Re: [Hampshire] Drobo
Well, this is a simple issue. When you check 3D support in Vbox, with the VirtualGuestTools that need to be compiled inside the guest, should simply be recompiled when 3D is checked. DO NOT check 2D as that seems a windows only thing. Another cause is how much RAM you allocate to your video hardware On Thu, Feb 7, 2013 at 5:07 PM, Imran Chaudhry ichaud...@gmail.com wrote: Hi Craig, not sure how simple simple is :-) and I'm assuming Debian is OK when you say Linux. I found this site very helpful when I had my slug/NSLU2: (The TS-209 isn't listed but it can't be a million miles off the TS-210?) http://www.cyrius.com/debian/kirkwood/qnap/ts-219/ On 7 February 2013 09:42, Craig George ad...@sixdp.com.au wrote: Do you have any simple instructions on how to install Linux onto the QNAP t209. I just want to run it as a Linux server (my own secure drop box) for clients? Cheers Craig -- Please post to: Hampshire@mailman.lug.org.uk Web Interface: https://mailman.lug.org.uk/mailman/listinfo/hampshire LUG URL: http://www.hantslug.org.uk -- -- GPG Key fingerprint = B323 477E F6AB 4181 9C65 F637 BC5F 7FCC 9CC9 CC7F http://about.me/imranchaudhry -- Please post to: Hampshire@mailman.lug.org.uk Web Interface: https://mailman.lug.org.uk/mailman/listinfo/hampshire LUG URL: http://www.hantslug.org.uk -- -- Please post to: Hampshire@mailman.lug.org.uk Web Interface: https://mailman.lug.org.uk/mailman/listinfo/hampshire LUG URL: http://www.hantslug.org.uk --
Re: [Hampshire] crippled system - is there any hope.
Ooops. There may be /some/ options. If you are able to single user (by-passing a lot of normal boot procedure) are able to manually bring up network interfaces, you may be able to edit the version pulled by apt in /etc/apt/sources.list (or .d variety) and downgrade. It may also be simply the way you upgraded it. Normally you should 'apt-get dist-upgrade' which will resolve a lot of issues. It may just be you did upgrade and are still missing a lot of the vital components to use the newer version. Ian On 07/04/2012 21:32, Mike Burrows wrote: Hi Folks. Went ahead a did an upgrade on my lenny box ignoring the dire warning about udev and an incompatible kernel. Needless to say the system will now not boot past udevadm. Is there anything i can do to roll back to my earlier version please? Done a spot of googling but cant really find a way to go back to my previous udev. TIA Mike -- Please post to: Hampshire@mailman.lug.org.uk Web Interface: https://mailman.lug.org.uk/mailman/listinfo/hampshire LUG URL: http://www.hantslug.org.uk -- -- Please post to: Hampshire@mailman.lug.org.uk Web Interface: https://mailman.lug.org.uk/mailman/listinfo/hampshire LUG URL: http://www.hantslug.org.uk --
Re: [Hampshire] Domain type authentication using Linux as domain server
With all due respect, LDAP is nice and all and is quite versatile and useful etc etc etc. However, as much I am a hardcore BSD/Linux user, m$ active directory excretes all over LDAP many, many fold, as hard as it is for me to admit this. I wont go into all the technicals, using Linux for LDAP in a Win domain would be a fun project and something to try out - But, I would be somewhat weary of relying on it unless you know exactly what you are getting yourself into. On the other hand, new users to Linux coming from win benefit in many ways... Examples: Be offline when testing; Install a webcam on both Windows Linux and time how long it takes before you get to see a live picture from it. Do the same with any USB storage device time how long it takes to be able to read or write to the device. Do the same for a usb bluetooth or wifi device. Do the same for a mass majority of hardware you will notice win has to go online almost each time to obtain a driver. Most times out of 10, Linux already has one and works out of the box. Now, doing something like using Linux as an AD for Win domain, takes a lot of time, effort work. It is highly doable and yes, there are lots of documents. But, what happens if it breaks and you are not about..!? As I say, be fun to try as a project Ian On 08/04/2012 17:42, Tony Wood wrote: +1 to Ally's remarks. As a relative newcomer to Linux, I was at first somewhat put off by the quick-fire geekiness I saw in these mailing lists. I'm glad now that I persisted and am amazed at the difference now that I and my wife have gone 100% Linux: FAR less hassle; fewer clicks to do what we want; and the support from other users is the stuff of dreams. Even Terminal is becoming a pussycat; I really appreciate the way it doesn't chide you - it politely suggests a course of action to 'try' and which actually WORKS. I've always liked cars and motorbikes that seem to be 'on my side' and don't try to catch me out. Linux seems to be firmly on my side. Tony Wood (Netbook) On 08/04/12 12:35, Ally Biggs wrote: I agree with Stuart I have had a lot of experiences of Linux users slating windows or calling it windozes and stupid names, And you are right it does make people unwelcome. Linux and windows both bring something unique to the table both have there pros and cons. linux for the server side and windows for the home. Linux will never be as big as windows for home use you only have to look at microsofts market share to see this. and hey if learning about Microsoft enables me to better my wages then so be it I will continue to learn and support both I wish people would not be so anal about linux yes it is more stable and yes it can be run on a variety of different hardware yes it can be a pain in the ass making the transition from windows to Nix, and it doesn't help when the majority of Linux communities are full of god like beings who expect you to be some kind of terminal / programming guru, Sometimes I don't want to spend days reading outdated documentation and guides on how to set up a domain controller why waste all that time when I can click one button in ms products. sure I've setup a dc the open source way but by the time a newbie like myself did it Microsoft would of broke that version of samba lol Sent from my iPhone On 8 Apr 2012, at 11:19, Stuart Searsstu...@sjsears.com mailto:stu...@sjsears.com wrote: On Sat, 07 Apr 2012 13:44:42 +0100, Bryn Jones wrote: [snip, hopefully without attribution errors] Also would M$ Windoze be more acceptable? No, not really. It looks and sounds childish to me. Constant references to Microsoft and Windows like this (which often appear in publicly searchable archives) just put non-Linux users off and make the Linux community look like a bunch of childish nerds. The more I work with both technologies, the more it seems these attitudes cause windows-centric people who have expressed an interest in open source and Linux to feel unwelcome. They just cause enmity and do the cause (if there is one) more harm than good. If you want to encourage people to investigate Linux and open source as viable alternatives to their current systems it's important to not treat them like idiots or make them feel picked-on in some way. Just my 2p-worth. Don't take it personally, it's not intended that way. (hey I used to work on Windows solely and would have happily told people to just buy SBS and get on with it. I learned too much working in M$ dev houses to ever recommend it as a 1st option). not recommending is not the same as calling silly names :) Just sayin'. Stuart -- Stuart Sears RHCA etc. It's today! said Piglet. My favourite day, said Pooh. -- Please post to:Hampshire@mailman.lug.org.uk mailto:Hampshire@mailman.lug.org.uk Web Interface:https://mailman.lug.org.uk/mailman/listinfo/hampshire LUG URL:http://www.hantslug.org.uk -- --
Re: [Hampshire] Server log viewer
I use a mix of logcheck for system logs; can be output to a file on a www or via email, munin for pretty graphs on stats of all kinds, geolyzer (webalyzer with geopip support) to report on squid httpd, all of this is wondered together with a simple shell script as CGI on the httpd. Logcheck in itself is extremely versatile, can be tweaked and modded easily can report on all kinds of things with your logs (usually picking out the anomolies and providing the exact log entries). Ian On 01/04/2012 17:52, Leo wrote: I currently run a box with Smoothwall on it, but I'm thinking of switching to a debian box and setting it up myself (just as a project). The one thing I still have not worked out how to do yet is get easy web access to/visualisation of the logs. Can anyone recommend some software to do this? Thanks, Leo -- Please post to: Hampshire@mailman.lug.org.uk Web Interface: https://mailman.lug.org.uk/mailman/listinfo/hampshire LUG URL: http://www.hantslug.org.uk -- -- Please post to: Hampshire@mailman.lug.org.uk Web Interface: https://mailman.lug.org.uk/mailman/listinfo/hampshire LUG URL: http://www.hantslug.org.uk --
Re: [Hampshire] Anyone using FlightGear?
I've been using it for years. Flown a boeing from new york to london. Hardware wise it's always been quite intense. nVidia GPU's however has always surpassed it's need. I still play it sometimes today on a netbook PC. Dual core AMD w/ ATI 9000 series mobile graphics. Joystick I've used was the m$ sidewinder from yesteryear. A friend tells me uses his PS3 or Xbox controller on his PC for it works fine... I have found issues with it though, still to this day if you use the mouse or keyboard as a controller, is that most aircraft jeer off left or right on take off. Ian -- Please post to: Hampshire@mailman.lug.org.uk mailto:Hampshire@mailman.lug.org.uk Web Interface: https://mailman.lug.org.uk/mailman/listinfo/hampshire LUG URL: http://www.hantslug.org.uk -- -- Please post to: Hampshire@mailman.lug.org.uk Web Interface: https://mailman.lug.org.uk/mailman/listinfo/hampshire LUG URL: http://www.hantslug.org.uk -- -- Please post to: Hampshire@mailman.lug.org.uk Web Interface: https://mailman.lug.org.uk/mailman/listinfo/hampshire LUG URL: http://www.hantslug.org.uk --
Re: [Hampshire] IPv6 ADSL router recommendations
On 25/02/2012 18:19, Paul Tansom wrote: ** Chris Denniscgden...@btinternet.com [2012-02-25 14:43]: Thanks for all the replies. I've just scored a D-Link DIR-615 router on eBay for £10, which I'll use for messing about with OpenWRT. If that doesn't work, the Linksys E-series look promising. Presumably all the manufacturers and ISPs will wake up to IPv6 eventually. AIUI the firmware for the 615 Rev D4's does not support IPv6 in itself. However, it will happily pass IPv6 via WLAN to LAN/WAN and any bridges etc. you may or may not make. Unless, I'm missing something. I know for a clear fact both m0n0wall and routerboards work with any ISP doing PPPoX (IP6CP) will work with a majority of tunnels. I bought a couple of TP-Link WR841N (ver 7.2) from (of all places), Littlewoods for £32 quid. They run a branch of Open-WRT that is highly tunable. You need to tinker a little on the console to get IPv6 up and running, but once it is you can control aspects within the webui (firewall/QoS, RA's/DHCPv6 etc). Also works with SixXs AICCU IP41 tunnels. Another thing you can do, is ask Andrews Arnolds to provide you with an L2TP tunnel purchase 2 units of bandwith (a requirement). You should then get an allocation of /48. A lot of IPv6 devices (routerboards are for known fact) to accept native routed block (of 6) via L2TP tunnel. I still suggest a RouterBoard 750G or 450G. Winbox is a very pleasent annoyance once you get to learn it. This will also future proof you should you ever get native. I've used one on Andrews Arnold for gone a year and has not once failed me. It's also worked with a number of tunnel providers too. Ian -- Please post to: Hampshire@mailman.lug.org.uk Web Interface: https://mailman.lug.org.uk/mailman/listinfo/hampshire LUG URL: http://www.hantslug.org.uk --
Re: [Hampshire] Dud FS?
Another way is to use a livecd to run fsck on the drive. fsck -y -c /dev/locationofdrivePartition -c will also run a simple read-test on sectors of the drive, in case there are 'bad-sectors' - This will take a wee while. -y will just answer yes to any and all questions (which may be undesirable to some, but in case are lots of read errors, will attempt to fix them (marking them as bad and attempt to move data elsewhere)) -cc will run a non-destructive read-write test, a more thorough way to test for sector errors on the drive. This WILL take a long time! Cloning the disk then fixing it and imaging back to another drive maybe a quicker option tbh. I've seen these errors before and they can cause massive IO holdups, see what 'smartinfo --all /dev/hdlocation' says regarding errors and health state. Ian On Monday 30 January 2012 18:16:48 Vic wrote: 1) Is that it for the drive Yes. 2) Is that it for the fs but the drive can be reused (i.e. a reinstall)? Probably not. The error you posted is a failure to read the journal. That means you might have lost any recent writes, but the data may be largely preserved - so far. What I do in these situations is to copy the partition image somewhere else (using dd_rescue or similar) and then e2fsck it there. You should get all or nearly all of your data back. Linux filesystems are really quite resilient. Vic. -- Please post to: Hampshire@mailman.lug.org.uk Web Interface: https://mailman.lug.org.uk/mailman/listinfo/hampshire LUG URL: http://www.hantslug.org.uk -- -- Please post to: Hampshire@mailman.lug.org.uk Web Interface: https://mailman.lug.org.uk/mailman/listinfo/hampshire LUG URL: http://www.hantslug.org.uk --
Re: [Hampshire] Dud FS?
Depends how the error occurred. Clone the data than run a fsck -cc it will count how many fubars it detects. I have drives 8 years + old that are still going strong, with a couple with patched out areas from when a computer had the power removed abruptly. No more pending failures or errors yet. Smartctl will give you a clue of failure anyway, count the Raw_Read_Error_Rate if it's into the thousands, your drive is surely kaput. a 360GB drive that is my USB storage for the media player has a fair 192479974 over 22397hrs (933 days) of power-up time. This drive is due to get replaced as it is cropping up new errors every time it's used. a 6.5GB that is gone 8 years old has 231273 and it's run time is gone 38193hrs (1592) days. It is also possible to force mount an ext3 using ext2, as so it will not use the journal. This will allow you to more easily (and readily) access your data. Ian On Tuesday 31 January 2012 16:25:31 Vic wrote: Another way is to use a livecd to run fsck on the drive. Errr - I wouldn't. Once a drive has started dropping data like this, it is likely to keep on doing so. The more operations you perform, the more likely you are to drop stuff you want. This is why I suggest getting as much data off the failed drive as possible before trying to fix the FS... Vic. -- Please post to: Hampshire@mailman.lug.org.uk Web Interface: https://mailman.lug.org.uk/mailman/listinfo/hampshire LUG URL: http://www.hantslug.org.uk -- -- Please post to: Hampshire@mailman.lug.org.uk Web Interface: https://mailman.lug.org.uk/mailman/listinfo/hampshire LUG URL: http://www.hantslug.org.uk --
Re: [Hampshire] IP address translation
The feature you are looking for is static port mapping. Ive never used linux box for natting so anyone who knows iptables will help. Sent from an HTC Mobile. Expect worse typos and grammar James Courtier-Dutton james.dut...@gmail.com wrote: Hi, I understand how to do network address and port translation in Linux in a many to one type setup that you might normally get on a ADSL line. What I have not done before is network address translation but preserving the port numbers. So, if the private side of the box is 192.168.1.0/24 and the public side of the box should make the private side look like 158.153.1.0/24, how is this done in Linux. E.g. Private PC on 192.168.1.1 sends a packet with source address 192.168.1.1, source port 12000, destination port 80. Public side sees a session coming from 158.152.1.1 source port 12000, destination port 80. Private PC on 192.168.1.2 sends a packet with source address 192.168.1.2, source port 12000, destination port 80. Public side sees a session coming from 158.152.1.2 source port 12000, destination port 80. etc. for each PC on the private network. As you can see, only the IP address is getting translated. The port numbers are preserved. Has anyone tried this on Linux? Does it work? Kind regards James -- Please post to: Hampshire@mailman.lug.org.uk Web Interface: https://mailman.lug.org.uk/mailman/listinfo/hampshire LUG URL: http://www.hantslug.org.uk -- -- Please post to: Hampshire@mailman.lug.org.uk Web Interface: https://mailman.lug.org.uk/mailman/listinfo/hampshire LUG URL: http://www.hantslug.org.uk --
Re: [Hampshire] IP address translation
another way is to do 1:1 NAT if u have multiple WAN IPs or remove NAT altogether. NAT is not security. Sent from an HTC Mobile. Expect worse typos and grammar Ian Grody l...@grody.me.uk wrote: The feature you are looking for is static port mapping. Ive never used linux box for natting so anyone who knows iptables will help. Sent from an HTC Mobile. Expect worse typos and grammar James Courtier-Dutton james.dut...@gmail.com wrote: Hi, I understand how to do network address and port translation in Linux in a many to one type setup that you might normally get on a ADSL line. What I have not done before is network address translation but preserving the port numbers. So, if the private side of the box is 192.168.1.0/24 and the public side of the box should make the private side look like 158.153.1.0/24, how is this done in Linux. E.g. Private PC on 192.168.1.1 sends a packet with source address 192.168.1.1, source port 12000, destination port 80. Public side sees a session coming from 158.152.1.1 source port 12000, destination port 80. Private PC on 192.168.1.2 sends a packet with source address 192.168.1.2, source port 12000, destination port 80. Public side sees a session coming from 158.152.1.2 source port 12000, destination port 80. etc. for each PC on the private network. As you can see, only the IP address is getting translated. The port numbers are preserved. Has anyone tried this on Linux? Does it work? Kind regards James -- Please post to: Hampshire@mailman.lug.org.uk Web Interface: https://mailman.lug.org.uk/mailman/listinfo/hampshire LUG URL: http://www.hantslug.org.uk -- -- Please post to: Hampshire@mailman.lug.org.uk Web Interface: https://mailman.lug.org.uk/mailman/listinfo/hampshire LUG URL: http://www.hantslug.org.uk -- -- Please post to: Hampshire@mailman.lug.org.uk Web Interface: https://mailman.lug.org.uk/mailman/listinfo/hampshire LUG URL: http://www.hantslug.org.uk --
Re: [Hampshire] ntpd vs. ptpd
On Tuesday 24 January 2012 18:15:06 James Courtier-Dutton wrote: Hi, Does anyone have experience of both ntp and ptp ? Which is likely to be better (keep them synced to the best accuracy and lowest variance) at syncing three PCs on a LAN without a switch that supports ptp? My understanding is that in order for ptp to be better than ntp, the network switch has to also support ptp. Kind Regards James -- Please post to: Hampshire@mailman.lug.org.uk Web Interface: https://mailman.lug.org.uk/mailman/listinfo/hampshire LUG URL: http://www.hantslug.org.uk -- TBH I still use NTP. There is nothing I have that requires the high precision of PTP. In essence, you only need multicast support since this is how it conveys it's messages, but is also rumored to be runnable in unicast mode. If you require high precision time, PTP maybe a better option for you as it has methods to account for network latency in conveying time messages. Give it a poke and see what works best for you :-) Ian -- Please post to: Hampshire@mailman.lug.org.uk Web Interface: https://mailman.lug.org.uk/mailman/listinfo/hampshire LUG URL: http://www.hantslug.org.uk --
Re: [Hampshire] ntpd vs. ptpd
Hi again, Did a little bit of reading and a simple test.. For software only PTP, you are probably better off with NTP. For hardware assisted PTP, only the NIC's have to support timestamping. Most Intel gigabit controllers do (IGP driver). I did run a couple of little tests in a pure virtual environment (pure software) and compared with NTP. I'm not overly pedantic, but NTP just feels better (in the fact it doesn't do horrid multicast stuff on my network). Sadly I do not have IEEE 1588 capable cards, so was unable to test in hardware assist. For a small network, NTP would probably suffice more. I tend to broadcast NTP servers through DHCP (easier to distribute) run a central time server which all synch from. If you are wanting a feature-rich read on hardware assisted PTP.. http://www.linuxclustersinstitute.org/conferences/archive/2008/PDF/Ohly_92221.pdf Does however have a wealth of benefits over NTP mind, but looks to be more geared toward cluster computing. Ian On Tuesday 24 January 2012 18:53:03 Ian Grody wrote: On Tuesday 24 January 2012 18:15:06 James Courtier-Dutton wrote: Hi, Does anyone have experience of both ntp and ptp ? Which is likely to be better (keep them synced to the best accuracy and lowest variance) at syncing three PCs on a LAN without a switch that supports ptp? My understanding is that in order for ptp to be better than ntp, the network switch has to also support ptp. Kind Regards James -- Please post to: Hampshire@mailman.lug.org.uk Web Interface: https://mailman.lug.org.uk/mailman/listinfo/hampshire LUG URL: http://www.hantslug.org.uk -- TBH I still use NTP. There is nothing I have that requires the high precision of PTP. In essence, you only need multicast support since this is how it conveys it's messages, but is also rumored to be runnable in unicast mode. If you require high precision time, PTP maybe a better option for you as it has methods to account for network latency in conveying time messages. Give it a poke and see what works best for you :-) Ian -- Please post to: Hampshire@mailman.lug.org.uk Web Interface: https://mailman.lug.org.uk/mailman/listinfo/hampshire LUG URL: http://www.hantslug.org.uk -- -- Please post to: Hampshire@mailman.lug.org.uk Web Interface: https://mailman.lug.org.uk/mailman/listinfo/hampshire LUG URL: http://www.hantslug.org.uk --
Re: [Hampshire] Sorry for the cross post but you need to read this.
Neither on my Debian, Gentoo or Ubuntu box. However, I use xscreensaver to lock my screen on all of the above. On Thursday 19 January 2012 09:30:44 Freaky Clown wrote: I dont normally let out stuff like this, but thought you lot should known. So far confirmed with: Gentoo Fedora ArchLinux You can kill a locked screen by pressing ctrl+alt+* please try this to see if you are vulnerable to this attack and let the list know your OS if different to the above. Cheers FC -- Please post to: Hampshire@mailman.lug.org.uk Web Interface: https://mailman.lug.org.uk/mailman/listinfo/hampshire LUG URL: http://www.hantslug.org.uk -- -- Please post to: Hampshire@mailman.lug.org.uk Web Interface: https://mailman.lug.org.uk/mailman/listinfo/hampshire LUG URL: http://www.hantslug.org.uk --
Re: [Hampshire] Sorry for the cross post but you need to read this.
Quite clearly an idiots mishap of not checking config files that may have been changed from updated packages. Admin error. I even installed these dists in a vbox to try, editing the xorg files manually and non fell victim to this attack. RTFM maybe? /flame Ian On Thursday 19 January 2012 09:30:44 Freaky Clown wrote: I dont normally let out stuff like this, but thought you lot should known. So far confirmed with: Gentoo Fedora ArchLinux You can kill a locked screen by pressing ctrl+alt+* please try this to see if you are vulnerable to this attack and let the list know your OS if different to the above. Cheers FC -- Please post to: Hampshire@mailman.lug.org.uk Web Interface: https://mailman.lug.org.uk/mailman/listinfo/hampshire LUG URL: http://www.hantslug.org.uk -- -- Please post to: Hampshire@mailman.lug.org.uk Web Interface: https://mailman.lug.org.uk/mailman/listinfo/hampshire LUG URL: http://www.hantslug.org.uk --
Re: [Hampshire] Novatech - Ubuntu good news?
I've found novatech in portsmouth that a few of their floor staff are versed on
Linux. Two years ago when I bought one their branded no-name laptops they had
fedora, mandriva and Ubuntu live CDs for those few of us that wanted to poke.
They won't let you use your own firestick etc. In case it buggers something
up.
the laptop I bought was a floor model so I was able to test my 3g dongle and
other gizmos in both fedora and Ubuntu. Probably wouldn't have bought it w/o
being able to see it working beforehand.
I might be mistaken, but didn't novatech at one point ship some of their
systems with a Linux preinstalled? Think this was with net tops.
Ian
alan c aecl...@candt.waitrose.com wrote:
On 13/01/12 21:32, Samuel Penn wrote:
On Friday 13 January 2012 12:50:12 alan c wrote:
With a current thread I have seen about laptop buying in mind, I
called in to Novatech Reading on my travels. I spoke to the Manager
Alex Burrows. I had discussed Ubuntu etc with him on a previous
occasion or two over the years and received agreement in principle to
try out Ubuntu on specific kit by arrangement (at non busy times).
This time I was happily surprised to find that if I (or anyone else)
wanted to try Ubuntu on any particular product then he had it already
on a USB stick ('firestick' was the term he used). I mentioned the
larger range of laptops available at the Portsmouth store - there were
6 laptops on display at Reading but a lot more on the web site
(Portsmouth, I guess). Alex then added that the (Area/store) Manager
at the Portsmouth store (John Leslie) would be also happy to fire up
Ubuntu, again, preferably by pre arrangement for non busy times.
Okay, many thanks Alan. This is good news, though suffers from the
problem that non-busy times are likely to be whenever I'm at work.
It does sound like it's worth my time checking out which of their
laptops I'm most interested in, and contacting them.
The need for pre arrangement and non busy times is a reflection of the
rather special (in this case) type of attention they want to have
available for the customer here. In principle they will be cautious
about possible damage to the product, and if they have a rep present
who understands what is going on, then if something goes wrong they
know it was not the customer's fault(!) So their preferred rep will
likely be a rare one who can handle the 'unusual' situation, probably
a senior person. As time goes on, I would guess that this would all
get more relaxed, but it might take some time. (The manager named for
the Portsmouth store is said to know about various drivers too).
As an aside comment, when I have previously asked a random rep in the
Reading store how many of his colleagues used Ubuntu he answered that
'they all use Windows'. It would be a step forward if an increasing
contact with Ubuntu or whatever began to motivate a few of them to
use something other than just Windows
--
alan cocks
Ubuntu user
--
Please post to: Hampshire@mailman.lug.org.uk
Web Interface: https://mailman.lug.org.uk/mailman/listinfo/hampshire
LUG URL: http://www.hantslug.org.uk
--
--
Please post to: Hampshire@mailman.lug.org.uk
Web Interface: https://mailman.lug.org.uk/mailman/listinfo/hampshire
LUG URL: http://www.hantslug.org.uk
--
Re: [Hampshire] Help! I'm buying a laptop.
On Saturday 14 January 2012 10:09:44 t...@engineering.selfip.org wrote: AMD A6 3400 vs, the Intel i5-2430 Well, The Toshiba is quad core @ 2.3 / 1.4GHz. 4MB cache (1MB per core) a Radeon 65xx series GPU. These tend to be pretty purdy, even my 5400 mobile GPU is quite nice. The ASUS is dual core, 4 threads per-core @2.4GHz can turbo upto 3GHz. It even supports enhanced features (on-die AES crypto accellerator), carries 3MB cache (1.5M per core) houses an nVidia GTX520M which are mouth watering. IMPO, i'd hit up the i5 (ASUS) - You will get far better load handling as you have more cache on this CPU as well as far better multi-threading per-core. Also, the ATI GPU (Toshiba) will most likely steal some of your RAM for the graphics. nVidia tend to ship theirs with it's own memory. Both these CPU's are rated 35W - so price-for-price, the i5 is more bang for your buck. happy hunting, Ian Yes, on further inspection it (www.tomshardware.com has a benchmark of some very similar kit) that the choice is between graphics and maths capability. The greater CPU performance of the i5 is very tempting, and the graphics capability is probably sufficient for what I want to do. I think I've swung to the i5 now, but the Toshiba I linked to doesn't have VGA out, so it'll have to be that CPU in a different box. More searching required, I think. Tim B. -- Please post to: Hampshire@mailman.lug.org.uk Web Interface: https://mailman.lug.org.uk/mailman/listinfo/hampshire LUG URL: http://www.hantslug.org.uk -- I'm an AMD lover personally. But in this case, that i5 is by far better. If it was an i3... AMD! i5 i7's are beasts. Both the ATI and nVidia GPU's on those would be capable of CUDA (OpenCL) computing too, but the GTX would fold superior mathematically. Ian -- Please post to: Hampshire@mailman.lug.org.uk Web Interface: https://mailman.lug.org.uk/mailman/listinfo/hampshire LUG URL: http://www.hantslug.org.uk --
Re: [Hampshire] Help! I'm buying a laptop.
Now now ladies this is a LUG, not a whores handbag club :-P Sean Gibbins s...@funkygibbins.me.uk wrote: On 14/01/12 18:35, Keith Edmunds wrote: On Fri, 13 Jan 2012 22:34:51 +, pet...@gmail.com said: It was late. Give me a break! Had enuf that night to sink a boat. I enjoy a drink as much as most other people, but I take responsibility for my actions. You, on the other hand, are asking others to make allowances for the fact that you were (presumably) under the influence of alcohol. What you should have written was: I'm very sorry if I offended anyone with my recent postings. It won't happen again. Utter bollocks maybe Keith, but hardly offensive. And, even if it was to some, they could have switched off or simply tuned to another channel, so to speak. Sean -- music, film, comics, books, rants and drivel: www.funkygibbins.me.uk -- Please post to: Hampshire@mailman.lug.org.uk Web Interface: https://mailman.lug.org.uk/mailman/listinfo/hampshire LUG URL: http://www.hantslug.org.uk -- -- Please post to: Hampshire@mailman.lug.org.uk Web Interface: https://mailman.lug.org.uk/mailman/listinfo/hampshire LUG URL: http://www.hantslug.org.uk --
Re: [Hampshire] Help! I'm buying a laptop.
AMD A6 3400 vs, the Intel i5-2430 Well, The Toshiba is quad core @ 2.3 / 1.4GHz. 4MB cache (1MB per core) a Radeon 65xx series GPU. These tend to be pretty purdy, even my 5400 mobile GPU is quite nice. The ASUS is dual core, 4 threads per-core @2.4GHz can turbo upto 3GHz. It even supports enhanced features (on-die AES crypto accellerator), carries 3MB cache (1.5M per core) houses an nVidia GTX520M which are mouth watering. IMPO, i'd hit up the i5 (ASUS) - You will get far better load handling as you have more cache on this CPU as well as far better multi-threading per-core. Also, the ATI GPU (Toshiba) will most likely steal some of your RAM for the graphics. nVidia tend to ship theirs with it's own memory. Both these CPU's are rated 35W - so price-for-price, the i5 is more bang for your buck. happy hunting, Ian On Wednesday 11 January 2012 22:24:38 Tim Brocklehurst wrote: Hi guys! I realise I haven't posted anything on the list for ages, and that most of you will think that's a good thing. However, I need a little help... For a while now I have thought that my 2.4GHz P4 has been a little underpowered, and was considering replacing it with a big desktop rig. However, I now find myself reasoning thus: I am going to be doing more mobile computing, presentations etc. A laptop is more useful for mobile development (ie. at LUG Meets). A laptop is still going to be several times faster than my current desktop. Unfortunately, I don't have limitless money. Consequently, I'm after the best bang for my buck, and here's the problem. Having identified two laptops (below) which look good, and are a sensible price, how does one choose between them when all the information available (benchmarks and user reviews) seem to be either sketchy or very similar (and sometimes wildly different for no adequately explored reason). Therefore, if anyone has either of these laptops, could you run the Byte benchmark for me, over 1,2,3 and 4 copies? If not, does anyone have any general advice? Toshiba L750D-14F (AMD A6-3400, 6GB Ram) http://direct.tesco.com/q/R.215-7397.aspx ASUS K53SC-SX307V (Intel Core i5-2430, 4GB RAM) http://direct.tesco.com/q/R.213-9815.aspx Byte Unix Benchmark v5.1.3 http://code.google.com/p/byte-unixbench/ For reference, Byte records the following speed indexes for my current machines (overall results): Copies/Threads 1 2 3 4 TS7550 - ARM9 SBC 15.6 Pentium 4 - 2.4GHz447.3 Intel Atom D525 (Server) 389.7 637.7 698.0 770.1 Yes, that does mean that my server is quicker than my desktop on well-threaded tasks for about 1/3 of the power consumption (educated guess). The TS7550 is an intentionally low-power system, so the low result is not surprising. Any help would be much appreciated, Tim B. -- Please post to: Hampshire@mailman.lug.org.uk Web Interface: https://mailman.lug.org.uk/mailman/listinfo/hampshire LUG URL: http://www.hantslug.org.uk --
Re: [Hampshire] VDSL equipment
On Sunday 01 January 2012 11:03:03 Rob Malpass wrote: Hi all I think I'm going to take the plunge with Zen's Fibre Active package. I've done a lot of reading but I can't find anywhere answers to my key questions - grateful if anyone can fill in the gaps: 1) Starting at the socket, the Openreach engineer is apparently going to swap my faceplate. So what sockets will there be on the new faceplate? I've seen images but can't tell if one's now ethernet and the other a standard phone jack or if they're two phone jacks (presumably one voice, one data?) 2) The engineer is going to install (I assume this means plug in and go no further) a VDSL modem. Let's assume for the moment (see below) I don't buy any new equipment. Can I just connect this new VDSL modem to a PC (and if so are we talking ethernet or USB?) and have it connect via DHCP? This is exactly what happened when I got my first cablemodem before I added a router. The reason I ask this is that, with no router in the mix, there would have to be a seriously configured software firewall on the PC wouldn't there? To connect to the net without NAT is quite risky isn't it? Certainly it used to be! The BT supplied thing is a bridge. Anything you plugin into it has to have an ethernet WAN port can do PPPoE. A lot of routers specified for cable are capable of doing this. If you are using the upto 80 meg service, you may want to consider a faster, more beefier router. 3) Zen want to sell me an appropriate router (which is understandable) but I do (somewhere!) have my old cable router i.e. the one I used to attach to my Virgin cable modem at my old house - I'm assuming I could use this couldn't I? If it's cheap or next to free grab it. Your old cable modem (unless it's the balck d-link DIR615) wont be upto the job all that well. 4) My Sky box needs the phone line and at present it's connected to an extension of this line via a standard ADSL microfilter - any issues here? Should be fine, I believe there is still a standard PSTN available too. 5) A ten fold speed increase for just over a fiver more than I'm currently paying per month (and Zen have been excellent IMHO) sounds a good deal - does anyone have any reservations about VDSL? Only one. My whole city has it, and surrounding streets. Just not mine, so I'm jealous. Enjoy! Now BT have removed BRAS profiles, you will experience the better side of it (hopefully). Cheers Rob Ian -- Please post to: Hampshire@mailman.lug.org.uk Web Interface: https://mailman.lug.org.uk/mailman/listinfo/hampshire LUG URL: http://www.hantslug.org.uk --
Re: [Hampshire] Random ssl vnc disconnection
You say developed, was this not an issue before? It would be best to attempt to replicate from another OS. If you are fancy enough to have an Android device, androvnc and connectbot (ssh client) are free to download and test with. Ian On Saturday 10 December 2011 19:06:24 Rob Malpass wrote: Hi all My 64-bit lucid box has developed a rather irritating fault which my lack of knowledge can't fix. While the ethernet side of things looks solid - I'm getting random disconnections when I'm vnc'd or ssh'd into it. Also (again periodically and without apparent reason) it refuses to let me in either through vnc or ssh. I've installed wireshark and looked in /var/log but such information as is in either of these is all Greek to me! FWIW the client is always a Windows 7 machine. Here's what I've checked: * Firestarter - nothing obvious and besides which - with no change to the settings sometimes it lets me in, sometimes not - ditto establishing a new connection. * hosts.equiv, hosts.allow What I've not checked: * network cable - but there are no obvious dropouts in a terminal pinging the router with the -t option * using a different client which may be Windows or something else. Anybody know is this is a known issue? Cheers Rob -- Please post to: Hampshire@mailman.lug.org.uk Web Interface: https://mailman.lug.org.uk/mailman/listinfo/hampshire LUG URL: http://www.hantslug.org.uk --
Re: [Hampshire] recording a webex seminar
On Thursday 08 December 2011 09:28:41 Edward Beckmann wrote: Hi I want to listen to a webex webinar session and also record it, but am struggling to find a recent posting on forums about what to record with. Anyone had success with this please? Currently on ubuntu 10.04 netbook, mint 9 fluxbox and mint 11 lxde. Thanks You can use ffmpeg w/ the x11grab indev (usually needs recompiling with support) and will happily record anything pushed to any monitor from your PC. Example command (just for video) ffmpeg -f x11grab -s 1152x864 -sameq -sws_flags lanczos -flags mv4 -i :0.1 -an milkdrop -pass 2 Where -an exists, you need to find the relevant /dev/snd/* entry and use -i /dev/snd/pcm### and vary audio rate with -ab (128k) -ac (1/2/3/4 etc) I been using ffmpeg do record anything that occurs on your screen (even games movies) and generally being a geek. http://www.youtube.com/watch?v=WtW0v12aB3o for example :) -- Please post to: Hampshire@mailman.lug.org.uk Web Interface: https://mailman.lug.org.uk/mailman/listinfo/hampshire LUG URL: http://www.hantslug.org.uk --
Re: [Hampshire] Anyone coming to the AGM?
On Saturday 03 December 2011 12:10:40 Vic wrote: Hi All. We're having real problems becoming quorate at the AGM - if anyone is planning to come, please do so :-) Vic. -- Please post to: Hampshire@mailman.lug.org.uk Web Interface: https://mailman.lug.org.uk/mailman/listinfo/hampshire LUG URL: http://www.hantslug.org.uk -- Well I'm not going to lie. I had every intention on coming but kinda got dragged out last night. SWMBO'd still got to go shopping whilst I cured a massive headache. Really sorry guys :-( How did events go in the end? Did anything good turn about? Ian -- Please post to: Hampshire@mailman.lug.org.uk Web Interface: https://mailman.lug.org.uk/mailman/listinfo/hampshire LUG URL: http://www.hantslug.org.uk --
Re: [Hampshire] New member... Hoping to come to Saturday LUG Meeting.
On Thursday 01 December 2011 22:28:54 Steven Swann wrote: Hello All, Just a quick email to register my intent to come along to the meeting this Saturday. This will be my first meet with any LUG so I'm not really too sure what to expect. A little about me: I have been using Linux for the past six or so years now, and can't get enough! I am currently on an 18 month contract carrying out the design and development of a client-server based software system. This features an embedded - my real passion - ARM based remote device which will, eventually, communicate remote client data with a number of servers. Simply put, my girlfriend is getting tired of all my Linux speak so I am hoping to vent some of this on Saturday. I look forward to meeting you all there Best regards, Steven Swann -- Please post to: Hampshire@mailman.lug.org.uk Web Interface: https://mailman.lug.org.uk/mailman/listinfo/hampshire LUG URL: http://www.hantslug.org.uk -- It will be my first time to the Uni LUGs - I've only attended a joint LUG at Nokia between Hants Surrey. Only thing I can suggest is bring a laptop or device of your liking with the software of your choice and a smile :-) My other half too gets bored of my nagging about Linux and has taken the opportunity to go shopping whilst I talk geek.. Win win. I'm from Winchester myself, used Linux BSD for gone 12/13 years now just simply because I like to be in control of the little things. Plus I was a cheapskate student at the time. The systems have grown on me and use multiple Linux/BSD variants everyday. My favourite Linux would have to be Debian, with Gentoo for more customised setups and servers. FreeBSD is my poison in the BSD line. I'm a networking geek more than anything hope to be able to share ideas and knowledge. Look forward to seeing you, Ian -- Please post to: Hampshire@mailman.lug.org.uk Web Interface: https://mailman.lug.org.uk/mailman/listinfo/hampshire LUG URL: http://www.hantslug.org.uk --
Re: [Hampshire] Changing from TalkTalk
On Wednesday 30 November 2011 20:58:22 Dr A. J. Trickett wrote: Hi, Some time ago I mentioned I was changing phone company and ISP. For the record BT terminated my account correctly on the day I changed to the PhoneCoop. TalkTalk are still billing me 4 months after they stopped providing service. They keep promising that they will sort it out but they so far keep failing! TalkTalk are scum, stay clear of them and if you are with them then leave them now! At the moment I've reported them to the Ombudsman and Ofcom - not that they have even replied to my complaint... Bravo! :-) I've avoided residential ISP's ever since BT Orange screwed me. Keep pestering the Ombudsman - Shame TalkTalk's ADR isn't CISAS - Sofa king much better and faster :-) Andrews Arnold all the way for me now. 2 years + and never once had a single raise for issue. Odd for me, I like to complain. Ian -- Please post to: Hampshire@mailman.lug.org.uk Web Interface: https://mailman.lug.org.uk/mailman/listinfo/hampshire LUG URL: http://www.hantslug.org.uk --
Re: [Hampshire] [ADMIN] December Meeting and AGM
I dont partake in many of the LUGs, not as much as I'd like, but I'd be up for general officer / promoter etc. try to get people up for giving talks. Not sure how good I'd be at it, but never know until you try eh? On Sunday 13 November 2011 16:50:28 Adam John Trickett wrote: Hello, You may have noticed that no new committee was announced after the October meeting. That was because: 1) The meeting was not quorate 2) We didn't have enough nominations to fill the committee 3) Of the new candidates who did volunteer, unfortunately none were able to attend the meeting Chris Denis and Damian Brasher volunteered them selves and Ian Brazier is willing remain Treasurer. I am therefore asking them if they are willing to remain standing and asking for additional volunteers to complete the committee. We need a chair, a hostmaster, a treasurer and two general officers. In truth as a member of the committee you can do as much or as little as you want - there isn't a great deal to do and so it is not a huge time drain, however someone does have to organise the meetings and encourage people to volunteer to give talks... Please consider volunteering, if we are unable to form a committee then I believe that the LUG will die and I sincerely hope that none of us wish that. The next meeting has been set as Saturday 3rd December at Southampton University, and the Wiki has been updated to show this. -- Please post to: Hampshire@mailman.lug.org.uk Web Interface: https://mailman.lug.org.uk/mailman/listinfo/hampshire LUG URL: http://www.hantslug.org.uk --
Re: [Hampshire] test message
Looks good Tim :-) On Tuesday 15 November 2011 20:49:43 Tim wrote: Testing to see if I can post yet. Sorry to bother anybody Tim -- Please post to: Hampshire@mailman.lug.org.uk Web Interface: https://mailman.lug.org.uk/mailman/listinfo/hampshire LUG URL: http://www.hantslug.org.uk -- -- Please post to: Hampshire@mailman.lug.org.uk Web Interface: https://mailman.lug.org.uk/mailman/listinfo/hampshire LUG URL: http://www.hantslug.org.uk --
Re: [Hampshire] When things don't go to plan....
Try a freebsd to mount it. Linux hfs+ has always been flakey
James Courtier-Dutton james.dut...@gmail.com wrote:
Hi,
I was intending to do some file recovery on a friends Mac OS X laptop.
Plan was as follows:
1) take a dd image of the laptop hard disk. (worked fine, remove HD
from laptop, place in usb hd interface and do dd on it.)
2) run photorec to recover some of the photos. (worked fine). Did
exiv2 on that to rename the photos based on the exif info.
find . -iname *jpg -exec exiv2 -t -F '{}' \;
3) mount the hfsplus partition and recover what I could from that.
It is this last bit that failed to work.
I would have expected something like this to work:
mount -t hfsplus -o ro,loop,offset=209735680 macbook1.img /n1/macbook/fs
but it failed to mount.
Please see
https://bugs.launchpad.net/ubuntu/+source/linux-meta/+bug/889928
for details of why it did not work.
Essentially there is a bug in the hfsplus kernel code that fails to
recognize the hfsplus partition in particular circumstances.
I have done this procedure (step 3) without any problems when
recovering windows and linux boxes.
I had assumed it would be just as easy on Mac OS X.
So, I thought I would mention it, in case anyone else is having
similar problems.
I sure did waste several hours of my weekend.
Kind Regards
James
--
Please post to: Hampshire@mailman.lug.org.uk
Web Interface: https://mailman.lug.org.uk/mailman/listinfo/hampshire
LUG URL: http://www.hantslug.org.uk
--
--
Please post to: Hampshire@mailman.lug.org.uk
Web Interface: https://mailman.lug.org.uk/mailman/listinfo/hampshire
LUG URL: http://www.hantslug.org.uk
--
Re: [Hampshire] Shutdown -h sometimes restarts
Acpi bug probably. Does halt do the same? Leo li...@fractal.me.uk wrote: My server (Debian stable) has developed a habit of sometimes restarting rather than shutting down when I run shutdown -h now Has anyone else seen this, as Googling and looking at logs has got me nothing so far. Thanks, Leo -- Please post to: Hampshire@mailman.lug.org.uk Web Interface: https://mailman.lug.org.uk/mailman/listinfo/hampshire LUG URL: http://www.hantslug.org.uk -- -- Please post to: Hampshire@mailman.lug.org.uk Web Interface: https://mailman.lug.org.uk/mailman/listinfo/hampshire LUG URL: http://www.hantslug.org.uk --
Re: [Hampshire] Changing my shell...?
vipw to edit passwd file properly, / etc/shells are the available ones and /etc/skel* are skeleton files for default env for new user shells. When you adduser you get to choose what shell Owain Clarke simb...@cooptel.net wrote: On 29/10/11 14:25, Vic wrote: The shell for each user is defined in /etc/passwd - just edit that to set up the shell you want. Defaults for new users can be set up by editing /etc/default/useradd . HTH Vic. Great - thank you very much, Vic -- Please post to: Hampshire@mailman.lug.org.uk Web Interface: https://mailman.lug.org.uk/mailman/listinfo/hampshire LUG URL: http://www.hantslug.org.uk -- -- Please post to: Hampshire@mailman.lug.org.uk Web Interface: https://mailman.lug.org.uk/mailman/listinfo/hampshire LUG URL: http://www.hantslug.org.uk --
Re: [Hampshire] [OT] Big IMAP accounts
Indeed, best to run your own. If you want it simple to setup, check out SME Server http://wiki.contribs.org/Main_Page Ian Chris Dennis cgden...@btinternet.com wrote: Hello folks Can anyone suggest or recommend an outfit that provides an IMAP service with lots of room? i.e. multiple mailboxes that can each store something of the order of 20GB of email (with big attachments). The companies I've looked at so far limit mailboxes to about 2GB. cheers Chris -- Chris Dennis cgden...@btinternet.com Fordingbridge, Hampshire, UK -- Please post to: Hampshire@mailman.lug.org.uk Web Interface: https://mailman.lug.org.uk/mailman/listinfo/hampshire LUG URL: http://www.hantslug.org.uk -- -- Please post to: Hampshire@mailman.lug.org.uk Web Interface: https://mailman.lug.org.uk/mailman/listinfo/hampshire LUG URL: http://www.hantslug.org.uk --
Re: [Hampshire] OT Please tell me how this is not a scam.
On Monday 17 October 2011 15:06:37 Philip Stubbs wrote: Can anybody tell me how this works:- http://www.bluecarbon.com/how-it-works.html Nah, it's for real.. Ask RedSquare Services... They seemed to have gotten very embarrassed when I asked them about it Remember, Blue is the new Green - And the sun shines out of their arses -- Please post to: Hampshire@mailman.lug.org.uk Web Interface: https://mailman.lug.org.uk/mailman/listinfo/hampshire LUG URL: http://www.hantslug.org.uk --
Re: [Hampshire] Domestic ADSL ISPs
On Saturday 08 October 2011 02:59:38 Martin N wrote: Less prone as in less reliable on BT servicing the line if anything goes wrong and the included wait? Less prone to BRAS/speed drops due to random resyncs, better equipment and management of in the exchange, and usually upto twice the performance gain over 21CN lines. BE annex M doesn't crap out your download as much for noticeable gain of upload. 21CN Annex M is usually only any benefit for those close to exchange. Ex. 21CN via BT - 6M down 1M up | BE on same run of wires, modem etc. 12M down 2.1M up. The 21CN's fastest ever sync was 10M down 1024kbps up. The BE is using Annex M, 21CN on Annex M was 5M down and 1.2M up. If i turn BE to Annex A, I will get upto 16 down and 2.3up. Line length is 2.1KM DLM? what is that? Download Load Management? as a guess. Dynamic Line Management. What causes your BRAS rate to drop like a lead balloon when your line resyncs and keeps you and a much slower rate than your sync speed, sometimes forcing a 20Meg synched line to work at 2/3Meg. Then spend weeks for it to come back to real-life. Martin N At 18:45 07/10/2011, Ian Grody wrote: Seconded. BE ADSL lines are less prone to BT provided ones. No DLM for one. James Bensley jwbens...@gmail.com wrote: I would vote for Be here or Andrews and Arnolds over a Be line. -- Please post to: Hampshire@mailman.lug.org.uk Web Interface: https://mailman.lug.org.uk/mailman/listinfo/hampshire LUG URL: http://www.hantslug.org.uk -- -- Please post to: Hampshire@mailman.lug.org.uk Web Interface: https://mailman.lug.org.uk/mailman/listinfo/hampshire LUG URL: http://www.hantslug.org.uk -- Running MorphOS v2.6 (Nov 2010) on Mac Mini, Moderator of MiniDisc,amithlonopen,bwfc Yahoogroups -- Please post to: Hampshire@mailman.lug.org.uk Web Interface: https://mailman.lug.org.uk/mailman/listinfo/hampshire LUG URL: http://www.hantslug.org.uk -- -- Please post to: Hampshire@mailman.lug.org.uk Web Interface: https://mailman.lug.org.uk/mailman/listinfo/hampshire LUG URL: http://www.hantslug.org.uk --
Re: [Hampshire] Domestic ADSL ISPs
Annex A upto 16 down and _1_.3 up sorry -- Please post to: Hampshire@mailman.lug.org.uk Web Interface: https://mailman.lug.org.uk/mailman/listinfo/hampshire LUG URL: http://www.hantslug.org.uk --
Re: [Hampshire] Domestic ADSL ISPs
Seconded. BE ADSL lines are less prone to BT provided ones. No DLM for one. James Bensley jwbens...@gmail.com wrote: I would vote for Be here or Andrews and Arnolds over a Be line. -- Please post to: Hampshire@mailman.lug.org.uk Web Interface: https://mailman.lug.org.uk/mailman/listinfo/hampshire LUG URL: http://www.hantslug.org.uk -- -- Please post to: Hampshire@mailman.lug.org.uk Web Interface: https://mailman.lug.org.uk/mailman/listinfo/hampshire LUG URL: http://www.hantslug.org.uk --
Re: [Hampshire] Data Destruction
Most software recovery will have problems recovering data after doing a simple zeroing of a drive. Truecrypt does this prior to filling with random data and further xeroing after would give most hardware recoveries problems. Rob Malpass li...@getiton.myzen.co.uk wrote: Hi all Yes this old chestnut again. Like most of us I guess, I have quite a few old hdds and we're now in chuck away mood. Physically I'll be disposing of these in as environmentally friendly a way as I can but destroying data is, as I remember, a bit tricky. I know data can be recovered even if you wipe the partition etc so here's my plan - any ideas how robust this is?? Essentially without a safe data shredding program, I'm going to use truecrypt to create an encrypted partition over whatever data was there beforehand. AFAIK this must overwrite what was there with a blank drive (not just a new partition table) which could only be accessed if they guessed my truecrypt encrypted password. So at best, someone could only ever get back to the blank encrypted drive - not the ntfs partition that was there before I formatted it with truecrypt. I guess anything's possible but how decent a solution is this? Cheers Rob -- Please post to: Hampshire@mailman.lug.org.uk Web Interface: https://mailman.lug.org.uk/mailman/listinfo/hampshire LUG URL: http://www.hantslug.org.uk -- -- Please post to: Hampshire@mailman.lug.org.uk Web Interface: https://mailman.lug.org.uk/mailman/listinfo/hampshire LUG URL: http://www.hantslug.org.uk --
Re: [Hampshire] Smartphones
(1) battery life, which is an industry wide problem, so pick up a spare battery from Amazon, and (2) not enough internal storage - you can indeed add a microsd but not all apps can use it. Battery life is a tad terrible yea, but running CM7 i get the whole day out of it most of the time. For the Desire, there is an app called Data2SD (rooted phones) - Which all apps can use, but doesn't work on all ROMs. http://www.youtube.com/watch?v=kB1D5L5lwBU :-) -- Please post to: Hampshire@mailman.lug.org.uk Web Interface: https://mailman.lug.org.uk/mailman/listinfo/hampshire LUG URL: http://www.hantslug.org.uk --
Re: [Hampshire] Smartphones
The ZTE Blade (Orange San Francisco) is a far better choice than the Wildfire S. Same specs, but has a 640x480 screen and better display overall. Even if you do get one locked to orange, there are free aps on Android Market that will work out your SIM unlock code easy peasy. I use an HTC Desire (bravo), have for nearly 18 months. Can't see a need to replace it as it does everything I need. For the Samsung, I cant really comment. Only ever used the SGS (I9000), which is a VERY nice phone. In all honesty, I'd try find a cheap HTC Desire .. Lovely phone!! It will do everything you want and should your curiosity play wicked, more. On Monday 03 October 2011 17:24:23 Paul Tansom wrote: A bit of a vague subject, but I'm looking at the possibility of finally getting a smartphone and at the moment the HTC Wildfire S and the Samsung Galaxy Ace are looking to be fairly decent entry level options. Has anyone any experience of these? I've seen some comments that the HTC can be a bit slow with the 600MHz processor, and the Galaxy is only 800MHz. Clearly it depends on how well they are designed to some extent, but both run Android (so I assume should be good with Linux). I think the Ace is the front runner at the moment for the better screen and marginally faster processor. As for usage, which will define whether performance is an issue to some extent, I will no doubt use it for web and email, but calendaring and a SIP client are of particular interest (clearly I need the right network to not block SIP traffic!). I'm not a bit gamer on my phone, but then I only have a Samsung G600 at the moment, so who knows with a smartphone! -- Please post to: Hampshire@mailman.lug.org.uk Web Interface: https://mailman.lug.org.uk/mailman/listinfo/hampshire LUG URL: http://www.hantslug.org.uk --
Re: [Hampshire] Video editing recommendation please
KDEnlive, Pitivi and Kino are what i mostly use. There are a few more, Open Movie Editor and Openshot Video Editor. Stopmotion too. GIMP also has a GAP (Gimp Animation Plugin) which can assist with adding funky artwork to clips. On Thursday 29 September 2011 14:12:54 Rob Malpass wrote: Hi all With due respect to those that do it all the time and love it - I hate video editing. What I need to do at the moment is take a 3 hour mpg file and split it (manually is fine I'm not in need of a batch job) into 6 half hour mpgs. My only experience is Windows Movie Maker which has always crashed on me with long mpgs. So I'm happy to try something Linux (Ubuntu probably but I do have a Slackware box). Could someone please suggest something that makes this simple job easy? I don't need anything more involved than something which lets me move to say 29 minutes, watch from there, then split when I click the mouse? Most of my boxes have 2Gb - is that enough? Cheers Rob -- Please post to: Hampshire@mailman.lug.org.uk Web Interface: https://mailman.lug.org.uk/mailman/listinfo/hampshire LUG URL: http://www.hantslug.org.uk --
[Hampshire] Some Freebies
Some a little OT.. ATX Case w/ Motherboard CPU+HS+FAN (intel celeron 3GHz, ATI mobo) - No memory, HDD or PSU. VHF/UHF Antenna (Biconical like) - Used on old Kenwood R5000 rig (not included) Sony VAIO laptop (not working (BIOS issue). Good working screen battery, keyboard is shot mind. CPU memory is believed to be OK. 4-HEAD VHS recorder/player (working) - Yea, I know, ld! Random PSU's (ranging from 3v to 30V) Sony XR-C6100R car stero w/ the trimmings (Rotary commander, wires etc) (believed to be working). Instructions etc. all included original box. All are free to a good home, but must be collected from Winchester, if anyone is interested Ian -- Please post to: Hampshire@mailman.lug.org.uk Web Interface: https://mailman.lug.org.uk/mailman/listinfo/hampshire LUG URL: http://www.hantslug.org.uk --
Re: [Hampshire] Blu Ray and Linux
Im more surprised people don't use google. Took me two mins to concoct MakeMKV and DumpHD. The latter actually working. Blueray playback linux I dont watch much movies, just use the drive for backups. But thought heck to it! DumpHD even provide a lengthy list of keys to use to decrypt your bluerays.. http://forum.doom9.org/showthread.php?t=123111 I do sometimes wonder... On Saturday 17 September 2011 08:03:39 James Courtier-Dutton wrote: Hi, Does anyone have experience with using Blu Ray on Linux? Blu Ray is a bit of a dead duck. It does not suit my use case at all well. I wish to have a server on my home network that acts as the media store. It will have inputs from DVB-S, DVB-T, DVDs, Youtube, iplayer. I have tested all those and they work well. My next thought is Blu Ray input, much like I do with DVD. I place DVD in the server, the server caches the DVD contents, and then I put the DVD in the attic. The server can then play the contents of that DVD any time I wish onto my TV. No need to search through cupboards for the DVD I want. After searching the web, I find that Linux support for Blu-Ray movies is somewhat limited, and might need special firmware for the Blu-Ray drive. I cannot seem to find out what the latest situation is. I was hoping to find something like: 1) Get a blu-ray drive of one of the following models, and Linux will work with it. or 2) Get any blu-ray drive and it now works with Linux. Does anyone actually have a blu-ray drive and have it working in Linux to watch movies on their Linux PC? My DVD-ROM drive is failing, so I need to buy a replacement soon, but was wondering if I should buy a Blu-Ray one, that can play blu-ray/dvd. I don't need to write any CD/DVDs. Kind Regards James -- Please post to: Hampshire@mailman.lug.org.uk Web Interface: https://mailman.lug.org.uk/mailman/listinfo/hampshire LUG URL: http://www.hantslug.org.uk -- -- Please post to: Hampshire@mailman.lug.org.uk Web Interface: https://mailman.lug.org.uk/mailman/listinfo/hampshire LUG URL: http://www.hantslug.org.uk --
Re: [Hampshire] Firewall distributions
On Wednesday 14 September 2011 15:09:57 Ian Park wrote: I've been running firewall distributions for a good few years now on an old Compaq low profile box (Pentium III, 500 MHz) which I bought from Jamie's. I started with Smoothwall v2.0, and added extra RAM when I upgraded to Smoothwall v3.0; it now has 512MB RAM and a 6.3GB HDD. About a year ago, an article in Linux Format caught my eye, and I decided to give IPCop a go - we have a fair few visitors over the year, and it's handy to be able to give them internet access via a wireless access point without having to let them loose to roam on my home network. IPCop's blue interface looked like the answer, but I've had no end of grief trying to get the WLANAP add-on for IPCop to work. I've tried a total of five different wireless LAN cards; IPCop v1.9.20 recognises only one of them (it uses the RaLink 2561 chipset), and even with that one, when I installed the appropriate version of the add-on it threw a wobbly at the end of the installation. To add to the fun, the WLANAP add-on doesn't work any more since the upgrade from 1.9.19 to 1.9.20 - the upgrade included a new kernel version, 2.6.32-4, and the latest version of wlanap-ipcop (3.0.0-c6) matches kernel version 2.6.32-3... Can anyone suggest an alternative route to where I want to be (i.e. the equivalent of IPCop with red, green and blue interfaces), please? I suppose in the end I could just stick a wired network card in the IPCop box and hook up to an external wireless access point, but that would mean using another power socket, and I already use about 18 in this room... Thanks in advance for any help Ian You could always chuck out that horrid Ralink chip, chuck in an Atheros. Atheros and intel along w/ Zydas tend to have some of the best support for using them as wifi softAP's. I'd suggest using an Atheros (5000 series chips are most supported impo) wifi, then use pfSense as your firewall/router. 2.0 is still in RC state, but gets regular updates and can do everything you are wanting and a tonne more. I have this running on a P3 533MHz box w/ 512MB and it does the job for what it's intended. Which handles Wifi (via atheros wifi), another wifi through AP hardwired, two LANs, a few VLANs VPN. Zeroshell was gearing towards support for wifi config via web-gui, but not sure how they progressed as I stopped using this for pfSense 2 years ago. It looked promising though (and this one is linux based). It did work however if you enabled it under the hood. You could always use RouterOS for x86 - You would need to check what wifi cards this supports, atheros I know are one lot. This OS is intended for RouterBoard family of routers - But Mikrotik have nicely made a download available to install on PC. It is a trial, however, but getting a license to use it isn't too expensive. DistroWatch have a list of firewalls for PC etc to use. However, I do not how new or updated this list is.. http://distrowatch.com/search.php?category=Firewallorigin=Allbasedon=Allnotbasedon=Nonedesktop=Allarchitecture=Allstatus=Active Good luck -- Please post to: Hampshire@mailman.lug.org.uk Web Interface: https://mailman.lug.org.uk/mailman/listinfo/hampshire LUG URL: http://www.hantslug.org.uk --
Re: [Hampshire] vsftpd confusion
On Wednesday 14 September 2011 02:50:48 Mike Burrows wrote: The owner or group ID of vsftp must be writeable to that folder, doesn't have to be 666/777, but say vsftp user is vsftp and group is vsftp, just make the folder writeable to that group, chown :vsftp /home/ftp; chmod g+w /home/ftp Either UID or GID writable will work, but if the folder is owned by your user too, you may just want to make the folder that vsftp writeable to group. -- Please post to: Hampshire@mailman.lug.org.uk Web Interface: https://mailman.lug.org.uk/mailman/listinfo/hampshire LUG URL: http://www.hantslug.org.uk -- Try another ftpd? ProFTPd or NCFTPd I honestly am shot for ideas -- Please post to: Hampshire@mailman.lug.org.uk Web Interface: https://mailman.lug.org.uk/mailman/listinfo/hampshire LUG URL: http://www.hantslug.org.uk -- OK so I am still trying to achieve anonymous download. Here is some of the output from lsof -i vsftpd 14795 root 3u IPv4 35342 TCP *:ftp (LISTEN) vsftpd 14797 nobody 0u IPv4 35343 TCP eddie.steele.net:ftp-dynamic-XXX-XXX-XXX-XXXC.knology.net:X (ESTABLISHED) vsftpd 14799 ftp 0u IPv4 35343 TCP eddie.steele.net:ftp-dynamic-XXX-XXX-XXX-XXX.knology.net:X (ESTABLISHED) I change the onership of /home/ftp to both nobody and ftp changing the group permissions to g+w in both cases and although I can connect to the ftp anonymously, classicftp cannot download a file. It reports cannot open file:filename. I even added a group ftp and changed the group of /home/ftp from root to ftp. In that case I could not connect to the server at all:( any more thoughts? TIA Mike -- Please post to: Hampshire@mailman.lug.org.uk Web Interface: https://mailman.lug.org.uk/mailman/listinfo/hampshire LUG URL: http://www.hantslug.org.uk -- -- Please post to: Hampshire@mailman.lug.org.uk Web Interface: https://mailman.lug.org.uk/mailman/listinfo/hampshire LUG URL: http://www.hantslug.org.uk --
Re: [Hampshire] Multiple Wifi access points acting as one.
You can get AP's that cleverly talk to one another and adjust themselves to their environment. I have seen them in other equipment too, Firetide being the one I remember most. They are really designed for large setups, hospitals, campus, large venues in fields or what not with hundreds of clients. Cheap asses like me just uses things like Open-WRT DD-WRT instead :-) If your access points support pre-auth mechanisms, then shared all the same SSID details, they should interoperate in a roaming setup just fine. This link explains rather simply... http://www.codealias.info/technotes/ieee_802.1x_pre- authentication_in_wireless_networks I setup a wifi using 3 TP-Link 901ND's in my landlords house, which is effing huge. All of these are running DD-WRT. Once you auth to one AP, you basically pre-auth to all other AP's the AP you just authed to can see share similar details with. This way when you roam between AP's, the impact is merely ms compared to nearly a whole second (and more if you have to wait for DHCP). You can even continue a VoIP call whilst you move between cells. The problem most experience is when the AP's dont support this feature, you have to do the full 4 way handshake again (even if it's to the same AP), which can take a second or so. Some clients will also drop a leased IP from DHCP if it disassociates from an AP. This would cause an immediate disconnect to your IM or VoIP or the like. Just so you know, I have used two cheap Natgear routers (the horrid white ones Virgin kicked out years back) together, same SSID/PSK, LANs shared, they did pre-auth absolutely fine, which was, err, shocking! -- Please post to: Hampshire@mailman.lug.org.uk Web Interface: https://mailman.lug.org.uk/mailman/listinfo/hampshire LUG URL: http://www.hantslug.org.uk --
Re: [Hampshire] natty - 2 weird things
On Sunday 11 September 2011 16:46:50 Rob Malpass wrote: Hi all For reasons of speed, I've not had chance to google this thoroughly so I do apologise if this is a well known bug - well 2 bugs actually... I'm running Ubuntu natty inside Virtualbox (host is Windows 7 fwiw). 2 problems: 1) For some reason, the top bar (whatever it's called - the one with Accessories Places System etc) changes from the usual brownish background to greyish before my very eyes - and I promise I have not setup a different theme! Probably a bug. But try enabling 3D hardware acceleration, give it a fair amount of video memory (16/32 should do). You will also need to install the guest additions/addons to make this work properly. Or you could turn off all the fancy rendering from compiz or whatever does it now. 2) Far more serious - I'm making changes to the network configuration (I want a static ip address and its default is dhcp) using network connections on the system menu and either 2a) It's disregarding the changes I make i.e. I change the ip address, then I do a ifconfig or cat /etc/resolv.conf and see no changes! 2b) I give it perfectly acceptable ip address, subnet mask, gateway and it still can't find the network. It's probably something obvious - so as I say - apologies if so - but if anyone can point me in the right direction I'd be grateful. It's probably NetworkManager having a spazz attack. It can be a notorious pain in the backside. You could try adding an entry to /etc/network/interfaces to manually configure the link, this will also cause NetworkManager to completely ignore it. man interfaces will tell you all you need to know :-) Depends on the type of network you have attached the VM too. I usually always use bridge, as it will virtually place it on the same network segment as the rest of your LAN. Most tend to go for NAT, as to hide it behind the host. NAT does force use of DHCP, I don't know if it will allow VM's that static IP through the NAT tho. Try bridged and using the same network range as your LAN. (You can firewall on the host to protect the VM/LAN if you're worried) Cheers Rob Hope this helps :-) -- Please post to: Hampshire@mailman.lug.org.uk Web Interface: https://mailman.lug.org.uk/mailman/listinfo/hampshire LUG URL: http://www.hantslug.org.uk --
Re: [Hampshire] vsftpd confusion
On Friday 09 September 2011 05:32:47 Mike Burrows wrote: I am messing with the above on my home Ubuntu Hardy Server. When I first set up the ftp server I could login anonymously but could not upload. Makes sense as the permissions on the default /home/ftp directory have to be changed. So per the advice chmodded them to 777. But then when I logout I cannot log back in. Changing permissions to 755 allows the login again but then I cannot upload! I should add that I had changed vsftpd.conf to allow anon upload. As an addition the anonymous user cant download files, regardless of the /home/ftp folder permissions. :( The owner or group ID of vsftp must be writeable to that folder, doesn't have to be 666/777, but say vsftp user is vsftp and group is vsftp, just make the folder writeable to that group, chown :vsftp /home/ftp; chmod g+w /home/ftp Either UID or GID writable will work, but if the folder is owned by your user too, you may just want to make the folder that vsftp writeable to group. -- Please post to: Hampshire@mailman.lug.org.uk Web Interface: https://mailman.lug.org.uk/mailman/listinfo/hampshire LUG URL: http://www.hantslug.org.uk -- -- Please post to: Hampshire@mailman.lug.org.uk Web Interface: https://mailman.lug.org.uk/mailman/listinfo/hampshire LUG URL: http://www.hantslug.org.uk --
Re: [Hampshire] vsftpd confusion
On Friday 09 September 2011 18:45:16 Mike Burrows wrote: The owner or group ID of vsftp must be writeable to that folder, doesn't have to be 666/777, but say vsftp user is vsftp and group is vsftp, just make the folder writeable to that group, chown :vsftp /home/ftp; chmod g+w /home/ftp Either UID or GID writable will work, but if the folder is owned by your user too, you may just want to make the folder that vsftp writeable to group. Most if not all the files associated with vsftpd seems to be root/root. Did I screw up the install? -rw-r--r-- 1 root root 1392 2008-02-01 19:30 AUDIT -rw-r--r-- 1 root root 2908 2008-02-01 19:30 BENCHMARKS -rw-r--r-- 1 root root 1046 2008-02-01 19:30 BUGS -rw-r--r-- 1 root root 4142 2011-03-25 14:10 changelog.Debian.gz -rw-r--r-- 1 root root 828 2011-03-25 14:10 copyright drwxr-xr-x 8 root root 4096 2011-09-08 22:45 EXAMPLE -rw-r--r-- 1 root root 4697 2008-02-01 19:30 FAQ.gz -rw-r--r-- 1 root root 1361 2008-02-11 22:42 README btw, what do you mean by ...vsftp user is vsftp? Who is the vsftp user, the anonymous person logging in? It was just an example... Usually when you run an ftpd, the service will initially call as root (to open port 21) then drop to a less privilaged user (for security). vsftp was merely an example as UID it may drop too. For security, the ftpd might deny 777/666 set folders and files and only allow ones owned or in the group in which the ftpd belongs to. It may (or may not) run as another user. I use 'lsof' for a majority of determining what does what, although there are netstat commands that can tell you what user opens what port. (lsof -i is the command I use). Cheers MIke -- Please post to: Hampshire@mailman.lug.org.uk Web Interface: https://mailman.lug.org.uk/mailman/listinfo/hampshire LUG URL: http://www.hantslug.org.uk -- -- Please post to: Hampshire@mailman.lug.org.uk Web Interface: https://mailman.lug.org.uk/mailman/listinfo/hampshire LUG URL: http://www.hantslug.org.uk --
Re: [Hampshire] Slightly OT - Firewall Server
Hey On Wednesday 07 September 2011 18:30:48 Rob Malpass wrote: Hi all A simple question: What is a firewall server? I've not heard of this term before. Is it: a) A pretty low spec server that's not got much processing power beyond that required to run ipcop or something similar? b) Something else Either It's basically a firewall/router/gateway system that also offers supplementary services more than just the usual uPnP, web telnet interfaces. Things like VPN gateway/server, anti-virus proxies, email content checking, intrusion detection/prevention etc. are all added in. There are other similar names, they are just like candy and sweets, soda, pop ginger. More common name now is Unified Threat Management (UTM). CyberGuard is part of Juniper, who make some impressive kit. IPCop is complete childsplay to the software that normally comes with these. I anticipate it will have more than one NIC but if I was looking for a really low spec server (or a few of them of identical physical dimensions) as I am at the moment, what's to stop me buying [1]? Nothing? :-p Will pee right over anything you'll get from Curry's or the like for the same price. Cheers Rob [1] http://www.speedie.co.uk/rackmount-pentium-4-c-25_37_83/cyberguard-fs250-50 0 -firewall-server-p-93 -- Please post to: Hampshire@mailman.lug.org.uk Web Interface: https://mailman.lug.org.uk/mailman/listinfo/hampshire LUG URL: http://www.hantslug.org.uk --
Re: [Hampshire] DDoS survival strategies
Turn off your router wait it out. Most ISP's will disconnect your session in
event of dDoS anyway.
Unless, the dDoS is not saturating all your available bandwidth, you just make
sure your firewalls and hosts do not send ICMP Port/Dest/Host/Net Unreachable
or TCP resets. Blackhole everything that would normally be dropped and you
prevent returning packets.
There is little more you can do than wait them out.
Usually best just to turn the router off, especially if it counts towards and
AUP or unit system or the like. If the router if off, no traffic can be sent
down
your line.
On Monday 05 September 2011 16:21:43 Damian L Brasher wrote:
Hi List
As a sys admin, depending on the scope of your responsibilities, it is
sometimes necessary to diagnose DDoS - distributed denial of service -
attacks and attempt resolve them.
This is a simple script I use to check apache logs for signs of website
DDoS, [1]walk-through below:
#!/bin/bash
FILE=access_log;
for ip in `cat $FILE |cut -d ' ' -f 1 |sort |uniq`;
do { COUNT=`grep ^$ip $FILE |wc -l`;
if [[ $COUNT -gt 10 ]]; then echo $COUNT: $ip;
fi }; done
Some general questions to discuss, I have reserved thoughts and
knowledge, but would like to read other peoples comments too:
What general growing problems do systems engineers face in the future?
Will IPv6reduce DDoS attack success or enhance the attacker's tool kits?
Can we reassure customers that they will not lose business to DDoS
without investing large amounts capital in security technologies?
What do you think? - is DDoS a global or local problem; or both?
Is anyone able to share scripts like the one above?
Damian
[1] Simple script I use to check apache logs for signs of website DDoS
walk-through (can be copied and pasted into a text file and renamed
'ddos_check.sh' then chmod +x ddos_check.sh):
(invoke the bash interpreter)
#!/bin/bash
(access_log can be replaced with any apache log file name
FILE=access_log;
(cat concatenates the log file, then cut takes the first field - which
is the hit IP address. This could be a visitor, bot or malicious IP. The
IP addresses are sorted for clarity, only a unique is IP moved on for
processing)
for ip in `cat $FILE |cut -d ' ' -f 1 |sort |uniq`;
(the variable COUNT is filled with the resulting IP address from the
processed log file output and the number of IP instances calculated)
do { COUNT=`grep ^$ip $FILE |wc -l`;
(if the number of IP instances is over 10 - this will normally be set to
1000's - then the IP address and number of instances in the log file is
printed to standard output)
if [[ $COUNT -gt 10 ]]; then echo $COUNT: $ip;
(end of script)
fi }; done
You can see IP's that are hammering your web-site:- use whois to glean
more information, then check for repetition patterns. For Linux use
firewall and/or tcpwrappers to block.
--
Please post to: Hampshire@mailman.lug.org.uk
Web Interface: https://mailman.lug.org.uk/mailman/listinfo/hampshire
LUG URL: http://www.hantslug.org.uk
--
Re: [Hampshire] DDoS survival strategies
On Monday 05 September 2011 17:51:47 Andy Smith wrote: Hi Benjie, On Mon, Sep 05, 2011 at 05:24:51PM +0100, Benjie Gillam wrote: One thing to mention with IPv6 is that the namespace is /FAR/ larger than IPv4 (10^29 times as big, roughly), so internet wide scans will no longer be feasible based solely on incrementing IP addresses (they could filter it down by only the assigned IP addresses though, but that's still a pretty large namespace). [At 1 American trillion (10^12) addresses per second it would take ~10^19 years to scan the entire namespace, vs just 72 minutes for IPv4.] You still have to publish addresses of hosts in the DNS and places like that. I don't believe scanning will die out with IPv6, it will just need to be more focused. Indeed it will, although, there are already techniques using Neighbour Discovery and other tricks of the trade to fine active IP6 hosts within a scope. Cheers, Andy Once an attacker has an IP, or even a route in which to send traffic in hopes it will be sent to your network (If you get a /27 from your ISP on IP4, and only use the first 4 IP's, even sending traffic to any of the other unused ones will still be sent down your line.) - Same applies in IPv6. Bombard the unused IP's with traffic still floods your connection, even if something is responding to it or not. Most routers will host-unreach in this situation, causing upload saturation too. IPv6 does make it easier to hide hosts, but this is merely security through obscurity. You get a /64 of IPv6, you have several million places to hide a server and any random person the other end of the globe will spend a long time looking for it. Same can be said on IP4, just by not using standard ports on things that don't essentially need them. dDoS will always be a problem - only way that it could be thwarted is smart designs of border routers etc. to know the bandwidth of set routes as to reduce traffic flow before it reaches the destination. This of course introduces additional problems in cases of spike traffic flows etc. - -- Please post to: Hampshire@mailman.lug.org.uk Web Interface: https://mailman.lug.org.uk/mailman/listinfo/hampshire LUG URL: http://www.hantslug.org.uk --
Re: [Hampshire] error competition
Setting no read/write/exec perms on all files and subdirs in a certain folder on a shared user system... root@local: chmod -R 000 / instead of, chmod -R 000 ./ it took a while to get it all back running! On Friday 19 August 2011 10:21:06 Edward Beckmann wrote: Hi All As it's friday and I have just caused my longsuffering sysadmin to moan at my stupidity yet again , I thought I would offer a challenge for amusing typos or human errors. Examples could be: who can do the most damage to a system with the fewest number of keystrokes? what duff error gives the most spectacular failure? what error can trigger the longest chain of disasters? I am sure you get the gist Bonus marks for anyone brave / foolhardy enough to say I did ... as opposed to I knew someone who did ... -- Please post to: Hampshire@mailman.lug.org.uk Web Interface: https://mailman.lug.org.uk/mailman/listinfo/hampshire LUG URL: http://www.hantslug.org.uk --
Re: [Hampshire] Captive portal
pfSense m0n0wall both have VERY capable captive portals. Both free/opensource downloads. These are FreeBSD based firewall/router distros. pfSense 2.0 has a superior captive portal to 1.2.3 more features. I have never used m0n0walls, but have heard it is good. pfSense's i can vouch for and use myself. It can either use a radius server for authing users, or the builtin user database. It has a whole host of other features too. MAC filtering, limited users per-mac, tokens, PHP support for your own content etc. All the usual fancy stuff you expect to find. Chillispot and what not I find quite complex and means you have to fumble around with firewalls etc. too. pfSense's Just Works(tm). pfSense can also be your wireless AP too, if you use a support wifi card (atheros zydas are most reliable). Should run on pretty much any 586 class and better PC. Even the old alixboards. Hope this helps.. Ian On Tuesday 16 August 2011 12:04:55 James Courtier-Dutton wrote: Hi, Does anyone know if there is an open source captive portal? I am looking for a box that provides access control like you get in airports or hotels. I.e. User tries to get to a web site, but instead gets diverted to a web page asking for credit card details etc, or a user login. Only once the user has been identified, does it let them onto the internet for real. Kind Regards James -- Please post to: Hampshire@mailman.lug.org.uk Web Interface: https://mailman.lug.org.uk/mailman/listinfo/hampshire LUG URL: http://www.hantslug.org.uk -- -- Please post to: Hampshire@mailman.lug.org.uk Web Interface: https://mailman.lug.org.uk/mailman/listinfo/hampshire LUG URL: http://www.hantslug.org.uk --
Re: [Hampshire] Backup solution - SDLT worth it?
I use an LTO-2 half height, it's a SAS (serial attached SCSI) effort but only seems to manage 400GB a go (uncompressed).. However, they are relatively fast and can manage around 80TB/hr transfers, it reckons more but with my hardware complement this is what I achieve. Some of these are quite pricey, but freecom do a relatively decent one for around £60. Never looked at any other options, used to use DAT drives, but one I had only did 72GB. Hope this helps Ian On Sunday 24 July 2011 19:08:01 Rob Malpass wrote: Hi all I need some sort of decent method of backing up 2TB besides just buying an external HDD - which is what I already have. Having looked around - online storage is out (way too pricey) and Blu Ray is too small. Tape looks the best bet but SDLT (which seems to be an affordable medium) might be getting a bit old... Does anyone use SDLT? If so, what do you think of it? Any ideas how long it takes to restore a backup of 600Gb (which seems to be the tape's max capacity)? Cheers Rob -- Please post to: Hampshire@mailman.lug.org.uk Web Interface: https://mailman.lug.org.uk/mailman/listinfo/hampshire LUG URL: http://www.hantslug.org.uk --
Re: [Hampshire] [OT] BT Broadband?!
On Thursday 14 July 2011 12:19:59 Chris Dennis wrote: Hello folks I find myself being tempted away from the reliable plainness of UKFSN/Entanet broadband towards the glossy excitement of BT broadband. For these reasons: * I need a new wifi router anyway, and I'll get a free one with BT. * It will probably be cheaper once the free UK landline calls and other goodies are factored in. * They offer lots of free wifi hotspots via BT Fon and BT Openzone, which will be of interest to me if I get a smartphone or tabletty thing. Has anyone used BT Fon? Is it any good? I have experience of wrestling with BT Broadband customer support on behalf of customers -- it's often not fun. But on the other hand, for a lot of people BT Broadband is very reliable. What does the team think? Would moving to BT be a mistake? cheers Chris BT FON/Openzone has by far the greatest coverage for Open hotspots. This is unmatched by even any areas with WISPs. I have conducted numerous wifi mappings of numerous towns and cities and can vouch for this. In Winchester alone, BTOpenZone/FON account for over 90% of the Open access points and have almost wall-to-wall coverage in both City and residential areas. The speeds of these FONs for you to use when away from home vary greatly. If you use someone who is in the sticks on a 2M connection, you will get a VERY small share of their bandwidth. If you hit an area with someone with a 20mbps connection, you would see fair speeds. I can not comment for their performance or reliability, as I never use them. Im a pure hater of BT personally, but being the big guns they are, they clearly have more resources. BT have poor customer service and subject their users to horrid DLM (the case for all 21CN/FTTC users even on other ISPs). I use AAISP personally, simply because they offer everything a geek needs to get a decent internet w/ both 21CN, BE L2TP over a Virgin Media link. The free router, access to FON and cheaper calls as part of a bundle is a tempting offer, and is probably the only good things BT have going for it in my personal opinion :-) - However, go for it. Order it online, or over the phone. That way you have the Distant Selling Act thing on your side. So if you don't like it, you have a statutory cooling off period. -- Please post to: Hampshire@mailman.lug.org.uk Web Interface: https://mailman.lug.org.uk/mailman/listinfo/hampshire LUG URL: http://www.hantslug.org.uk --
Re: [Hampshire] confused ssh newbie
Which router is it? Usually mapping WAN: to LAN:22 is should automatically remap the returns packets. Not sure if your particular router needs an additional firewall rule, most automatically do so per-mapping. You could always change the sshd to too! :-) Ian On Wednesday 22 June 2011 03:09:25 Mike Burrows wrote: Hi folks. I can ssh into my debian machine on port 22 (with that port forwarded on my router) using ssh testerm...@some.dyndns.org However, when i change the port to (changing the router of course) and repeat using ssh -p testerm...@some.dyndns.org I get an error that the connection was reset by peer and I cannot ssh in. What am I not doing please? TIA Mike -- Please post to: Hampshire@mailman.lug.org.uk Web Interface: https://mailman.lug.org.uk/mailman/listinfo/hampshire LUG URL: http://www.hantslug.org.uk -- -- Please post to: Hampshire@mailman.lug.org.uk Web Interface: https://mailman.lug.org.uk/mailman/listinfo/hampshire LUG URL: http://www.hantslug.org.uk --
Re: [Hampshire] [OT] Networking course
Hey Rob, On Sunday 19 June 2011 12:15:23 Rob Malpass wrote: Hi all Can anyone recommend a (preferred) distance learning course on networking / telecomms? I simply can't find anything at the OU that fits the bill - if anyone knows a good one please let me know. Please excuse the rather wooly question but allow me to explain... The OpenUniversity do offer CCNA and like courses (Cisco network certification). If that doesn't fit the bill, try http://www.openstudycollege.com - Look for CompTIA courses, Networking+ etc. Not cheap, usually, but damned good courses. I'm not enjoying my Computing degree much at the moment - too much object oriented programming. Recently however I've become a bit more interested in networks and possibly even telecomms. Everything I know about networking I've taught myself through largely trial, error and a lot of googling. I know a bit - but not enough to configure an ipcop firewall with any certainty I've got it right. Now, with a bit of time on my hands for once, I'd like to study networking properly. I'm loathe to just buy a book and read it (unless someone can suggest something really good). Two good books I enjoyed were Kevin Mitnick - William L. Simon, Art of Intrusion Art of Deception - Which more teaches of the social element of computer/network (in)security. O'reilly do some good reads too, TCP/IP Network administration 3rd edition, Network Security Assessment and Network Security Hacks 2nd Edition. Getting books to learn up on IPv6 might be of benefit, especially if this new IP is going to be seen and heard more of in upcoming years. Obviously for playing / testing I'd like to use Linux so can anyone recommend something. The only references I have are Hacking Exposed and Firewalls for Dummies but I'm not really enjoying using that - perhaps I'm beyond Dummy! BSD are excellent systems if you want to gear at networking. Linux is too, for some, but I find the raw networking abilities of BSD systems far superior to linux. OpenBSD is as raw as you get, FreeBSD is the simplest of them. NetBSD is more for the funky architects. Cheers Rob G'luck, Ian -- Please post to: Hampshire@mailman.lug.org.uk Web Interface: https://mailman.lug.org.uk/mailman/listinfo/hampshire LUG URL: http://www.hantslug.org.uk --
Re: [Hampshire] Home network cabling
Hi Rob, You would usually run independent cables from each ethernet socket. These then connect into a central hub or switch, or similar. Drilling as few holes as possible is always the best practice. It all depends how your house is constructed on what would be the easiest way to do it. If you choose to run cable outside, you just need to use external wiring (as to protect it from UV damage etc.). You would not require a 'lightning rod', just tie the wires close to the building like BT, Sky, VM do. If you have to drill holes into walls and what not, just be careful for internal wiring and pipes. Lifting floor boards and coming down through corners of the ceiling (which is what I've done for ethernet coax) covered with plastic fitting is another approach. Depends where the rooms are adjacent to one another. Hope this helps, Ian On Tuesday 07 June 2011 16:40:55 Rob Malpass wrote: Hi all Keeping this as short as possible - if I want to have an ethernet socket in 2 rooms other than the room which contains the router, do I have to run 2 cables (one from study to room A and another from study to room B) or can I run one cable (from study to room A then on from room A to room B)? If running the cables internally I'd be running two cables each connected to the hub - but the more cables I run outside the bigger the hole I have to drill or the more holes I have to drill risking it look unsightly. I've had all sorts of different stories from local aerial installers who are happy to drill the holes but not sure of the wiring! Last question: one bloke told me I can't run the cables outside without fitting some sort of lightning rod at each end costing hundreds of quid - surely this is wrong? At least - ntl engineer who did exactly this at my old house didn't mention it when he did precisely the same job! Cheers Rob -- Please post to: Hampshire@mailman.lug.org.uk Web Interface: https://mailman.lug.org.uk/mailman/listinfo/hampshire LUG URL: http://www.hantslug.org.uk --
Re: [Hampshire] Recommendations for a PPPoE Router for VDSL
Your safest bet would be a routerboard, either the 750G or the 450G. http://linitx.com/viewcategory.php?catid=194 is probably the best place to get them from. As I understand it, version 5 of RouterOS supports mini-jumbos over PPP, allowing full 1500 MTU frame, yes, over PPPoE :-) (1508) They do NATless, as well as can native or tunnel IPv6. They are not for the faint hearted, non-techie though. The only thing it falls on, it is 5 ports. However, it will happy go lucky VLANs etc. However, failing that, the Draytek Vigor 2820 series might be of interest as that has pretty much everything all minus the 8 ports. On Friday 13 May 2011 16:17:19 Imran Chaudhry wrote: Hi, I'm after some recommendations please for a VDSL router, the requirements are: * supports PPPoE (it's being used with Zen Fibre broadband) * Non-NAT mode * 8-ports * business-grade, eg. something in the £50 - £150 range? and beefier cpu and ram * it would be nice to have features like 3G for internet failover Thanks! -- Please post to: Hampshire@mailman.lug.org.uk Web Interface: https://mailman.lug.org.uk/mailman/listinfo/hampshire LUG URL: http://www.hantslug.org.uk --
[Hampshire] FreeBSD VPS Providers
Hey all, I have a new project plan coming up but am in dia need for reliable FreeBSD VPS. I have found switchlink, who so far seem reliable. Google yields little results would love to hear from anyone who may be fortunate enough to know of places that are reliable. Xen HVM is preferred and IPv6 support at VPS DC is a must. EU locality is preferred. Thanks in advance, Ian -- Please post to: Hampshire@mailman.lug.org.uk Web Interface: https://mailman.lug.org.uk/mailman/listinfo/hampshire LUG URL: http://www.hantslug.org.uk --
Re: [Hampshire] Networking for Dummies
If you have a relatively powerful spare PC, use pfSense. This has AV proxy, Snort w/ ET THREATS standard rules (VPS if you pay snort for them). It also supports a wealth of other things not found in SOHO routers, or router distros. You can easily firewall, segregate, bridge or whatever into his own little portion of the network. Protect his PC w/ snort and squid w/ clamav etc. Best of all, its free! http://www.pfsense.org On Saturday 07 May 2011 09:49:29 Rob Malpass wrote: Hi all Moving house shortly which means, for the first time, I have to have my father in law on my network. Now while he's no hacker, he is fond of fiddling and has managed to crash his (Windows) machine so badly over the years that nothing short of a full reinstall has fixed it. His fiddling ranges from downloading patches for stuff he's never thought of using, to coverdisks with offers of games if you include enough adware that checks for updates every time it starts up. I'm sure you get the picture! So he's now going to be part of my LAN. Previously, we have had the luxury of two broadband connections: one cable, one ADSL and I had thought of putting him on a separate router and let that be that. At the new place though, while there are two lines, it seems pointless to pay for another ADSL connection just to keep him isolated. What I want is to keep him isolated so he can't even see any network devices, printers - just let him share the connection. I'm thinking: 1) He runs Kapersky so presumably I could tweak this to allow him only access to IP addresses with outbound traffic outside my LAN's range. 2) Setup some sort of rule on the router - not sure how to do this. 3) IPCop is probably the most detailed solution -but again not sure. Is there an obvious solution out there. I don't want to buy netnanny or something like that for him - far too obvious and condescending but I am really worried. I don't want to software firewall the rest of the family's machines so tightly that they become restricted. Cheers Rob -- Please post to: Hampshire@mailman.lug.org.uk Web Interface: https://mailman.lug.org.uk/mailman/listinfo/hampshire LUG URL: http://www.hantslug.org.uk --
Re: [Hampshire] Networking for Dummies
On Saturday 07 May 2011 12:41:55 Ian Grody wrote: If you have a relatively powerful spare PC, use pfSense. By this, I use a P3 533MHz w/ runs snort and av proxy fine. This box handles 34 users at any one time too! :-) This has AV proxy, Snort w/ ET THREATS standard rules (VPS if you pay snort for them). It also supports a wealth of other things not found in SOHO routers, or router distros. You can easily firewall, segregate, bridge or whatever into his own little portion of the network. Protect his PC w/ snort and squid w/ clamav etc. Best of all, its free! http://www.pfsense.org On Saturday 07 May 2011 09:49:29 Rob Malpass wrote: Hi all Moving house shortly which means, for the first time, I have to have my father in law on my network. Now while he's no hacker, he is fond of fiddling and has managed to crash his (Windows) machine so badly over the years that nothing short of a full reinstall has fixed it. His fiddling ranges from downloading patches for stuff he's never thought of using, to coverdisks with offers of games if you include enough adware that checks for updates every time it starts up. I'm sure you get the picture! So he's now going to be part of my LAN. Previously, we have had the luxury of two broadband connections: one cable, one ADSL and I had thought of putting him on a separate router and let that be that. At the new place though, while there are two lines, it seems pointless to pay for another ADSL connection just to keep him isolated. What I want is to keep him isolated so he can't even see any network devices, printers - just let him share the connection. I'm thinking: 1) He runs Kapersky so presumably I could tweak this to allow him only access to IP addresses with outbound traffic outside my LAN's range. 2) Setup some sort of rule on the router - not sure how to do this. 3) IPCop is probably the most detailed solution -but again not sure. Is there an obvious solution out there. I don't want to buy netnanny or something like that for him - far too obvious and condescending but I am really worried. I don't want to software firewall the rest of the family's machines so tightly that they become restricted. Cheers Rob -- Please post to: Hampshire@mailman.lug.org.uk Web Interface: https://mailman.lug.org.uk/mailman/listinfo/hampshire LUG URL: http://www.hantslug.org.uk -- -- Please post to: Hampshire@mailman.lug.org.uk Web Interface: https://mailman.lug.org.uk/mailman/listinfo/hampshire LUG URL: http://www.hantslug.org.uk --
Re: [Hampshire] Wireless repeater / bridge
Another option is to use 5Ghz wifi. There is much less noise far more bandwidth on the spectrum. Plus on Band B 5Ghz, you can kick out upto 1W EIR, which can range pants loads more than 2.4Ghz. 5Ghz also permeates walls large obstructions better. It would however mean refitting everything that wants wifi to do 5GHz (which isn't a lot of things). The idea of range extenders is generally a bad idea, as others said you will half it's speed on each new point. However, there is some clever meshing kit available from Ubiquity http://www.ubnt.com/ which can mesh multiple AP's slightly more cleverly than SOHO WDS. Nanostations are especially nice, as they have a spectrum analyser built-in, as to see the noise on wifi channels properly, not like inSSIDer or kismet, but actually spectrum (including other devices using the 2.4GHz range). Some access points can share SSID/PSK, sit on different channels and not bridge/point to point with one another, but when you move out of range of one into another, your wifi client will have to reauth, causing a momentary blip in connectivity. However, if their LAN is on the same VBC/Subnet, the blip will be mere seconds could allow to resume connectivity (as DHCP will most likely give that MAC the same IP again). I use a setup like this for the house wifi, residents downstairs get AP downstairs, upstairs the one upstairs etc. it works almost flawlessly. However, not all AP's will let this happen, they will fight for the client and _will_ cause elevated noise on the 2.4Ghz spectrum. -- Please post to: Hampshire@mailman.lug.org.uk Web Interface: https://mailman.lug.org.uk/mailman/listinfo/hampshire LUG URL: http://www.hantslug.org.uk --
Re: [Hampshire] can anyone recommend a domain registrar ?
LCN... (formerly Telivo) The only ones I stick with now. Good pricing, excellent control panel, does all the trimmings you need (DNS management / email web forwarding, GLUE, multiple profiles for RIPE etc.) Not sure they accept Paypal though... Never had to contact them for support either, so must be doing something right. On Sun, 2011-04-24 at 01:22 +, Andy Smith wrote: Hi Isaac, On Sun, Apr 24, 2011 at 01:45:22AM +0100, Isaac Close wrote: Anyway, i'm looking for a honest and reliable registrar so that I can move a handful of domains from my current registrar (that just ripped me off). Who were they and what did they do? I have a few .co.uk's and these are important to my business and one .com which i've not yet started to use but plan to soon. Any recommendations ? If they accept paypal that would be an advantage. Some thoughts on this from BitFolk's customers: https://tools.bitfolk.com/wiki/Domain_name_registrars Cheers, Andy -- Please post to: Hampshire@mailman.lug.org.uk Web Interface: https://mailman.lug.org.uk/mailman/listinfo/hampshire LUG URL: http://www.hantslug.org.uk -- -- Please post to: Hampshire@mailman.lug.org.uk Web Interface: https://mailman.lug.org.uk/mailman/listinfo/hampshire LUG URL: http://www.hantslug.org.uk --
Re: [Hampshire] Gallery software
On Wed, 2011-03-23 at 09:06 +, john lewis wrote: I was using Gallery2 on my original VPS running on lenny which I'd installed from the sid repo. Gallery2 hasn't even made it into testing, or rather it did but was withdrawn for some reason so isn't likely to get into squeeze any time soon. It is still in sid and is in lenny-backports so am wondering which would be the best version to install - or should I download the zipped tarball for Gallery3 and install that. I know some people on the list had also used Gallery2 but wonder what their current thinking is and if anyone has switched to Gallery3. I actually liked the ease of use of Gallery2 and am not sure I'd want to switch to another app, like albumshaper for example Gallery2 is the nicest of them, I've tried gallery3 and didn't like it so much. It's worth a shot to try it, you might like it. Zenphoto is another nice one, but I still prefer gallery2 to most of them.. -- Please post to: Hampshire@mailman.lug.org.uk Web Interface: https://mailman.lug.org.uk/mailman/listinfo/hampshire LUG URL: http://www.hantslug.org.uk --
