From bdubbs at swbell.net Thu Dec 1 01:27:58 2005 From: bdubbs at swbell.net (Bruce Dubbs) Date: Thu Dec 1 01:00:34 2005 Subject: [SATLUG] The web page In-Reply-To: <200511302313.00073.tweeksjunk2@theweeks.org> References: <89984D907655BE42BC70B5C334497F5602D1CF14@SA1EMS2.worldsavings.com> <438DE9CE.9050100@swbell.net> <200511302313.00073.tweeksjunk2@theweeks.org> Message-ID: <438EA5FE.1020603@swbell.net> Tom Weeks wrote: > My only suggestion is to stay away from PHP based solutions.. Too many > vulnerabilities. I've not heard much about this. Are you saying that the language is inherently vulnerable or that the people who use php don't know how to do it securely? Do you have any references? -- Bruce From nman64 at n-man.com Thu Dec 1 01:59:17 2005 From: nman64 at n-man.com (Patrick Barnes) Date: Thu Dec 1 01:31:37 2005 Subject: [SATLUG] The web page In-Reply-To: <438EA5FE.1020603@swbell.net> References: <89984D907655BE42BC70B5C334497F5602D1CF14@SA1EMS2.worldsavings.com> <438DE9CE.9050100@swbell.net> <200511302313.00073.tweeksjunk2@theweeks.org> <438EA5FE.1020603@swbell.net> Message-ID: <438EAD55.6060400@n-man.com> Bruce Dubbs wrote: > Tom Weeks wrote: > > >> My only suggestion is to stay away from PHP based solutions.. Too many >> vulnerabilities. >> > > I've not heard much about this. Are you saying that the language is > inherently vulnerable or that the people who use php don't know how to > do it securely? Do you have any references? > > -- Bruce > _______________________________________________ > SATLUG mailing list > SATLUG@satlug.org > http://alamo.satlug.org/mailman/listinfo/satlug > > It's a bit of both. There have been numerous vulnerabilities in the language itself, forcing PHP programmers to chase bugs and make revisions to eliminate vulnerabilities. Also, PHP doesn't really enforce good habits, or really any habits at all. PHP programmers, generally speaking, tend to be sloppy, which results in all kinds of problems, including security vulnerabilities. The former is really the bigger problem in selecting a solution, as solutions with sloppy code can be avoided. Unfortunately, many of the most popular solutions, including Drupal, have had more than their fair share of problems. Within the Fedora Project, we have been considering various wiki and CMS systems for several purposes. We have, for some time, used MoinMoin at fedoraproject.org. It works very well, has a good security history, is written in Python, is easy to install and maintain, and can perform many tasks normally allotted to CMS systems. We ruled out Drupal for the reasons above, and have held strong biases against PHP solutions. I strongly suggest MoinMoin, as it seems like the perfect solution for SATLUG, and I would be happy to assist in installing and maintaining it, as well as answering questions and even producing patches for new/different functionality where required. In addition to fedoraproject.org and my personal site, you can find a number of MoinMoin wiki installations at http://moinmoin.wikiwikiweb.de/MoinMoinWikis http://moinmoin.wikiwikiweb.de/ -- Patrick "The N-Man" Barnes nman64@n-man.com www.n-man.com -- From aslhk at angstypuppy.com Thu Dec 1 06:55:25 2005 From: aslhk at angstypuppy.com (will kelly) Date: Thu Dec 1 06:24:59 2005 Subject: [SATLUG] The web page In-Reply-To: <438EA5FE.1020603@swbell.net> References: <89984D907655BE42BC70B5C334497F5602D1CF14@SA1EMS2.worldsavings.com> <438DE9CE.9050100@swbell.net> <200511302313.00073.tweeksjunk2@theweeks.org> <438EA5FE.1020603@swbell.net> Message-ID: <438EF2BD.2090800@angstypuppy.com> Bruce Dubbs wrote: >Tom Weeks wrote: > > > >>My only suggestion is to stay away from PHP based solutions.. Too many >>vulnerabilities. >> >> > >I've not heard much about this. Are you saying that the language is >inherently vulnerable or that the people who use php don't know how to >do it securely? Do you have any references? > > -- Bruce >_______________________________________________ >SATLUG mailing list >SATLUG@satlug.org >http://alamo.satlug.org/mailman/listinfo/satlug > > PHP is not inherently an insecure language. It includes some great security features (safe mode, open_basedir support, and several other features). Unfortunately, lately there have been a slew of vulnerabilities in standard functionality for php. The XMLRPC library has been churning out patch after patch to attempt to resolve the security issues that keep being discovered. Here are some security focus vulnerability posts for the last month: PHP File Upload GLOBAL Variable Overwrite Vulnerability 2005-11-29 http://www.securityfocus.com/bid/15250 PHP Open_BaseDir Security Restriction Bypass Vulnerability 2005-11-25 http://www.securityfocus.com/bid/14957 PHP Safedir Restriction Bypass Vulnerabilities 2005-11-25 http://www.securityfocus.com/bid/15119 PHP cURL and GD Multiple Safe_Mode and Open_Basedir Restriction Bypass Vulnerabilities 2005-11-25 http://www.securityfocus.com/bid/15411 PCRE Regular Expression Heap Overflow Vulnerability 2005-11-25 http://www.securityfocus.com/bid/14620 XML-RPC for PHP Remote Code Injection Vulnerability 2005-11-23 http://www.securityfocus.com/bid/14088 PHP Multiple Local And Remote Vulnerabilities 2005-11-02 http://www.securityfocus.com/bid/11964 And I think that is good enough! One thing to keep in mind, though, is that php includes a lot more than most languages in the "core" distribution. Not all of this functionality needs to be enabled or used. That said, most web apps use enough functionality to give you pause if you are thinking about running php. So to answer your questions: A)Sometimes the language is inherently vulnerable. It is patched quickly. Good luck keeping up. B)Sometimes people don't use it well. PHP is better than most languages about preventing misuse, provided the system administrator has configured it right. There are generally ways around this. They are patched. Search for phpbb on your favorite security site to see an example of what poorly written php code can do! It's certainly possible to run php safely, but it's a lot more of a pain than, for example, mod_perl or mod_ruby or mod_python. These guys have security through obscurity going for them, too! It's not necessarily a good thing, but it is certainly a thing =P. I do use drupal on my site, and I haven't been hacked. I disabled the xmlrpc interface, and I haven't had to patch since. I do have to be more attentive than I'd really like, though. Will Kelly From ASexton956 at worldsavings.com Thu Dec 1 08:49:59 2005 From: ASexton956 at worldsavings.com (Sexton, Art, ISD) Date: Thu Dec 1 08:22:33 2005 Subject: [SATLUG] The web page Message-ID: <89984D907655BE42BC70B5C334497F5602D1D270@SA1EMS2.worldsavings.com> I think that it is the latter. Although there have been issues with using certain functions in php that have not been secure, I would not characterize the whole language, nor applications based on php, as any more insecure than other languages. Art Sexton -----Original Message----- From: satlug-bounces@satlug.org [mailto:satlug-bounces@satlug.org] On Behalf Of Bruce Dubbs Sent: Thursday, December 01, 2005 1:28 AM To: tweeksjunk2@theweeks.org; The San Antonio Linux User's Group Mailing List Subject: Re: [SATLUG] The web page Tom Weeks wrote: > My only suggestion is to stay away from PHP based solutions.. Too many > vulnerabilities. I've not heard much about this. Are you saying that the language is inherently vulnerable or that the people who use php don't know how to do it securely? Do you have any references? -- Bruce _______________________________________________ SATLUG mailing list SATLUG@satlug.org http://alamo.satlug.org/mailman/listinfo/satlug ***************************************************************************** If you are not the intended recipient of this e-mail, please notify the sender immediately. The contents of this e-mail do not amend any existing disclosures or agreements unless expressly stated. ***************************************************************************** From mgarcia5 at satx.rr.com Thu Dec 1 08:57:19 2005 From: mgarcia5 at satx.rr.com (Mark Garcia) Date: Thu Dec 1 08:29:50 2005 Subject: [SATLUG] DNS resolve problem Message-ID: <200512011457.jB1EvI9D020854@ms-smtp-04.texas.rr.com> _____ From: Mark Garcia [mailto:mgarcia5@satx.rr.com] Sent: Wednesday, November 30, 2005 10:36 PM To: 'satlug@satlug.org' Subject: DNS resolve problem Hey guys I need your help. I have two linux boxes at work and my company just switched domains. It's a heterogeneous network mixed with Sun Sparcs, linux, windoze. The DNS server is a windows 2003 server. My linux boxes are running Redhat 9 and Fedora. I successfully changed their static IPs, the primary and secondary DNS entries, and the gateway. I can access the internet from both boxes but I cannot resolve any hosts on the network. The file /etc/resolv.conf has the right nameserver values. I can successfully ping other machines on the network using IP address but not hostnames. I can run 'host www.google.com ' successfully but I cannot do a 'host hostname'. Also, sendmail is not working so my bugzilla box is not sending email. I ran updated my /etc/mail/sendmail.mc file with the name of the exchange host and that didn't work. All email was stuck. I then used the IP address of the exchange server and then all emails were sent but not receieved!? What the? I need some help fixing these problems. I need to get sendmail working for my bugzilla box and I need the other box to resolve hostnames because I've got demo apps running on it. All help is appreciated. Thanks. Please no flames. Mark G. From jesse at liberto.org Thu Dec 1 09:39:21 2005 From: jesse at liberto.org (Jesse Gonzalez) Date: Thu Dec 1 09:11:41 2005 Subject: [SATLUG] DNS resolve problem In-Reply-To: <200512011457.jB1EvI9D020854@ms-smtp-04.texas.rr.com> References: <200512011457.jB1EvI9D020854@ms-smtp-04.texas.rr.com> Message-ID: <438F1929.8010400@liberto.org> Just a thought, but you say you updated the primary and secondary DNS entries. You did this in your /etc/resolv.conf file correct? If so is one of those your 2003 machine? ~jesse Mark Garcia wrote: > > > > > _____ > >From: Mark Garcia [mailto:mgarcia5@satx.rr.com] >Sent: Wednesday, November 30, 2005 10:36 PM >To: 'satlug@satlug.org' >Subject: DNS resolve problem > > > >Hey guys I need your help. I have two linux boxes at work and my company >just switched domains. It's a heterogeneous network mixed with Sun Sparcs, >linux, windoze. The DNS server is a windows 2003 server. > > > >My linux boxes are running Redhat 9 and Fedora. I successfully changed their >static IPs, the primary and secondary DNS entries, and the gateway. I can >access the internet from both boxes but I cannot resolve any hosts on the >network. The file /etc/resolv.conf has the right nameserver values. I can >successfully ping other machines on the network using IP address but not >hostnames. I can run 'host www.google.com ' >successfully but I cannot do a 'host hostname'. Also, sendmail is not >working so my bugzilla box is not sending email. I ran updated my >/etc/mail/sendmail.mc file with the name of the exchange host and that >didn't work. All email was stuck. I then used the IP address of the exchange >server and then all emails were sent but not receieved!? What the? > > > >I need some help fixing these problems. I need to get sendmail working for >my bugzilla box and I need the other box to resolve hostnames because I've >got demo apps running on it. > > > >All help is appreciated. Thanks. Please no flames. > > > >Mark G. > > > >_______________________________________________ >SATLUG mailing list >SATLUG@satlug.org >http://alamo.satlug.org/mailman/listinfo/satlug > > From dave at coverstreet.com Thu Dec 1 10:41:19 2005 From: dave at coverstreet.com (Dave) Date: Thu Dec 1 09:13:16 2005 Subject: [SATLUG] DNS resolve problem In-Reply-To: <200512011457.jB1EvI9D020854@ms-smtp-04.texas.rr.com> References: <200512011457.jB1EvI9D020854@ms-smtp-04.texas.rr.com> Message-ID: <1133451679.21613.4.camel@aku> Just a shot in the dark here, but while you say your resolv.conf has the correct "nameserver" entries, does it also have the correct "domain" and "search" entries? If you're lucky it might be something that simple. HTH, -Dave On Thu, 2005-12-01 at 08:57 -0600, Mark Garcia wrote: > Hey guys I need your help. I have two linux boxes at work and my company > just switched domains. It's a heterogeneous network mixed with Sun Sparcs, > linux, windoze. The DNS server is a windows 2003 server. > > > > My linux boxes are running Redhat 9 and Fedora. I successfully changed their > static IPs, the primary and secondary DNS entries, and the gateway. I can > access the internet from both boxes but I cannot resolve any hosts on the > network. The file /etc/resolv.conf has the right nameserver values. I can > successfully ping other machines on the network using IP address but not > hostnames. I can run 'host www.google.com ' > successfully but I cannot do a 'host hostname'. Also, sendmail is not > working so my bugzilla box is not sending email. I ran updated my > /etc/mail/sendmail.mc file with the name of the exchange host and that > didn't work. All email was stuck. I then used the IP address of the exchange > server and then all emails were sent but not receieved!? What the? > > > > I need some help fixing these problems. I need to get sendmail working for > my bugzilla box and I need the other box to resolve hostnames because I've > got demo apps running on it. > > > > All help is appreciated. Thanks. Please no flames. > > > > Mark G. > > > > _______________________________________________ > SATLUG mailing list > SATLUG@satlug.org > http://alamo.satlug.org/mailman/listinfo/satlug From skolars at cis.sac.accd.edu Thu Dec 1 09:47:51 2005 From: skolars at cis.sac.accd.edu (steve kolars) Date: Thu Dec 1 09:19:18 2005 Subject: [SATLUG] PHP Message-ID: <438F1B27.1040908@cis.sac.accd.edu> There seem to be a few people on the list that have some good experience in PHP. During the Christmas Break our classrooms sit empty (December 12 - Jamurary 7). I suggest we have a informal PHP brain session a day, or two, during this time period. We could meet for a couple of nights, a Friday and Saturday, a couple of Saturdays, ... This could be a great opportunity for some people with real knowledge in this area to share. I am interested in all we can learn about the vulnerabilities. I am also interested in good vs bad practises in PHP programming. Any Takers??? The sessions could be very informal--you do not have to prepare a formal presentation. People that would like to lead a discussion please suggest a date and time. Steve From skolars at cis.sac.accd.edu Thu Dec 1 09:49:30 2005 From: skolars at cis.sac.accd.edu (steve kolars) Date: Thu Dec 1 09:20:57 2005 Subject: [SATLUG] No Flame War Please Message-ID: <438F1B8A.2070306@cis.sac.accd.edu> Someone..., anyone..., please update the website. From pixelnate at gmail.com Thu Dec 1 09:52:37 2005 From: pixelnate at gmail.com (Nathan Turnage) Date: Thu Dec 1 09:25:48 2005 Subject: [SATLUG] PHP In-Reply-To: <438F1B27.1040908@cis.sac.accd.edu> References: <438F1B27.1040908@cis.sac.accd.edu> Message-ID: <5d2c67c9242e2c4fe950ca73ffc02c86@gmail.com> On Dec 1, 2005, at 9:47 AM, steve kolars wrote: > There seem to be a few people on the list that have some good > experience > in PHP. During the Christmas Break our classrooms sit empty (December > 12 - Jamurary 7). I suggest we have a informal PHP brain session a > day, > or two, during this time period. We could meet for a couple of nights, > a Friday and Saturday, a couple of Saturdays, ... > > This could be a great opportunity for some people with real knowledge > in > this area to share. I am interested in all we can learn about the > vulnerabilities. I am also interested in good vs bad practises in PHP > programming. > That would be awesome. I am a noob when it comes to writing PHP/MySQL. Going through tutorials, gets really confusing sometimes. Please, somebody, take him up on this. I'll even buy dinner for the one who volunteers. ;^D > Any Takers??? > > The sessions could be very informal--you do not have to prepare a > formal > presentation. People that would like to lead a discussion please > suggest a date and time. PHP-kenobi, you're our only hope... -Nate From jesse at liberto.org Thu Dec 1 09:54:58 2005 From: jesse at liberto.org (Jesse Gonzalez) Date: Thu Dec 1 09:27:18 2005 Subject: [SATLUG] PHP In-Reply-To: <438F1B27.1040908@cis.sac.accd.edu> References: <438F1B27.1040908@cis.sac.accd.edu> Message-ID: <438F1CD2.9010309@liberto.org> I would be interested in attending, but there may be better days than Friday & Saturday. ~jesse steve kolars wrote: >There seem to be a few people on the list that have some good experience >in PHP. During the Christmas Break our classrooms sit empty (December >12 - Jamurary 7). I suggest we have a informal PHP brain session a day, >or two, during this time period. We could meet for a couple of nights, >a Friday and Saturday, a couple of Saturdays, ... > >This could be a great opportunity for some people with real knowledge in >this area to share. I am interested in all we can learn about the >vulnerabilities. I am also interested in good vs bad practises in PHP >programming. > >Any Takers??? > >The sessions could be very informal--you do not have to prepare a formal >presentation. People that would like to lead a discussion please >suggest a date and time. > > >Steve > >_______________________________________________ >SATLUG mailing list >SATLUG@satlug.org >http://alamo.satlug.org/mailman/listinfo/satlug > > From eli at then7.com Thu Dec 1 10:05:48 2005 From: eli at then7.com (Eli) Date: Thu Dec 1 09:47:04 2005 Subject: [SATLUG] PHP In-Reply-To: <5d2c67c9242e2c4fe950ca73ffc02c86@gmail.com> References: <438F1B27.1040908@cis.sac.accd.edu> <5d2c67c9242e2c4fe950ca73ffc02c86@gmail.com> Message-ID: <3759.208.191.194.198.1133453148.squirrel@208.191.194.198> I recommend Art Sexton & Andrew Goetz in addition to whomever. I work with these guys all the time. They might not be "php godz", but they do have solid experience and are bright guys in general. :) Eli > On Dec 1, 2005, at 9:47 AM, steve kolars wrote: > >> There seem to be a few people on the list that have some good >> experience >> in PHP. During the Christmas Break our classrooms sit empty (December >> 12 - Jamurary 7). I suggest we have a informal PHP brain session a >> day, >> or two, during this time period. We could meet for a couple of nights, >> a Friday and Saturday, a couple of Saturdays, ... >> >> This could be a great opportunity for some people with real knowledge >> in >> this area to share. I am interested in all we can learn about the >> vulnerabilities. I am also interested in good vs bad practises in PHP >> programming. >> > > That would be awesome. I am a noob when it comes to writing PHP/MySQL. > Going through tutorials, gets really confusing sometimes. Please, > somebody, take him up on this. I'll even buy dinner for the one who > volunteers. ;^D > >> Any Takers??? >> >> The sessions could be very informal--you do not have to prepare a >> formal >> presentation. People that would like to lead a discussion please >> suggest a date and time. > > PHP-kenobi, you're our only hope... > > > > -Nate > > _______________________________________________ > SATLUG mailing list > SATLUG@satlug.org > http://alamo.satlug.org/mailman/listinfo/satlug > From bartonekdragracing at yahoo.com Thu Dec 1 08:15:58 2005 From: bartonekdragracing at yahoo.com (Alex Bartonek) Date: Thu Dec 1 09:48:29 2005 Subject: [SATLUG] PHP In-Reply-To: <438F1CD2.9010309@liberto.org> Message-ID: <20051201161558.59102.qmail@web54313.mail.yahoo.com> I'm still here El Guapo. I'm in for the PHP sessions..but yea, maybe not Friday's and Saturdays? -Alex --- Jesse Gonzalez wrote: > I would be interested in attending, but there may be > better days than > Friday & Saturday. > > ~jesse __________________________________ Yahoo! Mail - PC Magazine Editors' Choice 2005 http://mail.yahoo.com From bdubbs at swbell.net Thu Dec 1 15:14:16 2005 From: bdubbs at swbell.net (Bruce Dubbs) Date: Thu Dec 1 14:46:48 2005 Subject: [SATLUG] New Server is available (but not set up) Message-ID: <438F67A8.5040903@swbell.net> I now have the new server available thanks to Rackspace and especially tweeks. Does anyone know how SATLUG is set up in the DNS system? How do we change the ip address for the server? Who do I contact? The system is running RHES4. I'd like to throw open the discussion on exactly how to proceed. As a lot of you know, my preference is for a LinuxFromScratch system and I could build that up in about a day. However, this is a SATLUG server and what is running really needs to be a group decision. Right now, without anything set up, the RHES system has 74 processes active. On my LFS server that hosts ftp/http packages for public access, I have 49 processes running (and I know what ALL of them do). To me that is more secure. We could also load another distro if we decide that is best. To start out, the main processes needed are apache, mailman, and a mail transport agent. Other processes are admin and security related. What are your thoughts? -- Bruce ========================================== Here are the specifics: [bdubbs@s1 ~]$ cat /etc/redhat-release Red Hat Enterprise Linux ES release 4 (Nahant Update 1) [bdubbs@s1 ~]$ uname -a Linux s1.satlug.org 2.6.9-11.EL #1 Fri May 20 18:17:57 EDT 2005 i686 athlon i386 GNU/Linux [bdubbs@s1 ~]$ sudo /sbin/fdisk -l /dev/hda Disk /dev/hda: 80.0 GB, 80026361856 bytes 255 heads, 63 sectors/track, 9729 cylinders Units = cylinders of 16065 * 512 = 8225280 bytes Device Boot Start End Blocks Id System /dev/hda1 * 1 13 104391 83 Linux /dev/hda2 14 274 2096482+ 83 Linux /dev/hda3 275 405 1052257+ 82 Linux swap /dev/hda4 406 9729 74895030 5 Extended /dev/hda5 406 9729 74894998+ 83 Linux [bdubbs@s1 ~]$ sudo /sbin/fdisk -l /dev/hdc Disk /dev/hdc: 80.0 GB, 80026361856 bytes 255 heads, 63 sectors/track, 9729 cylinders Units = cylinders of 16065 * 512 = 8225280 bytes Device Boot Start End Blocks Id System /dev/hdc1 * 1 9729 78148161 83 Linux [bdubbs@s1 ~]$ cat /proc/cpuinfo processor : 0 vendor_id : AuthenticAMD cpu family : 15 model : 47 model name : AMD Athlon(tm) 64 Processor 3000+ stepping : 0 cpu MHz : 1803.159 cache size : 512 KB fdiv_bug : no hlt_bug : no f00f_bug : no coma_bug : no fpu : yes fpu_exception : yes cpuid level : 1 wp : yes flags : fpu vme de pse tsc msr pae mce cx8 apic mtrr pge mca cmov pat pse36 clflush mmx fxsr sse sse2 syscall nx mmxext lm 3dnowext 3dnow pni bogomips : 3530.75 [bdubbs@s1 ~]$ sudo /sbin/lspci 00:00.0 Host bridge: VIA Technologies, Inc. K8T800Pro Host Bridge 00:00.1 Host bridge: VIA Technologies, Inc. K8T800Pro Host Bridge 00:00.2 Host bridge: VIA Technologies, Inc. K8T800Pro Host Bridge 00:00.3 Host bridge: VIA Technologies, Inc. K8T800Pro Host Bridge 00:00.4 Host bridge: VIA Technologies, Inc. K8T800Pro Host Bridge 00:00.7 Host bridge: VIA Technologies, Inc. K8T800Pro Host Bridge 00:01.0 PCI bridge: VIA Technologies, Inc. VT8237 PCI bridge [K8T800/K8T890 South] 00:09.0 Ethernet controller: Intel Corporation 82557/8/9 [Ethernet Pro 100] (rev 0c) 00:0f.0 RAID bus controller: VIA Technologies, Inc. VIA VT6420 SATA RAID Controller (rev 80) 00:0f.1 IDE interface: VIA Technologies, Inc. VT82C586A/B/VT82C686/A/B/VT823x/A/C PIPC Bus Master IDE (rev 06) 00:10.0 USB Controller: VIA Technologies, Inc. VT82xxxxx UHCI USB 1.1 Controller (rev 81) 00:10.1 USB Controller: VIA Technologies, Inc. VT82xxxxx UHCI USB 1.1 Controller (rev 81) 00:10.2 USB Controller: VIA Technologies, Inc. VT82xxxxx UHCI USB 1.1 Controller (rev 81) 00:10.3 USB Controller: VIA Technologies, Inc. VT82xxxxx UHCI USB 1.1 Controller (rev 81) 00:10.4 USB Controller: VIA Technologies, Inc. USB 2.0 (rev 86) 00:11.0 ISA bridge: VIA Technologies, Inc. VT8237 ISA bridge [KT600/K8T800/K8T890 South] 00:18.0 Host bridge: Advanced Micro Devices [AMD] K8 [Athlon64/Opteron] HyperTransport Technology Configuration 00:18.1 Host bridge: Advanced Micro Devices [AMD] K8 [Athlon64/Opteron] Address Map 00:18.2 Host bridge: Advanced Micro Devices [AMD] K8 [Athlon64/Opteron] DRAM Controller 00:18.3 Host bridge: Advanced Micro Devices [AMD] K8 [Athlon64/Opteron] Miscellaneous Control 01:00.0 VGA compatible controller: ATI Technologies Inc Radeon RV100 QY [Radeon 7000/VE] [bdubbs@s1 ~]$ df -h Filesystem Size Used Avail Use% Mounted on /dev/hda5 71G 1.2G 66G 2% / /dev/hda1 99M 8.5M 86M 10% /boot none 506M 0 506M 0% /dev/shm /dev/hdc1 74G 85M 70G 1% /mnt/drive2 /dev/hda2 2.0G 36M 1.9G 2% /tmp From cgaryc at sprintpcs.com Thu Dec 1 16:28:47 2005 From: cgaryc at sprintpcs.com (Gary Carpenter) Date: Thu Dec 1 16:01:26 2005 Subject: [SATLUG] sorry Message-ID: <006f01c5f6c6$98cd8350$6401a8c0@gary2> I appologize to everyone who reads the satlug email for bringing up the web site. I am new. Please forgive me. Gary Carpenter PO Box 831788 San Antonio, TX 78283-1788 (210) 887-8756 cgaryc@sprintpcs.com From scarolan at gmail.com Thu Dec 1 16:34:15 2005 From: scarolan at gmail.com (Sean Carolan) Date: Thu Dec 1 16:06:41 2005 Subject: [SATLUG] Access Point Problems Message-ID: <277020fc0512011434q746cf8e7kadae4c70d2ff667d@mail.gmail.com> Greetings friends: Wondering if any of you have some pointers on how to get our access point working. Here's the situation: We have a new WPN802 Netgear wireless access point. We have assigned it an IP address, and put in the following information for DNS, subnet, etc: IP Address: 192.168.1.99 Subnet: 255.255.255.0 Default Gateway: 192.168.1.1 DNS Server: 192.168.1.1 192.168.1.1 is our router/firewall which also serves as a local dns server for the rest of our network. All the other computers on our network are doing fine with TCP/IP settings like the above. Now when we try to connect a wireless laptop to the access point, it appears to come up but we are unable to ping or access any of the other computers on the network, including the router itself. Any pointers? We are trying to use fixed ip addresses on the same subnet, with the same settings as above to get connected. thanks Sean From geoff at w5omr.shacknet.nu Thu Dec 1 16:39:08 2005 From: geoff at w5omr.shacknet.nu (Geoff) Date: Thu Dec 1 16:11:41 2005 Subject: [SATLUG] sorry In-Reply-To: <006f01c5f6c6$98cd8350$6401a8c0@gary2> References: <006f01c5f6c6$98cd8350$6401a8c0@gary2> Message-ID: <438F7B8C.5080105@w5omr.shacknet.nu> Gary Carpenter wrote: >I appologize to everyone who reads the satlug email for bringing up the web site. I am new. Please forgive me. > Not your fault, Gary. It's been an issue within the SATLUG community at -least- since I joined, in 2001. I'm glad to see that it's being resolved! (YIPPEE!!)) -Geoff From lblodgett at macosx.com Thu Dec 1 16:53:28 2005 From: lblodgett at macosx.com (Larry Blodgett) Date: Thu Dec 1 16:26:27 2005 Subject: [SATLUG] New Server is available (but not set up) In-Reply-To: <438F67A8.5040903@swbell.net> References: <438F67A8.5040903@swbell.net> Message-ID: The RHES4 is a good system and should be perfectly adequate to do everything SATLUG would require. I agree we need to cut down on some of the unneeded processes. Even though most of my experience is with SUSE. I am very confident we have lots of people who are RedHat experts and will flood the list with RedHat recommendations. I am excited about this new server and I believe it will be a big boost for SATLUG. Just my 2 cents. Larry Blodgett On Dec 1, 2005, at 3:14 PM, Bruce Dubbs wrote: > I now have the new server available thanks to Rackspace and especially > tweeks. > > Does anyone know how SATLUG is set up in the DNS system? How do we > change the ip address for the server? Who do I contact? > > The system is running RHES4. I'd like to throw open the discussion on > exactly how to proceed. As a lot of you know, my preference is for a > LinuxFromScratch system and I could build that up in about a day. > However, this is a SATLUG server and what is running really needs to be > a group decision. > > Right now, without anything set up, the RHES system has 74 processes > active. On my LFS server that hosts ftp/http packages for public > access, I have 49 processes running (and I know what ALL of them do). > To me that is more secure. > > We could also load another distro if we decide that is best. > > To start out, the main processes needed are apache, mailman, and a mail > transport agent. Other processes are admin and security related. > > What are your thoughts? > > -- Bruce > > > ========================================== > > Here are the specifics: > > [bdubbs@s1 ~]$ cat /etc/redhat-release > Red Hat Enterprise Linux ES release 4 (Nahant Update 1) > > [bdubbs@s1 ~]$ uname -a > Linux s1.satlug.org 2.6.9-11.EL #1 Fri May 20 18:17:57 EDT 2005 i686 > athlon i386 GNU/Linux > [bdubbs@s1 ~]$ sudo /sbin/fdisk -l /dev/hda > > Disk /dev/hda: 80.0 GB, 80026361856 bytes > 255 heads, 63 sectors/track, 9729 cylinders > Units = cylinders of 16065 * 512 = 8225280 bytes > > Device Boot Start End Blocks Id System > /dev/hda1 * 1 13 104391 83 Linux > /dev/hda2 14 274 2096482+ 83 Linux > /dev/hda3 275 405 1052257+ 82 Linux swap > /dev/hda4 406 9729 74895030 5 Extended > /dev/hda5 406 9729 74894998+ 83 Linux > [bdubbs@s1 ~]$ sudo /sbin/fdisk -l /dev/hdc > > Disk /dev/hdc: 80.0 GB, 80026361856 bytes > 255 heads, 63 sectors/track, 9729 cylinders > Units = cylinders of 16065 * 512 = 8225280 bytes > > Device Boot Start End Blocks Id System > /dev/hdc1 * 1 9729 78148161 83 Linux > > [bdubbs@s1 ~]$ cat /proc/cpuinfo > processor : 0 > vendor_id : AuthenticAMD > cpu family : 15 > model : 47 > model name : AMD Athlon(tm) 64 Processor 3000+ > stepping : 0 > cpu MHz : 1803.159 > cache size : 512 KB > fdiv_bug : no > hlt_bug : no > f00f_bug : no > coma_bug : no > fpu : yes > fpu_exception : yes > cpuid level : 1 > wp : yes > flags : fpu vme de pse tsc msr pae mce cx8 apic mtrr pge mca > cmov pat pse36 clflush mmx fxsr sse sse2 syscall nx mmxext lm 3dnowext > 3dnow pni > bogomips : 3530.75 > > [bdubbs@s1 ~]$ sudo /sbin/lspci > 00:00.0 Host bridge: VIA Technologies, Inc. K8T800Pro Host Bridge > 00:00.1 Host bridge: VIA Technologies, Inc. K8T800Pro Host Bridge > 00:00.2 Host bridge: VIA Technologies, Inc. K8T800Pro Host Bridge > 00:00.3 Host bridge: VIA Technologies, Inc. K8T800Pro Host Bridge > 00:00.4 Host bridge: VIA Technologies, Inc. K8T800Pro Host Bridge > 00:00.7 Host bridge: VIA Technologies, Inc. K8T800Pro Host Bridge > 00:01.0 PCI bridge: VIA Technologies, Inc. VT8237 PCI bridge > [K8T800/K8T890 South] > 00:09.0 Ethernet controller: Intel Corporation 82557/8/9 [Ethernet Pro > 100] (rev 0c) > 00:0f.0 RAID bus controller: VIA Technologies, Inc. VIA VT6420 SATA > RAID > Controller (rev 80) > 00:0f.1 IDE interface: VIA Technologies, Inc. > VT82C586A/B/VT82C686/A/B/VT823x/A/C PIPC Bus Master IDE (rev 06) > 00:10.0 USB Controller: VIA Technologies, Inc. VT82xxxxx UHCI USB 1.1 > Controller (rev 81) > 00:10.1 USB Controller: VIA Technologies, Inc. VT82xxxxx UHCI USB 1.1 > Controller (rev 81) > 00:10.2 USB Controller: VIA Technologies, Inc. VT82xxxxx UHCI USB 1.1 > Controller (rev 81) > 00:10.3 USB Controller: VIA Technologies, Inc. VT82xxxxx UHCI USB 1.1 > Controller (rev 81) > 00:10.4 USB Controller: VIA Technologies, Inc. USB 2.0 (rev 86) > 00:11.0 ISA bridge: VIA Technologies, Inc. VT8237 ISA bridge > [KT600/K8T800/K8T890 South] > 00:18.0 Host bridge: Advanced Micro Devices [AMD] K8 [Athlon64/Opteron] > HyperTransport Technology Configuration > 00:18.1 Host bridge: Advanced Micro Devices [AMD] K8 [Athlon64/Opteron] > Address Map > 00:18.2 Host bridge: Advanced Micro Devices [AMD] K8 [Athlon64/Opteron] > DRAM Controller > 00:18.3 Host bridge: Advanced Micro Devices [AMD] K8 [Athlon64/Opteron] > Miscellaneous Control > 01:00.0 VGA compatible controller: ATI Technologies Inc Radeon RV100 QY > [Radeon 7000/VE] > > [bdubbs@s1 ~]$ df -h > Filesystem Size Used Avail Use% Mounted on > /dev/hda5 71G 1.2G 66G 2% / > /dev/hda1 99M 8.5M 86M 10% /boot > none 506M 0 506M 0% /dev/shm > /dev/hdc1 74G 85M 70G 1% /mnt/drive2 > /dev/hda2 2.0G 36M 1.9G 2% /tmp > _______________________________________________ > SATLUG mailing list > SATLUG@satlug.org > http://alamo.satlug.org/mailman/listinfo/satlug > From lblodgett at macosx.com Thu Dec 1 17:03:07 2005 From: lblodgett at macosx.com (Larry Blodgett) Date: Thu Dec 1 16:35:33 2005 Subject: [SATLUG] Access Point Problems In-Reply-To: <277020fc0512011434q746cf8e7kadae4c70d2ff667d@mail.gmail.com> References: <277020fc0512011434q746cf8e7kadae4c70d2ff667d@mail.gmail.com> Message-ID: Is the laptop acquiring the proper address (192.168.1.something)? Or is the fixed ip address in that range? Have you tried going to the command line and typing ipconfig (M$) or ifconfig (linux or unix)? What is the laptop operating system? I know this is probably a silly question when talking to a bunch of Linux people. Laptops are sometimes problematic for those of us who are not experts. These are just a few ideas. Larry Blodgett On Dec 1, 2005, at 4:34 PM, Sean Carolan wrote: > Greetings friends: > > Wondering if any of you have some pointers on how to get our access > point working. Here's the situation: > > We have a new WPN802 Netgear wireless access point. We have assigned > it an IP address, and put in the following information for DNS, > subnet, etc: > > IP Address: 192.168.1.99 > Subnet: 255.255.255.0 > Default Gateway: 192.168.1.1 > DNS Server: 192.168.1.1 > > 192.168.1.1 is our router/firewall which also serves as a local dns > server for the rest of our network. All the other computers on our > network are doing fine with TCP/IP settings like the above. > > Now when we try to connect a wireless laptop to the access point, it > appears to come up but we are unable to ping or access any of the > other computers on the network, including the router itself. Any > pointers? We are trying to use fixed ip addresses on the same subnet, > with the same settings as above to get connected. > > thanks > > Sean > _______________________________________________ > SATLUG mailing list > SATLUG@satlug.org > http://alamo.satlug.org/mailman/listinfo/satlug > From zeb.fletcher at gmail.com Thu Dec 1 17:28:05 2005 From: zeb.fletcher at gmail.com (Zeb Fletcher) Date: Thu Dec 1 17:00:32 2005 Subject: [SATLUG] Access Point Problems In-Reply-To: References: <277020fc0512011434q746cf8e7kadae4c70d2ff667d@mail.gmail.com> Message-ID: <128bff2f0512011528v33d0845dy2549f3f54747cc4d@mail.gmail.com> Somehting else along the line of what Larry is saying check to make sure the wireless is configured correctly on the laptops such as the SSID and WEP key. You can have the SSID right but if the WEP is wrong you will see the Network but not connect. If on Linux use iwconfig to check the encryption key and SSID. Windows it will depend if MS is controlling the card or if your using a third party software. Zeb On 12/1/05, Larry Blodgett wrote: > > Is the laptop acquiring the proper address (192.168.1.something)? > Or is the fixed ip address in that range? > > Have you tried going to the command line and typing ipconfig (M$) or > ifconfig (linux or unix)? > What is the laptop operating system? I know this is probably a silly > question when talking to a bunch of Linux people. > > Laptops are sometimes problematic for those of us who are not experts. > > These are just a few ideas. > > Larry Blodgett > > On Dec 1, 2005, at 4:34 PM, Sean Carolan wrote: > > > Greetings friends: > > > > Wondering if any of you have some pointers on how to get our access > > point working. Here's the situation: > > > > We have a new WPN802 Netgear wireless access point. We have assigned > > it an IP address, and put in the following information for DNS, > > subnet, etc: > > > > IP Address: 192.168.1.99 > > Subnet: 255.255.255.0 > > Default Gateway: 192.168.1.1 > > DNS Server: 192.168.1.1 > > > > 192.168.1.1 is our router/firewall which also serves as a local dns > > server for the rest of our network. All the other computers on our > > network are doing fine with TCP/IP settings like the above. > > > > Now when we try to connect a wireless laptop to the access point, it > > appears to come up but we are unable to ping or access any of the > > other computers on the network, including the router itself. Any > > pointers? We are trying to use fixed ip addresses on the same subnet, > > with the same settings as above to get connected. > > > > thanks > > > > Sean > > _______________________________________________ > > SATLUG mailing list > > SATLUG@satlug.org > > http://alamo.satlug.org/mailman/listinfo/satlug > > > > _______________________________________________ > SATLUG mailing list > SATLUG@satlug.org > http://alamo.satlug.org/mailman/listinfo/satlug > From nman64 at n-man.com Thu Dec 1 17:48:43 2005 From: nman64 at n-man.com (Patrick Barnes) Date: Thu Dec 1 17:21:08 2005 Subject: [SATLUG] New Server is available (but not set up) In-Reply-To: <438F67A8.5040903@swbell.net> References: <438F67A8.5040903@swbell.net> Message-ID: <438F8BDB.9020904@n-man.com> Bruce Dubbs wrote: > I now have the new server available thanks to Rackspace and especially > tweeks. > > Does anyone know how SATLUG is set up in the DNS system? How do we > change the ip address for the server? Who do I contact? > > The system is running RHES4. I'd like to throw open the discussion on > exactly how to proceed. As a lot of you know, my preference is for a > LinuxFromScratch system and I could build that up in about a day. > However, this is a SATLUG server and what is running really needs to be > a group decision. > > Right now, without anything set up, the RHES system has 74 processes > active. On my LFS server that hosts ftp/http packages for public > access, I have 49 processes running (and I know what ALL of them do). > To me that is more secure. > > We could also load another distro if we decide that is best. > > To start out, the main processes needed are apache, mailman, and a mail > transport agent. Other processes are admin and security related. > > What are your thoughts? > > -- Bruce > I think RHES4 will work nicely. I work with Fedora, so that's only a very small degree of separation from what I'm used to. :-) -- Patrick "The N-Man" Barnes nman64@n-man.com www.n-man.com -- From afcasta at texas.net Thu Dec 1 18:46:49 2005 From: afcasta at texas.net (Al Castanoli) Date: Thu Dec 1 18:19:08 2005 Subject: [SATLUG] New Server is available (but not set up) In-Reply-To: <438F67A8.5040903@swbell.net> References: <438F67A8.5040903@swbell.net> Message-ID: <1133484409.7737.12.camel@shoebox.satx.rr.com> On Thu, 2005-12-01 at 15:14 -0600, Bruce Dubbs wrote: > I now have the new server available thanks to Rackspace and especially > tweeks. I'm glad a decision was finally made on a new server, and thanks to Rackspace, probably a reliable one. > Does anyone know how SATLUG is set up in the DNS system? How do we > change the ip address for the server? Who do I contact? http://www.pir.org/whois_search is where you go to check out .org domains. Chuck Tetlow has satlug.org set up as: Tech Email: chuck.tetlow@gmail.com Name Server: DNS1.URDIRECT.NET Name Server: DNS2.URDIRECT.NET Name Server: DNS17.REGISTER.COM > The system is running RHES4. I'd like to throw open the discussion on > exactly how to proceed. As a lot of you know, my preference is for a > LinuxFromScratch system and I could build that up in about a day. > However, this is a SATLUG server and what is running really needs to be > a group decision. I'd like to recommend scientific linux. It's taken from RHEL4 and repackaged as open source. It's maintained mainly by fermilab, and I've been using it for various functions for about 4 months. I prefer SuSE on my desktop, but scientific linux works great on my server. http://www.scientificlinux.org/ > Right now, without anything set up, the RHES system has 74 processes > active. On my LFS server that hosts ftp/http packages for public > access, I have 49 processes running (and I know what ALL of them do). > To me that is more secure. Any distro will have a number of processes started up by default that we wouldn't necessarily want running. With the RedHat variants, chkconfig is an easy way to stop them from starting up at boot and chkconfig runs from the command line. > We could also load another distro if we decide that is best. > > To start out, the main processes needed are apache, mailman, and a mail > transport agent. Other processes are admin and security related. > > What are your thoughts? I'd be glad to help if you need it setting up the box. It looks like my extensive traveling days are over, and I'm building our new systems here in San Antonio and shipping them out rather than doing fly aways. Regards, Al Castanoli From bdubbs at swbell.net Thu Dec 1 19:13:56 2005 From: bdubbs at swbell.net (Bruce Dubbs) Date: Thu Dec 1 18:46:27 2005 Subject: [SATLUG] New Server is available (but not set up) In-Reply-To: <1133484409.7737.12.camel@shoebox.satx.rr.com> References: <438F67A8.5040903@swbell.net> <1133484409.7737.12.camel@shoebox.satx.rr.com> Message-ID: <438F9FD4.6020407@swbell.net> Al Castanoli wrote: > On Thu, 2005-12-01 at 15:14 -0600, Bruce Dubbs wrote: >>Does anyone know how SATLUG is set up in the DNS system? How do we >>change the ip address for the server? Who do I contact? > > http://www.pir.org/whois_search is where you go to check out .org > domains. Chuck Tetlow has satlug.org set up as: > > Tech Email: chuck.tetlow@gmail.com > Name Server: DNS1.URDIRECT.NET > Name Server: DNS2.URDIRECT.NET > Name Server: DNS17.REGISTER.COM Thanks. I thought of that after I posted the message. I have contacted Chuck and am waiting for a reply. -- Bruce From tweeksjunk2 at theweeks.org Thu Dec 1 20:28:42 2005 From: tweeksjunk2 at theweeks.org (Tom Weeks) Date: Thu Dec 1 20:01:09 2005 Subject: [SATLUG] The web page In-Reply-To: <438EA5FE.1020603@swbell.net> References: <89984D907655BE42BC70B5C334497F5602D1CF14@SA1EMS2.worldsavings.com> <200511302313.00073.tweeksjunk2@theweeks.org> <438EA5FE.1020603@swbell.net> Message-ID: <200512012028.43619.tweeksjunk2@theweeks.org> On Thursday 01 December 2005 01:27, Bruce Dubbs wrote: > Tom Weeks wrote: > > My only suggestion is to stay away from PHP based solutions.. Too many > > vulnerabilities. > > I've not heard much about this. Are you saying that the language is > inherently vulnerable or that the people who use php don't know how to > do it securely? It's a little of both... Some actual PHP problems: http://cve.mitre.org/cgi-bin/cvekey.cgi?keyword=CAN-2004-1018 http://cve.mitre.org/cgi-bin/cvekey.cgi?keyword=CAN-2004-1063 http://cve.mitre.org/cgi-bin/cvekey.cgi?keyword=CAN-2004-1064 with more detailed in overview link below... As for poor PHP App programming, vulnerable PHP web suites is one of the biggest ways, nowadays, that active content web servers are being hacked. Rackspace saw a rash of hacked phpBB sites due to the inherent vulnerabilities of that particular suite. Other PHP based community packages such as vBulletin and CivicSpace also have major vulnerabilities. But phpBB is particularly famous for very sloppy and insecure coding (in code like nor infamous viewtopic.php and auth.php code). > Do you have any references? Here's a good overview of some of the PHP package attack vector highlights from this year: http://www.cert-in.org.in/advisory/ciad-2005-07.htm Just be careful, research the security of the various community portals or CMS suites that you're looking at, including the security history of each. You might also want to ask your Rackspace support team which packages that they've seen the most customer success with, as well as those with the most compromises. Tweeks From agoetz at weblings.net Thu Dec 1 21:14:25 2005 From: agoetz at weblings.net (Andrew D. Goetz) Date: Thu Dec 1 20:46:52 2005 Subject: [SATLUG] PHP In-Reply-To: <3759.208.191.194.198.1133453148.squirrel@208.191.194.198> References: <438F1B27.1040908@cis.sac.accd.edu> <5d2c67c9242e2c4fe950ca73ffc02c86@gmail.com> <3759.208.191.194.198.1133453148.squirrel@208.191.194.198> Message-ID: <4D343478-844D-4320-92F0-F2DD66582492@weblings.net> Sounds like fun to me. I am definitely not a PHP god, but I use it enough that I feel I could share some information and facilitate discussion. I'm leaving town on Dec. 22, so; if I'm to participate, it would have to be before then. It looks like a couple of people would prefer that it not be on Friday or Saturday, so I'd be fine with a weekday. Perhaps a couple of weekdays between Dec. 12-16th? Thanks, Andrew On Dec 1, 2005, at 10:05 AM, Eli wrote: > I recommend Art Sexton & Andrew Goetz in addition to whomever. I work > with these guys all the time. They might not be "php godz", but > they do > have solid experience and are bright guys in general. > > :) > > Eli > > > > > >> On Dec 1, 2005, at 9:47 AM, steve kolars wrote: >> >>> There seem to be a few people on the list that have some good >>> experience >>> in PHP. During the Christmas Break our classrooms sit empty >>> (December >>> 12 - Jamurary 7). I suggest we have a informal PHP brain session a >>> day, >>> or two, during this time period. We could meet for a couple of >>> nights, >>> a Friday and Saturday, a couple of Saturdays, ... >>> >>> This could be a great opportunity for some people with real >>> knowledge >>> in >>> this area to share. I am interested in all we can learn about the >>> vulnerabilities. I am also interested in good vs bad practises >>> in PHP >>> programming. >>> >> >> That would be awesome. I am a noob when it comes to writing PHP/ >> MySQL. >> Going through tutorials, gets really confusing sometimes. Please, >> somebody, take him up on this. I'll even buy dinner for the one who >> volunteers. ;^D >> >>> Any Takers??? >>> >>> The sessions could be very informal--you do not have to prepare a >>> formal >>> presentation. People that would like to lead a discussion please >>> suggest a date and time. >> >> PHP-kenobi, you're our only hope... >> >> >> >> -Nate >> >> _______________________________________________ >> SATLUG mailing list >> SATLUG@satlug.org >> http://alamo.satlug.org/mailman/listinfo/satlug >> > > From sbender at humana.com Fri Dec 2 06:50:58 2005 From: sbender at humana.com (Shawn Bender) Date: Fri Dec 2 06:23:47 2005 Subject: [SATLUG] sorry In-Reply-To: <006f01c5f6c6$98cd8350$6401a8c0@gary2> Message-ID: Not your fault Gary, I did the same just a month or 2 ago. It started a big war. That was why I laughed. Shawn Gary Carpenter Sent by: satlug-bounces@satlug.org 12/01/2005 04:28 PM Please respond to "The San Antonio Linux User's Group Mailing List" To SATLUG cc Subject [SATLUG] sorry I appologize to everyone who reads the satlug email for bringing up the web site. I am new. Please forgive me. Gary Carpenter PO Box 831788 San Antonio, TX 78283-1788 (210) 887-8756 cgaryc@sprintpcs.com _______________________________________________ SATLUG mailing list SATLUG@satlug.org http://alamo.satlug.org/mailman/listinfo/satlug The information transmitted is intended only for the person or entity to which it is addressed and may contain CONFIDENTIAL material. If you receive this material/information in error, please contact the sender and delete or destroy the material/information. From scarolan at gmail.com Fri Dec 2 09:32:10 2005 From: scarolan at gmail.com (Sean Carolan) Date: Fri Dec 2 09:04:34 2005 Subject: [SATLUG] Access Point Problems In-Reply-To: <128bff2f0512011528v33d0845dy2549f3f54747cc4d@mail.gmail.com> References: <277020fc0512011434q746cf8e7kadae4c70d2ff667d@mail.gmail.com> <128bff2f0512011528v33d0845dy2549f3f54747cc4d@mail.gmail.com> Message-ID: <277020fc0512020732g6c845042rb20e682f213daa2d@mail.gmail.com> On 12/1/05, Zeb Fletcher wrote: > Somehting else along the line of what Larry is saying check to make sure the > wireless is configured correctly on the laptops such as the SSID and WEP > key. You can have the SSID right but if the WEP is wrong you will see the > Network but not connect. If on Linux use iwconfig to check the encryption > key and SSID. Windows it will depend if MS is controlling the card or if > your using a third party software. > > THanks for the tips guys, we are trying to get it working without any WEP first. The SSID is correct, IP addresses are all correct and on the same subnet. From my laptop I can run: iwscan list And I get a good, strong signal. Not sure why it's not working. From rhewitt at grandecom.net Fri Dec 2 10:28:35 2005 From: rhewitt at grandecom.net (Robert J Hewitt) Date: Fri Dec 2 10:01:58 2005 Subject: [SATLUG] Devil Linux Message-ID: <001301c5f75d$71bfc6a0$0501a8c0@piv2400mhz> Does anybody here have any working knowledge of Devil Linux I need some help in configuring it for my network RObert rhewitt@grandecom.net From skolars at cis.sac.accd.edu Fri Dec 2 10:35:03 2005 From: skolars at cis.sac.accd.edu (steve kolars) Date: Fri Dec 2 10:06:28 2005 Subject: [SATLUG] PHP In-Reply-To: <4D343478-844D-4320-92F0-F2DD66582492@weblings.net> References: <438F1B27.1040908@cis.sac.accd.edu> <5d2c67c9242e2c4fe950ca73ffc02c86@gmail.com> <3759.208.191.194.198.1133453148.squirrel@208.191.194.198> <4D343478-844D-4320-92F0-F2DD66582492@weblings.net> Message-ID: <439077B7.1040702@cis.sac.accd.edu> Andrew D. Goetz wrote: > Sounds like fun to me. I am definitely not a PHP god, but I use it > enough that I feel I could share some information and facilitate > discussion. I'm leaving town on Dec. 22, so; if I'm to participate, > it would have to be before then. It looks like a couple of people > would prefer that it not be on Friday or Saturday, so I'd be fine > with a weekday. Perhaps a couple of weekdays between Dec. 12-16th? > > Thanks, > Andrew > If you wish to lead one of the discussions you get to set the date. > On Dec 1, 2005, at 10:05 AM, Eli wrote: > >> I recommend Art Sexton & Andrew Goetz in addition to whomever. I work >> with these guys all the time. They might not be "php godz", but >> they do >> have solid experience and are bright guys in general. >> >> :) >> >> Eli >> >> >> >> >> >>> On Dec 1, 2005, at 9:47 AM, steve kolars wrote: >>> >>>> There seem to be a few people on the list that have some good >>>> experience >>>> in PHP. During the Christmas Break our classrooms sit empty >>>> (December >>>> 12 - Jamurary 7). I suggest we have a informal PHP brain session a >>>> day, >>>> or two, during this time period. We could meet for a couple of >>>> nights, >>>> a Friday and Saturday, a couple of Saturdays, ... >>>> >>>> This could be a great opportunity for some people with real knowledge >>>> in >>>> this area to share. I am interested in all we can learn about the >>>> vulnerabilities. I am also interested in good vs bad practises in >>>> PHP >>>> programming. >>>> >>> >>> That would be awesome. I am a noob when it comes to writing PHP/ MySQL. >>> Going through tutorials, gets really confusing sometimes. Please, >>> somebody, take him up on this. I'll even buy dinner for the one who >>> volunteers. ;^D >>> >>>> Any Takers??? >>>> >>>> The sessions could be very informal--you do not have to prepare a >>>> formal >>>> presentation. People that would like to lead a discussion please >>>> suggest a date and time. >>> >>> PHP-kenobi, you're our only hope... >>> >>> >>> >>> -Nate >>> >>> _______________________________________________ >>> SATLUG mailing list >>> SATLUG@satlug.org >>> http://alamo.satlug.org/mailman/listinfo/satlug >>> >> >> > > _______________________________________________ > SATLUG mailing list > SATLUG@satlug.org > http://alamo.satlug.org/mailman/listinfo/satlug > > From scarolan at gmail.com Fri Dec 2 11:18:53 2005 From: scarolan at gmail.com (Sean Carolan) Date: Fri Dec 2 10:51:19 2005 Subject: [SATLUG] Access Point Problems In-Reply-To: <277020fc0512020732g6c845042rb20e682f213daa2d@mail.gmail.com> References: <277020fc0512011434q746cf8e7kadae4c70d2ff667d@mail.gmail.com> <128bff2f0512011528v33d0845dy2549f3f54747cc4d@mail.gmail.com> <277020fc0512020732g6c845042rb20e682f213daa2d@mail.gmail.com> Message-ID: <277020fc0512020918q3b06301ewb6b3c734a015dfae@mail.gmail.com> > > THanks for the tips guys, we are trying to get it working without any > WEP first. The SSID is correct, IP addresses are all correct and on > the same subnet. From my laptop I can run: > > iwscan list > > And I get a good, strong signal. Not sure why it's not working. > FYI - we are using (or trying to use) static IP addresses with this wireless connection. When I run: ifup wlan0 it comes up, but cannot browse or ping any ip addresses. From scs at wireweb.net Fri Dec 2 11:40:45 2005 From: scs at wireweb.net (scs@wireweb.net) Date: Fri Dec 2 11:15:29 2005 Subject: [SATLUG] Devil Linux Message-ID: <2bf8f8ea0ab74dbb92a8b522b4bd2618.scs@wireweb.net> --> www.xcssa.org --> xcssa resource links --> xcssa files --> SHO Firewall Tom gave a great presentation on choice and implementation of Devil Linux. His book " Linux Toys II " would be a good stocking stuffer for yourself. Enjoy. ----- Original Message ----- From: Robert J Hewitt <> > Does anybody here have any working knowledge of Devil Linux I need some help in configuring it for my network <> From wmail at wricomp.com Fri Dec 2 13:19:57 2005 From: wmail at wricomp.com (Don Wright) Date: Fri Dec 2 12:52:39 2005 Subject: [SATLUG] Access Point Problems In-Reply-To: <277020fc0512020918q3b06301ewb6b3c734a015dfae@mail.gmail.com> References: <277020fc0512011434q746cf8e7kadae4c70d2ff667d@mail.gmail.com> <128bff2f0512011528v33d0845dy2549f3f54747cc4d@mail.gmail.com> <277020fc0512020732g6c845042rb20e682f213daa2d@mail.gmail.com> <277020fc0512020918q3b06301ewb6b3c734a015dfae@mail.gmail.com> Message-ID: On Fri, 2 Dec 2005 11:18:53 -0600, Sean Carolan wrote: >FYI - we are using (or trying to use) static IP addresses with this >wireless connection. When I run: > >ifup wlan0 > >it comes up, but cannot browse or ping any ip addresses. What's the result of netstat -nr? How about just plain ifconfig to show all the interfaces? Sounds like IP traffic isn't getting to your wlan0. Let's think what else is in the protocol stack. IP security (hosts deny, etc.)? Firewall? SELinux? So many ways to block connections from the Big Bad Internet it's a wonder anything gets through. --Don -- Sony/BMG - where the music steals the computer. From J at JVPappas.net Fri Dec 2 17:55:10 2005 From: J at JVPappas.net (John Pappas) Date: Fri Dec 2 17:27:35 2005 Subject: [SATLUG] Access Point Problems In-Reply-To: <277020fc0512020918q3b06301ewb6b3c734a015dfae@mail.gmail.com> References: <277020fc0512011434q746cf8e7kadae4c70d2ff667d@mail.gmail.com> <128bff2f0512011528v33d0845dy2549f3f54747cc4d@mail.gmail.com> <277020fc0512020732g6c845042rb20e682f213daa2d@mail.gmail.com> <277020fc0512020918q3b06301ewb6b3c734a015dfae@mail.gmail.com> Message-ID: <1133567711.11453.7.camel@spook.jvpappas.net> Can you send the output of: iwconfig wlan0;ifconfig wlan0; cat ifcfg-wlan0 ? We can take a swing and see if we can figure this one out. On Fri, 2005-12-02 at 11:18 -0600, Sean Carolan wrote: > > > > THanks for the tips guys, we are trying to get it working without any > > WEP first. The SSID is correct, IP addresses are all correct and on > > the same subnet. From my laptop I can run: > > > > iwscan list > > > > And I get a good, strong signal. Not sure why it's not working. > > > > FYI - we are using (or trying to use) static IP addresses with this > wireless connection. When I run: > > ifup wlan0 > > it comes up, but cannot browse or ping any ip addresses. > _______________________________________________ > SATLUG mailing list > SATLUG@satlug.org > http://alamo.satlug.org/mailman/listinfo/satlug From cgaryc at sprintpcs.com Fri Dec 2 19:56:17 2005 From: cgaryc at sprintpcs.com (Gary Carpenter) Date: Fri Dec 2 19:28:55 2005 Subject: [SATLUG] Samba Problems Message-ID: <000e01c5f7ac$c03ee4b0$6401a8c0@gary2> I'm using ubuntu 5.10 Breezy. I also use samba. When I share the printer on the Linux machine I can't print unless I login to a shared folder on the Linux box first. Printing is slow and unreliable. If I share the printer on a windows machine, printing is fast for all windows machines but, the Linux box starts to print (I even hear the printer clunk) but nothing comes out and the print queue in windows is hung with the job from the Linux box. I can't delete the print job, it just stays there. Now all the print jobs are stuck behind it. Printing is faster and more reliable with the printer connected to the windows machine. I would like to share it this way and be able to print from the Linux box. How do I cure this "hung print queue thing"? Gary Carpenter PO Box 831788 San Antonio, TX 78283-1788 (210) 887-8756 cgaryc@sprintpcs.com From gandor at sga.dyndns.org Fri Dec 2 20:26:47 2005 From: gandor at sga.dyndns.org (gandor) Date: Fri Dec 2 19:46:33 2005 Subject: [SATLUG] problems with dhcp/tftp/ltsp ofter suse 9.3 upgrage to suse 10 Message-ID: <43910267.b9.2506.1194432948@sga.dyndns.org> mybe i shouldnt have done this but i did it any way i upgraded dron suse 9.3 to suse 10. most everything went very well except i cant get LTSP working now. dhcpd is sending the PXE clients an ip address and the client is exceping the address but when it gets to the tftp i run into problems here is the log out put Dec 2 20:18:30 linux dhcpd: DHCPDISCOVER from 00:06:5b:31:65:f6 via eth0 Dec 2 20:18:31 linux dhcpd: DHCPOFFER on 10.160.1.250 to 00:06:5b:31:65:f6 via eth0 Dec 2 20:18:32 linux dhcpd: DHCPREQUEST for 10.160.1.250 (10.160.1.5) from 00:06:5b:31:65:f6 via eth0 Dec 2 20:18:32 linux dhcpd: DHCPACK on 10.160.1.250 to 00:06:5b:31:65:f6 via eth0 Dec 3 02:18:32 linux in.tftpd[7644]: RRQ from 10.160.1.250 filename /lts/2.6.9-ltsp-3/pxelinux.0 Dec 3 02:18:32 linux in.tftpd[7644]: tftp: client does not accept options Dec 3 02:18:32 linux in.tftpd[7645]: RRQ from 10.160.1.250 filename /lts/2.6.9-ltsp-3/pxelinux.0 Dec 2 20:18:32 linux kernel: martian destination 0.0.0.0 from 10.160.1.250, dev eth0 Dec 2 20:18:32 linux kernel: martian destination 0.0.0.0 from 10.160.1.250, dev eth0 Dec 2 20:18:34 linux kernel: martian destination 0.0.0.0 from 10.160.1.250, dev eth0 Dec 2 20:18:36 linux kernel: martian destination 0.0.0.0 from 10.160.1.250, dev eth0 Dec 2 20:18:42 linux kernel: martian destination 0.0.0.0 from 10.160.1.250, dev eth0 Dec 2 20:18:52 linux kernel: martian destination 0.0.0.0 from 10.160.1.250, dev eth0 not thats not the really weard part athought to wont boot the PXE client the part that really gets me is when i try to boot an etherboot client. dhcp sees the client and sends a DHCPOFFER but the client never gets the ip Dec 2 20:23:58 linux dhcpd: DHCPDISCOVER from 00:04:e2:1c:86:0b via eth0 Dec 2 20:23:58 linux dhcpd: DHCPOFFER on 10.160.1.6 to 00:04:e2:1c:86:0b via eth0 Dec 2 20:24:32 linux dhcpd: DHCPDISCOVER from 00:04:e2:1c:86:0b via eth0 Dec 2 20:24:32 linux dhcpd: DHCPOFFER on 10.160.1.6 to 00:04:e2:1c:86:0b via eth0 Dec 2 20:24:34 linux dhcpd: DHCPDISCOVER from 00:04:e2:1c:86:0b via eth0 Dec 2 20:24:34 linux dhcpd: DHCPOFFER on 10.160.1.6 to 00:04:e2:1c:86:0b via eth0 Dec 2 20:24:38 linux dhcpd: DHCPDISCOVER from 00:04:e2:1c:86:0b via eth0 Dec 2 20:24:38 linux dhcpd: DHCPOFFER on 10.160.1.6 to 00:04:e2:1c:86:0b via eth0 Dec 2 20:24:47 linux dhcpd: DHCPDISCOVER from 00:04:e2:1c:86:0b via eth0 Dec 2 20:24:47 linux dhcpd: DHCPOFFER on 10.160.1.6 to 00:04:e2:1c:86:0b via eth0 does anyone know where the problem could be? From tweeksjunk2 at theweeks.org Sat Dec 3 01:28:31 2005 From: tweeksjunk2 at theweeks.org (Tom Weeks) Date: Sat Dec 3 01:00:55 2005 Subject: [SATLUG] Devil Linux In-Reply-To: <2bf8f8ea0ab74dbb92a8b522b4bd2618.scs@wireweb.net> References: <2bf8f8ea0ab74dbb92a8b522b4bd2618.scs@wireweb.net> Message-ID: <200512030128.31486.tweeksjunk2@theweeks.org> On Friday 02 December 2005 11:40, scs@wireweb.net wrote: > --> www.xcssa.org --> xcssa resource links --> xcssa files --> SHO Firewall > Tom gave a great presentation on choice and implementation of Devil Linux. > His book " Linux Toys II " would be a good stocking stuffer for yourself. > Enjoy. Thanx for the plug "scs". Yeah... That was the OTHER chapter that I wrote for the new book that just hit the shelves (Linux Toys II). In fact, I just saw it for the first time on the shelved in Borders tonight: http://www.amazon.com/gp/product/0764579959 But if you want the "free version".. :) I presented at SAC (for some networking class) as well as XCSSA and the Linux Fest I think. Here's the presentation that is based on my chapter from the new book: http://xcssa.org/files/SOHOFIREWALL/img0.html It focuses half on hardware (underclocking and ripping out all the moving parts) and half on the network and software setup. Enjoy. Tweeks From solinym at gmail.com Sat Dec 3 09:38:13 2005 From: solinym at gmail.com (Travis H.) Date: Sat Dec 3 09:10:41 2005 Subject: [SATLUG] needed: floppy that boots CD-ROM Message-ID: Hey, I've got a system with a BIOS so old it won't boot from CD-ROM, but I need to to boot a special operating environment (non-Unix, dedicated app). Anyone got any ideas on where I can find a boot floppy that says "hey dimwit, try the CD-ROM"? -- http://www.lightconsulting.com/~travis/ -><- "We already have enough fast, insecure systems." -- Schneier & Ferguson GPG fingerprint: 50A1 15C5 A9DE 23B9 ED98 C93E 38E9 204A 94C2 641B From dave at coverstreet.com Sat Dec 3 10:54:50 2005 From: dave at coverstreet.com (Dave) Date: Sat Dec 3 09:27:12 2005 Subject: [SATLUG] needed: floppy that boots CD-ROM In-Reply-To: References: Message-ID: <1133625290.9172.20.camel@aku> On Sat, 2005-12-03 at 09:38 -0600, Travis H. wrote: > Hey, I've got a system with a BIOS so old it won't boot from CD-ROM, > but I need to to boot a special operating environment (non-Unix, > dedicated app). > > Anyone got any ideas on where I can find a boot floppy that says "hey > dimwit, try the CD-ROM"? > -- > http://www.lightconsulting.com/~travis/ -><- > "We already have enough fast, insecure systems." -- Schneier & Ferguson > GPG fingerprint: 50A1 15C5 A9DE 23B9 ED98 C93E 38E9 204A 94C2 641B Long ago when I needed to do the same thing Smart Boot Manager (http://btmgr.webframe.org/) seemed to work ok. It might do what you need. HTH, -Dave From nman64 at n-man.com Sat Dec 3 11:03:20 2005 From: nman64 at n-man.com (Patrick Barnes) Date: Sat Dec 3 10:35:38 2005 Subject: [SATLUG] needed: floppy that boots CD-ROM In-Reply-To: References: Message-ID: <4391CFD8.3030506@n-man.com> Travis H. wrote: > Hey, I've got a system with a BIOS so old it won't boot from CD-ROM, > but I need to to boot a special operating environment (non-Unix, > dedicated app). > > Anyone got any ideas on where I can find a boot floppy that says "hey > dimwit, try the CD-ROM"? > -- > http://www.lightconsulting.com/~travis/ -><- > "We already have enough fast, insecure systems." -- Schneier & Ferguson > GPG fingerprint: 50A1 15C5 A9DE 23B9 ED98 C93E 38E9 204A 94C2 641B > _______________________________________________ > SATLUG mailing list > SATLUG@satlug.org > http://alamo.satlug.org/mailman/listinfo/satlug > > FreeDOS (freedos.org) includes the "Smart Boot Manager" on it's floppy forms. That will allow you to boot from CD. It provides a few other options, too. It will work on any 386+ computer. -- Patrick "The N-Man" Barnes nman64@n-man.com www.n-man.com -- From mitchthompson at satx.rr.com Sat Dec 3 11:07:57 2005 From: mitchthompson at satx.rr.com (Mitch Thompson) Date: Sat Dec 3 10:40:23 2005 Subject: [SATLUG] Samba Problems In-Reply-To: <000e01c5f7ac$c03ee4b0$6401a8c0@gary2> References: <000e01c5f7ac$c03ee4b0$6401a8c0@gary2> Message-ID: <4391D0ED.5070905@satx.rr.com> Gary Carpenter wrote: > I'm using ubuntu 5.10 Breezy. I also use samba. When I share the printer on the Linux machine I can't print unless I login to a shared folder on the Linux box first. Printing is slow and unreliable. If I share the printer on a windows machine, printing is fast for all windows machines but, the Linux box starts to print (I even hear the printer clunk) but nothing comes out and the print queue in windows is hung with the job from the Linux box. I can't delete the print job, it just stays there. Now all the print jobs are stuck behind it. > > Printing is faster and more reliable with the printer connected to the windows machine. I would like to share it this way and be able to print from the Linux box. How do I cure this "hung print queue thing"? > For the sake of peace in the family (i.e., everyone could print without problems) I too have our printer shared from a Win2k3 server box (academic licenses are great!). I haven't had problems printing from my linux box (Kubuntu 5.10 Breezy). Are you using CUPS? Here is my printers.conf as an example. This is located in /etc/cups. Hope this helps. -- "In Paris they simply stared when I spoke to them in French; I never did succeed in making those idiots understand their own language." -- Mark Twain -- Mitch Thompson, San Antonio, Texas//WB5UZG Red Hat Certified Engineer -------------- next part -------------- # Printer configuration file for CUPS v1.1.23 # Written by cupsd on Sat 19 Nov 2005 02:13:35 PM CST Info HP PSC 2350 hpijs Location Office DeviceURI smb://mitch:passwordhere@THOMPSON/W2K3SVR/PSC2355 State Idle Accepting Yes JobSheets none none QuotaPeriod 0 PageLimit 0 KLimit 0 From agoetz at weblings.net Sat Dec 3 14:02:50 2005 From: agoetz at weblings.net (Andrew D. Goetz) Date: Sat Dec 3 13:35:14 2005 Subject: [SATLUG] Re: SATLUG Digest, Vol 23, Issue 4 In-Reply-To: <200512021800.jB2I0Ew13155@alamo.satlug.org> References: <200512021800.jB2I0Ew13155@alamo.satlug.org> Message-ID: OK, then. How is Wednesday, December 14th for everyone? At what time is the room available? Perhaps we can talk about some of the concerns that were raised earlier on this list about PHP and projects written in the language. Andrew On Dec 2, 2005, at 12:00 PM, satlug-request@satlug.org wrote: > > If you wish to lead one of the discussions you get to set the date. From scs at wireweb.net Sat Dec 3 17:04:52 2005 From: scs at wireweb.net (scs@wireweb.net) Date: Sat Dec 3 16:39:31 2005 Subject: [SATLUG] Unzipping Zaurus ROM Files Message-ID: <94e6f3cf3d5b4170a1b0853f995958ab.scs@wireweb.net> Any Zaurus guru's still around, need words of wisdom (or kick in the bu_t) on unzipping a v 3.13 ROM upgrade so I can flash it. WinZip keeps telling me the file is too big and instead offers to open it with WordPad, rather than extract it (no bueno). Trying to upgrade my old (2002) SL-5500 with ROM v 2.12 and 2.4.6 Kernel. TIA Lou From bdubbs at swbell.net Sat Dec 3 18:28:20 2005 From: bdubbs at swbell.net (Bruce Dubbs) Date: Sat Dec 3 18:00:48 2005 Subject: [SATLUG] Re: SATLUG Digest, Vol 23, Issue 4 In-Reply-To: References: <200512021800.jB2I0Ew13155@alamo.satlug.org> Message-ID: <43923824.7070909@swbell.net> Andrew D. Goetz wrote: > OK, then. How is Wednesday, December 14th for everyone? At what time > is the room available? > > Perhaps we can talk about some of the concerns that were raised earlier > on this list about PHP and projects written in the language. That is the date of the monthly SATLUG meeting. We will be having annual elections and a presentation on Linux games. -- Bruce From edcoates at gmail.com Sat Dec 3 18:35:13 2005 From: edcoates at gmail.com (Ed Coates) Date: Sat Dec 3 18:07:36 2005 Subject: [SATLUG] Unzipping Zaurus ROM Files In-Reply-To: <94e6f3cf3d5b4170a1b0853f995958ab.scs@wireweb.net> References: <94e6f3cf3d5b4170a1b0853f995958ab.scs@wireweb.net> Message-ID: <8ee65edd0512031635q1b97507fl5129345dbaa14a0e@mail.gmail.com> On 12/3/05, scs@wireweb.net wrote: > Any Zaurus guru's still around, need words of wisdom (or kick in the bu_t) on unzipping a v 3.13 ROM upgrade so I can flash it. > > WinZip keeps telling me the file is too big and instead offers to open it with WordPad, rather than extract it (no bueno). > > Trying to upgrade my old (2002) SL-5500 with ROM v 2.12 and 2.4.6 Kernel. > > TIA Lou First, how big is the file, and have you tried unzip in Linux? Then you could burn it to cd, use samba to copy to the windows drive, ftp, sftp, scp, Ed From mikeaw at gmail.com Sat Dec 3 18:39:41 2005 From: mikeaw at gmail.com (Mike Wallace) Date: Sat Dec 3 18:12:04 2005 Subject: [SATLUG] PHP In-Reply-To: <438F1B27.1040908@cis.sac.accd.edu> References: <438F1B27.1040908@cis.sac.accd.edu> Message-ID: <4154519d0512031639l380593c7r61cadda666964515@mail.gmail.com> While I'm not so interested in PHP, this sounds like a pretty good idea. I'm curious if in the future (maybe later during the current Christmas break period) we might be able to cover other topics this way? Maybe other programming languages or databases or something that just can't fit neatly into a typical presentation. Before getting too far ahead, I want the rest of you to have your PHP sessions and see how they go. If they go well, it might be good to have some other topics when time and classrooms permit. -Mike On 12/1/05, steve kolars wrote: > There seem to be a few people on the list that have some good experience > in PHP. During the Christmas Break our classrooms sit empty (December > 12 - Jamurary 7). I suggest we have a informal PHP brain session a day, > or two, during this time period. We could meet for a couple of nights, > a Friday and Saturday, a couple of Saturdays, ... > > This could be a great opportunity for some people with real knowledge in > this area to share. I am interested in all we can learn about the > vulnerabilities. I am also interested in good vs bad practises in PHP > programming. > > Any Takers??? > > The sessions could be very informal--you do not have to prepare a formal > presentation. People that would like to lead a discussion please > suggest a date and time. > > > Steve > > _______________________________________________ > SATLUG mailing list > SATLUG@satlug.org > http://alamo.satlug.org/mailman/listinfo/satlug >