Linux-Networking Digest #423, Volume #10 Mon, 8 Mar 99 14:13:44 EST
Contents:
Re: For all you Nicrosoft lovers (John Hasler)
Re: SSH Question (Rick Onanian)
Re: IP Masquerading and iPhone ("A J Wilson")
Firewall Accounting Rules (Darren Evers)
Re: SYN flooding... (rick)
Re: Firewall: ICMP/10 to 224.0.0.2 ([EMAIL PROTECTED])
Re: Linux as LAN Gateway ("J. J. Horner")
Re: probs (Khairulanuar Abd Majid)
Want drivers for NewMedia LiveWire+ Full Duplex Ethernet PCMCIA card!!! ("Flavio
Molinelli")
Linux installFest 4-20-99 Marlboro, Ma all welcome!! ([EMAIL PROTECTED])
Re: DNS questions (Rick Onanian)
RPC: Port mapper failure - RPC: Unable to receive (Scott Risen)
Re: About VIN connection ("John Hardin")
ftp login failed with wu.ftp_2.4.2 ("David Novo")
Re: cracker using su on account nobody ([EMAIL PROTECTED])
Re: D-Link 530 TX e-cards ("Matt G")
Re: For all you Nicrosoft lovers ("Robert Bentley")
Re: Compex RL100ATX (Mathias Hamp)
Re: Should I try Linux? ("John Hardin")
----------------------------------------------------------------------------
From: John Hasler <[EMAIL PROTECTED]>
Crossposted-To: alt.os.linux,comp.os.linux.hardware,comp.os.linux.setup
Subject: Re: For all you Nicrosoft lovers
Date: Mon, 8 Mar 1999 13:45:21 GMT
Samuel Aw writes:
> Extremely disturbing esp. when I use win98 in the office.. shesh! and
> all the while, m$ is spying on win98 users, collect info about us and F*!
> I PAID them to do all these shit ! How could they!
Surely when you chose to use a closed source OS you realized that you were
exposing all your secrets to the vendor.
--
John Hasler This posting is in the public domain.
[EMAIL PROTECTED] Do with it what you will.
Dancing Horse Hill Make money from it if you can; I don't mind.
Elmwood, Wisconsin Do not send email advertisements to this address.
------------------------------
From: Rick Onanian <[EMAIL PROTECTED]>
Subject: Re: SSH Question
Date: Mon, 08 Mar 1999 12:15:18 -0500
Have you looked through ssh.net, ssh.org, ssh.fi?
There's at least some of what you're looking for on those. I don't know
exactly where, but they're in there. :)
"Derek Kwan - http://Derek.KWAN.on.ca" wrote:
>
> Hello World,
>
> 1) I want to install SSH daemon (i.e. replace telnetd). Where I can find
> the source/binary for that?
> 2) Where I can find a SSH Client that run on Linux?
> 3) Where I can find a SSH Client that run on Windowz?
>
> Any other thing I should beaware of?
>
> Derek
--
rick - a guy in search of raw (ISO) cd images of SuSE and Slackware
===============
My opinions don't exist, and as such, are not anyone elses. I do not
represent anyone, not even myself, and especially not my employer.
---
Looking for a 1968 Camaro SS convertible, black interior,
beat-up rustbucket that is in need lots of restoration and TLC.
---
To email me, take out the papers and the trash
[EMAIL PROTECTED]
------------------------------
From: "A J Wilson" <[EMAIL PROTECTED]>
Subject: Re: IP Masquerading and iPhone
Date: Tue, 9 Mar 1999 04:42:37 +1100
To be honest, I have no idea if the statement is missing something. I got
this statement from a HOW-TO document somewhere on the Internet.
How exactly do you set up a control channel?
Austin
Tobias Reckhard (jester) wrote in message
<[EMAIL PROTECTED]>...
>On Mon, 8 Mar 1999 05:54:56 +1100, "A J Wilson"
><[EMAIL PROTECTED]> wrote:
>
>>ipautofw -A -r udp 22555 22555
>
>Isn't this statement missing the redirection target, i.e. information
>about which host to forward UDP packets to port 22555 to? You need to
>specify either the host directly, using the '-h' option, or set up the
>control channel for dynamic forwarding with the '-c' option. Both take
>arguments, in the case of '-h' it's the IP address of the host that
>you want to redirect to, with '-c' you specify the UDP or TCP
>destination port that triggers the forwarding rule.
>
>Tobias / jester
------------------------------
Date: Mon, 08 Mar 1999 10:08:35 -0500
From: Darren Evers <[EMAIL PROTECTED]>
Subject: Firewall Accounting Rules
I understand I can do mild bandwidth accounting with the proper ipfwadm
rule sets. I have tried to establish rules which account for every
host in my private network. Like this:
ipfwadm -A -a -D 10.0.5.15
ipfwadm -A -a -S 10.0.5.15
What I'd like to achieve is accounting for outgoing and incoming FTP,
HTTPD, POP3, SMTP, and TELNET for each hosts in my private network.
I am new to writing rules, so , If anyone can help or point me towards
helpful sites I'd be very appreciative.
Thank you,
Darren
------------------------------
From: rick <[EMAIL PROTECTED]>
Subject: Re: SYN flooding...
Date: Mon, 08 Mar 1999 15:01:32 GMT
syn cookie is a good thing. its compiled into the kernel and prevents that
type of attack from disrupting your system
"Derek Kwan - http://Derek.KWAN.on.ca" wrote:
> Hello World..
>
> Lately I have received a few SYN flood attack. And from the syslog it
> said something about sending SYN cookie... I know what a SYN flood
> attack is, but what is a SYN cookie? And how could SYN cookie to
> prevent/protect server from SYN flooding? Can anyone explain?
>
> Also from my firwall log, I get some telnet (mostly, but sometime also
> get some attempts to port 113) attempts from external (which is blocked
> by firewall) network atleast 4-5 times a day, is that normal for a cable
> modem user? Or the number is a bit high/low?
>
> Derek
------------------------------
From: [EMAIL PROTECTED]
Subject: Re: Firewall: ICMP/10 to 224.0.0.2
Date: Mon, 08 Mar 1999 15:03:27 GMT
Sorry for bothering you all, but I found the answer in RFC 1256. I copy the
paragraph below.
SolicitationAddress
The IP destination address to be used for sending
Router Solicitations from the interface. The only
permissible values are the all-routers multicast
address, 224.0.0.2, or the limited-broadcast address,
255.255.255.255. (The all-routers address is preferred
wherever possible, i.e., on any link where all
advertising routers support IP multicast.)
Thanks,
Nick Bourbaki
[EMAIL PROTECTED]
(remove the "nospamplease." to e-mail me)
============= Posted via Deja News, The Discussion Network ============
http://www.dejanews.com/ Search, Read, Discuss, or Start Your Own
------------------------------
From: "J. J. Horner" <[EMAIL PROTECTED]>
Subject: Re: Linux as LAN Gateway
Date: Mon, 08 Mar 1999 10:47:08 -0500
Reply-To: [EMAIL PROTECTED]
This is good info. If the person who answers can post here, I would
appreciate it. I have many of the same questions.
Thanks
Jon Horner
Mark Napper wrote:
> Hi All,
>
> I am planning on building up a spare machine to be an Internet Gateway
> for my LAN. The clients will be 4 Win98 and 1 Win98/Linux (my
> machine).
>
> Now I want to be able to use redirection so that all OSes and machines
> think they are DIRECTLY connected without having to use proxy if
> that's possible.
>
> I want the Linux box as a news & e-mail server/forwarder so that it
> connects each night or weekend, checks for the latest newsgroup
> messages & E-Mails to the familly from the ISP and stores it locally
> so that we can point our newsgroup readers and E-Mail software to the
> linux box, and get the latest on it.
>
> I also want to provide a Part-Time Web & FTP server for the weekends.
>
> What I want to know is How do I do it and Which HOWTOS do I need to
> read to provide further background information (I downloaded the
> latest on Feb 27)
>
> Thanks in advance
--
J. J. Horner
[EMAIL PROTECTED]
[EMAIL PROTECTED]
Network Administrator and Support
------------------------------
From: Khairulanuar Abd Majid <[EMAIL PROTECTED]>
Subject: Re: probs
Date: Tue, 09 Mar 1999 01:46:23 +0800
tade
Khairulanuar Abd Majid wrote:
> i have a problem here
> before this i've installed redhat 5.1 and happy with it...
> all the stuff i.e networking, X-windows... ar working...
>
> just now i've upgraded it to redhat 5.2 ...
> its seems that my network is not running....
>
> FYI ... i used 3com 3509b nic...
> i've disabled the pnp...
>
> there are no error messages at booting...
> it detected my nic...
> but i cant get thru...
> i can ping myself (my ip 161.x.x.x)
> i can ping localhost (127.0.0.1)
>
> ... anybody can help ?
> thanx in advance
------------------------------
From: "Flavio Molinelli" <[EMAIL PROTECTED]>
Crossposted-To: comp.os.linux.hardware
Subject: Want drivers for NewMedia LiveWire+ Full Duplex Ethernet PCMCIA card!!!
Date: Mon, 8 Mar 1999 16:41:15 +0100
Anyone has got them?
or else I have to buy another card?
sincerely
Flavio Molinelli
[EMAIL PROTECTED]
------------------------------
From: [EMAIL PROTECTED]
Subject: Linux installFest 4-20-99 Marlboro, Ma all welcome!!
Date: Mon, 08 Mar 1999 17:58:19 GMT
WLUG InstallFest!
Saturday, March 20, 1999 from 10 AM to 4 PM
Status Computer, Marlboro, MA
What is an "InstallFest"? Well, you bring your entire computer to the
install fest, and we'll have lots of people on hand who are very able
and eager to help you install Linux for the first time.
We'll supply the Linux CD (or you may bring your own if you wish), the
technical expertise, some light refreshments, and a good time. We'll
do our best to get your computer running Linux and to get X-windows
working. All we ask in return is the following:
a) Please sign up in advance so we can schedule a timeslot for you.
b) We are requesting a $10 donation to WLUG for non-Stratus
employees.
c) Spread the word about Linux to your friends!
for more info goto- http://rob.millbury.net/~wlug/
Worcester Linux Users' Group (WLUG)
Contact Andy at [EMAIL PROTECTED]
------------------------------
From: Rick Onanian <[EMAIL PROTECTED]>
Subject: Re: DNS questions
Date: Mon, 08 Mar 1999 10:53:13 -0500
Brent Rader wrote:
[...]
> Aslo, is there a way to route to a computer on my lan if it doesn't have
> it's own IP on the internet? Meaning, can I route a request for
> computer1.mydomain.com to 192.168.0.4? Or, can I send a packet to that
> local IP based on the IP it is comming from. So that when I telnet to
> mydomain.com from my work PC it will always go through to the other
> computer on my lan. Is this possible or do I need to live without
> direct access to that machine or break down and spend the money for
> extra IP addresses? :)
>
> Thanks,
> Brent
I'm unsure of how to attach differant hostnames to this scheme, but
what you CAN do is use ipportfw, rinetd, ipautofw, or some other port
redirector. What they do (I use ipportfw) is forward incoming
connections to a given port on your real IP to a given port on your
intranet.
For example, a command like
ipportfw -A -t 123.213.132.231/6923 -R 192.168.0.4/23
will send all connections that come in on port 6923 to port 23 on your
masqueraded machine. (the 123 address above is fictional)
You could then telnet from your machine at work to your 192.168.x
computer with the command
telnet 123.213.132.231 6923
BTW, you can use any port number you want. You can use 23, then
you won't have to specify the port number for telnet, but then
you won't be able to telnet into your gateway machine. (Actually
makes security easy, and confusing for someone trying to attack
your machine).
You can find a downlaod and more info on ipportfw at
http://www.monmouth.demon.co.uk/ipsubs/portforwarding.html
--
rick - a guy in search of raw (ISO) cd images of SuSE and Slackware
===============
My opinions don't exist, and as such, are not anyone elses. I do not
represent anyone, not even myself, and especially not my employer.
---
Looking for a 1968 Camaro SS convertible, black interior,
beat-up rustbucket that is in need lots of restoration and TLC.
---
To email me, take out the papers and the trash
[EMAIL PROTECTED]
------------------------------
From: Scott Risen <[EMAIL PROTECTED]>
Subject: RPC: Port mapper failure - RPC: Unable to receive
Date: Mon, 08 Mar 1999 15:46:46 GMT
Does anyone know what is causing the message RPC: Port mapper failure - RPC:
Unable to receive when I try to mount a file system from AIX to Linux ? this
had worked fine until now, I saw some postings on this error but they were
concerning Win NT, and didn't say much about portmap's error. A lot of
postings talked about "Program not registered" errors with portmap and other
programs.
the exact command and error are:
[root@linux2 /]# mount barney:/local/proddata/hrta/mc /local/proddata/hrta/mc
mount clntudp_create: RPC: Port mapper failure - RPC: Unable to receive
anyone know how to fix this ?
Thanks in advance Scott
============= Posted via Deja News, The Discussion Network ============
http://www.dejanews.com/ Search, Read, Discuss, or Start Your Own
------------------------------
From: "John Hardin" <[EMAIL PROTECTED]>
Subject: Re: About VIN connection
Date: Mon, 8 Mar 1999 10:24:09 -0800
[EMAIL PROTECTED] wrote in message <7bttk1$rdg$[EMAIL PROTECTED]>...
>I configure VPN in my WINDOWS98 computer. I allredy add VPN in my computer
and
>add a new dialup connection for corporate user.
>
>Now i sussesfully connected to Internet , But i can not connected to VPN..
>
>Now my question , to connected VPN to otherand , i need NT server.
windows98
>is possible,
You might want to take a look at
ftp://ftp.rubyriver.com/pub/jhardin/masquerade/ip_masq_vpn.html
--
John Hardin KA7OHZ [EMAIL PROTECTED]
pgpk -a finger://gonzo.wolfenet.com/jhardin PGP key ID: 0x41EA94F5
PGP key fingerprint: A3 0C 5B C2 EF 0D 2C E5 E9 BF C8 33 A7 A9 CE 76
=======================================================================
If you spend any time administering Windows NT, you're far too
familiar with the Blue Screen of Death (BSOD) ...
- "MSDN Flash" email newsletter, 2/9/1999
------------------------------
From: "David Novo" <[EMAIL PROTECTED]>
Subject: ftp login failed with wu.ftp_2.4.2
Date: Mon, 8 Mar 1999 18:51:11 +0100
I have installed Red Hat 5.2 with wu.ftp_2.4.2. I want to limit the users to
do ftp only in they folders.
I create a group and a user in etc/passwd and etc/group, and I configure a
ftpaccess with guestgroup.
I insert in /etc/shells the shell false to my users.
But I can�t connect.
Anybody can explain me how to configure or where I can find good information
(step by step) how to configure it.
Thanks a lot...
David
------------------------------
From: [EMAIL PROTECTED]
Subject: Re: cracker using su on account nobody
Date: Mon, 08 Mar 1999 15:40:53 GMT
Another fact, I forgot to mention, After discovering crack, I changed all
passwords, so this cracker seems to have hidden a duplicate su password or has
cracked passwords again. Also do not know if they come in on ftp or what, Any
ideas for finding out how they come in?
In article <7c0miv$2h4$[EMAIL PROTECTED]>,
[EMAIL PROTECTED] wrote:
> Some one cracked into my RedHat 5.1. I found root kit and deleted ./root and
> all cracker directories below. I implemented tcpwrappers and closed
telnet.
> I installed tripwire. Now someone shows up in the messages log signed on as
> 99 nobody with su privledges. How can I can eliminate this? I am now
> closing ftp. Only thing left running is http. Help
>
> [EMAIL PROTECTED]
>
> -----------== Posted via Deja News, The Discussion Network ==----------
> http://www.dejanews.com/ Search, Read, Discuss, or Start Your Own
>
============= Posted via Deja News, The Discussion Network ============
http://www.dejanews.com/ Search, Read, Discuss, or Start Your Own
------------------------------
From: "Matt G" <[EMAIL PROTECTED]>
Subject: Re: D-Link 530 TX e-cards
Date: Mon, 8 Mar 1999 18:41:23 -0000
Jarod Belshaw wrote in message <[EMAIL PROTECTED]>...
>
>
>Lawrence Bacon wrote:
>>
>> I'm considering buying two D-link 530 TX e-cards, has anybody had
problems
>> with this hardware ?
>> They are supposed to be 100% ne-2000 compatible.
>>
>> All replies welcome
>
>I just bought two of these. These are not supported out-of-the-box by
>Redhat 5.2. You must compile a via-rhine driver into the kernel,
>otherwise no major probs.
>
>Jarod
I have one of these cards & S.u.S.E doesn't like it at all. Any advice
(relative newbie)
Matt
------------------------------
From: "Robert Bentley" <[EMAIL PROTECTED]>
Crossposted-To: alt.os.linux,comp.os.linux.hardware,comp.os.linux.setup
Subject: Re: For all you Nicrosoft lovers
Date: Mon, 8 Mar 1999 11:16:31 -0500
All I want to know is what this has to do with linux , and this newsgroup
Peyton Bay wrote in message <[EMAIL PROTECTED]>...
>childsplay wrote:
>
>> This is very disturbing
>>
>> http://www.mercurycenter.com/breaking/docs/041815.htm
>>
>> --
>> Charles "childsplay" VanDyke
>> [EMAIL PROTECTED]
>> ICQ# 14539920 ============
>> ]TeamGameSpy[ ============
>> http://www.gamespy.com ===
>
>Yes, but why should this surprise anyone? This is Microsoft for crying
>out loud!
>Since when do customer rights mean anything?
>
>Peyton
>
------------------------------
From: [EMAIL PROTECTED] (Mathias Hamp)
Subject: Re: Compex RL100ATX
Date: 8 Mar 1999 19:28:10 +0100
Roman Dirgelas ([EMAIL PROTECTED]) wrote:
: Hi,
:
: is anyone working with a Compex RL100ATX/PCI 100MBit card?
:
: Any ideas how to install that bloody cheap thing?
:
I use this driver:
http://cesdis.gsfc.nasa.gov/linux/drivers/test/winbond-840.c
Mathias
------------------------------
From: "John Hardin" <[EMAIL PROTECTED]>
Subject: Re: Should I try Linux?
Date: Mon, 8 Mar 1999 10:31:36 -0800
Quiney, Philip (EXCHANGE:HAL02:HM10) wrote in message
<[EMAIL PROTECTED]>...
>H.A wrote:
{snip}
>> 2. Would it be worth it to learn how to do this on Linux?
>I think you can gain a better understanding of how things work, which
>can be interesting/challenging.
Linux is also far more secure then W'98, and has a more robust TCP stack
than W'NT. You also have far more flexible access control with Linux, and
the performance is better.
I am of the considered opinion that it is extremely foolhardy to put an NT
box directly on the Internet.
>> 3. Can anyone point me to a good concise source of info on how to set up
>> such a network?
>The HOWTO files (/usr/doc/HOWTO) will cover such things and have links
>to other useful info via the web. You will probably need to have a look
>at...
>
>NET3-HOWTO - Linux networking
>PPP-HOWTO - setting up PPP for your internet connection
>ISP-Hookup-HOWTO - name suggests content ? ;-)
>
>mini/Diald - Dial daemon for automating dial out.
>
>IIRC diald does not ship with RedHat but is available at
>http://rufus.w3.org/linux/RPM and assuming you are using a dial up link
>will be needed to automate the connection.
Diald does ship with Redhat.
You'll also want to read the Firewall HOWTO and the IP Masquerade HOWTO. If
you're using a VPN for telecommuting, add the Linux VPN Masquerade HOWTO at
ftp://ftp.rubyriver.com/pub/jhardin/masquerade/ip_masq_vpn.html to that
list. You may also want to visit
http://www.wolfenet.com/~jhardin/ipfwadm.html for a firewall GUI.
You'll also want to look into squid and leafnode.
--
John Hardin KA7OHZ [EMAIL PROTECTED]
pgpk -a finger://gonzo.wolfenet.com/jhardin PGP key ID: 0x41EA94F5
PGP key fingerprint: A3 0C 5B C2 EF 0D 2C E5 E9 BF C8 33 A7 A9 CE 76
=======================================================================
If you spend any time administering Windows NT, you're far too
familiar with the Blue Screen of Death (BSOD) ...
- "MSDN Flash" email newsletter, 2/9/1999
------------------------------
** FOR YOUR REFERENCE **
The service address, to which questions about the list itself and requests
to be added to or deleted from it should be directed, is:
Internet: [EMAIL PROTECTED]
You can send mail to the entire list (and comp.os.linux.networking) via:
Internet: [EMAIL PROTECTED]
Linux may be obtained via one of these FTP sites:
ftp.funet.fi pub/Linux
tsx-11.mit.edu pub/linux
sunsite.unc.edu pub/Linux
End of Linux-Networking Digest
******************************
