[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[cobalt-users] Secure Server won't start

Subject: [cobalt-users] Secure Server won't start
From: "T. L. Bartelle" <bartelle@xxxxxxx>
Date: Tue Mar 7 16:49:10 2000
Organization: BearFruit Enterprise
I forgot my PEM pass phrase and now the secure server won't start.  I have tried to remake a new
private key, but that didn't help.  Is there a file I can edit?  What can I do to get the secure
server back on-line?

Thanks for your help.

T. L. Bartelle


cobalt-users-admin@xxxxxxxxxxxxxxx wrote:

> Send cobalt-users mailing list submissions to
>         cobalt-users@xxxxxxxxxxxxxxx
>
> To subscribe or unsubscribe via the web, visit
>         http://list.cobalt.com/mailman/listinfo/cobalt-users
> or, via email, send a message with subject or body 'help' to
>         cobalt-users-request@xxxxxxxxxxxxxxx
> You can reach the person managing the list at
>         cobalt-users-admin@xxxxxxxxxxxxxxx
>
> When replying, please edit your Subject line so it is more specific than
> "Re: Contents of cobalt-users digest..."
>
> Today's Topics:
>
>   1. Mailing lists not working (Mark D. Johnston)
>   2. still getting error (dns) (Gary Peltola)
>   3. URGENT: Security hole in CgiWrap ? (manitu)
>   4. Cron question (manitu)
>   5. RE: RaQ Cannot be Accessed by FTP, Telnet or Web Interface (Multivex)
>   6. Books for programming safe cgis (manitu)
>   7. Archieves (Tobe Johnson)
>   8. Re: Raq3 - default page (Mat Kovach)
>   9. Cobalt Qube2 User Interface for SMTP Server (Ken Araujo)
>   10. RE: URGENT: Security hole in CgiWrap ? (Neil J. Kemp)
>   11. RAQ3: 2nd internal harddisk. Possible or not (IDE/SCSI)? (=?ISO-8859-1?Q?Rouven_Sch=FCrch?=)
>   12. RE: Archieves (Dan)
>   13. Removing www from autoresponders (Michael Combe)
>   14. RE: scripts by email (Neil J. Kemp)
>
> --__--__--
>
> Message: 1
> Date: Tue, 07 Mar 2000 14:15:41 -0600
> To: cobalt-users@xxxxxxxxxxxxxxx
> From: "Mark D. Johnston" <mjohnston@xxxxxxxxxxxx>
> Subject: [cobalt-users] Mailing lists not working
> Reply-To: cobalt-users@xxxxxxxxxxxxxxx
>
> Mat,
>
> Thanks for looking at this.  Following is a sample from my mail logs.  All
> messages sent to group or mailing list userids produce this same result.
> One of my staff claims that the mailing lists have never worked.  I assumed
> from the line "aliasing/forwarding loop broken" that this was an aliasing
> error, but the alias files seem fine and the majordomo config-test reports
> no errors.  Where should I be looking?  Thanks!
>
> --Mark Johnston
> Newberry Library
>
> Mar  7 10:46:03 walter sendmail[15327]: KAA15327:
> from=<mjohnston@xxxxxxxxxxxx>, size=353, class=0, pri=30353, nrcpts=1,
> msgid=<3.0.32.20000307104643.007b38b0@xxxxxxxxxxxxxxxxxxx>, proto=SMTP,
> relay=[206.137.242.125]
> Mar  7 10:46:03 walter sendmail[15328]: KAA15328: clone KAA15327, owner=admin
> Mar  7 10:46:06 walter sendmail[15331]: KAA15331: Authentication-Warning:
> walter.newberry.org: admin set sender to owner-testlist@xxxxxxxxxxxxxxxxxxx
> using -f
> Mar  7 10:46:06 walter sendmail[15331]: KAA15331:
> from=owner-testlist@xxxxxxxxxxxxxxxxxxx, size=617, class=-60, pri=108617,
> nrcpts=0, msgid=<3.0.32.20000307104643.007b38b0@xxxxxxxxxxxxxxxxxxx>,
> relay=admin@localhost
> Mar  7 10:46:06 walter sendmail[15331]: KAA15331: forward
> /home/users/admin/.forward.walter: World writable directory
> Mar  7 10:46:06 walter sendmail[15331]: KAA15331: forward
> /home/users/admin/.forward: World writable directory
> Mar  7 10:46:06 walter sendmail[15331]: KAA15331: KAB15331: DSN:
> testlist-list... aliasing/forwarding loop broken
> Mar  7 10:46:06 walter sendmail[15331]: KAB15331: to=admin, delay=00:00:00,
> xdelay=00:00:00, mailer=local, stat=Sent
> Mar  7 10:46:06 walter sendmail[15328]: KAA15328:
> to="|/usr/local/majordomo/wrapper resend -l testlist -r testlist
> testlist-list", delay=00:00:03, xdelay=00:00:03, mailer=prog, stat=Sent
>
> Message: 5
> Date: Mon, 6 Mar 2000 15:25:47 -0500
> From: Mat Kovach <mkovach@xxxxxxxxxxxxxxxxx>
> To: cobalt-users@xxxxxxxxxxxxxxx
> Subject: Re: [cobalt-users] Mailing lists stopped working
> Reply-To: cobalt-users@xxxxxxxxxxxxxxx
>
> On Mon, Mar 06, 2000 at 01:29:45PM -0600, Mark D. Johnston wrote:
> : The mailing lists on our Qube2 stopped working a few days ago.  Messages
> : sent to the lists simply disappear, without error or undeliverable notices
> : of any kind.  Several reboots and visits to the Cobalt FAQs haven't solved
> : this mystery.  Any suggestions about where to start looking for the cause?
> : All the lists appear correctly in alias and alias.majordomo files, which in
> : turn are correctly included in sendmail.cf.
>
> You need to take a look at /var/log/maillog and see if the messages are
> actually getting to the server, and if so what type of messages (error,
> regular) are being generated.  Without that type of info, all I can say is
> that something doesn't seem right.
>
> --
> Mat Kovach                                      mkovach@xxxxxxxxxxxxxxxxx
> Cleveland Linux User Group                       http://cleveland.lug.net
>
> --__--__--
>
> Message: 2
> From: "Gary Peltola" <rhlinux@xxxxxxxxxxx>
> To: <cobalt-users@xxxxxxxxxxxxxxx>
> Date: Tue, 7 Mar 2000 11:32:06 -0900
> charset="iso-8859-1"
> Subject: [cobalt-users] still getting error (dns)
> Reply-To: cobalt-users@xxxxxxxxxxxxxxx
>
> Raq3
>
> i added a record and stuff to the .co.za but they still are getting the
> errors, heres the settings i have for my dns right now
>
>  hostinghq.com      64.29.16.2
>  mail.hostinghq.com      64.29.16.2
>  ns2.hostinghq.com      64.29.17.2
>  www.hostinghq.com      64.29.16.2
>  64.29.16.2/24      hostinghq.com
>  64.29.17.2/24      ns2.hostinghq.com
>  hostinghq.com   mail is sent to the High priority mail server
> mail.hostinghq.com
> --------------------
> adventureseekers.co.za      64.29.16.2
>  www.adventureseekers.co.za      64.29.16.2
>  64.29.17.2/24      adventureseekers.co.za     *i added this to see if it
> would help. it didnt*
>  adventureseekers.co.za   mail is sent to the High priority mail server
> adventureseekers.co.za
>
> --------------------
>
> Ok. this is my second attemt. am i doing something wrong on my side?
>
> ~Oran
>
> > ! This is the trace of your domain request. It is to allow you to see
> > ! any problems you may have with your domain - eg the domain may have
> > ! been added but not all secondary servers may be functioning...
> >
> > ! Please note that there is a local "whois" server running with a WEB
> > ! interface. Please try "http://co.za"; and click on "whois".
> > ! If you narrow your search to a single name - you get the registered
> > ! info.
> >
> > COZA: $Revision: 1.5.2.36 $ $Date: 2000/02/04 10:19:59 $ $Author: theo $
> > UPDATE/DELETE: for "adventureseekers.co.za"
> > DELAY: The Guardians "oran@xxxxxxxxxxxx, root@xxxxxxxxxxxxxxxxxxxxxx,
> zorcohen@xxxxxxxxxxxx" will be informed of any changes to this domain.
> > SECURE: NoDelayWord match - no timed tickets needed.
> >
> > Entering check-stage...
> >
> > Sender:    oran@xxxxxxxxxxxx
> >
> > Registered Domain Owner Details (NOT the ISP/Agent)
> > Domain Owner: Stanley Friedberg
> > Owner Postal: P.O.Box 4408, Rivonia 2128
> > Owner Street: 42 Queenswood, Calderwood Rd Lonehill
> > Owner Phone:  082 759 4424
> > Owner Fax:    082 759 4424
> > Owner E-Mail: oran@xxxxxxxxxxxx
> >
> > Action:    U
> > Payment:   0  (I)
> > Bill/Acct:    HeadStart
> > MailTo:       oran@xxxxxxxxxxxx
> > Invoice Addr: Stanley Friedberg
> >
> > Administrative Info
> > Contact:   Oran Cohen   (Developer)
> > Company:   HeadStart
> > Postal:    P.O.Box 1201, Gallo Manor 2052
> > Phone:     804-1493
> > Fax:       804-1493
> > E-Mail:    zorcohen@xxxxxxxxxxxx
> >
> > Technical Info
> > Contact:   Oran Cohen   (Developer)
> > Company:   HeadStart
> > Postal:    P.O.Box 1201, Gallo Manor 2052
> > Phone:     804-1493
> > Fax:       804-1493
> > E-Mail:    zorcohen@xxxxxxxxxxxx
> >
> > Nameservers/MX Records - etc
> >
> > Primary Server  : ns.hostinghq.com @ 64.29.16.2
> > Secondary 1     : ns2.hostinghq.com @ 64.29.17.2
> > Domain "adventureseekers.co.za", SOA Ref (2000012701), Orig
> "adventureseekers.co.za dns1.originelectronics.com
> cube.originelectronics.com 198.92.129.2 209.198.142.50"
> > Pre-existing Nameservers for "adventureseekers.co.za":-
> > adventureseekers.co.za nameserver = cube.originelectronics.com
> > adventureseekers.co.za nameserver = dns1.originelectronics.com
> > Pre-existing MX Records for "adventureseekers.co.za":-
> > adventureseekers.co.za preference = 5, mail exchanger =
> mail.adventureseekers.co.za
> >
> > CHECKING: Primary Server is ns.hostinghq.com at 64.29.16.2
> > INFO: Name "ns.hostinghq.com" - INFO: At 64.29.16.2
> >
> > CHECKING: secondary 1 is ns2.hostinghq.com at 64.29.17.2
> > INFO: Name "ns2.hostinghq.com" - INFO: At 64.29.17.2
> >
> > UPDATE: This is a Domain Update
> >
> > Update application
> > Checking quoted Nameservers....
> >
> > At "64.29.16.2" - Domain "adventureseekers.co.za." is configured
> > (Ser No 2000030618) with an origin of "ns.hostinghq.com"
> > The 1 NS Records are:- ns.hostinghq.com.
> >
> > ERROR: Form had 2 Nameservers - but there were 1!
> > ! I think you need to cross check the info on the application that was
> > ! sent to me with the number of Nameservers that you have specified in
> > ! your primary domain file.  The Number of NameServer records should be
> > ! the same as on the application form - or you may be visited by Lame
> > ! Delegations!
> > !
> > Could not find your <ns2.hostinghq.com> in listed DNS at 64.29.16.2 !!!
> >
> > There is no SOA record for adventureseekers.co.za. at 64.29.17.2
> > The Host is currently unpingable (unreachable)
> > !
> > ! The most common reason for this is that no one has got around to
> > ! setting this machine up yet as a Primary or Secondary server yet...
> > ! or has simply forgotten to do so.  However, if this problem is not
> > ! fixed soon, access to your domain may be hindered by 'Lame
> > ! Delegations' - which I'd rather not explain about - so please get
> > ! someone to do something about this now?
> > !
> > ERROR: No valid nameservers found - rejecting request
> > !
> > ! Something is perhaps terribly wrong.  Errors at this point are usually
> > ! due to mismatching Nameservers between the infomation you supplied on
> > ! the form and in your zone file.  Please try submitting again once
> > ! you've done this.  The problem may well be that you have no reverse
> > ! delegation set up for your primary Nameserver, ie your ISP has given
> > ! you a partial class C address - and not set up a mapping of IP Number
> > ! to Name conversion.
> >
> >
> > ---
> >
> > UniForum South Africa
> > Co.Za Domain Administrators
> > For Support: http://Co.Za or e-mail support@xxxxx
> > Telephone: +27 11 314 0077 Fax: +27 11 314 0088
>
> --__--__--
>
> Message: 3
> From: "manitu" <manitu@xxxxxxxxxx>
> To: "Cobalt Mailinglist" <cobalt-users@xxxxxxxxxxxxxxx>
> Date: Tue, 7 Mar 2000 21:34:26 +0100
> charset="iso-8859-1"
> Subject: [cobalt-users] URGENT: Security hole in CgiWrap ?
> Reply-To: cobalt-users@xxxxxxxxxxxxxxx
>
> Hello all,
>
> I have found out something very strange I cannot explain. I have written a
> simple c program and did run it under three different environments:
> 1. from telnet
> 2. via the web using cgiwrap
> 3. via the web NOT using cgiwrap
>
> The program looks like this, I think also perl programmers will understand
> it (I did only cut off the include-directives):
>
>     int main(int argc, char * argv[])
>     {
>      struct passwd* p;
>      printf("Content-type: text/html\n\n");
>      printf("GETLOGIN: %s\n", getlogin());
>      printf("CUSERID: %s\n", cuserid(0));
>      p = getpwuid(getuid());
>      if (p) printf("GETUID: %s\n", p->pw_name);
>      p = getpwuid(geteuid());
>      if (p) printf("GETEUID: %s\n", p->pw_name);
>      return 0;
>     };
>
> When running it from telnet, it prints
>
>     Content-type: text/html
>
>     GETLOGIN: manitu
>     CUSERID: manitu
>     GETUID: manitu
>     GETEUID: manitu
>
> Fine. Allright. That's was the program is supposed to do.
>
> When running from the web using cgi-wrap, it prints
>
>     GETLOGIN: (null)
>     CUSERID: manitu
>     GETUID: manitu
>     GETEUID: manitu
>
> and that should NOT happen. The program does not use any setuid-features,
> but however, it gets the effective user id (geteuid) of me.
>
> When using the cgi WITHOUT cgi-wrap, it prints
>
>     GETLOGIN: (null)
>     CUSERID: httpd
>     GETUID: httpd
>     GETEUID: httpd
>
> which is right in my opinion. This is also what it should do with cgi-wrap.
>
> If anybody has more information about this behaviour, please let us know,
> since some of us would like to write safer cgi (and pl) programs.
>
> Thanks
> Manuel
>
> --__--__--
>
> Message: 4
> From: "manitu" <manitu@xxxxxxxxxx>
> To: "Cobalt Mailinglist" <cobalt-users@xxxxxxxxxxxxxxx>
> Date: Tue, 7 Mar 2000 21:40:49 +0100
> charset="iso-8859-1"
> Subject: [cobalt-users] Cron question
> Reply-To: cobalt-users@xxxxxxxxxxxxxxx
>
> Hello all,
>
> does a program that gets executed by the cron always get root-rights
> (effective user id = root) ?
>
> Manuel
>
> --__--__--
>
> Message: 5
> From: "Multivex" <multivex@xxxxxxxxxxxxxxx>
> To: <cobalt-users@xxxxxxxxxxxxxxx>
> Subject: RE: [cobalt-users] RaQ Cannot be Accessed by FTP, Telnet or Web Interface
> Date: Tue, 7 Mar 2000 14:39:07 -0600
> boundary="----=_NextPart_000_0013_01BF8842.E48984E0"
> Reply-To: cobalt-users@xxxxxxxxxxxxxxx
>
> This is a multi-part message in MIME format.
>
> ------=_NextPart_000_0013_01BF8842.E48984E0
> Content-Type: text/plain;
>         charset="iso-8859-1"
> Content-Transfer-Encoding: quoted-printable
>
> Yes, I can ping the machine and get an answer
>
> Regards
>
> Johnny
>   ----- Original Message -----=20
>   From: Drew Nichols=20
>   To: cobalt-users@xxxxxxxxxxxxxxx=20
>   Sent: Tuesday, March 07, 2000 6:39 AM
>   Subject: RE: [cobalt-users] RaQ Cannot be Accessed by FTP, Telnet or =
> Web Interface
>
>   Is the machine itself ping'able?
>   Drew
>
>   --
>   ValueTech Network Services
>   ICQ : 63774195
>   Tel : 864 - 787 - 1754=20
>
>     -----Original Message-----
>     From: cobalt-users-admin@xxxxxxxxxxxxxxx =
> [mailto:cobalt-users-admin@xxxxxxxxxxxxxxx]On Behalf Of multivex - Racsa
>     Sent: Tuesday, March 07, 2000 12:27 AM
>     To: cobalt-users@xxxxxxxxxxxxxxx
>     Subject: [cobalt-users] RaQ Cannot be Accessed by FTP, Telnet or Web =
> Interface
>
>     I operate a RaQ since a year but yesterday it crashed
>     =20
>     My Raq cannot be accesed by FTP, telnet or the web based interface
>     Mail services have stopped also
>
>     I have only remote control. My ISP rebooted the machine with no =
> positive results
>
>     Any idea of how can I fix this?
>
>     Regards
>
>     Johnny Tarcica
>
> ------=_NextPart_000_0013_01BF8842.E48984E0
> Content-Type: text/html;
>         charset="iso-8859-1"
> Content-Transfer-Encoding: quoted-printable
>
> <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
> <HTML><HEAD>
> <META content=3D"text/html; charset=3Diso-8859-1" =
> http-equiv=3DContent-Type>
> <META content=3D"MSHTML 5.00.2614.3500" name=3DGENERATOR>
> <STYLE></STYLE>
> </HEAD>
> <BODY bgColor=3D#ffffff>
> <DIV><FONT face=3DArial size=3D2>Yes, I can ping the machine and get an=20
> answer</FONT></DIV>
> <DIV>&nbsp;</DIV>
> <DIV><FONT face=3DArial size=3D2>Regards</FONT></DIV>
> <DIV>&nbsp;</DIV>
> <DIV><FONT face=3DArial size=3D2>Johnny</FONT></DIV>
> <BLOCKQUOTE=20
> style=3D"BORDER-LEFT: #000000 2px solid; MARGIN-LEFT: 5px; MARGIN-RIGHT: =
> 0px; PADDING-LEFT: 5px; PADDING-RIGHT: 0px">
>   <DIV style=3D"FONT: 10pt arial">----- Original Message ----- </DIV>
>   <DIV=20
>   style=3D"BACKGROUND: #e4e4e4; FONT: 10pt arial; font-color: =
> black"><B>From:</B>=20
>   <A href=3D"mailto:drew-cobalt@xxxxxxxxxxxxxxxxxxxxx"=20
>   title=3Ddrew-cobalt@xxxxxxxxxxxxxxxxxxxxx>Drew Nichols</A> </DIV>
>   <DIV style=3D"FONT: 10pt arial"><B>To:</B> <A=20
>   href=3D"mailto:cobalt-users@xxxxxxxxxxxxxxx"=20
>   title=3Dcobalt-users@xxxxxxxxxxxxxxx>cobalt-users@xxxxxxxxxxxxxxx</A> =
> </DIV>
>   <DIV style=3D"FONT: 10pt arial"><B>Sent:</B> Tuesday, March 07, 2000 =
> 6:39=20
>   AM</DIV>
>   <DIV style=3D"FONT: 10pt arial"><B>Subject:</B> RE: [cobalt-users] RaQ =
> Cannot be=20
>   Accessed by FTP, Telnet or Web Interface</DIV>
>   <DIV><BR></DIV>
>   <DIV><FONT color=3D#0000ff face=3DArial size=3D2><SPAN =
> class=3D130293912-07032000>Is=20
>   the machine itself ping'able?</SPAN></FONT></DIV>
>   <DIV><FONT color=3D#0000ff face=3DArial size=3D2><SPAN=20
>   class=3D130293912-07032000>Drew</SPAN></FONT></DIV>
>   <DIV>&nbsp;</DIV>
>   <P><FONT size=3D2>--<BR>ValueTech Network Services<BR>ICQ : =
> 63774195<BR>Tel :=20
>   864 - 787 - 1754</FONT> </P>
>   <BLOCKQUOTE=20
>   style=3D"BORDER-LEFT: #0000ff 2px solid; MARGIN-LEFT: 5px; =
> MARGIN-RIGHT: 0px; PADDING-LEFT: 5px">
>     <DIV align=3Dleft class=3DOutlookMessageHeader dir=3Dltr><FONT =
> face=3DTahoma=20
>     size=3D2>-----Original Message-----<BR><B>From:</B> <A=20
>     =
> href=3D"mailto:cobalt-users-admin@xxxxxxxxxxxxxxx";>cobalt-users-admin@lis=
> t.cobalt.com</A>=20
>     [<A=20
>     =
> href=3D"mailto:cobalt-users-admin@xxxxxxxxxxxxxxx";>mailto:cobalt-users-ad=
> min@xxxxxxxxxxxxxxx</A>]<B>On=20
>     Behalf Of </B>multivex - Racsa<BR><B>Sent:</B> Tuesday, March 07, =
> 2000 12:27=20
>     AM<BR><B>To:</B> <A=20
>     =
> href=3D"mailto:cobalt-users@xxxxxxxxxxxxxxx";>cobalt-users@xxxxxxxxxxxxxxx=
> </A><BR><B>Subject:</B>=20
>     [cobalt-users] RaQ Cannot be Accessed by FTP, Telnet or Web=20
>     Interface<BR><BR></DIV></FONT>
>     <DIV><FONT face=3DArial size=3D2>I operate a RaQ since a year but =
> yesterday it=20
>     crashed</FONT></DIV>
>     <DIV><FONT face=3DArial size=3D2></FONT>&nbsp;</DIV>
>     <DIV><FONT face=3DArial size=3D2>My Raq cannot be accesed by FTP, =
> telnet or the=20
>     web based interface</FONT></DIV>
>     <DIV><FONT face=3DArial size=3D2>Mail services have stopped =
> also</FONT></DIV>
>     <DIV>&nbsp;</DIV>
>     <DIV><FONT face=3DArial size=3D2>I have only remote control. My ISP =
> rebooted the=20
>     machine with no positive results</FONT></DIV>
>     <DIV>&nbsp;</DIV>
>     <DIV><FONT face=3DArial size=3D2>Any idea of how can I fix =
> this?</FONT></DIV>
>     <DIV>&nbsp;</DIV>
>     <DIV><FONT face=3DArial size=3D2>Regards</FONT></DIV>
>     <DIV>&nbsp;</DIV>
>     <DIV><FONT face=3DArial size=3D2>Johnny=20
> Tarcica</FONT></DIV></BLOCKQUOTE></BLOCKQUOTE></BODY></HTML>
>
> ------=_NextPart_000_0013_01BF8842.E48984E0--
>
> --__--__--
>
> Message: 6
> From: "manitu" <manitu@xxxxxxxxxx>
> To: "Cobalt Mailinglist" <cobalt-users@xxxxxxxxxxxxxxx>
> Date: Tue, 7 Mar 2000 21:44:28 +0100
> charset="iso-8859-1"
> Subject: [cobalt-users] Books for programming safe cgis
> Reply-To: cobalt-users@xxxxxxxxxxxxxxx
>
> Hello all,
>
> does anybody know good books that I can learn from how to write secure cgi
> programs not opening a server to anybody ?
>
> Thanks
> Manuel
>
> --__--__--
>
> Message: 7
> Date: Tue, 07 Mar 2000 14:01:43 -0700
> From: Tobe Johnson <tobe@xxxxxxxxxxxx>
> To: "'cobalt-users@xxxxxxxxxxxxxxx'" <cobalt-users@xxxxxxxxxxxxxxx>
> Reply-to: "tobe@xxxxxxxxxxxx" <tobe@xxxxxxxxxxxx>
> Subject: [cobalt-users] Archieves
> Reply-To: cobalt-users@xxxxxxxxxxxxxxx
>
> I had a question that I remember was recently covered on this list.
>  However, I am unable to find the mailing list archieves anywhere.  Can
> someone direct me to where I could find the archieves so I can research
> this issues on my own before bothering everyone on the list?
>
> Tobe
>
> --__--__--
>
> Message: 8
> Date: Tue, 7 Mar 2000 16:00:31 -0500
> From: Mat Kovach <mkovach@xxxxxxxxxxxxxxxxx>
> To: cobalt-users@xxxxxxxxxxxxxxx
> Subject: Re: [cobalt-users] Raq3 - default page
> Reply-To: cobalt-users@xxxxxxxxxxxxxxx
>
> On Tue, Mar 07, 2000 at 05:24:23PM -0000, 1st Web Internet Services wrote:
> : I have searched the archives - honest :-), but cannot find the answer.
> :
> : Does anyone know where the Raq3 pulls the default page that it uses each
> : time a virtual web is s et up?
> :
> : It would be handy to be able to alter this page once, rather than each time
> : a web is created.
>
> Okay....I'm doing this from memory here, I belive it is I think that
> /etc/skel/group has the index.html when adding sites
> and
> /etc/skel/user has the index.html when adding users.
>
> I belive they are in en_us/web or something like that.
>
> --
> Mat Kovach                                      mkovach@xxxxxxxxxxxxxxxxx
> Cleveland Linux User Group                       http://cleveland.lug.net
>
> --__--__--
>
> Message: 9
> Date: Tue, 07 Mar 2000 16:03:37 -0500
> From: Ken Araujo <ken_araujo@xxxxxxxxxxxx>
> To: cobalt-users@xxxxxxxxxxxxxxx
> Subject: [cobalt-users] Cobalt Qube2 User Interface for SMTP Server
> Reply-To: cobalt-users@xxxxxxxxxxxxxxx
>
> I've installed a Qube 2 which connects to an external ISDN Router via
> its secondary interface.  Stations on the primary interface can access
> the Internet, etc.
>
> Where do I define the SMTP relay server that I need to send e-mail to?
> There doesn't seem to be any parameter under Administrator/Service
> Settings/Email Server in the Cobalt User Interface that relates to the
> SMTP relay server that the Qube sends e-mail to.  (There are settings
> there for POP3, but I can't find any settings for SMTP.  My ISP has
> given me the SMTP server to which I should send e-mail, and I need to
> configure this in the Qube.)
>
> Thanks,
> Ken.
>
> --__--__--
>
> Message: 10
> From: "Neil J. Kemp" <neil@xxxxxxxxxx>
> To: <cobalt-users@xxxxxxxxxxxxxxx>
> Subject: RE: [cobalt-users] URGENT: Security hole in CgiWrap ?
> Date: Tue, 7 Mar 2000 21:07:41 -0000
> charset="iso-8859-1"
> Reply-To: cobalt-users@xxxxxxxxxxxxxxx
>
> I can't be sure of this (I'm sure someone will correct if I'm wrong) but
> cgi-wrapper forces the CGI to be run with the permissions of the file in
> question (in this case it's owned by 'manitu' correct?) and without
> cgi-wrapper it runs as the same user as the entire webserver itself - httpd.
>
> I'm pretty sure that's why you're getting the answers you're getting and I'm
> also pretty sure it's supposed to do that.
>
> --Neil
>
> -----Original Message-----
> From: cobalt-users-admin@xxxxxxxxxxxxxxx
> [mailto:cobalt-users-admin@xxxxxxxxxxxxxxx]On Behalf Of manitu
> Sent: 07 March 2000 20:34
> To: Cobalt Mailinglist
> Subject: [cobalt-users] URGENT: Security hole in CgiWrap ?
>
> Hello all,
>
> I have found out something very strange I cannot explain. I have written a
> simple c program and did run it under three different environments:
> 1. from telnet
> 2. via the web using cgiwrap
> 3. via the web NOT using cgiwrap
>
> The program looks like this, I think also perl programmers will understand
> it (I did only cut off the include-directives):
>
>     int main(int argc, char * argv[])
>     {
>      struct passwd* p;
>      printf("Content-type: text/html\n\n");
>      printf("GETLOGIN: %s\n", getlogin());
>      printf("CUSERID: %s\n", cuserid(0));
>      p = getpwuid(getuid());
>      if (p) printf("GETUID: %s\n", p->pw_name);
>      p = getpwuid(geteuid());
>      if (p) printf("GETEUID: %s\n", p->pw_name);
>      return 0;
>     };
>
> When running it from telnet, it prints
>
>     Content-type: text/html
>
>     GETLOGIN: manitu
>     CUSERID: manitu
>     GETUID: manitu
>     GETEUID: manitu
>
> Fine. Allright. That's was the program is supposed to do.
>
> When running from the web using cgi-wrap, it prints
>
>     GETLOGIN: (null)
>     CUSERID: manitu
>     GETUID: manitu
>     GETEUID: manitu
>
> and that should NOT happen. The program does not use any setuid-features,
> but however, it gets the effective user id (geteuid) of me.
>
> When using the cgi WITHOUT cgi-wrap, it prints
>
>     GETLOGIN: (null)
>     CUSERID: httpd
>     GETUID: httpd
>     GETEUID: httpd
>
> which is right in my opinion. This is also what it should do with cgi-wrap.
>
> If anybody has more information about this behaviour, please let us know,
> since some of us would like to write safer cgi (and pl) programs.
>
> Thanks
> Manuel
>
> _______________________________________________
> cobalt-users mailing list
> cobalt-users@xxxxxxxxxxxxxxx
> To Subscribe or Unsubscribe, please go to:
> http://list.cobalt.com/mailman/listinfo/cobalt-users
>
> --__--__--
>
> Message: 11
> Date: Tue, 7 Mar 2000 22:11:11 +0100
> From: =?ISO-8859-1?Q?Rouven_Sch=FCrch?= <schuerch@xxxxxxxxxxxxxxx>
> Reply-To: =?ISO-8859-1?Q?Rouven_Sch=FCrch?= <schuerch@xxxxxxxxxxxxxxx>
> To: cobalt-users@xxxxxxxxxxxxxxx
> Subject: [cobalt-users] RAQ3: 2nd internal harddisk. Possible or not (IDE/SCSI)?
> Reply-To: cobalt-users@xxxxxxxxxxxxxxx
>
> Hello,
>
> after having spent hours searching through the online resources and reading
> the archives of this mailing list, I still couldn't find a definitive answer
> to the question whether you can add a second harddrive to the RAQ3 or not.
> Is it possible to add an IDE drive to every type of RAQ3 or do you need to
> have the SCSI enhanced version for adding a SCSI-disk?
> I'm asking this question with the possibility in mind of being able to
> mirror the first internal drive to the second one (perhaps there are a few
> users out there already familiar with that).
>
> I would be very grateful for an answer.
>
> Regards
>
> R. Schuerch
>
> --__--__--
>
> Message: 12
> Reply-To: <dan@xxxxxxxxxxxxx>
> From: "Dan" <dan@xxxxxxxxxxxxx>
> To: <cobalt-users@xxxxxxxxxxxxxxx>
> Subject: RE: [cobalt-users] Archieves
> Date: Tue, 7 Mar 2000 16:16:56 -0500
> charset="iso-8859-1"
> Reply-To: cobalt-users@xxxxxxxxxxxxxxx
>
> See the URL below.
>
> >  However, I am unable to find the mailing list archieves anywhere.  Can
> > someone direct me to where I could find the archieves so I can research
> > this issues on my own before bothering everyone on the list?
> >
> > _______________________________________________
> > cobalt-users mailing list
> > cobalt-users@xxxxxxxxxxxxxxx
> > To Subscribe or Unsubscribe, please go to:
> > http://list.cobalt.com/mailman/listinfo/cobalt-users
> >
>
> --__--__--
>
> Message: 13
> Reply-To: <mcombe@xxxxxxxxxxxxxxxxx>
> From: "Michael Combe" <mcombe@xxxxxxxxxxxxxxxxx>
> To: "Cobalt" <cobalt-users@xxxxxxxxxxxxxxx>
> Date: Tue, 7 Mar 2000 14:16:56 -0700
> boundary="----=_NextPart_000_0020_01BF883F.CB3923E0"
> Subject: [cobalt-users] Removing www from autoresponders
> Reply-To: cobalt-users@xxxxxxxxxxxxxxx
>
> This is a multi-part message in MIME format.
>
> ------=_NextPart_000_0020_01BF883F.CB3923E0
> Content-Type: text/plain;
>         charset="iso-8859-1"
> Content-Transfer-Encoding: 7bit
>
> Is there a way to remove the www on the from line (i.e. me@xxxxxxxxxxxxxxxx)
> from the autoresponder messages on a RaQ2?  I know this has been asked in
> the past, but it has never been resolved except by making changes in DNS.  I
> do know that this is NOT a DNS issue.  Our DNS server is separate from our
> RaQ2 and the entries are what are discussed in the archives.  If anyone has
> successfully conquered this, please let me know.  Thanks.
>
> ----------------------------
> Michael Combe
>
> ------=_NextPart_000_0020_01BF883F.CB3923E0
> Content-Type: application/ms-tnef;
>         name="winmail.dat"
> Content-Transfer-Encoding: base64
> Content-Disposition: attachment;
>         filename="winmail.dat"
>
> eJ8+IjgVAQaQCAAEAAAAAAABAAEAAQeQBgAIAAAA5AQAAAAAAADoAAEIgAcAGAAAAElQTS5NaWNy
> b3NvZnQgTWFpbC5Ob3RlADEIAQ2ABAACAAAAAgACAAEGgAMADgAAANAHAwAHAA4ADgAAAAIA/wAB
> A5AGAHAGAAAmAAAACwACAAEAAAALACMAAAAAAAMAJgAAAAAACwApAAAAAAADADYAAAAAAB4AcAAB
> AAAAIQAAAFJlbW92aW5nIHd3dyBmcm9tIGF1dG9yZXNwb25kZXJzAAAAAAIBcQABAAAAFgAAAAG/
> iHofh6PsUc/0ChHTk73wM13BAAAAAAIBHQwBAAAAHgAAAFNNVFA6TUNPTUJFQFdFQklOVEVMTEVD
> VFMuQ09NAAAACwABDgAAAABAAAYOABx7DnqIvwECAQoOAQAAABgAAAAAAAAAK6B08sI70xGTvQAQ
> SyeEscKAAAALAB8OAQAAAAIBCRABAAAA/gEAAPoBAACSAgAATFpGdXl2AlQDAAoAcmNwZzEyNRYy
> APgLYG4OEDAzM08B9wKkA+MCAGNoCsBz8GV0MCAHEwKDAFAD1ZURdX0KgXYIkHdrC4B0ZDQMYGMA
> UAsDC7UgEkkEIHRoBJBlIGGQIHdheRUgbyAJcL0EYHYVcBUxFaAW0CACIDMWgwNSIGwLgBVwKGlQ
> LmUuIAeAQBbRLlhteWQDcQuALgWgbWYpF3QWkmF1FfAJcHOecAIgBIEYcQQQYWcHkQMXERWQUmFR
> Mj8g4RTwIGtubwfgFTAEADYgEPAEIGIJ4RWAc2sdCYAgC4AWgwqwc3Qs/x2AGnAeMAVAHVIX8BZg
> BcAfHZMaoQbwFmAeIGV4YzplBTFiFdAAwBORZyCPEOEPIAeRHkFETlMYYHccgRkQHKZhBUAdAx0h
> TtxPVBWBIsEkUXMKUCLx7k8IcCTjESByH+IdIREg/wqxI+AXZQhhHBMVgBOwFoP9CfB0CIEEIArA
> FrEj0ilC8mQEAGN1BBAeGArAEOCqaRZgcyLyZigxeQIgNxVwHVIlUGMhIAQQZnXMbGwV0AWgbnEK
> UAlx9xzzHvALUGUdYBVwLpAFQNcHgByjIvFUIiFrK5AKoucKhAqBAEAgLTFPMfgL0rcT0DC1FMJN
> DeAQ8GUDIHsIUAbQZTCmAUAwUxMRAAE2EAAAAwABbgAAAAALAAGACCAGAAAAAADAAAAAAAAARgAA
> AAADhQAAAAAAAAMAA4AIIAYAAAAAAMAAAAAAAABGAAAAABCFAAAAAAAAAwAHgAggBgAAAAAAwAAA
> AAAAAEYAAAAAUoUAACdqAQAeAAmACCAGAAAAAADAAAAAAAAARgAAAABUhQAAAQAAAAQAAAA5LjAA
> HgAKgAggBgAAAAAAwAAAAAAAAEYAAAAANoUAAAEAAAABAAAAAAAAAB4AC4AIIAYAAAAAAMAAAAAA
> AABGAAAAADeFAAABAAAAAQAAAAAAAAAeAAyACCAGAAAAAADAAAAAAAAARgAAAAA4hQAAAQAAAAEA
> AAAAAAAACwANgAggBgAAAAAAwAAAAAAAAEYAAAAAgoUAAAEAAAALADqACCAGAAAAAADAAAAAAAAA
> RgAAAAAOhQAAAAAAAAMAPIAIIAYAAAAAAMAAAAAAAABGAAAAABGFAAAAAAAAAwA9gAggBgAAAAAA
> wAAAAAAAAEYAAAAAGIUAAAAAAAALAG6ACCAGAAAAAADAAAAAAAAARgAAAAAGhQAAAAAAAAMAb4AI
> IAYAAAAAAMAAAAAAAABGAAAAAAGFAAAAAAAAAgH4DwEAAAAQAAAAK6B08sI70xGTvQAQSyeEsQIB
> +g8BAAAAEAAAACugdPLCO9MRk70AEEsnhLECAfsPAQAAAIIAAAAAAAAAOKG7EAXlEBqhuwgAKypW
> wgAAUFNUUFJYLkRMTAAAAAAAAAAATklUQfm/uAEAqgA32W4AAABDOlxXSU5ET1dTXExvY2FsIFNl
> dHRpbmdzXEFwcGxpY2F0aW9uIERhdGFcTWljcm9zb2Z0XE91dGxvb2tcb3V0bG9vay5wc3QAAAAD
> AP4PBQAAAAMADTT9NwAAAgF/AAEAAAA4AAAAPE5EQkJKRExOQ0xMQURQTkZFR0lLRUVIS0NJQUEu
> bWNvbWJlQHdlYmludGVsbGVjdHMuY29tPgADAAYQnfYThQMABxB+AQAAAwAQEAAAAAADABEQAAAA
> AB4ACBABAAAAZQAAAElTVEhFUkVBV0FZVE9SRU1PVkVUSEVXV1dPTlRIRUZST01MSU5FKElFTUVA
> V1dXTVlET01BSU5DT00pRlJPTVRIRUFVVE9SRVNQT05ERVJNRVNTQUdFU09OQVJBUTI/SUtOT1cA
> AAAAJmA=
>
> ------=_NextPart_000_0020_01BF883F.CB3923E0--
>
> --__--__--
>
> Message: 14
> From: "Neil J. Kemp" <neil@xxxxxxxxxx>
> To: <cobalt-users@xxxxxxxxxxxxxxx>
> Subject: RE: [cobalt-users] scripts by email
> Date: Tue, 7 Mar 2000 21:19:57 -0000
> charset="iso-8859-1"
> Reply-To: cobalt-users@xxxxxxxxxxxxxxx
>
> It's not exactly like. The RaQ2 (Only one I know for sure) uses smrsh so
> that if the script isn't in the "allowed" then it won't be run from e-mail.
> To get a script in the "allowed" list telnet in as root and change directory
> to:
>
> cd /usr/adm/sm.bin/
>
> Here is a list of symbolic links to the real files on the disk. To add
> another one type:
>
> ln -s /home/sites/site23/web/cgi-bin/filename.cgi
>
> or whatever path it is to the filename in question. Then they can run this
> script via e-mail .forward files etc. Can be called anything too. However
> there's probably some good security implications you're wiping over here (as
> in the user could change the file at anytime and you wouldn't know!) so what
> you could do is review the script by the person and make sure you're happy
> with it and instead of making a link, COPY the file to that directory.
>
> cp /home/sites/site23/web/cgi-bin/filename.cgi /usr/adm/sm.bin/filename.cgi
>
> chown/chgrp the file accordingly. And although they'd run it in EXACTLY the
> same way as the top method, if they change their file it won't change the
> program, because smrsh only runs the one in the adm directory :-)
> (Incidently on Redhat systems this directory is /etc/smrsh)
>
> --Neil
>
> -----Original Message-----
> From: cobalt-users-admin@xxxxxxxxxxxxxxx
> [mailto:cobalt-users-admin@xxxxxxxxxxxxxxx]On Behalf Of Steven Glogger
> Sent: 07 March 2000 12:35
> To: cobalt-users@xxxxxxxxxxxxxxx
> Subject: [cobalt-users] scripts by email
>
> i'm trying to run scripts, if an email is coming...
> but if the scripts has another name than 'vacation.pl' he told me, that this
> script doesn't has the right to run...
> where can i define the names of the scripts for sendmail?
> i searched the hole sendmail.cf file and so on...
> any idea?
>
> greetings
>
> steven
>
> _______________________________________________
> cobalt-users mailing list
> cobalt-users@xxxxxxxxxxxxxxx
> To Subscribe or Unsubscribe, please go to:
> http://list.cobalt.com/mailman/listinfo/cobalt-users
>
> --__--__--
>
> _______________________________________________
> cobalt-users mailing list
> cobalt-users@xxxxxxxxxxxxxxx
> http://list.cobalt.com/mailman/listinfo/cobalt-users
>
> End of cobalt-users Digest
Prev by Date: [cobalt-users] DNS from RaQ1 to RaQ3
Next by Date: Re: [cobalt-users] DNS from RaQ1 to RaQ3
Previous by thread: Re: [cobalt-users] DNS from RaQ1 to RaQ3
Next by thread: [cobalt-users] PHP3 on RaQ3i
Sun Cobalt Users Message Index

Sun Cobalt Users Thread Index