I've pruned your post from where you originally posted. In the future, please check the dates on threads which you're thinking about posting in. If you see they are dead (inactive for a few months or more) just let them rest in peace and start your own thread. You can always include links to reference the dead thread if you need to, as I've done here.
i have configured racoon (ipsec tunnel) between 2 hosts and i am afraid of unencrypted ICMP which appears in TCPDUMP logs. There ale also encrypted ESP packets. Is this result of wrong racoon configuration? 172.16.220.133
I have a few external IP's assigned to me by my ISP. I have IPcop as my router/firewall. I am wondering how to bind 1 of my external ip's to my internal ip address. So I do not have to port forward, etc. For Example, 220.127.116.11 to 192.168.1.123 and on the server it see's the external IP address.
I dont know for what reason, since 2 days, I started having this message whenever I try to start httpd.I commented "Listen 443", restarted httpd started correctly. I needed to comment "listen 443" in order to be able to start httpdWhat is strange is when I do
(98)Address already in use: make_sock: could not bind to address 0.0.0.0:80 no listening sockets available, shutting down. Unable to open logs
I am new to apache2 server i have been trying to start the server using the default httpd.conf file provided in the source code but when i give the following command sudo /usr/local/apache/bin/apachectl start i receive the above error and the server shuts down.
i have a xeon machine with ubuntu os machine specification is 3gb RAM 3 scsi hard drives each 73gb it have two ethernet cards one ethernet card is connected with adsl modem and the second is connected with LAN. now what is mikrotik doing for me is control access to bind mac adress with ip adress and control the band width for induvisual conection.
writing TCP server which is listening on port 6000. as soon as client closes the connection my server should Relisten on the same port I am getting address already in use error while binding for the second time, even if i am using SO_REUSEADDR..
I'm using xubuntu 9.10. NOT ubuntu server. I need to install a lamp server on my box. I cannot install a new OS like ubuntu server, have to use what I got.when I run apache2, I get:
Quote:(98)Address already in use: make_sock: could not bind to address 0.0.0.0:80 no listening sockets available, shutting down Unable to open logs I've changed the port that php listens too to 8080, 81, and I get the same message but with the new port number.
I've removed and installed apache three times, read all kind of threats on the web, but cannot find the solution! it's just driving crazy.
I have MySQL installed on my Kubuntu 10.04 desktop machine which I use for developing web applications.First, all worked fine. But then I wanted to synchronize the database with the MySQL database on my laptop, so I had to allow connections from the LAN interface. So I addedCode:bind-address =192.168.0.100to /etc/mysql/my.cnf. This worked and the synchronization was performed. I want to do this on a regular basis so I would like to keep that line in there.The problem now is that MySQL does not start on system boot. When I start up, mysql simply is not started. There are no errors in /var/log/mysql/mysql.err or /var/log/mysql.err; these files remain empty.When I try to start it using 'sudo start mysql' I get the same result. The 'start mysql' shows up in 'ps aux', but the mysql process itself does not.Now, I found out that when I run
Code: sudo -u mysql mysqld The mysqld daemon does start, and the server works fine. To make matters even more strange, if I kill this
I have vps box with debian. I have two ip addresses, but first (default) is currently unavailable. In that case there is many problem. Fortunately wget has --bind-address option so I can download. My question is how can i configure apt-get, aptitude to use specific address?
Ubuntu was a good choice for free server O/S. I am currently downloading it. My ISP wants to bind my static IP to a MAC address of the device that will be making my connection for me. Should my server be behind my router or in front of it? I kinda wanted it to be the access point and be able to monitor the usage from all the terminals in my house. We have 4 other PC's, a laptop and a PS3. My server is a Acer Altos G530 with 3.2 Xeon Processor, 4 gb of ECC DDR,
I need to publish my local webserver from my lan to access outside using internet, I have public ips provided by ISP my local webserver address is 192.168.1.5 and I want to bind this local address to a public ip (Ex: 18.104.22.168) to use it out side my lan through squid.
I want to let a regular user (not just root) restart apache on my Ubuntu machine.I was using /etc/init.d/apache2 so I figured this is what I have to set permissions for. I set the owner group for this file a group to which that user also belongs. I set the chmod to 775 but it didn't work. I then even set it to 4775 thinking this would totally make it work but it still didn't.I'm obviously giving permissions to the wrong file.
The error says:
httpd not running, trying to start (13)Permission denied: make_sock: could not bind to address 0.0.0.0:80 no listening sockets available, shutting down Unable to open logs But I didn't find httpd anywhere on my machine.
I have one problem regarding my web server. When I am try to restart my httpd service it shows...
[root@localhost ~]# service httpd restart Stopping httpd: [FAILED] Starting httpd: (98)Address already in use: make_sock: could not bind to address 0.0.0.0:80 no listening sockets available, shutting down Unable to open logs [FAILED] [root@localhost ~]#
I am learning network prgramming in linux in c,and try to build a server and in this server I want to bind the listening socket to a paricular Ip address and port.Bind function is showing error,I did not want to use wild card. Here is the code.
Im an academic (university networks and security lecturer) studying/teaching network and operating system security, and inspired by the work of Hovav Shacham set about testing ASLR on linux. Principley I did this by performing a brute force buffer overflow attack on Fedora 10 and Ubuntu 9. I did this by writting a little concurrent server daemon which accidently on purpose didnt do bounds checking.
I then wrote a client to send it a malicious string brute forcing guessed addresses which caused a return-to-libc to the function usleep with a parameter of 16m causing a delay of 16 seconds as laid out in [URL] Once I hit the delay I new I had found the function and could calculate delta_mmap allowing me to create a standard chained ret-to-libc attack. All of that works fine. However .... To complete my understanding I am trying establish where I can find the standard base address for ubuntu 9 (and other distros) for the following, taken from Shacham:-
/proc/uid/maps gives me some information but not the base address ldd also gives me the randomised starting address for sections in the user address space but neither gives me the base address. Intrestingly ... when a run ldd with aslr on for over (about) 100 times and checked the start point of libc I determined that the last 3 (least significant) hex digits were always 0's and the fist 4 (most significant) where between 0xB7D7 and 0xB7F9. To me this indicated that bits 22-31 were fixed and bits 12-21 were randomized with bits 11-0 fixed. Although even that doesnt define the boundaries observed correctly.
Note: I am replicating the attack to provide signatures to detect it using IDS, and for teaching purposes. I am NOT a hacker and if needed to could reply from my .ac.uk email address as verification.
I finally got the certs to configure: openvpn --config server.conf Tue May 3 17:26:27 2011 OpenVPN 2.1.1 i686-redhat-linux-gnu [SSL] [LZO2] [EPOLL] [PKCS11] built on Jan 5 2010 Tue May 3 17:26:27 2011 NOTE: OpenVPN 2.1 requires '--script-security 2' or higher to call user-defined scripts or executables Tue May 3 17:26:27 2011 Diffie-Hellman initialized with 1024 bit key Tue May 3 17:26:27 2011 TLS-Auth MTU parms [ L:1542 D:138 EF:38 EB:0 ET:0 EL:0 ] Tue May 3 17:26:27 2011 ROUTE default_gateway=192.168.122.1 Tue May 3 17:26:27 2011 TUN/TAP device tun0 opened Tue May 3 17:26:27 2011 TUN/TAP TX queue length set to 100 Tue May 3 17:26:27 2011 /sbin/ip link set dev tun0 up mtu 1500 Tue May 3 17:26:27 2011 /sbin/ip addr add dev tun0 local 10.8.0.1 peer 10.8.0.2 Tue May 3 17:26:27 2011 /sbin/ip route add 10.8.0.0/24 via 10.8.0.2 Tue May 3 17:26:27 2011 Data Channel MTU parms [ L:1542 D:1450 EF:42 EB:135 ET:0 EL:0 AF:3/1 ] Tue May 3 17:26:27 2011 Socket Buffers: R=[114688->131072] S=[114688->131072] Tue May 3 17:26:27 2011 UDPv4 link local (bound): [undef]:1194 Tue May 3 17:26:27 2011 UDPv4 link remote: [undef] Tue May 3 17:26:27 2011 MULTI: multi_init called, r=256 v=256 Tue May 3 17:26:27 2011 IFCONFIG POOL: base=10.8.0.4 size=62 Tue May 3 17:26:27 2011 IFCONFIG POOL LIST Tue May 3 17:26:27 2011 Initialization Sequence Completed
But openvpn still won't start; where to go from here. Tue May 3 17:54:25 2011 TCP/UDP: Socket bind failed on local address 192.168.122.3:1194: Address already in use Tue May 3 17:54:25 2011 Exiting
I am having difficulties in establishing a vpn connection using vpnc (or NetworkManaager-vpnc).
As long as the openswan IPsec daemon is running, vpnc-helper quits with the error message
Failed to bind to 0.0.0.0:500: Address already in use [user@computer ...]# vpnc-helper --local--port 0
If I use NetworkManager-vpnc, then establishing the connection simply fails. Using the --local-port 0 option does not change anything.
If I stop the ipsec service (service ipsec stop) then establishing the connectiong works, both with NetworkManager-vpnc and the console tool, but apparently the network traffic is not routed via the VPN - in my case this means that I cannot access hosts within the vpn and stuff.
Funny thing is - on my notebook from where I connect via WLAN, everything works fine. With Fedora 13 everything works fine, too.
Does anybody have an idea how to enforce that the vpn connection is actually used?
I am in verse to test "Multicast Packet filtering".I want to setup Virtual Machines to be servers with bind option set to a multicast group address of 22.214.171.124.Then I want to configure the client VM, connecting to the multicast group address and setting the TTL as needed.
I just installed Fedora core 11 and am trying to get httpd to start, but it gives me a [failed] message. When I run it with -e DEBUG, I get an error message like: "failure in name resolution, unable to find IPv4 address of 'uaserver'" In the httpd.conf I have my hostName set to localhost.
Is there a way to use the firewall to essentially lock certain programs like firefox and transmission to my vpn connection-so that in the event that my vpn connection goes down these programs do not use my default ISP Internet connection.