similar to: Firewall and nfs mounts

I've had umpteen IPs knocking on this door yesterday. The router blocked them, so it's not a problem, but why that port? Anne -- New to KDE4? - get help from http://userbase.kde.org Just found a cool new feature? Add it to UserBase -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 197 bytes Desc:

I'd like to understand better the sysadmin aspects of running a wiki. I don't have, and don't intend to at this stage, a web server, but I do have spare capacity on my LAN server box, where I'd like to install MediaWiki. I found this article: http://docs.fedoraproject.org/documentation-guide/en_US/sn-sandbox-setup.html Would it be straightforward to follow those

Occasionally I ssh into my server to check something, and if it needs the gui I use 'ssh -X'. Until recently there was no problem. Exiting simply dropped me back to my local konsole. Lately, though, the shutdown seems to hang, and I have to close the session. Any thoughts? Anne -- New to KDE4? - get help from http://userbase.kde.org Just found a cool new feature? Add it to

I'm puzzled by such statements as diff /var/clamav/daily.cvd /var/clamav/daily.cvd.rpmnew Binary files /var/clamav/daily.cvd and /var/clamav/daily.cvd.rpmnew differ I thought the point of rpmnew files was so that we could check what has been changed? Anne -- New to KDE4? - get help from http://userbase.kde.org Just found a cool new feature? Add it to UserBase -------------- next part

For a while I've been getting this in my daily reports: /etc/cron.daily/logrotate: error: /etc/logrotate.conf:26 missing end of line It appears to originate from my CentOS server (though since client root mail goes there I can't be certain. The headers don't suggest client origin, to me). I've checked the logrotate.conf script and it looks OK to the untrained eye. It ends

I'm thinking of giving CentOS to a non-tech user for her new desktop. He needs are small. She has been used to Mozilla for both mail and browsing, so equivalents there are not a problem. She needs grip and lame, for her mp3s - again no problem. In fact the only problem I can see is that gwenview doesn't appear to have the kipi-plugins. I can see libkipi listed, but no plugins,

I have a crontab for Nobody. I tried to delete it in a root kcron, which I'm sure is how I dealt with this in the past, but it seems impossible to delete. Should I delete the file /var/spool/cron/nobody? It is owned root:root, perms 600. Anne -- New to KDE4? - get help from http://userbase.kde.org Just found a cool new feature? Add it to UserBase -------------- next part --------------

The big update caused one of the rare re-starts on my mail server, so I saw the startup messages that I had forgotten about. Oct 28 10:50:04 borg2 python: [3424]: warning: python-dbus not installed. Oct 28 10:50:04 borg2 python: hp-systray[3424]: warning: Qt/PyQt 4 initialization failed. Oct 28 10:50:04 borg2 python: hp-systray[3424]: error: hp-systray requires Qt4 GUI and DBus support.

My fetchmail and procmail log files are getting rather large, and there's really no reason to keep entries for ever. How do others handle this? I know I could manually delete the older stuff then re-save the file, but it doesn't seem a good method. Anne -- New to KDE4? - get help from http://userbase.kde.org Just found a cool new feature? Add it to UserBase -------------- next part

I run chkrootkit daily. For the first time I've got reports of a problem - Checking `bindshell'... INFECTED (PORTS: 1008) The page http://fatpenguinblog.com/scott-rippee/checking-bindshell-infected- ports-1008/ suggests that this might be a false positive, so I ran 'netstat - tanup' but unlike the report, it wasn't famd on the port. It was tcp 0 0 0.0.0.0:1008

I'm trying to NFS-mount a CentOS directory on my Fedora laptop, but I find I can only do this is I turn off the firewall on the CentOS server. If instead I go to system-config-securitylevel-tui on the server, and allow NFS4, this does not do the trick. Nor does allowing port 2049. What do I need to allow? [I should say that the CentOS server is remote, and difficult to access directly; that

Hello everyone, I am setting up a new system for use as a testing/demo/trial-and-error system. I have installed CentOS 4.4 on it. There is not an X-environment, so I will need to fix this from the command line (via ssh access). I am trying to do an nfs export from this box to another on my internal home network. I have figured out that it is a firewall issue on the CentOS box (I turn off the

Below is my firewall rules for iptables. everything is working fine except for NFS I cannot mount my drive. If I turn off iptables I can mount. Looking at this : http://www.centos.org/docs/5/html/Deployment_Guide-en-US/ch-nfs.html Important In order for NFS to work with a default installation of Red Hat Enterprise Linux with a firewall enabled, IPTables with the default TCP port 2049

On Tuesday 23 December 2008 15:38:17 Warren Young wrote: > Michael Simpson wrote: > >> GRC reports that ports are stealthed > > > > Try www.auditmypc.com or nmap-online.com rather than grc to look for open > > ports > > What advantages do they have, in your opinion? > > >> there a better way than opening port 143? > > > > ssh tunnelling?

Hi, I'm using the preconfigured firewall that comes with CentOS 5. I configure it with system-config-securitylevel-tui, close all ports except SSH, and then open only the ones I need. Right now, on one of my desktops, I've installed AMSN, which requires opening a series of ports. I've configured the app to use ports 7000 to 7010 (TCP and UDP). When running

Hi, I'm planning to use CentOS 6.x on a handful of LAN servers. So far I've been using Slackware64 14.0 and 14.1 for the job. I wonder what's the orthodox/recommended way of configuring and iptables firewall with CentOS. I understand there's the system-config-securitylevel-tui NCurses interface which allows defining a basic set of rules. But what about the handful of more

My firewall config is below... I am trying to figure out why another machine has access to port 5038 on my machine based on these firewall rules. I thought the reject at the bottom would take care of all other ports? It does not. I have restarted with "server iptables restart" and same thing. I can connect from another machine to my machine on port 5038. How do I prevent this?

Hello CentOS, I'm curious... there seems to be a couple of default firewall rules that I'm not familiar with in the CentOS 4.0 # Firewall configuration written by system-config-securitylevel # Manual customization of this file is not recommended. *filter :INPUT ACCEPT [0:0] :FORWARD ACCEPT [0:0] :OUTPUT ACCEPT [0:0] :RH-Firewall-1-INPUT - [0:0] -A INPUT -j RH-Firewall-1-INPUT -A FORWARD

Hey every one, Over the past week I have been exploring puppet and had been ignoring an oddity in its output that Luke helped me figure out today. It all started with trying to configure puppet to configure iptables using redhats utility system-config-securitylevel-tui on rhel4. I was able to get it up and running using the following configuration: node default{ firewall {rhel4:

Hi all, Which ports do I need to have open on an NFS client's firewall to allow it to connect to a remote NFS servers? When I disable iptables (using ConfigServerFirewall), it connects fine, but as soon as I enable it, NFS gives me this error: root at saturn:[~]$ mount master1.mydomain.co.za:/saturn /bck mount: mount to NFS server 'master1.mydomain.co.za' failed: RPC Error: Unable to