From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Date: Fri, 19 May 2006 10:16:15 +0400 From: "Konstantin A. Lepikhov" To: ALT Linux Sisyphus discussion list Message-ID: <20060519061615.GA8373@lks.home> Mail-Followup-To: ALT Linux Sisyphus discussion list References: <20060518211902.GA23446@lks.home> <20060519090822.616866f9@naf177.naf.net.ru> Mime-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="RnlQjJ0d97Da+TV1" Content-Disposition: inline In-Reply-To: <20060519090822.616866f9@naf177.naf.net.ru> X-Operation-System: ALT Linux Sisyphus (20060401) 2.6.16-wks26-up-alt5 User-Agent: Mutt/1.5.11 X-AV-Checked: ClamAV using ClamSMTP Subject: Re: [sisyphus] =?koi8-r?b?8sHCz9TBINMgb3BlbnZwbiDJ2iDTydrJxsE=?= X-BeenThere: sisyphus@lists.altlinux.org X-Mailman-Version: 2.1.7 Precedence: list Reply-To: ALT Linux Sisyphus discussion list List-Id: ALT Linux Sisyphus discussion list List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 19 May 2006 06:16:26 -0000 Archived-At: List-Archive: List-Post: --RnlQjJ0d97Da+TV1 Content-Type: text/plain; charset=koi8-r Content-Disposition: inline Content-Transfer-Encoding: quoted-printable Hi Nikolay! Friday 19, at 09:08:22 AM you wrote: > On Fri, 19 May 2006 01:19:02 +0400 > Konstantin A. Lepikhov wrote: >=20 > > =EB =D3=C2=CF=D2=CB=C5 =C9=CD=C5=C5=D4=D3=D1 =D2=D1=C4 =D7=CF=D0=D2=CF= =D3=CF=D7: > > 1) =DA=C1=DE=C5=CD =CE=D5=D6=CE=C1 =D0=C1=D5=DA=C1 1=D3 =D0=CF=D3=CC=C5= =DA=C1=C7=D2=D5=DA=CB=C9 =CD=CF=C4=D5=CC=D1 tun? =EE=C1=D0=D2=C9=CD=C5=D2,= =D5 =CD=C5=CE=D1 =C5=D3=D4=D8 > > =C9=DA-=DA=C1 =DC=D4=CF=C7=CF =D0=D2=CF=C2=CC=C5=CD=C1 - =D4.=CB. =D3= =C9=D3=D4=C5=CD=C1 =D3 openvpn =D1=D7=CC=D1=C5=D4=D3=D1 host'=CF=CD =C4=CC= =D1 > > vserver'=CF=D7, =D4=CF, =CE=C1=D0=D2=C9=CD=C5=D2, sshd =D4=C1=CD =D3=CC= =D5=DB=C1=C5=D4 =D4=CF=CC=D8=CB=CF =CE=C1 =D4=C5=C8 =C9=CE=D4=C5=D2=C6=C5= =CA=D3=C1=C8, > > =CB=CF=D4=CF=D2=D9=C5 =D0=C5=D2=C5=DE=C9=D3=CC=C5=CE=D9 =C9 =D3=D5=DD= =C5=D3=D4=D7=D5=C0=D4. =EE=CF =C9=DA-=DA=C1 =DC=D4=CF=CA =D0=C1=D5=DA=D9, = =CF=CE =D5=D3=D0=C5=D7=C1=C5=D4 > > =DA=C1=D0=D5=D3=D4=C9=D4=D8=D3=D1 =D2=C1=CE=D8=DB=C5, =DE=C5=CD openvpn= =D3=CB=CF=CE=C6=C9=C7=D5=D2=C9=D2=D5=C5=D4 =C9=CE=D4=C5=D2=C6=C5=CA=D3 =C9= =D0=CF=D4=CF=CD =DA=C1=CA=D4=C9 =D0=CF > > ssh =CE=C1 vpn =D3=D4=C1=CE=CF=D7=C9=D4=D3=D1 =CE=C5=D7=CF=DA=CD=CF=D6= =CE=CF =C2=C5=DA =D0=C5=D2=C5=DA=C1=D0=D5=D3=CB=C1 sshd.=20 >=20 > =E8=CD... =E4=C1=D7=CE=CF =C2=D9=CC=CF, =C7=CF=C4=C1 =D0=CF=CC=D4=CF=D2= =C1 =CE=C1=DA=C1=C4. =F0=CF=CE=C1=C4=CF=C2=C9=CC=CF=D3=D8 =C4=CC=D1 =D2=C1= =C2=CF=D4=D9 =CE=C1 > =C4=CF=D3=D4=C1=D4=CF=DE=CE=CF =D3=CC=C1=C2=CF=CA =CD=C1=DB=C9=CE=CB=C5, = =D4=C9=D0a AMD K6-300. =FE=D4=CF =CB=CF=CE=CB=D2=C5=D4=CE=CF =C2=D9=CC=CF -= =D3=C5=CA=DE=C1=D3 > =CE=C5 =D3=CB=C1=D6=D5, =C9 =CB =CD=C1=DB=C9=CE=C5 =D7 =C4=C1=CE=CE=D9=CA= =CD=CF=CD=C5=CE=D4 =C4=CF=D3=D4=D5=D0=C1, =D5=D7=D9, =CE=C5=D4. =F0=CF=D0= =D2=CF=C2=D5=C0 =D5=C2=D2=C1=D4=D8 > =C9 =D0=CF=D3=CD=CF=D4=D2=C5=D4=D8, =DE=D4=CF =C2=D5=C4=C5=D4. >=20 > =F3 =C4=D2=D5=C7=CF=CA =D3=D4=CF=D2=CF=CE=D9: /etc/openvpn/openvpn-startu= p =D7=D9=D0=CF=CC=CE=D1=C5=D4=D3=D1 =C9=DA > =D3=D4=C1=D2=D4=CF=D7=CF=C7=CF =D3=CB=D2=C9=D0=D4=C1. =F5 =CE=C1=D3 =D7= =D2=CF=C4=C5 =C2=D9 =D0=C1=D2=C1=CC=CC=C5=CC=D8=CE=CF=C7=CF =DA=C1=D0=D5=D3= =CB=C1 =D3=CB=D2=C9=D0=D4=CF=D7 =C9=DA > /etc/init.d =D0=CF=CB=C1 =CE=C5 =CE=C1=C2=CC=C0=C4=C1=C5=D4=D3=D1, =C9 ss= hd =D7 =CC=C0=C2=CF=CD =D3=CC=D5=DE=C1=C5 =C4=CF=CC=D6=C5=CE > =DA=C1=D0=D5=D3=CB=C1=D4=D8=D3=D1 _=D0=CF=D3=CC=C5_ =DA=C1=D7=C5=D2=DB=C5= =CE=C9=D1 =D2=C1=C2=CF=D4=D9 /etc/init.d/openvpn. =E1 modprobe > =C4=CF=CC=D6=C5=CE =CF=D4=D2=C1=C2=CF=D4=C1=D4=D8 _=C4=CF_ =DA=C1=D0=D5= =D3=CB=C1 =D3=C1=CD=CF=C7=CF openvpn =C9=DA =D3=D4=C1=D2=D4=CF=D7=CF=C7=CF = =D3=CB=D2=C9=D0=D4=C1. > =F4=CF=DE=CE=CF =CC=C9 =C9=DA-=DA=C1 =DC=D4=CF=CA =D0=C1=D5=DA=D9 =D0=D2= =CF=C2=CC=C5=CD=C1?=20 =D7=CF=D4 =DE=D4=CF =D0=CF=CC=D5=DE=C1=C5=D4=D3=D1 =D5 =CD=C5=CE=D1 =D0=D2= =C9 =DA=C1=C7=D2=D5=DA=CB=C5: May 12 18:03:47 disaster openvpn: Adjusting environment for openvpn: succeeded May 12 18:03:47 disaster kernel: tun: Universal TUN/TAP device driver, 1.6 May 12 18:03:47 disaster kernel: tun: (C) 1999-2004 Max Krasnyansky May 12 18:03:49 disaster openvpn[3972]: OpenVPN 2.0.6 x86_64-alt-linux-gnu [SSL] [LZO] [EPOLL] built on Apr 10 2006 May 12 18:03:49 disaster openvpn[3972]: IMPORTANT: OpenVPN's default port number is now 1194, based on an official po rt number assignment by IANA. OpenVPN 2.0-beta16 and earlier used 5000 as the default port. May 12 18:03:49 disaster openvpn[3972]: WARNING: No server certificate verification method has been enabled. See htt p://openvpn.net/howto.html#mitm for more info. May 12 18:03:49 disaster openvpn[3972]: LZO compression initialized May 12 18:03:49 disaster openvpn[3973]: NOTE: chroot will be delayed because of --client, --pull, or --up-delay May 12 18:03:49 disaster openvpn[3973]: NOTE: UID/GID downgrade will be delayed because of --client, --pull, or --up- delay May 12 18:03:49 disaster openvpn[3973]: UDPv4 link local: [undef] May 12 18:03:49 disaster openvpn[3973]: UDPv4 link remote: 195.18.33.162:1194 May 12 18:03:49 disaster openvpn: openvpn startup succeeded May 12 18:03:49 disaster sshd[4009]: Server listening on xxx.xxx.xxx.xxx po= rt 22. May 12 18:03:49 disaster sshd: sshd startup succeeded =2E.. May 12 18:04:01 disaster udevd-event[4444]: rename_net_if: error changing net interface name: Invalid argument <- =D7=CF=D4 =D4=D5=D4 =D5=D6=C5 =D3= =CF=DA=C4=C1=C5=D4=D3=D1 =C9=CE=D4=C5=D2=C6=C5=CA=D3 - =D4.=C5. =C9=CE=D4=C5=D2=C6=C5=CA=D3 =D3=CF=DA=C4=C1=C5=D4=D3=D1 =D4=CF= =CC=D8=CB=CF =DE=C5=D2=C5=DA =D0=CF=CC=D3=C5=CB=D5=CE=C4=D9, =C9 sshd =D5= =D6=C5 =D5=D3=D0=C5=D7=C1=C5=D4 =DA=C1=D0=D5=D3=D4=C9=D4=D8=D3=D1. =F7=D0=D2=CF=DE=C5=CD, =D7=CF=DA=CD=CF= =D6=CE=CF =C9 =CE=C5 =C9=DA-=DA=C1 =D0=C1=D5=DA=D9 =C4=C5=CC=CF - =CF=CE=CF= =D6=C5 =D1=D7=CE=CF =C7=CF=D7=CF=D2=C9=D4 "because of --client, --pull, or --up-delay" >=20 >=20 > =F7 =D0=D2=C9=CE=C3=C9=D0=C5, =C5=D3=CC=C9 =CF=DE=C5=CE=D8 =CD=C5=DB=C1= =C5=D4 - =CD=CF=D6=CE=CF =D7=D9=CB=C9=CE=D5=D4=D8. =ED=CF=D6=CE=CF =DA=C1= =C7=D2=D5=D6=C1=D4=D8 tun =C9 > =C9=DA /etc/modules, =C1 openvpn-startup =CF=D3=D4=C1=D7=C9=D4=D8 =D0=D5= =D3=D4=D9=CD. =ED=CF=D6=CE=CF =D7=CF=CF=C2=DD=C5 > =C5=C7=CF =D5=C4=C1=CC=C9=D4=D8. =E8=CF=D4=D1, =CE=C1 =CD=CF=CA =D7=DA=C7= =CC=D1=C4, =D7 =C4=C1=CE=CE=CF=CD =D3=CC=D5=DE=C1=C5 =D0=D2=CF=C2=CC=C5=CD= =D5 =CF=CE=CF =CE=C5 =D2=C5=DB=C9=D4. >=20 >=20 > =F1 =D0=CF=C4=CF=C2=CE=D5=C0 =D0=D2=CF=C2=CC=C5=CD=D5 =D2=C5=DB=C1=CC =CE= =C5=D3=CB=CF=CC=D8=CB=CF =D0=D2=D1=CD=CF=CC=C9=CE=C5=CA=CE=C5=CA:=20 > - =C9=D3=D0=CF=CC=D8=DA=CF=D7=C1=CC =C4=CC=D1 =DA=C1=D0=D5=D3=CB=C1 SSH = =CE=C5 v_sshd, =C1 =D3=D4=C1=CE=C4=C1=D2=D4=D9=CA sshd; > - =CE=C1=D0=D2=D1=CD=D5=C0 =D5=CB=C1=DA=D9=D7=C1=CC =C1=C4=D2=C5=D3=C1 IP= -=C9=CE=D4=C5=D2=C6=C5=CA=D3=CF=D7 =D7 sshd_config =DE=C5=D2=C5=DA > ListenAddress; =DA=C1=D0=D5=D3=CB=C1=D1 sshd =CE=C1 lo =C9 =D7=CE=D5=D4= =D2=C5=CE=CE=C5=CA =D3=C5=D4=CB=C5; > - =D0=C5=D2=C5=CE=C1=D0=D2=C1=D7=CC=D1=CC =D3=CF=C5=C4=C9=CE=C5=CE=C9=D1 = =D3 =CF=D3=D4=C1=CC=D8=CE=D9=C8 =C9=CE=D4=C5=D2=C6=C5=CA=D3=CF=D7 =CE=C1 12= 7.0.0.1 > =D3=D2=C5=C4=D3=D4=D7=C1=CD=C9 iptables.=20 =D4=C1=CB =D5 =CD=C5=CE=D1 =C9 =D3=C4=C5=CC=C1=CE=CF, =D4=CF=CC=D8=CB=CF = =D7 ListenAddress =CE=C1=D0=C9=D3=C1=CE=D9 =C1=C4=D2=C5=D3=C1 vpn =C9=CE=D4=C5=D2=C6=C5=CA=D3=CF=D7. >=20 > > =ED=CF=D6=CE=CF =CB=CF=CE=C5=DE=CE=CF > > =DA=C1=D0=C9=C8=C1=D4=D8 openvpn =D7 vserver, =CE=CF =CC=C5=CE=D8 =C9 = =CE=C5 =C8=CF=DE=C5=D4=D3=D1 =C4=C1=D7=C1=D4=D8 =C5=CA =D4=C1=CD =D3=CC=C9= =DB=CB=CF=CD > > =CB=D2=D5=D4=D9=C5 =D0=D2=C9=D7=C9=CC=C5=C7=C9=C9=20 >=20 > =E1 =CB=C1=CB=C9=C5 =D4=C1=CD =CD=CF=C7=D5=D4 =C2=D9=D4=D8 =D0=D2=C9=D7= =C9=CC=C5=C7=C9=C9 =D0=D2=C9=CE=C3=C9=D0=C9=C1=CC=D8=CE=CF =C2=CF=CC=D8=DB= =C9=C5 =D0=CF =D3=D2=C1=D7=CE=C5=CE=C9=C0 =D3 > =D7=D9=D0=CF=CC=CE=C5=CE=C9=C5=CD =CE=C1 =C8=CF=D3=D4-=D3=C9=D3=D4=C5=CD= =C5? =E8=CF=D4=D1, =CE=C1=D7=C5=D2=CE=CF=C5, =DC=D4=CF =C4=C5=CA=D3=D4=D7= =C9=D4=C5=CC=D8=CE=CF =CC=C9=DB=CE=C5=C5. [root@disaster ~]# cat /etc/vservers/crash/bcapabilities=20 NET_ADMIN NET_RAW =2E. =CE=C5=CB=CF=DB=C5=D2=CE=CF. > - =C9=DA =CB=CF=CE=C6=C9=C7=D5=D2=C1=C3=C9=C9 =CB=C1=CE=C1=CC=C1 =CD=CF= =D6=CE=CF =DA=C1=C4=C1=D4=D8 =D3=CB=D2=C9=D0=D4 'up', =CF=CE =C2=D5=C4=C5= =D4 =D7=D9=DA=D9=D7=C1=D4=D8=D3=D1 > =D3=C1=CD=C9=CD openvpn =D0=CF=D3=CC=C5 =D0=CF=C4=CE=D1=D4=C9=D1 =CB=C1= =CE=C1=CC=C1, =CE=CF _=C4=CF_ =D3=C2=D2=CF=D3=C1 =D0=D2=C9=D7=C9=CC=C5=C7= =C9=CA. =CF! =D7=CF=D4 =DC=D4=CF =CD=CE=C5 =C9 =CE=D5=D6=CE=CF. =D0=D2=CF=DD=C5 =D4= =C1=CD =D3=CB=C1=DA=C1=D4=D8 service sshd condrestart =C9 =CE=C5 =DA=C1=CD=CF=D2=C1=DE=C9=D7=C1=D4=D8=D3=D1. =F1-=D4=CF =C4=D5=CD=C1=CC, =DE= =D4=CF =DC=D4=CF=D4 =D3=CB=D2=C9=D0=D4 =D7=D9=DA=D9=D7=C1=C5=D4=D3=D1 =D0= =CF=D3=CC=C5 =D3=C2=D2=CF=D3=C1 =D0=D2=C9=D7=C9=CC=C5=C7=C9=CA, =C1 =D7 =D3=CF=D2=C3=D9 =C2=D9=CC=CF =CC=C5= =CE=D8 =CC=C5=DA=D4=D8. PS =E4=D5=CD=C1=C0, =C5=D3=D4=D8 =D3=CD=D9=D3=CC =DC=D4=D5 =C9=CE=C6=CF=D2= =CD=C1=C3=C9=C0 =CF=D4=D2=C1=DA=C9=D4=D8 =D7 README.ALT --=20 WBR et al. --RnlQjJ0d97Da+TV1 Content-Type: application/pgp-signature; name="signature.asc" Content-Description: Digital signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.2.2 (GNU/Linux) iD8DBQFEbWKv3TEpd8GO1nMRAsy0AJsFrhGhumneay6P/wk6IxDizn1xoQCgn/L2 PZYM3WDCqpVkj8Q1nP8k8IY= =xPe7 -----END PGP SIGNATURE----- --RnlQjJ0d97Da+TV1--