I'm just trying to figure out what is going on with FC12
Here is the error:
[root@localhost bigmac]# rkhunter --check
Invalid XINETD_CONF_PATH configuration option - non-existent pathname specified: /etc/xinetd.conf
i install from
yum install rkhunter
rkhunter 1.3.6-4.fc12
Invalid XINETD_CONF_PATH configuration option - non-existent pathname
When I was configure xinetd service I tried to modify the includedir option in /etc/xinetd.conf to another directory. For example:
defaults
{
}
[code]....
I installed Subversion and xinetd and added Subversion as a service to xinetd.conf as instructed at http://www.codeandcoffee.com/2007/06...rver-on-linux/
I restarted the xinetd service using /sbin/service. however, Subversion does not end up being listed in /etc/xinetd.d nor does it seem to be running and occupying the port altogether.
I would like some quick pointers to understanding service-daemon controlling and etc/initd.conf or /etc/xinetd.conf, if you prefer. read, a while back, I should be using...
[bash]# service "srv-dmon" start/stop/status/restart/reload/etc
and to stop using...
[bash]# /etc/init.d/"srv-dmon" start/stop/status/restart/panic/save/etc
[code]....
I am using denyhosts on a server so in a config file/etc/denyhosts.confthe following value is setQuote:DENY_THRESHOLD_INVALID = 3which as per their configuration file saysQuote:
DENY_THRESHOLD_INVALID: block each host after the number of failed login
# attempts has exceeded this value. This value applies to invalid
# user login attempts (eg. non-existent user accounts)
[code]...
I've recently setup a simple service application using xinetd, which runs a bash script to allow users to check for specific events into a log file. The contents of this logfile is not sensitive, so no need for SSL or password protection. Though, my concern about it is the possibility of a malicious request to cause execution of arbitrary code. I've seen similar bash issues discussed briefly a couple times, but never actually seen any solid point of how much of this is a fact, or myth. I've tested some obvious things, like sending tricky characters into the request, but so far it looks ok. So my question here is, considering the following code below, would be possible for an attacker to exploit it? How safe it is to have this sort of application running as a service?
# /etc/xinetd.conf
Code:
service logfile-search {
server= /home/guest/logfile-search.bash
socket_type= stream
wait= no
instances= 5
per_source= 1
user= guest
nice= 15
log_type= FILE /home/guest/logfile-search.bash.access.log
log_on_success= HOST DURATION EXIT
log_on_failure= HOST
}
# /etc/services
Code:
logfile-search30000/tcp
# /home/guest/logfile-search.bash
Code:
#!/bin/bash
trap "" 2 3 24
echo -n "Enter search string: " ; read -t 120
if [ "$REPLY" ]; then
echo "`date` - $REMOTE_HOST - $REPLY" >>/home/guest/logfile-search.bash.search.log
grep -i "$REPLY" /home/guest/logfile.txt
fi
exit
I have simpe question about xinetd what happen to my system if i remove xinetd.conf what can i do to dont allow anyone delete xinetd.conf.
View 2 Replies View RelatedI want to look into disabling things like chargen, chargen-udp, daytime, daytime-udp, echo etc...I have found a manual at:which points me towards the xinetd.conf file. I cant seem to find it, im using ubuntu 8.10 LTS. Should I be looking else where?
View 2 Replies View RelatedI can not find xinetd.conf on my server (CentOS 5.4 operation system).
View 2 Replies View RelatedWe are using LPC3250 ARM9 and LTIB for building the Linux 2.6.27.8 We have written some code to access GPIO and was working earlier with opensuse 9.0 We now have fedora 11 32 bit 2.6.30.10-105.2.23.fc11.i686.PAE When we make the program we get following errors we are using GCC3.4.5
#make -C /lib/modules/`uname -r`/build M=`pwd` modules
make -C /home/shekhar/lpc3250/ltib/rpm/BUILD/linux-2.6.27.8 M=`pwd` modules
make[1]: Entering directory
`/home/shekhar/lpc3250/ltib/rpm/BUILD/linux-2.6.27.8'
CC [M] /home/shekhar/samsung_lcd/gpio/char.o
cc1: error: invalid option `64'
[code]....
i have configured my pc to run ntpd service. but i don't understand this line in ntp.conf:
Code:
restrict 0.asia.pool.ntp.org mask 255.255.255.255 nomodify notrap noquery
I'm getting weird behaviour while setting up an mdadm RAID1 array on debian 8.2.
After I set-up the array, lsblk shows:
Code: Select allsimon@debian-server:~$ lsblk
NAME MAJ:MIN RM SIZE RO TYPE MOUNTPOINT
sda 8:0 0 931.5G 0 disk
`-sda1 8:1 0 931.5G 0 part
`-md0 9:0 0 931.4G 0 raid1
sdb 8:16 0 931.5G 0 disk
[Code] ....
After a reboot, lsblk shows:
Code: Select allsimon@debian-server:~$ lsblk
NAME MAJ:MIN RM SIZE RO TYPE MOUNTPOINT
sda 8:0 0 931.5G 0 disk
`-sda1 8:1 0 931.5G 0 part
`-md0 9:0 0 931.4G 0 raid1
|-md0p1 259:0 0 811.6G 0 md
[Code] ...
I don't know where the md0p1 and md0p2 partitions are coming from. My /etc/fstab and /etc/mdadm/mdadm.conf both have nothing about this in them.
parted shows one partition on md0:
Code: Select allsimon@debian-server:~$ sudo parted /dev/md0 print
Model: Linux Software RAID Array (md)
Disk /dev/md0: 1000GB
Sector size (logical/physical): 512B/4096B
Partition Table: loop
Disk Flags:
Number Start End Size File system Flags
1 0.00B 1000GB 1000GB ntfs
Where the md0p1 and md0p2 partitions are coming from?
I'm setting up the array by doing as follows:
Delete existing device (I've done this a few times):
Code: Select allsudo mdadm --stop /dev/md0
sudo mdadm --remove /dev/md0
Zero drives:
Code: Select allsudo dd if=/dev/zero of=/dev/sda bs=1M count=1024
sudo dd if=/dev/zero of=/dev/sdb bs=1M count=1024
Create partition tables:
Code: Select allsudo parted /dev/sda mklabel gpt
sudo parted /dev/sdb mklabel gpt
Create full-disk partitions:
Code: Select allsudo parted -a optimal /dev/sda mkpart primary '0%' '100%'
sudo parted -a optimal /dev/sdb mkpart primary '0%' '100%'
Set raid flag on partitions:
Code: Select allsudo parted /dev/sda set 1 raid on
sudo parted /dev/sdb set 1 raid on
Create RAID array:
Code: Select allsudo mdadm --create /dev/md0 --level=1 --raid-devices=2 /dev/sd[ab]1
Add filesystem (I'm using NTFS, but the problem also happens with ext4)
Code: Select allsudo mkfs.ntfs -f /dev/md0
Got F13 installed yesterday, this afternoon I suddenly started getting Secure Connection Failed warnings. I'm not sure whose problem it is because it mentions uses an invalid security certificate.This certificate is only valid for *.opendns.com(Error Code: ssl_error_bad_cert_domain)It continues to say that someone could be impersonating the actual server. I am still receiving mail through google and my google calendars seem to be working. I do use OpenDNS for my DNS instead of my ISPs (Comcast which would very often slow down) and obviously I use IMAP mail with google on Thunderbird. So is it google, or OpenDNS, or Thunderbird that has a problem. Firefox does not seem to have a problem
View 2 Replies View RelatedUbuntu Server 9.10I want to set up my dhcp server to also be my DNS server so do I skip these lines or point them at the same server that the config file is on?
View 4 Replies View RelatedI have a java server console program that I have configured xinetd to start when connection comes in on a given port and then the program runs in an infinite loop receiving inputstream from telephone exchanges. The thing is, when a new chunk of stream comes from the exchange xinetd forks a new process each time. I tried setting the wait parameter to yes and restarted the deamon, but no success. How can I stop this behavior and have the deamon just direct the stream to the process already running? Am I missing something in my config or is it just incorrect?
My config is as follow:
defaults
{
instances = 60
log_type = SYSLOG authpriv
log_on_success = HOST PID
log_on_failure = HOST
cps = 50 10
}
includedir /etc/xinetd.d
And then my actual config,
service aos_larmar
{
socket_type = stream
protocol = tcp
user = root
type = UNLISTED
wait = yes
instances = 256
server = /home/gunnl/java/start.sh
port = 5204
disable = no
}
My server OS is, Red Hat Enterprise Linux ES release 4 (Nahant Update 7)
I get the following error when I try to boot vista thru grub. This is what I did, Got a new Hard drive installed it. Configured the bios to look at the new hard drive first. after installing vista on the new hard drive I switched the boot order and added the lines for vista(last 3 lines) in /boot/grub/grub.conf. I get the following the following error.I have to change the bios everytime i have to boot vista.
error 1: Filename must be either an absolute pathname or blocklist
#boot=/dev/sda
default=0
timeout=15
splashimage=(hd0,1)/boot/grub/splash.xpm.gz
hiddenmenu
title Fedora (2.6.29.6-213.fc11.x86_64)
[Code]...
Im logged in as root in Fedora, What is the home directory pathname?
View 2 Replies View RelatedI have recently installed Fedora 14 on a new computer we presented as a gift to my sister-in-law. She is new to Linux. Although I've used Fedora since Core 1, I'm no expert on security issues, and this baffles me. She's doesn't know how to change the root password, so why doesn't it work any more? She discovered the problem when attempting a yum update from a terminal.(1) How could the root password have gotten changed? How likely is it that someone got onto her system through ssh, made a lucky guess on her root password, and then changed it? Are there robots that do this?
(2) The firewall is enabled. I have it set up as follows: (a) under "Trusted Services," only ssh is checked (I need to be able to get in remotely this way); (b) under "Trusted Interfaces," I have eth0 checked (I need to be able to use VNConto her desktop).Question: Are these settings giving ample protection? What settings would be recommended to protect her system while at the same time allowing me to access it through ssh and VNC?
i just installed Debian 5.0.5 ! and i used guided partition (option one) while installing BUT immediately i cannot access my Windows drives C & D. if i click it , it says "Invalid mount option when attempting to mount the volume C " how to fix it?
View 9 Replies View RelatedOption -m: Invalid argument near character 14
View 1 Replies View Relatedthere is no option that static ip cannot be configured during fedora 10 installation. I may be wrong, as i am now to fedora.
View 7 Replies View Relatedi can not enter to my partition when i try that thing , i got this message:
1- Invalid mount option when attempting to mount the volume.
2 - You are not privileged to mount this volume.
first message it is about entering (( Windows OS partition )) (( NTFS ))
second message it is about entering other partiton with (( FAT32 ))
Any idea when the -D option was withdrawn ? I could not find much information on this . Also, what exactly is the difference between vgdisplay -v -D and just vgdisplay -v .
View 6 Replies View RelatedI am trying to set up a lamp server and I would like to change the ServerTokens option from full to prod but when I open /etc/apache2/apache2.conf it's no where to be found. Has the option been moved somewhere else? Same with setting ServerSignature from on to off. I'm starting to wonder if I even have the right conf file.
View 1 Replies View RelatedI'm using linux suse 9.3. Recently i try to run execution files but it shows an error try running with the option "-console" or "-silent" When I tried with the -console option, I got the error - The wizard cannot continue because of the following error: Invalid command line option: console is not supported (1001) (403)
[Code]...
I am working on a bash script which among its operations creates directories using the mkdir command. However, when the directory already exists mkdir mentions that in the command line output.
Is there any way I can make mkdir silently overwrite any existent directory? (no messages in the output). For the same price, could it be done with other commands such as cp or mv?
I have installed Fedora 12 OS which is using kernel 2.6.32.11-99.fc12.x86_64. I am using a Linksys WMP600N Wireless-N PCI Adapter with Dual Band card which has a Ralink chipset. I have installed the latest rt2860 driver which uses the 2.6.32.11-99.fc12.x86_64 kernel. If there is any other pieces of information that is need I can provide it.
Problem: I can use either the Ethernet connection which is built into my ABIT mother board or my PCI wireless card. My Ethernet connection works perfectly however; my wireless card comes up attaches to my wireless router; that's it. There is a strong signal, the WPA2 security password works correctly. I am able to ping my loop-back address and my DHCP IP address for my wireless card but I can not ping the router or anything outside of my box.
If I let the ping program run for a while and allow it to try to ping the router, after a period of time ~5minutes or so I will get several hits and then stop. The firewall does not change from my Ethernet connection to my wireless connection. The Wireless connection is a trusted interface in my firewall specifications. Questions/Thoughts:
Can I use the same OS provided routing table for my Ethernet connection for my wireless connection? Would the OS know which port to use by switching to a wireless connection (after reboot)? Do I need to somehow switch or bridge the port? Is the wpa_supplicant playing with my connection and opening it up and then shutting it down? Below are some netstat data: routing, interface table, statistics, and dmesg on the kernel driver rt2860.
[Code]....
I'm using 2 cloned disks with CentOs5.3 and I need to be able to control which one is booted. I can specify which disk in the BIOS but after stage 2 it is always running from disk 2. When I have puppy linux on one disk and CentOs on the other I can boot off of either as selected by the system BIOS so the BIOS is not the issue. I think it is how the root option is passed in the kernel command in the grub.conf.
kernel /vmlinuz-2.6.18-128.el5 ro root=/dev/VolGroup00/LogVol00
I think when the OS searches for the /dev/VolGroup00/LogVol00 share is locates 2 since the disks are clones and uses the last one found. On information I have found for the kernel command and the root option it appears CentOs uses it differently. CentOs uses a volume name as specified /dev/VolGroup00/LogVol00 instead of a partition designator /dev/hda2. Is there a different way to specify /dev/VolGroup00/LogVol00 in CentOS for the root option for the kernel command of grub.conf?
To avoid having to input a password for the keyring each time I connect to the net via wireless, I enabled the 'Available to all users' option in Network Manager. Now, my question is this. Are the 'users' it refers to just those created on this machine? Would a drive-by be able to use my network without entering the password?
View 3 Replies View Related