generic blog of schmidi2

To stop samba from filling the log with entries like those:

Apr 22 13:34:30 unnamedsrv smbd[868]: [2008/04/22 13:34:30, 0] printing/pcap.c:pcap_cache_reload(159)
Apr 22 13:34:30 unnamedsrv smbd[868]: Unable to open printcap file /etc/printcap for read!

add following lines to your samba configuration file “/etc/samba/smb.conf”:

load printers = no
printcap name = /dev/null

You don’t have to restart your samba server, it re-reads the configuration by itself.

Information Source: http://ubuntuforums.org/showthread.php?t=232144

Strange things can happen when having multiple ethernet adapters (including vpn connections) 
on the host system where you have installed and use VMware Player or VMware Server. If such adapters are not set as deactivated, all of the could be the one, which VMware chooses for bridging 
the network traffic. Most time, VMware is able to manage that correctly, but there are some circumstances, 
in which you should go for sure.

To do that goto:

1. Start -> Settings -> Network Connections
2. Right click on one of the connections, you don’t want a VMachine to be bridged to. Then select “Properties”.
3. Disable the service called “VMware Bridge Protocol” in the list by unchecking it.
4. Repeat step two and three for other connections, which should be ignored by VMware.

If you are using VMware server, you can do this also over the GUI application called “Manage Virtual Networks”.

When you wan’t to compute a file line by line in Bash (or other shell’s ?) with eg. with this command:

for L in $(cat lines.txt); do
   grep “$L” second-file.txt;
done

or

cat lines.txt | while read L; do
   grep “$L” second-file.txt
done

it does ONLY work if you use the UNIX line separator (\n). If you access a file, which was created on a windows system, such commands will not return the expected result. You have to convert the input file first. Do that with the little tool called “dos2unix”.

There is a bug in the astaro version 7 preventing dns zone transfers.

You can do (and test) a dns zone transfer this way:

dig @<dns-server> -t AXFR <domain>

If you don’t get a large list, you (source ip) aren’t permitted or astaro is used as firewall.

You have to do this:

1. Define a new service (Definitions->Services), you cannot edit it. Take the current existing dns-service as reference but change the field “Type of Definition” from “UDP” to “TCP/UDP”. Name it “DNS tmp” or so.
2. Change all your packet filter rules which uses the service “DNS” to “DNS tmp”.
3. Now you can remove the original (and buggy) service definition and rename yours from “DNS tmp” to “DNS”.

You will now be able to successfully do a dns zone transfer!

Source:
http://www.astaro.org/showthread.php?t=1805

In a previous post (date 2007-10-06) I described how to install webminstats on your debian-system.

On most servers I always got following error message as a jabascript alert when loading the webminstats module-page (https://<servername>:10000/sysstats/):

missing library LWP : can not get sourceforge versions list

You can solve this problem in two ways:

• Easy one: Deactivate the build-in update check of webminstats. Goto “Module Config” on the module-page and set “0″ to the textfield “check update” and save it.
• OR: Download the missing library called “libwww-perl”. To do that, run “apt-get install libwww-perl” on the console.

 

Since an update the ping command stopped working on my ubuntu system. I always get to error “ping: icmp open socket: Operation not permitted”. Because I don’t wan’t to always use sudo with ping, I did following change on my system:

$ ls -al /bin/ping
-rwxr-xr-x 1 root root 27140 2006-12-19 21:35 /bin/ping

is WRONG. ping must have the SUID-flag!

$ sudo chmod u+s /bin/ping

$ ls -al /bin/ping
-rwsr-xr-x 1 root root 27140 2006-12-19 21:35 /bin/ping

Now it works again

Since an update the su command stopped working on my ubuntu system. I always get to error “su: Authentication failure” when typing the right password. Because I need this command, I did following change on my system:

$ ls -al /bin/su
-rwxr-xr-x 1 root root 27140 2006-12-19 21:35 /bin/su

is WRONG. su must have the SUID-flag!

$ sudo chmod u+s /bin/su

$ ls -al /bin/su
-rwsr-xr-x 1 root root 27140 2006-12-19 21:35 /bin/su

 

Yea I know there is sudo. But nobody has the right to forbid me using su if I want to.

Today I got this SPAM-eMail:

From - Wed Sep 19 19:27:40 2007
X-Account-Key: account7
X-UIDL: 186724015
X-Mozilla-Status: 0001
X-Mozilla-Status2: 00000000
Return-Path:
Received: from relay03.mediabeam.com ([194.25.41.10])
by smtp.directbox.com ([194.25.41.68]) with SMTP
for ; Wed, 19 Sep 2007 13:14:57 +0200
Received: from px.nl (37.net059085255.t-com.ne.jp [59.85.255.37])
by relay03.mediabeam.com (8.13.1/8.13.1) with SMTP id l8JBEXUD010048
for ; Wed, 19 Sep 2007 13:14:36 +0200
Reply-To: "Bettie Waller"
From: "Bettie"
Message-ID: <1333211882.547268997208@px.nl>
Date: Wed, 19 Sep 2007 07:13:03 -0400
To: <notpublished@notpublished.com>
Subject: Young Lesbian Breannas On Sofa Fucks & Teasing
MIME-Version: 1.0
Content-Type: text/plain; charset="iso-8859-1"
Content-Transfer-Encoding: 7bit
X-mediaBEAM-MailScanner-Information: Spam-/VirusProtection V1.0
X-mediaBEAM-VirusProtection: clean
X-mediaBEAM-SpamScore: 3
We're glad to inform you,
Shaved French Melanie Interracial Banged On Boat
Tied Up Hentai Brittany Gets Her Beaver Tortured
http://tstfofy.ijuwyvow.cn/?md7eahrk3t9
Have a good time!
sinside out,blues reader

Because of following criterias/reasons it had to be filtered by the AntiSPAM-engine:

• There is no single “Received:”-line in the header come from the sending SMTP-server
• The subject contains words like: “Lesbian”, “Fucks” and “Teasing” which a normal user would never put in the subject
• The Headers “Reply-To” and “From” have the same address but not the same name (“Bettie Waller” and “Bettie”). Would an eMail-client (MUA = mail user agent) like Mozilla Thunderbird do that?
• As you can see in the Date-Header (Date: Wed, 19 Sep 2007 07:13:03 -0400), this eMails comes from afar. These countries uses the timezone UTC+4: Armenia, Azerbaijan, French Southern Territories, Îles Crozet, Georgia, Mauritius, Oman, Réunion, Russia, Samara Oblast, Udmurt Republic, Scattered islands in the Indian Ocean, Glorioso Islands, Tromelin Island, Seychelles and the United Arab Emirates (found here). Most of these countries I do not even know how to spell them out. Why on earth an eMail from there can really NOT be a spam-eMail.
• The sender-address “edwinmjqf@px.nl” contains a few letters in an exceptional order (like “n” followed by “m”, “q” followed by “f”, …)
• The 7bit-encoding (“Content-Transfer-Encoding: 7bit”) is only used by old SMTP-server. If people want to sent important eMails, they shall use modern technology
• The name used in the from-header (From: “Bettie” ) isn’t used also in the address.
• The TDL “.nl” is owned by the country Netherlands and they use the time zone UTC+1 not UTC+4 as stated in the date-header
• I never got a nonspam eMail from “.nl”
• If I didn’t convince you yet, here is my last criteria: The mailserver of the domain “px.nl” called “mail.px.nl” doesn’t known the address “edwinmjqf@px.nl”:
  nslookup -query=MX px.nl
  telnet mail.px.nl 25
  …
  RCPT TO:edwinmjqf@px.nl
  550 : Recipient address rejected: User unknown in virtual mailbox table

What the hell did that AntiSPAM-engine “think”!

 

I asked myself why my sent eMails have the numeric timezone “+0200″ even though I live in Switzerland where we are in the UTC+1 time zone.

After a short scan through my eMails I found out:

 

eMails sent in summer time do have the numeric timezone “+0200″ like

Mail-Header:
Date: Tue, 18 Sep 2007 17:47:12 +0200

All eMails I sent in winter time (eg. sometime in january) do have the numeric timezone “+0100″ like

Mail-Header:
Date: Wed, 03 Jan 2007 10:36:59 +0100

 

This is only the case if your country has the summer time (also called daylight saving time). If you don’t have it, all your eMails do have the same numeric timezone. If you don’t know that, check it out here.

Wikipedia wrote it that way:
Central European Summer Time (CEST) is one of the names of UTC+2 time zone, 2 hours ahead of Coordinated Universal Time. It is used as a summer daylight saving time in most European and some North African countries. During the winter, Central European Time (UTC+1) is used.

 

Only by the way I want to mention an alternative format used for absolut times (date and time including time zone). Search for “Internet Time” or go directly to the wikipedia-article:

http://en.wikipedia.org/wiki/Internet_Time

 

The error message “checking for C compiler default output file name… configure: error: C compiler cannot create executables” did I get today when trying to configure maildrop (v. 2.0.4).

/usr/src/maildrop/maildrop-2.0.4$ ./configure
checking for a BSD-compatible install… /usr/bin/install -c
checking whether build environment is sane… yes
checking for gawk… no
checking for mawk… mawk
checking whether make sets $(MAKE)… no
checking for gcc… gcc
checking for C compiler default output file name… configure: error: C compiler cannot create executables
See `config.log’ for more details.

In the file “config.log” you find these lines:

…
configure:2326: checking for C compiler default output file name
configure:2329: gcc    conftest.c  >&5
/usr/bin/ld: crt1.o: No such file: No such file or directory
collect2: ld returned 1 exit status
configure:2332: $? = 1
configure: failed program was:
| /* confdefs.h.  */
|
| #define PACKAGE_NAME “maildrop”
…
configure:2371: error: C compiler cannot create executables
See `config.log’ for more details.
…
configure: exit 77

So the file “crt1.o” is missing. Year, the package libc6-dev isn’t installed:

$ sudo apt-get install libc6-dev

Now it works!