Linux-Misc Digest #850, Volume #26 Thu, 18 Jan 01 12:13:04 EST
Contents:
Re: partition strategy ("Chip Piller")
Re: partition strategy ("mmnnoo")
Re: audio tape to mp3 (Kae Verens)
Linux Bar Graph Tools (Bosco Tsang)
What is dnetc?? ([EMAIL PROTECTED])
Re: user created backdoor (Bill Hudson)
Re: user created backdoor (Kae Verens)
Re: What is dnetc?? (=?ISO-8859-1?Q?Rasmus_B=F8g_Hansen?=)
Re: What is dnetc?? ([EMAIL PROTECTED])
Re: partition strategy (Steve)
Streaming video help (Marble Head)
Re: What is dnetc?? (Thomas Rasmussen)
Re: What is dnetc?? ("Peter van Kampen")
Re: What is dnetc?? ([EMAIL PROTECTED])
Re: What is dnetc?? ("AndyW")
Reg Exp containing [] (Bob Simon)
Re: Linux not free anymore? (John Hasler)
----------------------------------------------------------------------------
From: "Chip Piller" <[EMAIL PROTECTED]>
Subject: Re: partition strategy
Date: Thu, 18 Jan 2001 10:25:49 -0500
Note the 1.2 GB /usr partition which is at 75%. Right now on my RH7.0
system I have 1445MB under my /usr directory.
In the past I have run out of space in /usr and /home.
When one sets up several partitions there can be benefits in security and
data integrity and also upgrades might be easier, if this is important to
you.
Lately however I have reduced the complexity of my partitioning scheme (/,
/boot, swap) and have not had any problems.
Chip
"David" <[EMAIL PROTECTED]> wrote in message
news:[EMAIL PROTECTED]...
> Jean-Yves Simon wrote:
> >
> > Having bought a new computer, I want to install linux. Unlike
> > my other computer where I installed Linux on a single partition,
> > I was told it is better to create several partitions . So, what
> > is the "best" strategy to install Linux on multiple partitions.
> > I have 6Gb to dedicate to Linux.
>
>
> This is how I have a 9.1 GB drive setup and it works great for what it's
> used for.
>
> /dev/hda1 99M 32M 62M 34% /
> /dev/hda5 6.1G 2.7G 3.1G 47% /home
> /dev/hda10 152M 45k 144M 0% /tmp
> /dev/hda6 1.2G 842M 279M 75% /usr
> /dev/hda9 243M 6.2M 224M 3% /usr/src
> /dev/hda7 387M 121M 247M 33% /var
> swap 256 MB
>
> --
> Confucius say: He who play in root, eventually kill tree.
> Registered with the Linux Counter. http://counter.li.org
> ID # 123538
> Completed more W/U's than 99.003% of seti users. +/- 0.01%
------------------------------
From: "mmnnoo" <[EMAIL PROTECTED]>
Subject: Re: partition strategy
Date: Thu, 18 Jan 2001 15:33:50 GMT
Are you unhappy with the single partition strategy on your other
computer? (though I imagine you at least have 2, using the
second for swap...)
I don't see any reason to go overboard slicing your drive into lots
of separate little partitions. For home use it's pointless and
wasteful since your needs for space in different places will
vary over time.
I just make a separate partition for /home
so I can completely blow away the OS and keep my personal
data and application settings should I ever want to. IMHO even
this is questionable since I could accomplish the same thing
by restoring from backup.
In article <946514$nsa$[EMAIL PROTECTED]>, "Jean-Yves Simon"
<[EMAIL PROTECTED]> wrote:
> Having bought a new computer, I want to install linux. Unlike my other
> computer where I installed Linux on a single partition, I was told it is
> better to create several partitions . So, what is the "best" strategy
> to install Linux on multiple partitions. I have 6Gb to dedicate to
> Linux.
>
> Thanks.
>
> --
> --
> Jean-Yves SIMON Tokyo, Japan
------------------------------
From: Kae Verens <[EMAIL PROTECTED]>
Subject: Re: audio tape to mp3
Date: Thu, 18 Jan 2001 15:41:39 +0000
Alessandro Magni wrote:
> > How can I automagically recognize when one song ends and another begins? <
> I know in the Win world there is some program able to do it, and in Linux???
what's the windows one?
I've been converting my vinyls to CD, and have been splitting the songs
by hand...
Kae
------------------------------
From: Bosco Tsang <[EMAIL PROTECTED]>
Crossposted-To: redhat.general
Subject: Linux Bar Graph Tools
Date: Thu, 18 Jan 2001 15:38:41 GMT
Is there any GNU utility that can compile bar graph in gif format if I have
a set of X and Y data? I am looking for something similiar to MRTG or rrdtool
but don't have a time factor in it.
--
/+++++++++++++++++++++++++++++++++++++++++
WARNING: Spam & Junk Mail Protection strictly enforced
Unsolicited Mail will be handled via http://spamcop.net
+++++++++++++++++++++++++++++++++++++++++/
Sent via Deja.com
http://www.deja.com/
------------------------------
From: [EMAIL PROTECTED]
Crossposted-To: comp.os.linux.networking,uk.comp.os.linux,comp.os.linux.setup
Subject: What is dnetc??
Date: Thu, 18 Jan 2001 16:03:28 GMT
HI all,
When I run the top command in Linux, I see a number of dnetc
processes using up a lot of cpu time:
PID USER PRI NI SIZE RSS SHARE LC STAT %CPU %MEM TIME COMMAND
693 root 20 19 708 688 504 3 R N 98.6 0.0 3849m dnetc
692 root 19 19 708 688 504 2 R N 98.4 0.0 3849m dnetc
690 root 19 19 708 688 504 0 R N 98.0 0.0 3849m dnetc
691 root 19 19 708 688 504 1 R N 98.0 0.0 3849m dnetc
You can also see them with the ps command.
root 688 0.0 0.0 2124 688 ? SN Jan15 0:03 ./dnetc
root 689 0.0 0.0 2124 688 ? SN Jan15 0:01 ./dnetc
root 690 99.8 0.0 2124 688 ? RN Jan15 3850:52 ./dnetc
root 691 99.7 0.0 2124 688 ? RN Jan15 3850:25 ./dnetc
root 692 99.8 0.0 2124 688 ? RN Jan15 3850:38 ./dnetc
root 693 99.7 0.0 2124 688 ? RN Jan15 3850:24 ./dnetc
It's actually a directory, but I can't look at it:
/usr/local/lib/dnetc
ls -l /usr/local/lib
total 4
drwx------ 3 root root 4096 Dec 1 15:03 dnetc
I've been trying to find out what this is, but I can't find anything
in apropos yet. What is dnetc all about? Which man pages refer
to it?
Thanks
Sent via Deja.com
http://www.deja.com/
------------------------------
From: Bill Hudson <[EMAIL PROTECTED]>
Subject: Re: user created backdoor
Date: 18 Jan 2001 16:15:23 GMT
Kae Verens wrote:
>
> David Clark wrote:
> >
> > Hi,
> >
> > I have a user on my system who I suspect has created a backdoor for
> > himself somehow. This server is at a high school and we're still in a
> > learning curve with linux. We're running RH7.
> >
> > I suspected him of some inappropriate activity on the system & changed his
> > password yesterday. He still was able to come in without a hitch last
> > night. From /var/messages:
> >
> > Jan 17 20:18:25 xxxxxx PAM_unix[1593]: (system-auth) session opened for
> > user xxxx by (uid=0)
> >
> > (the xxxxs are the server name & user name). I'd like to get a handle
> > on what's going on before I confront him as he obviously has more unix
> > experience than I do. Any ideas where I should look to figure this out?
>
> to begin with, try changing the root password as well.
>
> Then look in /etc/passwd to see if the encrypted passwords are visible.
> If the second field of each entry is an 'x', then you have shadow
> passwords, which is good. If not, then I suggest you read up on them.
>
> If the user is logging in from an external terminal, then he's most
> likely logging in using someone else's account, 'su'ing to root, then
> 'su'ing to his own account, so he may have someone else's account. In
> fact, it may be someone else who is masquerading as your user.
>
All good advice. I would also take some additional steps:
You can change his login shell to /bin/false, which will prevent him
from logging in on that account. Do this from root with the 'chsh'
command. 'chsh -s /bin/false <username>'
There are ways to login that do not require the use of a password. Look
for a .rhosts file in the user's home directory, and look for a '.ssh'
subdirectory containing files like 'authorized_keys' or
'authorized_keys2' (by the way, I would not consider using an ssh login
a 'back door' unless you've strictly limited when and how they can log
on).
If you have the r-commands (rsh, rlogin, rexec) enabled, then slap your
knuckles with a ruler, and remove the appropriate file from
/etc/xinetd.d, and then do a 'killall -1 xinetd' to restart it.
There are tools (check on comp.os.linux.security) which will help detect
'rootkits'. There are tools (like tripwire) which will run every night
and give you an e-mail report of every file that has changed on the
system. You can log the use of 'su' by moving it to "_su" and creating
a replacement that calls the original:
#!/bin/sh
# su logging wrapper
ID=`who am i`
logger "su called by $ID: $*"
exec /bin/_su $*
The above will put a log entry into /var/log/messages each time 'su' is
used. Of course, if he figures it out he'll just use _su instead.
For $50 you can purchase a booklet from SANS ( http://www.sans.org )
which details how to 'harden' a linux (based on RedHat 6.x) system step
by step. For about $40 you can purchase a very new and very good (IMHO)
book about linux security by Bob Toxen, "Real World Linux Security". It
comes with a CD of some open-source tools to use. For not too much
money you can get a consultant to do a quick security audit and give you
some training.
--
Bill Hudson
------------------------------
From: Kae Verens <[EMAIL PROTECTED]>
Subject: Re: user created backdoor
Date: Thu, 18 Jan 2001 16:27:54 +0000
Bill Hudson wrote:
> ID=`who am i`
s/ //g
sorry about that.
A lot of stuff in there that I didn't know. Thanks.
Kae
------------------------------
From: =?ISO-8859-1?Q?Rasmus_B=F8g_Hansen?= <[EMAIL PROTECTED]>
Crossposted-To: comp.os.linux.networking,uk.comp.os.linux,comp.os.linux.setup
Subject: Re: What is dnetc??
Date: Thu, 18 Jan 2001 17:29:30 +0100
On Thu, 18 Jan 2001 [EMAIL PROTECTED] wrote:
> PID USER PRI NI SIZE RSS SHARE LC STAT %CPU %MEM TIME COMMAND
> 693 root 20 19 708 688 504 3 R N 98.6 0.0 3849m dnetc
> 692 root 19 19 708 688 504 2 R N 98.4 0.0 3849m dnetc
> 690 root 19 19 708 688 504 0 R N 98.0 0.0 3849m dnetc
> 691 root 19 19 708 688 504 1 R N 98.0 0.0 3849m dnetc
Try 'apropos dnetc' or 'whatis dnetc'.
> It's actually a directory, but I can't look at it:
>
> /usr/local/lib/dnetc
>
> ls -l /usr/local/lib
> total 4
> drwx------ 3 root root 4096 Dec 1 15:03 dnetc
>
Eh, you have to be root to see it. So su and look at the contents.
> I've been trying to find out what this is, but I can't find anything
> in apropos yet. What is dnetc all about? Which man pages refer
> to it?
Ah, I suppose that obsoletes my first answer. I'm afraid that I do not
know. Try to do a 'locate dnetd' - perhaps there is something readable
somewhere...
Rasmus B�g Hansen
------------------------------
From: [EMAIL PROTECTED]
Crossposted-To: comp.os.linux.networking,uk.comp.os.linux,comp.os.linux.setup
Subject: Re: What is dnetc??
Date: Thu, 18 Jan 2001 16:15:19 GMT
Hopefully, this will be more readable:
When I run the top command, I see a number of dnetc processes using
up a lot of memory:
PID USER PRI NI SIZE RSS SHARE LC STAT %CPU %MEM TIME COMMAND
693 root 20 19 708 688 504 3 R N 98.6 0.0 3849m dnetc
692 root 19 19 708 688 504 2 R N 98.4 0.0 3849m dnetc
690 root 19 19 708 688 504 0 R N 98.0 0.0 3849m dnetc
691 root 19 19 708 688 504 1 R N 98.0 0.0 3849m dnetc
You can also see them with the ps command.
root 688 0.0 0.0 2124 688 ? SN Jan15 0:03 ./dnetc
root 689 0.0 0.0 2124 688 ? SN Jan15 0:01 ./dnetc
root 690 99.8 0.0 2124 688 ? RN Jan15 3850:52 ./dnetc
root 691 99.7 0.0 2124 688 ? RN Jan15 3850:25 ./dnetc
root 692 99.8 0.0 2124 688 ? RN Jan15 3850:38 ./dnetc
root 693 99.7 0.0 2124 688 ? RN Jan15 3850:24 ./dnetc
> It's actually a directory, but I can't look at it:
>
> /usr/local/lib/dnetc
>
> ls -l /usr/local/lib
> total 4
> drwx------ 3 root root 4096 Dec 1 15:03 dnetc
>
> I've been trying to find out what this is, but I can't find anything
> in apropos yet. What is dnetc all about? Which man pages refer
> to it?
>
> Thanks
>
> Sent via Deja.com
> http://www.deja.com/
>
Sent via Deja.com
http://www.deja.com/
------------------------------
From: Steve <[EMAIL PROTECTED]>
Subject: Re: partition strategy
Date: Thu, 18 Jan 2001 14:13:44 +0000
Jean-Yves Simon wrote:
>
> Having bought a new computer, I want to install linux. Unlike
> my other computer where I installed Linux on a single partition,
> I was told it is better to create several partitions . So, what
> is the "best" strategy to install Linux on multiple partitions.
> I have 6Gb to dedicate to Linux.
It depends which distribution you plan on installing and how
you'll be using your machine.
A mail & news server will likely like a large /var space.
Some distributions put all their "extra" software in /opt, while
others put it in /usr. If you're going to have deep web pages or
lots of users, you'll want a large /home.
Another factor is which parts of your system do you want to leave
untouched when you next upgrade? Having those directories on a
separate partition means you can upgrade everything else while leaving
those partitions untouched.
That said, to answer your question specifically, the "best"
strategy for a first-time Linux user with 6GB of space is to put
everything in a single 2GB partition (except for swap of course),
run it like that for several months, and using 'du' see which
directories are using how much space. Which are near being full?
Which would you like to save for a future upgrade? At that point
you can develop a much more informed plan for the remaining 4GB, which
includes the already existing 2GB partition. It's then a simple
matter to mount the new partitions and mv existing directories to
them.
--
Steve Ackman
Glass Host, Arts & Crafts http://www.delphi.com/crafts
Metamorphosis Glassworks Page http://twovoyagers.com/metamorphosis
------------------------------
From: [EMAIL PROTECTED] (Marble Head)
Subject: Streaming video help
Date: 18 Jan 2001 16:28:27 GMT
I have an AXP box running RH 6.2.
I want to set it up as a streaming video server.
I'm having a very hard time finding *any* linux streaming video server, let
alone one compiled for AXP.
Can anybody make a suggestion that will help with my search?
TIA.
------------------------------
Crossposted-To: comp.os.linux.networking,uk.comp.os.linux,comp.os.linux.setup
Subject: Re: What is dnetc??
From: Thomas Rasmussen <[EMAIL PROTECTED]>
Date: Thu, 18 Jan 2001 16:39:10 GMT
>>>>> "newbie22" == newbie22 <[EMAIL PROTECTED]> writes:
newbie22> Hopefully, this will be more readable: When I run the top
newbie22> command, I see a number of dnetc processes using up a lot
newbie22> of memory:
huh? it uses about 700 bytes for memory...
I'm not entirely sure about your computer, but I'm running a process
called dnetc that is the client for distributed.net cracking 64bit RC5
keys... have a look at: http://www.distributed.net
If it's your own computer and you haven't started it, then I really
don't know what it is... but since it is niced to 19, it shouldn't
affect any other processes.
You should only be running one of these clients per processor
installed in the computer.
Hope it has clarified something.
/Thomas
--
"To alcohol! The cause of - and solution to - all of life's problems!"
-- Homer Simpson
------------------------------
From: "Peter van Kampen" <[EMAIL PROTECTED]>
Crossposted-To: comp.os.linux.networking,uk.comp.os.linux,comp.os.linux.setup
Subject: Re: What is dnetc??
Date: Thu, 18 Jan 2001 17:52:34 +0100
<[EMAIL PROTECTED]> wrote in message news:947448$ao7$[EMAIL PROTECTED]...
> HI all,
>
> When I run the top command in Linux, I see a number of dnetc
> processes using up a lot of cpu time:
Your computer has been assimilated (resistance is futile...)
See http://distributed.net/
}:O Moooooooooooooooooooooooh (DPC no 1. in RC5 as of Today)
------------------------------
From: [EMAIL PROTECTED]
Subject: Re: What is dnetc??
Crossposted-To: comp.os.linux.networking,uk.comp.os.linux,comp.os.linux.setup
Date: Thu, 18 Jan 2001 16:47:41 GMT
a simple web search ..
it could be the distributed.net client ..
http://www.distributed.net
if your'e root and can't look at the directory your drive needs to be fsck'd
to say the least ...
In comp.os.linux.networking [EMAIL PROTECTED] wrote:
> HI all,
> When I run the top command in Linux, I see a number of dnetc
> processes using up a lot of cpu time:
> PID USER PRI NI SIZE RSS SHARE LC STAT %CPU %MEM TIME COMMAND
> 693 root 20 19 708 688 504 3 R N 98.6 0.0 3849m dnetc
> 692 root 19 19 708 688 504 2 R N 98.4 0.0 3849m dnetc
> 690 root 19 19 708 688 504 0 R N 98.0 0.0 3849m dnetc
> 691 root 19 19 708 688 504 1 R N 98.0 0.0 3849m dnetc
> You can also see them with the ps command.
> root 688 0.0 0.0 2124 688 ? SN Jan15 0:03 ./dnetc
> root 689 0.0 0.0 2124 688 ? SN Jan15 0:01 ./dnetc
> root 690 99.8 0.0 2124 688 ? RN Jan15 3850:52 ./dnetc
> root 691 99.7 0.0 2124 688 ? RN Jan15 3850:25 ./dnetc
> root 692 99.8 0.0 2124 688 ? RN Jan15 3850:38 ./dnetc
> root 693 99.7 0.0 2124 688 ? RN Jan15 3850:24 ./dnetc
> It's actually a directory, but I can't look at it:
> /usr/local/lib/dnetc
> ls -l /usr/local/lib
> total 4
> drwx------ 3 root root 4096 Dec 1 15:03 dnetc
> I've been trying to find out what this is, but I can't find anything
> in apropos yet. What is dnetc all about? Which man pages refer
> to it?
> Thanks
> Sent via Deja.com
> http://www.deja.com/
--
#!/usr/bin/perl
$a="\<b isfg\=\"nbjmup";
$b="\:\/\/udq\@cmvfnppo";
$c="\.nzjq\.psh\"\>tfoe\<\/b\>";
$d="$a"."$b"."$c";
$d =~ y/b-z/a-z/;
print "$d\n";
------------------------------
From: "AndyW" <[EMAIL PROTECTED]>
Crossposted-To: comp.os.linux.networking,uk.comp.os.linux,comp.os.linux.setup
Subject: Re: What is dnetc??
Date: Thu, 18 Jan 2001 16:51:09 -0000
<[EMAIL PROTECTED]> wrote in message news:947448$ao7$[EMAIL PROTECTED]...
> HI all,
>
> When I run the top command in Linux, I see a number of dnetc
> processes using up a lot of cpu time:
>
> PID USER PRI NI SIZE RSS SHARE LC STAT %CPU %MEM TIME COMMAND
> 693 root 20 19 708 688 504 3 R N 98.6 0.0 3849m dnetc
> 692 root 19 19 708 688 504 2 R N 98.4 0.0 3849m dnetc
> 690 root 19 19 708 688 504 0 R N 98.0 0.0 3849m dnetc
> 691 root 19 19 708 688 504 1 R N 98.0 0.0 3849m dnetc
>
>
>
> You can also see them with the ps command.
>
> root 688 0.0 0.0 2124 688 ? SN Jan15 0:03 ./dnetc
> root 689 0.0 0.0 2124 688 ? SN Jan15 0:01 ./dnetc
> root 690 99.8 0.0 2124 688 ? RN Jan15 3850:52 ./dnetc
> root 691 99.7 0.0 2124 688 ? RN Jan15 3850:25 ./dnetc
> root 692 99.8 0.0 2124 688 ? RN Jan15 3850:38 ./dnetc
> root 693 99.7 0.0 2124 688 ? RN Jan15 3850:24 ./dnetc
>
>
> It's actually a directory, but I can't look at it:
>
> /usr/local/lib/dnetc
>
> ls -l /usr/local/lib
> total 4
> drwx------ 3 root root 4096 Dec 1 15:03 dnetc
>
>
> I've been trying to find out what this is, but I can't find anything
> in apropos yet. What is dnetc all about? Which man pages refer
> to it?
>
>
> Thanks
>
>
dnetc is the distributed.net client. This is a distributed code-cracking
effort across the Internet. See www.distributed.net for more details about
what it does.
It's completely harmless, as it only uses idle CPU time to crack code blocks
downloaded from a server, but if you didn't know it was there, someone else
must have root access to your box to have put it there. The more code blocks
you process, the more likely you are to win the prize-money - maybe somebody
has cracked you just to install dnetc?
Andy
------------------------------
From: Bob Simon <[EMAIL PROTECTED]>
Subject: Reg Exp containing []
Date: Thu, 18 Jan 2001 16:41:56 GMT
Thanks to all who responded to my question last week
about regular expressions. John Wingate, your comments
were expecially valuable in helping me realize that the
real source of my confusion is the [] construct.
I observe that .* is interpreted differently from [.]*
Why is this?
Examples:
echo 123 | sed 's/.*/%/'
%
echo 123 | sed 's/[.]*/%/'
%123
--
Please address private email replies to bsimon at ATT dot Net.
Sent via Deja.com
http://www.deja.com/
------------------------------
From: John Hasler <[EMAIL PROTECTED]>
Subject: Re: Linux not free anymore?
Date: Thu, 18 Jan 2001 14:08:44 GMT
Martin Gregorie writes:
> The only valid definition of a government is something olong the lines of
> "an organisation with the power to control the popluation within its
> territory".
"An institution with a monopoly on the use of force within its territory".
--
John Hasler
[EMAIL PROTECTED]
Dancing Horse Hill
Elmwood, Wisconsin
------------------------------
** FOR YOUR REFERENCE **
The service address, to which questions about the list itself and requests
to be added to or deleted from it should be directed, is:
Internet: [EMAIL PROTECTED]
You can send mail to the entire list by posting to comp.os.linux.misc.
Linux may be obtained via one of these FTP sites:
ftp.funet.fi pub/Linux
tsx-11.mit.edu pub/linux
sunsite.unc.edu pub/Linux
End of Linux-Misc Digest
******************************
