I'm having some difficultly running PHP4 scripts as CGI with Apache2.
I've installed the php4-cgi package and followed the instructions in
/usr/share/doc/php4-cgi/README.Debian.gz, and uncommented the
following line in my apache.conf:
AddType application/x-httpd-php .php
But I get a 404 error when
Does anybody know of any livecds specially targetted towards headless
computers? I need a livecd that I can drop into a computer and
immediately get SSH access to the system. If nobody knows of such a
livecd, does anybody know how I would make one that worked in such a
manner?
Thanks.
On 10/16/05, Aurelien Ricard <[EMAIL PROTECTED]> wrote:
> Stephen, try to put a telnet session in their ~/.bashrc
> I've never tried but it should work.
While this works, it is insecure. A user can easily run a command like
'ssh [EMAIL PROTECTED] rm .bashrc' to delete the .bashrc file and get full
Is it possible to change a user's login shell to an instance of telnet
to a user-unique port? When a user logs into my server, I'd like them
to be immediately dropped into a telnet session on a specific port
running on the server and to be disconnected when their telnet session
ends.
Thanks.
On 5/13/05, Robert Vangel <[EMAIL PROTECTED]> wrote:
> Stephen Le wrote:
> > I'm running Debian-testing and I've been unable to get Cacti to
> > produce any graphs. When I manually attempt to execute poller.php, I
> > get the following error:
> >
I'm running Debian-testing and I've been unable to get Cacti to
produce any graphs. When I manually attempt to execute poller.php, I
get the following error:
Fatal error: Call to undefined function: mysql_connect() in
/usr/share/cacti/site/lib/adodb/drivers/adodb-mysql.inc.php on line
339
I've v
t;untrusted". Everything seems to be working fine.
Oh, and I've enabled process accounting. If a user does indeed find a
way to execute a restricted command without permission, I'll find out
about it.
-Stephen Le
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
;what if" factors by choosing the most
effective means to accomplish what I want done. No method is perfect,
but some methods are certainly better than others.
-Stephen Le
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
it, some easier than others depending
> on what's in /usr/local/rbin.
This won't prevent users from executing banned commands with Perl
scripts called by Apache. I'm opposed to using rbash for this reason
and because some users might want to use a non-bash shell.
-Stephen Le
--
To U
They might be able to accomplish what I need, but I'll
have to read more of the documentation.
-Stephen Le
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
ode statically and exectute that remotely.
>
> No need for C. Perl suffices.
I should be able to restrict a user's Perl scripts using Apache's
suEXEC. I don't see how a user would be able to remotely execute a
compiled C program outside of their priviledges.
-Stephen Le
--
To UN
mands available on the system, though. I might also
want to allow another set of users to be able to run the commands
unavailable to normal users.
In other words, I'd like to restrict normal users more than the
default permissions setup.
-Stephen Le
--
To UNSUBSCRIBE, email to [E
increases, the number of independent Apache processes
running could get out of hand.
However, suEXEC looks like the tool I need to ensure that a user's
Perl scripts run with their priviledges and not Apache's. Do you know
if suEXEC would also apply to PHP scripts?
Thanks,
Stephen Le
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
ve execute access from all
commands and grant them on a command by command basis, requiring each
users to prefix _every_ command with 'sudo'.
-Stephen Le
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
aemon --oaf-ior-fd=35
Executing just "gnome-settings-daemon &" should also work fine.
Going back to the original question, it might be easier to just use a
theme that looks the same in both KDE and Gnome.
-Stephen Le
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject
art realplay. If that doesn't work, consider using
strace to see what's up.
-Stephen Le
.7. Version 0.11.17 is
in unstable.
[1] http://www.k3b.org/
-Stephen Le
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
oot, but that's really
impractical...
> Use of chroot with bash started as rbash sems to be what you need.
>
> Or use of rbash with with PATH pointing to custom location where
> commands exist.
See the example above. Users would still be able to upload their own
Perl scripts and
ds. Besides, telling users to prefix every command
they run with 'sudo' would be awkward and cumbersome.
-Stephen Le
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
ess
to if they write a Perl script calling one of the banned commands and
getting Apache to execute that script. In other words, would the
script execute with the script owner's priviledges or with Apache's
priviledges?
Thanks,
Stephen Le
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
uldn't be able to execute. In regards to the latter method, would
it be possible for me to change the group ownership of the commands I
don't want users to have access to and revoke execute permission from
that group?
Thanks,
Stephen Le
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with
On Mon, 5 Jul 2004 01:12:06 -0700 (PDT), Alvin Oga
<[EMAIL PROTECTED]> wrote:
> > Why ftp? Why not use rsync?
>
> because rsync doesn't keep a copy of the last set of changes
> before it overwrite it ??
Actually, rsync can be used to make incremental backups. Please see:
http://www.mikerubel.org
Being educated does not make you a good teacher.
On Tue, 29 Jun 2004 19:42:02 -0700, [EMAIL PROTECTED]
<[EMAIL PROTECTED]> wrote:
>
> To be a professor and have tenure in a institution of higher learning
> one usually must have a Ph.D. or at least a masters unless the school
> in question sucks;
23 matches
Mail list logo
