Gentoo Forums
Gentoo Forums
Gentoo Forums
Quick Search: in
Announcing Pappy's Kernel Seeds. <closed, use new thread>
View unanswered posts
View posts from last 24 hours

Goto page Previous  1, 2, 3 ... 21, 22, 23 ... 25, 26, 27  Next  
This topic is locked: you cannot edit posts or make replies.    Gentoo Forums Forum Index Unsupported Software
View previous topic :: View next topic  
Author Message
venom2099
n00b
n00b


Joined: 15 Oct 2009
Posts: 8

PostPosted: Sun Oct 18, 2009 11:03 pm    Post subject: Build and booted Reply with quote

pappy_mcfae wrote:
Your .config was the source of some consternation. Your CPU has more than one core, yet only one was showing. Your mobo claims to be a very old P-II or P-III. So, it was an interesting romp trying to figure things out. Having VM set up didn't help either.

Long story short, I am not as convinced this .config will work as I usually am. If this doesn't work, start the machine with a CD, and do lspci -n again.

Click here for your new .config. Compile as is.

For the best results, please do the following:

1) Move your .config file out of your kernel source directory (/usr/src/linux- ).
2) Issue the command make mrproper. This is a destructive step. It returns the source to pristine condition. Unmoved .config files will be deleted!
3) Copy my .config into your source directory.
4) Issue the command make && make modules_install.
5) Install the kernel as you normally would, and reboot.
6) Once it boots, please post /var/log/dmesg so I can see how things loaded.

As I said above, if this provides a lot of trouble, redo lspci -n with a CD.

Blessed be!
Pappy


Here is the link to dmesg

http://pastebin.com/m696daee9

If it all looks good I will hammer on it and see if I still get kernel crashes...
Back to top
View user's profile Send private message
pappy_mcfae
Watchman
Watchman


Joined: 27 Dec 2007
Posts: 5997
Location: Pomona, California.

PostPosted: Mon Oct 19, 2009 5:19 am    Post subject: Reply with quote

Hammer away. It looks like all four cores are up, and all the required devices are working.

Blessed be!
Pappy
_________________
This space left intentionally blank, except for these ASCII symbols.
Back to top
View user's profile Send private message
venom2099
n00b
n00b


Joined: 15 Oct 2009
Posts: 8

PostPosted: Mon Oct 19, 2009 6:44 pm    Post subject: Reply with quote

pappy_mcfae wrote:
Hammer away. It looks like all four cores are up, and all the required devices are working.

Blessed be!
Pappy


No panic yet :D I did have one question I noticed these modules warnings when I built the kernel:
Code:

WARNING: /lib/modules/2.6.30-gentoo-r5/net/vmxnet3.ko needs unknown symbol __vlan_hwaccel_rx
WARNING: /lib/modules/2.6.30-gentoo-r5/net/vmxnet3.ko needs unknown symbol pci_enable_msi_block
WARNING: /lib/modules/2.6.30-gentoo-r5/net/vmxnet3.ko needs unknown symbol pci_disable_msi
WARNING: /lib/modules/2.6.30-gentoo-r5/net/vmxnet3.ko needs unknown symbol pci_enable_msix
WARNING: /lib/modules/2.6.30-gentoo-r5/net/vmxnet3.ko needs unknown symbol pci_disable_msix
WARNING: /lib/modules/2.6.30-gentoo-r5/net/vmxnet3.ko needs unknown symbol malloc_sizes
WARNING: /lib/modules/2.6.30-gentoo-r5/openvmtools/pvscsi.ko needs unknown symbol pci_enable_msi_block
WARNING: /lib/modules/2.6.30-gentoo-r5/openvmtools/pvscsi.ko needs unknown symbol pci_disable_msi
WARNING: /lib/modules/2.6.30-gentoo-r5/openvmtools/pvscsi.ko needs unknown symbol pci_enable_msix
WARNING: /lib/modules/2.6.30-gentoo-r5/openvmtools/pvscsi.ko needs unknown symbol pci_disable_msix
WARNING: /lib/modules/2.6.30-gentoo-r5/openvmtools/vmmemctl.ko needs unknown symbol refrigerator
WARNING: /lib/modules/2.6.30-gentoo-r5/openvmtools/vmmemctl.ko needs unknown symbol malloc_sizes
WARNING: /lib/modules/2.6.30-gentoo-r5/openvmtools/vsock.ko needs unknown symbol malloc_sizes
WARNING: /lib/modules/2.6.30-gentoo-r5/openvmtools/vmhgfs.ko needs unknown symbol refrigerator
WARNING: /lib/modules/2.6.30-gentoo-r5/openvmtools/vmhgfs.ko needs unknown symbol malloc_sizes
Back to top
View user's profile Send private message
pappy_mcfae
Watchman
Watchman


Joined: 27 Dec 2007
Posts: 5997
Location: Pomona, California.

PostPosted: Mon Oct 19, 2009 7:09 pm    Post subject: Reply with quote

To clear that, first, you'll have to eliminate the /lib64/modules/2.6.30-gentoo-r5 directory. Then, you'll want to remove all stale object code out of the kernel source directory.

To do this:

a. copy your .config somewhere safe...as in out of the kernel source directory.
b. cd /usr/src/linux-2.6.30-gentoo-r5
c. make mrproper. This is a destructive step. All unmoved .configs will be deleted!
d. copy the .config back into the kernel source directory.
e. make; make modules_install.

That should take care of that issue.

Blessed be!
Pappy
_________________
This space left intentionally blank, except for these ASCII symbols.
Back to top
View user's profile Send private message
audiodef
Watchman
Watchman


Joined: 06 Jul 2005
Posts: 6313
Location: /usr/lib64/lv2

PostPosted: Tue Oct 20, 2009 2:23 pm    Post subject: Tuxonice .31 runs slowly Reply with quote

Pappy, I just upgraded the kernel for one of my laptops to tuxonice .31 (from .30), using the x86_64 seed for that kernel. It seems to run very slowly and I can't see why. Could you take a look?

config: http://audiodef.com/tuxonice-31-config

lspci -n:
Code:

00:00.0 0600: 8086:2a00 (rev 0c)
00:02.0 0300: 8086:2a02 (rev 0c)
00:02.1 0380: 8086:2a03 (rev 0c)
00:1a.0 0c03: 8086:2834 (rev 02)
00:1a.1 0c03: 8086:2835 (rev 02)
00:1a.7 0c03: 8086:283a (rev 02)
00:1b.0 0403: 8086:284b (rev 02)
00:1c.0 0604: 8086:283f (rev 02)
00:1c.1 0604: 8086:2841 (rev 02)
00:1c.3 0604: 8086:2845 (rev 02)
00:1d.0 0c03: 8086:2830 (rev 02)
00:1d.1 0c03: 8086:2831 (rev 02)
00:1d.2 0c03: 8086:2832 (rev 02)
00:1d.7 0c03: 8086:2836 (rev 02)
00:1e.0 0604: 8086:2448 (rev f2)
00:1f.0 0601: 8086:2815 (rev 02)
00:1f.1 0101: 8086:2850 (rev 02)
00:1f.2 0106: 8086:2829 (rev 02)
00:1f.3 0c05: 8086:283e (rev 02)
03:00.0 0200: 14e4:170c (rev 02)
03:01.0 0c00: 1180:0832 (rev 05)
03:01.1 0805: 1180:0822 (rev 22)
03:01.2 0880: 1180:0592 (rev 12)
03:01.3 0880: 1180:0852 (rev 12)
0c:00.0 0280: 8086:4229 (rev 61)


cat /proc/cpuinfo:
Code:

processor       : 0               
vendor_id       : GenuineIntel   
cpu family      : 6               
model           : 15             
model name      : Intel(R) Core(TM)2 Duo CPU     T5250  @ 1.50GHz
stepping        : 13                                             
cpu MHz         : 1000.000                                       
cache size      : 2048 KB                                       
physical id     : 0                                             
siblings        : 2                                             
core id         : 0
cpu cores       : 2
apicid          : 0
initial apicid  : 0
fpu             : yes
fpu_exception   : yes
cpuid level     : 10
wp              : yes
flags           : fpu vme de pse tsc msr pae mce cx8 apic sep mtrr pge mca cmov pat pse36 clflush dts acpi mmx fxsr sse sse2 ss ht tm pbe syscall nx lm constant_tsc arch_perfmon pebs bts rep_good pni dtes64 monitor ds_cpl est tm2 ssse3 cx16 xtpr pdcm lahf_lm
bogomips        : 2991.73
clflush size    : 64
cache_alignment : 64
address sizes   : 36 bits physical, 48 bits virtual
power management:

processor       : 1
vendor_id       : GenuineIntel
cpu family      : 6
model           : 15
model name      : Intel(R) Core(TM)2 Duo CPU     T5250  @ 1.50GHz
stepping        : 13
cpu MHz         : 1000.000
cache size      : 2048 KB
physical id     : 0
siblings        : 2
core id         : 1
cpu cores       : 2
apicid          : 1
initial apicid  : 1
fpu             : yes
fpu_exception   : yes
cpuid level     : 10
wp              : yes
flags           : fpu vme de pse tsc msr pae mce cx8 apic sep mtrr pge mca cmov pat pse36 clflush dts acpi mmx fxsr sse sse2 ss ht tm pbe syscall nx lm constant_tsc arch_perfmon pebs bts rep_good pni dtes64 monitor ds_cpl est tm2 ssse3 cx16 xtpr pdcm lahf_lm
bogomips        : 2991.52
clflush size    : 64
cache_alignment : 64
address sizes   : 36 bits physical, 48 bits virtual
power management:

_________________
Gentoo Studio: A Gentoo-based, professional digital audio workstation OS.
Back to top
View user's profile Send private message
audiodef
Watchman
Watchman


Joined: 06 Jul 2005
Posts: 6313
Location: /usr/lib64/lv2

PostPosted: Tue Oct 20, 2009 7:16 pm    Post subject: .27-r10 with Apache Reply with quote

Pappy, earlier you recommend I use a .27 kernel with a machine that uses i810. This works well, but Apache won't run. I'm wondering if it's something in the config. Could I ask you to take a look at this as well? It doesn't make sense that Apache won't run - even when I downgraded to the Gentoo stable version.

Config: http://audiodef.com/kernel-27-r10-config

emerge --info:
Code:

Portage 2.2_rc46 (default/linux/x86/2008.0, gcc-4.4.2, glibc-2.10.1-r0, 2.6.31-gentoo-r3 i686)
=================================================================
System uname: Linux-2.6.31-gentoo-r3-i686-Intel-R-_Celeron-R-_CPU_2.40GHz-with-gentoo-2.0.1
Timestamp of tree: Sun, 18 Oct 2009 19:30:01 +0000
app-shells/bash:     4.0_p33
dev-java/java-config: 2.1.9-r1
dev-lang/python:     2.6.3, 3.1.1-r1
sys-apps/baselayout: 2.0.1
sys-apps/openrc:     0.4.3-r4
sys-apps/sandbox:    2.1
sys-devel/autoconf:  2.13, 2.63-r1
sys-devel/automake:  1.9.6-r2, 1.10.2, 1.11
sys-devel/binutils:  2.19.1-r1
sys-devel/gcc-config: 1.4.1
sys-devel/libtool:   2.2.6a
virtual/os-headers:  2.6.30-r1
ACCEPT_KEYWORDS="x86 ~x86"
CBUILD="i686-pc-linux-gnu"
CFLAGS="-O2 -march=i686 -pipe"
CHOST="i686-pc-linux-gnu"
CONFIG_PROTECT="/etc /etc/conf.d/clock /etc/conf.d/hostname /etc/conf.d/net /etc/conf.d/xdm /etc/hosts /etc/slim.conf /usr/share/X11/xkb"
CONFIG_PROTECT_MASK="/etc/ca-certificates.conf /etc/env.d /etc/env.d/java/ /etc/fonts/fonts.conf /etc/gconf /etc/gentoo-release /etc/php/apache2-php5/ext-active/ /etc/php/cgi-php5/ext-active/ /etc/php/cli-php5/ext-active/ /etc/revdep-rebuild /etc/sandbox.d /etc/splash /etc/terminfo /etc/udev/rules.d"
CXXFLAGS="-O2 -march=i686 -pipe"
DISTDIR="/usr/portage/distfiles"
FEATURES="assume-digests distlocks fixpackages news parallel-fetch preserve-libs protect-owned sandbox sfperms strict unmerge-logs unmerge-orphans userfetch"
GENTOO_MIRRORS="http://distfiles.gentoo.org http://distro.ibiblio.org/pub/linux/distributions/gentoo"
LDFLAGS="-Wl,-O1"
MAKEOPTS="-j2"
PKGDIR="/usr/portage/packages"
PORTAGE_CONFIGROOT="/"
PORTAGE_RSYNC_OPTS="--recursive --links --safe-links --perms --times --compress --force --whole-file --delete --stats --timeout=180 --exclude=/distfiles --exclude=/local --exclude=/packages"
PORTAGE_TMPDIR="/var/tmp"
PORTDIR="/usr/portage"
SYNC="rsync://rsync.gentoo.org/gentoo-portage"
USE="X acl acpi alsa apache2 aspell berkdb bzip2 cleartype cli cracklib crypt cups cupsddk dbus dri fbcondecor fortran gdbm gif gnome gpm gtk hal hpcups hpijs iconv id3tag ipv6 isdnlog java jpeg mmx modules mp3 mudflap mysql mysqli ncurses nls nptl nptlonly openmp pam pcre perl png ppds pppd python readline reflection samba scanner session shout smbclient spl sse sse2 ssl svg sysfs tcpd tiff truetype unicode win32codecs x86 xcf xorg zlib" ALSA_CARDS="ali5451 als4000 atiixp atiixp-modem bt87x ca0106 cmipci emu10k1 emu10k1x ens1370 ens1371 es1938 es1968 fm801 hda-intel intel8x0 intel8x0m maestro3 trident usb-audio via82xx via82xx-modem ymfpci" ALSA_PCM_PLUGINS="adpcm alaw asym copy dmix dshare dsnoop empty extplug file hooks iec958 ioplug ladspa lfloat linear meter mmap_emul mulaw multi null plug rate route share shm softvol" APACHE2_MODULES="actions alias auth_basic authn_alias authn_anon authn_dbm authn_default authn_file authz_dbm authz_default authz_groupfile authz_host authz_owner authz_user autoindex cache dav dav_fs dav_lock deflate dir disk_cache env expires ext_filter file_cache filter headers include info log_config logio mem_cache mime mime_magic negotiation rewrite setenvif speling status unique_id userdir usertrack vhost_alias" ELIBC="glibc" INPUT_DEVICES="evdev" KERNEL="linux" LCD_DEVICES="bayrad cfontz cfontz633 glk hd44780 lb216 lcdm001 mtxorb ncurses text" USERLAND="GNU" VIDEO_CARDS="intel"
Unset:  CPPFLAGS, CTARGET, EMERGE_DEFAULT_OPTS, FFLAGS, INSTALL_MASK, LANG, LC_ALL, LINGUAS, PORTAGE_COMPRESS, PORTAGE_COMPRESS_FLAGS, PORTAGE_RSYNC_EXTRA_OPTS, PORTDIR_OVERLAY

_________________
Gentoo Studio: A Gentoo-based, professional digital audio workstation OS.
Back to top
View user's profile Send private message
audiodef
Watchman
Watchman


Joined: 06 Jul 2005
Posts: 6313
Location: /usr/lib64/lv2

PostPosted: Tue Oct 20, 2009 9:22 pm    Post subject: Reply with quote

Regarding my machine with the i810 chip: it seems to work alright with .30-r7, using the seed for that version (I saw an r8 but there was no seed for that one). Plus, the intel fb was visible without having to turn on small systems support (I'm starting to think that was a really weird decision to create that dependency). I can get both small console fonts in fb and run apache, and the overall speed is good 'nuff.

So, don't sweat it with the .27 kernel issue, unless you're academically interested. 8) I'm going to hold this machine to 30-r7 until Kingdom Come.
_________________
Gentoo Studio: A Gentoo-based, professional digital audio workstation OS.
Back to top
View user's profile Send private message
venom2099
n00b
n00b


Joined: 15 Oct 2009
Posts: 8

PostPosted: Tue Oct 20, 2009 9:35 pm    Post subject: Reply with quote

pappy_mcfae wrote:
Hammer away. It looks like all four cores are up, and all the required devices are working.

Blessed be!
Pappy


Just wanted to say thanks. Been hammering for 3 days now and no crashes. Previously it was 6 hours / crash. Count me as a satisfied customer!
Back to top
View user's profile Send private message
audiodef
Watchman
Watchman


Joined: 06 Jul 2005
Posts: 6313
Location: /usr/lib64/lv2

PostPosted: Wed Oct 21, 2009 12:52 am    Post subject: Reply with quote

venom2099 wrote:
Count me as a satisfied customer!


Hell, yes. Pappy and his seeds are da bomb! 8)
_________________
Gentoo Studio: A Gentoo-based, professional digital audio workstation OS.
Back to top
View user's profile Send private message
pappy_mcfae
Watchman
Watchman


Joined: 27 Dec 2007
Posts: 5997
Location: Pomona, California.

PostPosted: Wed Oct 21, 2009 5:38 am    Post subject: Reply with quote

OK, I have the tuxonice .config done. I'm going to look at the other kernel here in a sec.

You weren't that far off. I corrected a few errors. But other than that, you did a good setup of it.

Click here for your new .config.

Blessed be!
Pappy
_________________
This space left intentionally blank, except for these ASCII symbols.
Back to top
View user's profile Send private message
pappy_mcfae
Watchman
Watchman


Joined: 27 Dec 2007
Posts: 5997
Location: Pomona, California.

PostPosted: Wed Oct 21, 2009 5:49 am    Post subject: Reply with quote

While I am one to do things for academic reasons, I'll forgo it in this case. Since you have that system working the way you want it to work, I'd leave it.

As to what apache didn't like, I can't really tell. The only guess I can offer is an incorrect net card, or the fact that the b44 driver works best as a module, since it also requires ssb. Since ssb works best with the b43 wireless driver, it stands to reason that the ssb will work better as a module with the b44 driver. I have no way of checking that. It's just an assumption.

Thanks for the compliments, too. You are definitely a good friend to me and my cause.

Blessed be!
Pappy
_________________
This space left intentionally blank, except for these ASCII symbols.
Back to top
View user's profile Send private message
pappy_mcfae
Watchman
Watchman


Joined: 27 Dec 2007
Posts: 5997
Location: Pomona, California.

PostPosted: Wed Oct 21, 2009 5:59 am    Post subject: Reply with quote

venom2099 wrote:
Just wanted to say thanks. Been hammering for 3 days now and no crashes. Previously it was 6 hours / crash. Count me as a satisfied customer!


I am really glad to hear that. I just love satisfied customers. :)

BB!
P
_________________
This space left intentionally blank, except for these ASCII symbols.
Back to top
View user's profile Send private message
d2_racing
Bodhisattva
Bodhisattva


Joined: 25 Apr 2005
Posts: 13047
Location: Ste-Foy,Canada

PostPosted: Wed Oct 21, 2009 11:50 am    Post subject: Reply with quote

Yeah, Pappy you are doing a great job.

The next thing that you should do would be to document what you tweak and why do you tweak it :P

You know Pappy, documentation is very important..... you know what I mean
Back to top
View user's profile Send private message
audiodef
Watchman
Watchman


Joined: 06 Jul 2005
Posts: 6313
Location: /usr/lib64/lv2

PostPosted: Wed Oct 21, 2009 1:19 pm    Post subject: Reply with quote

d2_racing wrote:

The next thing that you should do would be to document what you tweak and why do you tweak it :P


And maybe even submit it to the Gentoo documentation team and ask if they'd consider including it somewhere.
_________________
Gentoo Studio: A Gentoo-based, professional digital audio workstation OS.
Back to top
View user's profile Send private message
audiodef
Watchman
Watchman


Joined: 06 Jul 2005
Posts: 6313
Location: /usr/lib64/lv2

PostPosted: Wed Oct 21, 2009 2:17 pm    Post subject: Reply with quote

Thanks! Works well now. 8)

What did I miss in my config?

pappy_mcfae wrote:
OK, I have the tuxonice .config done. I'm going to look at the other kernel here in a sec.

You weren't that far off. I corrected a few errors. But other than that, you did a good setup of it.

Click here for your new .config.

Blessed be!
Pappy

_________________
Gentoo Studio: A Gentoo-based, professional digital audio workstation OS.
Back to top
View user's profile Send private message
vostok4
n00b
n00b


Joined: 21 Oct 2009
Posts: 1

PostPosted: Wed Oct 21, 2009 6:24 pm    Post subject: Reply with quote

Thank you very much for the seed pappy! Configured and running perfectly on my machine.

I do have a quick question, what would you change in the seed to make it more server-centric, and on another note do you provide a seed that is optimized for being a Xen host?

Thanks!
Matt
Back to top
View user's profile Send private message
pappy_mcfae
Watchman
Watchman


Joined: 27 Dec 2007
Posts: 5997
Location: Pomona, California.

PostPosted: Wed Oct 21, 2009 7:23 pm    Post subject: Reply with quote

My net server is running on a seed. As a matter of fact, that one is running on perhaps the most stripped down seed I've ever set up. As far as I know, it's been running pretty well since I set it up on the net. The only suggestion I'd make is to turn off preemption and see how that works. I think you'll find that your server works better with it.

Also, depending on your "paranoia factor" ie how worried you are some Skript Kiddie will come along and hack you, adjust your security settings accordingly. I have personally found the best way to keep the SK's at bay is to hide the ssh port.

Even so, I still have security settings and software ramped up a bit. I'm not set up as an impenetrable castle, but then again, I'm not sitting the machine in a grass hut in the middle of the village, waiting for the torches to arrive.

Unless you are running something absolutely mission critical, I'd advise to stay away from SELinux settings. Of the last few kernel exploits, all have been more severe and damaging to those running SELinux than to those using less paranoid security settings. Who'd have thunk?

Xen setups? I am not sure. I know the sources exist, but I don't know their purpose. All I know is emerging Xen sources emerges other things to go with it.

Blessed be!
Pappy

Blessed be!
Pappy
_________________
This space left intentionally blank, except for these ASCII symbols.
Back to top
View user's profile Send private message
Moriah
Advocate
Advocate


Joined: 27 Mar 2004
Posts: 2117
Location: Kentucky

PostPosted: Wed Oct 21, 2009 7:46 pm    Post subject: Reply with quote

Pappy:

Probably the easiest improvement you can make to your security setup is to have a firewall box that is a separate dedicated machine. An old PC, even a 1 GHz job or even less than that, is quite capable of acting as a gateway firewall running iptables for a network connected by cable or DSL. The network connection acts as a bandwidth trottle to protect you from flood type attacks, and it lets a tiny machine serve as firewall quite well. The main reason to prefer a faster box is for applying updates.

If you are *REALLY* paranoid (like me! :) ) you can set up another machine to be a NIDS, but use a faster machine for that. The box you are helping me with right now is destined to be my new NIDS. 8)
_________________
The MyWord KJV Bible tool is at http://www.elilabs.com/~myword

Foghorn Leghorn is a Warner Bros. cartoon character.
Back to top
View user's profile Send private message
NeddySeagoon
Administrator
Administrator


Joined: 05 Jul 2003
Posts: 43072
Location: 56N 3W

PostPosted: Wed Oct 21, 2009 8:36 pm    Post subject: Reply with quote

pappy_mcfae,

I run a firewall box with Smoothwall on. Its only a 500MHz k6-2 but thats plenty.
My server box is a SPARC U10, that fixes script kiddies shell code.
I also enforce strong passwords on the ssh server and root logins are not permitted.
Other boxes on my network only accept key based logins.

Its too much grief moving ssh from port 22 but since I don't run a https:// server, ssh listens on port 443 too.
That allows connections from behind firewalls that block port 22.
_________________
Regards,

NeddySeagoon

Computer users fall into two groups:-
those that do backups
those that have never had a hard drive fail.
Back to top
View user's profile Send private message
pappy_mcfae
Watchman
Watchman


Joined: 27 Dec 2007
Posts: 5997
Location: Pomona, California.

PostPosted: Wed Oct 21, 2009 8:44 pm    Post subject: Reply with quote

Interesting. I'm just learning all the nuances of setting up a secure server. I've thought about setting up a separate machine as a serious firewall, but I want to balance my fear of hackers with my desire to have a simpler setup that is easy to maintain.

Since at the moment, I'm not really worried about using https, I'll keep things as is. If that changes, then I'll change accordingly.

I must say, with a hidden ssh port, I have cut off a lot of SK's who did their best to get me with ssh at 22. They just don't have enough brains to go beyond their limited scope of stupidity. There are a lot of ports. Moving ssh to anyone of them is a sure way to stop the SK's in their tracks.

BB!
P
_________________
This space left intentionally blank, except for these ASCII symbols.
Back to top
View user's profile Send private message
NeddySeagoon
Administrator
Administrator


Joined: 05 Jul 2003
Posts: 43072
Location: 56N 3W

PostPosted: Wed Oct 21, 2009 9:18 pm    Post subject: Reply with quote

pappy_mcfae,

Security by obscurity is really no security at all.
It does save space in your logs though.
_________________
Regards,

NeddySeagoon

Computer users fall into two groups:-
those that do backups
those that have never had a hard drive fail.
Back to top
View user's profile Send private message
Moriah
Advocate
Advocate


Joined: 27 Mar 2004
Posts: 2117
Location: Kentucky

PostPosted: Wed Oct 21, 2009 9:35 pm    Post subject: Reply with quote

Pappy: Nothing is harder to maintain than a cracked system. :x

Neddy: Putting sshd on port 443 doesn't help if the client is behind a proxy. :?
_________________
The MyWord KJV Bible tool is at http://www.elilabs.com/~myword

Foghorn Leghorn is a Warner Bros. cartoon character.
Back to top
View user's profile Send private message
NeddySeagoon
Administrator
Administrator


Joined: 05 Jul 2003
Posts: 43072
Location: 56N 3W

PostPosted: Wed Oct 21, 2009 9:41 pm    Post subject: Reply with quote

Moriah,

Thats true but it worked for me when I needed it :)
_________________
Regards,

NeddySeagoon

Computer users fall into two groups:-
those that do backups
those that have never had a hard drive fail.
Back to top
View user's profile Send private message
audiodef
Watchman
Watchman


Joined: 06 Jul 2005
Posts: 6313
Location: /usr/lib64/lv2

PostPosted: Thu Oct 22, 2009 2:42 am    Post subject: Reply with quote

pappy_mcfae wrote:
They just don't have enough brains to go beyond their limited scope of stupidity.


++! Not a big fan of stupidity, except in these cases. :P
_________________
Gentoo Studio: A Gentoo-based, professional digital audio workstation OS.
Back to top
View user's profile Send private message
pappy_mcfae
Watchman
Watchman


Joined: 27 Dec 2007
Posts: 5997
Location: Pomona, California.

PostPosted: Thu Oct 22, 2009 7:35 am    Post subject: Reply with quote

NeddySeagoon and Moriah,

Considering I have a full back up of the server, as well as a backup of the entire page on three different computers here, and yours, I'm not even close to worried that someone's going to bump the server off for any length of time. As with all other things Gentoo, I'm using this to gain experience.

I'd rather learn now when all I have out there are some text files that I have backed up on a dozen different DVD's, than wait until I have truly mission critical stuff, and someone comes along and blows it into the middle of last year. Somehow, the loss of approximately fifteen megs of text files seems a small price to pay for real world experience.

Besides, it's not like I'm running without protection. I have fail2ban and iptables set up. I've also got my kernel tightened up security-wise on that system as well. I'd be a fool not to. That machine is in the DMZ of my wireless AP.

I may be crazy, but I'm not completely out of my mind.

Blessed be!
Pappy
_________________
This space left intentionally blank, except for these ASCII symbols.
Back to top
View user's profile Send private message
Display posts from previous:   
This topic is locked: you cannot edit posts or make replies.    Gentoo Forums Forum Index Unsupported Software All times are GMT
Goto page Previous  1, 2, 3 ... 21, 22, 23 ... 25, 26, 27  Next
Page 22 of 27

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum