http://slashdot.org/article.pl?sid=03/11/03/1749259
Interesting. :-)
On Tuesday 04 November 2003 11:24, Vinayakam Murugan wrote:
Next LUG meet: 9 Nov 2003 around 4 pm - VJTI
Wonderful. The RH blokes have done a great job of creating and handing over a market to the smalltime pc cloners. Buy one licence, get the latest & greatest patch from RH, burn cd, go to your customer and copy. HA HA. In any case it was always quite obvious that unless you have (at the least) fast connectivity from slow joes machine, manual labour was the only way to maintain. Further dont see why they should be providing bandwidth on their servers for all the freeloaders.
And you always have that panacea for all known maladies - Debian.
Any insights on the Fedora project?
Vinayakam Murugan wrote:
Any insights on the Fedora project?
Have you tried their project website? It is located at: http://fedora.redhat.com
This month's issue of LinuxForYou carries some information on it too.
Hi there, Just bought an assembled machine to use it as Sever...foll is the config...
AMD Athalon 2400+ 512 DDR RAM 40 GB Seagate Baracuda HDD (2 - 1 for OS and other for Backup) Asus 8X Motherboard with 2 inbuilt LAN cards 17" LG monitor 52x Iomega External CD-Writer One FDD Sony
Now this machine is gonna be server for our local intranet.. We will be running foll stuff for local intranet :
Web Server Mail server File Server
And Squid for user access and firewall.
We have approx 20 pcs on the network. The server will run on RedHat Linux 9
So my questions are...
1. Is this config enough for the server ?
2. Right now current server is running on Win2k machine (Internal IP) and it doesn't have any control over the network...its just used as the gateway.... all the port control is on router (Public IP) so whenever we need to block some port then we need to call ISP and they do it...
But now I don't want like that...i want to use the server as router so that I can control everything...
Is it possible to do it ?
3. I want something like login system to access the net for everyone.. what script/ authentication system shall I use any idea ?
I hope I have explained the things clearly..
Regards, Deep
ur config is perfectly alrite..
and u can definitely make ur server work as a router.. and define firewall for ur server
On Tue, 2003-11-04 at 22:36, Dee at TechBeta wrote:
Next LUG meet: 9 Nov 2003 around 4 pm - VJTI
Hi there, Just bought an assembled machine to use it as Sever...foll is the config...
AMD Athalon 2400+ 512 DDR RAM 40 GB Seagate Baracuda HDD (2 - 1 for OS and other for Backup) Asus 8X Motherboard with 2 inbuilt LAN cards 17" LG monitor 52x Iomega External CD-Writer One FDD Sony
Now this machine is gonna be server for our local intranet.. We will be running foll stuff for local intranet :
Web Server Mail server File Server
And Squid for user access and firewall.
We have approx 20 pcs on the network. The server will run on RedHat Linux 9
So my questions are...
Is this config enough for the server ?
Right now current server is running on Win2k machine (Internal IP) and it
doesn't have any control over the network...its just used as the gateway.... all the port control is on router (Public IP) so whenever we need to block some port then we need to call ISP and they do it...
But now I don't want like that...i want to use the server as router so that I can control everything...
Is it possible to do it ?
- I want something like login system to access the net for everyone.. what
script/ authentication system shall I use any idea ?
I hope I have explained the things clearly..
Regards, Deep
awesome today i m gonna setup the stuff and again will mail u guys... i know ur gonna be there to solve my probs ;)
Deep milo wrote:
Next LUG meet: 9 Nov 2003 around 4 pm - VJTI
ur config is perfectly alrite..
and u can definitely make ur server work as a router.. and define firewall for ur server
On Tue, 2003-11-04 at 22:36, Dee at TechBeta wrote:
Next LUG meet: 9 Nov 2003 around 4 pm - VJTI
Hi there, Just bought an assembled machine to use it as Sever...foll is the config...
AMD Athalon 2400+ 512 DDR RAM 40 GB Seagate Baracuda HDD (2 - 1 for OS and other for Backup) Asus 8X Motherboard with 2 inbuilt LAN cards 17" LG monitor 52x Iomega External CD-Writer One FDD Sony
Now this machine is gonna be server for our local intranet.. We will be running foll stuff for local intranet :
Web Server Mail server File Server
And Squid for user access and firewall.
We have approx 20 pcs on the network. The server will run on RedHat Linux 9
So my questions are...
Is this config enough for the server ?
Right now current server is running on Win2k machine (Internal IP) and it
doesn't have any control over the network...its just used as the gateway.... all the port control is on router (Public IP) so whenever we need to block some port then we need to call ISP and they do it...
But now I don't want like that...i want to use the server as router so that I can control everything...
Is it possible to do it ?
- I want something like login system to access the net for everyone.. what
script/ authentication system shall I use any idea ?
I hope I have explained the things clearly..
Regards, Deep
On Wed, Nov 05, 2003 at 10:21:08AM +0530, Deep Ganatra wrote:
awesome today i m gonna setup the stuff and again will mail u guys... i know ur gonna be there to solve my probs ;)
Yes, the list will be there to help you out, alright! But it would be nice if you trimmed out all the earlier messages when replying. A two line reply on top of a gazillion quoted lines is something that we like to discourage on this group.
Sameer.
On 04/11/03 22:36 +0530, Dee at TechBeta wrote: <snip hardware config>
Web Server Mail server File Server
And Squid for user access and firewall.
Major overkill. Just make sure that the NICs have an Intel chipset and a large buffer (something which the rtl8139 based cards miss).
But now I don't want like that...i want to use the server as router so that I can control everything... Is it possible to do it ?
Yes. http://iptables-tutorial.frozentux.net/
- I want something like login system to access the net for everyone.. what
script/ authentication system shall I use any idea ?
You can use authentication for squid for web surfing, but that will not block application which do not go through squid. Personally, I would setup NIS/LDAP as centralized authentication and push firewall rules based on login and logout events for the LDAP server.
Devdas Bhagat
Devdas Bhagat wrote:
Major overkill. Just make sure that the NICs have an Intel chipset and a large buffer (something which the rtl8139 based cards miss).
My ethernet cards will be D-Link DGE-500T is 100/1000 mbps 32 bit card Nway Gigabit LAN adapter. will have 3 cards :) btw here is the official page... http://d-link.com/products/?pid=124
You can use authentication for squid for web surfing, but that will not block application which do not go through squid. Personally, I would setup NIS/LDAP as centralized authentication and push firewall rules based on login and logout events for the LDAP server.
Basically i m gonna install squid on the main server and i dont want anyone to enter proxy address in the IE options or in any brower to surf...so is it possible to use squid without entering proxy address in all the machines ?
regards Deep
On Thu, Nov 06, 2003 at 04:35:21PM +0530, Deep Ganatra wrote:
You can use authentication for squid for web surfing, but that will not block application which do not go through squid. Personally, I would setup NIS/LDAP as centralized authentication and push firewall rules based on login and logout events for the LDAP server.
Basically i m gonna install squid on the main server and i dont want anyone to enter proxy address in the IE options or in any brower to surf...so is it possible to use squid without entering proxy address in all the machines ?
Why do you want to do that? I don't think there is any nice clean way to allow users to continue browsing without being aware of the proxy. Unless you have a really impelling policy/technical reason to do this, don't worry about setting up some hack to manage it! Centralised LDAP-based authentication and the combination of the right tools at the right place will go a long way in keeping headaches away over the years!
Sameer.
Sameer D. Sahasrabuddhe wrote:
Basically i m gonna install squid on the main server and i dont want anyone to enter proxy address in the IE options or in any brower to surf...so is it possible to use squid without entering proxy address in all the machines ?
Why do you want to do that? I don't think there is any nice clean way to allow users to continue browsing without being aware of the proxy. Unless you have a really impelling policy/technical reason to do this, don't worry about setting up some hack to manage it! Centralised LDAP-based authentication and the combination of the right tools at the right place will go a long way in keeping headaches away over the years!
Sameer.
i have heard about Transparent proxy...what is it ? is it something related to what i want... from the info from google i found that i can do using tranparent proxy but since u guys are pretty experienced so its better to ask u people first...
so is it good or LDAP is better... regards Deep
Deep Ganatra dee@techbeta.com said:
Sameer D. Sahasrabuddhe wrote:
Why do you want to do that? I don't think there is any nice clean way to allow users to continue browsing without being aware of the proxy. Unless you have a really impelling policy/technical reason to do this,
i have heard about Transparent proxy...what is it ? is it something related to what i want... from the info from google i found that i can do using tranparent proxy but since u guys are pretty experienced so its better to ask u people first...
I am not sure I get what exactly you are trying to do. But if you want to do transparent web-proxying, atleast read the howto... http://en.tldp.org/HOWTO/TransparentProxy.html
Squid+Squidguard will make a nice combo.
On Tuesday 04 November 2003 13:49, Vinayakam Murugan wrote:
Next LUG meet: 9 Nov 2003 around 4 pm - VJTI
Any insights on the Fedora project?
Harvesting open source. Everbody does the hard work and RH then repackages the good stuff and sells to the enterprise.
OFFCOURSE they are providing you some sort of meeting ground and maybe some crummy servers (leftovers from the enterprise dept.?) which they are likely to shut when it starts hitting their bottom line.
Debian also provides you everything that RHE does and doesnt charge you a cent. Further policy is not bent to pay somebody fat salaries nor tailored to fit bottom lines. So why bother with RH?
Well somone is needed to fight conventional thinking so why not RH? RH should just concentrate on marketing GNU/Linux AND lobbying with governments to force adoption of open standards. It will give them more than a fighting chance against M$.
And an earlier discussion which saw this coming.
http://mm.ilug-bom.org.in/pipermail/linuxers/Week-of-Mon-20030609/010719.htm... http://mm.ilug-bom.org.in/pipermail/linuxers/Week-of-Mon-20030609/010724.htm...
J. T. D'souza wrote:
Harvesting open source. Everbody does the hard work and RH then repackages the good stuff and sells to the enterprise.
Aha! That's their shiny new strategy? I'm impressed. Oh wait, what were they doing so far then?
OFFCOURSE they are providing you some sort of meeting ground and maybe some crummy servers (leftovers from the enterprise dept.?) which they are likely to shut when it starts hitting their bottom line.
:O Sounds like insider info. Is it true?
Debian also provides you everything that RHE does and doesnt charge you a cent. Further policy is not bent to pay somebody fat salaries nor tailored to fit bottom lines. So why bother with RH?
Because it "works out of the box." I prefer deviating from a default configuration that just works and customizing to my heart's content rather than going the other way round. Yeah, tell me I'm not adventurous enough.
RedHat has contributed some good things and sometimes they were flamed too but I like them for precisely that - anaconda, gcc 2.96, bluecurve, metacity and so on. They get new stuff out before many others.
Fedora is "sponsored by RedHat" and is a "proving ground for new technology." What part of that sounds problematic?
On Wednesday 05 November 2003 05:03, Tahir Hashmi wrote:
Next LUG meet: 9 Nov 2003 around 4 pm - VJTI
J. T. D'souza wrote:
Harvesting open source. Everbody does the hard work and RH then repackages the good stuff and sells to the enterprise.
Aha! That's their shiny new strategy? I'm impressed. Oh wait, what were they doing so far then?
pretending that they were doing something higher.
OFFCOURSE they are providing you some sort of meeting ground and maybe some crummy servers (leftovers from the enterprise dept.?) which they are likely to shut when it starts hitting their bottom line.
:O Sounds like insider info. Is it true?
Pure conjecture
:
Debian also provides you everything that RHE does and doesnt charge you a cent. Further policy is not bent to pay somebody fat salaries nor tailored to fit bottom lines. So why bother with RH?
Because it "works out of the box." I prefer deviating from a default configuration that just works and customizing to my heart's content rather than going the other way round. Yeah, tell me I'm not adventurous enough.
Debian works out of the box too. So does Knoppix, Slackware and a host of other distros.
RedHat has contributed some good things and sometimes they were flamed too but I like them for precisely that - anaconda, gcc 2.96, bluecurve, metacity and so on. They get new stuff out before many others.
Fedora is "sponsored by RedHat" and is a "proving ground for new technology." What part of that sounds problematic?
What do they suppose that the rest of the libre software world is doing?.
My point is that a commercial distro wont be around to support when you need them. So SMEs and individuals dont touch a commercial distro with a barge pole. Instead use Debian and contribute your money to Debian or FSF India.
On Wed, 05 Nov 2003, Tahir Hashmi spake thusly:
Debian also provides you everything that RHE does and doesnt charge you a cent. Further policy is not bent to pay somebody fat salaries nor tailored to fit bottom lines. So why bother with RH?
Because it "works out of the box." I prefer deviating from a default configuration that just works and customizing to my heart's content rather than going the other way round. Yeah, tell me I'm not adventurous enough.
Debian works our of the box. Debian stable *is* stable.
RedHat has contributed some good things and sometimes they were flamed too but I like them for precisely that - anaconda, gcc 2.96, bluecurve, metacity and so on. They get new stuff out before many others.
If you want new stuff you should try Debian *unstable* -- the newest you can get. The categories give you choice. RH, maybe because they get new stuff out earlier, is not as stable as Debian *stable*
What about antivirus solution along wih Debian I mean do it complie with any binary component. Like there are few binary component Antivirus Solution for RH. Do Debian also has the same.
With Regards
Chetan
q u a s i quasiabhi@softhome.net wrote: Next LUG meet: 9 Nov 2003 around 4 pm - VJTI -------------------------------------------- On Wed, 05 Nov 2003, Tahir Hashmi spake thusly:
Debian also provides you everything that RHE does and doesnt charge you a cent. Further policy is not bent to pay somebody fat salaries nor tailored to fit bottom lines. So why bother with RH?
Because it "works out of the box." I prefer deviating from a default configuration that just works and customizing to my heart's content rather than going the other way round. Yeah, tell me I'm not adventurous enough.
Debian works our of the box. Debian stable *is* stable.
RedHat has contributed some good things and sometimes they were flamed too but I like them for precisely that - anaconda, gcc 2.96, bluecurve, metacity and so on. They get new stuff out before many others.
If you want new stuff you should try Debian *unstable* -- the newest you can get. The categories give you choice. RH, maybe because they get new stuff out earlier, is not as stable as Debian *stable*
-
Chetan Jain -
Clinton Goveas -
Dee@TechBeta -
Deep Ganatra -
Devdas Bhagat -
J. T. D'souza -
milo -
q u a s i -
Sameer D. Sahasrabuddhe -
Sthitaprajna -
Tahir Hashmi -
Vinayakam Murugan