DHCP question
All the verbiage which follows simply leads up to this question: How, in the routine course of events, can a dhcp server force a renewal, or terminate, an ip number given to a client and reassign it to another client before the end of the lease time? This is what comcast did to me, and I am still puzzled by it. Read on for some ramblings. Just trying to figure out how my computer interacts with the comcast dhcp server. dhcpcd runs all the time on my machine once you start it up. I am reading RFC2131. It describes in detail how the server and client interact. No where can I find where the server can force the client to renew or rebind prior to the times given in the original lease. That is to say, as I understand it, (BIG assumption: understand) the client is the one who sends the request for the lease renewal; and, the server cannot initiate a lease change prior to the end of the lease. The dhcpcd daemon is not listening for the server for messages. In fact, the dhcp server cannot initiate a message to the client. To support this conclusion, there is no process listening to port 67 or 68 on my client machine. Therefore, with this information in my new lease: LEASETIME=604800 RENEWALTIME=259200 REBINDTIME=529200 I am forced to renew within echo 604800 / (60*60*24) | bc or 7 days from the date of this lease being granted. Am I correct in concluding that in the absence of some non routine event at Comcast, I am guaranteed this new ip for seven days? That is to say, the comcast server cannot contact my dhcpcd process and tell it to renew its lease before its expiration date? My old lease, assigned by comcast, had a 4 billion second expiration time (infinite). LEASETIME=4294967295 RENEWALTIME=259200 REBINDTIME=3758096383 dhcpcd by default asks for an infinite lease time. echo ibase=16; * 1 | bc = 4294967295 As described in another thread, comcast terminated this lease and reassigned my ip number without my knowledge. How can comcast tell I am running with a static ip, unless they looked at their own database to see the lease they assigned me originally? Assuming they did that, how could they reassign my ip number when it was still leased to my computer, thereby just cutting me off from the internet, and threatening to terminate my account if this happens again? Any insight appreciated, Joel P.S. I would sent this letter to comcast if I knew where to send it. ___ Linux-users mailing list - http://linux-sxs.org/mailman/listinfo/linux-users Subscribe/Unsubscribe info, Archives,and Digests are located at the above URL.
Re: have a compile problem
On Tue, 9 Jul 2002 12:52, Net Llama! wrote: Run ldconfig -v | grep whatever_lib_you_need and see if it appears in the output. If it appears then the problem is not the dynamic loader, its the RPM, or whatever you're trying to build/install. Well that finds the files fine, so its the tarballs and src rpms that are at fault. It seems impossible that it would stuff up so many install, i.e Avifile, Mjpegtools, imagemagick and mplayer. It must be something else that is at fault on my OS. But what! -- Keith Antoine (GANDALF) aka 'skippy' 18 Arkana St, The Gap, Queensland 4061 Australia PH:61733002161 Retired Geriatric, Sometime Electronics Engineer, Knowall, Brain in storage ___ Linux-users mailing list - http://linux-sxs.org/mailman/listinfo/linux-users Subscribe/Unsubscribe info, Archives,and Digests are located at the above URL.
Re: DHCP question
the dhcp server was resetted. :) All the verbiage which follows simply leads up to this question: How, in the routine course of events, can a dhcp server force a renewal, or terminate, an ip number given to a client and reassign it to another client before the end of the lease time? This is what comcast did to me, and I am still puzzled by it. ___ Linux-users mailing list - http://linux-sxs.org/mailman/listinfo/linux-users Subscribe/Unsubscribe info, Archives,and Digests are located at the above URL.
Re: DHCP question
Well, maybe, but, the server should have the lease information on its hard drive. Since the comcast people should want to maintain an orderly network, I still don't see how they would violate their own leases. Joel On Tue, Jul 09, 2002 at 05:41:01PM +0800, m.w.chang wrote: the dhcp server was resetted. :) All the verbiage which follows simply leads up to this question: How, in the routine course of events, can a dhcp server force a renewal, or terminate, an ip number given to a client and reassign it to another client before the end of the lease time? This is what comcast did to me, and I am still puzzled by it. ___ Linux-users mailing list - http://linux-sxs.org/mailman/listinfo/linux-users Subscribe/Unsubscribe info, Archives,and Digests are located at the above URL. ___ Linux-users mailing list - http://linux-sxs.org/mailman/listinfo/linux-users Subscribe/Unsubscribe info, Archives,and Digests are located at the above URL.
Re: DHCP question
While I am burning up bandwidth, rfc2131 says that the client must not keep using the ip number after the lease expires. However, I do not see any provision in dhcpcd to disable the ip number when the lease expires. Does anyone know how dhcpcd is supposed to carry this out? Joel ___ Linux-users mailing list - http://linux-sxs.org/mailman/listinfo/linux-users Subscribe/Unsubscribe info, Archives,and Digests are located at the above URL.
Re: Wireless (802.11) website?
An access point is like a hub/switch.. it does have embedded items in it that are either configured over a serial/telnet connection or via a webbrowser. As for the wireless pcmcia and pci, I have yet to sit down and emss with them yet... trying to take over the wifes laptop so I can slap linux on it and play with the wireless stuff on it.. Bill Day Linux 2.2.20-1tr i586 6:10am up 17 days, 20:06, 2 users, load average: 0.00, 0.00, 0.00 - Original Message - From: Net Llama! [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Monday, July 08, 2002 11:12 PM Subject: Re: Wireless (802.11) website? i guess i'm showing my ignorance. so a base-station/access-point is basically an embedded device that doesn't need an OS based driver to work? i guess i need wireless for dumbies, cause i don't fully understand how it all comes together. Michael Hipp wrote: I'm not sure what sort of compatibility issue there could be with base stations (I'm assuming base station = access point). The various PCI, USB and PCcards would more likely pose problems. http://www.linksys.com has some pretty good data here and there. They even acknowledge the existence of Linux. I've used their wireless gear without problems, but not all of it in all configurations. Michael On Monday 08 July 2002 09:49 pm, Net Llama! wrote: Does anyone know of a good website that shows what kind of wireless gear works with linux? I'm more concerned with the base stations than anything else. thanks! ___ Linux-users mailing list - http://linux-sxs.org/mailman/listinfo/linux-users Subscribe/Unsubscribe info, Archives,and Digests are located at the above URL. -- ~ L. Friedman [EMAIL PROTECTED] Linux Step-by-step TyGeMo: http://netllama.ipfox.com 8:00pm up 81 days, 2:47, 2 users, load average: 0.14, 0.14, 0.16 ___ Linux-users mailing list - http://linux-sxs.org/mailman/listinfo/linux-users Subscribe/Unsubscribe info, Archives,and Digests are located at the above URL. --- Outgoing mail is certified Virus Free. Checked by AVG anti-virus system (http://www.grisoft.com). Version: 6.0.373 / Virus Database: 208 - Release Date: 7/1/02 ___ Linux-users mailing list - http://linux-sxs.org/mailman/listinfo/linux-users Subscribe/Unsubscribe info, Archives,and Digests are located at the above URL.
Re: DHCP question
On Tue, 9 Jul 2002 04:27:54 -0400 begin Joel Hammer [EMAIL PROTECTED] spewed forth: All the verbiage which follows simply leads up to this question: How, in the routine course of events, can a dhcp server force a renewal, or terminate, an ip number given to a client and reassign it to another client before the end of the lease time? This is what comcast did to me, and I am still puzzled by it. Read on for some ramblings. Just trying to figure out how my computer interacts with the comcast dhcp server. dhcpcd runs all the time on my machine once you start it up. I am reading RFC2131. It describes in detail how the server and client interact. No where can I find where the server can force the client to renew or rebind prior to the times given in the original lease. That is to say, as I understand it, (BIG assumption: understand) the client is the one who sends the request for the lease renewal; and, the server cannot initiate a lease change prior to the end of the lease. The dhcpcd daemon is not listening for the server for messages. In fact, the dhcp server cannot initiate a message to the client. To support this conclusion, there is no process listening to port 67 or 68 on my client machine. [snip] No, but please reread the part about where a client shuts down and returns the lease. Windoze users typically restart their computer twice a day, and normally shut down at least daily. It's a Windoze habit. As described in another thread, comcast terminated this lease and reassigned my ip number without my knowledge. How can comcast tell I am running with a static ip, unless they looked at their own database to see the lease they assigned me originally? Assuming they did that, how could they reassign my ip number when it was still leased to my computer, thereby just cutting me off from the internet, and threatening to terminate my account if this happens again? If you have a dhcp server you can force termination of a lease. If they forced termination of all leases, then 2 days later checked to see which IPs were in use, but not in their leases file (because the server checks to see if an IP is in use before assigning it), then they know who has a static IP (logically, if Windoze lusers do daily shutdowns). OK, you're not a Windoze luser, you're an exception. Ciao, David A. Bandel -- Focus on the dream, not the competition. -- Nemesis Racing Team motto ___ Linux-users mailing list - http://linux-sxs.org/mailman/listinfo/linux-users Subscribe/Unsubscribe info, Archives,and Digests are located at the above URL.
Re: ipchains rule question: Destination ip
On Tue, 9 Jul 2002 02:32:29 -0400 begin Joel Hammer [EMAIL PROTECTED] spewed forth: It has been so long since I set up my firewall I have forgotten why I did this, so : Here are two typical rules from my firewall (ipchains). Note that with one, the target ip is 0.0.0.0, and with the other the target is 68.36.44.105, which is the ip of the machine running the firewall. eth1 is the external NIC facing the cable modem. target tosa tosx ifname source destination ports ACCEPT udp 0xFF 0x00 eth1 198.82.161.227 0.0.0.0 * - 123 ACCEPT udp 0xFF 0x00 eth1 198.82.162.213 68.36.44.105 * - 123 I have used 68.36.44.105 in a number of destinations in my ipchain rules instead of 0.0.0.0, as noted above. As far as I can see, these rules are equivalent, since my NIC, which is configured as 68.36.44.105, will not look at packets not addressed to it, at least under ordinary circumstances. The above is your system to Internet on ntp port (123), the next rule is Internet to your system on ntp port. But I really suggest you start looking at iptables instead of this dinosaur. I would like to remove targets such as 68.36.44.105 and substitute 0.0.0.0 for all of them. Can someone suggest why this might not be a good idea? For example, I am wondering what would happen if my NIC were to run in PROMISCUOUS mode ? You're mixing apples and oranges. A NIC in promisc mode may see all the packets on a network, but that does not mean it does anything usefull with them. As for the targets, you can reduce CPU load by switching to iptables. [Sorry, I see no sense entertaining ipchains questions when you should be using iptables for better security and easier rules management] Any insight appreciated, [snip] Ciao, David A. Bandel -- Focus on the dream, not the competition. -- Nemesis Racing Team motto ___ Linux-users mailing list - http://linux-sxs.org/mailman/listinfo/linux-users Subscribe/Unsubscribe info, Archives,and Digests are located at the above URL.
Re: Wireless (802.11) website?
If you just want your Linux box to be wireless, all you need is a wireless access point sitting on a shelf somewhere and connected to your LAN. If it is a Linksys model, you config it via browser. Think of it as a hub with no wires. Er, actually 1 wire, the one connecting to the LAN that gets the wireless 'puters out to the big wide world. But in any case, no O/S issues. BTW, pick the location carefully. Once the signal starts passing through walls, it goes to nothing in a hurry. Installed a setup last week in an Attorney's house. Pretty big house prolly 4000+ square feet. With the access point/router in the geographic center of the house, Signal was approaching unusable at both ends of house. This particular AP/Rtr connects directly to the DSL and handles the PPPoE for DSL as well as NAT, DHCP and all the wireless stuff. It will also do VPN. My attorney friend bragged later that he could surf the net on his laptop while sitting on the throne. You then need a USB, PCI or PCcard wireless NIC connected to the roving Linux box. Like any NIC, of course, you need a module/driver. I'm told plenty of them work, but I can't say that for sure. LinkSys usually gives Linux setup info for their devices. Michael On Monday 08 July 2002 10:12 pm, Net Llama! wrote: i guess i'm showing my ignorance. so a base-station/access-point is basically an embedded device that doesn't need an OS based driver to work? i guess i need wireless for dumbies, cause i don't fully understand how it all comes together. Michael Hipp wrote: I'm not sure what sort of compatibility issue there could be with base stations (I'm assuming base station = access point). The various PCI, USB and PCcards would more likely pose problems. http://www.linksys.com has some pretty good data here and there. They even acknowledge the existence of Linux. I've used their wireless gear without problems, but not all of it in all configurations. Michael On Monday 08 July 2002 09:49 pm, Net Llama! wrote: Does anyone know of a good website that shows what kind of wireless gear works with linux? I'm more concerned with the base stations than anything else. thanks! ___ Linux-users mailing list - http://linux-sxs.org/mailman/listinfo/linux-users Subscribe/Unsubscribe info, Archives,and Digests are located at the above URL. ___ Linux-users mailing list - http://linux-sxs.org/mailman/listinfo/linux-users Subscribe/Unsubscribe info, Archives,and Digests are located at the above URL.
Re: Wireless (802.11) website?
On Mon, 8 Jul 2002, David A. Bandel wrote: On Mon, 08 Jul 2002 19:49:42 -0700 begin Net Llama! [EMAIL PROTECTED] spewed forth: Does anyone know of a good website that shows what kind of wireless gear works with linux? I'm more concerned with the base stations than anything else. thanks! What do you need? If you need to run in Master, Repeater, or Secondary modes, you're out of luck (for the moment). I have a couple of wireless networks running using Linux as the base station, repeater (router), and access point by using ad-hoc mode. I use WEP and iptables. here's what i'm envisioning: [INTERNET] - {DSL} - [Freesco Router] - [10pt hub] - - - / multipled computers on my network + WiFi access point So, am i smoking the good stuff, or is this doable? -- ~~ Lonni J Friedman[EMAIL PROTECTED] Linux Step-by-step TyGeMo http://netllama.ipfox.com ___ Linux-users mailing list - http://linux-sxs.org/mailman/listinfo/linux-users Subscribe/Unsubscribe info, Archives,and Digests are located at the above URL.
Re: Wireless (802.11) website?
On Mon, 8 Jul 2002, David A. Bandel wrote: On Mon, 08 Jul 2002 20:12:14 -0700 begin Net Llama! [EMAIL PROTECTED] spewed forth: i guess i'm showing my ignorance. so a base-station/access-point is basically an embedded device that doesn't need an OS based driver to work? i guess i need wireless for dumbies, cause i don't fully understand how it all comes together. commercial access points cannot be used as anything but that, they can't be used as Master or Repeater stations. It has to do with proprietary code in the cards, and the big boys don't want anyone to muck with their gravy trains. In a linux box, however, a wireless card in ad-hoc mode is basically an ethernet card. You do need to understand radio signals and how they work, fresnell zones, and more, but that's not hard either. Tell me what you need, I'll give you more than you've ever wanted to know. OK, what i attempted to diagram in my previous email was, that i'm getting DSL activated this Friday at home. My grand plan (excluding the WiFi stuff) is to run a Freesco box box that has 2 NICs, one plugged directly into the DSL router that the DSL provider gives me, and then the other plugged into a 10 port hub (yes, i know switches are better, but this is all i have on hand, and all i can afford right now). I've got 2 linux boxes that my wife I use, plus 2 laptops (also linux). everything is a static (10.x.x.x) IP, and will have the Freesco box as its gateway to the internet. Now my vision for wireless is to get 1 or 2 wireless cards for the laptops, and a base-station/access-point. Plug the access-point into the hub, point it to the Freesco box as the gateway (as i'm already doing), and then get the laptops online anywhere in my house. So, is this possible, or am i completely misunderstanding what wireless can do for me? -- ~~ Lonni J Friedman[EMAIL PROTECTED] Linux Step-by-step TyGeMo http://netllama.ipfox.com ___ Linux-users mailing list - http://linux-sxs.org/mailman/listinfo/linux-users Subscribe/Unsubscribe info, Archives,and Digests are located at the above URL.
Re: Wireless (802.11) website?
On Tuesday 09 July 2002 07:54 am, Net Llama! wrote: On Mon, 8 Jul 2002, David A. Bandel wrote: On Mon, 08 Jul 2002 20:12:14 -0700 begin Net Llama! [EMAIL PROTECTED] spewed forth: i guess i'm showing my ignorance. so a base-station/access-point is basically an embedded device that doesn't need an OS based driver to work? i guess i need wireless for dumbies, cause i don't fully understand how it all comes together. commercial access points cannot be used as anything but that, they can't be used as Master or Repeater stations. It has to do with proprietary code in the cards, and the big boys don't want anyone to muck with their gravy trains. In a linux box, however, a wireless card in ad-hoc mode is basically an ethernet card. You do need to understand radio signals and how they work, fresnell zones, and more, but that's not hard either. Tell me what you need, I'll give you more than you've ever wanted to know. OK, what i attempted to diagram in my previous email was, that i'm getting DSL activated this Friday at home. My grand plan (excluding the WiFi stuff) is to run a Freesco box box that has 2 NICs, one plugged directly into the DSL router that the DSL provider gives me, and then the other plugged into a 10 port hub (yes, i know switches are better, but this is all i have on hand, and all i can afford right now). I've got 2 linux boxes that my wife I use, plus 2 laptops (also linux). everything is a static (10.x.x.x) IP, and will have the Freesco box as its gateway to the internet. Now my vision for wireless is to get 1 or 2 wireless cards for the laptops, and a base-station/access-point. Plug the access-point into the hub, point it to the Freesco box as the gateway (as i'm already doing), and then get the laptops online anywhere in my house. So, is this possible, or am i completely misunderstanding what wireless can do for me? You got it right. Just find wireless NICs that you can get working under Linux. The base-station could care less that the router and wireless clients are running Linux or anything else. ___ Linux-users mailing list - http://linux-sxs.org/mailman/listinfo/linux-users Subscribe/Unsubscribe info, Archives,and Digests are located at the above URL.
Re: have a compile problem
On Tue, 9 Jul 2002, Keith Antoine wrote: On Tue, 9 Jul 2002 12:52, Net Llama! wrote: Run ldconfig -v | grep whatever_lib_you_need and see if it appears in the output. If it appears then the problem is not the dynamic loader, its the RPM, or whatever you're trying to build/install. Well that finds the files fine, so its the tarballs and src rpms that are at fault. It seems impossible that it would stuff up so many install, i.e Avifile, Mjpegtools, imagemagick and mplayer. It must be something else that is at fault on my OS. But what! I've built just about all of that stuff without too much grief. So, odds are your system is putting libraries in very non-standard locations that the RPMs aren't finding. So, let's take this one package at a time (avifile, mjpegtools etc). Provide the errors that you're seeing, and we can work from there. -- ~~ Lonni J Friedman[EMAIL PROTECTED] Linux Step-by-step TyGeMo http://netllama.ipfox.com ___ Linux-users mailing list - http://linux-sxs.org/mailman/listinfo/linux-users Subscribe/Unsubscribe info, Archives,and Digests are located at the above URL.
Web Filtering
Regards, Wil McGilvery Manager, Digital Media Lynch Technologies Inc. 416-744-7191 1-888-622-3729 416-744-0406 FAX www.lynchdigital.com I am looking at preventing the downloading of executables, etc through the internet and I am investigating DansGuardian as a possible solution. Does anyone else have experience in this area? Thanks, Wil ___ Linux-users mailing list - http://linux-sxs.org/mailman/listinfo/linux-users Subscribe/Unsubscribe info, Archives,and Digests are located at the above URL.
Re: Web Filtering
On Tue, 9 Jul 2002, Wil McGilvery wrote: I am looking at preventing the downloading of executables, etc through the internet and I am investigating DansGuardian as a possible solution. Does anyone else have experience in this area? Thanks, Can you clarify what you're trying to do here? You want to stop desktop users from downloading executables? I've never heard of DansGuardian however i kinda doubt that there is any perfect solution since an executable is nothing more than a permissions bit on a file. -- ~~ Lonni J Friedman[EMAIL PROTECTED] Linux Step-by-step TyGeMo http://netllama.ipfox.com ___ Linux-users mailing list - http://linux-sxs.org/mailman/listinfo/linux-users Subscribe/Unsubscribe info, Archives,and Digests are located at the above URL.
Re: inittab question
Thanks, David. I thought I was losing my Linmarbles... On Mon, 8 Jul 2002 22:26:55 -0500 David A. Bandel [EMAIL PROTECTED] wrote: No. It would have to be something like: 11:2345:respawn:/usr/bin/tail -f /var/log/messages|/some/program /dev/tty11 2/dev/null ___ Linux-users mailing list - http://linux-sxs.org/mailman/listinfo/linux-users Subscribe/Unsubscribe info, Archives,and Digests are located at the above URL.
Re: Wireless (802.11) website?
On Tue, 9 Jul 2002 08:54:57 -0400 (EDT) begin Net Llama! [EMAIL PROTECTED] spewed forth: On Mon, 8 Jul 2002, David A. Bandel wrote: On Mon, 08 Jul 2002 20:12:14 -0700 begin Net Llama! [EMAIL PROTECTED] spewed forth: i guess i'm showing my ignorance. so a base-station/access-point is basically an embedded device that doesn't need an OS based driver to work? i guess i need wireless for dumbies, cause i don't fully understand how it all comes together. commercial access points cannot be used as anything but that, they can't be used as Master or Repeater stations. It has to do with proprietary code in the cards, and the big boys don't want anyone to muck with their gravy trains. In a linux box, however, a wireless card in ad-hoc mode is basically an ethernet card. You do need to understand radio signals and how they work, fresnell zones, and more, but that's not hard either. Tell me what you need, I'll give you more than you've ever wanted to know. OK, what i attempted to diagram in my previous email was, that i'm getting DSL activated this Friday at home. My grand plan (excluding the WiFi stuff) is to run a Freesco box box that has 2 NICs, one plugged directly into the DSL router that the DSL provider gives me, and then the other plugged into a 10 port hub (yes, i know switches are better, but this is all i have on hand, and all i can afford right now). I've got 2 linux boxes that my wife I use, plus 2 laptops (also linux). everything is a static (10.x.x.x) IP, and will have the Freesco box as its gateway to the internet. Now my vision for wireless is to get 1 or 2 wireless cards for the laptops, and a base-station/access-point. Plug the access-point into the hub, point it to the Freesco box as the gateway (as i'm already doing), and then get the laptops online anywhere in my house. So, is this possible, or am i completely misunderstanding what wireless can do for me? My suggestion for you is the following: forget the access point, it's an unnecessary expense. In one system that's always on (I suppose, but don't know, that it could be the freesco box), put a PCI-PCMCIA bridge card (I recommend one with the Ricoh chipset) and a wireless card. Spend the money you saved on the access point to buy something like the Orinoco Extender antenna (works with Orinoco/Agere cards, whatever card you use you'll need a compatible connector for the card). Place the extender antenna at approx eye-level (when you're standing). Install WIFI cards in your laptops. Depending on your distance from the desktop, and the geography of your house, you may need small antennas for the laptops. The WIFI network will, of course, be a different network than your desktops, so make sure your routing is correct if you need to talk to your desktops. On WIFI cards, antennas, and wireless: Most current WIFI cards are 50mW in power with no antenna. An antenna effectively increases the power for both sending and receiving. Outdoors, you can easily go 1/2 mile without antennas. Newer cars w/ 100mW and even 200mW can go to almost a mile. An antenna extends the sensitivity and range. Wireless is LOS (line of site). It will pass through glass, but not solid objects. It will work in your house because for the most part you'll be inside the ground plane (fresnell zone). An antenna, particularly one place up high, increases the ground plane (which size is based on antenna height and output power). So while the signal can't see through walls, it can travel around them if the walls are within the ground plane. With overlapping ground planes, you'll always have connectivity despite the LOS limitations. On amplifiers: Some folks (often HAM operators) think amps will increase distance through increased power. While this is true, you run the risk of overmodulating stations closer in. WIFI works on SNR (signal to noise ratio). Amps boost both, signal and noise. They do little to change the SNR very much. Imagine you get 50 e-mails a day, 10 of which are important. Your SNR is -.20. This is good (actual WIFI calcs are much more complicated, with 93/93 being perfect). You can effectively process 100 e-mails per day, but no more (limitation on your time). Suddenly, you find yourself getting 500 messages per day, of which 100 are important. While the SNR is the same, you'll probably never see any of the 100 important messages because you're drowning in the 400 spams. Same principal applies to amp'd signals. What haven't I covered? Lots. How antennas (typically 3dbi to 24dbi) boost effective power (power is measured at the antenna). Signal polarity (must say a word or two here). Signal polarity: If you use something like the Orinoco range extender antennas, you'll see that they are similar to an omni. That is, they have a radiation pattern, 360 degrees around, but probably vertically about 22 degrees (except within the ground plane). However, you'll
Re: Sharing Kernels Revisited
I know. This is, I suppose, a philosophical difference. Most Linux gurus recommend running customized kernels. I've played in that arena and feel comfortable there, but still hold to several benefits of running canned kernels. The main benefit is upgradeability... If there are security issues which require a new kernel, I MUST rebuild the kernel(s). Even if I roll my own into RPM's and can take that upgraded kernel and plunk it on all my machines, I still MUST rebuild the kernel. Beyond that, it becomes a support issue whereby no one can quickly know what my kernel is like. If I mail you guys or call support, I have to explain what my kernel has configured and then there is the doubts of my correctness that I have to overcome. If I can say Stock ANYTHING, I'm far better off, because I am relatively guaranteed that someone on this list or in the support team HAS and DOES run that kernel. I see benefits both ways, but in my attempt to remain corporately responsible I must tip my hat to canned kernels. On Mon, 8 Jul 2002 17:14:35 -0400 (EDT) Net Llama! [EMAIL PROTECTED] wrote: If you're going to be playing these slick games with kernels, it would prolly be better if you built your own, so that you are sure what is in it. Otherwise you could end up introducing all kinds of instabilities to the system if you're running a kernel on it that didn't come with it. ___ Linux-users mailing list - http://linux-sxs.org/mailman/listinfo/linux-users Subscribe/Unsubscribe info, Archives,and Digests are located at the above URL.
Re: [Fwd: Re: DVD-XINE]
AFAIK this probably has to do with Xine's public declaration that they do not support the libdvdcss at this time due to its questionable legal status. Why doesn't someone just rewrite it and be done with it? The secret concepts are blown. You can't outlaw the use of concepts, especially if there are 5 or 10 different implementations of it. It would seem that one could run Xine without the NAV plugin and use only xine-lib and xine-ui. (I believe) This would use the standard builtin Xine DVD subsystem. The following packages give the NAV subsystem, which is often considered better than the built-in one: libdvdread libdvdnav xine-dvdnav According to the README file for libdvdread, it currently uses libdl to dynamically probe for libdvdcss at runtime. So if you have it, congratulations, if not, you still can use the new subsystem if you like. Look for COL3.1.x rpms to be linked to from the SxS site coming soon. (Due to potential legal issues, all but the libdvdcss packages will be included. If use of libdvdcss is legal for you, pull it from the videolan site and buld from source-it should still work) Matt On Tue, 9 Jul 2002 16:27:18 +1000 Keith Antoine [EMAIL PROTECTED] wrote: It was not the case in version pre .10 were I was able to run a dvd by accessing the dvd button, whereas now one uses the 'nav' button. ___ Linux-users mailing list - http://linux-sxs.org/mailman/listinfo/linux-users Subscribe/Unsubscribe info, Archives,and Digests are located at the above URL.
Re: have a compile problem
Have you updated your library cache by executing ldconfig since installing any new required packages? On Tue, 9 Jul 2002 11:39:54 +1000 Keith Antoine [EMAIL PROTECTED] wrote: This has reared its head recently whereby dependecy libs are not being found by a program that is being installed. The libraries do exist on the system and should be in the PATH, so why is it that they are not being found. This is not limitted to any particular lib, however some are found, it seems inconsistent. Ldconfig being called sometimes is a waste of time: ld.so.conf has these entries in: /usr/X11R6/lib /opt/kde/lib /opt/kde2/lib /opt/kde3/lib /usr/lib/qt2/lib /usr/lib/qt3/lib/ /opt/volution/lib /usr/lib/ /usr/local/lib/ /usr/local/bin /usr/bin /opt/kde/bin For instance I have tried installed the rpm both it and a src rpm which do not fine the following libaviplay-0.7.so.0 libesd.so.0 libpng.so.2 libSDL-1.2.so.0 If I do a locate on the system it comes back with : /usr/local/lib/libaviplay-0.7.so.0 /usr/local/lib/libaviplay-0.7.so.0.0.3 /usr/local/lib/libaviplay-0.7.so.0.0.6 /usr/local/lib/libaviplay.la /usr/local/lib/libaviplay.so /usr/local/lib/libaviplay-0.7.so.0.0.7 /usr/local/lib/libaviplay-0.7.so.0.0.8 /lib/libpng.a /lib/libpng.so /lib/libpng.so.2 /lib/libpng.so.2.1.0.8 /usr/lib/libSDL-1.1.so.0 /usr/lib/libSDL-1.1.so.0.5.3 /usr/lib/libSDL.so /usr/lib/libSDL-1.2.so.0 /usr/lib/libSDL-1.2.so.0.0.4 /usr/lib/libSDL.a /usr/lib/libSDLmain.a /lib/libSDL-1.1.so.0 /lib/libSDL-1.2.so.0 /lib/libSDL-1.2.so.0.0.4 /lib/libSDL.a /lib/libSDL.so /lib/libSDLmain.a /usr/lib/libesd.so.0 /usr/lib/libesd.so.0.2.8 /usr/lib/libesddsp.so.0 /usr/lib/libesddsp.so.0.2.8 /lib/libesd.so.0 /lib/libesd.so.0.2.8 /lib/libesddsp.so.0 /lib/libesddsp.so.0.2.8 Most seem to occur in 2 seperate areas, but /lib should be in the PATH and they should be found. This is occuring with Office beta install from a tarball, its also occurs as I said with src rpms and as dependencies with rpms. -- Keith Antoine (GANDALF) aka 'skippy' 18 Arkana St, The Gap, Queensland 4061 Australia PH:61733002161 Retired Geriatric, Sometime Electronics Engineer, Knowall, Brain in storage ___ Linux-users mailing list - http://linux-sxs.org/mailman/listinfo/linux-users Subscribe/Unsubscribe info, Archives,and Digests are located at the above URL. ___ Linux-users mailing list - http://linux-sxs.org/mailman/listinfo/linux-users Subscribe/Unsubscribe info, Archives,and Digests are located at the above URL.
Re: Winders or Samba problem..
First off, this is a bit confusing. On Mon, 8 Jul 2002 19:54:44 -0400 William F. Day [EMAIL PROTECTED] wrote: ok, lets go this route... I ran COL eD2.4 for about a year with frequent updates to samba for security patches etc. That was the only thing that changed till about 3 months ago, including no clean installs of winders comps, everything was just dandy. Did a booboo on the COL box that prolly would have either required a major amount of work to fix, or a miracle.. Installed Trustix Secure Linux v1.5 on the box after a hardware upgrade. Using my confs for various item, i.e. samba, dhcpd... I activated all items, nothing gave me a fit, everything worked for three months. my latest backup of confs of course happened at the beginning of the week prior to noticing they were missing in NN. What? What is NN? Do you have any other backups? I also did an automated update for trustix using their swup --upgrade about a 2 or 3 days prior to noticing they were gone. This is not on just one comp, but network wide. I of course copied out my backup smb.conf over the new one and restarted samba and nmbd with init scripts. This did nothing. What is this? swup? And what did it do? Did it change anything NON-SAMBA related? If so, what? If there's a log, please include it. I have since removed all network components on each comp and reinstalled. I have made double and triple sure that port all ports are open internally. My lan has unrestricted access internally. IPChains restrictions outbound, including netbios etc. This is fuzzy. Please explain in more detail. If you feel comfortable, email me your ruleset off-list. All systems are pingable via IP and name but shares are not viewable. All current mapped drives work as though they are on the harddisk. I have tried adding new users to winders and of course linux/samba as well and log into winders with the new users and a clean network setup. Nothing. Nothing, as in no changes to Network Neighborhood, right? As for WINS, no all comps are set to use DHCP for wins of course all are pointed at the linuxbox for dhcp. All are assigned via mac addies. Im almost certain this is not a samba problem as nothing has changed on it, it seems to be somethign with winders. I have all the boxes current on their security patches etc... I don't think you understand what this means. Using DHCP for WINS means that your DHCP server hands out the information to contact the WINS server, not that the workstation will USE the DHCP server as a WINS server. yes, start run \\servername to each box produces the available shares.. including to the samba server... Good. Also, please send me some sort of diagram of where these boxes sit with regards to the firewall(s). Thanks, Matt ___ Linux-users mailing list - http://linux-sxs.org/mailman/listinfo/linux-users Subscribe/Unsubscribe info, Archives,and Digests are located at the above URL.
RE: Web Filtering
Yes I am trying to limit what people can download for three reasons. 1) We have a training room with internet access. I wish to allow browsing but not downloading. Because of the programs we are training people on; it is hard to limit their permissions on the pc. 2) I also have the usual people who insist on downloading screen savers and other programs that drive me nuts. 3) I have customers that won't allow internet access to their employees because of reason number 2. DansGuardian is located at http://dansguardian.org/?page=introduction In short it does say it can filter by mime type and file extension. Any other comments or suggestions are greatly appreciated. Regards, Wil McGilvery Manager, Digital Media Lynch Technologies Inc. 416-744-7191 1-888-622-3729 416-744-0406 FAX www.lynchdigital.com -Original Message- From: Net Llama! [mailto:[EMAIL PROTECTED]] Sent: Tuesday, July 09, 2002 9:50 AM To: [EMAIL PROTECTED] Subject: Re: Web Filtering On Tue, 9 Jul 2002, Wil McGilvery wrote: I am looking at preventing the downloading of executables, etc through the internet and I am investigating DansGuardian as a possible solution. Does anyone else have experience in this area? Thanks, Can you clarify what you're trying to do here? You want to stop desktop users from downloading executables? I've never heard of DansGuardian however i kinda doubt that there is any perfect solution since an executable is nothing more than a permissions bit on a file. -- ~~ Lonni J Friedman[EMAIL PROTECTED] Linux Step-by-step TyGeMo http://netllama.ipfox.com ___ Linux-users mailing list - http://linux-sxs.org/mailman/listinfo/linux-users Subscribe/Unsubscribe info, Archives,and Digests are located at the above URL. ___ Linux-users mailing list - http://linux-sxs.org/mailman/listinfo/linux-users Subscribe/Unsubscribe info, Archives,and Digests are located at the above URL.
Re: Wireless (802.11) website?
I'm not sure what you mean... There is a prism2 driver out there for using your prism2 NIC as a base-station... This includes DLink DWL650's, and many more. Check out the http://hostap.epitest.fi/ site for more info. If they DON'T list what cards use this chipset, check out the http://www.linux-wlan.org site as I'm sure they have a good list. If you are looking to BUY a good WAP, take your pick... Anything that supports 802.11b will work. I'm not sure of the status of Linux drivers for any of the 802.11a cards, but if you have one of them, any 802.11a WAP will work as well. On Mon, 08 Jul 2002 19:49:42 -0700 Net Llama! [EMAIL PROTECTED] wrote: Does anyone know of a good website that shows what kind of wireless gear works with linux? I'm more concerned with the base stations than anything else. thanks! ___ Linux-users mailing list - http://linux-sxs.org/mailman/listinfo/linux-users Subscribe/Unsubscribe info, Archives,and Digests are located at the above URL.
Re: Wireless (802.11) website?
Three that I personally use (and use for AirSnort) are: D-Link DWL-650 (prism2 based card) Lucent Orinoco Cisco Aironet (340? 350?) On Tue, 9 Jul 2002 07:10:27 -0500 Michael Hipp [EMAIL PROTECTED] wrote: You then need a USB, PCI or PCcard wireless NIC connected to the roving Linux box. Like any NIC, of course, you need a module/driver. I'm told plenty of them work, but I can't say that for sure. LinkSys usually gives Linux setup info for their devices. ___ Linux-users mailing list - http://linux-sxs.org/mailman/listinfo/linux-users Subscribe/Unsubscribe info, Archives,and Digests are located at the above URL.
Re: Wireless (802.11) website?
You wanna write a book about it? I'm learning new stuff, and there's experience in your words which speaks volumes. On Tue, 9 Jul 2002 08:52:57 -0500 David A. Bandel [EMAIL PROTECTED] wrote: On Tue, 9 Jul 2002 08:54:57 -0400 (EDT) begin Net Llama! [EMAIL PROTECTED] spewed forth: On Mon, 8 Jul 2002, David A. Bandel wrote: On Mon, 08 Jul 2002 20:12:14 -0700 begin Net Llama! [EMAIL PROTECTED] spewed forth: i guess i'm showing my ignorance. so a base-station/access-point is basically an embedded device that doesn't need an OS based driver to work? i guess i need wireless for dumbies, cause i don't fully understand how it all comes together. commercial access points cannot be used as anything but that, they can't be used as Master or Repeater stations. It has to do with proprietary code in the cards, and the big boys don't want anyone to muck with their gravy trains. In a linux box, however, a wireless card in ad-hoc mode is basically an ethernet card. You do need to understand radio signals and how they work, fresnell zones, and more, but that's not hard either. Tell me what you need, I'll give you more than you've ever wanted to know. OK, what i attempted to diagram in my previous email was, that i'm getting DSL activated this Friday at home. My grand plan (excluding the WiFi stuff) is to run a Freesco box box that has 2 NICs, one plugged directly into the DSL router that the DSL provider gives me, and then the other plugged into a 10 port hub (yes, i know switches are better, but this is all i have on hand, and all i can afford right now). I've got 2 linux boxes that my wife I use, plus 2 laptops (also linux). everything is a static (10.x.x.x) IP, and will have the Freesco box as its gateway to the internet. Now my vision for wireless is to get 1 or 2 wireless cards for the laptops, and a base-station/access-point. Plug the access-point into the hub, point it to the Freesco box as the gateway (as i'm already doing), and then get the laptops online anywhere in my house. So, is this possible, or am i completely misunderstanding what wireless can do for me? My suggestion for you is the following: forget the access point, it's an unnecessary expense. In one system that's always on (I suppose, but don't know, that it could be the freesco box), put a PCI-PCMCIA bridge card (I recommend one with the Ricoh chipset) and a wireless card. Spend the money you saved on the access point to buy something like the Orinoco Extender antenna (works with Orinoco/Agere cards, whatever card you use you'll need a compatible connector for the card). Place the extender antenna at approx eye-level(when you're standing). Install WIFI cards in your laptops. Depending on your distance from the desktop, and the geography of your house, you may need small antennas for the laptops. The WIFI network will, of course, be a different network than your desktops, so make sure your routing is correct if you need to talk to your desktops. On WIFI cards, antennas, and wireless: Most current WIFI cards are 50mW in power with no antenna. An antenna effectively increases the power for both sending and receiving. Outdoors, you can easily go 1/2 mile without antennas. Newer cars w/ 100mW and even 200mW can go to almost a mile. An antenna extends the sensitivity and range. Wireless is LOS (line of site). It will pass through glass, but not solid objects. It will work in your house because for the most part you'll be inside the ground plane (fresnell zone). An antenna, particularly one place up high, increases the ground plane (which size is based on antenna height and output power). So while the signal can't see through walls, it can travel around them if the walls are within the ground plane. With overlapping ground planes, you'll always have connectivity despite the LOS limitations. On amplifiers: Some folks (often HAM operators) think amps will increase distance through increased power. While this is true, you run the risk of overmodulating stations closer in. WIFI works on SNR (signal to noise ratio). Amps boost both, signal and noise. They do little to change the SNR very much. Imagine you get 50 e-mails a day, 10 of which are important. Your SNR is -.20. This is good (actual WIFI calcs are much more complicated, with 93/93 being perfect). You can effectively process 100 e-mails per day, but no more (limitation on your time). Suddenly, you find yourself getting 500 messages per day, of which 100 are important. While the SNR is the same, you'll probably never see any of the 100 important messages because you're drowning in the 400 spams. Same principal applies to amp'd signals. What haven't I covered? Lots. How antennas (typically 3dbi to 24dbi) boost effective power (power is measured at the antenna). Signal polarity(must say a word or two
Re: ipchains rule question: Destination ip
On Tue, 9 Jul 2002 06:34:32 -0500 David A. Bandel [EMAIL PROTECTED] wrote: On Tue, 9 Jul 2002 02:32:29 -0400 begin Joel Hammer [EMAIL PROTECTED] spewed forth: It has been so long since I set up my firewall I have forgotten why I did this, so : Here are two typical rules from my firewall (ipchains). Note that with one, the target ip is 0.0.0.0, and with the other the target is 68.36.44.105, which is the ip of the machine running the firewall. eth1 is the external NIC facing the cable modem. target tosa tosx ifname source destination ports ACCEPT udp 0xFF 0x00 eth1 198.82.161.227 0.0.0.0 * - 123 ACCEPT udp 0xFF 0x00 eth1 198.82.162.213 68.36.44.105 * - 123 I have used 68.36.44.105 in a number of destinations in my ipchain rules instead of 0.0.0.0, as noted above. As far as I can see, these rules are equivalent, since my NIC, which is configured as 68.36.44.105, will not look at packets not addressed to it, at least under ordinary circumstances. The above is your system to Internet on ntp port (123), the next rule isInternet to your system on ntp port. Not quite. The first one your system to Anywhere for NTP. The second rule is another machine to the outside of the firewall on NTP and has no business being there unless your firewall is going to provide NTP to this other machine. But I really suggest you start looking at iptables instead of this dinosaur. This I totally agree with. If you MUST stick with IPChains, you may consider designating a box to be the NTP server for the inside. Then your rules would look like: udp NTPBOX:123 - 0.0.0.0:123 udp 0.0.0.0:123 - NTPBOX:123 Then everyone else should be able to talk to the internal box. But really, what's the point of a firewall if you're not going to use connection-tracking which IPChains doesn't give you? Use IPTables. ___ Linux-users mailing list - http://linux-sxs.org/mailman/listinfo/linux-users Subscribe/Unsubscribe info, Archives,and Digests are located at the above URL.
Re: DVD-XINE
On Monday 08 Jul 2002 17:38, Matthew Carpenter wrote: Another Q: Do you know what a dvd_raw_device is and how it differs from a dvd_device? Thanks, Matt ___ Linux-users mailing list - http://linux-sxs.org/mailman/listinfo/linux-users Subscribe/Unsubscribe info, Archives,and Digests are located at the above URL. $ ll /dev |grep dvd lrwxrwxrwx1 root root4 Jul 2 01:50 dvd - scd0 lrwxrwxrwx1 root root8 Jul 2 01:50 rdvd - raw/raw2 Xine apparently likes this, I use it but I've never tried without it, so I don't know the performance benefits. -- Mandrake Linux release 8.2 (Bluebird) for i586. Linux user 275590. AMD Athlon(tm) XP 1600+ 512MB Kernel: 2.4.18-6mdk-pnr-win4lin KDE: 3.0.1 Qt: 3.0.4 up 1 hour 38 minutes. ~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~ ___ Linux-users mailing list - http://linux-sxs.org/mailman/listinfo/linux-users Subscribe/Unsubscribe info, Archives,and Digests are located at the above URL.
Re: Web Filtering
Wil McGilvery wrote: Yes I am trying to limit what people can download for three reasons. 1) We have a training room with internet access. I wish to allow browsing but not downloading. Because of the programs we are training people on; it is hard to limit their permissions on the pc. 2) I also have the usual people who insist on downloading screen savers and other programs that drive me nuts. 3) I have customers that won't allow internet access to their employees because of reason number 2. DansGuardian is located at http://dansguardian.org/?page=introduction In short it does say it can filter by mime type and file extension. Any other comments or suggestions are greatly appreciated. Wil- Well after reading through the site.. it *looks* like it will do what you want.. I assume these are windoze boxes you are trying to secure? If so, and Im sorry Im fuzzy on the details, there is some software that scans the system on bootup, and upon shutting it down, restores said machine to is bootup state. so any software added or changes made, like switching the background image.. are taken away on shutdown.The thing is password protected so users cant just remove it.. I suppose you could delete it or something though. These were NT boxes too IIRC. I can't for the life of me remember what its called though. When I was going through my cisco cert at the local junior college they had it installed. I'll see if I can't find the name of it.. but that could be a good option also. hth- Jim -- quattro... the unfair advantage... ___ Linux-users mailing list - http://linux-sxs.org/mailman/listinfo/linux-users Subscribe/Unsubscribe info, Archives,and Digests are located at the above URL.
Re: ipchains rule question: Destination ip
On Tue, 9 Jul 2002 11:08:23 -0400 begin Matthew Carpenter [EMAIL PROTECTED] spewed forth: [snip] The above is your system to Internet on ntp port (123), the next rule isInternet to your system on ntp port. Not quite. The first one your system to Anywhere for NTP. The second rule is another machine to the outside of the firewall on NTP and has no business being there unless your firewall is going to provide NTP to this other machine. Umm. You said the same thing I did, so how can it be not quite? I just didn't judge the sagacity of allowing the world to use him as an NTP server (maybe he _wants_ to). I have a system that I and my customers (perhaps 150 or so systems) use as an NTP server (and it's slaved off time.nist.gov). He didn't say if that was also his case. Ciao, David A. Bandel -- Focus on the dream, not the competition. -- Nemesis Racing Team motto ___ Linux-users mailing list - http://linux-sxs.org/mailman/listinfo/linux-users Subscribe/Unsubscribe info, Archives,and Digests are located at the above URL.
Re: Sharing Kernels Revisited
On Tue, 9 Jul 2002 10:03:46 -0400 begin Matthew Carpenter [EMAIL PROTECTED] spewed forth: [snip] I see benefits both ways, but in my attempt to remain corporately responsible I must tip my hat to canned kernels. canned kernels are great if: you don't run a specialized system (i.e., firewall), you don't care about running a bloated kernel (i.e., desktop system). But I dare say, while Caldera and all others try to include the world in modules, they often fall short in niche areas and won't have the latest drivers (like the wireless drivers for example). Ciao, David A. Bandel -- Focus on the dream, not the competition. -- Nemesis Racing Team motto ___ Linux-users mailing list - http://linux-sxs.org/mailman/listinfo/linux-users Subscribe/Unsubscribe info, Archives,and Digests are located at the above URL.
Re: Sharing Kernels Revisited
2.4.13 (COLW3.1.1) provides drivers which handle the DLink, Orinoco, and Cisco wireless cards out of the box just fine. I'm not saying that there aren't drawbacks to both approaches, but the approach I believe most fitting to mainstream server installs (at least in Corporate America) is canned kernels. Perhaps in smaller companies or other countries the balance lies somewhere else. On Tue, 9 Jul 2002 10:57:13 -0500 David A. Bandel [EMAIL PROTECTED] wrote: On Tue, 9 Jul 2002 10:03:46 -0400 begin Matthew Carpenter [EMAIL PROTECTED] spewed forth: [snip] I see benefits both ways, but in my attempt to remain corporately responsible I must tip my hat to canned kernels. canned kernels are great if: you don't run a specialized system (i.e., firewall), you don't care about running a bloated kernel (i.e., desktop system). But I dare say, while Caldera and all others try to include the world in modules, they often fall short in niche areas and won't have the latest drivers (like the wireless drivers for example). Ciao, David A. Bandel -- Focus on the dream, not the competition. -- Nemesis Racing Team motto ___ Linux-users mailing list - http://linux-sxs.org/mailman/listinfo/linux-users Subscribe/Unsubscribe info, Archives,and Digests are located at the above URL. ___ Linux-users mailing list - http://linux-sxs.org/mailman/listinfo/linux-users Subscribe/Unsubscribe info, Archives,and Digests are located at the above URL.
Re: ipchains rule question: Destination ip
On Tue, 9 Jul 2002 10:52:41 -0500 David A. Bandel [EMAIL PROTECTED] wrote: On Tue, 9 Jul 2002 11:08:23 -0400 begin Matthew Carpenter [EMAIL PROTECTED] spewed forth: [snip] The above is your system to Internet on ntp port (123), the next rule isInternet to your system on ntp port. Not quite. The first one your system to Anywhere for NTP. The second rule is another machine to the outside of the firewall on NTP and has no business being there unless your firewall is going to provide NTP to this other machine. Umm. You said the same thing I did, so how can it be not quite? I just didn't judge the sagacity of allowing the world to use him as an NTP server (maybe he _wants_ to). I have a system that I and my customers(perhaps 150 or so systems) use as an NTP server (and it's slaved off time.nist.gov). He didn't say if that was also his case. I did not say what you did. If you meant to say it differently, that's not my fault, but you did not say anything clearly. If I were to write rules based on what you said, they would be something like: target tosa tosx ifname source destination ports ACCEPT udp 0xFF 0x00 eth1 198.82.161.227 0.0.0.0 * - 123 ACCEPT udp 0xFF 0x00 eth1 0.0.0.0 198.82.161.227* - 123 but what he gave is: target tosa tosx ifname source destination ports ACCEPT udp 0xFF 0x00 eth1 198.82.161.227 0.0.0.0 * - 123 ACCEPT udp 0xFF 0x00 eth1 198.82.162.213 68.36.44.105 * - 123 (68.36.44.105 being the external IP of the firewall) 198.82.161.227: proxy.cc.vt.edu 198.82.162.213: lennier.cc.vt.edu 68.36.44.105: bgp387816bgs.jersyc01.nj.comcast.net Where are you looking? How does the next rule isInternet to your system on ntp port. fit into this description at all? What I said was WRONG, as I had not done the lookups to figure out that 198.82.x.x were the hosts being synched with I revise my statement to say that (assuming NTP outbound is accepted): rule 1: Internet NTP Server's replies to anywhere controlled by your firewall are accepted. rule 2: Another Internet NTP Servers replies to your Firewall. Rule 1 would work for responses from that server to your network, as long as udp123 outbound is accepted traffic. Rule 2 would work for responses either directly to the firewall or for hosts being MASQ'ed ___ Linux-users mailing list - http://linux-sxs.org/mailman/listinfo/linux-users Subscribe/Unsubscribe info, Archives,and Digests are located at the above URL.
Re: [Fwd: Fw: OTAnyone know of some good r5 admin books]
Kreigh Tomaszewski To: Matt Carpenter/IT/Alticor@Alticor cc: 07/09/2002 Subject: [Fwd: Fw: OTAnyone know of some good r5 admin books] 01:32 PM Using Lotus Notes 4 by Cate Richards (1996 by QUE corp) Lotus Notes and Domino R5 Development Unleased by Deborah Lynd and Steven Kern (2000 by SAMS) and of course the Lotus administrator guides and IBM redbooks. - Forwarded by Kreigh Tomaszewski/IT/Alticor on 07/09/2002 01:29 PM - Kreigh Tomaszewski To: [EMAIL PROTECTED] Kreigh@Tomaszcc: ewski.netSubject: [Fwd: Fw: OTAnyone know of some good r5 admin books] 07/08/2002 06:12 PM Sending to work where I have the books... - Message from Matthew Carpenter [EMAIL PROTECTED] on Mon, 8 Jul 2002 11:25:29 -0400 - To: [EMAIL PROTECTED] Subject: Fw: OTAnyone know of some good r5 admin books Begin forwarded message: Date: Sat, 6 Jul 2002 20:52:41 +1000 From: James McDonald [EMAIL PROTECTED] To: [EMAIL PROTECTED] Subject: OTAnyone know of some good r5 admin books Hi Yall, Have you ever had to become an instant expert.? well I am supposed to be supporting a r5.0.4 notes environment and I was wondering if anyone knows of any good admin books on r5 domino server administration? Thanks -- James McDonald Systems Engineer - Onsite Mincom ___ Linux-users mailing list - http://linux-sxs.org/mailman/listinfo/linux-users Subscribe/Unsubscribe info, Archives,and Digests are located at the above URL. ___ Linux-users mailing list - http://linux-sxs.org/mailman/listinfo/linux-users Subscribe/Unsubscribe info, Archives,and Digests are located at the above URL.
Re: have a compile problem
On Tue, 9 Jul 2002 23:13, Net Llama! wrote: r I've built just about all of that stuff without too much grief. So, odds are your system is putting libraries in very non-standard locations that the RPMs aren't finding. So, let's take this one package at a time (avifile, mjpegtools etc). Provide the errors that you're seeing, and we can work from there. Ok thats fine, many thanks. The problem with this too is that I have also managed to build them in the past, but not now. The system I am using is Caldera 3.1.1 and that in the past was the most likely of all the distros to compile without problems. Its early morning now, and I have to go out so I will post the problems with avilfile as a starter later today. I'll also set a background as to what I as backup and restore of work done. -- Keith Antoine (GANDALF) aka 'skippy' 18 Arkana St, The Gap, Queensland 4061 Australia PH:61733002161 Retired Geriatric, Sometime Electronics Engineer, Knowall, Brain in storage ___ Linux-users mailing list - http://linux-sxs.org/mailman/listinfo/linux-users Subscribe/Unsubscribe info, Archives,and Digests are located at the above URL.
Codeweavers Wine
Is anyone running Codeweavers Wine Preview 6? That is dated April 2002. I have been running Wine for some time running Lotus Notes Client R5. This particular install, running 5.0.10, from March 22nd, looks really good, except when typing an email, I get no feedback when I type more than one letter in the email window. If I type a backspace, I get to see what I typed (minus the character I just deleted). This is on MDK8.1. So I was wondering if anyone else had this problem, if it is a Codeweavers/Wine issue, or a problem with MDK8.1 (it complains about the FreeType versions), or what. Also, has ANYONE figured out how to use the printers? Obviously there's SOME code for using printers/spoolers since the winesetup app has configs for it, but how do I use it!? Thanks! Matt ___ Linux-users mailing list - http://linux-sxs.org/mailman/listinfo/linux-users Subscribe/Unsubscribe info, Archives,and Digests are located at the above URL.
Re: Wireless (802.11) website?
On Tue, 9 Jul 2002, Matthew Carpenter wrote: Three that I personally use (and use for AirSnort) are: D-Link DWL-650 (prism2 based card) Lucent Orinoco Cisco Aironet (340? 350?) A friend tried about a year ago to get a Lucent card to work with AirSnort. At that time it wasn't possible. They must have made quite a bit of progess since then. ___ Linux-users mailing list - http://linux-sxs.org/mailman/listinfo/linux-users Subscribe/Unsubscribe info, Archives,and Digests are located at the above URL.
Re: Wireless (802.11) website?
OK, i've acquired two Cisco (Aironet) 4800 cards. Anyone know if there are any good websites out there that list/catalog publicly accessible WiFi networks? Also, i'm assuming that the basic premise is that the card would just keep trying to acquire an IP from a DHCP server (assuming that i've set it up for DHCP) until it found one? On Tue, 9 Jul 2002, Keith Morse wrote: On Tue, 9 Jul 2002, Matthew Carpenter wrote: Three that I personally use (and use for AirSnort) are: D-Link DWL-650 (prism2 based card) Lucent Orinoco Cisco Aironet (340? 350?) A friend tried about a year ago to get a Lucent card to work with AirSnort. At that time it wasn't possible. They must have made quite a bit of progess since then. ___ Linux-users mailing list - http://linux-sxs.org/mailman/listinfo/linux-users Subscribe/Unsubscribe info, Archives,and Digests are located at the above URL. -- ~~ Lonni J Friedman[EMAIL PROTECTED] Linux Step-by-step TyGeMo http://netllama.ipfox.com ___ Linux-users mailing list - http://linux-sxs.org/mailman/listinfo/linux-users Subscribe/Unsubscribe info, Archives,and Digests are located at the above URL.
RE: Evolution importing Outlook data
-Message d'origine- De : [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]De la part de Net Llama! Envoye : lundi 8 juillet 2002 15:35 A : [EMAIL PROTECTED] Objet : Re: Evolution importing Outlook data I'm fairly certain that netscape uses the mbox format. *** Yes it does. -- Cheers, Zoran. If you find me, send me $HOME. My address is cd ___ Linux-users mailing list - http://linux-sxs.org/mailman/listinfo/linux-users Subscribe/Unsubscribe info, Archives,and Digests are located at the above URL.
dhclient
Is there a stepbystep for dhclient? Joel ___ Linux-users mailing list - http://linux-sxs.org/mailman/listinfo/linux-users Subscribe/Unsubscribe info, Archives,and Digests are located at the above URL.
Re: dhclient
nope. want to write one? Joel Hammer wrote: Is there a stepbystep for dhclient? Joel -- ~ L. Friedman[EMAIL PROTECTED] Linux Step-by-step TyGeMo:http://netllama.ipfox.com 3:50pm up 81 days, 22:37, 2 users, load average: 0.20, 0.19, 0.18 ___ Linux-users mailing list - http://linux-sxs.org/mailman/listinfo/linux-users Subscribe/Unsubscribe info, Archives,and Digests are located at the above URL.
Re: Wireless (802.11) website?
Exactly.. thats how my setup is working, sorta.. my broadband(wireless type dsl) into my tsl server with 2 nics out to a 8pt switch and the access point is plugged with a standard rj45 directly into the switch. Bill Day Linux 2.2.20-1tr i586 8:10pm up 18 days, 10:06, 2 users, load average: 0.00, 0.00, 0.00 - Original Message - From: Michael Hipp [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Tuesday, July 09, 2002 9:19 AM Subject: Re: Wireless (802.11) website? On Tuesday 09 July 2002 07:54 am, Net Llama! wrote: On Mon, 8 Jul 2002, David A. Bandel wrote: On Mon, 08 Jul 2002 20:12:14 -0700 begin Net Llama! [EMAIL PROTECTED] spewed forth: i guess i'm showing my ignorance. so a base-station/access-point is basically an embedded device that doesn't need an OS based driver to work? i guess i need wireless for dumbies, cause i don't fully understand how it all comes together. commercial access points cannot be used as anything but that, they can't be used as Master or Repeater stations. It has to do with proprietary code in the cards, and the big boys don't want anyone to muck with their gravy trains. In a linux box, however, a wireless card in ad-hoc mode is basically an ethernet card. You do need to understand radio signals and how they work, fresnell zones, and more, but that's not hard either. Tell me what you need, I'll give you more than you've ever wanted to know. OK, what i attempted to diagram in my previous email was, that i'm getting DSL activated this Friday at home. My grand plan (excluding the WiFi stuff) is to run a Freesco box box that has 2 NICs, one plugged directly into the DSL router that the DSL provider gives me, and then the other plugged into a 10 port hub (yes, i know switches are better, but this is all i have on hand, and all i can afford right now). I've got 2 linux boxes that my wife I use, plus 2 laptops (also linux). everything is a static (10.x.x.x) IP, and will have the Freesco box as its gateway to the internet. Now my vision for wireless is to get 1 or 2 wireless cards for the laptops, and a base-station/access-point. Plug the access-point into the hub, point it to the Freesco box as the gateway (as i'm already doing), and then get the laptops online anywhere in my house. So, is this possible, or am i completely misunderstanding what wireless can do for me? You got it right. Just find wireless NICs that you can get working under Linux. The base-station could care less that the router and wireless clients are running Linux or anything else. ___ Linux-users mailing list - http://linux-sxs.org/mailman/listinfo/linux-users Subscribe/Unsubscribe info, Archives,and Digests are located at the above URL. --- Outgoing mail is certified Virus Free. Checked by AVG anti-virus system (http://www.grisoft.com). Version: 6.0.373 / Virus Database: 208 - Release Date: 7/1/02 ___ Linux-users mailing list - http://linux-sxs.org/mailman/listinfo/linux-users Subscribe/Unsubscribe info, Archives,and Digests are located at the above URL.
Re: Evolution importing Outlook data
the way I used was to first export the .pst files into outlook Express. I am not using Evolution but I think Evolution must be supporting . dbf format of OE. Check in evolution menus OR help OR there support. - Original Message - From: Zoki [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Monday, July 08, 2002 7:01 AM Subject: RE: Evolution importing Outlook data *** Exporting the data to a file and importing it into Evolution comes to my mind... Do not use Evolution so I cannot help you with the choice of the file formats. Cheers, Zoran. -Message d'origine- De : [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]De la part de Michael Hipp Envoye : dimanche 7 juillet 2002 22:07 A : [EMAIL PROTECTED] Objet : Evolution importing Outlook data There appears to be no way to do it. Ximian published some kludgy workarounds that do only half the job. But I have a client with a 365MB outlook.pst file (email, contacts, tasks, calendar, notes) and I can't get it into Evolution. This is a showstopper piece of missing functionality for Evolution. Any help? ___ Linux-users mailing list - http://linux-sxs.org/mailman/listinfo/linux-users Subscribe/Unsubscribe info, Archives,and Digests are located at the above URL. ___ Linux-users mailing list - http://linux-sxs.org/mailman/listinfo/linux-users Subscribe/Unsubscribe info, Archives,and Digests are located at the above URL.
Re: dhclient
On Tue, 9 Jul 2002 19:41:31 -0400 Joel Hammer [EMAIL PROTECTED] wrote: I thought for sure there would be a howto on dhcp, but I can't find one of those, either. Joel It's a bit dated, but... http://www.tldp.org/HOWTO/mini/DHCP/index.html Bill ___ Linux-users mailing list - http://linux-sxs.org/mailman/listinfo/linux-users Subscribe/Unsubscribe info, Archives,and Digests are located at the above URL.
Re: Wireless (802.11) website?
Search google, wireless war dialing or war driving. On Tue, 9 Jul 2002 17:28:31 -0400 (EDT) Net Llama! [EMAIL PROTECTED] wrote: OK, i've acquired two Cisco (Aironet) 4800 cards. Anyone know if there are any good websites out there that list/catalog publicly accessible WiFi networks? Also, i'm assuming that the basic premise is that the card would just keep trying to acquire an IP from a DHCP server (assuming that i've set it up for DHCP) until it found one? On Tue, 9 Jul 2002, Keith Morse wrote: On Tue, 9 Jul 2002, Matthew Carpenter wrote: Three that I personally use (and use for AirSnort) are: D-Link DWL-650 (prism2 based card) Lucent Orinoco Cisco Aironet (340? 350?) A friend tried about a year ago to get a Lucent card to work with AirSnort. At that time it wasn't possible. They must have made quite a bit of progess since then. ___ Linux-users mailing list - http://linux-sxs.org/mailman/listinfo/linux-users Subscribe/Unsubscribe info, Archives,and Digests are located at the above URL. -- ~~ Lonni J Friedman[EMAIL PROTECTED] Linux Step-by-step TyGeMo http://netllama.ipfox.com ___ Linux-users mailing list - http://linux-sxs.org/mailman/listinfo/linux-users Subscribe/Unsubscribe info, Archives,and Digests are located at the above URL. ___ Linux-users mailing list - http://linux-sxs.org/mailman/listinfo/linux-users Subscribe/Unsubscribe info, Archives,and Digests are located at the above URL.
opinions on firewall?
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 anyone see anything wrong, any holes, incorrect assumptions, room for improvement, etc with the attached iptables script? - -- Douglas J Hunley (doug at hunley.homeip.net) - Linux User #174778 Admin: Linux StepByStep - http://www.linux-sxs.org and http://jobs.linux-sxs.org /* * For moronic filesystems that do not allow holes in file. * We may have to extend the file. */ 2.4.0-test2 /usr/src/linux/fs/buffer.c -BEGIN PGP SIGNATURE- Version: GnuPG v1.0.7 (GNU/Linux) iD8DBQE9KzuYSrrWWknCnMIRAkxdAJ4vAO8TfBRb8qfUo8w8tE0MvuI48gCgvnUF ngBzCyn62n9rsCuhPraE+xU= =pUEg -END PGP SIGNATURE- firewall Description: application/shellscript
Re: have a compile problem
On Tuesday 09 July 2002 11:13 pm, Net Llama! espoused with vigour: I've built just about all of that stuff without too much grief. So, odds are your system is putting libraries in very non-standard locations that the RPMs aren't finding. So, let's take this one package at a time (avifile, mjpegtools etc). Provide the errors that you're seeing, and we can work from there. Lonnie, thanks agin for the assist: Ok, I said that I would do Avifile first but something happened so as botht it and Mjpegtools compiled at last. I did a 'autogen.sh' , the result said not to use Automake 1.6 which I was. I downloaded 1.5 and did a make clean 'bingo' it worked and so did Mjpegtools. However Linuxvideostudio and MPLayer have make problems still. Seeing that they are relatively small errors I am including both here. I will see if ImageMagick now compiles later on. studio: -L/usr/X11R6/lib -lXv -lpng -ljpeg /usr/lib/libpng.a(png.o): In function `png_reset_crc': png.o(.text+0x180): undefined reference to `crc32' /usr/lib/libpng.a(png.o): In function `png_calculate_crc': png.o(.text+0x1e6): undefined reference to `crc32' /usr/lib/libpng.a(png.o): In function `png_reset_zstream': png.o(.text+0x953): undefined reference to `inflateReset' /usr/lib/libpng.a(pngwrite.o): In function `png_write_flush': pngwrite.o(.text+0xc12): undefined reference to `deflate' /usr/lib/libpng.a(pngwrite.o): In function `png_write_destroy': pngwrite.o(.text+0xda1): undefined reference to `deflateEnd' /usr/lib/libpng.a(pngwutil.o): In function `png_text_compress': pngwutil.o(.text+0x28a): undefined reference to `deflate' pngwutil.o(.text+0x3aa): undefined reference to `deflate' /usr/lib/libpng.a(pngwutil.o): In function `png_write_compressed_data_out': pngwutil.o(.text+0x5b9): undefined reference to `deflateReset' /usr/lib/libpng.a(pngwutil.o): In function `png_write_IHDR': pngwutil.o(.text+0x8c8): undefined reference to `deflateInit2_' /usr/lib/libpng.a(pngwutil.o): In function `png_write_finish_row': pngwutil.o(.text+0x2117): undefined reference to `deflate' pngwutil.o(.text+0x21b6): undefined reference to `deflateReset' /usr/lib/libpng.a(pngwutil.o): In function `png_write_filtered_row': pngwutil.o(.text+0x3071): undefined reference to `deflate' make[2]: *** [stv] Error 1 make[2]: Leaving directory `/build/linuxvideostudio-0.1.5/src' Mplayer: -L/usr/lib -Wl,-rpath,/usr/lib -lSDL -lpthread -Lvidix -lvidix libmpdemux/libmpdemux.a(demux_ogg.o): In function `demux_ogg_read_packet': demux_ogg.o(.text+0x5e): undefined reference to `vorbis_packet_blocksize' make: *** [mplayer] Error 1 It is obvious even to me that studio had png problems, but waht. -- Keith Antoine (GANDALF) aka 'skippy' 18 Arkana St, The Gap, Queensland 4061 Australia PH:61733002161 Retired Geriatric, Sometime Electronics Engineer, Knowall, Brain in storage ___ Linux-users mailing list - http://linux-sxs.org/mailman/listinfo/linux-users Subscribe/Unsubscribe info, Archives,and Digests are located at the above URL.