Linux-Networking Digest #273, Volume #10 Sun, 21 Feb 99 17:13:50 EST
Contents:
Re: Samba & win98 write permissions ("Dan Tager")
Re: ~~ Funny Problems with LINUX/SAMBA ~~ ("Dan Tager")
Re: Can only send short eMails, ftp loosing connection (J. Scott Berg)
Re: No default gateway - routing (Luca Filipozzi)
Will Slirp Do This? (corgard)
Re: Old ISA ethernet card - Recomendations? (corgard)
creating multiple users with passwords on RedHat 5.1 (SG)
Re: Looking to have my own domain name (Rodney Wade)
smbfs and NT dates not sync'd ([EMAIL PROTECTED])
SAMBA 2.02 & NT4 ("Dean Reese")
Ethernet Driver for AcerLan320TX ? ("A v/d Sanden")
Bridge + Firewall problem (Hugo Haas)
Re: ftp server setup (John Thompson)
Re: Machine name themes - what do you use? (Steven Sykes)
Webmin ("Sonderegger")
How to setup a POP3 server ? HLP. pls. ("binaryhead")
----------------------------------------------------------------------------
From: "Dan Tager" <[EMAIL PROTECTED]>
Subject: Re: Samba & win98 write permissions
Date: Sat, 20 Feb 1999 11:31:26 -0000
Lynn Buell wrote in message <[EMAIL PROTECTED]>...
>HiThere!
> I've got to the point where I
>can see my Linux box on my win98 &
>can browse the folders, but I can't
>save anything from the win98 to the
>Linux. I think I have write
>permissions correct in samba, but I
>think I remember seeing somewhere
>that you have to configure Linux
>permissions or it doesn't make any
>difference how samba is
>configured. I'm using Linux in
>"the back room" & would really like
>to convert my file server to it.
>I'm tired of screwing with windows
>crap!
> Thank You for your help. I know
>about enough about unix & Linux to
>be dangerous, & I like what I'm
>Learning, I just need a little
>coaching
>
> Thanks, Lynn
You need to set file permissions and default file permissions in samba.
In your smb.conf file, use the mask option in your shares. This value
should be a 3 digit number where
the first digit is owner permission, the second is group permission, and the
third is everyone else.
Use 6 for read and write, 4 for just read, and 0 for neither read nor write.
So for public directories use the following...
mask = 666.
For directories that you want a group to write to and everyone else read
only...
mask = 664
For directories that are private by user...
mask = 600
If you already have existing files you can change the permissions from a
command prompt using chmod. (man chmod) Also make sure the directories are
set correctly. They need execute permissionms set, 7 for read, write, and
execute. 5 for just read and execute.
User and group ids are defined in your /etc/passwd and /etc/group file.
--Dan
[EMAIL PROTECTED]
------------------------------
From: "Dan Tager" <[EMAIL PROTECTED]>
Subject: Re: ~~ Funny Problems with LINUX/SAMBA ~~
Date: Sat, 20 Feb 1999 11:38:52 -0000
Alvin wrote in message <7am408$2u$[EMAIL PROTECTED]>...
>Hi,
>I have a win98 machine and a Linux redhat 5.1 box. I have Win98 setup to
>log onto the samba server. I'm unable to log onto the server as it shows me
>an error similar to "no domain to validate your password" plaintext
password
>is enabled on my win98 machine.
>anyway, there is an OK button and a CANCEL button with the error dialog
box,
>if i hit on ok.....and wait a while, i'll get into windows 98.
>Once there i'm able to see my home directory on the linux box inside the
>network neighborhood.
>
>I can also access my apache web server without a problem.
>
>what am i doing wrong???
>
Just a guess, but do you have the "Logon to Windows NT Domain" option set
under Client for Microsoft networks set? If you do, turn it off or set up
samba to handle the domain logons.
--Dan
------------------------------
From: [EMAIL PROTECTED] (J. Scott Berg)
Subject: Re: Can only send short eMails, ftp loosing connection
Date: 21 Feb 1999 18:30:24 GMT
In article <[EMAIL PROTECTED]>,
thartman <[EMAIL PROTECTED]> wrote:
>using Netscape as well as KMail I can only send verry short eMails,
>about 30 lines or so.
>
>When sending larger ones I cansee packets going out and in, then nothing
>happens. Only in from time to time 2 packets go out, nothing coming in.
>Also no clues apear in /var/log/messages.
>
>Receiving mails via POP3 is OK.
>
>Anyone any Idea where else I can look for hints ?
>BTW: I also have problems with ftp. Files are sent but after the client
>says "100%" ncftp, ftp and xftp hang up telling me the other side didn't
>respond.
>Maybe these 2 have to do with oneanother ?
I assume you're using ppp for your connection. I had a similar
problem with my ISP.
First, set the debug option in /etc/ppp/options. Look at whereever
syslogd puts debug output; you should see something like:
pppd[184]: rcvd [LCP ConfReq id=0x2 <mru 1524> <asyncmap 0xa0000> \
<auth chap 05> <pcomp> <accomp>]
Note that "<mru dddd>" entry; I suspect you're seeing a number similar
to mine. Next, I'm assuming that you're not setting an mtu in your
/etc/ppp/options file. Set an mtu (don't bother with the mru) which
is smaller than the number in the "<mru dddd>" entry above. The
numbers of choice are generally 1500 or 576. I got my connection
working with 1500. Don't try anything above 1500.
-Scott Berg
------------------------------
From: [EMAIL PROTECTED] (Luca Filipozzi)
Subject: Re: No default gateway - routing
Date: Sun, 21 Feb 1999 08:50:18 -0800
In article <7amsvo$6kn$[EMAIL PROTECTED]>, [EMAIL PROTECTED]
says...
>
> >> I started managing a small network consisting of 2 segments: 10.97.0.0
> >> and 10.20.0.0. There is a Linux Box working as router ( i would like
> >> this ! ) - its NICs : 10.20.1.1 and 10.97.1.1
> >> I have a WEB Server in the 10.97.1.2 subnet and want to ge to the users
> >> on 10.20.0.0 access to it by simply typing 10.97.1.2 as URL in their
> >> browsers.
> >
> >All sounds OK so far.
> >
> >> The problem is that i can not change an existing Default gateway
> >> definition for Win machines on 10.20.0.0 ( need to be 10.20.1.1 )
> >> because they are beyond of my control.
> >
> >No this is not a problem. 10.20.1.1 *is* the address of the router so
> >you do not want to chage it.
> >
> >> I can not also update the routing tables for these machines.
> >
> >I cannot see why you'd want to.
> >
> >> What are the possible solutions?
> >
> >Could you descibe a problem please? It's rather hard to propose a
> >solution without a problem. Nothing you have described is a problem.
> >
> >> Routed/Gated? Masquerading?.....
> >
> >None of these are needed in such a a simple case.
> >
> >Random shot-in-the-dark: You forgot to enable IP forwarding on the
> >Linux box.
>
> I dont understand your emotional reaction. I realy cant change the default
> gateway for MS machine because it is forbidden for me to even touch these
> machines ( btw: how you can reach a machine on 10.97.0.0 from 10.20.0.0
> without either change def.gateway or routing table on all the machines ?)
>
> Dont take this personally.
> I can e-mail you all the details if you are redy to give me a hand.
Is the default gateway for the 10.20.0.0 machines currently set to
10.20.1.1? Or is that your point... that it isn't set 10.20.1.1 and that
you can't change it?
If that's the case then you can add a route to the 10.97.0.0 subnet to
the default gateway of the 10.20.0.0 subnet...
route 10.97.0.0 255.255.0.0 10.20.1.1
In this way, when a MS workstation in the 10.20.0.0 subnet sends a packet
for the 10.97.0.0 subnet, the packet will first go to the default gateway
router for 10.20.0.0 (whatever that is) and the default gateway router
will send it to 10.20.1.1.
This presupposes that you have access to at least the default gateway
router of the 10.20.0.0 subnet. (or can at least send RIP or OSPF data to
it).
Hope this garbled reply helps,
Luca
--
Luca Filipozzi <[EMAIL PROTECTED]>
------------------------------
From: [EMAIL PROTECTED] (corgard)
Subject: Will Slirp Do This?
Reply-To: [EMAIL PROTECTED]
Date: Sat, 20 Feb 1999 17:34:45 GMT
Hi!
I have a cable connection to the internet. My cable provider does not
have very good newsgroup services. My ultimate goal is to get
high-speed access to a "fairly-complete" newsgroup service.
I have (very cheap) access to excellent newsgroup service via a local
ISP (that is NOT my cable provider). They use a simple login/password
authentication scheme for standard dialup PPP access. Currently I can
telnet to the ISP over cable modem and use 'nn' to read newsgroups,
but there are limitations to the 'nn' program.
Is there a way to create a TCP/IP connection to my ISP, over the cable
modem connection rather than having to use dial-up? I see there are
some working groups looking at 'PPP over Ethernet' currently, but I've
found no obvious solutions with Linux.
Am I missing something? Would Slirp do this? How about some sort of
TCP/IP tunneling? If anyone could point me in the right direction,
I'd appreciate it!
Thanks for you time.
Corgard
------------------------------
From: [EMAIL PROTECTED] (corgard)
Crossposted-To: comp.os.linux.hardware,comp.os.linux.misc
Subject: Re: Old ISA ethernet card - Recomendations?
Reply-To: [EMAIL PROTECTED]
Date: Sat, 20 Feb 1999 17:44:17 GMT
Remember with an ISA bus, you are at best going to get speeds of 25 to
33 MHz. Therefore, buying a 100 Mbit/sec (=100 MHz) card will simply
be overkill on an ISA bus.
I know personally of no 100 Mbit/sec ISA ethernet cards, but I
certainly am not the last word on the subject. Linux supports NE2000
clone cards very well. As far asperformance goes, unless you're going
to do IP mulicasting of MPEG video over your home network, a 10
Mbit/sec network should do fine until you upgrade all computers to PCI
bus.
I have had good success with www.egghead.com (the surplus direct
section) I have purchased well over 20 ISA ethernet cards (for Linux
machines) at prices ranging from 5.99 to 7.99 per card. I have also
noticed on the site that if you miss a good deal, simply wait 2-3
weeks, and the same product will reappear.
Hope that helps.
On Sat, 20 Feb 1999 13:05:16 -0500, "Arcady Genkin" <[EMAIL PROTECTED]>
wrote:
>Hi all!
>
>Can you guys recomend what used ISA networking card should I buy?
>
>I am going to network 2 computers. The other one already is a PCI
>full-duplex 100Base-TX/10Base-T with Reltek 8139 chip (ne2000 for PCI).
>Should it influence my decision as to what to buy? I have heard that ne2000
>clones are poor performers.
>
>What transmission speeds do you suppose I will be able to get out of it? I
>know 100Base is capable of 200 Mbps in full duplex mode. Any ISA cards match
>that?
>
>Also, how safe is it to buy from online auctions, like Ebay? There seems to
>be tons of old hardware for sale there...
>
>Thanx a lot for any input!
>
>Arcady
>
------------------------------
From: [EMAIL PROTECTED] (SG)
Subject: creating multiple users with passwords on RedHat 5.1
Date: Sun, 21 Feb 1999 20:05:29 +0100
Does anyone know how to create, on a batch basis, a large number of users
INCLUDING passwords in RedHat 5.1?
I have set up a mail server that some 400+ students will use. I have the
names and other info in standard database tables, so I can output a text
file in whatever format I might require to create the ids.
Creating the users with a simple script is not the problem, but assigning
the passwords is. - I do not want to have to revisit every account with the
passwd command.
Plase help,
responses to [EMAIL PROTECTED] or here.
Salvatore Giacinto
------------------------------
From: Rodney Wade <[EMAIL PROTECTED]>
Subject: Re: Looking to have my own domain name
Date: Sat, 20 Feb 1999 10:50:47 -0600
You might try TZO.com they have really good rates i got a subdomain
YOUDOMAIN.tzo.net for a dynamic ip for like $20 I think your own domain
name might be $50 Internic is for only those that have static ip
addresses,(if you go through an isp you might be able to get one but
don't count on it). If you go through INTERNIC make sure you go to
internic.net, internic.com charges more and everyone has to go through
internic.net it's $70 for 2 years
Rodney
------------------------------
From: [EMAIL PROTECTED]
Subject: smbfs and NT dates not sync'd
Date: Sat, 20 Feb 1999 17:26:34 GMT
Hello,
I use smbmount to connect to our department NT server and copy
files from Linux to it. This all works fine, except the dates are off
by 5 hours. The file dates as shown under DOS or Windows are 5 hours
ahead of the time the Linux machine performed the copy.
Since 5 hours is how far ahead EST is from GMT, I assume it has
something to do with this. But I see no way to control this behavior
through smbmount. Is it a bug or feature?
System information:
Linux 2.0.36, stock RH5.2 kernel.
smbmount program version 2.0.1, distributed with RH5.2
I have no information about the NT server - do you need it?
Thanks for any help,
Charles Wright
[EMAIL PROTECTED]
------------------------------
From: "Dean Reese" <[EMAIL PROTECTED]>
Subject: SAMBA 2.02 & NT4
Date: Sat, 20 Feb 1999 12:18:56 -0800
I am trying to see linux mount from NT .. I can see the computer ,, but it
cannot authenticcate the password ... I tried using SWAT to configure . ..
but still cannot see Linux Shares ... HELP
thanks,
[EMAIL PROTECTED]
------------------------------
From: "A v/d Sanden" <[EMAIL PROTECTED]>
Subject: Ethernet Driver for AcerLan320TX ?
Date: Sun, 21 Feb 1999 22:03:23 +0100
Does anyone know how to get an AcerLan 320 Tx 10/100Mbps working under Linux
?
Thanks Albert
------------------------------
From: [EMAIL PROTECTED] (Hugo Haas)
Subject: Bridge + Firewall problem
Date: 20 Feb 1999 16:53:06 GMT
Hi.
I'm trying to configure a firewall between two OPSF routers:
R1 ---- (eth0 --- eth1) ---- R2
Router Linux 2.2 Router
Firewall
As I need to forward OSPF packets, using multicast address 224.0.0.5, I
cannot use just IP forwarding (I did not find a way to do that).
Therefore, I used bridgex 0.25 to forward packets between R1 and R2, which
works fine. However, I do not manage to filter packets using ipchains as
described in the Bridge+Firewall Mini-HOWTO. It seems that the packets stay
at layer 2 (which I could understand, but it is not the behavior described
in the HOWTO since eth0 and eth1 are in two different subnets) and therefore
the firewall does not seem to "see" them.
Packets are always forwarded, even if I use a rule like "ipchains -P forward
DENY".
Here is the routing table I use:
Kernel IP routing table
Destination Gateway Genmask Flags Metric Ref Use Iface
10.0.63.5 * 255.255.255.255 UH 1 0 0 eth1
10.0.63.20 * 255.255.255.255 UH 1 0 0 eth0
10.0.63.16 * 255.255.255.240 U 0 0 0 eth0
10.0.63.0 * 255.255.255.240 U 0 0 0 eth1
default 10.0.63.20 0.0.0.0 UG 2 0 0 eth0
and here is the output of ifconfig:
eth0 Link encap:Ethernet HWaddr 00:60:97:53:EC:1E
inet addr:10.0.63.19 Bcast:10.0.255.255 Mask:255.255.255.240
UP BROADCAST RUNNING PROMISC MULTICAST MTU:1500 Metric:1
eth1 Link encap:Ethernet HWaddr 00:20:AF:11:F9:AC
inet addr:10.0.63.3 Bcast:10.0.255.255 Mask:255.255.255.240
UP BROADCAST RUNNING PROMISC MULTICAST MTU:1500 Metric:1
(yes, I know, the broadcast address looks strange... I guess it is because I
used the -broadcast option)
The script configuring the network is:
ifconfig lo 127.0.0.1
route add -net 127.0.0.0
IPADDR0=10.0.63.19
IPADDR1=10.0.63.3
NETMASK=255.255.255.240
NETWORK=10.0.63.0
ROUTER1=10.0.63.20
ROUTER2=10.0.63.5
ifconfig eth0 ${IPADDR0} pointopoint ${ROUTER1} netmask ${NETMASK} -broadcast
ifconfig eth1 ${IPADDR1} pointopoint ${ROUTER2} netmask ${NETMASK} -broadcast
route add -host ${ROUTER1} metric 1 dev eth0
route add -host ${ROUTER2} metric 1 dev eth1
route add default gw ${ROUTER1} metric 2 dev eth0
echo "1" > /proc/sys/net/ipv4/tcp_syncookies
echo "1" > /proc/sys/net/ipv4/ip_forward
and finally, the configuration of my kernel:
#
# Networking options
#
CONFIG_PACKET=y
CONFIG_NETLINK=y
CONFIG_RTNETLINK=y
CONFIG_NETLINK_DEV=y
CONFIG_FIREWALL=y
CONFIG_NET_ALIAS=y
CONFIG_FILTER=y
CONFIG_UNIX=y
CONFIG_INET=y
CONFIG_IP_MULTICAST=y
# CONFIG_IP_ADVANCED_ROUTER is not set
# CONFIG_IP_PNP is not set
CONFIG_IP_FIREWALL=y
CONFIG_IP_FIREWALL_NETLINK=y
CONFIG_NETLINK_DEV=y
CONFIG_IP_ALWAYS_DEFRAG=y
# CONFIG_IP_TRANSPARENT_PROXY is not set
CONFIG_IP_MASQUERADE=y
# CONFIG_IP_MASQUERADE_ICMP is not set
# CONFIG_IP_MASQUERADE_MOD is not set
CONFIG_IP_ROUTER=y
# CONFIG_NET_IPIP is not set
# CONFIG_NET_IPGRE is not set
CONFIG_IP_MROUTE=y
# CONFIG_IP_PIMSM_V1 is not set
# CONFIG_IP_PIMSM_V2 is not set
# CONFIG_IP_ALIAS is not set
# CONFIG_ARPD is not set
CONFIG_SYN_COOKIES=y
# CONFIG_INET_RARP is not set
CONFIG_IP_NOSR=y
CONFIG_SKB_LARGE=y
# CONFIG_IPV6 is not set
CONFIG_IPX=m
# CONFIG_IPX_INTERN is not set
# CONFIG_SPX is not set
# CONFIG_ATALK is not set
# CONFIG_X25 is not set
# CONFIG_LAPB is not set
CONFIG_BRIDGE=y
# CONFIG_LLC is not set
# CONFIG_ECONET is not set
# CONFIG_WAN_ROUTER is not set
# CONFIG_NET_FASTROUTE is not set
# CONFIG_NET_HW_FLOWCONTROL is not set
# CONFIG_CPU_IS_SLOW is not set
(I do not really understand why IP masquerading is necessary, but it seems
that having it or not makes no difference)
Does anybody see what is wrong about my configuration? Or perhaps there is a
simpler way to do that.
Thank you for any help.
Regards,
Hugo
--
Hugo Haas (http://www.via.ecp.fr/~hugo/)
------------------------------
From: John Thompson <[EMAIL PROTECTED]>
Subject: Re: ftp server setup
Date: Sat, 20 Feb 1999 09:57:51 -0600
Barton L. Phillips wrote:
> I'm looking for some doc/info on setting up my ftp server. I want to
> have both an anonymous and secure ftp site, but I don't want even the
> secure site to see all of my disk. I know I can do what I want to, I
> just don't know how.
I would make an ftp group for the users who will be using
the service and restrict the directories this group has
access to by changing the appropriate permissions.
--
-John ([EMAIL PROTECTED])
------------------------------
From: Steven Sykes <[EMAIL PROTECTED]>
Crossposted-To: comp.unix.solaris
Subject: Re: Machine name themes - what do you use?
Date: Mon, 22 Feb 1999 07:41:19 +1300
In article <7anu08$vcf$[EMAIL PROTECTED]>,
<URL:mailto:[EMAIL PROTECTED]> wrote:
> We've used Godzilla monsters (rodan, etc.), cheeses (gouda, swiss, jack, etc),
> muppets (fozzy, kermit, piggy, etc), and in one case, the 3 stooges for our 3
> staging boxes (larry, moe, curly).
>
> In article <[EMAIL PROTECTED]>,
> Marty Itzkowitz <[EMAIL PROTECTED]> wrote:
> > I used herb names for a set of lab machines:
> > parsley, sage, rosemary, thyme, basil, arugula, ...
> >
> > At a previous company, one set of lab machines was named
> > after defunct computer companies:
> > cydrome, multiflow, vitesse, ...
> >
> > Marty Itzkowitz
Being a fan of the Corrs, I've named four machine Andrea, Caroline,
Sharon and Jim. :)
Cheers,
--
Steven
Newsletter editor and Webmaster of WACC - Wellington Acorn Computer Club
WACC pages: http://www.paradise.net.nz/~pbrowne/WACC/
Phone: (03) 358-5601 or (025) 908-448
My pages: http://www.paradise.net.nz/~acorn/
... 90% of being smart is knowing what you're dumb at.
------------------------------
From: "Sonderegger" <[EMAIL PROTECTED]>
Subject: Webmin
Date: Sun, 21 Feb 1999 22:29:27 +0100
Tag an alle linuxer
Habe WEBMIN 0.65 Installiert l�uft auch hervorragend!
Habe aber eine Frage
Wie kann ich Proxy-Daten (Squid) abrufen.
Webmin m�chte Password und URL
Habe alle meine Passw�rter probiert bekomme
aber immer Unerlaubterzugriff zur�ck
auch wenn ich direkt von der Maschine abfrage
wer kann mir Helfen!
Dank f�r antworte
ps
------------------------------
From: "binaryhead" <[EMAIL PROTECTED]>
Subject: How to setup a POP3 server ? HLP. pls.
Date: Sun, 21 Feb 1999 16:49:29 -0500
I would like to setup a pop3 server on my Linux box, but I am having trouble
finding anything on this subject...
Any help greatly appreciated.
tia.
------------------------------
** FOR YOUR REFERENCE **
The service address, to which questions about the list itself and requests
to be added to or deleted from it should be directed, is:
Internet: [EMAIL PROTECTED]
You can send mail to the entire list (and comp.os.linux.networking) via:
Internet: [EMAIL PROTECTED]
Linux may be obtained via one of these FTP sites:
ftp.funet.fi pub/Linux
tsx-11.mit.edu pub/linux
sunsite.unc.edu pub/Linux
End of Linux-Networking Digest
******************************
