[CentOS] Simple Question about Resolving Names without suffix with bind
Hi I am trying to use Bind as named. And I have successfully set up a chrooted bind. Anyway, I cannot have it resolve "www" directly. For example, when I am using nslookup, when enter www.example.com, it will resolve. But when enter www, it will not. I want to have www resolve to www.example.com, what should I do? I have already set $ORIGIN in the zone file, but it does not work. Thanks. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Simple Question about Resolving Names without suffix with bind
Yes, it works. The DNS search suffix matters. Thank you all! On 7/8/07, Steven Haigh <[EMAIL PROTECTED]> wrote: On 08/07/2007, at 1:24 PM, Gregory P. Ennis wrote: > On Sat, 2007-07-07 at 12:58 +0800, Wei Yu wrote: >> Hi >> >> I am trying to use Bind as named. And I have successfully set up a >> chrooted bind. >> >> Anyway, I cannot have it resolve "www" directly. >> >> For example, when I am using nslookup, when enter www.example.com, it >> will resolve. But when enter www, it will not. >> I want to have www resolve to www.example.com, what should I do? I >> have already set $ORIGIN in the zone file, but it does not work. >> >> Thanks. > > If you have created a zone file for example.com > in /var/named/chroot/var/named/example.zone > > All you need to do is to add the entry below to your zone file > www A ###.###.###.### > > This is what I did anyway, and it is working great!! Not quite This will only add a www record to your domain... What I think the original poster wants is to use the DNS Seach suffix functions of DHCP. This will add the prefix automatically when the host tries to search for a DNS entry... $ cat /etc/resolv.conf search example.com nameserver x.x.x.x nameserver x.x.x.x This will get you the desired results. You set it in your dhcpd.conf file as so: option domain-name "example.com"; -- Steven Haigh Email: [EMAIL PROTECTED] Web: http://www.crc.id.au Phone: (03) 9017 0597 - 0404 087 474 ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos -- Zijing 15# 1404B Tsinghua Univ. +86 -10 -51537235 Zig ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Samba and Scalix
I think Scalix community edition does not support shared folders. On 8/23/07, John Hinton <[EMAIL PROTECTED]> wrote: > > I'm hoping to integrate a shared folder(s) so that we may be able to > drag and drop files from various OSs into a shared folder on a > CentOS server which can be accessed via Scalix SWA or some other email > client. > > Maybe I'm totally off base with how Scalix stores files in public > folders... maybe everything has to be in mbox format for all folders and > this could never work. > > Anyway, I started thinking about Samba and Scalix in combination and was > wondering if anybody knew of a way to perhaps use the combination to do > what I want? I'm still very green with regards to Scalix. > > Thanks, > John Hinton > > ___ > CentOS mailing list > CentOS@centos.org > http://lists.centos.org/mailman/listinfo/centos > -- Zijing 15# 1404B Tsinghua Univ. +86 -10 -51537235 Zig ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] Bypassing firewall alternatives
Hi I am experiencing a problem of bypassing firewalls. I know that "ssh -R" can forward ports from remote server to local ports. But it requires an account of the remote server, which seems to be a security hole. I am looking for other programs which can do so, any suggestions? Thanks. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Bypassing firewall alternatives
Oops, I missed the -N option. Thanks! On 9/14/07, John R Pierce <[EMAIL PROTECTED]> wrote: > > Wei Yu wrote: > > I am experiencing a problem of bypassing firewalls. > > I know that "ssh -R" can forward ports from remote server to local > > ports. But it requires an account of the remote server, which seems to > > be a security hole. > > I am looking for other programs which can do so, any suggestions? > > > I don't know any way you could forward a port from a remote host to > anywhere without authenticating on said remote host. > > I'm not quite sure why you consider the existance of an account to be a > security hole ? you could configure an account that won't allow an > interactive login (shell set to /bin/false), and JUST do port > forwarding, using -N on the ssh command. > ___ > CentOS mailing list > CentOS@centos.org > http://lists.centos.org/mailman/listinfo/centos > -- Zijing 15# 1404B Tsinghua Univ. +86 -10 -51537235 Zig ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] Choosing VPN Server
Hi, I am facing a task of choosing vpn server. I do not know which is better. The one distributed with CentOS4.5 only supports pppd (or maybe pptp but I cannot find it). If* *I want to use PPTP or L2TP, which one should I choose? OpenVPN? Poptop? Thanks. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Choosing VPN Server
Does openvpn support IPsec well? I want the server to work cooperation with a Microsoft ISA Server inside the intranet with site-to-site vpn mode. For that reason I want the server has good compatibility with windows. On 9/19/07, Alain Spineux <[EMAIL PROTECTED]> wrote: > > OpenVPN works with windows too (client or server). > The same configuration files works on both OS. > Very easy to enable multiple VPN connection at the same time. > > > > On 9/19/07, Brian Mathis <[EMAIL PROTECTED]> wrote: > > On 9/19/07, Wei Yu <[EMAIL PROTECTED]> wrote: > > > Hi, > > > > > > I am facing a task of choosing vpn server. I do not know which is > better. > > > The one distributed with CentOS4.5 only supports pppd (or maybe pptp > but I > > > cannot find it). > > > If I want to use PPTP or L2TP, which one should I choose? OpenVPN? > Poptop? > > > > > > Thanks. > > > > > > > I suggest OpenVPN. It's modern, very secure, and had a wide range of > > options and usage scenarios. PPTP / L2TP is a pain to get working, > > and it has some security issues. > > ___ > > CentOS mailing list > > CentOS@centos.org > > http://lists.centos.org/mailman/listinfo/centos > > > > > -- > Alain Spineux > aspineux gmail com > May the sources be with you > ___ > CentOS mailing list > CentOS@centos.org > http://lists.centos.org/mailman/listinfo/centos > -- Zijing 15# 1404B Tsinghua Univ. +86 -10 -51537235 Zig ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] General question about PHP
Hello, Is that possible to disable running of PHP on certain directories? I am running a server which provides personal homepage service. However, not every user are familiar with security, some may upload some PHP scripts with bugs/holes. I do not want them to be executed on the server. I can enable the safe_mode, but I have some other PHP scripts which need safe_mode to be disabled. Any suggestions? Regards, Wei Yu ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] General question about PHP
That's great, thank you! On 9/26/07, Miskell, Craig <[EMAIL PROTECTED]> wrote: > > > > Hello, > > > > Is that possible to disable running of PHP on certain directories? > > I am running a server which provides personal homepage > > service. However, not every user are familiar with security, > > some may upload some PHP scripts with bugs/holes. I do not > > want them to be executed on the server. > > I can enable the safe_mode, but I have some other PHP scripts > > which need safe_mode to be disabled. > > Any suggestions? > Yes. In you httpd.conf, you can include: > >php_flag engine off > > > Which disables php processing for the directory /var/www/sheep/html/tmp > . You could probably just include > php_flag engine off > In an .htaccess in the directory in question, assuming you've set > AllowOverride to an appropriate value, and don't mind the slight > performance hit of doing it that way. > > We use the former method to protect areas where users are permitted to > upload files to (mediawiki in this case), stopping a user uploading > something malicious which would then execute in the context of the > webserver > > Craig Miskell > === > Attention: The information contained in this message and/or attachments > from AgResearch Limited is intended only for the persons or entities > to which it is addressed and may contain confidential and/or privileged > material. Any review, retransmission, dissemination or other use of, or > taking of any action in reliance upon, this information by persons or > entities other than the intended recipients is prohibited by AgResearch > Limited. If you have received this message in error, please notify the > sender immediately. > === > ___ > CentOS mailing list > CentOS@centos.org > http://lists.centos.org/mailman/listinfo/centos > -- Zijing 15# 1404B Tsinghua Univ. +86 -10 -51537235 Zig ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] General question about PHP - continued with mod_python
Oops, I just missed the python part. Does mod_python have similar options? Or how to stop other users to run python scripts in some directories? On 9/26/07, Miskell, Craig <[EMAIL PROTECTED]> wrote: > > > > Hello, > > > > Is that possible to disable running of PHP on certain directories? > > I am running a server which provides personal homepage > > service. However, not every user are familiar with security, > > some may upload some PHP scripts with bugs/holes. I do not > > want them to be executed on the server. > > I can enable the safe_mode, but I have some other PHP scripts > > which need safe_mode to be disabled. > > Any suggestions? > Yes. In you httpd.conf, you can include: > >php_flag engine off > > > Which disables php processing for the directory /var/www/sheep/html/tmp > . You could probably just include > php_flag engine off > In an .htaccess in the directory in question, assuming you've set > AllowOverride to an appropriate value, and don't mind the slight > performance hit of doing it that way. > > We use the former method to protect areas where users are permitted to > upload files to (mediawiki in this case), stopping a user uploading > something malicious which would then execute in the context of the > webserver > > Craig Miskell > === > Attention: The information contained in this message and/or attachments > from AgResearch Limited is intended only for the persons or entities > to which it is addressed and may contain confidential and/or privileged > material. Any review, retransmission, dissemination or other use of, or > taking of any action in reliance upon, this information by persons or > entities other than the intended recipients is prohibited by AgResearch > Limited. If you have received this message in error, please notify the > sender immediately. > === > ___ > CentOS mailing list > CentOS@centos.org > http://lists.centos.org/mailman/listinfo/centos > -- Zijing 15# 1404B Tsinghua Univ. +86 -10 -51537235 Zig ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
