for the life of me I am unable to get this module not to load
root@milomak-mac:~# cat /etc/modprobe.d/blacklist.conf
# This file lists modules which will not be loaded as the result of
# alias expansion, with the purpose of preventing the hotplug subsystem
[code]....
Running Debian lenny.I want Debian to stop from loading certain kernel module at startup. For now I tried adding "blacklist my_module" line in /etc/modprobe.d/blacklist file with no luck. Also I tried to add line above into some new file in /etc/modprobe.d directory - not working.How do I blacklist kernel module in Debian lenny ?
View 4 Replies View RelatedI have a server setup that is getting repeatedly hit by the same IP address it has tried accessing my vsftp and /drupal/cron.php. For security reason I have disabled vsftpd while I am not using it. The webserver on the other hand I need to leave running.
Code:
- pam_unix Begin -
vsftpd: Unknown Entries:
check pass; user unknown: 2708 Time(s)
authentication failure; logname= uid=0 euid=0 tty=ftp ruser=Administrator rhost=211.161.251.123 : 2282 Time(s)
authentication failure; logname= uid=0 euid=0 tty=ftp ruser=administrator rhost=211.161.251.123 : 426 Time(s)
- pam_unix End -
I would like to be able to add the ip to a blacklist. Additionally I would like to whitelist my own ip when I am working remotely, my remote location doesn't match my reverse dns and my server gives me an error at the end of the day that someone (myself) might be trying to break in. Running Fedora Core 9 in case it matters.
I need to add the following line in /etc/modprobe.d/50-blacklist.conf ..
Code:
In order to get wlan working, but I cannot seem to edit the file .
I tried:
Code:
Code:
I also tried manually opening the file but it is read-only . (I did not set my root folder to read-only, however .)
I even wrote a script in /home/exo/.gnome2/nautilus-scripts that should let me open files as root, but nothing works ..
This is my script:
Code:
I need to blacklist any incoming/outgoing connections to Google. I need to add filter something like this: *google*
View 5 Replies View RelatedI want to blacklist one module in RHEL 4.5. In RHEL 5.X we can remove the module using modprobe and then blacklist it in the file /etc/modprobe.d/blacklist to make it permanent after reboot. But in RHEL 4.5 there is no such file like /etc/modprobe.d/blacklist. So how to blacklist a module in RHEL 4.5
View 3 Replies View RelatedI am daily getting the same junk / spam email from this sender and I see two IP's in the headers / logs of my Postfix server. I searched my Postfix logs for both IP's:
Code:
[root@mail postfix]# cat /var/log/maillog | grep "67.212.170.242"
Jan 22 05:29:30 mail postfix/smtpd[12205]: connect from civismtp.uas.coop[67.212.170.242]
Jan 22 05:29:30 mail postgrey[2245]: action=pass, reason=client AWL, client_name=civismtp.uas.coop, client_address=67.212.170.242, sender=b.148.1296207.0e628e696f0d17ad@mail.wfmc.org, recipient=carlos@iamghost.com
Jan 22 05:29:30 mail postfix/smtpd[12205]: C00DB77A862: client=civismtp.uas.coop[67.212.170.242]
Jan 22 05:29:31 mail postfix/smtpd[12205]: disconnect from civismtp.uas.coop[67.212.170.242]
Jan 22 05:29:33 mail amavis[2351]: (02351-18) Passed CLEAN, [67.212.170.242] [192.220.23.216] <b.148.1296207.0e628e696f0d17ad@mail.wfmc.org> -> <carlos@iamghost.com>, Message-ID: <20100122095052.183D3192C012@civismtp.uas.coop>, mail_id: eY2CHd1Jva+X, Hits: -3.288, size: 22942, queued_as: 8A54C77A8E9, 2530 ms
How do I block / reject all email from this sender? Is there a specific section in Postfix like sender_access or client_access that I can 'reject' all mail from the above sender. What is the difference between IP's on the logs? I show 192.220.23.216 & 67.212.170.242 but can understand what the two separate IP's are for?
In this example, why does blacklist end up in the file blacklist and $a end up in stdout?
[code]...
The desired result is to have a file containing the results of lsmod which had the first word on the line beginning with snd_ copied into another file preceded by the word blacklist.
Today I moved my Slackware64-current installations to multilib. I blacklisted the gcc and glib packages in the blacklist-file for slackpkg. In the blacklistfile they say:
Code:
# Now we can blacklist using regular expressions.
# This one will blacklist all SBo packages:
#[0-9]+_SBo
I have blacklisted
Code:
...
# The gcc compiler suite:
gcc
gcc-g++
gcc-gfortran
gcc-gnat
gcc-java
gcc-objc
# The GNU libc libraries:
glibc
glibc-i18n
glibc-profile
glibc-solibs
glibc-zoneinfo
glibc-debug
...
How I can use the mentioned regular expressions in order to make blacklisting more efficient?
In Fedora 12 how do I make it so a specific program can't talk to the internet?
View 14 Replies View RelatedThe DHCP server on a network I use specifies a DNS server that I do not want to use. Is there a way to continue to use DHCP but to modify the provided information or to "blacklist" one (of the three provided) DNS servers?
The client in question is running Ubuntu 10.04. Networking is managed by NetworkManager but I'm not wedded to that. In fact, I don't like it and wouldn't mind a reason to use something else.
Trying to stop drivers for realtek nic being picked up so I can do pci passtrhough for these devices to kvm vms later. in 10.04 and 10.10 I did this by appending to blacklist.conf as below, but in 11.04 the drivers are still being loaded. Should I be doing this a different way? or is blacklist misbehaving?
here's end of blacklist.conf:
<pre>
# EDAC driver for amd76x clashes with the agp driver preventing the aperture
# from being initialised (Ubuntu: #297750). Blacklist so that the driver
# continues to build and is installable for the few cases where its
[code]....
Here is what I tried:
Since I had no aliase in /etc/modprobe.d/, I made one. I have also added entries to blacklist.conf ( even tried blacklist with out the .conf ), added entry to sysctl.conf, and added a no load to my grub.conf ( /etc/default/grub). I am still seeing ipv6 in netstat but not when I check lsmod. Below are my entries:
Code:
cat /etc/sysctl.conf | grep ipv6
#net.ipv6.conf.all.forwarding=1
net.ipv6.conf.all.accept_redirects = 0
net.ipv6.conf.all.accept_source_route = 0
net.ipv6.conf.all.disable_ipv6 = 1
Code:
cat /etc/modprobe.d/blacklist
blacklist ipv6
install ipv6 /bin/true
Code:
cat /etc/modprobe.d/blacklist.conf | grep ipv6
blacklist ipv6
install ipv6 /bin/true
Code:
lsmod | grep ipv6
#
Code:
cat /etc/default/grub | grep DEFAULT
GRUB_DEFAULT=0
GRUB_CMDLINE_LINUX_DEFAULT="ipv6.disable=1 quiet splash"
Any ideas why I am still seeing service listing with ipv6?
I'm updating many servers blacklist manualy. from time to time. I want to create a blacklist and host it on a website, and servers will update from this list regularly. For servers I'm using:
Centos
iPcop
Smoothwall
And for proxy I'm using Squid. And I dont use squidguard.
I am trying to add "blacklist ath5k" to the end of the blacklist.config file but it tells me that I don't have permissions to do this. Went to permissions and it says that only the owner can change this. As for owner it says read and write. In ownership it just says user: root and group: root. Very new to this stuff so I am not sure what to do.
View 1 Replies View RelatedQuick explanation about what this thread is: by way of an article featured on linuxtoday, I learned about what appears to be an actively managed IP blacklist: [URL]
# This is a compiled list of dirty hosts associated with
# bruteforcing attempts, spam, botnets, RBN and the list
# continues to grow. The data is comprised of information
# compiled from Arbor Networks, Project Honeypot, FIRE
# (maliciousnetwork.org), Host Exploit, Shadowserver and
# a variety of other similarly based sites.
Quick explanation about what this thread is not: this is not intended to be a discussion about default deny vs. default allow (i.e. whitelists vs. blacklists), nor is this a call for enumerations of your own sshd hardening strategy. Please try to keep on point. That said, can anyone speak to the quality of the blacklist information noted above? And/or are there any suggestions for a readily available blacklist of "known better" quality? I plan to try including an actively maintained blacklist like this into a multi-layered approach for hardening an sshd bastion host.
I did a multilib64 install but I am new. I use slackpkg for updates and its recommended to blacklist all kernel ,glibc and gcc updates. In the past with slackware32 I edited /etc/slackpkg/blacklist to uncomment the kernel but it still updated the kernel. This time I used the command line 'slackpkg blacklist kernel', and the same for glibc and gcc. It brings up all packages in the window and askes what to blacklist. Is this all I need to blacklist? I thought there would be to many libs to list or are they lumped in the 4 or 5 listed.
View 1 Replies View RelatedAfter upgrading to Slackware64 13.1 BETA1 my USB printer stopped working. Blacklisting usblp fixed it. See this thread regarding problems with CUPS 1.4.x. It might be a good idea to blacklist it by default in 13.1, just like Nouveau, as this appears to be a problem that has come to stay...
View 5 Replies View RelatedWith recent changes to Slackware I would like to suggest that /etc/slackpkg/blacklist is modified as follows:
Quote:
# kernel-ide
kernel-modules
kernel-source
kernel-headers
kernel-firmware
kernel-generic
kernel-huge
This works better than the current entry.
The specs on my Pavilion DV6 says it has a 5650 Radeon HD card.lspci shows:01:05.0 VGA compatible controller: ATI Technologies Inc M880G [Mobility Radeon HD 4200]02:00.0 VGA compatible controller: ATI Technologies Inc Redwood [Radeon HD 5600 Series] (rev ff)TWO cards? Currently the first one shows up in the system information but, knowing it has a 5600 series card,I'm guessing the laptop has a cheaper model with a 4200 integrated card where mine has a 5650 added...thus both showing up. I need to figure out a way to ignore the 4200 card and use the second.
Both drivers are contained in the same package from Radeon. The system information shows VESA:M880G as the driver. How do I go about blacklisting the M880G driver so the other one ('Redwood', guessing from the content of the lspci output) can be loaded?Or am I completely wrong about what needs to happen here? I do not see anywhere in the bios where I can deactivate the 4200 chip.[edit] After checking the specs on the laptop (and it's other derivates), i twould seem that there is no 4200 series card on any of the cheaper machines....no sure hwat gives. I've downloaded some stuff on X and see if I can create a xorg.conf that will load the appropriate driver.
I'm likely going to remove the akmod proprietary drivers and go with the open source 'radeon' for a while to see how it goes.[/edit]EDIT 2:The thing thats going on here is 'hybrid graphics' which I had heard of in desktop but didn't realize that it was in laptops.There is currently work going on to get the configuration working properly. The 4200 card is supposed to run when on batteries and switching automatically to the 5650 when the power is plugged in.
I've been trying to fix an issue with NetBook 10.10 freezing on shutdown. I found another post which I'm assuming may be my solution, but I get a permission denied when I try to follow it's instructions.
Here's the post:
Shutdown problem with netbook version 10.10
Add "blacklist rt2800pci" to "/etc/modprobe.d/blacklist-wlan.conf" with the following command:
Code:
sudo echo "blacklist rt2800pci" >> /etc/modprobe.d/blacklist-wlan.conf then reboot.
Suspend to Ram works reliably.
Hibernate to disk works reliably.
Random boot failures have disappeared.
When I type the line in the terminal is says "Permission Denied".
I've been trying to get a cold backup of a 1TB database this weekend, started the whole process Friday and still have yet to get a single device backed up. I'm using rsync to copy files from my /u17 thru /u29 mounts, and the usb is formatted ext3. Each time the rsync would start off fine but after about 30 minutes it would fail with any number of errors but the most prevalent is "Read only file system", "broken pipe". Here are samples:
rsync: writefd_unbuffered failed to write 4 bytes: phase "unknown" [sender]: Broken pipe (32)
rsync: write failed on "<path to one of my .dbf files" failed: Read-only file system (30)
rsync: chown "<path>" failed: Read-only file system (30)
rsync: rename "<path of .dbf> -> <rename attempt>": Read-only file system (30)
rsync error: error in file IO (code 11) at receiver.c(305)
rsync: connection unexpectantly closed (16787 bytes received so far) [generator]
rsync error: error in rsync protocol data stream (code 12) at io.c (359)
I've unmounted and remounted a number of times and kicked off the rsync again and it goes about 30 minutes and I get the same errors. This was all as user 'root', so I tried to do the rsync as user 'oracle' and I get the same thing. After looking into the device as it is recognized, it is being picked up by multipath. Would the fact that a usb device is being managed by multipath be a problem? Currently it is mpath15. How would I add usb devices to the mpath blacklist? The usb is being assigned /dev/sdbj but I'm worried that it would change at a reboot. I've searched the web for all of these errors and still no answer.
Note: I've also just tried to do a copy using 'cp' and got the same "Read only file system" errors. I can sometimes touch a file and sometimes I can't. I want to try and get this backup done this weekend.
I need advice in getting the original blacklist.conf of the directory /etc/modprobe.d/ because I erased and I don't know if that file could make me have some issues in the future, so if any body can lend me a copy of that file or refere me to some page where i can get it. Is for the slackware 13 32bits distro.
View 2 Replies View RelatedI have seen several threads lately about slow internet connections here and elsewhere, but I haven't seen anyone post a reply about blacklisting ipv6 so I am curious as to why?Is ipv6 enabled only on certain distro's or is there some other reason that it's not mentioned?
<If anyone wants to try it, to see if it would work for them>
On Slackware 12.2 and Salix 13.0 just add "blacklist ipv6" to the /etc/modprobe.d/blacklist file. I'm not sure about non-slackware based distro's. Unfortunately, I don't know any way of doing it without rebooting.
I have read in some book that syslogd keeps lots of logs that with the time consume a considerably part of your hard drive. I know this is very nice feature and all that, but sometimes privacy in this competitive world is a matter fact. Here goes the questions: Is it possible to 'auto delete' the syslogd files automatically? May the destruction of the logs make some hangs on my system? May some program need the daemon to function properly?
View 1 Replies View RelatedI have a postfix system that sends allot of emails to customers and web site visitors. A lot of visitors just enter an invalid email in the WEB form just to download some files or do other tasks. Is it possible to BLACKLIST specific email addresses so the system does not send to those addresses? I can grep from the postfix mail log all those fake emails and place them somewhere.
View 4 Replies View RelatedI just thought I would post this file since I was doing it for myself. This is the stock /etc/slackpkg/blacklist file with AlienBOB's multilib and kde 4.4.2 packages added. If I screwed something up please let me know!
Code:
# This is a blacklist file. Any packages listed here won't be
# upgraded, removed, or installed by slackpkg.
#
# The correct syntax is:
[Code]...
As per the subject line, the latest slackpkg doesn't honor the blacklist when using the clean-system option. It tries to make my multilib system unhappy.I fixed this by changing line 656 in /usr/libexec/slackpkg/core-functions.sh
Code:
checkblacklist
to
[code]....
I installed Redhat nash version 5.1.19.6 with kernel 2.6.18-128.el5-xen-i686 on a Dell Inspiron 1300 with Broadcom BCM4401 (eth0/LAN) and BCM4318 (eth1/WLAN). eth0 is working fine, but eth1 was causing trouble. After some difficulties with missing packages I managed to install ndiswrapper, blacklisted module bcm43xx in /etc/modprobe.d/blacklist and removed it, loaded module ndiswrapper and had connection. But after reboot module bcm43xx was again loaded. So blacklisting does not seem to work.And additionally strange to me, I cannot unload module bcm43xx anymore. And if I load ndiswrapper driver bcm43xx is still used as the terminal command 'dmesg' is showing me in the system log, while ndiswrapper was used when the connection was once and only once established
View 13 Replies View RelatedFollowing the instructions, I get to a little after "setting software channels" and a blcr-dkms_0.8.2-13 blacklist error pops-up and ends the installation.
View 8 Replies View Related