Linux-Networking Digest #445, Volume #10 Wed, 10 Mar 99 07:14:44 EST
Contents:
Re: net problems (Brian McCauley)
Re: Which SMP Motherboard? (Ralf Lange)
Re: newbie: to hub or not to hub? ([EMAIL PROTECTED])
NT doesn't see (Haaino Beljaars)
Re: how to connect nt workstation to linux server (Steve Clark)
Re: How to compile Kernel 2.2.2 with redhat 5.2??? (Allen)
Re: How do I install SSH? ([EMAIL PROTECTED])
Re: Reading another console's text (Brian McCauley)
hosting of virtual filesystems ("flinx")
Re: Apache module and php question ([EMAIL PROTECTED])
Restricting masquerading (IT Dept)
Ethernet not working with HP network card ("Sanjeev Mehta")
Re: connecting 2 PCs w/ null modem cable ("chris.")
Re: NFS install... no portmap? ([EMAIL PROTECTED])
Re: cracker using su on account nobody ("Peck R. Wood")
Re: How can I redirect TCP-Ports? ("Duarte Cordeiro")
Hylafax receiving ("andy")
Re: Linux-Router: pppd dialing on local connect & bootup & route ("Leopold Toetsch")
Re: pppd not 8-bit clean Please help!
What else should I be checking?. ("WF, Yee")
----------------------------------------------------------------------------
From: Brian McCauley <[EMAIL PROTECTED]>
Subject: Re: net problems
Date: 10 Mar 1999 08:43:22 +0000
[EMAIL PROTECTED] (chip stein) writes:
> I can ping fine from linux to nt. and vice versa, but telnet is slow from nt
> to linux
Slow to connect or slow once connected.
If it is slow to connect then this is the _most_ frequently asked
question in this newsgroup. I make a point of finding, and responding
to, at least one instance of this question every day.
For details see previous instances con the question (averaging about
one a day for the last 2-3 years).
--
\\ ( ) No male bovine | Email: [EMAIL PROTECTED]
. _\\__[oo faeces from | Phones: +44 121 471 3789 (home)
.__/ \\ /\@ /~) /~[ /\/[ | +44 121 627 2173 (voice) 2175 (fax)
. l___\\ /~~) /~~[ / [ | PGP-fp: D7 03 2A 4B D8 3A 05 37...
# ll l\\ ~~~~ ~ ~ ~ ~ | http://www.wcl.bham.ac.uk/~bam/
###LL LL\\ (Brian McCauley) |
------------------------------
From: Ralf Lange <[EMAIL PROTECTED]>
Crossposted-To: comp.os.linux.hardware
Subject: Re: Which SMP Motherboard?
Date: Wed, 10 Mar 1999 09:49:19 +0100
I use an ASUS P2B-DS with two 400MHz PII. The box runs the apache
server, Oracle, StarOffice, Netscape and works as a IP Masquerading
Server. I started with kernel 2.0.36 and upgraded to 2.2.1, 2.2.2 and
2.2.3 without having any problems.
The speedup for a kernel compile is about 1.8 using 2CPUs vs. 1CPU. This
speedup is true while x11amp, xosview, apache and oracle are running.
Not too bad.
--
Ralf Lange
------------------------------
From: [EMAIL PROTECTED]
Subject: Re: newbie: to hub or not to hub?
Date: Wed, 10 Mar 1999 10:02:58 +0100
The crossover cable would do the job, but considering the low prices on
small hubs, I would probably go for a hub, once and for all.
[EMAIL PROTECTED] wrote:
: Hi, I intend to make a small home network with two of my comps. I intend to
: use the linux machine as a netserver and the win98 machine as a client.
: Considering I have no intention of connecting any more machines to the
: network in the future, should I still go for a hub or just NICs and crossover
: cables would be enough for the job? Thanks.
--
Anders Gulden Olstad @ Jeeves
RedHat 5.2 Linux kernel 2.0.36
"Penguins are generally nice creatures"
------------------------------
From: Haaino Beljaars <[EMAIL PROTECTED]>
Subject: NT doesn't see
Date: Wed, 10 Mar 1999 09:57:53 +0100
Reply-To: [EMAIL PROTECTED]
Hi,
On my private network I have 2 machine, one NT 4.0 and one RH 5.2 with,
still, kernel 2.0.36. I have installed and configured samba, correctly
(I think). But with I browse my network, on my NT server, my samba
server doesn't appear, but with I search for my linux computer it is
found at once. My samba server has the same network name (Domain) as the
NT server.
Can one of the problems be that I have patch the samba server from the
errata of RH? Because, before I patched it was working properly?
--
Greetings from Haaino Beljaars
Home Page: HTTP://www.phys.uu.nl/~beljaars/
I am pro Open Source Software
------------------------------
From: Steve Clark <[EMAIL PROTECTED]>
Subject: Re: how to connect nt workstation to linux server
Date: Wed, 10 Mar 1999 08:23:28 -0000
Windows NT4 does not, by default, allow the clear text passwords
required by samba.
However, there is a registry hack available. You need to look in the
WinNT.txt file distributed with samba.
Regards
Steve Clark
[EMAIL PROTECTED]
> -----Original Message-----
> From: John Louis [mailto:[EMAIL PROTECTED]]
> Posted At: 09 March 1999 19:39
> Posted To: networking
> Conversation: how to connect nt workstation to linux server?
> Subject: how to connect nt workstation to linux server?
>
>
> Well, I can use win95 connect to my samba server, but how to configure
> nt workstation ?
>
> Louis
>
------------------------------
From: [EMAIL PROTECTED] (Allen)
Crossposted-To: aus.computers.linux,comp.os.linux.hardware,comp.os.linux.setup
Subject: Re: How to compile Kernel 2.2.2 with redhat 5.2???
Date: 10 Mar 1999 09:47:56 GMT
Where is it giving you the error? WHat error do you get?
I found that using "make bzImage" instead of "zImage" fixed my compile problems
with 2.0.36, and this is so far, largly undocumented. The error I was getting
was "kernel too big"- as I was trying to compile an SMP version.
On Mon, 8 Mar 1999 09:07:22 +1100, "Aaron Saikovski" <[EMAIL PROTECTED]>
wrote:
>Please Help!!
>I have followed the how-to's to the letter, I have used the Linus
>pocketbook.
>I cannot get the 2.2.2 kernel to work correctly under RedHat 5.2.
>
>I compiled the kernel, removed static links to linux, I have made the
>modules, made the modules_install.
>I have moved the zImage to /boot.
>When I reboot and try to boot the new kernel, it causes a total system
>reboot..
>In the /boot directory there is still initrd etc files...
>
>Is there an updated version of the kernel how-to that focuses primarily on
>redhat5.2 and the latest kernel build?
>I have followed the how-to to the letter and it doesn't workj with redhat
>5.2
>Please help!!
>
>Thanks!
>
>Aaron
>email: [EMAIL PROTECTED]
>
Allen
(email addy; user ID portion has a numeral one in place of word
onespoiler, and of course, delete the bogus secondary domain of nospam.)
PC/hardware Guru, and Linux Newbie--(how DO you exit vi?)
------------------------------
From: [EMAIL PROTECTED]
Subject: Re: How do I install SSH?
Date: Wed, 10 Mar 1999 10:12:43 +0100
GenaBlu <[EMAIL PROTECTED]> wrote:
: I just downloaded SSH 2.0.12. I have the file ssh-2.0.12.tar.gz and the
: signature file.
If you have PGP installed I would first check the signature - just to be
on the safe side...
: This sounds kind of stoopid but, can someone please tell me what the
: parameters for tar or gunzip should be so I can decompress and install
: SSH?
$ tar zxvf ssh-2.0.12.tar.gz
would do the job. The 'z' option just invokes gunzip, in GNU tar.
: Also... Is there a good, comprehensive HOW-TO for SSH anywhere? I tried
: checking out the companies marketing SSH but they have almost no
: information on how to install SSH (obviously they want us to buy the
: real SSH). Help?
The tar.gz distribution shall contain information on how to compile and
install ssh /sshd. It's quite triviallt to install ssh if you read the
documentation first.
You must also make sure you have installed gcc and other mandatory
development software.
--
Anders Gulden Olstad @ Jeeves
RedHat 5.2 Linux kernel 2.0.36
"Penguins are generally nice creatures"
------------------------------
From: Brian McCauley <[EMAIL PROTECTED]>
Subject: Re: Reading another console's text
Date: 10 Mar 1999 08:42:59 +0000
Taylor-Thorn <[EMAIL PROTECTED]> writes:
> How might I view the typed text of another console? I have tried:
> cat /dev/ttyp#
> and even
> cp /dev/ttyp#
If you read from a tty device you read from the _keyboard_ of that
device. This if you, think about, it is obvious. If a program tries
to read from the terminal you mean read from the keyboard.
To read the screen of a Linux VC you use the /dev/vcs* devices.
ttyp (aka PTY) devices do not have screens so you can't read them.
Yeah, it is possible for a program like "xterm" to make a screen
that's attached to to a PTY but this screen is actually managed by the
program - it's not really part of the tty device.
> I am the sys admin and have root, incase the solution will require it.
> Thanks
Consider using ttysnoop. (Do web search to find it).
--
\\ ( ) No male bovine | Email: [EMAIL PROTECTED]
. _\\__[oo faeces from | Phones: +44 121 471 3789 (home)
.__/ \\ /\@ /~) /~[ /\/[ | +44 121 627 2173 (voice) 2175 (fax)
. l___\\ /~~) /~~[ / [ | PGP-fp: D7 03 2A 4B D8 3A 05 37...
# ll l\\ ~~~~ ~ ~ ~ ~ | http://www.wcl.bham.ac.uk/~bam/
###LL LL\\ (Brian McCauley) |
------------------------------
From: "flinx" <[EMAIL PROTECTED]>
Subject: hosting of virtual filesystems
Date: Tue, 9 Mar 1999 19:09:09 -0600
I am currently experimenting with hosting multiple domains, each with a
seperate filesystem (bash> chroot /virt/domain). I am using virtuald as
described at http://metalab.unc.edu/LDP/HOWTO/Virtual-Services-HOWTO.html.
This is a very nice primer, however does not cover the bare necessities to
do network services.
I am hoping to find someone who can help me with compiling a list of
software that will allow for the following services.
*PAM (password authentication module)
*rpm (redhat package manager)
*sendmail
*ftp server
Also, the required shared libraries to go along with them as well as
needed support files.
Maybe there is someone out there who would like to help me put together a
distribution for setting up virtual hosts under seperate chroot'd
filesystems.
TIA
[EMAIL PROTECTED]
------------------------------
From: [EMAIL PROTECTED]
Subject: Re: Apache module and php question
Date: Wed, 10 Mar 1999 09:12:03 GMT
the info in the php-faq (http://www.php.net/FAQ.php3) should be particulary
helpful. especially question 3.1 and 3.2.
as far as "calling" apache is concerned: have apache up and running, make sure
it knows how to serve up php3-pages (mime-types, and be sure to check the
questions in the faq if you installed php using rpms) and have your browser
load the php3-page. apache should have the php3-code in the page processed by
the php-module, and you should be able to see the result in your browser.
good luck,
frank
-
In article <[EMAIL PROTECTED]>,
[EMAIL PROTECTED] () wrote:
> I am using RedHat-5.2, and I installed Apache 1.3.3-1 also mod_php3-3.0.5-2
> now I don't have php.ini and I have no_idea how to call apache via php.
>
> if some one can tell me about this.. I'll really apiriciat..
>
> Thank's in advance.
> jscott
>
============= Posted via Deja News, The Discussion Network ============
http://www.dejanews.com/ Search, Read, Discuss, or Start Your Own
------------------------------
From: IT Dept <[EMAIL PROTECTED]>
Subject: Restricting masquerading
Date: Wed, 10 Mar 1999 10:43:32 +0000
I have several networks here at my school, all working to a Linux box
which masquerades all Internet requests to a Win98 'Net server. This all
works well.
However, (isn't there always a 'however'?) on one of the networks, there
is a small group of machines in the Library, It has been decided to
restrict Interent access to here to outside of lunchbreak (12.45-13.30).
The main network are 192.168.3.1-192.168.3.68 and the library machines
are 192.168.3.201-192.168.3.205, purely 'cos that's the way I felt when
I set it up! Now I know I can turn the whole subnet off (I turn them on
seperately with IPFWADM rules), but can I turn part of this network on
and off using CRON and IPFWADM?
Regards.....Andy E. (IT Technician)
------------------------------
From: "Sanjeev Mehta" <[EMAIL PROTECTED]>
Subject: Ethernet not working with HP network card
Date: Wed, 10 Mar 1999 14:58:13 +0530
I have installed RedHat 5.2 on my HP Kayak XA machine. I not able to
configure ethernet for this machine. It has the following network card:
HP Ethernet with LAN Remote Power
Does anyone has any ideas?
------------------------------
Crossposted-To: alt.os.linux
Date: Tue, 9 Mar 1999 17:17:12 -0800
From: "chris." <[EMAIL PROTECTED]>
Subject: Re: connecting 2 PCs w/ null modem cable
> I've connected my win95 machine and my Linux box w/ a null modem cable.
> I run Tera term on the win95 machine and it talks directly to COM2.
>
> On the Linux box I ran minicom and set the serial device to /dev/ttyS1.
>
> When I entered characters on the one side they would show up on the
> other side 20-30 seconds later.
>
> Isn't this supposed to be almost instantaneous?
yeah, its supposed to be instantaneous (pretty much). most likely cause
is an irq conflict with the serial port on either machine...
chris.
------------------------------
From: [EMAIL PROTECTED]
Subject: Re: NFS install... no portmap?
Date: Wed, 10 Mar 1999 01:52:04 GMT
In article <[EMAIL PROTECTED]>,
Jeff <[EMAIL PROTECTED]> wrote:
> For some reason there is no file called "portmap" anywhere on my system.
>
> I'm running Redhat 5.1, and it's supposed to be in /usr/sbin, right?
> It's not there.
>
> How do I get everything I need to run an NFS server?
>
> Jeff Weiss
It's in /sbin.
If ever in doubt, try this command, as root:
cd /
find / -name portmapper
This'll show you where the sucker is hiding.
Best regards,
Dan.
============= Posted via Deja News, The Discussion Network ============
http://www.dejanews.com/ Search, Read, Discuss, or Start Your Own
------------------------------
From: "Peck R. Wood" <[EMAIL PROTECTED]>
Subject: Re: cracker using su on account nobody
Date: Tue, 09 Mar 1999 15:04:50 -0500
Reply-To: [EMAIL PROTECTED]
This is a multi-part message in MIME format.
==============CA5C6014985363DB298864C0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
I think the point people are trying to make is su could be compromised
to where it lets anyone log in and su to root without checking passwords
or permissions. Sure root can su as nobody to run a program but nobody
can't su to root normally. If someone is logging in as nobody and using
su then there is a problem. Su or any other program on that system
cannot be trusted any more.
An ftp server that hosted a distribution of some package (I forget which
one) was broken into recently so they pulled the software off that
server and every server that mirrored it because none of that software
can be trusted. I was looking for the package and all I got was a
warning message that if I downloaded it from that site, I should delete
it and get it from a trusted source.
This goes for source code or libraries as well as programs. It's real
easy to put a back door in some source code. How many of you look
through the source code of the programs you download to see if there are
any back doors? At least we have the source code to check though and
some people who do look through it. How long would MS have been able to
collect info on their win98 customers if the source code was available?
It was an accident that they did get caught. How many other secrets do
they have?
Melchior de Contades wrote:
>
> [EMAIL PROTECTED] writes:
>
> > In article <7c0miv$2h4$[EMAIL PROTECTED]>,
> > [EMAIL PROTECTED] wrote:
>
> > > Now someone shows up in the messages log signed on as
> > > 99 nobody with su privledges. How can I can eliminate this? I am now
> > > closing ftp. Only thing left running is http. Help
> >
> > Sorry to tell you this, but if user 'nobody' has the ability to `su`, then
> > your machine has already been *seriously* compromised. That particular
> > problem can probably be fixed by removing 'nobody' from group 'wheel' (the
> > only group that should be allowed to `su`), but if somebody managed to get in
> > after you closed `telnet`, then that means they have a backdoor somewhere.
>
> No, i don't think so...
>
> Here's my log :
> Mar 8 04:02:02 pingouin-1 PAM_pwdb[2412]: (su) session opened for user nobody by
>(uid=99)
> Mar 8 04:04:47 pingouin-1 PAM_pwdb[2412]: (su) session closed for user nobody
>
> This is caused _only_ by the "/etc/cron.daily/updatedb.cron" script.
> Here we are :
>
> [lines extracted from the updatedb.cron script]
>
> # }
> # chown nobody.nobody $TMPFILE
> # su nobody -c "/usr/bin/updatedb --output=$TMPFILE --localpaths='/'
>--prunepaths='/tmp /var/tmp /usr/tmp /afs /net' --netpaths='' 2>/dev/null"
> # if [ -f $TMPFILE.n ] ; then
> # SFILE=$TMPFILE.n
> # else
> # SFILE=$TMPFILE
> # fi
>
> Regards,
> --
> Melchior de Contades LICQ-uin: 1541413 PGP-key: 4F682381
==============CA5C6014985363DB298864C0
Content-Type: text/x-vcard; charset=us-ascii;
name="peckrwood.vcf"
Content-Transfer-Encoding: 7bit
Content-Description: Card for Peck R. Wood
Content-Disposition: attachment;
filename="peckrwood.vcf"
begin:vcard
n:R. Wood;Peck R. Wood
x-mozilla-html:FALSE
version:2.1
email;internet:[EMAIL PROTECTED]
x-mozilla-cpt:;0
fn:Peck R. Wood R. Wood
end:vcard
==============CA5C6014985363DB298864C0==
------------------------------
From: "Duarte Cordeiro" <[EMAIL PROTECTED]>
Subject: Re: How can I redirect TCP-Ports?
Date: Wed, 10 Mar 1999 10:34:12 -0000
Juergen Bachsteffel wrote in message <7c41el$nba$[EMAIL PROTECTED]>...
>Hi!
>
>I installed a Linux-box with 'squid' (HTTP-FTP-proxy).
>Now my users get access to internet for these to proctocols.
>The Linux box connects to my ISP using a CISCO-router and
>eyeryone is happy.
>
>-->>But for incoming and outgoing email I have to redirect port 25(smtp)
> and 110(pop3).
>
>The users should connect to the Linux-box on a specfic port (it can
>also be 25 or 110) and all connections should redirected to port 25
>and 110 on the mailserver of my ISP.
I can think of 3 ways of doing this:
1 - ip port forward.
2 - ssh
3 - rinetd.
1 - (From the make xconfig help): Port forwarding is an addition to IP
masquerading which allow some forwarding of packets from outside to inside a
firewall on given ports.[...]
2 - One someone told me (and you can find out in the man page) a way to
attach a port on the local machine to another port running on another
machine.
3 - This daemon is easy to use. You just say in the configuration file:
my_machine 25 ISP_mail_server 25
my_machine 110 isp_mail_server 110
and everyone that connects to your machine on these two ports will be
talking to the isp server.
Hope it helps,
Duarte Cordeiro
------------------------------
From: "andy" <[EMAIL PROTECTED]>
Subject: Hylafax receiving
Date: Tue, 9 Mar 1999 20:53:24 -0000
Hi.
Have just installed Hylafax on SuSE Linux 5.3 and am able to send but not
receive faxes. Get message saying 'Can not open device' in the log. Assume
it must be permissions problem for a device but I have not changed anything
from the defaults.
Anyone any ideas?
regards
[EMAIL PROTECTED]
------------------------------
From: "Leopold Toetsch" <[EMAIL PROTECTED]>
Subject: Re: Linux-Router: pppd dialing on local connect & bootup & route
Date: Wed, 10 Mar 1999 12:44:25 +0100
Andre Dietisheim wrote in message <[EMAIL PROTECTED]>...
>Hi!
>
>I have installed a Linux-Machine as a Dial-out-Router for a small LAN:
>
==Snip
>and the problem is that pppd dials out when I connect to the router
>(same machine that has the modem attached to) using Telnet, Browser,
>Mailer etc.
==Snip
>I guessed it to be a Lookup to the ISP's DNS
Yes you guessed propably right
Setup a caching name server
- look at the DNS howto
- or on my site
http://www.toetsch.at/de/tips/index.html?linux/99/07_5.htm
for an example with Bind 4.9.7.
It helped for me.
Also you could get HTML-Mail with some external IMG-Urls in them. If you
want to read these, diald will dial your ISP. (I'm filtering my mail now)
leo
------------------------------
From: <[EMAIL PROTECTED]>
Subject: Re: pppd not 8-bit clean Please help!
Date: 10 Mar 1999 03:31:37 GMT
I have the same exact problem. If you haven't fixed it yet, try
http://axion.physics.ubc.ca/ppp-linux.html. You might be able to make more
sense of it than I did. It specifically mentions this problem in the
"Which authentication scheme" If you have figured it out, I'd appreciate
a tip at [EMAIL PROTECTED] Good luck.
cbruner wrote:
>
> My connect script get's me logged onto my ISP, and then hands things
> over to pppd which hangs up.
>
> The /var/log/messages has the following in it:
> 11:10:09 lingate pppd[368]: Connect: ppp0 <--> /dev/ttyS2
> 11:10:39 lingate pppd[368]: LCP: timeout sending Config-Requests
> 11:10:39 lingate pppd[368]: Connection terminated.
> 11:10:39 lingate pppd[368]: Receive serial link is not 8-bit clean:
> 11:10:39 lingate pppd[368]: Problem: all had bit 7 set to 0
> 11:10:39 lingate pppd[368]: Hangup (SIGHUP)
> 11:10:39 lingate pppd[368]: Exit
>
>
================== Posted via SearchLinux ==================
http://www.searchlinux.com
------------------------------
From: "WF, Yee" <[EMAIL PROTECTED]>
Subject: What else should I be checking?.
Date: Wed, 10 Mar 1999 12:03:43 GMT
Hello all,
It has occured to me that not all networking services are listed in the
/etc/inetd.conf. Where else (files, startup scripts etc..) should I be
looking at in order to start or stop a particular service or does one
stop/start these services via settings/switches with the ipfwadm
command?. Appreciate it if someone would direct me to the right FAQ or
web-sites if they exist. Not much clue about networking at this time.
I am currrently running Redhat Linux 5.2 version 2.0.36.
Thanks in advance.
WF Yee
------------------------------
** FOR YOUR REFERENCE **
The service address, to which questions about the list itself and requests
to be added to or deleted from it should be directed, is:
Internet: [EMAIL PROTECTED]
You can send mail to the entire list (and comp.os.linux.networking) via:
Internet: [EMAIL PROTECTED]
Linux may be obtained via one of these FTP sites:
ftp.funet.fi pub/Linux
tsx-11.mit.edu pub/linux
sunsite.unc.edu pub/Linux
End of Linux-Networking Digest
******************************
