Re: oops

[Joey Tsai]

Firstly, thanks to Ben for his work, the speed at which the libc6 issues were
resolved calls for high praise.

The only issue that seems to remain for me is with exim - after fetchmail grabs
my SMTP mail, exim doesn't deliver it.  Exim's logs say

Unable to get root to set uid 1000 and gid 8 for local delivery to joeytsai:
uid=8 euid=8

However, I can force exim to deliver the mail with "exim -qff".  Does anyone
know if this problem's been resolved or if there's a fix I can apply?

Thanks so much for your time,

// joey tsai

Re: Getting CPU load (from /proc/?)

[Nate Amsden]

Arcady Genkin wrote:
> 
> How would I get a real-time CPU load information?  I found
> /proc/loadavg, but that's not what I need, since it only gives average
> load values.

though i dont know how to interpet it look at /proc/stat. i found it by
running top and running lsof to see what top was using:

top   30949  root3r   REG0,10  3
/proc/uptime
top   30949  root4r   REG0,10 17
/proc/stat
top   30949  root5r   REG0,10  4
/proc/meminfo
top   30949  root6r   REG0,10  2
/proc/loadavg

looking at the source for top may help ..

nate

-- 
:::
ICQ: 75132336
http://www.aphroland.org/
http://www.linuxpowered.net/
[EMAIL PROTECTED]

Re: optimizing the hard drive? (fwd)

[Nate Amsden]

Krzys Majewski wrote:
> 
> "ObeseWhale" <[EMAIL PROTECTED]> writes:
> > okay here goes...  UDMA66 is simply a bandwidth limit on your HD. It allows
> > your hard drive to transfer at 66 megs per second instead of UDMA33, which
> > iss 33 megs per second.  While Debian supports udma33 right out of the box
> > you have to compile udma66 support into the kernel.  However, your hard
> > drive won't transfer faster than 33 megs per second very much, so the
> > performance gain from enabling isn't as big as you might expect...  You'll
> > likely see something like a 15% gain in speed by enabling udma66.
> >
> 
> Hm,  15% gain is  better than  nothing.. I  looked through  the kernel
> config but found no mention of udma66, where is it? -chris

quite possible u need a 3rd party patch see www.linux-ide.org

nate

-- 
:::
ICQ: 75132336
http://www.aphroland.org/
http://www.linuxpowered.net/
[EMAIL PROTECTED]

Re: oops

[George Bonser]

But I WAS quick to point out my error. Sorry about that but I also tried
to respond as soon as I knew I was in error. Please check the times on the
messages.



On Sun, 1 Oct 2000, Ben Collins wrote:

> > 
> > Sorry to have jumped the gun but I am "spring loaded" to blame libc at
> > this point for any weirdies I see.
> > 
> 
> which helps nothing, to say the least about making an already
> overworked libc maintainer stop what he's doing and take time to
> investigate half-investigated bug reports...
> 
> -- 
>  ---===-=-==-=---==-=--
> /  Ben Collins  --  ...on that fantastic voyage...  --  Debian GNU/Linux   \
> `  [EMAIL PROTECTED]  --  [EMAIL PROTECTED]  --  [EMAIL PROTECTED]  '
>  `---=--===-=-=-=-===-==---=--=---'
> 

Installing driver for Linksys Ether16

[Dwight Johnson]

modconf does not recognize my Linksys Ether16 as a NE2000 clone, so I need
a manual way to install the module. I am sure the Ether16 is working,
because I have been using it for the past three years already under Red Hat
and SuSE.

I am trying to complete my first Debian install.

Thanks in advance,

Dwight
--
Dwight Johnson
[EMAIL PROTECTED]

Re: Canon BJC-1000 problem

[Willy Lee]

"John" == John Hasler <[EMAIL PROTECTED]> writes:

> Willy Lee writes:
>> I installed magicfilter, set up the BJC-600 driver, scratched my
>> head for awhile, then installed a2ps and enscript, but now when I
>> send off my newly PostScriptized files to be printed, I get
>> ... silence.

> I had to edit /etc/magicfilter/bj600-filter and add this as the last
> line:

> default fpipe /usr/bin/a2ps --silent --user-option=lp -o -

> John Hasler [EMAIL PROTECTED] (John Hasler) Dancing Horse Hill
> Elmwood, WI

There was already a line there appearing to do the same thing, but
using enscript instead of a2ps.  

Now the problem is worse: after fiddling with it a bit and restarting
lpd several times, I get this error:

geldar:~# a2ps dbootstrap_settings
[dbootstrap_settings (plain): 1 page on 1 sheet]
lpr: connect: Connection refused
jobs queued, but cannot start daemon.
[Total: 1 page on 1 sheet] sent to the default printer
geldar:~# lpq
waiting for lp to become ready (offline ?)
Rank   Owner  Job  Files Total Size
1stroot   11   (standard input)  14164 bytes

I wonder if apsfilter, lprng, or CUPS would be better
choices... anyone have any experience with them?  The guy who wrote
the Printing HOWTO seems to think they are better...

=wl

-- 
Albert ``Willy'' Lee, Emacs user, game programmer
"They call me CRAZY - just because I DARE to DREAM of a RACE of 
SUPERHUMAN MONSTERS!"

Re: Installing driver for Linksys Ether16

[John L . Fjellstad]

On Sat, Sep 30, 2000 at 10:47:42PM -0700, Dwight Johnson wrote:
> a manual way to install the module. I am sure the Ether16 is working,
> because I have been using it for the past three years already under Red Hat
> and SuSE.

/sbin/insmod?

-- 
John__
email: [EMAIL PROTECTED]   Quis custodiet ipsos custodes
icq: thales @ 17755648

#  I'm subscribed to this list, no need to cc:  ##


pgpUCXftwL272.pgp
Description: PGP signature

Re: ISDN/ipppd problems

[Michael Steiner]

in /etc/isdn/ipppd.ippp0
in Section AUTHENTICATION
is a variable called "name"
the name given there has to be equal to the name given in 
/etc/ppp/pap-secrets or /etc/ppp/chap-secrets

Michael

-- 
Michael Steiner, Minorgasse 35, A-1140 Vienna, Austria 

Wolfram Kruschel wrote:
> 
> Hi!
> I'm trying to configure my ISDN-Card with Debian 2.2 . I didn't have any
> problems until I tried to dial the first time. /var/log/messages tells
> me that "ipppd:no pap/chap-secrets defined for this user" although
> pap-secrets exists. Everything else looks fine. May be somebody could
> help me to fix this. Thanks a lot, Wolf
> 
> --
> Unsubscribe?  mail -s unsubscribe [EMAIL PROTECTED] < /dev/null

Helix GNOME and Debian GNOME incompatible

[Jürgen A. Erhard]

Hi folks, hi Peter,

I just had sawfish malfunction in a strange way: I've bound M-F10 to
Popup Window Menu.  But that suddenly stopped working... and worse,
even clicking into the window icon for the popup window did nothing.

So I investigated... reinstalling a couple things.  And, this morning,
I found it: there were updated packages for the Debian version of the
"rep" lisp interpreter which sawfish is built on.  Now I had rep from
Debian and sawfish from helix (the Debian upgrade is not installable
yet).

I removed all sawfish and rep packages, and installed the helix
versions only... and everything's back to normal.

HTHS,

Bye, J

PS: Peter, could you get the name change of the Helix packages done
some time soon?  Would have avoided this...

PPS: Another thing that failed was when clicking on any sawfish item
in the GNOME CC the capplet hung (using up all CPU it got).

PPPS: More details on request...

-- 
Jürgen A. Erhard[EMAIL PROTECTED]   phone: (GERMANY) 0721 27326
  My WebHome: http://members.tripod.com/Juergen_Erhard
  Mesa - Free OpenGL API (http://www.ssec.wisc.edu/~brianp/Mesa.html)
   "No matter how cynical I get, I can't keep up."  -- Bruce Schneier


pgphGOCNzMTmA.pgp
Description: PGP signature

Re: New to Debian, boot problems

[Willy Lee]

"David" == David Wright <[EMAIL PROTECTED]> writes:

> Quoting Willy Lee ([EMAIL PROTECTED]):
[snip]
>> including the root partition, on the 2nd drive.  Now,
>> unfortunately, LILO won't boot to the slave drive.  I have to boot
>> from the boot floppy I thankfully didn't skip making during the
>> install.
>> 
>> The only other idea I have is to make an ext2 partition on hda,
>> make it bootable, copy all the files that would be in a root
>> partition over, then make lilo boot from there.  I already have
>> ext2 partitions on hda, left over from a RedHat install.  My Debian
>> install on hdb consists of /, /usr, and /home partitions.

> Only a few files have to be accessible to lilo, and I think they're
> all in /boot (as long as you install your kernel there too).

> There's no reason why /boot can't be a symlink to anywhere
> accessible on hda (<= 1023 cylinders), even if it's not an ext2
> partition (which you happen to have). What *is* important is that
> you rerun lilo if you move any of these critical files (e.g. if they
> were in a DOS partition which you defragged).

Now that I've got some time to think about this a bit (to tell the
truth, I've been avoiding thinking about it, the whole thing scares me
a bit), let me see if I'm understanding everything:

1). I move the contents of /boot to a partition on /dev/hda, e.g.,
/dev/hda5;

2). tell lilo to install itself to the mbr on hda (in lilo.conf:
'boot=/dev/hda');

3). tell lilo to boot from /dev/hda5 ('root=/dev/hda5'); should this
partition be otherwise empty?

4). tell the kernel to look for /etc and everything else on /dev/hdb1
('append="root=/dev/hdb1 ro"').

5). Once in, update /etc/fstab to mount /dev/hda5 as /boot at
startup.  Or, use symlinks.

This should work, right?  I am chicken :-), I want confirmation before I
actually try this.

thanks for the help,

=wl
-- 
Albert ``Willy'' Lee, Emacs user, game programmer
"They call me CRAZY - just because I DARE to DREAM of a RACE of 
SUPERHUMAN MONSTERS!"

Problems with samba / printing

[Sven Burgener]

Hello

Whereabouts do you think the following problem lies?

I can print on the system directly using "lpr", but when accessing 
the printer via its Samba share, there is only a file written to the 
printer spool directory (with the correct permissions and all), but
nothing is actually printed out.

I then have to do a "lpr $THATFILENAME" and the thing gets printed out; 
just as originally intended.

"lpd" is up and running.  The printer is a Canon BJC-4550.

I can't provide you with any further details just now, as I don't have 
access to that system now.

I'd be glad for any hints on things to look into.

Thanks in advance
Sven
-- 
The program required me to install Windows 95 or better ...
... so I installed Linux.

exim can not post email to my /var/spool/mail

[Ben Luo]

hello, debian-user,

My debian/woody have a big problem. Today i use
apt-get update;apt-get upgrade 
as before. But i got nightmare.

When run upgrade, it said that libpam-modules
sould be revome templately, i follow this advise,
use below,
 
apt-get remove libpam-modules
apt-get upgrade

but everything became worst. I can not upgrade
libc, it said that it can not find "date" command.
I want to reinstall libpam-modules, but failed.

So, I format my debian box and reinstall all system
from potato install files(include base,driver).

When i have reinstalled my potato debian, I use
dselect to choice woody path. Then I use

apt-get -o APT::Loop*(I forget)=on upgrade

system look ok. 

After that, I install exim and choose 2nd item
(satellitic) as before. then install fetchmail and 
use previous .fetchmailrc in root count.

Fetchmail can fetch my email from my ISP mailbox,
but my exim can not deliver these to /var/spool/mail.
It create a /var/spool/exim derectory and save all
email and some infomation in it by itself.

Then I try to use

mail benluo(my normal account)

in root account, but there is nothing in /var/spool/mail. 

Then I use
ls -l /var/spool/mail

lrwxrwxrwx  rootroot/var/spool/mail-> ../mail

Thanks for your help.

Regards,

Ben Luo
[EMAIL PROTECTED]

Re: ISDN/ipppd problems

[Wolfram Kruschel]

Thanks for the hint, he doesn't complain about a missing pap-secrets any
more, although he says 'unknown comman in ipppd.ippp0: -> name <-'. 
But know i have the next problem: i get the message that
"isdn_ppp_bind: Can't find a (free) connection to the ipppd daemon" .
How could i fix this? Thanks for the help + hints, Wolf

Michael Steiner wrote:
> 
> in /etc/isdn/ipppd.ippp0
> in Section AUTHENTICATION
> is a variable called "name"
> the name given there has to be equal to the name given in
> /etc/ppp/pap-secrets or /etc/ppp/chap-secrets
> 
> Michael
> 
> --
> Michael Steiner, Minorgasse 35, A-1140 Vienna, Austria
> 
> Wolfram Kruschel wrote:
> >
> > Hi!
> > I'm trying to configure my ISDN-Card with Debian 2.2 . I didn't have any
> > problems until I tried to dial the first time. /var/log/messages tells
> > me that "ipppd:no pap/chap-secrets defined for this user" although
> > pap-secrets exists. Everything else looks fine. May be somebody could
> > help me to fix this. Thanks a lot, Wolf
> >
> > --
> > Unsubscribe?  mail -s unsubscribe [EMAIL PROTECTED] < /dev/null
> 
> --
> Unsubscribe?  mail -s unsubscribe [EMAIL PROTECTED] < /dev/null

Re: Canon BJC-1000 problem

[John Hasler]

Willy Lee writes:
> There was already a line there appearing to do the same thing, but using
> enscript instead of a2ps.

Then you are using a newer version of magicfilter then I am.

> lpr: connect: Connection refused jobs queued, but cannot start daemon.

Looks like an unrelated problem.

> I wonder if apsfilter, lprng, or CUPS would be better

Lprng is not a replacement for magicfiler.  It replaces lpr.  I'm using it.


Could someone who knows about printers help Willy?  It isn't my area.  I
just spoke up because I have a BJC-1000.
-- 
John Hasler
[EMAIL PROTECTED]
Dancing Horse Hill
Elmwood, Wisconsin

firewall (fwd)

[debian-isp]

-- Forwarded message --
Date: Wed, 27 Sep 2000 21:28:47 -0500 (EST)
From: [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Subject: firewall

Hello All,
Has anyone found making a debian machine with firewall support useful?
What are firewalls useful for? Do they simply prevent packets from passing
through the firewall into the rest of the network? Would a firewall
necessarly have to be also configured to be a router? Any info you guys
can provide would be useful. I was thinking about making one of my debian
machies a firewall, but don't really know what I would do with it:)

Thanks,

D. Ghost

How to set Xserver resolution

[Philipp Lehman]

I noticed that xdpyinfo reports a resolution of 75x75 dpi for my
Xserver.  When I calculate the real resolution however, it is
about 90 dpi. Can I override this somehow?

The reason I'm asking is that some apps (Gimp, LyX) query the
Xserver for the resolution and adjust things like zoom factors
and fonts accordingly. TIA

-- 
Philipp Lehman <[EMAIL PROTECTED]>

Load balancing on ethernet.

[David Boisvert]

Hi folks!
 
    My question is related to load 
balancing. In other word, I have two DOCSIS cable modems + 2 network card 
and I need to balance IP packets on these. I've read the EQL howto but it seems 
to work only with PPP. 
 
May someone can help me to 
find some information about it?
 
    Thanks.
 

Re: firewall (fwd)

[mario]

[EMAIL PROTECTED] wrote:
> 
> Has anyone found making a debian machine with firewall support useful?

Yes, very much so

> What are firewalls useful for? Do they simply prevent packets from passing
> through the firewall into the rest of the network?

It depends. "Firewall" can mean different things:
It may be a packet filtering firewall which does what you think it does.
This functionality is built into the kernel (needs a recompile,
probably). The interface to change its behavior is ipchains (for the
2.2.x-kernel, 2.0.x and 2.4.x use other means), i.e. you write a shell
script that gets executed in a runlevel, which sets your config.
Another type of firewall is a proxying firewall. There is a package
called SOCKS that does this (maybe others too). Proxies work on the
application level, IIRC, and so can know things that apacket filtering
firewall can't know. They need the ability to use the proxy compiled
into client programs too, though.

> Would a firewall
> necessarly have to be also configured to be a router?

Again, it depends. A proper firewall should be a standalone machine
without user accounts, without network services running and with as
little SW as possible installed (no compilers, ...). If behind the
firewall you have a network then, yes, it can do routing, too. It can
also do IP masquerading. Note that there are much more sophisticated
setups with "demilitarized zones" around the firewall and all kinds of
stuff. What to build depends on your security requirements.

OTOH, you can have packet filtering enabled on a standalone workstation
with dial-up or cable/dsl access. No routing in this case, of course.
This way, you at least can stay out of random script-kiddie portscans
(or your cable provider's scans). It's also great to be able to control
what's allowed to go /out/, e.g., when you're configuring network stuff
and don't want your MTA to send mail to [EMAIL PROTECTED] instead to
[EMAIL PROTECTED] :o)

Note that you should never rely on firewall security alone, but have
your services configured properly, too (tcp wrappers, etc.). You don't
want your machines completely open when the firewall is compromised.

> Any info you guys
> can provide would be useful. I was thinking about making one of my debian
> machies a firewall, but don't really know what I would do with it:)

I recommend the book Linux Firewalls by Robert L. Ziegler, New Riders,
ISBN 0-7357-0900-9. He has also a webpage
http://www.linux-firewall-tools.com/ with lots of info and a nifty tool
where you answer questions and it will generate a firewall script for
you. If you're security requirements are modest, this is maybe all you
need. There are other books too, like Building OpenBSD and Linux
Firewalls (IIRC), but I don't know them.

There are also some GUI firewall tools for gnome, like firestarter and
others (see www.gnome.org), probably for KDE, too. Note, however, that
at least firestarter is AFAIK made to work with RedHat, so it needs a
bit tweaking to work with the debian way of init.

Very good reading is also Securing and Optimizing Linux,
http://www.openna.com/books/book.htm Note that it's for RedHat, but it's
easy to apply it to debian

A nice exercise is to scan/attack your machine/network from the outside
before and after the firewall is in place. If you're lazy ;o) a quick
way to get a portscan on the well known ports done is to use Shields Up!
at http://www.grc.com/ (disable your isp's proxy in your browser
settings before, otherwise not you but your isp's proxy will be
scanned!). You want it to report "stealth" for every port you don't need
available from the outside

Hope this helps (well, I'm sure)
Greetings
-- 

I did not vote for the Austrian government

Linux: The choice of a GNU generation. Visit http://www.gnu.org/

Re: Installing driver for Linksys Ether16

[Phil Brutsche]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

A long time ago, in a galaxy far, far way, someone said...

> modconf does not recognize my Linksys Ether16 as a NE2000 clone, so I need
> a manual way to install the module. I am sure the Ether16 is working,
> because I have been using it for the past three years already under Red Hat
> and SuSE.
> 
> I am trying to complete my first Debian install.

It sounds like Debian isn't auto-detecting the ethernet card.  At the
moment, that only works reliably for PCI cards - I'm guessing yours is
ISA PnP.  Do you know what IRQ and IO port the card is using?

Another solution would be to wait until after you have Debian installed to
configure the ethernet card.

- -- 
- --
Phil Brutsche   [EMAIL PROTECTED]

GPG fingerprint: 9BF9 D84C 37D0 4FA7 1F2D  7E5E FD94 D264 50DE 1CFC
GPG key id: 50DE1CFC
GPG public key: http://tux.creighton.edu/~pbrutsch/gpg-public-key.asc
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.0.1 (GNU/Linux)
Comment: For info see http://www.gnupg.org

iD8DBQE5107M/ZTSZFDeHPwRApe2AJ90J4PBjeAjCPguMXZSsC4fDXs4pQCgxf83
YHgNSNVPFAdFvuHjOxBUj/A=
=hC1N
-END PGP SIGNATURE-

ssh configure error

[Willi Dyck]

Hi all,

i get an error message when doing a ./configure with ssh.

"checking for xauth... no"
"configure: error: configuring with X but xauth not found - aborting"

what's wrong here? i have no X installed and also don't want to do it.
which file to edit for doing it right?

thanx

Netscape - libstdc++

[ObeseWhale]

It seems as if I can't install netscape 4.75 on my Potato box because the
version of libstdc++ that comes with debian is too high.  I get a dependency
error when trying to run netscape.  Has anyone had a similar problem, or
better yet, a solution?

Matt "ObeseWhale" Grinshpun

Site Director: The Darker Sector
www.3dactionplanet.com/darksector

Coming soon...
Hyperleap - An opensource Quake 3 mod from Team Corrosive

Extended descriptions of non-free/non-US packages.

[Matthew Tuck]

This message may or may not be pertinent in future given the uncertain
status of both non-free and non-US, but here goes anyway ...

When I see a package that's in non-free or non-US I often wonder exactly
why it's there.  It would be really nice if every package explained why
it was where it was.  And for this to be required by policy if such a
thing was appropriate.

In detail, I want this at the bottom of every package description in
non-free/non-US:

- if it's in non-US, explain what parts of the software use crypto,
since it's not always obvious.
- if it's in non-free for patent reasons, give the patent numbers and
the locations in which the patents are held.  If it is DFSG compliant,
explain this.  Explain which parts of the software embody the patents.
- if it's in non-free for DFSG non-compliance, explain which points of
the DFSG are violated and specifically why not.

Is this the best list?  Should I take this to policy/devel?

If there is agreement that this is a good idea where should I take it
from here?

-- 
 Matthew Tuck: Software Developer & All-Round Nice Guy
 My experience is that in general, if there's jobs programming
 in it, it's not worth programming in.
Ultra Programming Language Project: http://www.box.net.au/~matty/ultra/

Re: optimizing the hard drive? (fwd)

[Krzys Majewski]

> > Hm,  15% gain is  better than  nothing.. I  looked through  the kernel
> > config but found no mention of udma66, where is it? -chris
> 
> quite possible u need a 3rd party patch see www.linux-ide.org
> 

Hm, before I do that, how can I be sure I actually have
udma66-capable hardware? -chris

Re: Extended descriptions of non-free/non-US packages.

[J.H.M. Dassen \(Ray\)]

On Mon, Oct 02, 2000 at 01:12:17 +0930, Matthew Tuck wrote:
> In detail, I want this at the bottom of every package description in
> non-free/non-US:
> 
> - if it's in non-US, explain what parts of the software use crypto,
> since it's not always obvious.
> - if it's in non-free for patent reasons, give the patent numbers and
> the locations in which the patents are held.  If it is DFSG compliant,
> explain this.  Explain which parts of the software embody the patents.

Personally, I think this would clutter the package descriptions to little
benefit. A much more appropriate place IMO is /usr/share//copyright.

Ray
-- 
RUMOUR  Believe all you hear. Your world may  not be a better one than the one
the blocks  live in but it'll be a sight more vivid.  
- The Hipcrime Vocab by Chad C. Mulligan  

Re: firewall (fwd)

[William Jensen]

On Sun, Oct 01, 2000 at 03:50:04PM +0200, mario wrote:
> [EMAIL PROTECTED] wrote:
> > 
> > Has anyone found making a debian machine with firewall support useful?
> 
> Yes, very much so
> 
> > What are firewalls useful for? Do they simply prevent packets from passing
> > through the firewall into the rest of the network?
> 
> It depends. "Firewall" can mean different things:
> It may be a packet filtering firewall which does what you think it does.
> This functionality is built into the kernel (needs a recompile,
> probably). The interface to change its behavior is ipchains (for the
> 2.2.x-kernel, 2.0.x and 2.4.x use other means), i.e. you write a shell
> script that gets executed in a runlevel, which sets your config.
> Another type of firewall is a proxying firewall. There is a package
> called SOCKS that does this (maybe others too). Proxies work on the
> application level, IIRC, and so can know things that apacket filtering
> firewall can't know. They need the ability to use the proxy compiled
> into client programs too, though.
> 
> > Would a firewall
> > necessarly have to be also configured to be a router?
> 
> Again, it depends. A proper firewall should be a standalone machine
> without user accounts, without network services running and with as
> little SW as possible installed (no compilers, ...). If behind the
> firewall you have a network then, yes, it can do routing, too. It can
> also do IP masquerading. Note that there are much more sophisticated
> setups with "demilitarized zones" around the firewall and all kinds of
> stuff. What to build depends on your security requirements.
> 
> OTOH, you can have packet filtering enabled on a standalone workstation
> with dial-up or cable/dsl access. No routing in this case, of course.
> This way, you at least can stay out of random script-kiddie portscans
> (or your cable provider's scans). It's also great to be able to control

OH?  Why would my cable modem provider scan my box?  What would they be looking
for?

Even though I didn't ask the question, thanks for the info Mario!

Wm

> what's allowed to go /out/, e.g., when you're configuring network stuff
> and don't want your MTA to send mail to [EMAIL PROTECTED] instead to
> [EMAIL PROTECTED] :o)
> 
> Note that you should never rely on firewall security alone, but have
> your services configured properly, too (tcp wrappers, etc.). You don't
> want your machines completely open when the firewall is compromised.
> 
> > Any info you guys
> > can provide would be useful. I was thinking about making one of my debian
> > machies a firewall, but don't really know what I would do with it:)
> 
> I recommend the book Linux Firewalls by Robert L. Ziegler, New Riders,
> ISBN 0-7357-0900-9. He has also a webpage
> http://www.linux-firewall-tools.com/ with lots of info and a nifty tool
> where you answer questions and it will generate a firewall script for
> you. If you're security requirements are modest, this is maybe all you
> need. There are other books too, like Building OpenBSD and Linux
> Firewalls (IIRC), but I don't know them.
> 
> There are also some GUI firewall tools for gnome, like firestarter and
> others (see www.gnome.org), probably for KDE, too. Note, however, that
> at least firestarter is AFAIK made to work with RedHat, so it needs a
> bit tweaking to work with the debian way of init.
> 
> Very good reading is also Securing and Optimizing Linux,
> http://www.openna.com/books/book.htm Note that it's for RedHat, but it's
> easy to apply it to debian
> 
> A nice exercise is to scan/attack your machine/network from the outside
> before and after the firewall is in place. If you're lazy ;o) a quick
> way to get a portscan on the well known ports done is to use Shields Up!
> at http://www.grc.com/ (disable your isp's proxy in your browser
> settings before, otherwise not you but your isp's proxy will be
> scanned!). You want it to report "stealth" for every port you don't need
> available from the outside
> 
> Hope this helps (well, I'm sure)
> Greetings
> -- 
> 
> I did not vote for the Austrian government
> 
> Linux: The choice of a GNU generation. Visit http://www.gnu.org/
> 
> 
> -- 
> Unsubscribe?  mail -s unsubscribe [EMAIL PROTECTED] < /dev/null
> 

IPsec and IPMasq/Proxy

[Randy Edwards]

I ran into some trouble using a Debian box as an IP Masq gateway (also
running Squid) to a network which uses a VPN box employing IPsec.  The
ISP's tech support said that GNU/Linux was incapable of doing NAT properly
with IPsec and that I'd have to kill the NAT and proxy to make things
work.

I have no experience with IPsec, but this sounded strange.  Can anyone
confirm or deny this?  I can't understand why a Windows machine can plug
into the net but that GNU/Linux doing Masquerading or using Squid can't do
the same.  Could someone whack me with a clue bat?  TIA.

-- 
 Regards,| Why would anyone want to run an operating
 .   | system that is open source and is developed
 Randy   | by hundreds of hackers worldwide? Find out
 ([EMAIL PROTECTED]) | why at http://www.golgotha.net/why-linux/

Re: firewall (fwd)

[Pollywog]

On Sun, 1 Oct 2000 11:40:16 -0500
William Jensen <[EMAIL PROTECTED]> wrote:

> 
> OH?  Why would my cable modem provider scan my box?  What would they be 
> looking
> for?

My ISP scanned my box once, and I asked them about it and they told me it was 
an accident, done by a new Linux box they had just set up because they were 
considering switching to Linux.  They told me the box would be shut down until 
they found the problem, and that it would not happen again.




--
Andrew

Re: firewall (fwd)

[Mike Leone]

>> OH?  Why would my cable modem provider scan my box?  What would they be 
>> looking
>> for?
>
>My ISP scanned my box once, and I asked them about it and they told me it was 
>an accident, done by a new Linux box they had just set up because they were 
>considering switching to Linux.  They told me the box would be shut down until 
>they found the problem, and that it would not happen again.

@home, the largest cable ISP in the US, *routinely* scans their customers, 
aggressively checking that no one is breaking their service agreement by 
running a server OF ANY KIND.

--
*-^-*-^-*-^-*-^-*-^-*-^-*-^-*-^-*-^-*-^-*-^-*-^-*-^-*
Michael Leone 

PGP Fingerprint: 0AA8 DC47 CB63 AE3F C739 6BF9 9AB4 1EF6 5AA5 BCDF
PGP Key ID:  0x5AA5BCDF
--

about to install Debian - "help me through the dark".. :)

[Aviad]

Hi all

I'm about to install debian for the first time, and i just fear that i wont be
able to load up some of my cards - now, i know this is not a debian-specific
question, but i was wondering if anyone here had a clue where i could find
information on how to install Asuscom's ISDNLink 128k on linux? Cause i really
dont want to get stuck with no internet when trying to configure debian.. :-)

Thats only one of my fears, but if ill have internet i suppose i can take care
of the rest - i just couldnt find a decent documentation on how to install one
properly. 

Aviad

Re: HELP! xconfig won't give access to modules

[Cam Ellison]

Thanks for the tip (and also thanks to Brad for the more detailed
response).

That works.

There is still a problem.  Though the card and the driver are
recognised on startup, modprobe complains that it cannot find the
driver.  It does exist -- it's in /usr/src/.../drivers/net, but it does
not appear in /lib/modules/2.2.17.  For that matter, neither does
modules.dep, and modprobe complains about that as well.

I have watched the screen while making modules, and it enters and
leaves /drivers/net, reporting "nothing to do" (or words to that
effect).

Attempts to ping the only other machine on the (so far ineffective)
network get blips on the ethernet card's activity light, but nothing
received.  (The same thing happens at the other end, which is (gack...)
Win98.  As for that, I have not ruled out a faulty connection, even
though the link lights are on.

I guess that's two problems.  Does anyone have any ideas, please?

Thanks for the help

Cam


On Sat, 30 Sep 2000 10:08:44 -0700 (PDT), [EMAIL PROTECTED] wrote:

>did you enable expermintal driver support? that should make the rtl8139
>driver show up ..i use htat card in a lot of systems too.
>
>nate
>


Cam Ellison, Ph.D., R.Psych.

[EMAIL PROTECTED]  or [EMAIL PROTECTED]

>From the lovely Sunshine Coast, where it only SEEMS to rain.



 

Re: IPsec and IPMasq/Proxy

[Mark Brown]

On Sun, Oct 01, 2000 at 12:49:12PM -0400, Randy Edwards wrote:

> I ran into some trouble using a Debian box as an IP Masq gateway (also
> running Squid) to a network which uses a VPN box employing IPsec.  The
> ISP's tech support said that GNU/Linux was incapable of doing NAT properly
> with IPsec and that I'd have to kill the NAT and proxy to make things
> work.

It shouldn't pose any problems - we use exactly this setup at work
without ill-effects.

-- 
Mark Brown  mailto:[EMAIL PROTECTED]   (Trying to avoid grumpiness)
http://www.tardis.ed.ac.uk/~broonie/
EUFShttp://www.eusa.ed.ac.uk/societies/filmsoc/


pgpemZILBqev5.pgp
Description: PGP signature

Re: firewall (fwd)

[mario]

William Jensen wrote:

> OH?  Why would my cable modem provider scan my box?  What would they be 
> looking
> for?
> 
> Even though I didn't ask the question, thanks for the info Mario!

My cable provider has a "no servers" policy for their standard accounts
(if you want to run servers, you need to pay more). To enforce this,
they seem to scan their new customers. The first few weeks after I
signed up, they scanned me daily. It has stopped now, so I guess I'll be
able to open ssh on time :)
-- 
Greetings
Mario, who did not vote for the Austrian government

Linux: The choice of a GNU generation. Visit http://www.gnu.org/

Re: firewall (fwd)

[Allan M. Wind]

On 2000-10-01 16:47:26, Pollywog wrote:

> > OH?  Why would my cable modem provider scan my box?  What would
> > they be looking for?
> 
> My ISP scanned my box once, and I asked them about it and they told
> me it was an accident, done by a new Linux box they had just set up
> because they were considering switching to Linux.  They told me the
> box would be shut down until they found the problem, and that it
> would not happen again.

MediaOne (now AT&T) probes for open relays on port 25 frequently.


/Allan
-- 
Allan M. Wind   email: [EMAIL PROTECTED]
P.O. Box 2022   finger: [EMAIL PROTECTED] (GPG/PGP)
Woburn, MA 01888-0022   icq: 44214251
USA

Re: optimizing the hard drive? (fwd)

[Nate Amsden]

Krzys Majewski wrote:
> 
> > > Hm,  15% gain is  better than  nothing.. I  looked through  the kernel
> > > config but found no mention of udma66, where is it? -chris
> >
> > quite possible u need a 3rd party patch see www.linux-ide.org
> >
> 
> Hm, before I do that, how can I be sure I actually have
> udma66-capable hardware? -chris

check your MB manual ..and the hdd specs on the www.

nate

-- 
:::
ICQ: 75132336
http://www.aphroland.org/
http://www.linuxpowered.net/
[EMAIL PROTECTED]

Re: firewall (fwd)

[George Bonser]

> My cable provider has a "no servers" policy for their standard accounts
> (if you want to run servers, you need to pay more). To enforce this,
> they seem to scan their new customers. The first few weeks after I
> signed up, they scanned me daily. It has stopped now, so I guess I'll be
> able to open ssh on time :)

Well, if you can tell where the scans are comming from, you can just block
those addresses and still open some services. Just block off your ISP's
scanning addresses or network.

gpm locks out console keyboard

[Dale Amon]

Does anyone know why gpm would completely hang
console logins on a machine? I can still login remotely,
and if I kill gpm I can then get a console.

This would seem to be very bad behavior on gpm's part.

It first happened after a dselect update on the
woody dist back in August. I've been doing updates
on a regular basis hoping the problem would just go
away (the few hours I had to play with it were what
led me to the above remote login solution, which has
been enough to get by with this machine for awhile)
as they usually do.

Even if things have drastically changed, even if the
config file is f***ed, one would not expect a mouse 
daemon to completely block console command line logins!

Any suggestions for a bandaide until the underlying
problem goes away?

--
Use Linux: A computerDale Amon, CEO/MD
is a terrible thing  Village Networking Ltd
to waste.Belfast, Northern Ireland
--

Re: Netscape - libstdc++

[Mario Vukelic]

ObeseWhale wrote:
> 
> It seems as if I can't install netscape 4.75 on my Potato box because the
> version of libstdc++ that comes with debian is too high.  I get a dependency
> error when trying to run netscape.  Has anyone had a similar problem, or
> better yet, a solution?

Worse yet, no problem at all :)

-- 

Mario, who did not vote for the Austrian government

Linux: The choice of a GNU generation. Visit http://www.gnu.org/

Re: How to set Xserver resolution

[Wayne Topa]

Subject: How to set Xserver resolution
Date: Sun, Oct 01, 2000 at 02:53:46PM +0200

In reply to:Philipp Lehman

Quoting Philipp Lehman([EMAIL PROTECTED]):
> I noticed that xdpyinfo reports a resolution of 75x75 dpi for my
> Xserver.  When I calculate the real resolution however, it is
> about 90 dpi. Can I override this somehow?
> 
> The reason I'm asking is that some apps (Gimp, LyX) query the
> Xserver for the resolution and adjust things like zoom factors
> and fonts accordingly. TIA

startx  -bpp 16 -dpi 120

Would be one way.

HTH=Hope This Helps, YMMV=Your Mileage May Vary, HAND=Have A Nice Day

-- 
On-line, adj.:
  The idea that a human being should always be accessible to a computer.  
___

Re: How to set Xserver resolution

[William Jensen]

How do you determine what the proper dpi should be?  How do you calculate it?

Wm

On Sun, Oct 01, 2000 at 01:38:36PM -0400, Wayne Topa wrote:
> 
>   Subject: How to set Xserver resolution
>   Date: Sun, Oct 01, 2000 at 02:53:46PM +0200
> 
> In reply to:Philipp Lehman
> 
> Quoting Philipp Lehman([EMAIL PROTECTED]):
> > I noticed that xdpyinfo reports a resolution of 75x75 dpi for my
> > Xserver.  When I calculate the real resolution however, it is
> > about 90 dpi. Can I override this somehow?
> > 
> > The reason I'm asking is that some apps (Gimp, LyX) query the
> > Xserver for the resolution and adjust things like zoom factors
> > and fonts accordingly. TIA
> 
> startx  -bpp 16 -dpi 120
> 
> Would be one way.
> 
> HTH=Hope This Helps, YMMV=Your Mileage May Vary, HAND=Have A Nice Day
> 
> -- 
> On-line, adj.:
>   The idea that a human being should always be accessible to a computer.  
> ___
> 
> 
> -- 
> Unsubscribe?  mail -s unsubscribe [EMAIL PROTECTED] < /dev/null
> 

more sound difficulties

[Christopher Fonnesbeck]

Unfortunately, I have been unable to get the ALSA sound working either
in an IBM thinkpad, or on a desktop system with a standard
soundblaster.  I have installed all of the relevant alsa packages, but
the alsaconfig utility doesnt detect the card in either case (very bad
sign), nor does it accept any of my configurations for setting the sound
card manually.  A typical error is as follows:

Loading driver:
Starting sound driver:  (cs4232)
Setting the PCM volume to 100% and the Master output volume to 50%
The ALSA sound driver was not detected in this system.
Could not initialize the mixer, the card was probably
not detected correctly.

Note that sound was configured perfectly first time on both machines on
Redhat 6.2.  These are both production machines, so if I am unable to
get this problem resolved today or tomorrow, I will have to abandon
Debian.  Any help is most appreciated.

Thanks,
Chris Fonnesbeck

Masquerading

[Hans-Christian Armingeon]

Hi,
is there anybody out there who kan help me start building a masquerading and
dialin and fax and firewall box with potato?

Thanks Johnny

Re: about to install Debian - "help me through the dark".. :)

[Philipp Lehman]

On Sun, 1 Oct 2000, Aviad <[EMAIL PROTECTED]> wrote:

>I'm about to install debian for the first time, and i just fear that i wont be
>able to load up some of my cards - now, i know this is not a debian-specific
>question, but i was wondering if anyone here had a clue where i could find
>information on how to install Asuscom's ISDNLink 128k on linux? Cause i really
>dont want to get stuck with no internet when trying to configure debian.. :-)

Not familiar with this card, but I'd suggest that you check the
very comprehensive isdn4linux FAQ (the Debian isdnutils package
is isdn4linux) at http://www.isdn4linux.de/faq and query Deja for
de.alt.comm.isdn4linux. That's a group in the German Usenet
hierarchy, but English posts have always been welcome and there
should already be some archived information in English. Also try
de.alt.comm.isdn4linux for more specific questions, very decent
signal/noise ratio there. HTH

-- 
Philipp Lehman <[EMAIL PROTECTED]>

exim and libdb.so.3

[lbredeso]

When I try to load exim, it says:

exim:  error while loading share libraries:  libdb.so.3:  cannot open
shared object file:  No such file or directory

If I type "locate libdb.so.3" it says that "/gnu/lib/libdb.so.3" and
"/usr/lib/libdb.so.3" exist, but when I check myself, they actually
don't.  I upgraded libdb to libdb2.  Does anyone know how to fix this?
 Shouldn't exim want libdb2.so.2 instead of libdb.so.3?  I have the
newest version of exim.

Re: exim and libdb.so.3

[Mario Vukelic]

[EMAIL PROTECTED] wrote:

> If I type "locate libdb.so.3" it says that "/gnu/lib/libdb.so.3" and
> "/usr/lib/libdb.so.3" exist, but when I check myself, they actually
> don't.  

Don't know about exim, but if locate thinks it's there, it probably was
until recently. locate maintains a database that gets updated from cron
(or anacron?). You can update it yourself with "upatedb". So, your
libdb.so.3 disappeared probably recently, maybe you know what you've
done last?

-- 

Mario, who did not vote for the Austrian government

Linux: The choice of a GNU generation. Visit http://www.gnu.org/

Re: firewall (fwd)

[William T Wilson]

On Sun, 1 Oct 2000, Mike Leone wrote:

> @home, the largest cable ISP in the US, *routinely* scans their
> customers, aggressively checking that no one is breaking their service
> agreement by running a server OF ANY KIND.

This isn't necessarily the case.  It certainly appears to vary by
region.  They don't do it here (Denver, Colorado).  Perhaps this is
because DSL is so easily available :}

Re: IPsec and IPMasq/Proxy

[Phil Brutsche]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

A long time ago, in a galaxy far, far way, someone said...

> I ran into some trouble using a Debian box as an IP Masq gateway (also
> running Squid) to a network which uses a VPN box employing IPsec.  The
> ISP's tech support said that GNU/Linux was incapable of doing NAT properly
> with IPsec and that I'd have to kill the NAT and proxy to make things
> work.

They're almost right - Kernel 2.2 doesn't like to do NAT on IP protocols
other than TCP and UDP.  I think that may change for 2.4, but don't quote
me on that.

However, it can be done, with special tools and relatively minor and
well-tested kernel modifications.

ftp://ftp.rubyriver.com/pub/jhardin/masquerade/ip_masq_vpn.html has all
the information you need.

You do need to realise, however, that there can be one and only one IPsec
device behind the NAT firewall.  Ditto with MS' PPTP VPN stuff.

Another solution would be to put IPsec on Linux: http://www.freeswan.org.  
I've heard good reports on this implementation, but I've not yet used
it.

> I have no experience with IPsec, but this sounded strange.  Can anyone
> confirm or deny this?  I can't understand why a Windows machine can plug
> into the net but that GNU/Linux doing Masquerading or using Squid can't do
> the same.  Could someone whack me with a clue bat?  TIA.

The problem is, as I said before, kernel 2.2 doesn't like to do NAT on IP
protocols other than TCP and UDP.

When the kernel does NAT, it translates the source address of the
connection to be that of the interface, and does the reverse when packets
come back through.  However, to be able to do that, the NAT subsystem
needs to be able to track the connection.

IP protocols 47 (GRE, used by PPTP), 50 (IPsec ESP), and 51 (IPsec AH) do
not carry this connection tracking information, therefore these
connections can not be forwarded automatically, like a POP3 connection
can.  You must basically do "port forwarding" on these alternate IP
protocols to get the packets to the correct host.

As to why Windows "just works" but Linux doesn't... Windows is build to
work only on way, so it's easy to get working "just right".  Linux has
more flexibility, therfore requires more work to get the details right.

HTH.

- -- 
- --
Phil Brutsche   [EMAIL PROTECTED]

GPG fingerprint: 9BF9 D84C 37D0 4FA7 1F2D  7E5E FD94 D264 50DE 1CFC
GPG key id: 50DE1CFC
GPG public key: http://tux.creighton.edu/~pbrutsch/gpg-public-key.asc
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.0.1 (GNU/Linux)
Comment: For info see http://www.gnupg.org

iD8DBQE514Mm/ZTSZFDeHPwRAlYAAKC70vws3LkWP3dfhHjoYAYZdY7qBQCgkhzd
O697zWZ+lJBSh09LIXULUOg=
=Nw9h
-END PGP SIGNATURE-

Re: Bitchx and screen do NOT cooperate in 2.2

[[EMAIL PROTECTED]]

i get the same...never used /window create before though, never needed it
looks like it loads a new screen for me i just detach and load a new
screen. also have you tried this using bitchx's internal screen code
rather then screen itself?

use /detach to detach and scr-bx to re attach ..again i dont use this
either :)

nate


On Mon, 25 Sep 2000, Gecco wrote:

gecco >Hi,
gecco >
gecco >I've got debian 2.2 installed on TWO computers with all security updates
gecco >applied. However, when I run bitchx under screen and try to create new
gecco >window (/window create) it ends up with:
gecco >
gecco >-:- Opening new screen...
gecco >-:- The screen is now dead.
gecco >child signaled with 11
gecco >Errno is 4
gecco >-:- Cannot create new screen!
gecco >
gecco >on both machines.
gecco >I've circumvented it already by creating windows different way, but the
gecco >error *seems* to be a bug (as it didn't happen in earlier versions of
gecco >bitchx and screen).
gecco >Could you check the command in your boxes?
gecco >
gecco >Regards,
gecco >
gecco >Gecco
gecco >
gecco >PS. bitchx is Version (BitchX-1.0c16) -- Date (19990221). (dselect says-
gecco >1.0-0c16-2) and screen is 3.9.5-9.
gecco >
gecco >
gecco >
gecco >-- 
gecco >Unsubscribe?  mail -s unsubscribe [EMAIL PROTECTED] < /dev/null
gecco >

:::
http://www.aphroland.org/
http://www.linuxpowered.net/
[EMAIL PROTECTED]
11:48am up 15 days, 19:44, 1 user, load average: 0.08, 0.04, 0.00

traceroute & ping fail

[William Jensen]

I think it's my firewall blocking them going _out_ because when I take the
firewall offline both ping and traceroute work fine.  Ping works on localhost,
though traceroute does not when the firewall is up.  Unfortunetly I am too new
at both debian and firewalling to know where I went wrong.  I'm trying to set
it up so I can ping and traceroute to other boxes but other 'bad' boxes can't
do it to me.  What information can I follow this msg up with that will be
helpful?

I call the firewall from /etc/rc2.d/S90firewall_up which is just a sym link to
/etc/init.d/firewall_up.

On a side note, when I added the logging line:

$IPT -A Firewall -j LOG --log-level info --log-prefix "Firewall:"

It produces a TON of the following as fast as it can put them in the log file.
How do I read this and even more importantly how can I make it log the "rejects"
properly so that I can actually catch people trying to scan the box etc.

Oct  1 13:28:11 stimpy kernel: Firewall:IN=eth0 OUT= 
MAC=ff:ff:ff:ff:ff:ff:00:20:78:cb:ce:05:08:00 SRC=0.0.0.0 DST=255.255.255.255 
LEN=576 TOS=0x00 PREC=0x00 TTL=64 ID=2 PROTO=UDP SPT=68 DPT=67 LEN=556

If it would help I can attach the actual firewall script.

Was my system cracked? (retry 2)

[Ron Hale-Evans]

I just realised my earlier tries at sending this message were full of
almost 300K of control characters. I am trying again. Apologies if it
repeats.

*

Hi all--

I arrived home tonight to see the following message plastered across all my
terminal windows on my webserver, ludism.org:

Message from [EMAIL PROTECTED] at Sat Sep 30 19:10:53 2000 ... ludism

"???" I thought, and checked the system logs, which read as follows for the
period in question:


Sep 30 19:04:50 ludism inetd[219]: smtp/tcp: bind: Address already in use
Sep 30 19:08:01 ludism /USR/SBIN/CRON[32062]: (mail) CMD ( if [ -x
/usr/sbin/exim -a -f /etc/exim.conf ]; then /usr/sbin/exim -q >/dev/null
2>&1; fi) Sep 30 19:09:00 ludism innd: ME time 599939 idle 599938(2)
artwrite 0(0) artlink 0(0) hiswrite 0(0) hissync 0(3) Sep 30 19:10:53 ludism
Sep 30 19:10:53 ludism syslogd: Cannot glue message parts together Sep 30
19:10:53 ludism 173>Sep 30 19:10:53 /sbin/rpc.statd[205]: gethostbyname
error for
^X—ø^X—ø^Y—ø^Y—ø^Z—ø^Z—ø^[—ø^[—ø%8x%8x%8x%8x%8x%8x%8x%8x%8x%236x%n%137x%n%10x%n%192x%n1¿Î|YâA^PâA^Hœ¿âA^D∜¿â^AƒfÕĄ^BâY^LA^NôA^H^PâI^DÄA^D^Là^AƒfÕĄ^DƒfÕĄ^E0¿àA^DƒfÕ
Sep 30 19:10:53 ludism «^F/bin«F^D/shA0¿àF^Gâv^LçV^PçN^Lâۃ^KÕă^AÕÄ˝
Sep 30 19:14:01 ludism /USR/SBIN/CRON[32067]: (news) CMD (rnews -U) Sep 30
19:14:01 ludism innd: ME time 300548 idle 300544(2) artwrite 0(0) artlink
0(0) hiswrite 0(0) hissync 0(3)

I am far from a security expert, but it looks as though someone might have
been running some sort of shell script ("/bin/sh" appears somewhere near
the end of the garbage) via rpc. I also read the IP address 236.137.10.192
near the beginning, but can't locate that machine via host or ping.

Was this one of the famous sysklogd exploits? Yes, I was lazy and did not
upgrade until tonight, but I fear it may be too late.

I also found a file dated Friday, 22 September 2000, 6:03 PM in my /var/log
directory, reading thusly:

µvƒ9tty1
[...a whole lot of invisible characters...]
НÀ9tty1F*¥9tty2ÿâã8ttyp4c1019188-a.fedwy1.wa.home.comÖd 8tty2®v
8tty22”«9pts/563.225.161.91íe9ttyp4www.ludism.org

So, do you think my machine has been cracked? It looks as though they've
been trying to cover their tracks, but not doing it very well. If it is a
crack, what can I do about it apart from wiping the machine and rebuilding
from the ground up?

Thanks...

Ron Hale-Evans

--
   Ron's Info Closet: Center for Ludic Synergy, Kennexions Glass Bead Game,
Positive Revolution FAQ, Hexagram-8 I Ching Mailing List, and links...
   Ron Hale-Evans ... [EMAIL PROTECTED] ... 
Further up and further in! fnord

Re: firewall (fwd)

[George Bonser]

> This isn't necessarily the case.  It certainly appears to vary by
> region.  They don't do it here (Denver, Colorado).  Perhaps this is
> because DSL is so easily available :}

One interesting thing that many providers are doing is not allowing any
VPN traffic. If you want to "telecommute" and work from home, your company
is going to have to buy you a commercial VPN capable account. The
reasoning from the ISP standpoint is that the pricing on home accounts is
very low. They are designed for private personal use. If you want to put
these accounts into commercial service (they view a company offering
employees a VPN connection into the company net for purposes of performing
work to be commercial use) then you are going to need to buy a commercial
account (or, rather, your EMPLOYER will need to purchase the account).

Individual home internet accounts are a "loss leader" for most ISP's. They
don't make beans from them and make their real money offering services to
business. In that light, I really can't blame them. 

It is going to get much more difficult as time goes by to find a basic
home account that will let you do much more than act as a basic client.

exim problems with latest version

[David Bellows]

Hello all,

I just today upgraded my version of exim (I didn't mean to, upgrading
kword caused exim and I just let it happen).  I did have exim working
perfectly, now it does nothing.  Here is the error:

 2000-10-01 14:46:49 13fp4T-Su-00 Failed to create spool file\
/var/spool/exim/input//13fp4T-Su-00-D: Permission denied

2000-10-01 14:46:49 13fp4T-Su-00 Failed to create spool file\
/var/spool/exim/input//13fp4T-Su-00-D: Permission denied

2000-10-01 14:46:49 13fp4T-Su-00 Failed to create spool file\
/var/spool/exim/input//13fp4T-Su-00-D: Permission denied

here is ls -l /var/spool/exim
drwxr-x---5 mail mail 4096 Aug 22 01:28 exim

here is ls -l /var/spool/exim/input
drwxr-x---2 mail mail 4096 Oct  1 14:13 input

I added me (as user) to group mail and I still get the same error.

Here is ls -l /var/spool/exim/input//*
-rw---1 mail mail   22 Aug 27 17:42 
... [same for all the other entries]

Something is very wrong.  Even if I change the permissions, the errors
still occur in /var/spool/exim/input//*

Thanks for any help,
David Bellows

Re: IPsec and IPMasq/Proxy

[George Bonser]

> The problem is, as I said before, kernel 2.2 doesn't like to do NAT on IP
> protocols other than TCP and UDP.

Almost true. Using the iproute2 tools, you can do a static NAT of an
inside box to outside. You can then use standard packet filter firewall
rules to block various ports you don't want access to from outside. It is
the Linux masquerading code that has the problem, regular NAT works just
fine. Problem is that it burns another external IP address.

Re: Problem with Lucent winmodem on debian 2.2

[Francesco Bochicchio]

On Sat, Sep 30, 2000 at 11:25:30AM -0400, Shaji N V wrote:
> Hi,
> 
> I am trying to configure Lucent Winmodem on my HP Pavillion (6735) box with
> Debian 2.2. I have followed the instructions from www.linmodems.org for 
> installing the binary only driver provided by Lucent, but still have problems 
> in 
> loading the driver.
> 
> The following bits should tell the story.. Can someone help me out? The
> modem is working fine with Windows ME.
> 
> I am not able to understand what exactly the problem is. 
> 1. Why kernel module is not getting loaded. (Lucent's driver is supposed to 
> support shared IRQ - Shouldn't it probe for the IRQ? Windows ME uses IRQ 3)
> 2. Why setserial complains about "No such device"
> 
> 
> Thanks in advance,
> Shaji
> 
Hi,
I have ltmodem working on my Potato boxes ( both laptop and desktop ), and
will try to help. Check also archives of debian-user and debian-laptop :
there have been others thread on this subject with some interesting info.

> 
> >From insmod -f ltmodem
> --
> Using /lib/modules/2.2.17/misc/ltmodem.o
> Warning: kernel-module version mismatch
>  /lib/modules/2.2.17/misc/ltmodem.o was compiled for kernel version
> 2.2.12-20
>  while this kernel is version 2.2.17
>

BIG PROBLEM : ltmodem.o works fine up to kerner 2.2.14. After that, changes
in ppp.o broke someting. With 2.2.17, I am  able to load
it and to dial, but the kernel panics as soon as ppp.o module is loaded.

There is a 'dirt-trick' whis works for somebody ( not for me, until now ):
it consists of compiling two kernels, say 2.2.17 and 2.2.14, with the same
options, then substitute the ppp.o in 2.2.14 to the ppp.o in 2.2.17.
  
I currentrly use 2.2.13. :-(

Note : when I compile the kernel, I include the following options:

Support more than 4 serial ports
Support for sharing serial interrupts

Dunno if this matters. I checked the options after having seen this message 
from ltmodem :

Lucent Modem driver version 4.27.5.66 with MANY_PORTS MULTIPORT SHARE_IRQ 
enabled

 
> /lib/modules/2.2.17/misc/ltmodem.o: init_module: Device or resource busy
> Hint: this error can be caused by incorrect module parameters, including
> invalid IO or IRQ parameters
> 
>
Strange. I currently don't have any option in /etc/modules and the module
install fines ( I do have option for ltmodem on my Laptop, but that has
the ISA version of ltmodem ).


> 
> >From cat /proc/pci
> --
> 
> Communication controller: Lucent (ex-AT&T) Microelectronics Unknown
> device
> (rev 0).
>   Vendor id=11c1. Device id=44e.
>   Medium devsel.  Fast back-to-back capable.  Master Capable.
> Latency=64.
> Min Gnt=252.Max Lat=14.
>   Non-prefetchable 32 bit memory at 0xf410 [0xf410].
>   I/O at 0x3400 [0x3401].
>   I/O at 0x3000 [0x3001].


This is mine ( different, but it could be because I have ltmodem loaded):

  Bus  0, device  16, function  0:
Communication controller: Lucent (ex-AT&T) Microelectronics L56xMF (rev 1).
  Medium devsel.  Fast back-to-back capable.  IRQ 9.  Master Capable.  No 
bursts.  Min Gnt=252.Max Lat=14.
  Non-prefetchable 32 bit memory at 0xef00 [0xef00].
  I/O at 0xc400 [0xc401].
  I/O at 0xc000 [0xc001].



> 
> >From /etc/serial.conf
> -
> 
> # These are two spare devices you can use to customize for
> # some board which is not supported above
> #
> /dev/ttyS14 uart 16450 port 0x0260 irq 3
> #/dev/ttyS15 uart X port  irq X
> 


No. I still have both commented. I'd bet this is the problem.



> >From setserial -agv /dev/ttyS*
> --
> /dev/ttyS0, Line 0, UART: 16550A, Port: 0x03f8, IRQ: 4
>  Baud_base: 115200, close_delay: 50, divisor: 0
>  closing_wait: 3000
>  Flags: spd_normal skip_test
> 
> /dev/ttyS1, Line 1, UART: unknown, Port: 0x02f8, IRQ: 3
>  Baud_base: 115200, close_delay: 50, divisor: 0
>  closing_wait: 3000
>  Flags: spd_normal skip_test
> 
> /dev/ttyS14: No such device
> /dev/ttyS2, Line 2, UART: unknown, Port: 0x03e8, IRQ: 4
>  Baud_base: 115200, close_delay: 50, divisor: 0
>  closing_wait: 3000
>  Flags: spd_normal skip_test
> 
> /dev/ttyS3, Line 3, UART: unknown, Port: 0x02e8, IRQ: 3
>  Baud_base: 115200, close_delay: 50, divisor: 0
>  closing_wait: 3000
>  Flags: spd_normal
>

This is mine (skipping unimportant bits):

/dev/ttyS14, Line 14, UART: 16950/954, Port: 0xc000, IRQ: 2
Baud_base: 115200, close_delay: 50, divisor: 0
closing_wait: 3000
Flags: spd_normal skip_test

 
> >From ls -l /dev/ttyS*
> -
> crw-rw1 root dialout4,  64 Jul  5 23:14 /dev/ttyS0
> crw-rw1 root dialout4,  65 Jul  5 23:14 /dev/ttyS1
> crw-rw1 root dialout62,  78 Sep 28 05:42 /dev/ttyS14
> crw-rw1 root dialout4,  66 Jul  5 23:14 /dev/ttyS2
> crw-rw1 root dialout4,  67 Jul  5 23:14 /dev/ttyS3
> 

Here it's mine:

crw-rw-rw-1 root tty4,  14 Mar 25 

Re: Was my system cracked? (retry 2)

[George Bonser]

> So, do you think my machine has been cracked? It looks as though they've
> been trying to cover their tracks, but not doing it very well. If it is a
> crack, what can I do about it apart from wiping the machine and rebuilding
> from the ground up?

wiping and rebuilding is the safest thing to do. You can not, at this
point, be sure of anything on your system. Any binary could have been
replaced. Simply doing an ls might now launch a service to allow the
attacker a back door onto your system.

I would suggest rebuilding the base OS and modify your
/etc/apt/sources.list file to also point to security.debian.org and
running update rather often so that you can pick up security changes as
they are released.

Re: How to set Xserver resolution

[Philipp Lehman]

On Sun, 1 Oct 2000, William Jensen <[EMAIL PROTECTED]> wrote:

>How do you determine what the proper dpi should be?  How do you calculate it?

Take a ruler and mesure the visible screen width of you monitor.
Convert this value to inches if you're using a cm ruler (multiply
by 2.54). Then divide the number of vertical pixels (like 800,
1024, 1280, depending on the mode you're using) by the visible
screen width in inches. Then go

xdpyinfo | grep "resolution:"

to compare that to what your Xserver thinks the resolution is.

-- 
Philipp Lehman <[EMAIL PROTECTED]>

Re: exim problems with latest version

[Brent Buchholz]

On Sun, 1 Oct 2000, David Bellows wrote:
>
>2000-10-01 14:46:49 13fp4T-Su-00 Failed to create spool file\
>/var/spool/exim/input//13fp4T-Su-00-D: Permission denied
>
>Something is very wrong.  Even if I change the permissions, the errors
>still occur in /var/spool/exim/input//*
>

One of the bug reports says that exim should be suid.

# chmod u+s /usr/sbin/exim is the work-around.

Brent

Re: How to set Xserver resolution

[Philipp Lehman]

On Sun, 1 Oct 2000, William Jensen <[EMAIL PROTECTED]> wrote:
>On Sun, Oct 01, 2000 at 01:38:36PM -0400, Wayne Topa wrote:
>> 
>> startx  -bpp 16 -dpi 120
>> 
>> Would be one way.

Is there a way to make that permanent as well? Something in
XF86Config?

-- 
Philipp Lehman <[EMAIL PROTECTED]>

last log?

[steve winston]

in /var/logs, what is lastlog?
-- 
Please reply to [EMAIL PROTECTED]

Re: last log?

[Pollywog]

It shows recent logins; when people last logged in to their accounts.
see 'man lastlog'

--
Andrew


On Sun, 1 Oct 2000 12:20:16 -0700
steve winston <[EMAIL PROTECTED]> wrote:

> in /var/logs, what is lastlog?
> -- 
> Please reply to [EMAIL PROTECTED]
> 
> 
> -- 
> Unsubscribe?  mail -s unsubscribe [EMAIL PROTECTED] < /dev/null
> 


--

Re: IPsec and IPMasq/Proxy

[Phil Brutsche]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

A long time ago, in a galaxy far, far way, someone said...

> > The problem is, as I said before, kernel 2.2 doesn't like to do NAT on IP
> > protocols other than TCP and UDP.
> 
> Almost true. Using the iproute2 tools, you can do a static NAT of an
> inside box to outside. You can then use standard packet filter firewall
> rules to block various ports you don't want access to from outside. It is
> the Linux masquerading code that has the problem, regular NAT works just
> fine.

The "ip neigh {add|del|change|replace} ..." sequence?

> Problem is that it burns another external IP address.

Um... not good.

- -- 
- --
Phil Brutsche   [EMAIL PROTECTED]

GPG fingerprint: 9BF9 D84C 37D0 4FA7 1F2D  7E5E FD94 D264 50DE 1CFC
GPG key id: 50DE1CFC
GPG public key: http://tux.creighton.edu/~pbrutsch/gpg-public-key.asc
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.0.1 (GNU/Linux)
Comment: For info see http://www.gnupg.org

iD8DBQE5149C/ZTSZFDeHPwRAp8QAKDGcGvOFTEyuRorf10sFplLyQK1vwCeKSVL
XQNRB4nEBvbfWemVJtfKeb4=
=CiCq
-END PGP SIGNATURE-

Re: Netscape - libstdc++

[Brad]

On Sun, Oct 01, 2000 at 11:12:04AM -0700, ObeseWhale wrote:
> It seems as if I can't install netscape 4.75 on my Potato box because the
> version of libstdc++ that comes with debian is too high.  I get a dependency
> error when trying to run netscape.  Has anyone had a similar problem, or
> better yet, a solution?

The Debianized netscape packages depend on libstdc++2.9-glibc2.1, which
is in oldlibs on woody (probably on potato as well?). It seems to
coexist peacefully with newer libstdc++ packages.


-- 
  finger for GPG public key.


pgpja2Jsjquw4.pgp
Description: PGP signature

Re: last log?

[montefin]

Also, it 'appears' enormous, but if you do

du -k /var/log/lastlog

you will see that it's actually quite small.

montefin


Pollywog wrote:
> 
> It shows recent logins; when people last logged in to their accounts.
> see 'man lastlog'
> 
> --
> Andrew
> 
> On Sun, 1 Oct 2000 12:20:16 -0700
> steve winston <[EMAIL PROTECTED]> wrote:
> 
> > in /var/logs, what is lastlog?
> > --
> > Please reply to [EMAIL PROTECTED]
> >
> >
> > --
> > Unsubscribe?  mail -s unsubscribe [EMAIL PROTECTED] < /dev/null
> >
> 
> --
> 
> --
> Unsubscribe?  mail -s unsubscribe [EMAIL PROTECTED] < /dev/null

[OFFTOPIC] small fetchmail problem with popsneaker

[Pollywog]

I have no problems retrieving mail with fetchmail, but when I try to do this in 
conjunction with popsneaker, fetchmail issues these complaints:

(d3) Connected to postoffice.myisp.com
(d3) Disconnected from postoffice.myisp.com
fetchmail: pre-connection command failed with status 256
fetchmail: Query status=5 (SYNTAX)

the pertinent .fetchmailrc lines are:


poll mercury.myisp.net with proto POP3
  user pollywog password 
  preconnect "/usr/local/bin/popsneaker --only mercury.myisp.net"
  to pollywog

and the .popsneakerrc lines:

popserver mercury.myisp.net pollywog 

Does anyone know what the problem might be?

thanks

--
Andrew

Re: [OFFTOPIC] small fetchmail problem with popsneaker - SOLVED :)

[Pollywog]

On Sun, 01 Oct 2000 19:27:56 +
Pollywog <[EMAIL PROTECTED]> wrote:

> I have no problems retrieving mail with fetchmail, but when I try to do this 
> in conjunction with popsneaker, fetchmail issues these complaints:
> 


Nevermind folks   All of a sudden, it hit me what I had done incorrectly 
and I fixed it.

--
Andrew

Re: IPsec and IPMasq/Proxy

[George Bonser]

> 
> The "ip neigh {add|del|change|replace} ..." sequence?

Yeah. Look in /usr/share/doc/iproute and print off one of the cref
(command reference) docs (note the .ps file wants A4 paper)

> 
> > Problem is that it burns another external IP address.
> 
> Um... not good.

Well, yeah. That is the thing with NAT as opposed to Masq but NAT is a lot
faster. If you have the addresses to spare, you assign one for the
internal IPSec or PPTP or whatever VPN unit and NAT it at the
firewall. The thing is that a lot of these protocols use things like GRE
that Linux does not like to masquerade. Heck, Linux doesn't like UDP all
that much ... try running a CIPE VPN from behind a firewall ... no can do.

Re: tr '\verb|\|000' '\verb|\|\n'?

[Johann Spies]

On Sat, Sep 30, 2000 at 12:49:04PM -0400, David Z Maze wrote:
> Johann Spies <[EMAIL PROTECTED]> writes:

> JS> but what is '\verb|\|000'?  And the use of |\|?  
> 
> Are you reading this out of the source of a LaTeX document?  

No. It is a postscript document.

Johann
-- 
J.H. Spies - Tel/Faks +27-21-876-2337 Sel/Cell +27-82 898 1528
 "Beloved, think it not strange concerning the fiery 
  trial which is to try you, as though some strange 
  thing happened unto you; But rejoice, inasmuch as ye 
  are partakers of Christ's sufferings; that, when his 
  glory shall be revealed, ye may be glad also with 
  exceeding joy."   I Peter 4:12,13 

Re: offtopic: OCR on linux

[Johann Spies]

On Fri, Sep 29, 2000 at 06:45:41PM -0300, Carlos Menezes wrote:
> Try this:
> http://www.ime.usp.br/~ueda/clara/
> 
> More informations, e-mail to [EMAIL PROTECTED]
> "A. Demarteau (linux rules!)" wrote:

> > Does anyone have any good ocr-package for Linux which gives very good
> > results on all kinds of texts including the somewhat worse cases like
> > badly printed manuals and newspaper-articles.

About a 18 months ago on a different mailing list someone provided
this url referring to a commercial package:

http://www.vividata.com/ocrshop.html

I did not check it out.

Johann.
-- 
J.H. Spies - Tel/Faks +27-21-876-2337 Sel/Cell +27-82 898 1528
 "Beloved, think it not strange concerning the fiery 
  trial which is to try you, as though some strange 
  thing happened unto you; But rejoice, inasmuch as ye 
  are partakers of Christ's sufferings; that, when his 
  glory shall be revealed, ye may be glad also with 
  exceeding joy."   I Peter 4:12,13 

RE: Masquerading

[Jeremy L. Gaddis]

Assuming you're using a stock kernel or kernel with support for
IP masquerading, these three lines should get you started with masq:

/bin/echo 1 > /proc/sys/net/ipv4/ip_forward
/sbin/ipchains -P forward REJECT
/sbin/ipchains -I forward -s 192.168.1.0/24 -d ! 192.168.1.0/24 -j MASQ

You may need to change that last line, depending on what internal
IP addresses you use.  As far as firewalling is concerned, there's an
excellent "howto" guide available on ipchains at http://www.linuxdoc.org/HOWTO/.

I can't help you any with setting it up for dialin or FAX, as I don't use 
either.

HTH.

-jg

--
Jeremy L. Gaddis <[EMAIL PROTECTED]>

-Original Message-
From:   Hans-Christian Armingeon [SMTP:[EMAIL PROTECTED]
Sent:   Sunday, October 01, 2000 3:09 PM
To: Debian List
Subject:Masquerading

Hi,
is there anybody out there who kan help me start building a masquerading and
dialin and fax and firewall box with potato?

Thanks Johnny


-- 
Unsubscribe?  mail -s unsubscribe [EMAIL PROTECTED] < /dev/null

RE: Was my system cracked? (retry 2)

[Jeremy L. Gaddis]

At first glance, this appears to be an attempt to exploit rpc.statd.

If they *DID* get in, you have no way of knowing what may or may
not have been modified.  I just dealt with a machine about two weeks
ago that had a very extensive rootkit installed.  The only way it was
noticed that the machine had been compromised was that the admin
noticed many processes named "tfn-daemon" installed, which, for the
uninitiated, is the Tribal Flood Network DDoS tools.

Reinstall your system.  It sucks, but it's a learning experience.

-jg

--
Jeremy L. Gaddis <[EMAIL PROTECTED]>

-Original Message-
From:   Ron Hale-Evans [SMTP:[EMAIL PROTECTED]
Sent:   Sunday, October 01, 2000 1:53 PM
To: debian-user@lists.debian.org
Subject:Was my system cracked? (retry 2)

[snip] 

Sep 30 19:10:53 ludism syslogd: Cannot glue message parts together 
Sep 30 19:10:53 ludism 173
Sep 30 19:10:53 /sbin/rpc.statd[205]: gethostbyname
error for
^X-?ø^X-?ø^Y-?ø^Y-?ø^Z-?ø^Z-?ø^[-?ø^[-?ø%8x%8x%8x%8x%8x%8x%8x%8x%8x%236x%n%137x%n%10x%n%192x%n1¿Î|YâA^PâA^H?¿âA^Dâ^?¿â^A?fÕÄ?^BâY^L?A^Nô?A^H^PâI^DÄA^D^Là^A?fÕÄ?^D?fÕÄ?^E0¿àA^D?fÕ
Sep 30 19:10:53 ludism «^F/bin«F^D/shA0¿àF^Gâv^LçV^PçN^LâÛ?^KÕÄ?^AÕÄË???
Sep 30 19:14:01 ludism /USR/SBIN/CRON[32067]: (news) CMD (rnews -U) Sep 30
19:14:01 ludism innd: ME time 300548 idle 300544(2) artwrite 0(0) artlink
0(0) hiswrite 0(0) hissync 0(3)

So, do you think my machine has been cracked? It looks as though they've
been trying to cover their tracks, but not doing it very well. If it is a
crack, what can I do about it apart from wiping the machine and rebuilding
from the ground up?

Thanks...

Ron Hale-Evans

-- 
   Ron's Info Closet: Center for Ludic Synergy, Kennexions Glass Bead Game,
Positive Revolution FAQ, Hexagram-8 I Ching Mailing List, and links...
   Ron Hale-Evans ... [EMAIL PROTECTED] ... 
Further up and further in! fnord


-- 
Unsubscribe?  mail -s unsubscribe [EMAIL PROTECTED] < /dev/null

Re: more sound difficulties

[Chris Gray]

On Sun, Oct 01, 2000 at 10:01:30AM -0400, Christopher Fonnesbeck wrote:
> Unfortunately, I have been unable to get the ALSA sound working either
> in an IBM thinkpad, or on a desktop system with a standard
> soundblaster.  I have installed all of the relevant alsa packages, but

There is an emu10k1 driver out there that is not by alsa at
http://opensource.creative.com

> the alsaconfig utility doesnt detect the card in either case (very bad
> sign), nor does it accept any of my configurations for setting the sound
> card manually.  A typical error is as follows:
> 
> Loading driver:
> Starting sound driver:  (cs4232)
> Setting the PCM volume to 100% and the Master output volume to 50%
> The ALSA sound driver was not detected in this system.
> Could not initialize the mixer, the card was probably
> not detected correctly.

The ALSA cs4232 driver is a real pain.  You have to specify everything
for it and then it might still not work.  Here is what I had in my
/etc/modules in the hope that it helps: 

snd-card-cs4232 snd_port=0x530 snd_irq=11 snd_dma1=0 snd_dma2=3
snd_cport=0x120 snd_mpu_port=-1 snd_fm_port=-1 snd_mpu_irq=9 

(All on one line of course).  Using the plain OSS driver now seems like
a better solution to me and I only need to specify the io, irq, dma, and
dma2 for it.

> Note that sound was configured perfectly first time on both machines on
> Redhat 6.2.  These are both production machines, so if I am unable to
> get this problem resolved today or tomorrow, I will have to abandon
> Debian.  Any help is most appreciated.

First off, why does a production machine *need* sound unless you are
doing sound work?  Servers probably shouldn't even have sound cards.
Secondly, ALSA is still beta software and you really shouldn't blame
Debian for its failings.  Thirdly, if you are doing sound programming,
you might as well stick with OSS since alsa-lib is changing so rapidly.

Cheers,
Chris

-- 
It is much easier to be critical than to be correct.
-- Benjamin Disraeli

ps/2 mouse

[serge delorme]

I have a new optical mouse that refuse to work.
Its a logitech ps2/usb...ps2 for my setup.
For gpm and Xwindows I gave them /dev/psaux for device
and ps/2 for protocol...but no cigar.

Works OK in windows98, the part I'm not sure is
/dev/psaux (I always had serial mices)
Xwindow gives me that message:
"Cannot open mouse" (no device of that type)"

Any ideas ?

-- 
Serge Delorme   <[EMAIL PROTECTED]>
Un autre utilisateur GNU/DEBIAN

Re: How to set Xserver resolution

[Debian Linux User]

You could set up an alias.

HTH

Curt
[EMAIL PROTECTED]

On Sun, Oct 01, 2000 at 09:00:07PM +0200, Philipp Lehman wrote:
> On Sun, 1 Oct 2000, William Jensen <[EMAIL PROTECTED]> wrote:
> >On Sun, Oct 01, 2000 at 01:38:36PM -0400, Wayne Topa wrote:
> >> 
> >> startx  -bpp 16 -dpi 120
> >> 
> >> Would be one way.
> 
> Is there a way to make that permanent as well? Something in
> XF86Config?
> 
> -- 
> Philipp Lehman <[EMAIL PROTECTED]>
> 
> 
> -- 
> Unsubscribe?  mail -s unsubscribe [EMAIL PROTECTED] < /dev/null
> 

Re: traceroute & ping fail

[William Jensen]

An update to myself...in case others are having this problem:

I added the following rule to my script:

$IPT -A INPUT -p icmp --icmp-type 0 -j ACCEPT

My understanding is now the box will accpet 'echo replies' that I would generate
by 'ping debian.org'.  I then went to another pc on the net and tried to ping
my own box and it still just drops the packets. (which I want)  Can anyone see
anything wrong with what I've done?


On Sun, Oct 01, 2000 at 01:47:48PM -0500, William Jensen wrote:
> I think it's my firewall blocking them going _out_ because when I take the
> firewall offline both ping and traceroute work fine.  Ping works on localhost,
> though traceroute does not when the firewall is up.  Unfortunetly I am too new
> at both debian and firewalling to know where I went wrong.  I'm trying to set
> it up so I can ping and traceroute to other boxes but other 'bad' boxes can't
> do it to me.  What information can I follow this msg up with that will be
> helpful?
> 
> I call the firewall from /etc/rc2.d/S90firewall_up which is just a sym link to
> /etc/init.d/firewall_up.
> 
> On a side note, when I added the logging line:
> 
> $IPT -A Firewall -j LOG --log-level info --log-prefix "Firewall:"
> 
> It produces a TON of the following as fast as it can put them in the log file.
> How do I read this and even more importantly how can I make it log the 
> "rejects"
> properly so that I can actually catch people trying to scan the box etc.
> 
> Oct  1 13:28:11 stimpy kernel: Firewall:IN=eth0 OUT= 
> MAC=ff:ff:ff:ff:ff:ff:00:20:78:cb:ce:05:08:00 SRC=0.0.0.0 DST=255.255.255.255 
> LEN=576 TOS=0x00 PREC=0x00 TTL=64 ID=2 PROTO=UDP SPT=68 DPT=67 LEN=556
> 
> If it would help I can attach the actual firewall script.

Re: ps/2 mouse

[Brent Buchholz]

On Sun, 1 Oct 2000, serge delorme wrote:

>Xwindow gives me that message:
>"Cannot open mouse" (no device of that type)"
>
>Any ideas ?
>

It sounds like kernel support is missing.  Are you running a custom
kernel?

Brent

mounting /home?

[Dale Morris]

This is probably embarassingly simple, but I'd better ask.. I'm thinking
of doing a reinstall of 2.2 and would like to use my existing /home
directory. That will allow me to keep lots of existing info. I tried
this once before w/ Redhat but it didn't work right after the reinstall.
Do I just do a regular install *not* mounting the /home partition? After
the install, how do I get the /home partion mounted? Can I just copy my
/etc/fstab file and /home will mount automatically?
thanks

Re: firewall (fwd)

[Alvin Oga]

hi ya pollywog

if the ISP did accidentally scan your box with their new linux box...
which linux distro is installed that way where it comes up in a mode
that scans everything around it ???  ( a startrek borg-based linux ?? )
wonder which distro they used...
...

if they can say that "it would not happen again"...means they know who
and why and how it happened ??? .. they probably added your box to the
"dont touch this guys box" list in their programs that normally does
whatever they do ??

oh well.just rambling...

thanx
alvin


On Sun, 1 Oct 2000, Pollywog wrote:

> On Sun, 1 Oct 2000 11:40:16 -0500
> William Jensen <[EMAIL PROTECTED]> wrote:
> 
> > 
> > OH?  Why would my cable modem provider scan my box?  What would they be 
> > looking
> > for?
> 
> My ISP scanned my box once, and I asked them about it and they told me it was 
> an accident,
> done by a new Linux box they had just set up because they were considering 
> switching to Linux
>.  They told me the box would be shut down until they found the problem,
> and that it would not happen again.
> 
> 
> 
> 
> --
> Andrew
> 
> 
> -- 
> Unsubscribe?  mail -s unsubscribe [EMAIL PROTECTED] < /dev/null
> 

Re: firewall (fwd)

[Alvin Oga]

hi ya allan...

whats the point for mediaone to scan for open relays ??

- only two reasons ???
a.  they want to add that open relay box for more advertising to be
sent thru it...
b.  they want to tell the customer to close the open relay ??

just more rambling on a sunday afternoon...
thanx
alvin

On Sun, 1 Oct 2000, Allan M. Wind wrote:

> On 2000-10-01 16:47:26, Pollywog wrote:
> 
> > > OH?  Why would my cable modem provider scan my box?  What would
> > > they be looking for?
> > 
> > My ISP scanned my box once, and I asked them about it and they told
> > me it was an accident, done by a new Linux box they had just set up
> > because they were considering switching to Linux.  They told me the
> > box would be shut down until they found the problem, and that it
> > would not happen again.
> 
> MediaOne (now AT&T) probes for open relays on port 25 frequently.
> 
> 
> /Allan
> -- 
> Allan M. Wind email: [EMAIL PROTECTED]
> P.O. Box 2022 finger: [EMAIL PROTECTED] (GPG/PGP)
> Woburn, MA 01888-0022 icq: 44214251
> USA
> 
> 
> -- 
> Unsubscribe?  mail -s unsubscribe [EMAIL PROTECTED] < /dev/null
> 

Re: traceroute & ping fail

[William Jensen]

Another update to myself and others that may want this information:

This update concerns traceroute.  If I added the following rules I can now
traceroute to anywhere, but traceroutes to me fail:

$IPT -A INPUT -p icmp --icmp-type time-exceeded -j ACCEPT
$IPT -A INPUT -p icmp --icmp-type port-unreachable -j ACCEPT

Again, the same question goes out to those of you more familiar with iptables,
did I mistakenly leave myself open here?

Bill


On Sun, Oct 01, 2000 at 04:04:36PM -0500, William Jensen wrote:
> An update to myself...in case others are having this problem:
> 
> I added the following rule to my script:
> 
> $IPT -A INPUT -p icmp --icmp-type 0 -j ACCEPT
> 
> My understanding is now the box will accpet 'echo replies' that I would 
> generate
> by 'ping debian.org'.  I then went to another pc on the net and tried to ping
> my own box and it still just drops the packets. (which I want)  Can anyone see
> anything wrong with what I've done?
> 
> 
> On Sun, Oct 01, 2000 at 01:47:48PM -0500, William Jensen wrote:
> > I think it's my firewall blocking them going _out_ because when I take the
> > firewall offline both ping and traceroute work fine.  Ping works on 
> > localhost,
> > though traceroute does not when the firewall is up.  Unfortunetly I am too 
> > new
> > at both debian and firewalling to know where I went wrong.  I'm trying to 
> > set
> > it up so I can ping and traceroute to other boxes but other 'bad' boxes 
> > can't
> > do it to me.  What information can I follow this msg up with that will be
> > helpful?
> > 
> > I call the firewall from /etc/rc2.d/S90firewall_up which is just a sym link 
> > to
> > /etc/init.d/firewall_up.
> > 
> > On a side note, when I added the logging line:
> > 
> > $IPT -A Firewall -j LOG --log-level info --log-prefix "Firewall:"
> > 
> > It produces a TON of the following as fast as it can put them in the log 
> > file.
> > How do I read this and even more importantly how can I make it log the 
> > "rejects"
> > properly so that I can actually catch people trying to scan the box etc.
> > 
> > Oct  1 13:28:11 stimpy kernel: Firewall:IN=eth0 OUT= 
> > MAC=ff:ff:ff:ff:ff:ff:00:20:78:cb:ce:05:08:00 SRC=0.0.0.0 
> > DST=255.255.255.255 LEN=576 TOS=0x00 PREC=0x00 TTL=64 ID=2 PROTO=UDP SPT=68 
> > DPT=67 LEN=556
> > 
> > If it would help I can attach the actual firewall script.

Re: List of packages..

[I. Tura]

At 01.57 27/9/00 -0700, Bob Brown ha escrit:

>> p.d.: Where can I obtain a Dselect HOWTO?.


If you install few packages in the first times you use dselect, the info it
will give you wil be less enormous and it will help you to understand the
basics of dselect and dependencies/suggestions/etc. Key '?' is your friend.

Best,

Ignasi







 ---\
 From  Barcelona...  \   \\___
 /   / ___\_'_\
 Still nationalizing the LAN!   /\¬___/
 --/

_
Do You Yahoo!?
Get your free @yahoo.com address at http://mail.yahoo.com

Re: Problem with Lucent winmodem on debian 2.2

[I. Tura]

At 11.25 30/9/00 -0400, Shaji N V ha escrit:

>From insmod -f  ltmodem
>--
>Using  /lib/modules/2.2.17/misc/ltmodem.o
>Warning: kernel-module version  mismatch
> /lib/modules/2.2.17/misc/ltmodem.o was compiled for kernel  version
>2.2.12-20
> while this kernel is version  2.2.17


In this case, I suggest you the Winmodems-and-LinuxHOWTO. You don't have
the kernel version that requires the Lucent driver. 

I have also a Pavilion... But well, you are lucky, you at least got the
Lucent winmodem, not the Conexant as me. Anyway, I hated that -ahem- modem
and I ripped it out from the PC.

HP are a bunch of... Well...


Best,


Ignasi







 ---\
 From  Barcelona...  \   \\___
 /   / ___\_'_\
 Still nationalizing the LAN!   /\¬___/
 --/

_
Do You Yahoo!?
Get your free @yahoo.com address at http://mail.yahoo.com

Re: ssh configure error

[staf wagemakers]

On Sun, Oct 01, 2000 at 05:02:23PM +0200, Willi Dyck wrote:

> i get an error message when doing a ./configure with ssh.
> 
> "checking for xauth... no"
> "configure: error: configuring with X but xauth not found - aborting"
> 
> what's wrong here? i have no X installed and also don't want to do it.
> which file to edit for doing it right?

The configure script looks for "xauth" to enable X forwarding, if don't want 
to use X you can disable it with a configure option. If you run 
./configure --help you should see the right syntax.

regards,

-- 
Staf Wagemakers

email  : [EMAIL PROTECTED]
homepage   : http://www.digibel.org/~staf

Re: firewall (fwd)

[Pollywog]

On Sun, 1 Oct 2000 14:24:21 -0700 (PDT)
Alvin Oga <[EMAIL PROTECTED]> wrote:

> 
> hi ya pollywog
> 
> if the ISP did accidentally scan your box with their new linux box...
> which linux distro is installed that way where it comes up in a mode
> that scans everything around it ???  ( a startrek borg-based linux ?? )
> wonder which distro they used...

I don't recall which distro it was, but I was told that one of the techs had 
installed some software on the box and that he did not configure it correctly.

> ...
> 
> if they can say that "it would not happen again"...means they know who
> and why and how it happened ??? .. they probably added your box to the
> "dont touch this guys box" list in their programs that normally does
> whatever they do ??

They knew who had done it and I think maybe they did add my address to the 
"don't scan this" list :)

--
Andrew

Re: firewall (fwd)

[Pollywog]

On Sun, 1 Oct 2000 14:26:45 -0700 (PDT)

> whats the point for mediaone to scan for open relays ??
> 
> - only two reasons ???
> a.  they want to add that open relay box for more advertising to be
> sent thru it...
> b.  they want to tell the customer to close the open relay ??

Or they are tired of dealing with abuse reports about their spammers and 
crackers and script kiddies.

--
Andrew

Re: firewall (fwd)

[Alvin Oga]

hi y pollywog..

yeah...now that makes sensethat someone added something to the
linux box..

good...

have fun linuxing
alvin

On Sun, 1 Oct 2000, Pollywog wrote:

> On Sun, 1 Oct 2000 14:24:21 -0700 (PDT)
> Alvin Oga <[EMAIL PROTECTED]> wrote:
> 
> > 
> > hi ya pollywog
> > 
> > if the ISP did accidentally scan your box with their new linux box...
> > which linux distro is installed that way where it comes up in a mode
> > that scans everything around it ???  ( a startrek borg-based linux ?? )
> > wonder which distro they used...
> 
> I don't recall which distro it was, but I was told that one of the techs had 
> installed some software on the box and that he did not configure it correctly.
> 
> > ...
> > 
> > if they can say that "it would not happen again"...means they know who
> > and why and how it happened ??? .. they probably added your box to the
> > "dont touch this guys box" list in their programs that normally does
> > whatever they do ??
> 
> They knew who had done it and I think maybe they did add my address to the 
> "don't scan this" list :)
> 
> --
> Andrew
> 
> 
> -- 
> Unsubscribe?  mail -s unsubscribe [EMAIL PROTECTED] < /dev/null
> 

Re: traceroute & ping fail

[George Bonser]

On Sun, 1 Oct 2000, William Jensen wrote:

> Another update to myself and others that may want this information:
> 
> This update concerns traceroute.  If I added the following rules I can now
> traceroute to anywhere, but traceroutes to me fail:
> 
> $IPT -A INPUT -p icmp --icmp-type time-exceeded -j ACCEPT
> $IPT -A INPUT -p icmp --icmp-type port-unreachable -j ACCEPT

There are a few more you should have for the network to operate
properly. There are other things such as MTU Path Discovery that need to
work.

You should, suggested by the ipchains HOWTO, be allowing these:

 -p icmp --icmp-type destination-unreachable -j ACCEPT
 -p icmp --icmp-type source-quench -j ACCEPT
 -p icmp --icmp-type time-exceeded -j ACCEPT
 -p icmp --icmp-type parameter-problem -j ACCEPT

Note destination-unreachable rather than port-unreachable. There are
several subtypes of destination-unreachable and port-unreachable is only
one of them. 

Re: mounting /home?

[Alvin Oga]

hi ya dale..

if your partition names  /dev/hda1.../dev/hda2...etc
is the same as on the old box and the new one...

and /dev/floppy and /dev/cdrom and /dev/pts and other
things in /etc/fstab is the same...yeah...you can copy it
but by the time you find all the differences...you are already done
and dont need to copy since you added the "needed" stuff ( /home )
from the old to the new system..

iehintdo NOT copy it...

c ya
alvin

On Sun, 1 Oct 2000, Dale Morris wrote:

> This is probably embarassingly simple, but I'd better ask.. I'm thinking
> of doing a reinstall of 2.2 and would like to use my existing /home
> directory. That will allow me to keep lots of existing info. I tried
> this once before w/ Redhat but it didn't work right after the reinstall.
> Do I just do a regular install *not* mounting the /home partition? After
> the install, how do I get the /home partion mounted? Can I just copy my
> /etc/fstab file and /home will mount automatically?
> thanks
> 
> 
> -- 
> Unsubscribe?  mail -s unsubscribe [EMAIL PROTECTED] < /dev/null
> 

Re: Was my system cracked? (retry 2)

[Osamu Aoki]

Hi,

Looks like funny thing might have happened.

Next time you install system, make sure to plug all services to the
Internet.

Edit /etc/inetd
Check /etc/init.d/*

Also, I set up packet firewall by "ipchains" plugging all ports 1-1023
and allowing only needed ones.  This way no buffer over flow attacks 
reach my services.

I have at least few per month log of funny access try but all are 
rejected outright.

Usually, sunrpc, linuxconf, ftp, http, netbios are targets.

Good luck.

-- 
+  Osamu Aoki <[EMAIL PROTECTED]>, GnuPG-key: 1024D/D5DE453D  +
+   Fingerprint: 814E BD64 3288 40E7 E88E  3D92 C3F8 EA94 D5DE 453D   +
+   === http://www.aokiconsulting.com === Cupertino, CA USA ===   +

Re: firewall (fwd)

[George Bonser]

> 
> - only two reasons ???
> a.  they want to add that open relay box for more advertising to be
> sent thru it...
> b.  they want to tell the customer to close the open relay ??

One more ... 


  c.  intimidated by the brain-dead idiots at ORBS

Re: more sound difficulties

[Christopher Fonnesbeck]

Thanks for the help.  I will try your configuration.
> 
> First off, why does a production machine *need* sound unless you are
> doing sound work?  

Some users will be doing sound work.

>Servers probably shouldn't even have sound cards.

Its a laptop, not a server


> Secondly, ALSA is still beta software and you really shouldn't blame
> Debian for its failings.  

I wasnt blaming Debian per se, but I was told that it was the best
approach, when my first attempts were failing.

> Thirdly, if you are doing sound programming,
> you might as well stick with OSS since alsa-lib is changing so rapidly.
> 

OSS wasnt working at all.

> Cheers,
> Chris
> 
> --
> It is much easier to be critical than to be correct.
> -- Benjamin Disraeli

Re: PS/2 Mouse

[I. Tura]

At 08.32 1/10/00 +0900, Jack Morgan ha escrit:
>I just installed a new motherboard. I'm running woody on the only HDD.
When i plug in the PS/2 mouse the system hangs during the boot strap
process. If I unplug the PS/2 mouse it boots fine, but hangs when I use
X-windows. 

>Is this an irq issue or should i reinstall?

Don't know this one, but I'd take a look to BIOS settings. Some new BIOS
provide you boring settings related to PS/2 mouse.

Hope that it's useful,


Ignasi







 ---\
 From  Barcelona...  \   \\___
 /   / ___\_'_\
 Still nationalizing the LAN!   /\¬___/
 --/

___
Do You Yahoo!?
Achetez, vendez! À votre prix! Sur http://encheres.yahoo.fr

Re: How to set Xserver resolution

[Wayne Topa]

Subject: Re: How to set Xserver resolution
Date: Sun, Oct 01, 2000 at 09:00:07PM +0200

In reply to:Philipp Lehman

Quoting Philipp Lehman([EMAIL PROTECTED]):
> On Sun, 1 Oct 2000, William Jensen <[EMAIL PROTECTED]> wrote:
> >On Sun, Oct 01, 2000 at 01:38:36PM -0400, Wayne Topa wrote:
> >> 
> >> startx  -bpp 16 -dpi 120
> >> 
> >> Would be one way.
> 
> Is there a way to make that permanent as well? Something in
> XF86Config?

I used to have this as an alias  in my .bashrc
alias x16='startx -- -bpp 16 -dpi 120 &'

Some kind Guru once posted a script that I tried and after finding it
sooo useful I added that to my .bashrc and replaced the above alias.

x() {
  D=x
  for i in `seq 0 4`;do if [ ! -f /tmp/.X${i}-lock ]; then D=$i; break; fi; 
done
  if [ "${D}" = "x" ]; then
echo "No free virtual terminal"
  else
if [ $# -lt 1 ];
  then startx -- :${D} -bpp 16 -dpi 120 2> ~/.X.err > ~/.X.out  &
  else startx -- :${D} -bpp $1 2> ~/.X.err > ~/.X.out  &
fi;
  fi
}


Hope This Helps

-- 
Windows: the ultimate triumph of marketing over technology.
___

RE: Was my system cracked? (retry 2)

[Alvin Oga]

hi ya...

just re-installing and rebuilding the new box wont help because...

   the hacker got in before... they probably can still get in again
   unless something is done differently..
- simple things can prevent it from happening again would
- be to implement all the common things people been saying in
- the lists, faqs, replies, etc

probably the most important thing is backup your user data...religously...
that you can do and control with relative ease

i guess the trick questionis did that guy get in...or was it just
a failed attempt
- again some people say check your binaries against the cdrom
installs

have fun
alvin

On Sun, 1 Oct 2000, Jeremy L. Gaddis wrote:

> At first glance, this appears to be an attempt to exploit rpc.statd.
> 
> If they *DID* get in, you have no way of knowing what may or may
> not have been modified.  I just dealt with a machine about two weeks
> ago that had a very extensive rootkit installed.  The only way it was
> noticed that the machine had been compromised was that the admin
> noticed many processes named "tfn-daemon" installed, which, for the
> uninitiated, is the Tribal Flood Network DDoS tools.
> 
> Reinstall your system.  It sucks, but it's a learning experience.
> 
> -jg
> 
> --
> Jeremy L. Gaddis <[EMAIL PROTECTED]>
> 
> -Original Message-
> From: Ron Hale-Evans [SMTP:[EMAIL PROTECTED]
> Sent: Sunday, October 01, 2000 1:53 PM
> To:   debian-user@lists.debian.org
> Subject:  Was my system cracked? (retry 2)
> 
> [snip] 
> 
> Sep 30 19:10:53 ludism syslogd: Cannot glue message parts together 
> Sep 30 19:10:53 ludism 173
> Sep 30 19:10:53 /sbin/rpc.statd[205]: gethostbyname
> error for
> ^X-?ø^X-?ø^Y-?ø^Y-?ø^Z-?ø^Z-?ø^[-?ø^[-?ø%8x%8x%8x%8x%8x%8x%8x%8x%8x%236x%n%137x%n%10x%n%192x%n1¿Î|YâA^PâA^H?¿âA^Dâ^?¿â^A?fÕÄ?^BâY^L?A^Nô?A^H^PâI^DÄA^D^Là^A?fÕÄ?^D?fÕÄ?^E0¿àA^D?fÕ
> Sep 30 19:10:53 ludism «^F/bin«F^D/shA0¿àF^Gâv^LçV^PçN^LâÛ?^KÕÄ?^AÕÄË???
> Sep 30 19:14:01 ludism /USR/SBIN/CRON[32067]: (news) CMD (rnews -U) Sep 30
> 19:14:01 ludism innd: ME time 300548 idle 300544(2) artwrite 0(0) artlink
> 0(0) hiswrite 0(0) hissync 0(3)
> 
> So, do you think my machine has been cracked? It looks as though they've
> been trying to cover their tracks, but not doing it very well. If it is a
> crack, what can I do about it apart from wiping the machine and rebuilding
> from the ground up?
> 
> Thanks...
> 
> Ron Hale-Evans
> 
> -- 
>Ron's Info Closet: Center for Ludic Synergy, Kennexions Glass Bead Game,
> Positive Revolution FAQ, Hexagram-8 I Ching Mailing List, and links...
>Ron Hale-Evans ... [EMAIL PROTECTED] ... 
> Further up and further in! fnord
> 
> 
> -- 
> Unsubscribe?  mail -s unsubscribe [EMAIL PROTECTED] < /dev/null
> 
> 
> -- 
> Unsubscribe?  mail -s unsubscribe [EMAIL PROTECTED] < /dev/null
> 

flamewar ;-? (Re: firewall (fwd))

[Robert Waldner]

On Sun, 01 Oct 2000 14:40:02 PDT, George Bonser writes:
>  c.  intimidated by the brain-dead idiots at ORBS


Actually, I don´t think Alan[0] is braindead. He does a quite good job, 
he just hasn´t his scripts under control[1], sometimes...
Always remember, you don´t _have_ to use ORBS, although it´s cutting 
spam about 60 % at my private server.


&rw

0: Alan Brown, he more-or-less is ORBS
1: adding multi-level-relays to the list _without_ prior notification.
2: or above.net is once again blackholing half manawatu.co.nz´s 
   netblock, and some *really braindead* parser thinks ((no 
   answer)==(127.0.0.2))


-- 
/ Robert Waldner <[EMAIL PROTECTED]> | Phone: +43 1 89933 0 Fax x533 \
\KPNQwest/AT tech staff| Diefenbachg. 35   A-1150 Wien / 

Re: firewall (fwd)

[Phil Brutsche]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

A long time ago, in a galaxy far, far way, someone said...

> whats the point for mediaone to scan for open relays ??
> 
> - only two reasons ???
> a.  they want to add that open relay box for more advertising to be
> sent thru it...
> b.  they want to tell the customer to close the open relay ??

They get fewer complaints about a mis-configured mail system.

- -- 
- --
Phil Brutsche   [EMAIL PROTECTED]

GPG fingerprint: 9BF9 D84C 37D0 4FA7 1F2D  7E5E FD94 D264 50DE 1CFC
GPG key id: 50DE1CFC
GPG public key: http://tux.creighton.edu/~pbrutsch/gpg-public-key.asc
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.0.1 (GNU/Linux)
Comment: For info see http://www.gnupg.org

iD8DBQE517pe/ZTSZFDeHPwRAnf3AKCoXMm7j2b5g1aDg4bWLLSzczJpGwCgmffa
aoKU22NYUz+Q8WDFXB8YZFc=
=MIRv
-END PGP SIGNATURE-

Re: firewall (fwd)

[Phil Brutsche]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

A long time ago, in a galaxy far, far way, someone said...

> 
> hi ya pollywog
> 
> if the ISP did accidentally scan your box with their new linux box...
> which linux distro is installed that way where it comes up in a mode
> that scans everything around it ???  ( a startrek borg-based linux ?? )
> wonder which distro they used...

Caldera has been known to do that as part of it's network automatic
configuration process.

- -- 
- --
Phil Brutsche   [EMAIL PROTECTED]

GPG fingerprint: 9BF9 D84C 37D0 4FA7 1F2D  7E5E FD94 D264 50DE 1CFC
GPG key id: 50DE1CFC
GPG public key: http://tux.creighton.edu/~pbrutsch/gpg-public-key.asc
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.0.1 (GNU/Linux)
Comment: For info see http://www.gnupg.org

iD8DBQE517qm/ZTSZFDeHPwRAoHnAKCAoEcyYWA62sAmAjMGsIvYfyiDVQCfYRrV
VgtADsqgiaHDtj7W+umNHmE=
=b0OT
-END PGP SIGNATURE-

Re: flamewar ;-? (Re: firewall (fwd))

[Pollywog]

On Mon, 02 Oct 2000 00:17:08 +0200
Robert Waldner <[EMAIL PROTECTED]> wrote:

> Actually, I don´t think Alan[0] is braindead. He does a quite good job, 
> he just hasn´t his scripts under control[1], sometimes...
> Always remember, you don´t _have_ to use ORBS, although it´s cutting 
> spam about 60 % at my private server.

I liked it until it started cutting out legitimate mail, then I stopped using 
it.

--
Andrew

Re: firewall (fwd)

[Phil Brutsche]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

A long time ago, in a galaxy far, far way, someone said...

> > 
> > - only two reasons ???
> > a.  they want to add that open relay box for more advertising to be
> > sent thru it...
> > b.  they want to tell the customer to close the open relay ??
> 
> One more ... 
> 
> 
>   c.  intimidated by the brain-dead idiots at ORBS
> 

No need to  here - there are probably several people who are
sympathetic to your dislike of ORBS (me!) :)

- -- 
- --
Phil Brutsche   [EMAIL PROTECTED]

GPG fingerprint: 9BF9 D84C 37D0 4FA7 1F2D  7E5E FD94 D264 50DE 1CFC
GPG key id: 50DE1CFC
GPG public key: http://tux.creighton.edu/~pbrutsch/gpg-public-key.asc
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.0.1 (GNU/Linux)
Comment: For info see http://www.gnupg.org

iD8DBQE517s//ZTSZFDeHPwRAuA7AJ9FOiyXRhExul3MnKfoJusW/tDzAwCeLcBv
DVYPeCrx7Ulj9PJ1ijNf81Q=
=skrq
-END PGP SIGNATURE-

Re: flamewar ;-? (Re: firewall (fwd))

[Phil Brutsche]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

A long time ago, in a galaxy far, far way, someone said...

> On Mon, 02 Oct 2000 00:17:08 +0200
> Robert Waldner <[EMAIL PROTECTED]> wrote:
> 
> > Actually, I don´t think Alan[0] is braindead. He does a quite good job, 
> > he just hasn´t his scripts under control[1], sometimes...
> > Always remember, you don´t _have_ to use ORBS, although it´s cutting 
> > spam about 60 % at my private server.
> 
> I liked it until it started cutting out legitimate mail, then I
> stopped using it.

And I switched to the MAPS anti-spam lists after I found out that they
were blocking entire networks who were blocking the very aggressive ORBS
relay tester ie above.net, who hosts a very important mailing list called
BugTraq, and a company called RoadRunner, who is becoming of one of the
largest cable ISPs in the US of A.

- -- 
- --
Phil Brutsche   [EMAIL PROTECTED]

GPG fingerprint: 9BF9 D84C 37D0 4FA7 1F2D  7E5E FD94 D264 50DE 1CFC
GPG key id: 50DE1CFC
GPG public key: http://tux.creighton.edu/~pbrutsch/gpg-public-key.asc
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.0.1 (GNU/Linux)
Comment: For info see http://www.gnupg.org

iD8DBQE517ws/ZTSZFDeHPwRAp6fAKCqDstLD8bGvHucDg+9kMu+plWK4wCeLg5X
Cd6OQksHL6QumHYNVgQAfuY=
=yJfv
-END PGP SIGNATURE-

Configure APM wake-up events?

[Philipp Lehman]

Here's another one: Is there a way to configure the events that
will break a standby/suspend state? APM works quite well on my
machine, but I don't like the fact the moving the mouse will
resume it. That happens every time I accidently hit my shaky
desk. APM control is disabled in the BIOS, so this has to happen
on the OS side. But where?

-- 
Philipp Lehman <[EMAIL PROTECTED]>

Re: How to set Xserver resolution

[Philipp Lehman]

On Sun, 1 Oct 2000, Wayne Topa <[EMAIL PROTECTED]> wrote:

>Some kind Guru once posted a script that I tried and after finding it
>sooo useful I added that to my .bashrc and replaced the above alias.
[snip]

...does even more than I asked for, thanks.

-- 
Philipp Lehman <[EMAIL PROTECTED]>