Linux-Networking Digest #430, Volume #10 Tue, 9 Mar 99 02:13:48 EST
Contents:
Re: One time password ("Duane Smeckert")
Re: DHCP and resolv.conf (Luca Filipozzi)
Visual Studio and Samba ("Ralph Glebe")
Re: dns problems (or name lookups) ("Duane Smeckert")
Re: Icon in Network Neighbourhood (M. Buchenrieder)
Re: One time password and PAM :) (Kevin Martin)
Why the Bottleneck? (Jerry Gardner)
Re: help ...networking ("Randy McLin")
Re: Telnet Problem ("Duane Smeckert")
Re: network equipment question, please help ("Duane Smeckert")
Re: Linux as LAN Gateway ("LrdElder")
Netgear FA310TX Full Duplex question (Stephen Anderson)
Re: psychotic modem (well, OK just says it's busy...) (xyf)
NIC works, DHCPcd works, but still can't ping out?? (Mike)
Re: Help: XTerminal Emulation on Win NT (Greg Weeks)
Re: tunneling through a campus LAN ? ("Duane Smeckert")
Re: For all you Nicrosoft lovers ("Jon Wiest")
Re: Largest File on the System ("Duane Smeckert")
----------------------------------------------------------------------------
Reply-To: "Duane Smeckert" <postmaster@localhost>
From: "Duane Smeckert" <elmer at ptw dot com>
Subject: Re: One time password
Date: Mon, 8 Mar 1999 21:58:07 -0800
You could wrap the shell in a password routine.
make the login shell /usr/local/shellwrapper
Have shellwrapper read and write secondwd
file that matches user/passwd pairs, and if they
match, issue the next passwd key, then exec /bin/bash.
Although you would pick a different text key,
I would teach the shell jabberwocky and then it could
give the new (next) password as a random index into it
(for example 13 would map to "wabe") That way the
next password in the key is never sent in cleartext,
the secondwd file doesn't have the passwd, and the
keypad can be hidden in plain sight in the system.
If you do this, then the login shell must not be
group or other readable. ( mode:rwx--x--x)
That means that when you login you would see the next passwd in the prompt:
login: myname
password: *********
Countersign: **********
Welcome to SuperSecure.com 2
root#>
Where the 2 will tell me that next time I have to use "brillig"
Hope this sparks a fun debate.
------------------------------
From: [EMAIL PROTECTED] (Luca Filipozzi)
Subject: Re: DHCP and resolv.conf
Date: Mon, 8 Mar 1999 21:59:10 -0800
In article <[EMAIL PROTECTED]>, root@localhost says...
> Well, brute force could allow you to deal. Don't use DHCP.
>
> Ok, let's quote Comer:
> Although an IETF working group is currently considering
> how DHCP should interact with the domain name system,
> there is currently no protocol for dynamic DNS update.
> Thus, until a dynamic update mechanism is developed, there
> is no protocol that maintains permanent host names
> while allowing DHCP to change IP addresses.
>
> Now, barring that ugly scenario, have you considered making
> your DNS on another system? That way you would only have to
> do a route to modify the resolve.conf file after DHCP touches
> it. (just watch the date/time on the file)
>
> I have not fully considered the ramifications of this, but it seems that
> all the other clients on the network will continue to deal with the
> local DNS, while your dialup system will not have to worry.
> (That means your DNS will have to ARP the mac address when you
> connect, but that shouldn't hurt.)
>
> Hope these musings are helpful.
>
> Erik-Jan Sinke wrote in message <7c1feh$o5k$[EMAIL PROTECTED]>...
> >Hi there,
> >
> >Can anyone tell me how I can prevent the DHCP client from modifying my
> >/etc/resolv.conf file? I�ve set up my linux box as a DNS server for my
> >internal network/domain. However, when I connect my PC to my Internet
> >provider I automatically get the DNS server provided by them. Even worse it
> >also makes my internet providers domain the standard domain for my Linux
> box
> >(instead of my carefully selected own domain name!).
> >Who can help me fix this annoying DHCP feature?
> >
> >Thanx in advance,
> >
> >Erik
> >[EMAIL PROTECTED]
> >
> >
> >
>
>
>
I think you'll notice that /etc/resolv.conf is a symbolic link to
/etc/dhcpc/resolv.conf. This link is installed when the dhcpcd package is
installed (under Debian, at least).
I, too, didn't want the DHCP assigned resolv.conf... so I replace the
symbolic link with a file containing what I want. dhcpcd still changes
/etc/dhcpc/resolv.conf but who cares. Works like a charm.
--
Luca Filipozzi <[EMAIL PROTECTED]>
------------------------------
From: "Ralph Glebe" <[EMAIL PROTECTED]>
Subject: Visual Studio and Samba
Date: 8 Mar 1999 04:57:31 GMT
I use visual studio with my source files stored on a samba share. The
problem is, many times when I do a compile or a save I recieve the message
that my source has been changed outside the editor. Someone thought that
they had seen some reference to a time stamp problem causing this. so far I
have not been able to find anything about it in any of the documentation.
Anyone have any fixes.
Thanks
Ralph
------------------------------
Reply-To: "Duane Smeckert" <postmaster@localhost>
From: "Duane Smeckert" <elmer at ptw dot com>
Subject: Re: dns problems (or name lookups)
Date: Mon, 8 Mar 1999 22:06:24 -0800
They all said the same thing, but I will too.
/etc/host has IP to hostname mapping.
for example:
130.166.1.1 csun gateway.csun.edu school
The above line lets me reference the host
at IP 130.166.1.1 by any of the names listed after it.
You are not restricted to hosts on your net. If you
regularly ftp to ftp.redhat.com you could add a line
with the IP address and the name redhat.
Note: Doing this on someone else's net is a bad thing.
The reason to use names is that the IP address may
change but the name should still work.
I just pointed it out as a curiosity.
------------------------------
From: [EMAIL PROTECTED] (M. Buchenrieder)
Subject: Re: Icon in Network Neighbourhood
Date: Mon, 8 Mar 1999 12:45:23 GMT
"Jaze" <[EMAIL PROTECTED]> writes:
>I haven't finished configuring my samba config yet but I do know that ping
>has nothing to do with whether or not samba is running.
Well, not directly. However, both services are based upon TCP/IP. If
"ping" fails, Samba will as well.
>Ping simply has to
>do with TCP/IP. Most servers have a service running which responds to a
>specific type of TCP/IP packet. Samba, uses a protocol
NetBIOS over TCP/IP
>(developed my
>Microsoft long ago)
No. This has nothing to do with MS crap at all. You're confusing
NetBIOS and NetBEUI. NetBEUI is a MS-invented protocol for small
networks. NetBIOS isn't.
>to talk to windows machines. It is only a coincidene
>that this protocol is running over TCP/IP.
[...]
See above. No TCP/IP connection, no SAMBA.
Note: Please add your comments _below_ the quoted text.
Michael
--
Michael Buchenrieder * [EMAIL PROTECTED] * http://www.muc.de/~mibu
Lumber Cartel Unit #456 (TINLC) & Official Netscum
Note: If you want me to send you email, don't mungle your address.
------------------------------
From: [EMAIL PROTECTED] (Kevin Martin)
Subject: Re: One time password and PAM :)
Date: Mon, 08 Mar 1999 18:53:18 GMT
In article <[EMAIL PROTECTED]>, it says "Duarte Cordeiro"
<[EMAIL PROTECTED]> wrote:
>
>Kevin Martin wrote in message ...
>>There are a few of these; the one I know best is called s/key.
>
>First of all, thanks for your answer. It was very helpfull, as you can see
Kewl! I haven't tried it from the admin end, just as a user on someone
else's machine, but I agree, those lines you quote from the log would
strongly imply that it's not hooked into your system right.
>on /var/log/messages (when s/key waits for password):
>
>pam[5284]:unable to resolve symbol: pam_sm_acct_mgmt, pam_sm_chautook,
>pam_sm_open_session, pam_sm_close_session
Perhaps someone else will be able to jump in here and help out.
------------------------------
From: [EMAIL PROTECTED] (Jerry Gardner)
Subject: Why the Bottleneck?
Date: 8 Mar 1999 19:00:05 GMT
I have a machine that dual-boots Linux 2.0.36 and FreeBSD 3.1. This
machine is connected to another machine running WinNT 4.0 on an
isolated ethernet. Both machines have 3Com 3C905B NICs.
When I transfer large (~100MB) files between the FreeBSD box and the
NT box, the throughput averages 1000-1100 KB/sec. When I reboot into
Linux and FTP the same size files, the throughput drops to 600-700
KB/sec. This is on an isolated 10BaseT ethernet with *no* other
traffic.
Why is Linux network performance so much less (30-40%) than FreeBSD
performance in this case? Where is the bottleneck? Is there some
tuning I need to do to fix this?
--
Jerry Gardner | Bill Clinton has all the steely resolve
email: [EMAIL PROTECTED] | of a kamikaze pilot on his 37th mission.
------------------------------
From: "Randy McLin" <[EMAIL PROTECTED]>
Subject: Re: help ...networking
Date: Mon, 8 Mar 1999 14:02:31 -0500
Try http://www.samba.org
They've got an app called SAMBA. If you're using RedHat, it has a SAMBA
.rpm you can install on your system quite easily.
SAMBA essentially makes your Linux box run SMB, which I think is SERVICE
MESSAGE BLOCK, which is what Microsoft uses to communicate between boxes.
I've got it running on my Linux server at home and have a couple of Windows
95 boxes linked to the server, as well as a printer that is shared on the
server.
If you need any other Linux links, try
http://www.geocities.com/Athens/Acropolis/8984/linuxlinx.htm
That's a no-frills portal site I prepared for my day-to-day use with Linux.
It's got a bunch of practical links you can use.
Good luck,
Randy
Chiah wrote in message <[EMAIL PROTECTED]>...
>I'm involved in a LAN at work, all independently running Windows98 (no
>server, all stand-alones).
>How can I run my system using linux on the network to share file
>and
>printers etc.
>I have the same network card has the others in the network
>
>
>
>
------------------------------
Reply-To: "Duane Smeckert" <postmaster@localhost>
From: "Duane Smeckert" <elmer at ptw dot com>
Subject: Re: Telnet Problem
Date: Mon, 8 Mar 1999 22:30:21 -0800
Worst case scenario:
You can't login as root.
There are a bunch of FAQs on this, but in a nutshell
you have to boot from a floppy (or CD)
and gain access to the file etc/passwd on the partition you
normally mount as /
Once you get to the shell prompt type 'vi'
to see if you have vi on your mounted system.
If you do, then you can type two capital Zs to quit (ZZ)
If you don't, then ask about recovery disks.
The following are commands to type followed by comments.
1) mount<Enter>
make sure that nobody is using /mnt
if something is mounted there then pick another name,
mkdir /newname, and use it wherever I say /mnt from now on.
2) mount /dev/hda1 /mnt
If your Linux partition is somewhere not hda1, deal with it.
3) vi /mnt/etc/passwd
This puts you in an editor. If you know how to use it, go ahead.
If not, then I will tell you what to do, but you still have to
think.
4) /root<Enter>
This will search ahead to find the entry for root.
5) /:
This will move to the colon after root.
6) l
That is the letter after k, and it moves the cursor to just past the
colon.
7) x
This deletes the character and moves everything else to the left.
Repeat this until the very next colon is adjacent to the first one.
the line should start out: root::
If you make a mistake, press Colon then enter q to quit.
:q<Enter> )
then start over at number 3.
8) ZZ
ZZ saves and exits the program.
9) Reboot normally, and log in as root. The password is blank.
CHANGE THE ROOT PASSWORD IMMEDIATELY.
Create an account that is NOT root for you to use.
You can use 3-8 to clear the password of any user if
you guess in the right places. It's a bad idea if you are on
a network.
Good luck.
[EMAIL PROTECTED] wrote in message
<[EMAIL PROTECTED]>...
>I have Redhat 5.1 Kernel 2.0.34 installed and I can�t login with
>telnet.
>Even from the console I get "Login incorrect" all the time and with
>every Username that I set up.
>Is there something else I have to install?
>
>Thanks
>Joachim
>
>
------------------------------
Reply-To: "Duane Smeckert" <postmaster@localhost>
From: "Duane Smeckert" <elmer at ptw dot com>
Subject: Re: network equipment question, please help
Date: Mon, 8 Mar 1999 22:32:59 -0800
I was greedily eyeing the ISDN routing hub from 3Com.
Is there anyone out there with a DSL version?
------------------------------
From: "LrdElder" <[EMAIL PROTECTED]>
Subject: Re: Linux as LAN Gateway
Date: Tue, 9 Mar 1999 00:28:46 -0800
Check out the IP masquerading mini HOWTO ..... although it's a slow
connection, and some things aren't fully supported most programs are. I have
a Windows/Linux peer to peer connection with a 56K connection to the
internet on the Linux end, I can only get about 5K from the Windows. I think
this is mainly because the Linux machine is a 486/100 mhz with 16 megs RAM,
and it just can't handle the load of editing all the packets coming through
it in a timely fashion. If your users will mainly just be checking email,
and browsing the web, it would probably be a good choice.
LrdElder
J. J. Horner wrote in message <[EMAIL PROTECTED]>...
>This is good info. If the person who answers can post here, I would
>appreciate it. I have many of the same questions.
>
>Thanks
>Jon Horner
>
>
>Mark Napper wrote:
>
>> Hi All,
>>
>> I am planning on building up a spare machine to be an Internet Gateway
>> for my LAN. The clients will be 4 Win98 and 1 Win98/Linux (my
>> machine).
>>
>> Now I want to be able to use redirection so that all OSes and machines
>> think they are DIRECTLY connected without having to use proxy if
>> that's possible.
>>
>> I want the Linux box as a news & e-mail server/forwarder so that it
>> connects each night or weekend, checks for the latest newsgroup
>> messages & E-Mails to the familly from the ISP and stores it locally
>> so that we can point our newsgroup readers and E-Mail software to the
>> linux box, and get the latest on it.
>>
>> I also want to provide a Part-Time Web & FTP server for the weekends.
>>
>> What I want to know is How do I do it and Which HOWTOS do I need to
>> read to provide further background information (I downloaded the
>> latest on Feb 27)
>>
>> Thanks in advance
>
>--
>J. J. Horner
>[EMAIL PROTECTED]
>[EMAIL PROTECTED]
>Network Administrator and Support
>
>
>
------------------------------
From: Stephen Anderson <[EMAIL PROTECTED]>
Subject: Netgear FA310TX Full Duplex question
Date: 9 Mar 1999 06:31:43 GMT
I am running the 2.2.2 kernel. I have compiled support for the Netgear card into the
kernel (not module) via the tulip driver provided on the netgear diskette. I am
trying to figure out how to instruct the card to switch to full-duplex mode. The card
works fine at full-duplex under my alternative W95 boot. I have tried using the
following on my boot disk:
LILO: linux ether=0,0,5,eth0
Unfortunately, the card stayed in half duplex mode. I am using loadlin to normaly
launch Linux, so if I could figure out what parameters to pass the kernel, I could
append it to my loadlin.bat. Any help you could give would be greatly appreciated!
Steve
================== Posted via SearchLinux ==================
http://www.searchlinux.com
------------------------------
From: xyf <[EMAIL PROTECTED]>
Subject: Re: psychotic modem (well, OK just says it's busy...)
Date: 9 Mar 1999 06:32:05 GMT
Stephanie Clark wrote:
>
> Every time I try to do anything w/my modem, it says it's busy... used
to
> say it was locked- guess I graduated :) Any ideas? oh- btw it's Open
Linux
> 1.3 w/kde. The software's looking for the modem in the right place and
no,
> nobody's on the phone ;)
> Thanks in advance for your help!
> Stephanie
>
It sounds like you are having the same problem I have been battling. The
only way I
could get my modem to reset is a complete shutdown, reboot wouldn't work.
Does
this sound familiar? I tried every piece of advice I could find at no
avail. I finally
shipped the modem back to the manufacturer (Zoom model 2919.) Next time
I'm
going for an external modem. If you find a fix let me know.
Kent
================== Posted via SearchLinux ==================
http://www.searchlinux.com
------------------------------
From: Mike <[EMAIL PROTECTED]>
Subject: NIC works, DHCPcd works, but still can't ping out??
Date: 9 Mar 1999 06:31:51 GMT
Hello, well I finally got dhcpcd to work, I needed v1.3 instead of 0.7
:) Anyways, Im trying to setup a IP-masq Linux box to give my LAN
access to the internet. I have both NICs working, the one connected
to the local network works great, and if I specifiy an IP I can get
the second NIC on the net, and the entire system works flawlessly. But
as some know shaw@home (around here anyways) only uses DHCP therefore
if I specify my own IP, it only works for about 2 days before all of a
sudden the internet is no longer accessible. So... my question is WHY,
even when DHCPcd obtains an IP, can I not ping the internet??
This is what I get when I ping shaws gateway:
PING 24.65.4.1 (24.65.4.1): 56 data bytes
ping: wrote 24.65.4.1 64 chars, ret=-1
ping: wrote 24.65.4.1 64 chars, ret=-1
ping: wrote 24.65.4.1 64 chars, ret=-1
ping: wrote 24.65.4.1 64 chars, ret=-1
ping: wrote 24.65.4.1 64 chars, ret=-1
ping: wrote 24.65.4.1 64 chars, ret=-1
--- 24.65.4.1 ping statistics ---
6 packets transmitted, 0 packets received, 100% packet loss
====================================================
here is my IFCONFIG output:
=========
o Link encap:Local Loopback
inet addr:127.0.0.1 Mask:255.0.0.0
UP LOOPBACK RUNNING MTU:3924 Metric:1
RX packets:0 errors:0 dropped:0 overruns:0 frame:0
TX packets:0 errors:0 dropped:0 overruns:0 carrier:0
Collisions:0
eth0 Link encap:Ethernet HWaddr 00:4F:4C:02:14:02
inet addr:192.168.1.1 Bcast:192.168.1.255
Mask:255.255.255.0
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:47 errors:0 dropped:0 overruns:0 frame:0
TX packets:24 errors:0 dropped:0 overruns:0 carrier:0
Collisions:0
Interrupt:10 Base address:0x300
eth1 Link encap:Ethernet HWaddr 00:4F:4C:02:15:AC
inet addr:24.65.160.74 Bcast:24.65.160.255
Mask:255.255.255.0
UP BROADCAST NOTRAILERS RUNNING MULTICAST MTU:1500
Metric:1
RX packets:1 errors:0 dropped:0 overruns:0 frame:0
TX packets:2 errors:0 dropped:0 overruns:0 carrier:0
Collisions:0
Interrupt:11 Base address:0x280
=======
here is my route table:
=======
Destination Gateway Genmask Flags Metric Ref
Use Iface
24.65.4.1 * 255.255.255.255 UH 0 0
0 eth1
localnet * 255.255.255.0 U 0 0
0 eth0
24.65.160.0 * 255.255.255.0 U 0 0
0 eth1
default 24.65.4.1 0.0.0.0 UG 0 0
0 eth1
======
localnet = 192.168.1.0
=======
here is what DHCPcd gets from shaws DHCP server.
=======
IPADDR=24.65.160.74
NETMASK=255.255.255.0
NETWORK=24.65.160.0
BROADCAST=24.65.160.255
GATEWAY=24.65.4.1
HOSTNAME=cs744575-a
DOMAIN=kldt1.bc.wave.home.com
DNS=24.64.223.149
DHCPSIADDR=24.2.10.70
DHCPSHADDR=00:00:77:8E:63:C6
DHCPSNAME=
LEASETIME=172800
RENEWALTIME=86400
REBINDTIME=151200
Im pretty sure it is just something in my route table that is causing the
problems, but I can't figure it out. :(
Thanks in advance.
================== Posted via SearchLinux ==================
http://www.searchlinux.com
------------------------------
Reply-To: [EMAIL PROTECTED]
From: [EMAIL PROTECTED] (Greg Weeks)
Subject: Re: Help: XTerminal Emulation on Win NT
Date: Mon, 8 Mar 1999 19:29:30 -0600
In article <[EMAIL PROTECTED]>,
"Jagadeesan S. Krishnamurthy" <[EMAIL PROTECTED]> writes:
> Hi,
>
> I have Linux sever (Redhat 5.2) running on a PC installed and working
> successfully. I downloaded SuperX to work on XWindows from my Windows NT
> machine. I am not able to start Xwindows ( startx ) from my remote
> client ( Windows Machine ). I started XServer of SuperX and when it is
> waiting ( TCP/IP on Linux server) , I telent'd into the linux server and
> issued:
>
> xterm -display xx.xx.xx.xx:0
>
> and it displayed the xterm on my emulated XServer. I am able to do this
> with xlogo also. But not with startx. Has anybody successfully gotten
> through this?
You don't want to run startx. startx starts the local server. You
might want to used xdm if you're wanting the NT box to act as an X
terminal. I don't know anything about SuperX. xdm will put up a login
prompt on an X terminal when everthing is configured correctly. There
are a couple of how to's on using X terminals with Linux.
Greg Weeks
--
http://durendal.tzo.com/greg/
------------------------------
Reply-To: "Duane Smeckert" <postmaster@localhost>
From: "Duane Smeckert" <elmer at ptw dot com>
Subject: Re: tunneling through a campus LAN ?
Date: Mon, 8 Mar 1999 22:38:42 -0800
But say, wouldn't that be unethical?
Wouldn't a Sysadmin, finding someone breaching
his expensive firewall, want to report the rebel
to the dean (vice president)?
Wouldn't this be a bad thing? A kind of computer crime?
------------------------------
From: "Jon Wiest" <[EMAIL PROTECTED]>
Crossposted-To: alt.os.linux,comp.os.linux.hardware,comp.os.linux.setup
Subject: Re: For all you Nicrosoft lovers
Date: Mon, 8 Mar 1999 20:17:24 -0600
No shit, thanks for the post. Good think I haven't bothered with Win98.
Jon
childsplay <"childsplay"@planetquake.com> wrote in message
<7bvbmj$[EMAIL PROTECTED]>...
>This is very disturbing
>
>http://www.mercurycenter.com/breaking/docs/041815.htm
>
>--
>Charles "childsplay" VanDyke
>[EMAIL PROTECTED]
>ICQ# 14539920 ============
>]TeamGameSpy[ ============
>http://www.gamespy.com ===
>
>
------------------------------
Reply-To: "Duane Smeckert" <postmaster@localhost>
From: "Duane Smeckert" <elmer at ptw dot com>
Subject: Re: Largest File on the System
Date: Mon, 8 Mar 1999 22:54:22 -0800
type ls -lR / > ~/lslr
This will, after a while, give you a long list of all the files on your
system.
Then you can use vi on the file and find big files.
vi ~/lslr
To look for big files type
/[1-9][0-9][0-9][0-9][0-9][0-9][0-9]
When you kit enter it will find 7 digits in a row.
Hitting the letter n will find the next one.
hitting ?^[ /]* should find the path to the file.
There are many ways, and prettier ways, but
this is the laziest way.
------------------------------
** FOR YOUR REFERENCE **
The service address, to which questions about the list itself and requests
to be added to or deleted from it should be directed, is:
Internet: [EMAIL PROTECTED]
You can send mail to the entire list (and comp.os.linux.networking) via:
Internet: [EMAIL PROTECTED]
Linux may be obtained via one of these FTP sites:
ftp.funet.fi pub/Linux
tsx-11.mit.edu pub/linux
sunsite.unc.edu pub/Linux
End of Linux-Networking Digest
******************************
