Re: [SLUG] Dual monitor emulation on a single monitor
You want *dramatic hamster music* a Tiling Window Manager -http://en.wikipedia.org/wiki/Tiling_window_manager#List_of_tiling_window_managers_for_X I've used ratpoison, ion3, and awesome. ion3 was my favorite; but awesome works better with Gnome/KDE. According to wikipedia, compiz has a Grid plugin which does what you want. A side benefit of most of these TWMs is that they de-emphasize the mouse and give you much more control from the keyboard. On Wed, Oct 21, 2009 at 10:59 AM, Sridhar Dhanapalan srid...@dhanapalan.com wrote: Is there a way to have a single monitor behave as if it were dual-head? At home, I have one 24in 1920x1200 monitor. At work, I have two 19in 1280x1024 monitors, which work seamlessly side-by-side with TwinView in the nvidia driver. I'd love to be able to combine the benefits of the two setups. I'd like, for example, to be able to hit Maximise and have the window fill up only half the screen. Today's screens are so wide that maximising a window often just creates lots of unused space. I'd still like the option to use the whole screen for one window, though. Edge resistance in the middle of the display would be very nice too. Sridhar -- Bring choice back to your computer. http://www.linux.org.au/linux -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Re: [SLUG] Post scanning inside NAT
Visiting http://62.67.50.112/ gives me a Rapidshare.com page. Does your modem, or the machine in question, let you run tcpdump/ngrep/some other packet inspection thingy to have a look in more detail inside the packets? Also, there's nothing in what you posted to suggest that the internal machine was responding to the external machine - the port numbers suggest that it was the internal machine that initiated the connection. If you could catch the three-way handshake at the start of the connection (syn/syn-ack/ack), we could tell for sure which was opening the connection. On Wed, Aug 12, 2009 at 5:23 PM, Rick Welykochy r...@praxis.com.au wrote: Hi sluggers, I thought I understood the mechanics of NAT. My modem blocks all incoming requests to my 192.168.0.* internal network, save a few port forwards, i.e. about five ports are open. During an idle period today I noticed annoying but consistent traffic of about 100 bytes/sec. Why? tcpdump reveals that my local machine on 192.168.0.27 is responding to what seems to be a port scan from Germany (62.67.50.112) ... 17:20:28.677718 IP 192.168.0.27.52262 62.67.50.112.80: . ack 1 win 65535 nop,nop,timestamp 1078011251 3938531074 17:20:28.677842 IP 192.168.0.27.52262 62.67.50.112.80: P 1:607(606) ack 1 win 65535 nop,nop,timestamp 1078011251 3938531074 17:20:29.045173 IP 62.67.50.112.80 192.168.0.27.52262: . ack 607 win 55 nop,nop,timestamp 3938531166 1078011251 17:20:29.055137 IP 62.67.50.112.80 192.168.0.27.52262: P 1:306(305) ack 607 win 55 nop,nop,timestamp 3938531167 1078011251 Their egress port is always 80 (suspicious in itself) and my ingress port is climbing through all numbers, serially. My possible misunderstanding of NAT is that my local machine on .27 should not even be seeing this traffic since it *should* be blocked at the modem/router. Is it me or is it the modem that is wrong? cheers rickw -- _ Rick Welykochy || Praxis Services Beware of he who would deny you information, for in his mind he dreams of being your master. -- message on a computer game -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Re: [SLUG] Blackberry, Linux and (if anyone knows) Gmail integration
On Wed, Aug 5, 2009 at 3:29 PM, Sridhar Dhanapalan srid...@dhanapalan.comwrote: 2009/8/5 elliott-brennan m...@elliott-brennan.id.au: Hi all, My wife is setting up her own business. She'll need quite easy access to e-mail and is thinking of getting a Blackberry (not sure of which mobile provider yet, though we're currently with Three on our other phones). I don't have and haven't used a Blackberry, so am seeking any advice regarding syncing the thing with my desktop (8.04) and accessing e-mail (e.g.. by having a gmail account and then IMAP'ing that for the Blackberry). I understand gmail has an app for the Blackberry (and similar phones) so I'd be interested to know of people's experiences with that. A simple solution is for her to set her mail to automatically forward to the Blackberry's mail address. That way, the Blackberry will alert her as soon as a message comes through, and she can view it on the phone. The original message still stays in the main mail account. There's also the Google Apps Connector for BlackBerry Enterprise Server coming later this month - http://www.google.com/apps/intl/en/business/mobile.html I'm not clear on what that does though; it looks like it might need you to run your own BES, which is probably too much overhead for a one-person business (but I don't understand crackberrys well enough to understand how this works for small business anyway - I think it involves forwarding all your mail to Canadia and having RIM push it to the phone?). Oh wait: there's a system requirements section that says you need Windows 2003 Server SP2 (approximately 1GB of disk space per GAC for BES user) and BlackBerry Enterprise Server 4.1 Service Pack 6 Maintenance Release 4 - so I guess you do need to be running your own server somewhere. The best gmail integration I've seen is (not surprisingly) on the G1; it also has a physical keyboard, but the battery life is notoriously not even as good as the iPhone. The notifications on the G1 are quite nice though. Personally I'm reasonably happy with the iPhone; but I don't do a whole lot of message writing there, I mostly use it to catch up on threads while I'm out of the office, and anything more than a quick reply waits until I'm back at my desk. Any other advice or information would be most appreciated, including suggestions for other devices. She wants a full keyboard like the Blackberry, along with a reasonable screen size when typing and for reading e-mail. Other manufacturers have Blackberry-style devices now (with a keyboard). Take a look around and you might find another that suits her needs better. I've seen some companies standardising on the Nokia E Series or even the iPhone. I have a friend with the nokia E-series blackberry clone, and he's quite happy with it. I have another friend with a similar phone who prefers the mobile gmail app to the web app, and emails almost exclusively from his phone. Personally I think they're both nuts... But if you really want something nice (although I'm horribly biased), there are the Android-based phones. The only Android so far with a physical keyboard is the G1 though. I find the on-screen keyboard on my iPhone to be better than the G1s on-screen keyboard - but I hear that later devices have higher resolution touch screens, so the keyboard works better. -- Bring choice back to your computer. http://www.linux.org.au/linux -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Re: [SLUG] slides
On Thu, Jul 30, 2009 at 10:05 PM, Melissa Draper meli...@meldraweb.comwrote: James, Rob, Harrison... I need mugshots of you guys for the ctte slides for the meeting tomorrow night. TIA -- Melissa Draper w: http://meldraweb.com http://geekosophical.net p: +61 4 0459 5395 -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Re: [SLUG] Nomination: Sridhar Dhanapalan for President
I second this nomination. On Wed, Mar 5, 2008 at 1:11 PM, Lindsay Holmwood [EMAIL PROTECTED] wrote: Ok, time to kick off the nominations! I'd like to nominate Sridhar Dhanapalan for the position of President. Although his current position on the committee may be Ordinary Committee Member there is nothing ordinary about what he's acheived - over the last year Sridhar has demonstrated an outstanding ability in leading our community. He has: * successfully and repeatedly organised meetings and events * engaged with FOSS communities and companies * responded to communications to the committee * followed up on committee actions and tasks * acted as a spokesperson to the media ...all whilst being an active and enthusiastic member of the SLUG community both on the mailing lists, IRC, and at meetings. Most importantly, I believe he has the vision, determination, and commitment to be a successful SLUG President - to build upon and better the community we have, forge strong relationships with other organisations, and keep everyone in line. :-) I wholeheartedly endorse Sridhar for this position. Lindsay -- http://slug.org.au/ (the Sydney Linux Users Group) http://holmwood.id.au/~lindsay/ (me) -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html -- There is nothing more worthy of contempt than a man who quotes himself - Zhasper, 2004 -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Re: [SLUG] Open source Requirements Tools
If we're going to plug This suggestion completely contradicts what you said you were looking for, but... solutions, SLUG's hosts Atlassian have some products that seem to fit the bill - Jira (http://www.atlassian.com/software/jira/) probably being the best match. It's written in a real language, Java, and is also free for open-source projects and community groups. The licence gives you access to the source and the right to make your own modifications forever (and when the licence expires, it just means you don't get access to new source any more - your existing install still works, and you still have the right to make your own modifications) (at least, I think it does, check before you hand over cash though). (obdisc: my partner works for Atlassian. I was an Atlassian fanboy even before he started working there) On Fri, Feb 29, 2008 at 9:17 AM, David Peterson [EMAIL PROTECTED] wrote: On Fri, 2008-02-29 at 08:44 +1100, Marghanita da Cruz wrote: My wish list was a graphical representation of requirements, tracking, prioritisation and scheduling, costing and a web accessible (not requiring an additional app to view)and slides for presentations. Hi Marghanita, It's not open source, but have you checked out Mingle by ThoughtWorks studios. It's an agile software design tool and would seem to support some of the requirements you identify. In conjunction with open-source tools like a wiki and Trac (or a trac-like tool) it might get you a long way. http://studios.thoughtworks.com/mingle-project-intelligence It's written in Ruby on Rails (runs under JRuby) and is free (cost) to use for small development teams. HTH. Dave -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html -- There is nothing more worthy of contempt than a man who quotes himself - Zhasper, 2004 -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Re: [SLUG] Listing a job on your mailing list.
Send an email to [EMAIL PROTECTED] :) On 26/11/2007, Heather MacBeth [EMAIL PROTECTED] wrote: Hello, I work for a Sydney based recruitment firm. I wanted to list a Perl Programmer role on your mailing list. Is this possible? If so how would I go about it? Kind regards Heather MacBeth Ethos Corporation Pty Ltd Level 7, Macquarie House 167 Macquarie Street, Sydney, NSW 2000 Tel: 02 8227 9200 Fax: 02 8227 9299 Email: [EMAIL PROTECTED] Website: www.ethoscorporation.com.au IMPORTANT NOTICEThis email (including any attachments) (Email) is CONFIDENTIAL and may also be PRIVILEGED, subject to COPYRIGHT or other legal protection. If you are NOT the addressee or intended recipient of this Email and/or have received it by mistake, you are on notice of its status. If you have received this Email in error, you MUST NOT retain, copy, disclose its contents to anyone, use it or any part of it in any form whatsoever or in any way rely on it. Please destroy it immediately and notify the sender by return email. The unauthorised use of this Email may result in liability for breach of confidentiality, privilege, copyright or otherwise.Any content of this Email which does not relate to the official business of Ethos Corporation Pty Ltd or any of its trading names must be taken not to have been sent or endorsed by any of them. No warranty is made that this Email is free from computer virus or other defect. Thank you for your co-operation. -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html -- There is nothing more worthy of contempt than a man who quotes himself - Zhasper, 2004 -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Re: [SLUG] Ubuntu and a crossword compiler
Google for ubuntu enable multiverse. Click on first entry, read. On 03/10/2007, [EMAIL PROTECTED] [EMAIL PROTECTED] wrote: I want to install a crossword compiler on my laptop. Which is running Ubuntu Feisty Fawn. Downloaded the tarball, unpacked it. And followed the first instruction. Then did it again, because I have some messages that I can't follow. One of them was to install a C compiler, specifically gcc. apt-get install gcc says that it is installed and doesn't need upgrading. but to make sure multiverse is enabled. Dunno multiverse. I attach the error log. Can anyoine advise me, please? Regards, William Bennett. -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html -- There is nothing more worthy of contempt than a man who quotes himself - Zhasper, 2004 -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Re: [SLUG] Ubuntu and a crossword compiler
Also, your error log is empty. Can you retry that? On 03/10/2007, Zhasper [EMAIL PROTECTED] wrote: Google for ubuntu enable multiverse. Click on first entry, read. On 03/10/2007, [EMAIL PROTECTED] [EMAIL PROTECTED] wrote: I want to install a crossword compiler on my laptop. Which is running Ubuntu Feisty Fawn. Downloaded the tarball, unpacked it. And followed the first instruction. Then did it again, because I have some messages that I can't follow. One of them was to install a C compiler, specifically gcc. apt-get install gcc says that it is installed and doesn't need upgrading. but to make sure multiverse is enabled. Dunno multiverse. I attach the error log. Can anyoine advise me, please? Regards, William Bennett. -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html -- There is nothing more worthy of contempt than a man who quotes himself - Zhasper, 2004 -- There is nothing more worthy of contempt than a man who quotes himself - Zhasper, 2004 -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Re: [SLUG] treating \n like any other character
A quick google for sed remove newline returns, as the very first hit, the page: http://snow.nl/dist/htmlc/ch13s04.html - look for the header The Pattern Buffer There's a script there that will get you on your way. On 03/10/2007, david [EMAIL PROTECTED] wrote: I want to edit a multi line file as if it were all one line In other words, treat \n like any other character, and specifically doing global find and replace. I know there are various hex editors, but they are all pretty clunky as far as I can see, and none seem to be able to do that from command line. Is there a shell script way to do it? -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html -- There is nothing more worthy of contempt than a man who quotes himself - Zhasper, 2004 -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Re: [SLUG] fun with sed
You don't have to use / as a delimiter. Use something else. [EMAIL PROTECTED]:~$ cat foo foo is barred [EMAIL PROTECTED]:~$ sed [EMAIL PROTECTED]@/[EMAIL PROTECTED] foo /bar is barred On 24/09/2007, david [EMAIL PROTECTED] wrote: I want to insert / into a substitution. Why am i getting an unknown option even though exactly the same construction works if i use it from a script file? [EMAIL PROTECTED]:~/test $ cat foo foo is barred # test file [EMAIL PROTECTED]:~/test $ sed s/foo/bar/g foo bar is barred # sed works :) [EMAIL PROTECTED]:~/test $ sed s/foo/\/bar/g foo sed: -e expression #1, char 8: unknown option to `s'# ERROR [EMAIL PROTECTED]:~/test $ cat sedfile s/foo/\/bar/g # script file... [EMAIL PROTECTED]:~/test $ sed -f sedfile foo /bar is barred # ... works [EMAIL PROTECTED]:~/test $ I've noticed the same problem applies to using in the replacement on the cli. It seems that the replacement part doesn't recognise a backslash. Have I missed something? -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html -- There is nothing more worthy of contempt than a man who quotes himself - Zhasper, 2004 -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Re: [SLUG] Suspenseful laptops
According to teh intarwebs, macboocs are about 5 pounds/2.3Kg; Macbook Pros are 5.4 pounds/2.45kg (at least, the latest ones are - I think the prior models were a tad heavier). Jeff specifically mentioned a Dell D420, which according to http://www.pcpro.co.uk/reviews/92149/dell-latitude-d420.html can have its weight pushed up as high as 1.7Kg if you add extra batteries. On 14/09/2007, James Dumay [EMAIL PROTECTED] wrote: They are not heavy MacBook Pros are. On 9/13/07, Jeff Waugh [EMAIL PROTECTED] wrote: quote who=Denis Crowdy James Dumay wrote: I find my Apple Macbook really excellent. Me too - mine is a 13 basic white model (Core 2 duo) about a year old (which is old now I guess...) and have suspend to ram and disk working under feisty. But they're so heavy! Useful for smacking their owners with, but that's about all. ;-) - Jeff -- GNOME Boston Summit 2007 http://live.gnome.org/Boston2007 Maybe you should put some shorts on or something, if you want to keep fighting evil today. - The Bowler, Mystery Men -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html -- There is nothing more worthy of contempt than a man who quotes himself - Zhasper, 2004 -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Re: [SLUG] Mailing list archives
On 19/08/07, Anonymous [EMAIL PROTECTED] wrote: * David Howard ([EMAIL PROTECTED]) wrote: Went to the SLUG home page, and then to the mailing lists info page - no link to archives. . So, is there no way to do a general search of the archives? I wanted to search the archives before annoying the whole list with what are probably fairly simple questions. Sorry David, There's been some progress happening around here. Some folk having perhaps been fixing somthing that wasn't broken. I'm sure the intentions are good. But there perhaps isn't the time to fƣnish the job. Anon It's good to see that we'll have some new enthusiastic, motivated new blood standing for election next time. :) Care to let us know who we should be voting for? -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Re: [SLUG] double-click word selection regex for xterm?
On 18/08/07, Jeff Waugh [EMAIL PROTECTED] wrote: quote who=Zenaan Harkness The only thing I miss from gnome-terminal is its word-selection regex - double click selects a full package name for example, whereas xterm, when I double click, the word boundary appears to be the dashes in the package name, which isn't so useful. Why not stick with gnome-terminal? You get dingus clicking too! So, rather than pimping my terminal of choice, I'm going to answer the question that was actually asked. XTerm*charClass is what you need to set in your .Xdefaults file. Some useful links: http://www.tummy.com/journals/entries/jafo_20060715_142504 http://blog.tobez.org/?p=22 http://tinyurl.com/29vg5n -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Re: [SLUG] re: Not good publicity for Linux, is it?
On 23/07/07, Tom Worthington [EMAIL PROTECTED] wrote: At 12:35 PM 23/07/2007, Zhasper wrote: On 23/07/07, Tom Worthington [EMAIL PROTECTED] wrote: ... reference the originals from their web sites ... It sounds like you're saying that a convenient way to reduce load on your own server is to make it some random third party's problem. ... It was not a random third party I was referring to, but sponsors who had not only authorized, but demanded, the use of their logo. In that case, I completely misread your intention, and I apologise. Given a choice, I expect these organisations would rather you used the official version of their logo, than make your own copies. Caching should result in a minimal increase in load on their server. Ideally (for the sponsor) the reader will click on the link and go to the sponsor's web site and so would have been downloading the original of the logo anyway. The Australian Government logo (Commonwealth Arms) has not been optimized for online use http://www.tomw.net.au/2003/epolicy.html#edocs. But you have to be careful with what you do with the Commonwealth Arms, as there are strict guidelines for its use http://www.pmc.gov.au/guidelines/commonwealth_coat_arms.cfm. I once had to tell the staff of a government minister that they couldn't have the commonwealth arms as a background pattern on the minister's web page. Sticking the MPs face over the top of the pre-eminent symbol of the power and authority of the Commonwealth Government did not seem to be appropriate. By the way I had a message from the Technical Director at Australian Screen, pointing out that they were not throwing hardware at the problem, as media repots suggested, but instead optimizing the server software (which is the sensible thing to do). In the case of the film archive I suggested offering fewer films per web page. They might also change the default setting for the media player from Broadband to Dialup and so it does not start downloading content by default. At present the media player will start downloading the broadband content as soon as you go to a clip web page, in anticipation you want to play it. If you don't want to play it, or want to dialup version, that is a waste. Tom Worthington FACS HLM [EMAIL PROTECTED] Ph: 0419 496150 Director, Tomw Communications Pty LtdABN: 17 088 714 309 PO Box 13, Belconnen ACT 2617http://www.tomw.net.au/ Visiting Fellow, ANU Blog: http://www.tomw.net.au/blog/atom.xml -- There is nothing more worthy of contempt than a man who quotes himself - Zhasper, 2004 -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Re: [SLUG] Extracting URL's from a web page
Once more, this time to list http://aspn.activestate.com/ASPN/docs/ActivePython/2.5/diveintopython/html/html_processing/extracting_data.html has some sample recipes that should give you a good starting point. On 22/07/07, Sean Murphy [EMAIL PROTECTED] wrote: All. I wish to extract specific links from a web page. A part of the requirement is to be able to drill down about three to four levels to extract the information. The first page shall have 26 to 30 links I want to extract. The levels beneath the first page is a lot higher. I only want the text, not the underlying HTML code, but if I get the URL path I can deal. Wget grabs to much information for my use. I only know the higher levels of Perl and I am starting to learn Ruby. So my coding under Linux is not very advance at all. Sean Murphy Skype: smurf20005 Life is a challenge, treat it that way. -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html -- There is nothing more worthy of contempt than a man who quotes himself - Zhasper, 2004 -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Re: [SLUG] re: Not good publicity for Linux, is it?
On 23/07/07, Tom Worthington [EMAIL PROTECTED] wrote: Even better; use the graphics from someone else's web site. ;-) For example Australian Screen credits a lot of participating organisations and has their logos listed http://australianscreen.com.au/title-index/features/. This does not make for good web design, but if you have to have all those logos, then you might as well reference the originals from their web sites and save the load on your server. It sounds like you're saying that a convenient way to reduce load on your own server is to make it some random third party's problem. What you're describing is called hotlinking, amounts to theft of bandwidth and resources, and is generally frowned upon. See http://en.wikipedia.org/wiki/Inline_linking and http://altlab.com/hotlinking.html for explanations of why. See http://ascii.textfiles.com/archives/000278.html for a sample of the treatment you can expect if you persist in this behaviour. -- There is nothing more worthy of contempt than a man who quotes himself - Zhasper, 2004 -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Re: [SLUG] re: Not good publicity for Linux, is it?
On 23/07/07, Marghanita da Cruz [EMAIL PROTECTED] wrote: Zhasper wrote: On 23/07/07, Tom Worthington [EMAIL PROTECTED] wrote: Even better; use the graphics from someone else's web site. ;-) For example Australian Screen credits a lot of participating organisations and has their logos listed http://australianscreen.com.au/title-index/features/. This does not make for good web design, but if you have to have all those logos, then you might as well reference the originals from their web sites and save the load on your server. It sounds like you're saying that a convenient way to reduce load on your own server is to make it some random third party's problem. What you're describing is called hotlinking, amounts to theft of bandwidth and resources, and is generally frowned upon. See http://en.wikipedia.org/wiki/Inline_linking and http://altlab.com/hotlinking.html for explanations of why. See http://ascii.textfiles.com/archives/000278.html for a sample of the treatment you can expect if you persist in this behaviour. However, in this case, linking to the logos, which belong to and are promoting the organisations concerned, provides valuable direct feedback to these organisation as to how much publicity they are getting through this particular channel. Point conceded. If your intent is to assist the organisation concerned with valuable direct feedback, and said organisation wants said feedback, hotlinking is okay. That said, it's something you should check with them first. They may have limited resources, or expensive bandwidth, or something similar, and might prefer that you hosted the images yourself. They may not want to run the risk of your site being slashdotted, leading to the DSL connection in their office (where their webserver lives) being congested. Also, they may not understand what you're doing and you might find yourself serving unintentional goatses... The original poster's only rationale (unless I misread their email) was to reduce load on MY webserver by making it THEIR problem. I don't think that's covered by this (or Peter's) exception.. For example, see the Creative Commons code generated for inclusion on your website by http://creativecommons.org/license/ M -- Marghanita da Cruz http://www.ramin.com.au/itgovernance Phone: 0414 869202 -- There is nothing more worthy of contempt than a man who quotes himself - Zhasper, 2004 -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Re: [SLUG] Retrieving Data from formatted drive
I don't know if it's still maintained, but The Coroner's Toolkit (http://www.porcupine.org/forensics/tct.html) used to get a lot of press as being the gold standard for recovering deleted files etc. On 20/07/07, Kevin Waterson [EMAIL PROTECTED] wrote: Are there any linux tools to recover data from formatted drives? I can do this using windows, but wondered if there was a better way. Kind regards Kevin -- Democracy is two wolves and a lamb voting on what to have for lunch. Liberty is a well-armed lamb contesting the vote. -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html -- There is nothing more worthy of contempt than a man who quotes himself - Zhasper, 2004 -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Re: [SLUG] removing duplicate files
On 04/07/07, Rick Welykochy [EMAIL PROTECTED] wrote: Amos Shapira wrote: On 04/07/07, Rick Welykochy [EMAIL PROTECTED] wrote: ls -R somefile currently will not list somefile unless it is a directory. $ ls --version ls (GNU coreutils) 5.97 ... $ ls -lR x -rw-r--r-- 1 user group 177 2007-06-29 15:52 x x is a regular file and ls lists it. What version of ls(1) are you using? Mea culpa. ls -R somefile will not list somefile in subdirectories, i.e. $ ls -lR somefile -rw-r--r-- 1 rick rick 0 2007-07-04 20:04 somefile $ find . -name somefile ./tmp/somefile ./somefile pedant In that circumstance, there's a way to do it with just ls: spindle:~/tmp polleyj$ ls -lR */somefile somefile -rw-r--r-- 1 polleyj polleyj 0 Jul 4 21:20 hello/somefile -rw-r--r-- 1 polleyj polleyj 0 Jul 4 21:20 somefile it doesn't scale though; for the general case, find is more useful, as you've said. /pedant Regarding the original question, I second your suggestion: find . -name junkfile -exec rm {} \; However, I offer the caveat that it will file if there are special characters (particularly ) in the filename. As a more robust (but more heavyweight, more forking, more cycles, more ram (but - the amounts we're talking about are trivial, except in extreme cases - just something to be aware of for the odd times when this fails because you hit one of the extreme cases)): find . -name junkfile -print0 | xargs -0 rm -- There is nothing more worthy of contempt than a man who quotes himself - Zhasper, 2004 -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Re: [SLUG] Postfix question
My apologies to anyone looking at this in the archives and wondering why I seem to be responding to a non-existent email. Howard didn't feel that his email was worth archiving, even thous the replies are going to be archived. On 13/06/07, Howard Lowndes [EMAIL PROTECTED] wrote: I have a Linux/Postfix server that accepts email from the Internet, performs filtering checks on the email and then forwards acceptable emails onto a Linux/Domino server on the local intranet. The Postfix checks are all being done by LDAP so I am able to see what is happening on the Linux/Postfix server. Postfix has the relayhost parameter set in main.cf to point to the Linux/Domino server so that emails are correctly forwarded on. I can see the Linux/Postfix server doing all the checks that I have specified in main.cf. These include: smtpd_client_restrictions smtpd_helo_restrictions smtpd_sender_restrictions smtpd_recipient_restrictions However, the smtpd_recipient_restrictions appear to be failing safe with a default DUNNO result rather than a default REJECT result. The same checks, when not used in conjunction with a relayhost setting appear to default fail as REJECT rather than DUNNO. Am I right in assuming that the use of the relayhost parameter is causing this change in default behaviour, and how is the best way to fix it? The Domino machine, being the real MTA, obviously knows what addresses it's going to accept mail for (the ones that are defined as valid addresses) and which it's going to reject (the rest - unless it has a catchall, in which case, there aren't any that it will reject). Does the Postfix machine have some way of knowing this same information, or is it just left knowing that all mail for that domain gets forwarded to 1.2.3.4? -- There is nothing more worthy of contempt than a man who quotes himself - Zhasper, 2004 -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Re: [SLUG] ssh questions
On 05/06/07, Jeff Waugh [EMAIL PROTECTED] wrote: quote who=Zhasper You could take it a step further by not allowing passwords at all, and relying on the SSH key you carry on your USB stick to authenticate you. Of course, that again makes things inconvenient for you - if you left the USB stick at home, you can't log in. If it gets stolen, not only can you not log in, but you can't even revoke your key until you get home and get your backup key on the spare usb stick - meanwhile, whoever stole the key has (potentially) free access to your machine.. For those watching at home: *ALWAYS* use passphrases on ssh keys for normal user accounts (as opposed to command locked accounts). Then use ssh-agent to dodge both server password and ssh key passphrase inconvenience... You will never go back to passwords again. What Jeff said. Definitely. Person who wrote the original paragraph clearly wasn't thinking when they wrote something that suggested using keys without passphrases.. Don't rely on passphrases to protect you though. If your USB key is not just lost, but is stolen - or even worse, if you use it on a compromised machine that takes a copy of your key for its own use[1], there's a decent chance the attacker used something like a keylogger to grab your passphrase as well. On the other hand, it's one extra step: it's not sufficient just to use the keylogger and grab your passphrase, nor is it sufficient to steal your USB key and copy the SSH key - by using a key with a passphrase, you make it necessary that an attacker do both. Doesn't guarantee that it won't happen, but it makes it just a little bit harder. -- There is nothing more worthy of contempt than a man who quotes himself - Zhasper, 2004 -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Re: [SLUG] ssh questions
On 05/06/07, Glen Turner [EMAIL PROTECTED] wrote: On Tue, 2007-06-05 at 12:02 +1000, Zhasper wrote: It probably makes these types of automated scans, which are relying on you having common usernames with obvious passwords, less likely to do bad things to your machine. On the other hand, they're already 100% unlikely to access your machine, assuming you don't have common usernames with obvious passwords. You can't get better than that. 10% of users will choose a poor password. Better to get ssh to insist on a public key, and then call login so it can ask for their password too. Yes.. but I'd made an assumption that Voytek doesn't have any users on his machine. I should have stated that assumption though.. -- There is nothing more worthy of contempt than a man who quotes himself - Zhasper, 2004 -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Re: [SLUG] Re: photo/graphics processing SIG anyone?
On 04/06/07, Lindsay Holmwood [EMAIL PROTECTED] wrote: David wrote: Let's keep the conversation going please. There MUST be a need for this sort of thing. If SLUG don't want to do a mailing list I'm quite happy to do one. Whoa, hold your horses! We're quite happy to do one, we just hadn't gotten around to it yet. :-) The new list is at [EMAIL PROTECTED] And you can sign up at http://lists.slug.org.au/listinfo/digitalarts... Lindsay -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html -- There is nothing more worthy of contempt than a man who quotes himself - Zhasper, 2004 -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Re: [SLUG] ssh questions
On 05/06/07, Voytek Eymont [EMAIL PROTECTED] wrote: my logs are littered with the usual failed login crap; is moving ssh to a different port 'good idea' ? It probably makes these types of automated scans, which are relying on you having common usernames with obvious passwords, less likely to do bad things to your machine. On the other hand, they're already 100% unlikely to access your machine, assuming you don't have common usernames with obvious passwords. You can't get better than that. It also makes it less convenient for you - you have to remember what the port is, and hope that firewalls don't block you, etc. It's not much of an inconvenience, but at least in terms of automated scans like this, it doesn't get you much benefit either. Iffing there was a remote exploit in openssh, there'd be a different kind of automated scan; in that scenario, having ssh on a non-standard port might buy you a bit of time before your vulnerable sshd gets cracked. More of a gain here - but it's not a common scenario (I'm pretty sure it's happened at least once, maybe twice, to openssh though). If you have a more determined attacker - someone who is specifically focussed on your machine, as opposed to someone scanning the internet for quick easy targets - they're going to find it no matter what port you put it on, so moving it gains you, at best, 60 seconds or so while they run nmap, and maybe a few more minutes while the look at the version string openssh sends when you connect to it to figure out that this odd port is in fact SSH - but does cause you a bit of inconvenience. Good is subjective, you need to decide what level of inconvenience you're willing to tolerate vs how many extra small barriers you want to put in front of an attacker. Personally, I run ssh on port 22. preferabley some port that will still allow me access from various places. what port ? port range ? I currently have in /etc/ssh/sshd.conf like: Protocol 2 AllowUsers myname PermitEmptyPasswords no LoginGraceTime 30s MaxAuthTries 2 You've already got this quite locked down. You could take it a step further by not allowing passwords at all, and relying on the SSH key you carry on your USB stick to authenticate you. Of course, that again makes things inconvenient for you - if you left the USB stick at home, you can't log in. If it gets stolen, not only can you not log in, but you can't even revoke your key until you get home and get your backup key on the spare usb stick - meanwhile, whoever stole the key has (potentially) free access to your machine.. Again, there are no right answers, it's about what level of inconvenience you're willing to put up with in return for increased barriers to entry. -- input_userauth_request: invalid user virus reverse mapping checking getaddrinfo for ws252 Failed password for invalid user virus from :: Received disconnect from :::205.149.2.252: Invalid user cyrus from :::205.149.2.252 input_userauth_request: invalid user cyrus reverse mapping checking getaddrinfo for ws252 Failed password for invalid user cyrus from :: Received disconnect from :::205.149.2.252: Invalid user oracle from :::205.149.2.252 input_userauth_request: invalid user oracle -- Voytek -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html -- There is nothing more worthy of contempt than a man who quotes himself - Zhasper, 2004 -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Re: [SLUG] ssh questions
No - it will kill the sshd that listens on port 22, but not the process servicing your connection. I've done this before, and you probably have too - eg, last time you did an apt-get upgrade and it upgraded ssh for you. If you're worried, queue up a couple of at jobs - one in 10 minutes to start openssh, and jus tin case that doesn't work, another 10 minutes after that to reboot the machine. On 05/06/07, Voytek Eymont [EMAIL PROTECTED] wrote: if I'm on an ssh connection, how do I restart sshd...? shouldn't the ssh session I'm on drop me off ? # service sshd status sshd (pid 13182 10855 10853 7350 7348) is running... # service sshd restart Stopping sshd: [ OK ] Starting sshd: [ OK ] # service sshd status sshd (pid 13216 10855 10853 7350 7348) is running... -- Voytek -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html -- There is nothing more worthy of contempt than a man who quotes himself - Zhasper, 2004 -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Re: [SLUG] ssh questions
On 05/06/07, Voytek Eymont [EMAIL PROTECTED] wrote: On Tue, June 5, 2007 11:57 am, Phil Scarratt wrote: Voytek Eymont wrote: my logs are littered with the usual failed login crap; yes, if only to save the crap in the logs. Any port above say 4 should do I would think, but you may have other restrictions depending on the firewalls from behind which you need access - if they restrict outgoing port numbers then you are unlikely to be able to use that range. thanks, Fil yes, that's a better idea than buying latger HD (for the logs) Or, change your log level so they don't get logged. Or, have logrotate gzip your archives (which it probably does anyway) so that logging repeated patterns like that takes insignificant amounts of space. what about a low port, I saw a suggestion like port 14 ? what command to see used ports ? netstat -ntlp check /etc/services to see if port 14 is a well-known port for something (14 isn't, as far as I can tell) -- Voytek -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html -- There is nothing more worthy of contempt than a man who quotes himself - Zhasper, 2004 -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Re: [SLUG] ssh questions
On 05/06/07, Voytek Eymont [EMAIL PROTECTED] wrote: thanks, everyone, for all the detailed info, tips and suggestions ! On Tue, June 5, 2007 12:04 pm, Zhasper wrote: No - it will kill the sshd that listens on port 22, but not the process servicing your connection. I've done this before, and you probably have too - eg, last time you did an apt-get upgrade and it upgraded ssh for you. I was just confused by seeing this in the log: -- Jun 5 12:12:41 bilby sshd[13216]: Received signal 15; terminating. Jun 5 12:12:41 bilby sshd[13379]: Server listening on :: port 22. Jun 5 12:12:41 bilby sshd[13379]: error: Bind to port 22 on 0.0.0.0 failed: Address already in use. Urr... I'm confused too. What does netstat -ntlp show as listening on port 22 right now? If you're worried, queue up a couple of at jobs - one in 10 minutes to start openssh, and jus tin case that doesn't work, another 10 minutes after that to reboot the machine. is this like an 'at (time) service sshd start' thing ? man 1 at sample session: [EMAIL PROTECTED]:~$ at now + 10 minutes warning: commands will be executed using /bin/sh at echo Hello Voytek /tmp/helloworld.out at EOT job 1 at Tue Jun 5 05:32:00 2007 [EMAIL PROTECTED]:~$ at is fairly intelligent in terms of timeperiods - it assumes you want to do something within 24 hours, so 6pm will be interpreted as 6pm tonight. it understands things like midday, tomorrow, and even teatime. One caveat: things executed in at won't be run in your usual shell environment (ie, it won't have run your .bash_profile or .bashrc); if in doubt, it's best to fully specify all paths (/sbin/shutdown, not just shutdown). If you run into other problems, they're usually caused by an assumption you've made based on something that's normally in your environment: having $EDITOR set, or having alias la=ls -la set, or something like that. thanks again -- Voytek -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html -- There is nothing more worthy of contempt than a man who quotes himself - Zhasper, 2004 -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Re: [SLUG] migrating pasword file ?
On 04/06/07, Voytek Eymont [EMAIL PROTECTED] wrote: I'm transferring web users from RH73 to Centos on new server; is there a way to transfer users' unknown passwords to the new server ? this is just for ftp access, that's the only access users have (or do I just ask them 'what password you desire?') Assuming you're talking about passwords in /etc/passwd, the password hash there is just a hash (plus, maybe, a bit of salt); it should be safe to just copy that field across to /etc/passwd[1] on the new machine Assuming you're talking about passwords stored in some custom ftp-server-specific repository, the same probably holds true, but I'd have to know more about the ftp server to be more specific. However, you mentioned web users, which suggests to me that you've got a htpasswd file somewhere? Again, those passwords are just md5 hashes, so copying them to the new .htpasswd file is fine [1] I actually mean /etc/shadow, not /etc/passwd, of course, but in my mind the concept /etc/passwd includes the files /etc/passwd and /etc/shadow, together. -- Voytek -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html -- There is nothing more worthy of contempt than a man who quotes himself - Zhasper, 2004 -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Re: [SLUG] dns / mx error
http://www.dnsstuff.com/tools/dnsreport.ch?%26domain%3Dsbt.net.au No major problems listed there. On 01/06/07, Voytek Eymont [EMAIL PROTECTED] wrote: my yahoo group email bounced, apparently as a result of No MX or A records for sbt.net.au this happended in the past as well is there something wrong with my dns/mx record ? -- Voytek -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html -- There is nothing more worthy of contempt than a man who quotes himself - Zhasper, 2004 -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Re: [SLUG] For Rick W
On 24/05/07, Howard Lowndes [EMAIL PROTECTED] wrote: Sorry about the public aspect of this, but I need to get this to Rick W. Rick Welykochy wrote: Howard Lowndes wrote: ...and me. BTW Rick, my emailer doesn't like your direct email address. Are you referring to [EMAIL PROTECTED] ? What's wrong with it? What does you emailer say? Yes, that's the one, and here is the error: [EMAIL PROTECTED]: host mx1.d2.net.au[202.147.78.66] said: 550 rejected: cannot route to sender [EMAIL PROTECTED] (in reply to end of DATA command) It rather looks as if your mailer is trying a reverse check and can't find me, which is wrong as my email address works just fine. Of course - the problem is always someone elses fault. http://www.dnsstuff.com/tools/dnsreport.ch?domain=lannet.com.au One of your nameservers isn't responding. That's going to cause, at minimum, delays, and in some cases a complete inability to resolve - quite possibly what's happening here. Your MX record is an IP when the RFC stipulates that it must be a name. This will cause RFC-compliant MXes to be unable to send you mail. The IP you stipulate as an MX doesn't have a reverse dns lookup. Checking to see if an IP has a reverse lookup is a common anti-spam technique; not having a reverse lookup means some people are going to refuse mail from you. The report mentions that it couldn't connect to your mailserver. It says this may be a timeout issue, is it times out after only 40 seconds, so mail to your domain may or may not work. -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Re: [SLUG] Frustration Rant
This is why I have a blug: I can blast out pointless rants and feel better, but only people who've chosen to see my rants have to endure them. Can someone do a rant about top-posters for me? I'm sick of those inconsiderate nasty people... On 22/05/07, Howard Lowndes [EMAIL PROTECTED] wrote: I've just wasted half the afternoon trying to work out why a tftp server wasn't delivering a config file to a VoIP phone, and I finally discover that it's mode of operation has been changed during an upgrade of the tftp server, presumably to enhance security. The client had been requesting the file by accessing destination port 69udp on the server, and the server had been delivering the file via source port 69udp. This meant that I could have very tight and specific filters in iptables. Now I discover that the server delivers the files via random high source ports instead, which means that now I have to open up the filters to accommodate a wide range of source ports from the server instead of the original port 69. I do not call that enhanced security and the idiot that thinks it is should be emasculated. To add insult to injury I can find nothing in the scant documentation to tell me how to force the server back to its original mode of operation. I feel better now :) -- Howard. LANNet Computing Associates - Your Linux people http://lannetlinux.com When you want a computer system that works, just choose Linux; When you want a computer system that works, just, choose Microsoft. -- Flatter government, not fatter government; abolish the Australian states. -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html -- There is nothing more worthy of contempt than a man who quotes himself - Zhasper, 2004 -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Re: [SLUG] SLUG Bootcamp, this Saturday!
On 18/05/07, Jeff Waugh [EMAIL PROTECTED] wrote: quote who=Del flyers [sic] This is the correct spelling of the plural of 'flyer'. You need not suggest you avoided a transcription error by quoting it with '[sic]'. Well, it's *a* correct spelling, anyway. I'd interpreted Del's use of [sic] as being merely a humours reference to this morning's pedantry, not a pedantic critique itself. Perhaps we need a slug-pedants list to keep the worst of the pedants (myself included) from cluttering the main list? - Jeff -- OSCON 2007: Portland OR, USA http://conferences.oreillynet.com/oscon/ Openness cannot be assumed, it must be asserted in order to be assured. - Christopher Kelty -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html -- There is nothing more worthy of contempt than a man who quotes himself - Zhasper, 2004 -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Re: [SLUG] Schedule online for SLUG Bootcamp, this Saturday!
On 18/05/07, Alex Samad [EMAIL PROTECTED] wrote: On Fri, May 18, 2007 at 12:37:38AM +1000, Sridhar Dhanapalan wrote: A schedule for the SLUG Bootcamp has been released: http://wiki.slug.org.au/bootcamp/schedule General information on the event is available at http://www.slug.org.au/2007/bootcamp If you are interested in participating as a speaker or helper, please let the SLUG Committee know. Otherwise, just turn up and have fun! has any one organised a key signing at this event ? The target audience are people new to linux, who have probably never used linux before in any form. Most of these people probably won't know what keys are, let alone a keysigning. So, no, there hasn't been one organised. -- Costs to migrate to an open [source] solution are relevant and an organisation needs to consider an extra effort for this. However these costs are temporary and mainly are budgeted in less than one year. - UNU-MERIT, Study on the Economic impact of open source software on innovation and the competitiveness of the Information and Communication Technologies (ICT) sector in the EU, 2006 -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.6 (GNU/Linux) iD8DBQFGTWKfkZz88chpJ2MRAgQzAKDztR+vNsZOeD44U4PskxOdFK7GugCgmfNs U5VWFCoqeL1BUcTaALxLTgU= =8n/J -END PGP SIGNATURE- -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html -- There is nothing more worthy of contempt than a man who quotes himself - Zhasper, 2004 -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Re: [SLUG] fixing or deleting file system
On 08/05/07, Ben Donohue [EMAIL PROTECTED] wrote: Hi all, I have a new centos box with a boot partition and a large raid array of over 3TB. there is nothing on the raid array and I don't mind blowing it away and starting again. However when I boot I get an error saying there is a problem with /data (which is the raid array). Control+D to reboot or root passwd to login. When I login with root I cannot repair the disk with fsck or e2fsck. I don't really care if I can blow it away and start again. When I login I cannot edit fstab as it's a read only file system. I was going to edit out LABEL=/data etc and try to format the disk etc. from withing centos. Can't help with the bigger issues. Can help with this one. mount -o rw -o remount / should result in / being remounted read/write so that oyu can edit fstab. However, I can't guarantee that you're not going to lose data by doing that. I've never had a problem, but I've also never been in your situation... That said, you indicate that it's a new installation and you're willing to blow it away, so you probably don't care. You may want to run sync a couple of times before you reboot after doing this, as a lucky charm to make sure your changes get written to disk. But I cannot get there... I've tried knoppix but it does not seem to like anything in the TB size range using gparted... Any pointers on what I should do next? (I'm also googling...) Thanks, Ben Donohue IMPORTANT NOTICE TO RECIPIENT Computer viruses - It is your responsibility to scan this email and any attachments for viruses and defects and rely on those scans as Communication Design Management Pty Limited (CDM) does not accept any liability for loss or damage arising from receipt or use of this email or any attachments. Confidentiality - This email and any attachments are intended for the named recipient only and may contain personal information, be it confidential or subject to privilege, none of which are lost or waived because this email may have been sent to you in error. If you are not the named addressee please let CDM know by return email, permanently delete it from your system and destroy all copies and do not use or disclose the contents. Copyright - This email is subject to copyright and no part of it maybe reproduced in any manner without the written permission of the copyright owner. Privacy - Within the jurisdiction of Australian law, personal information in this email must be dealt with in compliance with the Australian Federal Privacy Act 1988. -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html -- There is nothing more worthy of contempt than a man who quotes himself - Zhasper, 2004 -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Re: [SLUG] Open source groupware solutions
On 08/05/07, Joseph Goncalves [EMAIL PROTECTED] wrote: Have you considered using a hosted service like Google calendar? Google calendar can be synchronised with your desktop applications using GSyncDaemon which is a java application that works well with Windows and Linux. It has a Windows installer, but I have mine working with Gentoo Linux, but I had to install the app without a Gentoo package. I don't know if there are any packages for other distros. Google isn't the only choice; there's also zoho.com, and there are a few other players as well. I use Spanning Sync(.com) with my Mac; it nicely pushes the data into iSync and thus into the standard apps. It also then pushes everything nicely to my phone, and also takes everything the other way. You didn't mention any macs though, only windows and linux, so my babblings will stop now. If you've got a windows environment, you should be able to sync the Google Calendar with Outlook and then use your phone's sync software to sync that with your phone. I would say Google calendar is good for small to medium size companies and I don't know if Google calendar scale well within an organisational so you may consider hosting something yourself using eGroupware or phpGroupware. It seems that eGroupware has better support and eGroupware allows you to sync calendar to mobile phones and pda through SyncML protocol. I have done preliminary research on these applications so I don't know how well they work. Google Calendar also has some nice features re: sharing calendars and free/busy information with other people in your organisation, and also makes shared/team/joint calendars easy, as well as calendars for resources such as meeting rooms, projectors, etc. But, you do have to keep in mind that you're shipping what could be your highly confidential internal information off to Google's servers, and you may or may not think that's acceptable. -- There is nothing more worthy of contempt than a man who quotes himself - Zhasper, 2004 -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
[SLUG] Constitutional Changes - call for comments
As you'll have seen from Silvia's email earlier, we're investigating some changes to the constitution. This email will be the only email to the main list; future discussion should go to the activities list. I'm only cross-posting this email to alert anyone not yet on the activities list, but interested in following discussion, to jump on that list (hint: http://lists.slug.org.au/listinfo/activities). I've whacked a useful page on the wiki at http://wiki.slug.org.au/constitutional_changes, including links to the existing constitution, the Model Rules, LA's rules, as well as details of the proposed changes. One of the proposed changes is already posted; I'll post details of the rest over the next few days. If you'd like to comment on those changes, or to suggest further changes, I look forward to your post on the Activities list :) -- There is nothing more worthy of contempt than a man who quotes himself - Zhasper, 2004 -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Re: [SLUG] Ubuntu installation questions and Linux-Windows related questions
(Apologies to Ken - I mistakenly sent an incomplete draft of this email directly to him. Not all linux users are this inept, I promise!) On 04/05/07, Ken and Jenny Hawley [EMAIL PROTECTED] wrote: I was at the Cebit Computer show in Sydney yesterday and spoke to Richard working at the stand. He was most helpful in suggestions which I have now made to work. There were 2 areas that we discussed but I did not write down his comments but still wish to find answers 1. My problem or fear is to install Ubuntu 6.10, which I understand may wipe out the Windows information on my Windows dedicated partitions. Hi Ken I realise that your questions were about installing linux, and what I'm about to suggest isn't exactly an answer to your question - but I'm not sure if that's because you're not aware of this alternative, or if it's because you're aware of it and aren't interested in it. The Ubuntu installation CD (which you may have been able to pick up at the stand yesterday - if not, you can grab it from http://www.ubuntu.com/getubuntu/download ) is actually a Live CD. This means that you can put it in your CD drive and boot directly off the CD into the full desktop linux environment - no need to install anything at all, no need to mess with your hard drive. Of course, it's not the same as going through and installing it: you won't be able to install new software[1] or save settings[2] or documents[3], but it will at least give you a good taste for whether Ubuntu is going to work easily on your hardware, and whether it's going to be a workable solution for you. If you do decide to go ahead and install it, the installer is an icon on the desktop - double-click, answer a few questions, and it's installed. If you're already aware of this, then I've just wasted your time and I apologise. If you're not aware of this though, hopefully I've just opened your eyes to a much easier way to give Linux a try :) [1] Not true[4] - you can install new software, but of course, next time you boot from the CD you'll be back with the default set of programs. This isn't always a bad thing though - it makes a nice test environment, with the comfort of knowing that if you do the wrong thing all you need to do is reboot and everything is back to normal... [2] Not true either. See https://help.ubuntu.com/community/LiveCDPersistencefor information about persisting settings across sessions. As a side-effect, this also means you can take a LiveCD + USB key with you, and all your desktop settings+data will travel with you - every machine you sit down to use is suddenly personalised just the way you like... [3] Not true either. Aside from the option in [2], you can always save things to USB keys, to shared FAT32 filesystems as other people have mentioned - and I've heard rumours that you might even be able to save it directly to your windows partition, but I've not tested that myself. [4] You're probably noticing a pattern here... There's really no such thing as being not able to do something on linux - it's always possible, it's just a question of how much work you have to do in order to achieve it... -- There is nothing more worthy of contempt than a man who quotes himself - Zhasper, 2004 -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Re: [SLUG] P2P question re Stealthed Ports
On 18/04/07, Howard Lowndes [EMAIL PROTECTED] wrote: Usually stealthed means that the ports are being filtered at the gateway and that incoming packets are being dropped rather than a Reset being sent, where they would be seen as Closed. I suspect that you have a firewall problem on your router. Most routers don't accept ICMP Ping and this could be causing the symptoms that you describe. Accepting or otherwise ICMP Ping won't lead to specific ports being listed as open or not. What the security site is doing is trying to open a connection to your machine on that port - it's sending a SYN packet to you. Think of this as someone seeing a person in a crowd that they think is you, and yelling Oi, Bill! What happens next is one of three things: * You turn around and say Hi John! - or, in the case of your computer, it sends a SYN ACK packet back, to indicate that the connection can commence. This results in John being sure you're the Bill he remembers, or your security site in listing the port as Open * You turn around and say Sorry, I don't know you - or, in the case of your computer, it sends a RST, to indicate that the connection can't connect. This results in John looking silly, or in the case of the security site, the port being listed as Closed * You ignore the shout and keep walking. John won't ever be sure what happened - did you not hear him? Perhaps your name isn't Bill? Perhaps you heard, and know who he is, but are still upset about that time he stole your cow, so you're pretending not to hear? In terms of your security site, there are a similar bunch of things that could have happened: your machine may not have received the request to open the connection (because an upstream firewall filtered it, or just because of random packet loss, or because it was in the middle of being rebooted at that moment, or...), or it might have received the request but chosen not to respond (because of some software firewall, or because the app running on that port was frozen, or...), or your computer might have received the request, sent a RST back, but that RST could have gone missing... Since there's no way to know what happened, your security site lists this as Stealthed --- But, all of the above is a bit of an intellectual wank, really - it might give you some understanding of what Stealthed means, but it doesn't help with your problem. Do any other ports that you have forwarded on the router get listed as 'open'? Do you have some kind of software firewall installed on your machine (Windows and Mac OS both come with firewalls by default, plus most antivirus packages come bundled with one now)? Was emule running at the time you did the scan? bill wrote: I have emule set up and working OK - I just downloaded a Linux .iso torrent without problem though it was slower than I think it should be. I do realise that the download speed depends upon my settings. connection speed and number of available seeders I have the appropriate ports forwarded on my modem/router, but a check with a Security site shows them as being stealthed On the Web I found the following info:- -- An open port is a port which accepts incoming traffic. In order to use a service on a host, the port must be open. If the port is not open the service is unavailable. A closed port does not accept incoming traffic. If a client tries to connect to a closed port, the host sends back a message to the client. This way the client is notified that the host exists but that the port is closed. A stealth port does not accept incoming traffic. In contrast to a closed port, a stealth port does not report anything back to the client. As nothing is sent back to the client, the client can not tell whether there exists a host on the given IP or not. --- Am I correct in thinking that the statement A stealth port does not accept incoming traffic. refers to traffic originating elsewhere other than as a result of a request from my system? or should the appropriate ports be open rather than stealthed Thanks for info\references\links Bill -- Howard. LANNet Computing Associates - Your Linux people http://lannetlinux.com When you want a computer system that works, just choose Linux; When you want a computer system that works, just, choose Microsoft. -- Flatter government, not fatter government; abolish the Australian states. -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html -- There is nothing more worthy of contempt than a man who quotes himself - Zhasper, 2004 -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Re: recommended internet wireless (was: [SLUG] Bigpond NextG on Linux (Ubuntu)?)
On 18/04/07, Rev Simon Rumble [EMAIL PROTECTED] wrote: This one time, at band camp, Joseph Goncalves wrote: By far the best value and service stability (compared to unwired) I have found is with 3. $49.95 for 1GB of downloads on a HDPSA connection. Good coverage and linux compatible (2.6.19 kernel onwards however simple patch needed to identify card for previous versions of kernel). Fast connection, I got over 2MB/s with a broadband test. 3 also gives the modem away free if you have a 2 year contract or you pay $10 per month for modem on 1 year contract. I got recommended the service from a SLUG member. Yes for Sydney metro this seems like a very good deal. I plan to see if I can get it and use my existing 3G mobile over Bluetooth. Will see how I go. Not just in Sydney Metro - IRCing from a bus halfway between Byron Bay and the Gold Coast is quite useful[1] too :) [1] for certain values of 'useful' -- There is nothing more worthy of contempt than a man who quotes himself - Zhasper, 2004 -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Re: [SLUG] Ruby-on-Rails talk - interest?
On 26/03/07, Erik de Castro Lopo [EMAIL PROTECTED] wrote: Taryn East wrote: Would there be any interest in me running an Introduction to Ruby on Rails talk at SLUG? I'd be interested. AOL! AOL! -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Re: [SLUG] Club portal software
I hereby second drupal, including the reccomendation to install from source. Does news tracking, polls, calendar, and simple forums. The project as a whole is heavily slanted toward community-building sites, and groups like civicspace have done even more work to push it in that direction. On 22/03/07, david [EMAIL PROTECTED] wrote: I'm doing similar things with Drupal... seems ok to me I hadn't used similar CMS before and it took me a while to get my head around the basics, but then it was fine. If you do use it, apt-get for Ubuntu is way behind.. I would download from the drupal site. I don't know about other distros. On Thu, 2007-03-22 at 16:36 +1100, Carlo Sogono wrote: I've been tasked to create/maintain the website of a motorcycle club of which I am a member of. In short I would like some basic functionality in it like news-tracking, polls, calendar and maybe a simple forum. I know there are heaps of CMS software available but I'd like to try one a few that you people have had experience with. Since I'm doing this as charity work I would prefer ease of use/installation over functionality and speed. I don't to spend half the day working out dependencies and installing add-ons. Any suggestions? -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html -- There is nothing more worthy of contempt than a man who quotes himself - Zhasper, 2004 -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Re: [SLUG] Despammifying a formail script
http://nms-cgi.sourceforge.net/ has a bunch of such things, including a drop-in replacement for the once-popular Matt's FormMail that's designed to be less spam-friendly. It sounds like you don't want to just use one of those scripts, but reading the code/changelogs might give you ideas for other snafus to avoid. One other thing I can think of tha tmight be useful is to have a one-time-use token in the form; generate a (pseudo)random token each time the form is served, expire the token as soon as it's used (or, if it's been more than, say, 5 minutes since it was generated). Won't stop the spamming, but they'll have to grab the page to get a token each time.. Of course, that might be bad, because you might find that a determined spammer doing that causes a lot of load... but the rate limiting you've talked about that should largely ameliorate that. On 16/03/07, Rev Simon Rumble [EMAIL PROTECTED] wrote: Hi folks. A company I'm doing some work for has written a tell a friend type script on their site. At the moment it's appallingly badly written from an anti-spam perspective, so I'm making some recommendations for it. It's a must-have piece of functionality, so just ditch it isn't going to work. It takes the To, From, referring URL and the text of the message itself from the form that points to it. I'm sure you can work out why this might be a problem (which the client worked out when I gave them a spoof form). Here's what I've come up with. Have I missed anything? * Rate limiting by IP address * Rate limiting overall * Restrict it so it's only usable with a referrer of (their domain) * Have boilerplate text with a small amount that can be entered by the user Boilerplate text is _not_ defined in form variables. * Only allow links that are within (their domain) Anything else? -- Rev Simon Rumble [EMAIL PROTECTED] www.rumble.net History teaches us that men and nations behave wisely once they have exhausted all other alternatives. - Abba Eban -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html -- There is nothing more worthy of contempt than a man who quotes himself - Zhasper, 2004 -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Re: [SLUG] A little annoying keyboard type issue...
On 06/03/07, Michael Fox [EMAIL PROTECTED] wrote: On 3/2/07, Zhasper [EMAIL PROTECTED] wrote: It sounds like Screen is confused about your terminal. What's the value of $TERM in the terminal before you launch screen? Can you show us the output of stty -a both inside of and outside of screen? As an interim workaround, see if ^H (ctrl+h) works as backspace inside screen. Another workaround - stty erase ctrl+vbackspace will probably fix backspace, but only for that one screen The output from stty -a in both a screen session and non screen session is exactly the same. Your suggestion of ctrl+h to see if that works, certainly does. Any chance we can figure out how to make this work on all sessions all the time. Put it in a .bashrc? I don't actually know. I find that it breaks for me on odd occasions - never consistently enough for me to look for a permanent fix. I just end up doing a stty erase ^v^h any time I notice it's a problem. I suspect it's a problem with the termcap for screen on older machines, but I'm not certain... If you could CC me on any replies directly that would be appreciated, as I am not on the list for the moment (will resign up again later on). Thanks -- There is nothing more worthy of contempt than a man who quotes himself - Zhasper, 2004 -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Re: [SLUG] bash question
On 06/03/07, Erik de Castro Lopo [EMAIL PROTECTED] wrote: justin randell wrote: In fact, aliases are for people used to the csh way of doing things .. I'd *never* use them never used csh before - i'm just a programmer masquerading (badly) as a sysadmin... If thats the case you'd probably be better off using Python or Perl. As a programming language, shell has some major weirdnesses. It's also more portable and has fewer dependencies. For simple tasks such as a simple for loop like this, the overhead of loading the interpreter is.. well, questionable. That said, there are definitely better alternatives that could be considered: I'd be looking at dsh (http://www.netfort.gr.jp/~dancer/software/dsh.html.en) for a start. -- There is nothing more worthy of contempt than a man who quotes himself - Zhasper, 2004 -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Re: [SLUG] A little annoying keyboard type issue...
On 02/03/07, Michael Fox [EMAIL PROTECTED] wrote: Hi, Maybe someone can help me with a problem that came about with a new xubuntu install lastnight... Basically it appears if I use screen from a terminal session in xorg, soon as I launch screen session I can no longer use delete or backspace keys. If I ssh to the box from somewhere else using putty etc, this problem doesn't exist. So as near as I can tell, it might be related to the keyboard setup in the xorg.conf that might be in use (basically detected by the installer). The keyboard is a usb one, in this case a black microsoft oem multimedia keyboard. Not concerned about the multimedia keys, just would like backspace/delete to work in terminal session that happen to have screen loaded in them. It sounds like Screen is confused about your terminal. What's the value of $TERM in the terminal before you launch screen? Can you show us the output of stty -a both inside of and outside of screen? As an interim workaround, see if ^H (ctrl+h) works as backspace inside screen. Another workaround - stty erase ctrl+vbackspace will probably fix backspace, but only for that one screen -- There is nothing more worthy of contempt than a man who quotes himself - Zhasper, 2004 -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Re: [SLUG] Swap = 2xRAM
Could you provide a link to the source/s that informed you of this? On 28/02/07, Howard Lowndes [EMAIL PROTECTED] wrote: I think I have just found a reason why the default installation often makes swap = 2xRAM. It's to do with laptops mainly. When they hibernate they apparently roll the memory image out to the swap space, hence the recommendation about the swap space size. -- Howard. LANNet Computing Associates - Your Linux people http://lannetlinux.com When you want a computer system that works, just choose Linux; When you want a computer system that works, just, choose Microsoft. -- Flatter government, not fatter government; abolish the Australian states. -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html -- There is nothing more worthy of contempt than a man who quotes himself - Zhasper, 2004 -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Re: [SLUG] Swap = 2xRAM
Right. So you're saying that desktop installers set swap to be 2x RAM by default, just in case the user decides to download suspend2, which didn't exist at the time the installer was written and isn't included in the distro, and *then* chooses to suspend to swap? I don't follow your argument. Why would an installer have default settings based on optional behaviour of a program that isn't even included in the distro and requires recompiling the kernel to use? On 28/02/07, Howard Lowndes [EMAIL PROTECTED] wrote: http://www.linux.com/article.pl?sid=06/05/24/1716222 If you select Swap Writer, suspend2 will write all data to the swap space, so make sure your swap is at least twice the amount of your RAM in size. You can also select File Writer and save the suspend data on a file on the hard disk instead, but I prefer the swap method since it's easier to set up. Compile, install your kernel, and reboot to it. Zhasper wrote: Could you provide a link to the source/s that informed you of this? On 28/02/07, Howard Lowndes [EMAIL PROTECTED] wrote: I think I have just found a reason why the default installation often makes swap = 2xRAM. It's to do with laptops mainly. When they hibernate they apparently roll the memory image out to the swap space, hence the recommendation about the swap space size. -- Howard. LANNet Computing Associates - Your Linux people http://lannetlinux.com When you want a computer system that works, just choose Linux; When you want a computer system that works, just, choose Microsoft. -- Flatter government, not fatter government; abolish the Australian states. -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html -- Howard. LANNet Computing Associates - Your Linux people http://lannetlinux.com When you want a computer system that works, just choose Linux; When you want a computer system that works, just, choose Microsoft. -- Flatter government, not fatter government; abolish the Australian states. -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html -- There is nothing more worthy of contempt than a man who quotes himself - Zhasper, 2004 -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Re: [SLUG] Swap = 2xRAM
On 28/02/07, Howard Lowndes [EMAIL PROTECTED] wrote: Zhasper wrote: Right. So you're saying that desktop installers set swap to be 2x RAM by default, just in case the user decides to download suspend2, which didn't exist at the time the installer was written and isn't included in the distro, and *then* chooses to suspend to swap? I don't follow your argument. Why would an installer have default settings based on optional behaviour of a program that isn't even included in the distro and requires recompiling the kernel to use? Well, I have a default installation of FC6 on my laptop and that hibernates by rolling out to swap. Since the default installation has no idea what the capabilities are of the target hardware, it strikes me as being a reasonable assumption to configure swap thus. That's a much better reason for thinking that than the article you mentioned is :) Thanks! On 28/02/07, Howard Lowndes [EMAIL PROTECTED] wrote: http://www.linux.com/article.pl?sid=06/05/24/1716222 If you select Swap Writer, suspend2 will write all data to the swap space, so make sure your swap is at least twice the amount of your RAM in size. You can also select File Writer and save the suspend data on a file on the hard disk instead, but I prefer the swap method since it's easier to set up. Compile, install your kernel, and reboot to it. Zhasper wrote: Could you provide a link to the source/s that informed you of this? On 28/02/07, Howard Lowndes [EMAIL PROTECTED] wrote: I think I have just found a reason why the default installation often makes swap = 2xRAM. It's to do with laptops mainly. When they hibernate they apparently roll the memory image out to the swap space, hence the recommendation about the swap space size. -- Howard. LANNet Computing Associates - Your Linux people http://lannetlinux.com When you want a computer system that works, just choose Linux; When you want a computer system that works, just, choose Microsoft. -- Flatter government, not fatter government; abolish the Australian states. -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html -- Howard. LANNet Computing Associates - Your Linux people http://lannetlinux.com When you want a computer system that works, just choose Linux; When you want a computer system that works, just, choose Microsoft. -- Flatter government, not fatter government; abolish the Australian states. -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html -- Howard. LANNet Computing Associates - Your Linux people http://lannetlinux.com When you want a computer system that works, just choose Linux; When you want a computer system that works, just, choose Microsoft. -- Flatter government, not fatter government; abolish the Australian states. -- There is nothing more worthy of contempt than a man who quotes himself - Zhasper, 2004 -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Re: [SLUG] What about /boot [was] Swap = 2xRAM
On 28/02/07, Howard Lowndes [EMAIL PROTECTED] wrote: Going slightly OT, but is the /boot partition necessary any longer. IIRC, this is bios-dependent. Newer bioses don't have this limitation. cf http://www.enterprisedt.com/publications/dual_boot.html#1024, http://www.geocities.com/epark/linux/grub-w2k-HOWTO.html (yes, first time I've seen a geocities page with useful information too - I didn't even know they were still running!), and best of all - http://www.tldp.org/HOWTO/Large-Disk-HOWTO-4.html#ss4.2, which has a very detailed history of the problem/s. Wasn't that a method of getting around the boot must be in the first 1023 cyl limit? Yes, it was. flame bait What are ppls ideas about partitioning? /home ?? /usr/local ?? /var/mail ?? ?? /flame bait As always, depends on what you're using the machine for, how you're going to be setting it up, etc. There is no One True Partitioning Scheme. There is, of course, One True Editor, and that is vim. -- There is nothing more worthy of contempt than a man who quotes himself - Zhasper, 2004 -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Re: [SLUG] What about /boot [was] Swap = 2xRAM
On 28/02/07, Glen Turner [EMAIL PROTECTED] wrote: The One True Partitioning scheme is / :-) Seriously, for a single-spindle machine I wouldn't stuff about with partitioning unless you want to encrypt your home directory with dm_crypt. I think there's a bit more utility than that in at least making /home it's own partition: * (L)Users can't fill up the entire disk, only /home. * Conversely, overly-verbose daemons logging through syslog/their own log files to /var/log aren't going to unexpectedly prevent Grandma from saving that 150Mb image she's been working on in Gimp * Backup/restore/reinstall is easy - wipe the / partition, but leave /home untouched. Viola, all user files and preferences are kept, while the system is upgraded or restored. -- There is nothing more worthy of contempt than a man who quotes himself - Zhasper, 2004 -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Re: [SLUG] Oddball memory usage?
On 22/02/07, Peter Hardy [EMAIL PROTECTED] wrote: On Thu, 2007-02-22 at 16:24 +1100, Zhasper wrote: On 22/02/07, Peter Hardy [EMAIL PROTECTED] wrote: I'm a little puzzled by this: total used free sharedbuffers cached Mem:50050844816352 188732 0 1566443165540 -/+ buffers/cache: 14941683510916 Swap: 10526161052616 0 Is this sort of usage normal? Filling a gigabyte of swap space while just under 1.5GB of memory is going towards buffers seems odd to me. And vmstat reports no usage of this swap space over a 15 minute period. What sort of utilities are around to analyse swap space? I'd like to get an idea of exactly what's using all of that memory. You're running Linux, right? Aye. It's a 2.4 kernel dating from somewhere before swappiness became tuneable. This can be really great on a system with not much ram where large apps that you haven't used in a while (eg, OOo) will get swapped out when they're not being used, to make lots of space to cache all the pr0^H^H^Himages of your grandmother's birthday party that you're scanning through agressively.. In my rush to be as detailed as possible, I completely forgot to mention what the machine in question is actually doing. Well, it's a web server for a single (fairly high-traffic) domain. Apart from apache and the web application software, there's nothing running on it apart from the usual collection of processes that are essential to a well behave unix system. init, crond, syslogd. I'd be looking at top (or other tools which give similar output), particular at the RES and VIRT columns. VIRT shows the total amount of memory used by a process; RES shows the amount of that that's located in RAM (the rest has been swapped out) Given what you said, my two-seconds-thought-while-sitting-in-armchair hunch is that Apache (or more likely, come CGI you're using) does have some kind of memory leak, and is slowly gobbling ram - but the kernel is smart enough to see that the pages, although claimed, are unused, so it's swapping them. I would also guess that your site either has a lot of static content which, rather than being read from disk a lot, the kernel is caching in ram. You mentioned web application software, so it could be files used by that too - config files, databases, etc. Check your RRDTool graphs to see if swap/memory usage has been growing over time - particular that really handy graph that differentiates between buffers/cache/actually-used-by-applications ram usage, so that you can see if, perhaps, the amount of used and buffers/cache have remained about the same, while swap usage has been creeping up I think I'm agreeing with everyone else - the kernel usually does a pretty good job of handling the balance between buffers/cache and application ram. If you're seeing performance issues, check sar/iostat/vmstat/similar to see if there's a lot of swapping happening; if that's the case, you might have a problem. If there's a lot of disk IO that's not swapping, you might have the opposite problem - not enough swapped out to cache all the frequently used files. Either way, extra ram should help a lot, and extra swap may help out as well - allow more files to be cached, at the expense of infrequent extreme performance issues as those files get dumped from ram as the system frantically swaps pages back in... The other possibility is that you actually do have a memory leak, which is going to be a lot of fun. As always, monitoring is your friend... Looking at the output of free tells you what the system is like now, looking at historical trends tells you how it got there - whether this is a normal condition, something that has gradually arisen, or something that abruptly occured overnight... This is easily the biggest system I've found myself responsible for, and the way the memory's been allocated doesn't line up with anything else I've seen before. Just curious as to how and why it's being used like this. -- There is nothing more worthy of contempt than a man who quotes himself - Zhasper, 2004 -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Re: [SLUG] Oddball memory usage?
On 22/02/07, Peter Hardy [EMAIL PROTECTED] wrote: I'm a little puzzled by this: total used free sharedbuffers cached Mem:50050844816352 188732 0 1566443165540 -/+ buffers/cache: 14941683510916 Swap: 10526161052616 0 Is this sort of usage normal? Filling a gigabyte of swap space while just under 1.5GB of memory is going towards buffers seems odd to me. And vmstat reports no usage of this swap space over a 15 minute period. What sort of utilities are around to analyse swap space? I'd like to get an idea of exactly what's using all of that memory. You're running Linux, right? As of.. urmm.. somewhere in the 2.4 series, or early in the 2.6 series, I forget where, the kernel developers decided to be very, very aggressive about favoring buffers/cache over unrecently-used pages. This can be really great on a system with not much ram where large apps that you haven't used in a while (eg, OOo) will get swapped out when they're not being used, to make lots of space to cache all the pr0^H^H^Himages of your grandmother's birthday party that you're scanning through agressively.. It's tuneable though, via /proc/sys/vm/swappiness. Quick google search shows the below, from http://beranger.org/index.php?article=1547 (which read, for a more detailed explanation) swappiness is a number between 0 and 100, representing how aggressive the swap policy of the kernel is, or where is the balance between swapping applications and freeing cache. -- There is nothing more worthy of contempt than a man who quotes himself - Zhasper, 2004 -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Re: [SLUG] Oddball memory usage?
On 22/02/07, Howard Lowndes [EMAIL PROTECTED] wrote: It's recommended that your swap space should be 2x your RAM. In your case it's .2x Blanket statement != useful. On a desktop, where I'm putting OOo in the background and letting firefox chew all my ram for a while - yes, I'll take lots of swap. On a high-performance server - I'll spend the extra couple of hundred and get 2x the RAM instead, I don't want the performance hit that swapping implies. I'll probably add some swap in as a bit of a buffer for pathological cases, but if that swap starts being used I'll be worried. Well, I might be, anyway - it would depend on the exact purpose of the machine and its usage patterns. On my N800, where 'swap' means extraneous writes to flash, I'll pass on swap. My point is, swap is not always a good thing, and 2x is not always the right amount. It used to be a decent guideline, for desktop systems, when ram was expensive and most machines had maybe 128mb of ram. These days, when your average desktop comes with 1Gb, and the upgrade to 2Gb is perhaps $150 more at most... well, maybe swap is not so neccessary In this case, Peter hasn't given us enough information - we don't know if he's working with a low-end server, a desktop, a laptop. He's *probably* not working with an embedded device... We don't know what he's doing with the server, and we don't know what it's running. We really don't know if 2xram is an appropriate amount of swap. Peter Hardy wrote: I'm a little puzzled by this: total used free sharedbuffers cached Mem:50050844816352 188732 0 1566443165540 -/+ buffers/cache: 14941683510916 Swap: 10526161052616 0 Is this sort of usage normal? Filling a gigabyte of swap space while just under 1.5GB of memory is going towards buffers seems odd to me. And vmstat reports no usage of this swap space over a 15 minute period. What sort of utilities are around to analyse swap space? I'd like to get an idea of exactly what's using all of that memory. -- Howard. LANNet Computing Associates - Your Linux people http://lannetlinux.com When you want a computer system that works, just choose Linux; When you want a computer system that works, just, choose Microsoft. -- Flatter government, not fatter government; abolish the Australian states. -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html -- There is nothing more worthy of contempt than a man who quotes himself - Zhasper, 2004 -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
[SLUG] Re: [activities] dns lookup with host works, other apps doesn't.
Activities? Oops.. On 21/02/07, Zhasper [EMAIL PROTECTED] wrote: Not a solution, but a couple of suggestions: try stracing wget to see if you can tell exactly what lookup it's doing. I've attached a quick run that I just did below- you can see it looking at nsswitch.conf, checking the files, sending a connection to the nameserver specified in resolv.conf (ie, 127.0.0.1) Second suggestion is my favorite hammer, dnstracer. I've attached sample output below as well; it shows that it's sending queries to 127.0.0.1 which returns the result. This is pretty much what I'd expect to get anywhere (except that usually it's not 127.0.0.1 that gets queried); this may, perhaps, reveal a little more information that may help you. [EMAIL PROTECTED]:~$ strace wget www.google.com.au 21 | grep -e open -e connect -e send -e recv open(/etc/ld.so.cache, O_RDONLY) = 3 open(/usr/lib/i686/cmov/libssl.so.0.9.7, O_RDONLY) = 3 open(/usr/lib/i686/cmov/libcrypto.so.0.9.7, O_RDONLY) = 3 open(/lib/tls/libdl.so.2, O_RDONLY) = 3 open(/lib/tls/libc.so.6, O_RDONLY)= 3 open(/etc/wgetrc, O_RDONLY|O_LARGEFILE) = 3 open(/home/zhasper/.rnd, O_RDONLY)= -1 EACCES (Permission denied) open(/dev/urandom, O_RDONLY|O_NONBLOCK|O_NOCTTY) = 3 open(/etc/localtime, O_RDONLY)= 3 open(/etc/resolv.conf, O_RDONLY) = 3 connect(3, {sa_family=AF_FILE, path=/var/run/nscd/socket}, 110) = -1 ENOENT (No such file or directory) connect(3, {sa_family=AF_FILE, path=/var/run/nscd/socket}, 110) = -1 ENOENT (No such file or directory) open(/etc/nsswitch.conf, O_RDONLY)= 3 open(/etc/ld.so.cache, O_RDONLY) = 3 open(/lib/tls/libnss_files.so.2, O_RDONLY) = 3 open(/etc/host.conf, O_RDONLY)= 3 open(/etc/hosts, O_RDONLY)= 3 open(/etc/ld.so.cache, O_RDONLY) = 3 open(/lib/tls/libnss_dns.so.2, O_RDONLY) = 3 open(/lib/tls/libresolv.so.2, O_RDONLY) = 3 connect(3, {sa_family=AF_INET, sin_port=htons(53), sin_addr=inet_addr(127.0.0.1)}, 28) = 0 send(3, \220`\1\0\0\1\0\0\0\0\0\0\3www\6google\3com\2au\0\0..., 35, 0) = 35 recvfrom(3, \220`\201\200\0\1\0\6\0\7\0\0\3www\6google\3com\2au\0\0..., 1024, 0, {sa_family=AF_INET, sin_port=htons(53), sin_addr=inet_addr(127.0.0.1)}, [16]) = 259 connect(3, {sa_family=AF_INET, sin_port=htons(80), sin_addr=inet_addr(209.85.135.103)}, 16) = 0 write(2, connected.\n, 11connected. open(index.html.3, O_WRONLY|O_CREAT|O_EXCL|O_LARGEFILE, 0666) = 4 [EMAIL PROTECTED]:~$ dnstracer www.smh.com.au Tracing to www.smh.com.au[a] via 127.0.0.1, maximum of 3 retries 127.0.0.1 (127.0.0.1) Got answer [received type is cname] |\___ ns1.fairfax.com.au [smh.com.au] (203.26.177.241) Got authoritative answer [received type is cname] \___ ns2.fairfax.com.au [smh.com.au] (203.5.59.241) Got authoritative answer [received type is cname] On 21/02/07, Erik de Castro Lopo [EMAIL PROTECTED] wrote: Hi all, I have a number machines sitting in another country with access to them via a VPN. On one of these machines host www.google.com returns valid IP addresses, but wget www.google.com results in Resolving www.google.com... failed: Temporary failure in name resolution. Attempting to access other servers results in similar behaviour. host server works, wget server doesn't. In addition, the problem is not restricted to wget; telnet, ping, lu=ynx etc are all broken, but host works. Anybody have any explanation for this weird behaviour? Erik -- +---+ Erik de Castro Lopo +---+ http://en.wikipedia.org/wiki/Why_I_Am_Not_a_Christian http://en.wikipedia.org/wiki/Why_I_Am_Not_a_Muslim http://en.wikipedia.org/wiki/Strong_atheism -- SLUG Activities Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html -- There is nothing more worthy of contempt than a man who quotes himself - Zhasper, 2004 -- There is nothing more worthy of contempt than a man who quotes himself - Zhasper, 2004 -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Re: [SLUG] Checking my understanding of using DynDNS.org services.
On 14/02/07, [EMAIL PROTECTED] [EMAIL PROTECTED] wrote: On Wednesday 14 February 2007 08:05, [EMAIL PROTECTED] wrote: I have had bigpond for about 4 years, I use their smtp server as an outbound, to stop my mail being blocked because it came from a dial up (I'm on cable). I haven't had a problem. I have my own domain setup. Haven't had a problem with tpg or exetel either. I think most isp allow relaying through there smtp (outbound from your laptop to the internet) from all of their ip addresses I had been told that Bigpond would block smtp and searching on Google for smtp and Bigpond shows many frustrated users who have been blocked but I had better have a try and see what gives. I have reconfigured exim4 and guessed a few things as I don't know much about mail but Bigpond's website gives its mail site name as mail.bigpond.com so I set exim to use it and I think it has worked. This email is sent from mutt while at home using Bigpond. I have read (in Bigpond blurb) that various ports are blocked including smpt. They also say that for $10 / month you can get a fixed IP and unblocked ports. Now THAT may be the only good thing they've every done smile James SMPT? Simple Mail.. Posting Transport? Blocking outbound SMTP generally means blocking outbound connections on port 25. Gmail's service requires you to use SSL on port 465, will generally bypass this. There's been quite a few mentions in this thread about the header that gets added by Gmail. The header that gets set is the Sender: header. Outlook in particular does bizarre things with this header: an email with From: Phil A. Scarratt [EMAIL PROTECTED] and Sender: Phil B. Scarrat [EMAIL PROTECTED] will show in outlook as being From: Phil B. Scarrat [EMAIL PROTECTED] on behalf of Phil A. Scarrat [EMAIL PROTECTED]. From: headers, reply-to headers and the like will be left unmunged, and that's better than some mailing lists I could mention.. If you can live with that, Gmail is cheap and reliable. I just noticed that, amongst the rest of the evil munging this list does, it also munges the sender address to be [EMAIL PROTECTED]. That must mean that anyone reading the list in outlook sees each and every post to the list as being Fom: [EMAIL PROTECTED] on behalf of. ick! -- There is nothing more worthy of contempt than a man who quotes himself - Zhasper, 2004 -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Re: [SLUG] Checking my understanding of using DynDNS.org services.
On 14/02/07, Zhasper [EMAIL PROTECTED] wrote: I just noticed that, amongst the rest of the evil munging this list does, it also munges the sender address to be [EMAIL PROTECTED]. That must mean that anyone reading the list in outlook sees each and every post to the list as being Fom: [EMAIL PROTECTED] on behalf of. ick! Yes, yes it does. http://www.flickr.com/photos/zhasper/389821431/ Eww. -- There is nothing more worthy of contempt than a man who quotes himself - Zhasper, 2004 -- There is nothing more worthy of contempt than a man who quotes himself - Zhasper, 2004 -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Re: [SLUG] Is Xubuntu really light-weight?
On 06/02/07, Amos Shapira [EMAIL PROTECTED] wrote: I have 192Mb, which is the maximum it supports. Minimum? :) I happened to stumble on http://www-128.ibm.com/developerworks/linux/library/l-linux-memory.html a few days ago, which seems to tackle your original question regarding xubuntu vs ubuntu. It suggests that you will be better off with Xubuntu, but you're still going to have problems if you start using OOo + firefox + -- There is nothing more worthy of contempt than a man who quotes himself - Zhasper, 2004 -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Re: [SLUG] Debian unmet dependencies, but later version already installed
The error is exactly as stated in the output of dpkg: the package you're trying to install depends on a particular version, but you have a later version installed. The solution is as implied in the output of dpkg: apt-get install libnewt0.51 This will remove libnewt0.52 (they're not versions of the same package, they're different packages which conflict with each other) and install libnewt0.51 It will also remove any other programs you have that depend on libnewt0.52, so pay close attention to what Apt is telling you before you say yes. http://lists.debian.org/debian-qa-packages/2006/03/msg00332.html suggests that the process of changing mondo to use libnewt0.52 should be fairly simple; if you can't install 0.51, you might want to try re-packaging it yourself. Alternatively, the debian package maintainer has some newer (experimental) packages at http://people.debian.org/~andree/packages/ which you may find useful. Out of curiousity - Mondo is in the debian package tree already - did you try a simple apt-get install mondo? This would have suggested removing libnewt0.52 and installing libnewt0.51, which is exactly what you need to do. It probably would suggest a heap of other removals as well - on my system, going from libnewt0.51 to libnewt0.52 removes all of the following: defoma fontconfig initrd-tools kernel-image-2.6.8-j1 libfontconfig1 libnewt0.51 modconf pppconfig pppoeconf ttf-bitstream-vera whiptail hrm, I think I won't be doing that... On 30/01/07, david [EMAIL PROTECTED] wrote: I'm trying to install the latest mondo, which depends on libnewt0.51, but Ubuntu has libnewt0.52 dpkg complains about unmet dependencies. --force-depends-version doesn't help. Any suggestions? thanks, David. [EMAIL PROTECTED]:/usr/local/deb # dpkg -i mondo_2.2.1_i386.deb (Reading database ... 164645 files and directories currently installed.) Preparing to replace mondo 2.2.1 (using mondo_2.2.1_i386.deb) ... Unpacking replacement mondo ... dpkg: dependency problems prevent configuration of mondo: mondo depends on libnewt0.51; however: Package libnewt0.51 is not installed. dpkg: error processing mondo (--install): dependency problems - leaving unconfigured Errors were encountered while processing: mondo [EMAIL PROTECTED]:/usr/local/deb # sudo apt-get install libnewt0.52 Reading package lists... Done Building dependency tree Reading state information... Done libnewt0.52 is already the newest version. You might want to run 'apt-get -f install' to correct these: The following packages have unmet dependencies. mondo: Depends: libnewt0.51 but it is not installable E: Unmet dependencies. Try 'apt-get -f install' with no packages (or specify a solution). -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html -- There is nothing more worthy of contempt than a man who quotes himself - Zhasper, 2004 -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Re: [SLUG] ssh and vnc
On the machine that you're trying to connect to, try running (as root) netstat -ntlp for me. I think you'll find that X isn't listening on any TCP socket. It certainly isn't on my ubuntu desktop. If you look in /etc/gdm/gdm.conf, you'll find: # If true this will basically append -nolisten tcp to every X command line, a # good default to have (why is this a negative setting? because if it is # false, you could still not allow it by setting command line of any particular # server). It's probably better to ship with this on since most users will not # need this and it's more of a security risk then anything else. # Note: Anytime we find a -query or -indirect on the command line we do not add # a -nolisten tcp, as then the query just wouldn't work, so this setting only # affects truly local sessions. DisallowTCP=true I would think that at a minimum you need to set that to False and restart GDM; once it's listening on a socket (you probably want to make it only listen on 127.0.0.1 - implementing this is left as an exercise for the reader), you should be able to connect to it. Also, I note that you're using Xubuntu, so (unless you installed it yourself), GDM will be the wrong thing to look at - again, finding the correct file is left as an exercise for the reader, as is finding some way to do this that doesn't involve messing with text config files. Feel free to flame me off-list and I'll try to help with the exercises :) On 29/01/07, Alan L Tyree [EMAIL PROTECTED] wrote: On Mon, 29 Jan 2007 09:58:56 +1100 Peter Hardy [EMAIL PROTECTED] wrote: Alan L Tyree wrote: It fails with all programs. The problem is that the DISPLAY variable is not getting set. After logging into both machines with ssh -X machine_name - [EMAIL PROTECTED]:~$ echo $DISPLAY localhost:10.0 ** Ubuntu machine where everything works - [EMAIL PROTECTED]:~$ echo $DISPLAY ** Xubuntu machine where nothing works [EMAIL PROTECTED]:~$ -- The /etc/ssh/sshd_config files are the same in both machines. I don't know how DISPLAY gets set If you add -vv to your ssh flags, you'll see something like: debug2: x11_get_proto: /usr/X11R6/bin/xauth -f /tmp/ssh-2fcsElfWeT/xauthfile generate 127.0.0.1:0.0 MIT-MAGIC-COOKIE-1 untrusted timeout 1200 2/dev/null debug2: x11_get_proto: /usr/X11R6/bin/xauth -f /tmp/ssh-2fcsElfWeT/xauthfile list 127.0.0.1:0.0 2/dev/null debug1: Requesting X11 forwarding with authentication spoofing. debug2: channel 0: request x11-req confirm 0 after the connection is authenticated. Every time I've had a problem like this, it was because xauth wasn't installed on the server. debug2: x11_get_proto: /usr/bin/X11/xauth list :0.0 2/dev/null debug1: Requesting X11 forwarding with authentication spoofing. debug2: channel 0: request x11-req confirm 0 debug2: client_session2_setup: id 0 debug2: channel 0: request pty-req confirm 0 debug1: Sending environment. debug1: Sending env LANG = en_AU.UTF-8 debug2: channel 0: request env confirm 0 debug2: channel 0: request shell confirm 0 debug2: fd 3 setting TCP_NODELAY debug2: callback done debug2: channel 0: open confirm rwindow 0 rmax 32768 debug2: channel 0: rcvd adjust 131072 Linux misty 2.6.17-10-powerpc #2 Tue Dec 5 22:00:09 UTC 2006 ppc [EMAIL PROTECTED]:~$ echo $DISPLAY [EMAIL PROTECTED]:~$ [EMAIL PROTECTED]:~$ type xauth xauth is /usr/bin/xauth Sigh! I don't **need** to ssh -X into this machine, so maybe I'll stop wasting time on it. Very frustrating. Alan -- Pete -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html -- Alan L Tyreehttp://www2.austlii.edu.au/~alan Tel: +61 2 4782 2670Mobile: +61 427 486 206 Fax: +61 2 4782 7092FWD: 615662 -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html -- There is nothing more worthy of contempt than a man who quotes himself - Zhasper, 2004 -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Re: [SLUG] ssh and vnc
On 30/01/07, Zhasper [EMAIL PROTECTED] wrote: On the machine that you're trying to connect to, try running (as root) netstat -ntlp for me. I think you'll find that X isn't listening on any TCP socket. It certainly isn't on my ubuntu desktop. If you look in /etc/gdm/gdm.conf, you'll find: # If true this will basically append -nolisten tcp to every X command line, a # good default to have (why is this a negative setting? because if it is # false, you could still not allow it by setting command line of any particular # server). It's probably better to ship with this on since most users will not # need this and it's more of a security risk then anything else. # Note: Anytime we find a -query or -indirect on the command line we do not add # a -nolisten tcp, as then the query just wouldn't work, so this setting only # affects truly local sessions. DisallowTCP=true I would think that at a minimum you need to set that to False and restart GDM; once it's listening on a socket (you probably want to make it only listen on 127.0.0.1 - implementing this is left as an exercise for the reader), you should be able to connect to it. Also, I note that you're using Xubuntu, so (unless you installed it yourself), GDM will be the wrong thing to look at - again, finding the correct file is left as an exercise for the reader, as is finding some way to do this that doesn't involve messing with text config files. Reading http://ubuntuguide.org/wiki/Ubuntu_Edgy#How_to_turn_on_the_XDMCP_feature made me look at System - Administration -Login Window - Security, at which place I find a setting labelled Deny TCP Connections to X server, which has the additional description:Disables X forwarding, but does not affect XDMCP. It defaults to being checked. I would assume this corresponds to the option in the file I mentioned. If this exists, or something similar, in Xubuntu, it would seem like a good knob to twiddle. -- There is nothing more worthy of contempt than a man who quotes himself - Zhasper, 2004 -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Re: [SLUG] ssh and vnc
On 30/01/07, Amos Shapira [EMAIL PROTECTED] wrote: On 30/01/07, Zhasper [EMAIL PROTECTED] wrote: On the machine that you're trying to connect to, try running (as root) netstat -ntlp for me. I think you'll find that X isn't listening on any TCP socket. It certainly isn't on my ubuntu desktop. The X server on the remote machine shouldn't have anything to do with this. You can run X clients on a CPU which doesn't have a server as long as they have a valiud $DISPLAY to connect to (as many of us can testify - e.g. installing Oracle through their Java-based installer on some remote server which doesn't even have a monitor). Urr... quite right. I thought the Xubuntu machine was the remote server, but on re-reading, I see that I was wrong - it's one of the clients that's trying to connect to the server[1]. However, partway through the tread, Alan noted that: [EMAIL PROTECTED]:~$ echo $DISPLAY ** Xubuntu machine where nothing works combine this with your completely correct comment that You can run X clients on a CPU which doesn't have a server as long as they have a valid $DISPLAY to connect to - well, I think we can see where the problem might be :) I'm fairly sure I'm on the right track - please let me know if I'm still missing something :) -- There is nothing more worthy of contempt than a man who quotes himself - Zhasper, 2004 -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Re: [SLUG] How do I remove a directory pointed to by a symbolic link
On 1/3/07, Norman Gaywood [EMAIL PROTECTED] wrote: I must be missing something simple. $ mkdir dir $ ln -s dir link $ rm link/ rm: cannot remove `link/': Not a directory $ rm -f link/ rm: cannot remove `link/': Not a directory $ rm -rf link/ rm: cannot remove `link/': Not a directory $ rmdir link/ rmdir: link/: Not a directory $ rm -rf link/. rm: cannot remove `.' or `..' Of course I could go 'rm -rf dir' but how do I find the name 'dir' from the symbolic link name 'link'. ls -l link eg [EMAIL PROTECTED]:~$ mkdir 1 [EMAIL PROTECTED]:~$ ln -s 1 2 [EMAIL PROTECTED]:~$ ls -l 2 lrwxrwxrwx 1 polleyj itweb 1 Jan 3 14:19 2 - 1 Simon's suggestion extrapolates from this to automagically grabbing the name and removing the specified dir. -- There is nothing more worthy of contempt than a man who quotes himself - Zhasper, 2004 -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Re: [SLUG] How do I remove a directory pointed to by a symbolic link
On 1/3/07, Amos Shapira [EMAIL PROTECTED] wrote: On 03/01/07, Penedo [EMAIL PROTECTED] wrote: readlink -fe link | xargs -0r rm -rf Correction to the above - apparently xargs waits for \0 in order to terminate its input, Only because you're using the -0 flag. --null, -0 Input filenames are terminated by a null character instead of by whitespace, and the quotes and backslash are not special (every character is taken literally). Disables the end of file string, which is treated like any other argument. Useful when arguments might contain white space, quote marks, or backslashes. The GNU find -print0 option produces input suitable for this mode. try readlink -fe link | xargs -r rm -rf (I can't test this because the only machine I have access to right now doesn't support the -e flag to readlink) (This is also going to destroy the ability to handle whitespace in filenames though, so you probably don't want to do this.) so maybe the following is more appropriate: $ (readlink -fen link ; echo -e \\0) | xargs -0r rm -rf --Amos -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html -- There is nothing more worthy of contempt than a man who quotes himself - Zhasper, 2004 -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Re: [SLUG] Is there a solution ...
On 1/2/07, [EMAIL PROTECTED] [EMAIL PROTECTED] wrote: On Tuesday 02 January 2007 07:44, [EMAIL PROTECTED] wrote: After advice given here, but for other reasons too, I got a adsl-router rather than an adsl-bridge to tigger. What I've lost is name virtual hosts. My router (dlink 604T) does suitable virtual hosting, but all the necessary name information is lost before it gets routed to apache2. ie router:80 - 192.168.1.254:80 Is there a way of hosting multiple sites with a router? Your router only forwards to addresses and ports. It knows nothing of the protocol you're forwarding. You most likely have a configuration issue on the machine behind your router. The *client* tells the web server which Host name it wants. Use telnet to check what your web server is doing: $ telnet perkypants.org 80 Trying 70.85.31.216... Connected to perkypants.org. Escape character is '^]'. HEAD / HTTP/1.0 HTTP/1.1 302 Found Date: Mon, 01 Jan 2007 02:18:17 GMT Server: Apache/2.0.55 (Ubuntu) PHP/5.1.2 Location: http://waugh.id.au/ Connection: close Content-Type: text/html; charset=iso-8859-1 (As you can see above, my machine has a sensible default configuration for no-name requests, which instead of dumping a useless error, redirects to a relatively useful site.) Then, check what your web server is doing when the client is actually doing the right thing (specifically, the Host header): $ telnet perkypants.org 80 Trying 70.85.31.216... Connected to perkypants.org. Escape character is '^]'. HEAD / HTTP/1.0 Host: perkypants.org HTTP/1.1 200 OK Date: Mon, 01 Jan 2007 02:22:34 GMT Server: Apache/2.0.55 (Ubuntu) PHP/5.1.2 Last-Modified: Sun, 17 Dec 2006 14:40:02 GMT ETag: 1973d-3ee-d711b480 Accept-Ranges: bytes Content-Length: 1006 Connection: close Content-Type: text/html; charset=UTF-8 Jeff thanks for the detailed reply. When I had virtual hosts enabled on tigger, and tigger bridged to my ADSL: http://tigger.ws# was my page http://margaret.tigger.ws # was, what is now http://tigger.ws/margaret http://deej.tigger.ws # was, what is now http://tigger.ws/deej With the router: http://tigger.ws# was my page http://margaret.tigger.ws # was still my page http://deej.tigger.ws # was still my page Not to bad so far, but I want to host http://sunfeathers.net which is http://tigger.ws/deej but sunfeathers.net is tigger.ws NOT tigger.ws/deej Again, everything worked with tigger bridged to ADSL, but not virtual host on router. Is any of this useful, (from the internet, not from within)? [server] /home/jam [891]% telnet tigger.ws 80 Trying 202.71.175.58... Connected to tigger.ws. Escape character is '^]'. Ummm ? This key is: Your router only forwards to addresses and ports. It knows nothing of the protocol you're forwarding. If the router is addressed as tigger.ws, deej.tigger.ws or sunfeathers.net it forwards the request to 192.168.5.254 and the same page is served. Am I missing something ? Thanks James I don't think so, you've given a quite detailed account of the problem, the root cause of the problem, and the solution. As you've described the router is doing a portforward at the TCP level, where it can only look at IPs and port numbers. You only have one IP, and only one port. Tigger used to do proxying at the HTTP layer, where it was looking at the HOST: field of the HTTP request - there can be lots of different HOST: fields. You've already described the solution you had on the past: Tigger obviously knows how to do the right proxying. Just get your router to point to Tigger (or some similarly configured HTTP proxy, if Tigger doesn't do what Tiggers do best any more) and everything should be fine. -- There is nothing more worthy of contempt than a man who quotes himself - Zhasper, 2004 -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Re: [SLUG] Is there a solution ...
On 1/2/07, Penedo [EMAIL PROTECTED] wrote: On 02/01/07, [EMAIL PROTECTED] [EMAIL PROTECTED] wrote: blush after reading this 10 times I still am not sure what this means Don't blush communication is the responsibility of the communicator, not the communicatee. If you don't understand, the person blushing should be me. ... Just get your router to point to Tigger I think he means configure the router to forward all incoming TCP connections on port 80 to the internal private network address of Tigger. Yep, Penedo said what I meant, but better. You've already mentioned that Tigger used to handle the proxying that you want, and you've mentioned that the router is forwarding all traffic that comes in to port 80 to a specified IP/Port. If you change the IP that the router forwards the traffic to to be Tigger, it should then perform the proxying as it did before (you may need to mess with its networking a bit so it has correct routes etc), and you'll have your virtual hosts working again. If this hasn't helped, perhaps someone else can hit me with a cluebat and offer a clearer explanation... -- There is nothing more worthy of contempt than a man who quotes himself - Zhasper, 2004 -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Re: [SLUG] LSOF - is there a real-time GUI?
On 12/29/06, Penedo [EMAIL PROTECTED] wrote: On 29/12/06, bill [EMAIL PROTECTED] wrote: What I'm looking for - if it exists - is a GUI for LSOF that updates in real-time. Under Winblows ( some time ago now) I had such a tool - one that showed connected IP, port and program name. Don't remember what it was called. I usually associate lsof with filesystem monitoring. What you are looking for sounds like netstat -p. Are you interested in filesystem or network connections? Whatever you want, I'm not aware of a GUI interface for such a tool off the top of my head. If you are after filesystem operations monitoring then maybe inotify-tools (http://inotify-tools.sourceforge.net/, also has a Debian package) could be something to start digging from. --P Under linux, sockets are files, so lsof does show sockets as well. If all you're interested in are the sockets and the processes holding them though, netstat -np will give you much faster response than using lsof. I've seen GUIs for netstat - I'm fairly sure Gnome comes with one as part of an app called Network Tools or something like that - but can't recall details offhand, and don't have a 'nix machine handy to look at. -- There is nothing more worthy of contempt than a man who quotes himself - Zhasper, 2004 -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Re: [SLUG] LSOF - is there a real-time GUI?
On 12/29/06, Penedo [EMAIL PROTECTED] wrote: On 29/12/06, Zhasper [EMAIL PROTECTED] wrote: Under linux, sockets are files, so lsof does show sockets as well. I know lsof can monitor also network connections but that's not because sockets are files. From the lsof man page: An open file may be a regular file, a directory, a block special file, a character special file, an executing text reference, a library, a stream or a network file (Internet socket, NFS file or UNIX domain socket.) How are you defining file? UNIX-domain sockets, which are usually uninteresting, indeed occupy i-nodes on filesystems, but I'm not aware of a standard way to map network sockets ( e.g. TCP/UDP sockets) to filesystem names. Do you? (maybe there is some specialized linux filesystem which does this, but I don't see one on my system right now. I thought there might be something in /proc, but I can't see anything. -- There is nothing more worthy of contempt than a man who quotes himself - Zhasper, 2004 -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Re: [SLUG] RPM vs source installs, can it cause probs ?
On 12/28/06, Howard Lowndes [EMAIL PROTECTED] wrote: Penedo wrote: On 28/12/06, Howard Lowndes [EMAIL PROTECTED] wrote: Voytek Eymont wrote: if I decide to do a source install for some of the applications, am I likely to cause myself grief later on? It's possible that the source installs will need later version libraries than those that are part of the RPM based install; this will probably cause grief. Haven't tried this myself (being a Debian person) but how feasible would it be for Voytek to try to create RPM's for the versions he's interested in? I don't think creating an RPM is going to achieve anything as he'd still need to identify the dependencies and handle them correctly. He needs to identify the dependencies in order to properly compile the product anyway. If he creates an RPM and lists them properly in the RPM, the RPM system will protect him from breaking his system inadvertently while doing future upgrades. That, to me, sounds like a lot is being achieved -- There is nothing more worthy of contempt than a man who quotes himself - Zhasper, 2004 -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Re: [SLUG] Brain Freeze - ADSL
On 12/12/06, Oliver Hookins [EMAIL PROTECTED] wrote: Not quite right, you still have layer 2 frames which are disassembled and reassembled. However your device is operating as a simple ethernet (or ATM if your ISP supports it) bridge rather than also encapsulating the traffic in PPP which is the norm, hence less overheads. IIRC (and I'm sure someone will correct me if I don't), the famous 1492-byte MTU on DSL connections is caused by the 8 bytes of PPPoE headers taking up part of the 1500-byte ethernet frame. Switching to L2 removes that overhead, which has a few benefits: avoids mysterious MTU issues, means that 1500-byte packets on the ethernet segment don't have to be re-packaged as 1492-byte packets to go over the DSL segment (I think this is what O was talking about), etc. /me sits back and awaits flameage -- There is nothing more worthy of contempt than a man who quotes himself - Zhasper, 2004 -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Re: [SLUG] ADSL without paying for a phone line?
Some ISPs (I'm thinking of Exetel here, but I know others do the same) let you bundle the line rental with the DSL and give you a discount, and then let you use VoIP to reduce the cost of calls. Wouldn't work well for me - I don't remember the last time I made a landline call On 12/12/06, Howard Lowndes [EMAIL PROTECTED] wrote: Have you looked at the possibility of using VoIP on your ADSL connection to mitigate your mobile call charges, thus justifying the cost of you line rental. Sonia Hamilton wrote: (slightly OT...) Is there a way of getting ADSL at home without paying for a landline? I use my mobile for everything, and don't use the landline but am paying for it to run ADSL on. I know there's things like wireless from http://www.unwired.com.au/, but to get decent downloads the costs would work out the same. -- Howard. LANNet Computing Associates - Your Linux people http://lannetlinux.com When you want a computer system that works, just choose Linux; When you want a computer system that works, just, choose Microsoft. -- Flatter government, not fatter government; abolish the Australian states. -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html -- There is nothing more worthy of contempt than a man who quotes himself - Zhasper, 2004 -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Re: [SLUG] My toaster has a proprietry OS, its got to be Linux...but how can I hack into it?
On 12/7/06, hav [EMAIL PROTECTED] wrote: I am annoyed at Netgear, tomorrow I have to return the SC101 storage central (which is running of my 646) because a) it only works with XP SP2 and 2K SP4I need to run Mandriva, Win98 OSX too. My cousin bought it - can anyone tell me a better way to share files within a home network? You could of course set up a *nix machine with a samba share.. or, since you seem to like the appliance router, try the Linksys NSLU/2 (http://www.linksys.com/servlet/Satellite?c=L_Product_C2childpagename=US%2FLayoutcid=1119460471050pagename=Linksys%2FCommon%2FVisitorWrapper) It runs linux and is eminently hackable - http://www.nslu2-linux.org/ has info about three different distros (including plain Debian - Etch is planned to have an installer specifically targetted to this device) that you can choose from. -- There is nothing more worthy of contempt than a man who quotes himself - Zhasper, 2004 -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Modems vs Routers (Re: Why DHCP ? (WAS: Re: [SLUG] My father wants an inexpensive computer))
On 12/6/06, Dean Hamstead [EMAIL PROTECTED] wrote: What about Linux boxes configured as routers because one does not wish to pay anymore for a black-box modem/router apart from just ADSL modem ? One still has to configure DHCP. i would suggest that an adsl router versus adsl modem do not differ significantly. infact the dlink 'adsl modem' that i have seen in recent optus adsl setups is a 2 port adsl router, 2 ethernet ports with out internally hardwired to a usb ethernet adapter finding an adsl modem is nearly as hard as finding an ip router without wireless =\ There's a big difference between a modem and a router, which I'm not going to bother defining here (check your CCNA reference material, or wikipedia, for details). There is, admittedly, a lot of confusion in slang/common/gardern/non-techinical usage of the two terms though, and as you've said, it's not helped by the fact that almost all *DSL devices perform both functions. I saw a DSL modem in Tricky Dicky's on the weekend and started gushing loudly about how cute it was, which for some reason got me weird looks from staff.. -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Re: [SLUG] SNAT and Masquerading
http://lists.debian.org/debian-firewall/2002/02/msg00020.html MASQUERADE is intended for use with dynamic addresses. The other thing that it does differently is that if the link goes down, entries in the nat table will be dropped with MASQUERADE. If you're using SNAT, the entries stay in the table in case the link comes back up momentarily. This makes sense for MASQUERADE, because when the link comes back up, the address will (could) be different anyway, so the connections won't ever be resumed. On 12/1/06, Peter Hardy [EMAIL PROTECTED] wrote: John Clarke wrote: I should have also said that if the dual-homed host has a static address on eth1 then you should use SNAT instead of MASQUERADE: iptables -t nat -A POSTROUTING -s 192.168.0.0/24 -o eth1 -j SNAT \ --to-source 10.0.0.1 Something that I've always wondered about, but never taken the time to investigate: why is SNAT preferable to MASQUERADE? -- Pete -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html -- There is nothing more worthy of contempt than a man who quotes himself - Zhasper, 2004 -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Re: [SLUG] Simple and reliable home folder encryption for Ubuntu 6.10
I've heard lots of good things about http://www.truecrypt.org/ - never used it myself though. It sounds like it's probably overkill for what you're looking for... On 11/28/06, Ben [EMAIL PROTECTED] wrote: I need to encrypt the home folder on my laptop and desktop. I realise there are vulnerabilities associated with not encrypting the whole disk, but I'm willing to cope with a lower level of protection as I'm more concerned about accidental loss or casual theft, rather than a targetted attack. I've spent some time looking up encryption and there doesn't seem to be a shortage of choice. I'm looking for a recommendation on a method that favours simplicity and reliability (performance is not a major concern). Ben -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html -- There is nothing more worthy of contempt than a man who quotes himself - Zhasper, 2004 -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Re: [SLUG] NAT stuff
On 11/30/06, O Plameras [EMAIL PROTECTED] wrote: John Clarke wrote: On Thu, Nov 30, 2006 at 04:08:48 +1100, Michael Fox wrote: Might be a silly question, but why NAT the 192 - 10 network, as its It's not a silly question. No, it's not a silly question. It's definitely not a silly questions, but yours is an... let's call it an overly simplistic answer. In this configuration, you have Private Network - Private Network. And so, it's silly to use NATting in this situation. There are plenty of times when NATting isn't silly in this situation. As just one example - imagine that the 10.x.x.x network already knows a 192.168.x.x network - ie, the range of that network overlaps with the range of your own 192.168.x.x network. NATting would allow your 192.168.x.x network to connect to the 10.x.x.x network without needing to have any of the networks renumbered. yes, NATting in this case is not ideal, and often NATting introduces unwanted complications. That doesn't mean it's always silly though. -- There is nothing more worthy of contempt than a man who quotes himself - Zhasper, 2004 -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Re: [SLUG] tailing, following and filtering
On 11/23/06, Matthew Hannigan [EMAIL PROTECTED] wrote: On Thu, Nov 23, 2006 at 08:23:37AM +1100, Penedo wrote: On 23/11/06, Howard Lowndes [EMAIL PROTECTED] wrote: I want to tail -f the syslog file but I only want to see what I want to see and I don't want to see what I don't what to see. The idea is to tail follow through a filter. Is that possible. What's wrong with tail -f syslog | grep ...? Buffering For the benefit of those of us without your vast intellect and huge store of knowledge, would you mind expanding on this? -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Re: [SLUG] tailing, following and filtering
On 11/23/06, Matthew Hannigan [EMAIL PROTECTED] wrote: On Thu, Nov 23, 2006 at 01:30:50PM +1100, Penedo wrote: On 23/11/06, Matthew Hannigan [EMAIL PROTECTED] wrote: On Thu, Nov 23, 2006 at 08:23:37AM +1100, Penedo wrote: On 23/11/06, Howard Lowndes [EMAIL PROTECTED] wrote: I want to tail -f the syslog file but I only want to see what I want to see and I don't want to see what I don't what to see. The idea is to tail follow through a filter. Is that possible. What's wrong with tail -f syslog | grep ...? Buffering Can you elaborate? It works for me (I mean - I get the output through grep as soon as tail wakes up and reads the line). Yeah, I was a little terse/inaccurate. One grep is fine, two greps ain't so good. (tail -f blah | grep wanted | grep -v notwanted) Could you expand on what makes this not so good? -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Re: [SLUG] Novell and Microsoft
On 11/7/06, James Purser [EMAIL PROTECTED] wrote: On Tue, 2006-11-07 at 10:39 +1100, Robert Thorsby wrote: I was always under the impression that mathematics cannot be patented. If the algorithm is mathematics then the patent is invalid (even if it has been granted and has patent numbers etc etc). Therefore, clause 7 of the GPL is not infringed. In other words, Distribute and be Damned! Robert Thorsby As I understand it, the patents are on methods rather than specific algorithms. As such you get such gems as One click shopping and so on. I thought the RSA patent and the GIF patent were both for specific algorithms? cf http://www.cyberlaw.com/rsa.html which outlines the ways in which an algorithm can be patented... -- There is nothing more worthy of contempt than a man who quotes himself - Zhasper, 2004 -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Re: [SLUG] external players in Firefox 2.0
Open the prefences dialog, go to Content click Manage at the bottom of the dialog. On 11/2/06, Ashley [EMAIL PROTECTED] wrote: Hi, In my earlier version of firefox I was able to go to tools and select the bottom link that let me tell the browser what external program it should use to play certain files. This link is no longer there and manage file types only allows changes to a few types it does not allow the adding of them. My problem is that I want to stream an mms radio stream (which works with vlc) but the browser only gives me the option to use totem (which doesn't work) or cancel. How do I change this? Ashley -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html -- There is nothing more worthy of contempt than a man who quotes himself - Zhasper, 2004 -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Re: [SLUG] external players in Firefox 2.0
Possibly a man who replies to himself is more worthy of contempt, I'm not sure.. In short, after more discussion with Ashley, I've realised that that dialog doesn't help. As Ashley said, it lets you change existing mappings but not add new ones; and the dialog Firefox presents merely tells you what app it's about to use, it doesn't allow you to choose anything. I'm stuck, anyone else got ideas? On 11/2/06, Zhasper [EMAIL PROTECTED] wrote: Open the prefences dialog, go to Content click Manage at the bottom of the dialog. On 11/2/06, Ashley [EMAIL PROTECTED] wrote: Hi, In my earlier version of firefox I was able to go to tools and select the bottom link that let me tell the browser what external program it should use to play certain files. This link is no longer there and manage file types only allows changes to a few types it does not allow the adding of them. My problem is that I want to stream an mms radio stream (which works with vlc) but the browser only gives me the option to use totem (which doesn't work) or cancel. How do I change this? Ashley -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html -- There is nothing more worthy of contempt than a man who quotes himself - Zhasper, 2004 -- There is nothing more worthy of contempt than a man who quotes himself - Zhasper, 2004 -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Re: [SLUG] Network Card Woes
On 10/24/06, Phill O'Flynn [EMAIL PROTECTED] wrote: I have installed an exttra NIC on my fedora server so I can apply some QOS.On the fedora machine as far as I can tell each nic (eth0 eth1) has their own ip address (10.1.1.30 10.1.1.31) and are pointing to different devices ( comparing mac addresses).Howevver it appears that all other devices on the network seem to get confused as the ip addresses from remote devices seem to point to the one network cardWhat To Do!!!Your machine is no doubt quite confused, because it has two routes into it's local network: it won't know which interface it should be forwarding packets out of. What's probably happening here is that the ARP responses saying I'm 10.1.1.31 are leaving out the 10.1.1.30 card - in fact, everything is probably leaving via that card, regardless of its address. Run tcpdump to confirm this..You may be able to do something fancy with iptables rules and/or iproute2 and policy routing to make this work, but I think you'd be better off taking out the second card and making the second address just an alias on the first card. You mentioned you're trying to achieve some kind of QOS - could you tell us more about the original problem that you're trying to solve? RegardsPhill O'Flynn --SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html-- There is nothing more worthy of contempt than a man who quotes himself - Zhasper, 2004 -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Re: [SLUG] d/l illicit files: wget, curl, what else ?
On 9/29/06, Voytek Eymont [EMAIL PROTECTED] wrote: On Fri, September 29, 2006 11:02 pm, Erik de Castro Lopo wrote: You mean like up-to-date security patches? :-)I thought they're doing it till end of this year for 7.3...? Eeep! You're close, only off by three years:http://www.auscert.org.au/render.html?it=3689 Red Hat Linux 7.1, 7.2, 7.3, and 8.0 distributions will reach theirend-of-life for errata maintenance on the 31st December 2003. This meansthat from 1st January 2004 we will not be producing new security, bugfix, or enhancement updates for these products. Red Hat Linux 9 reaches end of life on April 30, 2004.-- There is nothing more worthy of contempt than a man who quotes himself - Zhasper, 2004 -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Re: [SLUG] d/l illicit files: wget, curl, what else ?
On 9/28/06, Voytek Eymont [EMAIL PROTECTED] wrote: On Wed, September 27, 2006 9:15 pm, Erik de Castro Lopo wrote: apart from wget and curl, what else can be used to download illicit files to a web server ? Python, Perl, Ruby, C, Haskell, Ocaml. In fact any programming language. Also programs like lynx.Eric,I guess I meant 'single-purpose utilities that can be easily expoited likeso' :'some_app file_url'through a web server vulnerability to easily deposit exploits I'm guessing that if I do NOT have wget/curl/lynx/links available, nexttimea cms has such an expoitable hole, I'll reduce my exposure, no ??I would think that depended entirely on the exploitable hole; even if you get rid of those utilities, there will be ways within perl/php/language-of-choice to download things; if the exploitable hole makes those available, you're no better off for having removed those utilities. if I remove or rename wget/curl/lynx/links from my server, apart fromocassional inconvience to me, that won't cause me issues ? I think it would cause more inconvenience than you realise. I'm not sure what Apt or up2date use, but I know that utilities such as CPAN will try to use wget/curl/links/lynx in order to download updates; you'll probably find that a lot of other systems that have the ability to look for updates do as well. Essentially, I think you're making the same mistake here that Bruce Schneier writes about airline security people making all the time: you're reacting specifically to one attack vector that you've seen in the past, which means that that vector won't be successful again. You're not doing anything to prevent different vectors from being detected or prevented though. I'd suggest that a more effective strategy might be to talk to your users; tell them what you've found, why it's unacceptable, and what action you'll be taking if you discover anything similar in future. Also make it clear to them how they can check things with you before they install, and be proactive in helping them find solutions that don't compromise your security - for instance, sticking phpmyadmin behind a .htaccess file. --Voytek--SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html-- There is nothing more worthy of contempt than a man who quotes himself - Zhasper, 2004 -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Re: [SLUG] d/l illicit files: wget, curl, what else ?
On 9/28/06, Matthew Hannigan [EMAIL PROTECTED] wrote: I wonder if the best bang for buck is perhaps just have a iptablesrule to prevent outgoing connections for the user running apache.Or will this potentially kill those new fancy schmancy ajax/web2 apps. It won't kill anything ajaxified, as those things still rely on the browser opening connections to the server.-- There is nothing more worthy of contempt than a man who quotes himself - Zhasper, 2004 -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Re: [SLUG] linux assignment
http://tinyurl.com/ljkta has all your answersOn 8/16/06, David Herd [EMAIL PROTECTED] wrote:HiI'm a computing student who is having troubles with part of my assignment. Can I have any help out there in Linux land.Question 1. (16 marks)Write UNIX commands toa) show the lines of the online manual page for sort that contain the wordorder.b) show how many characters the date command outputs. c) copy all C source files (the filenames end in .c) from the presentworking directory into a subdirectory called Cfiles.d) list all files in the present working directory that have filenames that match: starts with either t or T the extension is a single digite) compress all the files in the directory Docs/ and store them in an archive called Docs.tarf) sort the file /etc/passwd in reverse alphabetical order by username.g) append all the lines of m1 that contain name to m2h) Mail the present working directory contents to the current user with subject Directory.Question 2. (4 marks)m1, m2 and m3 are text files.What do the follow commands do under bash?Answer in English.a) cat 1 m1b) cat 0 m1 | sort 1 m2 2 m3 Question 3. (4 marks)m1, m2 and m3 are text files.What do the following commands do under tcsh?Answer in English.a) ls -l | grep admin |tee m1 | lpr -Pp1b) zcat m.z | head -20 thanksDavid--SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html-- There is nothing more worthy of contempt than a man who quotes himself - Zhasper, 2004 -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Re: [SLUG] Cron and shutdown command
Last time I checked, cron.daily is called with a line similar to this:25 6 * * * root test -x /usr/sbin/anacron || run-parts --report /etc/cron.dailyIn other words, it gets run once per day. cron.daily is a great place to put things that should happen once each day, but you don't care particularly when they happen. It's a terrible place to put things that should happen just once, but at a particular time of day. /etc/crontab is one place you could put your job; another would be the personal crontab for the root user (or even better: give a less-privilived user access to /sbin/shutdown via passwordless sudo, and put the command in that user's crontab). I'd consider using at(1) rather than cron(8) though:[EMAIL PROTECTED]:~$ whatis atat (1) - queue, examine or delete jobs for later executionOn 8/14/06, Dean Hamstead [EMAIL PROTECTED] wrote: cron.daily is run from crontab, either will be okDeanbill wrote: I have mythdora ( Redhat FC4 based) running more or less - at least t the degree that I can record TV programs. I want to auto-shutdown the PC after recording has finished. Googling gives plenty of links/info, which often is contradictory. Basically, I believe that I need to put an entry such as 00 20 14 08mon root /sbin/shutdown -h now (to shutdown the PC at 10PM this evening - 20/08/06) in EITHER:- /etc/crontab or /etc/cron.daily Which is correct please? Thanks Bill--SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html-- There is nothing more worthy of contempt than a man who quotes himself - Zhasper, 2004 -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Re: [SLUG] Backup Internet links
On 3/9/06, O Plameras [EMAIL PROTECTED] wrote: This is solved by running BGP routing in your linux router. BGP will handle this gracefully and automatically. There is GPL BGP in Linux (www.zebra.org) or (www.quagga.net). There is one requirement. Your Company must be an Autonomous System. This has to be the most expensive and complex simple solution I've seen in a long time. Some requirements on howto become Autonomous System. 1. You must owned at least some C class public IP number. If you have none apply and get some from APNIC. Last time I checked, APNIC don't issue anything smaller than about a /22, and they demand very, good justification for why you need so many IPs and can't use NAT, name-based vhosting, etc. You're not going to get this for anything less than a medium--size ISP or hosting business - certainly not for a SOHO connection 2. Apply for AS Number from APNIC. Last time I went through this process, it took several months for approval, and required joining APNIC first. IIRC, that was in the vicinity of US$1000 - again, not exactly suitable for a SOHO Again, you need to show good cause why you need your own AS - having your own portable /24 or bigger, and having that netblock multihomed, will be sufficient reason though. 3. Talk to your ISPs for set up. (Your ISP must also be AS). Also, you'll have to get a router with enough RAM to hold the global BGP table, or have an arrangment with both your ISPs to have them only forward you a section of the table. Oh yes, you'll need to discuss this with both your ISPs in advance as well - again, they will probably only even think about doing this kind of setup for you if you're a large customer - it's annoyingly complex to set up, and very non-standard, so a high maintenance cost as well. Lets not talk about the overhead of keeping the tables in sync on a small connection either... Lastly - the global BGP table is already polluted enough because Telstra don't know how to aggregate their blocks. If every man and his dog started getting their own AS just to try to have a few less outages on their ADSL connections... dammit, it's 8:34 already and my lift is here, have to run :( -- There is nothing more worthy of contempt than a man who quotes himself - Zhasper, 2005 -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Re: [SLUG] hard links over the net
rsync (http://www.samba.org/rsync/) should do what you want (and is probably already installed, and tunnels over an ssh connection for extra security, and has other features that probably make it a perfect match for your needs as well :) On 3/9/06, Julio Cesar Ody [EMAIL PROTECTED] wrote: Hi all, I have a backup server in my LAN that keeps some rsnapshot (www.rsnapshot.org) backups. For those of you who don't know the tool, rsnapshot works by taking incremental backups, hard linking the files that don't change from one backup to the next (thus, keeping the consecutive backups smaller than the first big one.) I want to send these backups to a remote server every day or so. I tried scp'ing it, but scp resolves the hard links, causing me headaches and too much space to be used in my remote server. I then tried SSHFS (sshfs.sourceforge.net), and the same thing happened. Same applies to SHFS. I know NFS would keep the hard links instead of resolving them (cp -d), but I'm not up to put NFS over the internet since that can be a bad idea from the security standpoint. So my question is: is there a way for me to make that transfer and keep the hard links? Thanks. -- Julio C. Ody http://rootshell.be/~julioody -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html -- There is nothing more worthy of contempt than a man who quotes himself - Zhasper, 2005 -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Re: [SLUG] Sweet
quote who=[EMAIL PROTECTED] http://news.com.au/common/story_page/0,4057,6788724%255E15306,00.html and since the original poster didn't bother to indicate what this was about.. Democrats target Microsoft Simon Hayes July 22, 2003 THE Australian Democrats are trying to embarrass governments into supporting legislation mandating open source software, by asking questions in parliament about how much departments spend on Microsoft products. (continues) -- SLUG - Sydney Linux User's Group - http://slug.org.au/ More Info: http://lists.slug.org.au/listinfo/slug
Re: [SLUG] Heh...
even better.. http://uptime.netcraft.com/up/graph/?host=www.sco.com The site www.sco.com is running Apache/1.3.14 (Unix) mod_ssl/2.7.1 OpenSSL/0.9.6 PHP/4.3.2-RC on Linux. quote who=CaT 'The organisers of the LinuxWorld Conference and Expo, to be held in San Francisco in August, apparently do not have much faith in the operating system.' http://www.theage.com.au/articles/2003/06/20/1055828470089.html -- SLUG - Sydney Linux User's Group - http://slug.org.au/ More Info: http://lists.slug.org.au/listinfo/slug
Re: [SLUG] The burning of audio CDs.
quote who=Bill Bennett I'd like to try burning audio (and data) CDs under Linux, but I'm a bit chary about the applications. There are several. The few people who've volunteered opinions suggest cdparanoia, although it looks a bit involved. Has anybody had any experience with cdparanoia? Yep, it's great software. unfortunately, it doesn't burn CDs - it rips audio tracks off and converts them to a .wav For my money, Xcdroast and gcombust seem to perform equally well... but it has been quite a while since I did any burning, so I may be wrong Both programs merely act as front ends to the admirable (but hideously complex) cdrecord and mkisofs - if you're brave, you could just use those tools directly. Regards, Bill Bennett. -- SLUG - Sydney Linux User's Group - http://slug.org.au/ More Info: http://lists.slug.org.au/listinfo/slug -- SLUG - Sydney Linux User's Group - http://slug.org.au/ More Info: http://lists.slug.org.au/listinfo/slug
Re: [SLUG] Squid question
quote who=[EMAIL PROTECTED] can you get squid to limit people's download per day? What I would like to do is allow each person from a group to download 10meg per day from the internet. Is this possible? I thought I saw someting in the config file a while ago. Or I guess I was drunk at the time and miss read the config file. :) Thanks Kevin Check out sarg http://web.onda.com.br/orso/ - it doesn't quite do what you want, but it has a few scripts that could, potentially (I haven't tried them and can't verify that they work), if you set up authentication on the proxy, do something similar to what you want Basically, as sarg is compiling it's reports, you can specify that the names of anyone with more than X mbytes in the period you're looking at (passable to sarg as command line arguments, so you can specify, eg, last 24 hours, since 6am today, etc) is put into a file... You can then specify in squid.conf that usernames in this file are not allowed access to the cache... All that's required then is an hourly cronjob to update the list, or something similar.. Again, I don't know how well this works, and it obviously has loopholes, but it's the closest thing i know of to what you are after -- SLUG - Sydney Linux User's Group - http://slug.org.au/ More Info: http://lists.slug.org.au/listinfo/slug
fwd: Re: [SLUG] apache and apache-ssl
- Forwarded message from James Polley [EMAIL PROTECTED] - Date: Wed, 4 Sep 2002 09:42:12 +1000 From: James Polley [EMAIL PROTECTED] To: David Fitch [EMAIL PROTECTED] Subject: Re: [SLUG] apache and apache-ssl User-Agent: Mutt/1.4i X-Operating-System: Linux 2.4.19-k7 i686 X-Uptime: 09:34:03 up 2 days, 8:01, 3 users, load average: 0.18, 0.17, 0.13 quote who=David Fitch On Mon, 2002-09-02 at 23:22, Jeff Waugh wrote: quote who=David Fitch what's the deal with apache and apache-ssl in debian woody? are you supposed to install and run both versions of apache? seems a bit odd to mewhy not one listening on both ports and if it's port 443 do the ssl stuff?? apache-ssl is the one with mod_ssl compiled in. I usually use apache and libapache-mod-ssl rather than apache-ssl. this sounds like the go. I almost had is working (thanks Jan) but prefer this method so removed apache-ssl and installed libapache-mod-ssl but now how do I get it to listen on two ports? (80 and 443) Do the debian-correct thing, and read /usr/share/doc/libapache-mod-ssl you have to read the README.Debian.gz, which tells you what you need to do to get ssl working - there's inserting a few lines into httpd.conf involved, as well as copying a file into /etc/apache, and... (PS. why is there no docs on https on www.apache.org?) http://httpd.apache.org/docs-2.0/mod/mod_ssl.html Dave. -- SLUG - Sydney Linux User's Group - http://slug.org.au/ More Info: http://lists.slug.org.au/listinfo/slug - End forwarded message - -- SLUG - Sydney Linux User's Group - http://slug.org.au/ More Info: http://lists.slug.org.au/listinfo/slug
Re: [SLUG] aarnet mirror
Interesting I'm on TPG in sydney also, and I had problems getting to mirror.aarnet a few days ago also.. didn't think anything of it at the time, just used planetmirror instead.. however, when I read this, something went *twig* inside my head.. I'm off to the doctors to get that looked at now, but on my way out, I did a traceroute and noticed this: Hostname 1. syd-ts5-2600.tpgi.com.au 2. syd-lan-gw.tpgi.com.au 3. syd-7206.tpgi.com.au 4. sl-gw26-stk-2-3.sprintlink.net 5. sl-bb20-stk-8-0.sprintlink.net 6. sl-bb22-stk-14-0.sprintlink.net 7. 144.232.18.158 8. 157.at-5-1-0.XR1.SAC1.ALTER.NET 9. 0.so-0-1-0.XL1.SAC1.ALTER.NET 10. 0.so-3-0-0.TL1.SAC1.ALTER.NET 11. 0.so-2-0-0.TL1.LAX9.ALTER.NET 12. 0.so-6-0-0.CL1.LAX4.ALTER.NET 13. 193.ATM6-0.GW8.LAX4.ALTER.NET 14. optus-gw.customer.ALTER.NET 15. pos10-1-0.ig2.optus.net.au 16. gi5-0-0.mi2.optus.net.au 17. VICRNO-INT.mi2.optus.net.au 18. vic-act.atm.net.aarnet.edu.au 19. ??? My guess would be that aarnet's seeing the traffic coming in as being international traffic and hence dropping it - it's definitely nothing to do with TPG Jason, who runs both mirror.aarnet and planetmirror, and who I've cc'd this email to, can probably provide more info.. quote who=Jonathan Kelly Hi, I guess it could be blocked, but why would my ISP (tpg) do that??? My firewall has no site specific stuff, and I can ftp from other sites, so it's not a generic ftp/firewall issue ... but I can't even ping aarnet? -- SLUG - Sydney Linux User's Group - http://slug.org.au/ More Info: http://lists.slug.org.au/listinfo/slug
Re: [SLUG] VPN Win32--Linux?
www.freeswan.org :) Also, there's a heap of links in their documentation to other sites... Extremely useful is this site: http://vpn.ebootis.de/ I don't think I've read the docs there, but they should be good.. what really rocks tho is the tool provided there that reads a config file which is bassically the same as freeswan's config for the connection, and sets up win2k/winXP for you... I found this particularly useful in a situation where the clients were road warriors on winXP laptops.. rather than having to go into 16 control panels and change 42 settings each time their IP address changed (ie, each time they dialed up), the users were provided with a single icon on their desktop - just connect to the net, doublce-click on the icon, and voila, she is operational.. On Wed, 5 Jun 2002, Jessica Mayo wrote: Any suggestions/pointers to docs on setting up VPNs between Linux and windows? I haven't found googlejuice yet that has shown me anything I want, so I'm appealing to the wider knowledge of SLUG... I would prefer the windows end of the link to be as easily configured as possible, as our support people may have to do it. :) -- Jessica Mayo. (with work hat) (Everything with a Grin :) -- SLUG - Sydney Linux User's Group - http://slug.org.au/ More Info: http://lists.slug.org.au/listinfo/slug
Re: [SLUG] I am having TELNET problem in RedHat Linux 7.2
On Mon, 27 May 2002, Matthew Hannigan wrote: Zhasper wrote: Quite possibly, while installing Redhat, you chose to set up a firewall.. Try running firewall-config and turning all the firewalling off... Eek! As a trouble-shooting measure only, of course! If turning it off lets telnet work, you can go back and put the firewalling on.. but at least now you know it's definitely the firewall, and you can work on it from there.. I wouldn't normally recoommend that, but considering it's just two machines connected by a crossover, no live interfaces lying around, I can't see the security risk being too high.. -- SLUG - Sydney Linux User's Group - http://slug.org.au/ More Info: http://lists.slug.org.au/listinfo/slug
Re: [SLUG] I am having TELNET problem in RedHat Linux 7.2
Quite possibly, while installing Redhat, you chose to set up a firewall.. Try running firewall-config and turning all the firewalling off... On Mon, 27 May 2002, David wrote: have you checked /etc/hosts.allow? i'm not sure what RH default is. On Mon, 27 May 2002, Upendra wrote: Dear friends, I have two DELL machines both running RedHat Linux 7.2 connected to each other by a crossover cable. I can ping one from the other other without any problem. But I can not telnet to the telnet server from either one. I modified the file in /etc/xinet.d/telnet where disalbe=no and I restarted /etc/rc.d/init.d/xinetd ..but I am still not able to telnet. From the machine itself, I can telnet to itself, but from other machine, it says connection refused. any help would be appreciated. Thanks Upendra -- SLUG - Sydney Linux User's Group - http://slug.org.au/ More Info: http://lists.slug.org.au/listinfo/slug -- SLUG - Sydney Linux User's Group - http://slug.org.au/ More Info: http://lists.slug.org.au/listinfo/slug
Re: [SLUG] ARIN (64.12.24.44)
I don't know what whois tool/server you're seeing, but it's only telling half teh story.. [jpolley@queen jpolley]$ whois -h whois.geektools.com 64.12.24.44 [whois.geektools.com] Query: 64.12.24.44 Registry: whois.arin.net Results: America Online, Inc. (NETBLK-AOL-MTC) 10600 Infantry Ridge Road Manassas, VA 20109 US Netname: AOL-MTC Netblock: 64.12.0.0 - 64.12.255.255 Coordinator: America Online, Inc. (AOL-NOC-ARIN) [EMAIL PROTECTED] 703-265-4670 Domain System inverse mapping provided by: DNS-01.NS.AOL.COM152.163.159.232 DNS-02.NS.AOL.COM205.188.157.232 Record last updated on 16-Dec-1999. Database last updated on 19-May-2002 19:58:40 EDT. Results brought to you by the GeekTools WHOIS Proxy Server results may be copyrighted and are used with permission. Whatever you're doing is saying that that block is controlled by ARIN - but, checking with ARIN's servers reveals that they've assigned that block to AOL Use gekktools's proxy... On Tue, 21 May 2002, Nick Croft wrote: Morning, Using `etherape' on the lan, I notice a large number of probes from 64.12.0.0/16 which would appear to be the American Registry of Internet Numbers. Is this usual, or spoofing perhaps? Nick -- SLUG - Sydney Linux User's Group - http://slug.org.au/ More Info: http://lists.slug.org.au/listinfo/slug
Re: [SLUG] Debian or Redhat
On Thu, 2 May 2002, Rev Simon Rumble wrote: I've answered this question before but I signed over my copyright to one Kerry Packer, so I'll write it again... Why do I run Debian instead of RedHat? apt-get I want to install Bugzilla. The Bugzilla RPM has a large number of dependencies. Under RedHat I have to fine and download all the dependent RPMs, and any dependencies they might have. Under Debian I type apt-get install bugzilla and it just happens. Other people have mentioned this ad nausuem, so I won't rant about it. All I'm going to say is: rhn_register up2date bugzilla admittedly, I'm not more than 40% confident that bugzilla is acutally an RPM in redhats official little list that up2date can get for you... Your other points are still valid though... Why the bananas do I work for a stupid little company that insists that I use redhat everywhere? One other point that no-one seems to have made yet: Red Hat seem to believe more strongly than most in release early, release often - hence RH7.0 coming out with (what I believe were) pretty major flaws - installing a libc and a gcc that were incompatible, etc.. The main reason I don't know this for sure is that I was scared away by all the bad press I heard.. On the other hand, R7.1 was nice, and 7.2 is nicer.. Debian, on the other hand, seem to believe stronly that if you can't do it right, don't bother doing it at all - the last official release of debian was potato, and that came out while I was still at uni - almost two years ago now - which means that its very dated - but still works. Woody has been in the works since then, and has been in the we'll-get-it-out-next-month,we-promise stage for at least 6 months - but theres no chance its going to come out until they have it perfect... -- SLUG - Sydney Linux User's Group - http://slug.org.au/ More Info: http://lists.slug.org.au/listinfo/slug