copy boot image
What is the recommended method to distributing linux images? If I have a workstation with a tuned installation and I want to replicate it to other workstation. The old fashion way is to open the box and physically copy the disk with ghost. How can I do this without a screwdriver? Thanks, -tom
Re: copy boot image
mount -o bind / /mnt/tmp/ # to eliminate /proc /sys etc tar czf $SOMEWHERE_NOT_ROOT/root.tgz -C /mnt/tmp/ On Jan 6, 2008 4:58 PM, Tom Rosenfeld <[EMAIL PROTECTED]> wrote: > What is the recommended method to distributing linux images? > > If I have a workstation with a tuned installation and I want to replicate it > to other workstation. The old fashion way is to open the box and physically > copy the disk with ghost. How can I do this without a screwdriver? > > Thanks, > -tom > > = To unsubscribe, send mail to [EMAIL PROTECTED] with the word "unsubscribe" in the message body, e.g., run the command echo unsubscribe | mail [EMAIL PROTECTED]
Re: copy boot image
On Sun, Jan 06, 2008 at 04:58:44PM +0200, Tom Rosenfeld wrote: > What is the recommended method to distributing linux images? > > If I have a workstation with a tuned installation and I want to replicate it > to other workstation. The old fashion way is to open the box and physically > copy the disk with ghost. How can I do this without a screwdriver? The prefered (by me) method is to make a bzip2'ed 2 tar file(s) of the system. Depending upon how many disks you have, how big it is and how much load you want to put on your network, you can burn it on a dvd, mount it with NFS, etc. Most of this can be done easily with a shell script kept in the same place as the tar file. For example: boot a rescue CD. (fedora directory names used). mkdir /mnt/oldimage mount -t nfs system:sharename /mnt/oldimage (partition disk as 3 partitions, 1 boot 32m-100m, 2 swap, 3 rest of disk) mkfs -t ext3 /dev/hda1 mkfs -t ext3 /dev/hda3 mkswap /dev/hda2 mkdir /mnt/new mount /dev/hda3 /mnt/new mkdir /mnt/new/boot mount /dev/hda1 /mnt/new/boot cd /mnt/boot tar xvjf /mnt/oldimage/imagename.tar.bz2 (run grub or lilo) umount /mnt/new/boot umount /mnt/new umount /mnt/oldimage sync sync sync reboot -- Geoffrey S. Mendelson, Jerusalem, Israel [EMAIL PROTECTED] N3OWJ/4X1GM IL Voice: (07)-7424-1667 U.S. Voice: 1-215-821-1838 Visit my 'blog at http://geoffstechno.livejournal.com/ = To unsubscribe, send mail to [EMAIL PROTECTED] with the word "unsubscribe" in the message body, e.g., run the command echo unsubscribe | mail [EMAIL PROTECTED]
Re: copy boot image
On Jan 6, 2008 2:58 PM, Tom Rosenfeld <[EMAIL PROTECTED]> wrote: > What is the recommended method to distributing linux images? > > If I have a workstation with a tuned installation and I want to replicate > it to other workstation. The old fashion way is to open the box and > physically copy the disk with ghost. How can I do this without a > screwdriver? > > Thanks, > -tom > > You can bring up your computer with Knoppix cd or any floppy disk with tar and gzip in it. Then tar your image. Look here for example: http://www.faqs.org/docs/securing/chap29sec305.html If you want image like ghost, then use the dd command, instead of tar. Installation file: Most of the distros have an answer file for installation. You can prepare a file like that from your already installed system, and the each installation that will use this file, will install automatically your system. Ofcourse this methode needs more tuning, and to know more about installation of your distro. Kfir
Re: copy boot image
Why opening the box? You can do it with ghost (and other tools which you can find in freshmeat.net), but you don't need to open the machine for that. Thanks, Hetz On Jan 6, 2008 4:58 PM, Tom Rosenfeld <[EMAIL PROTECTED]> wrote: > What is the recommended method to distributing linux images? > > If I have a workstation with a tuned installation and I want to replicate it > to other workstation. The old fashion way is to open the box and physically > copy the disk with ghost. How can I do this without a screwdriver? > > Thanks, > -tom > > -- Skepticism is the lazy person's default position. my blog (hebrew): http://benhamo.org = To unsubscribe, send mail to [EMAIL PROTECTED] with the word "unsubscribe" in the message body, e.g., run the command echo unsubscribe | mail [EMAIL PROTECTED]
Borrowing an Ethernet Card
Hi all! I have the following networking bug on my Linux computer: http://community.livejournal.com/shlomif_tech/3938.html Now my hostmaster suspects that the problem is caused by a faulty Ethernet Network Interface Card (NIC). He offered to lend me his own Ethernet card, which he knows to work, but since he's been very busy lately, we couldn't arrange a time to meet and pick up the NIC. So I'm asking if anyone here has a working 100 Mbps Ethernet card that he can lend me so I can temporarily replace it in my machine, and see if it solves the problem I have. I'll return the NIC in question after a trial period, and if it indeed solves my problem, I'll buy a new NIC. I live in Northern Tel Aviv. Thanks in advance, Shlomi Fish - Shlomi Fish [EMAIL PROTECTED] Homepage:http://www.shlomifish.org/ I'm not an actor - I just play one on T.V. = To unsubscribe, send mail to [EMAIL PROTECTED] with the word "unsubscribe" in the message body, e.g., run the command echo unsubscribe | mail [EMAIL PROTECTED]
growisofs Makes the System Less Responsive on MDV-Cooker and kernel 2.6.24-rc6
Hi all! I often used to burn CDs and DVDs on my Mandriva Cooker system without any problems. I used the combination of the command line tools "mkisofs" and "growisofs" to burn a DVD. Today I noticed that when running growisofs to burn a DVD, the system became much less responsive: moving windows was less smooth, the "about-to-start" bumping icons in the X cursor were slower, and the system felt more sluggish etc. Top displayed growisofs taking about 5% of the CPU. I tried it again on a different .iso file and got the same result. (With a brand new X). My system specs are as follows: * Mandriva Cooker. * Pentium 4 2.4GHz. * Nvidia GeForce 4 MX card. * The Nouveau drivers. ( http://nouveau.freedesktop.org/wiki/ ) * My fstab is: < # This file is edited by fstab-sync - see 'man fstab-sync' for details /dev/sda1 / xfs defaults 1 1 /dev/sda2 /home xfs defaults 1 2 /dev/sda5 /mnt/Test-fedora ext3 defaults 1 2 /dev/sda6 /mnt/archlinux ext3 defaults 1 2 /dev/hdc /mnt/cdrom auto umask=0022,user,iocharset=iso8859-1,codepage=850,noauto,ro,exec,users 0 0 /dev/hdd /mnt/cdrom2 auto umask=0022,user,iocharset=iso8859-1,codepage=850,noauto,ro,exec,users 0 0 /dev/hdb3 /mnt/kubuntu xfs defaults 1 2 /dev/hdb1 /mnt/old-mandriva xfs defaults 1 2 /dev/hda1 /mnt/win_c vfat umask=022,uid=smb,gid=smb,iocharset=iso8859-8,codepage=862 0 0 /dev/hda5 /mnt/win_d vfat umask=022,uid=smb,gid=smb,iocharset=iso8859-8,codepage=862 0 0 none /proc proc defaults 0 0 > /dev/hda and /dev/hdb are IDE/PATA drives, while /dev/sda is a SATA disk. /dev/hdc is an IDE DVD+RW writer. /dev/dvd is an unused CD-ROM Reader/Writer and DVD reader. * I'm using KDE-3.5.8. - It only started happening recently. Is this a known problem? Does anyone have any solution? Regards, Shlomi Fish - Shlomi Fish [EMAIL PROTECTED] Homepage:http://www.shlomifish.org/ I'm not an actor - I just play one on T.V. = To unsubscribe, send mail to [EMAIL PROTECTED] with the word "unsubscribe" in the message body, e.g., run the command echo unsubscribe | mail [EMAIL PROTECTED]
nmap quiet mode
Hi All, I need following functionality from nmap - test presence of a service listening to a particular port without performing full connect but with TCP SYN ACK RESET and get the result in form of return status. something like following: [EMAIL PROTECTED] # nmap -sS -p 22 hostname [EMAIL PROTECTED] # echo $? 1 [EMAIL PROTECTED] # In other words - i need to get an indication from nmap about the performed scan in my script code. Parsing nmap output is not an option since nmap will be used very frequently ( each 5-10 seconds ) to test around 200 ports .. I started to write my own C code to perform tcp SYN ping .. but in case there is an option to utilize nmap it will be preferred. thanks in advance, Mike = To unsubscribe, send mail to [EMAIL PROTECTED] with the word "unsubscribe" in the message body, e.g., run the command echo unsubscribe | mail [EMAIL PROTECTED]
Re: copy boot image
On Jan 6, 2008 5:54 PM, Ofek Doron [Ofek BIZ] <[EMAIL PROTECTED]> wrote: > Tom Rosenfeld wrote: > > What is the recommended method to distributing linux images? > > There is no "recommended method" ... > maybe "partimage" (http://www.partimage.org/Main_Page) will be sufficient > for you. > > - doron > > > If I have a workstation with a tuned installation and I want to replicate > it to other workstation. The old fashion way is to open the box and > physically copy the disk with ghost. How can I do this without a > screwdriver? > > Thanks, > -tom > > Thanks for all your inputs. I think partimage and SystemRescueCd http://www.sysresccd.org are what I was looking for. I will test it out and let y'all know. -tom
Re: growisofs Makes the System Less Responsive on MDV-Cooker and kernel 2.6.24-rc6
On Sun, Jan 06, 2008 at 07:59:18PM +0200, Shlomi Fish wrote: > Hi all! > > I often used to burn CDs and DVDs on my Mandriva Cooker system without any > problems. I used the combination of the command line tools "mkisofs" > and "growisofs" to burn a DVD. > > Today I noticed that when running growisofs to burn a DVD, the system became > much less responsive: moving windows was less smooth, the "about-to-start" > bumping icons in the X cursor were slower, and the system felt more sluggish > etc. Top displayed growisofs taking about 5% of the CPU. [snip] > /dev/hda and /dev/hdb are IDE/PATA drives, while /dev/sda is a SATA > disk. /dev/hdc is an IDE DVD+RW writer. /dev/dvd is an unused CD-ROM > Reader/Writer and DVD reader. Is DMA working properly? What does hdparm say on each of them? -- Didi = To unsubscribe, send mail to [EMAIL PROTECTED] with the word "unsubscribe" in the message body, e.g., run the command echo unsubscribe | mail [EMAIL PROTECTED]
Re: Borrowing an Ethernet Card
On Sunday, 6 בJanuary 2008, Shlomi Fish wrote: > I have the following networking bug on my Linux computer: > http://community.livejournal.com/shlomif_tech/3938.html > ... > So I'm asking if anyone here has a working 100 Mbps Ethernet card that he > can lend me so I can temporarily replace it in my machine, A. Shlomi, a no-name Ethernet card (e.g: those pesky RTL* based) cost about the same as a movie ticket. In the time you spend posting and waiting for answers you could have had a new hardware (which may be usable in the future for other purposes). B. And from reading the page you pointed to, I truly couldn't see your diagnostic problem: 1. You say you have another (non-Linux?) host on the same LAN that has no connection problems. 2. Why don't you try to connect from this host to your Linux box? E.g: putty from Windows to Linux. Or Knoppix-boot it and test copying a large file to/from your Mandriva box. 3. If this works -- network card is OK and you have a software problem. Otherwise, you may continue testing between the two hosts you control. E.g: running wireshark on both boxen. Cheers, -- Oron Peled Voice/Fax: +972-4-8228492 [EMAIL PROTECTED] http://www.actcom.co.il/~oron ICQ UIN: 16527398 "Unix is simple. It just takes a genius to understand its simplicity" (Dennis Ritchie) To unsubscribe, send mail to [EMAIL PROTECTED] with the word "unsubscribe" in the message body, e.g., run the command echo unsubscribe | mail [EMAIL PROTECTED]
Re: nmap quiet mode
On Sun, 6 Jan 2008, Mike Kemelmakher wrote: Hi All, I need following functionality from nmap - test presence of a service listening to a particular port without performing full connect but with TCP SYN ACK RESET If you don't want a full TCP handshake why not use hping, something like: hping -c 5 -S hostname -p 22 if [ $? -eq 0 ]; then .. fi -- - Josh = To unsubscribe, send mail to [EMAIL PROTECTED] with the word "unsubscribe" in the message body, e.g., run the command echo unsubscribe | mail [EMAIL PROTECTED]
Re: nmap quiet mode
10x. as far as i can see it is not working for localhost for some reason ... and i need to test ports on the same host as well as on remote hosts. -Mike Josh Amishav-Zlatin wrote: On Sun, 6 Jan 2008, Mike Kemelmakher wrote: Hi All, I need following functionality from nmap - test presence of a service listening to a particular port without performing full connect but with TCP SYN ACK RESET If you don't want a full TCP handshake why not use hping, something like: hping -c 5 -S hostname -p 22 if [ $? -eq 0 ]; then ... fi -- - Josh = To unsubscribe, send mail to [EMAIL PROTECTED] with the word "unsubscribe" in the message body, e.g., run the command echo unsubscribe | mail [EMAIL PROTECTED]
Re: nmap quiet mode
On Sun, 6 Jan 2008, Mike Kemelmakher wrote: 10x. as far as i can see it is not working for localhost for some reason ... Can you verify that the expected port is indeed available on localhost through some other means (i.e. netstat -pan, nc localhost port)? and i need to test ports on the same host as well as on remote hosts. hping should be able to handle that. -- - Josh = To unsubscribe, send mail to [EMAIL PROTECTED] with the word "unsubscribe" in the message body, e.g., run the command echo unsubscribe | mail [EMAIL PROTECTED]
nmap quiet mode
Hi All, I need following functionality from nmap - test presence of a service listening to a particular port without performing full connect but with TCP SYN ACK RESET and get the result in form of return status. something like following: [EMAIL PROTECTED] # nmap -sS -p 22 hostname [EMAIL PROTECTED] # echo $? 1 [EMAIL PROTECTED] # In other words - i need to get an indication from nmap about the performed scan in my script code. Parsing nmap output is not an option since nmap will be used very frequently ( each 5-10 seconds ) to test around 200 ports .. I started to write my own C code to perform tcp SYN ping .. but in case there is an option to utilize nmap it will be preferred. thanks in advance, Mike = To unsubscribe, send mail to [EMAIL PROTECTED] with the word "unsubscribe" in the message body, e.g., run the command echo unsubscribe | mail [EMAIL PROTECTED]
Re: Linux hardening Guide
Hi, I think that better place is OpenNA web site. Gerhard Mourani (the owner) have a nice book about linux hardening (Securing and Optimizing Linux: The Hacking Solution): http://www.openna.com/products/books.php also, take a look at http://www.puschitz.com ( werner puschitz web site/) : / /http://www.puschitz.com/SecuringLinux.shtml/ / / / / // // - doron Yigal Asnis wrote: For a beginner in this area I would suggest this tool: http://www.bastille-unix.org/ Yigal --- Noam Rathaus <[EMAIL PROTECTED]> wrote: Hi, A friend of mine asked me for a hardening guide for Linux, since my belief is that you should test rather than just harden (scan/test rather than "close the door"), I don't have something like that to give him. Since he insists I asking if any of you have a Linux Hardening Guide - it can be RedHat (i.e. flavor based) or generic one. All I could find were very basic - close all services type of hardening. He was looking for something more insightfull like how to install SELinux, PEX, etc. Anyone? -- Noam Rathaus CTO [EMAIL PROTECTED] http://www.beyondsecurity.com "Know that you are safe." Beyond Security Finalist for the "Red Herring 100 Global" Awards 2007 = To unsubscribe, send mail to [EMAIL PROTECTED] with the word "unsubscribe" in the message body, e.g., run the command echo unsubscribe | mail [EMAIL PROTECTED] Yigal Asnis need to solve math problems for the school - try my site (in hebrew) math-tool.co.il Never miss a thing. Make Yahoo your home page. http://www.yahoo.com/r/hs = To unsubscribe, send mail to [EMAIL PROTECTED] with the word "unsubscribe" in the message body, e.g., run the command echo unsubscribe | mail [EMAIL PROTECTED] P Save a tree...please don't print this e-mail/ /
Re: copy boot image
Tom Rosenfeld wrote: What is the recommended method to distributing linux images? There is no "recommended method" ... maybe "partimage" (http://www.partimage.org/Main_Page) will be sufficient for you. - doron If I have a workstation with a tuned installation and I want to replicate it to other workstation. The old fashion way is to open the box and physically copy the disk with ghost. How can I do this without a screwdriver? Thanks, -tom P Save a tree...please don't print this e-mail/ /
Re: nmap quiet mode
On Jan 6, 2008 8:37 PM, Mike Kemelmakher <[EMAIL PROTECTED]> wrote: > Hi All, > > I need following functionality from nmap - test presence of a service > listening to a particular port without performing full connect but with > TCP SYN ACK RESET > and get the result in form of return status. something like following: > > [EMAIL PROTECTED] # nmap -sS -p 22 hostname > [EMAIL PROTECTED] # echo $? > 1 > [EMAIL PROTECTED] # > > In other words - i need to get an indication from nmap about the > performed scan in my script code. > Parsing nmap output is not an option since nmap will be used very > frequently ( each 5-10 seconds ) to test around 200 ports .. > > I started to write my own C code to perform tcp SYN ping .. but in case > there is an option to utilize nmap it will be preferred. > NMAP API? http://insecure.org/nmap/nse/nse-api.html = To unsubscribe, send mail to [EMAIL PROTECTED] with the word "unsubscribe" in the message body, e.g., run the command echo unsubscribe | mail [EMAIL PROTECTED]
