strangeness with bind
I have upgraded to the latest bind9 with apt-get and it is acting strangely. I have not changed the allocation-only lines in /etc/bind/named.conf, but it seems that I cannot access sites which use akadns such as google in the usual way. Here is the log entry I get when I try and go to www.google.com with lynx. Sep 20 12:21:21 tomass named[363]: enforced delegation-only for 'com' (www.google.com) I am not sure how I might have broken things, but if someone could give me pointers (that don't require google) it would be appreciated. Thanks. -- Unix is a user friendly operating system. It just picks its friends more carefully than others. Thomas Stivers e-mail: [EMAIL PROTECTED] gpg: 45CBBABD signature.asc Description: Digital signature
mail-keys sends entire keyring in mutt from unstable
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 I am not sure if this is a configuration error on my part, but when I do k to mail my public key once I choose the key id to send the message is 3 megs in size which is *not* my public key. It looks like it is trying to send my whole keyring. I am using the /etc/Muttrc in Debian unstable and mutt 1.5.4. Thanks for any advice. - - -- Unix is a user friendly operating system. It just picks its friends more carefully than others. Thomas Stivers e-mail: [EMAIL PROTECTED] gpg: 45CBBABD -BEGIN PGP SIGNATURE- Version: GnuPG v1.2.3 (GNU/Linux) iD8DBQE/zecD5JK61UXLur0RAsNoAJ0UtH13bfuMMfy2op/ejhV94nLbzwCdFAwl xQ0VEcdSg/MTRybVYEgr4es= =eJ1G -END PGP SIGNATURE- -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
mail-keys sends entire keyring in mutt from unstable
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 My apologies if this arrives twice, but I think the first one encountered a PEBKAC on my part. I am not sure if this is a configuration error on my part, but when I do k to mail my public key once I choose the key id to send the message is 3 megs in size which is *not* my public key. I believe it is putting the entire contents of my keyring in the message. I am using the /etc/Muttrc in Debian unstable and mutt 1.5.4. Thanks for any advice. - - -- Unix is a user friendly operating system. It just picks its friends more carefully than others. Thomas Stivers e-mail: [EMAIL PROTECTED] gpg: 45CBBABD -BEGIN PGP SIGNATURE- Version: GnuPG v1.2.3 (GNU/Linux) iD8DBQE/zh165JK61UXLur0RAmFUAJ4tIg8RXQPe17PrcPdg0O3mCkscYQCfQSVJ TsTax8qlnACxyX4X4PB4aWs= =QLmm -END PGP SIGNATURE- -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Top posting (a different point of view)
-BEGIN PGP SIGNED MESSAGE- Hash: RIPEMD160 On Fri, Jun 10, 2005 at 02:17:48 PM -0400, Hal Vaughan wrote: > I don't know if anyone has noticed that I don't top post. (Actually, I might > -- if I'm responding with a quick "Thank you," I may put it at the top. If a > post solves the problem, I might say, in one line, 'That does the job.' While I can perhaps understand posting a "That does the job" message for archival purposes. I really don't understand why anyone would send a post containing "thank you," "I agree," 'no," "yes," Etc. to a list of thousands. These one-liners contribute nothing but usually have a large block of post following them wasting space and time. I'm not saying you shouldn't be thankful, agreeable or whatever, but does the world need to read it. [snip] > In other words, while I don't top post, I see no reason to be critical of > those who do, and I certainly see no reason for the violent reactions to > those who are open minded enough to not judge top posters. Yehaw! We've had our Hitler reference, now we're goint to get philisophical. Next will come a few dozen messages about ending this "horible" off topic thread. Isn't debian-user fun. - -- "Debugging is twice as hard as writing the code in the first place. Therefore, if you write the code as cleverly as possible, you are, by definition, not smart enough to debug it." - Brian W. Kernighan Thomas Stivers e-mail: [EMAIL PROTECTED] -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.1 (GNU/Linux) iD8DBQFCqfGy5JK61UXLur0RA0gjAJ9co4ejFEHjIySv4ABNtdMAixOFCQCfeFle 3MeayhJwZzOiWmIrhngf0NE= =TvRS -END PGP SIGNATURE- -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Sudden constant spoofing of my address
On Fri, Jun 10, 2005 at 05:19:12 PM -0400, Roberto C. Sanchez wrote: > On Fri, Jun 10, 2005 at 10:05:04PM +0100, Lee Braiden wrote: > > I would like to always sign my emails, but I always worry that people will > > dislike the extra overhead, and maybe find it hard to read. Do most > > clients > > display GPG signatures nicely now? > > > Pretty much. And since most now do S/MIME and PGP/MIME instead of the > old ASCII inline, if they don't it shows up as some random attachment, > instead of a bunch of crap at the top and bottom of a message. The problem is that you can't use it universally because there are still way too many people using M$ products which simply don't display any body for messages that are pgp/mime signed. Unfortunately these people tend to be bosses, elderly family members, Etc. so you have to make an effort to exclude them from receiving pgp/mime signed messages. Still it's nice to have the if it ain't signed it ain't mine explanation. -- "Debugging is twice as hard as writing the code in the first place. Therefore, if you write the code as cleverly as possible, you are, by definition, not smart enough to debug it." - Brian W. Kernighan Thomas Stivers e-mail: [EMAIL PROTECTED] signature.asc Description: Digital signature
Re: resolvconf w/ dhcpd -> /etc/hosts not working
On Sun, Jun 12, 2005 at 02:30:28 AM +0200, LeVA wrote: > Hi! > > I'm using a dhcp3 client with resolvconf configuration. The ip updating and > name server configuration works fine, but I can not use the /etc/hosts file. > For example if I set this up in /etc/hosts: Do you have the following in your /etc/nsswitch.conf? hosts: files dns HTH -- "Debugging is twice as hard as writing the code in the first place. Therefore, if you write the code as cleverly as possible, you are, by definition, not smart enough to debug it." - Brian W. Kernighan Thomas Stivers e-mail: [EMAIL PROTECTED] signature.asc Description: Digital signature
stopping ssh attacks
I have been getting a huge number of attempts to log into my box via ssh which fail with invalid username entrys in the logs. Is there already a package which will let me look through the logs and dynamically add iptables rules to drop anything from these scanning addresses after something like 3 attempts. I know I can set up hosts.allow and hosts.deny to only allow ssh in from particular ip's, but I'd rather not do that. Any suggestions would be appreciated. -- "Debugging is twice as hard as writing the code in the first place. Therefore, if you write the code as cleverly as possible, you are, by definition, not smart enough to debug it." - Brian W. Kernighan Thomas Stivers e-mail: [EMAIL PROTECTED] signature.asc Description: Digital signature
Re: python -> python2.4: debian way?
On Wed, Jun 15, 2005 at 02:09:35 PM +0200, Roel Schroeven wrote: > Hi, > > I'm wondering how I should make debian start python2.4 when I type > python. I guess I could just modify the symlink so that /usr/bin/python > points to /usr/bin/python2.4 instead of /usr/bin/python2.3, but I'm not > sure that it won't screw up anything. What's the Debian way to do this? update-alternatives --set python /usr/bin/python2.4 Or alternatively: update-alternatives --config python -- "Debugging is twice as hard as writing the code in the first place. Therefore, if you write the code as cleverly as possible, you are, by definition, not smart enough to debug it." - Brian W. Kernighan Thomas Stivers e-mail: [EMAIL PROTECTED] signature.asc Description: Digital signature
[Solved]: Re: stopping ssh attacks
On Thu, Jun 16, 2005 at 11:57:52 AM -0400, Bradley Alexander wrote: > Note that there are also a number of methodologies which accomplish the same > thing using iptables...One such example is at > https://lists.netfilter.org/pipermail/netfilter/2005-June/060914.html. TThe > he extension of this would be to use something like port knocking > (http://www.portknocking.org) to protect ssh and other services. I ended up going with port knocking and just installed knockd. Too cool, i always thought it was harder to set up than it is. I even have it playing nice with shorewall. Thanks for the suggestions. -- "Debugging is twice as hard as writing the code in the first place. Therefore, if you write the code as cleverly as possible, you are, by definition, not smart enough to debug it." - Brian W. Kernighan Thomas Stivers e-mail: [EMAIL PROTECTED] signature.asc Description: Digital signature
netgear WG311V2 wireless card, any hope?
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Hi all, I am trying to get a this card working, but I cannot tell for certain what drivers to use. I see many references, but many seem to be about another revision of the card. When I go to http://madwifi.sf.net I get a "index of /" page with nothing on it. Tips on what I need to get this working would be appreciated. - -- "Debugging is twice as hard as writing the code in the first place. Therefore, if you write the code as cleverly as possible, you are, by definition, not smart enough to debug it." - Brian W. Kernighan Thomas Stivers e-mail: [EMAIL PROTECTED] -BEGIN PGP SIGNATURE- Version: GnuPG v1.2.5 (GNU/Linux) iD8DBQFBVan25JK61UXLur0RApOAAJ9NJaJiznWeAPIyC+2xYzkSNys/LQCeJCQA D1qKRBCk+/+pdbgjwG33bgs= =BBYe -END PGP SIGNATURE- -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: framebuffer problem in 2.6.9?
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On Thu, Nov 04, 2004 at 04:32:48 PM -0500, H. S. wrote: > I just downloaded and compiled the kernel-source 2.6.9 of Debian after > applying swsusp2 patches. First I tried with my current config file > (2.6.7) but the frambuffer seemed not be working properly. Using > vga=791, I was not getting anything meaningful during the boot process. > Just some noise in the top 25% or so of the screen. I then removed the > framebuffer support and recompiled and now 2.6.9 boots okay (but with > the usual lower resolution of course). Anyone else experience this problem? I had this same problem and ended up solving it by compiling vesafb as a module and loading it from /etc/modules. It ain't pretty but it got my high res screen back. HTH - -- "Debugging is twice as hard as writing the code in the first place. Therefore, if you write the code as cleverly as possible, you are, by definition, not smart enough to debug it." - Brian W. Kernighan Thomas Stivers e-mail: [EMAIL PROTECTED] -BEGIN PGP SIGNATURE- Version: GnuPG v1.2.5 (GNU/Linux) iD8DBQFBi/ik5JK61UXLur0RAuNMAJ41YUasIU+9UOc1m8ujAeDR3xX7iwCfXBZk qOt4oEqghMeQksaF+w/7YEE= =L8sK -END PGP SIGNATURE- -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: First general purpose unmoderated newsgroup for Debian
On Sat, Sep 04 2004 at 05:54:24PM -0700, Paul Johnson wrote: > <#secure method=pgp mode=sign> Just out of curiosity what is the purpose of the line above? I have seen it only on Paul's messages and it seems unnecessary. -- "Debugging is twice as hard as writing the code in the first place. Therefore, if you write the code as cleverly as possible, you are, by definition, not smart enough to debug it." - Brian W. Kernighan Thomas Stivers e-mail: [EMAIL PROTECTED] signature.asc Description: Digital signature
Re: First general purpose unmoderated newsgroup for Debian
On Wed, Sep 08 2004 at 02:42:24PM +0200, Raphaƫl Berbain wrote: > It's an mml (MIME Meta Language) tag. Paul uses Gnus, which in turn > uses Emacs' Message mode to compose messages. mml is a tagging > language mecanism used by Emacs' message mode to convey > meta-information internally to the MUA, mainly to compose mime > messages. AFAICT, it shouldn't actually appear in the resulting > message, instead it should be rewritten as some MIME stanzas - or, in > this case, as an inline PGP sig I guess. Thanks for the info. All I know is once I tried gnus and it told me "No gnus is good gnus." and I went back to mutt. :) > Paul: You might want to investigate that. There are two issues that > I can see: First, this mml tag shouldn't end up in the final message, > should it ? Second, ISTR that PGP/MIME is recommended over inline > PGP. The reason is that mail systems can handle reliably & > automatically PGP/MIME signatures (handling being verify, strip, > whatever). OTOH, they cannot with inline PGP. Yay pgp/mime, but it still seems to befuddle some poorly designed but widely used MUA's. -- "Debugging is twice as hard as writing the code in the first place. Therefore, if you write the code as cleverly as possible, you are, by definition, not smart enough to debug it." - Brian W. Kernighan Thomas Stivers e-mail: [EMAIL PROTECTED] signature.asc Description: Digital signature
Re: Re: Partitioning a second hard disk
On Mon, Sep 13 2004 at 03:08:54PM +1000, Scott Barlow wrote: > Thank you Andrew for your quick response. I have allowed enough for each > partition. If anything I will be wasting space which is ok for the > moment as i'm just experimenting. My computer consists of a 40gb drive > which has the install on it and a blank 80gb drive. My /boot is around > 100mb, my /, /var, /tmp is around 1Gb, my /usr is 10Gb, /swap is 1gb and > /home is 25gb. This is all freshly configured. I don't know what to do > with the second drive such as how to partition it to enable a lot of > space for files, movies, music etc and which mount point to give it. I > do want to do it properly however and am after any tips from the gurus. > My /swap space is physically in the middle of the 7 partitions. Do i > need /swap space on the 2nd hard disk or is that not possible? Several times you have referred to /swap which is incorrect. You do not mount a swap partition, but it is instead just a partition of type linux swap which the kernel takes care of. You may know this, but in case... There will usually be a line for your swap partition(s) in /etc/fstab, but it should not be mounted as /swap. One gb is probably quite a bit more swap space than you need, but if you have 512mb of ram then its probably okay. -- "Debugging is twice as hard as writing the code in the first place. Therefore, if you write the code as cleverly as possible, you are, by definition, not smart enough to debug it." - Brian W. Kernighan Thomas Stivers e-mail: [EMAIL PROTECTED] signature.asc Description: Digital signature
