Linux-Misc Digest #445, Volume #26 Sat, 2 Dec 00 12:13:02 EST
Contents:
Re: POS application? ([EMAIL PROTECTED])
Cannot telnet nor ftp to server ("Rick Goh")
Re: Unknown Ethernet Packet (Francois Labreque)
Streaming Windows Media (Bruce Varney)
Re: linux upgrade suggestions????? (John Hasler)
Re: Gnome and KDE (Robert Kiesling)
su (to root) ([EMAIL PROTECTED])
Re: E-mail client ([EMAIL PROTECTED])
Re: hdparm and such (Dances With Crows)
How to uninstall tar.gz's ("Flej Ling")
printing utilities ("T. Kalaris")
Re: su (to root) (Dances With Crows)
Re: How to uninstall tar.gz's (Grigory Klyuchnikov)
Re: printing utilities (Robert Kiesling)
Re: E-mail client (Robert Kiesling)
Re: Audio Devices Permissions (Jose Juan Iglesias)
Re: Mapping <Tab> key in vi or vim (Steve D. Perkins)
Re: su (to root) (John Wingate)
test link bandwidth (Beggar)
Which driver to use ("WME")
wiretap users (maher abedib)
bind: Address already in use ("Rick Goh")
Re: linux upgrade suggestions????? (Edward M. Collins)
Re: help newbie with configuring squid ("Flej Ling")
Newbie qu: assign variable ("Lion")
Re: su (to root) (Thomas Zajic)
----------------------------------------------------------------------------
From: [EMAIL PROTECTED]
Subject: Re: POS application?
Crossposted-To: gnu.misc.discuss
Date: Sat, 02 Dec 2000 14:10:45 GMT
ag <[EMAIL PROTECTED]> writes:
> I'm trying to find GPL POS software and am not having much luck.
> Any ideas or suggestions where I might look? Thanks.
There hasn't been much in the way of _GPLed_ POS software; the sorts
of businesses that use such tend to be pretty conservative/"stuffy" in
outlook, and reluctant to participate in the "if I use this code, I
must share changes" ethic that the GPL mandates.
There are several POS packages under other sorts of licenses, mostly
under more traditional "commercial/proprietary" arrangements. You
might look at the URL below to look for some such...
> If this post is off-topic for this NG, I apologise.
Not inappropriate...
--
(concatenate 'string "cbbrowne" "@hex.net")
<http://www.ntlug.org/~cbbrowne/finances.html>
E.V.A., pod 5, launching...
------------------------------
From: "Rick Goh" <[EMAIL PROTECTED]>
Subject: Cannot telnet nor ftp to server
Date: Sat, 2 Dec 2000 22:19:21 +0800
I cannot telnet nor FTP to my server: linux kernel 2.2.17.
i am running IP MASQ (i wonder if this would affect).
Error msg:
"Connection closed by foreign host."
Note: Yes, i have inet started. i even started xinetd. But just can't work.
If have come across this same problem, please reply..
Regards.
------------------------------
From: Francois Labreque <[EMAIL PROTECTED]>
Subject: Re: Unknown Ethernet Packet
Date: Sat, 02 Dec 2000 09:28:49 -0500
[EMAIL PROTECTED] wrote:
>
> ETHERNET: Destination address : FFFFFFFFFFFF
> ETHERNET: Source address : 020100000000
Can't you locate the source mac? Look at your switches' databases it
should tell you which port it came from. Then "politely" ask the
offender to stop doing it.
--
Francois Labreque | It is by caffeine alone I set my mind in motion, it
flabreque | is by the beans of Java that thoughts acquire speed,
@ | the hands acquire shaking, the shaking becomes a
videotron.ca | warning, it is by caffeine alone I set my mind in
| motion.
- Stolen from Badger's .sig file
------------------------------
Date: Sat, 02 Dec 2000 09:48:06 -0500
From: Bruce Varney <[EMAIL PROTECTED]>
Reply-To: [EMAIL PROTECTED]
Subject: Streaming Windows Media
Is it possible to play a Windows Media stream on a Linux box?
Bruce
------------------------------
From: John Hasler <[EMAIL PROTECTED]>
Subject: Re: linux upgrade suggestions?????
Date: Sat, 2 Dec 2000 13:58:38 GMT
rwex writes:
> Obviously with my past security issues, any safer kernels out there?
The kernel rarely has anything to do with security problems. Most result
from improper configuration and most of the rest from running daemons with
known exploits (despite fixed versions being available).
> I am sure you are saying well if you want to be secure don't use X,...
I'm not.
> ...any suggestions?
www.debian.org.
BTW what's with this "issues" stuff? What's wrong with the word "problem"?
--
John Hasler
[EMAIL PROTECTED]
Dancing Horse Hill
Elmwood, Wisconsin
------------------------------
Subject: Re: Gnome and KDE
From: Robert Kiesling <[EMAIL PROTECTED]>
Date: Sat, 02 Dec 2000 15:04:22 GMT
"Garry Knight" <[EMAIL PROTECTED]> writes:
> In article <[EMAIL PROTECTED]> "Robert Kiesling"
> <[EMAIL PROTECTED]> wrote:
>
> >> In article <[EMAIL PROTECTED]> "Robert Kiesling"
> >> <[EMAIL PROTECTED]> wrote:
> >>
> >> > I think you're all seriously missing the point here. X is a
> >> > client/server GUI.
>
> > I think the accuracy is justified, especially because X seemingly
> > labels things backward from other systems. I didn't quite infer that
> > point the previous messages.... If I draw inferences, I like to have
> > more background than the information that was there.
>
> And you're not a relative newcomer to Linux, as was the OP. Sometimes
> it's easier to point someone to a simple book like "The Joy of X", and
> sometimes it's easier to just give them a simpler model to work from
> until they themselves go looking for more.
Geez, what am I supposed to say? That "I'd like to thank the
(Starfleet) Academy?" <g> I actually learned X from the man pages, and
now use "The X Toolkit Cookbook" as my reference. I don't recall when
I abandoned text consoles altogether. The GUI makes life much
simpler, after the initial set-up. I don't think there's a much
easier-to-understand conceptual model around than client/server.
Maybe the layered model that people use to describe networks. I'd
rather take the trouble to get it right the first time. I hate having
people come back around and claim I mislead them.
--
Robert Kiesling
Linux FAQ Maintainer
[EMAIL PROTECTED]
http://www.mainmatter.com/linux-faq/toc.html http://www.mainmatter.com/
---
Tired of spam? Please forward messages to [EMAIL PROTECTED]
------------------------------
From: [EMAIL PROTECTED]
Subject: su (to root)
Date: Sat, 02 Dec 2000 15:13:37 GMT
is there any way to set up the system so that only
*one specific user* can SU to root?
thanks.
Sent via Deja.com http://www.deja.com/
Before you buy.
------------------------------
From: [EMAIL PROTECTED]
Date: Sat, 02 Dec 2000 10:28:22 -0500
Subject: Re: E-mail client
In <vYiV5.61$[EMAIL PROTECTED]>, on 11/30/00
at 02:29 AM, [EMAIL PROTECTED] said:
>[EMAIL PROTECTED] wrote:
>> Trying to install it, I get an error when I run it about not finding a
>> mailbox. However, if I create a mailbox using mkdir, it complains that
>[...]
>> How do I create a mailbox?
>touch /var/spool/mail/<your user name>
>chgrp mail /var/spool/mail/<your user name>
>Or, assuming fetchmail and sendmail (or equivalent, I like postfix) are
>running, just send yourself some email from another account, the mailox
>will then be created.
Sorry for the delay in responding -- I got busy (no, not _that_ way!) --
and thank you for the tip; that worked (of course).
Is this just Unix/Linux wisdom (or common sense), or could I have found it
in a HOWTO or man page somewhere? Within limits of time I have, I had done
some perusing but without result.
No need to answer that but please accept my gratitude.
F.
===========================================================
Felmon John Davis
Union College / Schenectady, NY
os/2 - ma kauft koi katz em sack
===========================================================
------------------------------
From: [EMAIL PROTECTED] (Dances With Crows)
Subject: Re: hdparm and such
Date: 2 Dec 2000 15:32:29 GMT
Reply-To: [EMAIL PROTECTED]
On Sat, 02 Dec 2000 07:11:43 GMT, John Hanson wrote:
>I would think that you will always have activity on this drive from
>/proc and it wouldn't be able to shutdown. And, upon viewing the
>directory listing in /proc, I found a 268M (that's Megabytes) kcore
>file in it. Anyone know what that is? The file, like most of the
>others, is dated with the current date and time.
[snip]
>actually ram used and 12M of swap used. Could kcore be a measurement
>of ram in use?
/proc is a virtual filesystem. Nothing in /proc actually exists on
disk; the files there represent data structures in the kernel.
/proc/kcore is the contents of your system RAM, and is used mainly for
kernel debugging.
Also, the drive activity you're seeing is generally a result of the
update daemon and/or the syslog daemon. When your boot script starts
update, make the period very long, and you'll avoid constant drive
activity at the expense of having your partitions trashed if the power
gets cut. (Normally, when the power gets cut, you'll be able to recover
most everything with an e2fsck. If buffers haven't been flushed for 30
minutes, the filesystem will be in a very inconsistent state, and you'll
most likely lose a lot of stuff.)
--
Matt G|There is no Darkness in Eternity/But only Light too dim for us to see
Brainbench MVP for Linux Admin / Workin' in a code mine, hittin' Ctrl-Alt
http://www.brainbench.com / Workin' in a code mine, whoops!
=============================/ I hit a seg fault....
------------------------------
From: "Flej Ling" <[EMAIL PROTECTED]>
Subject: How to uninstall tar.gz's
Date: Sat, 2 Dec 2000 07:35:27 -0800
I have been setting up Apache, SSL, PHP, GD, MM, libjpeg, wu-ftp, ipchains,
ipmasqadm, bison, number4, squid, sqmgrlog, samba, smb_auth, etc, etc, etc,
etc, etc, etc.
90% of these I have installed from *.tar.gz files, and 10% from RPM's. I
have Redhat Linux 6.0 installed.
For RPM's I know how to unistall. But for *.tar.gz packages how can you
completely eradicate them without having to hunt for all the various files
that have been installed all over the place?
Thanks
Flej Ling
------------------------------
From: "T. Kalaris" <[EMAIL PROTECTED]>
Subject: printing utilities
Date: Sat, 2 Dec 2000 08:20:58 -0700
In the DOS world I used to use a print utility called 4print (or 4prnt?)
which would print an ASCII file sideways on a sheet of paper with two pages
of text side-by-side. The printer I used was an HP LaserJet. Anyway, does
such a utility exist in the Linux/unix world?
Thanks in advance.
------------------------------
From: [EMAIL PROTECTED] (Dances With Crows)
Subject: Re: su (to root)
Date: 2 Dec 2000 15:39:29 GMT
Reply-To: [EMAIL PROTECTED]
On Sat, 02 Dec 2000 15:13:37 GMT, [EMAIL PROTECTED] wrote:
>is there any way to set up the system so that only
>*one specific user* can SU to root?
chown root.wheel /bin/su
chmod 710 /bin/su
edit /etc/group so that that one specific user is the only member of the
"wheel" group
The info page for su used to contain a rant (by RMS?) about sysadmins
who do this particular thing, and why it's a bad idea from the normal
users' point of view.
--
Matt G|There is no Darkness in Eternity/But only Light too dim for us to see
Brainbench MVP for Linux Admin / Workin' in a code mine, hittin' Ctrl-Alt
http://www.brainbench.com / Workin' in a code mine, whoops!
=============================/ I hit a seg fault....
------------------------------
Date: Sat, 02 Dec 2000 18:47:57 +0300
From: Grigory Klyuchnikov <[EMAIL PROTECTED]>
Subject: Re: How to uninstall tar.gz's
Flej Ling wrote:
>
> I have been setting up Apache, SSL, PHP, GD, MM, libjpeg, wu-ftp, ipchains,
> ipmasqadm, bison, number4, squid, sqmgrlog, samba, smb_auth, etc, etc, etc,
> etc, etc, etc.
>
> 90% of these I have installed from *.tar.gz files, and 10% from RPM's. I
> have Redhat Linux 6.0 installed.
>
> For RPM's I know how to unistall. But for *.tar.gz packages how can you
> completely eradicate them without having to hunt for all the various files
> that have been installed all over the place?
>
> Thanks
> Flej Ling
I think at last item of instalation procedure you type
% make install
this procedure copy all needed files into file tree of your file system.
Usually it's /usr/local/bin, ...sbin, ...include, ...lib, etc if
you don't set --prefix option for ./configure program at first step.
Now you can see Makefiles of each tar.gz packages you installed and
find all dirs where files of the package are located and delete them
by hands :)
Grigory.
------------------------------
Subject: Re: printing utilities
From: Robert Kiesling <[EMAIL PROTECTED]>
Date: Sat, 02 Dec 2000 15:50:46 GMT
"T. Kalaris" <[EMAIL PROTECTED]> writes:
> In the DOS world I used to use a print utility called 4print (or 4prnt?)
> which would print an ASCII file sideways on a sheet of paper with two pages
> of text side-by-side. The printer I used was an HP LaserJet. Anyway, does
> such a utility exist in the Linux/unix world?
There are several in the psutils package. Ghostscript and a2ps
can provide the Postscript conversion.
--
Robert Kiesling
Linux FAQ Maintainer
[EMAIL PROTECTED]
http://www.mainmatter.com/linux-faq/toc.html http://www.mainmatter.com/
---
Tired of spam? Please forward messages to [EMAIL PROTECTED]
------------------------------
Subject: Re: E-mail client
From: Robert Kiesling <[EMAIL PROTECTED]>
Date: Sat, 02 Dec 2000 15:56:29 GMT
[EMAIL PROTECTED] writes:
> In <vYiV5.61$[EMAIL PROTECTED]>, on 11/30/00
> at 02:29 AM, [EMAIL PROTECTED] said:
>
> >[EMAIL PROTECTED] wrote:
> >> Trying to install it, I get an error when I run it about not finding a
> >> mailbox. However, if I create a mailbox using mkdir, it complains that
> >[...]
> >> How do I create a mailbox?
>
> >touch /var/spool/mail/<your user name>
> >chgrp mail /var/spool/mail/<your user name>
>
> >Or, assuming fetchmail and sendmail (or equivalent, I like postfix) are
> >running, just send yourself some email from another account, the mailox
> >will then be created.
>
> Sorry for the delay in responding -- I got busy (no, not _that_ way!) --
> and thank you for the tip; that worked (of course).
>
> Is this just Unix/Linux wisdom (or common sense), or could I have found it
> in a HOWTO or man page somewhere? Within limits of time I have, I had done
> some perusing but without result.
There are some FAQ's listed in the Linux FAQ, at the URL below (the
one on the left) that provide Internet-compliant information. Most
former DOS users don't have even a tiny conception of the flexibility
of e-mail software, or where to look for detailed information. They'll
provide a nice overview.
--
Robert Kiesling
Linux FAQ Maintainer
[EMAIL PROTECTED]
http://www.mainmatter.com/linux-faq/toc.html http://www.mainmatter.com/
---
Tired of spam? Please forward messages to [EMAIL PROTECTED]
------------------------------
From: Jose Juan Iglesias <[EMAIL PROTECTED]>
Subject: Re: Audio Devices Permissions
Date: Sat, 02 Dec 2000 16:04:27 GMT
Martin Bock wrote:
> Jose Juan Iglesias <[EMAIL PROTECTED]> wrote:
> >Hi all,
> >
> >recently I've changed my Linux from RH6.2 to Debian 2.2r0 "Potato". I've
> >noticed that only root can use sound when I try with a normal user to
> >execute XMMS. I changed, as root, /dev/dsp permissions allowing
> >everybody to write in it. And I was able to open the audio deveice with
> >the user and I can listen to my favourite songs with XMMS, but I still
> >can't change the volume. Only root can do that.
> >
> >When I used RH6.2, every user could change audio volume!
> >
> Hi,
>
> in Debian exists a group 'audio' with permissions to audio-related stuff.
> Login as root, add your username via
>
> 'adduser username audio'
>
> to this group and let it roll.
>
> --
>
> Martin God is dead!............Nietzsche
> Nietzsche is dead!......God
> URL: www.martin-bock.de Nietzsche is God!.......The Dead
Hi,
now I can adjust the volume but up to the last volume level set by root. For
example, I've logged in as root and set XMMS volume at 0%. Then I've logged
in as normal user and I haven't been able to raise it at all.
And I've noticed a bit of noise when I adjust volume as normal user.
------------------------------
From: Steve D. Perkins <[EMAIL PROTECTED]>
Subject: Re: Mapping <Tab> key in vi or vim
Date: Sat, 02 Dec 2000 16:13:59 GMT
> The O'Reilly vi book notes that when you change the tabstop like this,
> the tabs will still get expanded using an 8 character tab stop in
every
> other UNIX program. Don't know if this makes a difference for your
> prog, but thought it worth a mention.
Well, the idea is that by literally using spaces instead of tabstop
characters (mapped as if you had hit the space bar three times instead
of the Tab key once)... then the indentation would be the same no
matter which editor you're using or which platform you're using it
under.
It turns out that the 'expandtab' option did exactly what I was looking
for... I just wish I could find a workaround that could also be used on
plain vi (that's a vim-only extention).
Sent via Deja.com http://www.deja.com/
Before you buy.
------------------------------
From: John Wingate <[EMAIL PROTECTED]>
Subject: Re: su (to root)
Date: Sat, 02 Dec 2000 16:19:55 GMT
Dances With Crows <[EMAIL PROTECTED]> wrote:
> On Sat, 02 Dec 2000 15:13:37 GMT, [EMAIL PROTECTED] wrote:
>>is there any way to set up the system so that only
>>*one specific user* can SU to root?
> chown root.wheel /bin/su
> chmod 710 /bin/su
> edit /etc/group so that that one specific user is the only member of the
> "wheel" group
Make that "chmod 4710 /bin/su". If it's not SUID, only root can switch
user, and no non-root user at all can su to root.
--
John Wingate Language serves three functions. One is to
[EMAIL PROTECTED] communicate ideas, one is to conceal ideas, and
the third is to conceal the absence of ideas.
--Otto Jespersen
------------------------------
From: Beggar <[EMAIL PROTECTED]>
Crossposted-To: comp.unix.solaris,comp.os.linux.networking
Subject: test link bandwidth
Date: Sun, 03 Dec 2000 00:27:44 +0800
Hi all,
Is there any tools or method that can test the
links speed/bandwidth. Since I am writting a program
and need to find the best path to the destination.
using ping can only get the latency, but what I need is
the bandwidth of the path.
Anyone can help? Thanks !
please reply cc to: [EMAIL PROTECTED]
Hei
------------------------------
From: "WME" <[EMAIL PROTECTED]>
Crossposted-To: alt.os.linux.slackware
Subject: Which driver to use
Date: Sat, 02 Dec 2000 16:40:58 GMT
Hi,
Which driver should I use for the DLink DFE-530 TX.
I tried enabling rtl8139 and the 'via rhine' in the /etc/rc.d/rc.module
file, but no luck.
I had another post for that, but still didn't get the right answer. Sorry.
Slackware 7
Thanks
Please post only
------------------------------
From: maher abedib <[EMAIL PROTECTED]>
Subject: wiretap users
Date: Sun, 03 Dec 2000 00:40:41 +0800
Hi there,
I'm using linux(redhat 6.1) as my linux server(LAN).Most of my users are
using linux.Is there any program or utilities like wiretap users?
For example, I suspect user2 is hanging around to get root password.Can
I see what he's doing 'live' and is it possible for me to see only the
history of the user2?
thank you very much.
regards,
maher
------------------------------
From: "Rick Goh" <[EMAIL PROTECTED]>
Crossposted-To: comp.os.linux.networking,alt.os.linux
Subject: bind: Address already in use
Date: Sun, 3 Dec 2000 00:51:40 +0800
when i tried to start routed always get error msgs:
Executing: /etc/rc5.d/S55routed start
> Starting routed (RIP) services: bind: Address already in use
> [FAILED]
how do i solve this problem? thanks everyone!
------------------------------
From: Edward M. Collins <[EMAIL PROTECTED]>
Subject: Re: linux upgrade suggestions?????
Date: Sat, 02 Dec 2000 16:53:12 GMT
I don't see the problem in running Redhat 6.2, 7.0 might be more problematic,
it can be made quite secure. There is a hardening script called Bastille Linux
www.bastille-linux.org that you might want to check out. There are also a
number of other security tools for Linux to consider, go to www.linux.org or
www.freshmeat.net and do a search.
No Linux disribution is secure out of the box, but some e.g. SuSE and Mandrake,
include hardening scripts that can be set when you do your install, possibly
even after the install, but most people recommend that a system be secured
before it is hooked up to a network.And Slackware is considered pretty easy to
secure as it tends to have fewer services enabled by default.
Do you have a full time internet connexion? If so you might also consider a
firewall box.
And, what are you using the computer for? A server, general purppose home pc,
game amachine, or networked workstation? That pretty much determines what kind
of services you want to be running. You probably don't want or need X on most
server boxes but you can hardly play Railroad Tycoon or do most office work,
photo editing ,and web browsing without it. Generally you don't want to install
software and services you don't plan to use. I had my system, Mandrake 7.0 at
the time, hacked through a dial-up, because the default install allowed dial-in
connexions, something I never use. I changed that immediately of course.
Also check out http://www.linuxsecurity.com/index.html for more info.and make
sure that you subscribe to the security update mailing list of whatever distro
choose.
Ed
[EMAIL PROTECTED] wrote:
> Ok I am preparing to do a freshy install of linux, I am forced into this
> after having some uh "security problems". ANyways I have a dually 750
> pentium 3, with ultra lvd scsi 2, 256 megs of memory, etc.
> So in the past I was running a distribution of RedHat 6.2, with
> X-Windows and using gnome.
> My question is would anyone have any recommend me upgrading to a
> different linux version, distribution, etc.... Are than any other
> new/different GUIs recommended ????? Obviously with my past security
> issues, any safer kernels out there? I am sure you are saying well if
> you want to be secure don't use X, but well I like X so give me a
> break......any suggestions?
> THanks
>
>
> Sent via Deja.com http://www.deja.com/
> Before you buy.
--
------------------------------
From: "Flej Ling" <[EMAIL PROTECTED]>
Subject: Re: help newbie with configuring squid
Date: Sat, 2 Dec 2000 08:56:50 -0800
>I am running Linux RH 6.1 (kernel 2.2.17) to connect my small LAN to the
>internet via masquerading and ipchains. Everything is working perfectly.
Well done. I am doing the same thing with Redhat 6.0. I just NAT everything
so that I can connect from my NT Server out to the net via the Linux box
which is connected using PPP on a dial-up modem.
>Now, I would like to implement transparent web-caching server on the Linux
>box to improve the speed for users on my network.
It is highly unlikely that you will see any speed improvement over using NAT
(masquerading and ipchains). We have about 100 users, of which about 20 are
permitted out to the net via squid's PROXYAUTH using Samba utilities. Of
these 20 users it is unusual if there are ever as many as two connected to
the net at any point in time. And it is even more unusual if both these
users are hitting on the same sites! Therefore our squid gives no real
benefit over NAT except when we download huge installation files, for
example from Microsoft. We will download IE5.5 and then go around to install
it at all workstations. At each workstation we download it from the web over
again, but it really comes via squid's cache at network speed. You will only
see a speed improvement if you have multiple hits on the same sites or
downloads.
>(I do understand the pros and cons of transparent proxying).
Good!
> However, I could not find any information at http://www.squid-cache.org in
> implmentating transparent caching with squid.
You have right site. First print the FAQ and complete user's guide. Read
both from cover to cover. When you wake up you can download
squid-2.3-STABLE3.tar.gz, although I see they now have a STABLE4 available.
I'm using STABLE3 and it works great. Next go to www.linuxdoc.org and under
the section "Printed Books" click on "Securing and Optimizing Linux: Redhat
Edition". Download and print it (all 486 pages, PDF). Read chapter 18
"Server Software (Proxy Network Services)". It's all about squid. The entire
book is top-notch documenation, and also describes ipchains and
masquerading, apache, SSL, and much more!
>The reason I like to implement transparent proxying (or caching) is because
> I do not want to mess with configuring client browsers. I consider myself
a
> linux newbie even though I am pretty good at recompiling the kernel and
setting
>up my own mail server using sendmail. If anyone has experience with
configuring
>transparent caching with squid, please show me how to do it.
What on earth do you mean by "transparent proxying". What kind of proxying
isn't transparent? You refer to it also as caching - well, the caching is
easy enough to set up if you read the FAQ. Everything you need is in the FAQ
or users's guide.
Additional tips: PROXYAUTH works great with Samba utilities. You do not need
Samba installed and running. You just need the smb_auth utilities. This will
allow you to permit/deny varioius users access to the web. Works great. Make
a proxyauth file on your NT Domain Controller with one word in it - "allow".
Then give appropriate users read permission to the file. Then set up
smb_auth, (smb_auth-0.05). Then place a proxyauth reference into squid.conf.
Use the book "Securing and Optimizing Linux: Redhat Edition" to lock down
squid. Start squid automatically at system boot by editing
/etc/rc.d/rc.local to include the following line:
( sleep 30 ; /usr/local/squid/bin/squid ) &
Also, download sqmgrlog-2.11.tar.gz. This creates http logs of all your
squid users usage. Works great! You can also download files of restricted
sites so you can prevent your users from visiting porn sites, etc. The
proxy_auth page is at //home/iae.nl/users/devel/squid/proxy_auth. Also see
//www/hacom/nl/~richard/software/smb_auth.html. To ensure that squid doesn't
die all the time make certain that your default gateway is valid. If it is
bogus squid will die an unpredictable death. Get sqmgrlog from
//web.onda.com/br/orso. Set up a crontab to create the logs once a day or
once a week or so.
Hope this helps. If not, that's what your recycle bin is for.
Fleg Ling
------------------------------
From: "Lion" <[EMAIL PROTECTED]>
Subject: Newbie qu: assign variable
Date: Sat, 2 Dec 2000 17:58:36 +0100
Hello
another stupid newbie question:
i'd like to assign the output of sed to a shell-variable
i'm using sed in that form:
ifconfig | sed [params]
thanx
lion
------------------------------
From: [EMAIL PROTECTED] (Thomas Zajic)
Subject: Re: su (to root)
Reply-To: [EMAIL PROTECTED] (Thomas Zajic)
Date: Sat, 02 Dec 2000 17:00:14 GMT
On Sat, 02 Dec 2000 15:13:37 GMT, [EMAIL PROTECTED] wrote:
> is there any way to set up the system so that only
> *one specific user* can SU to root?
'man 5 suauth'
HTH,
Thomas
--
=-------------------------------------------------------------------------=
- Thomas "ZlatkO" Zajic <[EMAIL PROTECTED]> Linux-2.2.17/slrn-0.9.6.3pl1 -
- "It is not easy to cut through a human head with a hacksaw." (M. C.) -
=-------------------------------------------------------------------------=
------------------------------
** FOR YOUR REFERENCE **
The service address, to which questions about the list itself and requests
to be added to or deleted from it should be directed, is:
Internet: [EMAIL PROTECTED]
You can send mail to the entire list (and comp.os.linux.misc) via:
Internet: [EMAIL PROTECTED]
Linux may be obtained via one of these FTP sites:
ftp.funet.fi pub/Linux
tsx-11.mit.edu pub/linux
sunsite.unc.edu pub/Linux
End of Linux-Misc Digest
******************************
