b

Hi less /etc/services ? For what is established/listening now I use netstat -atpcevu in a root shell tcp listen port 9176 udp listen port 9176 (not in /etc/services) would be default's for valknut I just installed and know 0 about. hih

"I just wonder like iphitus if my system is really hacked." Me too. Assuming what I sugested in a previous post came up empty or clear I would attack that machine with a recent nessus. Also would get to know that machine intimately and not forget that a wipe is peace of mind. Hope you are enjoying this. Much better then tv I find.

"TypeError: system() takes exactly 1 argument (2 given)" Single argument: os.system('mozilla http://www.google.com') python illeterate here. hih

From http://www.ntk.net/ballmer/mirrors.html One of his most briliant performance http://www.tarmo.fi/arc/monkeydance.mpeg

Hi crazyspongebob How about status/feedback, please!

Hi "I'm thinking of wiping the box clean and reinstalling Mandrake 10." Go for it for "best" peace of mind. "I just wonder if it is just the two affected users' accounts got compromised but not the whole system." As far as I know an updated firewalled linux is not trivial to break into. More checking and snooping before wiping? -rpm -V all shadow related installed packages (rpm -qa | grep -i shadow) -chkrootkit -q -rkhunter --checkall (HOMEPAGE="http://www.rootkit.org/") (new for me rootkit checker) -output of last and lastlog commands -files in /var/log/ -root's .bash_history -"compromised" users .bash_history Hope it's not a wipe but a fix and keep since I find it's much more fun!

Hi Did not check kernel parameters. /etc/limits (owned by shadow package here) in witch you may set per user limits... man limits also help ulimit (bash builtin command) more: grsecurity kernel patch at http://www.grsecurity.net/ bye Post subject: /etc/limits vs /etc/security/limits.conf http://forums.gentoo.org/viewtopic.php?t=247431

sarah Hi ASAP go Linux. Malware(and $solutions$) about gone. The catch is you got to figure out your linux. But it's 100% configurable/documented/open-sourced/free, just like you wan't it I hope. AussieJohn "I do not use or need passwords on my computer in either root or my account" I do. I call it my idiot proofing for when I am not running on all neurons and at keyboard (been there some). It is superbly trivial to destroy my linux when root and waste time rebuilding while not doing what was initially intended. It is (99.9%)not possible to destroy my linux when I am user b. Hope you never are an idiot like I am sometimes. mtaylor57 If you mount the disk on other machine and if it's disk partitions are encrypted you have problems getting at it's content if you don't have the key unless you are a spook from some such as NSA i.e. huge resources and neurons required... Bottom line: Don't want it known, don't write it.

Hi "but my root is not able to connect o X server" Good. In X while root is risky/happy-sitting-duck! Don't do this!! (cut off www if unprotected &| paranoid) (then give root X permision) cp /home/$USER/.Xauthority /root as root check root $DISPLAY value (should be same as echo $USER when $USER) "so i cannot see the dialog box" Doe's this work? Alt/F2 kdialog --title test --msgbox test 0 problems here. I thought the idea was to run kdialog with non root priviledges! My little script work's here. (Maybe try it stanalone say as test.sh first) Please post your shell script. Maybe somebody will pick up something?

Hi Some way ... #build kdialog command file echo "#!/bin/sh" > /tmp/kdialog_cmd echo "/usr/kde/3.3/bin/kdialog --title test --msgbox test &" >> /tmp/kdialog_cmd chmod a+x /tmp/kdialog_cmd # run kdialog command file as some-user su - some-user -c /tmp/kdialog_cmd ... hih

Hi again Anyone here! Fallback posistion: minicom or xminicom(kinda-guied) work? serial link /dev/ttyS* confirgured/up/work? null modem cable check? Alternative: gtkterm-0.99.3 ok here but am not running mdk. compile source for your OS? A good many .devel packages (for header .h files) are required(mdk) if I rememeber correctly. How about more configuration/raw feedback. Browsed this ? http://www.tldp.org/HOWTO/Remote-Serial-Co...OWTO/index.html HIH

Hi about: bash: /etc/profile.d/java.sh: Permission denied I suspect /etc/profile.d/java.sh bash shell script is not set executable. As to why it is not auto-set-so? Probably stuff to investigate further.

Hi http://www.scyld.com/diag/index.html

Hi minicom HOMEPAGE="http://www.netsonic.fi/~walker/minicom.html" gtkterm HOMEPAGE="http://www.jls-info.com/julien/linux/"

Hi xmms-shn DESCRIPTION="This input plugin allows xmms to play .shn compressed (lossless) files" HOMEPAGE="http://shnutils.etree.org/xmms-shn" SRC_URI="http://www.etree.org/shnutils/xmms-shn/source/.xmms-shn-2.2.8.tar.gz" I have no idea if it's available as a rpm file. hih

Hi For email, on my todo list(0 need yet) MailScanner http://www.sng.ecs.soton.ac.uk/mailscanner/ hih

Hi Just an idea: (I don't have required hardware): You told X to load v4l? module? Anyway, hope "primed" for next idea. hih

Hi Local resources: dmesg lspci -vv dmidecode (lm-sensors) /proc (cat some files in here) /sys (cat in here) /var/log/... (tail -f, less files in here) Kernel config: Why not start by installing a cooker 2.6 kernel (make sure you can compile/install/boot it) and use it's mdk .config as model to then tweak. I diff'ed 2.4-2.6 .config files and winged it removing a lot of not used stuff, it worked. Took a look at /usr/src/linux/README ? ... - Alternate configuration commands are: Have you tried make xconfig ? Test it ? cd /usr/src/linux cp .config config-test make ... I lost 2.4 kernel .../Documentation/Configure.help file in 2.6 !? hih

Allo Merde still no reply! My first thoughts: your ISP just like mine is bloking your non FQDN smpt server. Second (minor) thought postfix flush Sayonara 0 tracking here!

Hi If Debian, Mandrake and Gentoo where running identical software, identically compiled from identically compiled tools (compiler, compiler settings/optimisations, etc) on identical hardware benchmark result's would be statistically identical. Linux is GPL after all. A professionnal Mandrake developpement team cooking up like Debian team a fast Linux IMHO should be expected/required as opposed to one cooked up by me let us say. Here are my CFLAGS/CXXFLAGS -march=athlon-tbird -O3 -pipe -fomit-frame-pointer Notice -fomit-frame-pointer is missing from Gentoo benchmark. ... -fomit-frame-pointer Don't keep the frame pointer in a register for functions that don't need one. This avoids the instructions to save, set up and restore frame pointers; it also makes an extra register available in many functions. It also makes debugging impossible on some machines. On some machines, such as the VAX, this flag has no effect,... In short a debugging cycle stealing/time consuming helper(trace) I dought Mandrake or Debian are compiled with it enabled.!?(don't know) I am not selling or pushing anything here(except Linux). If my Gentoo is mucked up or not up to par it is my me myself anf I own fault only. Please enjoy your whatever GPL/Slow/Fast/Better/Worst/Bigger Linux. Benchmark's: IMHO marketting BS.

Hi MottS Gnome later, skip it, gtk "blurs(tache)" display, not cool ! My main GUI is Kde just love the "signets" on desktop. However export ACCEPT_KEYWORDS=~x86 Check out : /usr/portage/xfce-base /usr/portage/xfce-extra i.e. xfce4 Light, small + fast compiles. Ohlala definite contender, and soon more to come I read. Just might cookup/find a "signets" solution but won't part with konqueror, whatever. http://forums.gentoo.org/viewtopic.php?t=63322

Hi No, anyway not for me when mandrake still "owned" /boot partition(lilo) for mdk8.2 + 2 gentoo versions. Finally got fed up booting mdk to lilo install new gentoo kernel. Installed grub(slick fb) in gentoo, now taking over mdk /boot partition. (some planing from me required for switch...) 0 problems booting mdk(symlinks pointed to correct...) or gentoo. (mdk now gone from this machine) Have 0 direct knowledge about other distros I dont know zip about but would not be afraid to try since whatever "loads" a distro will load it's kernel et all according to it's particular configuration in /etc/lilo.conf, /boot/grub.conf or whatever. HIH

Hy I have same card running 8139too module on 2.4.20 kernel. # lsmod ... 8139too 15208 1 mii 2528 0 [8139too] (you did not show yours so here is mine) # ifconfig eth0 eth0 Link encap:Ethernet HWaddr 00:50:BA:48:D9:AA inet addr:192.168.0.3 Bcast:192.168.0.255 Mask:255.255.255.0 UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1 RX packets:359025 errors:0 dropped:0 overruns:0 frame:0 TX packets:333626 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:100 RX bytes:409882377 (390.8 Mb) TX bytes:222237591 (211.9 Mb) Interrupt:9 Base address:0xe000 # ./rtl8139-diag rtl8139-diag.c:v2.11 4/22/2003 Donald Becker (becker@scyld.com) http://www.scyld.com/diag/index.html Index #1: Found a D-Link DFE-530TX+ (RealTek RTL8139C) adapter at 0xa400. Realtek station address 00:50:ba:48:d9:aa, chip type 'rtl8139C'. Receiver configuration: Normal unicast and hashed multicast Rx FIFO threshold 2048 bytes, maximum burst 2048 bytes, 32KB ring Transmitter enabled with NONSTANDARD! settings, maximum burst 1024 bytes. Flow control: Tx disabled Rx enabled. The chip configuration is 0x10 0x8d, MII half-duplex mode. No interrupt sources are pending. Just ideas: - Dig out DLink/DFE538TX diag/setup disquette... - Check command that brings up your nic. HIH

Hi No need to boot cd hence burn it's iso image. Idea is to mount iso image then copy /opt/armyops170 to large enough partition find armyops-bin, cd to where it is then ./armyops-bin to play. All previous is discussed... at: http://forums.gentoo.org/viewtopic.php?t=54264

Hi Dont know much about routed + to me it seems a large network overkill solution to a simple network problem. Assuming /etc/hosts, /etc/networks, /etc/resolv.conf are correctly set on all machines and all machines on subnet have a correctly set default gateway an idea: The router/2 nic machine has /proc/sys/net/ipv4/ip_forward == 1 it's a total blocker if not set to 1 i.e the packets on each subnet are going nowhere else! Again HIH