<x-rich><paraindent><param>right,right</param>
</paraindent><paraindent><param>right,right</param>>i am having Redhat Linux
5.0 with kernel 2.0.32 installed on one of machine.
>now i want to install the latest kernel 2.2.2 which i have downloaded and
>unzipped and untarred in /usr/src directory.but after untarring i didn't
>find any new directory, only previously existing directories (i.e.
>linux-2.0.32 and redhat) are there. now what should i do to bring that
>kernel in effect?
What command did you use to untar it? Also, Redhat 5.0 has several
OLD tools that will then break with a new 2.2.x kernel. Before you
boot your new 2.2.x kernel, see the bottom of [Section 12] in TrinityOS
for all the packages you need to upgrade (if any).
If you aren't familiar with compiling kernels, setting up IP MASQ, etc..
check out the TrinityOS doc:
http://www.ecst.csuchico.edu/~dranch/LINUX/index-linux.html
--
<bigger>TrinityOS Current
Features:
Linux Distribution Thoughts:
----------------------------
+ Thoughts and recommendations on picking a Linux distribution
+ A Search & Replace Key to customize this doc to YOUR environment for
easier implementation
Core OS setup:
-----------------
+ Setting up, compiling, installing, and booting a 2.0.3x kernel
+ Lilo configuration and security
+ Sound Blaster 16 sound support
+ PCMCIA / CARDBUS PC-Card Services
+ Software RAID 0 (striping) hard drives
+ 7-CD SCSI CD-ROM changer system
+ Stabilizing the Linux EXT2 filesystem
+ Automated RPM notifier / updater (not complete)
+ IDE HDs performance optimization via hdparm
+ Unix printing support
Network Connectivity:
---------------------
+ Full LAN masquerading (NAT or Network Address Translation) using private IP
addressing
+ Advanced packet filter firewall rulesets
Complete intro on how packet and Stateful Inspected firewalls work
Examples given using either IPFWADM (2.0.x kernels) or IPCHAINS (2.1.x +
kernels)
+ Masq IP port forwarding support (IPportfw)
+ Direct dial-in terminal / PPP access via a modem
+ PPP connectivity to your ISP (for analog/ISDN modem users)
+ Dial-on-Demand (Diald) Internet connections (modem users)
+ Automatic Internet connections every 15 minutes (modem users)
+ Dual 10Mb/s Ethernet network card support setup and optimization
(modem and cablemodem users)
+ DHCP server for other LAN machines (laptops, etc)
+ NTP time calibrated
+ Full DNS (Bind v8.x) authoritative domain primary and secondary DNS and DNS
caching with support for more than one Internet domain on one DNS server
+ Full Sendmail mail system support w/ domain masquerading
with support for more than one Internet domain on one EMAIL server
+ Apache WWW server
+ Full UNIX (SMB) printing
+ Full SSH telnet support [Future: X-windows encrypted tunnels]
+ Samba : Full Microsoft Windows file & printing support
+ NFS: Full Sun RPC-based Network File System support
+ IPSEC (Swan) VPN [Almost Complete]
Security:
---------
+ TrinityOS "CRITICALITY" rating in the CHANGELOG section to gauge the level of
urgency of security vulnerabilities, system mis-configurations, etc.
+ Complete physical and OS-level security recommendations and guidelines
+ Actively Updated Linux system security and patching (Shadow passwords, etc)
+ Advanced SYSLOG logging and nightly filtered reports emailed to the root user
+ Tripwire Security Breech monitoring [not completed yet]
+ NMAP port scanning to test your packet firewall
+ Figuring out if you have been hacked.. Confirm it!
+ Prioritized ChangeLog to let users know what changes are and are NOT too
important
System backup:
--------------
+ Minimum backups to floppy and tape backup via BRU with emergency restore
diskette creation
+ Full APC SmartUPS powerdown support (APCUPSd) w/ paging support
+ Backing up the server to a CD-R [not completed yet]
Future
Features: (Won't be implemented in any particular order)
* TrinityOS To-dos:
- Move this doc over to SGML format!!!!!!
- Add more "Configuration via GUI tools" sections
* Network stuff
- Complete the transition to a strong IPCHAINS ruleset
- Mail Backup: Setup MX email backup
- IPv6: Configure and setup IPv6 and possibly setup a IPv6 tunnel
via the 6Bone
- Dial Backup: Add analog modem dial backup when the ADSL/Cablemodem
goes down
- CODA: Replace NFS support with CODA
- Implement IMAP4 for a complete email subsystem
- Add a CACHING only setup for 8.1.x DNS
- Setup a email list server (MajorDomo, Petidomo, dunno yet)
- Email sent dynamic IP address exception requests for access through
the TCP Wrappers and the IPFWADM rulesets
- Update the DNS setup to be a SPLIT-DNS setup for additional
internal security
- DHCPc client setup for Cablemodems
- Update & integrate the PPP docs to reflect the new PPPD 2.3.x+
configuration method
- 128-bit encrypted Apache SSL WWW server
- Move over to xinetd for better DoS protection
- WWW Proxy services
- WWW banner add filtering
* Security Stuff
- Impliment external 10.x.x.x and 172.16-31.x.x filtering
- Add a WATCHDOG feature to the rc.firewall ruleset so that if you make
an error in the firewall ruleset and the ruleset doesn't complete, a
backup ruleset will be automatically loaded to restore connectivity.
- SATAN / COPS / ISS / NMAP tested
* Kernel Stuff
- Implement a new 2.2.x kernel
* Application stuff
- Implement Procmail to do local email filtering
- Setup fetchmail to get remote email vs. setting up a remote .forward
- Full SVGA X-Windows support w/ the WindowMaker window Manager
(Xfree only. Metrox-X sucks)
* Administration stuff
- Up the logging time on the UPS to 10 seconds and then plot all
the stuff with GNU Plot to then be emailed via "Sendlogs"
- Edit and move /var/log/sendlogs to /usr/local/sbin
- Implement automatic weekly incremental tape backups to the TR4 tape
drive.
- BZip2 compression w/ tar patches
* System Stuff
- Iomega parallel ZIP drive support
</bigger>
_______________________________________________
Masq maillist - [EMAIL PROTECTED]
http://tiffany.indyramp.com/mailman/listinfo/masq
Admin requests can be handled by web (above) or [EMAIL PROTECTED]
