DIY Street Linux Thread.

[Guest oRiOn]

if your running ubuntu check out www.ubuntuguide.org if you haven't already. I am currently running Ubuntu on my web server and im loving it

[aganda]

if your running ubuntu check out www.ubuntuguide.org if you haven't already. I am currently running Ubuntu on my web server and im loving it

 

thanks for fast answer, this is incredible, i'm ansious to install it, but (commands of dubuntu)... i'll need your opinion, i'm thinking to fit several o.s. on my hd's but still trying to decide how much to partition..

 

1 hd= 200 gb

 

winxp (for my brother): 5 gb + /games "diablo II

 

ubuntu (Gb?) --> / ; /swap; /home; /video; /play

debian? (Gb?)-->

other linux practice (Gb?)

 

2nd hd= 200 Gb

 

how should I sopouse to partion all this definitively???

 

ths again

 

ainhoa

[Guest culinist]

Any linux distribution will do well with 5-8 gigs for /root, 2xram for swap, you can partition whatever you like for /home.

 

 

Could you please put your location in your profile so we know where you are? Thanks, and good luck.

[Guest area51]

Anybody here good with iptables and stateful inspection?

 

I solved the problem of passive ftp...but now I am finding out that passive ftp + ssl/tls encryption is a no go.

 

The reason I believe is that the conntrack and conntrack_ftp modules are not able to see inside ssl/tls packets and cannot tell if the packet is related or established...

 

Anyone have some help for me on this one?

[e_lion_1]

might need a few more details ... i don't think i can help you directly, but maybe point you in the right direction.

 

which kernel? (and linux distro you're using)

what ftp program are you using? (is this server or client side?)

[Guest area51]

Hmmm...suppose that info might have been helpful to begin with eh?

 

It's a dedicated server--

 

Distro: Fedora core 3

Kernel: 2.6.12-1

ftp: vsftpd

 

If you need any more info let me know. In a nutshell I am using iptables to dynamically open the necessary ports for passive ftp (range 10100-10199) based on the packet state.

 

Problem with ssl/tls is when you use the conntrack_ip module to look for "established" packets in this port range you get nada because all the data is encrypted...sooo

 

I am looking for a workaround. I know one exists and dammit I even saw it, but I just cannot rememger where !@#$%$!

[e_lion_1]

have a gander at this link. I think it might be what you are looking for.

http://www.linuxquestions.org/questions/sh...threadid=353286

 

quick summary (assuming the iptable rules are set up right):

modprobe ip_conntrack_ftp ports=21,10100 or something like that. Since I don't use this module myself I'm unsure what the options are, but a quick modinfo ip_conntrack_ftp should help out there.

 

and maybe check this out: http://www.brennan.id.au/14-FTP_Server.html

and also perhaps http://www.tldp.org/HOWTO/Adv-Routing-HOWTO/index.html

 

hope that helps a bit!

[MattTim2004]

Hey guys, I'm gonna be a Freshman at UC Davis in the Fall, and I am taking an Into CS course. I emailed my Prof, and he said a good thing would be to mess around in UNIX, but I only have Windows installled.

 

Is there anyone that could help me get everything set up, so that I can mess around in UNIX?

 

I have a huge HD, so I'll just make a partition, but I ned someone experienced to help me a bit, and point me in the right direction.

 

Thanks alot!

[Guest culinist]

Well if you want to run Linux, which is a variant of UNIX, then there are plenty of folks here that will help you out. But, if you want to run a distro taht is closer to true UNIX then you can try BSD. I don't know much about it but there may be some around who run BSD taht could.

 

Here's a good article that compares them, Linux vs BSD.

 

Let us know what you wnat to run, and we'll do our damndest to help ya.

 

http://www.over-yonder.net/~fullermd/rants.../bsd4linux1.php

[e_lion_1]

I've toyed with a number of different OSes (*bsd, linux, and almost anything else which calls itself an OS). The number one thing to check is if your hardware is supported and what its main goals are, ie: OpenBSD - security, NetBSD - runs on anything which boots, etc.

[Squid1]

If somebody wants to try FreeBSD, I am available for help. We probably want to do it in a seperate thread.

 

I am still not sure I want to go experimental and get a nF4 board to run FreeBSD, the NVidia policy on hardware documentation is just underwhelming. Not DFI's fault, or course.

[Guest area51]

have a gander at this link. I think it might be what you are looking for.

http://www.linuxquestions.org/questions/sh...threadid=353286

 

quick summary (assuming the iptable rules are set up right):

modprobe ip_conntrack_ftp ports=21,10100 or something like that. Since I don't use this module myself I'm unsure what the options are, but a quick modinfo ip_conntrack_ftp should help out there.

 

and maybe check this out: http://www.brennan.id.au/14-FTP_Server.html

and also perhaps http://www.tldp.org/HOWTO/Adv-Routing-HOWTO/index.html

 

hope that helps a bit!

 

Thanks for your effort e_lion_1! I laughed when I opened your links...I had already been to them all except the last one (a good one thanks).

 

Turns out I managed to solve the problem! If you are having trouble configuring iptables for passive ftp w/ ssl/tls you can find one solution here .

 

From what I understand you cannot load that damn ip_conntrack module at all if you are doing tls/ssl! Anyway hope this helps someone.