[techtalk] Simple Linux Firewall
Hi! I'm building a WebDAV/DeltaV playground for a consultant on a Linux box of his -- part-time job for this part-time student. On my personal Gateway (W98 SE), I use the ZoneAlarm freeware because I have a cable modem and the Gateway is always connected to the Internet. ZoneAlarm is a firewall for the masses -- just download, install and it works without any tweaking -- or much understanding on my part. When I run the GRC Port Probe test www.grc.com) my Gateway, everything "shows" up as running in Stealth. Makes me happy. Different story on the Linux box (which has its own cable connection to the net). It's interaction should be limited to the http (for serving and surfing), kibitz, irc (X-chat and BitchX) and maybe, maybe talk. (No email -- I'm content to use Hotmail.) When I run the GRC Port Probe on the Linux box, ports 25 (SMTP) and 113 (IDENT) show up as Open. The other ports show up as Closed -- not Stealth. Is there a simple utility I can slap on this Linux box -- similar to idiot-proof ZoneAlarm -- that will put all the superfluous ports in Stealth mode? Barbara (using Linux since September 2000) PS Do I need port 113 (IDENT) for IRC? ___ techtalk mailing list [EMAIL PROTECTED] http://www.linux.org.uk/mailman/listinfo/techtalk
[techtalk] talk on RedHat 6.2
Anyone out there using this program? It just refuses to work. My /etc/inetd.conf file looks like this: talk dgram udp wait nobody.tty /usr/sbin/tcpd in.talkd - d dtalk dgram udp wait nobody.tty /usr/sbin/tcpd in.talkd - d Thanks, Barbara ___ techtalk mailing list [EMAIL PROTECTED] http://www.linux.org.uk/mailman/listinfo/techtalk
RE: [techtalk] talk on RedHat 6.2
> did you restart inetd? > > /var/log/messages should give you some hints, do a 'tail -f > /var/log/messages' and then try again. Or send us the error messages. Here's what I did: Removed d from inetd.conf file. Restarted inet daemon with kill SIGHUP . Logged on as guest on tty2 and tty3. Issued 'talk guest tty2' from tty3. Talk stalled with 'checking for invitation on caller's machine.' Got out of talk with Ctrl-C and then tried 'talk guest tty3' from tty2. Same error. Nothing shows up in the /var/log/messages file. Decided to shutdown and start from scratch. Same results. Any suggestions? Barbara ___ techtalk mailing list [EMAIL PROTECTED] http://www.linux.org.uk/mailman/listinfo/techtalk
Re: [techtalk] Gnome question
Thanks for the help! Simple question and I learned a bucketful. Great! Barbara ___ techtalk mailing list [EMAIL PROTECTED] http://www.linux.org.uk/mailman/listinfo/techtalk
[techtalk] FW: why talk didn't work
The mystery explained. Thanks to all that lent a helping hand! Barbara -Original Message- 'talk' is running now! Had a few people at the kernel-panic.org LUG installfest working on my machine, most coming to the same frustrating conclusion that I did: it doesn't work and it should. However, a guy named Jim said to try commenting out the entry in /etc/hosts.deny and it worked! From there, I back traced the problem to me! In /etc/hosts, I had an entry: 127.0.0.1 localhost.localdomain localhost And in /etc/hosts.allow: all : localhost Which does a translation from localhost to a number back to a unique name ... and gets localhost.localdomain, so it fails the allow test. To get it working, I changed the hosts entry to: 127.0.0.1 localhost localhost.localdomain Now why do I have localhost.localdomain you may wonder... Well, at some point, one of the almost-open-source projects I'm working on made reference to it in a regression test. Thanks for the responses and the assistance. Case closed. -- Rick ___ techtalk mailing list [EMAIL PROTECTED] http://www.linux.org.uk/mailman/listinfo/techtalk
[techtalk] Mr. stinky face icon in my /home/guest folder
Started up Gnome this AM. Contents of /home/guest folder include an icon (Mr. Stinky face) with a label of 'core.' Please advise. Barbara ___ techtalk mailing list [EMAIL PROTECTED] http://www.linux.org.uk/mailman/listinfo/techtalk
[techtalk] Apache on RedHat 6.2 question
When I do execute a ./configure --with-apache=/etc/httpd command I get the following error. Obviously /etc/httpd is NOT the Apache build directory. Any suggestions? checking for static Apache module support... no - Unable to locate /etc/httpd/src/include/httpd.h checking for dynamic Apache module support (via APXS)... no configure: error: You need to point --with-apache at the base Apache source code directory + exit 1 Thank you, Barbara ___ techtalk mailing list [EMAIL PROTECTED] http://www.linux.org.uk/mailman/listinfo/techtalk
RE: [techtalk] Apache on RedHat 6.2 question
> You could try --with-apxs=/path/apache/bin/apxs if you're sure apache was > built shared core, which i think rh does do. > > rebuilding apache is always an option, too. Took the apxs route -- it worked! Thank you Mandi. Barbara ___ techtalk mailing list [EMAIL PROTECTED] http://www.linux.org.uk/mailman/listinfo/techtalk
[techtalk] directory that is writable by web server process
I need to make a directory to which my web server process (httpd, I think) has read/write access. How do I go about doing this? I'm using RedHat 6.2 and Apache 1.3.12. Barbara ___ techtalk mailing list [EMAIL PROTECTED] http://www.linux.org.uk/mailman/listinfo/techtalk
RE: [techtalk] directory that is writable by web server process
> /bin/mkdir ./foo > chgrp nobody ./foo/ > chmod 770 ./foo/ Thanks so much Eric. The mod_dav module on my Apache server requires a directory that is writable by the Apache process. I tried all variations of directories and still I got "could not open the lock database" errors in the httpd error_log. Tonight -- oh happy night -- I was able to use MS Word and Web Folders on my W98 machine to edit and save an HTML document stored on my Linux box. In other words, at least one piece of the WebDAV module I've been struggling with is now working. Thanks again. I was terribly frustrated. > If at all possible you should store uploaded data into a database rather > than on the filesystem. MySQL is free, and writing some Perl code to > insert and retrieve data to and from the database via the CGI is fairly > easy. I used the Directory directive in httpd.conf to limit WebDAV (Web-based Distributed Authoring and Versioning) to the dav directory in the home/httpd/html directory. Barbara ___ techtalk mailing list [EMAIL PROTECTED] http://www.linux.org.uk/mailman/listinfo/techtalk
