From dieman at ringworld.org Wed May 1 00:54:24 2002 From: dieman at ringworld.org (Scott Dier) Date: Mon Jan 17 13:40:02 2005 Subject: [TCLUG] Re: debian/apt sources In-Reply-To: <1020216247.19114.132.camel@3po.dhs.org> References: <20020429042021.GE4002@ringworld.org> <1020216247.19114.132.camel@3po.dhs.org> Message-ID: <20020501031042.GM4002@ringworld.org> * Mike Hicks [020430 20:56]: > Wow, that forward, then reverse resolves to debian-mirror.cs.umn.edu. > Must be right down the hall for you ;-) How'd getting a .debian.org > address come about? The machine wasn't being used, so I got debian to ship it to me, which was ok because I'm also a DD. We donate on average about 25mbps to the thing. There is potential for another massive mirror coming soon, too. Note that UMN has 688mbps of internet2 connectivity, and by this september will have 350mbps of i1 connectivty. 25mbps, especially if 10-20% is i2 is really not too bad on the scale of things. :) -- Scott Dier http://www.ringworld.org/ From tanner at real-time.com Wed May 1 06:13:09 2002 From: tanner at real-time.com (Bob Tanner) Date: Mon Jan 17 13:40:02 2005 Subject: [TCLUG] OpenOffice 1.0 Message-ID: <20020501044859.H17147@real-time.com> I thought this was a joke. A 1.0 release of openoffice. >> OOo_1.0.0_LinuxIntel_install.tar.gz >> OOo_1.0.0_SolarisSparc_solver_.tar.gz >> OOo_1.0.0_Win32Intel_install.zip >> >> Note that Windows is Win32Intel_install.zip >> >> Be that as it may, you should mostly be using rsync. > >one more question :) >when will the 1.0.0 release officially be announced (like on mayor sites >as slashdot/freshmeat etc) But I jumped here: http://www.openoffice.org/dev_docs/source/download.html And what do you know New Software Items * OpenOffice.org 1.0 The application. Stable and ready. The page includes * featured mirror sites grouped by language offered. -- Minneapolis St. Paul Twin Cities MN | Phone : (952)943-8700 http://www.mn-linux.org Minnesota Linux | Fax : (952)943-8500 Key fingerprint = 6C E9 51 4F D5 3E 4C 66 62 A9 10 E5 35 85 39 D9 From nassarmu at redconcepts.net Wed May 1 08:37:46 2002 From: nassarmu at redconcepts.net (Munir Nassar) Date: Mon Jan 17 13:40:02 2005 Subject: [TCLUG] apt4rpm + rpm4.0.4 In-Reply-To: <20020430231741.W4555@real-time.com> Message-ID: On Tue, 30 Apr 2002, Bob Tanner wrote: > > no problem... i'm just happy to have apt up and running now > > You download the tclug-gamepak yet? first thing i downloaded ;-) -munir From clay at fandre.com Wed May 1 09:45:02 2002 From: clay at fandre.com (Clay Fandre) Date: Mon Jan 17 13:40:03 2005 Subject: [TCLUG] colorful mutt In-Reply-To: <20020501033845.GA10416@isis.visi.com> References: <20020430220210.GA25158@isis.visi.com> <20020430233024.GA324@sistina.com> <20020501033845.GA10416@isis.visi.com> Message-ID: <20020501135857.GA4657@fandre.com> On Tue, 30 Apr 2002, Timothy Wilson wrote: > I've considered that, but I guess I haven't studied up on fetchmail > enough to know if it would work for me. My visi.com address is my primary > email address and I read it frequently at work and at home. Reading it > using pine or mutt in an ssh session makes it really easy to read my > email from anywhere. > > As I said, I don't know much about fetchmail. Can it operate in a > similar way? > fetchmail basically downloads mail off of a pop or imap server into your local spooler. > Maybe I could use IMAP instead, but I haven't checked to see if I can > get SSL-encrypted IMAP connections to visi. > Personally I fetmail all my mail for my various accounts into my main mail server. I then use mutt to read my mail. I also have IMP installed so I can get my mail from a web browser as well. It's invaluable to me to be able to get my mail from anywhere on the internet. As for your color problem, what type of system is your visi account on? Sun? Linux? From blutgens at sistina.com Wed May 1 09:45:05 2002 From: blutgens at sistina.com (Ben Lutgens) Date: Mon Jan 17 13:40:03 2005 Subject: [TCLUG] colorful mutt In-Reply-To: <20020501033845.GA10416@isis.visi.com> References: <20020430220210.GA25158@isis.visi.com> <20020430233024.GA324@sistina.com> <20020501033845.GA10416@isis.visi.com> Message-ID: <20020501135903.GA746@sistina.com> On Tue, Apr 30, 2002 at 10:38:45PM -0500, Tim Wilson wrote: >Maybe I could use IMAP instead, but I haven't checked to see if I can >get SSL-encrypted IMAP connections to visi. Did you try setting your TERM variable to rxvt or xterm-color? -- Ben Lutgens | http://people.sistina.com/~blutgens/ System Administrator | http://www.sistina.com/ Sistina Software Inc. | "If you love something set it free, if it doesn't come back to you hunt it down and set it on fire" -- George Carlin -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 230 bytes Desc: not available Url : http://shadowknight.real-time.com/pipermail/tclug-list/attachments/20020501/ba550816/attachment.pgp From blutgens at sistina.com Wed May 1 09:45:19 2002 From: blutgens at sistina.com (Ben Lutgens) Date: Mon Jan 17 13:40:03 2005 Subject: [TCLUG] Kerberos: satan or savior? In-Reply-To: <20020430225633.V4555@real-time.com> References: <20020430225633.V4555@real-time.com> Message-ID: <20020501141014.GB746@sistina.com> On Tue, Apr 30, 2002 at 10:56:33PM -0500, Bob Tanner wrote: >Others argue about security issue in kerberos. Still others argue that kerberos >is the only was to support things like secure/token cards. For me the maintenance and setup headaches far outweigh any potential advantage of using it. It's also a whole new learning curve for users to deal with (at least those who use shell access) It's neat stuff, but impracticle. Personally I'm a big fan of TLS. -- Ben Lutgens | http://people.sistina.com/~blutgens/ System Administrator | http://www.sistina.com/ Sistina Software Inc. | "If you love something set it free, if it doesn't come back to you hunt it down and set it on fire" -- George Carlin -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 230 bytes Desc: not available Url : http://shadowknight.real-time.com/pipermail/tclug-list/attachments/20020501/2b8a29c7/attachment.pgp From jspinti at dartdist.com Wed May 1 09:45:28 2002 From: jspinti at dartdist.com (James Spinti) Date: Mon Jan 17 13:40:03 2005 Subject: [TCLUG] OpenOffice 1.0 In-Reply-To: <20020501044859.H17147@real-time.com> References: <20020501044859.H17147@real-time.com> Message-ID: <1020263244.721.47.camel@Dart-71_linux> On Wed, 2002-05-01 at 04:48, Bob Tanner wrote: etc) > > But I jumped here: > > http://www.openoffice.org/dev_docs/source/download.html > > And what do you know > New Software Items > > * OpenOffice.org 1.0 The application. Stable and ready. The page includes > * featured mirror sites grouped by language offered. Appears to be ./ed Any local mirrors? -- Thanks, James Spinti jspinti at dartdist dot com 952-368-3278 ext 398 952-368-3255 fax From chewie at wookimus.net Wed May 1 10:40:24 2002 From: chewie at wookimus.net (Chad Walstrom) Date: Mon Jan 17 13:40:03 2005 Subject: [TCLUG] Kerberos: satan or savior? In-Reply-To: <20020430225633.V4555@real-time.com> References: <20020430225633.V4555@real-time.com> Message-ID: <20020501151346.GB505@wookimus.net> On Tue, Apr 30, 2002 at 10:56:33PM -0500, Bob Tanner wrote: > Anyways, with openssh, ssl, generic TLS stuff. Is kerberos necessary > still? Although Kerberos may be old tech, it's not dead tech. If it were, The Collective, [read Micro$oft], would not have "embraced and extended" it. It may no longer be the defacto standard, as a result of the software you listed above, but it is still a powerful security model. Because Kerberos /is/ used in the Win2k and WinXP network model, and because there are plenty of people on campus who still use these operating systems, it becomes necessary to integrate once again. There has been some chatter about different departments setting up their own Kerberos schema, but that's about as far as it gets. We all have more pressing projects to attend, and Kerberos always seems to find its way to the back-burner. Why? It's much easier to set up an sshd daemon than it is to set up a Kerberos network. ;-) Frankly, I would love to do other things to enhance security before incorporating Kerberos. i.e. NFS over TCP+ssl, etc. -- Chad Walstrom | a.k.a. ^chewie http://www.wookimus.net/ | s.k.a. gunnarr -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 232 bytes Desc: not available Url : http://shadowknight.real-time.com/pipermail/tclug-list/attachments/20020501/96786cd6/attachment.pgp From clay at fandre.com Wed May 1 10:40:56 2002 From: clay at fandre.com (Clay Fandre) Date: Mon Jan 17 13:40:03 2005 Subject: [TCLUG] OpenOffice 1.0 In-Reply-To: <20020501044859.H17147@real-time.com> References: <20020501044859.H17147@real-time.com> Message-ID: <20020501153725.GL4657@fandre.com> Yea, a co-worker of mine just downloaded it from a sssslllooowww mirror. When will mn-linux have it? On Wed, 01 May 2002, Bob Tanner wrote: > I thought this was a joke. A 1.0 release of openoffice. > > >> OOo_1.0.0_LinuxIntel_install.tar.gz > >> OOo_1.0.0_SolarisSparc_solver_.tar.gz > >> OOo_1.0.0_Win32Intel_install.zip > >> > >> Note that Windows is Win32Intel_install.zip > >> > >> Be that as it may, you should mostly be using rsync. > > > >one more question :) > >when will the 1.0.0 release officially be announced (like on mayor sites > >as slashdot/freshmeat etc) > > But I jumped here: > > http://www.openoffice.org/dev_docs/source/download.html > > And what do you know > New Software Items > > * OpenOffice.org 1.0 The application. Stable and ready. The page includes > * featured mirror sites grouped by language offered. > > -- > Minneapolis St. Paul Twin Cities MN | Phone : (952)943-8700 > http://www.mn-linux.org Minnesota Linux | Fax : (952)943-8500 > Key fingerprint = 6C E9 51 4F D5 3E 4C 66 62 A9 10 E5 35 85 39 D9 > > _______________________________________________ > Twin Cities Linux Users Group Mailing List - Minneapolis/St. Paul, Minnesota > http://www.mn-linux.org > tclug-list@mn-linux.org > https://mailman.mn-linux.org/mailman/listinfo/tclug-list From joelr at ellegon.com Wed May 1 11:16:43 2002 From: joelr at ellegon.com (Joel Rosenberg) Date: Mon Jan 17 13:40:03 2005 Subject: [TCLUG] OpenOffice 1.0 In-Reply-To: <20020501153725.GL4657@fandre.com> References: <20020501044859.H17147@real-time.com> <20020501153725.GL4657@fandre.com> Message-ID: <20020501154806.01C8C23295@msp-65-25-234-54.mn.rr.com> On Wednesday 01 May 2002 10:37 am, you wrote: > Yea, a co-worker of mine just downloaded it from a sssslllooowww > mirror. When will mn-linux have it? > I dunno, but the SF mirror was working just fine when I downloaded it four hours ago. I don't see a lot of differences with the previous beta -- which is just fine -- but either I'm hallucinating, or the file save has been streamlined dramatically; seems to take about half the time to save the book-in-progress, which hasn't gotten any shorter today. > _______________________________________________ > Twin Cities Linux Users Group Mailing List - Minneapolis/St. Paul, > Minnesota http://www.mn-linux.org > tclug-list@mn-linux.org > https://mailman.mn-linux.org/mailman/listinfo/tclug-list From wilson at visi.com Wed May 1 11:16:59 2002 From: wilson at visi.com (Tim Wilson) Date: Mon Jan 17 13:40:03 2005 Subject: [TCLUG] OpenOffice 1.0 In-Reply-To: <20020501153725.GL4657@fandre.com> References: <20020501044859.H17147@real-time.com> <20020501153725.GL4657@fandre.com> Message-ID: <20020501155319.GA8781@isis.visi.com> On a related note, what's the preferred java environment for OpenOffice? Should I use blackdown or IBM's java? -Tim -- Tim Wilson | Visit Sibley online: | Check out: Henry Sibley HS | http://www.isd197.org | http://www.zope.com W. St. Paul, MN | | http://slashdot.org wilson@visi.com | | http://linux.com From tanner at real-time.com Wed May 1 11:48:25 2002 From: tanner at real-time.com (Bob Tanner) Date: Mon Jan 17 13:40:03 2005 Subject: [TCLUG] debian, apt and https? Message-ID: <20020501112321.K4270@real-time.com> Can debian's apt do https? -- Minneapolis St. Paul Twin Cities MN | Phone : (952)943-8700 http://www.mn-linux.org Minnesota Linux | Fax : (952)943-8500 Key fingerprint = 6C E9 51 4F D5 3E 4C 66 62 A9 10 E5 35 85 39 D9 From natecars at real-time.com Wed May 1 11:50:09 2002 From: natecars at real-time.com (Nate Carlson) Date: Mon Jan 17 13:40:03 2005 Subject: [TCLUG] OpenOffice 1.0 In-Reply-To: <20020501153725.GL4657@fandre.com> Message-ID: On Wed, 1 May 2002, Clay Fandre wrote: > Yea, a co-worker of mine just downloaded it from a sssslllooowww > mirror. When will mn-linux have it? I just copied it up to gladiator.. it's at: ftp://gladiator.real-time.com/natecars/OOo_1.0.0_LinuxIntel_install.tar.gz -- Nate Carlson | Phone : (952)943-8700 http://www.real-time.com | Fax : (952)943-8500 From tanner at real-time.com Wed May 1 11:51:28 2002 From: tanner at real-time.com (Bob Tanner) Date: Mon Jan 17 13:40:04 2005 Subject: [TCLUG] OpenOffice 1.0 In-Reply-To: <1020263244.721.47.camel@Dart-71_linux>; from jspinti@dartdist.com on Wed, May 01, 2002 at 09:27:24AM -0500 References: <20020501044859.H17147@real-time.com> <1020263244.721.47.camel@Dart-71_linux> Message-ID: <20020501113136.R4270@real-time.com> Quoting James Spinti (jspinti@dartdist.com): > On Wed, 2002-05-01 at 04:48, Bob Tanner wrote: > etc) > > > > But I jumped here: > > > > http://www.openoffice.org/dev_docs/source/download.html > > > > And what do you know > > New Software Items > > > > * OpenOffice.org 1.0 The application. Stable and ready. The page includes > > * featured mirror sites grouped by language offered. > > Appears to be ./ed Any local mirrors? > uhh, ftp://ftp.mn-linux.org/linux/openoffice/ Didn't I announce this? -- Minneapolis St. Paul Twin Cities MN | Phone : (952)943-8700 http://www.mn-linux.org Minnesota Linux | Fax : (952)943-8500 Key fingerprint = 6C E9 51 4F D5 3E 4C 66 62 A9 10 E5 35 85 39 D9 From tanner at real-time.com Wed May 1 11:51:47 2002 From: tanner at real-time.com (Bob Tanner) Date: Mon Jan 17 13:40:04 2005 Subject: [TCLUG] OpenOffice 1.0 In-Reply-To: <20020501153725.GL4657@fandre.com>; from clay@fandre.com on Wed, May 01, 2002 at 10:37:25AM -0500 References: <20020501044859.H17147@real-time.com> <20020501153725.GL4657@fandre.com> Message-ID: <20020501113247.S4270@real-time.com> Quoting Clay Fandre (clay@fandre.com): > Yea, a co-worker of mine just downloaded it from a sssslllooowww > mirror. When will mn-linux have it? The openoffice mirror has been alive since March 27, 2002, I'm forcing an rsync now, so in a couple hours we should have the latest stuff. -- Minneapolis St. Paul Twin Cities MN | Phone : (952)943-8700 http://www.mn-linux.org Minnesota Linux | Fax : (952)943-8500 Key fingerprint = 6C E9 51 4F D5 3E 4C 66 62 A9 10 E5 35 85 39 D9 From tanner at real-time.com Wed May 1 11:51:58 2002 From: tanner at real-time.com (Bob Tanner) Date: Mon Jan 17 13:40:04 2005 Subject: [TCLUG] OpenOffice 1.0 In-Reply-To: <20020501153725.GL4657@fandre.com>; from clay@fandre.com on Wed, May 01, 2002 at 10:37:25AM -0500 References: <20020501044859.H17147@real-time.com> <20020501153725.GL4657@fandre.com> Message-ID: <20020501113436.T4270@real-time.com> Quoting Clay Fandre (clay@fandre.com): > Yea, a co-worker of mine just downloaded it from a sssslllooowww > mirror. When will mn-linux have it? (* grumble *) Unauthorized use is prohibited. Violators will be prosecuted. receiving file list ... done 1.0.0/ send_files failed to open 1.0.0/.OOo_1.0.0_LinuxIntel_install.tar.gz.ya8xg5: Permission denied wrote 146 bytes read 2354 bytes 5000.00 bytes/sec total size is 4928958844 speedup is 1971583.54 I'll complain to the master-mirror admin. -- Minneapolis St. Paul Twin Cities MN | Phone : (952)943-8700 http://www.mn-linux.org Minnesota Linux | Fax : (952)943-8500 Key fingerprint = 6C E9 51 4F D5 3E 4C 66 62 A9 10 E5 35 85 39 D9 From tanner at real-time.com Wed May 1 12:26:56 2002 From: tanner at real-time.com (Bob Tanner) Date: Mon Jan 17 13:40:04 2005 Subject: [TCLUG] OpenOffice 1.0 In-Reply-To: <20020501153725.GL4657@fandre.com>; from clay@fandre.com on Wed, May 01, 2002 at 10:37:25AM -0500 References: <20020501044859.H17147@real-time.com> <20020501153725.GL4657@fandre.com> Message-ID: <20020501115346.B29150@real-time.com> Quoting Clay Fandre (clay@fandre.com): > Yea, a co-worker of mine just downloaded it from a sssslllooowww > mirror. When will mn-linux have it? Ok, still got some problems, but at least I'm getting some of the files now. Unauthorized use is prohibited. Violators will be prosecuted. receiving file list ... done 1.0.0/ send_files failed to open 1.0.0/.OOo_1.0.0_LinuxIntel_solver.tar.gz.Irh4td: Permission denied send_files failed to open 1.0.0/.OOo_1.0.0_LinuxIntel_solver.tar.gz.bPCROg: Permission denied 1.0.0/OOo_1.0.0_LinuxIntel_install.tar.gz -- Minneapolis St. Paul Twin Cities MN | Phone : (952)943-8700 http://www.mn-linux.org Minnesota Linux | Fax : (952)943-8500 Key fingerprint = 6C E9 51 4F D5 3E 4C 66 62 A9 10 E5 35 85 39 D9 From joelr at ellegon.com Wed May 1 13:09:28 2002 From: joelr at ellegon.com (Joel Rosenberg) Date: Mon Jan 17 13:40:04 2005 Subject: [TCLUG] OpenOffice 1.0 In-Reply-To: <20020501155319.GA8781@isis.visi.com> References: <20020501044859.H17147@real-time.com> <20020501153725.GL4657@fandre.com> <20020501155319.GA8781@isis.visi.com> Message-ID: <20020501173247.2405723295@msp-65-25-234-54.mn.rr.com> On Wednesday 01 May 2002 10:53 am, you wrote: > On a related note, what's the preferred java environment for OpenOffice? > Should I use blackdown or IBM's java? > > -Tim It's not necessary to have java to make OO work -- but I've used the IBM one without a problem. From clay at fandre.com Wed May 1 13:10:38 2002 From: clay at fandre.com (Clay Fandre) Date: Mon Jan 17 13:40:04 2005 Subject: [TCLUG] debian, apt and https? In-Reply-To: <20020501112321.K4270@real-time.com> References: <20020501112321.K4270@real-time.com> Message-ID: <20020501173838.GN4657@fandre.com> I don't think so. Here's a thread related to that: http://groups.google.com/groups?hl=en&frame=right&th=d731a3dd5231e48c&seekm=Pine.LNX.4.44.0203191529580.4094-100000%40tpo2.sourcepole#link1 On Wed, 01 May 2002, Bob Tanner wrote: > Can debian's apt do https? > > -- > Minneapolis St. Paul Twin Cities MN | Phone : (952)943-8700 > http://www.mn-linux.org Minnesota Linux | Fax : (952)943-8500 > Key fingerprint = 6C E9 51 4F D5 3E 4C 66 62 A9 10 E5 35 85 39 D9 > > _______________________________________________ > Twin Cities Linux Users Group Mailing List - Minneapolis/St. Paul, Minnesota > http://www.mn-linux.org > tclug-list@mn-linux.org > https://mailman.mn-linux.org/mailman/listinfo/tclug-list From blutgens at sistina.com Wed May 1 13:11:36 2002 From: blutgens at sistina.com (Ben Lutgens) Date: Mon Jan 17 13:40:04 2005 Subject: [TCLUG] OpenOffice 1.0 In-Reply-To: References: <20020501153725.GL4657@fandre.com> Message-ID: <20020501175942.GC1284@sistina.com> On Wed, May 01, 2002 at 11:25:31AM -0500, Nate Carlson wrote: >I just copied it up to gladiator.. it's at: > >ftp://gladiator.real-time.com/natecars/OOo_1.0.0_LinuxIntel_install.tar.gz [blutgens@titanium ~]$ wget -c ftp://gladiator.real-time.com/natecars/OOo_1LinuxIntel_install.tar.gz --13:00:13-- ftp://gladiator.real-time.com/natecars/OOo_1.0.0_LinuxIntel_install.tar.gz => `OOo_1.0.0_LinuxIntel_install.tar.gz' Connecting to gladiator.real-time.com:21... connected! Logging in as anonymous ... Logged in! ==> SYST ... done. ==> PWD ... done. ==> TYPE I ... done. ==> CWD /natecars ... No such directory `natecars'. -- Ben Lutgens | http://people.sistina.com/~blutgens/ System Administrator | http://www.sistina.com/ Sistina Software Inc. | "If you love something set it free, if it doesn't come back to you hunt it down and set it on fire" -- George Carlin -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 230 bytes Desc: not available Url : http://shadowknight.real-time.com/pipermail/tclug-list/attachments/20020501/162252b9/attachment.pgp From tim at greengibberish.com Wed May 1 14:10:39 2002 From: tim at greengibberish.com (Tim Wheeler) Date: Mon Jan 17 13:40:04 2005 Subject: [TCLUG] OpenOffice 1.0 In-Reply-To: <20020501115346.B29150@real-time.com> References: <20020501044859.H17147@real-time.com> <20020501153725.GL4657@fandre.com> <20020501115346.B29150@real-time.com> Message-ID: <200205011809.g41I9wwW003950@mail.slc.edu> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 grace and peace to you. i use blackdown java and it seems to be treating me well. i've been using it in conjuntion with openoffice since the beginning of the school year. also, for the debian users, openoffice.org is currently being packaged. i've been most pleased with it so far. the debs are labeled 641d, but contain patches from cvs. point atp to: deb http://apt-proxy.sourceforge.net/openoffice/ unstable main contrib deb-src http://apt-proxy.sourceforge.net/openoffice/ unstable main contrib sincerely, tim -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (GNU/Linux) Comment: For info see http://www.gnupg.org iD8DBQE80C+MRNiK9b6/KqoRAhq6AJ9I+weoInW8Mcgjpwh+jlSX/eRhPQCfRke5 zIJ3t767qC2X+IlFBT8gpNI= =ykfu -----END PGP SIGNATURE----- From amy at real-time.com Wed May 1 14:11:41 2002 From: amy at real-time.com (Amy Tanner) Date: Mon Jan 17 13:40:04 2005 Subject: [TCLUG] OpenOffice 1.0 install problems Message-ID: <20020501131257.J5675@real-time.com> Trying to install OO 1.0 that I d/l'd from gladiator. I can't find any INSTALL document, in the tar file or on their website. The link to the linux installation instructions (http://www.openoffice.org/dev_docs/source/1.0.0/instructions.html#linux) is blank. I see only two scripts: setup and install. When I run setup, I get the blue OpenOffice window, then another window that just looks grey with nothing in it. And that's it. If I run install, it spouts a ton of errors. I'm pretty sure setup needs to be run first anyway, from looking at the setup.ins file. Note: I do have staroffice installed - could that be causing the problem? Any ideas? -- Amy Tanner amy@real-time.com -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 524 bytes Desc: not available Url : http://shadowknight.real-time.com/pipermail/tclug-list/attachments/20020501/2c49835e/attachment.pgp From natecars at real-time.com Wed May 1 14:11:54 2002 From: natecars at real-time.com (Nate Carlson) Date: Mon Jan 17 13:40:05 2005 Subject: [TCLUG] OpenOffice 1.0 In-Reply-To: <20020501175942.GC1284@sistina.com> Message-ID: On Wed, 1 May 2002, Ben Lutgens wrote: > [blutgens@titanium ~]$ wget -c > ftp://gladiator.real-time.com/natecars/OOo_1LinuxIntel_install.tar.gz Bob blew away my directory. :( It's at: /linux/openoffice/1.0.0 -- Nate Carlson | Phone : (952)943-8700 http://www.real-time.com | Fax : (952)943-8500 From tanner at real-time.com Wed May 1 14:12:14 2002 From: tanner at real-time.com (Bob Tanner) Date: Mon Jan 17 13:40:05 2005 Subject: [TCLUG] colorful mutt In-Reply-To: <20020501135857.GA4657@fandre.com>; from clay@fandre.com on Wed, May 01, 2002 at 08:59:01AM -0500 References: <20020430220210.GA25158@isis.visi.com> <20020430233024.GA324@sistina.com> <20020501033845.GA10416@isis.visi.com> <20020501135857.GA4657@fandre.com> Message-ID: <20020501133153.Q637@real-time.com> Quoting Clay Fandre (clay@fandre.com): > As for your color problem, what type of system is your visi account > on? Sun? Linux? Knowing the main admin it's either Slowaris or FreeBSD. -- Minneapolis St. Paul Twin Cities MN | Phone : (952)943-8700 http://www.mn-linux.org Minnesota Linux | Fax : (952)943-8500 Key fingerprint = 6C E9 51 4F D5 3E 4C 66 62 A9 10 E5 35 85 39 D9 From tanner at real-time.com Wed May 1 14:12:47 2002 From: tanner at real-time.com (Bob Tanner) Date: Mon Jan 17 13:40:05 2005 Subject: [TCLUG] Kerberos: satan or savior? In-Reply-To: <20020501151346.GB505@wookimus.net>; from chewie@wookimus.net on Wed, May 01, 2002 at 10:13:46AM -0500 References: <20020430225633.V4555@real-time.com> <20020501151346.GB505@wookimus.net> Message-ID: <20020501133318.R637@real-time.com> Quoting Chad Walstrom (chewie@wookimus.net): > Frankly, I would love to do other things to enhance security before > incorporating Kerberos. i.e. NFS over TCP+ssl, etc. Isn't that just AFS+Kerberos = NFS+TCP+ssl? -- Minneapolis St. Paul Twin Cities MN | Phone : (952)943-8700 http://www.mn-linux.org Minnesota Linux | Fax : (952)943-8500 Key fingerprint = 6C E9 51 4F D5 3E 4C 66 62 A9 10 E5 35 85 39 D9 From tanner at real-time.com Wed May 1 14:13:29 2002 From: tanner at real-time.com (Bob Tanner) Date: Mon Jan 17 13:40:05 2005 Subject: [TCLUG] OpenOffice 1.0 In-Reply-To: <20020501155319.GA8781@isis.visi.com>; from wilson@visi.com on Wed, May 01, 2002 at 10:53:19AM -0500 References: <20020501044859.H17147@real-time.com> <20020501153725.GL4657@fandre.com> <20020501155319.GA8781@isis.visi.com> Message-ID: <20020501133409.S637@real-time.com> Quoting Tim Wilson (wilson@visi.com): > On a related note, what's the preferred java environment for OpenOffice? > Should I use blackdown or IBM's java? I like IBM, since it fixes all the font problems of Sun's/Blackdown. -- Minneapolis St. Paul Twin Cities MN | Phone : (952)943-8700 http://www.mn-linux.org Minnesota Linux | Fax : (952)943-8500 Key fingerprint = 6C E9 51 4F D5 3E 4C 66 62 A9 10 E5 35 85 39 D9 From chewie at wookimus.net Wed May 1 14:14:03 2002 From: chewie at wookimus.net (Chad Walstrom) Date: Mon Jan 17 13:40:05 2005 Subject: [TCLUG] debian, apt and https? In-Reply-To: <20020501173838.GN4657@fandre.com> References: <20020501112321.K4270@real-time.com> <20020501173838.GN4657@fandre.com> Message-ID: <20020501184620.GC505@wookimus.net> On Wed, 01 May 2002, Bob Tanner wrote: > Can debian's apt do https? IIRC, no. I can see how this might be a benefit, though. For private repositories, the encryption and client certificate authentication would go a long way in securing and ensuring privacy. A work around until then: run sslwrap on the client machine through inetd and point it to the SSL-protected httpd repository. Your sources.list lines may look something like this then: deb http://localhost:4433/repository dist category In theory, this should work. -- Chad Walstrom | a.k.a. ^chewie http://www.wookimus.net/ | s.k.a. gunnarr -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 232 bytes Desc: not available Url : http://shadowknight.real-time.com/pipermail/tclug-list/attachments/20020501/e2869e48/attachment.pgp From rgullick at pressenter.com Wed May 1 14:14:35 2002 From: rgullick at pressenter.com (rgullick) Date: Mon Jan 17 13:40:05 2005 Subject: [TCLUG] USB External modem Message-ID: <3.0.6.32.20020501140431.00a8d690@pop.pressenter.com> Both of theses modems are sold at GNS. I was told that the serial port one definitely supported Linux, but they weren't sure if the usb one would work. I want to use an external modem, and would prefer the usb one if I knew it wouild work. The Trendnet site did not specifically mention it supported the TFM560U usb modem. Does anyone know the answer to this or where an inexpensive external modem is available? TRENDnet? TFM560U External 56K V.90 USB Fax/Data TRENDnet? TFM560X External 56K V.90 Serial Fax/Data Thanks, lyle wood From chewie at wookimus.net Wed May 1 14:27:26 2002 From: chewie at wookimus.net (Chad Walstrom) Date: Mon Jan 17 13:40:05 2005 Subject: [TCLUG] Kerberos: satan or savior? In-Reply-To: <20020501133318.R637@real-time.com> References: <20020430225633.V4555@real-time.com> <20020501151346.GB505@wookimus.net> <20020501133318.R637@real-time.com> Message-ID: <20020501190938.GD505@wookimus.net> On Wed, May 01, 2002 at 01:33:18PM -0500, Bob Tanner wrote: > Quoting Chad Walstrom (chewie@wookimus.net): > > Frankly, I would love to do other things to enhance security before > > incorporating Kerberos. i.e. NFS over TCP+ssl, etc. > > Isn't that just AFS+Kerberos = NFS+TCP+ssl? I'm RFTM'ing right now. AFS seems pretty cool. I'll talk to Kumsup about it. Unfortunately, it'll probably be one of those backburner things again. -- Chad Walstrom | a.k.a. ^chewie http://www.wookimus.net/ | s.k.a. gunnarr -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 232 bytes Desc: not available Url : http://shadowknight.real-time.com/pipermail/tclug-list/attachments/20020501/ede58d82/attachment.pgp From kbongers at infinetivity.com Wed May 1 14:29:58 2002 From: kbongers at infinetivity.com (Karl Bongers) Date: Mon Jan 17 13:40:05 2005 Subject: [TCLUG] Securing pppd & cgi Message-ID: <3CD040B2.1080602@infinetivity.com> Fellow LugHeads, I have a box at home that I setup as a firewall & ppp dialer to my ISP. I made a cgi-bin bash script that allows me to dial out, turn off the connection, or shut down the machine. (I tried auto-dial/disconnect, but wanted more control) Getting the devices, programs and files setup with workable security(tty-port, pppd, scripts,..) was a challenge. My normal strategy has been to curse unix security, then go root and do whatever I darn please. But coming in through the Apache cgi script forced me to deal with security in something other than my brute force root fashion. My lack of unix security know-how quickly showed, I believe I just SUID various hardware(dev/ttyS#), programs(pppd,chat) and files(scripts, did I do bash? that would be sick, eh?) until it worked. Its a good thing there isn't a master switch to turn the whole system to ROOT, I would have thrown it. Any comments on do's and don'ts in a situation like this? I suppose I should learn how to setup and use group file settings. Heres a good read I found on those funny security bits: http://www.dwheeler.com/secure-programs/Secure-Programs-HOWTO/features.html Any recommendations for good books to have on hand for this sort of thing? After reading a few of your tips can I claim to be a Security Expert? :-) Karl From wilson at visi.com Wed May 1 15:05:29 2002 From: wilson at visi.com (Tim Wilson) Date: Mon Jan 17 13:40:05 2005 Subject: [TCLUG] colorful mutt In-Reply-To: <20020501133153.Q637@real-time.com> References: <20020430220210.GA25158@isis.visi.com> <20020430233024.GA324@sistina.com> <20020501033845.GA10416@isis.visi.com> <20020501135857.GA4657@fandre.com> <20020501133153.Q637@real-time.com> Message-ID: <20020501195724.GA23932@isis.visi.com> On Wed, May 01, 2002 at 01:31:53PM -0500, Bob Tanner wrote: > Quoting Clay Fandre (clay@fandre.com): > > As for your color problem, what type of system is your visi account > > on? Sun? Linux? > > Knowing the main admin it's either Slowaris or FreeBSD. It's SunOS 5.8. Setting TERM to rxvt seems to work pretty well. I'll try xterm-color and check that. I'm getting the colors allright, but instead of having colored text, I'm getting annoying colored backgrounds that make the text hard to read. -Tim -- Tim Wilson | Visit Sibley online: | Check out: Henry Sibley HS | http://www.isd197.org | http://www.zope.com W. St. Paul, MN | | http://slashdot.org wilson@visi.com | | http://linux.com From kbongers at infinetivity.com Wed May 1 15:39:02 2002 From: kbongers at infinetivity.com (Karl Bongers) Date: Mon Jan 17 13:40:05 2005 Subject: [TCLUG] an easy one(how to set groups) Message-ID: <3CD051CC.5080408@infinetivity.com> So I go over to a stock rh7.1 box, compile my serial port application. Run it, it fails since I don't have privileges to /dev/ttyS0. I'd normally do a: su - chmod u+s /dev/ttyS0 or chmod u+s serial_prog Problem is that this lets everybody have root privileges. I would guess that a better way would be to make me part of the select group that has privileges to /dev/ttyS0. ls -l /dev/ttyS0 crw-rw---- root uucp ....... Say I have a UID of "karl", apparently I default to being my own group named "karl". So how do I make user karl be a part of the uucp group? I assume then I would be able to use the port. From hick0088 at tc.umn.edu Wed May 1 16:19:00 2002 From: hick0088 at tc.umn.edu (Mike Hicks) Date: Mon Jan 17 13:40:05 2005 Subject: [TCLUG] Kerberos: satan or savior? In-Reply-To: <20020430225633.V4555@real-time.com> References: <20020430225633.V4555@real-time.com> Message-ID: <1020286442.28050.32.camel@3po.dhs.org> On Tue, 2002-04-30 at 22:56, Bob Tanner wrote: > Having an internal discussion at Real Time about kerberos. [snip] > Anyways, with openssh, ssl, generic TLS stuff. Is kerberos necessary still? > > Some people here are arguing the kerberos is "old" technology and not necessary. > Others argue about security issue in kerberos. Still others argue that kerberos > is the only was to support things like secure/token cards. The main disadvantage that I saw when I took a look at Kerberos (never implemented it anywhere, so maybe my view of the situation is poor) is that it required the hosts that used it to be trusted. Kerberos clients and servers use encryption to keep their communications away from prying eyes, but they use a shared secret key, rather than a public/private keypair like what you see in SSL applications[1]. Using a shared secret key limits the places you can implement Kerberos. You can't have all of your users going around with their laptops. Or, maybe you can, but everyone has to have the same secret key. This is similar to the problem with WEP encryption and public networks. It's essentially useless since everyone knows what the key is. Additionally, I seem to remember that Kerberos only worries about authentication. Things like telnet sessions aren't actually encrypted, IIRC. Even without authentication information, there's a lot of stuff an attacker could get to if they could only sniff the network. I can't remember if that's true, though.. Kerberos, from all I've heard, is still a good system. Unfortunately, the areas where it can be deployed are limited, and there have to be ways for untrusted systems to talk to each other without having others eavesdrop on them. SSH can be set up to act very similarly to a kerberos installation, from what I understand, using ssh-agent and public/private identity files. You can ssh-add an identity, enter your password, and then connect to a server cluster. If the public part of your identity is properly installed on the server cluster and agent forwarding is enabled, you can ssh around without having to enter your password again. Of course, this only works with SSH (as far as I know), so kerberos still probably wins out since so many services have been kerberized. I guess I'd say that it's the beginning of the end for kerberos, but I'm sure it'll be around for a long time. [1] Actually, from what I recall, SSL only uses public/private keypairs at the beginning of a session. Because public key encryption is so CPU-intensive, they just generate a temporary shared secret key, and use that for the rest of the session. -- _ _ _ _ _ ___ _ _ _ ___ _ _ __ I took a course in speed / \/ \(_)| ' // ._\ / - \(_)/ ./| ' /(__ waiting. Now I can wait an \_||_/|_||_|_\\___/ \_-_/|_|\__\|_|_\ __) hour in only ten minutes. [ Mike Hicks | http://umn.edu/~hick0088/ | mailto:hick0088@tc.umn.edu ] -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 232 bytes Desc: This is a digitally signed message part Url : http://shadowknight.real-time.com/pipermail/tclug-list/attachments/20020501/1d6368c1/attachment.pgp From hick0088 at tc.umn.edu Wed May 1 16:21:07 2002 From: hick0088 at tc.umn.edu (Mike Hicks) Date: Mon Jan 17 13:40:06 2005 Subject: [TCLUG] colorful mutt In-Reply-To: <20020501195724.GA23932@isis.visi.com> References: <20020430220210.GA25158@isis.visi.com> <20020430233024.GA324@sistina.com> <20020501033845.GA10416@isis.visi.com> <20020501135857.GA4657@fandre.com> <20020501133153.Q637@real-time.com> <20020501195724.GA23932@isis.visi.com> Message-ID: <1020287482.28045.46.camel@3po.dhs.org> On Wed, 2002-05-01 at 14:57, Tim Wilson wrote: > It's SunOS 5.8. a.k.a. Solaris 8 Just to keep people from getting too confused (and since I was confused when I needed to learn Sun's versioning (and because I'm avoiding homework)), here's a quick reference. Anything less than SunOS 5.0 was retroactively named "Solaris 1" by Sun's marketing department when they came out with "Solaris 2". Versions 5.0-5.6 are Solaris 2.0-2.6 Solaris 7 is actually reported as SunOS 5.7 by `uname', and similarly, Solaris 8 is reported as 5.8. Solaris 9 is supposed to be coming out pretty soon, and I presume it'll be 5.9. I have no idea what Sun is going to do when they hit 10, though.. Incidentally, Slackware Linux made a similar big jump (4->7) about a month after Sun did it with Solaris, if I remember right. -- _ _ _ _ _ ___ _ _ _ ___ _ _ __ Adventure, excitement.. A / \/ \(_)| ' // ._\ / - \(_)/ ./| ' /(__ Jedi craves not these \_||_/|_||_|_\\___/ \_-_/|_|\__\|_|_\ __) things. [ Mike Hicks | http://umn.edu/~hick0088/ | mailto:hick0088@tc.umn.edu ] -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 232 bytes Desc: This is a digitally signed message part Url : http://shadowknight.real-time.com/pipermail/tclug-list/attachments/20020501/92beecfc/attachment.pgp From sulrich at botwerks.org Wed May 1 16:34:12 2002 From: sulrich at botwerks.org (steve ulrich) Date: Mon Jan 17 13:40:06 2005 Subject: [TCLUG] colorful mutt In-Reply-To: <20020501133153.Q637@real-time.com> References: <20020430220210.GA25158@isis.visi.com> <20020430233024.GA324@sistina.com> <20020501033845.GA10416@isis.visi.com> <20020501135857.GA4657@fandre.com> <20020501133153.Q637@real-time.com> Message-ID: <20020501212248.GA44990@botwerks.org> all of the customer accessible shell machines @ visi are solaris. when last we saw our hero (Wednesday, May 01, 2002), Bob Tanner was madly tapping out: > Quoting Clay Fandre (clay@fandre.com): > > As for your color problem, what type of system is your visi account > > on? Sun? Linux? > > Knowing the main admin it's either Slowaris or FreeBSD. > -- steve ulrich sulrich@botwerks.org PGP: 8D0B 0EE9 E700 A6CF ABA7 AE5F 4FD4 07C9 133B FAFC From crumley at belka.space.umn.edu Wed May 1 16:34:57 2002 From: crumley at belka.space.umn.edu (Jim Crumley) Date: Mon Jan 17 13:40:06 2005 Subject: [TCLUG] colorful mutt In-Reply-To: <1020287482.28045.46.camel@3po.dhs.org> References: <20020430220210.GA25158@isis.visi.com> <20020430233024.GA324@sistina.com> <20020501033845.GA10416@isis.visi.com> <20020501135857.GA4657@fandre.com> <20020501133153.Q637@real-time.com> <20020501195724.GA23932@isis.visi.com> <1020287482.28045.46.camel@3po.dhs.org> Message-ID: <20020501162739.B26307@gordo.space.umn.edu> On Wed, May 01, 2002 at 04:11:22PM -0500, Mike Hicks wrote: > Solaris 9 is supposed to be coming out pretty soon, and I presume it'll > be 5.9. I have no idea what Sun is going to do when they hit 10, > though.. Probably just call it 5.10, just like Linux would. Version numbers for lots of programs aren't really decimal numbers. -- Jim Crumley |Twin Cities Linux Users Group Mailing List (TCLUG) crumley@fields.space.umn.edu |Minneapolis/St. Paul, Minnesota Ruthless Debian Zealot |http://www.mn-linux.org/ Never laugh at live dragons |Dmitry's free,Jon's next? http://faircopyright.org From clay at fandre.com Wed May 1 16:35:13 2002 From: clay at fandre.com (Clay Fandre) Date: Mon Jan 17 13:40:06 2005 Subject: [TCLUG] an easy one(how to set groups) In-Reply-To: <3CD051CC.5080408@infinetivity.com> References: <3CD051CC.5080408@infinetivity.com> Message-ID: <20020501212916.GP4657@fandre.com> man group On Wed, 01 May 2002, Karl Bongers wrote: > So I go over to a stock rh7.1 box, > compile my serial port application. Run it, it fails > since I don't have privileges to /dev/ttyS0. > > I'd normally do a: > su - > chmod u+s /dev/ttyS0 > or > chmod u+s serial_prog > > Problem is that this lets everybody have root privileges. > I would guess that a better way would be to make me > part of the select group that has privileges to /dev/ttyS0. > > ls -l /dev/ttyS0 > crw-rw---- root uucp ....... > > Say I have a UID of "karl", apparently I default to > being my own group named "karl". > > So how do I make user karl be a part of the uucp group? > I assume then I would be able to use the port. > > > > > > > _______________________________________________ > Twin Cities Linux Users Group Mailing List - Minneapolis/St. Paul, Minnesota > http://www.mn-linux.org > tclug-list@mn-linux.org > https://mailman.mn-linux.org/mailman/listinfo/tclug-list From esper at sherohman.org Wed May 1 16:35:22 2002 From: esper at sherohman.org (Dave Sherohman) Date: Mon Jan 17 13:40:06 2005 Subject: [TCLUG] an easy one(how to set groups) In-Reply-To: <3CD051CC.5080408@infinetivity.com>; from kbongers@infinetivity.com on Wed, May 01, 2002 at 03:36:28PM -0500 References: <3CD051CC.5080408@infinetivity.com> Message-ID: <20020501162933.F14806@sherohman.org> On Wed, May 01, 2002 at 03:36:28PM -0500, Karl Bongers wrote: > So how do I make user karl be a part of the uucp group? Edit /etc/group and change the line that says uucp::14:uucp (or something similar) to uucp::14:uucp,karl (Use vigr to do this, if your system has it, since that will check to make sure that you haven't broken your group file before saving it.) -- When we reduce our own liberties to stop terrorism, the terrorists have already won. - reverius Innocence is no protection when governments go bad. - Tom Swiss From jethro at freakzilla.com Wed May 1 16:36:23 2002 From: jethro at freakzilla.com (Yaron) Date: Mon Jan 17 13:40:06 2005 Subject: [TCLUG] an easy one(how to set groups) In-Reply-To: <3CD051CC.5080408@infinetivity.com> Message-ID: Hi, On Wed, 1 May 2002, Karl Bongers wrote: > So how do I make user karl be a part of the uucp group? Edit /etc/group, you should see: uucp:x:8: ^ this may vary Change it to: uucp:x:8:karl You can have more users witha comma-seperated list: uucp:x:8:karl,john -Yaron -- From amy at real-time.com Wed May 1 16:36:58 2002 From: amy at real-time.com (Amy Tanner) Date: Mon Jan 17 13:40:06 2005 Subject: [TCLUG] an easy one(how to set groups) In-Reply-To: <3CD051CC.5080408@infinetivity.com>; from kbongers@infinetivity.com on Wed, May 01, 2002 at 03:36:28PM -0500 References: <3CD051CC.5080408@infinetivity.com> Message-ID: <20020501163345.A10482@real-time.com> On Wed, May 01, 2002 at 03:36:28PM -0500, Karl Bongers (kbongers@infinetivity.com) wrote: > Say I have a UID of "karl", apparently I default to > being my own group named "karl". > > So how do I make user karl be a part of the uucp group? > I assume then I would be able to use the port. (as root) edit /etc/group, look for the uucp line, and append your username A user can be in multiple groups. -- Amy Tanner amy@real-time.com -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 524 bytes Desc: not available Url : http://shadowknight.real-time.com/pipermail/tclug-list/attachments/20020501/37b81962/attachment.pgp From zibby+tclug at ringworld.org Wed May 1 17:13:15 2002 From: zibby+tclug at ringworld.org (Andy Zbikowski (Zibby)) Date: Mon Jan 17 13:40:06 2005 Subject: [TCLUG] an easy one(how to set groups) In-Reply-To: <3CD051CC.5080408@infinetivity.com> Message-ID: This is on a Debian box. RedHat might be a bit different, but this should get you the idea. # ls -l /dev/ttyS0 crw-rw---- 1 root dialout 4, 64 May 1 16:26 /dev/ttyS0 So root and users in the dialout group can read and write to the serial port. So check your user: groups zibby zibby : zibby src music Hmmm, zibby isn't in dialout. # sudo adduser zibby dialout Password: Adding user zibby to group dialout... Done. # groups zibby zibby : zibby dialout src music There we go. Now all zibby (me!) needs to do is logout and login again to refresh group permissions to access the serial port. Andrew S. Zbikowski | http://www.ringworld.org "The irony is that Bill Gates claims to be making a stable operating system and Linus Torvalds claims to be trying to take over the world." From chewie at wookimus.net Wed May 1 17:13:19 2002 From: chewie at wookimus.net (Chad Walstrom) Date: Mon Jan 17 13:40:06 2005 Subject: [TCLUG] an easy one(how to set groups) In-Reply-To: <3CD051CC.5080408@infinetivity.com> References: <3CD051CC.5080408@infinetivity.com> Message-ID: <20020501214057.GE505@wookimus.net> On Wed, May 01, 2002 at 03:36:28PM -0500, Karl Bongers wrote: > So how do I make user karl be a part of the uucp group? I assume then > I would be able to use the port. See also: groups(1), usermod(8), adduser(8), /etc/group -- Chad Walstrom | a.k.a. ^chewie http://www.wookimus.net/ | s.k.a. gunnarr -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 232 bytes Desc: not available Url : http://shadowknight.real-time.com/pipermail/tclug-list/attachments/20020501/2dfb3c3b/attachment.pgp From tanner at real-time.com Wed May 1 17:13:22 2002 From: tanner at real-time.com (Bob Tanner) Date: Mon Jan 17 13:40:06 2005 Subject: [TCLUG] java plugin under mozilla Message-ID: <20020501164819.F637@real-time.com> Anyone know why the java plugin doesn't install "out of the box" for mozilla? It looks like it only support Netscape. Does not seem very friendly of Sun. -- Minneapolis St. Paul Twin Cities MN | Phone : (952)943-8700 http://www.mn-linux.org Minnesota Linux | Fax : (952)943-8500 Key fingerprint = 6C E9 51 4F D5 3E 4C 66 62 A9 10 E5 35 85 39 D9 From erik at andersonfam.org Wed May 1 17:13:35 2002 From: erik at andersonfam.org (erik@andersonfam.org) Date: Mon Jan 17 13:40:06 2005 Subject: [TCLUG] meeting this saturday Message-ID: <1020289984.3cd063c083bfb@webmail.andersonfam.org> Hello all - so do I have to do anything special to attend your meeting this saturday? I've been monitoring this list for a few weeks now, and would like to "officially" join tclug. Thanks! -Erik Anderson From amy at real-time.com Wed May 1 17:54:34 2002 From: amy at real-time.com (Amy Tanner) Date: Mon Jan 17 13:40:06 2005 Subject: [TCLUG] Kerberos: satan or savior? In-Reply-To: <1020286442.28050.32.camel@3po.dhs.org>; from hick0088@tc.umn.edu on Wed, May 01, 2002 at 03:54:02PM -0500 References: <20020430225633.V4555@real-time.com> <1020286442.28050.32.camel@3po.dhs.org> Message-ID: <20020501171803.B10482@real-time.com> On Wed, May 01, 2002 at 03:54:02PM -0500, Mike Hicks (hick0088@tc.umn.edu) wrote: > On Tue, 2002-04-30 at 22:56, Bob Tanner wrote: > > Having an internal discussion at Real Time about kerberos. > [snip] > > Anyways, with openssh, ssl, generic TLS stuff. Is kerberos necessary still? > > > > Some people here are arguing the kerberos is "old" technology and not necessary. > > Others argue about security issue in kerberos. Still others argue that kerberos > > is the only was to support things like secure/token cards. > > The main disadvantage that I saw when I took a look at Kerberos (never > implemented it anywhere, so maybe my view of the situation is poor) is > that it required the hosts that used it to be trusted. Kerberos clients > and servers use encryption to keep their communications away from prying > eyes, but they use a shared secret key, rather than a public/private > keypair like what you see in SSL applications[1]. > > Using a shared secret key limits the places you can implement Kerberos. > You can't have all of your users going around with their laptops. Or, > maybe you can, but everyone has to have the same secret key. This is > similar to the problem with WEP encryption and public networks. It's > essentially useless since everyone knows what the key is. No this is not true. Each user has his own kerberos password. This is used to login to the kerberos server. Additionally, each host has its own keytab file that's used for incoming services. For instance, if I want to ktelnet to a box, that box must have a keytab file and the appropriate services enabled on the box. The keytab file is created by a kerberos admin. If it gets changed on the host, but is not updated on the kerberos server, it will not work. I use kerberos every day at work, in conjuction with AFS and RSA SecurID cards. I use kerberos to admin about 50 linux boxes, by ktelnet'ing into them (with encryption). We use AFS for shared file storage, which requires a kerberos password and a SecurID pin. The SecurID pin is an optional, additional layer of security. I can use kerberos at home as well, to get into my box at work. All I have to do is install the kerberos client and the correct krb5.conf file (and know my kerberos password of course). In fact, all the administrators here do this. And we have a lot of people who travel frequently who do this as well. The weak link is your password - if your password gets stolen, someone could masquerade as you. But, that's true of most authentication protocols. > Additionally, I seem to remember that Kerberos only worries about > authentication. Things like telnet sessions aren't actually encrypted, > IIRC. Even without authentication information, there's a lot of stuff > an attacker could get to if they could only sniff the network. I can't > remember if that's true, though.. Nope, it's not true. Kerberos does authentication AND encryption, although encryption is optional. You can turn on encryption with the -x parameter. Look here: http://web.mit.edu/kerberos/www/krb5-1.2/krb5-1.2.5/doc/user-guide.html#SEC17 You can also set encrypt=true in the [appdefaults] section of your krb5.conf file. > Kerberos, from all I've heard, is still a good system. Unfortunately, > the areas where it can be deployed are limited, and there have to be > ways for untrusted systems to talk to each other without having others > eavesdrop on them. Please give me an example. Why would you want an untrusted system to have access to your secure network? > SSH can be set up to act very similarly to a kerberos installation, from > what I understand, using ssh-agent and public/private identity files. > You can ssh-add an identity, enter your password, and then connect to a > server cluster. If the public part of your identity is properly > installed on the server cluster and agent forwarding is enabled, you can > ssh around without having to enter your password again. Of course, this > only works with SSH (as far as I know), so kerberos still probably wins > out since so many services have been kerberized. > > I guess I'd say that it's the beginning of the end for kerberos, but I'm > sure it'll be around for a long time. Well, if it's any indication, the military uses and requires kerberos, so I expect it to stay around for a long time just because of that. Also, AFS requires it. -- Amy Tanner amy@real-time.com -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 524 bytes Desc: not available Url : http://shadowknight.real-time.com/pipermail/tclug-list/attachments/20020501/4d1083fc/attachment.pgp From wilson at visi.com Wed May 1 18:58:24 2002 From: wilson at visi.com (Tim Wilson) Date: Mon Jan 17 13:40:06 2005 Subject: [TCLUG] meeting this saturday In-Reply-To: <1020289984.3cd063c083bfb@webmail.andersonfam.org> References: <1020289984.3cd063c083bfb@webmail.andersonfam.org> Message-ID: <20020501233219.GA7826@isis.visi.com> On Wed, May 01, 2002 at 04:53:04PM -0500, erik@andersonfam.org wrote: > Hello all - so do I have to do anything special to attend your meeting this > saturday? I've been monitoring this list for a few weeks now, and would like > to "officially" join tclug. All first time meeting attenders bring at least 10 dozen chocolate chip cookies. :-) -Tim -- Tim Wilson | Visit Sibley online: | Check out: Henry Sibley HS | http://www.isd197.org | http://www.zope.com W. St. Paul, MN | | http://slashdot.org wilson@visi.com | | http://linux.com From dieman at ringworld.org Wed May 1 19:53:29 2002 From: dieman at ringworld.org (Scott Dier) Date: Mon Jan 17 13:40:07 2005 Subject: [TCLUG] Re: Kerberos: satan or savior? In-Reply-To: <20020430225633.V4555@real-time.com> References: <20020430225633.V4555@real-time.com> Message-ID: <20020501082934.GO4002@ringworld.org> * Bob Tanner [020501 00:06]: > Others argue about security issue in kerberos. Still others argue that kerberos > is the only was to support things like secure/token cards. Kerberos is still one of the few methods you can directly avoid distributing all the password hashes to clients in a cross-platform manner. LDAP can be configured to do the same, but isn't nearly as cross-platform and mature as kerberos yet. Downside about krb: its a pita to get going, its a pita to move to it from anything else, allmost. -- Scott Dier http://www.ringworld.org/ From jacque at fruitioninc.com Wed May 1 19:55:15 2002 From: jacque at fruitioninc.com (Jacqueline Urick) Date: Mon Jan 17 13:40:07 2005 Subject: [TCLUG] [TCLUG-ANNOUNCE] Beer Meeting May 2nd Message-ID: Hi all- Beer meeting May 2nd 6-8pm at Barley John's in New Brighton. http://www.mn-linux.org/beermeeting See ya there! Jacque -------------- next part -------------- An HTML attachment was scrubbed... URL: http://shadowknight.real-time.com/pipermail/tclug-list/attachments/20020501/f2dd476f/attachment.htm From ben at sistina.com Wed May 1 19:55:43 2002 From: ben at sistina.com (Ben Lutgens) Date: Mon Jan 17 13:40:07 2005 Subject: [TCLUG] java plugin under mozilla In-Reply-To: <20020501164819.F637@real-time.com> References: <20020501164819.F637@real-time.com> Message-ID: <20020502002320.GB2329@sistina.com> On Wed, May 01, 2002 at 04:48:19PM -0500, Bob Tanner wrote: >Anyone know why the java plugin doesn't install "out of the box" for mozilla? It >looks like it only support Netscape. Does not seem very friendly of Sun. If you were using Sun's JDK (which I know you use IBM's) you'd get the plugin with that. Otherwise when you install the plugin jre.xpi file, you get a complete jre from Sub to support the plugin. Seems pretty stupid. That's why I deal with the font problems (which are no big deal) and use Sun's JDK. -- Ben Lutgens | http://people.sistina.com/~blutgens/ System Administrator | http://www.sistina.com/ Sistina Software Inc. | "If you love something set it free, if it doesn't come back to you hunt it down and set it on fire" -- George Carlin -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 230 bytes Desc: not available Url : http://shadowknight.real-time.com/pipermail/tclug-list/attachments/20020501/118abcd3/attachment.pgp From clay at fandre.com Wed May 1 19:56:45 2002 From: clay at fandre.com (Clay Fandre) Date: Mon Jan 17 13:40:07 2005 Subject: [TCLUG] meeting this saturday In-Reply-To: <20020501233219.GA7826@isis.visi.com> References: <1020289984.3cd063c083bfb@webmail.andersonfam.org> <20020501233219.GA7826@isis.visi.com> Message-ID: <20020502005102.GB14146@fandre.com> On Wed, 01 May 2002, Timothy Wilson wrote: > On Wed, May 01, 2002 at 04:53:04PM -0500, erik@andersonfam.org wrote: > > Hello all - so do I have to do anything special to attend your meeting this > > saturday? I've been monitoring this list for a few weeks now, and would like > > to "officially" join tclug. > > All first time meeting attenders bring at least 10 dozen chocolate chip > cookies. :-) Actually the preferred method is to mail them to my house. Seriously, you don't need to do anything to join. Just show up and don't be intimidated by (Idiot) Ben. You don't even have to say anything if you don't want to. Just come and listen. From John.Miller at rbcdain.com Wed May 1 21:19:30 2002 From: John.Miller at rbcdain.com (Miller, John) Date: Mon Jan 17 13:40:07 2005 Subject: [TCLUG] printing problems and a ping problem Message-ID: <5F82C717009DF446AD6C89008A29F39402E6B523@MAIL4.corp.isib.net> One day I decided that I would be venturous and set up a dhcp server on box called debian. debian also is the print server and I have samba running on it. I am running cups. My problem is that my windows machines can't connect to print. According to the log.smbd it looks like it calls lib/access.c:check_access and is returned Denied connection from (192.168.0.13). I get the same thing from the other windows maching except an address of 192.168.0.10. The other problem, and I don't know if this is related, but 192.168.0.13 can't ping anyone except 192.168.0.1 (debian). Could someone point me in the direction of how to fix the auth that samba does for the printer. TIA John Miller From clay at fandre.com Wed May 1 21:53:39 2002 From: clay at fandre.com (Clay Fandre) Date: Mon Jan 17 13:40:07 2005 Subject: [TCLUG] printing problems and a ping problem In-Reply-To: <5F82C717009DF446AD6C89008A29F39402E6B523@MAIL4.corp.isib.net> References: <5F82C717009DF446AD6C89008A29F39402E6B523@MAIL4.corp.isib.net> Message-ID: <20020502023756.GC14146@fandre.com> How did you install samba? Via apt or did you compile it? Do you have all the hostnames/IP addresses of all your client machines in /etc/hosts on debian? I doubt that DHCP has anything to do with your problem, but you can check this by setting it statically on those machines. If you are having problems pinging, you probably have some ipchains or iptables rules. What does ipchains -L (or iptables -L) show you? On Wed, 01 May 2002, Miller, John wrote: > One day I decided that I would be venturous and set up a dhcp server on box called debian. debian also is the print server and I have samba running on it. I am running cups. My problem is that my windows machines can't connect to print. According to the log.smbd it looks like it calls lib/access.c:check_access and is returned Denied connection from (192.168.0.13). I get the same thing from the other windows maching except an address of 192.168.0.10. > > The other problem, and I don't know if this is related, but 192.168.0.13 can't ping anyone except 192.168.0.1 (debian). > > Could someone point me in the direction of how to fix the auth that samba does for the printer. > > TIA > > John Miller > _______________________________________________ > Twin Cities Linux Users Group Mailing List - Minneapolis/St. Paul, Minnesota > http://www.mn-linux.org > tclug-list@mn-linux.org > https://mailman.mn-linux.org/mailman/listinfo/tclug-list From hick0088 at tc.umn.edu Wed May 1 22:50:45 2002 From: hick0088 at tc.umn.edu (Mike Hicks) Date: Mon Jan 17 13:40:07 2005 Subject: [TCLUG] Kerberos: satan or savior? In-Reply-To: <20020501171803.B10482@real-time.com> References: <20020430225633.V4555@real-time.com> <1020286442.28050.32.camel@3po.dhs.org> <20020501171803.B10482@real-time.com> Message-ID: <1020310052.28049.266.camel@3po.dhs.org> Well, I suppose I don't know much about Kerberos, then.. I thought I'd read up on it quite a bit, but I guess this is one of those things I really need to see in action before I can figure out what's going on.. Might make a good meeting topic at some point. Anyway... On Wed, 2002-05-01 at 17:18, Amy Tanner wrote: > On Wed, May 01, 2002 at 03:54:02PM -0500, Mike Hicks (hick0088@tc.umn.edu) wrote: > > Using a shared secret key limits the places you can implement Kerberos. > > You can't have all of your users going around with their laptops. Or, > > maybe you can, but everyone has to have the same secret key. This is > > similar to the problem with WEP encryption and public networks. It's > > essentially useless since everyone knows what the key is. > > No this is not true. Each user has his own kerberos password. This is > used to login to the kerberos server. Now that I think some more, maybe what I'm thinking of is communication between the server you're connecting to and the ticket server (the process of validating a ticket). This is much less of a problem, as you probably trust the servers, and wouldn't want a system that is run by a user to be able to accept logins as though it was one of your servers. (Though there are certain cases where that would be good. I had to deal with this sort of thing when we set up authentication for the wireless network at the Carlson School.. RADIUS didn't work for some reason, so I ended up using `cookieauth' instead, which didn't require me to contact anyone to allow me to authenticate people with University x.500 accounts.) > > Kerberos, from all I've heard, is still a good system. Unfortunately, > > the areas where it can be deployed are limited, and there have to be > > ways for untrusted systems to talk to each other without having others > > eavesdrop on them. > > Please give me an example. Why would you want an untrusted system to > have access to your secure network? When I say "untrusted", I mean any system that isn't under the direct control of administrators (ie they don't have the root password, or someone else also has it). Laptops that roam around, dialup systems, etc. I'd like to be able to check my mail while I'm over at a friend's house and using his computer, for instance. -- _ _ _ _ _ ___ _ _ _ ___ _ _ __ I spilled spot remover on / \/ \(_)| ' // ._\ / - \(_)/ ./| ' /(__ my dog. Now he's gone. \_||_/|_||_|_\\___/ \_-_/|_|\__\|_|_\ __) [ Mike Hicks | http://umn.edu/~hick0088/ | mailto:hick0088@tc.umn.edu ] -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 232 bytes Desc: This is a digitally signed message part Url : http://shadowknight.real-time.com/pipermail/tclug-list/attachments/20020501/389a7ef5/attachment.pgp From ben at sistina.com Wed May 1 23:14:10 2002 From: ben at sistina.com (Ben Lutgens) Date: Mon Jan 17 13:40:07 2005 Subject: [TCLUG] Kerberos: satan or savior? In-Reply-To: <20020501171803.B10482@real-time.com> References: <20020430225633.V4555@real-time.com> <1020286442.28050.32.camel@3po.dhs.org> <20020501171803.B10482@real-time.com> Message-ID: <20020502003627.GC2329@sistina.com> On Wed, May 01, 2002 at 05:18:03PM -0500, Amy Tanner wrote: >> similar to the problem with WEP encryption and public networks. It's >> essentially useless since everyone knows what the key is. > >No this is not true. Each user has his own kerberos password. This is >used to login to the kerberos server. Yeah, you create a principle for each user which has a passphrase. Then the user runs a command and is asked to entery thier passphrase. Then they get thier "ticket". It's pretty neat. But converting to kerberos from some other form of centralized authentication/authorization. -- Ben Lutgens | http://people.sistina.com/~blutgens/ System Administrator | http://www.sistina.com/ Sistina Software Inc. | "If you love something set it free, if it doesn't come back to you hunt it down and set it on fire" -- George Carlin -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 230 bytes Desc: not available Url : http://shadowknight.real-time.com/pipermail/tclug-list/attachments/20020501/2021b47d/attachment.pgp From ben at sistina.com Wed May 1 23:14:49 2002 From: ben at sistina.com (Ben Lutgens) Date: Mon Jan 17 13:40:07 2005 Subject: [TCLUG] meeting this saturday In-Reply-To: <20020501233219.GA7826@isis.visi.com> References: <1020289984.3cd063c083bfb@webmail.andersonfam.org> <20020501233219.GA7826@isis.visi.com> Message-ID: <20020502004005.GD2329@sistina.com> >> to "officially" join tclug. > >All first time meeting attenders bring at least 10 dozen chocolate chip >cookies. :-) That's right. And donations of hardware are also expected. I could use an iBook. -- Ben Lutgens | http://people.sistina.com/~blutgens/ System Administrator | http://www.sistina.com/ Sistina Software Inc. | "If you love something set it free, if it doesn't come back to you hunt it down and set it on fire" -- George Carlin -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 230 bytes Desc: not available Url : http://shadowknight.real-time.com/pipermail/tclug-list/attachments/20020501/9de0c8d1/attachment.pgp From ben at sistina.com Wed May 1 23:15:03 2002 From: ben at sistina.com (Ben Lutgens) Date: Mon Jan 17 13:40:08 2005 Subject: [TCLUG] meeting this saturday In-Reply-To: <20020502005102.GB14146@fandre.com> References: <1020289984.3cd063c083bfb@webmail.andersonfam.org> <20020501233219.GA7826@isis.visi.com> <20020502005102.GB14146@fandre.com> Message-ID: <20020502013304.GB2450@sistina.com> On Wed, May 01, 2002 at 07:51:05PM -0500, Clay Fandre wrote: >Seriously, you don't need to do anything to join. Just show up and don't >be intimidated by (Idiot) Ben. You don't even have to say anything if Yeah right, like I could intimidate someone. I may not be soup, and I may not come from a store. But if you want soup from a store, then maybe all this was just a mistake. soup. -- Ben Lutgens | http://people.sistina.com/~blutgens/ System Administrator | http://www.sistina.com/ Sistina Software Inc. | "If you love something set it free, if it doesn't come back to you hunt it down and set it on fire" -- George Carlin -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 230 bytes Desc: not available Url : http://shadowknight.real-time.com/pipermail/tclug-list/attachments/20020501/79b16fec/attachment.pgp From seg at haxxed.com Wed May 1 23:15:28 2002 From: seg at haxxed.com (Callum Lerwick) Date: Mon Jan 17 13:40:08 2005 Subject: [TCLUG] java plugin under mozilla References: <20020501164819.F637@real-time.com> Message-ID: <3CD0A678.7010902@haxxed.com> Bob Tanner wrote: > Anyone know why the java plugin doesn't install "out of the box" for mozilla? It > looks like it only support Netscape. Does not seem very friendly of Sun. If you're using an RPM build you have to install it with mozilla running as root. Or just download the java RPMs from http://java.sun.com/j2se/1.4/download.html You'll have to symlink the plugin into your mozilla plugins directory. From tanner at real-time.com Wed May 1 23:47:02 2002 From: tanner at real-time.com (Bob Tanner) Date: Mon Jan 17 13:40:08 2005 Subject: [TCLUG] OpenOffice 1.0 In-Reply-To: ; from natecars@real-time.com on Wed, May 01, 2002 at 01:17:58PM -0500 References: <20020501175942.GC1284@sistina.com> Message-ID: <20020501231609.R17147@real-time.com> Quoting Nate Carlson (natecars@real-time.com): > On Wed, 1 May 2002, Ben Lutgens wrote: > > [blutgens@titanium ~]$ wget -c > > ftp://gladiator.real-time.com/natecars/OOo_1LinuxIntel_install.tar.gz > > Bob blew away my directory. :( > > It's at: > > /linux/openoffice/1.0.0 > Openoffice requests that you submit a weekly report of the number of downloads by platform. They want to keep a fairly accruate download counter to show the popularity of openoffice. So, I moved the file out of public viewing to "force" everyone to get the files from the "official" location on gladitor. -- Minneapolis St. Paul Twin Cities MN | Phone : (952)943-8700 http://www.mn-linux.org Minnesota Linux | Fax : (952)943-8500 Key fingerprint = 6C E9 51 4F D5 3E 4C 66 62 A9 10 E5 35 85 39 D9 From natecars at real-time.com Wed May 1 23:47:19 2002 From: natecars at real-time.com (natecars@real-time.com) Date: Mon Jan 17 13:40:08 2005 Subject: [TCLUG] OpenOffice 1.0 In-Reply-To: Message-ID: On Wed, 1 May 2002, Nate Carlson wrote: > Bob blew away my directory. :( > > It's at: > > /linux/openoffice/1.0.0 Sorry -- brain not with me today. I think it's because I skipped caffeine.. Bob -moved- my directory, as we have to report to OpenOffice how many people grab it from our mirror, so I was screwing that up. So, apologies to Bob. -- Nate Carlson | Phone : (952)943-8700 http://www.real-time.com | Fax : (952)943-8500 From tanner at real-time.com Wed May 1 23:47:35 2002 From: tanner at real-time.com (Bob Tanner) Date: Mon Jan 17 13:40:08 2005 Subject: [TCLUG] debian, apt and https? In-Reply-To: <20020501184620.GC505@wookimus.net>; from chewie@wookimus.net on Wed, May 01, 2002 at 01:46:20PM -0500 References: <20020501112321.K4270@real-time.com> <20020501173838.GN4657@fandre.com> <20020501184620.GC505@wookimus.net> Message-ID: <20020501231938.S17147@real-time.com> Quoting Chad Walstrom (chewie@wookimus.net): > A work around until then: run sslwrap on the client machine through > inetd and point it to the SSL-protected httpd repository. Your > sources.list lines may look something like this then: > > deb http://localhost:4433/repository dist category > > In theory, this should work. Hmm, that seems like a less complicated solution then setting up ipsec tunnels! -- Minneapolis St. Paul Twin Cities MN | Phone : (952)943-8700 http://www.mn-linux.org Minnesota Linux | Fax : (952)943-8500 Key fingerprint = 6C E9 51 4F D5 3E 4C 66 62 A9 10 E5 35 85 39 D9 From mcnixon at wwdb.org Thu May 2 08:26:38 2002 From: mcnixon at wwdb.org (Mike Nixon) Date: Mon Jan 17 13:40:08 2005 Subject: [TCLUG] Re: meeting this saturday References: <200205020124.g421Oa116670@sprite.real-time.com> Message-ID: <000e01c1f1dc$4d982400$0d86fea9@can> In that case I won't be attending for the first time. Instead I'm a long lost member returning, and the reason none of you remember me, is I was only there for that one meeting you missed ;-) Mike Nixon >On Wed, May 01, 2002 at 04:53:04PM -0500, erik@andersonfam.org wrote: >> Hello all - so do I have to do anything special to attend your meeting this >> saturday? I've been monitoring this list for a few weeks now, and would like >> to "officially" join tclug. > >All first time meeting attenders bring at least 10 dozen chocolate chip >cookies. :-) > >-Tim From clay at fandre.com Thu May 2 11:03:11 2002 From: clay at fandre.com (Clay Fandre) Date: Mon Jan 17 13:40:08 2005 Subject: [TCLUG] Any northerner going to meeting? Message-ID: <20020502154043.GE28376@fandre.com> Due to some child-care issues, I probably won't be able to make it to the meeting on Saturday. I do have a bunch of stuff I wanted to hand out at the meeting, such as O'Reilly coupons, Strictly Business passes, etc. Anyone live around Andover/Coon Rapids that could take some boxes to the meeting? I could drop them off whenever. Email me off the list. And since I won't be there, could one of you elders step up and get the meeting going? I know there are quite a few first-timers going, so try and make them feel welcome. Also try and give Ethan a nice introduction. Thanks. -- Clay From alcyone at slava.net Thu May 2 11:04:22 2002 From: alcyone at slava.net (Lorry) Date: Mon Jan 17 13:40:08 2005 Subject: [TCLUG] more colorful mutt stuff Message-ID: <20020502154506.GA4781@aldebaran.slava.net> I have two different IMAP servers that my mail is on. One is my school mail, and one is my personal mail. I like to keep them separate. I use mutt for both, but my personal mail I check using mutt on my laptop and for my school mail, I use mutt either at school or by ssh to school. My personal mail mutt is working fine and is as colorful as I could want. My school mail mutt is not colorful, whether I am at school or ssh'ing. I am not that concerned about it, but the recent thread has me wondering more about it. If there is no solution, no biggie, but I'm curious. Here are the details: **My personal mail mutt (working): alcyone@aldebaran [~] > mutt -v Mutt 1.3.27i (2002-01-22) [snip] System: Linux 2.4.9-31 (i686) [using ncurses 5.2] alcyone@aldebaran [~] > cat .muttrc [snip] # Color Definitions ####################################################### color normal default default color hdrdefault cyan default [etc.] **My school mail mutt (not working): strother@ash [~] > mutt -v Mutt 1.3.28i (2002-03-13) [snip] System: SunOS 5.8 (sun4u) - If I use the color definitions from my home .muttrc, I get errors because "default" is not a recognized color. - If I change the colors to all recognized colors (no defaults), all the colors show up as my xterm default fg/bg anyway. - When I ssh to school, I can see colors in other progs (ls --color, man, vim, etc.) - When I am actually at school, I never see any colors other than my default fg/bg in an xterm. "Colors" in man, vim, etc. show up as bolding and underlining. Colors in non-console apps (Netscape, acroread, etc.) are normal. - using ssh: strother@ash [~] > set term=xterm-color tcsh: using dumb terminal settings. strother@ash [~] > set term=rxvt tcsh: using dumb terminal settings. strother@ash [~] > mutt Sorry, I don't know anything about your "rxvt" terminal. setting term to xterm, xtermc, and vt100 work, but still there are no colors in mutt. In all above cases (even in "using dumb..") ls --color, etc. show colors. Thanks, Lorry From goldman at htc.honeywell.com Thu May 2 11:45:31 2002 From: goldman at htc.honeywell.com (Robert P. Goldman) Date: Mon Jan 17 13:40:08 2005 Subject: [TCLUG] other mutt stuff In-Reply-To: <20020502154506.GA4781@aldebaran.slava.net> References: <20020502154506.GA4781@aldebaran.slava.net> Message-ID: <15569.26005.445111.30554@mn65-zippy.htc.honeywell.com> Has anyone experimented with the mutt facility for connecting to external contact lists for mail address choice/completion? I'm trying to get myself pried off outlook, and what I'd like is some such contact manager that (1) hooks into a mail program I like (either emacs vm or mutt) and (2) is synchronizable with a Palm. Any suggestions? I saw that there's a configurable address query interface in mutt, but I didn't find any good examples of how to use it. Ideally, I'd like a relatively minimal tool --- I'm not sure it would be a huge win to go from a bloated tool like outlook to evolution, which looks pretty bloated, too. But I haven't used evolution, so I'm probably just slandering it. Thanks! R From clay at fandre.com Thu May 2 11:46:13 2002 From: clay at fandre.com (Clay Fandre) Date: Mon Jan 17 13:40:08 2005 Subject: [TCLUG] more colorful mutt stuff In-Reply-To: <20020502154506.GA4781@aldebaran.slava.net> References: <20020502154506.GA4781@aldebaran.slava.net> Message-ID: <20020502162110.GG28376@fandre.com> Solaris sucks. I've never been able to get color mutt running on it. I haven't tried in a few years now, but if I remember correctly you needed to recompile ncurses with some extra options and then recompile mutt to use the new ncurses libraries. (or something like that) I found it easier to use fetchmail to download to my Linux server. On Thu, 02 May 2002, Lorry wrote: > I have two different IMAP servers that my mail is on. One is my school mail, > and one is my personal mail. I like to keep them separate. I use mutt for > both, but my personal mail I check using mutt on my laptop and for my school > mail, I use mutt either at school or by ssh to school. > > My personal mail mutt is working fine and is as colorful as I could want. My > school mail mutt is not colorful, whether I am at school or ssh'ing. I am not > that concerned about it, but the recent thread has me wondering more about it. > If there is no solution, no biggie, but I'm curious. > > Here are the details: > > **My personal mail mutt (working): > alcyone@aldebaran [~] > mutt -v > Mutt 1.3.27i (2002-01-22) > [snip] > System: Linux 2.4.9-31 (i686) [using ncurses 5.2] > > alcyone@aldebaran [~] > cat .muttrc > [snip] > # Color Definitions ####################################################### > color normal default default > color hdrdefault cyan default > [etc.] > > **My school mail mutt (not working): > strother@ash [~] > mutt -v > Mutt 1.3.28i (2002-03-13) > [snip] > System: SunOS 5.8 (sun4u) > > - If I use the color definitions from my home .muttrc, I get errors because > "default" is not a recognized color. > - If I change the colors to all recognized colors (no defaults), all the > colors show up as my xterm default fg/bg anyway. > - When I ssh to school, I can see colors in other progs (ls --color, man, > vim, etc.) > - When I am actually at school, I never see any colors other than my default > fg/bg in an xterm. "Colors" in man, vim, etc. show up as bolding and > underlining. Colors in non-console apps (Netscape, acroread, etc.) are normal. > - using ssh: > strother@ash [~] > set term=xterm-color > tcsh: using dumb terminal settings. > strother@ash [~] > set term=rxvt > tcsh: using dumb terminal settings. > strother@ash [~] > mutt > Sorry, I don't know anything about your "rxvt" terminal. > > setting term to xterm, xtermc, and vt100 work, but still there are no colors > in mutt. In all above cases (even in "using dumb..") ls --color, etc. show > colors. > > Thanks, > Lorry > _______________________________________________ > Twin Cities Linux Users Group Mailing List - Minneapolis/St. Paul, Minnesota > http://www.mn-linux.org > tclug-list@mn-linux.org > https://mailman.mn-linux.org/mailman/listinfo/tclug-list From avikingtoo at usjet.net Thu May 2 11:47:27 2002 From: avikingtoo at usjet.net (Avikingtoo) Date: Mon Jan 17 13:40:08 2005 Subject: [TCLUG] Need help finding: 72 pin SIMM-FPM memory Message-ID: <5.1.0.14.0.20020502111153.009e78b0@mail.usfamily.net> Dear All, I can't find any 72 pin SIMM -- FPM (fast page mode) memory modules in the Twin Cities, that I need for an old box that I am going to install a Linux distro (SuSE 8.0 pro) on -- for the first time (a newbe here). I have checked all the "big" local suppliers (e.g. GNS, etc). Any and all leads will be very much appreciated! Thank you in advance for your reply. :-) Don~ ------ http://USFamily.Net/info - Unlimited Internet - From $8.99/mo! ------ From clay at fandre.com Thu May 2 12:25:04 2002 From: clay at fandre.com (Clay Fandre) Date: Mon Jan 17 13:40:08 2005 Subject: [TCLUG] other mutt stuff In-Reply-To: <15569.26005.445111.30554@mn65-zippy.htc.honeywell.com> References: <20020502154506.GA4781@aldebaran.slava.net> <15569.26005.445111.30554@mn65-zippy.htc.honeywell.com> Message-ID: <20020502165042.GI28376@fandre.com> If your exchange server has LDAP enabled, you can use that. http://thomas.eibner.dk/misc/muttexchange/ On Thu, 02 May 2002, Robert P. Goldman wrote: > > Has anyone experimented with the mutt facility for connecting to > external contact lists for mail address choice/completion? I'm trying > to get myself pried off outlook, and what I'd like is some such > contact manager that (1) hooks into a mail program I like (either > emacs vm or mutt) and (2) is synchronizable with a Palm. Any > suggestions? I saw that there's a configurable address query > interface in mutt, but I didn't find any good examples of how to use > it. > > Ideally, I'd like a relatively minimal tool --- I'm not sure it would > be a huge win to go from a bloated tool like outlook to evolution, > which looks pretty bloated, too. But I haven't used evolution, so I'm > probably just slandering it. > > Thanks! > R > _______________________________________________ > Twin Cities Linux Users Group Mailing List - Minneapolis/St. Paul, Minnesota > http://www.mn-linux.org > tclug-list@mn-linux.org > https://mailman.mn-linux.org/mailman/listinfo/tclug-list From wilson at visi.com Thu May 2 12:26:00 2002 From: wilson at visi.com (Tim Wilson) Date: Mon Jan 17 13:40:08 2005 Subject: [TCLUG] more colorful mutt stuff In-Reply-To: <20020502162110.GG28376@fandre.com> References: <20020502154506.GA4781@aldebaran.slava.net> <20020502162110.GG28376@fandre.com> Message-ID: <20020502165757.GA17182@isis.visi.com> On Thu, May 02, 2002 at 11:21:11AM -0500, Clay Fandre wrote: > Solaris sucks. I've never been able to get color mutt running on it. I > haven't tried in a few years now, but if I remember correctly you > needed to recompile ncurses with some extra options and then recompile > mutt to use the new ncurses libraries. (or something like that) It ended up working on my visi.com account using TERM=rxvt. -Tim -- Tim Wilson | Visit Sibley online: | Check out: Henry Sibley HS | http://www.isd197.org | http://www.zope.com W. St. Paul, MN | | http://slashdot.org wilson@visi.com | | http://linux.com From wilson at visi.com Thu May 2 12:26:16 2002 From: wilson at visi.com (Tim Wilson) Date: Mon Jan 17 13:40:08 2005 Subject: [TCLUG] other mutt stuff In-Reply-To: <15569.26005.445111.30554@mn65-zippy.htc.honeywell.com> References: <20020502154506.GA4781@aldebaran.slava.net> <15569.26005.445111.30554@mn65-zippy.htc.honeywell.com> Message-ID: <20020502170012.GB17182@isis.visi.com> On Thu, May 02, 2002 at 11:13:09AM -0500, Robert P. Goldman wrote: > > Has anyone experimented with the mutt facility for connecting to > external contact lists for mail address choice/completion? I'm trying I've haven't tried it, but it looks like mutt can use ldap. Here's a link to someone using it to get addresses from Exchange. (http://thomas.eibner.dk/misc/muttexchange/) -Tim -- Tim Wilson | Visit Sibley online: | Check out: Henry Sibley HS | http://www.isd197.org | http://www.zope.com W. St. Paul, MN | | http://slashdot.org wilson@visi.com | | http://linux.com From scot at thinkunix.net Thu May 2 12:26:59 2002 From: scot at thinkunix.net (Scot Jenkins) Date: Mon Jan 17 13:40:08 2005 Subject: [TCLUG] other mutt stuff In-Reply-To: <15569.26005.445111.30554@mn65-zippy.htc.honeywell.com>; from goldman@htc.honeywell.com on Thu, May 02, 2002 at 11:13:09AM -0500 References: <20020502154506.GA4781@aldebaran.slava.net> <15569.26005.445111.30554@mn65-zippy.htc.honeywell.com> Message-ID: <20020502120152.C22298@okane.localnet> Robert P. Goldman wrote: > Has anyone experimented with the mutt facility for connecting to > external contact lists for mail address choice/completion? came a cross this a while ago but haven't gotten around to setting it up yet. not sure if it does has palm capability. http://abook.sourceforge.net/ From hick0088 at tc.umn.edu Thu May 2 12:27:16 2002 From: hick0088 at tc.umn.edu (Mike Hicks) Date: Mon Jan 17 13:40:08 2005 Subject: [TCLUG] more colorful mutt stuff In-Reply-To: <20020502162110.GG28376@fandre.com> References: <20020502154506.GA4781@aldebaran.slava.net> <20020502162110.GG28376@fandre.com> Message-ID: <1020358940.8428.35.camel@3po.dhs.org> On Thu, 2002-05-02 at 11:21, Clay Fandre wrote: > Solaris sucks. I've never been able to get color mutt running on it. I > haven't tried in a few years now, but if I remember correctly you > needed to recompile ncurses with some extra options and then recompile > mutt to use the new ncurses libraries. (or something like that) I'm not sure if this is the case on Solaris, but when I tried to compile mutt a few years back on my Linux system (I think it was the international version that worked with GPG/PGP), I had to build in the s-lang library. I'm pretty sure ncurses can do color, but for whatever reason, mutt needed to use s-lang at the time. -- _ _ _ _ _ ___ _ _ _ ___ _ _ __ Pay no attention to the man / \/ \(_)| ' // ._\ / - \(_)/ ./| ' /(__ behind the curtain. \_||_/|_||_|_\\___/ \_-_/|_|\__\|_|_\ __) [ Mike Hicks | http://umn.edu/~hick0088/ | mailto:hick0088@tc.umn.edu ] -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 232 bytes Desc: This is a digitally signed message part Url : http://shadowknight.real-time.com/pipermail/tclug-list/attachments/20020502/0cb1fab2/attachment.pgp From scot at thinkunix.net Thu May 2 12:27:25 2002 From: scot at thinkunix.net (Scot Jenkins) Date: Mon Jan 17 13:40:09 2005 Subject: [TCLUG] Need help finding: 72 pin SIMM-FPM memory In-Reply-To: <5.1.0.14.0.20020502111153.009e78b0@mail.usfamily.net>; from avikingtoo@usjet.net on Thu, May 02, 2002 at 11:28:04AM -0500 References: <5.1.0.14.0.20020502111153.009e78b0@mail.usfamily.net> Message-ID: <20020502120421.D22298@okane.localnet> Avikingtoo wrote: > > Dear All, > > I can't find any 72 pin SIMM -- FPM (fast page mode) memory modules in the > Twin Cities > I have checked all the "big" local suppliers (e.g. GNS, etc). Any and all > leads will be very much appreciated! try the little guy: surplus store, pretty sure they have some but might be spendy. http://www.materialsprocessing.com/sspage.htm or Dexis in Eden Prairie http://www.dexis.com/ From natecars at real-time.com Thu May 2 12:27:35 2002 From: natecars at real-time.com (Nate Carlson) Date: Mon Jan 17 13:40:09 2005 Subject: [TCLUG] debian, apt and https? In-Reply-To: <20020501231938.S17147@real-time.com> Message-ID: On Wed, 1 May 2002, Bob Tanner wrote: > Hmm, that seems like a less complicated solution then setting up ipsec > tunnels! But IPSec is easy, and oh-so-geeky! :) -- Nate Carlson | Phone : (952)943-8700 http://www.real-time.com | Fax : (952)943-8500 From John.Miller at rbcdain.com Thu May 2 12:28:13 2002 From: John.Miller at rbcdain.com (Miller, John) Date: Mon Jan 17 13:40:09 2005 Subject: [TCLUG] printing problems and a ping problem Message-ID: <5F82C717009DF446AD6C89008A29F39402E6B52B@MAIL4.corp.isib.net> I installed SAMBA usign apt. According to the man page for samba, the page is current for version 2.2. and hosts does have a list of the ip of the computers. DHCP assigns the same ip to each computer on reboot so it is almost like have a static ip. I have smb.conf line that states to allow 192.168.0 John -----Original Message----- From: Clay Fandre [mailto:clay@fandre.com] Sent: Wed 5/1/2002 9:38 PM To: TCLUG List Cc: Subject: Re: [TCLUG] printing problems and a ping problem How did you install samba? Via apt or did you compile it? Do you have all the hostnames/IP addresses of all your client machines in /etc/hosts on debian? I doubt that DHCP has anything to do with your problem, but you can check this by setting it statically on those machines. If you are having problems pinging, you probably have some ipchains or iptables rules. What does ipchains -L (or iptables -L) show you? On Wed, 01 May 2002, Miller, John wrote: > One day I decided that I would be venturous and set up a dhcp server on box called debian. debian also is the print server and I have samba running on it. I am running cups. My problem is that my windows machines can't connect to print. According to the log.smbd it looks like it calls lib/access.c:check_access and is returned Denied connection from (192.168.0.13). I get the same thing from the other windows maching except an address of 192.168.0.10. > > The other problem, and I don't know if this is related, but 192.168.0.13 can't ping anyone except 192.168.0.1 (debian). > > Could someone point me in the direction of how to fix the auth that samba does for the printer. > > TIA > > John Miller > _______________________________________________ > Twin Cities Linux Users Group Mailing List - Minneapolis/St. Paul, Minnesota > http://www.mn-linux.org > tclug-list@mn-linux.org > https://mailman.mn-linux.org/mailman/listinfo/tclug-list _______________________________________________ Twin Cities Linux Users Group Mailing List - Minneapolis/St. Paul, Minnesota http://www.mn-linux.org tclug-list@mn-linux.org https://mailman.mn-linux.org/mailman/listinfo/tclug-list -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/ms-tnef Size: 3421 bytes Desc: not available Url : http://shadowknight.real-time.com/pipermail/tclug-list/attachments/20020502/97e0bec2/attachment.bin From crumley at belka.space.umn.edu Thu May 2 12:28:52 2002 From: crumley at belka.space.umn.edu (Jim Crumley) Date: Mon Jan 17 13:40:09 2005 Subject: [TCLUG] more colorful mutt stuff In-Reply-To: <20020502162110.GG28376@fandre.com> References: <20020502154506.GA4781@aldebaran.slava.net> <20020502162110.GG28376@fandre.com> Message-ID: <20020502120945.A28693@gordo.space.umn.edu> On Thu, May 02, 2002 at 11:21:11AM -0500, Clay Fandre wrote: > Solaris sucks. I've never been able to get color mutt running on it. I > haven't tried in a few years now, but if I remember correctly you > needed to recompile ncurses with some extra options and then recompile > mutt to use the new ncurses libraries. (or something like that) Its not quite that bad to get color working on Solaris, but its not pleasant. The easiest way around it is to use one of the Solaris supplied terminals that supports color (dtterm). If that doesn't suit you (and it doesn't me), then you have to supplement Sun terminfo information. Here's [1] partial directions for doing this. Basically, you have to get terminfo for terminals that Sun doesn't support from a Linux box (or somewhere else), then compile it into a Sun ready format with "tic". Then you just have to use a color ready terminal like rxvt, NOT Sun's xterm. 1. http://www.balug.org/ml/balug-talk/msg00813.html -- Jim Crumley |Twin Cities Linux Users Group Mailing List (TCLUG) crumley@fields.space.umn.edu |Minneapolis/St. Paul, Minnesota Ruthless Debian Zealot |http://www.mn-linux.org/ Never laugh at live dragons |Dmitry's free,Jon's next? http://faircopyright.org From goldman at htc.honeywell.com Thu May 2 13:18:35 2002 From: goldman at htc.honeywell.com (Robert P. Goldman) Date: Mon Jan 17 13:40:09 2005 Subject: [TCLUG] other mutt stuff In-Reply-To: <20020502165042.GI28376@fandre.com> References: <20020502154506.GA4781@aldebaran.slava.net> <15569.26005.445111.30554@mn65-zippy.htc.honeywell.com> <20020502165042.GI28376@fandre.com> Message-ID: <15569.31983.434788.109288@mn65-zippy.htc.honeywell.com> >>>>> "CF" == Clay Fandre writes: CF> If your exchange server has LDAP enabled, you can use that. CF> http://thomas.eibner.dk/misc/muttexchange/ I should have been more clear; I have a personal copy of Outlook 2000 with an address book of my own, but not an exchange server. So I'm looking for a desktop, not an enterprise solution. Something where I can keep my personal address book (like evolution, or maybe KDE organizer or kpilot), synch with my Palm, etc. Thanks, R From goldman at htc.honeywell.com Thu May 2 13:19:32 2002 From: goldman at htc.honeywell.com (Robert P. Goldman) Date: Mon Jan 17 13:40:09 2005 Subject: [TCLUG] other mutt stuff In-Reply-To: <20020502120152.C22298@okane.localnet> References: <20020502154506.GA4781@aldebaran.slava.net> <15569.26005.445111.30554@mn65-zippy.htc.honeywell.com> <20020502120152.C22298@okane.localnet> Message-ID: <15569.32083.751919.633842@mn65-zippy.htc.honeywell.com> >>>>> "SJ" == Scot Jenkins writes: SJ> Robert P. Goldman wrote: >> Has anyone experimented with the mutt facility for connecting to >> external contact lists for mail address choice/completion? SJ> came a cross this a while ago but haven't gotten around to setting it up SJ> yet. not sure if it does has palm capability. SJ> http://abook.sourceforge.net/ Doesn't seem to be sophisticated enough to synch. Can import and export, but not synch. R From goldman at htc.honeywell.com Thu May 2 13:19:55 2002 From: goldman at htc.honeywell.com (Robert P. Goldman) Date: Mon Jan 17 13:40:09 2005 Subject: [TCLUG] other mutt stuff In-Reply-To: <20020502120152.C22298@okane.localnet> References: <20020502154506.GA4781@aldebaran.slava.net> <15569.26005.445111.30554@mn65-zippy.htc.honeywell.com> <20020502120152.C22298@okane.localnet> Message-ID: <15569.32645.621514.584829@mn65-zippy.htc.honeywell.com> Does the KDE address book have a nice command-line interface? I suppose one could always write some perl to get stuff out of the database.... R From chewie at wookimus.net Thu May 2 13:20:40 2002 From: chewie at wookimus.net (Chad Walstrom) Date: Mon Jan 17 13:40:09 2005 Subject: [TCLUG] other mutt stuff In-Reply-To: <15569.26005.445111.30554@mn65-zippy.htc.honeywell.com> References: <20020502154506.GA4781@aldebaran.slava.net> <15569.26005.445111.30554@mn65-zippy.htc.honeywell.com> Message-ID: <20020502180126.GC11012@wookimus.net> On Thu, May 02, 2002 at 11:13:09AM -0500, Robert P. Goldman wrote: > Has anyone experimented with the mutt facility for connecting to > external contact lists for mail address choice/completion? What about the Little Brother Database? (lbdb) Package: lbdb Priority: optional Section: mail Installed-Size: 199 Maintainer: Roland Rosenfeld Architecture: i386 Version: 0.26 Depends: libc6 (>= 2.2.4-4), perl, mawk | awk Suggests: mutt | mutt-ja, procmail, finger, abook, libpalm-perl, libnet-ldap-perl Filename: pool/main/l/lbdb/lbdb_0.26_i386.deb Size: 66278 MD5sum: cdabe723e58da3429bfca8b67e78b14d Description: The little brother's database for the mutt mail reader This package consists of a set of small tools, which collect mail addresses from several sources and offer these addresses to the mutt external query feature. At the moment the following modules are supported: - m_finger (uses the finger(1) command) - m_inmail (scans incoming mail for addresses) - m_passwd (searches /etc/passwd) - m_yppasswd (searches the YP password database) - m_nispasswd (searches the YP password database) - m_getent (searches the configured password database) - m_pgp2, m_pgp5, m_gpg (searches your PGP or GnuPG keyrings) - m_fido (searches the Fidonet nodelist) - m_abook (uses the address book application abook(1)) - m_addr_email (uses addr-email from the addressbook Tk program) - m_muttalias (searches your Mutt mail aliases) - m_pine (searches your Pine addressbook files) - m_wanderlust (search the WanderLust alias database) - m_palm (uses your Palm database; needs libpalm-perl package) - m_gnomecard (uses GnomeCard database files) - m_bbdb (search your BBDB (big brother database)) - m_ldap (query some LDAP server) -- Chad Walstrom | a.k.a. ^chewie http://www.wookimus.net/ | s.k.a. gunnarr -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 232 bytes Desc: not available Url : http://shadowknight.real-time.com/pipermail/tclug-list/attachments/20020502/7e306ac0/attachment.pgp From clay at fandre.com Thu May 2 13:21:55 2002 From: clay at fandre.com (Clay Fandre) Date: Mon Jan 17 13:40:09 2005 Subject: [TCLUG] printing problems and a ping problem In-Reply-To: <5F82C717009DF446AD6C89008A29F39402E6B52B@MAIL4.corp.isib.net> References: <5F82C717009DF446AD6C89008A29F39402E6B52B@MAIL4.corp.isib.net> Message-ID: <20020502181335.GK28376@fandre.com> Try removing the line in smb.conf so it allows everyone. Then see if you can access it. On Thu, 02 May 2002, Miller, John wrote: > I installed SAMBA usign apt. According to the man page for samba, the page is current for version 2.2. and hosts does have a list of the ip of the computers. > > DHCP assigns the same ip to each computer on reboot so it is almost like have a static ip. I have smb.conf line that states to allow 192.168.0 > > John > > > -----Original Message----- > From: Clay Fandre [mailto:clay@fandre.com] > Sent: Wed 5/1/2002 9:38 PM > To: TCLUG List > Cc: > Subject: Re: [TCLUG] printing problems and a ping problem > > How did you install samba? Via apt or did you compile it? Do you have > all the hostnames/IP addresses of all your client machines in > /etc/hosts on debian? > > I doubt that DHCP has anything to do with your problem, but you can > check this by setting it statically on those machines. > > If you are having problems pinging, you probably have some ipchains or > iptables rules. What does ipchains -L (or iptables -L) show you? > > On Wed, 01 May 2002, Miller, John wrote: > > > One day I decided that I would be venturous and set up a dhcp server on box called debian. debian also is the print server and I have samba running on it. I am running cups. My problem is that my windows machines can't connect to print. According to the log.smbd it looks like it calls lib/access.c:check_access and is returned Denied connection from (192.168.0.13). I get the same thing from the other windows maching except an address of 192.168.0.10. > > > > The other problem, and I don't know if this is related, but 192.168.0.13 can't ping anyone except 192.168.0.1 (debian). > > > > Could someone point me in the direction of how to fix the auth that samba does for the printer. > > > > TIA > > > > John Miller > > _______________________________________________ > > Twin Cities Linux Users Group Mailing List - Minneapolis/St. Paul, Minnesota > > http://www.mn-linux.org > > tclug-list@mn-linux.org > > https://mailman.mn-linux.org/mailman/listinfo/tclug-list > _______________________________________________ > Twin Cities Linux Users Group Mailing List - Minneapolis/St. Paul, Minnesota > http://www.mn-linux.org > tclug-list@mn-linux.org > https://mailman.mn-linux.org/mailman/listinfo/tclug-list > > From troy.johnson at HEALTH.STATE.MN.US Thu May 2 13:59:23 2002 From: troy.johnson at HEALTH.STATE.MN.US (Troy.A Johnson) Date: Mon Jan 17 13:40:09 2005 Subject: [TCLUG] printing problems and a ping problem Message-ID: John, Find the 'smbd' executable and run it like this: ./smbd -V and that should give you the exact Samba version. It sounds like you might have a TCP/IP issue. What is the output of this command: ifconfig eth0 and what are the contents of the file: /etc/dhcpd.conf This is 'off the cuff', so if you don't find the exact file, look for something close. What am looking for is a mistaken netmask or something similar. It could still be an ipchains issue too, as someone has suggested, despite what 'smb.conf' has to say about it (ipchains is a kernel module and so touches all net traffic before servers get a chance to allow or deny anything), so the output of: ipchains -L would be most helpful also. Good luck, Troy >>> John.Miller@rbcdain.com 05/02/02 12:09PM >>> I installed SAMBA usign apt. According to the man page for samba, the page is current for version 2.2. and hosts does have a list of the ip of the computers. DHCP assigns the same ip to each computer on reboot so it is almost like have a static ip. I have smb.conf line that states to allow 192.168.0 -----Original Message----- From: Clay Fandre [mailto:clay@fandre.com] Subject: Re: [TCLUG] printing problems and a ping problem How did you install samba? Via apt or did you compile it? Do you have all the hostnames/IP addresses of all your client machines in /etc/hosts on debian? I doubt that DHCP has anything to do with your problem, but you can check this by setting it statically on those machines. If you are having problems pinging, you probably have some ipchains or iptables rules. What does ipchains -L (or iptables -L) show you? On Wed, 01 May 2002, Miller, John wrote: > One day I decided that I would be venturous and set up a dhcp server on box called debian. debian also is the print server and I have samba running on it. I am running cups. My problem is that my windows machines can't connect to print. According to the log.smbd it looks like it calls lib/access.c:check_access and is returned Denied connection from (192.168.0.13). I get the same thing from the other windows maching except an address of 192.168.0.10. > The other problem, and I don't know if this is related, but 192.168.0.13 can't ping anyone except 192.168.0.1 (debian). > Could someone point me in the direction of how to fix the auth that samba does for the printer. From chewie at wookimus.net Thu May 2 14:02:14 2002 From: chewie at wookimus.net (Chad Walstrom) Date: Mon Jan 17 13:40:09 2005 Subject: [TCLUG] other mutt stuff In-Reply-To: <15569.32645.621514.584829@mn65-zippy.htc.honeywell.com> References: <20020502154506.GA4781@aldebaran.slava.net> <15569.26005.445111.30554@mn65-zippy.htc.honeywell.com> <20020502120152.C22298@okane.localnet> <15569.32645.621514.584829@mn65-zippy.htc.honeywell.com> Message-ID: <20020502183739.GA15092@wookimus.net> On Thu, May 02, 2002 at 01:03:49PM -0500, Robert P. Goldman wrote: > Does the KDE address book have a nice command-line interface? I > suppose one could always write some perl to get stuff out of the > database.... Does a KDE application have a nice command-line interface? Look at that question once more. ;-) More often than not, KDE and GNOME developers suffer from the GUI short-sightedness that Windows suffers. As a general rule, don't expect command-line utilities for KDE or GNOME applications. If they do have such utilities, they're most often an afterthought and not well designed. -- Chad Walstrom | a.k.a. ^chewie http://www.wookimus.net/ | s.k.a. gunnarr -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 232 bytes Desc: not available Url : http://shadowknight.real-time.com/pipermail/tclug-list/attachments/20020502/45229b2b/attachment.pgp From wlayer at attbi.com Thu May 2 14:02:43 2002 From: wlayer at attbi.com (Bill Layer) Date: Mon Jan 17 13:40:09 2005 Subject: [TCLUG] Need help finding: 72 pin SIMM-FPM memory In-Reply-To: <5.1.0.14.0.20020502111153.009e78b0@mail.usfamily.net> References: <5.1.0.14.0.20020502111153.009e78b0@mail.usfamily.net> Message-ID: <20020502134855.52bb9441.wlayer@attbi.com> On Thu, 02 May 2002 11:28:04 -0500 Avikingtoo wrote: > > Dear All, > > I can't find any 72 pin SIMM -- FPM (fast page mode) memory modules in > the Twin Cities, that I need for an old box that I am going to install > a Linux What size modules are you looking for? I probably have 8 & 16MB true-parity FPM modules. Afaik, most parity memory is FPM, so you might have an easier time looking for 'parity' RAM than FPM. Just a couple thoughts, -.bill.layer.- .-frogtown.mn.usa.- From joellist at litriusgroup.com Thu May 2 17:06:07 2002 From: joellist at litriusgroup.com (destr0) Date: Mon Jan 17 13:40:10 2005 Subject: [TCLUG] letting IPX through Message-ID: <000a01c1f220$75d8c3e0$7f02a8c0@destr0> hello, My ipchains firewall is swatting IPX packets coming into my LAN. I'm trying to play CounterStrike. Can someone show me an example ipchains rule that will allow incoming IPX packets? -------------- next part -------------- An HTML attachment was scrubbed... URL: http://shadowknight.real-time.com/pipermail/tclug-list/attachments/20020502/c50d605e/attachment.htm From dave at droyer.org Thu May 2 17:08:04 2002 From: dave at droyer.org (Dave Royer) Date: Mon Jan 17 13:40:10 2005 Subject: [TCLUG] Strictly Business Passes (was: Any northerner going to meeting?) In-Reply-To: <20020502154043.GE28376@fandre.com> References: <20020502154043.GE28376@fandre.com> Message-ID: <1020376705.4864.2.camel@merlin> On Thu, 2002-05-02 at 10:40, Clay Fandre wrote: > I do have a bunch of stuff I wanted to hand > out at the meeting, such as O'Reilly coupons, Strictly Business > passes, etc. Question regarding the Strictly Business passes... I'm scheduled to help out at the booth on thursday and need a pass to get in, but I can't make it to the meeting on Saturday. Any suggestions on geting ahold of a pass? I was thinking maybe someone from Real-time (if Carl, Bob or Amy were going to be there) could grab passes for those in need and we could pick them up at the RT office? I don't know if I'm the only one in this situation or not but I figure I'd ask... Dave Royer From ben at sistina.com Thu May 2 17:45:18 2002 From: ben at sistina.com (Ben Lutgens) Date: Mon Jan 17 13:40:10 2005 Subject: [TCLUG] Kerberos: satan or savior? In-Reply-To: <1020310052.28049.266.camel@3po.dhs.org> References: <20020430225633.V4555@real-time.com> <1020286442.28050.32.camel@3po.dhs.org> <20020501171803.B10482@real-time.com> <1020310052.28049.266.camel@3po.dhs.org> Message-ID: <20020502135911.GA6530@sistina.com> On Wed, May 01, 2002 at 10:27:32PM -0500, Mike Hicks wrote: >Well, I suppose I don't know much about Kerberos, then.. I thought I'd >read up on it quite a bit, but I guess this is one of those things I >really need to see in action before I can figure out what's going on.. >Might make a good meeting topic at some point. We had actually pondered this one day when Scott Dier was giving a presentation on LDAP. One thing led to another and before too long we'd come to the realization that the interest was there and that we needed someone who considered themselves a kerberos guru to give it. I knew of someone, but that person appears to have dropped off the planet or is too busy getting his business going to take the time to come all the way to minnesota to give the presentation. -- Ben Lutgens | http://people.sistina.com/~blutgens/ System Administrator | http://www.sistina.com/ Sistina Software Inc. | "If you love something set it free, if it doesn't come back to you hunt it down and set it on fire" -- George Carlin -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 230 bytes Desc: not available Url : http://shadowknight.real-time.com/pipermail/tclug-list/attachments/20020502/a56fc9f9/attachment.pgp From jack at jacku.com Thu May 2 17:46:24 2002 From: jack at jacku.com (Jack Ungerleider) Date: Mon Jan 17 13:40:10 2005 Subject: [TCLUG] Need help finding: 72 pin SIMM-FPM memory In-Reply-To: <5.1.0.14.0.20020502111153.009e78b0@mail.usfamily.net> References: <5.1.0.14.0.20020502111153.009e78b0@mail.usfamily.net> Message-ID: <200205021740.39054.jack@jacku.com> On Thursday 02 May 2002 11:28, Avikingtoo wrote: > Dear All, > > I can't find any 72 pin SIMM -- FPM (fast page mode) memory modules in the > Twin Cities, that I need for an old box that I am going to install a Linux > distro (SuSE 8.0 pro) on -- for the first time (a newbe here). > > I have checked all the "big" local suppliers (e.g. GNS, etc). Any and all > leads will be very much appreciated! > > Thank you in advance for your reply. :-) > > Don~ > > I'll second the surplus suggestion. I was in need of more RAM for the box I was using as a firewall. (Wanted to load SuSE 8.0 on it to test client configuration issues.) I ended up getting a P133 with 64MB RAM and 1.2 GB HD at last weekends Super Computer Sale for $20. I bought from ROX Enterprises. The phone number is (651)455-6255. FWIW the only guy there selling 72-pin SIMMs had them priced at about $1/MB. Another potential vendor is MPC just off Eagandale Boulvard near 55 and 35E. -- Jack Ungerleider jack@jacku.com From clay at fandre.com Thu May 2 21:11:35 2002 From: clay at fandre.com (Clay Fandre) Date: Mon Jan 17 13:40:10 2005 Subject: [TCLUG] Strictly Business Passes (was: Any northerner going to meeting?) In-Reply-To: <1020376705.4864.2.camel@merlin> References: <20020502154043.GE28376@fandre.com> <1020376705.4864.2.camel@merlin> Message-ID: <20020503004555.GA8641@fandre.com> Actually you can register online and adminssion is then free. Go to the TCLUG website for the link. On Thu, 02 May 2002, Dave Royer wrote: > On Thu, 2002-05-02 at 10:40, Clay Fandre wrote: > > I do have a bunch of stuff I wanted to hand > > out at the meeting, such as O'Reilly coupons, Strictly Business > > passes, etc. > > Question regarding the Strictly Business passes... > > I'm scheduled to help out at the booth on thursday and need a > pass to get in, but I can't make it to the meeting on Saturday. > Any suggestions on geting ahold of a pass? I was thinking maybe > someone from Real-time (if Carl, Bob or Amy were going to be there) > could grab passes for those in need and we could pick them up at > the RT office? > > I don't know if I'm the only one in this situation or not but I > figure I'd ask... > > Dave Royer > > _______________________________________________ > Twin Cities Linux Users Group Mailing List - Minneapolis/St. Paul, Minnesota > http://www.mn-linux.org > tclug-list@mn-linux.org > https://mailman.mn-linux.org/mailman/listinfo/tclug-list From tanner at real-time.com Thu May 2 22:55:46 2002 From: tanner at real-time.com (Bob Tanner) Date: Mon Jan 17 13:40:10 2005 Subject: [TCLUG] Opensource work, Enhydra live, 4.0 coming soon Message-ID: <20020502225008.R4657@real-time.com> If you have followed the who Enhydra thing you know the EPL didn't really uphold the spirit of open source. There was much resentment in the community. Now the Lutris made Enhydra abandonware, the community has stepped up. Here is a snippet from the mailing list: > I am asking again, because we are very close to freezing code for Enhydra 4.0 > (aka Aonyx) within the next days or so... Yes, 4.0 is coming. Just wanted to point out how open source can work, even for abandonware. -- Minneapolis St. Paul Twin Cities MN | Phone : (952)943-8700 http://www.mn-linux.org Minnesota Linux | Fax : (952)943-8500 Key fingerprint = 6C E9 51 4F D5 3E 4C 66 62 A9 10 E5 35 85 39 D9 From atebbe at real-time.com Fri May 3 08:09:00 2002 From: atebbe at real-time.com (Amy Tanner) Date: Mon Jan 17 13:40:10 2005 Subject: [TCLUG] Strictly Business Passes (was: Any northerner going to meeting?) In-Reply-To: <20020503004555.GA8641@fandre.com>; from clay@fandre.com on Thu, May 02, 2002 at 07:45:55PM -0500 References: <20020502154043.GE28376@fandre.com> <1020376705.4864.2.camel@merlin> <20020503004555.GA8641@fandre.com> Message-ID: <20020503074358.B18547@real-time.com> On Thu, May 02, 2002 at 07:45:55PM -0500, Clay Fandre (clay@fandre.com) wrote: > Actually you can register online and adminssion is then free. > Go to the TCLUG website for the link. Also, I ordered exhibitor badges for all the volunteers. You can pick yours up at the Exhibitor Registration desk. -- Amy Tanner amy@real-time.com From nate at refried.org Fri May 3 08:10:45 2002 From: nate at refried.org (nate@refried.org) Date: Mon Jan 17 13:40:10 2005 Subject: [TCLUG] Kerberos: satan or savior? In-Reply-To: <20020501133318.R637@real-time.com> References: <20020430225633.V4555@real-time.com> <20020501151346.GB505@wookimus.net> <20020501133318.R637@real-time.com> Message-ID: <20020503130614.GA5852@refried.org> On Wed, May 01, 2002 at 01:33:18PM -0500, Bob Tanner wrote: > Quoting Chad Walstrom (chewie@wookimus.net): > > Frankly, I would love to do other things to enhance security before > > incorporating Kerberos. i.e. NFS over TCP+ssl, etc. > > Isn't that just AFS+Kerberos = NFS+TCP+ssl? As far as security goes, maybe. Functionality, not even close. NFS - Uses UNIX native permissions - Easily compromised from a local root user su-ing to another user - Local area file system - Lots of little exports - Use what the OS gives you - Uses groups from yp and /etc/group - Uses standard unix file system tools (chmod, chown, etc) - Client keeps a cache of a few MB AFS - Uses fine grained ACLs (read, lookup, insert, delete, write, lock, admin) - Each person must be authenticated with Kerberos - Global file system - One common view of the AFS tree - Built in volume manager - Users can make their own groups and add whoever they want - Comes with it's own file system tools (fs, pts, etc) - Client keeps a cache of 50 - 100 MB Not that I wanted to start an NFS vs AFS flamewar. Just don't insult AFS as being like NFS. Nate ex-AFS user From esper at sherohman.org Fri May 3 09:08:37 2002 From: esper at sherohman.org (Dave Sherohman) Date: Mon Jan 17 13:40:10 2005 Subject: [TCLUG] Kerberos: satan or savior? In-Reply-To: <20020503130614.GA5852@refried.org>; from nate@refried.org on Fri, May 03, 2002 at 08:06:14AM -0500 References: <20020430225633.V4555@real-time.com> <20020501151346.GB505@wookimus.net> <20020501133318.R637@real-time.com> <20020503130614.GA5852@refried.org> Message-ID: <20020503083233.A29856@sherohman.org> On Fri, May 03, 2002 at 08:06:14AM -0500, nate@refried.org wrote: > NFS > - Uses UNIX native permissions > - Uses standard unix file system tools (chmod, chown, etc) > AFS > - Uses fine grained ACLs (read, lookup, insert, delete, write, lock, > admin) > - Comes with it's own file system tools (fs, pts, etc) Are these supposed to pe points in AFS's favor? I know that I have enough trouble trying to explain standard *nix-style permissions to my users (and am glad that I've been able to sidestep the issue in most cases through the use of 'chmod g+s dirname' and 'umask 002'). I don't think that trying to show them how to use something more complex would get very far. Ditto on having two distinct sets of filesystem tools. Even for myself, I'm not sure that I'd want to use AFS after seeing those two points, simply because I have better things to do than try to remember that I use _these_ commands in directory X and _those_ commands in directory Y. > Not that I wanted to start an NFS vs AFS flamewar. Me neither. I know nothing about AFS except what's on your bullet lists. But, having seen them, I can't see why anyone would willingly use AFS unless it's in a 100% AFS environment. Even then, switching command sets seems like a high price to pay, as it means discarding a large hunk of prior knowledge and rendering a substantial majority of *nix reference materials irrelevant. (And, yes, I'm fully aware that I'd switch sides real quick if you s/NFS/Windows/ and s/AFS/linux/ but I'm not that worried about the inconsistency.) -- When we reduce our own liberties to stop terrorism, the terrorists have already won. - reverius Innocence is no protection when governments go bad. - Tom Swiss From chewie at wookimus.net Fri May 3 10:07:44 2002 From: chewie at wookimus.net (Chad Walstrom) Date: Mon Jan 17 13:40:10 2005 Subject: [TCLUG] Kerberos: satan or savior? In-Reply-To: <20020503130614.GA5852@refried.org> References: <20020430225633.V4555@real-time.com> <20020501151346.GB505@wookimus.net> <20020501133318.R637@real-time.com> <20020503130614.GA5852@refried.org> Message-ID: <20020503144132.GA21217@wookimus.net> Nate wrote, > Not that I wanted to start an NFS vs AFS flamewar. Just don't insult > AFS as being like NFS. Trolls are a wonderful way to quell potential flamewars. Here's the difference between AFS and NFS. NFS wasn't designed to be a filesystem in and of itself. It was designed to provide the feel of a local filesystem access to an existing remote filesystem by wrapping it a network protocol. Standard UNIX filesystems, in general, do not implement Acess Control Lists, nor to they require a user to authenticate to any server other than the system they're on. NFS's scope is very limited: pushing out network access to a local filesystem to remote clients, regardless of the underlying architecture and management of that filesystem. Sure, it tries to do some performance enhancements, such as a limited caching scheme, but that's about it. Enter AFS. AFS does not have the same goals as NFS. It is an entirely different breed of filesystem, not just a network layer on top of an existing filesystem. With AFS, nothing is assumed, and control is complete, and the partnership with Kerberos is a powerful one. Tools are different, and integration and administration is initially a higher cost. It's not a replacement of NFS over TCP+SSL, it's a completely different system. Back to the comment at hand: There is no insult when comparing NFS to AFS, just a vague comparison of the functionality. Read the word "vague" again and remember the context in which this thread started, or rather diverted from. Anyway, back to business. -- Chad Walstrom | a.k.a. ^chewie http://www.wookimus.net/ | s.k.a. gunnarr -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 232 bytes Desc: not available Url : http://shadowknight.real-time.com/pipermail/tclug-list/attachments/20020503/179dbc62/attachment.pgp From nate at refried.org Fri May 3 10:51:04 2002 From: nate at refried.org (nate@refried.org) Date: Mon Jan 17 13:40:10 2005 Subject: [TCLUG] Kerberos: satan or savior? In-Reply-To: <20020503083233.A29856@sherohman.org> References: <20020430225633.V4555@real-time.com> <20020501151346.GB505@wookimus.net> <20020501133318.R637@real-time.com> <20020503130614.GA5852@refried.org> <20020503083233.A29856@sherohman.org> Message-ID: <20020503152936.GA8289@refried.org> On Fri, May 03, 2002 at 08:32:33AM -0500, Dave Sherohman wrote: > On Fri, May 03, 2002 at 08:06:14AM -0500, nate@refried.org wrote: > > NFS > > - Uses UNIX native permissions > > - Uses standard unix file system tools (chmod, chown, etc) > > > AFS > > - Uses fine grained ACLs (read, lookup, insert, delete, write, lock, > > admin) > > - Comes with it's own file system tools (fs, pts, etc) > > Are these supposed to pe points in AFS's favor? Not necessarily. For a small, less organized environment AFS is probably overkill. For a larger, centralized environment AFS solves many of the scalability and administration issues. Believe me, when you have thousands of users organized into hundreds of randomly distributed and overlapping groups, AFS is a godsend. > I don't think that trying to show them how to use something more > complex would get very far. Ditto on having two distinct sets of > filesystem tools. Every tool takes some training to use. Usually people learn a few things about a tool and that's enough for them to do their job. Others like to learn every feature of a tool. Your users don't have to learn anything about AFS to start using it. If they want to do something that AFS support and NFS doesn't, they'll have to learn a thing or two. > > Not that I wanted to start an NFS vs AFS flamewar. > > Me neither. I know nothing about AFS except what's on your bullet > lists. But, having seen them, I can't see why anyone would willingly > use AFS unless it's in a 100% AFS environment. I think when most institutions set up AFS, they plan on using it for everything. It's not like, "I need to get to these files from another computer so I'll export this file system." It's more like, "We need a really big secure centralized file server with real security and scalability that the entire campus can use." > Even then, switching command sets seems like a high price to pay, as > it means discarding a large hunk of prior knowledge and rendering a > substantial majority of *nix reference materials irrelevant. Just to be clear, it's only some of the admin and permissions control commands that need supplementing. mkdir, find, grep, cp, ln, etc all work as they are supposed to. It's just that chmod, chown, chgrp, etc can't handle the granularity that AFS supports. From tanner at real-time.com Fri May 3 12:26:00 2002 From: tanner at real-time.com (Bob Tanner) Date: Mon Jan 17 13:40:10 2005 Subject: [TCLUG] apt + authenticated ftp/http? Message-ID: <20020503121020.R5610@real-time.com> Ok, apt can't dow https (yet). How about authenticated ftp or authenticated http? Meaning, instead of anonymous ftp, you got to send a username and password? -- Minneapolis St. Paul Twin Cities MN | Phone : (952)943-8700 http://www.mn-linux.org Minnesota Linux | Fax : (952)943-8500 Key fingerprint = 6C E9 51 4F D5 3E 4C 66 62 A9 10 E5 35 85 39 D9 From tanner at real-time.com Fri May 3 12:28:38 2002 From: tanner at real-time.com (Bob Tanner) Date: Mon Jan 17 13:40:10 2005 Subject: [TCLUG] Demo of KDE3?? Was Re: [TCLUG-ANNOUNCE] TCLUG Meeting Update In-Reply-To: <20020503130452.GC19672@fandre.com>; from clay@fandre.com on Fri, May 03, 2002 at 08:04:52AM -0500 References: <20020503130452.GC19672@fandre.com> Message-ID: <20020503121458.U5610@real-time.com> Quoting Clay Fandre (clay@fandre.com): > It looks like the speaker for tomorrow's meeting had a prior > engagement and won't be making it to the meeting. So we will probably > just have an open discussion unless someone had something they'd like > to present. > > Again, the meeting is Saturday from noon-2pm at the UofM. Check the > website for more information. > > Sorry for the late notice. Anyone comfortable enough to give a demo and walk-thru of KDE 3? -- Bob Tanner | Phone : (952)943-8700 http://www.mn-linux.org, Minnesota, Linux | Fax : (952)943-8500 Key fingerprint = 6C E9 51 4F D5 3E 4C 66 62 A9 10 E5 35 85 39 D9 From tanner at real-time.com Fri May 3 12:41:34 2002 From: tanner at real-time.com (Bob Tanner) Date: Mon Jan 17 13:40:11 2005 Subject: [TCLUG] Kerberos: satan or savior? In-Reply-To: <20020503130614.GA5852@refried.org>; from nate@refried.org on Fri, May 03, 2002 at 08:06:14AM -0500 References: <20020430225633.V4555@real-time.com> <20020501151346.GB505@wookimus.net> <20020501133318.R637@real-time.com> <20020503130614.GA5852@refried.org> Message-ID: <20020503123135.J5610@real-time.com> Quoting nate@refried.org (nate@refried.org): > AFS > - Client keeps a cache of 50 - 100 MB How about performance? Would AFS make a better file server for something like a smallish web cluster then NFS? -- Minneapolis St. Paul Twin Cities MN | Phone : (952)943-8700 http://www.mn-linux.org Minnesota Linux | Fax : (952)943-8500 Key fingerprint = 6C E9 51 4F D5 3E 4C 66 62 A9 10 E5 35 85 39 D9 From chewie at wookimus.net Fri May 3 13:42:04 2002 From: chewie at wookimus.net (Chad Walstrom) Date: Mon Jan 17 13:40:11 2005 Subject: [TCLUG] apt + authenticated ftp/http? In-Reply-To: <20020503121020.R5610@real-time.com> References: <20020503121020.R5610@real-time.com> Message-ID: <20020503182628.GF21217@wookimus.net> On Fri, May 03, 2002 at 12:10:20PM -0500, Bob Tanner wrote: > Ok, apt can't dow https (yet). How about authenticated ftp or > authenticated http? > > Meaning, instead of anonymous ftp, you got to send a username and > password? # I would think this should work. I know it works for http_proxy setups # in apt.conf(5). deb http://user:passwd@host/directory dist branch -- Chad Walstrom | a.k.a. ^chewie http://www.wookimus.net/ | s.k.a. gunnarr -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 232 bytes Desc: not available Url : http://shadowknight.real-time.com/pipermail/tclug-list/attachments/20020503/61c636cf/attachment.pgp From natecars at real-time.com Fri May 3 13:43:01 2002 From: natecars at real-time.com (Nate Carlson) Date: Mon Jan 17 13:40:11 2005 Subject: [TCLUG] apt + authenticated ftp/http? In-Reply-To: <20020503121020.R5610@real-time.com> Message-ID: On Fri, 3 May 2002, Bob Tanner wrote: > Ok, apt can't dow https (yet). How about authenticated ftp or > authenticated http? > > Meaning, instead of anonymous ftp, you got to send a username and > password? Should be able to.. you can pass a url in a standard url. ie, http://user:pass@www.example.com/ I'd guess that Apt would support that.. -- Nate Carlson | Phone : (952)943-8700 http://www.real-time.com | Fax : (952)943-8500 From nate at refried.org Fri May 3 13:44:48 2002 From: nate at refried.org (nate@refried.org) Date: Mon Jan 17 13:40:11 2005 Subject: [TCLUG] Kerberos: satan or savior? In-Reply-To: <20020503123135.J5610@real-time.com> References: <20020430225633.V4555@real-time.com> <20020501151346.GB505@wookimus.net> <20020501133318.R637@real-time.com> <20020503130614.GA5852@refried.org> <20020503123135.J5610@real-time.com> Message-ID: <20020503184651.GB8289@refried.org> On Fri, May 03, 2002 at 12:31:35PM -0500, Bob Tanner wrote: > Quoting nate@refried.org (nate@refried.org): > > AFS > > - Client keeps a cache of 50 - 100 MB > > How about performance? Would AFS make a better file server for > something like a smallish web cluster then NFS? Good question. I would guess that the initial setup of an AFS cell stops most people from answering such a question. I did a little searching and couldn't find any performance numbers. I did find a few interesting links: IBM Redbook on using AFS for web content management http://www.redbooks.ibm.com/pubs/pdfs/redbooks/sg245857.pdf Performance of Several HTTP Demons on an HP 735 Workstation http://archive.ncsa.uiuc.edu/InformationServers/Performance/V1.4/report.html Doesn't Amy work at a site with an AFS cell? Perhaps she could run a few tests. Nate From chewie at wookimus.net Fri May 3 14:38:15 2002 From: chewie at wookimus.net (Chad Walstrom) Date: Mon Jan 17 13:40:11 2005 Subject: [TCLUG] Kerberos: satan or savior? In-Reply-To: <20020503184651.GB8289@refried.org> References: <20020430225633.V4555@real-time.com> <20020501151346.GB505@wookimus.net> <20020501133318.R637@real-time.com> <20020503130614.GA5852@refried.org> <20020503123135.J5610@real-time.com> <20020503184651.GB8289@refried.org> Message-ID: <20020503190433.GH21217@wookimus.net> On Fri, May 03, 2002 at 12:31:35PM -0500, Bob Tanner wrote: > How about performance? Would AFS make a better file server for > something like a smallish web cluster then NFS? I would image that on a heavily hit webserver, the AFS, having a larger cache, may do better. I'd check out the link that Nate provided, though. -- Chad Walstrom | a.k.a. ^chewie http://www.wookimus.net/ | s.k.a. gunnarr From sstorie at d.umn.edu Fri May 3 15:26:48 2002 From: sstorie at d.umn.edu (Sam Storie) Date: Mon Jan 17 13:40:11 2005 Subject: [TCLUG] Buying a linux friendly laptop.... Message-ID: <3CD1C85B.8090308@d.umn.edu> I am in the market for a laptop and these days I am using Linux (Debian) as my primary OS. I asked a friend about this and he suggested pay special attention to the hardware when considering linux, because it's much more difficult to make changes after the fact. He suggested the IBM T series, but I think that might be out of my budget. I'm looking for any advice, particular vendors you like/don't like, or even things to watch out for, when considering a laptop for linux use. -Sam From clay at fandre.com Fri May 3 15:26:53 2002 From: clay at fandre.com (Clay Fandre) Date: Mon Jan 17 13:40:11 2005 Subject: [TCLUG] [TCLUG-ANNOUNCE] TCLUG Meeting Update Message-ID: <20020503130452.GC19672@fandre.com> It looks like the speaker for tomorrow's meeting had a prior engagement and won't be making it to the meeting. So we will probably just have an open discussion unless someone had something they'd like to present. Again, the meeting is Saturday from noon-2pm at the UofM. Check the website for more information. Sorry for the late notice. -- Clay _______________________________________________ Twin Cities Linux Users Group Announcements - Minneapolis/St. Paul, Minnesota http://www.mn-linux.org tclug-announce mailing list tclug-announce@mn-linux.org https://mailman.mn-linux.org/mailman/listinfo/tclug-announce From clay at fandre.com Fri May 3 15:26:57 2002 From: clay at fandre.com (Clay Fandre) Date: Mon Jan 17 13:40:11 2005 Subject: [TCLUG] [TCLUG-ANNOUNCE] TCLUG Monthly Meeting Message-ID: <20020427011219.GB9204@fandre.com> Next TCLUG Meeting When: Saturday, May 4th, 2002, noon - 2pm Topic: Ethan Galstad will be talking about Nagios, formerly know as Netsaint. Nagios is a host and service monitor designed to inform you of network problems before your clients, end-users or managers do. It has been designed to run under the Linux operating system, but works fine under most *NIX variants as well. The monitoring daemon runs intermittent checks on hosts and services you specify using external "plugins" which return status information to Nagios. When problems are encountered, the daemon can send notifications out to administrative contacts in a variety of different ways (email, instant message, SMS, etc.). Current status information, historical logs, and reports can all be accessed via a web browser. Where: University of Minnesota Room EE-CS 3-180 http://onestop.umn.edu/Maps/EECSci/index.html Hope to see you there! Also... Twin Cities Linux Users Group is proud to sponsor Doc Searls, Senior Editor, Linux Journal discussing "Why Linux Is Still The Best Operating System For Business" on Thursday, May 9th at the Strictly Business Solutions Expo in Minneapolis. Registration is FREE for Doc's keynote at http://www.StrictlyBusinessExpo.com anytime before the expo. The TCLUG will have a booth at the expo both days, so come and hang out with your fellow TCLUG'ers. _______________________________________________ Twin Cities Linux Users Group Announcements - Minneapolis/St. Paul, Minnesota http://www.mn-linux.org tclug-announce mailing list tclug-announce@mn-linux.org https://mailman.mn-linux.org/mailman/listinfo/tclug-announce From shanson at cruiskeen.com Fri May 3 15:27:02 2002 From: shanson at cruiskeen.com (Steve Hanson) Date: Mon Jan 17 13:40:11 2005 Subject: [TCLUG] Kerberos: satan or savior? References: <20020430225633.V4555@real-time.com> <20020501151346.GB505@wookimus.net> <20020501133318.R637@real-time.com> <20020503130614.GA5852@refried.org> <20020503123135.J5610@real-time.com> <20020503184651.GB8289@refried.org> Message-ID: <3CD2E956.5050201@cruiskeen.com> In a former life I was the AFS manager for a pretty big AFS site (Fermilab) It's a two-edged sword. Don't really even try to think of it in the same sense as NFS. The small web cluster you describe is sort of worst-case scenario for AFS - NFS will undoubtedly do much better for you. Now if it was a BIG web cluster - maybe The AFS cache is a big win if you have a lot of client systems, and you have slow (maybe world-wide) networks. And you want a consistent view of a file system from EVERYWHERE. This is really a wonderful part of life - you want to see what your colleague in Russia is up to? Go to /afs/somerussionuniversity/igor - and there you are. No mounting, no understanding where his files are. Also a big win if you typically use a small number of files over and over - they're cached right on your local system. AFS is also great because you can replicate volumes. So say you have - um - say the equivalent of a /usr/local/bin where you have binaries. You can set up AFS with replicated servers around your network holding these read-only files. Auto load balancing. Auto failover. Automatic connecting to the RIGHT BINARIES FOR YOUR PLATFORM. Also it's great administratively - I used to run a program at night that shuffled everyone's home volumes to load and space balance. Nobody even ever knew unless they were trying to write to a file at 3 AM - then it would hang till the move was over - But if you dont' NEED those things, and aren't willing to deal with the Kerberos overhead, and installing a whole new set of RPC's on every system etc. it's probably not for you. Basically its great if you have a lot of clients and a consistent architecture and enough data to make it worthwhile. But it's really not at all a drop-in replacement for NFS. It's a whole different animal. Some days I miss it. Some days I'm glad I don't have to deal with it. As for performance - don't think of it from a user perspective. It has some - um - issues from a normal user viewpoint . It will never seem as snappy as NFS - at least assuming fat network pipes. BUT - it will load your servers a good deal less in many environments, and load your network a whole lot less as well - but as usual, this depends. For example, the idiots who originally wanted it at Fermilab insisted on putting it in in the worst possible places first, considering its intrinsic behavior. It's really no good if what you're doing all day is reading 2 Gb files of experiment data. It's great for running things like software. Not at all worth considering unless you've got some problems that it solves - just like any other tool. And there's considerable management overhead up front. I dunno if that helps any? nate@refried.org wrote: > On Fri, May 03, 2002 at 12:31:35PM -0500, Bob Tanner wrote: > >>Quoting nate@refried.org (nate@refried.org): >> >>>AFS >>> - Client keeps a cache of 50 - 100 MB >> >>How about performance? Would AFS make a better file server for >>something like a smallish web cluster then NFS? > > > Good question. I would guess that the initial setup of an AFS cell > stops most people from answering such a question. I did a little > searching and couldn't find any performance numbers. I did find a few > interesting links: > > IBM Redbook on using AFS for web content management > http://www.redbooks.ibm.com/pubs/pdfs/redbooks/sg245857.pdf > > Performance of Several HTTP Demons on an HP 735 Workstation > http://archive.ncsa.uiuc.edu/InformationServers/Performance/V1.4/report.html > > Doesn't Amy work at a site with an AFS cell? Perhaps she could run a > few tests. > > Nate > _______________________________________________ > Twin Cities Linux Users Group Mailing List - Minneapolis/St. Paul, Minnesota > http://www.mn-linux.org > tclug-list@mn-linux.org > https://mailman.mn-linux.org/mailman/listinfo/tclug-list From natecars at real-time.com Fri May 3 15:28:52 2002 From: natecars at real-time.com (Nate Carlson) Date: Mon Jan 17 13:40:11 2005 Subject: [TCLUG] Really steenkin fast burner, dirt cheap Message-ID: From mitc0185 at tc.umn.edu Fri May 3 17:13:16 2002 From: mitc0185 at tc.umn.edu (Erik Mitchell) Date: Mon Jan 17 13:40:11 2005 Subject: [TCLUG] Buying a linux friendly laptop.... In-Reply-To: <3CD1C85B.8090308@d.umn.edu> References: <3CD1C85B.8090308@d.umn.edu> Message-ID: <1020463335.347.3.camel@tolkien> Skipped content of type multipart/alternative-------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 232 bytes Desc: This is a digitally signed message part Url : http://shadowknight.real-time.com/pipermail/tclug-list/attachments/20020503/ba230533/attachment.pgp From alcyone at slava.net Fri May 3 18:11:48 2002 From: alcyone at slava.net (Lorry) Date: Mon Jan 17 13:40:12 2005 Subject: [TCLUG] Buying a linux friendly laptop.... In-Reply-To: <1020463335.347.3.camel@tolkien> References: <3CD1C85B.8090308@d.umn.edu> <1020463335.347.3.camel@tolkien> Message-ID: <20020503225254.GA6056@aldebaran.slava.net> What a fine Fri, May 03, 2002 at 05:02:15PM -0500 it was when Erik Mitchell said: > I have a Dell Inspiron 4000, which I believe is still available (only > better and cheaper) as a Inspiron 4100. I think I paid about $1600 about > 1 year ago. It is a Pentium III 850 with 128 MB of RAM. > > The only thing that isn't supported is the modem, but I didn't expect > that. I got a Dell Inspiron 4000 also a little over a year ago. It was a refurbished system so a little cheaper and not as fast, etc. The modem is supported, although I don't use it, I use the onboard NIC. It took me a while to get X working on it under debian, and I unfortunately didn't document what I did. Now I use RH which was no trouble to get working on this machine. I love my laptop, but Dell tech support sucks. If you have any problems with it and they aren't resolved right away, just exchange it for a new one. :) Check out http://www.linux-laptop.net also... I did this before my purchase to make sure other people had got linux working on my model before me. It has links to lots of people's "how to"s and stories about getting various distros to work on various laptop models and brands. Hope that helps! Lorry From hick0088 at tc.umn.edu Fri May 3 19:35:14 2002 From: hick0088 at tc.umn.edu (Mike Hicks) Date: Mon Jan 17 13:40:12 2005 Subject: [TCLUG] [TCLUG-ANNOUNCE] TCLUG Meeting Update In-Reply-To: <20020503130452.GC19672@fandre.com> References: <20020503130452.GC19672@fandre.com> Message-ID: <1020471613.8430.1748.camel@3po.dhs.org> On Fri, 2002-05-03 at 08:04, Clay Fandre wrote: > It looks like the speaker for tomorrow's meeting had a prior > engagement and won't be making it to the meeting. So we will probably > just have an open discussion unless someone had something they'd like > to present. Well, that's disappointing.. My boss and I mentioned this to several people, so it'd be nice if someone could still give at least a rudimentary presentation. I've set up a Netsaint system at work, so I understand the ideas behind it. I could give a demo with it, but I haven't dealt with the more advanced features.. Anyone else willing to give it a shot? -- _ _ _ _ _ ___ _ _ _ ___ _ _ __ I was trying to daydream, / \/ \(_)| ' // ._\ / - \(_)/ ./| ' /(__ but my mind kept wandering. \_||_/|_||_|_\\___/ \_-_/|_|\__\|_|_\ __) [ Mike Hicks | http://umn.edu/~hick0088/ | mailto:hick0088@tc.umn.edu ] -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 232 bytes Desc: This is a digitally signed message part Url : http://shadowknight.real-time.com/pipermail/tclug-list/attachments/20020503/0ccea8e4/attachment.pgp From hick0088 at tc.umn.edu Fri May 3 21:23:01 2002 From: hick0088 at tc.umn.edu (Mike Hicks) Date: Mon Jan 17 13:40:12 2005 Subject: [TCLUG] Buying a linux friendly laptop.... In-Reply-To: <3CD1C85B.8090308@d.umn.edu> References: <3CD1C85B.8090308@d.umn.edu> Message-ID: <1020477641.30291.1952.camel@3po.dhs.org> On Thu, 2002-05-02 at 18:14, Sam Storie wrote: > I am in the market for a laptop and these days I am using Linux (Debian) > as my primary OS. Like Erik and Lorry, I went to Dell for my laptop. I've got a 4100, which I got because it's relatively inexpensive and Dell offers a 1600x1200 UXGA screen with it. (I know a lot of people cringe when they see a resolution like that, but remember that you can almost always increase font sizes, and LCD panels are *much* crisper than CRTs) I've got almost all of the hardware working on it. The winmodem works with a proprietary driver (well, mine works. some people apparently have a different chip than I do), and the ATI video card I got works unaccelerated with XFree86 up to 4.1, and accelerated video works with 4.2. I haven't been able to get the XVideo extension working, and TV-out is a no-go as well, but those are the only remaining problems for me. However, you should be warned that it has a crummy AC'97 audio card that only does sound output at 48kHz. 44.1kHz audio (a much more common sample rate) has to be interpolated and have extra samples generated to bring it up to 48000 samples/sec.. If you feel like getting one, I'd recommend getting an extra battery. I barely ever use the DVD drive, so may as well not let the drive bay go to waste. Also, note that Dell systems have problems when APIC (advanced programmable interrupt controller) support is enabled in the kernel -- something Debian does by default in 2.4.x kernels. You'll have to recompile to have a 2.4.x system work right, but 2.2.x works fine. -- _ _ _ _ _ ___ _ _ _ ___ _ _ __ Any philosophy that can be / \/ \(_)| ' // ._\ / - \(_)/ ./| ' /(__ put in a nutshell belongs \_||_/|_||_|_\\___/ \_-_/|_|\__\|_|_\ __) there [ Mike Hicks | http://umn.edu/~hick0088/ | mailto:hick0088@tc.umn.edu ] -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 232 bytes Desc: This is a digitally signed message part Url : http://shadowknight.real-time.com/pipermail/tclug-list/attachments/20020503/a01fa4db/attachment.pgp From hick0088 at tc.umn.edu Fri May 3 21:24:47 2002 From: hick0088 at tc.umn.edu (Mike Hicks) Date: Mon Jan 17 13:40:12 2005 Subject: [TCLUG] letting IPX through In-Reply-To: <000a01c1f220$75d8c3e0$7f02a8c0@destr0> References: <000a01c1f220$75d8c3e0$7f02a8c0@destr0> Message-ID: <1020477651.8428.1954.camel@3po.dhs.org> On Thu, 2002-05-02 at 16:29, destr0 wrote: > My ipchains firewall is swatting IPX packets coming into my LAN. I'm > trying to play CounterStrike. Can someone show me an example ipchains > rule that will allow incoming IPX packets? IPChains only handles IP packets. There is no similar `ipxchains' program for setting up IPX forwarding/firewalling in the kernel. Also, I believe you need to be running an IPX routing daemon (I believe it's called ipxripd) to route IPX packets. -- _ _ _ _ _ ___ _ _ _ ___ _ _ __ If you can read this you / \/ \(_)| ' // ._\ / - \(_)/ ./| ' /(__ are a dork. \_||_/|_||_|_\\___/ \_-_/|_|\__\|_|_\ __) [ Mike Hicks | http://umn.edu/~hick0088/ | mailto:hick0088@tc.umn.edu ] -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 232 bytes Desc: This is a digitally signed message part Url : http://shadowknight.real-time.com/pipermail/tclug-list/attachments/20020503/ff45d6b2/attachment.pgp From rechpj at bitstream.net Fri May 3 21:26:05 2002 From: rechpj at bitstream.net (Paul Rech) Date: Mon Jan 17 13:40:12 2005 Subject: [TCLUG] Buying a linux friendly laptop.... References: <3CD1C85B.8090308@d.umn.edu> Message-ID: <3CD34189.50602@bitstream.net> Sam Storie wrote: > I am in the market for a laptop and these days I am using Linux (Debian) > as my primary OS. I asked a friend about this and he suggested pay > special attention to the hardware when considering linux, because it's > much more difficult to make changes after the fact. He suggested the IBM > T series, but I think that might be out of my budget. I'm looking for > any advice, particular vendors you like/don't like, or even things to > watch out for, when considering a laptop for linux use. > > -Sam Don't forget Ebay. I've purchased lot's of hardware from them. No dud's yet. Paul R From tanner at real-time.com Fri May 3 21:26:22 2002 From: tanner at real-time.com (Bob Tanner) Date: Mon Jan 17 13:40:12 2005 Subject: [TCLUG] Redux: Pruning old rpms in a directory? Message-ID: <20020503210944.A11516@real-time.com> Bob asks: > Anyone know of a tool that will "prune" old rpms from a directory? What I'm > referring to is something that will cruise through the /usr/src/redhat/RPMS > and /usr/src/redhat/SRPMS and remove all but the newest files. Clay responds: Perl is your friend. (NOTE: This is just an example I whipped up in a few minutes. I will not be responsible for any data loss) #!/usr/bin/perl $dir="."; opendir(DIR, $dir); while (defined ($_=readdir(DIR))) { next unless /rpm$/; /^(\w+)/; $pre=$1; $files{$pre}{$_}=$_; } foreach $pre (sort keys %files) { $num = scalar keys %{$files{$pre}}; foreach $file (sort keys %{$files{$pre}}) { $num--; print "Deleting $files{$pre}{$file}\n" if $num; unlink $files{$pre}{$file} if $num; } } There is a slight bug: RPMs before perl script is run, notice only 1 "duplicate" package, frozen-bubble: frozen-bubble-0.9.2-realtime.2.i386.rpm frozen-bubble-0.9.3-realtime.1.i386.rpm grustibus-0.43-realtime.3.i386.rpm gtetrinet-0.4.1-realtime.4.i386.rpm hylafax-4.1.2-realtime.2.i386.rpm hylafax-htmldoc-4.1.2-realtime.2.i386.rpm icebreaker-1.2.1-realtime.3.i386.rpm kobodeluxe-0.4pre7-realtime.2.i386.rpm lbreakout-010315-realtime.2.i386.rpm lbreakout2-2.2.2-realtime.2.i386.rpm nethack-3.4.0-realtime.4.i386.rpm nethack-doc-pdf-3.4.0-realtime.4.i386.rpm nethack-spoilers-3.4.0-realtime.4.i386.rpm perl-SDL-1.12-realtime.1.i386.rpm pysol-sound-server-2.50-realtime.1.i386.rpm setiathome-3.03-realtime.4.i386.rpm