| |
| |
| |
|
Page: 1 2 3 4 5 6 7
Comments:
<inv_arp[w> hmm... trying to run a daemon remotley, problem is daemon needs a certain ENV to run correct ... ssh remotebox ". ./envfile ; daemon.exe" daemon still doesnt see the env..
<Idle`> .exe ?
<SufferAll> anyone reccomend a webbased calendar app for internal family use, something simple that family events apts grap can be put on
<Idle`> Gmail
<SufferAll> "Internal"
<Idle`> you can use permissions
<crispen> hey guys i am running redhat 7 linux and i do a ls in certain dir's shows blank yet the files are there
<crispen> any ideas
<SufferAll> my kids dont get access to the outside world. needs to run on an internal webserver
<Idle`> ls -al ?
<Idle`> SufferAll: nazi... ;)
<pb24ss> SufferAll: evite.com
<Idle`> I dunno then
<crispen> shows total 0
<crispen> in the root dir
<crispen> yet i can cat a file that i kno wis there
<Idle`> crispen: not +r ?
<crispen> mebbe i been hacked?
<SufferAll> nazi?
<SufferAll> nah
<crispen> idle how do i check
<crispen> ?
<Idle`> crispen: ls -ld
<pb24ss> crispen: does echo * show them?
<SufferAll> I just know there are people like me on the net
<Idle`> yea, if echo * shows them, then ls has been cohersed
<crispen> drwxr-x--- 13 root root 4096 Jul 5 09:28 .
<crispen> thats all i get
<Idle`> root should be able to then
<crispen> same in the /var/log files are all gone too
<crispen> yet i can still cat secure in the varlog folder
<crispen> even tho i cannot see it
<Idle`> crispen: do as pb24ss said
<Idle`> echo *
<crispen> 1 sec
<pb24ss> does lsattr secure show anything?
<crispen> came back with a *
<Idle`> rh 7.... :(
<crispen> ya
<crispen> :-(
<crispen> 7
<crispen> :-(
<crispen> i just dont undetrstand
<pb24ss> rh7? it's probably rooted
<crispen> when i du i get a bus error
<crispen> too
<crispen> how can tell if its rooted
<crispen> ?
<pb24ss> there's chkrootkit and the like
<Idle`> ls acting up is the first sign
<Idle`> then comes 3 horsemen
<crispen> :-(
<crispen> ne ideas
<crispen> ?
<SufferAll> blow it away
<crispen> no
<SufferAll> secure it
<SufferAll> restore from tape
<crispen> i want to find out what happened
<crispen> and how
<Idle`> crispen: got a live cd handy?
<SufferAll> the longer it sits on your network, the longer your ****ed
<Idle`> right now, you can _not_ trust that machine, tahts the cardinal rule
<crispen> but how do i know 100% it was compromised
<crispen> ?
<SufferAll> pb24ss there's chkrootkit and the like
<Idle`> a LIVE cd, with chkrootkit
<SufferAll> aye
<Idle`> SufferAll: thats what pb24ss said
<SufferAll> I was pasting that
<Idle`> oh, haha, nm, its a copy paste
<Idle`> yea
<SufferAll> sorry
<crispen> hmm
<Idle`> I'm used to < > around names
<SufferAll> we had a hacked machine at work once, our director made us leave it on for 2 days because bringing it down would of had a user impact
<SufferAll> its strange how a raid 5 volume on a san can lose 3 disks in 1 day
<SufferAll> go figure
<Idle`> and places like yours, are places hackers love... cuase that gives them 2 days to gather all kinds of fun data
<crispen> only thing that was on this is ssh
<crispen> to the world
<crispen> thats all
<Idle`> SufferAll: sounds like a dead controller
<crispen> no other ports
<Trey> SufferAll: ughh how is that possible?
<Idle`> Raid 10 > *
<Trey> SufferAll: a raid 5 can only lose 1 disk
<Idle`> Trey: hot spare's, dying sequentially after its done rebuilding?
<SufferAll> not if the admin pulls 3 of the 10 discs out of the array
<SufferAll> so the hacked server got taken offline
<Idle`> SufferAll: user error != failure
<Trey> SufferAll: you can only ever have at most 1 failed active disk in a raid 5
<crispen> i got this in the messages log
<crispen> Jun 30 14:57:25 reports kernel: scsi1:0:1:0: Attempting to queue an ABORT message
<crispen> Jun 30 14:57:25 reports kernel: scsi1: Dumping Card State while idle, at SEQADDR 0x9
<crispen> Jun 30 14:57:25 reports kernel: ACCUM = 0x4, SINDEX = 0x64, DINDEX = 0x65, ARG_2 = 0x6
<crispen> Jun 30 14:57:25 reports kernel: HCNT = 0x0 SCBPTR = 0x7
<crispen> Jun 30 14:57:25 reports kernel: SCSISEQ = 0x12, SBLKCTL = 0xa
<crispen> Jun 30 14:57:25 reports kernel: DFCNTRL = 0x0, DFSTATUS = 0x89
<crispen> Jun 30 14:57:25 reports kernel: LASTPHASE = 0x1, SCSISIGI = 0x0, SXFRCTL0 = 0x80
<crispen> Jun 30 14:57:25 reports kernel: SSTAT0 = 0x0, SSTAT1 = 0xa
<SufferAll> jesus christ
<crispen> Jun 30 14:57:25 reports kernel: STACK == 0x3, 0x175, 0x15f, 0x0
<crispen> Jun 30 14:57:25 reports kernel: SCB count = 72
<crispen> Jun 30 14:57:25 reports kernel: Kernel NEXTQSCB = 33
<crispen> Jun 30 14:57:25 reports kernel: Card NEXTQSCB = 33
<crispen> Jun 30 14:57:25 reports kernel: QINFIFO entries:
<crispen> Jun 30 14:57:31 reports kernel: Waiting Queue entries:
<crispen> Jun 30 14:57:31 reports kernel: Disconnected Queue entries: 7:25
<crispen> Jun 30 14:57:31 reports kernel: QOUTFIFO entries:
<Idle`> BAD
<SufferAll> it was a story
<SufferAll> dont bore me with techincal facts
<SufferAll> jeebus
<Idle`> ;)
<Idle`> Trey: I want a raid 10
<Idle`> raid 10 vs 01 on 4 drives makes no difference...
<Idle`> raid 10 is far better once you have 6+ disks
<Idle`> I was looking at raid 3... I think... the one with like, 4 parity drives... like wtf
<Idle`> nm raid 2
<Idle`> why hasn't anyone done raid 2... it seems very tolerant, and very fast to me
<deww> i hope ATI being acquired by AMD means better linux support
<Idle`> haha
<Idle`> not a chance
<Idle`> we can hope tho
<deww> ya
<monster--> hehe
<DrMitch> hmm...if it ain't broke, don't fix it. does this apply for running apache 1.3 and php 4.1 ?
<gcbirzan> No.
<Idle`> yea, upgrade to apache 2 asap
<Idle`> and php 5 breaks a lot... you can hold off on that for now
<Idle`> 4.1 isn't maintained
<Idle`> upgrade to 4.4 at LEAST
<DrMitch> slamd64 doesn't have an apache2.0 package and i'm too lazy to make my own package:-(
<war--> Idle`: sup
<click_> whaTS THe page with linux softwares?
<korozion> !google linux games
<LinuxHOW2> http://tinyurl.com/peon
<korozion> what a perfect url
<Idle`> haha
<_reppir> hi
<_reppir> Im trying to install FC5, but no matter what resolution I p*** to the installer, it still only shows about 75% of the screen on my monitors...I cannot see the buttons or options at the bottom of the screen. Any ideas?
<awol> try ctrl_alt_+ or ctrl_alt_- using the numeric keypad's + and - keys
<_reppir> ahh good call
<_reppir> I am trying with a single monitor atm, will check in a minute
<awol> worth a shot...
<awol> 2 cents worth anyway....
<_reppir> the key sequence doesn't work at all with both monitors plugged in
<awol> both?
<awol> at the same time?
Return to
#linuxhelp
or
Go to some related
logs:
#computers
dsl rdesk
usb kettle
#hardware
IRC epicmyth
#politics
#politics
#computers
#goal
#stocks
|
|
