On Thu, 2 Nov 2000, Ethan Benson wrote:
> On Thu, Nov 02, 2000 at 03:39:46PM +0100, Robert Varga wrote:
> >
> > It probably examines your current ports via something similar to netstat,
> > to know what services on what ports are needed and creates a firewall
> > sc
,
Robert Varga
On Thu, 2 Nov 2000, Ethan Benson wrote:
> On Thu, Nov 02, 2000 at 03:25:53PM +0100, Robert Varga wrote:
> >
> > Aside from this, Bastille also sets up a default ipchains firewall for
> > your system to prevent users to set up services on their own on your
> &g
Aside from this, Bastille also sets up a default ipchains firewall for
your system to prevent users to set up services on their own on your
machine, I think.
Regards,
Robert Varga
On Thu, 2 Nov 2000, Ethan Benson wrote:
> On Thu, Nov 02, 2000 at 09:26:27AM +0100, [EMAIL PROTECTED] wr
th pine. The sources are put in two binary packages.
They must be installed and then you can extract and build them, but the
source and diff files themselves are not retrievable from the source
tree, I guess.
Regards,
Robert Varga
.
Issue: dpkg-source -x *.dsc
After that, you can change into ./pine-4.21, and issue:
debian/rules binary
After it, you will receive the debian packages of pine, pico and pilot in
/usr/src/pine4, which you can install.
Regards,
Robert Varga
On Thu, 12 Oct 2000, Eileen Orbell wrote:
>
.
Regards,
Robert Varga
On Thu, 12 Oct 2000, Chris Mason wrote:
> I had a drive failure yesterday so I am re-thinking my file server. I would
> like to setup my debian machine as my file server with two drives, each 20
> GB or more. I would like one to mirror the other, either as a raid setup
Does anyone have any experience with writing CDs on a USB connected CD
writer in Linux? Is there a way to do it?
Regards,
Robert Varga
apt-move is just a perl program calling ftp and rsync, and its config file
gets read via the source (.) statement. Just hack it there :)
Regards,
Robert Varga
On Sat, 22 Jul 2000, Pat Mahoney wrote:
> Is there a way to get apt-move to use an alternate config file
> (~/.apt-moverc)? Ma
ied the secure
> smtp
> before but I have used pop-3 over ssl and can testify that it works.
How can you enable POP3-SSL in Netscape Messenger? I haven't been able to
find a setting related to that, only related to TLS and SMTP-SSL...
I have tried Communicator 4.7 on NT4.0.
Regards,
Robert Varga
install is to mount the filesystems manually during the
install, and modify the fstab and lilo.conf manually. Maybe not even that,
if the installer looked at /dev/md? devices as well.
Correct me if I am wrong.
Or is there some other way for that, that I overlooked?
Regards,
Robert Varga
ember which,
I think /usr/i386-glibc20-linux/lib/ld-2.0.7.so
With these packages you can carry out the instruction mentioned at that
file.
Feel free to change the paths to different ones from the ones in that
document.
Regards,
Robert Varga
On Tue, 20 Jun 2000, Matthias Klose wrote:
> Debian
There is a pon or dialout group depending on the version of Debian you are
using.
Add the user to that group (adduser user group), and that's all. (Look at
the group of /usr/sbin/pppd to know which group.
Regards,
Robert Varga
On Fri, 16 Jun 2000, Alex Kwan wrote:
> Hi!
>
>
> At 14:41 +0200 14/6/00, Robert Varga wrote:
> >I tried but it did not work. Probably my ISP did not provide the
> >connection bundling service for PPP.
> >
> >I have even found some mail regarding eql not working in 2.2 at all.
> >
> >Regards,
> >
I tried but it did not work. Probably my ISP did not provide the
connection bundling service for PPP.
I have even found some mail regarding eql not working in 2.2 at all.
Regards,
Robert Varga
On Sun, 11 Jun 2000, Jason Quigley wrote:
> Hi!
>
> Has anyone tried to use eqlplus wi
suid-ed apache on ports other than 80 and using the rewrite engine to
transfer calls to them. This would cause large memory consumption but
still looks like the most feasible method aside from ip-based
virtualhosts.
Regards,
Robert Varga
On Thu, 8 Jun 2000, Christian Hammers wrote:
> He
Unfortunately we are serving only web- and mail services currently and we
don't have an ip-block, only one server.
Regards,
Robert Varga
On Wed, 7 Jun 2000, Sean 'Shaleh' Perry wrote:
> >> apache runs as the vhost user. One apache daemon group per v host.
> >&g
On Wed, 7 Jun 2000, Sean 'Shaleh' Perry wrote:
>
> On 07-Jun-2000 Robert Varga wrote:
> >
> >
> > On Wed, 7 Jun 2000, Sean 'Shaleh' Perry wrote:
> >
> >>
> >> On 07-Jun-2000 Robert Varga wrote:
> >> >
On Wed, 7 Jun 2000, Sean 'Shaleh' Perry wrote:
>
> On 07-Jun-2000 Robert Varga wrote:
> >
> > That is not the same problem. When I refer on users, they are meant as
> > system users on the webserver, not web visitors.
> >
> > What I need is a
On Wed, 7 Jun 2000, Will Trillich wrote:
> On Fri, Jun 02, 2000 at 01:08:04AM -0800, Ethan Benson wrote:
> > On Fri, Jun 02, 2000 at 01:52:10PM +0900, Olaf Meeuwissen wrote:
> > > Just a quick question: how (un)safe is it to create your own files and
> > > directories below /var/www/? Are there
gards,
Robert
On Wed, 7 Jun 2000, Andrew Sullivan wrote:
> On Wed, Jun 07, 2000 at 07:46:29PM +0200, Robert Varga wrote:
> >
> > Is there a way in which I can store some data (eg. mysql passwords) safely
> > from other users on a website and retrieve it from php3/4?
>
> Y
On Wed, 7 Jun 2000, Sean 'Shaleh' Perry wrote:
>
> On 07-Jun-2000 Robert Varga wrote:
> >
> > Is there a way in which I can store some data (eg. mysql passwords) safely
> > from other users on a website and retrieve it from php3/4?
> >
>
> includ
ser's public_html, and there it is, 3. use this recursively
to reach directly untraversable directories).
I would not like to use php-cgi if it is not a necessity, due to the
performance drop.
Regards,
Robert Varga
On Wed, 7 Jun 2000, Jay Kelly wrote:
> I thinking of switching over to qmail from sendmail and wanted to know if I
> install it with apt-get install? when I use sendmail I am able to mail some
> addresses but not others. For example when I try to mail
You need to install qmail-src and ucspi-tcp
IBM has also released a Technology Edition of their JDK 1.3
It can be downloaded from their website. It probably has a much more
allowing licence than SCSL.
Robert Varga
On 24 May 2000, Gary Hennigan wrote:
> "Joe Emenaker" <[EMAIL PROTECTED]> writes:
> > JavaSof
ll and extracting
them on the other machine, although you must take care of hostname
problems.
Regards,
Robert Varga
On Wed, 17 May 2000, David Benson wrote:
> Hi,
>
> I am looking for a package that will allow
> quick installation of a customized debian system,
> ie one in which i ha
,
Robert Varga
On Tue, 16 May 2000, Ferenc Kiraly wrote:
> Hi!
>
> Has anyone got Jserv running on Debian? I installed all the
> required packages for Jserv, but when I run it it immediately
> segfaults. Any ideas?
>
> feri.
>
>
> --
> Unsubsc
In frozen.
Only unstable contains apache-1.3.12.
Robert Varga
On Fri, 12 May 2000, thomas lakofski wrote:
> in a rash moment at 2am i upgraded my apache, forgetting about mod-ssl
> which still depends on 1.3.9. does anyone know where i can find apache
> and apache-common 1.3
h did not booted, and one with the kernel-image which booted).
Robert Varga
On Wed, 10 May 2000, Jim Breton wrote:
> Does anyone know the likelihood of getting the version of lilo which
> supports booting from above the 1024th cylinder into potato?
>
> From /usr/doc/lilo/ch
he default content of the classpath will be
ignored and you will be able to use only what's in the classpath. Of
course none of your programs will be found in the jdk's classes.zip hence
the problem.
Robert Varga
Have you managed to do this? I will have to setup a machine with two
modems, but I cannot make eql to work. I don't have static ip-s. I do
everything as stated in the documentation, it does not give any error, but
neither does it work.
Regards,
Robert Varga
On Mon, 10 Apr 2000, Tom War
On Thu, 13 Apr 2000, Christian Pernegger wrote:
>
> >> On Thu, Apr 13, 2000 at 01:45:00PM +0200, Robert Varga wrote:
>
> > The debian cd should contain the rtl8139.o file. It should install it, if
> > you select the rtl8139 module during the kernel module con
On Thu, 13 Apr 2000, Sunil Pandey wrote:
> On Thu, Apr 13, 2000 at 01:45:00PM +0200, Robert Varga wrote:
> |
> | Have you compiled a new kernel or you are using the kernel provided with
> | the installation? If you are using the kernel with the installation, then
> | put a
Oops, my error there, of course it should be /etc/modules.
Robert Varga
On Thu, 13 Apr 2000, Christian Pernegger wrote:
> Shouldn't modules be loaded via /etc/modules (or modconf, for that matter) in
> Debian?
>
> My modules.conf says "do not modify"
>
&g
/modules . It should be found in
/lib/modules//net
Robert Varga
On Thu, 13 Apr 2000, Sunil Pandey wrote:
> okay, I am sorry for having provided incomplete details..
>
> I am using Debian 2.1r5 (downloaded only yesterday) on my
> pentium III machine with realtek RTL8
vance,
Robert Varga
2.2.10 kernel. However the raidtools2 package is version 19990824.
What to do now?
Robert Varga
bled by setting it suid, and is
located at /usr/lib/apache[-ssl]/suexec . If it is, and I usually get
error messages like that when suexec rejects the cgi, then you can look at
its quite explaining error messages in /var/log/apache[-ssl]/suexec.log
You should either do things according to what
the tcpserver for qmail-smtpd is absent, then the smtp daemon is not
running. If the other four don't exist, then the qmail queues are not
processed.
If some problems are present (eg. qmail-newu complains about permissions
during install, then write a mail to me, and I will send a 1.03-8 version
of qmail which you should be able to install on your system).
Robert Varga
I just installed ipmasq package on the stock potato kernel.
After this I needed to take out a line from /etc/init.d/network which set
a default route to eth0.
After it everything went flawlessly.
Robert Varga
On Fri, 31 Mar 2000, Jeff Gordon wrote:
> Hi, Matt --
>
> On Thu, 30 Ma
problems (eg.
an A record for * and a specific CNAME).
Requirement 2:
The rewrite engine must rewrite all addresses that and with .customer1.com
to www.customer1.com or else they will be served from their own
directory, not from /var/customers/webs/www.customer1.com
Robert Varga
On Wed, 29 Mar
n its documentation.
Robert Varga
On Mon, 27 Mar 2000, Daniel Yang wrote:
> normally, you would have main web server and then virtual web servers.
> Here is what it looks like in the httpd.conf
>
> #setup main web server
> DocumentRoot /www/mainweb
> ServerName www.mainweb.com
&g
On Thu, 23 Mar 2000, Steve Greenland wrote:
> On 23-Mar-00, 18:08 (CST), Andor Dirner <[EMAIL PROTECTED]> wrote:
> > On Thu, 23 Mar 2000, Robert Varga wrote:
> > >
> > > The other one it breaks is Oracle 8.0, and one needs to convert Redhat
> > > com
and one needs to convert Redhat
compatibility libraries to be able install it, and a patch from Oracle.
I have heard it also broke Applixware, but I am not sure.
Robert Varga
or te firewall, I suggest qmail.
With qmail questions in Debian, write to the Debian-Qmail list at
[EMAIL PROTECTED] .
Robert Varga
idmanager installed, then put it in /etc/suid.conf as well
(see doc for exact instructions).
Robert Varga
again,
Robert Varga
f the
ibm-jdk11-installer. I don't expect IBM JDK to go open-source by the way,
so I don't think that it will go into main.
Robert Varga
> -Original Message-
> From: [EMAIL PROTECTED] [SMTP:[EMAIL PROTECTED]
> Sent: Monday, February 28, 2000 4:50 PM
> To: [EMAI
g strategy of some Linux distributors... I
won't mention names, but I think you will catch my point...
And well.. there are companies which tend to commit the same errors more
than one times...
Robert Varga
stead.
There is a page concerning the necessary actions to make games playable
from a masquaraded network which can be reached from the IP-Masquaradeing
Homepage, but I can't remember either address off my head...
Robert Varga
On Sat, 26 Feb 2000, Adam Shand wrote:
>
> > That involves creating a virtual host for every user.
> >
> > I was asking whether ~user/cgi-bin can be made to be not under
> > /home/user/public_html/cgi-bin but /home/user/cgi-bin.
>
> with ~username urls it's even easier. i'm not sure how you d
les
for which it has only group access rights.
Or maybe I only need to restart apache after adding www-data to the user's
group? (Adding www-data to the user's group pose no problems if every cgi
is run under the owner's id).
Robert Varga
ld remember that frozen will go
away after the release... There will be only stable and unstable for a
while...
Robert Varga
.
I think rather it refers on the individuals doing the packaging. And I
don't think that debian has so bad reputation concerning the quality of
packaging the softwares...
Redhat is a totally different quality however (kitchen sink quality does
apply for redhat).
Robert Varga
g I have been running circles around is:
- how can I protect data files from being read from the filesystem,
which should be readable from the web, but only after authentication?
Since they should be http-served, they should be world-readable... Then
how can I prevent anyone from reading them on the webserver system itself?
Robert Varga
On Mon, 21 Feb 2000, Joe Block wrote:
> Robert Varga wrote:
> > If there is an exploitable cgi, then there is web access to all of the
> > owning user's files. If it is not run via the suEXEC mechanism, then the
> > permissions are that of www-data, which are clos
to a lot of users complaining about this
and that is not working and why, when it runs on another similar machine?
Robert Varga
y for following up my own post.
>
It is the way it is supposed to be. With suEXEC enabled, cgi-s run
setuid-ed, which is always a risky thing, so it should be done on the
administrator's explicit statement, hence the need for enabling suEXEC
manually.
Robert Varga
ity, so you can
stuck with 3.4
Robert Varga
stand why it isn't doing that.
>
> the way you think it should work *is* the way it works, something else is
> going wrong.
>
> adam.
I myself put cgi-s under /var/www/htdocs/vhostname and the default docroot
is /var/www/default.
The vhost docroots are in the /home.
Robert Varga
t the data connections.
Therefore: if you need to encrypt only the passwords, then ssh can provide
you the tool. But there is no way to encrypt the data connection with ssh
alone. You need a tool which uses ssh's port forwarding capabilities
actively for that.
Robert Varga
I have noticed a strange thing.
Bind allocates an udp port above 1024 randomly. Is this normal?
It is compiled from the source on the debian ftp-mirror.
It is version 8.2.2p5-7
I run bind as user/group named:named.
Robert Varga
will have almost no
traffic.
Of course if you have one machine, this is problematic.
Robert Varga
n't want mail to arrive on mail.orig and you want it to be
delivered to mail.new then set up explicit MX record for mail.orig to
explicitly point to mail.new.
Robert Varga
re compiling other
packages (daemontools from Daniel J. Berstein). Send a letter if you are
interested in it.
Robert Varga
X.
And of course it needs trying. On some machines you must not enter the
Card menu of the XF86Setup program. (that was with the slink package).
Good luck with it.
Robert Varga
>
> The only thing is, this server seems to have about a 50% chance of
> failure on restart, where "fail
nually ?
>
No, it is only that the driver is in the experimental section. Set the
flag concerning experimental features to set.
Robert Varga
ould not receive this
message, since I think it provides mail-transport-agent. If you have put
up the slink version (1.02-x), then you may have got this message.
Robert Varga
ok as well.
It is the most stable jdk on Linux I have ever seen.
Robert Varga
On Fri, 7 Jan 2000, Stuart Ballard wrote:
> Robert Varga wrote:
> >
> > If you have suidmanager installed, then you have this file. If you don't
> > have, no probs, no need to install it.
> >
> > But if you have it installed and you don't do these
nstalled and you don't do these changes in suid.conf,
then suidmanager will upon every restart clear the suid bit of the suexec
binary, preventing apache to run.
Robert Varga
e apache documentation says I should). When I try to enable
> it by setting a User and Group in a virtualhost directive, I get:
chmod 4755 /usr/lib/apache/suexec
put 4755 in /etc/suid.conf in the line of /usr/lib/apache/suexec instead
of 0755, and change apache-common to user.
Robert Varga
>
> I installed the Debian package for BIND, and I just checked and it does appear
> to be running as root :(
>
> I will have to read the docs to determine if I can change that without
> compiling it myself.
Just append
-- -u named
on the end of the line start-stop-daemon line in the start section in
/etc/init.d/bind .
Of course, create the named user, because it does not exist in default.
Robert Varga
On Thu, 30 Dec 1999, Remco van 't Veer wrote:
> On Wed, Dec 29, 1999 at 19:47, Robert Varga wrote:
>
> > Due to the problem b: it did not build anything, but make my binaries
> > vanish (got renamed). After I set these to point to /usr/bin/gcc272 and
> > /usr/b
On Wed, 29 Dec 1999, Remco van 't Veer wrote:
> On Wed, Dec 29, 1999 at 17:38, Robert Varga wrote:
>
>1) Change to the directory where you downloaded your patch.
> * cd ~/orapatch
>
>2) Extract the patch.
> * tar -xvzf glibcpatch.tgz
>
>
es should I install in debian since it is for
redhat.
Robert Varga
zlib1g package.
If you have any dependency problems, it is worth to look at the package
page on the debian site. (search for the package on
http://www.debian.org/distrib/packages
)
Robert Varga
the problem is with glibc2.1
What should I do to make oracle work?
Robert Varga
stead of a su, I see the
> motd from /etc/motd at the first login, and the /usr/remote/motd at the
> second login (you have to type in your password twice for a chroot
> login).
I meant in /etc/passwd. Who knows... Murphy is always lurking around.
Robert Varga
oi $ su ookhoi
> Password:
> Password:
> No shell
>
> The first password is the password on my system, the second password is
> the password I use when I do a nfs boot, so the change root works. But
> for some reason I get the "No shell". Can you help me with that please?
>
> The password entry at the nfs boot system is:
> ookhoi $ grep ookhoi /usr/remote/etc/passwd
> ookhoi:x:1000:101::/home/ookhoi:/bin/bash
>
> And this works:
> expanse:~# chroot /usr/remote/ su - ookhoi
> ookhoi $
>
> Of course bash is there:
> ookhoi $ /bin/bash
> ookhoi $
And is it in the chrooted /etc/shells?
Robert Varga
>
fault files.
Robert Varga
for
the list. :)
Robert Varga
language. There is even a Hungarian
Debian group organizing, try posting your question to
[EMAIL PROTECTED]
which is the mailing list of the Hungarian Debian Users Group.
Robert Varga
such problems (aside from
copyright) with the ibm-jdk 1.1.8.
Robert Varga
day is missing from the syslog. The last message before the gap
is:
Dec 12 00:08:11 exiting on signal 15
the following entry is:
Dec 13 10:34:18 syslogd 1.3-3#31: restart.
What could this be? Is it possible that this is the result of a
Denial-of-Service attack, or is it sure that someone br
connections, except for DNS.
To be more exact, the only tcp port under 4000 (I scanned to this number)
which was open was 53 (domain).
I suspect a break-in occured.
How can I find what communication is taking place on these connections?
Robert Varga
nks for the /usr, /etc, /...
directories from each user's homedir?
This would greatly reduce the amount of problem a hacker can cause, does
it not?
Robert Varga
AddHandler server-parsed .shtml
or
XBitHack on (or full)
need to be set for the directory.
Regards,
Robert Varga
I think the defaults are
> 1500. Unfortunately I can't seem to recall where I got my info on
> settings for the mru/mtu values.
>
ppp needs to be upgraded pppconfig as well, I think.
the ppp/isdn part of the kernel has been reorganized, hence the need for
the new versions.
Robert Varga
ows only the installed version, not the
> available version, because there is no "official archive" version of the
> qmail.deb. For the same reason, dselect classifies the package as
> "Obsolete/local Unclassified packages without a section". This is nothing
> to worry about.
It does not come up if you create a proper local repository :)
Robert Varga
fer encoding should be selected over which one?
What are the usability terms and anyway the differences between each
algorithm?
Robert Varga
What does the m68k mean in gdb? Is it only m68k, or what the heck does
that mean???
Robert Varga
r 2.2.x...
The pre-2.0.38 patches cannot be installed on the 2.0.38 kernel
unfortunately.
Robert Varga
How can I recompile the packages so that they be optimized for running on
Pentium or Pentium-II or else?
Robert Varga
; be preferred over the other.
You cannot use a CNAME record for mail hosting.
Robert Varga
.pl/computer/stunnel
Read all pages reachable thereof.
Robert Varga
l hosting for the alsomy.otherdomain.net
hostname, since you need only mail and web there.
Robert Varga
etworks and it'll be encrypted (as well as all http,
> ftp etc)
>
> If this is possible, where would I find information?
Look at Free S/WAN project, and in general the IPSec security.
It provides encoding of the IP layer.
Free S/WAN Project Homepage: http://www.xs4all.nl/~freeswan/
Robert Varga
g qmail on the following lists:
qmail discussion list: qmail@list.cr.yp.to
debian related qmail list: [EMAIL PROTECTED]
Robert Varga
ols documentation, that only 4 is
supported currently, you need to recompile the kernel for more, I think.
Not sure though, maybe I am wrong.
Robert Varga
arameters for it.
I cannot give command line parameters in the cmd attribute since it is
used by suexec to stat() the file, and of course it cannot find a file
since it tries to stat() a file named "cginame parameters".
Please help,
Robert Varga
1 - 100 of 126 matches
Mail list logo
