Re: can't delete file even after "chmod 777" & "rm -f"
The attributes for the /home/robot and /home/mlbot by default set to 755. To have a users in the same group delete files from these directories, you need to set the directory attributes to 775. On Sat, 12 Mar 2005 16:47:03 -0500, Gary Stanny <[EMAIL PROTECTED]> wrote: > > Howdy - > > I'm having a weird problem. My users can't delete each other's files. > Even if I "chmod 777" the target file and use a "rm -f" cmd. Of course root > can delete the files. Both users are in wheel. > > stanny >ls -l bf_com_exit_rpt.txt > -rwxrwxrwx 1 robot wheel 5241 Mar 11 16:30 bf_com_exit_rpt.txt > > stanny >rm bf_com_exit_rpt.txt > rm: bf_com_exit_rpt.txt: Operation not permitted > > stanny >rm -f bf_com_exit_rpt.txt > rm: bf_com_exit_rpt.txt: Operation not permitted > > cat /etc/passwd -> > stanny:*:1000:0:Gary Stanny:/home/stanny:/usr/local/bin/zsh > robot:*::0:Mr. Robot:/home/robot:/usr/local/bin/zsh > mlbot:*:9998:0:Mail Bot:/home/mlbot:/usr/local/bin/zsh > > stanny >cat /etc/group > # $FreeBSD: src/etc/group,v 1.19.2.1 2001/11/24 17:22:24 gshapiro Exp $ > # > wheel:*:0:root,stanny,robot,mlbot > > Please also CC me direct as I get the list via digest. > > Thanks a bunch. > > cheers > > gary > > Gary Stanny Tierra del Fuego Ltd.www.TDFltd.com > [EMAIL PROTECTED]Financial Software 734-449-8306 (voice/fax) > 7725 Shady Beach Dr Whitmore Lake, MI, 48189 USA > > ___ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to "[EMAIL PROTECTED]" > ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: sshd - public key vs keyboard interactive authentication
Thanks for the responses - all set! On Mon, 07 Mar 2005 01:58:30 +, Chris Hodgins <[EMAIL PROTECTED]> wrote: > Jeff With wrote: > >>So, my questions: > >> > >>1. How do I disable password authentication - i.e. force to use the DSA > >>keys? > > > > > > Make sure all 'password' auth is disabled and publickey is enabled. > > > > > > > > PasswordAuthentication no > > UseLogin no > > UsePAM no > > PubkeyAuthentication yes > > > > > >>2. Can I use both for added security - i.e. using the keys and then > >>get prompted for password? > > > > > > There was some work stared on this type of thing last year, but I > > don't think it was every finalized... > > > > http://marc.theaimsgroup.com/?l=openssh-unix-dev&m=108552250117169&w=2 > > > > - jw > > You can add a passphrase to your key using ssh-keygen. If you use a > password you get something like this when you login. > > [EMAIL PROTECTED]:/usr/home/chris$ ssh myserver.net > Enter passphrase for key '/home/chris/.ssh/id_dsa': > > Chris > ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
sshd - public key vs keyboard interactive authentication
5.3 with OpenSSH. Using public key authentication: I generated/converted my keys - all set, I can ssh to the box using the keys (no user authentication, I get logged in) Using password authentication: I can still ssh using interactive keyboard password authentication (without using public/private keys). So, my questions: 1. How do I disable password authentication - i.e. force to use the DSA keys? 2. Can I use both for added security - i.e. using the keys and then get prompted for password? Any help appreciated - thanks ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Secure file transfers
I am sorry, the requirements was a bit vague. A customer will call in with a issue and I'll request they send me log files, crashdumps, sniffer traces, etc.If the info is, say less than 5MB, I request they mail me the file zipped (password encryped) as most users do not have pgp or a secure ftp client (mostly windows users). Larger files must be FTP'd. Well of course there is the security concern. I believe one can set up a Apache server with SSL to PHP and have the client browse to the server and upload the files securely (without having to load any additional client software on their windows PC's/servers) I am running a 5.3 box and have some issues installing Apache/SSL/PHP due to dependencies mismatches. On Thu, 10 Feb 2005 14:40:47 -0600, Andrew L. Gould <[EMAIL PROTECTED]> wrote: > On Thursday 10 February 2005 02:28 pm, Anthony Atkielski wrote: > > Danie Du Toit writes: > > > Which packages are available to upload /download large dumpfiles in > > > a secure fashion (e.g. using SSL). The customer should not need any > > > secure client installed on his PC. > > > > Anything that is secure will require appropriate software at both > > ends of the transfer, and thus will require some sort of > > security-aware client on the customer's PC. > > > > SFTP provides secure file transfers. I use SecureFX on my client > > machine, and the standard SFTP server on the FreeBSD server. > > How about webdav over SSL (https)? > > The easiest webdav client that I've found in *nix is Konqueror. Windows > (2K, XP) and Mac OSX have support for webdav by default. > > Andrew Gould > ___ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to "[EMAIL PROTECTED]" > ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Secure file transfers
Which packages are available to upload /download large dumpfiles in a secure fashion (e.g. using SSL). The customer should not need any secure client installed on his PC. Thanks ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: how to configure Xorg to run at 1280x1024
You have two SubSection "display"'s with depth 8 - try remove the second one : SubSection "Display" Viewport 0 0 Depth 8 EndSubSection On Sun, 6 Feb 2005 06:42:23 +0100, Dejan Lesjak <[EMAIL PROTECTED]> wrote: > Gary Kline wrote: > > > People, > > > > One of my larger servers has 5.3 and Xorg; I can't find the > > right configuration setting for the display; so it runs at > > its maximum: 1600x1200. This would be fine except that the > > apps shake with tiny wavy lines. The driver may be pushing > > things to their limit. > > > > I've tried X -configure and Xorg -conf. Somehow or other > > I've generated an xorg.conf in /etc/X11, but no luck in > > changing the resolution. The closest I've come to having > > things work with xorg.conf and startx is to see a blank/grey > > screen--at 1600x1200. I have ctwm set up in /root and > > /home/kline. > > > > Modifying the Screen Section messes things up for some > > reason. I finally *do* have xorg working with /etc/X11/xorg.conf > > but only with the following commented: > > Try putting something like this: > Option "PreferredMode" "1280x1024" > in Section "Monitor". > What do you mean by "messes things up" with the modified Screen Section? Do > you get errors? Do note that you can't have more than one Screen section with > same Identifier string. > > > Dejan > ___ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to "[EMAIL PROTECTED]" > ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: [Re: Configuring Ethernet Interface for 100 Half Duplex]
xl0: <3C= om 3c905-TX Fast Etherlink XL> My other= card is: tx0: <= ;SMC EtherPower II 10/100> If I can= get any one fixed speed/duplex - would do fine. I know L= inux has a mii-tools utility that does that. "Mi= cheal Patterson" <[EMAIL PROTECTED]> wrote: - Original Message - Fr= om: "Danie du Toit" <[EMAIL PROTECTED]> To: Sent: Thursday, January 29, 2004 9:50 AM Subject= : Configuring Ethernet Interface for 100 Half Duplex > > I need t with no IP pr > Currently the card autosense 100 Fu= ll - interface. I could not find it in ifconfig, so I g init? >= ; > Thanks > > dsh What type of nic is it? W= hich driver xl#, ep#, dc# ? is it using? -- Micheal Patte= rson TSG Network Administration 405-917-0600 Confidential= ity Notice: This e-mail message, including any attachments, is for th= e sole use of the intended recipient(s) and may contain confidential = and privileged information. Any unauthorized review, use, disclosure or <= BR>distribution is prohibited. If you are not the intended recipient, ple= ase contact the sender by reply e-mail and destroy all copies of the original message. ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Configuring Ethernet Interface for 100 Half Duplex
I need t= o set up a spare Ethernet Interface as 100Mb/s Half Duplex, with no IP pr= otocol info and permanently in promiscuous mode. Currently the card autosense 100 Full - = I want to set up a IDS interface. I could not find it in ifconfig, so I g= uess it is done on init? Thanks dsh ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: how to tell if my ISP is blocking email & web ports
Just run tc= pdump / ethereal (or any sniffer) on a PC at your place and telnet throug= h the Internet to your IP address on ports 110, 80, 25. If you can = see this packets, your ISP is not blocking it. freebsd-ques= [EMAIL PROTECTED] wrote: Send freebsd-questions mailing list submiss= ions to [EMAIL PROTECTED] To subscribe or unsubsc= ribe via the World Wide Web, visit http://lists.freebsd.org/mailman/l= istinfo/freebsd-questions or, via email, send a message with subject = or body 'help' to [EMAIL PROTECTED] You c= an reach the person managing the list at [EMAIL PROTECTED] bsd.org When replying, please edit your Subject line so it is mor= e specific than "Re: Contents of freebsd-questions digest..." Today's Topics: 1. Re: How to mount a FreeBSD-5.1 partition = from FreeBSD-4.9 (Jerry McAllister) 2. passwd command problem. (f= [EMAIL PROTECTED]) 3. RE: Unable to mount CDrom in 5.2, reading pas= t threads is of no help (fbsd_user) 4. Re: ipfw/nated stateful ru= les example (Jonathan Chen) 5. latency (Stas) 6. ([EMAIL PROTECTED] .com) 7. Re: Using FreeBSD to burn in computers (Jeremy Faulkner) < BR>8. new install of 5.2 ISO aft hour system freeze cold reboot only = option ([EMAIL PROTECTED]) 9. ALSA drivers (Stas) 10. Re: ALSA = drivers (Kenneth Culver) 11. Re: USB sound device questions (multiple= s!) (Daan Vreeken [PA4DAN]) 12. Re: latency (Lance E. Lott) 1= 3. Re: latency (Benjamin Walkenhorst) 14. Re: latency (Cordula's Web) 15. Re: ALSA drivers (Cordula's Web) 16. Re: IPFW and Dynamic Ru= les (Dave McCammon) 17. Re: passwd command problem. (Jonathan Chen) <= BR>18. Monolithic kernel possible in 5.2? (Peter Schmiedeskamp) 19. R= e: ALSA drivers (Thomas T. Veldhouse) 20. how to tell if my ISP is bl= ocking email & web ports (fbsd_user) -- Message: 1 Date: Wed, 21 Jan 2004 12:52:32 -0500 (EST) From: Jerry McAllister &= lt;[EMAIL PROTECTED]> Subject: Re: How to mount a FreeBSD-= 5.1 partition from FreeBSD-4.9 To: [EMAIL PROTECTED] (Juan Rodrigu= ez Hervella) Cc: [EMAIL PROTECTED] Message-ID: <20= [EMAIL PROTECTED]> Content-Type: text/plai= n; charset=us-ascii > > On Wednesday 21 January 2004 = 17:26, Sergey 'DoubleF' Zaharchenko wrote: > > On Wed, 21 Jan 2= 004 15:52:25 +0100 > > > > Juan Rodriguez Hervella &l= t;[EMAIL PROTECTED]> probably wrote: > > > On Wednesda= y 21 January 2004 14:53, Sergey 'DoubleF' Zaharchenko wrote: > >= ; > > On Wed, 21 Jan 2004 13:26:25 +0100 > > > > > > > > Juan Rodriguez Hervella <[EMAIL PROTECTED]>= ; probably wrote: > > > > > Hello, please send the rep= ly to myself cause Im not > > > > > subscribe to the l= ist > > > > > > > > > > I've got a = FreeBSD-5.1 installation in /dev/ad0s3, > > > > > but = I usually run FreeBSD-4.9 from /dev/ad0s2. > > > > &g= t; > > > 5.x uses UFS2 by default. 4.x does not understand UFS2.= In short, you > > > > either re-newfs the 5.x partition = to be UFS1, or you are short of luck > > > > this time. <= BR>> > > > > > I can not believe you !, > &g= t; > > > > I guess there is (or there will be) some work-= in-progress to have > > > UFS2 support on FreeBSD-4.X system= s. > > > > If only by you:(. I'd suggest you make you= r 5.x partition UFS1 and be > > satisfied with that - that's pr= etty much all you can do. > > > > > Or are we foll= owing "Windows way of life" here ? > > > > If 5.x cou= ldn't understand 4.x, that would be a bad thing. But forcing > >= ; 5.x to be absolutely compatible with 4.x is another bad thing. >= > > > If you were forced to stay that compatible all the ti= me, you wouldn't be > > able to do major architectural changes.= If everyone thought the same > > way, an Athlon or a P4 would = be a 80286, only MUCH faster (which it is > > for most olden DO= S or Windows/16 programs, so your definition of > > `Windows wa= y of life' is definitely contrary to mine). > > > > Y= ou don't complain 4.x can't run 5.x binaries, do you?:) > >= But the filesystem is a different thing, imho. > > For exa= mple, if you use FreeBSD-4.X you can mount > ext2,ntfs,msdos,cd966= 0,smbfs. if you use Linux, you > can mount ufs. what's the= reason it is not possible to > make a program which understands t= he UFS2 filesystem > under FreeBSD-4.X ? Is there any tecnical bar= rier ? Even > if the filesystem was mounted "read-only" (like ntfs= ), > that would fit me Because the development track i= s 5. and that is wher