Re: Fixing file system privileges

2002-05-10 Thread David Stanaway

On Sat, 2002-05-11 at 01:16, martin f krafft wrote:
> also sprach Peter Cordes <[EMAIL PROTECTED]> [2002.05.11.0155 +0200]:
> > nope, purge is a possible status too.
> 
> since when?

Since the last time you hit _ in dselect maybe.

dstanawa@ciderbox:~$ dpkg --get-selections |grep purge
aptitudepurge
dstanawa@ciderbox:~$ sudo dpkg --purge aptitude
(Reading database ... 98668 files and directories currently installed.)
Removing aptitude ...
Purging configuration files for aptitude ...
dstanawa@ciderbox:~$ dpkg --get-selections |grep purge
dstanawa@ciderbox:~$ 

So it is purges that are pending (Hence: dpkg --pending --purge which is
run by dselect).

--
David Stanaway



signature.asc
Description: This is a digitally signed message part


Re: Fixing file system privileges

2002-05-10 Thread martin f krafft

also sprach Peter Cordes <[EMAIL PROTECTED]> [2002.05.11.0155 +0200]:
> nope, purge is a possible status too.

since when?

fishbowl:~> dpkg --get-selections | grep purge
fishbowl:~>

-- 
martin;  (greetings from the heart of the sun.)
  \ echo mailto: !#^."<*>"|tr "<*> mailto:"; net@madduck
  
"may your future be limited only by your dreams."
  -- christa mcauliffe



msg06681/pgp0.pgp
Description: PGP signature


kernel patches - lsm vs. grsecurity

2002-05-10 Thread Hubert Chan
I'm starting to experiment with the security kernel patches, and I was
wondering if anyone could comment on the lsm (kernel-patch-2.4-lsm) and
grsecurity (kernel-patch-2.4-grsecurity) set of patches, and their
relative advantages/disadvantages.  I just set up the grsecurity patch
on my machine yesterday, and it seems pretty interesting, but I haven't
done any extensive testing on it.

-- 
Hubert Chan <[EMAIL PROTECTED]> - http://www.geocities.com/hubertchan/
PGP/GnuPG key: 1024D/71FDA37F
Fingerprint: 6CC5 822D 2E55 494C 81DD  6F2C 6518 54DF 71FD A37F
Key available at wwwkeys.pgp.net.   Encrypted e-mail preferred.


pgpktzyGaP6O1.pgp
Description: PGP signature


kernel patches - lsm vs. grsecurity

2002-05-10 Thread Hubert Chan

I'm starting to experiment with the security kernel patches, and I was
wondering if anyone could comment on the lsm (kernel-patch-2.4-lsm) and
grsecurity (kernel-patch-2.4-grsecurity) set of patches, and their
relative advantages/disadvantages.  I just set up the grsecurity patch
on my machine yesterday, and it seems pretty interesting, but I haven't
done any extensive testing on it.

-- 
Hubert Chan <[EMAIL PROTECTED]> - http://www.geocities.com/hubertchan/
PGP/GnuPG key: 1024D/71FDA37F
Fingerprint: 6CC5 822D 2E55 494C 81DD  6F2C 6518 54DF 71FD A37F
Key available at wwwkeys.pgp.net.   Encrypted e-mail preferred.



msg06680/pgp0.pgp
Description: PGP signature


Re: Fixing file system privileges

2002-05-10 Thread Peter Cordes
On Sat, May 11, 2002 at 01:21:19AM +0200, martin f krafft wrote:
> also sprach Peter Cordes <[EMAIL PROTECTED]> [2002.05.10.2333 +0200]:
> >  Err, I guess you would need get-selections|grep 'install$'|cut -f1
> 
> why not
> 
>   dpkg --get-selections|grep -v 'deinstall$'|cut -f1
> 
> you want to save status, and since 'install$' matches lines ending in
> 'deinstall' as well ;^>

 nope, purge is a possible status too.

dpkg --get-selections | grep '[^A-Za-z]install$' | cut -f1
should work.

 This time for sure :)

-- 
#define X(x,y) x##y
Peter Cordes ;  e-mail: X([EMAIL PROTECTED] , ns.ca)

"The gods confound the man who first found out how to distinguish the hours!
 Confound him, too, who in this place set up a sundial, to cut and hack
 my day so wretchedly into small pieces!" -- Plautus, 200 BCE


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]



Re: Fixing file system privileges

2002-05-10 Thread martin f krafft
also sprach Peter Cordes <[EMAIL PROTECTED]> [2002.05.10.2333 +0200]:
>  Err, I guess you would need get-selections|grep 'install$'|cut -f1

why not

  dpkg --get-selections|grep -v 'deinstall$'|cut -f1

you want to save status, and since 'install$' matches lines ending in
'deinstall' as well ;^>

-- 
martin;  (greetings from the heart of the sun.)
  \ echo mailto: !#^."<*>"|tr "<*> mailto:"; [EMAIL PROTECTED]
  
no keyboard present.
press f1 to continue.
zen engineering.


pgpYy2anik9HA.pgp
Description: PGP signature


Re: is this an attack on my sendmail?

2002-05-10 Thread Greg Hunt
It looks like one of your users (the "ctladdr=" one) is trying to email [EMAIL 
PROTECTED] company.com doesn't appear to be online right now, which is why the 
connection is timing out.

For the SYN_SENT when doing a netstat, it's likely that your mail server is 
trying to connect to those mail servers, which are either not online or have 
some firewall rules blocking you - nothing to worry about.

(sending a TCP packet with the SYN flag set is the first step to making a 
connection, if those servers were online and responding they would reply with a 
packet with SYN + ACK set, since your server can't get to them the connection 
is stuck in the SYN_SENT state until it times out)

-Greg

> hi guys in my maillog I am receiving many strange message on sendmail like 
> that:
> May 10 18:52:50 xserver sendmail[]: g4AIRfa02119: 
> to=<[EMAIL PROTECTED]>, ctladdr= (638/45), 
> delay=03:25:09, xdelay=00:00:00, mailer=esmtp, pri=607606, 
> relay=company.com., dsn=4.0.0, stat=Deferred: Connection timed out with 
> company.com.
> 
> and the other strange thing is that when i try to check the 
> conections(netstat -at) there are one strange like that:
> tcp0  1 myserver:35169   mywebos.com:smtpSYN_SENT
> when I use netstat -atn looks like that:
> tcp0  1 myserver:35169208.49.229.140:25   SYN_SENT

-- 
--SupplyEdge---
Greg Hunt
800-733-3380 x 107
[EMAIL PROTECTED]


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]



is this an attack on my sendmail?

2002-05-10 Thread César Augusto Seronni Filho
hi guys in my maillog I am receiving many strange message on sendmail like 
that:
May 10 18:52:50 xserver sendmail[]: g4AIRfa02119: 
to=<[EMAIL PROTECTED]>, ctladdr= (638/45), 
delay=03:25:09, xdelay=00:00:00, mailer=esmtp, pri=607606, 
relay=company.com., dsn=4.0.0, stat=Deferred: Connection timed out with 
company.com.

look that  is one registred email with my domain. The 
messages points aways to the same user email.

and the other strange thing is that when i try to check the 
conections(netstat -at) there are one strange like that:
tcp0  1 myserver:35169   mywebos.com:smtpSYN_SENT
when I use netstat -atn looks like that:
tcp0  1 myserver:35169208.49.229.140:25   SYN_SENT

and look that this ip(208.49.229.140.25) is not owned by mywebos.com

I think it is spoofed 

In my network, I have one DMZ which this server was placed.
I am using one linux firewall(iptables) to redirect the packages to my DMZ
But I think if this is an attack it is comming from my LAN which have 
directed access to my DMZ.

Maybe this is an attack?
What i can do?
Any specials rules to protect me with iptables?
How I can find the source of the attack?

tks



-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]



Re: Fixing file system privileges

2002-05-10 Thread Peter Cordes

On Sat, May 11, 2002 at 01:21:19AM +0200, martin f krafft wrote:
> also sprach Peter Cordes <[EMAIL PROTECTED]> [2002.05.10.2333 +0200]:
> >  Err, I guess you would need get-selections|grep 'install$'|cut -f1
> 
> why not
> 
>   dpkg --get-selections|grep -v 'deinstall$'|cut -f1
> 
> you want to save status, and since 'install$' matches lines ending in
> 'deinstall' as well ;^>

 nope, purge is a possible status too.

dpkg --get-selections | grep '[^A-Za-z]install$' | cut -f1
should work.

 This time for sure :)

-- 
#define X(x,y) x##y
Peter Cordes ;  e-mail: X([EMAIL PROTECTED] , ns.ca)

"The gods confound the man who first found out how to distinguish the hours!
 Confound him, too, who in this place set up a sundial, to cut and hack
 my day so wretchedly into small pieces!" -- Plautus, 200 BCE


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]




Re: Fixing file system privileges

2002-05-10 Thread Peter Cordes
On Fri, May 10, 2002 at 04:31:24PM -0400, Matt Zimmerman wrote:
> On Fri, May 10, 2002 at 04:08:24PM -0300, Peter Cordes wrote:
> 
> >  You can do something like
> > apt-get install --reinstall $(dpgk --get-selections|cut -f1)
> > 
> > You may have to grep out some packages that aren't available anymore from
> > your get-selections output, but that should get most stuff.
> 
> You will have to filter more than that, or that command will try to install
> every package in the status file (including removed packages).

 Err, I guess you would need get-selections|grep 'install$'|cut -f1

-- 
#define X(x,y) x##y
Peter Cordes ;  e-mail: X([EMAIL PROTECTED] , ns.ca)

"The gods confound the man who first found out how to distinguish the hours!
 Confound him, too, who in this place set up a sundial, to cut and hack
 my day so wretchedly into small pieces!" -- Plautus, 200 BCE


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]



Tofu (was: Spamassassin (was Re: off topic: quoting (was Re: html spam)))

2002-05-10 Thread Thorsten Haude
Moin,

* Stelios Bounanos <[EMAIL PROTECTED]> [02-05-10 22:29]:
> > On Fri, 10 May 2002 08:53:29 -0700, Christian G Warden
> > <[EMAIL PROTECTED]> was runoured to have said:
>
> > On Fri, May 10, 2002 at 01:04:40PM +0300, Jussi Ekholm wrote:
> >> Christian G. Warden <[EMAIL PROTECTED]> wrote:
> >> 
> >> (Could you please post your reply *below* the quoted text? Top-posting
> >> is quite irritating, IMHO)
> >> 
> >> > i just want to add a warning about spamassassin.  i had it setup for
> >> > about a week and it was very good at catching spam, but occasionally it
> >> > would drive the cpu load into the 20s.  
> >> 
> >> Yes, I can say this, as well. My computer swapped twice (so much, that I
> >> had to hit MSysRq and boot) because of SA started to investigate pretty
> >> big binary mails. Although, "fixing" the problem is pretty easy; just
> >> add 'required_hits = x' in ~/.spamassassin/user_prefs, where 'x' is
> >> maybe 5 or something else. This makes SA to stop processing mails
> >> further than hits you just specified.
> 
> > i tend to prefer top-posting except when responding point by point
> > between paragraphs.  admittedly, it's lazy and encourages excessive
> > quoting, but this just feels awkward.  i'll try it out for a few days.
> > maybe it'll grow on me.
> > thanks for the required_hits tip.  next time i try SA, i'll read through
> > the docs more thoroughly.
>
>You can also run SA in a "client-server" mode. Basically your procmail
>recipe uses spamc to connect to a spamd daemon that does the checking.
>There's a discussion in the SA docs on why this more efficient; it
>solved the high system load problem for me...

I agree. I even made up a small page so that I just can refer to it
instead of explaining the problem every time.

Thorsten
-- 
Guns don't protect freedom, people protect freedom.


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]



Re: possible hole in mozilla et al

2002-05-10 Thread Daniel Rychlik







q


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]



Re: Fixing file system privileges

2002-05-10 Thread martin f krafft

also sprach Peter Cordes <[EMAIL PROTECTED]> [2002.05.10.2333 +0200]:
>  Err, I guess you would need get-selections|grep 'install$'|cut -f1

why not

  dpkg --get-selections|grep -v 'deinstall$'|cut -f1

you want to save status, and since 'install$' matches lines ending in
'deinstall' as well ;^>

-- 
martin;  (greetings from the heart of the sun.)
  \ echo mailto: !#^."<*>"|tr "<*> mailto:"; net@madduck
  
no keyboard present.
press f1 to continue.
zen engineering.



msg06678/pgp0.pgp
Description: PGP signature


Re: Fixing file system privileges

2002-05-10 Thread Matt Zimmerman
On Fri, May 10, 2002 at 04:08:24PM -0300, Peter Cordes wrote:

>  You can do something like
> apt-get install --reinstall $(dpgk --get-selections|cut -f1)
> 
> You may have to grep out some packages that aren't available anymore from
> your get-selections output, but that should get most stuff.

You will have to filter more than that, or that command will try to install
every package in the status file (including removed packages).

-- 
 - mdz


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]



Spamassassin (was Re: off topic: quoting (was Re: html spam))

2002-05-10 Thread Stelios Bounanos
 > On Fri, 10 May 2002 08:53:29 -0700, Christian G Warden
 > <[EMAIL PROTECTED]> was runoured to have said:

 > On Fri, May 10, 2002 at 01:04:40PM +0300, Jussi Ekholm wrote:
 >> Christian G. Warden <[EMAIL PROTECTED]> wrote:
 >> 
 >> (Could you please post your reply *below* the quoted text? Top-posting
 >> is quite irritating, IMHO)
 >> 
 >> > i just want to add a warning about spamassassin.  i had it setup for
 >> > about a week and it was very good at catching spam, but occasionally it
 >> > would drive the cpu load into the 20s.  
 >> 
 >> Yes, I can say this, as well. My computer swapped twice (so much, that I
 >> had to hit MSysRq and boot) because of SA started to investigate pretty
 >> big binary mails. Although, "fixing" the problem is pretty easy; just
 >> add 'required_hits = x' in ~/.spamassassin/user_prefs, where 'x' is
 >> maybe 5 or something else. This makes SA to stop processing mails
 >> further than hits you just specified.
 
 > i tend to prefer top-posting except when responding point by point
 > between paragraphs.  admittedly, it's lazy and encourages excessive
 > quoting, but this just feels awkward.  i'll try it out for a few days.
 > maybe it'll grow on me.
 > thanks for the required_hits tip.  next time i try SA, i'll read through
 > the docs more thoroughly.

You can also run SA in a "client-server" mode. Basically your procmail
recipe uses spamc to connect to a spamd daemon that does the checking.
There's a discussion in the SA docs on why this more efficient; it
solved the high system load problem for me...

 > xn

Rgds,
/-sb.


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]



Re: is this an attack on my sendmail?

2002-05-10 Thread Greg Hunt

It looks like one of your users (the "ctladdr=" one) is trying to email 
[EMAIL PROTECTED] company.com doesn't appear to be online right now, which is why 
the connection is timing out.

For the SYN_SENT when doing a netstat, it's likely that your mail server is trying to 
connect to those mail servers, which are either not online or have some firewall rules 
blocking you - nothing to worry about.

(sending a TCP packet with the SYN flag set is the first step to making a connection, 
if those servers were online and responding they would reply with a packet with SYN + 
ACK set, since your server can't get to them the connection is stuck in the SYN_SENT 
state until it times out)

-Greg

> hi guys in my maillog I am receiving many strange message on sendmail like 
> that:
> May 10 18:52:50 xserver sendmail[]: g4AIRfa02119: 
> to=<[EMAIL PROTECTED]>, ctladdr= (638/45), 
> delay=03:25:09, xdelay=00:00:00, mailer=esmtp, pri=607606, 
> relay=company.com., dsn=4.0.0, stat=Deferred: Connection timed out with 
> company.com.
> 
> and the other strange thing is that when i try to check the 
> conections(netstat -at) there are one strange like that:
> tcp0  1 myserver:35169   mywebos.com:smtpSYN_SENT
> when I use netstat -atn looks like that:
> tcp0  1 myserver:35169208.49.229.140:25   SYN_SENT

-- 
--SupplyEdge---
Greg Hunt
800-733-3380 x 107
[EMAIL PROTECTED]


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]




is this an attack on my sendmail?

2002-05-10 Thread César Augusto Seronni Filho

hi guys in my maillog I am receiving many strange message on sendmail like 
that:
May 10 18:52:50 xserver sendmail[]: g4AIRfa02119: 
to=<[EMAIL PROTECTED]>, ctladdr= (638/45), 
delay=03:25:09, xdelay=00:00:00, mailer=esmtp, pri=607606, 
relay=company.com., dsn=4.0.0, stat=Deferred: Connection timed out with 
company.com.

look that  is one registred email with my domain. The 
messages points aways to the same user email.

and the other strange thing is that when i try to check the 
conections(netstat -at) there are one strange like that:
tcp0  1 myserver:35169   mywebos.com:smtpSYN_SENT
when I use netstat -atn looks like that:
tcp0  1 myserver:35169208.49.229.140:25   SYN_SENT

and look that this ip(208.49.229.140.25) is not owned by mywebos.com

I think it is spoofed 

In my network, I have one DMZ which this server was placed.
I am using one linux firewall(iptables) to redirect the packages to my DMZ
But I think if this is an attack it is comming from my LAN which have 
directed access to my DMZ.

Maybe this is an attack?
What i can do?
Any specials rules to protect me with iptables?
How I can find the source of the attack?

tks



-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]




Re: Fixing file system privileges

2002-05-10 Thread Peter Cordes

On Fri, May 10, 2002 at 04:31:24PM -0400, Matt Zimmerman wrote:
> On Fri, May 10, 2002 at 04:08:24PM -0300, Peter Cordes wrote:
> 
> >  You can do something like
> > apt-get install --reinstall $(dpgk --get-selections|cut -f1)
> > 
> > You may have to grep out some packages that aren't available anymore from
> > your get-selections output, but that should get most stuff.
> 
> You will have to filter more than that, or that command will try to install
> every package in the status file (including removed packages).

 Err, I guess you would need get-selections|grep 'install$'|cut -f1

-- 
#define X(x,y) x##y
Peter Cordes ;  e-mail: X([EMAIL PROTECTED] , ns.ca)

"The gods confound the man who first found out how to distinguish the hours!
 Confound him, too, who in this place set up a sundial, to cut and hack
 my day so wretchedly into small pieces!" -- Plautus, 200 BCE


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]




Tofu (was: Spamassassin (was Re: off topic: quoting (was Re: html spam)))

2002-05-10 Thread Thorsten Haude

Moin,

* Stelios Bounanos <[EMAIL PROTECTED]> [02-05-10 22:29]:
> > On Fri, 10 May 2002 08:53:29 -0700, Christian G Warden
> > <[EMAIL PROTECTED]> was runoured to have said:
>
> > On Fri, May 10, 2002 at 01:04:40PM +0300, Jussi Ekholm wrote:
> >> Christian G. Warden <[EMAIL PROTECTED]> wrote:
> >> 
> >> (Could you please post your reply *below* the quoted text? Top-posting
> >> is quite irritating, IMHO)
> >> 
> >> > i just want to add a warning about spamassassin.  i had it setup for
> >> > about a week and it was very good at catching spam, but occasionally it
> >> > would drive the cpu load into the 20s.  
> >> 
> >> Yes, I can say this, as well. My computer swapped twice (so much, that I
> >> had to hit MSysRq and boot) because of SA started to investigate pretty
> >> big binary mails. Although, "fixing" the problem is pretty easy; just
> >> add 'required_hits = x' in ~/.spamassassin/user_prefs, where 'x' is
> >> maybe 5 or something else. This makes SA to stop processing mails
> >> further than hits you just specified.
> 
> > i tend to prefer top-posting except when responding point by point
> > between paragraphs.  admittedly, it's lazy and encourages excessive
> > quoting, but this just feels awkward.  i'll try it out for a few days.
> > maybe it'll grow on me.
> > thanks for the required_hits tip.  next time i try SA, i'll read through
> > the docs more thoroughly.
>
>You can also run SA in a "client-server" mode. Basically your procmail
>recipe uses spamc to connect to a spamd daemon that does the checking.
>There's a discussion in the SA docs on why this more efficient; it
>solved the high system load problem for me...

I agree. I even made up a small page so that I just can refer to it
instead of explaining the problem every time.

Thorsten
-- 
Guns don't protect freedom, people protect freedom.


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]




Re: Fixing file system privileges

2002-05-10 Thread Peter Cordes
On Thu, May 09, 2002 at 05:35:58PM +0200, martin f krafft wrote:
> also sprach Kovacs Istvan <[EMAIL PROTECTED]> [2002.05.09.1621 +0200]:
> > I screwed up file system privileges, issuing a chmod -R in the wrong (/
> > -- where else?) directory :-( Is there a way to fix this?
> 
> yes, if you have a tripwire (or other integrity checker) database
> around... otherwise only manually. i always have `ls -lR /` outputs
> stored in /root for a couple of weeks for that case...
> 
> but: why not save your /etc, /home, and /var, dpkg --get-selections
> into a file, reinstall, and then one after the other restore your
> settings? that might be faster...

 You can do something like
apt-get install --reinstall $(dpgk --get-selections|cut -f1)

You may have to grep out some packages that aren't available anymore from
your get-selections output, but that should get most stuff.



-- 
#define X(x,y) x##y
Peter Cordes ;  e-mail: X([EMAIL PROTECTED] , ns.ca)

"The gods confound the man who first found out how to distinguish the hours!
 Confound him, too, who in this place set up a sundial, to cut and hack
 my day so wretchedly into small pieces!" -- Plautus, 200 BCE


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]



Re: possible hole in mozilla et al

2002-05-10 Thread Daniel Rychlik








q


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]




unsubscribe

2002-05-10 Thread Richard Harvey




-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]



Re: Fixing file system privileges

2002-05-10 Thread Matt Zimmerman

On Fri, May 10, 2002 at 04:08:24PM -0300, Peter Cordes wrote:

>  You can do something like
> apt-get install --reinstall $(dpgk --get-selections|cut -f1)
> 
> You may have to grep out some packages that aren't available anymore from
> your get-selections output, but that should get most stuff.

You will have to filter more than that, or that command will try to install
every package in the status file (including removed packages).

-- 
 - mdz


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]




Spamassassin (was Re: off topic: quoting (was Re: html spam))

2002-05-10 Thread Stelios Bounanos

 > On Fri, 10 May 2002 08:53:29 -0700, Christian G Warden
 > <[EMAIL PROTECTED]> was runoured to have said:

 > On Fri, May 10, 2002 at 01:04:40PM +0300, Jussi Ekholm wrote:
 >> Christian G. Warden <[EMAIL PROTECTED]> wrote:
 >> 
 >> (Could you please post your reply *below* the quoted text? Top-posting
 >> is quite irritating, IMHO)
 >> 
 >> > i just want to add a warning about spamassassin.  i had it setup for
 >> > about a week and it was very good at catching spam, but occasionally it
 >> > would drive the cpu load into the 20s.  
 >> 
 >> Yes, I can say this, as well. My computer swapped twice (so much, that I
 >> had to hit MSysRq and boot) because of SA started to investigate pretty
 >> big binary mails. Although, "fixing" the problem is pretty easy; just
 >> add 'required_hits = x' in ~/.spamassassin/user_prefs, where 'x' is
 >> maybe 5 or something else. This makes SA to stop processing mails
 >> further than hits you just specified.
 
 > i tend to prefer top-posting except when responding point by point
 > between paragraphs.  admittedly, it's lazy and encourages excessive
 > quoting, but this just feels awkward.  i'll try it out for a few days.
 > maybe it'll grow on me.
 > thanks for the required_hits tip.  next time i try SA, i'll read through
 > the docs more thoroughly.

You can also run SA in a "client-server" mode. Basically your procmail
recipe uses spamc to connect to a spamd daemon that does the checking.
There's a discussion in the SA docs on why this more efficient; it
solved the high system load problem for me...

 > xn

Rgds,
/-sb.


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]




Re: Ncurses - warning off topic

2002-05-10 Thread Kevin

libncurses5-dev

>  - this is not the list for these kind of questions, but i will giv it
> a try.

> What is the full name of the libncurses you need to install in order to
> use "make menuconfig". i have run "apt-get install ncurses*" and non of
> them works - i still get "You need to have Ncurses installed" when trying
> menuconfig.

> Runing woody and kernel 2.4.18.

> Thanks 

> ___
> Mvh./Yours sincerely

> Lars 

> 
> Lars Roland Kristiansen |   (__) 
> Stu. Sci. Math/Computer science |   (oo) 
> Copenhagen University - | /--\/ < MUH MUHHH 
> Institute for Mathematical Sciences |/ |||   
> Url: www.math.ku.dk |   *  /\---/\ 
> Email: [EMAIL PROTECTED]|  ~~   ~~   
> 

>"Politics is for the moment, equations are forever"
> - Albert Einstein


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]



Re: Ncurses - warning off topic

2002-05-10 Thread Adam Spickler
You need to install the development stuff, I believe, so that you
can use make menuconfig.

Thanks,
Adam

-
Adam Spickler
Whaddu LLC.
http://www.whaddu.com
WebHosting and Design/Development Unlimited
-

On Fri, May 10, 2002 at 06:57:45PM +0200, Lars Roland Kristiansen wrote:
>  - this is not the list for these kind of questions, but i will giv it
> a try.
> 
> What is the full name of the libncurses you need to install in order to
> use "make menuconfig". i have run "apt-get install ncurses*" and non of
> them works - i still get "You need to have Ncurses installed" when trying
> menuconfig.
> 
> Runing woody and kernel 2.4.18.
> 
> Thanks 
> 
> ___
> Mvh./Yours sincerely
> 
> Lars 
> 
> 
> Lars Roland Kristiansen   |   (__) 
> Stu. Sci. Math/Computer science   |   (oo) 
> Copenhagen University -   | /--\/ < MUH MUHHH 
> Institute for Mathematical Sciences   |/ |||   
> Url: www.math.ku.dk   |   *  /\---/\ 
> Email: [EMAIL PROTECTED]  |  ~~   ~~   
> 
> 
>"Politics is for the moment, equations are forever"
> - Albert Einstein
> 
> 
> 
> -- 
> To UNSUBSCRIBE, email to [EMAIL PROTECTED]
> with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
> 
> 



-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]



Ncurses - warning off topic

2002-05-10 Thread Lars Roland Kristiansen
 - this is not the list for these kind of questions, but i will giv it
a try.

What is the full name of the libncurses you need to install in order to
use "make menuconfig". i have run "apt-get install ncurses*" and non of
them works - i still get "You need to have Ncurses installed" when trying
menuconfig.

Runing woody and kernel 2.4.18.

Thanks 

___
Mvh./Yours sincerely

Lars 


Lars Roland Kristiansen |   (__) 
Stu. Sci. Math/Computer science |   (oo) 
Copenhagen University - | /--\/ < MUH MUHHH 
Institute for Mathematical Sciences |/ |||   
Url: www.math.ku.dk |   *  /\---/\ 
Email: [EMAIL PROTECTED]|  ~~   ~~   


   "Politics is for the moment, equations are forever"
- Albert Einstein



-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]



Re: Fixing file system privileges

2002-05-10 Thread Peter Cordes

On Thu, May 09, 2002 at 05:35:58PM +0200, martin f krafft wrote:
> also sprach Kovacs Istvan <[EMAIL PROTECTED]> [2002.05.09.1621 +0200]:
> > I screwed up file system privileges, issuing a chmod -R in the wrong (/
> > -- where else?) directory :-( Is there a way to fix this?
> 
> yes, if you have a tripwire (or other integrity checker) database
> around... otherwise only manually. i always have `ls -lR /` outputs
> stored in /root for a couple of weeks for that case...
> 
> but: why not save your /etc, /home, and /var, dpkg --get-selections
> into a file, reinstall, and then one after the other restore your
> settings? that might be faster...

 You can do something like
apt-get install --reinstall $(dpgk --get-selections|cut -f1)

You may have to grep out some packages that aren't available anymore from
your get-selections output, but that should get most stuff.



-- 
#define X(x,y) x##y
Peter Cordes ;  e-mail: X([EMAIL PROTECTED] , ns.ca)

"The gods confound the man who first found out how to distinguish the hours!
 Confound him, too, who in this place set up a sundial, to cut and hack
 my day so wretchedly into small pieces!" -- Plautus, 200 BCE


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]




unsubscribe

2002-05-10 Thread Richard Harvey





-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]




off topic: quoting (was Re: html spam)

2002-05-10 Thread Christian G. Warden
On Fri, May 10, 2002 at 01:04:40PM +0300, Jussi Ekholm wrote:
> Christian G. Warden <[EMAIL PROTECTED]> wrote:
> 
> (Could you please post your reply *below* the quoted text? Top-posting
> is quite irritating, IMHO)
> 
> > i just want to add a warning about spamassassin.  i had it setup for
> > about a week and it was very good at catching spam, but occasionally it
> > would drive the cpu load into the 20s.  
> 
> Yes, I can say this, as well. My computer swapped twice (so much, that I
> had to hit MSysRq and boot) because of SA started to investigate pretty
> big binary mails. Although, "fixing" the problem is pretty easy; just
> add 'required_hits = x' in ~/.spamassassin/user_prefs, where 'x' is
> maybe 5 or something else. This makes SA to stop processing mails
> further than hits you just specified.
 
i tend to prefer top-posting except when responding point by point
between paragraphs.  admittedly, it's lazy and encourages excessive
quoting, but this just feels awkward.  i'll try it out for a few days.
maybe it'll grow on me.
thanks for the required_hits tip.  next time i try SA, i'll read through
the docs more thoroughly.

xn


--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]



Re: stable/secure mini-distros

2002-05-10 Thread Tim Uckun




We may be willing to put effort where mouth is, as the current
situation is far from ideal, and twood be a sad day if Debian were
to continue to fade into the shadows of outdated package obscurity,
so,

0)Is this even possible?


Why not? given enough time and money anything is possible!


1)Can we flesh up a more concrete set of objectives?


Why not?


1.a)  and a set of outline steps to achieve this?


Why Not?


2)Which is the best Debian forum?


Obviously not this one.


2.a)  Who needs to be involved [DPL?]


Like I said it could be handled as a different distro based on debian. I 
think there is at least one distro based on debian still around (libre I 
think). The trick will be to think small. Nobody is going to get rich over 
this and in today's environment you'll be lucky to break even. It might be 
possible to run it as a branch of the debian project but there might be too 
many hoops to jump with that one.



:wq
Tim Uckun
US Investigations Services/Due Diligence
 http://www.diligence.com/


--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]



Re: Ncurses - warning off topic

2002-05-10 Thread Kevin


libncurses5-dev

>  - this is not the list for these kind of questions, but i will giv it
> a try.

> What is the full name of the libncurses you need to install in order to
> use "make menuconfig". i have run "apt-get install ncurses*" and non of
> them works - i still get "You need to have Ncurses installed" when trying
> menuconfig.

> Runing woody and kernel 2.4.18.

> Thanks 

> ___
> Mvh./Yours sincerely

> Lars 

> 
> Lars Roland Kristiansen |   (__) 
> Stu. Sci. Math/Computer science |   (oo) 
> Copenhagen University - | /--\/ < MUH MUHHH 
> Institute for Mathematical Sciences |/ |||   
> Url: www.math.ku.dk |   *  /\---/\ 
> Email: [EMAIL PROTECTED]|  ~~   ~~   
> 

>"Politics is for the moment, equations are forever"
> - Albert Einstein


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]




Re: Ncurses - warning off topic

2002-05-10 Thread Adam Spickler

You need to install the development stuff, I believe, so that you
can use make menuconfig.

Thanks,
Adam

-
Adam Spickler
Whaddu LLC.
http://www.whaddu.com
WebHosting and Design/Development Unlimited
-

On Fri, May 10, 2002 at 06:57:45PM +0200, Lars Roland Kristiansen wrote:
>  - this is not the list for these kind of questions, but i will giv it
> a try.
> 
> What is the full name of the libncurses you need to install in order to
> use "make menuconfig". i have run "apt-get install ncurses*" and non of
> them works - i still get "You need to have Ncurses installed" when trying
> menuconfig.
> 
> Runing woody and kernel 2.4.18.
> 
> Thanks 
> 
> ___
> Mvh./Yours sincerely
> 
> Lars 
> 
> 
> Lars Roland Kristiansen   |   (__) 
> Stu. Sci. Math/Computer science   |   (oo) 
> Copenhagen University -   | /--\/ < MUH MUHHH 
> Institute for Mathematical Sciences   |/ |||   
> Url: www.math.ku.dk   |   *  /\---/\ 
> Email: [EMAIL PROTECTED]  |  ~~   ~~   
> 
> 
>"Politics is for the moment, equations are forever"
> - Albert Einstein
> 
> 
> 
> -- 
> To UNSUBSCRIBE, email to [EMAIL PROTECTED]
> with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
> 
> 



-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]




Ncurses - warning off topic

2002-05-10 Thread Lars Roland Kristiansen

 - this is not the list for these kind of questions, but i will giv it
a try.

What is the full name of the libncurses you need to install in order to
use "make menuconfig". i have run "apt-get install ncurses*" and non of
them works - i still get "You need to have Ncurses installed" when trying
menuconfig.

Runing woody and kernel 2.4.18.

Thanks 

___
Mvh./Yours sincerely

Lars 


Lars Roland Kristiansen |   (__) 
Stu. Sci. Math/Computer science |   (oo) 
Copenhagen University - | /--\/ < MUH MUHHH 
Institute for Mathematical Sciences |/ |||   
Url: www.math.ku.dk |   *  /\---/\ 
Email: [EMAIL PROTECTED]|  ~~   ~~   


   "Politics is for the moment, equations are forever"
- Albert Einstein



-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]




off topic: quoting (was Re: html spam)

2002-05-10 Thread Christian G. Warden

On Fri, May 10, 2002 at 01:04:40PM +0300, Jussi Ekholm wrote:
> Christian G. Warden <[EMAIL PROTECTED]> wrote:
> 
> (Could you please post your reply *below* the quoted text? Top-posting
> is quite irritating, IMHO)
> 
> > i just want to add a warning about spamassassin.  i had it setup for
> > about a week and it was very good at catching spam, but occasionally it
> > would drive the cpu load into the 20s.  
> 
> Yes, I can say this, as well. My computer swapped twice (so much, that I
> had to hit MSysRq and boot) because of SA started to investigate pretty
> big binary mails. Although, "fixing" the problem is pretty easy; just
> add 'required_hits = x' in ~/.spamassassin/user_prefs, where 'x' is
> maybe 5 or something else. This makes SA to stop processing mails
> further than hits you just specified.
 
i tend to prefer top-posting except when responding point by point
between paragraphs.  admittedly, it's lazy and encourages excessive
quoting, but this just feels awkward.  i'll try it out for a few days.
maybe it'll grow on me.
thanks for the required_hits tip.  next time i try SA, i'll read through
the docs more thoroughly.

xn


--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]




Re: stable/secure mini-distros

2002-05-10 Thread Tim Uckun


>
>We may be willing to put effort where mouth is, as the current
>situation is far from ideal, and twood be a sad day if Debian were
>to continue to fade into the shadows of outdated package obscurity,
>so,
>
>0)Is this even possible?

Why not? given enough time and money anything is possible!

>1)Can we flesh up a more concrete set of objectives?

Why not?

>1.a)  and a set of outline steps to achieve this?

Why Not?

>2)Which is the best Debian forum?

Obviously not this one.

>2.a)  Who needs to be involved [DPL?]

Like I said it could be handled as a different distro based on debian. I 
think there is at least one distro based on debian still around (libre I 
think). The trick will be to think small. Nobody is going to get rich over 
this and in today's environment you'll be lucky to break even. It might be 
possible to run it as a branch of the debian project but there might be too 
many hoops to jump with that one.


:wq
Tim Uckun
US Investigations Services/Due Diligence
  http://www.diligence.com/


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]




Re: html spam

2002-05-10 Thread Jussi Ekholm
Christian G. Warden <[EMAIL PROTECTED]> wrote:

(Could you please post your reply *below* the quoted text? Top-posting
is quite irritating, IMHO)

> i just want to add a warning about spamassassin.  i had it setup for
> about a week and it was very good at catching spam, but occassionally it
> would drive the cpu load into the 20s.  

Yes, I can say this, as well. My computer swapped twice (so much, that I
had to hit MSysRq and boot) because of SA started to investigate pretty
big binary mails. Although, "fixing" the problem is pretty easy; just
add 'required_hits = x' in ~/.spamassassin/user_prefs, where 'x' is
maybe 5 or something else. This makes SA to stop processing mails
further than hits you just specified.

-- 
Jussi Ekholm <[EMAIL PROTECTED]> | GNU/Linux user number 269376
http://erppimaa.cjb.net/~ekhowl/   | ICQ UIN:  156057281 
ekh on IRCnet  | GnuPG Public Key ID:  1410081E


pgpKyn9a63ZW9.pgp
Description: PGP signature


stable/secure mini-distros

2002-05-10 Thread Jeff
> From: Tim Uckun [mailto:[EMAIL PROTECTED] 
> What is needed is a distro based on debian, following the same 
> rules of safety as debian, using the same packages etc. 
> Everything is the same except that apt-sources points to a list 
> which contains a smaller set of platform specific packages. 
> This list get's updated as often is possible while staying with 
> the safety requirements of debian.

We may be willing to put effort where mouth is, as the current 
situation is far from ideal, and twood be a sad day if Debian were 
to continue to fade into the shadows of outdated package obscurity,
so,

0)Is this even possible?
1)Can we flesh up a more concrete set of objectives?
1.a)  and a set of outline steps to achieve this? 
2)Which is the best Debian forum?
2.a)  Who needs to be involved [DPL?]


-Original Message-
From: Tim Uckun [mailto:[EMAIL PROTECTED] 
Sent: 09 May 2002 15:59
To: debian-security@lists.debian.org
Subject: RE: possible hole in mozilla et al



>
>I agree with Tim Uckden's comments - we don't need bleeding edge, but
we
>also don't need
>some-obscure-whizzo-package-on-104-obsolete-hardware-architectures.deb
>holding up basic things like Apache, PHP, Perl, Mod_Perl, MySQL etc.
>
>We would be over the moon to have a mini-stable that only contained
core
>packages, and that kept better pace with the real world.

I have given this more thought since I posted my comments and it occurs
to 
me that this is a business opportunity more then anything else. What is 
needed is a distro based on debian, following the same rules of safety
as 
debian, using the same packages etc. Everything is the same except that 
apt-sources points to a list which contains a smaller set of platform 
specific packages. This list get's updated as often is possible while 
staying with the safety requirements of debian.

As for us we decided to go with freebsd on some systems thinking it
might 
offer security along with more frequently updated ports. So far I am not

impressed with it. The ports are not as easy to use as apt, and ports
are 
sometimes just plain old broken.  If anybody has an answer I'm all ears
as 
long as the answer does not contain the words microsoft or red or hat.


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact
[EMAIL PROTECTED]



-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]



Re: html spam

2002-05-10 Thread Jussi Ekholm

Christian G. Warden <[EMAIL PROTECTED]> wrote:

(Could you please post your reply *below* the quoted text? Top-posting
is quite irritating, IMHO)

> i just want to add a warning about spamassassin.  i had it setup for
> about a week and it was very good at catching spam, but occassionally it
> would drive the cpu load into the 20s.  

Yes, I can say this, as well. My computer swapped twice (so much, that I
had to hit MSysRq and boot) because of SA started to investigate pretty
big binary mails. Although, "fixing" the problem is pretty easy; just
add 'required_hits = x' in ~/.spamassassin/user_prefs, where 'x' is
maybe 5 or something else. This makes SA to stop processing mails
further than hits you just specified.

-- 
Jussi Ekholm <[EMAIL PROTECTED]> | GNU/Linux user number 269376
http://erppimaa.cjb.net/~ekhowl/   | ICQ UIN:  156057281 
ekh on IRCnet  | GnuPG Public Key ID:  1410081E



msg06663/pgp0.pgp
Description: PGP signature


stable/secure mini-distros

2002-05-10 Thread Jeff

> From: Tim Uckun [mailto:[EMAIL PROTECTED]] 
> What is needed is a distro based on debian, following the same 
> rules of safety as debian, using the same packages etc. 
> Everything is the same except that apt-sources points to a list 
> which contains a smaller set of platform specific packages. 
> This list get's updated as often is possible while staying with 
> the safety requirements of debian.

We may be willing to put effort where mouth is, as the current 
situation is far from ideal, and twood be a sad day if Debian were 
to continue to fade into the shadows of outdated package obscurity,
so,

0)Is this even possible?
1)Can we flesh up a more concrete set of objectives?
1.a)  and a set of outline steps to achieve this? 
2)Which is the best Debian forum?
2.a)  Who needs to be involved [DPL?]


-Original Message-
From: Tim Uckun [mailto:[EMAIL PROTECTED]] 
Sent: 09 May 2002 15:59
To: [EMAIL PROTECTED]
Subject: RE: possible hole in mozilla et al



>
>I agree with Tim Uckden's comments - we don't need bleeding edge, but
we
>also don't need
>some-obscure-whizzo-package-on-104-obsolete-hardware-architectures.deb
>holding up basic things like Apache, PHP, Perl, Mod_Perl, MySQL etc.
>
>We would be over the moon to have a mini-stable that only contained
core
>packages, and that kept better pace with the real world.

I have given this more thought since I posted my comments and it occurs
to 
me that this is a business opportunity more then anything else. What is 
needed is a distro based on debian, following the same rules of safety
as 
debian, using the same packages etc. Everything is the same except that 
apt-sources points to a list which contains a smaller set of platform 
specific packages. This list get's updated as often is possible while 
staying with the safety requirements of debian.

As for us we decided to go with freebsd on some systems thinking it
might 
offer security along with more frequently updated ports. So far I am not

impressed with it. The ports are not as easy to use as apt, and ports
are 
sometimes just plain old broken.  If anybody has an answer I'm all ears
as 
long as the answer does not contain the words microsoft or red or hat.


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact
[EMAIL PROTECTED]



-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]