Linux-Networking Digest #741, Volume #10 Sun, 4 Apr 99 10:14:39 EDT
Contents:
HELP! Linux as client to Wingate Proxy on W95 (Warren Watts)
Re: pppd woes (the eternal saga) (S.)
Can't ping other machines in my local net (newbie please help) ("Markus Jahn")
hackers ([EMAIL PROTECTED])
Re: pppd woes (the eternal saga) (Jon-o Addleman)
New Building Voice/Data Recommendations ("Walter L. Preuninger II")
Need Help for diald under SuSe 5.4 for ISDN (Andreas)
Modules question (razoon)
Re: hackers ("Anders G. Olstad")
Re: Aliased IP usage moderation ("Curt")
Re: New Building Voice/Data Recommendations (Luca Filipozzi)
$$$$ Make money surfing web for free $$$ (Jin Yeong Yi)
Re: Need to configure routes at boot ("William R. Mattil")
Re: pppd woes (the eternal saga) (Mike Graham)
Re: Linux as NT server (Greg Weeks)
Re: Help: my computer has no name ("William R. Mattil")
Help: tunneling http through home firewall to internal server ("J. Mark Shacklette")
----------------------------------------------------------------------------
From: [EMAIL PROTECTED] (Warren Watts)
Subject: HELP! Linux as client to Wingate Proxy on W95
Date: Sun, 04 Apr 1999 06:27:04 GMT
Reply-To: [EMAIL PROTECTED]
Help!
I have spent DAYS now trying to get this set up and operating.... I
see that other folks running W95 based proxy servers are having
similar problems and there HAS to be a simple answer...
Some background:
I current;y have three machines on my network:
- a W95 box runnning Wingate that I use to connect to the internet,
- a W95 box set up as a client to the Wingate host thru whch I have NO
problem connecting to web pages, FTP, Telnet, mail servers, news
servers, etc,
- a Linux box that will talk to the other machines on the network, (I
can Telnet to the Linux box, FTP to the Linux box, and I have Apache
running OK) but I can't seem to get to the outside world thru my
W95/Wingate host.
I can ping the two W95 boxes from the Linux machine, but not anything
else...
Oddly enough, I CAN Telnet to my ISP's server, but can't ping it....
I have a sneaking suspicion (mostly from reading messages regarding
proxy setup problems) that the problem lies in not having the DNS
gateway properly set up. I have tried sooo many sugestions and
nothing seems to work...
Where am I going wrong?
Warren Watts
------------------------------
From: [EMAIL PROTECTED] (S.)
Crossposted-To: comp.os.linux.setup,comp.os.linux.questions,comp.os.linux
Subject: Re: pppd woes (the eternal saga)
Date: Thu, 01 Apr 1999 01:46:02 -0900
I had assumed that this PAP thang with the space was causing my problems,
although it evidently was not; I still cannot connect. I realize that this
subject has been discussed extensively in this newsgroup and even more
extensively on the internet, however I have traversed both to no avail. I
have read the HOW-TOs and messages on the subject and abided by the
instructions, yet I cannot get this foul beast to work. I realize the more
experienced denizens of these newsgroups are surely weary of this stuff,
but please bear with me.
It is my understanding that the following must be done in order to
configure ppp. If I am incorrect at some point, please point it out. . . .
1. Edit resolv.conf and put in your ISP domain name and then your ISP's
Domain Name Server
2. Edit /etc/hosts.conf and make sure it contains the text "order hosts,
bind multi on".
3. Edit /etc/ppp/options so it contains "lock crtscts defaultroute"
4. Find out if your ISP uses PAP, CHAP, or neither.
5. In the case of CHAP or PAP, go into /etc/ppp/pap-secrets (or,
alternatively, CHAP secrets) and type " 'your usename' * 'your password'
* "
6. And then, finally, invoke the beast that is PPPd and attempt to connect
to the remote hose by typing
" /usr/sbin/pppd /dev/ttyS1 57600 user 'your username' connect
"/usr/sbin/chat -v '' ATD5555555 CONNECT '' ogin: 'your username' assword:
'your password'"
7. Pray to God
8. Test your connection by using some sort of internet program or wait a
minute or two to see if your modem gives off the telltale Click of
Disconnection (it strikes terror into my heart).
------------------------------
From: "Markus Jahn" <[EMAIL PROTECTED]>
Subject: Can't ping other machines in my local net (newbie please help)
Date: Sun, 4 Apr 1999 11:42:33 +0200
Hi there,
I am using the SuSE Linux Distribution 6.0 and I try to establish an easy
network with 2 computers using a crossover cable. The problem is that I have
two "no name" network cards but they seem to work with the tulip driver (at
least they are recognized at boot time).
After I finished the routing process I tried to ping the other computer but
it won't work. Is it maybe a wrong network driver or are there important
things I have to take care of concerning the routing.
Please help
Longo
------------------------------
From: [EMAIL PROTECTED]
Crossposted-To: kingston.os.linux,comp.os.linux.misc
Subject: hackers
Date: Sun, 04 Apr 1999 05:14:32 +0000
I'm not much of a hacker but I do use Linux. I'm running
RedHat5.2 and I'm on a LAN connected though cablemodem by
an old 486 with Slackware96. I'm up late working and I
notice things are getting slow. I run top and I see that
user:nobody is running find with PRI 20!!! All of a
sudden there's another process running "make whatis". I
killed that and some other processes including an instance
of gawk, I then literrally pulled the plug on my
cablemodem. I looked in /var/log but I can't find
anything. What, if anything,can I do to trace this
hacker?
--
Boyd Thomson
[EMAIL PROTECTED]
http://welcome.to/boydt
------------------------------
From: [EMAIL PROTECTED] (Jon-o Addleman)
Crossposted-To: comp.os.linux.setup,comp.os.linux.questions,comp.os.linux
Subject: Re: pppd woes (the eternal saga)
Date: Sun, 04 Apr 1999 07:13:59 GMT
Once upon a Thu, 01 Apr 1999 01:46:02 -0900, [EMAIL PROTECTED]
(S.) wrote:
>6. And then, finally, invoke the beast that is PPPd and attempt to connect
>to the remote hose by typing
>" /usr/sbin/pppd /dev/ttyS1 57600 user 'your username' connect
>"/usr/sbin/chat -v '' ATD5555555 CONNECT '' ogin: 'your username' assword:
>'your password'"
>7. Pray to God
>8. Test your connection by using some sort of internet program or wait a
>minute or two to see if your modem gives off the telltale Click of
>Disconnection (it strikes terror into my heart).
The first few steps seemed ok, but what you should really do is try to
start the connection manually, using minicom, like it says in the
HOWTO. Based on what happens there, you should be able to make the
scripts without too much trouble.
If you still have trouble with ppp, make sure the debug switch is
activated (or that it's in the options file) so that you can check
/var/log/ppp.log for help. Likewise, when you're working on your chat
script, set the -v switch on it, so that info will go to the same
place. (make sure you turn both of these off when you're done though,
since they can sometimes make for some extensive log files, depending
on your setup.)
--
Jon-o Addleman
------------------------------
From: "Walter L. Preuninger II" <[EMAIL PROTECTED]>
Subject: New Building Voice/Data Recommendations
Date: Sun, 4 Apr 1999 01:35:19 -0600
I will soon be moving into a 32' x 58' 'manufactured' house. It is a 3
bedroom, with 1 room being 'the computer room'. I have several questions
concerning the wiring for phone and networking.
Using cat 5 cable, should I run 1 run for voice, and 1 for data? Or can I
use 4 & 5 for the voice. I want to run 10/100.
Should this/these be in pvc or metal conduit? Should the cat 5 be of
shielded variety? Should the phone connection demark be in the same area as
the data termination points?
I would really like to have atleast 2 walls in each room of the house
covered for voice and data. Cost is of some concern, but my employeer will
cover the cost of the cable.
Between the house and the office (<300ft) we have an electrical line in pvc
in a ditch. The will be wiring me up to work, and need to know if I:
need to look at fiber or is it fibre? ;)
Does a cat 5 or enhanced cat 5 cable need to be shielded and in a seperate
conduit?
Thanx for any ideas/opinions/recommendations,
Walter L. Preuninger II
------------------------------
Date: Sun, 04 Apr 1999 09:35:06 +0200
From: Andreas <[EMAIL PROTECTED]>
Subject: Need Help for diald under SuSe 5.4 for ISDN
Hi folks,
I have the problem, that my dials is working tooooo good. Each time I
use my phone (and I use it often) diald is connecting me successfully to
the internet.
Moreover it is connecting when I am booting Linux (I did not start
sendmail!).
So, can anybody help me.
Thanks
Andreas
------------------------------
From: [EMAIL PROTECTED] (razoon)
Subject: Modules question
Date: Sun, 04 Apr 1999 11:28:12 GMT
Reply-To: [EMAIL PROTECTED]
Whats the commandline to see what modules i have loaded?
tnx
------------------------------
From: "Anders G. Olstad" <[EMAIL PROTECTED]>
Subject: Re: hackers
Crossposted-To: comp.os.linux.misc
Date: Sun, 4 Apr 1999 13:48:27 +0200
[EMAIL PROTECTED] wrote:
> I'm not much of a hacker but I do use Linux. I'm running
> RedHat5.2 and I'm on a LAN connected though cablemodem by
> an old 486 with Slackware96. I'm up late working and I
> notice things are getting slow. I run top and I see that
> user:nobody is running find with PRI 20!!! All of a
> sudden there's another process running "make whatis". I
> killed that and some other processes including an instance
> of gawk, I then literrally pulled the plug on my
> cablemodem. I looked in /var/log but I can't find
> anything. What, if anything,can I do to trace this
> hacker?
Most likely, the "make whatis" is just a cron job running as user nobody.
Take a look in /etc/cron.weekly/ and /etc/crontab
--
Anders Gulden Olstad @ Brinkley | * * * * * * * * * * * * * * * * * * * *
RedHat 5.2 Linux kernel 2.0.36 | "Penguins are generally nice creatures"
------------------------------
From: "Curt" <[EMAIL PROTECTED]>
Crossposted-To: comp.os.linux.admin,alt.uu.comp.os.linux.questions,alt.os.linux
Subject: Re: Aliased IP usage moderation
Date: Sun, 4 Apr 1999 06:47:52 -0500
Just an idea... Seems like you might be able modify the tcp wrapper code to
do this.
Rajak wrote in message ...
>Ok, what the hell does the subject mean you ask? Let me explain.
>
>(This is all theoretical btw)
>I have a commercial shell provider/web hosting box, connected to the i-net
>@ T1 speed, and have a large number of IPs (100, 256,512, take your pick).
>Currently, they are all aliased to my eth card, and any user can bind to
>any IP and proceed to connect to IRC from there. However, I have a few
>domains/hosts on my eth card that should NOT be used for any purposes,
>except by a few users. For example, one user likes to IRC with this
>specific vhost (some.leetoid.host.com) and gets very upset if anyone else
>uses this host. How can I prevent the majority of users from being able to
>bind to this IP/host, but still allow one or two users access? I've been
>kicking this problem around for a while and I'm not seeing an obvious
>solution. Preferably the solution would work on a 2.2 Linux box, however a
>2.0 solution would be welcome as well.
>
>raj
>
>[EMAIL PROTECTED]
>
------------------------------
From: [EMAIL PROTECTED] (Luca Filipozzi)
Subject: Re: New Building Voice/Data Recommendations
Date: Sun, 4 Apr 1999 00:15:15 -0800
In article <oCEN2.78$[EMAIL PROTECTED]>, [EMAIL PROTECTED]
says...
> I will soon be moving into a 32' x 58' 'manufactured' house. It is a 3
> bedroom, with 1 room being 'the computer room'. I have several questions
> concerning the wiring for phone and networking.
Cool. Where from... and for how much?
> Using cat 5 cable, should I run 1 run for voice, and 1 for data? Or can I
> use 4 & 5 for the voice. I want to run 10/100.
I wouldn't use the other pairs for voice... achieving CAT 5 (100Mbps)
will be harder if you pollute the EM environment. Run voice and data on
parallel cabling infrastructures.
> Should this/these be in pvc or metal conduit? Should the cat 5 be of
> shielded variety? Should the phone connection demark be in the same area as
> the data termination points?
I would recommend doing what a business would do... structured premise
cabling. Have all the data/telecomm cabling go back to a 'wiring closet'.
In that closet, install a patch panel to terminate all the cables. You
can buy 'residential' patch panels that will install in 16"-on-center
wood frame construction.
In the wiring closet is where you put the telco demark and you incoming
network connection. You should put a 486 running linux in the wiring
closet to act as a router/firewall between you and the incoming network
connection. You'll need a hub, too.
You can buy 'residential' cabling that has audio, CAT 5, telco, and fibre
all wrapped up in one bundle. You can pull this from the 'wiring closet'
to each drop for a home of the future. This may not be a good idea since,
by running all these cables side by side, you will introduce
interference. It *is* convenient, though. This cable isn't cheap.
You could use shielded CAT5 cable... ground one side only. If you don't
run the cable near your power/audio/telco, you'll be fine with UTP
(unshielded).
> I would really like to have at least 2 walls in each room of the house
> covered for voice and data. Cost is of some concern, but my employeer will
> cover the cost of the cable.
Get your employer to fork out for the patch panel and the gang-box
covers, jacks, etc., instead. Cable's cheap (usually)... patch panels,
and the other plastic gizmos that will make the job look professional
will cost a *lot* more.
> Between the house and the office (<300ft) we have an electrical line in pvc
> in a ditch. They will be wiring me up to work, and need to know if I:
You live right beside your workplace?
> need to look at fiber or is it fibre? ;)
> Does a cat 5 or enhanced cat 5 cable need to be shielded and in a seperate
> conduit?
You don't *need* fibre (in Canada/UK, fibre; in US, fiber) if the
distance is <100m (<300ft). However, you are potentially introducing a
nasty ground potential difference. 10Base-T and 100Base-T are based on
RS-485 signalling levels (which don't really have a ground reference),
but you never know. I'd go with fibre, if I could afford it. This will
mean that you will have to buy fibre/copper converters. Check out LanART
and Allied Telesyn. Cheap and good.
If you go with copper, having it run side-by-side with your power in
the same PVC conduit will cause you grief. Let's see... a residential
feed of 208V/220V at 60Hz right beside a data cable with 15V at >100MHz.
Mmmmm, who wins? If you put a scope on that data cable, I'm sure you'll
see a whole bunch of stuff at 60Hz!! Shielding will help. Remember,
ground out only one side.
--
Luca Filipozzi <[EMAIL PROTECTED]>
------------------------------
From: [EMAIL PROTECTED] (Jin Yeong Yi)
Subject: $$$$ Make money surfing web for free $$$
Date: 4 Apr 1999 08:52:27 GMT
found a great site which will pay you for surfing the web.
it's free and you'll get paid while you surf the Web.
you'll get paid $0.50 cents / hour.
all you have to do is join for free, use internet as much as you can and
get paid for that hour, simple as that.
check it out for yourself.
http://www.alladvantage.com/go.asp?refid=AQL009
You have nothing to lose.
~
------------------------------
From: "William R. Mattil" <[EMAIL PROTECTED]>
Subject: Re: Need to configure routes at boot
Date: Sat, 03 Apr 1999 19:50:29 -0600
Monkey Boy wrote:
> I have a linux RedHat 5.2 with kernal 2.0.36 set up as a router
> between two private networks. I can configure the routes maunually
> but I can't seem to figure out how to load the routes on boot up.
>
> Any help would be appreciated.
>
> Behind every simple problem is a complex reality
> --Anthony Bouza
>
> Help the Monkey Boy
Put the appropriate route commands in /etc/rc.d/rc.local and be sure to
use the complete path as well for portability.. ie: /sbin/route blah
blah blah . The other method would be to add the necessary routing
information to /etc/sysconfig/static-routes
Regards
Bill
--
William R. Mattil | Fred Astaire wasn't so great.
[EMAIL PROTECTED] | Ginger had to do it all backwards
(972) 399-4106 | and... in high heels.
------------------------------
From: [EMAIL PROTECTED] (Mike Graham)
Crossposted-To: comp.os.linux.setup,comp.os.linux.questions,comp.os.linux
Subject: Re: pppd woes (the eternal saga)
Reply-To: [EMAIL PROTECTED]
Date: Sun, 04 Apr 1999 13:14:11 GMT
On Thu, 01 Apr 1999 01:46:02 -0900, S. wrote:
>It is my understanding that the following must be done in order to
>configure ppp. If I am incorrect at some point, please point it out. . . .
>
>1. Edit resolv.conf and put in your ISP domain name and then your ISP's
>Domain Name Server
Or servers. Many ISPs have multiple name servers. I also added a search
line to mine, so that my resolv.conf looks like this:
domain headwaters.com
search headwaters.com
nameserver 209.135.75.2
nameserver 209.135.75.4
>2. Edit /etc/hosts.conf and make sure it contains the text "order hosts,
>bind multi on".
I don't have a hosts.conf. My ppp works. I would have to assume that it
is not a mandatory file.
>3. Edit /etc/ppp/options so it contains "lock crtscts defaultroute"
I don't have an /etc/ppp/options, either.
>4. Find out if your ISP uses PAP, CHAP, or neither.
I have pap-secrets and chap-secrets, but they're empty; assumably my ISP
doesn't use pap or chap.
>6. And then, finally, invoke the beast that is PPPd and attempt to connect
>to the remote hose by typing
>" /usr/sbin/pppd /dev/ttyS1 57600 user 'your username' connect
>"/usr/sbin/chat -v '' ATD5555555 CONNECT '' ogin: 'your username' assword:
>'your password'"
I just type "ppp-on" and I'm done. "ppp-off" to close the connection.
>7. Pray to God
>8. Test your connection by using some sort of internet program or wait a
>minute or two to see if your modem gives off the telltale Click of
>Disconnection (it strikes terror into my heart).
Use "ping <nameserver>" from the console prompt for testing. In my case I
use "ping 209.135.75.2", but of course you would have a different
nameserver.
--
Mike Graham, [EMAIL PROTECTED]
Caledon, Ontario, Canada (just NW of Toronto).
Raiser of animals. Weldor of metals. Driver of off-road vehicles.
Writer of FAQs. Keeper of the faith, and all around okay guy.
<http://www.beeline.ca/personal/mike>
------------------------------
Reply-To: [EMAIL PROTECTED]
From: [EMAIL PROTECTED] (Greg Weeks)
Subject: Re: Linux as NT server
Date: Sun, 4 Apr 1999 08:17:29 -0500
In article <[EMAIL PROTECTED]>,
Richard Pitt <[EMAIL PROTECTED]> writes:
> "William R. Mattil" wrote:
>>
>> Mogul 55 wrote:
>>
>> > i want linux to act as an NT server would. The clients are running Win 98.
>> > The big thing is i want the linux box to validate the users that are on the Win
>> > 98 PCs..
>> > Some one please help
>> >
>> > Thanks in advance
>> > [EMAIL PROTECTED]
>>
>> The easy part will be samba ......... the far more difficult part to try and
>> duplicate will be the infamous "blue-screen-of-death". This is as far as I can
>> tell a Micro$oft monopoly.
>>
>> Regards
>> Bill
>>
>> --
>> William R. Mattil | Fred Astaire wasn't so great.
>> [EMAIL PROTECTED] | Ginger had to do it all backwards
>> (972) 399-4106 | and... in high heels.
>
> Actually, it should be fairly easy to create a screen save that emulates
> the BSOD. You could even throw in some random "interesting" text.
> "System has become unstable - please re-boot with Linux"
>
> "System has become unstable - Bill Gates passed Go - please send $200"
>
> "System has become unstable - please re-install"
>
> you get the picture ;-)
A little cron job that juggles random numbers and decides whether to
die or not. Adjustable to suit how realistic you want it. If you want
realism it occasionally does a mke2fs on your drive for you.
Greg Weeks
--
http://durendal.tzo.com/greg/
------------------------------
From: "William R. Mattil" <[EMAIL PROTECTED]>
Subject: Re: Help: my computer has no name
Date: Sat, 03 Apr 1999 20:02:58 -0600
Sim wrote:
> I'm trying to set up qmail, but the first problem I have (I'm sure
> many more are to come) is that the compile breakdowns due to a lack of
> a hostname. I'm using RH5.2 and have two ethernet cards, one
> connected via a cable modem and using DHCP, the other static and
> connected to my internal network (and called P350.customer.chello.be)
>
> Although hostname returns P350,
> hostname -f gives hostname: Unknown host
> and I guess this is what is causing qmail to choke.
>
> Any help appreciated
>
> Simon
from the man page for hostname:
hostname -f will reveal the FQDN "fully qualified domainname" for your
host. Because it returns nothing I would suggest you look into the
following:
1) Make sure that your ip address and host is entered into your
/etc/hosts file. ie:
www.xxx.yyy.zzz P350.customer.chello.be P350
though I will caution you that your hostname should be lowercase IIRC.
2) make certain that your resolver returns the correct hostname/ip
address or put the following into /etc/host.conf (/etc/netsvc.conf
depending on release)
order hosts, bind
this refers your system to its own hosts file first, and then bind to
resolve hostnames
Hope this helps
Regards
Bill
--
William R. Mattil | Fred Astaire wasn't so great.
[EMAIL PROTECTED] | Ginger had to do it all backwards
(972) 399-4106 | and... in high heels.
------------------------------
From: "J. Mark Shacklette" <[EMAIL PROTECTED]>
Subject: Help: tunneling http through home firewall to internal server
Date: Sun, 04 Apr 1999 13:50:43 GMT
Hi:
I'd like to set up a linux firewall (ipfwadm) and have an http server
running on a box hidden behind the firewall (no public ip address). I'd
like to be able to set things up so that from the internet, I could
connect to the firewall (which has a public ip) and have it "foward"
http packets to the real http server, and have that server pass results
back through the firewall to my netscape client on the internet. I've
been told I want to use something like http tunneling, and that I can
somehow direct a particular port on the firewall to direct http requests
to the real internal http server.
The only problem is that I have no earthly idea how to do this, or where
to start. Any and all suggestions, pointers to howtos and docs, etc.
would be most welcome and appreciated.
I would also like to have ftp redirected as well. I guess another way
to put it is I'd like to be able to run an ftpd and httpd from a server
behind the firewall, but allow selected access to it from the internet.
Any help would be most appreciated.
Thanks,
Mark
------------------------------
** FOR YOUR REFERENCE **
The service address, to which questions about the list itself and requests
to be added to or deleted from it should be directed, is:
Internet: [EMAIL PROTECTED]
You can send mail to the entire list (and comp.os.linux.networking) via:
Internet: [EMAIL PROTECTED]
Linux may be obtained via one of these FTP sites:
ftp.funet.fi pub/Linux
tsx-11.mit.edu pub/linux
sunsite.unc.edu pub/Linux
End of Linux-Networking Digest
******************************
