Linux-Networking Digest #90, Volume #10 Tue, 2 Feb 99 18:13:38 EST
Contents:
keep only newer mails (peter)
HELP!!! seeing it stop working is torturous!!! ("Ashwin K. Raj")
Re: changing file ownership (Julian T. J. Midgley)
Tape file marks (Ken)
Re: IP or Erols.com (Joe Ringer)
Re: PAP Authentication failure (Joe Ringer)
Re: Realtek compatible card: rtl8139. Network freezes! (Marius Bezuidenhout)
Traffic shaping (Marius Bezuidenhout)
DHCP the correct way. (Marius Bezuidenhout)
Re: Problems with incoming calls on ISDN device (Erik Corry)
Re: ARP <---> PPP routing problems (Clifford Kite)
Re: How to log mail headers (Vice Blade Spammer)
Re: HELP!!! seeing it stop working is torturous!!! (Steven Parker)
Re: HELP!!! seeing it stop working is torturous!!! (Steven Parker)
3COM FEM556 PCMCIA (Stefan Sint)
Re: lessons learned while setting up masquerading (Rick Onanian)
arlib (chagai)
Re: Problems with Network Card (Ben Russo)
Re: Kernel 2.2.1 ans IP Masquerading (Graeme Woollett)
Re: Linux as a proxy client (Michael Shuldman)
Re: Romote "root" login (Nico Kadel-Garcia)
Re: Netatalk node/router? (Malware)
Setting up a novell client (Oliver Eichler)
Re: Which 'flavor' of Linux best for a M$ Separatist ("Albert Ulmer")
----------------------------------------------------------------------------
From: [EMAIL PROTECTED] (peter)
Subject: keep only newer mails
Date: Tue, 02 Feb 1999 20:05:34 GMT
newbie:
I get my emails to a mailserver and retrieve them to my local machine
with fetchmail using pop3. with fetchmail one can keep ALL messages on
the mailserver or flush ALL messages.
what I want to do is to keep some messages on the mailserver. lets say:
it should keep the last 50mails or mails not older than 2 days or so.
(so I can read the mails, when I am not on my "local machine" and the
"local machine" is down for several reasons.)
is there an easy way to do this with fetchmail
(like "flush all older than 2 days")
or another easy trick ?
thanks in advance,
peter
=================
pilsl@
ANTISPAM
riemann.atat.at
------------------------------
From: "Ashwin K. Raj" <[EMAIL PROTECTED]>
Subject: HELP!!! seeing it stop working is torturous!!!
Date: Tue, 2 Feb 1999 13:10:44 -0600
I have installed APACHE SERVER on my Linux machine on the network (powered
by a T1 line). I have been using this to create a web database with
Perl/CGI and all of a sudden, I get this page when the index.html file is
supposed to be loaded up:
=============================================================
Forbidden
You don't have permission to access / on this server
=============================================================
The URL is http://131.193.220.132 (there is no registered domain name for
this machine)
I checked up all the .conf files and they seem to be fine. I have been
using the server for quite some time now, and suddenly it stopped loading
correctly. I am not sure if any CGI script I have been trying out is
capable of doing any damage to change to any of the config files.
Please help me out. Thanks a lot...
Ashwin
------------------------------
From: [EMAIL PROTECTED] (Julian T. J. Midgley)
Crossposted-To: comp.security.unix
Subject: Re: changing file ownership
Date: 2 Feb 1999 10:31:04 -0000
In article <[EMAIL PROTECTED]>,
Martin Hepworth <[EMAIL PROTECTED]> wrote:
>
>
>lipsin wrote:
>>
>> hi,
>> i have a linux box. in it i have users with username containing
>> dot, ie foo.john or foo.doe . the root will backup their files every
>> now and then. so that, if they accidentally deleted something, the
>> admin will be able to retrive it from the back. my problem is that the
>> backup file is own by root. and when i move them back to the original
>> users directory, i can't chanown back to the orriginal users. and this
>> problem only effect users who has dot in their username. the error i
>> get is
>>
>> # chown foo.john filename
>> chown: foo.john: invalid user
>>
>> thanks for the help.
>>
>> lipsin
The problem is that chown has a mode which lets you set both group and
owner at once:
chown ownername.groupname <filename>
In your case, chown is assuming that "foo" is the owner and "john" is
the group you wish to assign.
As Martin said, it might be a better idea to take the . out of your userids.
--
Julian T J Midgley | [EMAIL PROTECTED]
Trinity Hall, Cambridge | Excession: http://excession.ucam.org
"For every complex problem, there is a solution that is simple,
neat, and wrong." (H. L. Mencken)
------------------------------
Date: Tue, 02 Feb 1999 02:10:07 -0800
From: Ken <[EMAIL PROTECTED]>
Subject: Tape file marks
Crossposted-To: comp.os.linux.setup,comp.os.linux.hardware
I do two consecutive dumps to dump my root and /usr partitions, using
the non-rewinding device. I follow this with a rewind and two
consecutive verifies (ie. "restore Cf /dev/nst0". The second verify
fails with error "tape read error: Success". If I do a 3rd verify, it
finds the dump for /usr and completes the verify. What's going wrong?
What do I need to do to get the second restore/verify to start in the
right place? I tried "mt fsf" thinking I needed to skip over the EOF of
the first dump, but that nets the same error when I issue the
restore/verify.
Here's my backup script:
#!/bin/sh
# backup system using dump
# dump just / and /usr
mt -f /dev/tape rewind
dump 0ufB /dev/tape 12000000 /
dump 0ufB /dev/tape 12000000 /usr
mt -f /dev/tape rewind
# verify the root dump
restore Cf /dev/tape
# next restore fails with "Success"!
restore Cf /dev/tape
# next restore finds the /usr dump
restore Cf /dev/tape
/dev/tape is a symbolic link to /dev/nst0, my HP 12/24gb SCSI DAT.
--
Ken
mailto:[EMAIL PROTECTED]
http://www.well.com/user/shiva/
http://www.e-scrub.com/cgi-bin/wpoison/wpoison.cgi (Death to Spam!)
------------------------------
From: [EMAIL PROTECTED] (Joe Ringer)
Subject: Re: IP or Erols.com
Date: 2 Feb 1999 11:23:36 GMT
Reply-To: [EMAIL PROTECTED]
On Sun, 31 Jan 1999 13:10:49 GMT, Pete Stoloff wrote:
>I use erols.com as my ISP. I'm trying to connect via ppp which asks
>for an IP address. Erols technical support claims not to support
>Linux and does not know what IP address I should use to connect. Does
>anyone out there use Erols as their ISP, and I so, what IP do you use
>to connect? Thanks.
Erols like most ISPs are using dynamic IP addresses. I'm using them and
everything works well. Note that they do use PAP authentication.
--
clear skies, |http://www.erols.com/jringer3/astro1.htm
Joe |
|The internet treats censorship like
|damage and routes around it.
------------------------------
From: [EMAIL PROTECTED] (Joe Ringer)
Subject: Re: PAP Authentication failure
Date: 2 Feb 1999 11:23:37 GMT
Reply-To: [EMAIL PROTECTED]
On Fri, 29 Jan 1999 16:13:42 -0700, Steve Jibson wrote:
>I'm trying to set up a PPP server using RedHat 5.2. I had mgetty and
>PPP working fine until I tried to get PAP to work. Now I get the
>following in my log file:
>
>
>Jan 29 16:03:15 greg pppd[717]: pppd 2.3.5 started by a_ppp, uid 0
>Jan 29 16:03:15 greg pppd[717]: Using interface ppp0
>Jan 29 16:03:15 greg pppd[717]: Connect: ppp0 <--> /dev/ttyS1
>Jan 29 16:03:15 greg pppd[717]: sent [LCP ConfReq id=0x1 <asyncmap 0x0>
><auth pap> <magic 0x9f5931aa> <pcomp> <accomp>]
>Jan 29 16:03:16 greg pppd[717]: rcvd [LCP ConfAck id=0x1 <asyncmap 0x0>
><auth pap> <magic 0x9f5931aa> <pcomp> <accomp>]
>Jan 29 16:03:17 greg pppd[717]: rcvd [LCP ConfReq id=0x1 <magic
>0xd6379aba> <pcomp> <accomp>]
>Jan 29 16:03:17 greg pppd[717]: sent [LCP ConfAck id=0x1 <magic
>0xd6379aba> <pcomp> <accomp>]
>Jan 29 16:03:17 greg pppd[717]: rcvd [PAP AuthReq id=0x1 user="steve"
>password="barney"]
>Jan 29 16:03:17 greg pppd[717]: PAP authentication failure for steve
>Jan 29 16:03:17 greg pppd[717]: sent [PAP AuthNak id=0x1 "Login
>incorrect"]
>Jan 29 16:03:17 greg pppd[717]: sent [LCP TermReq id=0x2 "Authentication
>failed"]
>Jan 29 16:03:18 greg pppd[717]: rcvd [LCP TermAck id=0x2]
>Jan 29 16:03:18 greg pppd[717]: Connection terminated.
>Jan 29 16:03:19 greg pppd[717]: Exit.
>
>
>My /etc/ppp/pap-secrets file looks like this (one line):
>
>stevej * barney
Shouldn't that be:
"stevej" * "barney"
--
clear skies, |http://www.erols.com/jringer3/astro1.htm
Joe |
|The internet treats censorship like
|damage and routes around it.
------------------------------
From: Marius Bezuidenhout <[EMAIL PROTECTED]>
Subject: Re: Realtek compatible card: rtl8139. Network freezes!
Date: Tue, 02 Feb 1999 12:54:56 +0200
So, I took out the realtek card and inserted an Intel EtherExpress Pro 100+
and now it is working perfectly.
So, be warned! For a server do not go with the cheapest!
Marius Bezuidenhout wrote:
> I having problems with a Accton Sohobasic NIC310 network card. I have
> e-mail Accton, their soho basic devision and Artmedia that now does all
> the soho basic card's. Artmedia says that it is a realtek 8139
> compitible card.
>
> My card works with this driver and everything is fine until it seems
> like there is too much traffic going to the server and then is gives
> this with ifconfig:
>
> eth0 Link encap:Ethernet HWaddr 00:00:E8:61:09:D8
> inet addr:192.168.9.1 Bcast:192.168.9.255 Mask:255.255.255.0
>
> IPX/Ethernet 802.2 addr:00000667:0000E86109D8
> IPX/Ethernet 802.3 addr:00000666:0000E86109D8
> UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
> RX packets:2386 errors:0 dropped:0 overruns:0 frame:0
> TX packets:2099 errors:39 dropped:0 overruns:0 carrier:78
> collisions:5
> Interrupt:10 Base address:0x6700
>
> Is this high number of errors normal? I did not have this problem with
> my ISA NE2000 compatible card.
> How do I find out what parameters there is for a module? Currently my
> conf.modules says this:
>
> alias eth0 rtl8139
> options driver full_duplex=1,0,1 debug=1
>
> So, every no and then my whole network freezes (not everything but
> everything to do with TCP/IP), so I can access my Mars but not Samba or
> DHCP.
>
> Regards,
>
> Marius Bezuidenhout
------------------------------
From: Marius Bezuidenhout <[EMAIL PROTECTED]>
Subject: Traffic shaping
Date: Tue, 02 Feb 1999 12:55:50 +0200
Can someone tell me how the shaper works, or where I can get info on it?
Regards,
Marius Bezuidenhout
------------------------------
From: Marius Bezuidenhout <[EMAIL PROTECTED]>
Subject: DHCP the correct way.
Date: Tue, 02 Feb 1999 13:02:00 +0200
What is the correct way to setup dhcp?
Currently I have a default route that looks like this:
Kernel IP routing table
Destination Gateway Genmask Flags Metric Ref Use
Iface
255.255.255.255 * 255.255.255.255 U 0 0 4
eth0
------------------------------
From: Erik Corry <[EMAIL PROTECTED]>
Crossposted-To: de.alt.comm.isdn4linux,uk.comp.os.linux
Subject: Re: Problems with incoming calls on ISDN device
Date: 2 Feb 1999 13:26:23 GMT
In <de.alt.comm.isdn4linux> "Tom Furie" <796rvb$imm$[EMAIL PROTECTED]> wrote:
> I have an AsusCom ISDNLink I-IN100-ST-DV card on Redhat 5.2 kernel version
> 2.0.36, using isdn4k-utils-3.0beta2-2. I also have a modem piggybacked
> through the POTS port of the ISDN card.
There's no support for the POTS port in the Linux driver.
I started the necessary changes, but haven't found the
time to finish them. The POTS hardware itself is pretty
dumb and needs a driver and a daemon to be written before
it will work.
--
We believe that God is on our side. --Netscape chief executive James Barksdale
--
Erik Corry [EMAIL PROTECTED] Ceterum censeo, Microsoftem esse delendam!
------------------------------
From: [EMAIL PROTECTED] (Clifford Kite)
Subject: Re: ARP <---> PPP routing problems
Date: 2 Feb 1999 15:00:23 -0600
Rubens S. Gomes ([EMAIL PROTECTED]) wrote:
: I am having a weird network problem with my home LAN of
: Linux PCs. I have a home LAN with 3 Linux PCs. One of the
: Linux PCs is an Internet (PPP) gateway. Everything worked
: fine until I recently decided to change hostnames + IP
: address in the LAN. I have spent hours on this problem.
: The problem is when pppd is running on the gateway box,
: pinging a host on the LAN does not work. Also, pinging
: the gateway box from a another host does NOT work either.
: I see a message "ARP called for own IP address" in /var/log/
: debug.
: Following is further information on my computer set up,
: routes, ifconfigs, etc. I have RH 5.1 installed.
: ppp0 Link encap:Point-to-Point Protocol
: inet addr:0.0.0.0 P-t-P:192.168.0.20 Mask:255.255.255.0
: UP POINTOPOINT RUNNING NOARP MULTICAST MTU:1500 Metric:1
: RX packets:0 errors:0 dropped:0 overruns:0
: TX packets:0 errors:0 dropped:0 overruns:0
My guess is that the P-t-P address needs to be the one for which eth0 is
configured, 192.168.1.1. I assume the inet addr address is deliberately
munged since it should be the address the ISP assigned to you.
It's a non-educated guess thought, I haven't done home networking or
masqurading.
--
Clifford Kite <[EMAIL PROTECTED]> Not a guru. (tm)
/* Those who can't write, write manuals. */
------------------------------
From: [EMAIL PROTECTED] (Vice Blade Spammer)
Subject: Re: How to log mail headers
Date: 2 Feb 1999 12:44:47 GMT
Reply-To: [EMAIL PROTECTED]
On Tue, 2 Feb 1999 11:57:24 +0100, Josef Ondruch wrote:
>I have this problem
>
>I need to log mail headers outgoing from my linux box. My boss need
>to know where and how mail is comming ( he say bussiness reasons )
uhm... bussiness reasons ? :-)
look if in your /etc/syslog.conf ( you need install syslogd )
there is:
mail.* /var/log/maillog
(or similar :-)
--
==============================================
Blade Spammer II
AntiSpam Net-Runner Unit
" I've seen SPAMs you people wouldn't believe.
Time to shutdown. " ;^)
==============================================
------------------------------
From: Steven Parker <[EMAIL PROTECTED]>
Subject: Re: HELP!!! seeing it stop working is torturous!!!
Date: Tue, 2 Feb 1999 21:03:52 GMT
Ashwin K. Raj wrote:
> I have installed APACHE SERVER on my Linux machine on the network (powered
> by a T1 line). I have been using this to create a web database with
> Perl/CGI and all of a sudden, I get this page when the index.html file is
> supposed to be loaded up:
> -------------------------------------------------------------
> Forbidden
>
> You don't have permission to access / on this server
> -------------------------------------------------------------
In fact, it looks like your webserver is trying to access something in the
root directory. I doubt that it has visibility in that directory.
------------------------------
From: Steven Parker <[EMAIL PROTECTED]>
Subject: Re: HELP!!! seeing it stop working is torturous!!!
Date: Tue, 2 Feb 1999 21:02:31 GMT
Ashwin K. Raj wrote:
> I have installed APACHE SERVER on my Linux machine on the network (powered
> by a T1 line). I have been using this to create a web database with
> Perl/CGI and all of a sudden, I get this page when the index.html file is
> supposed to be loaded up:
> -------------------------------------------------------------
> Forbidden
>
> You don't have permission to access / on this server
> -------------------------------------------------------------
Was the file in the directory in question renamed to something other than
index.html?
Were the file permissions changed?
Lastly, Is this file within the directory subtree that is visible by Apache?
A 'yes' to any of these could be your problem...
Thanks -steve
------------------------------
From: Stefan Sint <[EMAIL PROTECTED]>
Crossposted-To: comp.os.linux.setup
Subject: 3COM FEM556 PCMCIA
Date: Tue, 02 Feb 1999 18:55:01 +0000
I am a newbie and would appreciate any help with the following problem:
I have installed Linux RedHat 5.2 on my Toshiba Satellite 4010 notebook
and
want to connect to the network using a 3COM MegaHertz 10/100 LAN+56K
Modem.
Using the command "cardctl status" I found out that the system seems
to recognize
the card:
Socket 0:
5V 16-bit card present
Function 0: ready, write protect
Now I don't know which module has to be loaded in order to handle the
card,
and the necessary options to be passed to the driver (to be specified
in /etc/conf.modules).
Thanks, Stefan.
------------------------------
From: Rick Onanian <[EMAIL PROTECTED]>
Crossposted-To: comp.os.linux
Subject: Re: lessons learned while setting up masquerading
Date: Tue, 02 Feb 1999 16:40:26 -0500
"Michael 'BeLFrY' S. E. Kraus" wrote:
> On my machine using modules I didn't find this to be a problem.
>
> sample modules.conf
>
> aliase ne eth0
> options ne irq=11,12 io=0x240,0x260
I'm beginning to see where my problems came from...
> The first set of parameters is assingned to eth0, and the second to eth1. (I've
>tried this with the
> options the other way around and it works.)
>
> Using lilo to pass parameters to the kernel you could do:
>
> append ether=11,0x240,eth0 ether=12,0x260,eth1
You mean to tell me, the reason I couldn't assign my ethernet cards the eth1 and eth0
as I wanted was
because I was putting the IO address before the IRQ? This whole time I had two values
interchanged???
DOH!!!!!! <Image of my hand smacking my forehead in the same place where there's a
wall-shaped mark from
before>
I think there's a FAQ wrong somewhere...I'd swear it was supposed to be
ether=0x240,11,eth1 etc.....
> ...and...
>
> append ether=12,0x260,eth0 ether=11,0x240,eth0
>
> if you wanted them the other way around.
>
> Great stuff in giving such help to all!!!! =)
>
> I hope what I've told you helps your ethernet card management.
Believe me...It does. :)
BTW, in another message (possible in another ng, I forget) someone mentioned that he's
using IP aliasing
on ONE ethernet card as an alternative to using two cards to IP masquerade his cable
modem -> internal
network. Otherwise, same setup as normal. Pretty neat trick, eh? I'm gonna try it...
> All the best...!
>
> Michael.
rick
------------------------------
From: chagai <[EMAIL PROTECTED]>
Subject: arlib
Date: Tue, 02 Feb 1999 14:53:27 +0000
Hi,
I want to use arlib, but according to the man page it was only tested
with BIND 4.8
In my environment BIND 8.1.2 and Linux 2.0.35 are installed.
I would like to know if somebody used it on such environment and what
were the results ?
Experience from lower versions of BIND will also be welcomed .
Thanks in Advance,
Chagai
------------------------------
From: Ben Russo <[EMAIL PROTECTED]>
Crossposted-To:
alt.comp.periphs.mainboard.supermicro,alt.comp.pheriphs.mainboard.supermicro,intel.networking_and_communications.network_adapters_and_hubs,comp.os.linux.misc
Subject: Re: Problems with Network Card
Date: Tue, 02 Feb 1999 17:03:25 -0500
Just a suggestion, boot into NT, and check the hardware settings of this
network card on System A.
Read the documentation for the "eexpress" driver and see if it will take
boot options for the IO and IRQ addresses. If it will, then at boot time
you will have to make a lilo boot disk and have something like the
following in the lilo.conf file:
append="ether=12,0x300,eth0"
I think that your eexpress driver is autoscanning the IO devices on the
system and it thinks it has found the network card, but hasn't.
-Ben.
megasurg wrote:
> Let me first explain that I have a small network of four machines. I
> will refer to them as System A-D, to make things easier. All of the
> systems have the same network adapter, which is an Intel EtherExpress
> 16. I'm using a Kingston 5 port hub also. The systems themselves
> differ in hardware, CPU and OS's installed. Below is a brief summary of
> each system.
>
> System A: SuperMicro P5STE Mainboard w/ P-100Mhz CPU; it is dual-booted*
> with Win95 and Linux (SUSE Dist.)
>
> System B: VA-503+ Mainboard w/ P-200Mhz CPU; it is dual-booted* with
> WinNT4.0 sp4 and Linux (SUSE Dist.)
>
> System C: 486 generic Mainboard w/ 486DX2-100Mhz; it only runs Linux
> (SUSE Dist.)
>
> System D: 486 generic Mainboard w/ 486DX2-50Mhz; it only runs Linux
> (SUSE Dist.)
>
> * when I say "dual-booted", I mean that both OS's exist however Lilo is
> not installed or any other boot-loader...I use a Lilo Boot Disk to boot
> into my linux on those machines (System A & B in question).
>
> Ok, now let me explain my problem. Basically, all of the systems can
> connect to the network except System A. For some reason System A won't
> connect or rather initialize the network card in Linux. Now if I boot
> into my microsoft windoze they are also network seperately and they
> indeed communicate. (I do not have my windoze network connected with my
> linux network, they are seperate entities.) Because System A & B can
> connect to each other, that tells me that the physical card should work
> fine. However, it does not. When I boot into my linux network all of
> the machines can connect except for System A. To test this theory, I
> even replaced the Network card in System A with an extra one I had and
> it still worked the same.
>
> One thing I noticed is that all of the traffic indicator lights go on
> the hub right when power is turned on each system, except System A. I
> decided to take a closer look at this. I found that if I boot into
> Win95 on System A and go through a "step-by-step confirmation", the
> light on the hub for that system turns on at the point when Win95 is
> loading all of it's drivers. When I boot into linux, the light never
> goes on. Now a quick note on drivers. On all of the linux systems, I
> use the same ethernet driver which is eexpress.c. Again the only system
> that doesn't respond or cannot connect to the network when linux is
> running is System A.
>
> I went through and decided to pay particular attention to any possible
> conflicts. I checked IRQ and I/O conflicts and found none. So that's
> pretty much out.
>
> Now while booted into linux on System A, I can ping myself and the
> systems tells me that the card is activated and acknowledges it as
> eth0. So, there shouldn't be anything here.
>
> Well, one last thing to check...the bios. I decided to check the bios
> of each system and see if there were any differences. Well, obviously
> there are. I have four different motherboards and each has it's own
> unique bios. All of them except System A are fairly standard. System
> A, on the other hand has quite the detailed bios of which is my
> problem. I'm not sure what all of the settings mean but I can manage to
> fumble through it. I have turned off PNP features of any bios that had
> it long ago so as to avoid conflicts within linux and I find that
> windoze doesn't really care anyway.
>
> So, the only thing I see that maybe a problem is might be the bios. But
> then again it could still be a number of things I may have overlooked or
> just not known of. If anyone has any ideas please, I beg of you send
> them my way. I really would like to get this system online and I am now
> completely out of ideas. If you would like more information please let
> me know and I'll post it. Thank you for any assistance.
>
> --
> "If there is a *quintessential zone of human privacy* it is the mind."
>
> If you wish to send me a message using PGP my key is located here:
> http://www.teleport.com/~megasurg/pgpmegasurg
------------------------------
From: Graeme Woollett <[EMAIL PROTECTED]>
Crossposted-To: comp.os.linux.setup
Subject: Re: Kernel 2.2.1 ans IP Masquerading
Date: Wed, 03 Feb 1999 07:59:30 +1300
Ed Jones wrote:
> >
> > The problem:
> >
> > I compiled the 2.2.1 Kernel last night, selecting the proper options
> >
> > as per the HOWTO at sunsite. When I tell lilo to use the new kernel,
> > the following error messages appear during boot:
> >
> > <After both NIC are initialized>
> > finiding module dependancies...
> > ... nfsd.o unresolved symbols
> > ... ip_masq_mfw.o unresolved symbols
> > ... ip_masq_portfw.o unresolved symbols
> >
> > <when I get to modprobe>
> > <cannot find> module net-pf-4
> > <cannot find> module net-pf-5
> > <repeats for three pairs of identical error messages>
> >
> > I do not find an object file named anything like net-pf-# on my system.
> >
> > I don't know enough abou this situation to ask a better question:
> > please point me in the right direction?
> >
> > Best Regards
> > Brant Eaton
>
> Brant, you did, of course do "make modules" and "make modules_install"
> after you compiled the kernel.. right?
>
> Ed
Note that ipfwadm **does not work** with the 2.2.1 and later kernels. Use
"ipchains instead", I had this problem too.
------------------------------
From: [EMAIL PROTECTED] (Michael Shuldman)
Subject: Re: Linux as a proxy client
Date: 2 Feb 1999 19:09:14 GMT
RHS Linux User ([EMAIL PROTECTED]) wrote:
> Hello all,
>
> At work we have an internet connection via a Windows NT server with
> Micr. Sft Proxy server.
> I am looking for a telnet and ftp client for Linux so that i can telnet
> and ftp to the outside with
> my Linux box. Guys running NT have M$ proxy client stuff on their
> machines but i don't use it
> because i'm a Linux user ! Is ther software for Linux that can
> cooperate with M$ Proxy server ?
> Please let me know.
msproxy supports socks v4. Get them to enable that on the proxyserver
and install the clientpart of a socksimplementation, e.g Dante
(http://www.inet.no/dante).
You shouldn't need separate telnet and ftp clients, use the ones
you have installed and Dante will "socksify" them at runtime if
you so wish.)
--
_ //
\X/ -- Michael Shuldman <[EMAIL PROTECTED]>
------------------------------
From: [EMAIL PROTECTED] (Nico Kadel-Garcia)
Crossposted-To: comp.os.linux,comp.os.linux.admin,comp.os.linux.help,nl.comp.os.linux
Subject: Re: Romote "root" login
Date: Tue, 02 Feb 1999 13:57:35 GMT
On Tue, 2 Feb 1999 00:37:13 GMT, fred smith <[EMAIL PROTECTED]> wrote:
>pazuzu ([EMAIL PROTECTED]) wrote:
>: "Michael 'BeLFrY' S. E. Kraus" wrote:
>: >
>: > G'day Andrew and all...
>: >
>: > Ack...! This really is a bad security hole!
>
>: I'm sorry, and I'm a bit new at this. Why is it more a security problem
>: that people from outside can directly login as root (password guessing?)
>: then people login in as guest and do a su -?
>
>Because if you can't get in directly as root, then you have to compromise
>TWO accounts before you can seriously hack the system instead of just
>one account. I'm no mathematician, but I'd venture a guess that that
>makes it FOUR times as hard to subvert.
It also makes it vastly easier to trace the behavior of the first
cracked account, checking if that user had access to the system from
wherever the cracker was acting. I've seen this used to determine when
and where a password got sniffed.
------------------------------
From: Malware <[EMAIL PROTECTED]>
Subject: Re: Netatalk node/router?
Date: Tue, 02 Feb 1999 22:54:47 +0100
This is a multi-part message in MIME format.
==============225F27C69EBC5F8514C9E589
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
Hi dts,
you wrote:
> Have been given a task by my supervisor - does anyone know if Netatalk
> can be setup as a node rather than a router?
>
> As the router option will stuff our system.
>
> Any comments please.
If you find no better way then appended patch against kernel 2.2.1-ac2 -
a really bad hack(*) - should help. Please use this only as solution of
last resort.
Malware
(*) not only bad by design but even untested but by compilation.
==============225F27C69EBC5F8514C9E589
Content-Type: text/plain; charset=us-ascii; name="appletalk-deny-routing.diff"
Content-Transfer-Encoding: 7bit
Content-Disposition: inline; filename="appletalk-deny-routing.diff"
--- net/core/firewall.c.orig Sun Jan 24 00:42:28 1999
+++ net/core/firewall.c Tue Feb 2 22:47:49 1999
@@ -157,4 +157,5 @@
int i;
for(i=0;i<NPROTO;i++)
firewall_policy[i]=FW_ACCEPT;
+ firewall_policy[PF_APPLETALK]=FW_BLOCK;
}
==============225F27C69EBC5F8514C9E589==
------------------------------
From: Oliver Eichler <[EMAIL PROTECTED]>
Subject: Setting up a novell client
Date: Tue, 02 Feb 1999 14:55:36 +0100
Hi
Here is my situation:
I got a Linux box connected to a Novell network. I can see the server, I
can ncpmount the server to a mountpoint. I can see the server's printer,
I can send postscripts via nprint to the printer. Perfect.
Not quite. I would like to have the users subdirectory on the server
mounted to a mountpoint within the users home directory on the Linux
box.
Also I would like to have the printer offered like a local printer to
each application on the Linux box.
For the first problem I found some hints to nfsd and mountd on the ncpfs
man page. But really didn't get the clue.
Can anyone out there give me instructions to solve those two problems?
Or give me a pointer to the correct HowTo or some URL on the Web?
Thanks
olli
------------------------------
From: "Albert Ulmer" <[EMAIL PROTECTED]>
Crossposted-To: alt.os.linux.caldera,comp.os.linux
Subject: Re: Which 'flavor' of Linux best for a M$ Separatist
Date: Tue, 2 Feb 1999 14:38:13 +0100
>I have used Caldera OpenLinux Lite 1.1 and Red Hat 5.1, I cannot get
>connected to my ISP on either, but on Caldera I couldn't get sound or my
>joystick(for fly8) working. I can on Red Hat though. I am ordering Debian,
>Slackware, and TurboLinux from CheapBytes though and plan to try them all.
Don't forget to check out SuSE, too. I recommended it to many of my friends
(all newbies) and they were (and still are) very happy with it.
------------------------------
** FOR YOUR REFERENCE **
The service address, to which questions about the list itself and requests
to be added to or deleted from it should be directed, is:
Internet: [EMAIL PROTECTED]
You can send mail to the entire list (and comp.os.linux.networking) via:
Internet: [EMAIL PROTECTED]
Linux may be obtained via one of these FTP sites:
ftp.funet.fi pub/Linux
tsx-11.mit.edu pub/linux
sunsite.unc.edu pub/Linux
End of Linux-Networking Digest
******************************
