Linux-Networking Digest #133, Volume #10 Sat, 6 Feb 99 23:13:42 EST
Contents:
Re: virus of win95 in linux (Rod Smith)
Re: RedHat 5.2 opens raw inet socket on port 1, why? ("Nick Short")
newbie: ping ok --no telnet ftp ([EMAIL PROTECTED])
mac vol. mounting (Robert Means)
Re: Redial Question (David Efflandt)
Re: Linux DHCP vs NT (Stephen Carville)
Re: one ip address (David Efflandt)
Re: Utility to test network security ([EMAIL PROTECTED])
Re: route.conf against route command (David Efflandt)
mail - "we do not relay" error ([EMAIL PROTECTED])
Re: Linux & Windows & Samba / password encryption? ("Tony Meza, MD")
Re: Serial Cable networking Questions. Please help! (David Efflandt)
Re: 10base-T recommendation? (Leonard Gray)
Re: WIN 98 as a Gateway? (Josh Rusko)
Re: mgetty & modem problem (Dan Crooks)
Intel EtherExpress 10/100B ISA need help ("Felix A. Hernandez")
----------------------------------------------------------------------------
From: [EMAIL PROTECTED] (Rod Smith)
Subject: Re: virus of win95 in linux
Date: 7 Feb 1999 00:28:09 GMT
Reply-To: [EMAIL PROTECTED]
[Posted and mailed]
In article <[EMAIL PROTECTED]>,
[EMAIL PROTECTED] (Miles5) writes:
> I would like to know that, if a virus that will affect the win95
> executable files, then, will the virus affect Linux system if the
> virus is put into a Linux system??
That depends on the type of virus, but in general the answer is "no."
Viruses that attach themselves to DOS or Windows executable files cannot
infect Linux executable files, since the file formats are different and
the low-level OS commands upon which the viruses rely are different. In
fact, since you're probably running the DOS and Windows programs only in
DOS or Windows, and since those systems can't see a Linux filesystem,
you've got a lot of safety right there (assuming you're using ext2 and not
UMSDOS or something similar). Other viruses attach themselves to a hard
disk's Master Boot Record (MBR). Since DOS and Linux rely upon the same
MBR, these viruses have the POTENTIAL to affect Linux. In practive,
though, their usual effect is either none at all or to prevent Linux from
booting. This is because they rely upon certain operations of DOS or
Windows when it boots, and Linux doesn't perform the same operations when
it boots, so the virus can't "take over" the Linux system. As with
executable-based viruses, too, these would find themselves running in an
alien environment even if they managed to survive the Linux boot process.
Unlike in "Star Trek," a computer virus in an alien environment in reality
doesn't stand a snowball's chance in an active volcano of surviving.
Now, the above does assume that Linux and DOS/Windows are kept reasonably
separate. If you use WINE, WABI, or DOSEMU to run Windows or DOS programs,
viruses from DOS/Windows can affect the DOS/Windows executables being run
from Linux. They might even attempt to attach themselves to
non-DOS/Windows files, though the likely result would be an obviously
trashed file rather than spread of the virus in any meaningful way. These
DOS/Windows viruses being run under emulation aren't likely to be able to
affect Linux as a whole, and the damage they could do is largely limited
to the permissions of the user who's running the programs (or possibly the
permissions granted that user by the /etc/dosemu.conf file, in the case of
DOS viruses). That's one reason why security is important even on a
single-user machine.
--
Rod Smith
[EMAIL PROTECTED]
http://www.users.fast.net/~rodsmith
NOTE: Remove the "uce" word from my address to mail me
------------------------------
From: "Nick Short" <[EMAIL PROTECTED]>
Subject: Re: RedHat 5.2 opens raw inet socket on port 1, why?
Date: Sun, 07 Feb 1999 02:26:45 GMT
UmVkSGF0IDUuMCB0b28uICBUaGFua3MgZm9yIHRoZSBpbmZvLCBJIGdvdCBoYWNrZWQgYSBmZXcg
d2Vla3MgYWdvLCB3aGF0IEkgY291bGQgcGllY2UgdG9nZXRoZXIgd2FzIGEgd2Vha25lc3MgaW4g
dGhlIE5GUyBzeXN0ZW0gd2FzIGV4cGxvaXRlZC4NCg0KDQo+UC5TLiAgSWYgeW91J3JlIHJ1bm5p
bmcgUmVkSGF0IExpbnV4IDUuMSBvciBiZWxvdywgSSdkIGhpZ2hseSByZWNvbW1lbmQNCj5yZWFk
aW5nIGh0dHA6Ly93d3cuY2VydC5vcmcvYWR2aXNvcmllcy9DQS05OC4xMi5tb3VudGQuaHRtbC4g
IFNvbWVvbmUNCj5vdmVyIHRoZSBJbnRlcm5ldCBnb3Qgcm9vdCBvbiB0d28gUmVkSGF0IHN5c3Rl
bXMgSSdtIHJlc3BvbnNpYmxlIGZvci4gDQo+SXQgd2FzIG5vdCBmdW4uDQo=
------------------------------
From: [EMAIL PROTECTED]
Subject: newbie: ping ok --no telnet ftp
Date: Sun, 07 Feb 1999 02:21:18 GMT
This is probably an easy question, but I've been driving myself nuts trying to
figure it out, with no luck.
I am running Red Hat 5.1 in a small home lan with some windows machines (98 &
NT4). TCP/IP seems to be working fine, since I can ping all the way around,
my problem is that in trying to telnet or FTP from a win machine to linux my
login is refused. After reading some other posts I tried to telnet to
localhost, and had the same result. In all cases I tried logging in as both
root, and another user, neither worked. Additionally (or probably because
of) I can't get SAMBA to work right. the command smbclient -L larry will
list the C drive as an available resource, but smbclient \\larry\c comes
back with a menu- type list. I also am not seeing my linux box (curley) in a
network neighborhood window. Please Help!!! It' must be something simple,
but I'm just not seeing it.
Thanks in Advance.
Dennis
PS: I will also post any responses e-mailed to me in case someone else is in
the same boat.
============= Posted via Deja News, The Discussion Network ============
http://www.dejanews.com/ Search, Read, Discuss, or Start Your Own
------------------------------
From: Robert Means <[EMAIL PROTECTED]>
Subject: mac vol. mounting
Date: 7 Feb 1999 02:01:58 GMT
Howdy,
Well, I've got netatalk working without to much problem so I can
get from my Linux box out over the network. I then decided to go to the
next level. I got tkchooser2 and wrestled with that a little while.
Finally got it up and running. Then I figured out the next thing I need is
afpfs (I think,it isn't in fromt of me) to mount the apple volumes. I got
the source and tried to do a compile without any luck. Somewhere out there
is supposed to be a binary. (RedHat 5.2)
A) Does anyone have it or a valid link
or
B)Advice on how to compile it (I'm a semi-newbie)
or
C) Some other way to mount a mac volume on my linux-desktop
Thanks a lot,
Bob
[EMAIL PROTECTED]
------------------------------
From: David Efflandt <[EMAIL PROTECTED]>
Subject: Re: Redial Question
Date: Sun, 07 Feb 1999 02:40:46 GMT
Reply-To: [EMAIL PROTECTED]
On 2/6/99, 5:25:17 PM, "Quint Van Deman" <[EMAIL PROTECTED]> wrote=20
regarding Redial Question:
> I have ppp running very successfully on RH 5.2
> My question is that the ISP I dial into (the University of Virginia)=20
is
> often busy and usually requires 5-10 tries before a connection is=20
made.
> In my chat-ppp0 script I set the timeout to 20. However when I get a=20
busy
> signal, it waits 20 seconds to redial (even though I have an ABORT=20
BUSY
> entry in the script as well). Is there a work around to this?
> Thanks
> Quint
Once you set a timeout, that sticks until you set a different timeout.=20
But since you need to give it time enough to dial, handshake and get=20
a connect string, ABORT may not happen until that times out.
------------------------------
From: Stephen Carville <[EMAIL PROTECTED]>
Subject: Re: Linux DHCP vs NT
Date: 7 Feb 1999 01:59:43 GMT
Nick Short wrote:
>
> This is all true, but he didn't say what NT platform he is using and with the NT
>3.5x servers, there were some problems renewing the "lease". I went in the Unix
>Admin and got away from NT Admin and have since forgot how we solved the problem.
This may be true but the point is the NT Admins were BeeEssing. The
problems is on the NT side (a badly written or configured server), not a
problem with the client.
BTW, Outlook is not wrapping long lines for transmission.
--
Stephen Carville
[EMAIL PROTECTED]
====================================================
Management: The art of hiring intelligent, skilled individuals and then
ignoring their advice.
------------------------------
From: David Efflandt <[EMAIL PROTECTED]>
Subject: Re: one ip address
Date: Sun, 07 Feb 1999 02:46:37 GMT
Reply-To: [EMAIL PROTECTED]
On 2/6/99, 1:55:19 PM, Maat <[EMAIL PROTECTED]> wrote regarding one ip =
address:
> hello,
> I have my own (little) network at home, a ftp server and a webserver=20
but
> I have ordinary internet account and only one (static) ip address. But=
> if I want to connect both machines connected to the internet they must=
> have different ip addresses because they have different hostnames. Can=
=20
I
> have two ip addresses on one line and how? And if not, is there=20
another
> solution?
> Thanks!
> cheers,
> Johannes, http://www.chew.demon.nl
See HOWTO IP Masquerade.
------------------------------
From: [EMAIL PROTECTED]
Subject: Re: Utility to test network security
Date: Sun, 07 Feb 1999 02:44:57 GMT
http://wwdsilx.wwdsi.com/saint/docs/FAQ.html#linux
http://www.nessus.org/
[EMAIL PROTECTED] (R. Denoire) wrote:
>I am participating in a course about installing, arranging,
>configuring a LAN with an Internet connection. One of the machines
>(all PCs running SuSE 5.3 Linux 2.0.35) is going to act as a gateway
>for all other computers in the LAN using firewall and masquerading
>techniques. Software involved includes among others TCP Wrapper,
>ipfwadm and TIS. The key point about all this is going to be security.
>
>Sometime in about two weeks the teacher is going to test the network
>setup. I would rather know beforehand where the security holes are in
>order to correct them; bad results could even negatively affect my
>professional future.
>
>Now I am looking for a nice utility to analyse or "attack" or hack on
>my LAN and on the LAN of our competitors (several groups of the class
>are working in parallel doing this each with its own LAN segment). The
>emphasis of the utility should lie on "testing", not setting, because
>we are allowed only to make security settings per hand - using vi and
>the commonly available commands. The connection to the Internet itself
>is uncritical, since we have no access to the hosts really governing
>this. By the way, we are simulating a WAN connection, so we use a
>null-modem cable to connect the LAN gateway to the "Internet" (which
>is another LAN passing us through) using PPP. All this sounds nice
>and I am learning a lot, but I am afraid not enough.
>
>Any recommendations?
>
>Thanks in advance
>
>Rod
>----------------
>
------------------------------
From: David Efflandt <[EMAIL PROTECTED]>
Subject: Re: route.conf against route command
Date: Sun, 07 Feb 1999 02:59:08 GMT
Reply-To: [EMAIL PROTECTED]
On 2/6/99, 12:28:58 PM, [EMAIL PROTECTED] (R. Denoire) wrote=20
regarding route.conf against route command:
> As far as I know, one can insert a new route by adding the
> corresponding line into the file /etc/route.conf (SuSE 5.3). But
> again, using the route command (like route add ...etc) seems to work
> too.
> I would like to know the difference. I am very curious because I have
> read different howto files but never found a hint about this issue
> (the *difference*).
> So when should I edit the route.conf file and when should I use the
> route command? By the way, using the route.conf file seems
> straightforward to me, while I cannot figure out where a new route
> goes when using the "route add" command (of course, one can always use=
> route -n or netstat, but that is another story).
> Thanks
> ----------------
route.conf is probably used by routed, but you probably should not be=20
running routed or gated unless you are connected to routers that they=20
are allowed to communicate with. I looked into gated at one time, but=20
it seemed much easier to add a static gateway of last resort pointing=20
back at my Linux box (for ppp w/ip masq).
The route commands (with standard netmasks) are fairly simple once you=20
understand them, although, to make things confusing, Microsoft routing=20
seems totally opposite (they use IP or interface instead of IP of gw).=20
I typically remove any default route and add -net routes in=20
/etc/rc.d/rc.local.
------------------------------
From: [EMAIL PROTECTED]
Subject: mail - "we do not relay" error
Date: Sun, 07 Feb 1999 02:59:39 GMT
What does "we do not relay" from a mail recipient mean?
Either of the 2 machines in my newly-created network succeeds in
talking to the other when attempting to send mail, but is rejected
with this error message. (Sendmail, installed by default, runs on each
unmodified.)
I networked the machines then put up DNS. The 2 machines are named:
micron.dbm.bogus
emach1.dbm.bogus
as defined in my DNS (file /var/named/pz/dbm.bogus on micron). They
can ping each other-- name resolution works. I put an MX record in the
file:
IN MX 10 micron.dbm.bogus
Below is all the stuff that appears in /var/spool/mail/david when user
"david" at emach1.dbm.bogus goes into pine and tries to send a message
to user "root" at micron.dbm.bogus.
Does it have anything to do with the apparent fact that the message
below regards sender "david" as "[EMAIL PROTECTED]" as
opposed to "[EMAIL PROTECTED]" ? Is it more a DNS problem or a
mail problem? Any hints appreciated.
======================================
This is a MIME-encapsulated message
--QAA04697.918345919/localhost.localdomain
The original message was received at Sat, 6 Feb 1999 16:05:19 -0800
from david@localhost
----- The following addresses had permanent fatal errors -----
<[EMAIL PROTECTED]>
----- Transcript of session follows -----
... while talking to micron.dbm.bogus.:
>>> RCPT To:<[EMAIL PROTECTED]>
<<< 551 <[EMAIL PROTECTED]>... we do not relay
550 <[EMAIL PROTECTED]>... User unknown
--QAA04697.918345919/localhost.localdomain
Content-Type: message/delivery-status
Reporting-MTA: dns; localhost.localdomain
Arrival-Date: Sat, 6 Feb 1999 16:05:19 -0800
Final-Recipient: RFC822; [EMAIL PROTECTED]
Action: failed
Status: 5.1.1
Remote-MTA: DNS; micron.dbm.bogus
Diagnostic-Code: SMTP; 551 <[EMAIL PROTECTED]>... we do not relay
Last-Attempt-Date: Sat, 6 Feb 1999 16:05:19 -0800
--QAA04697.918345919/localhost.localdomain
Content-Type: message/rfc822
Return-Path: <[EMAIL PROTECTED]>
Received: from localhost (david@localhost)
by localhost.localdomain (8.8.7/8.8.7) with ESMTP id QAA04695
for <[EMAIL PROTECTED]>; Sat, 6 Feb 1999 16:05:19 -0800
Date: Sat, 6 Feb 1999 16:05:19 -0800 (PST)
From: <[EMAIL PROTECTED]>
To: [EMAIL PROTECTED]
Subject: greetings
Message-ID:
<[EMAIL PROTECTED]>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
hello root, how's it at micron?
--QAA04697.918345919/localhost.localdomain--
------------------------------
From: "Tony Meza, MD" <[EMAIL PROTECTED]>
Subject: Re: Linux & Windows & Samba / password encryption?
Date: Sat, 06 Feb 1999 20:50:37 -0500
The samba package in Redhat 5.2 does not support the windows password
encryption scheme, but you can tweak Win98 to use plain text passwords,
check out
http://www.xmission.com/help/unix/samba/win98_samba.txt
Tony
Mitch Cant wrote:
> Does anyone know if the new distribution of redhat 5.2 supports the
> windows password encryption scheme
> in it's samba package???
>
> Does anyone know a reliable ftp mirror I can download from???
>
> Everyone I have tried has at least some (10 - 100) invalid linked files
> or something else wrong...
>
> I've made 3 CD's so far and none of them completely installs!!!! ARGH!
>
> thanks
>
> mitch
>
> --
> -----------------------------------------------------------
> Mitch Cant <[EMAIL PROTECTED]>
> DDP Consulting Group, Vancouver BC Canada
> Phone: 604-294-9193 Fax: 604-294-9155
> Web Page: http://www.ddp.ca/
> -----------------------------------------------------------
------------------------------
From: David Efflandt <[EMAIL PROTECTED]>
Subject: Re: Serial Cable networking Questions. Please help!
Date: Sun, 07 Feb 1999 03:26:21 GMT
Reply-To: [EMAIL PROTECTED]
On 2/6/99, 5:39:14 PM, Dot Matrix <[EMAIL PROTECTED]> wrote=
=20
regarding Re: Serial Cable networking Questions. Please help!:
> David Efflandt wrote:
> > On 2/6/99, 1:30:28 AM, Dot Matrix <[EMAIL PROTECTED]> w=
rote
> > regarding Serial Cable networking Questions. Please help!:
> >
> > > Hello. I have RedHat 5.1 on a PC Clone, and i also have an old Ams=
trad
> > > PPC640, and I want to network them via a serial cable on com1 or
> > > something. Is this possible? ( I have the modem on com1 also, but =
will
> > > remove it if neccesary) And if it is, could soembody please tell m=
e
> > how?
> >
> > > Thanks in advane,
> > > Dot Matrix ([EMAIL PROTECTED]=
)
> >
> > See the Serial and PPP HOWTO's and Plip mini HOWTO. Plip works much=
> > faster than serial PPP (especially old machines with 8250 UART), but=
> > does not do Windows. You should see if you have instructions to
> > jumper your modem to another port or set your motherboard serial por=
t
> > to COM2.
> That's cool, but do you have any suggestions on how to do it from an
> ancient 640K Dos Machine that is running either DOS3.31 or Dos6.2?
Does trumpet winsock only work under Windows? With an old machine=20
like that you might be able to dig up an old shareware copy of ProComm=20
or other bbs/com program in SimTel? (DOS) archives and use it as a=20
remote vt100 shell terminal. Section 8 of Serial HOWTO tells how to=20
connect a remote terminal. You just need a LapLink/Interlink type=20
null modem cable or adapter. You should be able to use 'sz' and 'rz'=20
for zmodem file transfers. Just don't expect to do better than 9600=20
with an old 8250 UART.
I can remember trying to navigate around CompuServe with a plain text=20
screen (no menus) at 300 baud (1200 baud cost extra so I only used it=20
to download).
------------------------------
From: Leonard Gray <[EMAIL PROTECTED]>
Crossposted-To: comp.os.linux.hardware
Subject: Re: 10base-T recommendation?
Date: Sat, 06 Feb 1999 21:40:01 -0500
Keith W Sheffield wrote:
> I'm going to try to network my home machines together. Initially, I'll
> just use a crossover cable, but I plan on getting a hub and using IP
> Masq at some point in the future. The machines I'm using will be
> running linux.
>
> Does anyone have any recommendations on a good but inexpensive 10baseT
> PCI ethernet card and any suggested web pages/tips that I should check
> out before I begin this project?
I just did the same thing here, and found the Netgear FA310tx PCI card to
be an exceptional value. Around $27 each, this is a 10/100 PCI card using
the DEC Tulip driver. Someone donated a cheap Sohoware hub, and things
are running great here. I've read some rumors that newer models of the
card don't have the DEC chip, but can't confirm that.
Later!
------------------------------
From: Josh Rusko <[EMAIL PROTECTED]>
Subject: Re: WIN 98 as a Gateway?
Date: Sun, 07 Feb 1999 03:43:23 GMT
take the modem out of the win98 machine and pop it in the linux box. use IP
masquerading on the linux machine. it's alot better than wingate, basically
transparent, and free. before I had this setup I used wingate on a win98
box, and I had alot of problems. not only do you need alot of crazy proxy
server settings in every program you own, but AOL and ICQ and many others
won't work unless you pay for a license for at least one more PC than you
actually have (apparrently the way these services work, wingate thinks
another PC is using its proxy service). with IP masq, all you need to do is
set the win98 system to use the linux machine as a gateway, and as far as
the win machine is concerned it's directly connected to the net
Jamie Kugler wrote:
> At home I have a two machine network. Win 98 on one box, Redhat 5.2 on
> the other. Currently I am networked using ether net and a 10 base T
> hub. I'm not running Samba but I don't think that affects my question.
> My windows machine has a modem which I use to access the internet. The
> Redhat machine is one I borrowed form work and I don't wish to put my
> modem into the Redhat box. Can I set up my Win98 machine as a gateway
> and access the internet from the Redhat box? I have found a software
> called WinGate that looks promising but it costs money:( Is there other
> solutions to this problem that I am not aware of? Ideally I would like
> both machine to have access to the internet via the Win 98 machines
> modem. Is this possible??
------------------------------
From: Dan Crooks <[EMAIL PROTECTED]>
Subject: Re: mgetty & modem problem
Date: Sat, 06 Feb 1999 19:59:15 -0800
David Efflandt wrote:
> On 2/6/99, 1:41:26 PM, Dan Crooks <[EMAIL PROTECTED]> wrote regarding
> mgetty & modem problem:
>
> > I am trying to set up my server for dial-in service and have hit a
> > problem with mgetty. I am invoking it with the following entry in my
> > /etc/inittab file:
>
> > s1:2345:respawn:/sbin/mgetty -p \S /dev/ttyS1
>
> > When I call in to the server, the modems never establish a connection,
> > in fact they sound like they give up trying after about a minute. My
> > /var/log/messages files shows this entry:
>
> > linux mgetty[1653]: failed A_FAIL dev=ttyS1, pid=1653, caller='none' ,
> > conn=' ' , name=' '
>
> > Why are the modems not establishing a connection?
>
> > I think if the modems made a connection then the above error would not
> > show up after a successful login. Can anyone help me out with this
> > problem?
>
> > Dan
>
> dialin.txt @ http://www.xnet.com/~efflandt/linux/
Here's what I got so far...users can dial-in and start a shell account.
However, when they attempt to run the ppp script I do not get a ppp0 in my
ifconfig, so I assume that pppd is not starting. I suspect it is an
authentication problem and am working that now. I am glad the Win98 users
can at least login to a shell account. That's an improvement from before,
so progress is being made.
Thanks for the reply...I will see if it helps me or not...
Dan
------------------------------
From: "Felix A. Hernandez" <[EMAIL PROTECTED]>
Subject: Intel EtherExpress 10/100B ISA need help
Date: Sun, 07 Feb 1999 04:05:59 GMT
I have Linux Redhat 5.1 and I can not get my Intel EtherExpress 10/100B ISA
to work. If I type:
ifconfig eth0 defiant irq 10
I get SIOCSIFADDR: operation not supported by device.
I think the network is enabled, because I was able to ifconfig lo
I have two identical ethernet cards. I need to config both of them to work,
so I can set up my machine as a firewall/proxy server for my home network. I
have a cable modem. I want to put the cable modem on one NIC and the home
network on the other NIC. I am using RoadRunner.
Currently I have only one card install and I swapped it to see if it was
maybe a bad card, but no luck.
I also read somewhere. I forgot where, that if I use two NICs that are
identical I must specify in LILO the config info for each card. I think the
syntax was lilo: eth0 irq 10 eth1 irq 12. How can I config this and what is
the right syntax?
I first just want to get one card to work so I can ftp the kernel 2.2 and
install it.
Fair Bits....
Felix A. Hernandez
[EMAIL PROTECTED]
------------------------------
** FOR YOUR REFERENCE **
The service address, to which questions about the list itself and requests
to be added to or deleted from it should be directed, is:
Internet: [EMAIL PROTECTED]
You can send mail to the entire list (and comp.os.linux.networking) via:
Internet: [EMAIL PROTECTED]
Linux may be obtained via one of these FTP sites:
ftp.funet.fi pub/Linux
tsx-11.mit.edu pub/linux
sunsite.unc.edu pub/Linux
End of Linux-Networking Digest
******************************
