Linux-Networking Digest #391, Volume #12 Sat, 28 Aug 99 01:13:37 EDT
Contents:
Re: Samba - newbie (Mark Worsdall)
Re: How to include Samba on Startup ("Steve Cowles")
kernel upgrade masquerading problem ("desmond")
Re: cost of leased line in notting hill, London England (Peter Eddy)
RFI - Analog Modem Channel Bonding (Ken McCord)
Need recommendation on config for new web portal (K. Be.)
Re: Why use real IP's when I can use virtual? (Sleiman)
Re: Masquerading + Samba? (Raymonds Doetjes)
Error:YPBINDPROC_DOMAIN: Domain not Bound... (Geolffrey Mena)
Re: Why, Why Why (Alvaro Garriga)
Re: Samba's last stand! ("Dacara")
Re: Can an ISP detect masquerading? (Rod Smith)
Re: Unreadable mail ([EMAIL PROTECTED])
Re: Protecting multiple static IP w/ firewall (Kenneth Porter)
Re: Want to set up server but DSL is on a LAN... help? (David Crooke)
Re: Can an ISP detect masquerading? (CuttingEdge)
Re: telnet as root ("Dacara")
Re: Can an ISP detect masquerading? (CuttingEdge)
Re: Class A Subnet (David Crooke)
Re: Help setting up sendmail (Philipp von dem Bussche-H�nnefeld)
----------------------------------------------------------------------------
From: Mark Worsdall <[EMAIL PROTECTED]>
Subject: Re: Samba - newbie
Date: Sat, 28 Aug 1999 03:35:59 +0100
In article <8tru3.1351$[EMAIL PROTECTED]>, Stephen Butler
<[EMAIL PROTECTED]> writes
>Hmmm I would prefer some actual advice on the matter. Before I went and
>paid money for the book.
>
>
>Chris Mahmood <[EMAIL PROTECTED]> wrote in message
>news:[EMAIL PROTECTED]...
>> "Stephen Butler" <[EMAIL PROTECTED]> writes:
>>
>> > Please help with details for a mega newbie if you can :)
>> You may want to purchase the Samba book then.
>> -ckm
>
>
The book has done me well, apart from doing over the internet.
--
Mark Worsdall - Oh no, I've run out of underpants :(
Home:- [EMAIL PROTECTED] http://www.wizdom.org.uk
Shadow:- [EMAIL PROTECTED] http://www.shadow.org.uk
Work:- [EMAIL PROTECTED] http://www.hinwick.demon.co.uk
Web site Monitoring:- http://www.shadow.org.uk/SiteSight/
------------------------------
From: "Steve Cowles" <[EMAIL PROTECTED]>
Subject: Re: How to include Samba on Startup
Date: Sat, 28 Aug 1999 02:42:52 GMT
First, determine your default run level
type: ps aux | grep init
On my system, my default run level is set to 5 (multi-user, with X windows)
[scowles@voyager rc5.d]$ ps aux | grep init
root 1 0.0 0.7 1096 472 ? S Aug21 0:03 init [5]
[scowles@voyager rc5.d]$
Using my example, create a link in /etc/rc.d/rc5.d as follows. The S91 is the
order in which processes are started up, in this case 91 is one of the last to
be started. Obviously the network (S10network) needs to be started before Samba
is started. The K35 is for when you issue the "shutdown" command so that Samba
will be properly shutdown before the drives (partitions) are dis-mounted.
cd /etc/rc.d/rc5.d
ln -s /etc/rc.d/init.d/smb S91smb
ln -s ../init.d/smb K35smb
Should show the following...
[scowles@voyager rc5.d]$ ls -l S91smb
lrwxrwxrwx 1 root root 20 Aug 1 18:28 S91smb ->
/etc/rc.d/init.d/smb*
[scowles@voyager rc5.d]$ ls -l K35smb
lrwxrwxrwx 1 root root 13 Jul 31 00:18 K35smb -> ../init.d/smb*
[scowles@voyager rc5.d]$
If your default run level is 3, then create the above links in /etc/rc.d/rc3.d.
Also, the file /etc/rc.d/init.d/smb needs to exist. This should have been
restored when you installed the new version of Samba. If you used Redhats RPM.
BTW: You can also use (as root using X Windows) "control-panel" command and then
select the run level editor button. It will do the same thing as above.
Steve Cowles
SWCowles at gte dot net
Fulton B. Gonzalez <[EMAIL PROTECTED]> wrote in message
news:[EMAIL PROTECTED]...
>
> In upgrading to the newest version of Samba, the Red Hat install procedure
> recommended that I uninstall the older version, using rpm -e. After
> installation, I find that samba no longer starts on boot-up. How do I get
> samba to start on boot-up? I would prefer to have it do so using the init
> files, rather than rc.local. Any help would be sincerely appreciated.
>
> Fulton B. Gonzalez
> Department of Mathematics
> Tufts University
>
------------------------------
From: "desmond" <[EMAIL PROTECTED]>
Subject: kernel upgrade masquerading problem
Date: Fri, 27 Aug 1999 15:30:36 +0200
L.S.
I just installed kernel 2.2.12 and I found a strange problem. While ip
masqurading with redhat 6.0 was working fine with kernel 2.2.5, it won't
work with my new kernel.
I installed all the necessary modules (I installed the new kernel exactly
like the old one)
I set /proc/sys/net/ipv4/ip_forward to 1
I set /etc/sysconfig/network forward_ipv4=yes
All the modules are in the rigth place (/lib/modules/ipv4 contains the
modules needed for masquerading)
These are the Errors I get:
When I use ipchains (with -j masq or -j redirect)
local: ipchains: No target by that name (Maybe this kernel doesn't support
transparent proxying?)
local: ipchains: No target by that name (Maybe this kernel doesn't support
masquerading?)
when I use insmod masq_ftp
/lib/modules/2.2.12/ipv4/ip_masq_ftp.o unresolved symbol
ip_masq_control_add_R3483aa31
Help !!!!!
------------------------------
From: Peter Eddy <[EMAIL PROTECTED]>
Crossposted-To: comp.os.linux.hardware
Subject: Re: cost of leased line in notting hill, London England
Date: Fri, 27 Aug 1999 22:12:45 -0400
colin wrote:
>
> Could someone very kindly tell me if this seems a reasonable price for a
> leased line in Notting Hill, London England. Prices are in pounds sterling
>
> �2000 set up
> �8700 128k
> �12200 256k
> �17900 512k
>
I've heard that European connectivity prices were higher than in the
U.S. but these prices seem criminal.
------------------------------
From: Ken McCord <[EMAIL PROTECTED]>
Crossposted-To: comp.os.linux.hardware
Subject: RFI - Analog Modem Channel Bonding
Date: Fri, 27 Aug 1999 23:24:08 -0400
Does anyone out there have any experience with bonding analog modems
together to improve throughput (ie two 28.8k modems bonded together to
get approximately 56k throughput)?
Some of the technologies I've been looking at are:
- Diamond's SupraSonic dual v.90 modems with 'Shotgun' technology.
Anyone aware of a Linux driver for it?
- EQL. Looks like you need the ISP to have either a Linux box or a
Livingston Portmaster with EQL support.
- slirp. Need shell account on ISP and it runs on their box (not
something I can run on a Linux box being used as a router at home).
- Multi-link PPP. Anyone aware of Linux support for MLPPP?
Thanks,
Ken McCord
------------------------------
From: K. Be. <[EMAIL PROTECTED]>
Crossposted-To: comp.os.linux.setup,redhat.servers.general
Subject: Need recommendation on config for new web portal
Date: Sat, 28 Aug 1999 03:30:58 GMT
Hi,
I am very close to setting up a new web portal. These are the services
I plan to offer, and I would like for you to recommend hardware(even the
actually programs to run):
1. Web server (apache) and ftp server
2. Search engine
3. Chat server (java chat applet, and maybe irc & html)
4. member home pages w/ html editor (found some perl/cgi that can do this)
5. Auction site(not that important; found perl/cgi for this)
6. some telnet (only for admin usage)
I was thinking of using some of these apps:
1. apache
2. ftpd(or recommend a better ftp daemon/server)
3. zope (www.zope.com)
4. webmin (webmin.com)
This site currently has over 1000 email users, and a few hundred hits a
day. I am thinking this site might get up towards 2000 hits a day. By the
way, email services won't be handled on this server.
So, what is your recommendation for a server serving web pages, ftp users,
html editing(via cgi/perl), chat(the java applet will download to clients
machine, but what resources does the html and irc chat use?), and whatever
services you can think of. I believe named/bind might be running on this,
as I plan to offer subdomains in the like of user.mydomain.com, etc.
This is what I have right now and what I have been testing:
pentium Pro 180mhz 512kb cache
128meg ram (parity)
uw-scsi adaptec 2940 pci
4.3gig uw scsi
9gig scsi(for home directories)
3com 10/100 auto pci (3c9505b?)
I can maybe put in another scsi card, and have the uw drive on the uw
conroller, and the scsi drive on a regular scsi-2 controller.
Anyway, do you think that server would be enough? By the way, I would be
sharing a DS-3 connection to Uunet, so bandwidth is no problem.
Thanks.
Hope there was no cross-post
================== Posted via CNET Linux Help ==================
http://www.searchlinux.com
------------------------------
From: Sleiman <[EMAIL PROTECTED]>
Subject: Re: Why use real IP's when I can use virtual?
Date: Sat, 28 Aug 1999 11:59:17 +0800
Thanks to all who have answered. I appreciate your tips.
Sleiman
------------------------------
From: Raymonds Doetjes <[EMAIL PROTECTED]>
Subject: Re: Masquerading + Samba?
Date: Fri, 27 Aug 1999 15:43:00 +0200
If you don't use WINS, the broadcasts will not reach your client that is
being masqeraded.
Masquerading soesn't allow broadcast to pass through.
Perhaps you should use a WINS server or let samba run as a WINS server
Raymond
Kertis Henderson wrote:
> Hello!
>
> I'm running a RedHat 6.0 computer on a TCP/IP network. This computer
> runs Samba, too. This works real nicely, except that I really can't
> browse the local network. I have a WIndows 98 computer that is behind
> my Redhat computer, using IP Masquerading. This works very nicely for
> everything except SMB. I can see my RedHat computer from WIndows, but I
> can't see past it.
>
> Is there any way of seeing the rest of the network from Windows? Thanks
> for any input!
>
> --
>
> Kertis Henderson
> [EMAIL PROTECTED]
------------------------------
From: Geolffrey Mena <[EMAIL PROTECTED]>
Reply-To: [EMAIL PROTECTED]
Subject: Error:YPBINDPROC_DOMAIN: Domain not Bound...
Date: Fri, 27 Aug 1999 23:55:51 -0400
I'm using Linux Red Hat 6.0 and I trying to make a web site (I'm novice
with Linux), I did some changes in Linuxconf and suddenly the system
started to show the following error each time that I execute the route
command. :
YPBINDPROC_DOMAIN: Domain not Bound...
I'm sure that have to be a simple error but my inexperience don't let me
see it. Please help me.
Tanks in advanced.
Geolffrey,
PD: I'll appreciate so much any advice in this particular topic (How to
create a web site), all the sugestion will be wellcome, in particular
about security.
------------------------------
From: Alvaro Garriga <[EMAIL PROTECTED]>
Subject: Re: Why, Why Why
Date: 27 Aug 1999 06:37:45 PDT
Thank you guys
I will give a try this afternoon.
Alvaro Garriga wrote:
> I installed Red Hat 6.0 everything when through fine.
> I setup samba got it working I rebooted the machine. Now I have bring my network
> card up with ipconfig to be able to ping.
> ( ipconfig eth0 xxx.xxx.xxx.xxx netmask 255.255.255.0 up ).
> Where can I find this network configuration settings?
>
> Thanks in Advance.
------------------------------
From: "Dacara" <[EMAIL PROTECTED]>
Reply-To: "Dacara" <[EMAIL PROTECTED]>
Subject: Re: Samba's last stand!
Date: 27 Aug 1999 09:37:36 -0500
"Gary W. Sandvik" <[EMAIL PROTECTED]> wrote:
>Hi,
>
>In your smb.conf you have an entry for the smbpasswd file location. Be
>certain that a valid user is generated for the linux system then generate a
>smbpasswd for that user. Once you login as a valid user, it will ask for the
>password. If you do not generate a password in smbpasswd for the root it
>will not allow the smb operation, be it root or another user.
>
>I'm assuming that you have your passwd style selected and the problem is not
>with MS Win/9x.
>--
>Regards and God Speed,
>
>Gary
>
>Gary W. Sandvik
>
>[EMAIL PROTECTED]
>309-676-0224 (fax)
>
>Hiawatha Bray <[EMAIL PROTECTED]> wrote in message
>news:7pft88$[EMAIL PROTECTED]...
>> Okay...I'm almost there. But a new problem has arisen. When I go to my
>> Windows machine and click on the Linux icon, it asks for a password. I
>type
>> my root password on the Linux box--the only one I have on it--and it says
>> incorrect password. I don't get it. How do I log into my own computer?
>> Help!
>>
>>
>
>
Samba doesn't understand the encripted passwords windoze is sendin, try adding:
[gobal]
encript passwords = yes
------------------------------
Reply-To: [EMAIL PROTECTED]
From: [EMAIL PROTECTED] (Rod Smith)
Subject: Re: Can an ISP detect masquerading?
Date: Sat, 28 Aug 1999 03:34:35 GMT
In article <[EMAIL PROTECTED]>,
Eric deRiel <[EMAIL PROTECTED]> writes:
> Tom Verbeure <[EMAIL PROTECTED]> writes:
>
>> Well. The point is that they are already doing regular scans of the
>> network (not constantly) to check for subscribers who are running a
>> server. The contract with the ISP explicitly forbids running servers,
>
> I'm sorry, but this is just inane. What is defined as a server? Does
> this mean that in.telnetd is a contract violation, because it listens on
> ports and accepts remote connections? What about inetd? If you can
> finger a site, you're essentially connecting to a server. Even
> Windows computers run "servers". Who *are* these people?
There was a discussion on comp.dcom.xdsl a couple of months ago about
this issue, particularly with respect to a DSL ISP called Flashcom
(http://www.flashcom.net). That ISP has a particularly poorly worded
terms of service (TOS) statement that contains many legally questionable
or just plain ridiculous clauses. They also e-mail the thing to
customers once they sign up and say in the e-mail that failure to respond
within four (?) days constitutes acceptance of all the terms. Judging by
posts on comp.dcom.xdsl, this TOS has driven away quite a few customers,
as have some horror stories about this ISP.
Anyhow, technically yes, in.telnetd *IS* a server, and IIRC, one person
who talked to Flashcom about this said that Flashcom said that they don't
consider running telnet or other common Linux/UNIX servers to be legit. I
don't know if Flashcom has actually tried bumping anybody's rates up over
this issue, though. I also don't know how common such restrictions are,
though I suspect they're more common in the PPP dialup world than in
faster forms of connection. I know the TOS for BellAtlantic.net has a
bunch of clauses about certain things being prohibited EXCEPT for DSL
users, for instance.
--
Rod Smith
[EMAIL PROTECTED]
http://members.bellatlantic.net/~smithrod
Author of _Special Edition Using Corel WordPerfect 8 for Linux_, from Que
------------------------------
From: [EMAIL PROTECTED]
Subject: Re: Unreadable mail
Date: 27 Aug 1999 13:33:03 GMT
Neoklis <[EMAIL PROTECTED]> wrote:
: Hi!
: After installing suse 6.0 "snapshot" on a PC and configuring suseppp to
: work with diald, I get the message "You have mail" when I log in as
: root. At the same time the modem repeatedly dials and connects with my
: ISP, although I can't tell why and what for. I have try to read this
: mail with pine, but it opens inbox with zero messages. Normal mail
: warnings are "You have _new_ mail" and are readable with pine.
Seems like you have pine-4.10 installed. That version generates a
message in your mail file in which it says not to delete it. Look at
/var/spool/mail/username or ~/username.
When you delete this message it recreates it at least at the next boot.
I found this very annoying too and went back to pine-3.96.
As to your dialing problem - I don't know about that, sorry.
Rolf
------------------------------
From: Kenneth Porter <[EMAIL PROTECTED]>
Crossposted-To: redhat.networking.general,comp.dcom.xdsl
Subject: Re: Protecting multiple static IP w/ firewall
Date: Fri, 27 Aug 1999 21:51:47 -0700
Ken wrote:
>
> I have DSL installed with 6 Static IPs allocated (and 6 boxes). However,
> I want to protect the internal network, but not use NAT. How would one
> configure that? I hear that some commercial firewalls can do that, or at
> least make it look transparent enough.
Who's your DSL provider? What kind of equipment connects you to the DSL
line?
My provider (Brainstorm/NorthPoint) provides either a 3COM DSL "modem"
or a Flowpoint router. I chose the modem because I'm using a Linux box
for gateway/firewall/NAT, and I only need the one static IP for the
gateway. If you need 6 IPs plus firewall, I'd suggest the router, and
you'll need to order the optional $200 firewall firmware. OTOH, your DSL
provider may be able to work with you to set up your Linux
firewall/gateway as a router so you can place your static IPs behind it.
I believe they need to configure their router to use your Linux box to
get to the other IPs. (Router experts, correct me if I'm wrong!)
------------------------------
From: David Crooke <[EMAIL PROTECTED]>
Reply-To: [EMAIL PROTECTED]
Subject: Re: Want to set up server but DSL is on a LAN... help?
Date: Fri, 27 Aug 1999 13:42:44 GMT
Matt Shores wrote:
>
> Hello,
> There is probably a simple answer for this, but I felt the need to
> ask. I am using Linux (RH 6.0) and am happily connected via DSL. Now,
> when I look at my IP, it is something like 10.0.0.2 (LAN I assume).
> I think everything I do goes out through a router of my ISP (though I am
> not certain - my network knowledge is next to nothing, obviously :) ).
> Is there a way I can have a server (I would like to let my friends
> transfer files to my machine) through this kind of configuration? I
> have another machine on hand if necessary. Any help is appreciated!
>
> Matt
> [EMAIL PROTECTED]
The short answer is - no. You don't have an internet IP address of your
own, so you're out of luck.
--
David Crooke, Austin TX, USA. +1 (512) 656 6102
"Open source software - with no walls and fences, who needs Windows
and Gates?"
------------------------------
From: [EMAIL PROTECTED] (CuttingEdge)
Subject: Re: Can an ISP detect masquerading?
Date: Sat, 28 Aug 1999 04:33:31 GMT
Tom,
The true issue with having only one computer is that if you
hook up a hub and setup five computers with DHCP, you are going to use
five IP address...which can be expensive for them. They only want one
computer hooked up to the cable modem. Anything hooked up to that
computer is fine. So what if you share info from the internet? Are
they going to sue if you download a file and then distribute it to
another computer using a floppy? No. It's the same thing only a little
faster and automated. They just don't want to assign hundreds of IP
address when they don't have to. They also don't want to deal with too
much broadcast traffic.
On Wed, 25 Aug 1999 23:31:29 GMT, Tom Verbeure
<[EMAIL PROTECTED]> wrote:
>
>Hello All,
>
>a tech-guy of my ISP claims that they are able to detect a host running
>Linux IP masquerading (and, of course, that it is forbidden by their
>policy to use this.) Is this true? Are there network expert here who can
>comment on this?
>
>Thanks,
>Tom
------------------------------
From: "Dacara" <[EMAIL PROTECTED]>
Reply-To: "Dacara" <[EMAIL PROTECTED]>
Subject: Re: telnet as root
Date: 27 Aug 1999 09:42:06 -0500
"Cowles, Steve" <[EMAIL PROTECTED]> wrote:
>Try "su -" when su'ing to root
>
>from man su
>
>Make the shell a login shell. This means the fol-
>lowing. Unset all environment variables except
>`TERM', `HOME', and `SHELL' (which are set as
>described above), and `USER' and `LOGNAME' (which
>are set, even for the super-user, as described
>above), and set `PATH' to a compiled-in default
>value. Change to USER's home directory. Prepend
>"-" to the shell's name, to make it read its login
>startup file(s).
>
>
>Steve Cowles
>SWCowles at gte dot net
>
>sean messenger <[EMAIL PROTECTED]> wrote in message
>news:7phsef$hc3$[EMAIL PROTECTED]...
>> yup.
>>
>> any way to telnet in, su to root, and scan system mail messages with
>> native mail readers?
>
>
>
in /etc/securetty add
ttyp0
will allow one root telnet adding more will allow more telnets
(ttyp1, ttyp2...)
------------------------------
From: [EMAIL PROTECTED] (CuttingEdge)
Subject: Re: Can an ISP detect masquerading?
Date: Sat, 28 Aug 1999 04:37:12 GMT
Another issue that exists is people setting up proxies that allow
connections from the external net. This allows people to use your
computer as a place to bounce from when hacking other systems. Now if
they break into the pentagon, you get in trouble. Of course you're
going to say it was someone else. This makes it impossible to be
someone else. If you configure things correct the first time and don't
leave any open doors and you don't run a DHCP server on your external
card, then you don't need to worry....at least that's what my ISP
says.
On Wed, 25 Aug 1999 23:31:29 GMT, Tom Verbeure
<[EMAIL PROTECTED]> wrote:
>
>Hello All,
>
>a tech-guy of my ISP claims that they are able to detect a host running
>Linux IP masquerading (and, of course, that it is forbidden by their
>policy to use this.) Is this true? Are there network expert here who can
>comment on this?
>
>Thanks,
>Tom
------------------------------
From: David Crooke <[EMAIL PROTECTED]>
Reply-To: [EMAIL PROTECTED]
Crossposted-To: alt.os.linux.mandrake
Subject: Re: Class A Subnet
Date: Fri, 27 Aug 1999 13:48:18 GMT
Raymonds Doetjes wrote:
>
> This looks pretty strange, are you sure your class A = 10.x.x.x (this is a
> privat range).
<snip>
No, he's saying his 4th byte is 10, not the first. Perfectly sensible. I
too am on a sub-masked class A, 24.x.x.x
>
> "Mehmet T. Avcioglu" wrote:
>
> > I have IP space from a class A network. However, the subnet mask I use
> > is understandably smaller than 255.0.0.0. The configuration is as
> > follows.
> >
> > eth0 A.B.C.10 255.255.255.128
> >
> > Each time the box reboots, the following routes are added.
> >
> > A.B.C.0 255.255.255.128 eth0
> > A.0.0.0 255.0.0.0 eth0
> >
> > This leaves the whole class A network out of the reach of this computer.
> > The only thing I can think of is the ipcalc program that ifup script
> > uses. But it isn't even supposed to run that program since I entered the
> > information.
> >
> > Any help on this would be apreciated.
> >
> > I am using Mandrake 6.0
This may be fallout from a standard new "feature" aimed at the idiot
user - when the interface's IP is configured, a route entry for its
subnet is added.
Just put commands in your startup to delete this route and all will be
well.
> >
> > --
> > Mehmet T. Avcioglu
--
David Crooke, Austin TX, USA. +1 (512) 656 6102
"Open source software - with no walls and fences, who needs Windows
and Gates?"
------------------------------
From: Philipp von dem Bussche-H�nnefeld <[EMAIL PROTECTED]>
Subject: Re: Help setting up sendmail
Date: Fri, 27 Aug 1999 20:30:57 GMT
Petrillo wrote:
> I am new to using linux and I jsut managed to setup the linux box to
> connect to my local LAN and to my cable modem. From workstations, I am
> able to browse the net, etc. I want to setup sendmail on the server
> now. Could someone direct me to a resource to learn about setting it
> up.
>
> Thanks
>
You have to download the following tool:
http://members.xoom.com/_XOOM/xeer/software/install-sendmail-5.1.tar.gz
This will help you to configure you sendmail
cu,
Philipp
================== Posted via CNET Linux Help ==================
http://www.searchlinux.com
------------------------------
** FOR YOUR REFERENCE **
The service address, to which questions about the list itself and requests
to be added to or deleted from it should be directed, is:
Internet: [EMAIL PROTECTED]
You can send mail to the entire list (and comp.os.linux.networking) via:
Internet: [EMAIL PROTECTED]
Linux may be obtained via one of these FTP sites:
ftp.funet.fi pub/Linux
tsx-11.mit.edu pub/linux
sunsite.unc.edu pub/Linux
End of Linux-Networking Digest
******************************
