Re: Questions for network/hardware engineer candidates?

2016-07-06 Thread ronys
I'd ask for a "war story" that the candidate is proud of. How s/he
approached the problem, how methodical (or not), how false leads were
eliminated, what lessons were learned.

>From there I'd invent a slight variation, and see how the candidate handles
it.

You can also describe the symptoms of a problem you've actually had at your
site, and see how the candidate tracks it down.

Good luck.

On Tue, Jul 5, 2016 at 2:36 AM, Amos Shapira  wrote:

> Hi,
>
> My workplace is looking to fill in a position for a hardware/network
> person, someone to look mostly after the office network.
>
> Do people here have ideas about where to look for good interview
> questions/exercises for such a role?
>
> Thanks,
>
> --Amos
>
>
> ___
> Linux-il mailing list
> Linux-il@cs.huji.ac.il
> http://mailman.cs.huji.ac.il/mailman/listinfo/linux-il
>
>


-- 
Ubi dubium, ibi libertas (where there is doubt, there is freedom)
___
Linux-il mailing list
Linux-il@cs.huji.ac.il
http://mailman.cs.huji.ac.il/mailman/listinfo/linux-il


Re: portable encypted filesystem

2015-11-17 Thread ronys
https://www.boxcryptor.com

Note that they have a freemium business model. The free version should be
good enough for simple stuff.

On יום ג׳, 17 בנוב׳ 2015 at 11:27 Erez D  wrote:

> Hello
>
> It is very nice to hold some data on the cloud accessible from everywhere
> however if i do not want the cloud to have access to it, it requires
> encryption
>
> i could mount gdrive, dropbox or other cloud fs localy
> and mount ecryptfs on it so i have transparent encryption
>
> my only problem is that it works on linux only
>
> does anyone knows a way of having a portable transparent encryption
> which will support linux, and windows ?
> (would be nice if it will also support android (even if  i can not insmod)
> and ios)
>
> ___
> Linux-il mailing list
> Linux-il@cs.huji.ac.il
> http://mailman.cs.huji.ac.il/mailman/listinfo/linux-il
>
___
Linux-il mailing list
Linux-il@cs.huji.ac.il
http://mailman.cs.huji.ac.il/mailman/listinfo/linux-il


Re: geolocation in firefox

2014-04-16 Thread ronys
Hola (hola.org) might be able to help you re IP addresses.

Rony


On Wed, Apr 16, 2014 at 12:15 AM, Tomer Cohen to...@gmx.net wrote:

 The browser geolocation feature meant to provide sites access to an accurate
 location data from a GPS receiver or other techniques. This feature is in
 use by Google Maps as well as some other sites, but require your permission
 before submitting your location data once or per-session.
 https://developer.mozilla.org/en-US/docs/WebAPI/Using_geolocation

 Sites can't ever access this data without your prior permission. Since
 this is probably not the case, I don't think the geolocation API was used.
 The site in question probably located you by the GeoIP feature, which
 doesn't provide accurate location but a country of origin or estimated
 region in the country. It is more difficult to fake GeoIP since it is based
 only by your IP address, but you can use a proxy or a VPN to remove your
 traces.

 Given that said, sometimes it is easier to just change a preference on the
 site to provide you the site in another language (but still this won't
 remove any country restrictions for content).




 On Tue, Apr 15, 2014 at 11:55 PM, sara fink sara.f...@gmail.com wrote:

 Hello Everyone

 I changed enable.geolocation to false in firefox, but it still doesn't
 work with the site that I want to enter. I am still redirected to israeli
 site instead of the abroad site.

 Anyone knows why this configuration doesn't work? Is there another way to
 make it work? I tried the extension of geolocater but this one also doesn't
 work for new firefox versions

 ___
 Linux-il mailing list
 Linux-il@cs.huji.ac.il
 http://mailman.cs.huji.ac.il/mailman/listinfo/linux-il




 --
 Tomer Cohen
 http://tomercohen.com

 ___
 Linux-il mailing list
 Linux-il@cs.huji.ac.il
 http://mailman.cs.huji.ac.il/mailman/listinfo/linux-il




-- 
Ubi dubium, ibi libertas (where there is doubt, there is freedom)
___
Linux-il mailing list
Linux-il@cs.huji.ac.il
http://mailman.cs.huji.ac.il/mailman/listinfo/linux-il


Re: [hopefully on topic] is SSH secure in default configuration?

2013-09-08 Thread ronys
The algorithm itself is the least of your worries. In modern cryptography,
key management is the preferred target. With regards to ssh, this means the
key negotiation phase of the protocol handshake. Using your own keys of
reasonable size, and managing them properly, is your best bet for
reasonable security, along with configuring sshd not to fallback to SSHv1,
as Eliyahu wrote.

For a wider perspective of the latest NSA revelations, I recommend this
article by Bruce Schneier:
http://www.theguardian.com/world/2013/sep/05/nsa-how-to-remain-secure-surveillance

Rony


On Sun, Sep 8, 2013 at 3:19 PM, Oleg Goldshmidt p...@goldshmidt.org wrote:


 Hi,

 I am not hopeful to secure much of anything against the likes of NSA or
 GCHQ. However, my curiousity woke up when the latest
 NYT/Guardian/ProPublica pieces about NSA/GCHQ/friends compromising much
 of Internet encryption were accompanied by graphics like


 http://www.nytimes.com/interactive/2013/09/05/us/unlocking-private-communications.html

 Now, NYT is hardly a technical authority, but I assume they have
 technically competent sources and advisers. The above page lists Cisco,
 Microsoft (I wonder if they were the ones who outed Skype - chuckle),
 and EFF as sources.

 I shrug at HTTPS/SSl/TLS/VPN/Skype,IM - nothing surprises there. The
 only part that is somewhat surprising (and particularly relevant to
 Linux-IL) is SSH. Why is SSH (on Linux) included and is the inclusion
 justified?

 A glance at man 5 ssh_config (or man 5 sshd_config) reveals the
 Ciphers section and the default preference list for v2 ciphers, with
 AES-128 in the leading position. Can any security/cryptography guru here
 (Or? Aviram? Noam? anyone?) confirm or deny that AES-128 may be suspect?
 AES-256 still seems to be regarded as NSA-safe (but not RC4?

 http://www.theregister.co.uk/2013/09/06/nsa_cryptobreaking_bullrun_analysis/).
 Is
 it prudent to reconfigure ssh/sshd to prefer AES-256? Can anyone comment
 on performance impact of using AES-256 vs. AES-128 for the usual
 scenarios?

 I am not sure I quite understand the implications of AES-128 and AES-256
 both being NSA-approved as Type-1/Suite-B algos. I'd hope that NSA
 assume that anything they can break others can break, too, so Type 1
 product being defined as endorsed by the NSA for securing classified
 and sensitive U.S. Government information, when appropriately keyed
 hopefully means NSA cannot break it. However, there is also
 Type-1/Suite-A... Suite A being seemingly regarded as even more secure
 than Suite B (is it?) goes against the common cryptographic wisdom that
 says disclosed algos deserve more trust. Is it an indication that (at
 least) AES-128 may be somewhat vulnerable? Or is is only because AES was
 not historically NSA-sourced that it is in Suite B and not in Suite A?

 http://en.wikipedia.org/wiki/Type_1_product
 http://en.wikipedia.org/wiki/NSA_Suite_B_Cryptography
 http://en.wikipedia.org/wiki/NSA_Suite_A_Cryptography

 Back to NYT graphics: Another, more mundane possibility is that NSA's
 partial success against SSH (and/or OpenSSH implementation) means that
 SSHv1 and DES (and maybe the default triple-DES???) are vulnerable. That
 would not be a big surprise (at least the DES part).

 I am not changing the default SSHv2 Ciphers configuration unless someone
 I trust says AES-128 is suspect. And maybe not even then... But
 curiousity is killing this cat...

 --
 Oleg Goldshmidt | p...@goldshmidt.org

 ___
 Linux-il mailing list
 Linux-il@cs.huji.ac.il
 http://mailman.cs.huji.ac.il/mailman/listinfo/linux-il




-- 
Ubi dubium, ibi libertas (where there is doubt, there is freedom)
___
Linux-il mailing list
Linux-il@cs.huji.ac.il
http://mailman.cs.huji.ac.il/mailman/listinfo/linux-il


Re: Watch out for Bezeq

2013-09-02 Thread ronys
plug
PasswordSafe http://pwsafe.org, while mainly developed for Windows,
has usable
buildshttps://sourceforge.net/projects/passwordsafe/files/Linux-BETA/0.91/for
deb  rpm distros. Artistic
License 2.0 http://www.opensource.org/licenses/artistic-license-2.0.php.
/plug
disclaimerI'm the admin/lead developer of PasswordSafe/disclaimer


On Mon, Sep 2, 2013 at 2:10 PM, Rabin Yasharzadehe ra...@rabin.io wrote:


 On Mon, Sep 2, 2013 at 1:21 PM, Dotan Cohen dotanco...@gmail.com wrote:

 Go sign up for Lastpass, my entire office is now using it. I lets you
 set up individual passwords for every site, and they are encrypted
 locally.


 And remotely (on there servers)

 P.S,

 You can use it with Firefox on you mobile device (as firefox addon),
 just a note, that if you set the Password Iterations too high (5000 by
 there recommendation)
 it will increase Firefox loading time significantly


 --
 *Rabin*

 ___
 Linux-il mailing list
 Linux-il@cs.huji.ac.il
 http://mailman.cs.huji.ac.il/mailman/listinfo/linux-il




-- 
Ubi dubium, ibi libertas (where there is doubt, there is freedom)
___
Linux-il mailing list
Linux-il@cs.huji.ac.il
http://mailman.cs.huji.ac.il/mailman/listinfo/linux-il


Re: Recommendations for an all-in-one printer/fax/scanner?

2013-08-19 Thread ronys
Hi,

Thanks to all for your replies. Based on them and reviews, I've decided on
an HP Officejet Pro 8600+ (710 NIS, picking it up this evening). Will let
the honorable forum know if I find any surprises with this, for better or
worse.

Cheers,

  Rony
___
Linux-il mailing list
Linux-il@cs.huji.ac.il
http://mailman.cs.huji.ac.il/mailman/listinfo/linux-il


Recommendations for an all-in-one printer/fax/scanner?

2013-08-18 Thread ronys
Greetings,

My trusty HP all-in-one has finally gone to the great bit-bucket in the sky
after one of the scanner lid hinges broke, and I'm looking for a
replacement.

This is for home use: Color printing is required by family members. Other
than that, I'd like network connectivity (pref. via Ethernet, not WiFi),
and of course Linux-friendliness.

Back in the day, the consensus was anything but Lexmark. Has this changed?

Thanks,

  Rony

-- 
Ubi dubium, ibi libertas (where there is doubt, there is freedom)
___
Linux-il mailing list
Linux-il@cs.huji.ac.il
http://mailman.cs.huji.ac.il/mailman/listinfo/linux-il


Re: c/unix q

2013-06-04 Thread ronys
Nothing. You're just wasting resources (file descriptors) and making your
code a bit harder to understand and maintain.

Note that for pipe(), you can use both fds at both ends of the pipe, but
it's very easy to get into a race condition.Better to open a pair of pipes,
one for each direction (of course, you now need to worry about
deadlocks...).

Rony


On Tue, Jun 4, 2013 at 2:24 PM, Erez D erez0...@gmail.com wrote:

 hello

 using the usual pipe()+fork()+dup()+close() to fork a child process and
 pipe data from and to it,

 I  know both the child and parent must close the unused fds.

 why ?
 what if i don't close the unsed fds ?


 thanks,
 erez.


 ___
 Linux-il mailing list
 Linux-il@cs.huji.ac.il
 http://mailman.cs.huji.ac.il/mailman/listinfo/linux-il




-- 
Ubi dubium, ibi libertas (where there is doubt, there is freedom)
___
Linux-il mailing list
Linux-il@cs.huji.ac.il
http://mailman.cs.huji.ac.il/mailman/listinfo/linux-il


Re: Home made NAS

2012-12-04 Thread ronys
I've had good experience with FreeNAS (http://www.freenas.org/), but on a
box with homogenous disks/controllers. YMMV, but it's definitely worth
checking out.

Rony


On Tue, Dec 4, 2012 at 10:43 AM, David Suna da...@davidsconsultants.comwrote:

  I have a bunch of old machines lying around which are currently just
 collecting dust.  I would like to collect the disks from all of them, put
 them together into a single server to act as a file server / NAS on our
 home network.  There would probably be a combination of IDE and SATA
 drives.  What would you recommend as the best way to achieve this (with
 minimal cash outlay).  The home network is a mixed Windows and Linux
 environment so I assume I would run Linux on the new server and provide
 access to the disks via SAMBA.  For now the main function of the server
 would be to serve as a place to do backups.  I have never done anything
 with RAID so I don't know if that is something that I should take into
 consideration (especially as the disks are of varying sizes).

 Any information, suggestions or pointers would be appreciated.  I am
 viewing this as a learning experience (in addition to making use of old
 hardware for a positive purpose).

 Thanks in advance,

 --
 David sunada...@davidsconsultants.com


 ___
 Linux-il mailing list
 Linux-il@cs.huji.ac.il
 http://mailman.cs.huji.ac.il/mailman/listinfo/linux-il




-- 
Ubi dubium, ibi libertas (where there is doubt, there is freedom)
___
Linux-il mailing list
Linux-il@cs.huji.ac.il
http://mailman.cs.huji.ac.il/mailman/listinfo/linux-il


Re: Android phone question

2012-11-15 Thread ronys
Bought this for my daughter a few weeks ago, when the spec I had was the
cheapest phone possible that can run whatsapp. She's* **very* happy with
it (also installed some other apps, of course, but no hacking - yet). To my
old eyes, the screen's a bit small, but hey, that's just me.

R.


On Thu, Nov 15, 2012 at 5:05 PM, Steve G. word...@gmail.com wrote:

 Checked out prices, and the Galaxy 2 (2300 shekel) is a bit much.

 What is the consensus regarding Galaxy S5300 Pocket? Runs Gingerbread
 (Android 2.3) according to the specs (
 http://www.gsmarena.com/samsung_galaxy_pocket_s5300-4612.php), seems to
 have a GPS, and priced somewhere between 1/3 and 1/4 of the 2?

 I think it only works with Golan and Orange, but that is not a problem.

 Z.

 ___
 Linux-il mailing list
 Linux-il@cs.huji.ac.il
 http://mailman.cs.huji.ac.il/mailman/listinfo/linux-il




-- 
Ubi dubium, ibi libertas (where there is doubt, there is freedom)
___
Linux-il mailing list
Linux-il@cs.huji.ac.il
http://mailman.cs.huji.ac.il/mailman/listinfo/linux-il


Re: How can I explore what is causing my laptop to not come out of suspend properly when the lid is opened?

2012-06-20 Thread ronys
You might want to check the Lenovo support website to see if they've a
BIOS/driver update for your model that addresses this issue.

Rony

On Wed, Jun 20, 2012 at 9:17 PM, Michael Shiloh michaelshiloh1...@gmail.com
 wrote:

 For years I had been hibernating my laptop (Lenova T60 and now T61)
 instead of shutting down, and of course opening the lid did nothing until I
 pressed the power button. Besides the long amount of time it would take to
 come out of hibernation, this SEEMED to work fine, although sometimes I was
 presented with a login screen instead of an unlock screen, suggesting that
 I was booting up fresh rather than simply coming out of hibernation.

 Recently I've learned that suspend is quite reliable and of course much
 faster. I suspend either automatically on lid closure, or manually, and
 come out of suspend automatically when I open the lid.

 Occasionally, coming out of suspend fails. The power indicator light is
 on, as well as bluetooth and wifi. Wifi is even blinking occasionally, but
 I don't know what this means. The disc activity light is off.

 The only keys that are recognized are the NmLk and the little lamp that
 lights up the keyboard. I suspect these are handled by a microcontroller
 running the keyboard and not the main processor.

 Every other key and key combination I can think of is ignored, e.g. Ctrl
 Alt F1 etc. to get a console login.

 I have tried closing and reopening the lid, applying and removing external
 power, and pressing every single key, along with every combination of
 Shift Ctrl and Alt, as well as the blue Fn button. Other than the
 numlock and keyboard lamp, nothing has any effect.

 I have tried both hibernating automatically on lid closure, and
 hibernating manually prior to lid closure. The problem seems worse when I
 hibernate automatically, but this is not a terribly scientific conclusion.

 I realize now that I may have been seeing the same problem when coming out
 of hibernation.

 I recognize that the problem may not be been caused by a problem starting
 up, but rather, due to some error while hibernating or suspending.

 What can I do to debug this? Any suggestions, comments, and ideas would be
 appreciated

 Michael

 __**_
 Linux-il mailing list
 Linux-il@cs.huji.ac.il
 http://mailman.cs.huji.ac.il/**mailman/listinfo/linux-ilhttp://mailman.cs.huji.ac.il/mailman/listinfo/linux-il




-- 
Ubi dubium, ibi libertas (where there is doubt, there is freedom)
___
Linux-il mailing list
Linux-il@cs.huji.ac.il
http://mailman.cs.huji.ac.il/mailman/listinfo/linux-il


Re: Walla mail from Linux - Error 101 (net::ERR_CONNECTION_RESET): The connection was reset.

2012-05-31 Thread ronys
Looks like Walla's having electric problems at their servers:
http://www.globes.co.il/news/article.aspx?did=1000753302

R.

On Thu, May 31, 2012 at 1:39 PM, Nadav Har'El n...@math.technion.ac.ilwrote:

 On Thu, May 31, 2012, geoffrey mendelson wrote about Re: Walla mail from
 Linux - Error 101 (net::ERR_CONNECTION_RESET): The connection was reset.:
  Interesting, you get 503, but I get connection reset:
 
  In effect the same thing. The 503 is the real error, the connection
  reset is what you see when you go through a proxy which gets the
  same error.

 I believe it's the other way around?

 --
 Nadav Har'El|  Thursday, May 31
 2012,
 n...@math.technion.ac.il
 |-
 Phone +972-523-790466, ICQ 13349191 |A professor is one who talks in
 someone
 http://nadav.harel.org.il   |else's sleep.

 ___
 Linux-il mailing list
 Linux-il@cs.huji.ac.il
 http://mailman.cs.huji.ac.il/mailman/listinfo/linux-il




-- 
Ubi dubium, ibi libertas (where there is doubt, there is freedom)
___
Linux-il mailing list
Linux-il@cs.huji.ac.il
http://mailman.cs.huji.ac.il/mailman/listinfo/linux-il


Re: what happens if

2012-03-19 Thread ronys
FTFM:
The  child  process  is  created with a single thread - the one
that called fork().


2012/3/19 Erez D erez0...@gmail.com

 what happens if i am running a multithreaded app ( 3 threads ) and one
 thread calls fork() ?

 ___
 Linux-il mailing list
 Linux-il@cs.huji.ac.il
 http://mailman.cs.huji.ac.il/mailman/listinfo/linux-il




-- 
Ubi dubium, ibi libertas (where there is doubt, there is freedom)
___
Linux-il mailing list
Linux-il@cs.huji.ac.il
http://mailman.cs.huji.ac.il/mailman/listinfo/linux-il


Re: How do I disable NetworkManager in favor of dhcp setup?

2012-03-08 Thread ronys
 I've had luck with 'sudo telinit 6' in cases where the reboot command
failed. There's also a /proc variable that will force a reboot when written
to, but its name escapes me for the moment.

Rony


 Anyways, thanks for the pointers, trying them out now. For some reason,
 the machine doesn't seem to actually reboot when I type reboot from the ssh
 terminal, but rather it just logs out, so it takes some time to get
 feedback (I need someone there physically to reboot).

 --
Ubi dubium, ibi libertas (where there is doubt, there is freedom)
___
Linux-il mailing list
Linux-il@cs.huji.ac.il
http://mailman.cs.huji.ac.il/mailman/listinfo/linux-il


Re: init sequence

2011-11-20 Thread ronys
Hi,

I'm not familiar with 'e2fsc stage', but I solved a similar problem a while
ago by labelling the partitions and specifying the mount command with
LABEL=abc instead of an actual device name. UUID also serves the same
functiuons.

Rony

On Sun, Nov 20, 2011 at 12:10 PM, Avraham Rosenberg
for.avra...@gmail.comwrote:

 Hi,

   I added a second hardrive to an existing system. I moved there three
 directories which should be mounted at boot, and I added the corresponding
 entries in /etc/fstab.
   Trouble is that during the e2fsc stage of the boot, I often get the
 message nonexistent device˝ for their mount points. Apparently udev is
 slow to detect them: If I comment out their entries in /etc/fstab and e2fsc
 them after the end of the boot sequence, and subsequently mount them,
 it works allright.
 Any suggestion ?

 Thanks, Avraham
 --
 Please avoid sending Excel or Powerpoint attachments to this address.

 ___
 Linux-il mailing list
 Linux-il@cs.huji.ac.il
 http://mailman.cs.huji.ac.il/mailman/listinfo/linux-il




-- 
Ubi dubium, ibi libertas (where there is doubt, there is freedom)
___
Linux-il mailing list
Linux-il@cs.huji.ac.il
http://mailman.cs.huji.ac.il/mailman/listinfo/linux-il


[OT] Job offer: Linux system programmer in Haifa area

2011-05-24 Thread ronys
Hi,

Posting for a friend:

Looking for a Linux system level programmer in the Haifa area
- Experience in C++ development on Linux + GDB
- Knowledge in Linux system call usage
- Kernel development is a plus
- Work is for a new exciting startup.
- The project is for about 2 months with a potential for longer term work
- Partial work from home may be possible

Applicants please send resume to danny.geist at gmail dot com

Rony


___
Linux-il mailing list
Linux-il@cs.huji.ac.il
http://mailman.cs.huji.ac.il/mailman/listinfo/linux-il


[OT] Job Offer: Configuration Management Engineer

2011-04-11 Thread ronys
Hi,

[Posting this for a friend. If interested, please send me your CV and I'll 
forward it.]

A company in the Herzeliya area is looking for a person to take charge of their 
configuration management needs. This is a full-time position. Requirements as 
follows:

- At least 2-3 year as team leader in infrastructure
- Familiarity with UNIX/Linux at administrator level
- Experience with managing version life cycle (subversion, VS UAT)
- Experience with mnaging multiple versions for multiple projects
- Experence installing and supporting development, QA  production environments
- Familiarity with Windows at power user level.

Familiarity with the following are advantageous:
- Make
- Ant
- Perl
- Windows batch files
- StarTeam
- Virtualization
- Apache/Tomcat configuration


Cheers,

  Rony


___
Linux-il mailing list
Linux-il@cs.huji.ac.il
http://mailman.cs.huji.ac.il/mailman/listinfo/linux-il


RE: wiping files

2011-02-09 Thread ronys
Hi,

If you're stuck with Windows, then Eraser (http://eraser.heidi.ie/) is a
nice shred(1) equivalent + integration into Windows (e.g., right-click on a
file gives you 'Erase' in the menu, support for copy+erase original, etc.).

Rony

-Original Message-
From: linux-il-boun...@cs.huji.ac.il [mailto:linux-il-boun...@cs.huji.ac.il]
On Behalf Of Uri Even-Chen
Sent: Wednesday, February 09, 2011 11:24 AM
To: linux-il
Subject: wiping files

Hi everyone,

I'm looking for a free software to wipe files (permanently delete
files) on Windows. In the past I used PGP, but I prefer a free
software. I'm using TrueCrypt, but I didn't find any way to wipe files
with TrueCrypt. I tried Google but I can't find this software.

Thanks,
Uri Even-Chen
Mobile Phone: +972-50-9007559
E-mail: u...@speedy.net
Website: http://www.speedy.net/

___
Linux-il mailing list
Linux-il@cs.huji.ac.il
http://mailman.cs.huji.ac.il/mailman/listinfo/linux-il


___
Linux-il mailing list
Linux-il@cs.huji.ac.il
http://mailman.cs.huji.ac.il/mailman/listinfo/linux-il


RE: Looking for books/tutorials about Linux I/O

2011-01-27 Thread ronys
http://www.nostarch.com/tlpi

The site has links to some sample chapters you can download. The electronic
version (pdf) seems like good value to me, at $50.

Rony 

-Original Message-
From: linux-il-boun...@cs.huji.ac.il [mailto:linux-il-boun...@cs.huji.ac.il]
On Behalf Of Nadav Har'El
Sent: Thursday, January 27, 2011 10:22 AM
To: c...@actcom.co.il
Cc: linux-il
Subject: Re: Looking for books/tutorials about Linux I/O

On Thu, Jan 27, 2011, c...@actcom.co.il wrote about Looking for
books/tutorials about Linux I/O:
 someone asked me about information (books or online material)
 that explains everything about I/O on linux - as it goes
 from tghe application, via the file-system, the block device
 layer, SCSI layer, etc - how it works, how to monitor it, etc.

This isn't exactly what you were looking for, but perhaps it will be
somewhat helpful: There's a new book by Michael Kerrisk (the guy who wrote
many of the Linux man pages) called The Linux Programming Interface.
It's basically everything you ever wanted to know about the Linux API
(system
calls, glibc functions, etc.) and didn't know whom to ask. It includes
also dozens (if not hundreds) of pages on IO, filessystems, etc, etc.
It's geared towards how to *use* all these advanced APIs correctly - not
about the actual kernel code that implements them - I'm not sure if this
is a good or bad thing for what you're after.

The entire book is almost 1500 pages long (!), and unfortunately I haven't
read it yet, so I don't know if it's really as good as it is trumped out to
be
(right now on Amazon.com it has 15 customer reviews, and every single one
of them is five stars). Anybody on this list actually read (parts of) this
book and can comment on it?


-- 
Nadav Har'El|Thursday, Jan 27 2011, 22 Shevat
5771
n...@math.technion.ac.il
|-
Phone +972-523-790466, ICQ 13349191 |A cat has claws ending its paws. A
http://nadav.harel.org.il   |sentence has a pause ending its clause.

___
Linux-il mailing list
Linux-il@cs.huji.ac.il
http://mailman.cs.huji.ac.il/mailman/listinfo/linux-il


___
Linux-il mailing list
Linux-il@cs.huji.ac.il
http://mailman.cs.huji.ac.il/mailman/listinfo/linux-il


RE: CPU RAM in a storage box

2010-09-28 Thread ronys
DropBox is nice for what it does, but I'm not sure I'd consider them a
backup service.
 
For Linux-friendliness, I don't think that you can find something better
than  http://rsync.net/ http://rsync.net/, but I'd be happy to be proven
wrong. Note that they have discounts for Open Source developers. Disclaimer:
I have never used their products, and I am not associated with them in any
way.
 
Rony

  _  

From: linux-il-boun...@cs.huji.ac.il [mailto:linux-il-boun...@cs.huji.ac.il]
On Behalf Of Ori Idan
Sent: Tuesday, September 28, 2010 9:24 AM
To: Nadav Har'El
Cc: linux-il
Subject: Re: CPU  RAM in a storage box


I think dropbox.com can be used as a backup system to Linux.
It has a daemon for Linux, however the daemon itself is propriatry, the
GNOME Nautilus extension is not.

-- 
Ori Idan



On Tue, Sep 28, 2010 at 8:51 AM, Nadav Har'El n...@math.technion.ac.il
wrote:


On Mon, Sep 27, 2010, Michael Tewner wrote about Re: CPU  RAM in a storage
box:
 Have you seen this?
...

  At Backblaze, we provide unlimited storage to our customers for only $5
per
  month, so we had to figure out how to store hundreds of petabytes of

...

Looking at their site, it appears that while their systems run on Linux,
they don't give service to Linux machines. Is that true? Is there a similar
online backup service which does support Linux? I'd love to use such a
service
for my home Linux computer.

Nadav.

--
Nadav Har'El| Tuesday, Sep 28 2010, 20 Tishri
5771
n...@math.technion.ac.il
|-
Phone +972-523-790466, ICQ 13349191 |This box was intentionally left blank.
http://nadav.harel.org.il   |


___
Linux-il mailing list
Linux-il@cs.huji.ac.il
http://mailman.cs.huji.ac.il/mailman/listinfo/linux-il



___
Linux-il mailing list
Linux-il@cs.huji.ac.il
http://mailman.cs.huji.ac.il/mailman/listinfo/linux-il


RE: Laptop

2010-09-03 Thread ronys
Re which laptop, this is an interesting data point:
http://www.linux-mag.com/id/7851?hq_e=el
http://www.linux-mag.com/id/7851?hq_e=elhq_m=1065883hq_l=3hq_v=392d56542
1 hq_m=1065883hq_l=3hq_v=392d565421 
Re virtualization, I recommend the free  open source VirtualBox, which
works fine under Win7.
http://www.virtualbox.org/
 
Good luck,
 
Rony
 
 
 

  _  

From: linux-il-boun...@cs.huji.ac.il [mailto:linux-il-boun...@cs.huji.ac.il]
On Behalf Of Steve G.
Sent: Friday, September 03, 2010 6:05 AM
To: linux-il@cs.huji.ac.il
Subject: Laptop


My 4+ year old Macbook is dying a slow death, and I am contemplating getting
a new laptop and would like your advice. Here are the parameters:



*My environment is Linux, Ubuntu for the last 2-3 years, and I would
like to have it available to me on the laptop if I can. I have little use
for either Mac OS-X or Windows as far as actually making much use of the
software, beyond vary basic usage (iTunes, VLC, etc.). Linux is a different
story.


*I have several reasons to buy a Windows 7 machine. First, I have a
Magellan GPS that only works with Windows. Second, some bank accounts
require it to fully function. Third, I can get a lot more computer for the
money with Wintel than with Apple. Last, Ubuntu Laptops with the latest
hardware may or may not work. 

*   So, I am thinking about getting a 64x, core i3 laptop from Toshiba
or Dell. These are available with 13-15 screen, 250-350GB HD (I think IDE,
some are Sata but more expensive), 3-4GB RAM. In theory, at least, these can
be virtualized, and I should be able to run either vmware, xen, virtual box
or whatever client MS provides for free. One can get core i3 for around $500


So here are my questions:

1. Does anyone know if Win7 includes a virtualization program that would
allow me to run Linux under it? How efficient is it - will I be able to put
it on full screen, forget I am running Windows, and use my preferred
environment?

2. Any recommendations for something that is fully compatible with Linux, in
case I get an alternative and can get rid of the windows part?

3. Any other advice?

Thanks!

Z.
-- 
Check out my web site - www.words2u.net

___
Linux-il mailing list
Linux-il@cs.huji.ac.il
http://mailman.cs.huji.ac.il/mailman/listinfo/linux-il


RE: Linux books, fast shipping?

2010-08-30 Thread ronys
Here's another vote for Book Depository. Another point in their favor is
that they accept PayPal, whereas Amazon insists on having my credit card
number.
 
Rony

  _  

From: linux-il-boun...@cs.huji.ac.il [mailto:linux-il-boun...@cs.huji.ac.il]
On Behalf Of Jason Friedman
Sent: Monday, August 30, 2010 3:21 AM
To: ILUG
Subject: Re: Linux books, fast shipping?


I found the book depository (www.bookdepository.co.uk) reasonably fast and
cheap for computing books - they have free shipping (from England)
to Israel (and worldwide) on everything. The books usually get to Israel in
under a week.

Jason


2010/8/30 Kfir Lavi lavi.k...@gmail.com


Hi,
I need to buy 4 books, and would like a recommendation where I should buy
them in order to get them ASAP. 
Amazon is the first choice, but is it fast?

The books are:
1. Linux Kernel Development (3rd Edition) -
http://www.amazon.com/Linux-Kernel-Development-Robert-Love/dp/0672329468/ref
=sr_1_1?ie=UTF8
http://www.amazon.com/Linux-Kernel-Development-Robert-Love/dp/0672329468/re
f=sr_1_1?ie=UTF8s=booksqid=1282836812sr=8-1
s=booksqid=1282836812sr=8-1
2. Understanding Linux Network Internals -
http://www.amazon.com/Understanding-Network-Internals-Christian-Benvenuti/dp
/0596002556/ref=pd_sim_b_4
3. Understanding the Linux Kernel, Third Edition -
http://www.amazon.com/Understanding-Linux-Kernel-Third-Daniel/dp/0596005652/
ref=sr_1_2?ie=UTF8
http://www.amazon.com/Understanding-Linux-Kernel-Third-Daniel/dp/0596005652
/ref=sr_1_2?ie=UTF8s=booksqid=1282836812sr=8-2
s=booksqid=1282836812sr=8-2
4. Linux Device Drivers, 3rd Edition -
http://www.amazon.com/Linux-Device-Drivers-Jonathan-Corbet/dp/0596005903/ref
=sr_1_19?ie=UTF8
http://www.amazon.com/Linux-Device-Drivers-Jonathan-Corbet/dp/0596005903/re
f=sr_1_19?ie=UTF8s=booksqid=1282846665sr=8-19
s=booksqid=1282846665sr=8-19

Thanks,
Kfir


___
Linux-il mailing list
Linux-il@cs.huji.ac.il
http://mailman.cs.huji.ac.il/mailman/listinfo/linux-il






-- 
Jason Friedman
Postdoctoral scholar
Macquarie Centre for Cognitive Science
Macquarie University, NSW 2109 Australia
email: write.to.ja...@gmail.com
web: http://curiousjason.com

___
Linux-il mailing list
Linux-il@cs.huji.ac.il
http://mailman.cs.huji.ac.il/mailman/listinfo/linux-il


RE: What to do with a constant flow of attempts to login to my compuet?

2010-01-03 Thread ronys
Hi Gabor,

Moving sshd off  port 22 to any non-standard port worked fine for me. Most
attacks are too lazy to do a full portscan, so if they don't find the
default port open, they just move to the next host. Of course, this is
assuming that the attack chose you at random. If it's a targeted attack,
this won't help very much...

Cheers,

  Rony

-Original Message-
From: linux-il-boun...@cs.huji.ac.il [mailto:linux-il-boun...@cs.huji.ac.il]
On Behalf Of Gabor Szabo
Sent: Sunday, January 03, 2010 4:34 PM
To: linux-il
Subject: What to do with a constant flow of attempts to login to my compuet?

I just noticed someone bombarding my machine trying to login via ssh.
From auth.log

Jan  3 06:31:48 s6 sshd[22774]: Failed password for invalid user
amavisd from 202.138.142.216 port 35172 ssh2
Jan  3 06:31:48 s6 sshd[22773]: Failed password for invalid user
clamav from 202.138.142.216 port 39941 ssh2
Jan  3 06:31:49 s6 sshd[22780]: Invalid user clamav from 202.138.142.216
Jan  3 06:31:49 s6 sshd[22780]: pam_unix(sshd:auth): check pass; user
unknown
Jan  3 06:31:49 s6 sshd[22780]: pam_unix(sshd:auth): authentication
failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.138.142.216
Jan  3 06:31:49 s6 sshd[22781]: Invalid user appserver from 202.138.142.216
Jan  3 06:31:49 s6 sshd[22781]: pam_unix(sshd:auth): check pass; user
unknown
Jan  3 06:31:49 s6 sshd[22781]: pam_unix(sshd:auth): authentication
failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.138.142.216
Jan  3 06:31:52 s6 sshd[22780]: Failed password for invalid user
clamav from 202.138.142.216 port 35699 ssh2
Jan  3 06:31:52 s6 sshd[22781]: Failed password for invalid user
appserver from 202.138.142.216 port 40470 ssh2


So what is your suggestion. What to do with it?

Gabor

___
Linux-il mailing list
Linux-il@cs.huji.ac.il
http://mailman.cs.huji.ac.il/mailman/listinfo/linux-il


___
Linux-il mailing list
Linux-il@cs.huji.ac.il
http://mailman.cs.huji.ac.il/mailman/listinfo/linux-il


RE: Kudos to Osem

2009-12-28 Thread ronys
Of course it's a good idea to praise them, *especially* if the choice was 
random. This increases the chances of the choice being non-random next time...
 
Rony

  _  

From: linux-il-boun...@cs.huji.ac.il [mailto:linux-il-boun...@cs.huji.ac.il] On 
Behalf Of Shachar Shemesh
Sent: Monday, December 28, 2009 11:17 AM
To: Oron Peled
Cc: linux-il@cs.huji.ac.il
Subject: Re: Kudos to Osem


Oron Peled wrote:


The special thanks for Osem should be for not being clueless -- E.g: let's

use ActiveX, or even better, SilverPlight ;-)



  

I'll gladly thank them IF I find out it was a conscious decision - i.e. - that 
it was not the random choice of contractor that made them choose those 
particular technologies.

On second thought, maybe praising them even if the choice was random is still a 
good idea. Not sure.

Shachar 

  



-- 

Shachar Shemesh

Lingnu Open Source Consulting Ltd.

http://www.lingnu.com
___
Linux-il mailing list
Linux-il@cs.huji.ac.il
http://mailman.cs.huji.ac.il/mailman/listinfo/linux-il


[OT] Looking for a website conversion contractor/company

2009-11-11 Thread ronys
Hi,

I'm looking for a person or company to convert a mostly static website (hmtl + 
SSI) to a modern CMS.

The project includes:
- Designing a front page to replace the current one
- Designing a template for the contents
- Converting/importing a respectable part of  3000 existing html files (mostly 
Hebrew) to the new system.

We're currently satisfied with our hosting provider, but are willing to 
consider switching as part of the solution.

The project is for a non-profit organization (amuta) with a limited budget.

Finally, all other things equal, I'd prefer an open-source solution to a 
proprietary one.

TIA,

  Rony




___
Linux-il mailing list
Linux-il@cs.huji.ac.il
http://mailman.cs.huji.ac.il/mailman/listinfo/linux-il


RE: Codes snips on the web

2009-09-23 Thread ronys
http://www.nomorepasting.com/
http://pastebin.com/
http://pastebin.ca/
 
(In no particular order. I've used each of them a while ago.)
 
Rony

  _  

From: linux-il-boun...@cs.huji.ac.il [mailto:linux-il-boun...@cs.huji.ac.il]
On Behalf Of Michael Ben-Nes
Sent: Wednesday, September 23, 2009 11:23 AM
To: IGLU
Subject: Codes snips on the web


Hi, 

I noticed of http://snippets.dzone.com which provide a way to share code
snips in a web 2.0 like.
For years I kept my snips using private methods and I wish to start share
and access them more easily.

Does anybody knows of a better solution to share and keep code snips?

Cheers,
Miki
--
Michael Ben-Nes - Internet Consultant and Director.
http://www.epoch.co.il - weaving the Net.
Cellular: 054-4848113
--

___
Linux-il mailing list
Linux-il@cs.huji.ac.il
http://mailman.cs.huji.ac.il/mailman/listinfo/linux-il


RE: Virtualization recommendation

2009-09-15 Thread ronys
Hi,

Here's another vote for VirtualBox. Using it in both Windows host / Linux
guest, Linux(64bit) / Linux(32bit) and Linux / Windows. Integration with
host is excellent. Support is also quick  responsive.

You might want to make sure your laptop has a healthy amount of RAM,
regardless of the virtualization solution you choose.

Rony

-Original Message-
From: linux-il-boun...@cs.huji.ac.il [mailto:linux-il-boun...@cs.huji.ac.il]
On Behalf Of David Suna
Sent: Tuesday, September 15, 2009 8:53 AM
To: linux-il
Subject: Virtualization recommendation

I just bought a new Gateway laptop that comes with Windows Vista (and a 
free upgrade to Windows 7).  I want to be able to run both Linux (Ubuntu 
is my preferred distribution) and Windows (Vista for now, Windows 7 in 
the future) using virtualization.  I have not gotten into virtualization 
until now so I wanted recommendations about how to go about doing this.  
From what I have read so far I have the following options:

1. Host on Windows using VMWare (either VMware Player or Workstation)

2. Host on Windows using Microsoft Virtual PC

3. Host on Linux using VMWare, Xen etc but then I have to deal with 
installing Windows since the laptop comes with it but does not have 
separate installation disks


Recommendations for or against any of the above or information about 
other options that I left out would be appreciated.


Thanks,

-- 
David Suna
da...@davidsconsultants.com


___
Linux-il mailing list
Linux-il@cs.huji.ac.il
http://mailman.cs.huji.ac.il/mailman/listinfo/linux-il


___
Linux-il mailing list
Linux-il@cs.huji.ac.il
http://mailman.cs.huji.ac.il/mailman/listinfo/linux-il


RE: RE: Virtualization recommendation

2009-09-15 Thread ronys
 
Hi,

If you're going to run no more than one or two VMs simultaneously, the 4GB
should be fine.

Rony

-Original Message-
From: David Suna [mailto:da...@davidsconsultants.com] 
Sent: Tuesday, September 15, 2009 1:27 PM
To: ro...@acm.org
Cc: 'linux-il'
Subject: Re: RE: Virtualization recommendation

4GB should be enough.  Right?

David Suna
da...@davidsconsultants.com



ronys wrote:

 Hi,

 Here's another vote for VirtualBox. Using it in both Windows host / Linux
 guest, Linux(64bit) / Linux(32bit) and Linux / Windows. Integration with
 host is excellent. Support is also quick  responsive.

 You might want to make sure your laptop has a healthy amount of RAM,
 regardless of the virtualization solution you choose.

 Rony

 -Original Message-
 From: linux-il-boun...@cs.huji.ac.il
[mailto:linux-il-boun...@cs.huji.ac.il]
 On Behalf Of David Suna
 Sent: Tuesday, September 15, 2009 8:53 AM
 To: linux-il
 Subject: Virtualization recommendation

 I just bought a new Gateway laptop that comes with Windows Vista (and a 
 free upgrade to Windows 7).  I want to be able to run both Linux (Ubuntu 
 is my preferred distribution) and Windows (Vista for now, Windows 7 in 
 the future) using virtualization.  I have not gotten into virtualization 
 until now so I wanted recommendations about how to go about doing this.  
   
 From what I have read so far I have the following options:
 

 1. Host on Windows using VMWare (either VMware Player or Workstation)

 2. Host on Windows using Microsoft Virtual PC

 3. Host on Linux using VMWare, Xen etc but then I have to deal with 
 installing Windows since the laptop comes with it but does not have 
 separate installation disks


 Recommendations for or against any of the above or information about 
 other options that I left out would be appreciated.


 Thanks,

   


___
Linux-il mailing list
Linux-il@cs.huji.ac.il
http://mailman.cs.huji.ac.il/mailman/listinfo/linux-il


RE: [OT] Power over radio is it a true thing or just a myth ?

2009-08-28 Thread ronys
ubergeek-mode
Actually, the speed of light *in a vacuum* is the universal constant,
invariant regardless of the observer's frame of reference. 'C' is so defined
- the speed of light in vacuum.
This is now understood to be such a basic constant that in 1983, the meter
was defined in terms of the speed of light:
The definition states that the meter is the length of the path traveled by
light in vacuum during a time interval of 1/299,792,458 of a second.
http://www.mel.nist.gov/div821/museum/timeline.htm
 
Note that when a particle exceed the speed of light *in a given medium*, it
gives off cerenkov radiation, analogous to a sonic boom. This is the blue
glow you see in the water surrounding nuclear reactors - pretty cool.
http://en.wikipedia.org/wiki/Cherenkov_radiation
/ubergeek-mode
 
Rony

  _  

From: linux-il-boun...@cs.huji.ac.il [mailto:linux-il-boun...@cs.huji.ac.il]
On Behalf Of Shachar Shemesh
Sent: Friday, August 28, 2009 1:30 PM
To: Gilad Ben-Yossef
Cc: Linux-il@cs.huji.ac.il
Subject: Re: [OT] Power over radio is it a true thing or just a myth ?


Please excuse me for answering a humorous post seriously.

Gilad Ben-Yossef wrote: 


Despite popular belief, the speed of light is only fixed in vacuum and
scientists long acknowledged the fact that  light may travels in different
and lesser speeds when going through different materials, such as air, or
water. 


Again, not precisely accurate.

While light will, indeed, travel slower through any material denser than
vacuum, this is not what the term speed of light refers to. To the best of
my knowledge, speed of light refers to a basic property of the universe
(how fast will any change of any field propagate), and that is the property
that goes into the time warping formulas (the famous c in Lorentz
transformation). Just because light travels through glass at 30% less speed
does not mean you have to aim 30% lower if you want to freeze time (unless,
and this is something I'm not 100% clear about, YOU are traveling through
glass as well).



88 miles per hour, it would seem, is the speed of light as it travels
through Hollywood movies.


At least that one seems pretty accurate. This also explains why pretty much
anything looks different when viewed through the filters of a Holywood
movie. The huge refraction coefficient acts like lens, only much more
powerful.

Shachar

-- 

Shachar Shemesh

Lingnu Open Source Consulting Ltd.

http://www.lingnu.com
___
Linux-il mailing list
Linux-il@cs.huji.ac.il
http://mailman.cs.huji.ac.il/mailman/listinfo/linux-il


RE: Suggestion for a webmail application with good Hebrew Support

2009-08-18 Thread ronys
Note that if you're going to dd, at least use if=/dev/urandom. Running dd 
several (10) times is best (or using shred(1), which does the same).
 
Rony

  _  

From: linux-il-boun...@cs.huji.ac.il [mailto:linux-il-boun...@cs.huji.ac.il] On 
Behalf Of Shachar Shemesh
Sent: Tuesday, August 18, 2009 4:51 PM
To: Danny Lieberman
Cc: ILUG; geoffrey mendelson
Subject: Re: Suggestion for a webmail application with good Hebrew Support


Danny Lieberman wrote: 


3. Use a 10kg hammer.  
We have clients that insist on physical destruction of the data disk after a 
network surveillance.



Do you, at least, FIRST run the dd? I'm sure you realize that recovering data 
from a disk that got only the 10KG hammer is much easier (and cheaper) than 
recovering data from one that got only the dd treatment. As an added bonus, you 
just marked that disk as interesting by physically destroying it :-)

Personally, I think the best solution for anyone who cannot afford to 
physically melt the disk platters is to dd the entire disk, and THEN GO ON 
USING IT for another project.

Shachar

-- 

Shachar Shemesh

Lingnu Open Source Consulting Ltd.

http://www.lingnu.com
___
Linux-il mailing list
Linux-il@cs.huji.ac.il
http://mailman.cs.huji.ac.il/mailman/listinfo/linux-il


RE: Suggestion for a webmail application with good Hebrew Support

2009-08-18 Thread ronys
Hi Shachar,
 
'urban legend' may be a bit strong. The reference I had in mind was
http://www.cs.auckland.ac.nz/~pgut001/pubs/secure_del.html
which is a bit dated (circa 1996, plus a couple of undated epilogues), but 
still an interesting read.
 
Of course, if you're going to keep sensitive data on magentic media, it's 
*much* easier to use an encrypted partition (e.g., dm-crypt  
http://www.saout.de/misc/dm-crypt/ http://www.saout.de/misc/dm-crypt/ or 
TrueCrypt http://www.truecrypt.org/) and securely destroy the keys.
 
Rony

  _  

From: linux-il-boun...@cs.huji.ac.il [mailto:linux-il-boun...@cs.huji.ac.il] On 
Behalf Of Shachar Shemesh
Sent: Tuesday, August 18, 2009 5:17 PM
To: ro...@acm.org
Cc: 'ILUG'
Subject: Re: Suggestion for a webmail application with good Hebrew Support


ronys wrote: 

Note that if you're going to dd, at least use if=/dev/urandom. Running dd 
several (10) times is best (or using shred(1), which does the same).
 
Rony

I am familiar with the urban legend. From what I read about the technique by 
which you reconstruct older generation data, I'm not sure it would make that 
much of a difference.

Shachar


-- 

Shachar Shemesh

Lingnu Open Source Consulting Ltd.

http://www.lingnu.com
___
Linux-il mailing list
Linux-il@cs.huji.ac.il
http://mailman.cs.huji.ac.il/mailman/listinfo/linux-il


RE: recommended remote backup service?

2009-05-13 Thread ronys
Hi,

No direct experience, but I've heard good things about these guys:
http://www.lingnu.com/en/backups.html
as well as these
http://www.rsync.net/ 

YMMV, of course.

Rony

-Original Message-
From: linux-il-boun...@cs.huji.ac.il [mailto:linux-il-boun...@cs.huji.ac.il]
On Behalf Of Dvir Volk
Sent: Wednesday, May 13, 2009 2:24 PM
To: linux-il
Subject: recommended remote backup service?

Hi,
I need to find a new, secure and very reliable remote backup service
for my employer's office server.
This will be used to backup mainly stuff like SVN dumps, TRAC database, etc.
10-20 gigs should be more than enough, and ssh/rsync/sftp etc.
scriptable access is a must.
any recommendations?

Thanks,
Dvir

___
Linux-il mailing list
Linux-il@cs.huji.ac.il
http://mailman.cs.huji.ac.il/mailman/listinfo/linux-il


___
Linux-il mailing list
Linux-il@cs.huji.ac.il
http://mailman.cs.huji.ac.il/mailman/listinfo/linux-il


RE: ssh from 012 cable to server in US fail

2009-04-29 Thread ronys
FWIW, Netvision, although they've started blocking outgoing SMTP (port 25),
still allow SSH with no problems, both locally and to the US.

I doubt that it's a Big Brother type of issue (yet). Who was it that said
not to attribute to malice that which can be attributed to stupidity?

Chag Sameach,

Rony 

-Original Message-
From: linux-il-boun...@cs.huji.ac.il [mailto:linux-il-boun...@cs.huji.ac.il]
On Behalf Of Ira Abramov
Sent: Tuesday, April 28, 2009 1:58 PM
To: linux-il@cs.huji.ac.il
Subject: Re: ssh from 012 cable to server in US fail

Quoting Tomer Cohen, from the post of Tue, 28 Apr:
 Hi,
 
 I had the same issue yesterday evening (012, cable). After few hours I
 periodically tried, I was able to access the machines (one is located in
 Dreamhost, the other at sourceforge.net), but very slowly and with sudden
 disconnections after about one minute of each connection.

these all sound annoyingly like the adventures a friend of mine had
when connecting to my server from china, including obvious
man-in-the-middle attacks, such as each time hׁ” tried to connect, the
server would display a different host key.

If the state of Israel has started building a great firewall they are
both doing it wrong, as well as against the current law. very sad :-(


 
 
 
 On Tue, Apr 28, 2009 at 11:10, Rami Addady r...@active.co.il wrote:
 
  Hi,
 
 
  I have weird problem , staring this morning I can't ssh to a server in
US,
   from some computers that connect to the Internet using 012 cabels.
 
  But if I'm ssh to server in 012 farm and then from it to the US server
is
  work fine!
 
  I called 012 technical support but they didn't  help me.
 
 
  It's not a FW issue because the ssh session start.
 
  When I try to ssh it start and after some time fail , here is debug
  session.
 
 
  ssh -v -l user 111.111.111.111
 
 
  OpenSSH_3.9p1, OpenSSL 0.9.7a Feb 19 2003
 
  debug1: Reading configuration data /etc/ssh/ssh_config
  debug1: Applying options for *
  debug1: Connecting to ... port 22.
  debug1: Connection established.
  debug1: identity file /home/user/.ssh/identity type -1
  debug1: identity file /home/user/.ssh/id_rsa type -1
  debug1: identity file /home/user/.ssh/id_dsa type -1
  debug1: Remote protocol version 2.0, remote software version OpenSSH_4.3
  debug1: match: OpenSSH_4.3 pat OpenSSH*
  debug1: Enabling compatibility mode for protocol 2.0
  debug1: Local version string SSH-2.0-OpenSSH_3.9p1
  debug1: SSH2_MSG_KEXINIT sent
  debug1: SSH2_MSG_KEXINIT received
  debug1: kex: server-client aes128-cbc hmac-md5 none
  debug1: kex: client-server aes128-cbc hmac-md5 none
  debug1: SSH2_MSG_KEX_DH_GEX_REQUEST(102410248192) sent
  debug1: expecting SSH2_MSG_KEX_DH_GEX_GROUP
 
  ... after few minutes...
 
  Connection closed by 111.111.111.111
 
 
  Any idea what wrong
 
 
  Rami
 
 
 
  ___
  Linux-il mailing list
  Linux-il@cs.huji.ac.il
  http://mailman.cs.huji.ac.il/mailman/listinfo/linux-il
 
 
 
 
 -- 
 Tomer Cohen
 http://tomercohen.com
 
 H. L. Mencken  - It is even harder for the average ape to believe that he
 has descended from man.
  http://www.brainyquote.com/quotes/authors/h/h_l_mencken.html

 ___
 Linux-il mailing list
 Linux-il@cs.huji.ac.il
 http://mailman.cs.huji.ac.il/mailman/listinfo/linux-il


-- 
The way of the world
Ira Abramov
http://ira.abramov.org/email/

___
Linux-il mailing list
Linux-il@cs.huji.ac.il
http://mailman.cs.huji.ac.il/mailman/listinfo/linux-il


___
Linux-il mailing list
Linux-il@cs.huji.ac.il
http://mailman.cs.huji.ac.il/mailman/listinfo/linux-il


Perl hack - fooling isatty() ?

2009-04-13 Thread ronys
Hi,

I need to call e2fsck from a Perl script. Thing is, e2fsck checks if it's being 
run interactively or not (using isatty(0)  isatty(1)), and exits if not.

I know that calling e2fsck with -p/-n/-y would fix this, but this is not an 
option for me (don't ask).

So, is there some Perl magic that will fool a Perl script's subprocesses into 
thinking they're connected to a terminal?

Cheers,

Rony


___
Linux-il mailing list
Linux-il@cs.huji.ac.il
http://mailman.cs.huji.ac.il/mailman/listinfo/linux-il


Israeli ISP blocking outgoing SMTP

2009-04-06 Thread ronys
Hi,

For the last few days, an ISP who shall remain nameless (but who's name in 
octal is equal to 11) has decided to block outgoing SMTP connections to servers 
abroad. They've done this unilaterally, without notifying customers, and, for 
the first couple of calls to support, without admitting anything beyond 
there's a problem, we're working on it.

Only after slowly spelling out what my problem was (no, I don't want to send 
e-mail via your servers, thank you) did I get them to log a request to unblock 
port 25 from my home account (still waiting for my work account to be 
unblocked).

I realize that spam is a problem, but this 'solution' strikes me as, how to put 
it, inappropriate.

Am I the only linux-il subscriber affected? It seems to me that the more 
customers that write/call to complain, the sooner they'll see the error in 
their ways.

Pesach sameach,

Rony


___
Linux-il mailing list
Linux-il@cs.huji.ac.il
http://mailman.cs.huji.ac.il/mailman/listinfo/linux-il


RE: Hebrew spam: what to do about it?

2009-02-08 Thread ronys
 
Indeed it's legal. When the anti-spam law was passed, a special exemption was 
put in to allow politicians to send spam.

IIRC, this was Leiberman's initiative.

Rony

-Original Message-
From: linux-il-boun...@cs.huji.ac.il [mailto:linux-il-boun...@cs.huji.ac.il] On 
Behalf Of Dotan Cohen
Sent: Sunday, February 08, 2009 9:26 AM
To: linux-il@cs.huji.ac.il
Subject: Re: Hebrew spam: what to do about it?

 Shachar seems to suggest that this might be used for a small claims
 court case in which the spammer may be sued for up to 1000 NIS per
 email.


I'll donate the 1000 NIS right back into anti-spam efforts or to KDE
or something.

 Slightly off-topic: I got annoyed by political spam that was sent to my
 work address (at least 4 messages, with a considerable size) Result:
 blacklisted mailing list messages from their provider (and notified them
 as well).

 While it might be legal, I personally find this behaviour unacceptable.


The spam I got was political spam as well. This is legal? The message
said at the bottom that it is legal, but I doubt it. What is special
about political spam that it is excepted from the law?

-- 
Dotan Cohen

http://what-is-what.com
http://gibberish.co.il

א-ב-ג-ד-ה-ו-ז-ח-ט-י-ך-כ-ל-ם-מ-ן-נ-ס-ע-ף-פ-ץ-צ-ק-ר-ש-ת
?-?-?-?-?-?-?-?-?-?-?-?-?-?-?-?-?-?-?-?-?-?-?-?-?-??-?-?
?-?-?-?-?-?-?-?-?-?-?-?-?-?-?-?-?-?-?-?-?-?-?-?-?-?-?-?-?-?-?-?-?
?-?-?-?-?-?-?-?-?-?-?-?-?-?-?-?-?-?-?-?-?-?-?-?-?-?-?-?-?-?-?-?-?
?-?-?-?-?-?-?
___
Linux-il mailing list
Linux-il@cs.huji.ac.il
http://mailman.cs.huji.ac.il/mailman/listinfo/linux-il


___
Linux-il mailing list
Linux-il@cs.huji.ac.il
http://mailman.cs.huji.ac.il/mailman/listinfo/linux-il


ssh -X woes

2008-10-30 Thread ronys
Hi,

I've a subcontractor who ssh's in to our gateway via 'ssh -X gateway', and
from there to other machines on our site, e.g., 'gateway% ssh -X target'.

This used to work fine, allowing the user to run X apps on the target and
display them on his machine.

Recently, attempts to connect to the target fail with:
gateway% ssh -X target
x11_request_forwarding: bad authentication data: MIT-MAGIC-COOKIE-1

Running ssh with -v wasn't much help, adding only the following:
debug2: x11_get_proto: /usr/bin/X11/xauth  list unix:10.0 2/dev/null
debug1: Requesting X11 forwarding with authentication spoofing.
x11_request_forwarding: bad authentication data: MIT-MAGIC-COOKIE-1

- Without '-X', the ssh to target works fine.

Any ideas? Recent changes include aptitude upgrade, and I'm reluctant to
mess around with the gateway's setup too drastically.

Rony


=
To unsubscribe, send mail to [EMAIL PROTECTED] with
the word unsubscribe in the message body, e.g., run the command
echo unsubscribe | mail [EMAIL PROTECTED]



RE: parental control - outbound firewall?

2008-09-09 Thread ronys
Hi Gabor,

As a parent, I've decided not to restrict my kids' access to the Internet by
technological means. Instead, I've discussed with each of them the do's and
don'ts of surfing the Internet.

As part of the struggle against various censorshi  big-brother laws, ISOC
and Bezeq have come up with a surprisingly well done guide (and advertising
campaign) for safe surfing: http://www.safe.org.il/ You may find it of
interest/useful.

Cheers,

Rony

(Disclaimer: I'm a member of ISOC and a Bezeq customer, but in no way
affiliated with the above initiative)

-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]
On Behalf Of Gabor Szabo
Sent: Tuesday, September 09, 2008 11:11 AM
To: Israel Linux Mailing list
Subject: parental control - outbound firewall?

I have been using the Moreshet service since the days of Actcom but in
the past couple of months it has been down very frequently for several hours
meaning I could not use the Internet at all.

I am thinking on setting up something on the computer use by my children.
First I thought setting up a proxy but I'd like to filter everything
including chat
and similar things and then allow services on a case base case.

The latest idea I had was to configure a firewall on my the computer
of my children to and let that filter the services and the sites.

Any idea how to do that (using Ubuntu GNU/Linux). ?

regards
   Gabor

=
To unsubscribe, send mail to [EMAIL PROTECTED] with
the word unsubscribe in the message body, e.g., run the command
echo unsubscribe | mail [EMAIL PROTECTED]


=
To unsubscribe, send mail to [EMAIL PROTECTED] with
the word unsubscribe in the message body, e.g., run the command
echo unsubscribe | mail [EMAIL PROTECTED]



Configuring fallback IP address in dhclient.conf

2008-08-04 Thread ronys
Hi,

I've an appliance (running Debian Etch) that needs to be able to run in an 
environment that might or might not have a dhcp server handy.

I've made the following changes to dhclient.conf, and got surprising results:

1. The changes:
timeout 10 ;
lease {
  interface eth0;
  fixed-address 192.168.0.58;
  option subnet-mask 255.255.255.0;
  renew 2 2037/1/12 00:00:01;
  rebind 2 2037/1/12 00:00:01;
  expire 2 2037/1/12 00:00:01;
}

2. The surprise:
# /etc/init.d/networking stop; sleep 5; /etc/init.d/networking start
Deconfiguring network interfaces...There is already a pid file 
/var/run/dhclient.eth0.pid with pid 3074
killed old client process, removed PID file
Internet Systems Consortium DHCP Client V3.0.4
Copyright 2004-2006 Internet Systems Consortium.
All rights reserved.
For info, please visit http://www.isc.org/sw/dhcp/

Listening on LPF/eth0/00:90:fb:15:e0:00
Sending on   LPF/eth0/00:90:fb:15:e0:00
Sending on   Socket/fallback
DHCPRELEASE on eth0 to 192.168.0.111 port 67
done.
Configuring network interfaces...Internet Systems Consortium DHCP Client V3.0.4
Copyright 2004-2006 Internet Systems Consortium.
All rights reserved.
For info, please visit http://www.isc.org/sw/dhcp/

Listening on LPF/eth0/00:90:fb:15:e0:00
Sending on   LPF/eth0/00:90:fb:15:e0:00
Sending on   Socket/fallback
DHCPDISCOVER on eth0 to 255.255.255.255 port 67 interval 7
DHCPDISCOVER on eth0 to 255.255.255.255 port 67 interval 4
No DHCPOFFERS received.
Trying recorded lease 192.168.0.58
Usage: ping [-LRUbdfnqrvVaA] [-c count] [-i interval] [-w deadline]
[-p pattern] [-s packetsize] [-t ttl] [-I interface or address]
[-M mtu discovery hint] [-S sndbuf]
[ -T timestamp option ] [ -Q tos ] [hop1 ...] destination
No working leases in persistent database - sleeping.
done.

-
Does anyone have any idea what I'm doing wrong? Where's the 'ping' command 
coming from???
Any other suggestions on how to do this?

Note that when a dhcp server is available, all works fine.

Thanks,

Rony


To unsubscribe, 
send mail to [EMAIL PROTECTED] with
the word unsubscribe in the message body, e.g., run the command
echo unsubscribe | mail [EMAIL PROTECTED]



RE: Configuring fallback IP address in dhclient.conf [solved]

2008-08-04 Thread ronys
Thanks, Gilad. While not quite the problem, it was enough to point me in the 
right direction.
 
For those interested: The ping was called in /sbin/dhclient-script, called by 
dhclient as part of the handling of the dhcp response.
The exact invokation is if ping -q -c 1 $first_router; then  Obviously, 
$first_router wasn't set, resulting in the usage error I saw.
 
Fix? Added option routers aaa.bb.ccc.ddd to the dhclient.conf lease {} 
stanza, so it's now:
 
lease {
  interface eth0;
  fixed-address 192.168.0.58;
  option subnet-mask 255.255.255.0;
  option routers 192.168.0.58;
  renew 2 2037/1/12 00:00:01;
  rebind 2 2037/1/12 00:00:01;
  expire 2 2037/1/12 00:00:01;
}

Cheers,
 
  Rony


  _  

From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Gilad Ben-Yossef
Sent: Monday, August 04, 2008 2:39 PM
To: [EMAIL PROTECTED]
Cc: linux-il@cs.huji.ac.il
Subject: Re: Configuring fallback IP address in dhclient.conf



ronys wrote:



Listening on LPF/eth0/00:90:fb:15:e0:00

Sending on   LPF/eth0/00:90:fb:15:e0:00

Sending on   Socket/fallback

DHCPDISCOVER on eth0 to 255.255.255.255 port 67 interval 7

DHCPDISCOVER on eth0 to 255.255.255.255 port 67 interval 4

No DHCPOFFERS received.

Trying recorded lease 192.168.0.58

Usage: ping [-LRUbdfnqrvVaA] [-c count] [-i interval] [-w deadline]

[-p pattern] [-s packetsize] [-t ttl] [-I interface or address]

[-M mtu discovery hint] [-S sndbuf]

[ -T timestamp option ] [ -Q tos ] [hop1 ...] destination

No working leases in persistent database - sleeping.

done.



-

Does anyone have any idea what I'm doing wrong? Where's the 'ping' command 
coming from???

Any other suggestions on how to do this?



  

Since having two stations use the same IP address is a very hard situation to 
debug, as packets will randomly find their way to either of the stations, 
dhclient does a very sensible thing and before using a stored address in the 
case no DHCP server answers, it makes an attempt to ping the address it is 
going to use in an effort to try and detect if someone is already using it.

In your case this backfires as it seems the 'ping' command format it is trying 
to use is somehow not compatible with your 'ping' command.

Hope this helps,
Gilad



-- 

Gilad Ben-Yossef 

Chief Coffee Drinker



Codefidence Ltd.

The code is free, your time isn't.(TM)



Web:http://codefidence.com

Email:  [EMAIL PROTECTED]

Office: +972-8-9316883 ext. 201

Fax:+972-8-9316885

Mobile: +972-52-8260388



Q: How many NSA agents does it take to replace a lightbulb?

A: dSva7DrYiY24yeTItKyyogFXD5gRuoRqPNQ9v6WCLLywZPINlu!




RE: Dropbear SSH

2008-07-17 Thread ronys
Hi Oleg,

No experience with Dropbear, but I've used LibTomCrypt in a couple of
projects, and it rocks.

You can configure it to the level of paranoia you're comfortable with, e.g.,
scrubbing memory that contains keying material, etc. - the typical
security/performance and time/space tradeoffs.

Of course, having a solid crypto library is a necessary but *not* sufficient
condition for a secure application, as it's trivial to misuse crypto in a
way that leaves you totally insecure.

HTH,

Rony

-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]
On Behalf Of Oleg Goldshmidt
Sent: Thursday, July 17, 2008 1:42 PM
To: Linux-IL
Subject: Dropbear SSH

Hi everybody,

Does anyone have experience with DropBear SSH server/client
(http://matt.ucc.asn.au/dropbear/dropbear.html)? The context is an
embedded product with AMCC PPC460, Linux (say, 2.6.25 or later), and
busybox (1.10 or later) as the base, being defined/designed now. The
target audience is top tier customers, such as governments,
Fortune-whatever companies, major financial institutions, etc. SSH
access is essential (need ssh client, sshd, ssh-keygen, scp, whatever
dependencies there are).

Busybox does not provide SSH functionality by itself, and recommends
Dropbear (http://busybox.net/tinyutils.html). I would like to be quite
sure that DropBear has the functionality and the security that the
target market requires.

So far, what I see in the docs is as follows:

* Judging by Changelog, Dropbear is in version 0.51, and the
development is not very active. This may be because it is very stable
and very secure, or may be because there are not many development
resources.

* Uses LibTomCrypt rather than SSL - can anyone comment on
security/functionality?

I see my choces as DropBear vs. OpenSSH, compiled and linked for
busybox. I am not particularly concerned about CPU or RAM, but I have
a rather serious shortage of (flash) storage in the system. In our
estimate, OpenSSH will take at least 10 times more storage than
DropBear (between 1.2 and 1.5M rather than 110K Dropbear claims).

What I am interested to know is whether DropBear is a good substitute
for OpenSSH in terms of:

* functionality
* full compatibility
* security
* stability
* etc.

Any comments/experiences? Thanks a lot in advance,

-- 
Oleg Goldshmidt | [EMAIL PROTECTED]

=
To unsubscribe, send mail to [EMAIL PROTECTED] with
the word unsubscribe in the message body, e.g., run the command
echo unsubscribe | mail [EMAIL PROTECTED]


=
To unsubscribe, send mail to [EMAIL PROTECTED] with
the word unsubscribe in the message body, e.g., run the command
echo unsubscribe | mail [EMAIL PROTECTED]



RE: NIC woes with Debian MSI MS-7507

2008-07-16 Thread ronys
 Hi Rami,

Thanks - getting the latest driver from the vendor fixed the problem.
The vendor's tarball builds a module outside the source tree, and works fine
with rmmod/insmod. Getting it to build as part of the kernel source tree so
that initrd will pick it up was a bit of a hassle, but that's probably my
lack of experience.  All's well that ends well, though.

Cheers,

Rony

-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]
On Behalf Of Rami Rosen
Sent: Tuesday, July 15, 2008 7:16 PM
To: [EMAIL PROTECTED]
Cc: linux-il@cs.huji.ac.il
Subject: Re: NIC woes with Debian  MSI MS-7507

Hi,
  It is probably a BUG in the driver.

 Google didn't find anything useful

Build your own search engine ; don't use google :)

Accoding to this link, the same issue also occurred (ethtool returns
FIBRE for r8168).

http://www.spinics.net/lists/netdev/msg43754.html
Since that this message is from 2007, I would consider getting the linux
driver
from the vendor site:
http://www.realtek.com.tw/downloads/downloadsView.aspx?Langid=1PNid=13PFid
=5Level=5Conn=4DownTypeID=3GetDown=false

version 8.006.00is quite recent ( 22/4/2008).


 The second , less probable option,
is that the motherboard does not support this chipset;
There were (very rare ) cases in which such was the case; but these
things happen. This can easily
be checked with their support.


Regards,
Rami Rosen

On Tue, Jul 15, 2008 at 5:14 PM, ronys [EMAIL PROTECTED] wrote:
 Hi,

 Debian etch (latest stable) distro installed on the above PC results in an
unusable onboard NIC.

 /var/log/messages tell me that the NIC is
 Jul 15 19:15:54 hostname kernel: eth0: RTL8168b/8111b at 0xf8822000,
00:1d:92:a1:96:19, IRQ 177

 The module for it is found and loaded:
 Jul 15 19:15:54 hostname kernel: r8169 Gigabit Ethernet driver 2.2LK-NAPI
loaded

 However, the NIC never gets an IP address from DHCP. Even worse, ethtool
shows that it's totally confused as to its identity:
 # ethtool eth0
 Settings for eth0:
Supported ports: [ FIBRE ]
Supported link modes:   1000baseT/Full
Supports auto-negotiation: Yes
Advertised link modes:  Not reported
Advertised auto-negotiation: Yes
Speed: 1000Mb/s
Duplex: Full
Port: FIBRE
PHYAD: 0
Transceiver: internal
Auto-negotiation: on
Supports Wake-on: pumbg
Wake-on: pumbg
Current message level: 0x0033 (51)
Link detected: yes

 (FIBRE port when it really should be TP - Twisted Pair)

 Google didn't find anything useful. My current workaround is adding
another NIC, which works fine, but is unacceptable in the long term.

 This occurs on two different PCs that have the same motherboard, so it's
not a fluke hardware issue.

 Also, if I play around with ifup/ifdown AFTER booting it, I can sometimes
get it to work, but only at 10MB/sec (connected to a 100 MB/s switch).

 Any ideas?

 Rony


 To unsubscribe, send mail to [EMAIL PROTECTED] with
 the word unsubscribe in the message body, e.g., run the command
 echo unsubscribe | mail [EMAIL PROTECTED]



=
To unsubscribe, send mail to [EMAIL PROTECTED] with
the word unsubscribe in the message body, e.g., run the command
echo unsubscribe | mail [EMAIL PROTECTED]


=
To unsubscribe, send mail to [EMAIL PROTECTED] with
the word unsubscribe in the message body, e.g., run the command
echo unsubscribe | mail [EMAIL PROTECTED]



RE: NIC woes with Debian MSI MS-7507

2008-07-16 Thread ronys
Good question.

I may have something wrong when trying to install the module manually, since
putting in in /lib/modules/... and running depmod didn't work under reboot,
so I just assumed that it was required by the kernel before / was mounted.

Rony

-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]
On Behalf Of Baruch Siach
Sent: Wednesday, July 16, 2008 6:55 PM
To: [EMAIL PROTECTED]
Cc: 'Rami Rosen'; linux-il@cs.huji.ac.il
Subject: Re: NIC woes with Debian  MSI MS-7507

Hi Rony,

On Wed, Jul 16, 2008 at 06:07:19PM +0300, ronys wrote:
  Hi Rami,
 
 Thanks - getting the latest driver from the vendor fixed the problem.
 The vendor's tarball builds a module outside the source tree, and works
fine
 with rmmod/insmod. Getting it to build as part of the kernel source tree
so
 that initrd will pick it up was a bit of a hassle, but that's probably my
 lack of experience.  All's well that ends well, though.

Why do you need those NIC drivers in initrd? Is this driver needed for the 
initial boot phase?

baruch

-- 
 ~. .~   Tk Open Systems
=}ooO--U--Ooo{=
   - [EMAIL PROTECTED] - tel: +972.2.679.5364, http://www.tkos.co.il -

=
To unsubscribe, send mail to [EMAIL PROTECTED] with
the word unsubscribe in the message body, e.g., run the command
echo unsubscribe | mail [EMAIL PROTECTED]


=
To unsubscribe, send mail to [EMAIL PROTECTED] with
the word unsubscribe in the message body, e.g., run the command
echo unsubscribe | mail [EMAIL PROTECTED]



NIC woes with Debian MSI MS-7507

2008-07-15 Thread ronys
Hi,

Debian etch (latest stable) distro installed on the above PC results in an 
unusable onboard NIC.

/var/log/messages tell me that the NIC is
Jul 15 19:15:54 hostname kernel: eth0: RTL8168b/8111b at 0xf8822000, 
00:1d:92:a1:96:19, IRQ 177

The module for it is found and loaded:
Jul 15 19:15:54 hostname kernel: r8169 Gigabit Ethernet driver 2.2LK-NAPI loaded

However, the NIC never gets an IP address from DHCP. Even worse, ethtool shows 
that it's totally confused as to its identity:
# ethtool eth0
Settings for eth0:
Supported ports: [ FIBRE ]
Supported link modes:   1000baseT/Full
Supports auto-negotiation: Yes
Advertised link modes:  Not reported
Advertised auto-negotiation: Yes
Speed: 1000Mb/s
Duplex: Full
Port: FIBRE
PHYAD: 0
Transceiver: internal
Auto-negotiation: on
Supports Wake-on: pumbg
Wake-on: pumbg
Current message level: 0x0033 (51)
Link detected: yes

(FIBRE port when it really should be TP - Twisted Pair)

Google didn't find anything useful. My current workaround is adding another 
NIC, which works fine, but is unacceptable in the long term.

This occurs on two different PCs that have the same motherboard, so it's not a 
fluke hardware issue.

Also, if I play around with ifup/ifdown AFTER booting it, I can sometimes get 
it to work, but only at 10MB/sec (connected to a 100 MB/s switch).

Any ideas?

Rony


To unsubscribe, 
send mail to [EMAIL PROTECTED] with
the word unsubscribe in the message body, e.g., run the command
echo unsubscribe | mail [EMAIL PROTECTED]



RE: Under which keywords can such systems be found?

2008-06-13 Thread ronys
Hi,

A friend of mine (in Israel) worked with these a couple of years ago - no
idea how he bought them, though:

http://www.gumstix.com/

HTH,

Rony

-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]
On Behalf Of Omer Zak
Sent: Friday, June 13, 2008 10:44 AM
To: linux-il
Subject: Under which keywords can such systems be found?

I am looking for a computer with small form factor (cellphone sized or
even smaller) with the following features:
1. Runs Linux.
2. RAM+disk - as needed to run a Linux system without X-Window.
3. Audio input.
4. At least one USB port.
5. Ethernet port.
6. Runs on batteries.
7. A way (such as a memory card built on another system) to install
Linux on the computer.
(Keyboard and display are not needed - programming can be done by
sshing.)

I would appreciate suggestions under which keywords to search for such a
system in Google (or in specialized product search Websites), and where
can it be obtained in Israel.
  --- Omer
-- 
One does not make peace with enemies.  One makes peace with former
enemies.
My own blog is at http://www.zak.co.il/tddpirate/

My opinions, as expressed in this E-mail message, are mine alone.
They do not represent the official policy of any organization with which
I may be affiliated in any way.
WARNING TO SPAMMERS:  at http://www.zak.co.il/spamwarning.html


=
To unsubscribe, send mail to [EMAIL PROTECTED] with
the word unsubscribe in the message body, e.g., run the command
echo unsubscribe | mail [EMAIL PROTECTED]


=
To unsubscribe, send mail to [EMAIL PROTECTED] with
the word unsubscribe in the message body, e.g., run the command
echo unsubscribe | mail [EMAIL PROTECTED]



RE: Where can I rent computers?

2008-06-13 Thread ronys
Hi David,

If you’re willing to waive the location restriction, you might wish to check
out Amazon's Elastic Compute Cloud: http://aws.amazon.com/ec2

Rony 

-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]
On Behalf Of David D
Sent: Friday, June 13, 2008 2:58 PM
To: linux-il@cs.huji.ac.il
Subject: Where can I rent computers?


Hello,
I need to lease several linux computers, preferably connected
into a cluster for a CPU intensive project. The computers have to be
located here, in Israel. Can anyone give me any suggestions, company names
etc. (either to this list, or privately)?

Thanks a lot


To unsubscribe, 
send mail to [EMAIL PROTECTED] with
the word unsubscribe in the message body, e.g., run the command
echo unsubscribe | mail [EMAIL PROTECTED]



SourceForge down?

2008-04-30 Thread ronys
Hi,

Is it only me, or is sourceforge.net unavailable over the last few hours?

I can't reach them from Netvision or from Bezeqint.

Slashdot.org also seems down (both are owned by SourceForge Inc. - odd).

Rony


=
To unsubscribe, send mail to [EMAIL PROTECTED] with
the word unsubscribe in the message body, e.g., run the command
echo unsubscribe | mail [EMAIL PROTECTED]



RE: SourceForge down?

2008-04-30 Thread ronys
It's official:

http://www.theregister.co.uk/2008/04/30/slashdot_website_down/ 

:-(

-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]
On Behalf Of Omer Zak
Sent: Wednesday, April 30, 2008 3:06 PM
To: linux-il
Subject: Re: SourceForge down?

Upon seeing the following E-mail, I tested sourceforge.net and
slashdot.org.  As of 15:15 I can reach neither of them, and I am
connected via Golden Lines (012.net).

Anyone from outside of Israel, check both sites please?


On Wed, 2008-04-30 at 14:47 +0300, ronys wrote:
 Hi,
 
 Is it only me, or is sourceforge.net unavailable over the last few hours?
 
 I can't reach them from Netvision or from Bezeqint.
 
 Slashdot.org also seems down (both are owned by SourceForge Inc. - odd).
 
 Rony



=
To unsubscribe, send mail to [EMAIL PROTECTED] with
the word unsubscribe in the message body, e.g., run the command
echo unsubscribe | mail [EMAIL PROTECTED]


=
To unsubscribe, send mail to [EMAIL PROTECTED] with
the word unsubscribe in the message body, e.g., run the command
echo unsubscribe | mail [EMAIL PROTECTED]



RE: AOE and iSCSI (software only)

2008-04-24 Thread ronys
Hi,

For a LAN, AOE seems to have less overhead, so performance *might* be better
(assuming the network is the bottleneck).

iSCSI is much more popular in the industry, though.

My experience is with iSCSI - feel free to ask me if you need more info on
setting up iSCSI initiators  targets.

Cheers,

Rony
 

-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]
On Behalf Of Dan Shimshoni
Sent: Thursday, April 24, 2008 10:05 AM
To: linux-il@cs.huji.ac.il
Subject: AOE and iSCSI (software only)

Hello, Linux-il gurus,

I have to decide between two options of exporting block devices
on a LAN (same subnet for clients and server)
: one is with iSCSI target and iSCSI initiator. The second
is with AOE.

I am talking about using software tools only, not using special hardware.

I had tested AOE with my hardware (no special hw): I had downloaded
aoetools from
http://sourceforge.net/projects/aoetools/.
I had also installed blade server of this project on the server
side.
(http://sourceforge.net/project/showfiles.php?group_id=130453package_id=143
790).

I can mount on the client a file which I am exporting on the AOE
server. (which is running this blade).

My question is this:
What are the advantages and disadvantages of using AOE versus iSCSI?
Does anybody have any experience/advice regarding using AOE on Linux
(sw only, I am not talkin about CORAID, etc) ?


Regards,
Dan

=
To unsubscribe, send mail to [EMAIL PROTECTED] with
the word unsubscribe in the message body, e.g., run the command
echo unsubscribe | mail [EMAIL PROTECTED]


=
To unsubscribe, send mail to [EMAIL PROTECTED] with
the word unsubscribe in the message body, e.g., run the command
echo unsubscribe | mail [EMAIL PROTECTED]



RE: SNMP: GET/SET vs. TRAP

2008-04-21 Thread ronys
Hi,

Conceptually, there's a big difference between get/set and traps:

get/set messages in SNMP are always requested by the management application and 
responded to by the SNMP agent.

Traps, OTOH, are messages that are sent, unsolicited, from the agent to notify 
the management app of something of interest that has happened without having to 
wait for polling.

HTH,

Rony

-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Oren Held
Sent: Monday, April 21, 2008 3:27 PM
To: linux-il
Subject: SNMP: GET/SET vs. TRAP

Hi,

net-snmp's GET/SET mechanism looks completely separated from the TRAP 
mechanism, which I find quite bizarre.

NET-SNMP claims to be easily extensible with Perl 
(http://net-snmp.sourceforge.net/wiki/index.php/Tut:Extending_snmpd_using_perl)
However, this extension doesn't know what a TRAP is, only handles GET/SET 
commands.

It seems as if I have two options:
A. Write a completely separate Perl daemon that sends traps using Net::SNMP 
(completely separate code for sending TRAPs and handling GETs/SETs??)
B. Write a subagent in C (a separate process that talks to snmpd), which 
handles both GETs/SETs  TRAPs. (Is that the common approach?)

Am I missing something?

Thanks

 - Oren

=
To unsubscribe, send mail to [EMAIL PROTECTED] with
the word unsubscribe in the message body, e.g., run the command
echo unsubscribe | mail [EMAIL PROTECTED]


To unsubscribe, 
send mail to [EMAIL PROTECTED] with
the word unsubscribe in the message body, e.g., run the command
echo unsubscribe | mail [EMAIL PROTECTED]



RE: Efficient C++ XML validating parser?

2008-03-05 Thread ronys
Hi,

If you decide to do without validation, then I've used TinyXML in a couple
of projects, and am pretty happy with the footprint  performance.
http://www.grinninglizard.com/tinyxml/

Your right in that it will require you to write the parser manually, though,
with all that that implies.

Cheers,

Rony

-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]
On Behalf Of Amos Shapira
Sent: Wednesday, March 05, 2008 2:56 AM
To: Israel Linux Mailing list
Subject: Efficient C++ XML validating parser?

Hello,

Currently we use Xerces for C (http://xerces.apache.org/xerces-c/) to
read XML files but are looking at making this as efficient as
possible.

The XML files are generated by our own software so some of us though
that maybe we can get rid of validation of the input and go straight
to event handling using SAX parsers.

My concern with this approach is that it sounds like we'll end up with
a hand-written parser for very specific version of the input schema,
which will require us to keep the code in pace with changes in the
schema.

Instead, I was wondering what would be the best way to ask the XML
parser to validate the input. Maybe some tool which converts an XML
schema to tightly integrated C++ code would do the trick? I found
http://tinyurl.com/2wqqp8 but it's just a research paper (NOT free),
not open source code.

What do people around here like to use for EFFICIENT XML parsing?

Thanks,

--Amos

=
To unsubscribe, send mail to [EMAIL PROTECTED] with
the word unsubscribe in the message body, e.g., run the command
echo unsubscribe | mail [EMAIL PROTECTED]


=
To unsubscribe, send mail to [EMAIL PROTECTED] with
the word unsubscribe in the message body, e.g., run the command
echo unsubscribe | mail [EMAIL PROTECTED]



Hebrew-friendly list server on Linux?

2008-01-27 Thread ronys
Hi,

I'm looking for a mailing list server that is meant to serve a few hundred 
users. The catch is that these are non-technical users who will correspond only 
in Hebrew.

My first solution, Yahoo groups, is a big failure due to the number of users 
who complain about gibberish in their inbox.

Can anyone recommend a decent solution, either hosted or something thatI can 
install on my own Linux server? Note that the admin interface doesn't have to 
be in Hebrew, only the user-facing side.

Thanks,

Rony


To unsubscribe, 
send mail to [EMAIL PROTECTED] with
the word unsubscribe in the message body, e.g., run the command
echo unsubscribe | mail [EMAIL PROTECTED]



[OT] Looking for full-time Linux Java engineers

2007-12-27 Thread ronys
 Hi,
 
Thought this might be of interest to some of the members of this list. If
interested, please reply to the mail listed below.
 
Cheers,
 
Rony


We are seeking excellent s/w engineers to join GED-I Ltd in the development
of s/w for Storage Data Security.

This is a great opportunity for highly motivated engineers to join a
start-up company in its early stages, make a crucial contribution to the
company's success, and be rewarded accordingly.

Note that these positions are for full-time employees, not freelancers or
contractors. Offices are in the Netanya area.
 
1. Linux Kernel programmer
An experienced kernel programmer for implementing security-related protocols
in the kernel
- Good understanding of Linux internals, especially networking
- Experience in kernel programming
- Strong C coding skills
 
2. Linux C/C++ programmer
An experienced C/C++ programmer for writing security related applications
under Linux.  
 Requirements:
- At least four years industrial experience writing C and C++ applications
under Linux (not Windows Visual Studio).
- Experience with performance optimizations
- Familiarity with cryptography and data security - an advantage

3. A Web Jaba programmer with 2 years experience, preferrably familiar with
Spring and JSF. 

Mail CV to:  [EMAIL PROTECTED] mailto:[EMAIL PROTECTED]
 


=
To unsubscribe, send mail to [EMAIL PROTECTED] with
the word unsubscribe in the message body, e.g., run the command
echo unsubscribe | mail [EMAIL PROTECTED]



RE: collaborative online document writing software

2007-11-26 Thread ronys
Google Documents (http://docs.google.com/) can be used in the manner you 
described.

Rony 

-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Maxim Veksler
Sent: Monday, November 26, 2007 7:02 PM
To: [EMAIL PROTECTED]
Cc: linux-il
Subject: Re: collaborative online document writing software

On Nov 26, 2007 4:28 PM, Ori Idan [EMAIL PROTECTED] wrote:
 You are talking about a Wiki system.
 There are lot of Wiki systems some of them with hebrew support.


Not exactly. I'm talking about a interface where you write documents with your 
peers in real time. You see their changes and they see yours.

I'm planning to use it to write design documents and co.

Maxim.

 --
 Ori Idan



 On Nov 26, 2007 4:07 PM, Maxim Veksler  [EMAIL PROTECTED] wrote:
 
 
 
  Hi,
 
  I remember once someone posted on this list a project that allowed 
  writing documents online simultaneously by several users.
  It did this by exposing a web interface with some ajax calls behind it.
 
  It looked great, felt awesome and I can't find it anywhere.
 
  Anyone knows what I'm talking about?
 
 
  Thank you,
  Maxim.
 
  --
  Cheers,
  Maxim Veksler
 
  Free as in Freedom - Do u GNU ?
 
  =
  To unsubscribe, send mail to [EMAIL PROTECTED] with the 
  word unsubscribe in the message body, e.g., run the command echo 
  unsubscribe | mail [EMAIL PROTECTED]
 
 



 --
 ספרים וסיפורים שכתבתי: http://www.thestories.org



--
Cheers,
Maxim Veksler

Free as in Freedom - Do u GNU ?


To unsubscribe, 
send mail to [EMAIL PROTECTED] with
the word unsubscribe in the message body, e.g., run the command
echo unsubscribe | mail [EMAIL PROTECTED]



RE: Source visualization program

2007-11-24 Thread ronys
 Source-Navigator: https://sourceforge.net/projects/sourcenav/

A bit long in the tooth, but it does the job.

-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]
On Behalf Of Dvir Volk
Sent: Saturday, November 24, 2007 4:04 PM
To: linux-il
Subject: Source visualization program

Hi,
Can anyone recommend a good source visualization program for C++ (and Linux
of course)?
Output format doesn't really matter, but it needs to read a very complex
project and display classes, members, hierarchy, dependencies, etc.
KDevelop has something very primitive for hierarchy, but I need something
more powerful.

Thanks
Dvir

=
To unsubscribe, send mail to [EMAIL PROTECTED] with the word
unsubscribe in the message body, e.g., run the command echo unsubscribe |
mail [EMAIL PROTECTED]


=
To unsubscribe, send mail to [EMAIL PROTECTED] with
the word unsubscribe in the message body, e.g., run the command
echo unsubscribe | mail [EMAIL PROTECTED]



NETDEV WATCHDOG transmit timeout?

2007-10-28 Thread ronys
Hi,

Under heavy traffic, I'm getting the above syslog message every day or two. 
Unfortunately, the failure is far from graceful: ifconfig up/down doesn't help, 
and the system is occasionally hung so that it's unreachable via other 
interfaces, forcing a reboot.

Some more details:

Dual core 3.4GHz Intel CPU

# cat /proc/version
Linux version 2.6.18.5abc ([EMAIL PROTECTED]) (gcc version 4.1.2 20061115 
(prerelease) (Debian 4.1.1-21)) #3 SMP Fri Sep 7 21:32:00 IDT 2007

# lspci -v
[...]
01:00.0 Ethernet controller: Marvell Technology Group Ltd. 88E8053 PCI-E Gigabit
 Ethernet Controller (rev 19)
Subsystem: SysKonnect Unknown device 4340
Flags: bus master, fast devsel, latency 0, IRQ 74
Memory at d002 (64-bit, non-prefetchable) [size=16K]
I/O ports at 9000 [size=256]
[virtual] Expansion ROM at 6000 [disabled] [size=128K]
Capabilities: [48] Power Management version 2
Capabilities: [50] Vital Product Data
Capabilities: [5c] Message Signalled Interrupts: Mask- 64bit+ Queue=0/1 
Enable+
Capabilities: [e0] Express Legacy Endpoint IRQ 0
Capabilities: [100] Advanced Error Reporting
[...]

# cat /var/log/messages
[...]
Oct 26 09:39:45 abc kernel: NETDEV WATCHDOG: eth3: transmit timed out
Oct 26 09:39:45 abc kernel: sky2 hardware hung? flushing
Oct 26 09:48:35 abc kernel: NETDEV WATCHDOG: eth3: transmit timed out
Oct 26 09:48:35 abc kernel: sky2 status report lost?
[...]

A quick google didn't find anything blindingly relevant. Any ideas, suggestions 
or hints humbly accepted.

   Thanks,

Rony


To unsubscribe, 
send mail to [EMAIL PROTECTED] with
the word unsubscribe in the message body, e.g., run the command
echo unsubscribe | mail [EMAIL PROTECTED]



[OT] Looking for a Linux embedded web server developer

2007-04-30 Thread ronys

Hi,

I'm looking for a programmer to develop the web-based management part
of a Linux appliance.

The web server will NOT be Apache, but something much lighter (I'm
leaning towards Cherokee right now, but can be convinced otherwise).

The appliance is a rack-mounted PC runnning Debian 4.0.

The web-based management requirements are pretty straightforward -
reading/writing some configuration data, displaying status, etc.

Development will be in the Rosh-Ha'ayin industrial zone, with the
option to do some of the work off-site.

If you have the skills for such a project, and are available over the
next couple of week, please write me. Note that we're not hiring
full-time (yet) - this is currently a one-time subcontracting job. If
you can't provide a cheshbonit, we can work something out.

Companies who can develop this on an outsourcing basis are also
welcome to contact me.

 Thanks,

   Rony
   ronys at acm dot org

=
To unsubscribe, send mail to [EMAIL PROTECTED] with
the word unsubscribe in the message body, e.g., run the command
echo unsubscribe | mail [EMAIL PROTECTED]



Re: debian netinst q

2007-04-27 Thread ronys

Hi,

Regarding root, IIRC, 'sudo' is configured to allow the user to get
root access, e.g., 'sudo bash' should give you a root shell.

This is the approach taken by Ubuntu as well - root itself is
disabled, all root work done via sudo.

The idea behind this is better security. I'm not ocnvinced that this
is the case, but that's the intent.

 Rony

On 4/27/07, Shimon Panfil [EMAIL PROTECTED] wrote:

On Fri, Apr 27, 2007 at 03:59:40PM +0300, Baruch Even wrote:
 * Shimon Panfil [EMAIL PROTECTED] [070427 14:32]:
  Hi Folks,
  I've just made instalation of debian 4.0 using netinst CD.
  All is fine safe a couple of minor things:
  Installer did not asked me if want graphical login, set gdm or something
  like that automatically, second it did not asked for root passwd and set
  something that I do not know and it did not asked me if I want grub or
  lilo and set grub (I definetely prefer lilo!).

 How did you boot the installer? If you just pressed enter at the first
 installer screen it should have presented you with a textual installer
 that by default would have asked you for root password and also for your
 computer tasks, if you chose as a task Desktop it automatically
 installs X11 with GDM and the whole Gnome desktop environment.
I see. Can I have X11 without GDM Gnome etc?
..

 I've never seen the installer not ask for a root password so I don't
 know how you could have got to such a state.

Neigher do I, seems really weird

--
Shimon Panfil

=
To unsubscribe, send mail to [EMAIL PROTECTED] with
the word unsubscribe in the message body, e.g., run the command
echo unsubscribe | mail [EMAIL PROTECTED]




--
Ubi dubium, ibi libertas (where there is doubt, there is freedom)

=
To unsubscribe, send mail to [EMAIL PROTECTED] with
the word unsubscribe in the message body, e.g., run the command
echo unsubscribe | mail [EMAIL PROTECTED]