Linux-Networking Digest #802, Volume #11 Tue, 6 Jul 99 18:13:52 EDT
Contents:
Re: how to get local IP address (Lew Pitcher)
Re: C++ templates: More than Turing Complete? (Davin McCall)
Re: @Home with static ip (Rudolf Potucek)
Re: Linux Redhat 6.0 Routing ("David Means")
Re: UTP vs coax ("David Means")
Re: Cross-over cable between NT and Linux ("David Means")
Re: linux as router to self - colo setup (Rich Roth)
Re: NFS Client Configuration ("dom")
Re: OK - I GIVE UP! - can't give users ftp access!!!!???? ("Ken")
Incoming IP limiter script on daily basis: @ 300MB RX traffic, ifconfig eth1 down
(PLEASE HELP) ("Terrence Vergauwen")
Re: triggering pppd through external phone call ("Damian Wright")
Re: Newbie Apache Question ("Nenad Taskovic")
thin client setup with NFS and NIS ("dom")
Re: IPChains Problem (Phil DeBecker)
----------------------------------------------------------------------------
From: [EMAIL PROTECTED] (Lew Pitcher)
Subject: Re: how to get local IP address
Reply-To: [EMAIL PROTECTED]
Date: Tue, 06 Jul 1999 19:54:40 GMT
root wrote in message <[EMAIL PROTECTED]>...
>>I wote a GUI based FTP client application in Java1.2. Works fine in
>>Windows 95/98 but has problems when it runs on Unix/Linux. Java has a
>>built method to return the IP address of the local host. In Win 95/98
No, Java has a method to return the IP address of "localhost", which
on most Unix systems (including Linux) is IP address 127.0.0.1
You are going to have to determine the actual host name, then retrieve
the IP address associated to *that* name.
>>this works fine but in Linux (not networked -- using a PPP connection
>>with a dynamically assigned IP address) or on my school Unix acount
>>this method returns 127.0.0.1 . In order to retreive files from a FTP
>>server I have send a PORT command that includes the IP address to get to
>>my machine from the outside world. I can get this on Linux (logged in
>>as root) by running ifconfig ppp0 and doing the appropriate string
>>parsing. I know there must be some better way i.e more general to get
>>the local IPAddress. I can't find any way to do this on my Unix account
>>because I don't have root privledges. Netscape and other programs seem
>>to be to able to do this. Any help would be greatly appreciated.
>>
>
>
>
Lew Pitcher
System Consultant, Integration Solutions Architecture
Toronto Dominion Bank
([EMAIL PROTECTED])
(Opinions expressed are my own, not my employer's.)
------------------------------
From: [EMAIL PROTECTED] (Davin McCall)
Crossposted-To: comp.os.linux.development.apps,comp.os.linux.development.system
Subject: Re: C++ templates: More than Turing Complete?
Date: Tue, 06 Jul 1999 16:53:45 GMT
On 5 Jul 1999 22:27:09 -0700, [EMAIL PROTECTED] (Nathan Myers)
wrote:
[***]
>>But why would I want to know why C++ is so popular/good? The issue
>>that you brought up was that it wasn't possible to understand the
>>principles of C++ without studying C++.
>
>No, that wasn't the issue I brought up.
Well, that issue came up somehow. You were the one who made statements
to the effect that it wasn't possible [to understand the principles...
etc].
[from Mr Myers]
>>>Of course some other languages will achieve parity, someday, but
>>>only those designed by people who fully understand the strengths of
>>>standard C++. Maybe such a language will even succeed in avoiding
>>>its weaknesses.
>>
[from myself]
>>I take it that you mean they must understand the principles, although
>>not necessarily how they are applied in C++.
[from Mr Myers]
>No, absolutely the opposite! Real, useful programs are written
>using real language features. To understand principles you must
>first understand the specific application. All valid principles
>are derived from experience, however they may be dressed up after
>the fact.
[also from Mr Myers]
>Principles, divorced from experience, rot. If you want to understand
>good principles, the only trustworthy source is good code. If you
>want to understand the principles behind the success of C++, you must
>study good, real C++ programs and libraries. There are no shortcuts.
[also from Mr Myers, an analogy where car {X} is C++ and {Y} and {Z}
are other languages. It had not been previously stated that {Y} and
{Z} were in any way inferior to {X}]
>>If you want to know why car {X} wins races, studying {Y} and {Z}
>>(which don't) is no substitute for a very careful study of {X}.
This last is the one that prompted me to write the question marked
with the *** near the top of this post (it is this which I quoted
directly before writing that question). And yet you claim this wasn't
the issue you brought up. In the context of my response, I rather
think it *was*.
Davin.
__________________________________________________________
*** davmac - sharkin'!! [EMAIL PROTECTED] ***
my programming page: http://yoyo.cc.monash.edu.au/~davmac/
------------------------------
From: [EMAIL PROTECTED] (Rudolf Potucek)
Subject: Re: @Home with static ip
Date: 6 Jul 1999 16:54:10 GMT
depending on what flavor of linux you use, you can create a file in
/etc/sysconfig/network-scripts
called
ifcfg-{device}
e.g.
ifcfg-eth0
This file should contain:
IPADDR=
NETWORK=
NETMASK=
etc. and should make the network code come up automagically.
[EMAIL PROTECTED] wrote:
: I just got a cable modem from @Home in San Leandro CA. To my surprise,
: they actually gave me a choice between DHCP and a static IP. I chose
: the static IP.
: I got Windows working with this cable modem. Now I need to move it to
: my Linux box. I can't seem to get it working though. I configured
: the ethernet card with
: % ifconfig eth0 my.new.ip.addr netmask 255.255.255.0 up
: % route add -host my.gateway.ip.addr eth0
: % route add default gw my.gateway.ip.addr metric 1
: I also changed the hostname to the computer name that @Home assigned
: me. Apparently that's how they authenticate the connection. :P
: It doesn't work though. If I try to ping the gateway:
: % ping my.gateway.ip.addr
: ...no packets come back. What should I check to make sure that this is
: set up correctly?
: --Wart
: Sent via Deja.com http://www.deja.com/
: Share what you know. Learn what you don't.
--
------------------------------
From: "David Means" <[EMAIL PROTECTED]>
Subject: Re: Linux Redhat 6.0 Routing
Date: 6 Jul 1999 17:13:23 GMT
It looks to me like you have quite a few extra lines in the routing table;
maybe
removing some of the `extra' default gateway lines would clear this up.
I believe that you do not need any of the lines with flags UH or UG except
the one at the bottom of each routing table. But you *do* need a line in
pather's table saying what the connected network is. I think the pruned
tables
should look like this:
lynx:
Kernel IP routing table
Destination Gateway Genmask Flags Metric Ref Use
Iface
192.168.1.0 * 255.255.255.0 U 0 0 0
eth1
192.168.32.0 * 255.255.255.0 U 0 0 0
eth0
127.0.0.0 * 255.0.0.0 U 0 0
0 lo
default 192.168.1.1 0.0.0.0 UG 0 0 0
eth1
panther:
Kernel IP routing table
Destination Gateway Genmask Flags Metric Ref Use
Iface
192.168.32.0 * 255.255.255.0 U 1 0 0
eth0
127.0.0.0 * 255.0.0.0 U 0 0
0 lo
default 192.168.32.3 0.0.0.0 UG 0 0 0
eth0
How to achieve this? Carefully read through the network initialization
scripts
(probably in /etc/rc.d/init.d/) to see where each of these other entries is
coming
from, and comment the sucker out. Once you have everything working right,
go back and remove the commented lines completely.
Peter Farago <[EMAIL PROTECTED]> wrote in message
news:7lo2df$lk3$[EMAIL PROTECTED]...
> I have a two LANs: A=192.168.1.0/24 and B=192.168.32.0/24. Linux host
> "lynx" has two ethernet cards. eth1 is 192.168.1.5 and eth0 is at
> 192.168.32.3. There are several other hosts on the A and one other on
B.One
> of the "hosts" on A is a 3com LAN modem at 192.168.1.1 another is a WninNT
> box at 192.168.1.2. The other host on B "panther" is also running Redhat
> 6.0. Panther's ethernet card is eth0 at 192.168.32.5
>
> Routing is enabled on lynx (at least it claims to be when I boot). I have
> done an echo 1 > /proc/sys/net/ipv4/ip_forward.
>
> Here is lynx's route table:
>
> Kernel IP routing table
> Destination Gateway Genmask Flags Metric Ref Use
> Iface
> 192.168.32.3 * 255.255.255.255 UH 0 0 0
eth0
> 192.168.1.5 * 255.255.255.255 UH 0 0 0
> eth1
> 192.168.1.0 * 255.255.255.0 U 0 0 0
> eth1
> 192.168.32.0 192.168.32.3 255.255.255.0 UG 0
> 0 0 eth0
> 192.168.32.0 * 255.255.255.0 U 0 0 0
eth0
> 127.0.0.0 * 255.0.0.0 U 0 0 0
> lo
> default 192.168.1.1 0.0.0.0 UG 0 0 0 eth1
>
> Here is panther's route table:
>
> Kernel IP routing table
> Destination Gateway Genmask Flags Metric Ref Use
> Iface
> 192.168.1.0 lynx 255.255.255.0 UG 1 0 0
eth0
> 192.168.32.0 panther 255.255.255.0 UG 0 0 0
eth0
> 127.0.0.0 * 255.0.0.0 U 0 0 0 lo
> default 192.168.32.3 0.0.0.0 UG 0 0 0 eth0
>
>
> Here's what works on lynx:
>
> ping 192.168.32.5
> telnet 192.168.32.5
> ping 192.168.1.2
> internet access vi 192.168.1.1
>
>
> Here is what works on panther:
>
> ping 192.168.32.3
> telnet 192.168.32.3
> ping 192.168.1.5
> telnet 192.168.1.5
>
> Here is the problesm:
>
> A tracreroute from panther to 192.168.1.2 shows it trying to get through
> lynx but gets stuck with * * *
> ping 192.168.1.2 also fails
>
> I have done a ipchains -F and the default policy is ACCEPT on input,
> forward, and output. My eventual goal is to configure lynx for firewall
and
> masqarade but right now I am just trying to have it work as a router from
> network B to network A.
>
> I am sure I must be missing something very obvious. Help!
>
>
>
>
>
>
------------------------------
From: "David Means" <[EMAIL PROTECTED]>
Crossposted-To:
alt.irc.networks,alt.os.linux,cmh.network,comp.sys.ibm.pc.hardware.networking,cruzio.network,de.comp.os.unix.networking,fj.os.linux.networking,han.comp.os.linux.networking,nl.comp.os.linux.discussie
Subject: Re: UTP vs coax
Date: 6 Jul 1999 17:17:13 GMT
UTP has advantages and disadvantages. It is easier to work with, and the
cable is cheaper than coax. But you need a hub to connect the machines
all together. If you are on a strict budget and don't mind having coax
strung around the place, by all means go for it. But if you are putting in
a (semi)permanent installation in an office or house, pulling UTP through
the walls like telephone wire is quite easy and makes a tidy installation.
Properly handled, the two systems should give equivalent performance.
Verheijen <[EMAIL PROTECTED]> wrote in message
news:7lnsvl$e0t$[EMAIL PROTECTED]...
>
> Why would I take UTP instead of coax?
> It's about 10Mb; maximum number of computers: 8.
> Running Linux and Windows95
>
> Thanks in advance.
>
> Wouter Verheijen
> [EMAIL PROTECTED]
>
>
>
>
>
------------------------------
From: "David Means" <[EMAIL PROTECTED]>
Crossposted-To: comp.os.ms-windows.nt.admin.networking
Subject: Re: Cross-over cable between NT and Linux
Date: 6 Jul 1999 17:23:54 GMT
>From your partial report, you may well have a clobbered cable. The
Linux box reports 0 packets received, even though it (successfully)
transmitted 31. You should look at the equivalent statistics on the NT
box (sorry, I know *nothing* about NT commands), and see if the
packets are getting received at the NT box, and whether it thinks that it
has
successfully transmitted replies. This will tell you which half of your
cable
path is busted.
Peter Seibel <[EMAIL PROTECTED]> wrote in message
news:[EMAIL PROTECTED]...
>
> I hope this is a reasonable cross-post since I'm trying to connect a
> Linux box to an NT box. This problem may well be due to some
> deficiency in my general networking knowledge rather than my knowledge
> of either OS. But maybe someone here can point me in the right
> direction.
>
> I'm trying to connect a Linux box to my NT notebook via a cross-wired
> (cross-over, cross-patch, whatever you call it) ethernet
> cable. (I.e. I have no hub.) As far as I can tell I have the ethernet
> interfaces up on both boxes (ifconfig shows the right things and route
> shows me what look like reasonable routes. I think.)
>
> From the Linux box:
>
> eth0 Link encap:Ethernet HWaddr 00:10:4B:30:51:37
> inet addr:192.168.1.2 Bcast:192.168.1.255 Mask:255.255.255.0
> UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
> RX packets:0 errors:0 dropped:0 overruns:0 frame:0
> TX packets:31 errors:0 dropped:0 overruns:0 carrier:31
> collisions:0
> Interrupt:9 Base address:0x6500
>
>
> Kernel IP routing table
> Destination Gateway Genmask Flags Metric Ref Use
Iface
> 205.134.242.3 0.0.0.0 255.255.255.255 UH 0 0 0
ppp0
> 192.168.1.0 0.0.0.0 255.255.255.0 U 0 0 2
eth0
> 127.0.0.0 0.0.0.0 255.0.0.0 U 0 0 16 lo
> 0.0.0.0 205.134.242.3 0.0.0.0 UG 0 0 31
ppp0
>
> On the NT box route print gives me (among others):
>
> Network Destination Netmask Gateway Interface Metric
> ....
> 192.168.1.0 255.255.255.0 192.168.1.1 192.168.1.1 1
> ....
>
> At any rate, can anyone give me any hints how to diagnose what's
> actually going on? (One fear I have is that my cross-patch cable is
> dorked up. I know I made it right because I've used it before but that
> was a long time ago and it's conceivable that it's busted now. Is
> there any easy way to check that?)
>
> Apologies if this is not a very interesting question. Pointers to docs
> are certainly welcome; I'll gladly RTFM if I can know what the right
> FM is.
>
> -Peter
>
> --
> Peter Seibel Perl/Java/English Hacker [EMAIL PROTECTED]
>
> There's no good culture without a dash of bad taste; a monopoly of
> good taste suggests restraint -- you're not pushing the envelope.
>
> -- Jean-Louis Gassee
------------------------------
From: Rich Roth <[EMAIL PROTECTED]>
Subject: Re: linux as router to self - colo setup
Date: Tue, 06 Jul 1999 16:12:38 -0400
Rich Roth wrote:
> AFAIK, eth0:1 is the problem, it is:
> eth0:1 Link encap:Ethernet HWaddr 00:A0:CC:26:34:F6
> inet addr:212.175.123.97 Bcast:212.175.123.127 Mask:255.255.255.224
> UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
> Interrupt:10 Base address:0xd000
>
> That is for 212.157.103.96/27 - seems right but I'm not great with netmasks and
> Bcast addresses.
Sorry, that should be:
212.175.123.97/27
--
Rich Roth On-the-Net
[EMAIL PROTECTED] http://www.east.on-the-net.com
~~~ Add Instant Depth to your Website from www.i-depth.com ~~~
~~~ Adding depths to Web presences and Internet providers ~~~~~
------------------------------
From: "dom" <[EMAIL PROTECTED]>
Subject: Re: NFS Client Configuration
Date: Tue, 6 Jul 1999 18:25:54 +0100
Roy,
create an nfs mount on the server to check out that you can really
mount it.
I'd recommend to use linuxconf or webmin (at www.webmin.com)
to create the mounts.
On the server and the client check out that you have portmap, autofs, nfs
and nfsfs all started.
Specify the IP address instead of the fully qualified host name.
Obviously you must have nfs compiled (selected by default) in the kernel on
client.
Dom
Roy Murphy wrote in message ...
>I have a new, Red Hat 6 installation and I'm tring to NFS mount a fs
>from another server. I think I have the server set up correctly and
>my problems seem to be confined to the client.
>
>Problem 1: mount -t nfs fails with a mount: fs type nfs not supported
>by kernel error. SHouldn't kerneld or whatever replaces it in the 2.2
>kernel series just load /lib/modules/2.2.5/fs/nfs.o?
>
>Problem 2: modprobe nfs fails with the error "conf:2: missing module
>argement" (Presumably fixing this will fix Prob 1.) I can't find any
>documentation in the kernel source (or the NFS HOWTO, which seems to
>only know about 2.0 kernels) for module options to nfs.o.
>
>Any suggestions are appreciated.
>
>--
>Roy Murphy \ CSpice -- A mailing list for Clergy Spouses
>[EMAIL PROTECTED] \ http://www.panix.com/~murphy/CSpice.html
------------------------------
From: "Ken" <[EMAIL PROTECTED]>
Crossposted-To: linux.redhat.install,comp.os.linux.setup,alt.os.linux.mandrake
Subject: Re: OK - I GIVE UP! - can't give users ftp access!!!!????
Date: Tue, 6 Jul 1999 13:30:27 -0400
I had the same problem. My "work-around" was to get rid of beroftpd and
install wu-ftpd. Both of these are on the Mandrake cdrom.
Bob <[EMAIL PROTECTED]> wrote in message
news:[EMAIL PROTECTED]...
> thought I had this nailed when I finally got anon access...
>
> but guess not - running mandrake 6 (rh6) beroftpd;
>
> my ftp user's home is /home/ftp and is 0777;
>
> my ftphosts has "allow 192.168.1.*"
> my ftpusers has root, and various admin logins; BUT NO
> users (that are supposed to use ftp)
> I have an ftpgroups which has a test entry, and have not touched.
>
> I have checked & re-checked ftpaccess, and can find NO security
> entries for this file.
>
> in fact, found NO man pages for /etc/ftp*.
> (except for ftpaccess - which as I said doesn't seem to address
> security)
>
> SO - anon can login, no problem.
>
> real users get bad passwd.
>
> is there an ftppasswd file or something that i'm missing?
>
> how exactly DOES ftp authenticate users?
> does it use passwd?
>
> my passwd file doesn't even have des encrypted passwords -
> just "x"'s....
>
> where ARE the passwords really stored??!!!
>
> ok - enuf rambling - any help?
>
> tia - Bob
> ________________________________________________
> Definition of Windows 95:
>
> A 32 bit upgrade to 16 bit extensions for an 8 bit operating system
> designed to run on a 4 bit processor by a 2 bit company that
> doesn't like 1 bit of competition.
>
------------------------------
From: "Terrence Vergauwen" <[EMAIL PROTECTED]>
Crossposted-To: comp.os.linux.misc,comp.os.linux.questions
Subject: Incoming IP limiter script on daily basis: @ 300MB RX traffic, ifconfig eth1
down (PLEASE HELP)
Date: Tue, 6 Jul 1999 07:55:45 +0200
Hi,
I run a linux (RH5.2) IP-Masq router at home, with a cable modem connected
to it.
My ISP allows a maximum of 300MB download a day. I already got several
warning messages telling me that they are going to end my contract if i
continue to overpass this amount, but this is reached quickly without even
having an idea...)
I've tried using packet sniffer's etc, but it's to much hassle.
Is there a way of having the router send a warning message (issue command
that sends winpopup messages) at 250MB of RX traffic, and shutdown an eth
interface automatically when it has reached 300MB of RX traffic ???
I am sure that this is possible with some sort of script ran in
cron.minuteley that checks the incomming traffic reached, and takes actions
using commands when at 250 or 300MB. (ifconfig shows only packets, not bytes
?????)
+ I am not good at writing complex shell scripts like this.
Can anyone advise me on a way to do this task ??? (or better, can anyone
write such a script for me PLEAAAASSSEEE !!!:)
Awaiting your response eagerly,
Terrence Vergauwen
Belgium
------------------------------
From: "Damian Wright" <[EMAIL PROTECTED]>
Crossposted-To: alt.os.linux.dial-up,yale.users.linux
Subject: Re: triggering pppd through external phone call
Date: Mon, 5 Jul 1999 21:46:59 +0200
A quick point here ... what about Caller ID, dial the number... if MGetty
likes the ID then it goes online and connects...
I've never actually checked if this is possible, but I'd like to try it at
home too.
Damian
Byron A Jeff <[EMAIL PROTECTED]> wrote in message
news:7lo5sa$[EMAIL PROTECTED]...
> This looks like a good injection point.
>
> In article <7lnu0d$f96$[EMAIL PROTECTED]>,
> Georg Schwarz <[EMAIL PROTECTED]> wrote:
> -Marc Mutz <[EMAIL PROTECTED]> writes:
> -
> ->I guess he cannot really dial in from his working place, but instead
> ->just rings his home and touchtone-dials some numbers so the computer
> ->knows that he wants this or that. Then the box hangs up, connects to his
> ->ISP and mails him it's new IP addr., so that he can now use the
> -
> -if cost/availability of the ISP or phone line does not deny it, the
> -easiest thing would be to leave the home system online 24h, or at least
> -while the owner is at work and potentially wants to connect to it.
>
> Most ISPs disallow this activity for good reason. Your $20 a month simply
> isn't enough to sustain a dedicated phone line. THat's why all the
> unlimited access have timeouts and rules prohibiting what you describe.
>
> -
> ->company's Internet gateway to log into his home box. Would be a really
> ->nice thing if that worked somehow. I could use it myself...
> -
> -so it's not really a ppp issue at all.
>
> No. It's just the matter of getting ppp to dial up when requested through
> the phone.
>
> -
> ->Maybe one should study one's modem documentation to check, if it is
> ->poosible to tell the modem to report dialtone'd numbers. A voice modem
> -
> -yes, that would be the way to do it, or to have an extra device connected
> -to the computer and to the phone line that can pick up on ring signals
(an
> -answring machine might do so already) and monitor the line for DTMF
> -signals, which it decodes and reports to the computer.
>
> That too. Easier would simply have a call system that monitors the modem
> for certain ring patterns. Something like if a 3 ring pattern is followed
> by a 2 ring pattern with each pattern between 30 and 60 seconds apart,
then
> that's the signal for PPP to pick up and dial.
>
> mgetty already has this feature and every modem can indicate rings.
Therefore
> it would require any special equipment to implement.
>
> -In principle an answering machine to pick up the line plus an audio in
> -for the computer (sound card or something) plus DTMF decoding software
> -should do the trick.
>
> Too much work. I know how to build a box like that using a DTMF decoder
and
> a PIC which could easily wiggle a serial port control line when the right
> code is entered. But for this particular application I think its overkill.
>
> -
> ->at least should be able to do that, thinking about those intelligent
> ->automated call answer machines that I obviously do not know the english
> ->name for :-)
> ->Hello, this is the ...(see one line above) of Marc.
> ->If it is important, type 1 to be redirected to my non-existant mobile
> ->phone.
> ->If you want to ask questions about linux, type 2 to get to my voice
> ->recorder.
> ->If you are my girl friend: Where have you been last night.
> -
> ->etc etc.
> ->How do they do such things?
> -
> -simple DTMF detection.
>
> A bit more than that. DTMF detection + voice played on demand. It's called
> interactive voice response.
>
> Mgetty can do the job with no extra equipment. Check it out.
>
> BAJ
------------------------------
From: "Nenad Taskovic" <[EMAIL PROTECTED]>
Subject: Re: Newbie Apache Question
Date: Tue, 6 Jul 1999 17:38:12 +0200
Patrick Gibson <[EMAIL PROTECTED]> wrote in message
news:Lakf3.6$[EMAIL PROTECTED]...
> In article <[EMAIL PROTECTED]> ,
> [EMAIL PROTECTED] (Vincent) wrote:
>
> > I need a little direction in Apache. I installed the Red Hat 5.2 Apache
> > 1.3.3-1 package. The Apache books I'm using, a "Dummies" book and
> > "Apache Server Bible", mention the the ServerRoot should contain under
> > one branch all the directories that contain the configuration, errors
and
> > log files I'll need. But it looks like the Red Hat distribution put
> > these files under several different branches. For example, the Red Hat
> > 5.2 Installation guide says that he config files are located in
> > /etc/httpd/conf, and the log files are kept in /var/log/httpd.
Shouldn't
> > these files reside under the same tree branch? Should I create an
Apache
> > root directory and move these and other directories under it? Or am I
> > missing something really basic?
You are missing variables ErrorLog, TransferLog and DocumentRoot.
# ErrorLog: The location of the error log file. If this does not start
# with /, ServerRoot is prepended to it.
ErrorLog /var/log/httpd/error_log
# TransferLog: The location of the transfer log file. If this does not
# start with /, ServerRoot is prepended to it.
TransferLog /var/log/httpd/access_log
# DocumentRoot: The directory out of which you will serve your
# documents. By default, all requests are taken from this directory, but
# symbolic links and aliases may be used to point to other locations.
DocumentRoot /home/httpd/html
Theese are extracts from my 'httpd.conf' and 'srm.conf'.
>
> No you are absolutely correct. I always avoid installing things like that
> via RPM packages. For some reason, the authors always seem to want to
spread
> an application's files all over the place. I on the other hand prefer as
> self-contained a package as possible.
HM!
As long as I am dealing with UNICES settings are placed under /etc and
variable files, such as logs, spool files, and so on, are placed under /var.
That is a good practice because on BIG systems under /var is usualy mounted
separate volume (disk, partition) to prevent fragmentation of files on other
volumes.
> My advice to you would be to go to http://apache.org/ and download the
> source for Apache. It is quite easy to compile and install, and by default
> everything is self-contained in /usr/local/apache/, just as it should. :)
>
> Patrick
>
> ---| Thinking Different... |----------+
> patrick gibson (patrick @ gibson.org)
> url: http://patrickgibson.com/
> ----------------------| got iMac? |---+
I apologise for my bad English, but I hope I helped you.
------------------------------
From: "dom" <[EMAIL PROTECTED]>
Subject: thin client setup with NFS and NIS
Date: Tue, 6 Jul 1999 18:44:25 +0100
Hi,
am trying to setup a very thin client with only the minimum software
on it.
I have a client box running OK with NFS and NIS.
The home drive for user X, on that client reside on the server and
with NFS and NIS I have no problem accessing it when I log as X
on the client.
Howvever what do I have to do to setup user Y.
Do I have to create an NFS mount for each user which can
potentially log on the client box?
I'd like to create a single NFS mount which would be mapped
to the appropriate user home drive on the server.
I tried to use $LOGNAME but I didn't get very far.
Dom
------------------------------
Date: Tue, 06 Jul 1999 16:35:58 -0400
From: Phil DeBecker <[EMAIL PROTECTED]>
Subject: Re: IPChains Problem
Bullit wrote:
> hello !
> =====
>
> well im using linux as an router with masquerading and it works well.
> but now i want to know some things :
>
> 1. ) it is possible to masquerade on an pc with only one net-interface
> ( i.e. ethernet card) or must i have two net-interface have !?
>
A card is not the same thing as an interface; a single physical network
card can have multiple (aliased) interfaces associated with it. If you
only have a single assigned IP address and want to masquerade a network
of machines with a private IP on a different network, you will have to
create an alias interface. Your kernel must be compiled with IP Aliasing
support for this to work. For example, if your ISP assigns you the
address 10.0.0.1, you would do
ifconfig eth0 inet 10.0.0.1 netmask 255.255.255.0
ifconfig eth0:1 inet 192.168.1.1 netmask 255.255.255.0
You then have two interfaces in software, though only one physical
interface. Your other machines could be set up with addresses on the
192.168.1.0 network, and use the 192.168.1.1 machine as their gateway.
You would then be able to masquerade all traffic from the alias interface
to the real interface.
>
> 2. ) what happens when i masquerade only on on interface ???
>
The only problem with this is that you lose some of the security
benefits. Normally, your masq/gateway machine would have two NICs, one
plugged into a hub with your local network, the other connected to your
outside connection. Because of the physical separation, it is impossible
to port scan, sniff, etc, your local network, and it is possible for the
gateway to filter packets and prevent the machines on the hub from
sending unwanted packets out. With a single NIC on your gateway, you'll
have to put your local machines on the same hub as the gateway's
connection to the outside world, and this is less secure. It will not
affect the functionality of the masquerading, however.
>
> 3.) how can i use masquerade with the new ipchains ?
>
ipchains -P forward DENY
ipchains -A forward -s 192.168.0.0/24 -j MASQ
...or just use ipfwadm-wrapper with your old ipfwadm arguments
>
> thanks for all answers
>
> bullit
HTH,
Phil
------------------------------
** FOR YOUR REFERENCE **
The service address, to which questions about the list itself and requests
to be added to or deleted from it should be directed, is:
Internet: [EMAIL PROTECTED]
You can send mail to the entire list (and comp.os.linux.networking) via:
Internet: [EMAIL PROTECTED]
Linux may be obtained via one of these FTP sites:
ftp.funet.fi pub/Linux
tsx-11.mit.edu pub/linux
sunsite.unc.edu pub/Linux
End of Linux-Networking Digest
******************************
