Linux-Networking Digest #576, Volume #10 Sun, 21 Mar 99 04:14:04 EST
Contents:
Re: pop3d socket error ("parag")
Re: What is the best Linux to install? (Jon-o Addleman)
Re: Getting rid of nwserv ("Andre Guziak")
Re: Recommend Fast Ethernet Card (Colin)
Re: NIC problem (Al Roeder)
Re: Certificate Server with Linux/Apache (Ya Wen)
Re: DNS related PPP problems. (Christopher Rowe)
Re: nfs and permissions (Stewart Henderson)
VPN with NT and Linux (Bill Keeler)
Re: defaultroute and route table (Jeff Bishop)
pppd problem (Don Byington)
LTC E-NET/16 net card (Bert McMuff)
Re: Remotely retrieving mail (Eugene Strulyov)
How to monitor what someone types (dave)
Re: cable modem and pnp ethernet card (Rudolf Potucek)
Re: Q: DNS delegation? (edlee)
Re: Can a regular user activate and deactivate dialup connection? (Eugene Strulyov)
Re: Apache module and php question (Carles Arjona)
Re: blocking services on an interface (edlee)
----------------------------------------------------------------------------
From: "parag" <[EMAIL PROTECTED]>
Subject: Re: pop3d socket error
Date: Sun, 21 Mar 1999 11:49:43 +0530
Got it :))) thanks it works now. really is weird why it didnt install that
but oh well thanks a lot
------------------------------
From: [EMAIL PROTECTED] (Jon-o Addleman)
Crossposted-To:
alt.os.linux,comp.os.linux,comp.os.linux.misc,comp.os.linux.setup,comp.os.linux.redhat,alt.os.linux.slackware
Subject: Re: What is the best Linux to install?
Date: Sun, 21 Mar 1999 07:06:40 GMT
Just for the record, I've attempted several times to use redhat and
found it unintuitive, confusing, and generally really annoying. On the
other hand, Debian has been simple and user-friendly from the start,
except for a few minor things (default pagersetup in 2.0, etc...). I
don't see where these ideas appear about redhat being the easiest, and
Debian the hardest to install - I find it's just the opposite!
The biggestproblem with RedHat for me was that it would install
things, but not set them up. Debian packages typically ask a number
of questions upon install and set themselves up nicely. For example,
when I installed a new window manager in Debian, it asked if I wanted
to make it the default in X, and added it to a number of menus, config
files, etc... With Redhat, it did nothing, and I was left to my own
devices to find out what file to edit, and how to do it. The same
happens with many other things.
As well, there are a few rather silly things that Redhat doesn't do -
for example, the terminaldoesn't support the home/end/delete keys! I
don't see how they can get away with that... it's very annoying.
Of course, now I'm also simply used to Debian, and know where to find
files, how to set up the init (a bit...) and so on, so of course I
prefer it. But I have a lot of trouble understanding how people
recommend anything else for newbies - I've had huge troubles with
other distros that I tried - for the record, I started with RedHat,
and didn't get very far.
--
Jon-o Addleman
------------------------------
From: "Andre Guziak" <[EMAIL PROTECTED]>
Subject: Re: Getting rid of nwserv
Date: Sat, 20 Mar 1999 11:13:30 +1100
1. Boot into single user mode - at lilo boot prompt type "linux single".
2. At the bash prompt login as root
3. Type "ntsysv" and untag mars-nw from the list
4. type "reboot"
Cheers
Kearin
Alex Braber wrote in message <[EMAIL PROTECTED]>...
>I am new to Linux and I installed the Novell emulator. Fact is that I
>don't have any NW-servers so when booting my machine is 'waiting' for
>any response (I think). Could someone tell me how to remove this
>emulator or setting the timeout to less than 1 minute?
>
>TIA,
>Alex
>Alex Braber
>Constructive Netherlands BV
------------------------------
From: Colin <[EMAIL PROTECTED]>
Crossposted-To: comp.os.linux.hardware
Subject: Re: Recommend Fast Ethernet Card
Date: Fri, 19 Mar 1999 19:22:56 -0500
Rod Smith wrote:
> So, the 10/100 ethernet market is currently a bit chaotic because of the
> disappearance of "genuine" DEC Tulip chipsets. There ARE entirely
> unrelated chipsets out there. Intel uses its own design in its 10/100
> boards, for instance. They've got a solid reputation, but I've never used
> one myself (these boards cost 2-3 times what a Tulip or Tulip clone board
> costs). I'm not positive, but I believe the chipset used by the D-Link
> 530TX is unrelated to the Tulip. I recall hearing that Linux support for
> it is fairly recent, but I don't recall the details.
The D-Link DFE-530TX uses the VIA Rhine II chip. It uses the via-rhine
driver. I use one and no problems so far.
> Anyhow, the bottom line is this: Unless you go with an Intel board,
> whatever you get will be a bit of a crap shoot, since manufacturers are
> still changing designs to use the clone chipsets. I recommend you buy
> something locally from a store with a good return policy. If it gives you
> any trouble, swap it for something else.
I've heard the 3Com 905B card is well supported. Expensive, but well
supported.
--
Reply to "cwv [at] idirect (dot) com"
------------------------------
From: Al Roeder <[EMAIL PROTECTED]>
Subject: Re: NIC problem
Date: Sat, 20 Mar 1999 00:43:11 GMT
One possibility:
Make sure no other built-in devicesin BIOS such as LPT port or COM ports are
set to its IRQ setting. That problem threw me off once for a while.
-Al
Andre Guziak wrote:
> I have installed a generic ISA NIC into a '486 linux box ( I have tried 2
> NICs so far) and linux can't see it. When I run diagnostics on the card
> (lanset.exe) from dos, its all there. Should I use a driver other than
> NE2000??? or am I missing something here??? I have the irq and address set
> and noted - not conflicting with anything either. Any suggestions??
>
> Regards
> Andre
------------------------------
From: Ya Wen <[EMAIL PROTECTED]>
Subject: Re: Certificate Server with Linux/Apache
Date: Fri, 19 Mar 1999 16:47:13 -0800
Apache-SSL should do the job. Take a look at:
http://www.apache-ssl.org/
-Ya
On Fri, 19 Mar 1999, Ronald L. Chichester wrote:
> Is there a (Linux) certificate server for Apache? I want to use the
> Secure Socket Layer (SSL) capability with Apache-SSL but I want to use
> a certificate server so that I can control the access to the secure
> web site. I know that Stronghold has a certificate server bundled
> with its software. I'm trying to find out if there is a
> freeware/shareware/commercial competitor that can work with Apache on
> Linux.
>
> Thanks in advance,
>
> Ronald L. Chichester
>
>
>
>
------------------------------
From: Christopher Rowe <[EMAIL PROTECTED]>
Subject: Re: DNS related PPP problems.
Date: Sat, 20 Mar 1999 00:36:46 GMT
Cheers
This was precisely the problem, it sorted the dial up nicely.
Chris.
In article <[EMAIL PROTECTED]>,
"Dr. Yuan Liu" <[EMAIL PROTECTED]> wrote:
> [EMAIL PROTECTED] wrote:
> >
> > To solve the problem, I have to manually execute:
> >
> > route add default dev ppp0
>
> See if the option
> defaultroute
> is in your /etc/ppp/options.
>
> > Chris.
> >
> > [EMAIL PROTECTED]
> > or
> > [EMAIL PROTECTED] (without _'s)
>
> --
> +--- mailto:[EMAIL PROTECTED] ----------- http://www.ChiTech.ca/ ---+
> | Dr. Yuan LIU - Chitech Technologies Inc. |
> +------- (514)281-0494 ------------------ FAX (514)281-0493 ------+
>
[EMAIL PROTECTED]
or
[EMAIL PROTECTED] (without _'s)
============= Posted via Deja News, The Discussion Network ============
http://www.dejanews.com/ Search, Read, Discuss, or Start Your Own
------------------------------
From: Stewart Henderson <[EMAIL PROTECTED]>
Subject: Re: nfs and permissions
Date: Fri, 19 Mar 1999 18:20:30 GMT
Hi Taro,
Taro Fukunaga <[EMAIL PROTECTED]> wrote:
> I have a linux machine that exports a directory to my other machine via
> nfs. However I am having a problem with permissions. Say machine_A is
> the server and machine_B is the client. Both have the same user name.
> When I mount the home directory of the user located on machine_A on
> machine_B and do ls -l, all the files and directories are marked 501.
> This is the UID and GID for machine_A for myself. On machine_B, my UID
> and GID is 500.
> Basically, I can't read/write as if my home directory on machine_A is
> truly my own. In order to do that, I have to change the permissions of
> every directory to 777, and similarily files have to be 555. Normally
> I'd prefer 700 and 500 for directories that I don't want to share with
> the whole world.
Any reason why you shouldn't:
rcp /etc/passwd* machine_B:/etc
rcp /etc/shadow* machine_B:/etc
rcp /etc/group* machine_B:/etc
?
Cheers,
Stew.
------------------------------
From: Bill Keeler <[EMAIL PROTECTED]>
Subject: VPN with NT and Linux
Date: Sun, 21 Mar 1999 00:21:45 -0700
I need to set up a secure network (VPN) using RedHat Linux 5.2 and NT
4.0. Is that possible? Where can I find out how?
Thanks
--
Bill Keeler
Online PC Help
Remove "NOSPAM." in my e-mail address if responding that way
------------------------------
From: Jeff Bishop <[EMAIL PROTECTED]>
Subject: Re: defaultroute and route table
Date: Sat, 20 Mar 1999 00:42:39 -0600
Reply-To: [EMAIL PROTECTED]
> I'm stumped. My friends are stumped. My ISP is stumped...
> I recently installed a modem in my Linux machine. Everything seemed to
> go quite easily. Little did I know...
> When I try to connect to my ISP, everything fires up normally and I
> establish a link, but for some reason my defaultroute doesn't seem to
> work. I have the defaultroute option selected in my PPPD connect
> statement (it doesn't show up as 0.0.0.0 XXX.XXX.XXX.XXX as I expect
> in route -n). I've tried doing a "route add 0 gw XXX.XXX.XXX.XXX" (I get
> an entry, but I still can't ping anyone besides my ISP). I've been
> through the man pages and the HOW-TO's. I've configured and
> reconfigured. Obviously I'm missing something, but I sure don't know
> what it is. Anyone have any ideas???
>
>
A couple of ideas.
One. Is your defaultroute left blank in your /etc/sysconfig/network
file? It should be blank as pppd will want to set its own. Same for
defaultdev.
Two. I found linuxconf (RH 5.2) to be quite capable at storing the
right settings. Once that was done, a simple /sbin/ifup ppp0 was all
that was left to establish ppp networking. YMMV.
--
Jeff
------------------------------
From: Don Byington <[EMAIL PROTECTED]>
Subject: pppd problem
Date: Sat, 20 Mar 1999 06:45:43 +0000
Reply-To: [EMAIL PROTECTED]
This has baffled me since it feels like a routing problem that I delt
with a long time ago on another Linux box.
With RH 5.2 I dialup, get connected, get an address, defroute takes, and
it stays for about ~20 minutes. Meanwhile I cannot ping even the gateway
for the defroute.
????
Here's some info
>From the messages file-
Mar 19 22:15:15 igate pppd[817]: pppd 2.3.5 started by root, uid 0
Mar 19 22:15:15 igate pppd[817]: Using interface ppp0
Mar 19 22:15:15 igate pppd[817]: Connect: ppp0 <--> /dev/modem
Mar 19 22:15:19 igate pppd[817]: local IP address 216.65.144.75
Mar 19 22:15:19 igate pppd[817]: remote IP address 216.65.132.1
Mar 19 22:15:31 igate pppd[817]: Protocol-Reject for unsupported
protocol 0x1
Mar 19 22:15:31 igate pppd[817]: Protocol-Reject for unsupported
protocol 0x1819
Mar 19 22:15:31 igate pppd[817]: Protocol-Reject for unsupported
protocol 0x35
Mar 19 22:15:49 igate pppd[817]: CCP: timeout sending Config-Requests
Mar 19 22:42:13 igate pppd[817]: Modem hangup
Mar 19 22:42:13 igate pppd[817]: Connection terminated.
Mar 19 22:42:14 igate pppd[817]: Exit.
Routing table while connected-
Kernel IP routing table
Destination Gateway Genmask Flags MSS Window irtt
Iface
216.65.132.1 0.0.0.0 255.255.255.255 UH 542 0 0
ppp0
192.168.1.0 0.0.0.0 255.255.255.0 U 1500 0 0
eth0
127.0.0.0 0.0.0.0 255.0.0.0 U 3584 0 0
lo
0.0.0.0 216.65.132.1 0.0.0.0 UG 542 0 0
ppp0
ipfwadm rules-
igate 94# ipfwadm -I -l
IP firewall input rules, default policy: accept
igate 95# ipfwadm -O -l
IP firewall output rules, default policy: accept
igate 96# ipfwadm -F -l
IP firewall forward rules, default policy: deny
type prot source destination ports
acc/m all 192.168.1.0/24 anywhere n/a
I've even manually started the farend pppd by loging in with minicom and
manually starting pppd on the local end and it is the same way.
Suggestions? Send them to [EMAIL PROTECTED], or post (I'll probably be
crusing groups untill I get this figured out)
ADVthanksANCE
--
Don Byington
[EMAIL PROTECTED]
------------------------------
Date: Sat, 20 Mar 1999 23:34:10 -0800
From: Bert McMuff <[EMAIL PROTECTED]>
Subject: LTC E-NET/16 net card
Hello,
In section 1.8.7 of the linux faq, it says "The following [network card]
clones are reported to work [with linux]:" and lists "LTC E-NET/16 P/N
8300-200-002" as one of those cards. Does anybody know anything about
this card? I have been unsuccessful in finding any information about it
on the internet, and have not even figured out what LTC is an acronym
for. Can anybody give me some valuable insight on this?
Thanks,
Bert.
[EMAIL PROTECTED]
------------------------------
From: Eugene Strulyov <[EMAIL PROTECTED]>
Subject: Re: Remotely retrieving mail
Date: Sun, 21 Mar 1999 07:40:33 GMT
"R.F. Locke" wrote:
> Is it possible to retrieve email remotely using Eudora rather than
> having to run a telnet session and use Pine?
uhh duh! did you even try it?
>
> I can access the mail server with telnet from an AOL session or a
> dial-up session with an ISP.
> What configuration changes / settings might be required?
none
>
> Can I allow remote mail retrieval to specific users without enabling
> access for the entire AOL or ISP domain?
well, there is a thing called password...
------------------------------
Subject: How to monitor what someone types
From: [EMAIL PROTECTED] (dave)
Date: Sun, 21 Mar 1999 07:45:05 GMT
How can I monitor what someone is doing when they are connected to me via
telent? Can I use tcpdump to display only what is typed in a simple readble
format?
I would like to monitor what they type and then send it to a program that will
grep out the commands I should be worried about and then alert me.
I use RH
------------------------------
From: [EMAIL PROTECTED] (Rudolf Potucek)
Subject: Re: cable modem and pnp ethernet card
Date: 21 Mar 1999 07:40:50 GMT
I take it you tried the obvious ones ...
* are you using the right cable (peer to peer won't work)
* are all theree lights on the cable modem lighted when you have your
computer connected and running
If that is the case I would give your ISP a call. Here in Calgary they
would initially just replace 'defective' cablemodems. That screwed up
some people big time because then they were refused service because the
modem serial didn't match the cable line the modem was on :(
Just my $.02,
Rudolf
David Bazell ([EMAIL PROTECTED]) wrote:
: Hi
: I have been looking at all the information on getting my cable modem
: (motorola) working with the @home network. i have a intel etherexpress
: pro/10+ (pnp enabled) card.
: I have gotten my system to recognize my card using isapnptools. Then I load
: the driver using /sbin/modprobe eepro io=0x230,irq=10
: If I then do ifconfig -a I get the eth0 interface recognized.
: I then run dhcpcd -d -h "cc1011962-a" to run in the foreground. After about
: a minute I get the message
: no DHCPOFFER
: Looks to me link I am not getting out of my computer. Any suggestions of
: what to try from here will be greatly appreciated.
: Thanks,
: Dave
--
------------------------------
From: edlee <[EMAIL PROTECTED]>
Subject: Re: Q: DNS delegation?
Date: Sat, 20 Mar 1999 22:48:55 -0800
I guess not!
Multiple DNS entries would end up with the same IP (your firewall)
but for different machines in your local net. The outside world doesn't
know about your Masq & Proxy setups.
Rudolf Potucek wrote:
> Hi!
>
> Does anyone out there know if it is possible to just setup your own
> subdomain for a legal @home address?
>
> I have a linux firewall with two ethernet cards and connected vie
> cablemodem to the real world as
>
> xxx.yyy.home.com
>
> Behind the firewall are some machines sitting on 10.0.0.x, using the
> firewall machine as a caching nameserver (bind 8.x) and (currently) a
> nameserver for a completely bogus domain (not telling outside world).
>
> Is it possible to set up the machines on the internal network as
>
> mymachines.xxx.yyy.home.com
>
> by correctly configuring the nameserver and telling the real world? Would
> I NEED to talk to the ISP?
>
> Rudolf
>
> --
------------------------------
From: Eugene Strulyov <[EMAIL PROTECTED]>
Subject: Re: Can a regular user activate and deactivate dialup connection?
Date: Sun, 21 Mar 1999 07:37:55 GMT
as far as I know only root is allowed to do that
however, there is a package called sudo which allows certain regular
users to run certain commands as root. You can use that to allow them to
connect & disconnect.
Alex Dong Li wrote:
> Dear Linux experts:
>
> Could anyone tell me if a regular user can activate/deactivate dialup
> connection? If so, could you tell me how or pointer to the solution?
>
> Thanks in advance!
>
> Alex.
------------------------------
From: Carles Arjona <[EMAIL PROTECTED]>
Subject: Re: Apache module and php question
Date: Sun, 21 Mar 1999 01:00:00 +0100
[EMAIL PROTECTED] wrote:
>
> I am using RedHat-5.2, and I installed Apache 1.3.3-1 also mod_php3-3.0.5-2
> now I don't have php.ini and I have no_idea how to call apache via php.
1- Uncomment the respective lines of /etc/httpd/conf/httpd.conf and
/etc/httpd/conf/srm.conf . You can view it by means of:
grep php3 /etc/httpd/conf/*
2- Restart apache:
/etc/rc.d/init.d/httpd restart
3- Create a test.php3 file:
echo "<? phpInfo();?>" > /home/httpd/html/test.php3
4- And look it:
lynx localhost/test.php3
Regards.
-
Carles Arjona [EMAIL PROTECTED]
-
Please, just remove the second NOSPAM for replies from newsgroups.
(Yes, NOSPAM is my real username)
[Don't send me e-mail copies of usenet postings, please]
------------------------------
From: edlee <[EMAIL PROTECTED]>
Subject: Re: blocking services on an interface
Date: Sat, 20 Mar 1999 22:38:10 -0800
The hosts.* files protect your systems from the application layer only.
The IP link layer protections (kernel firewalls) are much more secured.
This will block telnets.
ipfwadm -a -I -P tcp -S $WORLD $ANYPORT -D $LOCAL telnet
This will block pings.
ipfwadm -a -I -P icmp -S $WORLD -D $LOCAL
There are considerations for Output & Forwarding rules too.
You are not being paranoid, others are just too relaxed about it (or
asleep?).
"M. Brian Akins" wrote:
> I have a lan set up with a linux box as a "firewall" What I would like
> to be able to do is block all services on the external interface (eth1)
> or selectively do it. I have ALL: ALL in my /etc/hosts.deny and ALL:
> (internal network) in my hosts.allow and have banners set up when
> soemone tries to telnet or whatever from outside (tcp-wrappers). But
> what I would like for it to do is when someone tries to telnet in, that
> it would just die like there wasn't even a system on the other end.
>
> Alos how can I keep people from pinging me???
>
> I am extremely paranoid now after someone cracked my box and screwed it
> up, not to metion screwing with my ISP and getting me in a bad
> situation.
>
> Please e-mail me directly.
>
> Thanks.
------------------------------
** FOR YOUR REFERENCE **
The service address, to which questions about the list itself and requests
to be added to or deleted from it should be directed, is:
Internet: [EMAIL PROTECTED]
You can send mail to the entire list (and comp.os.linux.networking) via:
Internet: [EMAIL PROTECTED]
Linux may be obtained via one of these FTP sites:
ftp.funet.fi pub/Linux
tsx-11.mit.edu pub/linux
sunsite.unc.edu pub/Linux
End of Linux-Networking Digest
******************************
