Ubuntu Security :: Users Connecting To Serverip:52000 And Should Land On Client:52000?
Jan 27, 2011
perhaps anyone can help me. Situation: A VPS Server, i installed a PPTP Server on it, is working. Client connecting to PPTP Server, working. Now i only wanna one port thru the PPTP Connection, all other NOT. In example Port 52000 on Client. Users connecting to Serverip:52000 and should land on Client:52000, BUT and that is what is important for me, with their Real IP. If i do a POSTROUTING ppp0 MASQUERADE it is working, but the Users in my Log have the IP from the Server and not their Realip. It makes sense because i do Masquerading.
Anyone can Help me? That would be great! VPN IPs are 192.168.0.1 on Server and 192.168.0.234 on Client. I can ping each other. Server Interfaces: eth0 and if i connected with PPTP Client ppp0 (192.168.0.1). I wanna not route all traffic through PPTP, only one or two Ports!
View 5 Replies
ADVERTISEMENT
Jan 6, 2011
trying to create a "local network" by directly connecting an IBM Thinkpad with Debian Linux installed on it to an Alix computer running Voyager Linux. I'm following a "how to" I found to create a music server, hence the requirement. My issue is I can't get a static IP address to be configured on the Debian machine.I've trawled the net and have found the instructions about editing the /etc/network/interfaces and have tried to do this. First I tried to get DHCP working so I could connect the Debian machine to the net and this proved successful. I edited the interfaces file to look as follows:
# The loopback network interface
auto lo
iface lo inet loopback
auto eth0
iface eth0 inet dhcp
Then I tried adding a static IP address to the machine. As this is a network purely between two machines I made up the IP addres and used 192.168.0.1 and used a NetMask calculator to give me a NetMask of 255.255.255.254 (I told the calculator there would be 2 machines on the network). I then edited the interfaces file as follows:
# The loopback network interface
auto lo
iface lo inet loopback
[code]....
I re-booted the machine (ifdown eth0 followed by ifup eth0 keeps saying that eth0 hasn't been configured - a problem there that I don't understand), but during boot up time it failed to assign the Static IP address to eth0 and made me go into SU mode. To fix it I simply replaced the interface file with the static IP inputs with the file that had the DHCP entries (I'd made a copy of the DHCP file), and re-started the machine. Everthing came up fine. So the first question is how do I get a static IP address to be assigned to eth0 such that whenever I shut down and restart the machine the static IP address is always loaded?
The second question is around creating the network via the cross over cable. From what I've found via Google, all I should have to do is create a static IP address on the Debian machine and a static IP address on the Voyager machine. Once they're connected by the cross over cable they should see each other. Is that correct, or do I have to do anything else?
View 2 Replies
View Related
Nov 1, 2010
We are trying to set up a classroom training environment where our SIG can hold classes for prospective converts from Microsoft/Mac. The ten machines will have /home/student01..10 and /home/linsig01..10 as users. We want /home/student01 to be able to explore and sudo so they can learn to administer their personal machines at home. We don't want them to be able to modify (sudo) /home/linsig01. I've seen the tutorial on Access Control Lists but I'd like other input so we get it right the first time.
View 3 Replies
View Related
Jun 29, 2011
I am trying to connect my pptp client Linux to a pptp Linux server using modem but no success. I can only tweak ppp linux side Observing the following log I found it�s due to MPPE Support configuration mismatch in pppd, pppd (linux client) is refusing to accept MPPE encryption.
pppd[24545]: pppd 2.4.5 started by root, uid 0
chat[24547]: abort on (NO CARRIER)
chat[24547]: abort on (NO DIALTONE)
chat[24547]: abort on (ERROR)
chat[24547]: abort on (NO ANSWER)
chat[24547]: abort on (BUSY)
[Code]....
View 1 Replies
View Related
Oct 15, 2010
To avoid having to input a password for the keyring each time I connect to the net via wireless, I enabled the 'Available to all users' option in Network Manager. Now, my question is this. Are the 'users' it refers to just those created on this machine? Would a drive-by be able to use my network without entering the password?
View 3 Replies
View Related
Mar 12, 2010
I would like have my client computer be able to boot off of a cd right into a terminal server connection. Not click here, then there, enable wireless....so on.. Just boot into a terminal server connection screen.
View 1 Replies
View Related
Apr 27, 2011
I'd document here the way to get to eDesktop through linux (debian, ubuntu) at the University of West Florida (UWF), since they appear to only support Windows through their documentation on the University web site, and the link through Argus (the secure web site) doesn't work in Linux. This is sometimes needed to use the University resources (libraries and computer programs) from remote locations, and otherwise a google search is fruitless. I had to have a guy in the computer science department show me how to do it. This may apply for other Universities with similar setups. It was impossible for me to figure it out on my own, I had to go back to my old 9.04 partition to get the info...
1) Open Terminal Server Client (Applications>Internet>...)
2) Insert as follows:
Code:
Computer: eDesktop.uwf.edu
Protocol: RDP
User Name: YOUR USERNAME
[code]...
3) OPTIONAL BUT RECOMMENDED click Save As and save it as a quick connect so you don't have to refer to this again.
4) Flip through the other tabs and configure as desired, and click Connect!
View 7 Replies
View Related
Oct 15, 2010
I am trying to config linux box as router.
I have CentOS 5.5 client and host in VBox. I can't connect them (I am using bridge adapter mode) as I don't have router in between.
I just created DHCPD on host, and followed
[URL]
But that don't seem to work also. Host is 192.168.1.10 and client is 192.168.1.100 but when I ping host from client, it says Destination host unreachable.
View 2 Replies
View Related
Nov 7, 2010
I have problem with the server,when i restart my server client is still running it is not able to connect to client.i want my client to connect to server after the server restart
View 3 Replies
View Related
May 12, 2010
I have an environment with multiple projects that have a variety of government and commercial sponsors. We have been satisfied to this point with a netapp serving nfs/cifs and keeping a tight reign on nfs exports.Some of these projects have started asking us to provide access restricted sub-folders of the project space based on different groups that contain a user subset of the primary group.
We have a linux machine that serves as a version control front end to the netapp, mounting the project spaces via nfs. People are now mounting their project space via sshfs to this "front end" and sharing the root password of this sshfs client with everyone in their project, in turn creating a security hole to access the so called restricted sub-folders. I know all the obligatory responses referring to irresponsible user behavior but would like to see how others have addressed something like this where user behavior seems out of control.
View 12 Replies
View Related
Oct 26, 2010
I use Ubuntu in my office NIS environment and I can't upgrade the whole network to LDAP right. I upgraded to 10.04 recently and reinstalled the NIS client and associated packages, among other things.
I have set up my /etc/nsswitch.conf file so that passwd, group and shadow all have "files nis", I'm bound to the correct NIS domain and I can do "ypcat -k passwd" or "ypcat -k hosts" just fine.
Problem is that I can't log on or su to any NIS user, I just get "authentication failure". I've tried the same usernames and passwords on Red Hat NIS clients on the same domain and they work fine.
View 2 Replies
View Related
Mar 17, 2010
Before we use CentOS 4 and all work fine. We start x11vnc by ssh like root. And after this connect by client login in X screen. In CentOS 5 this way don't work. For connect we must login by local from keyboard, start x11vnc ssh by logined local user, and after this we may work, but can't change users.
View 2 Replies
View Related
Dec 17, 2010
I have a created a wireless connection from the main admin account and checked the box saying "Available to all users", everything is working correctly. I only need to prevent the Desktop Users from switching the connection to another one.
View 4 Replies
View Related
Sep 24, 2010
I'm using Nomachine NX client for Windows to remotely connect to my Ubuntu.Every now and then I experience a strange phenomena: the text in the prompt of all open terminal windows becomes black, so it can't be viewed over the black background. Typed commands are also black, but the results are in normal colors. So I can run stuff, but can't see what I'm typing...After I close all open terminal windows and start a new terminal window, everything goes back to normal.
View 1 Replies
View Related
Nov 15, 2009
i installed unix services for windows 3.5 on a windows xp pro box and it installed fine. I configured nfs on the debian box and exported the ip of the client computer and forwarded port 2049 correctly. I followed the instructions for setting up teh nfs client on windows. However whenever i go to tools->map network drive and type in the server-domain-name:/file-address it says it cannot connect?
View 6 Replies
View Related
Dec 30, 2010
The question is related to one single desktop machine, with 3 users.
1) the superuser (me)
2) My elder son
3) My younger son.
As superuser, I can access the network (internet router) via "Wicd" perfectly well.
Both Client users can't.
Do I have to give them special user priviledges? If yes, which ones?
View 6 Replies
View Related
Mar 20, 2016
I'm trying to connect to my server (to the gnome session) using vnc. I run vino-server on debian
I get pass the authentication (configured none) but I get a blank screen instead of my session.
Log from vino on the console:
root@B10-20-30-4:/etc/vnc# /usr/lib/vino/vino-server
** (vino-server:2547): WARNING **: Couldn't connect to accessibility bus: Failed to connect to socket /tmp/dbus-7l6BcHLxb5: Connection refused
(vino-server:2547): EggSMClient-CRITICAL **: egg_sm_client_set_mode: assertion 'global_client == NULL || global_client_mode == EGG_SM_CLIENT_MODE_DISABLED' failed
20/03/2016 05:20:28 PM WARNING: Width (3046) is not a multiple of 4. VncViewer has problems with that.
20/03/2016 05:20:28 PM Autoprobing TCP port in (all) network interface
20/03/2016 05:20:28 PM Listening IPv6://[::]:5900
[Code] .....
View 0 Replies
View Related
Sep 25, 2010
I have a white slate centos 5.5 installation on a virtual box at Media Temple (one of their new VE servers). I am trying to create a development environment where I can have Bind9 serve up one set of zone files to me and other developers on the internal network and another set of zone files to external requests (ie... using the views feature). I would like to be able to develop for sites for which the dns is not yet pointed at my server. The network is created by having the VE server be an OpenVPN server, and connecting my client box to the server (my mac - 10.8.0.6 / my ve server 10.8.0.1).
I have the connections working fine, I have also been able to route all network traffic from my mac through the vpn to the server. For some reason, I cannot get the DNS server on the ve server to serve me an internal view zone file. When my vpn is on, I cannot ping or navigate to any web pages from my mac. I think this is because my ve server is not setup as a dhcp server and the ip tables are not setup to allow all internal requests to use the server to go get web pages.
I cannot view-ping anything else from my mac/client when on the vpn, I can successfully ping any website my ve is authoritative for. This tells me that my ping is obviously going over the vpn, and thus an internal request, but the external zone file is still served up. The following is my named config.
acl "lan_hosts" {
10.8.0.0/24;
127.0.0.1;
};
[code]....
View 3 Replies
View Related
Jan 13, 2010
I've just set up NIS on my home network (probably not necessary on this scale, but I wanted to try it out). The server and the clients are all running Debian Lenny. I've got it up and running and have my NIS users on the server logging into graphical desktops on a client machine.My problem is this: The users cannot access a lot of services that are native to the client because they're not members of the right groups (for example, they have no sound because they're not members of the audio group). I figured it would be easy; just add users to groups with the usermod command but the response I get is that the user in question is not present in /etc/passwd. If I understand NIS correctly I'm not supposed to add my users to /etc/passwd on the client machines.
View 7 Replies
View Related
May 1, 2011
The desktop computer of my two children has a total of three users:
1) The superuser (me)
2) The user 1001 (my elder son)
3) The user 1002 (my younger son)
Both users 1001 and 1002 can not access their files system, and also they can not save any attachments from incoming mails.
What I tried so far:
I accessed the file manager as superuser, and went: >Root>Home. Here I right-clicked on the folder User 1001, selected properties, selected the tab 'permissions' and allowed this user to read and write into this folder. I also checked the checkbox �extend this permission to all subfolders and its contents.
The problem is, when I reboot, everything is 'forgotten' and I am at quadrant zero again.
Eventually I should state that part of the folders are from a backup drive, because the hard disk had to be replaced so, once I re-installed the OS on the new hard drive, I copied the folders from the backup drive into the home folder.
One last question:
Is there a good tutorial about permissions?
View 9 Replies
View Related
Jan 9, 2010
I managed without knowing to remove my user from the sudo users group. I did usermod -G fuse <username> and now I can't sudo anymore. How do I get back to the promised land?
View 3 Replies
View Related
Feb 15, 2010
The Opportonity to share Infos about upgrading and installing Stuff on Ubuntu Ok so i wasn't sure where to put this!!As i was a Windows User i used to call Landlines for free using Softwares such as :[URL].. Now i dont know How to use these Softwares in Ubuntu , I tried to Configure it through Wine Microsoft Windows Compatibility Layer . In case of Using Ekiga , I really don't know How to use it (as a Matter of Fact I tried to use it but i assume using it require an SIP-Account )
View 6 Replies
View Related
May 18, 2010
Skype gives you the ability to call regular numbers anywhere in the world (for a price).Unfortunately it uses its own protocol which isn't compatible with the FOSS Linux soft phone clients like Ekiga.Can anyone recommend a service I can use to make long-distance calls using Ekiga or some other SIP client?
View 1 Replies
View Related
Feb 27, 2010
I am using Unbunto desktop and installed "likewise open" so that my linux client can access windows active directory(join the domain). On server side i have windows 2003 server. On windows 2003 server in active directory i have assigned each user a disk space. I have sucessfully joined linux (ubunto) box to the active directory domain but my linux box has access ($ it can use) to all other user diskpace ( they can browse other users) and when i joined windows xp client with the same server it works properly( xp client cant access or use other diskpace)
View 1 Replies
View Related
May 24, 2011
We are setting up virtual Ubuntu 10 machines that will just be used to launch a portal to our servers. I have the stripped down image created, but would like it to launch the VMware View Open Client software so it took users directly to what we want them to see.Is there a way with Ubuntu to set that to auto deploy on start up? If I could do that it would greatly improve security on keeping users from getting to places we don't want them into
View 2 Replies
View Related
Jul 1, 2010
I have set up an NFS server on Fedora 13, and I am connecting to it with Fedora 13 and Ubuntu 10.
On both clients the command
Code:
works fine. On Fedora I can get into the directory with Nautilus and have read/write permissions as specified in /etc/exports on the server, but on Ubuntu I can only get into it from a sudo'd command line.
The ownership of the file on Fedora is "nobody" and on Ubuntu it's "user #500", with only people in the "500" group having access to it.
Obviously the permissions can't be changed on the client, but with the Fedora box being able to read/write to it with no problems I'm not sure what else I can do on the server to let normal users on the Ubuntu box read it.
View 1 Replies
View Related
Feb 8, 2010
I am encountering this issue:
Samba login/passwd client : why the users id arent the same on every machines?
So the client side config looks like this:
Quote:
/etc/pam.d/ files :
Code:
returns:
Code:
View 4 Replies
View Related
Aug 15, 2010
Im using 10.04 with network manager applet. This is the output i get code...
Why cant ubuntu connect me to a pptp vpn?
View 9 Replies
View Related
Mar 3, 2010
was assign to set up a network server that has 4 land card including the onboard 3 dsl connection
View 1 Replies
View Related
Oct 11, 2010
I installed SLES 10.2 with SAMBA 3.5.5.43 to retire our old Microsoft Windows 2000 Server and save some money. All was fine until last week when our chief asked to me to set password expiration for all clients. This morning, all users cannot logon because, when they logon, windows asks to change password and then it gives error error "Access Denied".
[code]...
View 1 Replies
View Related
