Linux-Networking Digest #196, Volume #11 Tue, 18 May 99 18:13:39 EDT
Contents:
eth0: Something Wicked happened! 2008. (�R��.....)
Re: SECURITY ISSUES: Single user restriction at lilo boot: (Mike Bristow)
Need GVC driver for DP83095 (Dave Campana)
PPP connexion but no ppp0 interface ! (Lucas)
Telnet client problem in Win98 (Georg)
Wyse50 terminal ("Rick Knight")
how to log traffic on a linux router (urgrue)
Re: PPP route error ("Paul Douglas")
Need help: BOOTP + nfsroot kernel above 2.0.32 ([EMAIL PROTECTED])
Linux and LLC communications... (Andrew T LeCren)
Where find Samba 2.1 (Bruno Breyton)
Small private network woes (James R. Barnett, Jr.)
Re: How to use smbmount (Thomas Zimmerman)
Re: NetWare Support Disabled? (wouter rusman)
Why can't anyone telnet to my Linux box? (Chris Moseng)
Re: Reliable (!) nic for 2.2 kernel? (Ronald Cole)
Re: Small private network woes (Luca Filipozzi)
Re: Connecting to internet over LAN (Mark Johnson)
----------------------------------------------------------------------------
From: [EMAIL PROTECTED] (�R��.....)
Subject: eth0: Something Wicked happened! 2008.
Date: 18 May 1999 16:15:55 GMT
When I use linux,
do such that telnet or ftp ,it looks like ok
but the termial displays the message like
eth0: Something Wicked happened!2008.
After a period of time(about 20 or 30 min) ,I find that the network is down
I MUST reboot my linux
the network can be reuse again
this trouble me a long time
linux : RedHat 5.2
kernel: 2.2.9
network card:dlink 530tx(use via-rhine module)
Any one can tell me what happen or any sugession???
thanks a lot
my english is poor...
------------------------------
From: [EMAIL PROTECTED] (Mike Bristow)
Crossposted-To: comp.os.linux.security,comp.os.linux.setup,comp.os.linux.misc
Subject: Re: SECURITY ISSUES: Single user restriction at lilo boot:
Date: Mon, 17 May 1999 22:03:21 GMT
[ note: quoting rearranged to be the right way up]
On Mon, 17 May 1999 17:40:10 -0400,
Charles Sullivan <[EMAIL PROTECTED]> wrote:
>Murni & Hamid wrote in message
><[EMAIL PROTECTED]>...
>>Stephan M. Ott // OKDesign oHG <[EMAIL PROTECTED]> wrote:
>>
>>> A better way would be disable the floppy in the bios, then
>>> password-protect the bios.
>>
>> A much better way is to change your bootup sequence rather
>> than disabling the floppy. Instead of reading A: and then C:,
>> do it the reverse, C: and then A:. Modern BIOS should have
>> this feature. And surely password protect the BIOS setup. The
>> ultimate way is to install a diskless X server and let your
>> Linux machine locked inside a secured room.
It's likely that this can be got round also, by (for example)
gaining knowledge of the MAC address used (using a network
sniffer) , then unplugging the controller and issuing
RARP/BOOTP/DHCP requests (which? Hey! You've just plugged a
sniffer into the network!) to convice the server that the box has
just booted and should be allowed to NFS/whatever mount the
remote filesystems.
I could be wrong, however, but I'd need some convincing.
> If booting first from C:, then A:, what would happen if the
> "hacker" disconnected the power plug from the hard drive,
> booted from floppy, then replaced the plug on the hard drive.
If the hacker can do this, you've lost, as they could remove the
harddrive and mount on their laptop, edit /etc/passwd & friends,
replace the drive and go on their merry way.
Actually, you could boot using initrd or similar, and when you
mount / require the passphrase for the encrypted filesystem.
But this destroys the possibility of unattended reboots, and
people may well be able to obtain the passphrase by compromising
the keyboard controller or cable.
If people have access to the hardware you must assume that they
have root/adminstrator/whatever on that machine, and gaining such
privilages on a local machine should not be able to compromise
the rest of the network.
--
"How should I know if it works? That's what beta testers are for. I
only coded it."
-- Attributed to Linus Torvalds
------------------------------
From: [EMAIL PROTECTED] (Dave Campana)
Subject: Need GVC driver for DP83095
Reply-To: [EMAIL PROTECTED]
Date: Tue, 18 May 1999 00:22:36 GMT
Hello,
I am trying to use a couple of mongrel 10 meg ethernet cards. The Mac
address starts with 00:c0:a8:34. This points to a GVC corporation. Checking
their web page shows only a realtek 8029 type card. I need to use 2 cards in a
new PC so I need to turn off PnP and set the card manually for irq and
interupt.....
Any Ideas or help ?
Thanks in advance
Dave
ImJustDave@_remove_this_mindspring_dot_com
------------------------------
From: Lucas <[EMAIL PROTECTED]>
Subject: PPP connexion but no ppp0 interface !
Date: Tue, 18 May 1999 17:56:02 +0200
Hi,
I want to create a PPP connection ... I've tried with minicom and
ppp-on/ppp-on-dialer scripts. No problem with the modem, I can dial the
Box with which I want to establich my PPP connexion, but if I type the
command "ifconfig", there is no ppp0 anymore !
I've read HOW-TO's and FAQ, and it seems to be obvious to have this
interface after PPP connexion ....
I don't know what I have forgotten ....
Thanks ...
------------------------------
From: [EMAIL PROTECTED] (Georg)
Subject: Telnet client problem in Win98
Date: Mon, 17 May 1999 22:19:57 GMT
Reply-To: [EMAIL PROTECTED]
I am using Telnet to link to a RH5.2 server. The PgDn and PgUp keys
don't seem to work properly, especially when used with more, less or
man pages. Is the fault of the Win98 client, or can the server be
configured some more?
------------------------------
From: "Rick Knight" <[EMAIL PROTECTED]>
Subject: Wyse50 terminal
Date: Tue, 18 May 1999 13:20:59 -0700
I need to remotely connect to the admin console of my company voice-mail
system. In Windows, I can use Procomm Plus but the comm apps I have for
Linux don't work well. The problem is, I need to have Wyse50 terminal
emulation and the Linux apps I've found so far don't have it. Is ther a comm
or term app that has Wyse50 support?
Thanks,
Rick Knight
([EMAIL PROTECTED])
------------------------------
From: [EMAIL PROTECTED] (urgrue)
Subject: how to log traffic on a linux router
Date: 18 May 1999 20:36:35 GMT
Reply-To: [EMAIL PROTECTED]
i need to figure out a way to have my linux router keep track of bytes
sent/received to three separate networks (all connected to the internet via the
router). currently i've got ipfwadm doing it, but unfortunately it doesnt quite
offer the versatility i need.
basically i need something that can monitor how much traffic goes in and out of
each separate network. it would also be highly preferable if we could keep
track of what addresses on the internet they are accessing.
thanks
[EMAIL PROTECTED]
------------------------------
From: "Paul Douglas" <[EMAIL PROTECTED]>
Subject: Re: PPP route error
Date: Tue, 18 May 1999 21:03:19 +0100
Thanks for continuing help - very much appreciated.
Details as follows:
Kernel = 2.2.5
pppd = 2.3.3
route -n output :-
Kernel IP routing table
Destination Gateway Genmask Flags Metric Ref Use
Iface
194.131.240.7 0.0.0.0 255.255.255.255 UH 0 0 0 ppp0
127.0.0.0 0.0.0.0 255.0.0.0 U 0 0 0 lo
0.0.0.0 194.131.240.7 0.0.0.0 UG 0 0 0 ppp0
ifconfig output :-
ppp0 Link encap:Point-to-Point Protocol
inet addr:194.131.243.54 P-t-P:194.131.240.7 Mask:255.255.255.255
UP POINTOPOINT RUNNING NOARP MULTICAST MTU:552 Metric:1
RX packets:14 errors:0 dropped:0 overruns:0 frame:0
TX packets:16 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:10
I was getting this message a couple of days ago, though it now seems
to have disappeared (unless I've inadvertantly sent it somewhere else)
May 16 20:43:14 sandlestoke pppd[229]: not replacing existing default route
to
ppp0 [194.131.240.7]
This is a selection of messages from logs. Having set debug level to
7 they're pretty copious, of course, so I've just selected a few bits.
: Connect: ppp0 <--> /dev/modem
May 18 21:22:54 sandlestoke pppd[187]: sent [LCP ConfReq id=0x1 <mru 552>
<asyncmap 0x0> <magic 0x43beca07> <pcomp> <accomp>]
May 18 21:22:54 sandlestoke kernel: ppp: write frame, count = 28
May 18 21:33:06 sandlestoke kernel: ppp_ioctl: set dbg flags to 70000
May 18 21:33:06 sandlestoke kernel: ppp_ioctl: set flags to 70000
May 18 21:33:06 sandlestoke kernel: ppp_tty_ioctl: set xasyncmap
May 18 21:33:06 sandlestoke kernel: ppp_tty_ioctl: set xmit asyncmap
ffffffff
May 18 21:33:06 sandlestoke kernel: ppp_ioctl: set flags to 70000
May 18 21:33:06 sandlestoke kernel: ppp_ioctl: set mru to 5dc
May 18 21:33:06 sandlestoke kernel: ppp_tty_ioctl: set rcv asyncmap ffffffff
May 18 21:33:06 sandlestoke kernel: ppp_ioctl: set flags to 70000
May 18 21:33:06 sandlestoke kernel: ppp: write frame, count = 28
M
May 18 21:33:08 sandlestoke pppd[230]: rcvd [LCP ConfReq id=0x3 <mru 1500>
<asyncmap 0x0> <magic 0xf3f611a8> <pcomp> <accomp>]
May 18 21:33:08 sandlestoke pppd[230]: sent [LCP ConfAck id=0x3 <mru 1500>
<asyncmap 0x0> <magic 0xf3f611a8> <pcomp> <accomp>]
May 18 21:33:08 sandlestoke pppd[230]: sent [IPCP ConfReq id=0x1 <addr
0.0.0.0> <compress VJ 0f 01>]
May 18 21:33:08 sandlestoke pppd[230]: sent [CCP ConfReq id=0x1 <deflate 15>
<deflate(old#) 15> <bsd v1 15>]
May 18 21:33:08 sandlestoke pppd[230]: rcvd [IPCP ConfReq id=0x4 <addr
194.131.240.7>]
May 18 21:33:08 sandlestoke pppd[230]: sent [IPCP ConfAck id=0x4 <addr
194.131.240.7>]
May 18 21:33:11 sandlestoke pppd[230]: sent [CCP ConfReq id=0x1 <deflate 15>
<deflate(old#) 15> <bsd v1 15>]
May 18 21:33:11 sandlestoke pppd[230]: sent [IPCP ConfReq id=0x1 <addr
0.0.0.0> <compress VJ 0f 01>]
.
.
May 18 21:33:11 sandlestoke pppd[230]: rcvd [LCP ProtRej id=0x5 80 fd 01 01
00 0f 1a 04 78 00 18 04 78 00 15 03 2f]
May 18 21:33:11 sandlestoke pppd[230]: rcvd [IPCP ConfNak id=0x1 <addr
194.131.243.63> <compress VJ 0f 00>]
May 18 21:33:11 sandlestoke pppd[230]: sent [IPCP ConfReq id=0x2 <addr
194.131.243.63> <compress VJ 0f 00>]
May 18 21:33:11 sandlestoke pppd[230]: rcvd [IPCP ConfReq id=0x6 <addr
194.131.240.7>]
May 18 21:33:11 sandlestoke pppd[230]: sent [IPCP ConfAck id=0x6 <addr
194.131.240.7>]
May 18 21:33:11 sandlestoke pppd[230]: rcvd [IPCP ConfAck id=0x2 <addr
194.131.243.63> <compress VJ 0f 00>]
May 18 21:33:11 sandlestoke pppd[230]: local IP address 194.131.243.63
May 18 21:33:11 sandlestoke pppd[230]: remote IP address 194.131.240.7
pppd[187]: local IP address 194.131.243.52
pppd[187]: remote IP address 194.131.240.7
Sorry if this is far too much - I wasn't really sure what you'd be looking
for.
Thansk once again in anticipation!
Paul Douglas ([EMAIL PROTECTED])
T
------------------------------
From: [EMAIL PROTECTED]
Crossposted-To: comp.os.linux.development.system
Subject: Need help: BOOTP + nfsroot kernel above 2.0.32
Date: Tue, 18 May 1999 22:37:28 +0200
Hi all,
i ad set up a diskles X-erminal th SuSE5.1 which had kernel 2.0.32 and
work fine. Now I want to upgrade to SuSE6.1 both the server and the
client. All runs fine so far except the client doesn't boot. The reason
is that the BOIOTP request doesn't reach the dhcpd of the server. I can
see in /var/log/messages the DHCP-request of the bootprom, and the
tftp-requests of the used bootstrapper up to the point where the kernel
vmlinuz is delivered. I can see the delivered kernel boot up to the
BOOTP-request which isn't seen in /var/log/messages and times out.
I tried kernel 2.0.36 and kernel 2.2.5 with same result. The old 2.0.32
works fine.
Is this a bug in the new kernel versions or what could be the reason ?
Thanks for your help.
Thomas
(Please send your answers to this news group instead of my email.)
------------------------------
From: Andrew T LeCren <[EMAIL PROTECTED]>
Subject: Linux and LLC communications...
Date: Tue, 18 May 1999 15:27:58 -0500
Hello-
I am currently trying to implement a program which requires LLC-layer
communications
with an external device. Specifically, I need to be able to communicate using SAP 4
protocol
over a token ring network. The program is written in C on a Redhat 5.2 machine running
kernel 2.0.36.
What I need to know is if there is a way to do LLC-layer, SAP4 level communications
under
linux? If so, is this acheivable via tcp/ip sockets, or is there another C
api/library functions that can be utilized?
If any of you know, or can point me to resources that will allow me to find out, I
would greatly appreciate it.
Thanks.
--
Andrew LeCren | "You may be right, it's all just a waste of time.
XC Development | I guess that's just a chance I'm prepared to take
Motorola - Ft. Worth | A danger I'm prepared to face. Cut to the Chase.
[EMAIL PROTECTED] | - "Cut to the Chase"
------------------------------
From: Bruno Breyton <[EMAIL PROTECTED]>
Subject: Where find Samba 2.1
Date: Tue, 18 May 1999 23:13:38 +0200
Please, I need to download Samba 2.1. Where I could get it?
: ) merci Ciao kaya
------------------------------
From: James R. Barnett, Jr. <[EMAIL PROTECTED]>
Subject: Small private network woes
Date: Tue, 18 May 1999 15:55:38 -0500
Hi,
I am trying to setup a network in my home consisting of two linux
boxes and a hub. So far it looks something like this:
192.168.1.1 arson.toughguys.org arson
192.168.1.2 tireiron.toughguys.org tireiron
Both machines can ping each themselves but not each other (I have tried with
names and IPs). When I run ifconfig, it lists the Bcast: 192.168.1.255. There
is no machine at this IP address. What should the Bcast be in my situation and
how is it changed? Do I need to add any gateways using the route command? Any
and all help is appreciated.
James
------------------------------
From: Thomas Zimmerman <[EMAIL PROTECTED]>
Subject: Re: How to use smbmount
Date: Tue, 18 May 1999 14:48:10 -0700
Reply-To: [EMAIL PROTECTED]
Takashi Masuda wrote:
>
> I want to mount a Windows shared folder to a Linux mount point.
> I have setup smb.conf. Linux directries can be accessed from Windows boxes.
> I tried following commands.
> smbmount \\\\(NetBIOS Name)\\(Shared Folder) (Linux mount-point)
> smbmount \\(NetBIOS Name)\(Shared Folder) (Linux mount-point)
> smbmount //(NetBIOS Name)/(Shared Folder) (Linux mount-point)
> smbmount /(NetBIOS Name)/(Shared Folder) (Linux mount-point)
> But those were all failed. What should I do?
> Thanks in advance.
I use smbmount //(NetBIOS Name)/(Shared Folder) -c 'mount (local mount
point)'
I have not found a way to get this to work as a user, only as root. I
think that it is a permissions thing that I have not had the time to
understand/fix.
------------------------------
From: wouter rusman <[EMAIL PROTECTED]>
Crossposted-To: linux.redhat.misc,linux.redhat.install
Subject: Re: NetWare Support Disabled?
Date: Tue, 18 May 1999 23:46:33 +0200
Erik Jensen wrote:
> Does the 2.2.5 kernel support NetWare connections right out of the box?
> Or is it necessary to re-compile the kernel?
>
> I have not been able to connect to my Netware server since installing
> Redhat 6.0. I WAS able to connect with Redhat 5.2.
this error does not occur at my place
i have a mounted NW 411 server mounted with "ncpmount"
------------------------------
From: Chris Moseng <[EMAIL PROTECTED]>
Subject: Why can't anyone telnet to my Linux box?
Date: Tue, 18 May 1999 13:19:57 -0500
I had this problem myself, and it turns out that my ISP was blocking
connections to port 23 on its firewall (and told me that it would only
allow connections on a case-by-case basis!)
rlogin works fine for me, though. Otherwise you could try changing the
port telnet listens to on your box and see if that gets results.
------------------------------
From: Ronald Cole <[EMAIL PROTECTED]>
Crossposted-To: comp.os.linux.development.system
Subject: Re: Reliable (!) nic for 2.2 kernel?
Date: 18 May 1999 14:51:22 -0700
phil <[EMAIL PROTECTED]> writes:
> I have a Etherpower 10 PCI card that has worked fine under Linux
> 2.0.36 for many months. As soon as I tried to use it with Linux
> 2.2.5 (Redhat 6.0) I had problems with the board.
Odd, because the tulip.c file in both these kernels sport "v0.89H".
You don't think the kernel developers would hack the driver and not
change the version number, do you? That would just add insult to
injury. :P
--
Forte International, P.O. Box 1412, Ridgecrest, CA 93556-1412
Ronald Cole <[EMAIL PROTECTED]> Phone: (760) 499-9142
President, CEO Fax: (760) 499-9152
My PGP fingerprint: 15 6E C7 91 5F AF 17 C4 24 93 CB 6B EB 38 B5 E5
------------------------------
From: [EMAIL PROTECTED] (Luca Filipozzi)
Subject: Re: Small private network woes
Date: Tue, 18 May 1999 14:52:47 -0700
In article <[EMAIL PROTECTED]>, James R. Barnett, Jr.
<[EMAIL PROTECTED]> says...
> Hi,
> I am trying to setup a network in my home consisting of two linux
> boxes and a hub. So far it looks something like this:
>
> 192.168.1.1 arson.toughguys.org arson
> 192.168.1.2 tireiron.toughguys.org tireiron
>
> Both machines can ping each themselves but not each other (I have tried with
> names and IPs). When I run ifconfig, it lists the Bcast: 192.168.1.255. There
> is no machine at this IP address. What should the Bcast be in my situation and
> how is it changed? Do I need to add any gateways using the route command? Any
> and all help is appreciated.
>
> James
>
#arson:
#ipaddr 192.168.1.1
#netmsk 255.255.255.0
#netwrk 192.168.1.0
#brdcst 192.168.1.255
#gatewy nil
ifconfig eth0 192.168.1.1 netmask 255.255.255.0 up
route add -net 192.168.1.0 netmask 255.255.255.0
#tireiron:
#ipaddr 192.168.1.2
#netmsk 255.255.255.0
#netwrk 192.168.1.0
#brdcst 192.168.1.255
#gatewy nil
ifconfig eth0 192.168.1.2 netmask 255.255.255.0 up
route add -net 192.168.1.0 netmask 255.255.255.0
Ensure that the kernel likes your ethernet card: use "dmesg" after
startup.
Ensure that your "ifconfig" command is doing the right thing.
Ensure that your routing table is correct.
If you don't know what you're looking for, post the results of these
commands run on both machines to this newsgroup.
ifconfig
route -n
Hope this helps,
Luca
--
Luca Filipozzi <[EMAIL PROTECTED]>
------------------------------
From: Mark Johnson <markj*no*spam*@gilanet.com>
Subject: Re: Connecting to internet over LAN
Date: Mon, 17 May 1999 19:29:11 -0600
At the linux box try:
route add -net default gw 192.168.10.1
Kevin Fife wrote:
> I have installed Mandrake 5.3 on a 233 mhz computer and I would like to
> connect to the internet over a corporate LAN.
>
> I have TCP/IP installed and working properly. I am able to bring up HTML
> pages on the local network using the IP address of the computer that is
> running a web server. However, I cannot get out to the internet.
>
> Our lan setup:
> 192.168.10.1 Gateway and DNS server
> 192.168.10.29 Address of Linux box
>
> What do I need to do to get access to the internet.
>
> kevin
------------------------------
** FOR YOUR REFERENCE **
The service address, to which questions about the list itself and requests
to be added to or deleted from it should be directed, is:
Internet: [EMAIL PROTECTED]
You can send mail to the entire list (and comp.os.linux.networking) via:
Internet: [EMAIL PROTECTED]
Linux may be obtained via one of these FTP sites:
ftp.funet.fi pub/Linux
tsx-11.mit.edu pub/linux
sunsite.unc.edu pub/Linux
End of Linux-Networking Digest
******************************
