Re: enabling ipchains/iptables
On Fri, 14 Dec 2001, TCL wrote: > hello > i have slack 8 with kernel 2.4.5 > in the last week i got my modem working with linux and now is the time to set > up a firewall ruleset actually, the correct time to do it was *before* you got your modem to work and connected for the first time. never underestimate the power of the cracker with a scanner. > i have both ipchains and iptables installed, but unfurtunally, my kernel is > compiled with no support to both > is it possible to enable support without recompiling the kernel? nope. > if not, how can i make sure all the current options compiled in the kernel > will stay the same except for the firewall ones? i remember there was a way > to make a config file of the current configuration, but i forgot it > and, if i use that method, what line do i need to change? here's what i do. cd /path/to/old/kernel copy .config /someplace/safe cd /path/to/new/kernel cp /someplace/safe/.config ./ make oldconfig [this will only ask you questions which are new to this kernel version] make menuconfig [now change whatever needs to be changed] continue as usual. [dep, bzImage, etc]. note that this depends on having the .config of your current kernel. if it's a distro kernel, you might want to take the hour or two to reconfigure it, since distro kernels are built to suit the widest range of hardware they might encounter - almost everything is compiled, usuaully as modules. -- mulix http://vipe.technion.ac.il/~mulix/ http://syscalltrack.sf.net/ = To unsubscribe, send mail to [EMAIL PROTECTED] with the word "unsubscribe" in the message body, e.g., run the command echo unsubscribe | mail [EMAIL PROTECTED]
Re: [OT] my latest experience with internet zahav
Ahh, thats nothing... Try to talk to netvision! I had a problem (I think all Netvision's ADSL people in tel aviv area had), that I got a message on my Linux FW: pptp LCP terminated by peer.. Tried to talk to Netvision. They don't support Linux. Ok. Booting to Win XP - ahh, the same problem, just windows says I have a bad user/pass (weird, I do remember my user/pass)... call Bezeq ADSL.. Linux? we're not supporting Linux. XP? no we don't support it.. test with guest@OTest - that works, meaning the ADSL itself is ok (didn't they hear that a person could actually telnet to his ADSL modem and diagnose and reboot remotely?) Going back to netvision - doing again checking, everything seems ok, until the support person remember - they have a problem with the ADSL service with their servers. 30 minutes top and it will be fixed. 6 hours passed and at 4 AM it was fixed. (netvision - what is it? do you run the Red Back on NT or what?) bloody bastards, I tell you that -- Hetz Ben Hamo [EMAIL PROTECTED] On Thursday 13 December 2001 22:41 pm, Noam Meltzer wrote: > hi! > just thought some1 would want to consider this before he decides to move > to internet zahav. > since yesterday morning i was unable to connect to zahav with my adsl. > (it is connected to a linux box, doing masq) > today i called internet zahav technical support, asking if they have > some known problem. they claimed not. after hearing i have linux, the > guy, named Yotam, instantly said "we dont support linux". > fine. but i tell you that the problem is with your service because i > manage to start the ppp connection, it just doesn't work (suddenly > yestreday's morning after half a year it works great). > he convinced me to try to talk with bezek. > after ***20*** minutes of waiting on the line, a guy named Yosi answered > and for 15 min. we tried to debug the problem with voodoo (which i > already tried even before i called zahav) - shutting down the computer > restarting the adsl, after the sync turn on the computer - bla bla. > he tried to check my line from remote and said its ok. and bezeq had no > problem. i tended to believe him. > now i went deeper (maybe to late), added some rules to syslog.conf and > tried to connect. now i suddenly saw that i manage to establish ppp > connection but when i try to authenticate using pap, i got a mesg from > pppd "Your group is not active". > this msg. says one thing - i have a problem with the user on zahav's > servers. reasonable to me? not to the help desk person named Chen from > internet zahav i was now talking with. > Chen, which reminded me more a secretary than an helpdesk said > immediately that the problem is with the linux - OFCOURSE. > I tried to explain him whats pptp, ppp, and pap. but no success, it was > like talking with me japanese. i decided to offer to connect my win2k > machine to the adsl, while commenting that i don't belive it will work. > then he said - "uh, but i still don't support win2k" (what the > hell?!?!?!)"i'll use my pictures" (he has jpgs of how win2k > configuration should look like) > after configuring the win2k exactly as he wants it (now click the right > button of the mouse lalalal) and trying to connect - tada - it > didn't work. > now he goes check on the server - "uh, sorry sir, but it seems like your > user is for some reason not defined to use adsl" (what the f**k?!?!?) > "i'll give you a temporary user until your user will be fixed". > now - wouldn't it save me 25 min. of radiating my had with the cell > phone because i don't have phone the pc, and a bruto of 1 hour from my > time waiting on the phone, if they would only try to check my user on > the server FROM THE BEGINNING? = To unsubscribe, send mail to [EMAIL PROTECTED] with the word "unsubscribe" in the message body, e.g., run the command echo unsubscribe | mail [EMAIL PROTECTED]
(OT) ISP's that don't allow relaying
Hi, I am using several ISPs but over the years I got used to using one email box at actcom, a few months ago I canceled My dial-up account there but I bought an "Email-only" account, which most isp's offer, just to have my old regular email address. While trying to send mail, I always get a "Relaying is not allowed" Message, I sent an email to their support team, and their answer Was that an Email-only account is only for GETTING mail, if you want to Sent mail you must use a different Smtp by a different ISP. Then I Found out most isps don’t allow relaying, so I wondered, why isps offer mailbox's anyway? Shouldn’t they find a solution for smtp? Is there a way to allow only certain users Relaying? Manor G. [EMAIL PROTECTED]
Re: (OT) ISP's that don't allow relaying
Hey Manor ;) On Friday 14 December 2001 13:35, Manor G. wrote: > Was that an Email-only account is only for GETTING mail, if you want to > Sent mail you must use a different Smtp by a different ISP. > Then I Found out most isps don't allow relaying, so I wondered, why isps > offer mailbox's anyway? Shouldn't they find a solution for smtp? > > Is there a way to allow only certain users Relaying? I had a mail relay open on the schoolsucks mail server once, for 2 months, and the result was disasterous ;) My best offer to you is to run a local sendmail and use it to send your mail, thats what I do for years and it works the best. = To unsubscribe, send mail to [EMAIL PROTECTED] with the word "unsubscribe" in the message body, e.g., run the command echo unsubscribe | mail [EMAIL PROTECTED]
Re: (OT) ISP's that don't allow relaying
Hi Just install postfix or some other simple smtp server so you won't be depended on your isp. You should use one of the free webmail services with a forwarding option so you can get your mail to a permanent address and always forwarded to your current one. CHAVAL AL HAKESEF !!! Ishai. - Original Message - From: Manor G. To: [EMAIL PROTECTED] Sent: Friday, December 14, 2001 1:35 PM Subject: (OT) ISP's that don't allow relaying Hi, I am using several ISPs but over the years I got used to using one email box at actcom, a few months ago I canceled My dial-up account there but I bought an "Email-only" account, which most isp's offer, just to have my old regular email address. While trying to send mail, I always get a "Relaying is not allowed" Message, I sent an email to their support team, and their answer Was that an Email-only account is only for GETTING mail, if you want to Sent mail you must use a different Smtp by a different ISP. Then I Found out most isps dont allow relaying, so I wondered, why isps offer mailbox's anyway? Shouldnt they find a solution for smtp? Is there a way to allow only certain users Relaying? Manor G. [EMAIL PROTECTED]
Re: (OT) ISP's that don't allow relaying
Unless someone (the word "Nadav" seems to pop into my head, for no apparent reason) you are trying to send mail to is running an "RBL+" filter, which also filters out dial-up IPs, and bingo - you cannot send them mail. No, running your own mail server is not always a good idea. I have a solution that works for me (a colocated server that runs "smtp after pop", which means you can relay through it if you first read your mail from it), but running two plugs for fiasco on the same week seems like too much :). You can try and get Actcom to do an "SMTP after POP" arrangment. In any case, don't get mad at them for not relaying. Relaying is BAAAD. Shachar Nimrod Simba Carmi wrote: >Hey Manor ;) > >On Friday 14 December 2001 13:35, Manor G. wrote: > >>Was that an Email-only account is only for GETTING mail, if you want to >>Sent mail you must use a different Smtp by a different ISP. >>Then I Found out most isps don't allow relaying, so I wondered, why isps >>offer mailbox's anyway? Shouldn't they find a solution for smtp? >> >>Is there a way to allow only certain users Relaying? >> > >I had a mail relay open on the schoolsucks mail server once, for 2 months, >and the result was disasterous ;) >My best offer to you is to run a local sendmail and use it to send your mail, >thats what I do for years and it works the best. > >= >To unsubscribe, send mail to [EMAIL PROTECTED] with >the word "unsubscribe" in the message body, e.g., run the command >echo unsubscribe | mail [EMAIL PROTECTED] > > > = To unsubscribe, send mail to [EMAIL PROTECTED] with the word "unsubscribe" in the message body, e.g., run the command echo unsubscribe | mail [EMAIL PROTECTED]
Re: (OT) ISP's that don't allow relaying
SS>> too much :). You can try and get Actcom to do an "SMTP after POP" SS>> arrangment. In any case, don't get mad at them for not relaying. SS>> Relaying is BAAAD. Actually, relaying for own client's IP is good. That's the part of ISP service. And ISP can easily know for any given IP if it is their IP or not. And AFAIK most ISPs in Israel act exactly this way (I'm not sure particullary for Actcom, though). -- [EMAIL PROTECTED] \/ There shall be counsels taken Stanislav Malyshev /\ Stronger than Morgul-spells phone +972-3-9316425/\ JRRT LotR. whois:!SM8333 = To unsubscribe, send mail to [EMAIL PROTECTED] with the word "unsubscribe" in the message body, e.g., run the command echo unsubscribe | mail [EMAIL PROTECTED]
RE: enabling ipchains/iptables
Hi, Recompiling the kernel is not that difficult as it may seem. Just go to your source dir (e.g. /usr/src/linux) and run 'make menuconfig' The options are quiet clear and there is an explanation on each one. Sincerely yours, Volkind Danny -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of TCL Sent: Friday, December 14, 2001 3:13 AM To: [EMAIL PROTECTED] Subject: enabling ipchains/iptables hello i have slack 8 with kernel 2.4.5 in the last week i got my modem working with linux and now is the time to set up a firewall ruleset i have both ipchains and iptables installed, but unfurtunally, my kernel is compiled with no support to both is it possible to enable support without recompiling the kernel? if not, how can i make sure all the current options compiled in the kernel will stay the same except for the firewall ones? i remember there was a way to make a config file of the current configuration, but i forgot it and, if i use that method, what line do i need to change? thx ahead = To unsubscribe, send mail to [EMAIL PROTECTED] with the word "unsubscribe" in the message body, e.g., run the command echo unsubscribe | mail [EMAIL PROTECTED] = To unsubscribe, send mail to [EMAIL PROTECTED] with the word "unsubscribe" in the message body, e.g., run the command echo unsubscribe | mail [EMAIL PROTECTED]
Re: (OT) ISP's that don't allow relaying
On Fri, 14 Dec 2001 [EMAIL PROTECTED] wrote: > SS>> too much :). You can try and get Actcom to do an "SMTP after POP" > SS>> arrangment. In any case, don't get mad at them for not relaying. > SS>> Relaying is BAAAD. > > Actually, relaying for own client's IP is good. That's the part of ISP > service. And ISP can easily know for any given IP if it is their IP or > not. And AFAIK most ISPs in Israel act exactly this way (I'm not sure > particullary for Actcom, though). actcom does it as well, of course, but the case in point is when a client has an *email only* account, which means the client must be connected through some other isp, which means the ip is *not* one of actcom's ips - hence, no relaying. -- mulix http://vipe.technion.ac.il/~mulix/ http://syscalltrack.sf.net/ = To unsubscribe, send mail to [EMAIL PROTECTED] with the word "unsubscribe" in the message body, e.g., run the command echo unsubscribe | mail [EMAIL PROTECTED]
Re: [OT] my latest experience with internet zahav
On Thursday 13 December 2001 22:41, Noam Meltzer wrote: > hi! > just thought some1 would want to consider this before he decides to move > to internet zahav. > since yesterday morning i was unable to connect to zahav with my adsl. > (it is connected to a linux box, doing masq) > today i called internet zahav technical support, asking if they have > some known problem. they claimed not. after hearing i have linux, the > guy, named Yotam, instantly said "we dont support linux". > fine. but i tell you that the problem is with your service because i > manage to start the ppp connection, it just doesn't work (suddenly > yestreday's morning after half a year it works great). > he convinced me to try to talk with bezek. > after ***20*** minutes of waiting on the line, a guy named Yosi answered > and for 15 min. we tried to debug the problem with voodoo (which i > already tried even before i called zahav) - shutting down the computer > restarting the adsl, after the sync turn on the computer - bla bla. > he tried to check my line from remote and said its ok. and bezeq had no > problem. i tended to believe him. > now i went deeper (maybe to late), added some rules to syslog.conf and > tried to connect. now i suddenly saw that i manage to establish ppp > connection but when i try to authenticate using pap, i got a mesg from > pppd "Your group is not active". > this msg. says one thing - i have a problem with the user on zahav's > servers. reasonable to me? not to the help desk person named Chen from > internet zahav i was now talking with. > Chen, which reminded me more a secretary than an helpdesk said > immediately that the problem is with the linux - OFCOURSE. No surprise for me - Israel is the kingdom of Microsoft, the number of Linux home users here is miserable. Therefore it's not worth the investment to support Linux - a lot of money to retrain the personnel, and return close to zero. > I tried to explain him whats pptp, ppp, and pap. but no success, it was > like talking with me japanese. That's why they are called "support monkeys" :-) For monkeys they are. And if they are not monkeys and don't act according to their scripts, they are fired. >i decided to offer to connect my win2k > machine to the adsl, while commenting that i don't belive it will work. > then he said - "uh, but i still don't support win2k" (what the > hell?!?!?!)"i'll use my pictures" (he has jpgs of how win2k > configuration should look like) And now you propose that he/she have Debian jpgs, Mandrake jpgs, RedHat jpgs, Slackware jpgs etc :-) Do you want to drive him/her really crazy? :-) > after configuring the win2k exactly as he wants it (now click the right > button of the mouse lalalal) and trying to connect - tada - it > didn't work. > now he goes check on the server - "uh, sorry sir, but it seems like your > user is for some reason not defined to use adsl" (what the f**k?!?!?) > "i'll give you a temporary user until your user will be fixed". I had similar problem once - but that time Netvision were all right, and Nezeq somehow managed to erase me from their ADSL lists, and somehow one of them saw that the definitions were all right, and another one of them saw the definitions erased. They had to delete all the definitions altogether and redefine it all anew. > now - wouldn't it save me 25 min. of radiating my had with the cell > phone because i don't have phone the pc, and a bruto of 1 hour from my > time waiting on the phone, if they would only try to check my user on > the server FROM THE BEGINNING? Support monkey has THE SCRIPT - do this, this, this and this. The goal is "to put the client off the phone in the minimal time". If support monkey holds you on the phone for 40 minutes trying to understand that Linux thingie, instead of 10 as according to the script, he/she risks to be proclaimed inefficient and fired. This issue has been discussed very widely on various Linux sites. And install the phone near the PC, why wouldn't you :-)? Just kidding :-) -- Regards, Alex Chudnovsky e-mail : [EMAIL PROTECTED] ICQ : 35559910 = To unsubscribe, send mail to [EMAIL PROTECTED] with the word "unsubscribe" in the message body, e.g., run the command echo unsubscribe | mail [EMAIL PROTECTED]
Re: enabling ipchains/iptables
hello all. basicly recompile the kernel with one or two new modules. Ok I did this once, the only thing changed was one more module. So why the new kernel (bzimage) was different, some bytes larger. - diego = To unsubscribe, send mail to [EMAIL PROTECTED] with the word "unsubscribe" in the message body, e.g., run the command echo unsubscribe | mail [EMAIL PROTECTED]
Re: (OT) ISP's that don't allow relaying
On Fri, 14 Dec 2001, Manor G. wrote: > Hi, > I am using several ISPs but over the years I got used to using one email > box at actcom, a few months ago I canceled > My dial-up account there but I bought an "Email-only" account, which > most isp's offer, just to have my old regular email address. > While trying to send mail, I always get a "Relaying is not allowed" > Message, I sent an email to their support team, and their answer > Was that an Email-only account is only for GETTING mail, if you want to > Sent mail you must use a different Smtp by a different ISP. > Then I Found out most isps don't allow relaying, so I wondered, why isps > offer mailbox's anyway? Shouldn't they find a solution for smtp? You could use the SMTP server of the ISP you use (you must have some ISP). So your pop server is with Actcom while your SMTP server is somewhere else. > Is there a way to allow only certain users Relaying? Actcom can run authenticated SMTP. If they do, you will need to use your username for sending as well. POP before SMTP is a kludge. > > Manor G. > [EMAIL PROTECTED] > > -- Yaron. = To unsubscribe, send mail to [EMAIL PROTECTED] with the word "unsubscribe" in the message body, e.g., run the command echo unsubscribe | mail [EMAIL PROTECTED]
