Linux-Networking Digest #427, Volume #12 Tue, 31 Aug 99 15:13:46 EDT
Contents:
Re: Can an ISP detect masquerading? ("John Hardin")
PPP problem.........pleeeeeeease help (ksvenbak)
New kernel, 2.2.12, causing diald to stay open (Chris Sherman)
Re: Firewall options ("John Hardin")
InoculateIT detected the (W95/Happy99.worm) virus in Mailbox (Pub (InoculateIT)
News Proxy (Jimmy Lio)
InoculateIT detected the (W95/Happy99.worm) virus in Mailbox (Pub (InoculateIT)
InoculateIT detected the (W95/Happy99.worm) virus in Mailbox (Pub (InoculateIT)
InoculateIT detected the (W95/Happy99.worm) virus in Mailbox (Pub (InoculateIT)
Distributions (root)
Re: Problems with routes URGENT ("John Hardin")
Re: Quick question 3C509B ("Stew Smith")
Just FTP is for everybody (Abel Berenstein)
Re: Netmeeting & IP Masquerading ("Robert_Glover")
Re: Can't mount Windows drives ("Robert_Glover")
Re: Masqurading and only one NIC ("Robert_Glover")
Re: kppp OK but can't ping ("Robert_Glover")
Need introduction on sendmail!!!! ("Stefan Carstens")
Re: SQUID HELP!! ("Stephen C. Nabet")
Re: networking slows down (Janet)
Re: Concerning NAT and IP_Masq.??? ("John Hardin")
Re: MySQL, chroot and shared libs ("Sean O'Dell")
suExec (Nasr Khan)
2 network cards in one machine (Gerald Henriksen)
Re: 2 network cards in one machine (Cameron L. Spitzer)
nfs mount doesn't see everything (Timpie)
=?iso-8859-1?Q?Re:_How_to_connect_=E0_simple_terminal_to_=E0_linux_machine?=
("Robert_Glover")
Re: Distributions (Roy Grimm)
----------------------------------------------------------------------------
From: "John Hardin" <[EMAIL PROTECTED]>
Subject: Re: Can an ISP detect masquerading?
Date: Tue, 31 Aug 1999 09:58:37 -0700
Tom Verbeure wrote in message <[EMAIL PROTECTED]>...
>By lowering this to, say, 28k and putting the PORT_MASQ_BEGIN to
>28k, the masquerading would be completely undetectable, right?
Completely undetectable, no. Behaving differently from standard Linux
kernels and thus possibly escaping notice, yes.
--
John Hardin KA7OHZ [EMAIL PROTECTED]
pgpk -a finger://gonzo.wolfenet.com/jhardin PGP key ID: 0x41EA94F5
PGP key fingerprint: A3 0C 5B C2 EF 0D 2C E5 E9 BF C8 33 A7 A9 CE 76
=======================================================================
In the Lion
the Mighty Lion
the Zebra sleeps tonight...
Dee de-ee-ee-ee-ee de de de we um umma way!
------------------------------
From: ksvenbak <[EMAIL PROTECTED]>
Subject: PPP problem.........pleeeeeeease help
Date: Tue, 31 Aug 1999 16:44:49 GMT
Hi,
I am having a really weird problem with my ppp. The modem dials out and
seems to negotiate a connection, but I don't get any IP address back.
Someone please help me out with this. I have no idea what I'm doing
wrong. Please help.
This is what my /var/log/ppp looks like:
Aug 27 20:22:27 zeus pppd[1404]: pppd 2.3.7 started by root, uid 0
Aug 27 20:22:29 zeus chat[1405]: timeout set to 3 seconds
Aug 27 20:22:29 zeus chat[1405]: abort on (\nBUSY\r)
Aug 27 20:22:29 zeus chat[1405]: abort on (\nNO ANSWER\r)
Aug 27 20:22:29 zeus chat[1405]: abort on (\nRINGING\r\n\r\nRINGING\r)
Aug 27 20:22:29 zeus chat[1405]: send (rAT^M)
Aug 27 20:22:29 zeus chat[1405]: expect (OK)
Aug 27 20:22:29 zeus chat[1405]: rAT^M^M
Aug 27 20:22:29 zeus chat[1405]: OK
Aug 27 20:22:29 zeus chat[1405]: -- got it
Aug 27 20:22:29 zeus chat[1405]: send (ATH0^M)
Aug 27 20:22:29 zeus chat[1405]: timeout set to 30 seconds
Aug 27 20:22:29 zeus chat[1405]: expect (OK)
Aug 27 20:22:29 zeus chat[1405]: ^M
Aug 27 20:22:29 zeus chat[1405]: ATH0^M^M
Aug 27 20:22:29 zeus chat[1405]: OK
Aug 27 20:22:29 zeus chat[1405]: -- got it
Aug 27 20:22:29 zeus chat[1405]: send (ATDT535-8580^M)
Aug 27 20:22:29 zeus chat[1405]: expect (CONNECT)
Aug 27 20:22:29 zeus chat[1405]: ^M
Aug 27 20:22:49 zeus chat[1405]: ATDT535-8580^M^M
Aug 27 20:22:49 zeus chat[1405]: CONNECT
Aug 27 20:22:49 zeus chat[1405]: -- got it
Aug 27 20:22:49 zeus chat[1405]: send (^M)
Aug 27 20:22:49 zeus chat[1405]: expect (sername:)
Aug 27 20:22:49 zeus chat[1405]: 28800/ARQ/V34/LAPM/V42BIS^M
Aug 27 20:22:49 zeus chat[1405]: ^M
Aug 27 20:22:49 zeus chat[1405]: ^M
Aug 27 20:22:49 zeus chat[1405]: User Access Verification^M
Aug 27 20:22:49 zeus chat[1405]: ^M
Aug 27 20:22:49 zeus chat[1405]: Username:
Aug 27 20:22:49 zeus chat[1405]: -- got it
Aug 27 20:22:49 zeus chat[1405]: send (myuserid^M)
Aug 27 20:22:50 zeus chat[1405]: expect (assword:)
Aug 27 20:22:50 zeus chat[1405]: ^M
Aug 27 20:22:50 zeus chat[1405]: Username: myuserid^M
Aug 27 20:22:50 zeus chat[1405]: Password:
Aug 27 20:22:50 zeus chat[1405]: -- got it
Aug 27 20:22:50 zeus chat[1405]: send (password^M)
Aug 27 20:22:50 zeus pppd[1404]: Serial connection established.
Aug 27 20:22:50 zeus pppd[1404]: Using interface ppp0
Aug 27 20:22:50 zeus pppd[1404]: Connect: ppp0 <--> /dev/ttyS1
Aug 27 20:22:51 zeus pppd[1404]: sent [LCP ConfReq id=0x1 <asyncmap
0x20a0000> <magic
0x9e8348> <pcomp> <accomp>]
Aug 27 20:22:51 zeus pppd[1404]: rcvd [LCP ConfAck id=0x1 <asyncmap
0x20a0000> <magic
0x9e8348> <pcomp> <accomp>]
Aug 27 20:22:52 zeus pppd[1404]: rcvd [LCP ConfReq id=0x33 <asyncmap
0xa0000> <magic
0x4dc5d142> <pcomp> <accomp>]
Aug 27 20:22:52 zeus pppd[1404]: sent [LCP ConfAck id=0x33 <asyncmap
0xa0000> <magic
0x4dc5d142> <pcomp> <accomp>]
Aug 27 20:22:52 zeus pppd[1404]: sent [IPCP ConfReq id=0x1 <addr
0.0.0.0> <compress VJ
0f 01>]
Aug 27 20:22:52 zeus pppd[1404]: sent [CCP ConfReq id=0x1 <deflate 15>
<deflate(old#)
15> <bsd v1 15>]
Aug 27 20:22:52 zeus pppd[1404]: rcvd [LCP ProtRej id=0x34 80 21 01 01
00 10 03 06 00 00
00 00 02 06 00 2d 0f 01]
Aug 27 20:22:52 zeus pppd[1404]: rcvd [LCP ProtRej id=0x35 80 fd 01 01
00 0f 1a 04 78 00
18 04 78 00 15 03 2f]
Thanks,
Krishna
------------------------------
From: [EMAIL PROTECTED] (Chris Sherman)
Subject: New kernel, 2.2.12, causing diald to stay open
Date: Tue, 31 Aug 1999 15:51:08 GMT
I just installed a new kernel, 2.2.12, on my machine (Red Hat V6
installation, was running 2.2.5-15), and now the diald running on
the hub box (running 2.2.5-15 RH V6 installation) won't hang up.
Something in the new kernel seems to be generating packets that
is keeping diald open. (I haven't confirmed this yet, but nothing
else changed in the network).
This setup used to work fine when I was running 2.2.5-15. I changed
nothing about the system except the kernal config parameters (mostly
knocked stuff off the list that I wasn't using, and played with
the sound parameters some--still don't have that working, but that's
a separate issue).
I left my machine in init level 3, and had just a prompt up (no
X), and no other applications (especially network applications),
and I found out that it had the phone connected all night.
Note: We are _not_ running a caching DNS server on the hub. It's
never been needed before.
So, my questions are the following:
o) Is there something new about 2.2.12 that would cause this behavior?
o) Is this a bug?
o) Can I stop it?
o) How can I find out what on my machine is sending packets to
the hub that is getting through diald's rules? (Some sort of
smart networking logging commands?)
o) Anyone else have this problem?
Thanx!!!
ps. My apologies if this has already been discussed. Pointers to
web pages, FAQ's, and previous discussions would be most helpful.
pss. This problem may have been introduced before 2.2.12 (if this is
a kernel problem). I haven't tried any of the kernels
between 2.2.5-15 and 2.2.12.
--
____/ / / __ / _ _/ ____/
/ / / / / / / Chris Sherman
/ ___ / _/ / /
_____/ __/ __/ __/ _\ _____/ _____/ [EMAIL PROTECTED]
------------------------------
From: "John Hardin" <[EMAIL PROTECTED]>
Subject: Re: Firewall options
Date: Tue, 31 Aug 1999 09:56:21 -0700
Assad Khan wrote in message <[EMAIL PROTECTED]>...
>I want to be able to telnet to my firewalled machine from
>*.iqcity.com.
No, you don't. Take a look at ssh instead (at http://www.replay.com/),
unless you really do want all of your traffic to be traversing the internet
in the clear.
--
John Hardin KA7OHZ [EMAIL PROTECTED]
pgpk -a finger://gonzo.wolfenet.com/jhardin PGP key ID: 0x41EA94F5
PGP key fingerprint: A3 0C 5B C2 EF 0D 2C E5 E9 BF C8 33 A7 A9 CE 76
=======================================================================
In the Lion
the Mighty Lion
the Zebra sleeps tonight...
Dee de-ee-ee-ee-ee de de de we um umma way!
------------------------------
From: InoculateIT
Subject: InoculateIT detected the (W95/Happy99.worm) virus in Mailbox (Pub
Date: Tue, 31 Aug 1999 12:13:25 -0500
This message is in MIME format. Since your mail reader does not understand
this format, some or all of this message may not be legible.
======_=_NextPart_001_01BEF3D4.22B67930
Content-Type: text/plain
The (W95/Happy99.worm) virus was detected in (Public
Folders\Happy99.exe) and was sent by (Abel Berenstein). Action: (File
was not Cured, Renaming.).
======_=_NextPart_001_01BEF3D4.22B67930
Content-Type: text/html
Content-Transfer-Encoding: quoted-printable
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 3.2//EN">
<HTML>
<HEAD>
<META HTTP-EQUIV=3D"Content-Type" CONTENT=3D"text/html; =
charset=3Dus-ascii">
<META NAME=3D"Generator" CONTENT=3D"MS Exchange Server version =
5.5.2448.0">
<TITLE>InoculateIT detected the (W95/Happy99.worm) virus in Mailbox =
(Public Folders), Sender (Abel Berenstein) !!!</TITLE>
</HEAD>
<BODY>
<P><FONT SIZE=3D2>The (W95/Happy99.worm) virus was detected in (Public =
Folders\Happy99.exe) and was sent by (Abel Berenstein). Action: (File =
was not Cured, Renaming.).</FONT></P>
</BODY>
</HTML>
======_=_NextPart_001_01BEF3D4.22B67930==
------------------------------
From: Jimmy Lio <[EMAIL PROTECTED]>
Crossposted-To:
tw.bbs.comp.linux,alt.linux,comp.os.linux,comp.os.linux.misc,comp.os.linux.questions,info.ncsa-telnet,hk.comp.os.linux,hk.comp.os.unix,hk.comp.pc,alt.os.linux
Subject: News Proxy
Date: Wed, 01 Sep 1999 00:39:36 +0800
Any proxy servers that cache news from newsgroups? What about Apache
and Squid?
Jimmy
------------------------------
From: InoculateIT
Subject: InoculateIT detected the (W95/Happy99.worm) virus in Mailbox (Pub
Date: Tue, 31 Aug 1999 12:13:25 -0500
This message is in MIME format. Since your mail reader does not understand
this format, some or all of this message may not be legible.
======_=_NextPart_001_01BEF3D4.22871A60
Content-Type: text/plain
The (W95/Happy99.worm) virus was detected in (Public
Folders\Happy99.exe) and was sent by (Abel Berenstein). Action: (File
was not Cured, Renaming.).
======_=_NextPart_001_01BEF3D4.22871A60
Content-Type: text/html
Content-Transfer-Encoding: quoted-printable
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 3.2//EN">
<HTML>
<HEAD>
<META HTTP-EQUIV=3D"Content-Type" CONTENT=3D"text/html; =
charset=3Dus-ascii">
<META NAME=3D"Generator" CONTENT=3D"MS Exchange Server version =
5.5.2448.0">
<TITLE>InoculateIT detected the (W95/Happy99.worm) virus in Mailbox =
(Public Folders), Sender (Abel Berenstein) !!!</TITLE>
</HEAD>
<BODY>
<P><FONT SIZE=3D2>The (W95/Happy99.worm) virus was detected in (Public =
Folders\Happy99.exe) and was sent by (Abel Berenstein). Action: (File =
was not Cured, Renaming.).</FONT></P>
</BODY>
</HTML>
======_=_NextPart_001_01BEF3D4.22871A60==
------------------------------
From: InoculateIT
Subject: InoculateIT detected the (W95/Happy99.worm) virus in Mailbox (Pub
Date: Tue, 31 Aug 1999 12:13:24 -0500
This message is in MIME format. Since your mail reader does not understand
this format, some or all of this message may not be legible.
======_=_NextPart_001_01BEF3D4.22626DE0
Content-Type: text/plain
The (W95/Happy99.worm) virus was detected in (Public
Folders\Happy99.exe) and was sent by (Abel Berenstein). Action: (File
was not Cured, Renaming.).
======_=_NextPart_001_01BEF3D4.22626DE0
Content-Type: text/html
Content-Transfer-Encoding: quoted-printable
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 3.2//EN">
<HTML>
<HEAD>
<META HTTP-EQUIV=3D"Content-Type" CONTENT=3D"text/html; =
charset=3Dus-ascii">
<META NAME=3D"Generator" CONTENT=3D"MS Exchange Server version =
5.5.2448.0">
<TITLE>InoculateIT detected the (W95/Happy99.worm) virus in Mailbox =
(Public Folders), Sender (Abel Berenstein) !!!</TITLE>
</HEAD>
<BODY>
<P><FONT SIZE=3D2>The (W95/Happy99.worm) virus was detected in (Public =
Folders\Happy99.exe) and was sent by (Abel Berenstein). Action: (File =
was not Cured, Renaming.).</FONT></P>
</BODY>
</HTML>
======_=_NextPart_001_01BEF3D4.22626DE0==
------------------------------
From: InoculateIT
Subject: InoculateIT detected the (W95/Happy99.worm) virus in Mailbox (Pub
Date: Tue, 31 Aug 1999 12:13:25 -0500
This message is in MIME format. Since your mail reader does not understand
this format, some or all of this message may not be legible.
======_=_NextPart_001_01BEF3D4.22D81750
Content-Type: text/plain
The (W95/Happy99.worm) virus was detected in (Public
Folders\Happy99.exe) and was sent by (Abel Berenstein). Action: (File
was not Cured, Renaming.).
======_=_NextPart_001_01BEF3D4.22D81750
Content-Type: text/html
Content-Transfer-Encoding: quoted-printable
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 3.2//EN">
<HTML>
<HEAD>
<META HTTP-EQUIV=3D"Content-Type" CONTENT=3D"text/html; =
charset=3Dus-ascii">
<META NAME=3D"Generator" CONTENT=3D"MS Exchange Server version =
5.5.2448.0">
<TITLE>InoculateIT detected the (W95/Happy99.worm) virus in Mailbox =
(Public Folders), Sender (Abel Berenstein) !!!</TITLE>
</HEAD>
<BODY>
<P><FONT SIZE=3D2>The (W95/Happy99.worm) virus was detected in (Public =
Folders\Happy99.exe) and was sent by (Abel Berenstein). Action: (File =
was not Cured, Renaming.).</FONT></P>
</BODY>
</HTML>
======_=_NextPart_001_01BEF3D4.22D81750==
------------------------------
From: root <[EMAIL PROTECTED]>
Crossposted-To: alt.os.linux
Subject: Distributions
Date: Tue, 31 Aug 1999 11:10:09 -0500
I've been using RedHat for about 3 months now, and I really like the
whole linux thing. What I'm looking for though, is maybe a distrabution
that's not quite so easy to set up. I'd really like to get my hands
dirty, buckle down, and see what kind of problems I can encounter by
using a distribution that's not quite so user friendly.
Any sugestions?
Thaks,
David
------------------------------
From: "John Hardin" <[EMAIL PROTECTED]>
Subject: Re: Problems with routes URGENT
Date: Tue, 31 Aug 1999 10:10:03 -0700
Wim wrote in message <7qg8ob$mkp$[EMAIL PROTECTED]>...
>I have to install a router at work.
>there are 3 segments 10.176.16.0 eth0, 10.176.32.0 tr1, 10.176.1.0 tr0
>the netmask is 255.255.240.0 at least thats what they tell me.
>My router works between the 2 segments .16.0 and 32.0 but when i try to
add
>the route to 10.176.1.0 it says route adress doesnt match netmask, if I
add
>it with ifconfig it will automatticly change the networknumber to
10.176.0.0
>..
>Does anybody know what the problem is. Isn't the network not properly
>designed, i dont know cause I dint do it.
>But pleas help me, the boss is getting on my tail.
10.176.1.0 is not a network if you're using a net mask of 255.255.240.0 -
if you do the math you can see why.
The net mask is used to tell the computer which bits of the IP address
represent the network ID, and which (the bits left over) represent the ID
of the computer on that network.
Converting to binary makes it a bit clearer, and we'll only look at the
third octet:
240 = 11110000
1 = 00000001
AND them and you get:
Net = 00000000 giving 10.176.0.0 as the network.
To get the host you invert the netmask and AND:
00001111
00000001
Host = 00000001
This means that 10.176.1.0/255.255.240.0 is host .1.0 on network
10.176.0.0 - ifconfig is telling you true. It may be that 10.176.1.0 is the
*local interface* on the 10.176.0.0 network.
The networks you could have using that mask are:
10.176.0.0
10.176.16.0
10.176.32.0
10.176.48.0
10.176.64.0
...etc.
Hope this helps with your boss.
--
John Hardin KA7OHZ [EMAIL PROTECTED]
pgpk -a finger://gonzo.wolfenet.com/jhardin PGP key ID: 0x41EA94F5
PGP key fingerprint: A3 0C 5B C2 EF 0D 2C E5 E9 BF C8 33 A7 A9 CE 76
=======================================================================
In the Lion
the Mighty Lion
the Zebra sleeps tonight...
Dee de-ee-ee-ee-ee de de de we um umma way!
------------------------------
From: "Stew Smith" <[EMAIL PROTECTED]>
Subject: Re: Quick question 3C509B
Date: Tue, 31 Aug 1999 12:55:18 -0500
The 3c509 module worked for me with a 3c509b card. It will install it
properly during installation by choosing the NIC "3c509" from the list.
Stew
>Hi,
>
>Will Linux RedHat 6.0 support the 3Com 3C509B NIC. I only found information
>regarding a 3C509, or IS it the same. I tought they are different...?
>
>
>Thanks in advance,
>
>Marty
------------------------------
From: Abel Berenstein <[EMAIL PROTECTED]>
Subject: Just FTP is for everybody
Date: Mon, 30 Aug 1999 10:55:51 +0000
Hi!
I want to configure a Linux box so users that dial in and establish a
ppp connection
can use all the services or just ftp on a user-by-user basis.
How can I do that?
TIA.
Abel Berenstein
[EMAIL PROTECTED]
------------------------------
From: "Robert_Glover" <Please_reply_to@newsgroup>
Subject: Re: Netmeeting & IP Masquerading
Date: Tue, 31 Aug 1999 13:39:07 -0000
The command you're looking for is ipportfw (IP port forwarding).
TURBO1010 wrote in message
<7qfls3$2rl$[EMAIL PROTECTED]>...
>I got netmeeting 3.1 to work, no problem if I call someone on the
net. But
>if they want to contact me, oviously they can't because they're
calling the
>Linux box. My question is, and maybe this could be done, how can I
get IP
>chains, to forward the requests of netmeeting to my internal lan, on
a
>certain computer(s). Example, a request comes in on eth0 for
netmeeting, to
>be forwarded to eth1. So, if a request comes in on a port for
netmeeting,
>then it shoud be forwarded to 192.168.1.3 eth1. I get the concept,
just
>don't know what ports, or how to tell IP chains to forward the
requests.
>Anyone run into something similar?
>
>Thanks in advance for any input.
------------------------------
From: "Robert_Glover" <Please_reply_to@newsgroup>
Subject: Re: Can't mount Windows drives
Date: Tue, 31 Aug 1999 13:32:52 -0000
I always use forward slashes like this:
smbmount //mypc/c /mnt/mypc -N
It works for me! I do have a different version though.
------------------------------
From: "Robert_Glover" <Please_reply_to@newsgroup>
Subject: Re: Masqurading and only one NIC
Date: Tue, 31 Aug 1999 14:07:55 -0000
If they put a sniffer on that segment they'll be able to see all
traffic for both logical subnets.
Joseph Santaniello wrote in message
<[EMAIL PROTECTED]>...
>Hi,
>
>I have a simple masqurading set up using only one ethernet interface
>with 2 ip addresses assigned to it. It works, but I've heard that
this
>makes it easier for people to spoof being on my internal network. How
>does one NIC make this any more easy than 2?
>
>Thanks,
>
>Joe
------------------------------
From: "Robert_Glover" <Please_reply_to@newsgroup>
Subject: Re: kppp OK but can't ping
Date: Tue, 31 Aug 1999 13:57:43 -0000
I've heard some people claim that broken implementations of VJ
compression (on the ISP side) sometimes cause wierdness. You could
try the option 'novjcomp' and see if that helps.
------------------------------
From: "Stefan Carstens" <[EMAIL PROTECTED]>
Subject: Need introduction on sendmail!!!!
Date: Tue, 31 Aug 1999 16:41:31 +0200
Is there somebody who can help me to started with sendmail?
please mail to [EMAIL PROTECTED]
------------------------------
From: "Stephen C. Nabet" <[EMAIL PROTECTED]>
Subject: Re: SQUID HELP!!
Date: Tue, 31 Aug 1999 19:15:12 +0200
Ashok Aiyar wrote:
>
> On 30 Aug 1999 03:49:56 -0500,
> Champ Clark III ([EMAIL PROTECTED]) wrote:
> >In article <[EMAIL PROTECTED]>, Stephen C. Nabet wrote:
> >>I am using RH6.0 with squid 2.2.4STABLE.
> >>
> >>Could anyone tell me how to setup squid to let pass other protocols than
> >>ftp and http? I would like to be able to read my mail that is on a pop3
> >>server at my providers? I would like to listen to some radio or use my
> >>webcam.
> >>
> >>How can I do this?
> >>Thank U.
> >
> > Squid is simply used for FTP/HTTP.. Thats it..
>
> I hate to nitpick, but Squid is also a Gopher proxy. Not that
> there are many (any ?) gopher servers around these days.
>
> Ashok
> --
> Ashok Aiyar, Ph.D.
> McArdle Laboratory for Cancer Research
> [EMAIL PROTECTED]
U R right but can u help??
------------------------------
From: Janet <[EMAIL PROTECTED]>
Crossposted-To: comp.os.linux.misc
Subject: Re: networking slows down
Date: 31 Aug 1999 10:21:17 -0700
Tom Eastep <[EMAIL PROTECTED]> writes:
> Janet wrote:
> >
> > Hi,
> >
> > I have been recently been experiencing a problem with my networking
> > slowing down. If I ping my other machine, the ping time is normally less
> > than 1 ms. However, occasionally (it has happened 2 or 3 times in the
> > last week), it becomes a lot slower, sometimes taking up to 30 ms.
> > However, if I just restart networking (using the network startup script in
> > /etc/rc.d/init.d), it goes back to the sub-1 time. Any ideas?
> >
> > Janet
>
> I saw a similar problem on a DC21143-based NIC when used with the Tulip
> driver (in my case, the ping time was 1-2 seconds). Switching to the
> De4x5 driver seemed to avoid the problem.
I have been using the same Linksys card with the Tulip driver for a year;
it has just recently started having problems. Also, this only happens
when the box has been up for a few days. Do you think it could still be a
driver issue?
Janet
------------------------------
From: "John Hardin" <[EMAIL PROTECTED]>
Subject: Re: Concerning NAT and IP_Masq.???
Date: Tue, 31 Aug 1999 10:13:04 -0700
[EMAIL PROTECTED] wrote in message <7qgp98$m94$[EMAIL PROTECTED]>...
>I have 4 machines running IP to get on the Internet, and only one
>valid IP address to use.
>Which is better, IPCHAINS with ip_masquerading or NAT for Linux?
Your situation *requires* IP Masq.
NAT is many-to-many, so if you wanted to use NAT you'd need four valid IP
addresses (actually five, one for the firewall).
IP Masq is many-to-one.
--
John Hardin KA7OHZ [EMAIL PROTECTED]
pgpk -a finger://gonzo.wolfenet.com/jhardin PGP key ID: 0x41EA94F5
PGP key fingerprint: A3 0C 5B C2 EF 0D 2C E5 E9 BF C8 33 A7 A9 CE 76
=======================================================================
In the Lion
the Mighty Lion
the Zebra sleeps tonight...
Dee de-ee-ee-ee-ee de de de we um umma way!
------------------------------
From: "Sean O'Dell" <[EMAIL PROTECTED]>
Crossposted-To:
comp.os.linux.development.apps,comp.os.linux.development.system,comp.os.linux.security
Subject: Re: MySQL, chroot and shared libs
Date: Tue, 31 Aug 1999 07:24:20 -0700
I KNEW IT!!! Haha...I knew someone would not be able to resist making a
comment on security!!!
But you are certainly right about complex. Chrooted environments, I've
learned, are just not fun places. However, I have no choice, it is my best
security option for this particular program. Not to mention that it hides
the rest of my users from each other, which makes it fun for them. But if I
don't solve this issue of domain name resolution, it will not be a fun place
for them either anymore.
-Sean
Nigel Metheringham <[EMAIL PROTECTED]> wrote in message
news:[EMAIL PROTECTED]...
> On Mon, 30 Aug 1999 20:16:20 -0700, Sean O'Dell <[EMAIL PROTECTED]> wrote:
> >Well, your suggestion actually lead me to the actual problem I think. I
> >tried using the domain name for the mysql server and got pretty much the
> >same results. However, when I tried the plain old IP address, it worked
> >just fine. So, it's got something to do with my DNS lookup activities
> >somewhere. Gonna track that down...thanks for the info!
>
> You appear to be making your chroot environment more and more complex,
> which makes it harder and harder to fully secure.
>
> Why not:-
>
> 1. Static link your program. That definitely rids you of
> needing a pile of internal library images. It means
> you have to recompile for even minor updates in the
> supporting libraries, but thats a similar degree of
> work to upgrading the libraries within your chroot
> jail.
>
> 2. Don't attempt to use a named pipe connection - too
> much like hard work and a potential for desecuring
> your server
>
> 3. Make the program do its DB connections to 127.0.0.1
> [ie loopback] - no serious performance hits since it
> doesn't hit the real network, and that IP is always
> your local machine. No DNS libraries needed at all
> [although they are probably linked in by step (1).]
> nor additional DNS config - ie /etc/resolv.conf &
> /etc/nsswitch.conf
>
> Nigel.
>
> --
> [ Nigel Metheringham -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- [EMAIL PROTECTED] ]
> [ Playing with technology razor blades - close to the bleeding edge ]
------------------------------
From: Nasr Khan <[EMAIL PROTECTED]>
Reply-To: [EMAIL PROTECTED]
Subject: suExec
Date: Tue, 31 Aug 1999 19:30:26 -0500
Hi,
I would really appreciate if someone could help me out.
I have redhat 6.0 running with Red Hat Secure Web Server and the web
server also has fronpage extensions.
Now i am trying to set it up with the suExec module. and due to which i
have to recompile the apache server.
Can someone let me know how would i install the suexec module without
losing my current secure server cofigurations.
Thank you
Nasr Khan
------------------------------
From: [EMAIL PROTECTED] (Gerald Henriksen)
Subject: 2 network cards in one machine
Date: Tue, 31 Aug 1999 12:29:22 GMT
Trying to get 2 network cards working with Red Hat 6 (ultimately to
turn the machine into a firewall).
Both network cards work in other computers.
Both are assigned their own IP address ( .81 and .82 )
However, from a second machine I can ping successfully .82, but trying
to ping .81 always fails.
Any suggestions?
------------------------------
From: [EMAIL PROTECTED] (Cameron L. Spitzer)
Subject: Re: 2 network cards in one machine
Date: 31 Aug 1999 17:29:32 GMT
In article <37cbcbbe.10601474@news>, Gerald Henriksen wrote:
>Trying to get 2 network cards working with Red Hat 6 (ultimately to
>turn the machine into a firewall).
>
>Both network cards work in other computers.
>
>Both are assigned their own IP address ( .81 and .82 )
>
>However, from a second machine I can ping successfully .82, but trying
>to ping .81 always fails.
>
>Any suggestions?
Most of the Network Interface Controller (NIC) drivers stop probing
when they find the first NIC. If you have more than one of the same kind
of NIC, you usually need a command line argument to make the driver
keep looking. Use an append statement in LILO or a command line argument
in insmod.
See Ethernet-HOWTO and the source code to your driver.
Cameron
------------------------------
From: Timpie <[EMAIL PROTECTED]>
Crossposted-To: comp.os.linux.misc,comp.os.linux.setup
Subject: nfs mount doesn't see everything
Date: Tue, 31 Aug 1999 16:36:59 +0200
Reply-To: [EMAIL PROTECTED]
Hey there linux hackers,
I recently set up linux (Caldera 2.2.5) on a pentium PC.
When I try to nfs mount a partition from a Sun Solaris 2.5.1
machine the strangest thing happens :
I see all directories but some of them are empty (typically the
largest 900MB), yet when I go on the nfs server it does contain
files !!??
Has any of you come accross such a behaviour ?
--
Tim Schelfhout
Alcanet
Sys admin
[EMAIL PROTECTED]
------------------------------
From: "Robert_Glover" <Please_reply_to@newsgroup>
Subject: =?iso-8859-1?Q?Re:_How_to_connect_=E0_simple_terminal_to_=E0_linux_machine?=
Date: Tue, 31 Aug 1999 17:24:51 -0000
Use getty
------------------------------
From: Roy Grimm <[EMAIL PROTECTED]>
Crossposted-To: alt.os.linux
Subject: Re: Distributions
Date: Tue, 31 Aug 1999 12:22:42 -0500
root wrote:
>
> I've been using RedHat for about 3 months now, and I really like the
> whole linux thing. What I'm looking for though, is maybe a distrabution
> that's not quite so easy to set up. I'd really like to get my hands
> dirty, buckle down, and see what kind of problems I can encounter by
> using a distribution that's not quite so user friendly.
> Any sugestions?
> Thaks,
> David
I'm currently using Red Hat, versions 5.2 and 6.0. I bought them
because of the opposite reasons you are looking for. I had been using
Slackware for years. I started with the release with the 1.2.13 kernel
(can't remember the version number) and the last one (3.4 I think) had
the 2.0.35 kernel. Slackware is really accessible at a low level.
Since selling off my ISP, I don't have much of a reason to dig through
the low level stuff any more now that I have my home system set up. Red
Hat makes life easier for me.
I'm sure there are other distributions out there which are not quite so
user friendly. I haven't tried any of them so I can't recommend any.
Hope that helps,
Roy
--
Trains stop at train stations.
Busses stop at bus stations.
I have a workstation on my desk.
------------------------------
** FOR YOUR REFERENCE **
The service address, to which questions about the list itself and requests
to be added to or deleted from it should be directed, is:
Internet: [EMAIL PROTECTED]
You can send mail to the entire list (and comp.os.linux.networking) via:
Internet: [EMAIL PROTECTED]
Linux may be obtained via one of these FTP sites:
ftp.funet.fi pub/Linux
tsx-11.mit.edu pub/linux
sunsite.unc.edu pub/Linux
End of Linux-Networking Digest
******************************
