Thanks, new question
OK upgrading pppd make my 2.4 kernel work. But my logs are reporting a boatload of attackes on port 111 from an unknown host. I know that others have seen this. Does anyone remember the fix ? -- --- Tom Rauschenbach[EMAIL PROTECTED] All your base are belong to us ** To unsubscribe from this list, send mail to [EMAIL PROTECTED] with the following text in the *body* (*not* the subject line) of the letter: unsubscribe gnhlug **
Microsoft Advertisement.
Last night I was watching channel 4. I saw an advertisement and just couldn't stop chuckling. Microsoft is advertising, proudly I might add, that their enterprise server software stays up for days at a time without attendance. Wow, I'm so impressed I think I'll run out and buy some :-) My server will really stay up for days at a time if I spend a couple grand on the latest and best Microsoft has to offer. Golly, gee willikers where do I sign up? Granted I'm taking it a little out of context, but not much. In my opinion, someone in their advertising department really missed the boat on this one. ** To unsubscribe from this list, send mail to [EMAIL PROTECTED] with the following text in the *body* (*not* the subject line) of the letter: unsubscribe gnhlug **
Re: Office Suites discussion [was Re: Am I expecting too much? ]
Bonobo is the GNOME equivelent to COM or OpenDoc or KParts. It allows you to embed apps in one another (i.e. put a gnumeric spreadsheet into an abiword document). It's built on CORBA (OmniORB), so it works not only on the desktop, but across the network. jeff [EMAIL PROTECTED] said: [EMAIL PROTECTED] writes: coming with Bonobo support in both. Info from the recent GUADEC on GNOME Office: What is Bonobo? I know I've heard the name, but don't remember what it is. From you're context, it sounds like something similar to M$ Windows clipboard. I mention this because, unfortunately, most desktop people still have to use M$, me included. --- Jeffry Smith Technical Sales Consultant Mission Critical Linux [EMAIL PROTECTED] phone:603.930.9739 fax:978.446.9470 --- Thought for today: greenbar n. A style of fanfolded continuous-feed paper with alternating green and white bars on it, especially used in old-style line printers. This slang almost certainly dates way back to mainframe days. ** To unsubscribe from this list, send mail to [EMAIL PROTECTED] with the following text in the *body* (*not* the subject line) of the letter: unsubscribe gnhlug **
Re: Am I expecting too much?
In a message dated: Wed, 11 Apr 2001 05:25:26 PDT Vince McHugh said: (despite what the Sun folks keep saying about their modular architecture It's only modular in the OpenOffice 6.x series, which is still very early alpha. Btw, could you please not send HTML mail, it's quite annoying. Thanks, -- Seeya, Paul It may look like I'm just sitting here doing nothing, but I'm really actively waiting for all my problems to go away. If you're not having fun, you're not doing it right! ** To unsubscribe from this list, send mail to [EMAIL PROTECTED] with the following text in the *body* (*not* the subject line) of the letter: unsubscribe gnhlug **
kernel 2.4
Does anyone know of a good reason why a ppd that works on a 2.2 kernel would fail on top of a 2.4 kernel ? The message at run time say there is no such interface as ppp0. -- --- Tom Rauschenbach[EMAIL PROTECTED] All your base are belong to us ** To unsubscribe from this list, send mail to [EMAIL PROTECTED] with the following text in the *body* (*not* the subject line) of the letter: unsubscribe gnhlug **
Re: Am I expecting too much?
Paul Lussier said: In a message dated: Wed, 11 Apr 2001 05:25:26 PDT Vince McHugh said: (despite what the Sun folks keep saying about their modular architecture It's only modular in the OpenOffice 6.x series, which is still very early alpha. I question the modularity there - like I said, with their diagram, it looks like everything depends on everything else. I'm really hoping achtung (the gnome presentation program) gets useful soon - that's the major thing I use SO for! jeff --- Jeffry Smith Technical Sales Consultant Mission Critical Linux [EMAIL PROTECTED] phone:603.930.9739 fax:978.446.9470 --- Thought for today: greenbar n. A style of fanfolded continuous-feed paper with alternating green and white bars on it, especially used in old-style line printers. This slang almost certainly dates way back to mainframe days. ** To unsubscribe from this list, send mail to [EMAIL PROTECTED] with the following text in the *body* (*not* the subject line) of the letter: unsubscribe gnhlug **
2.4 pppd
Anybody seen this in their logs Sent %u bytes, received %u bytes. Seems odd to me ... -- --- Tom Rauschenbach[EMAIL PROTECTED] All your base are belong to us ** To unsubscribe from this list, send mail to [EMAIL PROTECTED] with the following text in the *body* (*not* the subject line) of the letter: unsubscribe gnhlug **
Re: kernel 2.4
On Wed, 11 Apr 2001, Tom Rauschenbach wrote: Does anyone know of a good reason why a ppd that works on a 2.2 kernel would fail on top of a 2.4 kernel ? The message at run time say there is no such interface as ppp0. Did you upgrade pppd? Most of the supporting packages, like modutils and util-linux, needed to be upgraded for 2.4. I imagine pppd would be one of them. The README file included with the 2.4 kernel has a list. -- Ben Scott [EMAIL PROTECTED] | The opinions expressed in this message are those of the author and do not | | necessarily represent the views or policy of any other person, entity or | | organization. All information is provided without warranty of any kind. | ** To unsubscribe from this list, send mail to [EMAIL PROTECTED] with the following text in the *body* (*not* the subject line) of the letter: unsubscribe gnhlug **
Re: Thanks, new question
On Wed, Apr 11, 2001 at 08:27:32PM -0400, Kenneth E. Lussier wrote: You can't. There is no way to harden the RPC services without completely rewriting them from the ground up. That would be like trying to protect an open door without closing it. My favorite analogy for this came from Bob Hillery at the SANS conference: It's like trying to protect a gate with no fence. Somebody asked me (more or less) why Kenny's statement is true, and since I said you shouldn't do this without really explaining what the problem is, I s'pose I should address it. Ignoring bugs (meaning programming errors; code that does not do what it was intended to do), RPC suffers from at least one inherent design flaw from a security perspective. That is, it depends solely on host-based authentication for granting access to services. If you haven't heard by now, it's very easy to spoof an IP address, and it's even possible to forge a name lookup, so these things really can't be trusted for providing authentication to sensitive services. The result of which is that it's fairly easy to trick RPC services into doing things they shouldn't do, if you know what you're doing. Add to that all the programming errors that are found on a regular basis, and the fact that these services invariably run as root on most systems/distros/OSes, and you've got one big security nightmare. It's pretty much impossible to secure. FWIW, IIRC, debian is one of the only places I've seen an RPC daemon NOT running as root. But I may be mistaken. -- I have written this book partly to correct a mistake... A colleage of mine once told me that the world was full of bad security systems designed by people who read Applied Cryptograpy. Since writing the book, I have made a living as a cryptography consultant: designing and analyzing security systems. To my initial surprise, I found that the weak points had nothing to do with the mathematics. They were in the hardware, the software, the networks, and the people. Beautiful pices of mathematics were made irrelevant through bad programming, a lousy operating system, or someone's bad password choice. I learned to look beyond the cryptography, at the entire system, to find weaknesses. I started repeating a couple of sentiments you'll find throughout this book: 'Security is a chain; it's only as secure as the weakest link.' 'Security is a process, not a product.' --Bruce Schneier, from Secrets Lies --- Derek Martin | Unix/Linux geek [EMAIL PROTECTED]| GnuPG Key ID: 0x81CFE75D Retrieve my public key at http://pgp.mit.edu ** To unsubscribe from this list, send mail to [EMAIL PROTECTED] with the following text in the *body* (*not* the subject line) of the letter: unsubscribe gnhlug **
Re: netatalk
On Tue, Apr 10, 2001 at 10:56:54PM -0400, Joshua S. Freeman wrote: Thanks Derek, I'm ON a Debian system... Oh yeah, you said that... :) My preoccupation with Red Hat's annoying conf.modules somehow got me on the track that you were on a RH system. and, in /etc/modules.conf we see: alias net-pf-5 off # DDP / appletalk Cool... so check /lib/modules/kernelver/net for the appletalk.o module. If it's there, change that alias to alias net-pf-5 appletalk See if that does the trick! If not, you may need to recompile, or I may be way off... :) --- Derek Martin | Unix/Linux geek [EMAIL PROTECTED]| GnuPG Key ID: 0x81CFE75D Retrieve my public key at http://pgp.mit.edu ** To unsubscribe from this list, send mail to [EMAIL PROTECTED] with the following text in the *body* (*not* the subject line) of the letter: unsubscribe gnhlug **
Re: Thanks, new question
On Wed, 11 Apr 2001, Derek Martin [EMAIL PROTECTED] wrote: ... Ignoring bugs (meaning programming errors; code that does not do what it was intended to do), RPC suffers from at least one inherent design flaw from a security perspective. That is, it depends solely on host-based authentication for granting access to services. If you haven't heard by now, it's very easy to spoof an IP address, and it's even possible to forge a name lookup, so these things really can't be trusted for providing authentication to sensitive services. The result of which is that it's fairly easy to trick RPC services into doing things they shouldn't do, if you know what you're doing. BTW, has anyone on the list used Secure-RPC / nis+ in a production environment? Any pros/cons to report? I recall hearing the key size was considered too small (but it seems like it could be jacked up, no?) I recall seeing mention of a Linux Secure-RPC implementation a few years back, but haven't followed it. Thanks, Karl ** To unsubscribe from this list, send mail to [EMAIL PROTECTED] with the following text in the *body* (*not* the subject line) of the letter: unsubscribe gnhlug **
Re: Office Suites discussion [was Re: Am I expecting too much? ]
[EMAIL PROTECTED] writes: coming with Bonobo support in both. Info from the recent GUADEC on GNOME Office: What is Bonobo? I know I've heard the name, but don't remember what it is. From you're context, it sounds like something similar to M$ Windows clipboard. I mention this because, unfortunately, most desktop people still have to use M$, me included. Bob Sparks Never attribute to malice, that which can be explained by stupidity. Never attribute to stupidity, that which can be explained by lack of information. ** To unsubscribe from this list, send mail to [EMAIL PROTECTED] with the following text in the *body* (*not* the subject line) of the letter: unsubscribe gnhlug **
sb live drivers?
I remember someone mentioning that creative had them avaible...but i can't find them on the websitecan someone point me to the right place? ~kurth ** To unsubscribe from this list, send mail to [EMAIL PROTECTED] with the following text in the *body* (*not* the subject line) of the letter: unsubscribe gnhlug **
Re: Security holes found in Alcatel ADSL modems
On Wed, 11 Apr 2001, David Roberts wrote: http://www.infoworld.com/articles/hn/xml/01/04/11/010411hnalc.xml?0411alert The article was pretty content free, but it seemed to indicate that the security problem in question required access to what should normally be local, trusted equipment (LAN or CO). In other words, it is a physical security problem, not a design flaw in the Alcatel product. It would be equivalent to someone booting a Linux server from floppy, patching the kernel to install their own exploits, and then claiming a hole in Linux. No system can be secure if physical security is compromised. -- Ben Scott [EMAIL PROTECTED] | The opinions expressed in this message are those of the author and do not | | necessarily represent the views or policy of any other person, entity or | | organization. All information is provided without warranty of any kind. | ** To unsubscribe from this list, send mail to [EMAIL PROTECTED] with the following text in the *body* (*not* the subject line) of the letter: unsubscribe gnhlug **
Re: Am I expecting too much?
Hi All, I would like to generate some discussion about setting "the sticky Bit" on an App to keep it in Memory when not actively running. I understand with limited RAM this would cause an even greater problem. But what if the RAM was increased to say 128 megs and this desktop was going to be primarily used as a word processor. Would setting the sticky bit for an app like Star Office resolve the slow start problem. Comments? It takes almost a minute for Star Office to come up. And the problem is ;-)? (sorry, couldn't resist - SO takes a good while to come up on my work machine!) Star Office is probably the worst application you could choose to run on that system. Star Office is slow on my PC at work -- a 550 MHz Pentium III with 128 MB of RAM. I wouldn't recommend SO with less than 64 MB of RAM. Biggest problem (despite what the Sun folks keep saying about their "modular architecture" is that it's fundamentally one big blob, instead of a bunch of separate apps. They talk about shared libraries, but they're not Unix .so files, they're Star Office's unique stuff, and if you go to openoffice.org, you Regards, Vince McHugh Systems Support Manager NECS\Canon Do You Yahoo!? Yahoo! Mail Personal Address - Get email at your own domain with Yahoo! Mail.
