------------------------------
From: [EMAIL PROTECTED]
Subject: Re: ACL's i Linux filesystems, where is the discussion
Date: Mon, 27 Nov 2000 14:05:14 GMT
[EMAIL PROTECTED] writes:
> I have seen much information on new file systems as ext3, xfs,
> ReiserFS etc. There is a lot of talk out there about big file
> systems and journaling but where is the discussion on ACL's in
> linux.
It's out there; I agree that there's not as much "talk;" the problem
is that building a generally usable ACL system is _much_ harder than
building a usable new filesystem.
> I think that to have a manageable file system we need ACL's added to
> files and directories. I think that this is very important but I do
> not see any indication of any advances in this field. Do YOU know
> why.
The problem is that there just haven't been advances in the design of
ACL systems in quite some time now.
> Even in small systems with maybe less the 50 users, you have to
> group users in a ways that is logical and, to some extent, resembles
> the real world. Without ACL's this is not really possible. Well it
> can be done of cause, but things easily get to complicated to
> manage.
_WITH_ ACLs, this gets too complicated to manage, because simply
"having ACLs" does not mean that you have a set of policy to manage
those ACLs.
You might want to take a look at the following Usenix research paper:
<http://www.usenix.org/publications/login/1998-6/acls.html>
> I would appreciate any information on this subject or any
> information on where to get it.
The more recent work has been going into the area of "capabilities"
which provides a somewhat orthogonal scheme for describing what system
components are to be permitted to do.
That is more where the Linux-related efforts have been going...
--
(concatenate 'string "cbbrowne" "@acm.org")
<http://www.ntlug.org/~cbbrowne/security.html>
Hail to the sun god, he sure is a fun god, Ra, Ra, Ra!!
------------------------------
** FOR YOUR REFERENCE **
The service address, to which questions about the list itself and requests
to be added to or deleted from it should be directed, is:
Internet: [EMAIL PROTECTED]
You can send mail to the entire list (and comp.os.linux.misc) via:
Internet: [EMAIL PROTECTED]
Linux may be obtained via one of these FTP sites:
ftp.funet.fi pub/Linux
tsx-11.mit.edu pub/linux
sunsite.unc.edu pub/Linux
End of Linux-Misc Digest
******************************
