development blog for the wicked stuff we encounter

We've installed a NAT+VPN to get rid of Microsoft's one, and implemented the same functionality with PoPToP version 1.3.0. The necessary settings are the following: 1) try if you have the necessary kernel modules (in Ubuntu 6.10, all is included. if you don't have them, you're doomed - you need to re-compile your kernel) modprobe ppp_mppe modprobe ip_gre if the reply is the well known unix's golden silence, you need to add the modules to /etc/modules: ppp_mppe ip_gre to have it loaded, and reboot. 2) Install pptpd apt-get install pptpd 3) in /etc/pptpd.conf, have the following: option /etc/ppp/options.pptpd speed 115200 localip 10.1.1.10 #our eth0 remoteip 10.1.1.228-238 #our ip stack listen xx.xx.xx.250 #our eth1 4) change /etc/ppp/options to the following: lock noauth refuse-eap refuse-chap refuse-mschap nobsdcomp nodeflate require-mppe-128 5) in /etc/ppp/pap-secrets, don't forget to add the blank user and password * * 4) use the following settings in /etc/ppp/options.pptp: lock name pptpd proxyarp asyncmap 0 -chap -mschap +mschap-v2 require-mppe lcp-echo-failure 30 lcp-echo-interval 5 ipcp-accept-local ipcp-accept-remote This setup will work with any Windows 2000/XP client, and all pptp configs on Linuxes. (with regards to http://poptop.sourceforge.net/dox/radius_mysql.html) Enjoy ;)

I just wanted to have a nice GUI on a test environment, so without getting 200 megabytes for xubuntu-desktop or 524 megabytes for ubuntu-desktop, I simply installed the following: apt-get install xserver-xorg apt-get install xfce4 with these packages - only about 40 megabytes to download - you'll have a clean and working desktop. I found some errors, possibly because I previously installed X.org, that I needed to ln /usr/X11/Xorg -> /etc/X11/X first, then sudo Xorg -configure to let it happen:) NOTE: *make sure to have a mouse and a keyboard attached* or this setup will be broken. Of course, you can enter Option "AllowMouseOpenFail" "1" into your xorg.conf > Section "ServerLayout" If you too configure it via ssh and start X by error, and see the .XAthority file locked error, type: xauth -b quit

I'm using OpenSSH 3.x on all servers both Windows and Linux / Unix and Macs as well to remotely access files and services. With OpenSSH for Windows I faced with the following error: C:unixConsole2>ssh servername.hu -l balint @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@ @ WARNING: UNPROTECTED PRIVATE KEY FILE! @ @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@ Permissions 0644 for '/cygdrive/x/.ssh/id_rsa' are too open. It is recommended that your private key files are NOT accessible by others. This private key will be ignored. bad permissions: ignore key: /cygdrive/x/.ssh/id_rsa Enter passphrase for key '/cygdrive/x/.ssh/id_rsa': This is of course not the way it should be - it should normaly authenticate with the keyfiles; however on Windows we don't have chmod to change the permissions. It turned out, that NT rights are not successfuly loaded with Cygwin, if your files are on a network drive - and X: is a remote server for me. So - instead of running unnecessary circles: we can change the CYGDRIVE and the CYGPATH variables (even temporarily) to check our .ssh folder on a local path: set CYGDRIVE=c: set CYGPATH=unix copy x:.shh c:unix.shh And voila: C:unixConsole2>ssh servername.hu -l balint Last login: Mon Mar 19 17:11:58 2007 from xx.xx.xx.140 [balint@servername.hu ~]$