i start fwbuilder with debug option: # ssh root@localhost sudo -S /etc/fw/firewall.fw and iptables rules are setup without any errors.
What exactly is the fwbuilder firewall? Simply this iptables set of rules? Or the running fwbuilder script (firewall.fw)? Both?
What now? How do I see what's going on?
When i scan with nmap, it doesn't seem to matter if i have a firewall running or not. I have used firestarter till now.
I am going to build a Linux VPN server(PPTP) for my friend but here is the problem: He don't know Linux and command line to manage users, monitor server, etc
View 1 Replies View RelatedI am about to write a script to manage daily backup on a USB HDD. The server that holds the data works 24 hours a day and therefor, is seldom rebooted. I have 2 options :
OPT 1 : I mount the usb drive once and for all, and copy the data to it when I need to (twice a day, no more) and never unmount it. Except when the server is rebooted of course.
and OPT 2 : I mount the drive, copy the data and unmount it ASAP twice a day when the time has come to backup the data.
Is there a possibility in openldap to allow a user to only create/manage specific LDAP users?For example user "mailadmin" may only create/manage mail accounts in LDAP that are named like "m1342895"? Or a specific list of user accounts that are in a specific group?
View 1 Replies View RelatedI have a router on 192.168.0.1 and eth0 on 192.168.0.122 and that's it, and i'm trying to set up a fire wall. so i choose DHCP conn for eth0, put my ip into eth1 and compile, but when i try to install it with firewall builder it asks me for user and password, i put in my user and root password that i use with (sudo) and 192.168.0.122 for the adress that will connect to firewall, but i get permission denied message for about 3 hours now.
View 1 Replies View RelatedTrying to setup a Kerberos + OpenLDAP server to manage users for our Samba shares (was going to use just OpenLDAP, but apparently it is less secure than using Kerberos with it). (Distro: CentOS 5.5) Haven't even gotten to the point of connecting either to Samba yet. I have set up a Kerberos server, and configured it as necessary. I am happy that it is working as intended, as I can login and manage principals from both the local terminal and remotely on other clients.
I have setup a server (sv1.myhost.net), and configured it to talk to Kerberos (auth.myhost.net). I have created both a [URL] principal, and a testuser principal. I have set the password on the testuser but not on the host/sv1.myhost.net. I have added the keys for both users to the keytab file on the sv1.myhost.net. I am at a Windows 7 machine (on the same internal network), and have installed the Network Identity Manager. It is able to request a ticket successfully for the testuser account.
When I use putty w/GSSAPI (0.58) to remote login to the system, it says using 'testuser' and then just hangs there. Eventually putty connection times out. The fact that both machines can connect to the auth server to communicate with kerberos correctly suggests firewalls are correct. The relevant entries in sshd_config have been uncommented to tell srv1 to use Kerberos authentication.
I've got Lenny installed with the desktop environment included. Remote desktop has been activated and I can see Lenny's desktop on a second computer using VNC. When I disconnect the monitor from the first PC which is running on Lenny and start that one up it won't boot all the way and I cannot connect through VNC (connection refused).
Etch has no problem with that. When I connect a monitor to the stalling Lenny I read: Failed to start the X server (your graphical interface). It is likely that it is not set up correctly. Would you like to view the X server output to diagnose the problem?
What can I do to establish a full boot on Lenny so I can use VNC the way Etch (and other distros) allows me to? This has something to do with the autodetect system, I suppose. Could I tell X Server to ignore the fact no monitor is connected or could I fool X Server into believing there is a monitor?
I am trying to configure my video card (ATI Radeon X1300) to use two monitors. Now i can see in both the same duplicate screen.
View 14 Replies View RelatedI wrote a policy form my firewall with fwbuilder it compiles fine, but when i use the installer ti gives me this:
Quote:
scp: /etc/fw/tmp/: Is a directory
SSH session terminated, exit status: 1
I set-up fwadmin to manage the account and set up the password, I just can't install it.
I have been trying to setup sshguard in Ubuntu 10.04 and I cannot manage the log daemon to execute the sshguard command. Has anyone managed to setup sshguard under 10.04?
View 9 Replies View RelatedI will be hiring Linux freelancers very soon to do some work on my Linux Centos 5 machine. And I need a way to see what he's doing on my computer over ssh, now I don't mean me reading the logs, I meaning seeing what he's doing in realtime (kind of like vnc, but except the freelancer will only use ssh to do his work and not on the desktop environment.)
View 10 Replies View Relatedis there a way to monitor use of rm, cp and mv commands? (other than in history)... i would prefer if it were logged in /var/log directory with time and command (with its arguments).
View 5 Replies View Relatedi was trying to use gnome and kde but i don't like them. I tried xfce and it seem to fit my needs but.My computer is used to be powered on for a weeks. While time passes, a process xfdesktop begin to use more and more memory and to free RAM i need to log out and log in again.
I tried squeeze yesterday on my virtual machine and it has 4.6 and seem not to have that bug, RAM usage is static(yes it still works when i write this and have memory usage 34492k, which is not changing for an hours of usage already), also 4.6 is MUCH better than 4.4.
i already tried adding squeeze to "sources.list" but i can see too many dependencies which should be upgraded if i install 4.6, i'm beginning to afraid it can crash entire GUI(or entire system, i can see there is libc6 required to be updated).
i need a way to monitor a certain partition / folder to see if any changes has made is there anyway of doing that ?
View 4 Replies View RelatedMy wife was using cryptkeeper fine, then she right-clicked the keys on the panel and did something, I'm not sure what. Anyway, the keys you click on to open the encrypted folder are gone and I can't figure out how to get them back. System monitor shows cryptkeeper running. I can kill it and re-start it, but the keys don't show on the panel. I'm running ubuntu 9.10.
View 1 Replies View RelatedI want to do some pen-testing using aircrack-ng on my local network and currently the only wireless adapter I have is the WNA 1100 netgear adapter. I am using the ath9k_htc driver.
View 7 Replies View RelatedI am looking for a utility that would do the following:1. Be run manually on a list of files whose sizes should not change, to get a control file containing the sizes of each file.2. Subsequent manual runs would report any changes in size of any of the files in the list, and allow option to accept the new sizes.3. Be run as a cron job to check for changes in the file sizes and send an email alert if a change has occurred since the last time it was run.The purpose is to detect possible hacks of key files on a website. It would not include files expected to change, but just those that should not change. It would be run manually a few times to get the control list one wants to monitor.
View 3 Replies View RelatedRecommend open source tools that can help in figuring out if we are experiencing a network latency due to the newly installed firewall on our server.
View 1 Replies View RelatedIs it possible to manage the LED of the box (desktop) ? (I'd like to light off the main led when suspend rather than it wink at - I've looking for a LED entry in /proc bit find nothing)
View 4 Replies View RelatedI want to install xen on my server but I am very new to Xen. I have read various articles on google but it didnt made me understand too much about xen. Any link which explains how to install & manage Xen in simple language.
View 8 Replies View RelatedI will try to explain. My bank send to me a file which has extension .fm6, but which is, in reality, a zipped file. I have a program, which runs more or less well under wine, to open them.
Now the problem is: how can I associate this kind of files to the application? I mean, I can change the application for *all* compressed zip files, I know how to do it, but I do not want it. Just zip files that happens to have a name ending in .fm6 should be associated with them.
I know it's possible. In the end, openoffice.org files are really zip files (try it), and they are treated differently.
Looking for a way to control how much cpu apps are allowed to use. I'm 10.04 64bit dual core.
View 8 Replies View RelatedI'm looking for an effective way to manage use of internet bandwidth by users on a local area network. Currently there is a simple broadband router and unmanaged switch, and a standalone Ubuntu Server (8.04) that provides DHCP, DNS and mail for the LAN, and a web server. Ports are forwarded from a static external IP address to HTTP, HTTPS, SMTP, SSH and IMAPS, and some security is provided by IP Tables (managed by using UFW).
There are 5 users on the network, and currently one or two of those 5 are using beyond our monthly download allowance of 30Gb. 1) To be aware of how many users are currently using the internet connection, and to divide the bandwidth between that number (so that if there are, say, 3 active connections, the total bandwidth available is divided 3 ways, rather than one of those users being able to hog all of it).
2) To allow each user to download up to 1/5 of 30Gb each month without any additional throttling (apart from the above), but once they go over that allowance to throttle them individually to, say, 10Kbps until the start of the new month.
I've heard other threads talking about both IP Tables and a proxy server such as Squid. I have no idea which of these would be most suited to the task. Currently, as I said, the Ubuntu server is standalone and only using 1 NIC, but it has 2 NICs and I could be configured to act as a gateway for the LAN, instead of the router, which is set to be the current default gateway.
I installed ubuntu 10.04 minimial (just base packages), I have a desktop manager installed and was just wondering what the command was to install a gui to manage printers?
View 3 Replies View RelatedI want to use Vidalia to manage a TOR relay. My /etc/default/tor file references another file /etc/default/tor.vidalia. It's supposed to help manage the TOR daemon. For whatever reason, I don't have a file called /etc/default/tor.vidalia.
View 8 Replies View RelatedI'm trying to get my HP printer to work on Backtract 5 KDE (Ubuntu 10.04), I have installed 'system-config-printer-kde' and 'kde-printer-applet' plus the HP drivers but I think something is still missing cause I cant setup up the printer (clicking on add new printer I only have the option for network printer and new class printer) and if I try to print from any application there's only one option that is to file.
I'm sure there's a solution for this, I have searched a lot but can't find the list of packages necessary to manage printers.
I am using Fedora 13 and have an intermittent problem with the printer(HP d2540). Periodically, the printer will not finish a print job or the software leaves some form of command that interferes with the subsequent jobs. I haven't had much luck finding the print queue. Typically, the print jobs are coming out of the OpenOffice word processing segment and I am not sure whether there is an actual problem or simply a page formatting error.
View 2 Replies View RelatedI am using SQUID 2.6 on cent os. Squid as a proxy server is working fine. I want to manage my bandwidth according to my office staff.Like for top management users may allocate 1 MB and rest of the users as 256 kb.Kindly guide me that how can I do it ?
View 1 Replies View Relatedi'd like to know how many rule can manage iptable. I'm asking that because i'd to drop all traffric from my localnet to porn site. I've a database of porn site witch contain about 900 000 domains. I know there are solutions like squidguard. But for my linux box i'd to use iptable to prevent users access to porn site and other blacklist site.
View 1 Replies View Relatedi want to allow the user winny to manage users...i have added the following lines to the visudo file.
#user alias specification
User_Alias LIMITEDTRUST = winny
#command alias specification
[code]...