From bhartm at visi.com Sun Jan 1 07:02:44 2006 From: bhartm at visi.com (Bob Hartmann) Date: Sun Jan 1 07:01:18 2006 Subject: [tclug-list] TWiki vs. everything else In-Reply-To: <20051231172052.GI29291@therub.org> References: <40956.204.212.34.10.1135898121.squirrel@lctn.org> <43B50926.5020400@visi.com> <43B50DCB.5050308@visi.com> <20051230144909.GC10099@www.ewilts.org> <43B62C61.8000705@visi.com> <20051231172052.GI29291@therub.org> Message-ID: <43B7D2F4.8060007@visi.com> You're right, Dan. I really ought to stop recommending TWiki. _It was_ *by far* the best thing alive when I put it up 4 years ago at a former employer. I did the ugly task of forcing people to use BumpyWords. (tsk,tsk, I'm editing your doc! do it right!) Hindsight, I think it caught on because I wrote 90% of everything for 2 years and my techs could search for and maybe even *find* useful info instead of phkng calling me all day. TWiki for me was simply a great way to write quick stuff quickly and to publish more format-intensive stuff consistently. then there's, mm, LDAP Plugin. Search the dreckry from yer browser? The TWiki core developers are very consistent and conservative. Good for them, I think, but wikked little tools (perl tools) like that one make me wanna take these guys seriously. I still don't know why perl is a strike against, tho, or how TWiki is any more difficult to install and configure than any mySQL/PHP thing. I can put up a TWiki in about 20 minutes.. Mm, now I should go back and read my first paragraph again. And get proficient at mySQL and PHP. perl is probably the worst language ever written.. and the most useful. I can't find the quote! Dan Rue wrote: >I just have to respond when twiki is mentioned. I think someone >recommended it a few messages ago (deleted already). As a user and >admin who is stuck on twiki, I have a few criticisms. > >The way I see it is thus: twiki was one of if not the first wiki >implimentation. That's great, way to be a leader. However, strike one, >it's perl. Strike two, it's complicated to install, set up, and use >compared to modern wikis. Strike three, it's syntax is horrid. Wiki's >have come a long way. Don't make the mistake of going wiht twiki if >you're doing a fresh wiki install today. > >I'm glad you found drupal and like it. drupal and wiki's solve >different problems (we run both at work internally *sigh*). For wikis, >i recommend mediawiki (think: wikipedia) and dokuwiki (not much >experience but I hear good things). > >Dan > > > -------------- next part -------------- An HTML attachment was scrubbed... URL: http://shadowknight.real-time.com/pipermail/tclug-list/attachments/20060101/ae397815/attachment.htm From drue at therub.org Sun Jan 1 21:21:22 2006 From: drue at therub.org (Dan Rue) Date: Sun Jan 1 21:22:25 2006 Subject: [tclug-list] TWiki vs. everything else In-Reply-To: <43B7D2F4.8060007@visi.com> References: <40956.204.212.34.10.1135898121.squirrel@lctn.org> <43B50926.5020400@visi.com> <43B50DCB.5050308@visi.com> <20051230144909.GC10099@www.ewilts.org> <43B62C61.8000705@visi.com> <20051231172052.GI29291@therub.org> <43B7D2F4.8060007@visi.com> Message-ID: <20060102032122.GJ29291@therub.org> On Sun, Jan 01, 2006 at 07:02:44AM -0600, Bob Hartmann wrote: > You're right, Dan. I really ought to stop recommending TWiki. > _It was_ *by far* the best thing alive when I put it up 4 > years ago at a former employer. I did the ugly task of forcing people > to use BumpyWords. (tsk,tsk, I'm editing your doc! do it right!) > Hindsight, I think it caught on because I wrote 90% of everything for > 2 years and my techs could search for and maybe even *find* useful > info instead of phkng calling me all day. > TWiki for me was simply a great way to write quick stuff quickly and > to publish more format-intensive stuff consistently. then there's, > mm, LDAP Plugin. Search the dreckry from yer browser? The TWiki core > developers are very consistent and conservative. Good for them, I > think, but wikked little tools (perl tools) like that one make me > wanna take these guys seriously. > I still don't know why perl is a strike against, tho, or how TWiki is > any more difficult to install and configure than any mySQL/PHP thing. > I can put up a TWiki in about 20 minutes.. Mm, now I should go back > and read my first paragraph again. And get proficient at mySQL and > PHP. > perl is probably the worst language ever written.. and the most > useful. I can't find the quote! Lol.. ok, > I still don't know why perl is a strike against, tho, ... 2 lines later.. > perl is probably the worst language ever written.. hehe.. Getting the site set up isn't too terribly bad, after you deal with cpan and 3rd party perl deps.. The worst part is once you get it set up, figuring out the namespace scope stuff. Took me a while to wrap my head around their namespaces (and by that I mean Main, TWiki, Sandbox, and then the ones that you can create). Great, so once I figure them out, they're kind of a neat way to separate your data. But then as soon as an unsuspecting user tries to link to an article in the Administration web from the Development web, it doesn't work and I get a call.. Now I'm stuck explaining namespaces to some luser. Modern wiki's are much more friendly in this respect (plus php/mysql apps really are much easier to install than perl apps), and I don't find that it's really a problem having only one namespace. Heck, the biggest wiki in the world (wikipedia) only has one namespace, and they don't seem to mind. Dan From bhartm at visi.com Mon Jan 2 18:15:14 2006 From: bhartm at visi.com (Bob Hartmann) Date: Mon Jan 2 18:16:09 2006 Subject: [tclug-list] TWiki vs. everything else In-Reply-To: <20060102032122.GJ29291@therub.org> References: <40956.204.212.34.10.1135898121.squirrel@lctn.org> <43B50926.5020400@visi.com> <43B50DCB.5050308@visi.com> <20051230144909.GC10099@www.ewilts.org> <43B62C61.8000705@visi.com> <20051231172052.GI29291@therub.org> <43B7D2F4.8060007@visi.com> <20060102032122.GJ29291@therub.org> Message-ID: <43B9C212.2020903@visi.com> Dan Rue wrote: >On Sun, Jan 01, 2006 at 07:02:44AM -0600, Bob Hartmann wrote: > > >> You're right, Dan. I really ought to stop recommending TWiki. >> _It was_ *by far* the best thing alive when I put it up 4 >> years ago at a former employer. I did the ugly task of forcing people >> to use BumpyWords. (tsk,tsk, I'm editing your doc! do it right!) >> Hindsight, I think it caught on because I wrote 90% of everything for >> 2 years and my techs could search for and maybe even *find* useful >> info instead of phkng calling me all day. >> TWiki for me was simply a great way to write quick stuff quickly and >> to publish more format-intensive stuff consistently. then there's, >> mm, LDAP Plugin. Search the dreckry from yer browser? The TWiki core >> developers are very consistent and conservative. Good for them, I >> think, but wikked little tools (perl tools) like that one make me >> wanna take these guys seriously. >> I still don't know why perl is a strike against, tho, or how TWiki is >> any more difficult to install and configure than any mySQL/PHP thing. >> I can put up a TWiki in about 20 minutes.. Mm, now I should go back >> and read my first paragraph again. And get proficient at mySQL and >> PHP. >> perl is probably the worst language ever written.. and the most >> useful. I can't find the quote! >> >> > >Lol.. ok, > > > >> I still don't know why perl is a strike against, tho, ... >> >> >2 lines later.. > > >> perl is probably the worst language ever written.. >> >> > >hehe.. > >Getting the site set up isn't too terribly bad, after you deal with cpan >and 3rd party perl deps.. The worst part is once you get it set up, >figuring out the namespace scope stuff. Took me a while to wrap my head >around their namespaces (and by that I mean Main, TWiki, Sandbox, and >then the ones that you can create). Great, so once I figure them out, >they're kind of a neat way to separate your data. But then as soon as >an unsuspecting user tries to link to an article in the Administration >web from the Development web, it doesn't work and I get a call.. Now >I'm stuck explaining namespaces to some luser. Modern wiki's are much >more friendly in this respect (plus php/mysql apps really are much >easier to install than perl apps), and I don't find that it's really a >problem having only one namespace. Heck, the biggest wiki in the world >(wikipedia) only has one namespace, and they don't seem to mind. > >Dan > > > Dan, I appreciate the conversation. I know, I know. Maybe I've been too lucky, but I've never had to do anything with perl and CPAN in putting one of these up on RH8, SuSE 9.x, debian or even KNOPPIX. I've stuck to Apache 1.3 and perl 5.8. Who needs a spurious performance bump when it'll likely give you a concussion or brain freeze? (from that statement, pretty clear that I have tried and failed with Apache2 and mod_perl.) To the question of separate TWikiWebs (namespaces)-- It was a matter of security, privacy and separated authority instead of data organization. I built that TWiki for myself and my immediate customers, the desktop techs. I wanted to make doc available to them from the EU's PC. Searchable, printable from anywhere. But I didn't want the EUs to be browsing our stuff. TWiki's authentication scheme was the only way to go at the time. Once it caught on, other functional groups in IT wanted some, but they didn't want the desktop slugs to see their stuff. fine. This is where TWiki's model of webs and groups becomes useful. I wanted concise, verifiable and accountable documentation, not in the hands of an all knowing me, but put in the hands of people who use it more. Power to the People so they stop bugging me. :-) Then I scoured their edits and sent nasty-grams. It's good to be the king. =-O HappyNewYear. bhartm From ryan.langseth at gmail.com Mon Jan 2 19:16:33 2006 From: ryan.langseth at gmail.com (Ryan Langseth) Date: Mon Jan 2 19:18:09 2006 Subject: [tclug-list] TWiki vs. everything else In-Reply-To: <43B9C212.2020903@visi.com> References: <40956.204.212.34.10.1135898121.squirrel@lctn.org> <43B50926.5020400@visi.com> <43B50DCB.5050308@visi.com> <20051230144909.GC10099@www.ewilts.org> <43B62C61.8000705@visi.com> <20051231172052.GI29291@therub.org> <43B7D2F4.8060007@visi.com> <20060102032122.GJ29291@therub.org> <43B9C212.2020903@visi.com> Message-ID: Twiki is not bad if you don't have to set it up. Just don't try it with certain versions of Apache2 (all, maybe), it has major issues rendering pages. I actually liked the namespaces, it allowed us to share the public information without showing the proprietary data about our system. Unfortunately our twiki is deprecated since we switched to rhel3 (ew) and apache2, in fact today we basically got the machine DoSed by a couple of googlebots(my university's and google's decided to crawl it today) We have now switched to dokuwiki which has allot of nice features: php, flat file, namespaces, mediawiki syntax, and AJAX(pretty blinking lights for the powers that be). -Ryan On 1/2/06, Bob Hartmann wrote: > > > > Dan Rue wrote: > > >On Sun, Jan 01, 2006 at 07:02:44AM -0600, Bob Hartmann wrote: > > > > > >> You're right, Dan. I really ought to stop recommending TWiki. > >> _It was_ *by far* the best thing alive when I put it up 4 > >> years ago at a former employer. I did the ugly task of forcing > people > >> to use BumpyWords. (tsk,tsk, I'm editing your doc! do it right!) > >> Hindsight, I think it caught on because I wrote 90% of everything for > >> 2 years and my techs could search for and maybe even *find* useful > >> info instead of phkng calling me all day. > >> TWiki for me was simply a great way to write quick stuff quickly and > >> to publish more format-intensive stuff consistently. then there's, > >> mm, LDAP Plugin. Search the dreckry from yer browser? The TWiki > core > >> developers are very consistent and conservative. Good for them, I > >> think, but wikked little tools (perl tools) like that one make me > >> wanna take these guys seriously. > >> I still don't know why perl is a strike against, tho, or how TWiki is > >> any more difficult to install and configure than any mySQL/PHP thing. > >> I can put up a TWiki in about 20 minutes.. Mm, now I should go back > >> and read my first paragraph again. And get proficient at mySQL and > >> PHP. > >> perl is probably the worst language ever written.. and the most > >> useful. I can't find the quote! > >> > >> > > > >Lol.. ok, > > > > > > > >> I still don't know why perl is a strike against, tho, ... > >> > >> > >2 lines later.. > > > > > >> perl is probably the worst language ever written.. > >> > >> > > > >hehe.. > > > >Getting the site set up isn't too terribly bad, after you deal with cpan > >and 3rd party perl deps.. The worst part is once you get it set up, > >figuring out the namespace scope stuff. Took me a while to wrap my head > >around their namespaces (and by that I mean Main, TWiki, Sandbox, and > >then the ones that you can create). Great, so once I figure them out, > >they're kind of a neat way to separate your data. But then as soon as > >an unsuspecting user tries to link to an article in the Administration > >web from the Development web, it doesn't work and I get a call.. Now > >I'm stuck explaining namespaces to some luser. Modern wiki's are much > >more friendly in this respect (plus php/mysql apps really are much > >easier to install than perl apps), and I don't find that it's really a > >problem having only one namespace. Heck, the biggest wiki in the world > >(wikipedia) only has one namespace, and they don't seem to mind. > > > >Dan > > > > > > > Dan, I appreciate the conversation. > > I know, I know. Maybe I've been too lucky, but I've never had to do > anything with perl and CPAN in putting one of these up on RH8, SuSE 9.x, > debian or even KNOPPIX. I've stuck to Apache 1.3 and perl 5.8. Who > needs a spurious performance bump when it'll likely give you a > concussion or brain freeze? (from that statement, pretty clear that I > have tried and failed with Apache2 and mod_perl.) > > To the question of separate TWikiWebs (namespaces)-- It was a matter of > security, privacy and separated authority instead of data organization. > I built that TWiki for myself and my immediate customers, the desktop > techs. I wanted to make doc available to them from the EU's PC. > Searchable, printable from anywhere. But I didn't want the EUs to be > browsing our stuff. TWiki's authentication scheme was the only way to > go at the time. Once it caught on, other functional groups in IT wanted > some, but they didn't want the desktop slugs to see their stuff. fine. > This is where TWiki's model of webs and groups becomes useful. I > wanted concise, verifiable and accountable documentation, not in the > hands of an all knowing me, but put in the hands of people who use it > more. Power to the People so they stop bugging me. :-) > Then I scoured their edits and sent nasty-grams. It's good to be the > king. =-O > > HappyNewYear. > bhartm > > _______________________________________________ > TCLUG Mailing List - Minneapolis/St. Paul, Minnesota > tclug-list@mn-linux.org > http://mailman.mn-linux.org/mailman/listinfo/tclug-list > -------------- next part -------------- An HTML attachment was scrubbed... URL: http://shadowknight.real-time.com/pipermail/tclug-list/attachments/20060102/3f3a1860/attachment.htm From scheides at iexposure.com Tue Jan 3 12:04:20 2006 From: scheides at iexposure.com (Chris Scheidecker) Date: Tue Jan 3 12:06:10 2006 Subject: [tclug-list] OT: any cisco experts in the house? In-Reply-To: References: Message-ID: <200601031204.20999.scheides@iexposure.com> On Wednesday 28 December 2005 10:25 am, Erik Anderson wrote: > On 12/28/05, Mark J. Kroska wrote: > > Erik-- > > As long as you have enough free interfaces to handle the T-1s you should > > be fine -- conditionally. > > Generally the issue is the amount of RAM needed to do routing long before > > CPU power. > > If you are doing static routing you should be more than fine...you could > > probably have 8 or more T-1s without running low on CPU resources. > > If you were doing dynamic routing the CPU still may not be getting > > hammered, again the RAM would be the limiting factor. (Dynamic routing > > meaning RIP, OSPF, BGP, etc. The more complex the routing tables, the > > more CPU power you need) > > I've successfully run 2 T-1s with a 'light' BGP load with 64MB RAM before > > (in a staging environment), and it barely scratched the CPU, where the > > RAM was nearly fully utilized. > > Out of curiosity, how much RAM does the unit have? What type of > > interfaces will you be terminating with? > > Will any of the T-1s be bonded/multiplexed or channelized? > > > > Another factor to consider if you don't have the interfaces purchased: > > not all T-1 interfaces work with all levels of firmware. I ran into an > > issue with a newer WIC and an older firmware--it wouldn't even detect it! > > Thanks for the info, Mark. In our case, we'll be using one 2651 to > terminate all the T1s, which will then connect to a second 2651 which > will do the routing. For the time being, it's all static routing. You should be fine, however there are circumstances that may arise that could cause you trouble. I have a similar setup (2610XM) and I'm doing BGP and Multilink on. Normally everything is fine, but recently we experienced a DDOS SYN flood attack. My router was swamped, memory useage was fine, but processor useage maxed out due to the large number of packets. Just something to keep in mind. -scheides From clindholm at bigfoot.com Tue Jan 3 21:16:30 2006 From: clindholm at bigfoot.com (Carl Lindholm) Date: Wed Jan 4 11:09:29 2006 Subject: [tclug-list] chart of accounts in gnucash Message-ID: <43BB3E0E.8090601@bigfoot.com> How do I get alisting of a chart of account numbers is guncash. I need this informantion. -- Carl Lindholm 206 Maryknoll Drive Stillwater,Mn 55082 Home (651) 439-8710 Cell (612) 327-5037 To fly one must throw them self at the ground really hard and miss. The ride is the objective, the destination the mere excuse. :>) From barnabas at knicknack.net Thu Jan 5 12:22:58 2006 From: barnabas at knicknack.net (Eric Stanley) Date: Thu Jan 5 12:24:12 2006 Subject: [tclug-list] Calling Perl script from PHP script Message-ID: <43BD6402.9040300@knicknack.net> I am writing a web application where I'd like to call a Perl script from a PHP script. The reason I'm doing this is because I sometimes use the Perl script stand-alone and would rather not re-code the whole thing in PHP. What happens is that I get a permission denied message in my Apache logs. I tried a simple script that only prints out a short string and was able to get it to work as long as it was in the same directory as the PHP script. However, when I put my more complex script in the same directory as the PHP script I get the permission denied message. I suspect it has something to do with the complex script loading modules. Any ideas how to get this to work? Versions: OS: Centos 4 (no SE-Linux) Apache: v2.0.52 PHP: v4.3.9 Perl: v5.8.5 Thanks, Eric From jrkbiz at sihope.com Thu Jan 5 07:53:28 2006 From: jrkbiz at sihope.com (John Kuster) Date: Thu Jan 5 13:08:18 2006 Subject: [tclug-list] chart of accounts in gnucash (Carl Lindholm) Message-ID: <20060105134725.M89544@sihope.com> The GnuCash chart-of-accounts can be viewed by clicking "File" => "New Account Tree." You then click on the "Assets", "Liabilities", etc. to see the accounts you've created inside. I don't think GnuCash comes with a "standard" chart-of-accounts, so you will need to create one. You create accounts by clicking "File" => "New Account." John R Kuster, CPA jkuster@sihope.com -- Sihope Communications - The Twin Cities' FIRST all digital, all x2/56k ISP. Tired of Spam - Try an ISP with a solution - http://marvin.sihope.com From crumley at belka.space.umn.edu Thu Jan 5 13:29:31 2006 From: crumley at belka.space.umn.edu (Jim Crumley) Date: Thu Jan 5 13:30:12 2006 Subject: [tclug-list] Calling Perl script from PHP script In-Reply-To: <43BD6402.9040300@knicknack.net> References: <43BD6402.9040300@knicknack.net> Message-ID: <20060105132931.A25467@pchelka.space.umn.edu> On Thu, Jan 05, 2006 at 12:22:58PM -0600, Eric Stanley wrote: > I am writing a web application where I'd like to call a Perl script from > a PHP script. The reason I'm doing this is because I sometimes use the > Perl script stand-alone and would rather not re-code the whole thing in > PHP. What happens is that I get a permission denied message in my Apache > logs. > > I tried a simple script that only prints out a short string and was able > to get it to work as long as it was in the same directory as the PHP > script. However, when I put my more complex script in the same directory > as the PHP script I get the permission denied message. I suspect it has > something to do with the complex script loading modules. Does this complicated script touch any files? My guess is that the web server user doesn't have permissions to read or write some file that is needed. Try changing to the web server user (which is www-data on my systems, but may vary) and run the script from a shell that way and see if it works. -- Jim Crumley |Twin Cities Linux Users Group Mailing List (TCLUG) Ruthless Debian Zealot |http://www.mn-linux.org/ Never laugh at live dragons | From barnabas at knicknack.net Fri Jan 6 12:21:13 2006 From: barnabas at knicknack.net (Eric Stanley) Date: Fri Jan 6 12:22:13 2006 Subject: [tclug-list] Calling Perl script from PHP script In-Reply-To: References: <43BD6402.9040300@knicknack.net> Message-ID: <43BEB519.5030100@knicknack.net> Richard Harding wrote: > > On Jan 5, 2006, at 1:22 PM, Eric Stanley wrote: > >> I am writing a web application where I'd like to call a Perl script >> from a PHP script. The reason I'm doing this is because I sometimes >> use the Perl script stand-alone and would rather not re-code the >> whole thing in PHP. What happens is that I get a permission denied >> message in my Apache logs. >> >> I tried a simple script that only prints out a short string and was >> able to get it to work as long as it was in the same directory as >> the PHP script. However, when I put my more complex script in the >> same directory as the PHP script I get the permission denied >> message. I suspect it has something to do with the complex script >> loading modules. >> >> Any ideas how to get this to work? > > > The script must be executable by the user your web server runs under. > Is the script executable by nobody or whatever user CentOS uses? > > Rick > For testing purposes the script is executable by everyone. I have also tried calling it by passing it and its arguments as arguments to perl itself. From admin at lctn.org Fri Jan 6 14:35:48 2006 From: admin at lctn.org (Raymond Norton) Date: Fri Jan 6 14:36:13 2006 Subject: [tclug-list] need proper mount command for cdwriter Message-ID: <37054.64.8.148.14.1136579748.squirrel@lctn.org> Found a doc to mount cdwriters, but it is not working for me. What would be the proper syntax for a usb burner showing up as /dev/scd0? Raymond From strayf at freeshell.org Fri Jan 6 18:04:15 2006 From: strayf at freeshell.org (Steve Cayford) Date: Fri Jan 6 18:06:13 2006 Subject: [tclug-list] Calling Perl script from PHP script In-Reply-To: <43BEB519.5030100@knicknack.net> References: <43BD6402.9040300@knicknack.net> <43BEB519.5030100@knicknack.net> Message-ID: <20060107000415.GA18137@crito> On Fri, Jan 06, 2006 at 12:21:13PM -0600, Eric Stanley wrote: [...] > For testing purposes the script is executable by everyone. I have also > tried calling it by passing it and its arguments as arguments to perl > itself. Do you have any restrictive permissions on the directories your perl modules are in? Or is the include path different for the apache user (look in @INC)? -Steve From jeff.rasmussen at gmail.com Fri Jan 6 18:41:51 2006 From: jeff.rasmussen at gmail.com (Jeff Rasmussen) Date: Fri Jan 6 18:42:14 2006 Subject: [tclug-list] need proper mount command for cdwriter In-Reply-To: <37054.64.8.148.14.1136579748.squirrel@lctn.org> References: <37054.64.8.148.14.1136579748.squirrel@lctn.org> Message-ID: <9d6c82530601061641j601a4421xb5cbb98fe5b5a59d@mail.gmail.com> If sudo is set up: sudo mount /dev/scd0 /mnt otherwise run as root: mount /dev/scd0 /mnt Only root will be able to view contents unless you use a bunch of switches. On 1/6/06, Raymond Norton wrote: > > Found a doc to mount cdwriters, but it is not working for me. What would > be the proper syntax for a usb burner showing up as /dev/scd0? > > > Raymond > > _______________________________________________ > TCLUG Mailing List - Minneapolis/St. Paul, Minnesota > tclug-list@mn-linux.org > http://mailman.mn-linux.org/mailman/listinfo/tclug-list > -- Jeff Rasmussen GPG public key 0x9686C12F -------------- next part -------------- An HTML attachment was scrubbed... URL: http://shadowknight.real-time.com/pipermail/tclug-list/attachments/20060106/bcb5f567/attachment.htm From sfertch at gmail.com Fri Jan 6 19:07:50 2006 From: sfertch at gmail.com (Shawn Fertch) Date: Fri Jan 6 19:08:13 2006 Subject: [tclug-list] need proper mount command for cdwriter In-Reply-To: <9d6c82530601061641j601a4421xb5cbb98fe5b5a59d@mail.gmail.com> References: <37054.64.8.148.14.1136579748.squirrel@lctn.org> <9d6c82530601061641j601a4421xb5cbb98fe5b5a59d@mail.gmail.com> Message-ID: <67f3084a0601061707t2024fb81q87707c4b9a96162c@mail.gmail.com> On 1/6/06, Jeff Rasmussen wrote: > > If sudo is set up: > sudo mount /dev/scd0 /mnt > > otherwise run as root: > mount /dev/scd0 /mnt > > Only root will be able to view contents unless you use a bunch of > switches. > Is the system available for mounting USB devices? If not, he'll need to either load the modules or compile into the kernel. A more preferable method is to change the options within the /etc/fstab file from "owner" to "user" so that a non-admin user can use it. Something similar to: /dev/scd0 /usbcdrw iso9660 noauto,user,exec 0 0 Syntax could be wrong, as I have never attempted to mount a USB CD-Rom device. BTW, if the CD-Rom has blank media in it you won't be able to mount it. It's treated just as if he's trying to mount a CD-Rom drive without media. -- -Shawn -Nemo me impune lacessit. Ne Obliviscaris.. -------------- next part -------------- An HTML attachment was scrubbed... URL: http://shadowknight.real-time.com/pipermail/tclug-list/attachments/20060106/a1db5634/attachment.htm From seg at haxxed.com Mon Jan 9 02:43:42 2006 From: seg at haxxed.com (Callum Lerwick) Date: Mon Jan 9 02:44:16 2006 Subject: [tclug-list] windows 'upgrade' In-Reply-To: <2c6699da0512271940m7398821bxf8e573705c8fa278@mail.gmail.com> References: <3436983.1135719691401.JavaMail.root@mail.worldcycling.com> <65293fcc0512271720t7457cbe8n898faaaecf729ebb@mail.gmail.com> <43B20443.8050205@bolverk.net> <2c6699da0512271940m7398821bxf8e573705c8fa278@mail.gmail.com> Message-ID: <1136796223.18058.30.camel@localhost.localdomain> > linux can't write to NTFS safely, Actually it can, with various limitations, if you're running a 2.6 kernel. But it is safe. 2.6.15 in particular has greatly improved NTFS: http://lkml.org/lkml/2005/10/31/120 -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 189 bytes Desc: This is a digitally signed message part Url : http://shadowknight.real-time.com/pipermail/tclug-list/attachments/20060109/0cd7e668/attachment.pgp From andyzib at gmail.com Tue Jan 10 16:47:00 2006 From: andyzib at gmail.com (Andrew Zbikowski) Date: Tue Jan 10 19:00:18 2006 Subject: [tclug-list] windows 'upgrade' In-Reply-To: <1136796223.18058.30.camel@localhost.localdomain> References: <3436983.1135719691401.JavaMail.root@mail.worldcycling.com> <65293fcc0512271720t7457cbe8n898faaaecf729ebb@mail.gmail.com> <43B20443.8050205@bolverk.net> <2c6699da0512271940m7398821bxf8e573705c8fa278@mail.gmail.com> <1136796223.18058.30.camel@localhost.localdomain> Message-ID: If you're used to Windows 98, you probally won't notice much of a difference between WinXP Home and Pro. You can do alot more with WinXP Pro, and Microsoft will activily support WinXP Pro for much longer than they will WinXP Home. New patches/service packs for WinXP Home will probally end within a couple years of Windows Vista being released. I belive WinXP Pro will be supported until 2011. That said, it's fairly easy to restore grub using a Knoppix disk, but not quite as easy as using your Fedora Rescue CD. With Knoppix: Pop in the Knoppix CD. At the prompt, knoppix 2 should kick you into text only mode. Once booted, mount up your linux partitions. mount -t ext3 /dev/hda5 /mnt mount -t ext3 /dev/hda6 /mnt/home However you partitioned your disk. Now with your linux partitions mounted (under Knoppix), run the following commands: grub-install --no-floppy --root-directory=/mnt/boot/grub /dev/hda You may get some floppy I/O errors even if you do specify --no-floppy (I did on 11/10/04 when I last did this...), but as long as you get a "Completed with no errors" type message, you are set. You should get your grub menu when you reboot. -- Andrew S. Zbikowski | http://andy.zibnet.us SELECT * FROM users WHERE clue >0; 0 rows returned From ewilts at ewilts.org Tue Jan 10 20:19:56 2006 From: ewilts at ewilts.org (Ed Wilts) Date: Tue Jan 10 20:38:19 2006 Subject: [tclug-list] windows 'upgrade' In-Reply-To: References: <3436983.1135719691401.JavaMail.root@mail.worldcycling.com> <65293fcc0512271720t7457cbe8n898faaaecf729ebb@mail.gmail.com> <43B20443.8050205@bolverk.net> <2c6699da0512271940m7398821bxf8e573705c8fa278@mail.gmail.com> <1136796223.18058.30.camel@localhost.localdomain> Message-ID: <20060111021956.GA2491@www.ewilts.org> On Tue, Jan 10, 2006 at 04:47:00PM -0600, Andrew Zbikowski wrote: > If you're used to Windows 98, you probally won't notice much of a > difference between WinXP Home and Pro. You can do alot more with WinXP > Pro, and Microsoft will activily support WinXP Pro for much longer > than they will WinXP Home. One of the key differences is the support for multiple CPUs. XP Home only supports 1... If you're a Linux user used to having an smp kernel, forget about it with XP Home. .../Ed -- Ed Wilts, RHCE Mounds View, MN, USA mailto:ewilts@ewilts.org Member #1, Red Hat Community Ambassador Program From bhartm at visi.com Tue Jan 10 21:42:39 2006 From: bhartm at visi.com (Bob Hartmann) Date: Tue Jan 10 21:42:17 2006 Subject: [tclug-list] need proper mount command for cdwriter In-Reply-To: <37054.64.8.148.14.1136579748.squirrel@lctn.org> References: <37054.64.8.148.14.1136579748.squirrel@lctn.org> Message-ID: <43C47EAF.1020604@visi.com> Just a thought: mount -t vfat /dev/sda1 /mnt//(whatever)/ Maybe the burner expects to be used like any other USB storage, like my cruzer. I don't know how the the thing, /dev/scd0, is "showing up." lsusb or usbview or what? Raymond Norton wrote: >Found a doc to mount cdwriters, but it is not working for me. What would >be the proper syntax for a usb burner showing up as /dev/scd0? > > >Raymond > >_______________________________________________ >TCLUG Mailing List - Minneapolis/St. Paul, Minnesota >tclug-list@mn-linux.org >http://mailman.mn-linux.org/mailman/listinfo/tclug-list > > > From bhartm at visi.com Tue Jan 10 21:44:59 2006 From: bhartm at visi.com (Bob Hartmann) Date: Tue Jan 10 21:47:59 2006 Subject: [tclug-list] need proper mount command for cdwriter In-Reply-To: <43C47EAF.1020604@visi.com> References: <37054.64.8.148.14.1136579748.squirrel@lctn.org> <43C47EAF.1020604@visi.com> Message-ID: <43C47F3B.60900@visi.com> oops, I italicized some of that and sent in plain text. (whatever). Bob Hartmann wrote: > Just a thought: > mount -t vfat /dev/sda1 /mnt//(whatever)/ > Maybe the burner expects to be used like any other USB storage, like > my cruzer. I don't know how the the thing, /dev/scd0, is "showing > up." lsusb or usbview or what? > > Raymond Norton wrote: > >> Found a doc to mount cdwriters, but it is not working for me. What would >> be the proper syntax for a usb burner showing up as /dev/scd0? >> >> >> Raymond >> >> _______________________________________________ >> TCLUG Mailing List - Minneapolis/St. Paul, Minnesota >> tclug-list@mn-linux.org >> http://mailman.mn-linux.org/mailman/listinfo/tclug-list >> >> >> > From bhartm at visi.com Tue Jan 10 22:31:16 2006 From: bhartm at visi.com (Bob Hartmann) Date: Tue Jan 10 22:30:18 2006 Subject: [tclug-list] Apache1.3/Debian/Cisco 675 In-Reply-To: <43C47F3B.60900@visi.com> References: <37054.64.8.148.14.1136579748.squirrel@lctn.org> <43C47EAF.1020604@visi.com> <43C47F3B.60900@visi.com> Message-ID: <43C48A14.4050702@visi.com> I'm stuck! Is my router hosed or am I undermisinformed on debian's security? I've been NAT-ing port 80 for six years to Windows, Solaris, SuSE and others. Not debian. Is debian the problem? My ex gf's iMac gladly served some web. Now I'm failing and I don't know why. This is why I question the debian Apache package. Thanks to some outside trouble-shooting buddies, I've determined that SSH does work as expected through NAT, but no web. CRAP! is port 80 a no-no? From sraun at fireopal.org Wed Jan 11 09:45:05 2006 From: sraun at fireopal.org (Scott Raun) Date: Wed Jan 11 09:46:19 2006 Subject: [tclug-list] Apache1.3/Debian/Cisco 675 In-Reply-To: <43C48A14.4050702@visi.com> References: <37054.64.8.148.14.1136579748.squirrel@lctn.org> <43C47EAF.1020604@visi.com> <43C47F3B.60900@visi.com> <43C48A14.4050702@visi.com> Message-ID: <20060111154505.GB21324@fireopal.org> On Tue, Jan 10, 2006 at 10:31:16PM -0600, Bob Hartmann wrote: > > I'm stuck! > Is my router hosed or am I undermisinformed on debian's security? > > I've been NAT-ing port 80 for six years to Windows, Solaris, SuSE and > others. Not debian. Is debian the problem? My ex gf's iMac gladly > served some web. Now I'm failing and I don't know why. This is why I > question the debian Apache package. Thanks to some outside > trouble-shooting buddies, I've determined that SSH does work as expected > through NAT, but no web. CRAP! is port 80 a no-no? My Cisco {mumble} DSL device is NATting Port 80 to be served by Apache on Debian, been working fine for five or six years now. -- Scott Raun sraun@fireopal.org From bhartm at visi.com Wed Jan 11 19:35:42 2006 From: bhartm at visi.com (Bob Hartmann) Date: Wed Jan 11 19:30:20 2006 Subject: [tclug-list] Apache1.3/Debian/Cisco 675 In-Reply-To: <20060111154505.GB21324@fireopal.org> References: <37054.64.8.148.14.1136579748.squirrel@lctn.org> <43C47EAF.1020604@visi.com> <43C47F3B.60900@visi.com> <43C48A14.4050702@visi.com> <20060111154505.GB21324@fireopal.org> Message-ID: <43C5B26E.3060001@visi.com> Thanks guys. I set an entry for a different port and changed the port directive in httpd.conf and that went through. Firewall, I guess. Not that I ever configured one.. Scott Raun wrote: >On Tue, Jan 10, 2006 at 10:31:16PM -0600, Bob Hartmann wrote: > > >>I'm stuck! >>Is my router hosed or am I undermisinformed on debian's security? >> >>I've been NAT-ing port 80 for six years to Windows, Solaris, SuSE and >>others. Not debian. Is debian the problem? My ex gf's iMac gladly >>served some web. Now I'm failing and I don't know why. This is why I >>question the debian Apache package. Thanks to some outside >>trouble-shooting buddies, I've determined that SSH does work as expected >>through NAT, but no web. CRAP! is port 80 a no-no? >> >> > >My Cisco {mumble} DSL device is NATting Port 80 to be served by Apache >on Debian, been working fine for five or six years now. > > > From slinabery at worldcycling.com Wed Jan 11 10:27:33 2006 From: slinabery at worldcycling.com (Steve Linabery) Date: Thu Jan 12 09:26:08 2006 Subject: [tclug-list] windows 'upgrade' In-Reply-To: <28675117.1136941461281.JavaMail.root@mail.worldcycling.com> References: <3436983.1135719691401.JavaMail.root@mail.worldcycling.com> <65293fcc0512271720t7457cbe8n898faaaecf729ebb@mail.gmail.com> <43B20443.8050205@bolverk.net> <2c6699da0512271940m7398821bxf8e573705c8fa278@mail.gmail.com> <1136796223.18058.30.camel@localhost.localdomain> <28675117.1136941461281.JavaMail.root@mail.worldcycling.com> Message-ID: <3354940.1136996853560.JavaMail.root@mail.worldcycling.com> On Tue, Jan 10, 2006 at 04:47:00PM -0600, Andrew Zbikowski wrote: > > However you partitioned your disk. > I just want to make it clear to anyone who has been reading this thread that I am *not* repartitioning anything. My current setup is FC3 on one device, Win98SE on a second device. I am replacing the Win98SE HDD and installing WinXP on a shiny new HDD with the other drives disconnected (because I am superstitious about Windows, I don't even want my other drives on the bus during the install). Then I will reconnect the FC3 disk and get things booting. Then I will connect the old windows disk, dump that drive's contents (12GB) onto the FC3 disk for storage, and then use the old windows disk for transfers between WinXP and linux. Thanks all. -- Steve Linabery B94B C3C7 8A27 FF09 3C9D E992 5A20 2492 D5F5 EE51 This electronic message transmission contains information from the sender's organization that may be proprietary, confidential and/or privileged. The information is intended only for the use of the individual(s) or entity named above. If you are not the intended recipient, be aware that any disclosure, copying or distribution or use of the contents of this information is prohibited. If you have received this electronic transmission in error, please notify the sender immediately by replying to the address listed in the "From:" From slinabery at worldcycling.com Thu Jan 12 08:13:14 2006 From: slinabery at worldcycling.com (Steve Linabery) Date: Thu Jan 12 09:26:10 2006 Subject: [tclug-list] moderator approval Message-ID: <7210478.1137075199397.JavaMail.root@mail.worldcycling.com> Hi, Sorry to clutter the list with this. My recent postings to the list generate an autoresponse saying that I am not a member of the list and my message is awaiting moderator approval. Why is this? Do I need to go to an installfest and learn a secret handshake or something? Just curious. -- Steve Linabery B94B C3C7 8A27 FF09 3C9D E992 5A20 2492 D5F5 EE51 This electronic message transmission contains information from the sender's organization that may be proprietary, confidential and/or privileged. The information is intended only for the use of the individual(s) or entity named above. If you are not the intended recipient, be aware that any disclosure, copying or distribution or use of the contents of this information is prohibited. If you have received this electronic transmission in error, please notify the sender immediately by replying to the address listed in the "From:" From erikerik at gmail.com Thu Jan 12 09:33:41 2006 From: erikerik at gmail.com (Erik Anderson) Date: Thu Jan 12 09:34:20 2006 Subject: [tclug-list] moderator approval In-Reply-To: <7210478.1137075199397.JavaMail.root@mail.worldcycling.com> References: <7210478.1137075199397.JavaMail.root@mail.worldcycling.com> Message-ID: On 1/12/06, Steve Linabery wrote: > Hi, > > Sorry to clutter the list with this. My recent postings to the list generate an autoresponse > saying that I am not a member of the list and my message is awaiting moderator approval. > > Why is this? Do I need to go to an installfest and learn a secret handshake or something? This list is a subscriber-only list, so in order to post to the list, you need to send from the exact email address you're subscribed from. If you weren't doing this, that would cause a "moderator approval" message. From rick at real-time.com Thu Jan 12 09:53:31 2006 From: rick at real-time.com (Rick Tanner) Date: Thu Jan 12 09:54:19 2006 Subject: [tclug-list] moderator approval In-Reply-To: <7210478.1137075199397.JavaMail.root@mail.worldcycling.com> References: <7210478.1137075199397.JavaMail.root@mail.worldcycling.com> Message-ID: <200601120953.32179.rick@real-time.com> On Thursday 12 January 2006 08:13 am, Steve Linabery wrote: > > Sorry to clutter the list with this. My recent postings to the list > generate an autoresponse saying that I am not a member of the list and my > message is awaiting moderator approval. > > Why is this? Do I need to go to an installfest and learn a secret handshake > or something? If the sender's email address is /not/ subscribed to the list, then posts are held for moderator approval. Is the (exact) email address that you are sending from subscribed to the mailing list? Do you have any email aliases setup that may be redirecting or routing email between two (or more) addresses? Please contact me off-list for any specific questions, etc. Thanks! -- Rick Tanner | Phone : (952) 943-8700 http://www.real-time.com | Fax : (952) 943-8500 From andyzib at gmail.com Thu Jan 12 17:14:10 2006 From: andyzib at gmail.com (Andrew Zbikowski) Date: Thu Jan 12 19:08:21 2006 Subject: [tclug-list] RAID questions In-Reply-To: <307a337f0512270455k14b7baecu598753acd2d6bc5@mail.gmail.com> References: <43A89121.2060908@trutwins.homeip.net> <20051221174140.GA6164@mail.el-swifto.com> <43A9B207.8050008@trutwins.homeip.net> <307a337f0512270455k14b7baecu598753acd2d6bc5@mail.gmail.com> Message-ID: I've deployed two Dell servers running Linux lately. I opted for the hardware raid card and the remote managment card. Both have been worth every extra penny spent. :-) But if you can't afford the extra hardware, software raid will do well. Ideally for a RAID1 you want to have each drive on a seperate SCSI or ATA channel, though it's definitly not required. I ran a Linux server with software RAID1 for some time. It worked out quite well, but I didn't boot off the RAID. Having done it both ways, I perfer the hardware route. It's just one less thing to muck around with. :) -- Andrew S. Zbikowski | http://andy.zibnet.us SELECT * FROM users WHERE clue >0; 0 rows returned From kevin.lombardo at gmail.com Fri Jan 13 10:59:45 2006 From: kevin.lombardo at gmail.com (Kevin Lombardo) Date: Fri Jan 13 11:00:21 2006 Subject: [tclug-list] debian install problem Message-ID: Hello- I'm trying to do a net install of Debian on an HP Pavilion ZV5120US laptop. I've downloaded the latest stable version for this install. I get through the initial setup alright, but when I try to boot, I get a segfault and then an error: pivot_root: No such file or directory. I think this is a problem with the the hdd driver. It's IDE, so I would have thought it would be fine. Maybe there is something different with HP laptops. Anyway, as I understand it, initrd is mounting the root filesystem. If that's the case, then that's where the problem lies - initrd doesn't have a proper driver for the IDE controller. So I think I need the do the following: 1. find a driver for this laptop 2. modify initrd to load this driver before mounting the root filesystem Does this sound right? And does anyone have any suggestions or experience with this hardware? Thanks! Kevin -------------- next part -------------- An HTML attachment was scrubbed... URL: http://shadowknight.real-time.com/pipermail/tclug-list/attachments/20060113/82fe0729/attachment.htm From tmarble at info9.net Fri Jan 13 11:12:08 2006 From: tmarble at info9.net (Tom Marble) Date: Fri Jan 13 11:12:22 2006 Subject: [tclug-list] debian install problem In-Reply-To: References: Message-ID: <43C7DF68.6050108@info9.net> Kevin Lombardo wrote: > I'm trying to do a net install of Debian on an HP Pavilion ZV5120US > laptop. I've downloaded the latest stable version for this install. I > get through the initial setup alright, but when I try to boot, I get a > segfault and then an error: Have you tried the newer debian installer? http://www.debian.org/devel/debian-installer/ http://d-i.alioth.debian.org/manual/en.i386/index.html HTH, --Tom From jonathon.jongsma at gmail.com Fri Jan 13 12:37:46 2006 From: jonathon.jongsma at gmail.com (Jonathon Jongsma) Date: Fri Jan 13 12:38:20 2006 Subject: [tclug-list] debian install problem In-Reply-To: <43C7DF68.6050108@info9.net> References: <43C7DF68.6050108@info9.net> Message-ID: If you don't care if it's officially Debian and just want a debian-like system, you could also try Ubuntu. I've had very good luck with Ubuntu Breezy on my HP ZV6130 laptop (I'm not sure what the differences are with the ZV5000 series). And it's a really nice desktop distribution with pretty good laptop support. Jonathon On 1/13/06, Tom Marble wrote: > Kevin Lombardo wrote: > > I'm trying to do a net install of Debian on an HP Pavilion ZV5120US > > laptop. I've downloaded the latest stable version for this install. I > > get through the initial setup alright, but when I try to boot, I get a > > segfault and then an error: > > Have you tried the newer debian installer? > http://www.debian.org/devel/debian-installer/ > http://d-i.alioth.debian.org/manual/en.i386/index.html > > HTH, > > --Tom > > _______________________________________________ > TCLUG Mailing List - Minneapolis/St. Paul, Minnesota > tclug-list@mn-linux.org > http://mailman.mn-linux.org/mailman/listinfo/tclug-list > From srcfoo at gmail.com Fri Jan 13 13:03:08 2006 From: srcfoo at gmail.com (Eric Peterson) Date: Fri Jan 13 13:04:21 2006 Subject: [tclug-list] debian install problem In-Reply-To: References: <43C7DF68.6050108@info9.net> Message-ID: <579c6fd30601131103v76c73eaei4e39736c19adfaf0@mail.gmail.com> > Does this sound right? That's pretty much it. You can boot a live CD that works on the laptop to figure out which module you need. Once you've determine the right module, add it to /etc/modules and use mkinitrd to include it in a new initrd image. This is a really annoying part of installing debian on some systems, i.e. the installer works fine, but your newly booted system won't! Oh well, in my opinion it's well worth it once it's up and running. -Eric -------------- next part -------------- An HTML attachment was scrubbed... URL: http://shadowknight.real-time.com/pipermail/tclug-list/attachments/20060113/f1a104b2/attachment.htm From ryan.langseth at gmail.com Fri Jan 13 13:30:03 2006 From: ryan.langseth at gmail.com (Ryan Langseth) Date: Fri Jan 13 14:39:25 2006 Subject: [tclug-list] debian install problem In-Reply-To: <579c6fd30601131103v76c73eaei4e39736c19adfaf0@mail.gmail.com> References: <43C7DF68.6050108@info9.net> <579c6fd30601131103v76c73eaei4e39736c19adfaf0@mail.gmail.com> Message-ID: Not sure what desktop env you want but there is also kubuntu, which used KDE as the default desktop On 1/13/06, Eric Peterson wrote: > > > Does this sound right? > > That's pretty much it. You can boot a live CD that works on the laptop to > figure out which module you need. Once you've determine the right module, > add it to /etc/modules and use mkinitrd to include it in a new initrd image. > > This is a really annoying part of installing debian on some systems, i.e. > the installer works fine, but your newly booted system won't! Oh well, in > my opinion it's well worth it once it's up and running. > > -Eric > > _______________________________________________ > TCLUG Mailing List - Minneapolis/St. Paul, Minnesota > tclug-list@mn-linux.org > http://mailman.mn-linux.org/mailman/listinfo/tclug-list > > > -------------- next part -------------- An HTML attachment was scrubbed... URL: http://shadowknight.real-time.com/pipermail/tclug-list/attachments/20060113/aebe61f4/attachment.htm From kevin.lombardo at gmail.com Fri Jan 13 14:42:18 2006 From: kevin.lombardo at gmail.com (Kevin Lombardo) Date: Fri Jan 13 14:42:23 2006 Subject: [tclug-list] debian install problem In-Reply-To: <579c6fd30601131103v76c73eaei4e39736c19adfaf0@mail.gmail.com> References: <43C7DF68.6050108@info9.net> <579c6fd30601131103v76c73eaei4e39736c19adfaf0@mail.gmail.com> Message-ID: On 1/13/06, Eric Peterson wrote: > > Does this sound right? > > That's pretty much it. You can boot a live CD that works on the laptop to figure out which module you need. Once you've determine the right module, add it to /etc/modules and use mkinitrd to include it in a new initrd image. > > This is a really annoying part of installing debian on some systems, i.e. the installer works fine, but your newly booted system won't! Oh well, in my opinion it's well worth it once it's up and running. > > -Eric > > Thanks for the info guys. I ended up going with the Debian test as I did not really need stable (I don't think anyway). Debian test seemed to work fine... From jpschewe at mtu.net Sun Jan 15 20:58:15 2006 From: jpschewe at mtu.net (Jon Schewe) Date: Sun Jan 15 21:00:25 2006 Subject: [tclug-list] SourceForge down? Message-ID: <1137380295.32071.1.camel@workstation.mn.mtu.net> Skipped content of type multipart/alternative-------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 189 bytes Desc: This is a digitally signed message part Url : http://shadowknight.real-time.com/pipermail/tclug-list/attachments/20060115/abf69e1d/attachment.pgp From wilson at visi.com Mon Jan 16 09:52:52 2006 From: wilson at visi.com (Tim Wilson) Date: Mon Jan 16 09:53:32 2006 Subject: [tclug-list] cron jobs won't run Message-ID: Hey everyone, I've got a Debian box here that doesn't want to run cron jobs. I've got the standard Debian cron package installed and the daemon is running. Neither jobs created in crontab nor the shortcuts in /etc/ cron.* run at all. Any ideas? I've restarted cron but that doesn't help. I'm not sure what to try next. -Tim -- Tim Wilson Twin Cities, Minnesota, USA Educational technology guy, Linux and OS X fan, Grad. student, Daddy mailto: wilson@visi.com aim: tis270 blog: http://technosavvy.org From dru at druswanderings.net Mon Jan 16 10:05:42 2006 From: dru at druswanderings.net (The Wandering Dru) Date: Mon Jan 16 10:06:24 2006 Subject: [tclug-list] cron jobs won't run In-Reply-To: References: Message-ID: <43CBC456.8080004@druswanderings.net> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Tim Wilson wrote: > Hey everyone, > > I've got a Debian box here that doesn't want to run cron jobs. I've got > the standard Debian cron package installed and the daemon is running. > Neither jobs created in crontab nor the shortcuts in /etc/cron.* run at > all. > > Any ideas? I've restarted cron but that doesn't help. I'm not sure what > to try next. > Just an idea... Debian won't run scripts that have a file extension, eg., "cronjob.sh" won't run, "cronjob" will. I've been bitten by that one on more than one occasion. If that's not the issue then I'm not sure what may be happening. Permissions perhaps? - -- Andy Moore aka The Wandering Dru GnuPG Key: 0x506A915F http://www.druswanderings.net Get nifty TCLUG merchandise at the TCLUG Store! http://www.cafeshops.com/tclug -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.2 (MingW32) iD8DBQFDy8RViwhv4FBqkV8RAk95AKCt85rhnRBwTWI4NJgfBGYJ5KKvjQCglRU3 XQMy/7LTRO9lsCH7+ZGQvxg= =qdq+ -----END PGP SIGNATURE----- From joey.rockhold at gmail.com Mon Jan 16 10:05:00 2006 From: joey.rockhold at gmail.com (Joey Rockhold) Date: Mon Jan 16 10:06:28 2006 Subject: [tclug-list] WPA in Yellow Dog Linux Message-ID: <101e49ea0601160805m1504211dq859e689184e4bd36@mail.gmail.com> I have a G3 iMac 600Mhz laptop. I have installed Yellow Dog Linux 4.0.1 on it, and everything works well, except the wireless security. The wireless itself works, but I am not seeing how to configure WPA. I tried to work with WPAsupplicant, but have determined this will not work. Does anyone know how to do this, or can point me to a website with information on how to do this? Thanks. - Joey -------------- next part -------------- An HTML attachment was scrubbed... URL: http://shadowknight.real-time.com/pipermail/tclug-list/attachments/20060116/31026703/attachment.htm From slushpupie at gmail.com Mon Jan 16 11:54:40 2006 From: slushpupie at gmail.com (slushpupie@gmail.com) Date: Mon Jan 16 11:56:25 2006 Subject: [tclug-list] cron jobs won't run In-Reply-To: <43CBC456.8080004@druswanderings.net> References: <43CBC456.8080004@druswanderings.net> Message-ID: On 1/16/06, The Wandering Dru wrote: > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA1 > > Tim Wilson wrote: > > Hey everyone, > > > > I've got a Debian box here that doesn't want to run cron jobs. I've got > > the standard Debian cron package installed and the daemon is running. > > Neither jobs created in crontab nor the shortcuts in /etc/cron.* run at > > all. > > > > Any ideas? I've restarted cron but that doesn't help. I'm not sure what > > to try next. > > > > Just an idea... > > Debian won't run scripts that have a file extension, eg., "cronjob.sh" > won't run, "cronjob" will. Not quite. It uses run-parts to get things in cron.d, so it excludes certain extentions but not all. Check the man page for run-parts to see the exact regex used. > I've been bitten by that one on more than one occasion. If that's not > the issue then I'm not sure what may be happening. Permissions perhaps? I've also been bitten by expired users. If the cron user has an expired password entry (regardless of it having a password) cron will not run. Not only the user named cron, but also the user cron would execute as. -- Jay Kline http://www.slushpupie.com/ From admin at lctn.org Mon Jan 16 15:55:07 2006 From: admin at lctn.org (Raymond Norton) Date: Mon Jan 16 15:56:29 2006 Subject: [tclug-list] The dreaded execvp error! Message-ID: <44460.64.8.148.14.1137448507.squirrel@lctn.org> I had this same error occur on a different server last week. I thought it was a WebGUI issue, because it showed up right after an upgrade. The two servers have the same distro (CentOS 4.1), and yum running. Both worked fine for some time, especially this latest box. It has been running for 6 months. I have not done any work on the box for a couple months now, so whatever occurred must have been from yum. Any ideas how to fix this? (this is not a httpd.conf issue) root@www ~]# service httpd restart Stopping httpd: [FAILED] Starting httpd: execvp: No such file or directory [FAILED] From trammell+tclug at el-swifto.com Mon Jan 16 17:56:14 2006 From: trammell+tclug at el-swifto.com (John J. Trammell) Date: Mon Jan 16 17:56:27 2006 Subject: [tclug-list] The dreaded execvp error! In-Reply-To: <44460.64.8.148.14.1137448507.squirrel@lctn.org> References: <44460.64.8.148.14.1137448507.squirrel@lctn.org> Message-ID: <20060116235614.GA16912@mail.el-swifto.com> On Mon, Jan 16, 2006 at 03:55:07PM -0600, Raymond Norton wrote: > I had this same error occur on a different server last week. I thought > it was a WebGUI issue, because it showed up right after an upgrade. > The two servers have the same distro (CentOS 4.1), and yum running. > Both worked fine for some time, especially this latest box. It has > been running for 6 months. I have not done any work on the box for a > couple months now, so whatever occurred must have been from yum. Any > ideas how to fix this? I just googled for "Starting httpd: execvp: No such file or directory", and got like a bajillion hits. I don't know if any of them apply, but if I had your problem I'd look there. -- trammell@el-swifto.com 9EC7 BC6D E688 A184 9F58 FD4C 2C12 CC14 8ABA 36F5 Twin Cities Linux Users Group (TCLUG) Minneapolis/St. Paul, Minnesota From admin at lctn.org Mon Jan 16 18:18:23 2006 From: admin at lctn.org (Raymond Norton) Date: Mon Jan 16 18:20:25 2006 Subject: [tclug-list] The dreaded execvp error! In-Reply-To: <20060116235614.GA16912@mail.el-swifto.com> References: <44460.64.8.148.14.1137448507.squirrel@lctn.org> <20060116235614.GA16912@mail.el-swifto.com> Message-ID: <59255.204.212.34.10.1137457103.squirrel@lctn.org> > I just googled for "Starting httpd: execvp: No such file or directory", > and got like a bajillion hits. I don't know if any of them apply, but > if I had your problem I'd look there. I started there, but so far there are no replies to most people asking this question, or I have ruled out the answer given. From nate at refried.org Mon Jan 16 22:20:25 2006 From: nate at refried.org (Nate Straz) Date: Mon Jan 16 22:21:17 2006 Subject: [tclug-list] The dreaded execvp error! In-Reply-To: <44460.64.8.148.14.1137448507.squirrel@lctn.org> References: <44460.64.8.148.14.1137448507.squirrel@lctn.org> Message-ID: <20060117042025.GA10805@refried.org> On Mon, Jan 16, 2006 at 03:55:07PM -0600, Raymond Norton wrote: > root@www ~]# service httpd restart > Stopping httpd: [FAILED] > Starting httpd: execvp: No such file or directory execvp is the system call that starts another program. If it's giving the above error, whatever the system call is trying to start isn't there. My suggestion would be to run the httpd init script with bash tracing. # sh -x /etc/init.d/httpd restart If that doesn't give you a good hint, I'm not sure what will. Does `apachectl restart` give you the same error? Nate From florin at iucha.net Mon Jan 16 22:48:18 2006 From: florin at iucha.net (Florin Iucha) Date: Mon Jan 16 22:52:25 2006 Subject: [tclug-list] The dreaded execvp error! In-Reply-To: <20060117042025.GA10805@refried.org> References: <44460.64.8.148.14.1137448507.squirrel@lctn.org> <20060117042025.GA10805@refried.org> Message-ID: <20060117044818.GD9680@iucha.net> On Mon, Jan 16, 2006 at 10:20:25PM -0600, Nate Straz wrote: > On Mon, Jan 16, 2006 at 03:55:07PM -0600, Raymond Norton wrote: > > root@www ~]# service httpd restart > > Stopping httpd: [FAILED] > > Starting httpd: execvp: No such file or directory > > execvp is the system call that starts another program. If it's giving > the above error, whatever the system call is trying to start isn't > there. > > My suggestion would be to run the httpd init script with bash tracing. > > # sh -x /etc/init.d/httpd restart > > If that doesn't give you a good hint, I'm not sure what will. strace florin -- Don't question authority: they don't know either! -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 189 bytes Desc: Digital signature Url : http://shadowknight.real-time.com/pipermail/tclug-list/attachments/20060116/8c2efa67/attachment.pgp From ntraxler at mn.rr.com Tue Jan 17 00:44:50 2006 From: ntraxler at mn.rr.com (Nick Traxler) Date: Tue Jan 17 00:46:25 2006 Subject: [tclug-list] Online photo gallery? Message-ID: <43CC9262.8040806@mn.rr.com> Does anyone know a good online photo gallery? The main feature I want is for people to have access to a full-size version of the images. (Free is a bid plus too.) I've used Kodakgallery and Flickr - kodak only shows you a reduced resolution and flickr has annoying upload limits. (I think the free account only gets small pictures too.) Any better options out there? (Aside from roll your own, of course) Thanks in advance! Nick From tclug at freakzilla.com Tue Jan 17 01:45:28 2006 From: tclug at freakzilla.com (Yaron) Date: Tue Jan 17 01:46:29 2006 Subject: [tclug-list] Online photo gallery? In-Reply-To: <43CC9262.8040806@mn.rr.com> References: <43CC9262.8040806@mn.rr.com> Message-ID: On Tue, 17 Jan 2006, Nick Traxler wrote: > Any better options out there? (Aside from roll your own, of course) I'm actually a roll-your-own fan - I rolled mine because no online gallery had all the features I wanted. Or rather, none of the freely downloadable ones did. But I think you need to clarify whether you're looking for image hosting or for gallery software. -Yaron -- From wilson at visi.com Tue Jan 17 02:24:10 2006 From: wilson at visi.com (Tim Wilson) Date: Tue Jan 17 02:24:26 2006 Subject: [tclug-list] Online photo gallery? In-Reply-To: <43CC9262.8040806@mn.rr.com> References: <43CC9262.8040806@mn.rr.com> Message-ID: <2979C5DF-B967-4EAF-90C6-767E9B953DD8@visi.com> On Jan 17, 2006, at 12:44 AM, Nick Traxler wrote: > Does anyone know a good online photo gallery? The main feature I > want is for people to have access to a full-size version of the > images. (Free is a bid plus too.) Gallery (http://gallery.menalto.com/) is very good. Tons of features and easy to use. -Tim -- Tim Wilson Twin Cities, Minnesota, USA Educational technology guy, Linux and OS X fan, Grad. student, Daddy mailto: wilson@visi.com aim: tis270 blog: http://technosavvy.org From barnabas at knicknack.net Tue Jan 17 04:26:02 2006 From: barnabas at knicknack.net (Eric Stanley) Date: Tue Jan 17 04:26:27 2006 Subject: [tclug-list] Online photo gallery? In-Reply-To: <43CC9262.8040806@mn.rr.com> References: <43CC9262.8040806@mn.rr.com> Message-ID: <43CCC63A.8060201@knicknack.net> Nick Traxler wrote: > Does anyone know a good online photo gallery? The main feature I want > is for people to have access to a full-size version of the images. > (Free is a bid plus too.) > > I've used Kodakgallery and Flickr - kodak only shows you a reduced > resolution and flickr has annoying upload limits. (I think the free > account only gets small pictures too.) > > Any better options out there? (Aside from roll your own, of course) > > Thanks in advance! > > Nick > Tim Wilson suggested gallery (although the URL I used is http://gallery.sourceforge.net). I second his suggestion. It is free and it has the feature you want of access to the full-size version of the images. Eric From erikerik at gmail.com Tue Jan 17 04:27:28 2006 From: erikerik at gmail.com (Erik Anderson) Date: Tue Jan 17 04:32:26 2006 Subject: [tclug-list] Online photo gallery? In-Reply-To: <2979C5DF-B967-4EAF-90C6-767E9B953DD8@visi.com> References: <43CC9262.8040806@mn.rr.com> <2979C5DF-B967-4EAF-90C6-767E9B953DD8@visi.com> Message-ID: On 1/17/06, Tim Wilson wrote: > > Gallery (http://gallery.menalto.com/) is very good. Tons of features > and easy to use. Ditto - I've been using Gallery for close to five years now. It's quite nice. and very easy to setup, administrate, and extend. From kcbnac at gmail.com Tue Jan 17 07:11:07 2006 From: kcbnac at gmail.com (Keith Bachman) Date: Tue Jan 17 07:12:33 2006 Subject: [tclug-list] SourceForge down? In-Reply-To: <1137380295.32071.1.camel@workstation.mn.mtu.net> References: <1137380295.32071.1.camel@workstation.mn.mtu.net> Message-ID: <32fd45370601170511s5c4b3c88sbdc31729d30fc6f0@mail.gmail.com> I just pulled up their front page - but I have noticed the complete loss of the University of Minnesota's mirror - which saddens me, I'll see if I can't get in touch through other groups and see what's happened, if anyone knows, please say so. On 1/15/06, Jon Schewe wrote: > > Has anyone else noticed that SourceForge is down, or is it just for me? I > haven't been able to connect via ssh for CVS checkins since the beginning of > last week and their website isn't displaying either. > > > ------------------------------ > > Jon Schewe | http://mtu.net/~jpschewe > If you see a signature.asc file attached to the message this is my digital > signature. > See http://www.gnupg.org for more information. > > For I am convinced that neither death nor life, neither angels > nor demons, neither the present nor the future, nor any > powers, neither height nor depth, nor anything else in all > creation, will be able to separate us from the love of God that > is in Christ Jesus our Lord. - Romans 8:38-39 > > > > -----BEGIN PGP SIGNATURE----- > Version: GnuPG v1.4.2 (GNU/Linux) > > iD8DBQBDywvHyWh1lXh/lFURAtvXAJ9BR5SYmtmhNm519oOuW84joNMV5QCeLDV3 > t9cEUADblFHVo6gmhPQBsg8= > =RK+k > -----END PGP SIGNATURE----- > > > _______________________________________________ > TCLUG Mailing List - Minneapolis/St. Paul, Minnesota > tclug-list@mn-linux.org > http://mailman.mn-linux.org/mailman/listinfo/tclug-list > > > -------------- next part -------------- An HTML attachment was scrubbed... URL: http://shadowknight.real-time.com/pipermail/tclug-list/attachments/20060117/f5ec10a8/attachment.htm From erikerik at gmail.com Tue Jan 17 07:31:06 2006 From: erikerik at gmail.com (Erik Anderson) Date: Tue Jan 17 07:32:39 2006 Subject: [tclug-list] SourceForge down? In-Reply-To: <32fd45370601170511s5c4b3c88sbdc31729d30fc6f0@mail.gmail.com> References: <1137380295.32071.1.camel@workstation.mn.mtu.net> <32fd45370601170511s5c4b3c88sbdc31729d30fc6f0@mail.gmail.com> Message-ID: On 1/17/06, Keith Bachman wrote: > I just pulled up their front page - but I have noticed the complete loss of the University of > Minnesota's mirror - which saddens me, I'll see if I can't get in touch through other groups > and see what's happened, if anyone knows, please say so. It's seemed to me that historically, the UMN sf mirror has been the most unstable and unreliable of all the mirrors. If I recall, their mirror was down for a period of several months in late 2004/early 2005. From gscottwalters at gmail.com Tue Jan 17 08:58:45 2006 From: gscottwalters at gmail.com (G. Scott Walters) Date: Tue Jan 17 09:02:25 2006 Subject: [tclug-list] Online photo gallery? In-Reply-To: References: <43CC9262.8040806@mn.rr.com> <2979C5DF-B967-4EAF-90C6-767E9B953DD8@visi.com> Message-ID: <34b4c76d0601170658x18dfb656g38a11c3f0743b1d8@mail.gmail.com> No one mentioned Picasa, which is available from Google. It's a nice album, and you can export into Web Pages, with thumbnails and full sized pics. You can also export into XML and format the pages anyway you like. And yes, it's free also. On 1/17/06, Erik Anderson wrote: > On 1/17/06, Tim Wilson wrote: > > > > Gallery (http://gallery.menalto.com/) is very good. Tons of features > > and easy to use. > > Ditto - I've been using Gallery for close to five years now. It's > quite nice. and very easy to setup, administrate, and extend. > > _______________________________________________ > TCLUG Mailing List - Minneapolis/St. Paul, Minnesota > tclug-list@mn-linux.org > http://mailman.mn-linux.org/mailman/listinfo/tclug-list > -- - G. Scott Walters http://www.apt518.net From crumley at belka.space.umn.edu Tue Jan 17 09:20:59 2006 From: crumley at belka.space.umn.edu (Jim Crumley) Date: Tue Jan 17 09:22:26 2006 Subject: [tclug-list] Online photo gallery? In-Reply-To: References: <43CC9262.8040806@mn.rr.com> Message-ID: <20060117092059.A17848@pchelka.space.umn.edu> On Tue, Jan 17, 2006 at 01:45:28AM -0600, Yaron wrote: > On Tue, 17 Jan 2006, Nick Traxler wrote: > > >Any better options out there? (Aside from roll your own, of course) > > I'm actually a roll-your-own fan - I rolled mine because no online gallery > had all the features I wanted. Or rather, none of the freely downloadable > ones did. But I think you need to clarify whether you're looking for image > hosting or for gallery software. > I have used bins (http://bins.sautret.org/) for two years and I am very happy with it. -- Jim Crumley |Twin Cities Linux Users Group Mailing List (TCLUG) Ruthless Debian Zealot |http://www.mn-linux.org/ Never laugh at live dragons | From erikerik at gmail.com Tue Jan 17 09:26:12 2006 From: erikerik at gmail.com (Erik Anderson) Date: Tue Jan 17 09:30:27 2006 Subject: [tclug-list] SourceForge down? In-Reply-To: <43CD0BFE.2090602@umn.edu> References: <1137380295.32071.1.camel@workstation.mn.mtu.net> <32fd45370601170511s5c4b3c88sbdc31729d30fc6f0@mail.gmail.com> <43CD0BFE.2090602@umn.edu> Message-ID: On 1/17/06, William Bear wrote: > > > The mirror has been down for awhile. The original admins who were > working on the mirror left the University, and the project was in > limbo. Recently, we've started working on the mirror again, but are > unable to get Linux to play nice with the University SAN. dm-multipath > would not work properly with the EMC Clariion hardware, and EMC's > PowerPath software doesn't seem any better. We have a limited amount of > time to work on the mirror, but we hope to have it up soon. Hrm - bummer. Thanks for the explanation. Good luck. BTW, how much disk does it take to mirror sf.net? From chewie at wookimus.net Tue Jan 17 09:36:47 2006 From: chewie at wookimus.net (Chad Walstrom) Date: Tue Jan 17 09:41:50 2006 Subject: [tclug-list] Online photo gallery? In-Reply-To: <43CC9262.8040806@mn.rr.com> References: <43CC9262.8040806@mn.rr.com> Message-ID: <20060117153647.150952783@skuld.wookimus.net> Nick Traxler wrote: > Does anyone know a good online photo gallery? The main feature I > want is for people to have access to a full-size version of the > images. (Free is a bid plus too.) gallery.py, stable v2.0.2. http://www.net-es.dk/~pj/python/ Demo: http://wookimus.net/~chewie/photos I have a cron job to search the source directory and regenerate/update the destination directory when new photos show up. There are a few logic bugs you may have to work out with big changes, but it works pretty well. Much better than what I had been using before, curator. -- Chad Walstrom http://www.wookimus.net/ assert(expired(knowledge)); /* core dump */ From daniel.armbrust.list at gmail.com Tue Jan 17 09:31:23 2006 From: daniel.armbrust.list at gmail.com (Dan Armbrust) Date: Tue Jan 17 09:44:40 2006 Subject: [tclug-list] Online photo gallery? In-Reply-To: References: <43CC9262.8040806@mn.rr.com> <2979C5DF-B967-4EAF-90C6-767E9B953DD8@visi.com> Message-ID: <43CD0DCB.5070405@gmail.com> Erik Anderson wrote: > On 1/17/06, Tim Wilson wrote: >> Gallery (http://gallery.menalto.com/) is very good. Tons of features >> and easy to use. > > Ditto - I've been using Gallery for close to five years now. It's > quite nice. and very easy to setup, administrate, and extend. > > _______________________________________________ > TCLUG Mailing List - Minneapolis/St. Paul, Minnesota > tclug-list@mn-linux.org > http://mailman.mn-linux.org/mailman/listinfo/tclug-list > Major ditto. Never had a problem with Gallery. Great features. Perfect price. Dan -- **************************** Daniel Armbrust Biomedical Informatics Mayo Clinic Rochester daniel.armbrust(at)mayo.edu http://informatics.mayo.edu/ From nate at refried.org Tue Jan 17 09:46:11 2006 From: nate at refried.org (Nate Straz) Date: Tue Jan 17 09:51:25 2006 Subject: [tclug-list] Recent spam Message-ID: <20060117154611.GC30612@refried.org> Is anyone else getting a bunch of spam coming from btopenworld.com that has a "From" of tclug-list? I've had at least a dozen over night and this morning. I've forwarded the messages to abuse@btopenworld.com, not sure if that is a good email address yet or not. Nate From erikerik at gmail.com Tue Jan 17 10:02:29 2006 From: erikerik at gmail.com (Erik Anderson) Date: Tue Jan 17 10:11:58 2006 Subject: [tclug-list] Recent spam In-Reply-To: <20060117154611.GC30612@refried.org> References: <20060117154611.GC30612@refried.org> Message-ID: On 1/17/06, Nate Straz wrote: > Is anyone else getting a bunch of spam coming from btopenworld.com that > has a "From" of tclug-list? I've had at least a dozen over night and > this morning. I've forwarded the messages to abuse@btopenworld.com, not > sure if that is a good email address yet or not. Yes - I've been getting them. The wierd thing is that they're being sent to an email addy of mine that I used for the TCLUG list ~2 yrs ago. From cschumann at twp-llc.com Tue Jan 17 10:24:10 2006 From: cschumann at twp-llc.com (Chris Schumann) Date: Tue Jan 17 10:26:25 2006 Subject: [tclug-list] Spamassassin In-Reply-To: <200601171647.k0HGloGk006837@delta.twp-llc.com> References: <200601171647.k0HGloGk006837@delta.twp-llc.com> Message-ID: <29716.192.28.2.52.1137515050.squirrel@alpha.twp-llc.com> I'm getting a ton of spam allegedly from tclug-list. Neat. I haven't checked them all, but some is coming from 217.36.121.186. I'm running FC4, sendmail, cyrus-imapd and spamassassin all with latest (released) updates, but my system doesn't seem to be detecting spam at all, even though I'm pretty sure I enabled a blacklist or two. I would sincerely appreciate tips on how to make sure spamassassin is working. Many thanks, Chris Schumann From strayf at freeshell.org Tue Jan 17 10:28:24 2006 From: strayf at freeshell.org (Steve Cayford) Date: Tue Jan 17 10:30:25 2006 Subject: [tclug-list] Recent spam In-Reply-To: <20060117154611.GC30612@refried.org> References: <20060117154611.GC30612@refried.org> Message-ID: <20060117162824.GA3465@callisto-acss.acad.umn.edu> On Tue, Jan 17, 2006 at 09:46:11AM -0600, Nate Straz wrote: > Is anyone else getting a bunch of spam coming from btopenworld.com that > has a "From" of tclug-list? I've had at least a dozen over night and > this morning. I've forwarded the messages to abuse@btopenworld.com, not > sure if that is a good email address yet or not. Yes. I've gotten about a dozen this morning. -Steve From cschumann at twp-llc.com Tue Jan 17 10:34:50 2006 From: cschumann at twp-llc.com (Chris Schumann) Date: Tue Jan 17 10:48:08 2006 Subject: [tclug-list] Spamassassin Message-ID: <28670.192.28.2.52.1137515690.squirrel@alpha.twp-llc.com> Just to have it in one place... I'm having the problem on my home server (FC4) but also on my company's server, which runs RHEL3. Neither one seems to be marking spam. I have read the spamassassin pages, and set configuration files to what seems reasonable, but no joy. What am I missing? Thanks, Chris Schumann From shanson at cruiskeen.com Tue Jan 17 11:10:34 2006 From: shanson at cruiskeen.com (Steve Hanson) Date: Tue Jan 17 11:11:48 2006 Subject: [tclug-list] Spamassassin In-Reply-To: <28670.192.28.2.52.1137515690.squirrel@alpha.twp-llc.com> References: <28670.192.28.2.52.1137515690.squirrel@alpha.twp-llc.com> Message-ID: <43CD250A.5000508@cruiskeen.com> Chris Schumann wrote: > Just to have it in one place... > > I'm having the problem on my home server (FC4) but also on my company's > server, which runs RHEL3. Neither one seems to be marking spam. > > I have read the spamassassin pages, and set configuration files to what > seems reasonable, but no joy. > > What am I missing? It sounds like you're not actually using spamassassin anywhere in your mail stream. You haven't mentioned anyplace any way to integrate Spamassassin, so my guess is that you have not done so. You mention using sendmail and cyrus - in which case you can't very easily use an end-user solution like procmail to stuff your email through spamassassin. You probably want to run spamassassin as a sendmail milter on your mail server - this could be through a spamassassin milter (like spamass-milter), or better, through something more versatile like Mimedefang. You might want to take a look at http://www.mickeyhill.com/mimedefang-howto/ to start off. > > Thanks, > Chris Schumann > > > > _______________________________________________ > TCLUG Mailing List - Minneapolis/St. Paul, Minnesota > tclug-list@mn-linux.org > http://mailman.mn-linux.org/mailman/listinfo/tclug-list From duff0097 at umn.edu Tue Jan 17 11:14:42 2006 From: duff0097 at umn.edu (duff0097) Date: Tue Jan 17 11:19:08 2006 Subject: [tclug-list] usb wireless Message-ID: <200601171714.k0HHEglt015384@saturn.software.umn.edu> I have an old iMac G3, and I was curious what the best usb wireless device would be to use with this? I found one (TEW-424UB V2) that uses ndiswrapper - but that only works on x86 or amd64 arch's. -Bryan From cschumann at twp-llc.com Tue Jan 17 12:32:55 2006 From: cschumann at twp-llc.com (Chris Schumann) Date: Tue Jan 17 12:34:30 2006 Subject: [tclug-list] Spamassassin In-Reply-To: <43CD250A.5000508@cruiskeen.com> References: <28670.192.28.2.52.1137515690.squirrel@alpha.twp-llc.com> <43CD250A.5000508@cruiskeen.com> Message-ID: <27954.192.28.2.52.1137522775.squirrel@alpha.twp-llc.com> Turns out that's close. Users of my server do not have login accounts: They have only inboxes. Spamassassin appears to be running for root, but not other users. Hmmmmm. Time for more looking. Chris Steve Hanson said: > Chris Schumann wrote: >> Just to have it in one place... >> >> I'm having the problem on my home server (FC4) but also on my >> company's server, which runs RHEL3. Neither one seems to be marking >> spam. >> >> I have read the spamassassin pages, and set configuration files to >> what seems reasonable, but no joy. >> >> What am I missing? > It sounds like you're not actually using spamassassin anywhere in your > mail stream. You haven't mentioned anyplace any way to integrate > Spamassassin, so my guess is that you have not done so. You mention > using sendmail and cyrus - in which case you can't very easily use an > end-user solution like procmail to stuff your email through > spamassassin. You probably want to run spamassassin as a sendmail > milter on your mail server - this could be through a spamassassin milter > (like spamass-milter), or better, through something more versatile like > Mimedefang. > > You might want to take a look at > http://www.mickeyhill.com/mimedefang-howto/ > to start off. >> >> Thanks, >> Chris Schumann >> >> >> >> _______________________________________________ >> TCLUG Mailing List - Minneapolis/St. Paul, Minnesota >> tclug-list@mn-linux.org >> http://mailman.mn-linux.org/mailman/listinfo/tclug-list From tommyj27 at gmail.com Tue Jan 17 12:48:16 2006 From: tommyj27 at gmail.com (Thomas Johnson) Date: Tue Jan 17 12:48:25 2006 Subject: [tclug-list] usb wireless In-Reply-To: <200601171714.k0HHEglt015384@saturn.software.umn.edu> References: <200601171714.k0HHEglt015384@saturn.software.umn.edu> Message-ID: <1469cda20601171048q3895c205u27b666461719a598@mail.gmail.com> You may want to look at http://www.linux-wlan.org/docs/wlan_adapters.html.gz. There are a lot of adapters listed, along with the chipset they use. The Seattle Wireless site has a bunch of information as well. http://www.hpl.hp.com/personal/Jean_Tourrilhes/Linux/Wireless.html is a good resource as well. I used to have a netgear ma111 802.11b usb key that worked quite well. On 1/17/06, duff0097 wrote: > I have an old iMac G3, and I was curious what the best usb wireless device > would be to use with this? > > I found one (TEW-424UB V2) that uses ndiswrapper - but that only works on > x86 or amd64 arch's. > > -Bryan > > > _______________________________________________ > TCLUG Mailing List - Minneapolis/St. Paul, Minnesota > tclug-list@mn-linux.org > http://mailman.mn-linux.org/mailman/listinfo/tclug-list > From markmit at mn.rr.com Tue Jan 17 14:05:44 2006 From: markmit at mn.rr.com (markmit@mn.rr.com) Date: Tue Jan 17 14:06:26 2006 Subject: [tclug-list] USB -> IDE convertor Message-ID: <7e504c7e929b.7e929b7e504c@rdc-kc.rr.com> Does anyone know of a local source for these? I don't want an enclosure, just the naked cable. Microcenter has what I want, but $20 seems high when I can get it on ebay for less than $10 (including S/H). Thanks Mark Mitchell From jpschewe at mtu.net Tue Jan 17 15:01:57 2006 From: jpschewe at mtu.net (Jon Schewe) Date: Tue Jan 17 15:02:28 2006 Subject: [tclug-list] SourceForge down? In-Reply-To: <32fd45370601170511s5c4b3c88sbdc31729d30fc6f0@mail.gmail.com> References: <1137380295.32071.1.camel@workstation.mn.mtu.net> <32fd45370601170511s5c4b3c88sbdc31729d30fc6f0@mail.gmail.com> Message-ID: <1137531717.18255.68.camel@mn65-eggplant.htc.honeywell.com> Skipped content of type multipart/alternative-------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 189 bytes Desc: This is a digitally signed message part Url : http://shadowknight.real-time.com/pipermail/tclug-list/attachments/20060117/42c6061a/attachment.pgp From jus at krytosvirus.com Tue Jan 17 21:25:52 2006 From: jus at krytosvirus.com (Justin Krejci) Date: Tue Jan 17 21:26:26 2006 Subject: [tclug-list] Online photo gallery? In-Reply-To: <5048946.1137480606584.JavaMail.root@sniper41> References: <5048946.1137480606584.JavaMail.root@sniper41> Message-ID: <200601172125.54034.jus@krytosvirus.com> On Tuesday 17 January 2006 12:44 am, Nick Traxler wrote: > Does anyone know a good online photo gallery? The main feature I want is > for people to have access to a full-size version of the images. (Free is > a bid plus too.) > > I've used Kodakgallery and Flickr - kodak only shows you a reduced > resolution and flickr has annoying upload limits. (I think the free > account only gets small pictures too.) > > Any better options out there? (Aside from roll your own, of course) > > Thanks in advance! > > Nick I use igal (http://www.stanford.edu/~epop/igal/) it is not a photo gallery program so much as it generates a photo gallery page. It supports the base features you're looking for full size/thumbnailing. You just run the program in the directory where your images are and blammo you have a full gallery system all set up. No need for cgi/php/whatever plugins. From admin at lctn.org Wed Jan 18 07:47:02 2006 From: admin at lctn.org (Raymond Norton) Date: Wed Jan 18 07:49:50 2006 Subject: [tclug-list] is there any hope? Message-ID: <44021.64.8.148.14.1137592022.squirrel@lctn.org> Glad it's no me, but I have a school I work with that had a server go down. (no back ups). It was a windows 2000 server with mirrored drives. One drive has turned out to be toast, and the other shows that it is an ntfs simple volume. Is there any way to mount this in Linux to see if we can recover data? If not, is there a good company that can retrieve data in this situation? Raymond From jkjones at tcq.net Wed Jan 18 07:58:45 2006 From: jkjones at tcq.net (Kraig Jones) Date: Wed Jan 18 08:00:29 2006 Subject: [tclug-list] is there any hope? In-Reply-To: <44021.64.8.148.14.1137592022.squirrel@lctn.org> References: <44021.64.8.148.14.1137592022.squirrel@lctn.org> Message-ID: <43CE4995.8040803@tcq.net> Raymond Norton wrote: >Glad it's no me, but I have a school I work with that had a server go >down. (no back ups). It was a windows 2000 server with mirrored drives. >One drive has turned out to be toast, and the other shows that it is an >ntfs simple volume. Is there any way to mount this in Linux to see if we >can recover data? If not, is there a good company that can retrieve data >in this situation? > > >Raymond > >_______________________________________________ >TCLUG Mailing List - Minneapolis/St. Paul, Minnesota >tclug-list@mn-linux.org >http://mailman.mn-linux.org/mailman/listinfo/tclug-list > > > > I know Knoppix can access NTFS volumes. Could be a simple way to recover your data, if it works for you. Kraig From admin at lctn.org Wed Jan 18 08:15:46 2006 From: admin at lctn.org (Raymond Norton) Date: Wed Jan 18 08:16:27 2006 Subject: [tclug-list] is there any hope? In-Reply-To: <43CE4995.8040803@tcq.net> References: <44021.64.8.148.14.1137592022.squirrel@lctn.org> <43CE4995.8040803@tcq.net> Message-ID: <47476.64.8.148.14.1137593747.squirrel@lctn.org> > You could also just > put it in another Windows box and mount it as a slave. Yeah, we tried that in three different boxes. Two showed it as a FAT partition, and a foreign file system. One XP box shows the simple volume (3 partitions), and 100% available disk space. From admin at lctn.org Wed Jan 18 08:26:53 2006 From: admin at lctn.org (Raymond Norton) Date: Wed Jan 18 08:29:12 2006 Subject: [tclug-list] The dreaded execvp error! In-Reply-To: <20060117044818.GD9680@iucha.net> References: <44460.64.8.148.14.1137448507.squirrel@lctn.org> <20060117042025.GA10805@refried.org> <20060117044818.GD9680@iucha.net> Message-ID: <44291.64.8.148.14.1137594413.squirrel@lctn.org> >> # sh -x /etc/init.d/httpd restart >> >> If that doesn't give you a good hint, I'm not sure what will. > Here is the problem. What can I do to fix it? + initlog -c /usr/sbin/httpd execvp: No such file or directory + '[' 255 -eq 0 ']' + failure 'httpd startup' From hewhocutsdown at gmail.com Wed Jan 18 08:26:38 2006 From: hewhocutsdown at gmail.com (Jordan Peacock) Date: Wed Jan 18 08:34:12 2006 Subject: [tclug-list] is there any hope? In-Reply-To: References: <44021.64.8.148.14.1137592022.squirrel@lctn.org> <43CE4995.8040803@tcq.net> <47476.64.8.148.14.1137593747.squirrel@lctn.org> Message-ID: I've found that Linux can sometimes read files off of stuffed drives; I had an NTFS & a FAT32 drive bite the dust last year, and was able to steal all the necessary data off of them using Ubuntu; Windows wouldn't even recognize that I had plugged in the drive. It's worth a shot. -jordan On 1/18/06, Raymond Norton wrote: > > You could also just > > put it in another Windows box and mount it as a slave. > > Yeah, we tried that in three different boxes. Two showed it as a FAT > partition, and a foreign file system. One XP box shows the simple volume > (3 partitions), and 100% available disk space. > > _______________________________________________ > TCLUG Mailing List - Minneapolis/St. Paul, Minnesota > tclug-list@mn-linux.org > http://mailman.mn-linux.org/mailman/listinfo/tclug-list > From nate at refried.org Wed Jan 18 08:38:02 2006 From: nate at refried.org (Nate Straz) Date: Wed Jan 18 08:40:40 2006 Subject: [tclug-list] The dreaded execvp error! In-Reply-To: <44291.64.8.148.14.1137594413.squirrel@lctn.org> References: <44460.64.8.148.14.1137448507.squirrel@lctn.org> <20060117042025.GA10805@refried.org> <20060117044818.GD9680@iucha.net> <44291.64.8.148.14.1137594413.squirrel@lctn.org> Message-ID: <20060118143802.GA32360@refried.org> On Wed, Jan 18, 2006 at 08:26:53AM -0600, Raymond Norton wrote: > >> # sh -x /etc/init.d/httpd restart > >> > >> If that doesn't give you a good hint, I'm not sure what will. > > Here is the problem. What can I do to fix it? > > + initlog -c /usr/sbin/httpd > execvp: No such file or directory Check to see whether initlog is missing or /usr/sbin/httpd is missing. You might want to run `rpm -V initscripts httpd` to see if those packages are damaged. Nate From aristophrenic at warpmail.net Wed Jan 18 08:36:35 2006 From: aristophrenic at warpmail.net (Isaac Atilano) Date: Wed Jan 18 08:40:46 2006 Subject: [tclug-list] is there any hope? In-Reply-To: <44021.64.8.148.14.1137592022.squirrel@lctn.org> References: <44021.64.8.148.14.1137592022.squirrel@lctn.org> Message-ID: <1137594995.10681.252143009@webmail.messagingengine.com> NTFS read access has been available in the Linux kernel for quite some time. Most distributions have this enabled right out of the box. If your distribution does not have this functionality you can either compile the ntfs module if you have the kernel source or you can download an ntfs utility package if your distribution has one. ----- Original message ----- From: "Raymond Norton" To: tclug-list@mn-linux.org Date: Wed, 18 Jan 2006 07:47:02 -0600 (CST) Subject: [tclug-list] is there any hope? Glad it's no me, but I have a school I work with that had a server go down. (no back ups). It was a windows 2000 server with mirrored drives. One drive has turned out to be toast, and the other shows that it is an ntfs simple volume. Is there any way to mount this in Linux to see if we can recover data? If not, is there a good company that can retrieve data in this situation? Raymond _______________________________________________ TCLUG Mailing List - Minneapolis/St. Paul, Minnesota tclug-list@mn-linux.org http://mailman.mn-linux.org/mailman/listinfo/tclug-list From admin at lctn.org Wed Jan 18 08:45:30 2006 From: admin at lctn.org (Raymond Norton) Date: Wed Jan 18 08:49:22 2006 Subject: [tclug-list] The dreaded execvp error! In-Reply-To: <44291.64.8.148.14.1137594413.squirrel@lctn.org> References: <44460.64.8.148.14.1137448507.squirrel@lctn.org> <20060117042025.GA10805@refried.org> <20060117044818.GD9680@iucha.net> <44291.64.8.148.14.1137594413.squirrel@lctn.org> Message-ID: <47768.64.8.148.14.1137595530.squirrel@lctn.org> Too weird! "yum install httpd" fixed it! Thanks much! From rwh at visi.com Wed Jan 18 08:53:17 2006 From: rwh at visi.com (Richard Hoffbeck) Date: Wed Jan 18 08:54:29 2006 Subject: [tclug-list] is there any hope? In-Reply-To: <44021.64.8.148.14.1137592022.squirrel@lctn.org> References: <44021.64.8.148.14.1137592022.squirrel@lctn.org> Message-ID: <43CE565D.7050207@visi.com> I haven't recovered a mirrored pair under Windows since NT 3.51, but ... As I recall there was a trick to get it to boot from the mirrored drive - I seem to recall typing in the full path to the disk in the boot loader. Then once it was running I had to use Disk Mangler to break the pair, popped in the new drive and set up the mirroring again. As a last resort you could boot from the W2K install disk and see what it thinks is going on and see if it offers to fix it. --rick Raymond Norton wrote: > Glad it's no me, but I have a school I work with that had a server go > down. (no back ups). It was a windows 2000 server with mirrored drives. > One drive has turned out to be toast, and the other shows that it is an > ntfs simple volume. Is there any way to mount this in Linux to see if we > can recover data? If not, is there a good company that can retrieve data > in this situation? > > > Raymond > > _______________________________________________ > TCLUG Mailing List - Minneapolis/St. Paul, Minnesota > tclug-list@mn-linux.org > http://mailman.mn-linux.org/mailman/listinfo/tclug-list From rclark at lakesplus.com Wed Jan 18 09:00:34 2006 From: rclark at lakesplus.com (Randy Clarksean) Date: Wed Jan 18 09:01:28 2006 Subject: [tclug-list] Recent spam In-Reply-To: <20060117154611.GC30612@refried.org> References: <20060117154611.GC30612@refried.org> Message-ID: <1137596434.10369.38.camel@iwill> I have probably received 15 or 20 of these in my postini filter ... the portion of postini that indicates they have a virus. Of course there is no guarantee that they are coming from the tclug site ... could/probably be coming from someone else with that reply addy i guess. Randy On Tue, 2006-01-17 at 09:46 -0600, Nate Straz wrote: > Is anyone else getting a bunch of spam coming from btopenworld.com that > has a "From" of tclug-list? I've had at least a dozen over night and > this morning. I've forwarded the messages to abuse@btopenworld.com, not > sure if that is a good email address yet or not. > > Nate > > _______________________________________________ > TCLUG Mailing List - Minneapolis/St. Paul, Minnesota > tclug-list@mn-linux.org > http://mailman.mn-linux.org/mailman/listinfo/tclug-list From florin at iucha.net Wed Jan 18 09:03:19 2006 From: florin at iucha.net (Florin Iucha) Date: Wed Jan 18 09:05:01 2006 Subject: [tclug-list] The dreaded execvp error! In-Reply-To: <44291.64.8.148.14.1137594413.squirrel@lctn.org> References: <44460.64.8.148.14.1137448507.squirrel@lctn.org> <20060117042025.GA10805@refried.org> <20060117044818.GD9680@iucha.net> <44291.64.8.148.14.1137594413.squirrel@lctn.org> Message-ID: <20060118150319.GH9680@iucha.net> On Wed, Jan 18, 2006 at 08:26:53AM -0600, Raymond Norton wrote: > > >> # sh -x /etc/init.d/httpd restart > >> > >> If that doesn't give you a good hint, I'm not sure what will. > > > > > Here is the problem. What can I do to fix it? > > + initlog -c /usr/sbin/httpd > execvp: No such file or directory > + '[' 255 -eq 0 ']' > + failure 'httpd startup' First check that /usr/sbin/httpd exists and it is readable and executable: $ ls -l /usr/sbin/httpd -rwxr-xr-x 1 root root 299912 Sep 2 11:00 /usr/sbin/httpd because if I run $ initlog -c foo WARNING: initlog is deprecated and will be removed in a future release execvp: No such file or directory Then I would replace the "initlog -c /usr/sbin/httpd" with: strace initlog -c /usr/sbin/httpd 2> /tmp/initlog.trace and look in /tmp/initlog.trace for clues. florin -- Don't question authority: they don't know either! -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 189 bytes Desc: Digital signature Url : http://shadowknight.real-time.com/pipermail/tclug-list/attachments/20060118/189f1364/attachment.pgp From tmarble at info9.net Wed Jan 18 10:10:55 2006 From: tmarble at info9.net (Tom Marble) Date: Wed Jan 18 10:10:27 2006 Subject: [tclug-list] is there any hope? In-Reply-To: <44021.64.8.148.14.1137592022.squirrel@lctn.org> References: <44021.64.8.148.14.1137592022.squirrel@lctn.org> Message-ID: <43CE688F.6020100@info9.net> Raymond Norton wrote: > Glad it's no me, but I have a school I work with that had a server go > down. (no back ups). It was a windows 2000 server with mirrored drives. I don't know about windows mirrored drives, but others have recommended LiveCD's to mount the partition(s). Let me make a plug for a CD everyone should have handy -- RIP Recovery Is Possible. http://www.tux.org/pub/people/kent-robotti/looplinux/rip/ You should be able to boot this and see the partitions: # fdisk -l /dev/hda # fdisk -l /dev/hdb # fdisk -l /dev/hdc # fdisk -l /dev/hdd Let's say the NTFS volume is /dev/hdb3 then you should be able to mount it read-only with # mount -t ntfs -o ro /dev/hdb3 /mnt I'm sure, however, that since Windows is so easy to administer that there is a way to pop in a good drive for the bad one and have it do the right thing(TM). HTH, --Tom From bear at umn.edu Tue Jan 17 09:23:42 2006 From: bear at umn.edu (William Bear) Date: Wed Jan 18 10:33:35 2006 Subject: [tclug-list] SourceForge down? In-Reply-To: References: <1137380295.32071.1.camel@workstation.mn.mtu.net> <32fd45370601170511s5c4b3c88sbdc31729d30fc6f0@mail.gmail.com> Message-ID: <43CD0BFE.2090602@umn.edu> The mirror has been down for awhile. The original admins who were working on the mirror left the University, and the project was in limbo. Recently, we've started working on the mirror again, but are unable to get Linux to play nice with the University SAN. dm-multipath would not work properly with the EMC Clariion hardware, and EMC's PowerPath software doesn't seem any better. We have a limited amount of time to work on the mirror, but we hope to have it up soon. Will Erik Anderson wrote: >On 1/17/06, Keith Bachman wrote: > > >>I just pulled up their front page - but I have noticed the complete loss of the University of >>Minnesota's mirror - which saddens me, I'll see if I can't get in touch through other groups >>and see what's happened, if anyone knows, please say so. >> >> > >It's seemed to me that historically, the UMN sf mirror has been the >most unstable and unreliable of all the mirrors. If I recall, their >mirror was down for a period of several months in late 2004/early >2005. > >_______________________________________________ >TCLUG Mailing List - Minneapolis/St. Paul, Minnesota >tclug-list@mn-linux.org >http://mailman.mn-linux.org/mailman/listinfo/tclug-list > > -- ------------------ William Bear School of Mathematics University of Minnesota W: 612-625-2309 GNUPG Fingerprint: CE5E 3571 CD4C F29C 8089 D0DF B175 26CE 5C27 B748 Thawte Cert MD5 Fingerprint: 05E1 7B63 096F 3CDF 9504 1F64 E23C 3982 ------------------ -------------- next part -------------- A non-text attachment was scrubbed... Name: smime.p7s Type: application/x-pkcs7-signature Size: 3217 bytes Desc: S/MIME Cryptographic Signature Url : http://shadowknight.real-time.com/pipermail/tclug-list/attachments/20060117/395968d5/smime.bin From bear at umn.edu Wed Jan 18 08:58:57 2006 From: bear at umn.edu (William Bear) Date: Wed Jan 18 10:33:39 2006 Subject: [tclug-list] SourceForge down? In-Reply-To: References: <1137380295.32071.1.camel@workstation.mn.mtu.net> <32fd45370601170511s5c4b3c88sbdc31729d30fc6f0@mail.gmail.com> <43CD0BFE.2090602@umn.edu> Message-ID: <43CE57B1.2050607@umn.edu> The mirror requires just under 2TB. Will Erik Anderson wrote: >On 1/17/06, William Bear wrote: > > >>The mirror has been down for awhile. The original admins who were >>working on the mirror left the University, and the project was in >>limbo. Recently, we've started working on the mirror again, but are >>unable to get Linux to play nice with the University SAN. dm-multipath >>would not work properly with the EMC Clariion hardware, and EMC's >>PowerPath software doesn't seem any better. We have a limited amount of >>time to work on the mirror, but we hope to have it up soon. >> >> > >Hrm - bummer. Thanks for the explanation. Good luck. > >BTW, how much disk does it take to mirror sf.net? > >_______________________________________________ >TCLUG Mailing List - Minneapolis/St. Paul, Minnesota >tclug-list@mn-linux.org >http://mailman.mn-linux.org/mailman/listinfo/tclug-list > > -- ------------------ William Bear School of Mathematics University of Minnesota W: 612-625-2309 GNUPG Fingerprint: CE5E 3571 CD4C F29C 8089 D0DF B175 26CE 5C27 B748 Thawte Cert MD5 Fingerprint: 05E1 7B63 096F 3CDF 9504 1F64 E23C 3982 ------------------ -------------- next part -------------- A non-text attachment was scrubbed... Name: smime.p7s Type: application/x-pkcs7-signature Size: 3217 bytes Desc: S/MIME Cryptographic Signature Url : http://shadowknight.real-time.com/pipermail/tclug-list/attachments/20060118/8ef3b10f/smime.bin From tclug at natecarlson.com Wed Jan 18 10:43:49 2006 From: tclug at natecarlson.com (Nate Carlson) Date: Wed Jan 18 10:48:27 2006 Subject: [tclug-list] SourceForge down? In-Reply-To: <43CD0BFE.2090602@umn.edu> References: <1137380295.32071.1.camel@workstation.mn.mtu.net> <32fd45370601170511s5c4b3c88sbdc31729d30fc6f0@mail.gmail.com> <43CD0BFE.2090602@umn.edu> Message-ID: On Tue, 17 Jan 2006, William Bear wrote: > The mirror has been down for awhile. The original admins who were > working on the mirror left the University, and the project was in limbo. > Recently, we've started working on the mirror again, but are unable to > get Linux to play nice with the University SAN. dm-multipath would not > work properly with the EMC Clariion hardware, and EMC's PowerPath > software doesn't seem any better. We have a limited amount of time to > work on the mirror, but we hope to have it up soon. Have you tried QLogic's driver that has built-in multipath support? That's what I'm using with my PowerVault 660F (it's based on a very common Mylex chipset.) ------------------------------------------------------------------------ | nate carlson | natecars@natecarlson.com | http://www.natecarlson.com | | depriving some poor village of its idiot since 1981 | ------------------------------------------------------------------------ From austad at signal15.com Wed Jan 18 12:31:53 2006 From: austad at signal15.com (Jay Austad) Date: Wed Jan 18 12:32:28 2006 Subject: [tclug-list] LDAP schema design Message-ID: I just installed FC4 with Fedora Directory Server. I'm looking for pointers on configuring it and getting a schema in place. I can't seem to find any docs that walk you through it and I don't have time to read 300 pages of docs. Anyone have any suggestions? Right now, the database is empty. ~jay From admin at lctn.org Wed Jan 18 16:29:03 2006 From: admin at lctn.org (Raymond Norton) Date: Wed Jan 18 16:31:29 2006 Subject: [tclug-list] is there any hope? In-Reply-To: <1137594995.10681.252143009@webmail.messagingengine.com> References: <44021.64.8.148.14.1137592022.squirrel@lctn.org> <1137594995.10681.252143009@webmail.messagingengine.com> Message-ID: <1103.64.8.148.29.1137623343.squirrel@lctn.org> Good news! Knoppix did the trick. It looks like we are going to recover all data on the drive. Thanks much for your recommendations. Raymond From andyzib at gmail.com Wed Jan 18 16:43:01 2006 From: andyzib at gmail.com (Andrew Zbikowski) Date: Wed Jan 18 16:44:31 2006 Subject: [tclug-list] Online photo gallery? In-Reply-To: <200601172125.54034.jus@krytosvirus.com> References: <5048946.1137480606584.JavaMail.root@sniper41> <200601172125.54034.jus@krytosvirus.com> Message-ID: Apache::Gallery is a nice simple deal. Create folders. Put images in the folders. Set what resolutions you want, access to original is there. No frills like photo copy or upload. You use scp to upload anyway don't you? :p http://apachegallery.dk/ -- Andrew S. Zbikowski | http://andy.zibnet.us SELECT * FROM users WHERE clue >0; 0 rows returned From strayf at freeshell.org Wed Jan 18 23:31:54 2006 From: strayf at freeshell.org (Steve Cayford) Date: Wed Jan 18 23:32:29 2006 Subject: [tclug-list] Rsync/rsnapshot failing to delete old files. Message-ID: <20060119053154.GA17346@isaiah> I'm having a struggle getting rsnapshot/rsync to delete files on my backup machine that have been deleted on my desktop machine. At first I thought I was using rsnapshot wrong, but I turned up the logging and grabbed the actual rsync command and ran it, but it still won't delete files that have been deleted from the source. The command is: "/usr/bin/rsync -ax --ignore-errors --delete --numeric-ids --relative --delete-excluded --rsh=/usr/bin/ssh root@client:/home/ /backupdir/client/ " The backup machine executing this call is running debian amd64 stable, with rsync 2.6.4, the client/source is running debian x86 testing with rsync 2.6.6. It's not reporting any errors, but I added the --ignore-errors just to make sure that wasn't the issue. Any thoughts or suggestions? Am I doing something clueless? Thanks. -Steve From bgilbertson at stonel.com Thu Jan 19 07:29:27 2006 From: bgilbertson at stonel.com (Bob Gilbertson) Date: Thu Jan 19 07:30:29 2006 Subject: [tclug-list] Rsync/rsnapshot failing to delete old files. In-Reply-To: <20060119053154.GA17346@isaiah> References: <20060119053154.GA17346@isaiah> Message-ID: <43CF9437.7090707@stonel.com> Does ssh work by itself? Authorized keys setup, no passphrase, etc? Haven't used some of the options myself so don't know how they may interact but appears --ignore-errors and --delete-excluded should be used with caution. I usually use something like rsync -avz --delete user@client:/dir_to_backup /backup_dirs/ manually for backup. Get rsync working without ssh first. Ssh works great once set up, but can be finicky getting set up properly IMO. Bob Steve Cayford wrote: >I'm having a struggle getting rsnapshot/rsync to delete files on my backup >machine that have been deleted on my desktop machine. > >At first I thought I was using rsnapshot wrong, but I turned up the logging >and grabbed the actual rsync command and ran it, but it still won't delete >files that have been deleted from the source. > >The command is: >"/usr/bin/rsync -ax --ignore-errors --delete --numeric-ids --relative >--delete-excluded --rsh=/usr/bin/ssh root@client:/home/ /backupdir/client/ " > >The backup machine executing this call is running debian amd64 stable, with >rsync 2.6.4, the client/source is running debian x86 testing with rsync 2.6.6. >It's not reporting any errors, but I added the --ignore-errors just to make >sure that wasn't the issue. > >Any thoughts or suggestions? Am I doing something clueless? > >Thanks. > >-Steve > From strayf at freeshell.org Thu Jan 19 08:22:05 2006 From: strayf at freeshell.org (Steve Cayford) Date: Thu Jan 19 08:30:28 2006 Subject: [tclug-list] Rsync/rsnapshot failing to delete old files. In-Reply-To: <43CF9437.7090707@stonel.com> References: <20060119053154.GA17346@isaiah> <43CF9437.7090707@stonel.com> Message-ID: <20060119142205.GA12611@isaiah> On Thu, Jan 19, 2006 at 07:29:27AM -0600, Bob Gilbertson wrote: > Does ssh work by itself? Authorized keys setup, no passphrase, etc? > Haven't used some of the options myself so don't know how they may > interact but appears --ignore-errors and --delete-excluded should be > used with caution. Yes, ssh works using the ssh-agent. The backups are fine except that they keep accumulating old files. The --ignore-errors is part of my testing/debugging process; it wasn't in the original call. I think ssh is the default transport for rsync now, spelling it out on the command line is just to make sure that doesn't change. > I usually use something like > rsync -avz --delete user@client:/dir_to_backup /backup_dirs/ > manually for backup. Get rsync working without ssh first. Ssh works > great once set up, but can be finicky getting set up properly IMO. > > Bob > From strayf at freeshell.org Thu Jan 19 11:22:36 2006 From: strayf at freeshell.org (Steve Cayford) Date: Thu Jan 19 11:26:28 2006 Subject: [tclug-list] Rsync/rsnapshot failing to delete old files. In-Reply-To: <20060119053154.GA17346@isaiah> References: <20060119053154.GA17346@isaiah> Message-ID: <20060119172236.GA28715@callisto-acss.acad.umn.edu> In case anyone's curious I think I've resolved this. Dropping the trailing slash on the source directory seems to do the trick. Seems like a bug, but maybe there's some good reason for it. -Steve On Wed, Jan 18, 2006 at 11:31:54PM -0600, Steve Cayford wrote: > I'm having a struggle getting rsnapshot/rsync to delete files on my backup > machine that have been deleted on my desktop machine. > > At first I thought I was using rsnapshot wrong, but I turned up the logging > and grabbed the actual rsync command and ran it, but it still won't delete > files that have been deleted from the source. > > The command is: > "/usr/bin/rsync -ax --ignore-errors --delete --numeric-ids --relative > --delete-excluded --rsh=/usr/bin/ssh root@client:/home/ /backupdir/client/ " > > The backup machine executing this call is running debian amd64 stable, with > rsync 2.6.4, the client/source is running debian x86 testing with rsync 2.6.6. > It's not reporting any errors, but I added the --ignore-errors just to make > sure that wasn't the issue. > > Any thoughts or suggestions? Am I doing something clueless? > > Thanks. > > -Steve > > _______________________________________________ > TCLUG Mailing List - Minneapolis/St. Paul, Minnesota > tclug-list@mn-linux.org > http://mailman.mn-linux.org/mailman/listinfo/tclug-list From jsanborn at earthlink.net Thu Jan 19 11:39:21 2006 From: jsanborn at earthlink.net (John Sanborn) Date: Thu Jan 19 11:40:28 2006 Subject: [tclug-list] Mac OS 8.6 freezes connecting to Fedora 3 Message-ID: <000001c61d1f$48886d90$0400a8c0@arda.com> Hi All, I have a Mac connected on my home network to share files from a Linux machine. I just use the clear text login with a Linux account. All was working fine for a very long time until recently I was doing something in Photoshop on the Mac and the connection to the share dropped (I'm sure PhotoShop isn't the problem). I thought maybe the NIC gave up and died but I can still open web sites in a browser. However, when I open the Chooser and try to connect to the Linux share, I get as far as selecting the server and entering the username and password, but when I click the Connect button it hangs. The dialog starts to open that would display the available directories to connect to, but that dialog remains blank and the little wristwatch cursor just sits there and nothing ever happens. I then have to force quit the chooser. I would really appreciate it if anyone has experienced something like this and might have suggestions to the cause or solution. Thanks, John -------------- next part -------------- An HTML attachment was scrubbed... URL: http://shadowknight.real-time.com/pipermail/tclug-list/attachments/20060119/f8bcd767/attachment-0001.htm From webmaster at mn-linux.org Thu Jan 19 14:13:14 2006 From: webmaster at mn-linux.org (TCLUG Classifieds) Date: Thu Jan 19 14:14:29 2006 Subject: [tclug-list] New TCLUG Classified Ad Message-ID: <200601192013.k0JKDER29254@crusader.real-time.com> New TCLUG Classified Ad Category: Computer Type of Ad: For Sale Subject: 3U Rackmount Case w/PS I have three near-new 3U cases. Comes with 300w PS. Bought new for $210 each. Will sell for $165 each or all 3 for $450. There is nothing wrong with these cases. Sale due to changes in business operations. Compare to KRI, Newegg, or even Nanosys (4U with no PS). This is a good price. Seller Email address: sales at bbwh dot com http://www.mn-linux.org/cgi-bin/classifieds/index.cgi From webmaster at mn-linux.org Thu Jan 19 14:17:15 2006 From: webmaster at mn-linux.org (TCLUG Classifieds) Date: Thu Jan 19 14:18:28 2006 Subject: [tclug-list] New TCLUG Classified Ad Message-ID: <200601192017.k0JKHFP30786@crusader.real-time.com> New TCLUG Classified Ad Category: Computer Type of Ad: For Sale Subject: 2U system 2U rackmount Intel Box with dual Xeon / 4-36GB SCSI / 512MB RAM for $1100 firm. Sale due to change in business operations. Serious inquiries, please Seller Email address: sales at bbwh dot com http://www.mn-linux.org/cgi-bin/classifieds/index.cgi From webmaster at mn-linux.org Thu Jan 19 14:23:55 2006 From: webmaster at mn-linux.org (TCLUG Classifieds) Date: Thu Jan 19 14:24:29 2006 Subject: [tclug-list] New TCLUG Classified Ad Message-ID: <200601192023.k0JKNtX31754@crusader.real-time.com> New TCLUG Classified Ad Category: Computer Type of Ad: For Sale Subject: Misc. HDs Misc. parts for sale, including SCSI HD's (9GB and 36GB), Adaptech 129 SCSI controllers, ribbons, adapters, MB's, etc. Make reasonable offers. Seller Email address: sales at bbwh dot com http://www.mn-linux.org/cgi-bin/classifieds/index.cgi From slushpupie at gmail.com Thu Jan 19 14:02:45 2006 From: slushpupie at gmail.com (slushpupie@gmail.com) Date: Thu Jan 19 14:32:28 2006 Subject: [tclug-list] LDAP schema design In-Reply-To: References: Message-ID: On 1/18/06, Jay Austad wrote: > I just installed FC4 with Fedora Directory Server. I'm looking for > pointers on configuring it and getting a schema in place. I can't > seem to find any docs that walk you through it and I don't have time > to read 300 pages of docs. Anyone have any suggestions? > > Right now, the database is empty. The schema it comes with will be sufficient for a large majority of uses (such as nsswitch, addressbooks, etc). You will likely want to create accounts for users/people using the shadowAccount object class, and posixGroup object class for groups. I tend to organize the users and groups into organizationalUnits (ou's), but that has no real effect on how nsswitch works unless you tell it to. -- Jay Kline http://www.slushpupie.com/ From galanolwe at yahoo.com Thu Jan 19 17:10:01 2006 From: galanolwe at yahoo.com (Olwe Bottorff) Date: Thu Jan 19 17:20:29 2006 Subject: [tclug-list] Nitty-gritty stuff Message-ID: <20060119231002.3037.qmail@web34314.mail.mud.yahoo.com> Two questions: 1) What does it mean when Linux says on shutdown "unmounting pipe file system"? 2) I found a neat book "Code Reading, The Open Source Perspective" by Diomidis Spinellis which does a lot to explain the real-world details of software development. Is there a similar book that would tell me such fun facts as my first question about "pipe file system"? I'm starting compsci grad school and I'm supposed to help an instructor put together a new operating system class. I'd like to find materials that really goes into the nitty-gritty of a Linux or BSD box. Before, they used Tannenbaum or Silberschatz which is fine for the theoretical level, but not on-the-ground real world Linux or BSD. For example, what would be a good real world Unix app to grab the source code for and snoop/hack around? Any ideas? Olwe --------------------------------- Yahoo! Photos Got holiday prints? See all the ways to get quality prints in your hands ASAP. -------------- next part -------------- An HTML attachment was scrubbed... URL: http://shadowknight.real-time.com/pipermail/tclug-list/attachments/20060119/9f98c7e4/attachment.htm From austad at signal15.com Thu Jan 19 15:59:38 2006 From: austad at signal15.com (Jay Austad) Date: Thu Jan 19 17:24:31 2006 Subject: [tclug-list] multicast testing Message-ID: Anyone know the name of a package that includes the programs "sender" and "receiver"? It's for testing multicast and I need a way to do some testing. Otherwise, does anyone have any suggestions for testing it? I've got VLC, so that's always an option, but I've been having issues with it. ~jay From eric at vangyzen.net Thu Jan 19 18:51:16 2006 From: eric at vangyzen.net (Eric van Gyzen) Date: Thu Jan 19 18:52:28 2006 Subject: [tclug-list] Nitty-gritty stuff In-Reply-To: <20060119231002.3037.qmail@web34314.mail.mud.yahoo.com> References: <20060119231002.3037.qmail@web34314.mail.mud.yahoo.com> Message-ID: <43D03404.80305@vangyzen.net> Olwe Bottorff wrote: > 2) I found a neat book "Code Reading, The Open Source Perspective" by > Diomidis Spinellis which does a lot to explain the real-world details of > software development. Is there a similar book that would tell me such > fun facts as my first question about "pipe file system"? I highly recommend "The Design and Implementation of the FreeBSD Operating System" by Marshall Kirk McKusick and George V. Neville-Neil (ISBN 0201702452). It's the only book that I bought within a week of its release. ;) As is obvious from the name, it's a very detailed description of every major subsystem of the kernel: process management, memory management, I/O, file systems, IPC, and more. For real hands-on learning, keep a copy of the FreeBSD kernel source handy, and refer to it often. > I'm starting compsci grad school and I'm supposed to help an instructor > put together a new operating system class. I'd like to find materials > that really goes into the nitty-gritty of a Linux or BSD box. Before, > they used Tannenbaum or Silberschatz which is fine for the theoretical > level, but not on-the-ground real world Linux or BSD. For example, what > would be a good real world Unix app to grab the source code for and > snoop/hack around? Any ideas? It depends on the intentions of your class. If you want a more hands-on version of the typical undergrad OS class, the FreeBSD book and source would be great. If you're aiming more at the user-space level, the source for a Unix shell (such as bash) might be good: shells use a variety of an operating system's features. I hope this helps. Eric From bhurt at spnz.org Thu Jan 19 22:03:03 2006 From: bhurt at spnz.org (Brian Hurt) Date: Thu Jan 19 21:54:29 2006 Subject: [tclug-list] Nitty-gritty stuff In-Reply-To: <20060119231002.3037.qmail@web34314.mail.mud.yahoo.com> References: <20060119231002.3037.qmail@web34314.mail.mud.yahoo.com> Message-ID: On Thu, 19 Jan 2006, Olwe Bottorff wrote: > Two questions: > 1) What does it mean when Linux says on shutdown > "unmounting pipe file system"? IIRC, it's a virtual filesystem. Named pipes go into the normal file system, while unnamed pipes (such as those created with the pipe(2) system call) are put onto the pipefs. This way, every descriptor has some file on some file system associated with it. > > 2) I found a neat book "Code Reading, The Open Source Perspective" by > Diomidis Spinellis which does a lot to explain the real-world details of > software development. Is there a similar book that would tell me such > fun facts as my first question about "pipe file system"? Google is your friend. It'll bring up: http://cdrom.gnutemberg.org/LDP/guide/lki.pdf Which has some discussion of the pipefs file system. For more information, you probably want to google the linux kernel mailing list archive. And then read the source code. Lesson number one, from a professional device driver writer: the important information is never written down in the documentation. The advantage of open source is that you don't have to disassemble the OS to figure things out (and yes, Virginia, I have have disassembled more than one OS). > > I'm starting compsci grad school and I'm supposed to help an instructor > put together a new operating system class. I'd like to find materials > that really goes into the nitty-gritty of a Linux or BSD box. Before, > they used Tannenbaum or Silberschatz which is fine for the theoretical > level, but not on-the-ground real world Linux or BSD. For example, what > would be a good real world Unix app to grab the source code for and > snoop/hack around? Any ideas? You might want to consider "The Design and Implementation of BSD 4.X" for some X as a text book. Tannenbaum's Minix book is also good for practical OS application. Pretty much once you get past Tannenbaum and/or The Daemon Book, the next real step is to start writting real device drivers. I'd be inclined to pick some not-too-complicated device, and write drivers for it for a couple of different OSs. If I had the time (and hardware), I'd say Windows, Linux, Solaris, and AIX is a good spread. That's certainly way too much for one course (heck, one device driver probably is). And you don't have the fun of buggy hardware, and trying to figure out if it's a software bug or a hardware bug. But those four OSs are a good spread of both what OSs do right, and what OSs do wrong, and what OSs just do differently. Brian From jsanborn at earthlink.net Fri Jan 20 07:44:59 2006 From: jsanborn at earthlink.net (John Sanborn) Date: Fri Jan 20 07:46:31 2006 Subject: [tclug-list] Kernel Panic Message-ID: <002a01c61dc7$b4c67440$0400a8c0@arda.com> Hi All, Installing Fedora 3 on some generic box with a PIII 600MHz processor and I just get: <0>Kernel panic - not syncing: Fatal exception in interrupt Any good suggestions on this one? Thanks, John -------------- next part -------------- An HTML attachment was scrubbed... URL: http://shadowknight.real-time.com/pipermail/tclug-list/attachments/20060120/b7dc70b8/attachment-0001.htm From mbmiller at taxa.epi.umn.edu Fri Jan 20 09:28:55 2006 From: mbmiller at taxa.epi.umn.edu (Mike Miller) Date: Fri Jan 20 09:29:32 2006 Subject: [tclug-list] monitoring network activity of a Linux box Message-ID: A friend has a Linux machine with many users. Suppose one or more users is doing inappropriate things with the box like sending ping floods or scanning networks. He would want to know about it. Is there any software that is designed specifically to monitor for this kind of stuff and report when it sees something unusual? A program like netstat can detect all sorts of network activity, but it would have to be called at intervals and its output would have to be parsed and analyzed by some other programs. Thanks in advance for any tips. Mike From SDALAN04 at smumn.edu Fri Jan 20 09:51:58 2006 From: SDALAN04 at smumn.edu (Dave Alanis) Date: Fri Jan 20 09:48:30 2006 Subject: [tclug-list] monitoring network activity of a Linux box Message-ID: <200601201551588601455e2d@mail.smumn.edu> On Friday, January 20, 2006 9:28 AM, Mike Miller wrote: > >Date: Fri, 20 Jan 2006 09:28:55 -0600 (CST) >From: Mike Miller >To: TCLUG List >Subject: [tclug-list] monitoring network activity of a Linux box > >A friend has a Linux machine with many users. Suppose one or more users >is doing inappropriate things with the box like sending ping floods or >scanning networks. He would want to know about it. Is there any software >that is designed specifically to monitor for this kind of stuff and report >when it sees something unusual? A program like netstat can detect all >sorts of network activity, but it would have to be called at intervals and >its output would have to be parsed and analyzed by some other programs. > >Thanks in advance for any tips. > >Mike > There are alot of tools you can use to monitor network traffic, google turned out this page from Standford university that lists almost every monitoring tool out there; it also has a brief introduction to Network Monitoring Protocol (NMP). http://www.slac.stanford.edu/xorg/nmtf/nmtf-tools.html In my experience the most widely used mnitoring software is Snort, you can get real specific as in setting rules of attacks that you want to monitor and bind them to specific IP addresses, etc. My first experience with seeing how cool Snort was when seeing the specific reports and information it provided when I installed Smoothwall Firewall at a friends business. http://www.snort.org/ ______________________________________ >TCLUG Mailing List - Minneapolis/St. Paul, Minnesota >tclug-list@mn-linux.org >http://mailman.mn-linux.org/mailman/listinfo/tclug-list "Great Spirits Have Always Encountered Violent Opposition From Mediocre Minds" - Einstein "Cuanta estupidez en tan poco cerebro!" From erikerik at gmail.com Fri Jan 20 09:46:14 2006 From: erikerik at gmail.com (Erik Anderson) Date: Fri Jan 20 09:48:35 2006 Subject: [tclug-list] monitoring network activity of a Linux box In-Reply-To: References: Message-ID: On 1/20/06, Mike Miller wrote: > A friend has a Linux machine with many users. Suppose one or more users > is doing inappropriate things with the box like sending ping floods or > scanning networks. He would want to know about it. Is there any software > that is designed specifically to monitor for this kind of stuff and report > when it sees something unusual? A program like netstat can detect all > sorts of network activity, but it would have to be called at intervals and > its output would have to be parsed and analyzed by some other programs. First off - a little rant. If your friend can't trust his shell users, they have no right to be on that box. If he has *any* question whatsoever about their usage of the box, they should either be denied shell access until the details get sorted out or use a very limited shell. He could possibly think about using PKI auth with a limited command set. There are countless guides on the internet on this subject. I haven't had specific experience with Intrusion Detection Systems, but it seems like this would be the perfect application for one. Snort comes to mind. They're specifically designed to scan for and detect this sort of behavior, though I don't think they have the ability to be able to tell which user kicked off a portscan/ping flood/whatever. -Erik From jsievert at gmail.com Fri Jan 20 10:35:14 2006 From: jsievert at gmail.com (Jason Sievert) Date: Fri Jan 20 10:36:30 2006 Subject: [tclug-list] Samba and Mac OS 10.4 Message-ID: <6cfb19470601200835g7041f24ctee7b18dfa2f36d37@mail.gmail.com> Hello all. I got kind of an odd problem. I have a bunch of OS X boxes that the finder is locking up when connecting to a samba share. 10.3 and older do not have this issue, I am only seeing this on 10.4. The 10.4 boxes can connect to a windows share just fine and windows can connect to the samba box just fine. Has anybody seen anything like this? -------------- next part -------------- An HTML attachment was scrubbed... URL: http://shadowknight.real-time.com/pipermail/tclug-list/attachments/20060120/12b5ff40/attachment.htm From tclug at freakzilla.com Fri Jan 20 10:47:56 2006 From: tclug at freakzilla.com (Yaron) Date: Fri Jan 20 10:48:29 2006 Subject: [tclug-list] Samba and Mac OS 10.4 In-Reply-To: <6cfb19470601200835g7041f24ctee7b18dfa2f36d37@mail.gmail.com> References: <6cfb19470601200835g7041f24ctee7b18dfa2f36d37@mail.gmail.com> Message-ID: On Fri, 20 Jan 2006, Jason Sievert wrote: > Has anybody seen anything like this? All I can tell you is that my 10.4 box has no problem connecting to my samba shares. -Yaron -- From jsievert at gmail.com Fri Jan 20 11:10:10 2006 From: jsievert at gmail.com (Jason Sievert) Date: Fri Jan 20 11:10:30 2006 Subject: [tclug-list] Samba and Mac OS 10.4 In-Reply-To: References: <6cfb19470601200835g7041f24ctee7b18dfa2f36d37@mail.gmail.com> Message-ID: <6cfb19470601200910r368547fbibe1f300f30d6c617@mail.gmail.com> What version of samba and do your shares allow guest access. I am running version 3.0.14a on one of my servers. Thanks, Jason On 1/20/06, Yaron wrote: > > On Fri, 20 Jan 2006, Jason Sievert wrote: > > > Has anybody seen anything like this? > > All I can tell you is that my 10.4 box has no problem connecting to my > samba shares. > > > -Yaron > > -- > > _______________________________________________ > TCLUG Mailing List - Minneapolis/St. Paul, Minnesota > tclug-list@mn-linux.org > http://mailman.mn-linux.org/mailman/listinfo/tclug-list > -------------- next part -------------- An HTML attachment was scrubbed... URL: http://shadowknight.real-time.com/pipermail/tclug-list/attachments/20060120/1a98d128/attachment.htm From dniesen at gmail.com Fri Jan 20 11:25:56 2006 From: dniesen at gmail.com (Donovan Niesen) Date: Fri Jan 20 11:28:30 2006 Subject: [tclug-list] Looking for a news ticker Message-ID: <47f4d5e70601200925v56d89c72k7bfcfdc5407d71a3@mail.gmail.com> I'm looking for a somewhat customizable news ticker program for X. Not an applet for KDE or Gnome as I'm just running a basic X session and trying to arrange a video, a pretty clock and a news ticker into one window. I've tried TT-News which is so close to what I need but unfortunately when it updates it flashes white on the screen. I can putz around with this one for a while longer but if anybody knows of another good news ticker for X, please, let me know. -- Donovan Niesen From tclug at freakzilla.com Fri Jan 20 11:36:06 2006 From: tclug at freakzilla.com (Yaron) Date: Fri Jan 20 11:36:30 2006 Subject: [tclug-list] Samba and Mac OS 10.4 In-Reply-To: <6cfb19470601200910r368547fbibe1f300f30d6c617@mail.gmail.com> References: <6cfb19470601200835g7041f24ctee7b18dfa2f36d37@mail.gmail.com> <6cfb19470601200910r368547fbibe1f300f30d6c617@mail.gmail.com> Message-ID: On Fri, 20 Jan 2006, Jason Sievert wrote: > What version of samba and do your shares allow guest access. Looks like they're all 3.0.21a. -Yaron -- From jsievert at gmail.com Fri Jan 20 14:44:52 2006 From: jsievert at gmail.com (Jason Sievert) Date: Fri Jan 20 14:46:30 2006 Subject: [tclug-list] Samba and Mac OS 10.4 In-Reply-To: References: <6cfb19470601200835g7041f24ctee7b18dfa2f36d37@mail.gmail.com> <6cfb19470601200910r368547fbibe1f300f30d6c617@mail.gmail.com> Message-ID: <6cfb19470601201244s7b0f38eu987086a387b236cb@mail.gmail.com> Yep, just upgraded and 3.0.20 does not have the problem with OS X. Hmmmmmmmmmmmm On 1/20/06, Yaron wrote: > > On Fri, 20 Jan 2006, Jason Sievert wrote: > > > What version of samba and do your shares allow guest access. > > Looks like they're all 3.0.21a. > > > -Yaron > > -- > > _______________________________________________ > TCLUG Mailing List - Minneapolis/St. Paul, Minnesota > tclug-list@mn-linux.org > http://mailman.mn-linux.org/mailman/listinfo/tclug-list > -------------- next part -------------- An HTML attachment was scrubbed... URL: http://shadowknight.real-time.com/pipermail/tclug-list/attachments/20060120/bf63e3ad/attachment.htm From srcfoo at gmail.com Fri Jan 20 16:38:16 2006 From: srcfoo at gmail.com (Eric Peterson) Date: Fri Jan 20 16:40:30 2006 Subject: [tclug-list] Kernel Panic In-Reply-To: <002a01c61dc7$b4c67440$0400a8c0@arda.com> References: <002a01c61dc7$b4c67440$0400a8c0@arda.com> Message-ID: <579c6fd30601201438m7516b8cdn2daf1f4667998943@mail.gmail.com> On 1/20/06, John Sanborn wrote: > Installing Fedora 3 on some generic box with a PIII 600MHz processor and I just get: > <0>Kernel panic ? not syncing: Fatal exception in interrupt > > It could be a hardware issue or a software issue. We need more info. What stage of the installation are you in when this happens? I.e. booting to the CD, middle of install, after install on first boot, etc. Are you stuck with FC3? Could you try FC4, Ubuntu, or others? What is the rest of the hardware? The processor rarely has anything to do with these issues. Most often I see this kind of error when your boot image doesn't have the module for your hard disk controller. I've also had similar problems on machines with bad RAM while trying to load the install CD's image into memory. Anyway, give us some more info and maybe we can help. -Eric -------------- next part -------------- An HTML attachment was scrubbed... URL: http://shadowknight.real-time.com/pipermail/tclug-list/attachments/20060120/94c81358/attachment.htm From galanolwe at yahoo.com Sat Jan 21 08:49:31 2006 From: galanolwe at yahoo.com (Olwe Bottorff) Date: Sat Jan 21 08:58:30 2006 Subject: [tclug-list] Any good examples of ar? Message-ID: <20060121144931.42293.qmail@web34308.mail.mud.yahoo.com> Can someone give me a good real-world scenario/example using ar (arcive) to build library archives? In exchange I'll tell you who did the original theme song for "Newton's Apple" and where you can get the full 7:50min version. ;-) Olwe __________________________________________________ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com From asim at cognizo.com Sat Jan 21 09:59:44 2006 From: asim at cognizo.com (Asim Baig) Date: Sat Jan 21 10:00:30 2006 Subject: [tclug-list] New open source project needs volunteers Message-ID: <43D25A70.9090108@cognizo.com> CATS is a new open source project that I have been working on since summer. I run an IT staffing shop in Minnetonka and needed an affordable system to manage my business. Couldn't find a decent commercial solution or an open source alternative, so I decided to write one.....:-) CATS is an Applicant Tracking System (ATS) primarily used by recruiters and HR professionals to manage candidates/gigs etc. Its built on LAMP platform ( I must admit though that all development is in Linux, but we have hosted it on a FreeBSD box....don't ask, one of my developers is a big freebsd fan). Anyways, we are looking for volunteers for the project. Our current challenges are: - Mysql replication and high availability issues. (Advice on moving up to Mysql 5....any benefits on using stored procs?) - PHP coding (have a growing list of features) - Advanced Bash scripting - Graphic Designer (nice to have dhtml./css wizardry and a bit of AJAX wont hurt either) Because it is the first ever open source ATS system out there, we have received great response from recruiters from all over since announcing it on Jan 10. The project is not ready for prime time yet and we need help (its really a 3 legged 1 eyed dog at this point) If anyone is interested in joining our project, please send me an email at asim@catsone.com and tell us how you can help us. The project is hosted online so you can check it out at http://www.catsone.com (Demo available) Regards, -- Asim Baig CATS Dev Team Lead asim@catsone.com 952-417-0067 From tmarble at info9.net Sat Jan 21 10:27:27 2006 From: tmarble at info9.net (Tom Marble) Date: Sat Jan 21 10:28:30 2006 Subject: [tclug-list] Any good examples of ar? In-Reply-To: <20060121144931.42293.qmail@web34308.mail.mud.yahoo.com> References: <20060121144931.42293.qmail@web34308.mail.mud.yahoo.com> Message-ID: <43D260EF.9090902@info9.net> Olwe Bottorff wrote: > Can someone give me a good real-world scenario/example > using ar (arcive) to build library archives? Clearly the most apropos answer to this is to use the example of Debian [1] packages (.deb's) which are created using ar [2]. HTH, --Tom [1] http://distrowatch.com/dwres.php?resource=major Half of the top 10 distros are Debian (or derivatives): Ubuntu, Debian, Knoppix, Mepis, Xandros. [2] http://www.debian-administration.org/articles/116 From sulrich at botwerks.org Sat Jan 21 12:48:06 2006 From: sulrich at botwerks.org (steve ulrich) Date: Sat Jan 21 12:48:30 2006 Subject: [tclug-list] Nitty-gritty stuff In-Reply-To: <20060119231002.3037.qmail@web34314.mail.mud.yahoo.com> References: <20060119231002.3037.qmail@web34314.mail.mud.yahoo.com> Message-ID: <467FF0AE-20D5-4A31-9FC5-2112D6EBB549@botwerks.org> a couple of years ago i took a freebsd kernel internals course put on by kirk mckusick and i have to say it was the best discussion of kernel internals that i've ever seen. i still have the course material if you'd like to peruse it to get an idea of what was in that course. i've been very impressed with the quality of the daemon book when there was something that i wanted to dig into i've usually been able to suss it out between the source and the daemon book. On Jan 19, 2006, at 5:10 PM, Olwe Bottorff wrote: > Two questions: > 1) What does it mean when Linux says on shutdown "unmounting pipe > file system"? > > 2) I found a neat book "Code Reading, The Open Source Perspective" > by Diomidis Spinellis which does a lot to explain the real-world > details of software development. Is there a similar book that would > tell me such fun facts as my first question about "pipe file system"? > > I'm starting compsci grad school and I'm supposed to help an > instructor put together a new operating system class. I'd like to > find materials that really goes into the nitty-gritty of a Linux or > BSD box. Before, they used Tannenbaum or Silberschatz which is fine > for the theoretical level, but not on-the-ground real world Linux > or BSD. For example, what would be a good real world Unix app to > grab the source code for and snoop/hack around? Any ideas? > > Olwe > > Yahoo! Photos > Got holiday prints? See all the ways to get quality prints in your > hands ASAP. > _______________________________________________ > TCLUG Mailing List - Minneapolis/St. Paul, Minnesota > tclug-list@mn-linux.org > http://mailman.mn-linux.org/mailman/listinfo/tclug-list -- steve ulrich sulrich@botwerks.org PGP: 8D0B 0EE9 E700 A6CF ABA7 AE5F 4FD4 07C9 133B FAFC From sulrich at botwerks.org Sat Jan 21 13:02:22 2006 From: sulrich at botwerks.org (steve ulrich) Date: Sat Jan 21 13:02:30 2006 Subject: [tclug-list] multicast testing In-Reply-To: References: Message-ID: <7D195C0B-4C94-4496-8817-6D23676801C8@botwerks.org> jay - while i can't speak to the packages containing sender/receiver. i have done a fair amount of multicast network testing. is there something specific that you're looking for? if you're playing w/VLC i surmise you're doing video testing and VLC will let you act as a server(source) as well as a receiver. it's been a while since i've used it, but the darwin streaming server from apple and the associated quicktime clients will support SDP and multicast source streaming. On Jan 19, 2006, at 3:59 PM, Jay Austad wrote: > Anyone know the name of a package that includes the programs > "sender" and "receiver"? It's for testing multicast and I need a > way to do some testing. > > Otherwise, does anyone have any suggestions for testing it? I've > got VLC, so that's always an option, but I've been having issues > with it. > > ~jay > > > _______________________________________________ > TCLUG Mailing List - Minneapolis/St. Paul, Minnesota > tclug-list@mn-linux.org > http://mailman.mn-linux.org/mailman/listinfo/tclug-list -- steve ulrich sulrich@botwerks.org PGP: 8D0B 0EE9 E700 A6CF ABA7 AE5F 4FD4 07C9 133B FAFC From galanolwe at yahoo.com Sat Jan 21 20:51:19 2006 From: galanolwe at yahoo.com (Olwe Bottorff) Date: Sat Jan 21 20:52:31 2006 Subject: [tclug-list] Symbol Tables Message-ID: <20060122025119.30730.qmail@web34310.mail.mud.yahoo.com> When they talk about symbol tables in a book about compilers are these the same symbol tables you see when you run nm on an object file or executable? Is there a connection? Olwe __________________________________________________ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com From bhurt at spnz.org Sat Jan 21 21:16:21 2006 From: bhurt at spnz.org (Brian Hurt) Date: Sat Jan 21 21:06:31 2006 Subject: [tclug-list] Symbol Tables In-Reply-To: <20060122025119.30730.qmail@web34310.mail.mud.yahoo.com> References: <20060122025119.30730.qmail@web34310.mail.mud.yahoo.com> Message-ID: On Sat, 21 Jan 2006, Olwe Bottorff wrote: > When they talk about symbol tables in a book about > compilers are these the same symbol tables you see > when you run nm on an object file or executable? Is > there a connection? Generally, the symbol tables inside a compiler contain a lot more symbols- and more information about those symbols- than the symbol tables left inside an object file and reported by nm or objdump or similiar. For example, you had C code like: void foo (int x, int y) { int z; ... } The compiler's symbol table will include foo, x, y, and z, as well as the types (foo is a function that takes two ints and returns void, x, y, and z are all ints, etc). But the only symbol table that will be in the object file is foo, and the only information about it will be it's location within the object file. Basically, only that information needed by the linker is left in the object file. Brian From admin at lctn.org Mon Jan 23 09:18:39 2006 From: admin at lctn.org (Raymond Norton) Date: Mon Jan 23 09:20:33 2006 Subject: [tclug-list] locating driver info Message-ID: <35195.64.8.149.194.1138029519.squirrel@lctn.org> I have a used Dell laptop that must have been modified after it was shipped because I cannot find the proper windows driver for it. I booted it with Knoppix, which finds and brings up the nic. Where can I look in Knoppix to see what driver it used, so I can get a clue what windows driver to look for? Raymond From dniesen at gmail.com Mon Jan 23 09:28:57 2006 From: dniesen at gmail.com (Donovan Niesen) Date: Mon Jan 23 09:36:32 2006 Subject: [tclug-list] locating driver info In-Reply-To: <35195.64.8.149.194.1138029519.squirrel@lctn.org> References: <35195.64.8.149.194.1138029519.squirrel@lctn.org> Message-ID: <47f4d5e70601230728o5104f008h48a3403f785046a8@mail.gmail.com> On 1/23/06, Raymond Norton wrote: > > I have a used Dell laptop that must have been modified after it was > shipped because I cannot find the proper windows driver for it. I booted > it with Knoppix, which finds and brings up the nic. Where can I look in > Knoppix to see what driver it used, so I can get a clue what windows > driver to look for? > > Raymond > > _______________________________________________ > TCLUG Mailing List - Minneapolis/St. Paul, Minnesota > tclug-list@mn-linux.org > http://mailman.mn-linux.org/mailman/listinfo/tclug-list > Check lspci and look for the "Ethernet controller" line. That shold at least give you a better description of it. -- Donovan Niesen From bhurt at spnz.org Mon Jan 23 09:52:01 2006 From: bhurt at spnz.org (Brian Hurt) Date: Mon Jan 23 09:42:32 2006 Subject: [tclug-list] locating driver info In-Reply-To: <35195.64.8.149.194.1138029519.squirrel@lctn.org> References: <35195.64.8.149.194.1138029519.squirrel@lctn.org> Message-ID: On Mon, 23 Jan 2006, Raymond Norton wrote: > > I have a used Dell laptop that must have been modified after it was > shipped because I cannot find the proper windows driver for it. I booted > it with Knoppix, which finds and brings up the nic. Where can I look in > Knoppix to see what driver it used, so I can get a clue what windows > driver to look for? A couple of places to look. The first thing I'd try is running the command lspci, which gives you a list of all pci devices in your system. Another thing to try would be lsmod (giving you a list of loaded modules in your system, including loaded device drivers). But you'll probably have better luck with lspci. Brian From aristophrenic at warpmail.net Mon Jan 23 09:41:11 2006 From: aristophrenic at warpmail.net (Isaac Atilano) Date: Mon Jan 23 09:42:37 2006 Subject: [tclug-list] locating driver info In-Reply-To: <35195.64.8.149.194.1138029519.squirrel@lctn.org> References: <35195.64.8.149.194.1138029519.squirrel@lctn.org> Message-ID: <1138030871.13209.252513105@webmail.messagingengine.com> First you can try an lsmod to list the kernel modules currently loaded. If Knoppix uses a monolithic kernel structure then this may not work. If you have an integrated nic and Knoppix has the command, run lspci to list the devices connected to the pci bus of your system. Also, try surfing the /proc/bus directory if you have it and you may find the device listed in a file in there. ----- Original message ----- From: "Raymond Norton" To: tclug-list@mn-linux.org Date: Mon, 23 Jan 2006 09:18:39 -0600 (CST) Subject: [tclug-list] locating driver info I have a used Dell laptop that must have been modified after it was shipped because I cannot find the proper windows driver for it. I booted it with Knoppix, which finds and brings up the nic. Where can I look in Knoppix to see what driver it used, so I can get a clue what windows driver to look for? Raymond _______________________________________________ TCLUG Mailing List - Minneapolis/St. Paul, Minnesota tclug-list@mn-linux.org http://mailman.mn-linux.org/mailman/listinfo/tclug-list From john.meier at gmail.com Mon Jan 23 09:45:27 2006 From: john.meier at gmail.com (John Meier) Date: Mon Jan 23 09:52:13 2006 Subject: [tclug-list] locating driver info In-Reply-To: <35195.64.8.149.194.1138029519.squirrel@lctn.org> References: <35195.64.8.149.194.1138029519.squirrel@lctn.org> Message-ID: <65293fcc0601230745o4f8cb149t39a1ebba77ede206@mail.gmail.com> On 1/23/06, Raymond Norton wrote: > > > I have a used Dell laptop that must have been modified after it was > shipped because I cannot find the proper windows driver for it. I booted > it with Knoppix, which finds and brings up the nic. Where can I look in > Knoppix to see what driver it used, so I can get a clue what windows > driver to look for? lspci and lsmod should give you the hardware listing (assuming built in NIC) and a listing of drivers. on my dell lspci gives this for the NIC: 0000:08:04.0 Ethernet controller: Intel Corporation 82557/8/9 [Ethernet Pro 100] (rev 08) which uses the "e100" drvier which lsmod reports. Raymond > > _______________________________________________ > TCLUG Mailing List - Minneapolis/St. Paul, Minnesota > tclug-list@mn-linux.org > http://mailman.mn-linux.org/mailman/listinfo/tclug-list > -------------- next part -------------- An HTML attachment was scrubbed... URL: http://shadowknight.real-time.com/pipermail/tclug-list/attachments/20060123/24bc666a/attachment.htm From ewilts at ewilts.org Mon Jan 23 11:30:49 2006 From: ewilts at ewilts.org (Ed Wilts) Date: Mon Jan 23 11:33:29 2006 Subject: [tclug-list] locating driver info In-Reply-To: <35195.64.8.149.194.1138029519.squirrel@lctn.org> References: <35195.64.8.149.194.1138029519.squirrel@lctn.org> Message-ID: <20060123173049.GA27498@www.ewilts.org> On Mon, Jan 23, 2006 at 09:18:39AM -0600, Raymond Norton wrote: > > I have a used Dell laptop that must have been modified after it was > shipped because I cannot find the proper windows driver for it. I booted > it with Knoppix, which finds and brings up the nic. Where can I look in > Knoppix to see what driver it used, so I can get a clue what windows > driver to look for? Dell is actually pretty good about putting information on its support web site. Go to http://support.dell.com and enter your service tag. You can then view the detailed information on what the system originally shipped with and also gives you some tools to generate the current configuration. Given the service tag number, you can also download the drivers for it. I don't believe that the system needs to be under any sort of warranty for this. If you don't know the service tag, you can get this from Knoppix if you install something like lshw which reports this as the serial number. .../Ed -- Ed Wilts, RHCE Mounds View, MN, USA mailto:ewilts@ewilts.org Member #1, Red Hat Community Ambassador Program From john.meier at gmail.com Mon Jan 23 11:44:27 2006 From: john.meier at gmail.com (John Meier) Date: Mon Jan 23 11:44:36 2006 Subject: [tclug-list] locating driver info In-Reply-To: <20060123173049.GA27498@www.ewilts.org> References: <35195.64.8.149.194.1138029519.squirrel@lctn.org> <20060123173049.GA27498@www.ewilts.org> Message-ID: <65293fcc0601230944t374a2ea2j8a17ef80e26a9f21@mail.gmail.com> On 1/23/06, Ed Wilts wrote: > > On Mon, Jan 23, 2006 at 09:18:39AM -0600, Raymond Norton wrote: > > > > I have a used Dell laptop that must have been modified after it was > > shipped because I cannot find the proper windows driver for it. I booted > > it with Knoppix, which finds and brings up the nic. Where can I look in > > Knoppix to see what driver it used, so I can get a clue what windows > > driver to look for? > > Dell is actually pretty good about putting information on its support > web site. Go to http://support.dell.com and enter your service tag. > You can then view the detailed information on what the system originally > shipped with and also gives you some tools to generate the current > configuration. Given the service tag number, you can also download the > drivers for it. I don't believe that the system needs to be under any > sort of warranty for this. > > If you don't know the service tag, you can get this from Knoppix if you > install something like lshw which reports this as the serial number. Service tag is also in the BIOS. .../Ed > > -- > Ed Wilts, RHCE > Mounds View, MN, USA > mailto:ewilts@ewilts.org > Member #1, Red Hat Community Ambassador Program > > _______________________________________________ > TCLUG Mailing List - Minneapolis/St. Paul, Minnesota > tclug-list@mn-linux.org > http://mailman.mn-linux.org/mailman/listinfo/tclug-list > -------------- next part -------------- An HTML attachment was scrubbed... URL: http://shadowknight.real-time.com/pipermail/tclug-list/attachments/20060123/20c8eccc/attachment-0001.htm From admin at lctn.org Mon Jan 23 11:49:53 2006 From: admin at lctn.org (Raymond Norton) Date: Mon Jan 23 11:50:37 2006 Subject: [tclug-list] locating driver info In-Reply-To: <20060123173049.GA27498@www.ewilts.org> References: <35195.64.8.149.194.1138029519.squirrel@lctn.org> <20060123173049.GA27498@www.ewilts.org> Message-ID: <60850.64.8.149.194.1138038593.squirrel@lctn.org> > Given the service tag number, you can also download the > drivers for it. I don't believe that the system needs to be under any > sort of warranty for this. > > If you don't know the service tag, you can get this from Knoppix if you > install something like lshw which reports this as the serial number. That is where I started, using the service tag to identify proper hardware. None of the drivers offered worked, but I may have just found it via a forum. From galanolwe at yahoo.com Tue Jan 24 14:18:58 2006 From: galanolwe at yahoo.com (Olwe Bottorff) Date: Tue, 24 Jan 2006 12:18:58 -0800 (PST) Subject: [tclug-list] Newbi queston about Pipes Message-ID: <20060124201858.82567.qmail@web34309.mail.mud.yahoo.com> If I use pipes at the command line in a shell >ls | grep myfile is the underlying c code in ls and grep using named pipes, fifo, or something much more mysterious? Olwe __________________________________________________ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com From erikerik at gmail.com Tue Jan 24 14:38:48 2006 From: erikerik at gmail.com (Erik Anderson) Date: Tue, 24 Jan 2006 14:38:48 -0600 Subject: [tclug-list] Newbi queston about Pipes In-Reply-To: <20060124201858.82567.qmail@web34309.mail.mud.yahoo.com> References: <20060124201858.82567.qmail@web34309.mail.mud.yahoo.com> Message-ID: On 1/24/06, Olwe Bottorff wrote: > If I use pipes at the command line in a shell > > >ls | grep myfile > > is the underlying c code in ls and grep using named > pipes, fifo, or something much more mysterious? I don't believe it's that complex at all. Please correct me if I'm wrong, but in the shell, I believe that the | operator just takes STDOUT one program and redirects it to STDIN of the other. From nate at refried.org Tue Jan 24 14:57:57 2006 From: nate at refried.org (Nate Straz) Date: Tue, 24 Jan 2006 14:57:57 -0600 Subject: [tclug-list] Newbi queston about Pipes In-Reply-To: <20060124201858.82567.qmail@web34309.mail.mud.yahoo.com> References: <20060124201858.82567.qmail@web34309.mail.mud.yahoo.com> Message-ID: <20060124205757.GA15567@refried.org> On Tue, Jan 24, 2006 at 12:18:58PM -0800, Olwe Bottorff wrote: > If I use pipes at the command line in a shell > > >ls | grep myfile > > is the underlying c code in ls and grep using named > pipes, fifo, or something much more mysterious? fifo, i.e. an un-named pipe. If you run it with strace like so: strace -f /bin/sh -c 'ls | grep myfile' 2>&1 | less you should see that the shell calls pipe() and dups it to stdin and stdout before starting ls and grep. Nate From mburns+ml at clonetank.org Tue Jan 24 15:29:23 2006 From: mburns+ml at clonetank.org (Michael Burns) Date: Tue, 24 Jan 2006 15:29:23 -0600 Subject: [tclug-list] Newbi queston about Pipes In-Reply-To: <20060124205757.GA15567@refried.org> References: <20060124201858.82567.qmail@web34309.mail.mud.yahoo.com> <20060124205757.GA15567@refried.org> Message-ID: <20060124212923.GA40500@monster.minifac.net> ON Tue, Jan 24, 2006 at 02:57:57PM -0600, Nate Straz wrote: > > fifo, i.e. an un-named pipe. If you run it with strace like so: > > strace -f /bin/sh -c 'ls | grep myfile' 2>&1 | less > > you should see that the shell calls pipe() and dups it to stdin and > stdout before starting ls and grep. Correction: a FIFO is a *named* pipe, produced by mkfifo() compared to pipe(). -- Michael From thecubic at thecubic.net Tue Jan 24 15:32:44 2006 From: thecubic at thecubic.net (David Carlson) Date: Tue, 24 Jan 2006 15:32:44 -0600 (CST) Subject: [tclug-list] Newbi queston about Pipes Message-ID: <15007.163.231.6.87.1138138364.squirrel@castor.thecubic.net> (whoops, didn't copy list) On Tue, January 24, 2006 2:38 pm, Erik Anderson wrote: > On 1/24/06, Olwe Bottorff wrote: >> If I use pipes at the command line in a shell >> >> >ls | grep myfile >> >> is the underlying c code in ls and grep using named >> pipes, fifo, or something much more mysterious? > > I don't believe it's that complex at all. Please correct me if I'm wrong, but in the shell, I believe that the | operator just takes STDOUT one program and redirects it to STDIN of the other. The shell does it, (|) by launching the commands with shared pipes (man pipe), or (0< / 1> / 2>) passing a file descriptor as [0]stdout/[1]stdin/[2]stderr. -=-=-=-=-=-=-=- David Carlson thecubic at thecubic.net -=-=-=-=-=-=-=- David Carlson thecubic at thecubic.net From bhurt at spnz.org Tue Jan 24 16:11:18 2006 From: bhurt at spnz.org (Brian Hurt) Date: Tue, 24 Jan 2006 16:11:18 -0600 (CST) Subject: [tclug-list] Newbi queston about Pipes In-Reply-To: <15007.163.231.6.87.1138138364.squirrel@castor.thecubic.net> References: <15007.163.231.6.87.1138138364.squirrel@castor.thecubic.net> Message-ID: If you want to know the nitty gritty details of how to do this, I recommend "Advanced Programming in the Unix Environment" by W. Richard Stevens. Or the "Unix Network Programming" series by the same guy. Brian From galanolwe at yahoo.com Tue Jan 24 17:27:49 2006 From: galanolwe at yahoo.com (Olwe Bottorff) Date: Tue, 24 Jan 2006 15:27:49 -0800 (PST) Subject: [tclug-list] Newbi queston about Pipes In-Reply-To: <20060124205757.GA15567@refried.org> Message-ID: <20060124232749.62421.qmail@web34306.mail.mud.yahoo.com> Thanks a lot, Nate. I'll just have to familiarize myself with what strace is doing. Somehow the shell looks like it's doing a little bit more than your typical Unix Programming pipes demo program. Or is strace always so "thorough." Olwe --- Nate Straz wrote: > On Tue, Jan 24, 2006 at 12:18:58PM -0800, Olwe > Bottorff wrote: > > If I use pipes at the command line in a shell > > > > >ls | grep myfile > > > > is the underlying c code in ls and grep using > named > > pipes, fifo, or something much more mysterious? > > fifo, i.e. an un-named pipe. If you run it with > strace like so: > > strace -f /bin/sh -c 'ls | grep myfile' 2>&1 | less > > you should see that the shell calls pipe() and dups > it to stdin and > stdout before starting ls and grep. > > Nate > > _______________________________________________ > TCLUG Mailing List - Minneapolis/St. Paul, Minnesota > tclug-list at mn-linux.org > http://mailman.mn-linux.org/mailman/listinfo/tclug-list > __________________________________________________ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com From nate at refried.org Tue Jan 24 17:42:26 2006 From: nate at refried.org (Nate Straz) Date: Tue, 24 Jan 2006 17:42:26 -0600 Subject: [tclug-list] Newbi queston about Pipes In-Reply-To: <20060124232749.62421.qmail@web34306.mail.mud.yahoo.com> References: <20060124205757.GA15567@refried.org> <20060124232749.62421.qmail@web34306.mail.mud.yahoo.com> Message-ID: <20060124234226.GA18226@refried.org> On Tue, Jan 24, 2006 at 03:27:49PM -0800, Olwe Bottorff wrote: > Thanks a lot, Nate. I'll just have to familiarize > myself with what strace is doing. Somehow the shell > looks like it's doing a little bit more than your > typical Unix Programming pipes demo program. Or is > strace always so "thorough." strace is very thorough. It prints out every system call a program makes. You can quiet it down with the -e options. Check out the man page for details. Nate From trammell+tclug at el-swifto.com Wed Jan 25 09:44:55 2006 From: trammell+tclug at el-swifto.com (John J. Trammell) Date: Wed, 25 Jan 2006 09:44:55 -0600 Subject: [tclug-list] Newbi queston about Pipes In-Reply-To: <15007.163.231.6.87.1138138364.squirrel@castor.thecubic.net> References: <15007.163.231.6.87.1138138364.squirrel@castor.thecubic.net> Message-ID: <20060125154455.GA2998@mail.el-swifto.com> On Tue, Jan 24, 2006 at 03:32:44PM -0600, David Carlson wrote: > (whoops, didn't copy list) > > The shell does it, (|) by launching the commands with shared pipes (man > pipe), or (0< / 1> / 2>) passing a file descriptor as > [0]stdout/[1]stdin/[2]stderr. > Woot, just covered this in CSci 4061--example pipe code available at: http://vip.cs.utsa.edu/usp/programs/chapter06/parentwritepipe.c et seq. -- trammell at el-swifto.com 9EC7 BC6D E688 A184 9F58 FD4C 2C12 CC14 8ABA 36F5 Twin Cities Linux Users Group (TCLUG) Minneapolis/St. Paul, Minnesota From markmit at mn.rr.com Wed Jan 25 16:12:39 2006 From: markmit at mn.rr.com (markmit@mn.rr.com) Date: Wed, 25 Jan 2006 16:12:39 -0600 Subject: [tclug-list] small network mail setup. Message-ID: I'm fairly experienced with desktop linux, but not so much with mail service. My network consists of; HW firewall/router/wireless access point vlad - Debian stable - headless samba server / misc workhorse aptiva - Debian testing - desktop thinkpad - Debian testing - laptop sethra - Win ME - Wife/kids email/games What I want is to be able to do all my email stuff on vlad. Either via ssh remotely or local network via CLI, or from aptiva or thinkpad from the local network. And spam filtering, hopefully. For now, this only has to support my account, perhaps my wife's someday, so no more than a couple hundred messages a day. In my fumblings, I've gotten fetchmail on vlad to retrieve mail from my pop server, and sent mail (mostly) successfully with exim, so the CLI part of this is basically sorted. What do I use to allow aptiva and thinkpad to see/manipulate the email on vlad via (for example) kmail? Google pointers anyone? Thanks, Mark Mitchell From ewilts at ewilts.org Wed Jan 25 16:26:12 2006 From: ewilts at ewilts.org (Ed Wilts) Date: Wed, 25 Jan 2006 16:26:12 -0600 Subject: [tclug-list] small network mail setup. In-Reply-To: References: Message-ID: <20060125222612.GB6431@www.ewilts.org> On Wed, Jan 25, 2006 at 04:12:39PM -0600, markmit at mn.rr.com wrote: > I'm fairly experienced with desktop linux, but not so much with mail > service. > > My network consists of; > HW firewall/router/wireless access point > vlad - Debian stable - headless samba server / misc workhorse > aptiva - Debian testing - desktop > thinkpad - Debian testing - laptop > sethra - Win ME - Wife/kids email/games > > What I want is to be able to do all my email stuff on vlad. Either via > ssh remotely or local network via CLI, or from aptiva or thinkpad from > the local network. And spam filtering, hopefully. For now, this only > has to support my account, perhaps my wife's someday, so no more than a > couple hundred messages a day. > > In my fumblings, I've gotten fetchmail on vlad to retrieve mail from my > pop server, and sent mail (mostly) successfully with exim, so the CLI > part of this is basically sorted. What do I use to allow aptiva and > thinkpad to see/manipulate the email on vlad via (for example) kmail? You simply need a POP3 or IMAP server. I've wu-imapd in the past and currently use dovecot. http://dovecot.procontrol.fi/ Works like a charm and is fairly simple to set up. I'm not a debian guy so I don't know what it takes to get it installed but according to the dovecot download page, it's as simple as apt-get install dovecot .../Ed -- Ed Wilts, RHCE Mounds View, MN, USA mailto:ewilts at ewilts.org Member #1, Red Hat Community Ambassador Program From thecubic at thecubic.net Wed Jan 25 16:28:24 2006 From: thecubic at thecubic.net (David Carlson) Date: Wed, 25 Jan 2006 16:28:24 -0600 (CST) Subject: [tclug-list] small network mail setup. Message-ID: <8520.163.231.6.68.1138228104.squirrel@castor.thecubic.net> On Wed, January 25, 2006 4:12 pm, markmit at mn.rr.com wrote: > In my fumblings, I've gotten fetchmail on vlad to retrieve mail from my > pop server, and sent mail (mostly) successfully with exim, so the CLI > part of this is basically sorted. What do I use to allow aptiva and > thinkpad to see/manipulate the email on vlad via (for example) kmail? Run an IMAP server (cyrus, dovecot) on vlad. If you're not prepared for some 'friendly' visitors, make sure it only listens on the local net. If you've got some time to burn, think about enabling IMAPS. -=-=-=-=-=-=-=- David Carlson thecubic at thecubic.net From iipreca at hotmail.com Wed Jan 25 20:29:53 2006 From: iipreca at hotmail.com (G J) Date: Wed, 25 Jan 2006 20:29:53 -0600 Subject: [tclug-list] Firewall questions (newbie) Message-ID: I have a Linksys WRT54G wireless router/switch coming off of my satellite modem, which goes into 2-3 machines. I have an older PII 350 MHz that I would like to turn into a hardware firewall. Can I put it between the modem and the Linksys on the "internet" side of the Linksys, or do I have to put it between the Linksys and the rest of my machines? I would like to keep the Linksys in the loop since it of course has extra firewall capabilities in it already. Second question is what do you guys recommend I use as a firewall, I have RH Fedora Core 4 but it seems there are other "hardened" SELINUX versions out there, any input is appreciated. Jesse From sfertch at gmail.com Wed Jan 25 21:02:49 2006 From: sfertch at gmail.com (Shawn Fertch) Date: Wed, 25 Jan 2006 21:02:49 -0600 Subject: [tclug-list] Firewall questions (newbie) In-Reply-To: References: Message-ID: <67f3084a0601251902l70d8d22avd03419f4c2b26d65@mail.gmail.com> On 1/25/06, G J wrote: > > I have a Linksys WRT54G wireless router/switch coming off of my satellite > modem, which goes into 2-3 machines. I have an older PII 350 MHz that I > would like to turn into a hardware firewall. Can I put it between the > modem > and the Linksys on the "internet" side of the Linksys, or do I have to put > it between the Linksys and the rest of my machines? I would like to keep > the > Linksys in the loop since it of course has extra firewall capabilities in > it > already. > Second question is what do you guys recommend I use as a firewall, I > have > RH Fedora Core 4 but it seems there are other "hardened" SELINUX versions > out there, any input is appreciated. > If that is your switch for your various computers, put the firewall between it and your modem. 2 NIC's inside your computer for red/green networks will be sufficient. I use Smoothwall currently, and have used IPCop. Both are good products. Out of curiosity, why the desire to put a hardware firewall in? IIRC, there is a Linux based prject out for that device. -- -Shawn -Nemo me impune lacessit. Ne Obliviscaris.. -------------- next part -------------- An HTML attachment was scrubbed... URL: http://shadowknight.real-time.com/pipermail/tclug-list/attachments/20060125/5692e67d/attachment.html From galanolwe at yahoo.com Wed Jan 25 21:13:30 2006 From: galanolwe at yahoo.com (Olwe Bottorff) Date: Wed, 25 Jan 2006 19:13:30 -0800 (PST) Subject: [tclug-list] Disk thrashing bot? Message-ID: <20060126031331.42464.qmail@web34309.mail.mud.yahoo.com> I've noticed how something on my Fedora3 seems to be thrashing the hard drive(s) very hard and long--just like a Windows box being rifled through by a virus checker or a find started at /. What could it be? How could I find out what's doing all the disk accessing? If it was the NSA they'd have a flashing icon in the desktop tray, right? Olwe __________________________________________________ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com From iipreca at hotmail.com Wed Jan 25 21:23:59 2006 From: iipreca at hotmail.com (G J) Date: Wed, 25 Jan 2006 21:23:59 -0600 Subject: [tclug-list] Firewall questions (newbie) In-Reply-To: <67f3084a0601251902l70d8d22avd03419f4c2b26d65@mail.gmail.com> Message-ID: I want to put the hardware firewall in becuase I want to enable file and print sharing within the network. And I want my computers in the network of course to be as non existant as possible >On 1/25/06, G J wrote: > > > > I have a Linksys WRT54G wireless router/switch coming off of my >satellite > > modem, which goes into 2-3 machines. I have an older PII 350 MHz that I > > would like to turn into a hardware firewall. Can I put it between the > > modem > > and the Linksys on the "internet" side of the Linksys, or do I have to >put > > it between the Linksys and the rest of my machines? I would like to keep > > the > > Linksys in the loop since it of course has extra firewall capabilities >in > > it > > already. > > Second question is what do you guys recommend I use as a firewall, I > > have > > RH Fedora Core 4 but it seems there are other "hardened" SELINUX >versions > > out there, any input is appreciated. > > > > >If that is your switch for your various computers, put the firewall between >it and your modem. > >2 NIC's inside your computer for red/green networks will be sufficient. > >I use Smoothwall currently, and have used IPCop. Both are good products. > > >Out of curiosity, why the desire to put a hardware firewall in? IIRC, >there >is a Linux based prject out for that device. > > >-- >-Shawn > >-Nemo me impune lacessit. Ne Obliviscaris.. From jonathon.jongsma at gmail.com Wed Jan 25 22:22:21 2006 From: jonathon.jongsma at gmail.com (Jonathon Jongsma) Date: Wed, 25 Jan 2006 22:22:21 -0600 Subject: [tclug-list] Disk thrashing bot? In-Reply-To: <20060126031331.42464.qmail@web34309.mail.mud.yahoo.com> References: <20060126031331.42464.qmail@web34309.mail.mud.yahoo.com> Message-ID: Could be that your computer is swapping things to disk like crazy. I had this problem when my swap partition was too small. just a thought. On 1/25/06, Olwe Bottorff wrote: > I've noticed how something on my Fedora3 seems to be > thrashing the hard drive(s) very hard and long--just > like a Windows box being rifled through by a virus > checker or a find started at /. What could it be? How > could I find out what's doing all the disk accessing? > If it was the NSA they'd have a flashing icon in the > desktop tray, right? > > Olwe > > __________________________________________________ > Do You Yahoo!? > Tired of spam? Yahoo! Mail has the best spam protection around > http://mail.yahoo.com > > _______________________________________________ > TCLUG Mailing List - Minneapolis/St. Paul, Minnesota > tclug-list at mn-linux.org > http://mailman.mn-linux.org/mailman/listinfo/tclug-list > From ryan.langseth at gmail.com Wed Jan 25 23:23:30 2006 From: ryan.langseth at gmail.com (Ryan Langseth) Date: Wed, 25 Jan 2006 23:23:30 -0600 Subject: [tclug-list] Disk thrashing bot? In-Reply-To: <20060126031331.42464.qmail@web34309.mail.mud.yahoo.com> References: <20060126031331.42464.qmail@web34309.mail.mud.yahoo.com> Message-ID: It could be the cron job for updating the locate db or some other type of search system. Is the thrashing going on at the same time everyday? On 1/25/06, Olwe Bottorff wrote: > > I've noticed how something on my Fedora3 seems to be > thrashing the hard drive(s) very hard and long--just > like a Windows box being rifled through by a virus > checker or a find started at /. What could it be? How > could I find out what's doing all the disk accessing? > If it was the NSA they'd have a flashing icon in the > desktop tray, right? > > Olwe > > __________________________________________________ > Do You Yahoo!? > Tired of spam? Yahoo! Mail has the best spam protection around > http://mail.yahoo.com > > _______________________________________________ > TCLUG Mailing List - Minneapolis/St. Paul, Minnesota > tclug-list at mn-linux.org > http://mailman.mn-linux.org/mailman/listinfo/tclug-list > -------------- next part -------------- An HTML attachment was scrubbed... URL: http://shadowknight.real-time.com/pipermail/tclug-list/attachments/20060125/6fe61bef/attachment.htm From john.meier at gmail.com Wed Jan 25 23:29:36 2006 From: john.meier at gmail.com (John Meier) Date: Thu, 26 Jan 2006 05:29:36 +0000 Subject: [tclug-list] Disk thrashing bot? In-Reply-To: <20060126031331.42464.qmail@web34309.mail.mud.yahoo.com> References: <20060126031331.42464.qmail@web34309.mail.mud.yahoo.com> Message-ID: <65293fcc0601252129v2d2e3c82jb66b796c59273cc2@mail.gmail.com> On 1/26/06, Olwe Bottorff wrote: > > I've noticed how something on my Fedora3 seems to be > thrashing the hard drive(s) very hard and long--just > like a Windows box being rifled through by a virus > checker or a find started at /. What could it be? slocate cron job running? check /etc/cron.daily for slocate.cron. Then see if the times in the /etc/crontab for the daily jobs match up with the times that your HD start thrashing .... -------------- next part -------------- An HTML attachment was scrubbed... URL: http://shadowknight.real-time.com/pipermail/tclug-list/attachments/20060126/71b43159/attachment.htm From SDALAN04 at smumn.edu Wed Jan 25 23:40:07 2006 From: SDALAN04 at smumn.edu (Dave Alanis) Date: Wed, 25 Jan 2006 23:40:07 -0600 Subject: [tclug-list] Firewall questions (newbie) Message-ID: <20060126054007441631903e@mail.smumn.edu> On Wednesday, January 25, 2006 9:23 PM, G J wrote: > >Date: Wed, 25 Jan 2006 21:23:59 -0600 >From: G J >To: tclug-list at mn-linux.org >Subject: Re: [tclug-list] Firewall questions (newbie) > >I want to put the hardware firewall in because I want to enable file and >print sharing within the network. And I want my computers in the network of >course to be as non existant as possible > > > > >>On 1/25/06, G J wrote: >> > >> > I have a Linksys WRT54G wireless router/switch coming off of my >>satellite >> > modem, which goes into 2-3 machines. I have an older PII 350 Mhz that I >> > would like to turn into a hardware firewall. Can I put it between the >> > modem >> > and the Linksys on the "Internet" side of the Linksys, or do I have to >>put >> > it between the Linksys and the rest of my machines? I would like to keep >> > the >> > Linksys in the loop since it of course has extra firewall capabilities >>in >> > it >> > already. >> > Second question is what do you guys recommend I use as a firewall, I >> > have >> > RH Fedora Core 4 but it seems there are other "hardened" SELINUX >>versions >> > out there, any input is appreciated. >> > >> >> >>If that is your switch for your various computers, put the firewall between >>it and your modem. >> >>2 Nic's's inside your computer for red/green networks will be sufficient. >> >>I use Smoothwall currently, and have used Ipcop. Both are good products. >> >> >>Out of curiosity, why the desire to put a hardware firewall in? IIRC, >>there >>is a Linux based prject out for that device. >> >> >>-- >>-Shawn >> >>-Nemo me impune lacessit. Ne Obliviscaris.. > > Hello, I hope to not be re-iterating on whats already been said. But, like Shawn mentioned Smoothwall is a very good Opensource (free) Linux firewall as well as very straight forward. I believe the latest version is called Grizzly, just remember that the most common version of Smoothwall is version 2.0 just in case you will need to patch it (as there is about 6 or more critical updates to the firewall v2.0). Now, I have short-short-term memory but if I recall one of the not so recent hacker magazines had an article on hacking the WRT54G and placing Linux on it. I believe the available software ranges from command line to a very detailed GUI. If I had the 40-60 bucks to buy one I would definitely look into it. A google search brought up SWUG with a very detailed HOW-TO (interesting as well). By the way, you want to place your Smoothwall firewall before your Linksys (if needed at all). Dave "Great Spirits Have Always Encountered Violent Opposition From Mediocre Minds" - Einstein "Cuanta estupidez en tan poco cerebro!" From swaite at sbn-services.com Thu Jan 26 06:43:48 2006 From: swaite at sbn-services.com (Sean Waite) Date: Thu, 26 Jan 2006 06:43:48 -0600 Subject: [tclug-list] Firewall questions (newbie) In-Reply-To: References: Message-ID: Here are 3 projects that I have become familiar that really stood out compared with all the others. m0n0wall http://m0n0.ch/wall/ I use m0n0wall at home for a VPN to my office. I am dependend on this VPN for VOIP as well. Since Septemember I have not had one single issue. M0n0wall runs off of a CD, using a floppy to read the config about boot, although there is method to install on to a hard drive. pfSense http://www.pfsense.com/ Pfsense is a branch of m0n0wall that installs directly onto a hard drive. More importantly it allows the option of installing additional packages. Another thing is pfsense is fairly simple to install. Endian http://www.efw.it/ Endian is has a few nice features such as IDS. I had issues with the VPN capabilities that had more to do with the other endpoints device. But other than that it has worked very well for me. Ideally you will want to put the firewall right after the modem. The linksys is placed after, keep in mind at this point you can just set up the wireless as an access point and not a router. This would be advantageous in the long term if problems arise. Also, if you planned on opening up any services such as a webserver you may experience at first some difficulty setting up the pass through (depending on your familiarity of setting up services to the internet). This is how I would recomend you have things set up 1.) Modem> PII 350 pc w/ 2 network interface cards (1 connected to the modem, 1 to the Linksys). 2.) Configure the Linksys to act as an access point and not a router. At this point the Linksys just becomes another device on the network and creates one less dependency for internet access for non wireless devices. 3.) Be sure to configure the PC firewall to act as the DHCP/DNS provider. 4.) If you choose Endian or IPCop, check out snort.org for the IDS features. Also, be sure to check and harden your wifi settings. For the Linksys, you should have WPA-PSK available, if not at the very least try to use the highest security available compatible with your the wifi cards in the computers. If for some reason the wifi utility does not have higher security settings be sure to check the MFR's website for updates. WPA-PSK Key Generator http://www.kurtm.net/wpa-pskgen/ https://www.grc.com/passwords Sean Waite -----Original Message----- From: "G J" To: tclug-list at mn-linux.org Date: Wed, 25 Jan 2006 20:29:53 -0600 Subject: [tclug-list] Firewall questions (newbie) > I have a Linksys WRT54G wireless router/switch coming off of my satellite > modem, which goes into 2-3 machines. I have an older PII 350 MHz that I > would like to turn into a hardware firewall. Can I put it between the modem > and the Linksys on the "internet" side of the Linksys, or do I have to put > it between the Linksys and the rest of my machines? I would like to keep the > Linksys in the loop since it of course has extra firewall capabilities in it > already. > Second question is what do you guys recommend I use as a firewall, I have > RH Fedora Core 4 but it seems there are other "hardened" SELINUX versions > out there, any input is appreciated. > > Jesse > > > > _______________________________________________ > TCLUG Mailing List - Minneapolis/St. Paul, Minnesota > tclug-list at mn-linux.org > http://mailman.mn-linux.org/mailman/listinfo/tclug-list From rfbob at cyguin.net Thu Jan 26 09:40:35 2006 From: rfbob at cyguin.net (Mark) Date: Thu, 26 Jan 2006 09:40:35 -0600 Subject: [tclug-list] Firewall questions (newbie) In-Reply-To: References: Message-ID: <43D8ED73.3030206@cyguin.net> G J wrote: > I have a Linksys WRT54G wireless router/switch coming off of my satellite > modem, which goes into 2-3 machines. I have an older PII 350 MHz that I > would like to turn into a hardware firewall. Can I put it between the modem > and the Linksys on the "internet" side of the Linksys, or do I have to put > it between the Linksys and the rest of my machines? I would like to keep the > Linksys in the loop since it of course has extra firewall capabilities in it > already. You could put it anywhere you want. Just remember, the linksys is a NAT device / router and not a firewall. That said it serves the same function and would make putting them both inline before you network is a bit paranoid and redundant. It all really depends what you want to be doing what. If you just want a file server then it can be a peer to your other boxes behind the linksys. If you want to be clever, put it behind the linksys and use it as the DMZ (too bad you can't put it on it's own subnet without modding the linksys). You need to ask just what you are trying to accomplish with a setup like that. > Second question is what do you guys recommend I use as a firewall, I have > RH Fedora Core 4 but it seems there are other "hardened" SELINUX versions > out there, any input is appreciated. > > Jesse > SELINUX plugs into just about any distro. All those linux firewall packages are just front ends to IPTABLES. I'd say learn IPTABLES first, then get lazy/clever and worry about a front end. The Webmin front end is a small step up from the command line. Use whatever distro you are comfortable with, or Debian. It is quick enough to pick up once you get through the initial install. With a bonus of those people being rather paranoid. I guess this is where I go W00T! first post111! or something. So hiya peoples, nice list. Mark From Craig.A.Smith at honeywell.com Thu Jan 26 09:51:51 2006 From: Craig.A.Smith at honeywell.com (Smith, Craig A (MN14)) Date: Thu, 26 Jan 2006 09:51:51 -0600 Subject: [tclug-list] Debian apt-get dependencies - Please Help Message-ID: I noticed some packages were being "held back" when running # apt-get update; apt-get upgrade Google suggested I use # apt-get dist-upgrade But that resulted in un-met dependencies. Apt-get suggested #apt-get -f install But that yields the errors below (gnome-related). I admin this box remotely using the command line, so I don't need anything related to X11. Is there an easy way to remove all X related packages? Would that provide a solution? I really just want to get apache reinstalled. craiggae:~# apt-get -f install Reading Package Lists... Done Building Dependency Tree... Done Correcting dependencies... Done The following extra packages will be installed: desktop-base desktop-file-utils docbook-dsssl docbook-xml fontconfig gnome-desktop-data gnome-doc-tools gnome-icon-theme gstreamer0.8-oss hicolor-icon-theme libapm1 libart-2.0-2 libaspell15 libatk1.0-0 libbonobo2-0 libbonobo2-common libbonoboui2-common libcroco3 libcupsys2-gnutls10 libdb4.1 libeel2-data libexif10 libfam0c102 libfontconfig1 libgcrypt11 libglib2.0-0 libgnomecanvas2-common libgnomecups1.0-1 libgnomeprint2.2-data libgnomeprintui2.2-common libgnomeui-common libgnutls11 libgpg-error0 libgsf-1 libgstreamer-plugins0.8-0 libgstreamer0.8-0 libgtksourceview-common libgtop2-2 libidl0 libkrb53 libldap2 liblzo1 libopencdk8 liborbit2 libosp4 libostyle1 libpng12-0 libsasl2 libscrollkeeper0 libsmbclient libstartup-notification0 libtasn1-2 libtiff4 libvte-common libwnck-common libxklavier8 libxslt1.1 nautilus-data openjade powermgmt-base scrollkeeper sgml-base sgml-data shared-mime-info ucf xml-core The following packages will be REMOVED: gnome-core gnome-session The following NEW packages will be installed: desktop-base desktop-file-utils docbook-dsssl docbook-xml fontconfig gnome-desktop-data gnome-doc-tools gnome-icon-theme gstreamer0.8-oss hicolor-icon-theme libapm1 libart-2.0-2 libaspell15 libatk1.0-0 libbonobo2-0 libbonobo2-common libbonoboui2-common libcroco3 libcupsys2-gnutls10 libdb4.1 libeel2-data libexif10 libfam0c102 libfontconfig1 libgcrypt11 libglib2.0-0 libgnomecanvas2-common libgnomecups1.0-1 libgnomeprint2.2-data libgnomeprintui2.2-common libgnomeui-common libgnutls11 libgpg-error0 libgsf-1 libgstreamer-plugins0.8-0 libgstreamer0.8-0 libgtksourceview-common libgtop2-2 libidl0 libkrb53 liblzo1 libopencdk8 liborbit2 libosp4 libostyle1 libpng12-0 libsasl2 libsmbclient libstartup-notification0 libtasn1-2 libtiff4 libvte-common libwnck-common libxklavier8 libxslt1.1 nautilus-data openjade powermgmt-base scrollkeeper sgml-base sgml-data shared-mime-info ucf xml-core 2 packages upgraded, 64 newly installed, 2 to remove and 136 not upgraded. 17 packages not fully installed or removed. Need to get 0B/21.6MB of archives. After unpacking 74.5MB will be used. Do you want to continue? [Y/n] Y Preconfiguring packages ... (Reading database ... 37825 files and directories currently installed.) Removing gnome-session ... update-alternatives: --slave only allowed with --install Debian update-alternatives 1.10.28. Copyright (C) 1995 Ian Jackson. Copyright (C) 2000-2002 Wichert Akkerman This is free software; see the GNU General Public Licence version 2 or later for copying conditions. There is NO warranty. Usage: update-alternatives --install [--slave ] ... update-alternatives --remove update-alternatives --remove-all update-alternatives --auto update-alternatives --display update-alternatives --list update-alternatives --config update-alternatives --set update-alternatives --all is the name in /etc/alternatives. is the name referred to. is the link pointing to /etc/alternatives/. is an integer; options with higher numbers are chosen. Options: --verbose|--quiet --test --help --version --altdir --admindir dpkg: error processing gnome-session (--remove): subprocess pre-removal script returned error exit status 2 dpkg: gnome-core: dependency problems, but removing anyway as you request: gnome-session depends on gnome-core (>= 1.4.0.2-3); however: Package gnome-core is to be removed. Removing gnome-core ... dpkg: error processing gnome-core (--remove): subprocess post-removal script returned error exit status 127 Errors were encountered while processing: gnome-session gnome-core E: Sub-process /usr/bin/dpkg returned an error code (1) craiggae:~# == Craig A. Smith mailto:craig.a.smith at honeywell.com Office 763-954-2895 Cell 612.518.2200 FAX 763-954-2313 -------------- next part -------------- An HTML attachment was scrubbed... URL: http://shadowknight.real-time.com/pipermail/tclug-list/attachments/20060126/1655cd1c/attachment.htm From bradyh at bitstream.net Thu Jan 26 10:07:47 2006 From: bradyh at bitstream.net (bradyh@bitstream.net) Date: Thu, 26 Jan 2006 10:07:47 -0600 (CST) Subject: [tclug-list] Debian apt-get dependencies - Please Help In-Reply-To: References: Message-ID: <17605.132.189.76.10.1138291667.squirrel@webmail.iphouse.com> Shouldn't be a problem to remove Gnome but you may run into problems removing X. There are programs that depend on X for generating graphics files and the like. Removing X can be done and there should be instructions for doing it out on the net but it may require recompiling some packages with different dependancies. -Brady > But that yields the errors below (gnome-related). I admin this box > remotely using the command line, so I don't need anything related to > X11. Is there an easy way to remove all X related packages? Would that > provide a solution? I really just want to get apache reinstalled. From andyzib at gmail.com Thu Jan 26 11:40:07 2006 From: andyzib at gmail.com (Andrew Zbikowski) Date: Thu, 26 Jan 2006 11:40:07 -0600 Subject: [tclug-list] Debian apt-get dependencies - Please Help In-Reply-To: References: Message-ID: You can safely remove X11 on a Debian system. If there is console application that is compiled against X libraries, Debian usually has an alternative that doesn't use X. If you're ever unsure, use the -s flag. Apt won't make any changes, it will just output what it would do if you issued the command without the -s (simulate) flag. You can pro bally try apt-get remove xserver-common or something along those lines. Try aptitude for a menu based package management. -- Andrew S. Zbikowski | http://andy.zibnet.us SELECT * FROM users WHERE clue >0; 0 rows returned From auditodd at comcast.net Thu Jan 26 18:56:39 2006 From: auditodd at comcast.net (Todd Young) Date: Thu, 26 Jan 2006 18:56:39 -0600 Subject: [tclug-list] Firewall questions (newbie) In-Reply-To: <43D8ED73.3030206@cyguin.net> References: <43D8ED73.3030206@cyguin.net> Message-ID: <43D96FC7.30403@comcast.net> Mark wrote: > G J wrote: > >>I have a Linksys WRT54G wireless router/switch coming off of my satellite >>modem, which goes into 2-3 machines. I have an older PII 350 MHz that I >>would like to turn into a hardware firewall. Can I put it between the modem >>and the Linksys on the "internet" side of the Linksys, or do I have to put >>it between the Linksys and the rest of my machines? I would like to keep the >>Linksys in the loop since it of course has extra firewall capabilities in it >>already. > > You could put it anywhere you want. Just remember, the linksys is a NAT > device / router and not a firewall. That said it serves the same > function and would make putting them both inline before you network is a > bit paranoid and redundant. It all really depends what you want to be > doing what. If you just want a file server then it can be a peer to > your other boxes behind the linksys. If you want to be clever, put it > behind the linksys and use it as the DMZ (too bad you can't put it on > it's own subnet without modding the linksys). You need to ask just what > you are trying to accomplish with a setup like that. > >> Second question is what do you guys recommend I use as a firewall, I have >>RH Fedora Core 4 but it seems there are other "hardened" SELINUX versions >>out there, any input is appreciated. > > SELINUX plugs into just about any distro. All those linux firewall > packages are just front ends to IPTABLES. I'd say learn IPTABLES first, > then get lazy/clever and worry about a front end. The Webmin front end > is a small step up from the command line. Use whatever distro you are > comfortable with, or Debian. It is quick enough to pick up once you get > through the initial install. With a bonus of those people being rather > paranoid. > I have to disagree with the statement "learn IPTABLES first, then get lazy/clever and worry about a front end". I would highly recommend using a Smoothwall firewall first, and then while the Smoothwall is protecting your home network, you can play with IPTABLES on another machine. The last thing you would want to do is make a mistake and open up your entire network to the Internet. My $0.02 on the subject of what to do.....Either #1 or #2 below. #1 - Create a Smoothwall (use v2.0 with all 8 updates, v3 is still beta) with three (3) NICs. GREEN (LAN), RED (Internet), ORANGE (DMZ). And then put your Linksys out on the Orange interface as your wireless access point. That way if someone were to hack your wireless, all they would have access to is your Internet connection. Not necessarily good, but better than them having access to your internal network. #2 - Create a Smoothwall with two (2) NICs, GREEN & RED. Plug the Linksys in on the LAN side and turn off DHCP (use the Smoothwall as your DHCP server) and basically just turn it into a simple WiFi access point and wired switch. If you have WPA encryption turned on with a strong password and you are not broadcasting your SSID, there is a very slim chance that someone will even bother to try to hack your WiFi (there are a lot of unsecured access points out there for them to play with). You might even consider just using the Linksys as is (or with the "aftermarket" Linux upgrade) as your firewall/switch and using the PII machine as a "test" or "play" machine. That way you can play with different distributions and not have to worry about hosing your primary computer. -- Todd Young From hick0088 at tc.umn.edu Thu Jan 26 20:17:22 2006 From: hick0088 at tc.umn.edu (Mike Hicks) Date: Thu, 26 Jan 2006 20:17:22 -0600 Subject: [tclug-list] Disk thrashing bot? In-Reply-To: <20060126031331.42464.qmail@web34309.mail.mud.yahoo.com> References: <20060126031331.42464.qmail@web34309.mail.mud.yahoo.com> Message-ID: <1138328242.8995.33.camel@3po.thodt.net> On Wed, 2006-01-25 at 19:13 -0800, Olwe Bottorff wrote: > I've noticed how something on my Fedora3 seems to be > thrashing the hard drive(s) very hard and long--just > like a Windows box being rifled through by a virus > checker or a find started at /. What could it be? How > could I find out what's doing all the disk accessing? Most Linux systems are configured to run 'updatedb' once a day, which actually does do a find at /. Sometimes you can run 'top' to find out what program is running, though many processes don't use much CPU even if they're making many disk accesses. However, such programs do have to wait on I/O, and are given a 'D' flag in the output of 'ps' and 'top'. So, you could try doing ps ax | grep D to figure out what is slowing things down. Of course, a number of programs will probably pop up if you're running Gnome or another desktop environment, but that'll narrow it down. You might have to try a few times. The other main possibility is that you don't have enough RAM in your system, and active processes have to swap in/out a lot. Use 'top' or some other program to figure out how much memory and swap space is being used. A typical system will have a lot of RAM being used for buffers and cache, so the used % of RAM might seem high. There might be a few processes using a lot of RAM for no really good reason (such as a dead web browser plugin or who knows what). An easy way to figure out which programs are using a lot of memory is to run 'top' then press 'M' (yes, capital M) to sort by memory usage. Unfortunately, I've never really figured out how to interpret the 'VIRT', 'RES', and 'SHR' numbers properly (is xmms using 11 MB or 152 MB? uh..), but it should provide a good pointer. -- Mike Hicks -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 189 bytes Desc: This is a digitally signed message part Url : http://shadowknight.real-time.com/pipermail/tclug-list/attachments/20060126/cac35e90/attachment.pgp From iipreca at hotmail.com Thu Jan 26 20:21:05 2006 From: iipreca at hotmail.com (G J) Date: Thu, 26 Jan 2006 20:21:05 -0600 Subject: [tclug-list] firewall questions (newbie) Message-ID: The closest residence is over a quarter mile away, not to mention the road is as far as well, (I live on a farm), so I'm not worried about anyone at all hacking my wireless, and as of right now its turned off since I don't have any wireless computers. I am probably going to put it between the modem and the switch of course, however, do I plug it into the LAN side or the internet side of the Linksys? Jesse I have to disagree with the statement "learn IPTABLES first, then get lazy/clever and worry about a front end". I would highly recommend using a Smoothwall firewall first, and then while the Smoothwall is protecting your home network, you can play with IPTABLES on another machine. The last thing you would want to do is make a mistake and open up your entire network to the Internet. My $0.02 on the subject of what to do.....Either #1 or #2 below. #1 - Create a Smoothwall (use v2.0 with all 8 updates, v3 is still beta) with three (3) NICs. GREEN (LAN), RED (Internet), ORANGE (DMZ). And then put your Linksys out on the Orange interface as your wireless access point. That way if someone were to hack your wireless, all they would have access to is your Internet connection. Not necessarily good, but better than them having access to your internal network. #2 - Create a Smoothwall with two (2) NICs, GREEN & RED. Plug the Linksys in on the LAN side and turn off DHCP (use the Smoothwall as your DHCP server) and basically just turn it into a simple WiFi access point and wired switch. If you have WPA encryption turned on with a strong password and you are not broadcasting your SSID, there is a very slim chance that someone will even bother to try to hack your WiFi (there are a lot of unsecured access points out there for them to play with). You might even consider just using the Linksys as is (or with the "aftermarket" Linux upgrade) as your firewall/switch and using the PII machine as a "test" or "play" machine. That way you can play with different distributions and not have to worry about hosing your primary computer. -- Todd Young _______________________________________________ TCLUG Mailing List - Minneapolis/St. Paul, Minnesota tclug-list at mn-linux.org http://mailman.mn-linux.org/mailman/listinfo/tclug-list From obelin23 at gmail.com Fri Jan 27 08:58:37 2006 From: obelin23 at gmail.com (Charlie O) Date: Fri, 27 Jan 2006 14:58:37 +0000 Subject: [tclug-list] slackware 10.1 - changing default screen res Message-ID: <72278d10601270658p2542078ap4cdd1401e8cbd923@mail.gmail.com> I am running Slackware 10.1. I just got a new monitor, and am trying to change the default screen res. I went in and edited /etc/X11/xorg.conf, and put in the new horizontal and vertical refresh rates, and added the new, "1280x1024" to the Modes line for each defined Display subsection. I have restarted the machine, several times by now. When I pull up KDE Control Center, the maximum screen res is the old 1024x768. Running the command xdpyinfo shows the same. ----- The following two pieces are from the modified xorg.conf. I changed the 'Modes' line on all the Display subsections. Section "Screen" Identifier "Screen0" Device "Card0" Monitor "Monitor0" DefaultDepth 24 SubSection "Display" Viewport 0 0 Depth 1 Modes "1280x1024" "1024x768" "800x600" "640x480" EndSubSection Section "Monitor" #DisplaySize 320 240 # mm Identifier "Monitor0" VendorName "Acer" ModelName "AL1914b" Option "DPMS" HorizSync 24-80 VertRefresh 49-75 EndSection --------- I left the rest of xorg.conf the same. Can someone tell me what I'm missing? Thanks, Charlie O -------------- next part -------------- An HTML attachment was scrubbed... URL: http://shadowknight.real-time.com/pipermail/tclug-list/attachments/20060127/607d7c93/attachment.htm From john.meier at gmail.com Fri Jan 27 09:27:57 2006 From: john.meier at gmail.com (John Meier) Date: Fri, 27 Jan 2006 09:27:57 -0600 Subject: [tclug-list] slackware 10.1 - changing default screen res In-Reply-To: <72278d10601270658p2542078ap4cdd1401e8cbd923@mail.gmail.com> References: <72278d10601270658p2542078ap4cdd1401e8cbd923@mail.gmail.com> Message-ID: <65293fcc0601270727x6b0b70fbi3da496967bb3907c@mail.gmail.com> On 1/27/06, Charlie O wrote: > > I am running Slackware 10.1. I just got a new monitor, and am trying to > change the default screen res. > > I went in and edited /etc/X11/xorg.conf, and put in the new horizontal and > vertical refresh rates, and added the new, "1280x1024" to the Modes line for > each defined Display subsection. > > I have restarted the machine, several times by now. > > When I pull up KDE Control Center, the maximum screen res is the old > 1024x768. Running the command xdpyinfo shows the same. > > ----- > > The following two pieces are from the modified xorg.conf. I changed the > 'Modes' line on all the Display subsections. > > Section "Screen" > Identifier "Screen0" > Device "Card0" > Monitor "Monitor0" > DefaultDepth 24 > SubSection "Display" > Viewport 0 0 > Depth 1 > Modes "1280x1024" "1024x768" "800x600" "640x480" > EndSubSection You're default depth is 24 but you put the Modes line under the Depth 1 section. Copy that mode line and put in under the depth 24 section... see if that helps. Section "Monitor" > #DisplaySize 320 240 # mm > Identifier "Monitor0" > VendorName "Acer" > ModelName "AL1914b" > Option "DPMS" > HorizSync 24-80 > VertRefresh 49-75 > EndSection > > --------- > > I left the rest of xorg.conf the same. > > Can someone tell me what I'm missing? > > Thanks, > > Charlie O > > > _______________________________________________ > TCLUG Mailing List - Minneapolis/St. Paul, Minnesota > tclug-list at mn-linux.org > http://mailman.mn-linux.org/mailman/listinfo/tclug-list > > > -------------- next part -------------- An HTML attachment was scrubbed... URL: http://shadowknight.real-time.com/pipermail/tclug-list/attachments/20060127/da8f1fd6/attachment-0001.htm From eric at vangyzen.net Fri Jan 27 09:40:55 2006 From: eric at vangyzen.net (Eric van Gyzen) Date: Fri, 27 Jan 2006 09:40:55 -0600 Subject: [tclug-list] slackware 10.1 - changing default screen res In-Reply-To: <72278d10601270658p2542078ap4cdd1401e8cbd923@mail.gmail.com> References: <72278d10601270658p2542078ap4cdd1401e8cbd923@mail.gmail.com> Message-ID: <43DA3F07.8060107@vangyzen.net> Charlie O wrote: > I am running Slackware 10.1. I just got a new monitor, and am trying to > change the default screen res. > > I went in and edited /etc/X11/xorg.conf, and put in the new horizontal > and vertical refresh rates, and added the new, "1280x1024" to the Modes > line for each defined Display subsection. > > I have restarted the machine, several times by now. > > When I pull up KDE Control Center, the maximum screen res is the old > 1024x768. Running the command xdpyinfo shows the same. The first step in troubleshooting anything is to check the logs. Look in /var/log for something like Xorg.0.log. In that file, look for lines like: Not using default mode "1280x1024" (_reason_) where _reason_ is something like "hsync out of range", "insufficient memory for mode", or "it smells funny". The few lines before and after those might also be helpful. Asynchronously, Eric From auditodd at comcast.net Fri Jan 27 11:01:06 2006 From: auditodd at comcast.net (auditodd@comcast.net) Date: Fri, 27 Jan 2006 17:01:06 +0000 Subject: [tclug-list] firewall questions (newbie) Message-ID: <012720061701.27123.43DA51D20000100C000069F322007504380B0B019B070B9A0E@comcast.net> I'm "top posting" because I'm using web email to reply this morning. Anyway. If you want a more robust/secure firewall and choose to go with the Smoothwall (or IPcop as others may recommend) and you do not have a switch or hub for the LAN, then you would want to use the Linksys as a passive switch in order to attach more than one PC to the GREEN interface (I personally use a Netgear 16 port switch for my LAN). You could run Cat5 from the GREEN port on Smoothwall to the WAN port on the Linksys, and then use the LAN ports for computers, but then you would have two firewalls between you and the Internet and that can lead to interesting connectivity problems. The better solution (but it will take away one of your LAN ports) is to run the Cat5 from the GREEN port to one of the LAN ports and then make sure you have turned off the DHCP server on either the Linksys or the Smoothwall (since you only want one DHCP server on your LAN). Having the Linksys acting as a passive switch on your LAN (and using the Smoothwall as your DHCP server) would have the added benefit of providing an "inside" wireless access point should you ever go wireless. I ended up buying a Netgear wireless router since it was half the price of a dedicated access point and simply turned off the DHCP server portion and attached it to my LAN via one of the LAN ports and now it simply serves as a wireless access point with the IP for any connecting PCs coming from the Smoothwall DHCP server. If you go with Smoothwall, do yourself a favor and surf through their forums, there are a LOT of tips and tricks in there. I've also created a modified ISO image that has all 8 updates/patches in a seperate folder on the image so that I don't have to download the patches when/if I need to build or rebuild a firewall. Apparently there is a guy on the forums that has "slipstreamed" the patches into the standard ISO image. I've done such a thing with WinXP and Win2000, but not with Linux. -- ---- ------ Todd Young -------------- Original message ---------------------- From: "G J" > The closest residence is over a quarter mile away, not to mention the road > is as far as well, (I live on a farm), so I'm not worried about anyone at > all hacking my wireless, and as of right now its turned off since I don't > have any wireless computers. I am probably going to put it between the modem > and the switch of course, however, do I plug it into the LAN side or the > internet side of the Linksys? > > > Jesse > > > > > > > > I have to disagree with the statement "learn IPTABLES first, then get > lazy/clever and worry about a front end". I would highly recommend using > a Smoothwall firewall first, and then while the Smoothwall is protecting > your home network, you can play with IPTABLES on another machine. The > last thing you would want to do is make a mistake and open up your > entire network to the Internet. > > My $0.02 on the subject of what to do.....Either #1 or #2 below. > #1 - Create a Smoothwall (use v2.0 with all 8 updates, v3 is still beta) > with three (3) NICs. GREEN (LAN), RED (Internet), ORANGE (DMZ). And then > put your Linksys out on the Orange interface as your wireless access > point. That way if someone were to hack your wireless, all they would > have access to is your Internet connection. Not necessarily good, but > better than them having access to your internal network. > > #2 - Create a Smoothwall with two (2) NICs, GREEN & RED. Plug the > Linksys in on the LAN side and turn off DHCP (use the Smoothwall as your > DHCP server) and basically just turn it into a simple WiFi access point > and wired switch. If you have WPA encryption turned on with a strong > password and you are not broadcasting your SSID, there is a very slim > chance that someone will even bother to try to hack your WiFi (there are > a lot of unsecured access points out there for them to play with). > > You might even consider just using the Linksys as is (or with the > "aftermarket" Linux upgrade) as your firewall/switch and using the PII > machine as a "test" or "play" machine. That way you can play with > different distributions and not have to worry about hosing your primary > computer. > -- > Todd Young > > _______________________________________________ > TCLUG Mailing List - Minneapolis/St. Paul, Minnesota > tclug-list at mn-linux.org > http://mailman.mn-linux.org/mailman/listinfo/tclug-list > > > > _______________________________________________ > TCLUG Mailing List - Minneapolis/St. Paul, Minnesota > tclug-list at mn-linux.org > http://mailman.mn-linux.org/mailman/listinfo/tclug-list From obelin23 at gmail.com Fri Jan 27 16:01:10 2006 From: obelin23 at gmail.com (Charlie O) Date: Fri, 27 Jan 2006 22:01:10 +0000 Subject: [tclug-list] slackware 10.1 - changing default screen res In-Reply-To: <43DA3F07.8060107@vangyzen.net> References: <72278d10601270658p2542078ap4cdd1401e8cbd923@mail.gmail.com> <43DA3F07.8060107@vangyzen.net> Message-ID: <72278d10601271401s2a92cb8aua0e84a2fe29aa5c8@mail.gmail.com> First of all thank you both for helping, From bogus@does.not.exist.com Tue Jan 24 00:41:35 2006 From: bogus@does.not.exist.com () Date: Tue, 24 Jan 2006 06:41:35 -0000 Subject: No subject Message-ID: (II) SIS(0): Not using mode "1280x1024" (no mode of this name) There were a couple of earlier messages related to this mode, that were repeated for the successful 1024x768, as follows. II) SIS(0): Not using default mode "1024x768" (vrefresh out of range) (II) SIS(0): Not using default mode "1024x768" (bad mode clock/interlace/doublescan) (II) SIS(0): Not using default mode "1280x1024" (vrefresh out of range) (II) SIS(0): Not using default mode "1280x1024" (bad mode clock/interlace/doublescan) I'm not sure what 'no mode of this name' means, other than that it possibly does not recognize that pair as a valid screen dimension. Any further feedback? Thanks again, Charlie On 1/27/06, Eric van Gyzen wrote: > > Charlie O wrote: > > I am running Slackware 10.1. I just got a new monitor, and am trying to > > change the default screen res. > > > > I went in and edited /etc/X11/xorg.conf, and put in the new horizontal > > and vertical refresh rates, and added the new, "1280x1024" to the Modes > > line for each defined Display subsection. > > > > I have restarted the machine, several times by now. > > > > When I pull up KDE Control Center, the maximum screen res is the old > > 1024x768. Running the command xdpyinfo shows the same. > > The first step in troubleshooting anything is to check the logs. > > Look in /var/log for something like Xorg.0.log. In that file, look for > lines like: > > Not using default mode "1280x1024" (_reason_) > > where _reason_ is something like "hsync out of range", "insufficient > memory for mode", or "it smells funny". > > The few lines before and after those might also be helpful. > > Asynchronously, > > Eric > ------=_Part_4240_296527.1138399270915 Content-Type: text/html; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable Content-Disposition: inline First of all thank you both for helping,

From bogus@does.not.exist.com Tue Jan 24 00:41:35 2006 From: bogus@does.not.exist.com () Date: Tue, 24 Jan 2006 06:41:35 -0000 Subject: No subject Message-ID: )

There were a couple of earlier messages related to this mode, that were rep= eated for the successful 1024x768, as follows. 

II) SIS(0): Not using default mode "1024x768" (vrefresh out of ra= nge)
(II) SIS(0): Not using default mode "1024x768" (bad mode clock/in= terlace/doublescan)
(II) SIS(0): Not using default mode "1280x1024" (vrefresh out of = range)
(II) SIS(0): Not using default mode "1280x1024" (bad mode clock/i= nterlace/doublescan)

I'm not sure what 'no mode of this name' means, other than that it possibly does not recognize that pair as a valid screen dimension.

Any further feedback?

Thanks again,

Charlie

On 1/27/06, Eric van Gyzen <eric at vangyz= en.net > wrote:
Charlie O wrote:
> I am running Slackware 10.1. I just got a new moni= tor, and am trying to
> change the default screen res.
>
>= ; I went in and edited /etc/X11/xorg.conf, and put in the new horizontal
> and vertical refresh rates, and added the new, "1280x1024&quo= t; to the Modes
> line for each defined Display subsection.
>> I have restarted the machine, several times by now.
>
> When I pull up KDE Control Center, the maximum screen res is the old
> 1024x768. Running the command xdpyinfo shows the same.

The = first step in troubleshooting anything is to check the logs.

Look in= /var/log for something like Xorg.0.log.  In that file, look for<= br>lines like:

     Not using default mode "1280x1024&quo= t; (_reason_)

where _reason_ is something like "hsync out of ra= nge", "insufficient
memory for mode", or "it smells = funny".

The few lines before and after those might also be helpful.

Asyn= chronously,

Eric

------=_Part_4240_296527.1138399270915-- From obelin23 at gmail.com Fri Jan 27 17:27:41 2006 From: obelin23 at gmail.com (Charlie O) Date: Fri, 27 Jan 2006 23:27:41 +0000 Subject: [tclug-list] screen res and aspect ratio Message-ID: <72278d10601271527w794e14beub34f11f8ae9b77a0@mail.gmail.com> This is a follow-up to my earlier posting about not getting 1280x1024 to work with Slackware 10.1 despite modifying xorg.conf. I googled a bit on the screen res, and apparently older CRT monitors are mainly 4:3 aspect ratio, while some of the newer large LCD displays are 5:4. I am wondering if this has anything to do with 1280x1024 not being recognized as a valid Mode name on my machine - although whether that is at hardware level (a 2003 machine from General Nanosys with an on-board Sis video driver), or software driver level, or higher, I have no clue. Does anyone have experience with xorg and newer large LCD displays? Any rays of light on this subject? Thanks, Charlie O -------------- next part -------------- An HTML attachment was scrubbed... URL: http://shadowknight.real-time.com/pipermail/tclug-list/attachments/20060127/48f2c4cc/attachment.htm From hick0088 at tc.umn.edu Sat Jan 28 11:21:04 2006 From: hick0088 at tc.umn.edu (Mike Hicks) Date: Sat, 28 Jan 2006 11:21:04 -0600 Subject: [tclug-list] screen res and aspect ratio In-Reply-To: <72278d10601271527w794e14beub34f11f8ae9b77a0@mail.gmail.com> References: <72278d10601271527w794e14beub34f11f8ae9b77a0@mail.gmail.com> Message-ID: <1138468865.8995.76.camel@3po.thodt.net> On Fri, 2006-01-27 at 23:27 +0000, Charlie O wrote: > I googled a bit on the screen res, and apparently older CRT monitors > are mainly 4:3 aspect ratio, while some of the newer large LCD > displays are 5:4. That shouldn't have anything to do with the resolutions the display supports. > I am wondering if this has anything to do with 1280x1024 not being > recognized as a valid Mode name on my machine - although whether that > is at hardware level (a 2003 machine from General Nanosys with an > on-board Sis video driver), or software driver level, or higher, I > have no clue. Xorg should attempt to communicate with the monitor with the DDC protocol to get EDID information about the display, including its size and the supported video modes. I'd expect that to be logged to the Xorg.0.log file (so you might send that to the list to get some more eyeballs on it), though maybe the driver for your video card doesn't do that. I googled around for your monitor, and found that someone suggested setting the VertRefresh value to 60 (rather than a range), and that seemed to help [http://forums.gentoo.org/viewtopic-p-2491823.html] -- Mike Hicks -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 189 bytes Desc: This is a digitally signed message part Url : http://shadowknight.real-time.com/pipermail/tclug-list/attachments/20060128/c730bf02/attachment.pgp From hick0088 at tc.umn.edu Sat Jan 28 12:17:28 2006 From: hick0088 at tc.umn.edu (Mike Hicks) Date: Sat, 28 Jan 2006 12:17:28 -0600 Subject: [tclug-list] Blackholing SSH scan-bots Message-ID: <1138472248.8995.118.camel@192.168.1.42> Hi, I finally got around to making an automatic blackhole setup to stop the bots that try to SSH into my box all the time. I'm sure people have done this before, but I couldn't find many decent references googling around. So, I figured I'd explain what I did so others can waste less time. First off, I switched from running the standard syslogd/klogd setup to using syslog-ng. The advantage of syslog-ng is that you can have it pipe some or all of the logs that are received into another program, which can handle events as they happen. I pondered making a utility of my own to filter the logs for SSH login failures, but I finally came across a reasonable utility online. SEC, the Simple Event Correlator [http://kodu.neti.ee/~risto/sec/], uses Perl and allows for Perl's regular expression syntax, which I'm most comfortable with (and when I forget things, I can just do "man perlre" to remember). Finally, I decided to make myself a simple blackhole script to give myself a little more flexibility (for example, I'll expand it in the future to have a "whitelist" of IP addresses, so if I'm feeling forgetful one day, I hopefully won't block myself). I added these entries to my /etc/syslog-ng/syslog-ng.conf file, which filters my logs and only sends messages from sshd to SEC (my firewall is just a Pentium 133, so I didn't want to send everything there): # set up the destination of sec, which uses STDIN ('-') as input destination d_sec { program("sec -input=- -conf=/etc/sec.conf"); }; # set up a filter to only pick up logs from the SSH daemon filter f_sshd { program(sshd.*); }; # connect log source, filter, and destination log { source(s_all); filter(f_sshd); destination(d_sec); }; I also created a rule for SEC that will run my blackhole script if three failed logins appeared within a 30-second window. After an hour (3600 seconds), I run my script again to unblock the IP address (otherwise my blackhole chain would probably become very long after a while). type=SingleWith2Thresholds ptype=RegExp pattern=Failed password for (?:root|illegal user \S+) from ::ffff:([0-9.]+) desc=Repeated login failures from $1 window=30 thresh=3 action=shellcmd /usr/local/bin/blackhole.pl add $1 desc2=Blackholed $1 for one hour, removing window2=3600 thresh2=0 action2=shellcmd /usr/local/bin/blackhole.pl remove $1 I created a blackhole script that would add the IP to some rule chains that are already set up on my firewall. I use the shorewall script to define rules, which has a pre-defined "dynamic" chain for blackholing sites, plus a "reject" target chain that will sanely react to a variety of different incoming traffic. (I suppose calling it a "blackhole" isn't really accurate in this case, since my firewall will generally send TCP reset, port unreachable, or other responses when traffic is being rejected). #!/usr/bin/perl my ($action, $ip) = @ARGV; if ($action eq 'add') { system ("iptables -A dynamic -s $ip -j reject"); system ("logger -t blackhole.pl[$$] added $ip to blackhole list"); } elsif ($action eq 'remove') { system ("iptables -D dynamic -s $ip -j reject"); system ("logger -t blackhole.pl[$$] removed $ip from blackhole list"); } I finished it up late last night, and wasn't quite sure if it was working. I'd attempted to fail SSH logins a few times from a remote shell account I have, but it didn't seem to work (maybe I just didn't type fast enough ;-) However, when I woke up today, I was happy to see that this setup had added and then removed blackhole rules for two sites. -- Mike Hicks -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 189 bytes Desc: This is a digitally signed message part Url : http://shadowknight.real-time.com/pipermail/tclug-list/attachments/20060128/fd6385ee/attachment.pgp From jus at krytosvirus.com Sat Jan 28 13:40:04 2006 From: jus at krytosvirus.com (Justin Krejci) Date: Sat, 28 Jan 2006 13:40:04 -0600 Subject: [tclug-list] Blackholing SSH scan-bots In-Reply-To: <10007785.1138472536735.JavaMail.root@sniper7> References: <10007785.1138472536735.JavaMail.root@sniper7> Message-ID: <200601281340.04824.jus@krytosvirus.com> On Saturday 28 January 2006 12:17 pm, Mike Hicks wrote: > Hi, > > I finally got around to making an automatic blackhole setup to stop the > bots that try to SSH into my box all the time. I'm sure people have > done this before, but I couldn't find many decent references googling > around. So, I figured I'd explain what I did so others can waste less > time. > > First off, I switched from running the standard syslogd/klogd setup to > using syslog-ng. The advantage of syslog-ng is that you can have it > pipe some or all of the logs that are received into another program, > which can handle events as they happen. > > I pondered making a utility of my own to filter the logs for SSH login > failures, but I finally came across a reasonable utility online. SEC, > the Simple Event Correlator [http://kodu.neti.ee/~risto/sec/], uses Perl > and allows for Perl's regular expression syntax, which I'm most > comfortable with (and when I forget things, I can just do "man perlre" > to remember). > > Finally, I decided to make myself a simple blackhole script to give > myself a little more flexibility (for example, I'll expand it in the > future to have a "whitelist" of IP addresses, so if I'm feeling > forgetful one day, I hopefully won't block myself). > > I added these entries to my /etc/syslog-ng/syslog-ng.conf file, which > filters my logs and only sends messages from sshd to SEC (my firewall is > just a Pentium 133, so I didn't want to send everything there): > > # set up the destination of sec, which uses STDIN ('-') as input > destination d_sec { program("sec -input=- -conf=/etc/sec.conf"); }; > > # set up a filter to only pick up logs from the SSH daemon > filter f_sshd { program(sshd.*); }; > > # connect log source, filter, and destination > log { > source(s_all); > filter(f_sshd); > destination(d_sec); > }; > > I also created a rule for SEC that will run my blackhole script if three > failed logins appeared within a 30-second window. After an hour (3600 > seconds), I run my script again to unblock the IP address (otherwise my > blackhole chain would probably become very long after a while). > > type=SingleWith2Thresholds > ptype=RegExp > pattern=Failed password for (?:root|illegal user \S+) from > ::ffff:([0-9.]+) desc=Repeated login failures from $1 > window=30 > thresh=3 > action=shellcmd /usr/local/bin/blackhole.pl add $1 > desc2=Blackholed $1 for one hour, removing > window2=3600 > thresh2=0 > action2=shellcmd /usr/local/bin/blackhole.pl remove $1 > > I created a blackhole script that would add the IP to some rule chains > that are already set up on my firewall. I use the shorewall script to > define rules, which has a pre-defined "dynamic" chain for blackholing > sites, plus a "reject" target chain that will sanely react to a variety > of different incoming traffic. (I suppose calling it a "blackhole" > isn't really accurate in this case, since my firewall will generally > send TCP reset, port unreachable, or other responses when traffic is > being rejected). > > #!/usr/bin/perl > my ($action, $ip) = @ARGV; > if ($action eq 'add') { > system ("iptables -A dynamic -s $ip -j reject"); > system ("logger -t blackhole.pl[$$] added $ip to blackhole > list"); } > elsif ($action eq 'remove') { > system ("iptables -D dynamic -s $ip -j reject"); > system ("logger -t blackhole.pl[$$] removed $ip from > blackhole list"); } > > I finished it up late last night, and wasn't quite sure if it was > working. I'd attempted to fail SSH logins a few times from a remote > shell account I have, but it didn't seem to work (maybe I just didn't > type fast enough ;-) However, when I woke up today, I was happy to see > that this setup had added and then removed blackhole rules for two > sites. I have finished up a script about a month ago to do this very thing. Coincidentally I went from syslog-ng (yuck) to sysklog/klog. I do not want my logger program to be doing anything but writing to my log files and syslog-ng is way overly complex for even just writing to log files. Now my perl script runs in cron every 5 minutes and checks the auth.log file for X failed login attempts from a single IP. If the IP procudes more than X failed login attempts a rule is added to iptables to block this host from talking to me on port 22. After Y seconds, the host is removed. I have Y set to 1 day for myself. It stores the blocked IPs in a local hash database so in case someone flushes iptables outside of the script it can repopulate iptables automatically on its next run. For every block and removal action it sends an email out to me. It runs very well but it is still a work in progress and unfortunately I was not able to get the iptables perl module to install on my amd64 so I have resorted to calling iptables thru perl's "system" function. My biggest gripe about my script is the log parsing code, it is currently not very flexible yet - it is still a work in progress. From galanolwe at yahoo.com Sat Jan 28 13:52:52 2006 From: galanolwe at yahoo.com (Olwe Bottorff) Date: Sat, 28 Jan 2006 11:52:52 -0800 (PST) Subject: [tclug-list] Wireless = Communism...yeah Message-ID: <20060128195252.32757.qmail@web34304.mail.mud.yahoo.com> Somebody sent me this link: http://www.muniwireless.com/ It seems like wireless has the potential to give everybody in big fell swoops broadband access. I'd like to see Internet access be like a utility, a public-sector "given" wherever you are. Of course the argument is the private sector has expanded the Internet very quickly and manage it well. However, if times get bad, they might pack it in and leave us all without Internet, or at crazy prices. If times get bad (not enough oil to cover the demand?) the Internet would greatly aid everybody's ability to connect, brainstorm, organize locally, regionally, whatever. Without it, we're at the mercy of some top-down BS--maybe like we saw in NOLA.... :-( Olwe __________________________________________________ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com From chewie at wookimus.net Sat Jan 28 14:29:58 2006 From: chewie at wookimus.net (Chad Walstrom) Date: Sat, 28 Jan 2006 14:29:58 -0600 Subject: [tclug-list] Blackholing SSH scan-bots In-Reply-To: <1138472248.8995.118.camel@192.168.1.42> References: <1138472248.8995.118.camel@192.168.1.42> Message-ID: <20060128202958.D2D026991@skuld.wookimus.net> Or, you could use a simple iptables module called "ipt_recent". I added this function to my /etc/shorewall/start script. Whitelisted IP addresses are found in /etc/shorewall/ssh-bruteforce-whitelist. FWDSSH_PORT=2345 SSH_PORT=22 ssh_bruteforce() { # Prime the whitelist iptables -N SSH_WHITELIST echo " SSH Bruteforce whitelist chain created." >&2 sed -e '/^#/ D' /etc/shorewall/ssh-bruteforce-whitelist | \ while read CIDR; do iptables -A SSH_WHITELIST -s $CIDR -m recent --remove --name SSH \ -j ACCEPT echo " Added $CIDR to whitelist.">&2 done # Start following state iptables -N SSH_BRUTEFORCE echo " Creating SSH_BRUTEFORCE chain" >&2 iptables -A SSH_BRUTEFORCE -m recent --set --name SSH iptables -A SSH_BRUTEFORCE -j SSH_WHITELIST iptables -A SSH_BRUTEFORCE -m recent --update --seconds 60 --hitcount 4 \ --rttl --name SSH \ -j LOG --log-prefix "SSH_BRUTE_FORCE " iptables -A SSH_BRUTEFORCE -m recent --update --seconds 60 --hitcount 4 \ --rttl --name SSH \ -j DROP echo " Added rules to SSH_BRUTEFORCE chain" >&2 iptables -I net2fw 2 -p tcp \ -m multiport --destination-ports $SSH_PORT,$FWDSSH_PORT \ -m state --state NEW \ -j SSH_BRUTEFORCE echo " Added SSH_BRUTEFORCE chain to net2fw" >&2 } ssh_bruteforce Logs look like this: Jan 25 15:50:01 skuld kernel: SSH_BRUTE_FORCE IN=eth0 OUT= MAC=00:11:2f:9e:c9:1e:00:14:bf:18:80:c0:08:00 SRC=163.21.251.8 DST=192.168.1.10 LEN=60 TOS=0x00 PREC=0x00 TTL=47 ID=22053 DF PROTO=TCP SPT=59345 DPT=22 WINDOW=5840 RES=0x00 SYN URGP=0 After four hits to the same port by the same IP address, it's added to the black list for 60 seconds. I could extend that if I wanted, but I find that 60 seconds is sufficiently long to discourage most worm/bots. -- Chad Walstrom http://www.wookimus.net/ assert(expired(knowledge)); /* core dump */ From dan at dandrake.org Sat Jan 28 14:43:59 2006 From: dan at dandrake.org (Dan Drake) Date: Sat, 28 Jan 2006 14:43:59 -0600 Subject: [tclug-list] Blackholing SSH scan-bots In-Reply-To: <1138472248.8995.118.camel@192.168.1.42> References: <1138472248.8995.118.camel@192.168.1.42> Message-ID: <20060128204359.GA10939@dandrake.org> On Sat, 28 Jan 2006 at 12:17PM -0600, Mike Hicks wrote: > I finally got around to making an automatic blackhole setup to stop > the bots that try to SSH into my box all the time. I'm sure people > have done this before, but I couldn't find many decent references > googling around. So, I figured I'd explain what I did so others can > waste less time. My solution to that problem was to use iptables and a port knocking daemon. If you're not coming from the U of M, iptables drops all port 22 packets, unless you knock first. It's a very simple setup, and easy to use. Dan -- Ceci n'est pas une .signature. -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 189 bytes Desc: Digital signature Url : http://shadowknight.real-time.com/pipermail/tclug-list/attachments/20060128/d3a815fc/attachment.pgp From dan at dandrake.org Sat Jan 28 14:43:59 2006 From: dan at dandrake.org (dan@dandrake.org) Date: Sat, 28 Jan 2006 14:43:59 -0600 Subject: [tclug-list] Blackholing SSH scan-bots In-Reply-To: <1138472248.8995.118.camel@192.168.1.42> References: <1138472248.8995.118.camel@192.168.1.42> Message-ID: <20060128204359.GA10939@dandrake.org> On Sat, 28 Jan 2006 at 12:17PM -0600, Mike Hicks wrote: > I finally got around to making an automatic blackhole setup to stop > the bots that try to SSH into my box all the time. I'm sure people > have done this before, but I couldn't find many decent references > googling around. So, I figured I'd explain what I did so others can > waste less time. My solution to that problem was to use iptables and a port knocking daemon. If you're not coming from the U of M, iptables drops all port 22 packets, unless you knock first. It's a very simple setup, and easy to use. Dan -- Ceci n'est pas une .signature. -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 189 bytes Desc: Digital signature Url : http://shadowknight.real-time.com/pipermail/tclug-list/attachments/20060128/d3a815fc/attachment-0003.pgp From chewie at wookimus.net Sat Jan 28 15:04:12 2006 From: chewie at wookimus.net (Chad Walstrom) Date: Sat, 28 Jan 2006 15:04:12 -0600 Subject: [tclug-list] Blackholing SSH scan-bots In-Reply-To: <20060128204359.GA10939@dandrake.org> References: <1138472248.8995.118.camel@192.168.1.42> <20060128204359.GA10939@dandrake.org> Message-ID: <20060128210412.850B06C22@skuld.wookimus.net> dan at dandrake.org wrote: > My solution to that problem was to use iptables and a port knocking > daemon. If you're not coming from the U of M, iptables drops all > port 22 packets, unless you knock first. That would work great, but not for shell servers with faculty and students as a user base. Great for servers where ssh is only used for adminitration, though! ;-) It looks like ipt_recent can be used to implement this functionality: http://www.debian-administration.org/articles/268 Sweet. ;-) I may put that on our backup server. -- Chad Walstrom http://www.wookimus.net/ assert(expired(knowledge)); /* core dump */ From chewie at wookimus.net Sat Jan 28 15:04:12 2006 From: chewie at wookimus.net (Chad Walstrom) Date: Sat, 28 Jan 2006 15:04:12 -0600 Subject: [tclug-list] Blackholing SSH scan-bots In-Reply-To: <20060128204359.GA10939@dandrake.org> References: <1138472248.8995.118.camel@192.168.1.42> <20060128204359.GA10939@dandrake.org> Message-ID: dan at dandrake.org wrote: > My solution to that problem was to use iptables and a port knocking > daemon. If you're not coming from the U of M, iptables drops all > port 22 packets, unless you knock first. That would work great, but not for shell servers with faculty and students as a user base. Great for servers where ssh is only used for adminitration, though! ;-) It looks like ipt_recent can be used to implement this functionality: http://www.debian-administration.org/articles/268 Sweet. ;-) I may put that on our backup server. -- Chad Walstrom http://www.wookimus.net/ assert(expired(knowledge)); /* core dump */ From chewie at wookimus.net Sat Jan 28 14:29:58 2006 From: chewie at wookimus.net (Chad Walstrom) Date: Sat, 28 Jan 2006 14:29:58 -0600 Subject: [tclug-list] Blackholing SSH scan-bots In-Reply-To: <1138472248.8995.118.camel@192.168.1.42> References: <1138472248.8995.118.camel@192.168.1.42> Message-ID: Or, you could use a simple iptables module called "ipt_recent". I added this function to my /etc/shorewall/start script. Whitelisted IP addresses are found in /etc/shorewall/ssh-bruteforce-whitelist. FWDSSH_PORT=2345 SSH_PORT=22 ssh_bruteforce() { # Prime the whitelist iptables -N SSH_WHITELIST echo " SSH Bruteforce whitelist chain created." >&2 sed -e '/^#/ D' /etc/shorewall/ssh-bruteforce-whitelist | \ while read CIDR; do iptables -A SSH_WHITELIST -s $CIDR -m recent --remove --name SSH \ -j ACCEPT echo " Added $CIDR to whitelist.">&2 done # Start following state iptables -N SSH_BRUTEFORCE echo " Creating SSH_BRUTEFORCE chain" >&2 iptables -A SSH_BRUTEFORCE -m recent --set --name SSH iptables -A SSH_BRUTEFORCE -j SSH_WHITELIST iptables -A SSH_BRUTEFORCE -m recent --update --seconds 60 --hitcount 4 \ --rttl --name SSH \ -j LOG --log-prefix "SSH_BRUTE_FORCE " iptables -A SSH_BRUTEFORCE -m recent --update --seconds 60 --hitcount 4 \ --rttl --name SSH \ -j DROP echo " Added rules to SSH_BRUTEFORCE chain" >&2 iptables -I net2fw 2 -p tcp \ -m multiport --destination-ports $SSH_PORT,$FWDSSH_PORT \ -m state --state NEW \ -j SSH_BRUTEFORCE echo " Added SSH_BRUTEFORCE chain to net2fw" >&2 } ssh_bruteforce Logs look like this: Jan 25 15:50:01 skuld kernel: SSH_BRUTE_FORCE IN=eth0 OUT= MAC=00:11:2f:9e:c9:1e:00:14:bf:18:80:c0:08:00 SRC=163.21.251.8 DST=192.168.1.10 LEN=60 TOS=0x00 PREC=0x00 TTL=47 ID=22053 DF PROTO=TCP SPT=59345 DPT=22 WINDOW=5840 RES=0x00 SYN URGP=0 After four hits to the same port by the same IP address, it's added to the black list for 60 seconds. I could extend that if I wanted, but I find that 60 seconds is sufficiently long to discourage most worm/bots. -- Chad Walstrom http://www.wookimus.net/ assert(expired(knowledge)); /* core dump */ From ewilts at ewilts.org Sat Jan 28 21:02:27 2006 From: ewilts at ewilts.org (Ed Wilts) Date: Sat, 28 Jan 2006 21:02:27 -0600 Subject: [tclug-list] Blackholing SSH scan-bots In-Reply-To: <1138472248.8995.118.camel@192.168.1.42> References: <1138472248.8995.118.camel@192.168.1.42> Message-ID: <20060129030227.GB10918@www.ewilts.org> On Sat, Jan 28, 2006 at 12:17:28PM -0600, Mike Hicks wrote: > I finally got around to making an automatic blackhole setup to stop the > bots that try to SSH into my box all the time. I'm sure people have > done this before, but I couldn't find many decent references googling > around. This is a start: http://denyhosts.sourceforge.net/ http://www.aczoom.com/cms/blockhosts/ http://blinkeye.ch/mediawiki/index.php/SSH_Blocking http://fail2ban.sourceforge.net/ .../Ed -- Ed Wilts, RHCE Mounds View, MN, USA mailto:ewilts at ewilts.org Member #1, Red Hat Community Ambassador Program From hick0088 at tc.umn.edu Sun Jan 29 00:32:36 2006 From: hick0088 at tc.umn.edu (Mike Hicks) Date: Sun, 29 Jan 2006 00:32:36 -0600 Subject: [tclug-list] Blackholing SSH scan-bots In-Reply-To: <20060128204359.GA10939@dandrake.org> References: <1138472248.8995.118.camel@192.168.1.42> <20060128204359.GA10939@dandrake.org> Message-ID: <1138516356.8995.165.camel@3po.thodt.net> On Sat, 2006-01-28 at 14:43 -0600, Dan Drake wrote: > On Sat, 28 Jan 2006 at 12:17PM -0600, Mike Hicks wrote: > > I finally got around to making an automatic blackhole setup to stop > > the bots that try to SSH into my box all the time. I'm sure people > > have done this before, but I couldn't find many decent references > > googling around. So, I figured I'd explain what I did so others can > > waste less time. Heh, I probably should have explained that a little better -- I did come across several utilities to block SSH attempts, though they just didn't work in ways I liked. Some worked via cron (or that's what I thought), and, seemingly, most use Python (heh, Perl's slow enough for me already ;-) Well, I'm not sure why I don't like Python.. Probably just because I don't know it yet. Anyway, I've gotten a few direct responses too, and I think everyone seems to have equally valid solutions, just resolving problems in the way that makes the most sense to them. I wanted something that was getting fed directly from the system logger (not tailing a file or--eek--reading the whole thing every few minutes as a cronjob) so it could respond immediately. Of course, the iptables limiting approach is reasonable too, but I just wanted to know that I'm filtering someone who's actually failing login. > My solution to that problem was to use iptables and a port knocking > daemon. If you're not coming from the U of M, iptables drops all port 22 > packets, unless you knock first. Hmm, I suppose I could whitelist the firewall I'm coming from when ssh'ing from work (and a handful of others), then use knocking for other source IPs. But I suspect that getting IPSec working between my roaming laptop and my home network is higher up on my To-Do,-Someday,-Hopefully list.. -- Mike Hicks -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 189 bytes Desc: This is a digitally signed message part Url : http://shadowknight.real-time.com/pipermail/tclug-list/attachments/20060129/3b89475c/attachment.pgp From chewie at wookimus.net Sun Jan 29 10:45:22 2006 From: chewie at wookimus.net (Chad Walstrom) Date: Sun, 29 Jan 2006 10:45:22 -0600 Subject: [tclug-list] Blackholing SSH scan-bots In-Reply-To: <1138516356.8995.165.camel@3po.thodt.net> References: <1138472248.8995.118.camel@192.168.1.42> <20060128204359.GA10939@dandrake.org> <1138516356.8995.165.camel@3po.thodt.net> Message-ID: <20060129164522.66535246E@skuld.wookimus.net> Mike wrote: > Of course, the iptables limiting approach is reasonable too, but I > just wanted to know that I'm filtering someone who's actually > failing login. This might be good information, however I believe that is exposing yourself to the very low probability that someone might actually brute-force guess a password on your system or expose a new vulnerability in the daemon answering to that port. I would say "defense in depth" would be the best answer to get filtering at the time of TCP negotiation as well as answering to log events. > But I suspect that getting IPSec working between my roaming laptop > and my home network is higher up on my To-Do,-Someday,-Hopefully > list.. I was looking at OpenVPN as a solution. I'm using OpenWRT on my Linksys, and there's already a package for it. In fact, I plan on using the same setup at work to get us on to the private LAN in the server room. There are nice OpenVPN clients for most OS'es. Anyway, back to homework. -- Chad Walstrom http://www.wookimus.net/ assert(expired(knowledge)); /* core dump */ From asim at catsone.com Sat Jan 21 09:54:15 2006 From: asim at catsone.com (Asim Baig) Date: Sat, 21 Jan 2006 09:54:15 -0600 Subject: [tclug-list] New open source project needs volunteers Message-ID: <43D25927.8060306@catsone.com> CATS is a new open source project that I have been working on since summer. I run an IT staffing shop in Minnetonka and needed an affordable system to manage my business. Couldn't find a decent commercial solution or an open source alternative, so I decided to write one.....:-) CATS is an Applicant Tracking System (ATS) primarily used by recruiters and HR professionals to manage candidates/gigs etc. Its built on LAMP platform ( I must admit though that all development is in Linux, but we have hosted it on a FreeBSD box....don't ask, one of my developers is a big freebsd fan). Anyways, we are looking for volunteers for the project. Our current challenges are: - Mysql replication and high availability issues. (Advice on moving up to Mysql 5....any benefits on using stored procs?) - PHP coding (have a growing list of features) - Advanced Bash scripting - Graphic Designer (nice to have dhtml./css wizardry and a bit of AJAX wont hurt either) Because it is the first ever open source ATS system out there, we have received great response from recruiters from all over since announcing it on Jan 10. The project is not ready for prime time yet and we need help (its really a 3 legged 1 eyed dog at this point) If anyone is interested in joining our project, please send me an email at asim at catsone.com and tell us how you can help us. The project is hosted online so you can check it out on http://www.catsone.com (Demo available) Regards, -- Asim Baig CATS Dev Team Lead asim at catsone.com 952-417-0067 From tringer at consumption.net Fri Jan 27 23:26:43 2006 From: tringer at consumption.net (Torleiv Ringer) Date: Fri, 27 Jan 2006 21:26:43 -0800 (PST) Subject: [tclug-list] Question for the more experienced networking/sysadmin folks Message-ID: Hello, Here is something that I must ask for guidance from the more experienced administrators. I must say up front that I am not a networking specialist. My forte is in our "custom" system. We have a situation at work where someone misconfigured a switch and it caused some major failures that were hard to trace. We have a unique environment where we route custom packets through a brand-new Cisco 4500. We have new Cisco 3560 switches that distribute links to each of two rooms that have "custom" digital equipment. This is a new setup for us, and is mission-critical. We have moved from an analog network to this new digital UDP based system. In total we have about 14 3560s, and plugged into these are about 200 other "custom" switches that are vendor-specific. The point of contention is that someone thought they were doing the right thing and jumped in where they were not asked to by installing a new 3560. *) This person set the switch up "hot" (on the network) *) They used two uplink ports, intending on ganging them togther *) They did not properly set the ports into a channel-group This made the 3560 seem like a router and flooded all of our custom switches with so much traffic that the devices could not effectively talk to each other. This would be sorta OK in a TCP environment, but we have a UDP based system that relies heavily on very low latency. So here is my question: I am being pushed by the higher-ups to come up with a software solution for this problem, which I feel is a process problem. The process should be to NOT SET THE SWITCH UP ON THE F**KING NETWORK! And to have another person verify the setup prior to bringing up a new piece of equipment on the network that is mission-critical. Beyond that the person just went and did it without coordinating with anyone. Should I bow to the pressure and force our vendor to "fix" their software to be able to function in an abnormal network setup? This would allow certain folks to save face while straining our relationship with out vendor. Or Should I instill a process such that this would never happen again and put the lock-down on people who configure devices in/on this network? This involves disallowing the people who are supposed to be the networking specialists from configuring the "custom" network. Or Is there a Cisco configuration that can be used to disallow "unknown" routers on the VLAN? This seems unlikely to me. It's one or the other at this point, as we have lost a lot of credibility in this situation, and we must move forward with implementation. This is the second time now that a misconfigured switch has been setup hot on the "custom" network. Has anyone had a similar situation? Thanks in advance for your sage advice. p.s. No, at this point I cannot divulge what the "custom" is. -- As fast as it ever got, it never got fast enough for me. Hunter S. Thompson From jus at krytosvirus.com Sun Jan 29 18:51:26 2006 From: jus at krytosvirus.com (Justin Krejci) Date: Sun, 29 Jan 2006 18:51:26 -0600 Subject: [tclug-list] Blackholing SSH scan-bots In-Reply-To: <30745457.1138553639957.JavaMail.root@sniper28> References: <1138472248.8995.118.camel@192.168.1.42> <1138516356.8995.165.camel@3po.thodt.net> <30745457.1138553639957.JavaMail.root@sniper28> Message-ID: <200601291851.27209.jus@krytosvirus.com> > > > But I suspect that getting IPSec working between my roaming laptop > > and my home network is higher up on my To-Do,-Someday,-Hopefully > > list.. > > I was looking at OpenVPN as a solution. I'm using OpenWRT on my > Linksys, and there's already a package for it. In fact, I plan on > using the same setup at work to get us on to the private LAN in the > server room. There are nice OpenVPN clients for most OS'es. > > Anyway, back to homework. Digressing fully from the topic - The next to be released OpenSSH version will support VPN tunneling similarly to how OpenVPN does it. I predict the OpenSSH will be better than OpenVPN once it gets some primetime use and bugs ironed out. Plus, come on, who doesn't use OpenSSH (besides Cisco)? From ewilts at ewilts.org Sun Jan 29 19:41:04 2006 From: ewilts at ewilts.org (Ed Wilts) Date: Sun, 29 Jan 2006 19:41:04 -0600 Subject: [tclug-list] Blackholing SSH scan-bots In-Reply-To: <200601291851.27209.jus@krytosvirus.com> References: <1138472248.8995.118.camel@192.168.1.42> <1138516356.8995.165.camel@3po.thodt.net> <30745457.1138553639957.JavaMail.root@sniper28> <200601291851.27209.jus@krytosvirus.com> Message-ID: <20060130014104.GA9793@www.ewilts.org> On Sun, Jan 29, 2006 at 06:51:26PM -0600, Justin Krejci wrote: > Plus, come on, who doesn't use OpenSSH (besides Cisco)? I finally had to purchase Tectia SSH server software for my office since OpenSSH doesn't offer a secure, supportable chroot'ed environment. Most of my systems do have OpenSSH though. Sigh, .../Ed -- Ed Wilts, RHCE Mounds View, MN, USA mailto:ewilts at ewilts.org Member #1, Red Hat Community Ambassador Program From webmaster at mn-linux.org Sun Jan 29 21:59:43 2006 From: webmaster at mn-linux.org (TCLUG Classifieds) Date: Sun, 29 Jan 2006 21:59:43 -0600 Subject: [tclug-list] New TCLUG Classified Ad Message-ID: <200601300359.k0U3xh931014@crusader.real-time.com> New TCLUG Classified Ad Category: Computer Type of Ad: For Sale Subject: Misc for sale For sale: -PC133 128MB SDRAM: $15/stick (have 6 total) -Linksys EZXS88W Etherfast 8 port switch: $20 -3Com 8 port 8/TPO hub: $5 -Pkg: Quantum DLT4000 internal tape drive, Adaptec, AHA-2940 SCSI controller, 50 pin ribbon, 3 DLT IV and 2 cleaning tapes: $125 for pkg -Computer (was used as firewall) - AMD Athlon 1GHz (T-bird), 384MB ram, Biostar M7VKB motherboard, Linksys NIC, PCI video, 6GB HDD: $50 -Dell Poweredge 4200 server - 2 x P2-333MHz, 512MB ram, 6x9GB SCSI (configured in RAID1 and RAID5 setup). Comes with external disk array (8 bays has 3 x 4GB scsi) and extra disks: $100 -USR 56K external faxmodem (model 701, USR5686D): $20 -USR 56K internal ISA modem S(Sportster model 0461): $10 -Adaptec AIC-7880 RAID controller: $15 -Adaptec AAC-364 Array controller:$25 -IBM MegaRAID controller Series 428: $15/ea (have 2) -Adaptec AHA-2944UW SCSI controller (New in Box): $30 Seller Email address: sfertch at gmail dot com http://www.mn-linux.org/cgi-bin/classifieds/index.cgi From kc0iog at gmail.com Sun Jan 29 22:23:07 2006 From: kc0iog at gmail.com (Brian Wall) Date: Sun, 29 Jan 2006 22:23:07 -0600 Subject: [tclug-list] Question for the more experienced networking/sysadmin folks In-Reply-To: References: Message-ID: <2c6699da0601292023n48122fb7g2b5c6b1c9633d705@mail.gmail.com> On 1/27/06, Torleiv Ringer wrote: > Hello, > > We have a situation at work where someone misconfigured a switch and it > caused some major failures that were hard to trace. Shoot them. > The point of contention is that someone thought they were doing the > right thing and jumped in where they were not asked to by installing a > new 3560. Shoot them. > *) This person set the switch up "hot" (on the network) > *) They used two uplink ports, intending on ganging them togther > *) They did not properly set the ports into a channel-group Also shoot whoever let this idiot anywhere near the switches. > So here is my question: > > I am being pushed by the higher-ups to come up with a software solution > for this problem, which I feel is a process problem. Correct. When you're getting to the point of routing proprietary protocols, anyone setting up switches should realize that there's some config that needs to be done. I'm not sure that software ANYTHING would help you here. > Should I bow to the pressure and force our vendor to "fix" their > software to be able to function in an abnormal network setup? At least investigate it, but vendors (and their supplied protocols) can be a bear to work with. I doubt you'll get anywhere with the vendor. Based on your use of the word "custom", I'm guessing that there's only one vendor who provides this particular software that serves a specific function so dropping them isn't an option. Isn't vendor locking wonderful? :-P > Or > Should I instill a process such that this would never happen again and > put the lock-down on people who configure devices in/on this network? That's part of it. > This involves disallowing the people who are supposed to be the > networking specialists from configuring the "custom" network. Or train, train, and train some more. Does the idiot in question understand that there is a proper way to configure your custom enviroment? What about the other admins who probably didn't know either? > Is there a Cisco configuration that can be used to disallow "unknown" > routers on the VLAN? This seems unlikely to me. Not that I know of. IF your custom protocol supports it, you might be able to prevent such a thing using 802.1p priority queueing. If a new switch comes online, it won't be part of the 802.1p scheme which MIGHT keep nasty packets from propogating (or, at the very least, shoving them to the lowest priority). Of course an ACL permitting only specific MACs could be used, but that might be more work than its worth when you're talking 200+ devices. > It's one or the other at this point, as we have lost a lot of > credibility in this situation, and we must move forward with > implementation. This is the second time now that a misconfigured switch > has been setup hot on the "custom" network. Playing devil's advocate: first time, shame on them, second time, shame on you. What happened to the idiot in the first instance? From jherrick at gmail.com Sun Jan 29 23:06:42 2006 From: jherrick at gmail.com (Jim Herrick) Date: Sun, 29 Jan 2006 23:06:42 -0600 Subject: [tclug-list] Blackholing SSH scan-bots In-Reply-To: <1138472248.8995.118.camel@192.168.1.42> References: <1138472248.8995.118.camel@192.168.1.42> Message-ID: <82ad773b0601292106v48f0a5eft4ef97e53d803f941@mail.gmail.com> I was dealing with the same issue and ran across this small, easy to install Python script: Script Kiddy Defence Script http://mr.uue.org/projects/skds/ I run shorewall / iptables on FC4 and have been very happy with this script for over a month now. Jim On 1/28/06, Mike Hicks wrote: > Hi, > > I finally got around to making an automatic blackhole setup to stop the > bots that try to SSH into my box all the time. I'm sure people have > done this before, but I couldn't find many decent references googling > around. So, I figured I'd explain what I did so others can waste less > time. > > First off, I switched from running the standard syslogd/klogd setup to > using syslog-ng. The advantage of syslog-ng is that you can have it > pipe some or all of the logs that are received into another program, > which can handle events as they happen. > > I pondered making a utility of my own to filter the logs for SSH login > failures, but I finally came across a reasonable utility online. SEC, > the Simple Event Correlator [http://kodu.neti.ee/~risto/sec/], uses Perl > and allows for Perl's regular expression syntax, which I'm most > comfortable with (and when I forget things, I can just do "man perlre" > to remember). > > Finally, I decided to make myself a simple blackhole script to give > myself a little more flexibility (for example, I'll expand it in the > future to have a "whitelist" of IP addresses, so if I'm feeling > forgetful one day, I hopefully won't block myself). > > I added these entries to my /etc/syslog-ng/syslog-ng.conf file, which > filters my logs and only sends messages from sshd to SEC (my firewall is > just a Pentium 133, so I didn't want to send everything there): > > # set up the destination of sec, which uses STDIN ('-') as input > destination d_sec { program("sec -input=- -conf=/etc/sec.conf"); }; > > # set up a filter to only pick up logs from the SSH daemon > filter f_sshd { program(sshd.*); }; > > # connect log source, filter, and destination > log { > source(s_all); > filter(f_sshd); > destination(d_sec); > }; > > I also created a rule for SEC that will run my blackhole script if three > failed logins appeared within a 30-second window. After an hour (3600 > seconds), I run my script again to unblock the IP address (otherwise my > blackhole chain would probably become very long after a while). > > type=SingleWith2Thresholds > ptype=RegExp > pattern=Failed password for (?:root|illegal user \S+) from ::ffff:([0-9.]+) > desc=Repeated login failures from $1 > window=30 > thresh=3 > action=shellcmd /usr/local/bin/blackhole.pl add $1 > desc2=Blackholed $1 for one hour, removing > window2=3600 > thresh2=0 > action2=shellcmd /usr/local/bin/blackhole.pl remove $1 > > I created a blackhole script that would add the IP to some rule chains > that are already set up on my firewall. I use the shorewall script to > define rules, which has a pre-defined "dynamic" chain for blackholing > sites, plus a "reject" target chain that will sanely react to a variety > of different incoming traffic. (I suppose calling it a "blackhole" > isn't really accurate in this case, since my firewall will generally > send TCP reset, port unreachable, or other responses when traffic is > being rejected). > > #!/usr/bin/perl > my ($action, $ip) = @ARGV; > if ($action eq 'add') { > system ("iptables -A dynamic -s $ip -j reject"); > system ("logger -t blackhole.pl[$$] added $ip to blackhole list"); > } > elsif ($action eq 'remove') { > system ("iptables -D dynamic -s $ip -j reject"); > system ("logger -t blackhole.pl[$$] removed $ip from blackhole list"); > } > > I finished it up late last night, and wasn't quite sure if it was > working. I'd attempted to fail SSH logins a few times from a remote > shell account I have, but it didn't seem to work (maybe I just didn't > type fast enough ;-) However, when I woke up today, I was happy to see > that this setup had added and then removed blackhole rules for two > sites. > > -- > Mike Hicks > > > -----BEGIN PGP SIGNATURE----- > Version: GnuPG v1.4.2 (GNU/Linux) > > iD8DBQBD27U405OjzVUnj0URAn/WAJ0e0XdON8dxc733r6RCY5Cisiu4mgCfV5GM > 5eYD5k1Xmh+Hz20J8Iv1Yd4= > =LGvV > -----END PGP SIGNATURE----- > > > _______________________________________________ > TCLUG Mailing List - Minneapolis/St. Paul, Minnesota > tclug-list at mn-linux.org > http://mailman.mn-linux.org/mailman/listinfo/tclug-list > > > From jima at beer.tclug.org Mon Jan 30 09:20:37 2006 From: jima at beer.tclug.org (Jima) Date: Mon, 30 Jan 2006 09:20:37 -0600 (CST) Subject: [tclug-list] Blackholing SSH scan-bots In-Reply-To: <1138472248.8995.118.camel@192.168.1.42> References: <1138472248.8995.118.camel@192.168.1.42> Message-ID: No offense to everyone, but I'm kind of surprised no one mentioned pam_abl, which brings Automatic Black-Listing to PAM (which OpenSSH supports): http://www.hexten.net/pam_abl/ That is, assuming you care to use PAM. Jima From sulrich at botwerks.org Mon Jan 30 09:23:21 2006 From: sulrich at botwerks.org (steve ulrich) Date: Mon, 30 Jan 2006 09:23:21 -0600 Subject: [tclug-list] Question for the more experienced networking/sysadmin folks In-Reply-To: References: Message-ID: while i won't try to pass my advice off here as sage, i have a considerable amount of experience working in very large networks w/ carriers (disclaimer: i work for a very large network equipment vendor, likely the one you're discussing based on the model numbers.). i would agree that your assessment here is dead on, it's a process thing. bear in mind, vendors come up with default configurations that attempt to address the widest swath of deployment scenarios in their default configuration. while i wouldn't advocate some of the less reasoned responses for dealing w/people who attempt to be "helpful" putting some process in place and configuring the upstream equipment in such a manner that protects from this situation taking place will make your life a lot easier going forward. On Jan 27, 2006, at 11:26 PM, Torleiv Ringer wrote: > Hello, > > Here is something that I must ask for guidance from the more > experienced > administrators. I must say up front that I am not a networking > specialist. My forte is in our "custom" system. > > We have a situation at work where someone misconfigured a switch > and it > caused some major failures that were hard to trace. We have a unique > environment where we route custom packets through a brand-new Cisco > 4500. We > have new Cisco 3560 switches that distribute links to each of two > rooms that > have "custom" digital equipment. This is a new setup for us, and is > mission-critical. We have moved from an analog network to this new > digital UDP based system. In total we have about 14 3560s, and > plugged into > these are about 200 other "custom" switches that are vendor-specific. > > The point of contention is that someone thought they were doing the > right thing and jumped in where they were not asked to by installing a > new 3560. > > *) This person set the switch up "hot" (on the network) > *) They used two uplink ports, intending on ganging them togther > *) They did not properly set the ports into a channel-group > > This made the 3560 seem like a router and flooded all of our custom > switches with so much traffic that the devices could not effectively > talk to each other. This would be sorta OK in a TCP environment, > but we > have a UDP based system that relies heavily on very low latency. > > So here is my question: > > I am being pushed by the higher-ups to come up with a software > solution > for this problem, which I feel is a process problem. The process > should > be to NOT SET THE SWITCH UP ON THE F**KING NETWORK! And to have > another > person verify the setup prior to bringing up a new piece of > equipment on > the network that is mission-critical. Beyond that the person just went > and did it without coordinating with anyone. > i would go a step further an put any existing infrastructure gear into a port shut mode. i know you can lock these network elements down to prevent someone from merely attaching gear to the network and interoperating with it. further, you can turn TACACS on and use privilege levels to allow folks to view things w/o necessarily giving them the keys to the kingdom on the network. additionally, when people know that command logging and accounting is turned on, they're much less likely to do, well, dumb stuff. depending on your configuration and situation, i would recommend going through your configurations and using the 'shutdown' command on unused ports. requiring coordinated action in order to make things come online in the network. a little more work, but it usually results in very stable configurations and people not glibly plugging things into the network. in short, there are some very reasonable hardening guidelines that you can follow to put a little structure around things and prevent meltdowns caused by cockpit error. > Should I bow to the pressure and force our vendor to "fix" their > software to be able to function in an abnormal network setup? This > would > allow certain folks to save face while straining our relationship with > out vendor. without more details on what your operating environment is here and what the objectives are, i would say that this is difficult and not likely to be a successful undertaking. vendors don't tritely change default configurations and in the scenario you've outlined, it doesn't sound like you're doing anything that's > Or > > Should I instill a process such that this would never happen again and > put the lock-down on people who configure devices in/on this network? > This involves disallowing the people who are supposed to be the > networking specialists from configuring the "custom" network. > > Or > > Is there a Cisco configuration that can be used to disallow "unknown" > routers on the VLAN? This seems unlikely to me. there are some features that you can use to require that network elements authenticate themselves onto the network and some common best practices which accomplish something very similar. these don't usually work at the VLAN level, .1x works at the port level, but you can do some simple things to prevent total topology meltdown in a purely switched network. > It's one or the other at this point, as we have lost a lot of > credibility in this situation, and we must move forward with > implementation. This is the second time now that a misconfigured > switch > has been setup hot on the "custom" network. > > Has anyone had a similar situation? > > Thanks in advance for your sage advice. > > > p.s. No, at this point I cannot divulge what the "custom" is. { snipped - misc. signatures } -- steve ulrich sulrich at botwerks.org PGP: 8D0B 0EE9 E700 A6CF ABA7 AE5F 4FD4 07C9 133B FAFC From jimdscott at gmail.com Mon Jan 30 10:29:50 2006 From: jimdscott at gmail.com (jim scott) Date: Mon, 30 Jan 2006 10:29:50 -0600 Subject: [tclug-list] Simplest home network possible Message-ID: Hello, all. I'm going to connect up 2 Linux boxes on a home network. I'll connect the boxes and my DSL router/modem to a switch. Right now, I've got all incoming services disabled on both computers -- no telnet, no ftp, no rsh. I would like to be able to copy data from one PC to the other. What's the most secure service I can use for occasional data transfer between the two PCs? Thanks for any advice. -------------- next part -------------- An HTML attachment was scrubbed... URL: http://shadowknight.real-time.com/pipermail/tclug-list/attachments/20060130/b876c78a/attachment.htm From dru at druswanderings.net Mon Jan 30 10:39:07 2006 From: dru at druswanderings.net (The Wandering Dru) Date: Mon, 30 Jan 2006 10:39:07 -0600 Subject: [tclug-list] Simplest home network possible In-Reply-To: References: Message-ID: <43DE412B.1020802@druswanderings.net> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 jim scott wrote: > Hello, all. I'm going to connect up 2 Linux boxes on a home network. > I'll connect the boxes and my DSL router/modem to a switch. Right now, > I've got all incoming services disabled on both computers -- no telnet, > no ftp, no rsh. I would like to be able to copy data from one PC to the > other. What's the most secure service I can use for occasional data > transfer between the two PCs? Thanks for any advice. Personally, I do almost everything over ssh or, more specifically, using scp. scp localfile username at remotebox:destinationfile I use shared key pairs for authentication but you can be as paranoid or as lax as you want security-wise. Both gnome and kde have ways of using scp within the gui as well but I've found the command line to be the most reliable. - -- The Wandering Dru GnuPG Key: 0x506A915F http://www.druswanderings.net Get nifty TCLUG merchandise at the TCLUG Store! http://www.cafeshops.com/tclug -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.2 (MingW32) iD8DBQFD3kEriwhv4FBqkV8RAgU5AJwP9e6fVZhbzr4Nydl+6lQmfxyPcgCeOhhk ZzgAnjSW5RfizZfJ7USOsFk= =cgLU -----END PGP SIGNATURE----- From wilson at visi.com Mon Jan 30 10:38:38 2006 From: wilson at visi.com (Tim Wilson) Date: Mon, 30 Jan 2006 10:38:38 -0600 Subject: [tclug-list] Simplest home network possible In-Reply-To: References: Message-ID: On Jan 30, 2006, at 10:29 AM, jim scott wrote: > Hello, all. I'm going to connect up 2 Linux boxes on a home > network. I'll connect the boxes and my DSL router/modem to a > switch. Right now, I've got all incoming services disabled on both > computers -- no telnet, no ftp, no rsh. I would like to be able to > copy data from one PC to the other. What's the most secure service > I can use for occasional data transfer between the two PCs? Thanks > for any advice. I would install ssh on each box and then use rsync over ssh to move files. If you configure ssh to allow RSA logins then you wouldn't even need to enter your username and password each time. It's a great way to script automatic backups. -Tim -- Tim Wilson Twin Cities, Minnesota, USA Educational technology guy, Linux and OS X fan, Grad. student, Daddy mailto: wilson at visi.com aim: tis270 blog: http://technosavvy.org From esper at sherohman.org Mon Jan 30 10:42:09 2006 From: esper at sherohman.org (Dave Sherohman) Date: Mon, 30 Jan 2006 10:42:09 -0600 Subject: [tclug-list] Simplest home network possible In-Reply-To: References: Message-ID: <20060130164209.GD745@sherohman.org> On Mon, Jan 30, 2006 at 10:29:50AM -0600, jim scott wrote: > Hello, all. I'm going to connect up 2 Linux boxes on a home network. I'll > connect the boxes and my DSL router/modem to a switch. Right now, I've got > all incoming services disabled on both computers -- no telnet, no ftp, no > rsh. I would like to be able to copy data from one PC to the other. What's > the most secure service I can use for occasional data transfer between the > two PCs? Thanks for any advice. scp (part of the ssh suite) is an excellent choice. It basically works just like the normal cp, except you can copy to or from a remote filesystem. If you prefer an ftp-style interface, ssh also has sftp, but a) I find the scp interface to be more powerful than the interactive ftp- style interface and b) depending on your distro, sftp may require a little bit of additional setup. (Oh, and you say you have no telnet, no ftp, no rsh enabled? Good. Keep it that way. Use ssh instead. There's no reason to use cleartext services when an equally-to-more convenient encrypted equivalent is available.) -- The freedoms that we enjoy presently are the most important victories of the White Hats over the past several millennia, and it is vitally important that we don't give them up now, only because we are frightened. - Eolake Stobblehouse (http://stobblehouse.com/text/battle.html) From aristophrenic at warpmail.net Mon Jan 30 10:43:50 2006 From: aristophrenic at warpmail.net (Isaac Atilano) Date: Mon, 30 Jan 2006 10:43:50 -0600 Subject: [tclug-list] Simplest home network possible In-Reply-To: References: Message-ID: <1138639430.14136.253099105@webmail.messagingengine.com> The most secure thing you can do is leave the service off and start it only when you need it. Unless you're extremely paranoid you can use any service you want to transfer the data. Just shut the service down once the transfer is complete. I use NFS shares for that type of thing. If you want to do this remotely, use ssh to log in to your server and start/stop the service. ----- Original message ----- From: "jim scott" To: "TCLug List" Date: Mon, 30 Jan 2006 10:29:50 -0600 Subject: [tclug-list] Simplest home network possible Hello, all. I'm going to connect up 2 Linux boxes on a home network. I'll connect the boxes and my DSL router/modem to a switch. Right now, I've got all incoming services disabled on both computers -- no telnet, no ftp, no rsh. I would like to be able to copy data from one PC to the other. What's the most secure service I can use for occasional data transfer between the two PCs? Thanks for any advice. From aristophrenic at warpmail.net Mon Jan 30 11:04:56 2006 From: aristophrenic at warpmail.net (Isaac Atilano) Date: Mon, 30 Jan 2006 11:04:56 -0600 Subject: [tclug-list] Simplest home network possible In-Reply-To: <1138639430.14136.253099105@webmail.messagingengine.com> References: <1138639430.14136.253099105@webmail.messagingengine.com> Message-ID: <1138640696.17179.253101839@webmail.messagingengine.com> FYI nfs is not encrypted and if you're afraid your network may be sniffed I'd use one of the encrypted data transfer methods mentioned by the other posters. ----- Original message ----- From: "Isaac Atilano" To: "jim scott" , "TCLug List" Date: Mon, 30 Jan 2006 10:43:50 -0600 Subject: Re: [tclug-list] Simplest home network possible The most secure thing you can do is leave the service off and start it only when you need it. Unless you're extremely paranoid you can use any service you want to transfer the data. Just shut the service down once the transfer is complete. I use NFS shares for that type of thing. If you want to do this remotely, use ssh to log in to your server and start/stop the service. ----- Original message ----- From: "jim scott" To: "TCLug List" Date: Mon, 30 Jan 2006 10:29:50 -0600 Subject: [tclug-list] Simplest home network possible Hello, all. I'm going to connect up 2 Linux boxes on a home network. I'll connect the boxes and my DSL router/modem to a switch. Right now, I've got all incoming services disabled on both computers -- no telnet, no ftp, no rsh. I would like to be able to copy data from one PC to the other. What's the most secure service I can use for occasional data transfer between the two PCs? Thanks for any advice. _______________________________________________ TCLUG Mailing List - Minneapolis/St. Paul, Minnesota tclug-list at mn-linux.org http://mailman.mn-linux.org/mailman/listinfo/tclug-list From bgilbertson at stonel.com Mon Jan 30 11:11:16 2006 From: bgilbertson at stonel.com (Bob Gilbertson) Date: Mon, 30 Jan 2006 11:11:16 -0600 Subject: [tclug-list] Simplest home network possible In-Reply-To: References: Message-ID: <43DE48B4.5020700@stonel.com> CLI apps rsync and scp work well. A nice GUI app I use is the kio_fish slave to konqueror. Transfer is via ssh. http://www.garni.ch/fish/ May already be installed (part of kdebase). Bob jim scott wrote: > Hello, all. I'm going to connect up 2 Linux boxes on a home network. > I'll connect the boxes and my DSL router/modem to a switch. Right now, > I've got all incoming services disabled on both computers -- no > telnet, no ftp, no rsh. I would like to be able to copy data from one > PC to the other. What's the most secure service I can use for > occasional data transfer between the two PCs? Thanks for any advice. > From nate at refried.org Mon Jan 30 11:18:30 2006 From: nate at refried.org (Nate Straz) Date: Mon, 30 Jan 2006 11:18:30 -0600 Subject: [tclug-list] Simplest home network possible In-Reply-To: References: Message-ID: <20060130171830.GA2279@refried.org> On Mon, Jan 30, 2006 at 10:29:50AM -0600, jim scott wrote: > Hello, all. I'm going to connect up 2 Linux boxes on a home network. I'll > connect the boxes and my DSL router/modem to a switch. Right now, I've got > all incoming services disabled on both computers -- no telnet, no ftp, no > rsh. I would like to be able to copy data from one PC to the other. What's > the most secure service I can use for occasional data transfer between the > two PCs? Thanks for any advice. Why are you worried about security on your home network? You do have a high security setting on your DSL router, right? Are you putting in a WiFi router? Do you have control over who connects to your switch? As long as you can trust that no is getting through your firewall (i.e. your DSL router), it shouldn't matter what you use internally. SSH will probably work best for occational stuff. Switch to NFS if you start to share stuff more. Nate From tclug at steamedpenguin.com Mon Jan 30 11:58:19 2006 From: tclug at steamedpenguin.com (Samir M. Nassar) Date: Mon, 30 Jan 2006 11:58:19 -0600 Subject: [tclug-list] Simplest home network possible In-Reply-To: <43DE48B4.5020700@stonel.com> References: <43DE48B4.5020700@stonel.com> Message-ID: <200601301158.19881.tclug@steamedpenguin.com> On Monday 30 January 2006 11:11, Bob Gilbertson wrote: > CLI apps rsync and scp work well. > A nice GUI app I use is the kio_fish slave to konqueror. Transfer is > via ssh. > http://www.garni.ch/fish/ > May already be installed (part of kdebase). It always amazes me that people will use kio_fish, which is relatively slow, when they can use the kio_sftp in konqueror. -- Samir M. Nassar SteamedPenguin - http://steamedpenguin.com/ From chewie at wookimus.net Mon Jan 30 11:55:35 2006 From: chewie at wookimus.net (Chad Walstrom) Date: Mon, 30 Jan 2006 11:55:35 -0600 Subject: [tclug-list] Blackholing SSH scan-bots In-Reply-To: References: <1138472248.8995.118.camel@192.168.1.42> Message-ID: <20060130175535.DC8D03353@skuld.wookimus.net> Jima wrote: > No offense to everyone, but I'm kind of surprised no one mentioned > pam_abl, which brings Automatic Black-Listing to PAM (which OpenSSH > supports): > > http://www.hexten.net/pam_abl/ > > That is, assuming you care to use PAM. Ooooo... Nice. Too bad Mac's don't use PAM extensively. -- Chad Walstrom http://www.wookimus.net/ assert(expired(knowledge)); /* core dump */ From troy.johnson at health.state.mn.us Mon Jan 30 12:48:04 2006 From: troy.johnson at health.state.mn.us (Troy.A Johnson) Date: Mon, 30 Jan 2006 12:48:04 -0600 Subject: [tclug-list] Simplest home network possible Message-ID: >>> Tim Wilson 01/30/06 10:38 AM >>> On Jan 30, 2006, at 10:29 AM, jim scott wrote: > Hello, all. I'm going to connect up 2 Linux boxes on a home > network. I'll connect the boxes and my DSL router/modem to a > switch. Right now, I've got all incoming services disabled on both > computers -- no telnet, no ftp, no rsh. I would like to be able to > copy data from one PC to the other. What's the most secure service > I can use for occasional data transfer between the two PCs? Thanks > for any advice. I would install ssh on each box and then use rsync over ssh to move files. If you configure ssh to allow RSA logins then you wouldn't even need to enter your username and password each time. It's a great way to script automatic backups. I agree with Tim, and I wrote this to keep me from forgetting the details: http://www.jdmz.net/ssh/ Good luck, Troy From tclug at freakzilla.com Mon Jan 30 14:09:19 2006 From: tclug at freakzilla.com (tclug@freakzilla.com) Date: Mon, 30 Jan 2006 14:09:19 -0600 (CST) Subject: [tclug-list] AMD64 compiling probs Message-ID: Hey guys, I'm trying to build some stuff on a debian/amd64 machine. I keep getting this: /usr/bin/ld: relocation R_X86_64_32 against `a local symbol' can not be used when making a shared object; recompile with -fPIC This happens even when -fPIC /is/ in fact used... anyone have any ideas? -Yaron -- From ltordsen at gmail.com Mon Jan 30 14:39:08 2006 From: ltordsen at gmail.com (Larry Tordsen) Date: Mon, 30 Jan 2006 14:39:08 -0600 Subject: [tclug-list] AMD64 compiling probs In-Reply-To: References: Message-ID: <6888eb940601301239r5af754fdjc7b90c56f1bafe5e@mail.gmail.com> maybe the -shared flag, too. not sure On 1/30/06, tclug at freakzilla.com wrote: > > Hey guys, > > I'm trying to build some stuff on a debian/amd64 machine. I keep getting > this: > > /usr/bin/ld: relocation R_X86_64_32 against `a local > symbol' can not be used when making a shared object; recompile with -fPIC > > > This happens even when -fPIC /is/ in fact used... anyone have any ideas? > > > -Yaron > > -- > > _______________________________________________ > TCLUG Mailing List - Minneapolis/St. Paul, Minnesota > tclug-list at mn-linux.org > http://mailman.mn-linux.org/mailman/listinfo/tclug-list > -------------- next part -------------- An HTML attachment was scrubbed... URL: http://shadowknight.real-time.com/pipermail/tclug-list/attachments/20060130/b91f6902/attachment.htm From tclug at freakzilla.com Mon Jan 30 14:49:05 2006 From: tclug at freakzilla.com (tclug@freakzilla.com) Date: Mon, 30 Jan 2006 14:49:05 -0600 (CST) Subject: [tclug-list] AMD64 compiling probs In-Reply-To: <6888eb940601301239r5af754fdjc7b90c56f1bafe5e@mail.gmail.com> References: <6888eb940601301239r5af754fdjc7b90c56f1bafe5e@mail.gmail.com> Message-ID: On Mon, 30 Jan 2006, Larry Tordsen wrote: > maybe the -shared flag, too. not sure Yeah, that's in there too. I think it's more a matter of me missing some kinda 32-bit compatibility thing... -Yaron -- From mbmiller at taxa.epi.umn.edu Mon Jan 30 15:42:26 2006 From: mbmiller at taxa.epi.umn.edu (Mike Miller) Date: Mon, 30 Jan 2006 15:42:26 -0600 (CST) Subject: [tclug-list] [tclug-announce] Upcoming TCLUG Meeting (fwd) Message-ID: I accidentally sent this to the announce list. Clay said he'll be working on the installfest idea later, but they are hard to arrange, which makes a lot of sense to me. --Mike ---------- Forwarded message ---------- Date: Mon, 30 Jan 2006 15:27:11 -0600 (CST) From: Mike Miller To: Clay Fandre Cc: tclug-announce at mn-linux.org Subject: Re: [tclug-announce] Upcoming TCLUG Meeting On Mon, 30 Jan 2006, Clay Fandre wrote: > Greetings fellow TCLUG'ers. It has been far too long since our last > meeting so let's try to get things rolling again. First of all, we will > not be having a meeting this Saturday (Feb 4th). I do have the room > scheduled for Feb 11th from noon-2pm, but as of right now that is > tentative. Is there any chance we might have another instalfest one of these months? I can't contribute much expertise, but I could show up with my son and hang out. Mike From tanner at mn-linux.org Tue Jan 31 08:39:33 2006 From: tanner at mn-linux.org (Bob Tanner) Date: Tue, 31 Jan 2006 08:39:33 -0600 Subject: [tclug-list] Recent spam In-Reply-To: <20060117154611.GC30612@refried.org> References: <20060117154611.GC30612@refried.org> Message-ID: <200601310839.34303.tanner@mn-linux.org> On Tuesday 17 January 2006 09:46, Nate Straz wrote: > Is anyone else getting a bunch of spam coming from btopenworld.com that > has a "From" of tclug-list? I've had at least a dozen over night and > this morning. I've forwarded the messages to abuse at btopenworld.com, not > sure if that is a good email address yet or not. Can you send complete smtp headers to support at real-time.com? -- Bob Tanner | Phone : (952)943-8700 http://www.mn-linux.org, Minnesota, Linux | Fax : (952)943-8500 http://www.linuxjustworks.com | Linux Just Works! Key fingerprint = AB15 0BDF BCDE 4369 5B42 1973 7CF1 A709 2CC1 B288 From tanner at mn-linux.org Tue Jan 31 08:42:27 2006 From: tanner at mn-linux.org (Bob Tanner) Date: Tue, 31 Jan 2006 08:42:27 -0600 Subject: [tclug-list] Spamassassin In-Reply-To: <27954.192.28.2.52.1137522775.squirrel@alpha.twp-llc.com> References: <28670.192.28.2.52.1137515690.squirrel@alpha.twp-llc.com> <43CD250A.5000508@cruiskeen.com> <27954.192.28.2.52.1137522775.squirrel@alpha.twp-llc.com> Message-ID: <200601310842.27521.tanner@mn-linux.org> On Tuesday 17 January 2006 12:32, Chris Schumann wrote: > Turns out that's close. Users of my server do not have login accounts: > They have only inboxes. Spamassassin appears to be running for root, but > not other users. Hmmmmm. What MTA are you using? How is SA being connected to the MTA? -- Bob Tanner | Phone : (952)943-8700 http://www.mn-linux.org, Minnesota, Linux | Fax : (952)943-8500 http://www.linuxjustworks.com | Linux Just Works! Key fingerprint = AB15 0BDF BCDE 4369 5B42 1973 7CF1 A709 2CC1 B288 From tanner at mn-linux.org Tue Jan 31 08:51:08 2006 From: tanner at mn-linux.org (Bob Tanner) Date: Tue, 31 Jan 2006 08:51:08 -0600 Subject: [tclug-list] mn-linux.org -> CMS, Drupal, Zope? Message-ID: <200601310851.08870.tanner@mn-linux.org> Maybe third time will be the charm? Current web site is static and entry into making changes "high". So, I put up Zope in the hope of getting more community involment. It totally flopped. Got a couple volunteers to help with Zope and get a framework in place, but it again totally flopped. So, I'm back :-) Pitching a CMS for tclug, this time Drupal. Comments? Any other CMS we should be looking at? -- Bob Tanner | Phone : (952)943-8700 http://www.mn-linux.org, Minnesota, Linux | Fax : (952)943-8500 http://www.linuxjustworks.com | Linux Just Works! Key fingerprint = AB15 0BDF BCDE 4369 5B42 1973 7CF1 A709 2CC1 B288 From teeahr1 at gmail.com Tue Jan 31 09:45:56 2006 From: teeahr1 at gmail.com (Pete Daniels) Date: Tue, 31 Jan 2006 09:45:56 -0600 Subject: [tclug-list] Problems compiling gDesklets 0.35.3 Message-ID: <1f729feb0601310745m48a03b41g8ebf90ea43b23153@mail.gmail.com> Swear to Dog, all the dependencies listed in the readme are met, but I bog out during configure. Here's the message: --- checking for GDESKLETS... configure: error: Package requirements (pygtk-2.0>= 2.4.0 pyorbit-2 >= 2.0.1 gnome-python-2.0 >= 2.6.0) were not met. Consider adjusting the PKG_CONFIG_PATH environment variable if you installed software in a non-standard prefix. Alternatively you may set the GDESKLETS_CFLAGS and GDESKLETS_LIBS environment variables to avoid the need to call pkg-config. See the pkg-config man page for more details. --- Anyway, n00b warning here. If you have advice, please have mercy and put it in little words. best! -pete -------------- next part -------------- An HTML attachment was scrubbed... URL: http://shadowknight.real-time.com/pipermail/tclug-list/attachments/20060131/18102dcc/attachment-0001.htm From chewie at wookimus.net Tue Jan 31 10:00:33 2006 From: chewie at wookimus.net (Chad Walstrom) Date: Tue, 31 Jan 2006 10:00:33 -0600 Subject: [tclug-list] mn-linux.org -> CMS, Drupal, Zope? In-Reply-To: <200601310851.08870.tanner@mn-linux.org> References: <200601310851.08870.tanner@mn-linux.org> Message-ID: <20060131160033.5A72A2AEB@skuld.wookimus.net> Bob Tanner wrote: > So, I'm back :-) Pitching a CMS for tclug, this time Drupal. > Comments? Seems to be a mature PHP site. > Any other CMS we should be looking at? Do we really need a CMS? I'm starting to think something like MoinMoin or Twiki would be sufficient. It doesn't appears that anyone really wants to administrate the site, and a Wiki would be a (very) low barrier of entry. We run MoinMoin at CBS, and we're pretty happy with it. Lots of plugins/modules and pretty mature. UMN's Office for InfoTech just installed a U-wide Twiki instance which they liked for it's plethora of modules/plugins and its maturity. The driving goal here, I think, it to have a community maintained site without unnecessarily exposing it to vandalism. Do we want to simply disseminate information, or are you interested in providing other tools: slashdot articles, forums, etc. I suppose we already have few custom apps on the tclug site: a classifieds program, the member database, and polling. Are we looking to replace any of these? Tie them in? Are they PHP? Perl? Python? In any case, whatever makes Bob's life easier sounds good to me. -- Chad Walstrom http://www.wookimus.net/ assert(expired(knowledge)); /* core dump */ From tanner at mn-linux.org Tue Jan 31 10:10:14 2006 From: tanner at mn-linux.org (Bob Tanner) Date: Tue, 31 Jan 2006 10:10:14 -0600 Subject: [tclug-list] mn-linux.org -> CMS, Drupal, Zope? In-Reply-To: <20060131160033.5A72A2AEB@skuld.wookimus.net> References: <200601310851.08870.tanner@mn-linux.org> <20060131160033.5A72A2AEB@skuld.wookimus.net> Message-ID: <200601311010.14962.tanner@mn-linux.org> On Tuesday 31 January 2006 10:00, Chad Walstrom wrote: > We run MoinMoin at CBS, and we're pretty happy with it. Lots of > plugins/modules and pretty mature. ?UMN's Office for InfoTech just > installed a U-wide Twiki instance which they liked for it's plethora > of modules/plugins and its maturity. I thought a wiki would be to much of a simplified interface. -- Bob Tanner | Phone : (952)943-8700 http://www.mn-linux.org, Minnesota, Linux | Fax : (952)943-8500 http://www.linuxjustworks.com | Linux Just Works! Key fingerprint = AB15 0BDF BCDE 4369 5B42 1973 7CF1 A709 2CC1 B288 From eric at vangyzen.net Tue Jan 31 10:23:35 2006 From: eric at vangyzen.net (Eric van Gyzen) Date: Tue, 31 Jan 2006 10:23:35 -0600 Subject: [tclug-list] Problems compiling gDesklets 0.35.3 In-Reply-To: <1f729feb0601310745m48a03b41g8ebf90ea43b23153@mail.gmail.com> References: <1f729feb0601310745m48a03b41g8ebf90ea43b23153@mail.gmail.com> Message-ID: <43DF8F07.8040402@vangyzen.net> Pete Daniels wrote: > Swear to Dog, all the dependencies listed in the readme are met, but I bog > out during configure. Here's the message: > > --- > checking for GDESKLETS... configure: error: Package requirements (pygtk-2.0>= > 2.4.0 pyorbit-2 >= 2.0.1 gnome-python-2.0 >= 2.6.0) were not met. Consider > adjusting the PKG_CONFIG_PATH environment variable if you installed software > in a non-standard prefix. > > Alternatively you may set the GDESKLETS_CFLAGS and GDESKLETS_LIBS > environment variables to avoid the need to call pkg-config. See the > pkg-config man page for more details. > --- Check the config.log file; it's in the same directory as the configure script. It will be huge. Start at the bottom, and read backwards. It should contain more descriptive error messages from configure's sub-programs. Also, we might be more able to help if you tell us more about your environment, especially your distribution. Cheers, Eric From cschumann at twp-llc.com Tue Jan 31 10:28:33 2006 From: cschumann at twp-llc.com (Chris Schumann) Date: Tue, 31 Jan 2006 10:28:33 -0600 (CST) Subject: [tclug-list] Spamassassin In-Reply-To: References: Message-ID: <34366.192.28.2.52.1138724913.squirrel@alpha.twp-llc.com> > Date: Tue, 31 Jan 2006 08:42:27 -0600 > From: Bob Tanner > On Tuesday 17 January 2006 12:32, Chris Schumann wrote: >> Turns out that's close. Users of my server do not have login accounts: >> They have only inboxes. Spamassassin appears to be running for root, >> but not other users. Hmmmmm. > What MTA are you using? > How is SA being connected to the MTA? Sendmail is the MTA. Outgoing (of course) and incoming to Cyrus. Connecting. Hmm. I'm not as strong in this area as I'd like to be, so it looks like sendmail.mc uses procmail. Further, mail from outside is not allowed to go to root (as it has no cyrus inbox), so maybe nothing at all is connecting SA to sendmail. I don't remember seeing instructions on how to link them. Chris Schumann From teeahr1 at gmail.com Tue Jan 31 10:29:42 2006 From: teeahr1 at gmail.com (Pete Daniels) Date: Tue, 31 Jan 2006 10:29:42 -0600 Subject: [tclug-list] Problems compiling gDesklets 0.35.3 In-Reply-To: <43DF8F07.8040402@vangyzen.net> References: <1f729feb0601310745m48a03b41g8ebf90ea43b23153@mail.gmail.com> <43DF8F07.8040402@vangyzen.net> Message-ID: <1f729feb0601310829s6c0d8377oe34864d40cd54179@mail.gmail.com> Good advice, thank you. I'm running Ubuntu 5.10 with Gnome. I can probably answer more questions if you need more information, but understand that I'm at work, so the specs aren't in front of me. best! -pete On 1/31/06, Eric van Gyzen wrote: > > Pete Daniels wrote: > > Swear to Dog, all the dependencies listed in the readme are met, but I > bog > > out during configure. Here's the message: > > > > --- > > checking for GDESKLETS... configure: error: Package requirements ( > pygtk-2.0>= > > 2.4.0 pyorbit-2 >= 2.0.1 gnome-python-2.0 >= 2.6.0) were not > met. Consider > > adjusting the PKG_CONFIG_PATH environment variable if you installed > software > > in a non-standard prefix. > > > > Alternatively you may set the GDESKLETS_CFLAGS and GDESKLETS_LIBS > > environment variables to avoid the need to call pkg-config. See the > > pkg-config man page for more details. > > --- > > Check the config.log file; it's in the same directory as the configure > script. It will be huge. Start at the bottom, and read backwards. It > should contain more descriptive error messages from configure's > sub-programs. > > Also, we might be more able to help if you tell us more about your > environment, especially your distribution. > > Cheers, > > Eric > -------------- next part -------------- An HTML attachment was scrubbed... URL: http://shadowknight.real-time.com/pipermail/tclug-list/attachments/20060131/81480d08/attachment.htm From dru at druswanderings.net Tue Jan 31 10:42:09 2006 From: dru at druswanderings.net (The Wandering Dru) Date: Tue, 31 Jan 2006 10:42:09 -0600 Subject: [tclug-list] Problems compiling gDesklets 0.35.3 In-Reply-To: <1f729feb0601310829s6c0d8377oe34864d40cd54179@mail.gmail.com> References: <1f729feb0601310745m48a03b41g8ebf90ea43b23153@mail.gmail.com> <43DF8F07.8040402@vangyzen.net> <1f729feb0601310829s6c0d8377oe34864d40cd54179@mail.gmail.com> Message-ID: <43DF9361.9020804@druswanderings.net> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Pete Daniels wrote: > Good advice, thank you. > > I'm running Ubuntu 5.10 with Gnome. I can probably answer more > questions if you need more information, but understand that I'm at work, > so the specs aren't in front of me. You did install the "-dev" packages of the dependencies, right? (starting with the simplest possibility) - -- The Wandering Dru GnuPG Key: 0x506A915F http://www.druswanderings.net Get nifty TCLUG merchandise at the TCLUG Store! http://www.cafeshops.com/tclug -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.2 (MingW32) iD8DBQFD35Nhiwhv4FBqkV8RAoaFAKC6d5CC0KBRsIPjVdrLRiCoAz3Q4ACfRKid rdXy4kadEZNsLWQiI/xSrhs= =LDy0 -----END PGP SIGNATURE----- From teeahr1 at gmail.com Tue Jan 31 10:45:49 2006 From: teeahr1 at gmail.com (Pete Daniels) Date: Tue, 31 Jan 2006 10:45:49 -0600 Subject: [tclug-list] Problems compiling gDesklets 0.35.3 In-Reply-To: <43DF9361.9020804@druswanderings.net> References: <1f729feb0601310745m48a03b41g8ebf90ea43b23153@mail.gmail.com> <43DF8F07.8040402@vangyzen.net> <1f729feb0601310829s6c0d8377oe34864d40cd54179@mail.gmail.com> <43DF9361.9020804@druswanderings.net> Message-ID: <1f729feb0601310845t27f19079n3279c33b2d10dbcf@mail.gmail.com> Yes I did. (although it took a second pass through the dependency list to figure it out...) On 1/31/06, The Wandering Dru wrote: > > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA1 > > Pete Daniels wrote: > > Good advice, thank you. > > > > I'm running Ubuntu 5.10 with Gnome. I can probably answer more > > questions if you need more information, but understand that I'm at work, > > so the specs aren't in front of me. > > You did install the "-dev" packages of the dependencies, right? > (starting with the simplest possibility) > > - -- > The Wandering Dru GnuPG Key: 0x506A915F > http://www.druswanderings.net > > Get nifty TCLUG merchandise at the TCLUG Store! > http://www.cafeshops.com/tclug > -----BEGIN PGP SIGNATURE----- > Version: GnuPG v1.4.2 (MingW32) > > iD8DBQFD35Nhiwhv4FBqkV8RAoaFAKC6d5CC0KBRsIPjVdrLRiCoAz3Q4ACfRKid > rdXy4kadEZNsLWQiI/xSrhs= > =LDy0 > -----END PGP SIGNATURE----- > -------------- next part -------------- An HTML attachment was scrubbed... URL: http://shadowknight.real-time.com/pipermail/tclug-list/attachments/20060131/8aba396a/attachment-0001.htm From tclug at steamedpenguin.com Tue Jan 31 11:48:50 2006 From: tclug at steamedpenguin.com (Samir M. Nassar) Date: Tue, 31 Jan 2006 11:48:50 -0600 Subject: [tclug-list] mn-linux.org -> CMS, Drupal, Zope? In-Reply-To: <200601310851.08870.tanner@mn-linux.org> References: <200601310851.08870.tanner@mn-linux.org> Message-ID: <200601311148.50201.tclug@steamedpenguin.com> On Tuesday 31 January 2006 08:51, Bob Tanner wrote: > So, I'm back :-) Pitching a CMS for tclug, this time Drupal. Comments? > > Any other CMS we should be looking at? I'd pitch WordPress as a CMS. It is easy to integrate stuff into. Really easy to add external or partially managed content external to the CMS. User management is easy as well. However, I would caution against using WordPress 2.x.x and instead opt for WordPress 1.5.2 since it currently has no vulnerabilities open against it and is apt to be stable for a long time. -- Samir M. Nassar http://steamedpenguin.com/ From admin at lctn.org Tue Jan 31 11:48:54 2006 From: admin at lctn.org (Raymond Norton) Date: Tue, 31 Jan 2006 11:48:54 -0600 (CST) Subject: [tclug-list] where is that boot disk? Message-ID: <40832.64.8.149.194.1138729734.squirrel@lctn.org> I used to have a Linux based boot floppy that gave you a menu option which allowed you to boot any PC via the CD drive. I cannot seem to find it in the hundreds of boot disk out there. Anyone have the link to it? Raymond From scotjenkins at gmail.com Tue Jan 31 11:58:46 2006 From: scotjenkins at gmail.com (Scot Jenkins) Date: Tue, 31 Jan 2006 11:58:46 -0600 Subject: [tclug-list] mn-linux.org -> CMS, Drupal, Zope? In-Reply-To: <200601310851.08870.tanner@mn-linux.org> References: <200601310851.08870.tanner@mn-linux.org> Message-ID: On 1/31/06, Bob Tanner wrote: > Maybe third time will be the charm? > > Current web site is static and entry into making changes "high". So, I put up > Zope in the hope of getting more community involment. It totally flopped. > > Got a couple volunteers to help with Zope and get a framework in place, but it > again totally flopped. > > So, I'm back :-) Pitching a CMS for tclug, this time Drupal. Comments? Drupal is great for community-based websites. The local PHP user group's site uses it. http://tcphp.org/ Keep in mind it's not the technology but the _people_ who make the website what it is. No matter what tool you use, if no one bothers to participate the website will always flop. This is a problem amongst any user group. Everyone want's a cool website using the latest tools but no one is willing to put in the time to keep it up to date. scot From ewilts at ewilts.org Tue Jan 31 12:08:47 2006 From: ewilts at ewilts.org (Ed Wilts) Date: Tue, 31 Jan 2006 12:08:47 -0600 Subject: [tclug-list] mn-linux.org -> CMS, Drupal, Zope? In-Reply-To: References: <200601310851.08870.tanner@mn-linux.org> Message-ID: <20060131180847.GB32444@www.ewilts.org> On Tue, Jan 31, 2006 at 11:58:46AM -0600, Scot Jenkins wrote: > On 1/31/06, Bob Tanner wrote: > > Maybe third time will be the charm? > > > > Current web site is static and entry into making changes "high". So, I put up > > Zope in the hope of getting more community involment. It totally flopped. > > > > Got a couple volunteers to help with Zope and get a framework in place, but it > > again totally flopped. > > > > So, I'm back :-) Pitching a CMS for tclug, this time Drupal. Comments? > > Drupal is great for community-based websites. The local PHP user > group's site uses it. > http://tcphp.org/ I developed the web site for a Minnesota-based charity, Bundles Of Love, using Drupal. It took me a little while to get the hang of it, but now it's trivial to keep up to date. I am the only one actually entering content though. http://www.bundlesoflove.org > Keep in mind it's not the technology but the _people_ who make the > website what it is. No matter what tool you use, if no one bothers to > participate the website will always flop. This is a problem amongst > any user group. Everyone want's a cool website using the latest tools > but no one is willing to put in the time to keep it up to date. You've hit this bang on - I've seen this many, many times. It started back in the paper newsletter days and continued to the web site days. .../Ed -- Ed Wilts, RHCE Mounds View, MN, USA mailto:ewilts at ewilts.org Member #1, Red Hat Community Ambassador Program From silwenae at silwenae.com Tue Jan 31 13:10:41 2006 From: silwenae at silwenae.com (Paul Cutler) Date: Tue, 31 Jan 2006 13:10:41 -0600 Subject: [tclug-list] Problems compiling gDesklets 0.35.3 In-Reply-To: <1f729feb0601310745m48a03b41g8ebf90ea43b23153@mail.gmail.com> References: <1f729feb0601310745m48a03b41g8ebf90ea43b23153@mail.gmail.com> Message-ID: <43DFB631.2060201@silwenae.com> Is there any reason you need 0.35.3? Using the Automatix script from the Ubuntuforms.org on Ubuntu 5.10, 0.35.2 works perfectly. Paul Pete Daniels wrote: > Swear to Dog, all the dependencies listed in the readme are met, but I > bog out during configure. Here's the message: > > --- > checking for GDESKLETS... configure: error: Package requirements > (pygtk-2.0 >= 2.4.0 pyorbit-2 >= 2.0.1 gnome-python-2.0 >= 2.6.0) were > not met. Consider adjusting the PKG_CONFIG_PATH environment variable > if you installed software in a non-standard prefix. > > Alternatively you may set the GDESKLETS_CFLAGS and GDESKLETS_LIBS > environment variables to avoid the need to call pkg-config. See the > pkg-config man page for more details. > --- > > Anyway, n00b warning here. If you have advice, please have mercy and > put it in little words. > > best! > -pete > >------------------------------------------------------------------------ > >_______________________________________________ >TCLUG Mailing List - Minneapolis/St. Paul, Minnesota >tclug-list at mn-linux.org >http://mailman.mn-linux.org/mailman/listinfo/tclug-list > > From nate at refried.org Tue Jan 31 13:10:48 2006 From: nate at refried.org (Nate Straz) Date: Tue, 31 Jan 2006 13:10:48 -0600 Subject: [tclug-list] Recent spam In-Reply-To: <200601310839.34303.tanner@mn-linux.org> References: <20060117154611.GC30612@refried.org> <200601310839.34303.tanner@mn-linux.org> Message-ID: <20060131191048.GA25372@refried.org> On Tue, Jan 31, 2006 at 08:39:33AM -0600, Bob Tanner wrote: > On Tuesday 17 January 2006 09:46, Nate Straz wrote: > > Is anyone else getting a bunch of spam coming from btopenworld.com that > > has a "From" of tclug-list? I've had at least a dozen over night and > > this morning. I've forwarded the messages to abuse at btopenworld.com, not > > sure if that is a good email address yet or not. > > Can you send complete smtp headers to support at real-time.com? Sorry, didn't keep any around. I haven't seen any more in over a week. Nate From teeahr1 at gmail.com Tue Jan 31 13:50:36 2006 From: teeahr1 at gmail.com (Pete Daniels) Date: Tue, 31 Jan 2006 13:50:36 -0600 Subject: [tclug-list] Problems compiling gDesklets 0.35.3 In-Reply-To: <43DFB631.2060201@silwenae.com> References: <1f729feb0601310745m48a03b41g8ebf90ea43b23153@mail.gmail.com> <43DFB631.2060201@silwenae.com> Message-ID: <1f729feb0601311150y64467ca1k3555f700409c428b@mail.gmail.com> I have 0.35.2, but it gives me problems with SideCandy desklets and having multiples of a desklet (more than one application launcher, for instance). I suppose if I'm willing to wait a few months, 0.35.3 will be ready for the Dapper release, but I've never been a patient man. On 1/31/06, Paul Cutler wrote: > > Is there any reason you need 0.35.3? > > Using the Automatix script from the Ubuntuforms.org on Ubuntu 5.10, > 0.35.2 works perfectly. > > Paul > > Pete Daniels wrote: > > > Swear to Dog, all the dependencies listed in the readme are met, but I > > bog out during configure. Here's the message: > > > > --- > > checking for GDESKLETS... configure: error: Package requirements > > (pygtk-2.0 >= 2.4.0 pyorbit-2 >= 2.0.1 gnome-python-2.0 >= 2.6.0) were > > not met. Consider adjusting the PKG_CONFIG_PATH environment variable > > if you installed software in a non-standard prefix. > > > > Alternatively you may set the GDESKLETS_CFLAGS and GDESKLETS_LIBS > > environment variables to avoid the need to call pkg-config. See the > > pkg-config man page for more details. > > --- > > > > Anyway, n00b warning here. If you have advice, please have mercy and > > put it in little words. > > > > best! > > -pete > > > >------------------------------------------------------------------------ > > > >_______________________________________________ > >TCLUG Mailing List - Minneapolis/St. Paul, Minnesota > >tclug-list at mn-linux.org > >http://mailman.mn-linux.org/mailman/listinfo/tclug-list > > > > > > -------------- next part -------------- An HTML attachment was scrubbed... URL: http://shadowknight.real-time.com/pipermail/tclug-list/attachments/20060131/45fa7145/attachment.htm From dru at druswanderings.net Tue Jan 31 14:31:11 2006 From: dru at druswanderings.net (The Wandering Dru) Date: Tue, 31 Jan 2006 14:31:11 -0600 Subject: [tclug-list] Problems compiling gDesklets 0.35.3 In-Reply-To: <1f729feb0601311150y64467ca1k3555f700409c428b@mail.gmail.com> References: <1f729feb0601310745m48a03b41g8ebf90ea43b23153@mail.gmail.com> <43DFB631.2060201@silwenae.com> <1f729feb0601311150y64467ca1k3555f700409c428b@mail.gmail.com> Message-ID: <43DFC90F.4070505@druswanderings.net> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Pete Daniels wrote: > I have 0.35.2, but it gives me problems with SideCandy desklets and > having multiples of a desklet (more than one application launcher, for > instance). I suppose if I'm willing to wait a few months, 0.35.3 will > be ready for the Dapper release, but I've never been a patient man. > Apparently the README assumes you have a full gnome development setup. This should do ya... $ sudo apt-get install liborbit2-dev libgnomeui-dev - -- The Wandering Dru GnuPG Key: 0x506A915F http://www.druswanderings.net Get nifty TCLUG merchandise at the TCLUG Store! http://www.cafeshops.com/tclug -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.2 (MingW32) iD8DBQFD38kPiwhv4FBqkV8RAu4gAJ9qN5IIoAZr8UZji0D1FEX2STacTwCghJbd Ze+jqXGlo4K89noVvdM2UOg= =GI8D -----END PGP SIGNATURE----- From seehow at iphouse.com Tue Jan 31 14:39:34 2006 From: seehow at iphouse.com (Christopher Howard) Date: Tue, 31 Jan 2006 14:39:34 -0600 Subject: [tclug-list] DBAN disk wiper Message-ID: <1138739974.1301.8.camel@localhost.localdomain> I got ahold of an old pc that has a bunch of some one elses personal stuff on it. I decided to wip the drive and got a utility called DBAN off source forge. It's suposed to scrambe the contents. I used it, but the log file said it didn't do anything, it was too short a period of time anyways I noticed. Now the BIOS doesn't see the drive. I had a similar problem when trying to do a low level format on an old Connor drive. I assumed that the company that bought Connor had the formater rigged. Some how something on the disk was changed, it's not trash, I still want to use it. Does anyone know anything about this sort of situation? It's a western digital caviar drive, 6.4GB. I've already tried manualy entering in the c/h/s. The bios acts like there is no disk hooked up. From webmaster at mn-linux.org Tue Jan 31 14:54:02 2006 From: webmaster at mn-linux.org (TCLUG Classifieds) Date: Tue, 31 Jan 2006 14:54:02 -0600 Subject: [tclug-list] New TCLUG Classified Ad Message-ID: <200601312054.k0VKs2S29860@crusader.real-time.com> New TCLUG Classified Ad Category: Computer Type of Ad: Want to Buy Subject: RAM for Mac Mini I have a Mac Mini running Gentoo which is in need of more RAM (1G). If you're familiar with the Mini's, they only have one RAM slot that came with a 512MB PC 2700 stick. I would have this and a 512MB DDR 2100 stick. Is their anyone here willing to trade/partial trade $$ for a 1G stick? In case you may wonder, I did do research and noted that they are not overly expensive, ranging from $140 to $200. But, I am a student without a job with a little money to invest. If you are interested please let me know. Thank you, David Seller Email address: lnewago at hotmail dot com http://www.mn-linux.org/cgi-bin/classifieds/index.cgi From auditodd at comcast.net Tue Jan 31 15:06:23 2006 From: auditodd at comcast.net (auditodd@comcast.net) Date: Tue, 31 Jan 2006 21:06:23 +0000 Subject: [tclug-list] DBAN disk wiper Message-ID: <013120062106.11577.43DFD14E000B5F6600002D3922070206530B0B019B070B9A0E@comcast.net> Couple things.... First, have you tried changing around it's position on the IDE cable and/or the Slave/Master jumper? You might also try another HD on the IDE channel to make sure it's not a dead IDE channel. Second, one hard drive tool I love to use is BootIT Next Generation. You can download the floppy creator from their web site and as I understand it, as long as you aren't installing the tool on the hard drive, you do not have to license the tools. You can used it for wipe or partitioning. Third, I have used DBAN, but found something I like better. IBM Secure Data Disposal. http://www-307.ibm.com/pc/support/site.wss/document.do?lndocid=TVAN-SDD Hmmm, version 1.3, maybe I'll update since I'm using v1.2 (you will need a Windows computer to install the program which creates the floppy). BootIT NG can also perform a "secure" wipe of a hard drive. The IBM tool performs the wipe to DOD standards (5x) while the BootIT NG wants to perform 35x wipe, but you can stop it at any time. -- ---- ------ Todd Young -------------- Original message ---------------------- From: Christopher Howard > I got ahold of an old pc that has a bunch of some one elses personal > stuff on it. I decided to wip the drive and got a utility called DBAN > off source forge. It's suposed to scrambe the contents. I used it, but > the log file said it didn't do anything, it was too short a period of > time anyways I noticed. Now the BIOS doesn't see the drive. I had a > similar problem when trying to do a low level format on an old Connor > drive. I assumed that the company that bought Connor had the formater > rigged. Some how something on the disk was changed, it's not trash, I > still want to use it. Does anyone know anything about this sort of > situation? It's a western digital caviar drive, 6.4GB. I've already > tried manualy entering in the c/h/s. The bios acts like there is no > disk hooked up. > > > _______________________________________________ > TCLUG Mailing List - Minneapolis/St. Paul, Minnesota > tclug-list at mn-linux.org > http://mailman.mn-linux.org/mailman/listinfo/tclug-list From auditodd at comcast.net Tue Jan 31 15:12:11 2006 From: auditodd at comcast.net (auditodd@comcast.net) Date: Tue, 31 Jan 2006 21:12:11 +0000 Subject: [tclug-list] where is that boot disk? Message-ID: <013120062112.20813.43DFD2AB0009DA650000514D22070206530B0B019B070B9A0E@comcast.net> Smart Boot Manager http://btmgr.webframe.org/ -- ---- ------ Todd Young -------------- Original message ---------------------- From: Raymond Norton > I used to have a Linux based boot floppy that gave you a menu option which > allowed you to boot any PC via the CD drive. I cannot seem to find it in > the hundreds of boot disk out there. Anyone have the link to it? > > > Raymond > > _______________________________________________ > TCLUG Mailing List - Minneapolis/St. Paul, Minnesota > tclug-list at mn-linux.org > http://mailman.mn-linux.org/mailman/listinfo/tclug-list From gscottwalters at gmail.com Tue Jan 31 15:17:23 2006 From: gscottwalters at gmail.com (G. Scott Walters) Date: Tue, 31 Jan 2006 15:17:23 -0600 Subject: [tclug-list] DBAN disk wiper In-Reply-To: <1138739974.1301.8.camel@localhost.localdomain> References: <1138739974.1301.8.camel@localhost.localdomain> Message-ID: <34b4c76d0601311317kba70f52y872ade9a64ca3085@mail.gmail.com> I've used DBAN before, several hundred times, in fact to whip the contents of drives before sending old systems to the recycler. Unfortunately, I've never had a system do that before. DBAN's default behavior is to write "0" over each sector on it's first pass, write '1' on each sector on it's second pass, and write "0" or "1" on each sector on it's third pass. I don't know why that would prevent the bios from detecting the drive though. I'd suggest trying to flash the bios of the machine and see if it recognizes the drive with a newer "brainstem". On 1/31/06, Christopher Howard wrote: > I got ahold of an old pc that has a bunch of some one elses personal > stuff on it. I decided to wip the drive and got a utility called DBAN > off source forge. It's suposed to scrambe the contents. I used it, but > the log file said it didn't do anything, it was too short a period of > time anyways I noticed. Now the BIOS doesn't see the drive. I had a > similar problem when trying to do a low level format on an old Connor > drive. I assumed that the company that bought Connor had the formater > rigged. Some how something on the disk was changed, it's not trash, I > still want to use it. Does anyone know anything about this sort of > situation? It's a western digital caviar drive, 6.4GB. I've already > tried manualy entering in the c/h/s. The bios acts like there is no > disk hooked up. > > > _______________________________________________ > TCLUG Mailing List - Minneapolis/St. Paul, Minnesota > tclug-list at mn-linux.org > http://mailman.mn-linux.org/mailman/listinfo/tclug-list > -- - G. Scott Walters http://www.apt518.net From dfeldman at macalester.edu Tue Jan 31 15:20:39 2006 From: dfeldman at macalester.edu (dfeldman@macalester.edu) Date: Tue, 31 Jan 2006 15:20:39 -0600 (CST) Subject: [tclug-list] mn-linux.org -> CMS, Drupal, Zope? Message-ID: <13049009.1138742439954.JavaMail.oracle@ocs-1.macalester.edu> Drupal is pretty good. Be prepared to tear your hair out if you're used to object-oriented design -- Drupal is built around a system of hooks, and you make a new module by implementing some of those hooks. So you can't easily derive functionality from any of the built-in objects. And everything is extremely closely tied to the database. But if you can swallow any software-design principles you might have, it does work. (I do the Web site for Macalester College's student newspaper using Drupal.) Zope is very sophisticated and extremely difficult to learn, so I didn't. It uses a built-in database system that's a tricky to get the hang of, and it has its own internal language for doing page templates like PHP. It's pretty good stuff, but probably overkill unless you have a lot of people simultaneously working on a very complicated site. -- DF -------------- next part -------------- An embedded message was scrubbed... From: tclug-list-request at mn-linux.org Subject: tclug-list Digest, Vol 13, Issue 42 Date: Tue, 31 Jan 2006 14:55:43 -0600 Size: 13467 Url: http://shadowknight.real-time.com/pipermail/tclug-list/attachments/20060131/ef27b5a0/tclug-listDigestVol13Issue42.eml From seehow at iphouse.com Tue Jan 31 17:23:36 2006 From: seehow at iphouse.com (Christopher Howard) Date: Tue, 31 Jan 2006 17:23:36 -0600 Subject: [tclug-list] DBAN disk wiper In-Reply-To: <1138739974.1301.8.camel@localhost.localdomain> References: <1138739974.1301.8.camel@localhost.localdomain> Message-ID: <1138749816.1570.4.camel@localhost.localdomain> On Tue, 2006-01-31 at 14:39 -0600, Christopher Howard wrote: > I got ahold of an old pc that has a bunch of some one elses personal > stuff on it. I decided to wip the drive and got a utility called DBAN > off source forge. It's suposed to scrambe the contents. I used it, but > the log file said it didn't do anything, it was too short a period of > time anyways I noticed. Now the BIOS doesn't see the drive. I had a > similar problem when trying to do a low level format on an old Connor > drive. I assumed that the company that bought Connor had the formater > rigged. Some how something on the disk was changed, it's not trash, I > still want to use it. Does anyone know anything about this sort of > situation? It's a western digital caviar drive, 6.4GB. I've already > tried manualy entering in the c/h/s. The bios acts like there is no > disk hooked up. OK, I feel stupid now. I had checked all the cables, they were fine. The drive is in a removable drive mount and it wasn't pushed in all the way. It was never wiped. The old Windows system booted up fine. I'll go away now... From galanolwe at yahoo.com Tue Jan 31 17:39:14 2006 From: galanolwe at yahoo.com (Olwe Bottorff) Date: Tue, 31 Jan 2006 15:39:14 -0800 (PST) Subject: [tclug-list] Newbie C memory questions Message-ID: <20060131233914.35598.qmail@web34301.mail.mud.yahoo.com> Okay, when I use a malloc or alloca, I'm grabbing heap memory, but if I just initialize a variable, array, etc. and fill it with stuff, I'm using stack "automatic" memory, right? But of course a malloc inside a function uses heap. And in general if you don't know or have big memory needs, use heap memory, right? __________________________________________________ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com From florin at iucha.net Tue Jan 31 17:49:55 2006 From: florin at iucha.net (Florin Iucha) Date: Tue, 31 Jan 2006 17:49:55 -0600 Subject: [tclug-list] Newbie C memory questions In-Reply-To: <20060131233914.35598.qmail@web34301.mail.mud.yahoo.com> References: <20060131233914.35598.qmail@web34301.mail.mud.yahoo.com> Message-ID: <20060131234955.GS2191@iucha.net> On Tue, Jan 31, 2006 at 03:39:14PM -0800, Olwe Bottorff wrote: > Okay, when I use a malloc or alloca, I'm grabbing heap > memory, "alloca" allocates space on the stack, not on the heap. > but if I just initialize a variable, array, > etc. and fill it with stuff, I'm using stack > "automatic" memory, right? If you _declare_ and initialize a variable inside a function, you are allocating it on the stack. > But of course a malloc > inside a function uses heap. And in general if you > don't know or have big memory needs, use heap memory, > right? I have lost you here. What is the question? florin -- Don't question authority: they don't know either! -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 189 bytes Desc: Digital signature Url : http://shadowknight.real-time.com/pipermail/tclug-list/attachments/20060131/0faa097b/attachment.pgp From jwreese0 at comcast.net Tue Jan 31 20:57:45 2006 From: jwreese0 at comcast.net (John Reese) Date: Tue, 31 Jan 2006 20:57:45 -0600 Subject: [tclug-list] where is that boot disk Message-ID: <1138762665.5407.3.camel@jupiter.lowbrau.net> Is it Smart Boot Manager? Check it out at http://btmgr.webframe.org/. ********************* I used to have a Linux based boot floppy that gave you a menu option which allowed you to boot any PC via the CD drive. I cannot seem to find it in the hundreds of boot disk out there. Anyone have the link to it? Raymond From admin at lctn.org Tue Jan 31 21:05:46 2006 From: admin at lctn.org (Raymond Norton) Date: Tue, 31 Jan 2006 21:05:46 -0600 (CST) Subject: [tclug-list] where is that boot disk In-Reply-To: <1138762665.5407.3.camel@jupiter.lowbrau.net> References: <1138762665.5407.3.camel@jupiter.lowbrau.net> Message-ID: <53722.204.212.34.10.1138763146.squirrel@lctn.org> That's the one. > Is it Smart Boot Manager? Check it out at http://btmgr.webframe.org/. > > ********************* From seg at haxxed.com Tue Jan 31 21:41:55 2006 From: seg at haxxed.com (Callum Lerwick) Date: Tue, 31 Jan 2006 21:41:55 -0600 Subject: [tclug-list] Disk thrashing bot? In-Reply-To: References: <20060126031331.42464.qmail@web34309.mail.mud.yahoo.com> Message-ID: <1138765316.5961.5.camel@localhost.localdomain> I bet its prelink. -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 189 bytes Desc: This is a digitally signed message part Url : http://shadowknight.real-time.com/pipermail/tclug-list/attachments/20060131/f17ec0a9/attachment.pgp From galanolwe at yahoo.com Tue Jan 31 22:28:34 2006 From: galanolwe at yahoo.com (Olwe Bottorff) Date: Tue, 31 Jan 2006 20:28:34 -0800 (PST) Subject: [tclug-list] size objdump discrepency Message-ID: <20060201042834.21540.qmail@web34303.mail.mud.yahoo.com> If I have a simple program... #include int main(void) { printf("hello world\n"); return 0; } and compile it to object (gcc -c...) then run size and objdump on them $ gcc -W -Wall -c hello_world-1.c $ gcc -o hello_world-1 hello_world-1.o $ size hello_world-1 hello_world-1.o text data bss dec hex filename 916 256 4 1176 498 hello_world-1 48 0 0 48 30 hello_world-1.o and $ objdump -h hello_world-1.o hello_world-1.o: file format elf32-i386 Sections: Idx Name Size VMA LMA File off Algn 0 .text 00000023 00000000 00000000 00000034 2**2 CONTENTS, ALLOC, LOAD, RELOC, READONLY, CODE 1 .data 00000000 00000000 00000000 00000058 2**2 CONTENTS, ALLOC, LOAD, DATA 2 .bss 00000000 00000000 00000000 00000058 2**2 ALLOC 3 .rodata 0000000d 00000000 00000000 00000058 2**0 CONTENTS, ALLOC, LOAD, READONLY, DATA 4 .note.GNU-stack 00000000 00000000 00000000 00000065 2**0 CONTENTS, READONLY 5 .comment 0000001b 00000000 00000000 00000065 2**0 CONTENTS, READONLY You see that objdump object file says text is size 23, while size says it's 48. There's a 25 byte discrepency. Why? It seems to be the exact size of the entire printf... line in the code (plus a \0?). Any ideas? __________________________________________________ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com From ltordsen at gmail.com Tue Jan 31 23:07:07 2006 From: ltordsen at gmail.com (Larry Tordsen) Date: Tue, 31 Jan 2006 23:07:07 -0600 Subject: [tclug-list] Newbie C memory questions In-Reply-To: <20060131233914.35598.qmail@web34301.mail.mud.yahoo.com> References: <20060131233914.35598.qmail@web34301.mail.mud.yahoo.com> Message-ID: <1138770427.7457.29.camel@linux.site> Basically, you use malloc when you dont know how big of an area of memory you need. The compiler allots some memory for your program when it is compiled. If your program steps over the boundry, you get your friendly 'segmentation fault' error. You can use realloc to reallocate your array if you approach the size of your initial region. I think posix says the contents are indeterminate (its changed between c89 and c99), but i've never seen a compiler handle the realloc in an undesireable way (ie you lose the values from your previous malloc). I hope that is clear enough. On Tue, 2006-01-31 at 15:39 -0800, Olwe Bottorff wrote: > Okay, when I use a malloc or alloca, I'm grabbing heap > memory, but if I just initialize a variable, array, > etc. and fill it with stuff, I'm using stack > "automatic" memory, right? But of course a malloc > inside a function uses heap. And in general if you > don't know or have big memory needs, use heap memory, > right? > > > > __________________________________________________ > Do You Yahoo!? > Tired of spam? Yahoo! Mail has the best spam protection around > http://mail.yahoo.com > > _______________________________________________ > TCLUG Mailing List - Minneapolis/St. Paul, Minnesota > tclug-list at mn-linux.org > http://mailman.mn-linux.org/mailman/listinfo/tclug-list From leif.t.johnson at gmail.com Tue Jan 31 23:27:05 2006 From: leif.t.johnson at gmail.com (Leif Johnson) Date: Tue, 31 Jan 2006 23:27:05 -0600 Subject: [tclug-list] size objdump discrepency In-Reply-To: <20060201042834.21540.qmail@web34303.mail.mud.yahoo.com> References: <20060201042834.21540.qmail@web34303.mail.mud.yahoo.com> Message-ID: On 1/31/06, Olwe Bottorff wrote: > $ size hello_world-1 hello_world-1.o > text data bss dec hex filename > 916 256 4 1176 498 hello_world-1 > 48 0 0 48 30 hello_world-1.o > > $ objdump -h hello_world-1.o > > hello_world-1.o: file format elf32-i386 > > Sections: > Idx Name Size VMA LMA > File off Algn > 0 .text 00000023 00000000 00000000 > 00000034 2**2 > CONTENTS, ALLOC, LOAD, RELOC, > READONLY, CODE > 1 .data 00000000 00000000 00000000 > 00000058 2**2 > CONTENTS, ALLOC, LOAD, DATA > 2 .bss 00000000 00000000 00000000 > 00000058 2**2 > ALLOC > 3 .rodata 0000000d 00000000 00000000 > 00000058 2**0 > CONTENTS, ALLOC, LOAD, READONLY, > DATA > 4 .note.GNU-stack 00000000 00000000 00000000 > 00000065 2**0 > CONTENTS, READONLY > 5 .comment 0000001b 00000000 00000000 > 00000065 2**0 > CONTENTS, READONLY > > > You see that objdump object file says text is size 23, > while size says it's 48. There's a 25 byte > discrepency. Why? It seems to be the exact size of the > entire printf... line in the code (plus a \0?). Any ideas? size is listing the text size in base 10. objdump is listing it in base 16. Also objdump is using more finely grained categories. So the 48 bytes of text in size have become 0x23 bytes in .text and 0xd bytes in .rodata, which conveniently enough, adds up to 0x30 hex, which is 48 bytes. Someone that knows more about it/has had to care at some point, can explain why the size/bytes are where they are according to size and objdump. leif -------------- next part -------------- An HTML attachment was scrubbed... URL: http://shadowknight.real-time.com/pipermail/tclug-list/attachments/20060131/38fa9e1c/attachment-0001.htm