-
Posts
499 -
Joined
-
Last visited
Content Type
Profiles
Forums
Events
Posts posted by ac_dispatcher
-
-
Well I was doing some work on my firewall (named coyote). It is a Pentium75 with 16mb of ram. No Hard rive just a floppy. (http://www.coyotelinux.com).
Back to my point. I turned on some TCP logging. Check this out:
May 23 22:00:17 coyote klogd: IN=ppp0 OUT= MAC= SRC=XX.74.77.103 DST=XXX.23.87.188 LEN=28 TOS=0x00 PREC=0x00 TTL=119 ID=27759 PROTO=ICMP TYPE=8 CODE=0 ID=768 SEQ=28974
May 23 22:03:02 coyote klogd: IN=ppp0 OUT= MAC= SRC=XX.23.87.90 DST=XXX.23.87.188 LEN=52 TOS=0x00 PREC=0x00 TTL=62 ID=11993 DF PROTO=TCP SPT=1801 DPT=2745 WINDOW=58944 RES=0x00 SYN URGP=0
May 23 22:03:05 coyote klogd: IN=ppp0 OUT= MAC= SRC=XX.23.87.90 DST=XXX.23.87.188 LEN=52 TOS=0x00 PREC=0x00 TTL=62 ID=12078 DF PROTO=TCP SPT=1801 DPT=2745 WINDOW=58944 RES=0x00 SYN URGP=0
May 23 22:03:08 coyote klogd: IN=ppp0 OUT= MAC= SRC=XX.23.107.46 DST=XXX.23.87.188 LEN=28 TOS=0x00 PREC=0x00 TTL=119 ID=53919 PROTO=ICMP TYPE=8 CODE=0 ID=768 SEQ=32271
May 23 22:03:11 coyote klogd: IN=ppp0 OUT= MAC= SRC=XX.23.87.90 DST=XXX.23.87.188 LEN=52 TOS=0x00 PREC=0x00 TTL=62 ID=12399 DF PROTO=TCP SPT=1801 DPT=2745 WINDOW=58944 RES=0x00 SYN URGP=0
May 23 22:03:30 coyote klogd: IN=ppp0 OUT= MAC= SRC=XX.23.107.86 DST=XXX.23.87.188 LEN=48 TOS=0x00 PREC=0x00 TTL=119 ID=65455 DF PROTO=TCP SPT=4649 DPT=2745 WINDOW=16384 RES=0x00 SYN URGP=0
May 23 22:03:33 coyote klogd: IN=ppp0 OUT= MAC= SRC=XX.23.107.86 DST=XXX.23.87.188 LEN=48 TOS=0x00 PREC=0x00 TTL=119 ID=869 DF PROTO=TCP SPT=4655 DPT=6129 WINDOW=16384 RES=0x00 SYN URGP=0
May 23 22:03:33 coyote klogd: IN=ppp0 OUT= MAC= SRC=XX.23.107.86 DST=XXX.23.87.188 LEN=48 TOS=0x00 PREC=0x00 TTL=119 ID=874 DF PROTO=TCP SPT=4649 DPT=2745 WINDOW=16384 RES=0x00 SYN URGP=0
May 23 22:03:35 coyote klogd: IN=ppp0 OUT= MAC= SRC=XX.23.87.188 DST=XXX.23.87.188 LEN=485 TOS=0x00 PREC=0x00 TTL=111 ID=40632 PROTO=UDP SPT=666 DPT=1026 LEN=465
May 23 22:03:35 coyote klogd: IN=ppp0 OUT= MAC= SRC=XX.23.87.188 DST=XXX.23.87.188 LEN=485 TOS=0x00 PREC=0x00 TTL=111 ID=40633 PROTO=UDP SPT=666 DPT=135 LEN=465
May 23 22:03:39 coyote klogd: IN=ppp0 OUT= MAC= SRC=XX.23.107.86 DST=XXX.23.87.188 LEN=48 TOS=0x00 PREC=0x00 TTL=119 ID=2312 DF PROTO=TCP SPT=4655 DPT=6129 WINDOW=16384 RES=0x00 SYN URGP=0
May 23 22:03:39 coyote klogd: IN=ppp0 OUT= MAC= SRC=XX.23.107.86 DST=XXX.23.87.188 LEN=48 TOS=0x00 PREC=0x00 TTL=119 ID=2314 DF PROTO=TCP SPT=4649 DPT=2745 WINDOW=16384 RES=0x00 SYN URGP=0
May 23 22:03:39 coyote klogd: IN=ppp0 OUT= MAC= SRC=XX.23.107.86 DST=XXX.23.87.188 LEN=48 TOS=0x00 PREC=0x00 TTL=119 ID=2316 DF PROTO=TCP SPT=4654 DPT=3127 WINDOW=16384 RES=0x00 SYN URGP=0
May 23 22:03:45 coyote klogd: IN=ppp0 OUT= MAC= SRC=XX.23.87.90 DST=XXX.23.87.188 LEN=52 TOS=0x00 PREC=0x00 TTL=62 ID=14118 DF PROTO=TCP SPT=2512 DPT=2745 WINDOW=58944 RES=0x00 SYN URGP=0
May 23 22:03:48 coyote klogd: IN=ppp0 OUT= MAC= SRC=XX.23.87.90 DST=XXX.23.87.188 LEN=52 TOS=0x00 PREC=0x00 TTL=62 ID=14223 DF PROTO=TCP SPT=2512 DPT=2745 WINDOW=58944 RES=0x00 SYN URGP=0
May 23 22:03:54 coyote klogd: IN=ppp0 OUT= MAC= SRC=XX.23.87.90 DST=XXX.23.87.188 LEN=52 TOS=0x00 PREC=0x00 TTL=62 ID=14513 DF PROTO=TCP SPT=2512 DPT=2745 WINDOW=58944 RES=0x00 SYN URGP=0
May 23 22:04:10 coyote klogd: IN=ppp0 OUT= MAC= SRC=XX.23.78.95 DST=XXX.23.87.188 LEN=78 TOS=0x00 PREC=0x00 TTL=117 ID=7488 PROTO=UDP SPT=1745 DPT=137 LEN=58
OK its a lot of BLA BLA BLA. But notice this
DPT=2745 <<<< Thats my Firewall getting hit by the beagle virus
Bagle is mass-mailing email that besides using your address book, and other information on your computer to email copies of itself too, opens a backdoor on port 2745 which allows a hacker to upload a file and execute it automatically. Bagle also attempts to contact a number of web sites informing them of the infection. TCP port 2745 should be blocked by your firewall.
Notice -
DPT=6129 <<<< Used by the Dameware remote administration software.
There is a vulnerability within older versions of Dameware which can allow for unauthorized login and hence unauthorized use of Dameware for remote administration of a computer. Dameware was installed by some viruses for the purpose of remote administration of the infected system.
Last one -
DPT=3127 <<<< Used by the myDoom/Novarg virus as a backdoor port.
myDoom has been called the fastest spreading email virus yet recorded and attempted to DOS www.sco.com and www.microsoft.com. myDoom also installs a backdoor that listens on TCP port 3127 allowing a hacker to execute code remotely. TCP port 3127 traffic should be blocked by your firewall.
All that in four minutes!! If you ever meet anyone who does not have a firewall (and Windows) SLAP'UM
Stick with Linux --- Watch yourself out there
[moved from Everything Linux by spinynorman]
-
If you havnet seen it on Slashdot. Fedora can break a partition table on a dual boot system.
http://slashdot.org/articles/04/05/23/1448...tid=110&tid=187
-
3 Month minimum (15 bucks).
Sign up for 15 bucks and just cancel before your third month billing period.
-
Try smb4k. It works better the LinNeighborhood for me.
-
A long time ago I posted a link to the plugger testing grounds. At that site you could test just about every plugin you have for your browser.
Well they updated the site
http://fredrik.hubbe.net/plugger/test.html
At the bottom right they link to 2 other testing sites
Linspire (finally something useful from them :P )
http://www.linspire.com/file_types/filetypes.php
And AOL
but for some reason the AOL link stopped working. Oh well may come back up. They had a few different types of movie files.
Give your favorite browser a test
B)
-
Call your DSL company and try to get in contact with the switching station.
I was averaging about 70-80k downloads for about 2 years. When it dropped to 40k for about 2 months I called to find the problem. Here is what we did:
First he told me to run a brand new line from the outside box to my router (computer). Disconnect everything else and call back via cell phone.
When I called back he kept raising my bandwith until it toped off. It was downloading at 180K a second
So then I would reconnect one line at a time in my house and rerun the line test (www.dslreports.com). When I hit my kitchen phone it dropped to 40k a sec. I found the main problem. Ran a new line to the kitchen and I now average 165k a sec.
So my advise. Check your phone lines. Also How old is the line from your box to the pole? If its old it sould somehow "break" thus need to be replaced.
-
Hey bvc his first post and you already got his head spinning :lol:
Welcome to Linux :P
-
BBX,
Glad to see you turning to the light
First your processor (300mhz) will do but it will be slow. I run a AMD K6/3 400mhz.
Second you are going to need ram. Probably no less than 128mb or ram. 256mb if able.
What you may end up having to do is replace or add a newer cdrom. Installing without a bootable cdrom is possible but not easy. I can'nt help you there.
So for probably less than 100 bucks you can get a few more years out of your computer.
-
Not trying to get off subject again but.
You may need to just simply stuff for a while. I am no expert but I can get around a linux box and I still use Point2Play over winex. Its just to simple to use.
Freeloading or not, how much is your time worth? Some things you may want to spend a great deal of time to learn. Others you may want to spend a little and make it easy. How do you want it? For some 5 bucks is a lot of money. In the US maybe its a pack of cig's (or a gallon of gas).
I pay 5 bucks a month for Point2play (winex). and its works great. No command line needed.
BTW I also use it for a lot of other Window$ programs. It handles a lot of stuff wine cant.
-
I have a HP ze5155 Laptop. Yea getting acpi can be tricky.
Try a few things.
Open a konsole type:
$su
[enter password if needed]
#kedit &
Now when kedit opens up hit the file>open and open up your /etc/lilo.conf
In the mandrake entry you will see a append="......."
if you have an acpi entry edit it, if you dont enter:
acpi=ht
Now after your done and if it does not work retry it with:
acpi=on nolapic
So you may need to do this twice. In 9.2 I had to use "acpi=on nolapic" - sorry on Gentoo now.
After you are done save the file and close out kedit. Now back in the konsole type:
#/sbin/lilo -v
If you get any errors go back and make sure the /etc/lilo.conf was edited correctly. Sorry I havent tried MDK10 yet. But in PClinuxOS I had to use acpi=ht to make it work.
Additionallly you way need to make sure acpi is installed.Type
#urpmi acpi
Hope it helps
Edit:
Sorry if it seems a bit noobish. I see you tried SuSE. The acpi support is a bit better with SuSE.
-
Well there was some giu portage stuff a long time ago. Most dont work anymore
http://www.infoanarchy.org/wiki/wiki.pl?Portage
I finally got porthole to work. I always liked kportage but I cant get it to compile anymore
porthole works.
http://porthole.sourceforge.net/
Porthole never worked right until I went to the above link and downloaded the ebuild:
extract it and overwrite the current :/usr/portage/app-portage/porthole with the download.
then
#emerge porthole
You may have to
#emerge /usr/portage/app-portage/porthole/porthole-0.3.ebuild
to install it.
FYI - I dont emerge form porthole or any other gui portage prog. I use it to search and read up on the ebuilds. I always emerge from CLI. Mos gui portage apps are real outdated.
Edit:
Sorry Im not sure if Nvidia works. I think so. I have my ATI Mobility M6 LY compiled into the kernel. :P
Edit #2:
I got a little better performace with Xorg. FPS went from about 580 to 630. The reason I switched is because Xfree is just about dead. Gentoo no longer will have updates to it.
-
Before I get too flamed for the above...
I use OpenOffice.org for everything. I dont have Window$ installed on my Laptop. Somtimes OOo doesnt like to open word file just right. So I will open them in MS word2000 and convert them to another format like word97 or .rtf.
-
As I dawn my flame vest
If you have to have it just use MS Office97 in Linux via wine.
http://frankscorner.org/modules.php?op=mod...artid=97&page=1
-
With most (including Mandy) dropping Xfree, a fork of it was created and called X.org. Or xorg-x11-6.7.0. Just some little changes here and there. Kinda weird changing your
/etc/X11/xorg.conf
not
/etc/X11/XF86Config-4
Here is two Forum pages on it:
http://forums.gentoo.org/viewtopic.php?t=1...der=asc&start=0
http://forums.gentoo.org/viewtopic.php?t=158911
Here is how I switched to Xorg
#rc-update del xdm default
reboot
#emerge -C xfree
#emerge xorg-x11
#emerge corefonts freefonts sharefonts
Edit (nano) /etc/X11/fs/config
and add:
/usr/share/fonts/corefonts,
/usr/share/fonts/freefont
#opengl-update xorg-x11
Made a sym link:
/usr/lib/opengl/xorg-x11 to /usr/lib/opengl/xfree
After that you need to watch your emerges. If at any time it wants to emerge xfree you will need to inject it.
#emerge --inject x11-base/xfree-4.3.0-r5
Want to go real bleeding edge? go to a pure udev system.
http://webpages.charter.net/decibelshelp/L...rimer.html#UDEV
I wrote my own udev rule for my RF wireless mouse. So my /etc/X11/xorg.conf (XF86Config) reads:
Section "InputDevice"
Identifier "RFmouse"
Driver "mouse"
Option "Protocol" "ExplorerPS/2"
Option "Device" "/dev/rodent" :P
Option "ZAxisMapping" "4 5"
Option "CorePointer"
EndSection
With udev you can identify any usb device and create a special sym link in /dev. Say you have two different usb sticks and you want one to always point to /mnt/stick1 and the other to /mnt/stick2. You can if you creat your own udev rule. and then change your /etc/fstab to point to your new sym links in /dev. In the case above I added the following to my :/etc/udev/rules.d/50-udev.rules
#RF Mouse
BUS="usb", SYSFS{product}="U+P RF Mouse Receiver", NAME="%k", SYMLINK="rodent"
so every time I plug in my wireless mouse - /dev/rodent will appear. B)
-
The only way I have ever had any luck setting up SAMBA was with webmin.
Install webmin:
#urpmi webmin
Start it up:
#/etc/init.d/webmin start
Open your browser to
sometimes its
Depending if you have encription activated.
Navigate to the Sever tab and then select Windows SAMBA Share Manager. There is even a button at the bottom to restart SAMBA. Try that.
-
Hey SoulSe,
I just got my Laptop back from the fixers. It had a "fever" when the fans quit. I reinstalled Gentoo from scratch ~x86.
SOLID AS A ROCK.
No problems what so ever. I love Gentoo.
But I could have never learned enough to use it without Mandy :D
I decided to try a .deb Distro on my other computer. Man MEPIS rocks also!. I never new that Debian distros are like Gentoo. What I mean is once its installed on can just upgrade as nessassary.
Did you use Xfree or Xorg?
-
Got an old 486 with 12mb of ram?
I use Coyote Linux
Its my Firewall / Router / DCHP Server
I access it via a web browser. 73 day uptime now .....
-
I bet not so in the distant future you will only get a "free" copy if its from bittorrent. And pay for a ftp download.
-
Dont forget to open your firewall ports
http://www.mandrakeusers.org/index.php?showtopic=13316
Everyone has a firewall - Right?
-
I downloaded the new knoppix. Some of you may know that I haven't gotten into the Debian style Distro yet. Well that is now gone.
This Distro is fantastic. I mean tex makes a good cd but in my humble option this takes the cake
I have an old AMD400 mhz puter with a ISA CMI8330 sound card built in. Until knoopix only 1 distro could automatically find and install it (SuSE).
I was so pleased with the disk I installed it to my hard drive. It works great. apt is already set up. The /etc/sources.list has good repositories in their already.
Installed to HD
#apt-get update
#apt-get upgrade
Its an old AMD400 with 320mb of ram. I have found that live cd distros work the best (performance wise). I installed SuSE 9.0 pro then stopped a lot of the processes but it was still slower than knoopix. Never know I may be hooked on Debian now
-
I bought a HP ze5185 a little over a year ago. What I did was go to the store (Best Buy) found the one I wanted. Went home did a google search on it.
I found two web pages on my puter. So I knew the problems I would have.
Besides the unfortunate fight with a glass on wine the Laptop has done nicely :D
-
Im sorry my Laptop died again (another 4 months at best buy repair). My other computer runs SUSE 9.0. Can anyone else help?
Maybe post (copy) the file to this board and I may be able to help you.
Edit: added point.
Your resolv.conf will survive a reboot. no problem there.
-
I had problems with MCC and network setup. Try to set it up manually:
# ifconfig eth0 ${IP_ADDR} broadcast ${BROADCAST} netmask ${NETMASK} up
then
# route add default gw ${GATEWAY}
Replace the ${ } with your settings. May also want to post what comes out when you type
#ifconfig (as root)
also check your /etc/resolv.conf
In a static environment you must Identify your DNS manually. Id check there first.
/etc/resolv.conf
nameserver ${NAMESERVER1}
nameserver ${NAMESERVER2}
replace your DNS in ${ }
Easiest way to find out if its a DNS problem:
type:
$ ping -c 3 www.yahoo.com
then type
$ ping -c 3 216.109.118.79
If the second one works but the first doesn't, you need to set your DNS.
-
I just bought my forth Linux book on Sunday (April 25 my birthday). I know their is a lot of stuff free on the web but I just wanted some good reference books. I now have
Linux Server Hacks <---great book
Linux Power Tools
Linux Pocket Guide
Essential System Admin Pocket Reference
Inspired by VeeDubb and I have decided to try a weekly/bi-weekly "AC's stupid tricks". A sort of newbie guide to some common things they may see. (maybe a little advanced to).
This week is Combining Commands (Linux Pocket Guide pg 26)
A lot of times you will come across some instructions that have lets say a "&&" in it. What does that mean/do? Here ya go -
Their are three basic ways you'll see commands combined:
$ command1 ; command2 ; command3
or
$ command1 && command2 && command3 <----- I have found this most common
or
$ command1 || command2 || command3
Explanation:
$ command1 ; command2 ; command3
The semi colon ";" is used to separate the commands. This command will invoke several commands in sequence.
$ command1 && command2 && command3
Now we have used a "&&" instead. This will also invoke a set of commands in sequence. The difference? It will stop execution if any command fails.
$ command1 || command2 || command3
Last is the "||" used to separate them. This will run a sequence of commands , stopping execution as soon as one succeeds.
Well I did not set out to tell you how you use these commands - thats for you to learn :P but hopefully you will know the use of ; or && or || in combining commands. Maybe some of the kind board folk can give some common examples?
Edit:
Not sure if this would be a "Tip" or "Trick". Not really sure where this post may belong. Mods / Admins feel free to move it. Thanks guys.
Thank God for Firewalls
in Security
Posted
I love useing it. If you have an old computer around you can put it to use. No hard drive used.
The Coyote page
http://www.coyotelinux.com/
The non complete NIC list
http://www.dalantech.com/ubbthreads/showfl...sb=5&o=&fpart=1
Coyote FAQ
http://rzero.com/coyote/faq.html#advanced
Now you can go out and spend 100-200 dollars and buy a good router. With this you use an old computer. It is very customizable. Works great. All you need is a floppy and 2 NICs.
You get control it from any browser. Just bring up
http://coyote:8180
Here is a screen shot