July 2009 - openSUSE Edu - openSUSE Mailing Lists

[opensuse-edu] Li-f-e updated
by Jigish Gohil 19 Jul '09

19 Jul '09

Hello Community The Li-f-e: Linux for Education[1] DVD has been updated, here are the important changes: * Gnome 2.26.3 * Firefox 3.5 * Latest Sugar, Browse activity now using mozilla xpcom and xulrunner version 1.9.1 * All openSUSE 11.1 updates since last image Happy learning... -J [1] http://en.opensuse.org/Education/Live -- To unsubscribe, e-mail: opensuse-edu+unsubscribe(a)opensuse.org For additional commands, e-mail: opensuse-edu+help(a)opensuse.org

2 1

[opensuse-edu] Summer of Code Update
by Jeff Shantz 13 Jul '09

13 Jul '09

Hi all, Please check out my update on the YaST Education module at [1]. I know some had requested that I post the module on the Build Service, and I will have it up there tomorrow evening after I have the DansGuardian stuff polished up and finished. It is already on OBS, but the version there doesn't do much of anything right now, so I will send out a link to it tomorrow once I've updated it. Thanks. Regards, Jeff Shantz [1] - http://www.jeffshantz.com/2009/07/11/summer-of-code-update-week-7/ -- To unsubscribe, e-mail: opensuse-edu+unsubscribe(a)opensuse.org For additional commands, e-mail: opensuse-edu+help(a)opensuse.org

5 4

[opensuse-edu] Fwd: Why don't you list your openSUSE-EDU applications here
by Jigish Gohil 06 Jul '09

06 Jul '09

Hi Below is the suggestion I received from Thomas, James would you take care of submission please? Cheers -J ---------- Forwarded message ---------- From: Thomas C Gilliard <satellit(a)bendbroadband.com> Date: Fri, Jul 3, 2009 at 3:01 AM Subject: Why don't you list your openSUSE-EDU applications here To: cyberorg(a)opensuse.org Why don't you list your openSUSE-EDU applications here: http://distrowatch.com/dwres.php?resource=submit It would get you more coverage of your work. Tom Gilliard satellit -- CyberOrg Info Novell & IBM Partner 7 FF Unad Deep, Tower A, Susen Tarsali Road, Vadodara, India 390 009 T. +91 265 3042956 M +91 9898092956 Web. http://www.cyberorg.info -- To unsubscribe, e-mail: opensuse-edu+unsubscribe(a)opensuse.org For additional commands, e-mail: opensuse-edu+help(a)opensuse.org

2 1

[opensuse-edu] Education Module -- Calling all iptables / SuSEfirewall2 experts
by Jeff Shantz 06 Jul '09

06 Jul '09

Hi all, I've been working on getting Dansguardian/Squid configured by the YaST Education module lately. My Dansguardian SCR module writes the configuration files properly, I have per-group filtering setup and configured, but I am having problems getting Dansguardian/Squid to play nicely with SuSEfirewall2. Below is a repost of my blog post on it. If anyone has any ideas and can help or point me to someone who can, I would appreciate it since I've now been stuck on this problem for a number of days and I'm pulling my hair out. Thanks. ----- It's been a busy few weeks. I moved to a new apartment early last week, so my life has been full of boxes and packing materials for quite some time now. Alas, the stress is over and life goes on. Okay, this update is more of a cry for help. I am calling on all SuSEfirewall2 / iptables experts out there. I am working on the Dansguardian filtering for the YaST Education module right now and have everything done on it. The only problem is that I can't get SuSEfirewall2 to play nice with my custom iptables rules to enable forwarding requests on port 80 to 8080 (Dansguardian's port). So here's the deal. I've got Dansguardian on port 8080 and Squid on port 3128. I need it to be a transparent proxy so that kids can't circumvent it easily. Also, the firewall is the client itself since most parents/teachers won't have another system lying around to be a separate firewall system. Therefore, all requests will be originating from the firewall system itself. Now, I have custom iptables rules to forward requests on port 80 to Dansguardian on 8080 (which, in turn, forwards the requests to Squid). The rules are as follows iptables -t nat -A OUTPUT -p tcp --dport 80 -m owner --uid-owner squid -j ACCEPT iptables -t nat -A OUTPUT -p tcp --dport 3128 -m owner --uid-owner squid -j ACCEPT iptables -t nat -A OUTPUT -p tcp --dport 80 -j REDIRECT --to-ports 8080 Thus, we redirect 80 to 8080 in rule 3, and we allow Squid to do its magic in rules 1 and 2. This works PERFECTLY when I don't have SuSEfirewall2 enabled. When I enable the firewall, however, pages just keep loading forever. Now, before anyone tells me that I should be using the PREROUTING chain or tells me to use the FW_REDIRECT setting in /etc/sysconfig/SuSEfirewall2, keep in mind that all requests originate from the firewall itself, and these settings only work for requests originating from other machines. So, I have these custom rules and I've added them to /etc/sysconfig/scripts/SuSEfirewall2-custom in the fw_custom_before_denyall() hook. I then added the following to /etc/sysconfig/SuSEfirewall2: FW_CUSTOMRULES="/etc/sysconfig/scripts/SuSEfirewall2-custom" Perfect. I can see that the rules are being loaded by SuSEfirewall2 when I do an iptables -t nat -nvL after starting the firewall. But, as I say, pages just load forever after turning on the firewall. All relevant details are posted in my post in the openSUSE forums at [1]. I would appreciate anyone with knowledge in iptables / SuSEfirewall2 taking a look and posting a reply so that I can stop pulling my hair out and keep on progressing in this project. Thanks to all! [1] http://forums.opensuse.org/network-internet/417523-transparent-proxy-using-… -- To unsubscribe, e-mail: opensuse-edu+unsubscribe(a)opensuse.org For additional commands, e-mail: opensuse-edu+help(a)opensuse.org

1 0

[opensuse-edu] [Fwd: RE: Eduforge and SVN GUI's]
by James Tremblay aka SLEducator 03 Jul '09

03 Jul '09

-------- Original Message -------- Subject: RE: Eduforge and SVN GUI's Date: Wed, 17 Jun 2009 14:33:20 +1200 From: Richard Wyles <richard(a)flexible.co.nz> To: 'James Tremblay aka SLEducator' <fxrsliberty(a)opensuse.us> References: <4A365BF4.6010008(a)opensuse.us> Hi James, I have used TortoiseSVN with Eduforge but I think it did request a password every time if I recall correctly. We could sort this out but I must warn you that are soon to replace Eduforge.org with a new platform that will not be offering version control system. This is scheduled in approximately 3 months. We will be migrating to a new platform with a new mission of advocacy, show-casing projects and training on OSS. I would recommend that openSIS has a good presence on Eduforge and that we showcase your projects. However, unfortunately we can no longer afford the full suite of "forge" tools and support. Regards Richard -----Original Message----- From: James Tremblay aka SLEducator [mailto:fxrsliberty@opensuse.us] Sent: 16 June 2009 2:34 a.m. To: richard(a)flexible.co.nz Subject: Eduforge and SVN GUI's Richard, I was wondering if you could help us understand the use of SVN GUI's like TortoiseSVN or RapidSVN , Either of these seem unable to use SSH without requesting the password with every action. I have followed several posts on the subject and I even updated my public key within the site. I am looking forward to hearing from you. JT -- James A. Tremblay openSIS Product Specialist http://www.os4ed.com http://www.opensis.com e-mail james "at" os4ed.com Phone (678)392-4031 Registered Linux user #440182 openSUSE-Education founder http://en.opensuse.org/education e-mail sleducator "at" opensuse.org No virus found in this incoming message. Checked by AVG - www.avg.com Version: 8.5.364 / Virus Database: 270.12.75/2182 - Release Date: 06/16/09 21:23:00 -- James A. Tremblay openSIS Product Specialist http://www.os4ed.com http://www.opensis.com e-mail james "at" os4ed.com Phone (678)392-4031 Registered Linux user #440182 openSUSE-Education founder http://en.opensuse.org/education e-mail sleducator "at" opensuse.org -- To unsubscribe, e-mail: opensuse-edu+unsubscribe(a)opensuse.org For additional commands, e-mail: opensuse-edu+help(a)opensuse.org

1 0

[opensuse-edu] verify the root filesystem of an Opensuse installation
by Elmar Stellnberger 02 Jul '09

02 Jul '09

Here is the first beta version of a brand new security tool: 'checkroot' is the first tool to retrieve fingerprint/gpg-pubkey updates online and therefore allows a trusted verification of your root file system roughly based on rpm --verify. Not even debsums can do that. download: http://wwwu.edu.uni-klu.ac.at/estellnb/checkroot/ It can serve as a pre-replacement for feature #306508: https://features.opensuse.org/306508. Besides this it may be a good example for the usage of private/public gpg keys (edu-purposes). Feedback welcome. Further testing required. Elmar Stellnberger Michael Schroeder -- To unsubscribe, e-mail: opensuse-edu+unsubscribe(a)opensuse.org For additional commands, e-mail: opensuse-edu+help(a)opensuse.org

1 0

[opensuse-edu] LI-F-E DVD feedback #2 - Build4.2
by Doug Glenn 02 Jul '09

02 Jul '09

Greetings all! Let me stick my ignorant oar back in the water..... (hit delete if you desire...) First, it was a great install. Good job. A few issues tho, being nitpicky :) I wish I could honestly help building it out rather than just reporting on subjective issues... Cron: Moodle is not enable or configured on the end install. Result. Lots of emails generate by Cron to Root. Italc: I know, not your issue really, but I admit being unable to find an answer at the moment..... I generated the new keypair, but I cannot access any clients. The following is the only excerpt from the italc_client.log (master is empty) -- Tue Jun 30 15:51:12 2009: [warning] QDir::mkpath: Empty or null file name(s) Any clues would be helpful. I have read the wiki. Do I need to rebuild the client images in order for it to work correctly? That I did not do. Pulseaudio - does not kill itself. Leaves a lot of 'zombies' around. If the user reboots the terminal, then the previous session is still alive. They tend to accumulate. Temp workaround was to add a cron job to the cron.daily that runs at midnight (script checks to ensure it is the right hour and not 3pm) and do a killall pulseaudio. Zombie user sessions: Again, sometimes as a result of the end user rebooting. (I was configuring the system while it was in use, and had to ask a few to restart from time to time). It would leave both Pulseaudio and gconf running. Sabayon: probably an issue with the mainstream install. Does a error dump after any action. Yast: GUI errors crop up sometimes. I need to snapshot them and file them with the main distro bugzilla. Since Sabayon is not running, and the EDU switched to a Gnome build, I don't have a means of editing out the menus to restrict them per 'class'. I would like to only display the appropriate type of programs for the age groups that are using it. I have it broken down in to elementary and highschool. I would also like to remove the 'non-working' icons that they should not need from the side menu. In other words, simplify it. They don't need YAST on their menu. :) Thoughts? Dirty Jokes? Comments? Thanks! ------ Doug Glenn FORUM Information Systems, LLC http://foruminfosystems.com -- To unsubscribe, e-mail: opensuse-edu+unsubscribe(a)opensuse.org For additional commands, e-mail: opensuse-edu+help(a)opensuse.org

3 3

[opensuse-edu] verify the root filesystem of an Opensuse installation
by Elmar Stellnberger 02 Jul '09

02 Jul '09

Here is the first beta version of a brand new security tool: 'checkroot' is the first tool to retrieve fingerprint/gpg-pubkey updates online and therefore allows a trusted verification of your root file system roughly based on rpm --verify. Not even debsums can do that. download: http://wwwu.edu.uni-klu.ac.at/estellnb/checkroot/ It can serve as a pre-replacement for feature #306508: https://features.opensuse.org/feature/save/306508 Besides this it may be a good example for the usage of private/public gpg keys (edu-purposes). Feedback welcome. Further testing required. Elmar Stellnberger Michael Schroeder -- To unsubscribe, e-mail: opensuse-edu+unsubscribe(a)opensuse.org For additional commands, e-mail: opensuse-edu+help(a)opensuse.org

1 0

[opensuse-edu] Re: opensuse-edu@opensuse.org is a subscribers only list
by Doug Glenn 02 Jul '09

02 Jul '09

Sorry, send it from the wrong account, so this if re-forward to James/Cyberorg > No issues, I know the paying job has to count first! (well, I hope it > is paying!). > > I understand, although 10p is a bit early to a degree, he in France? > My associates in Geneva were generally available up until about 2 EST > with only 6 hours difference most of the time. That said, I usually > worked more in China with a 12 hour difference :) > > Would really like to get iTALC working. Happy to document the steps > later if needed. I would like to assist more than just gripe :) > > Yes, have a valid Novell and OpenSuse ID although my paid support > contract with Novell has lapsed from my previous employer. Even have a > open build ID by mistake :) -- Doug Glenn aka Wildhair on OpenSuse-edu IRC channel FORUM Information Systems, LLC http://foruminfosystems.com -- To unsubscribe, e-mail: opensuse-edu+unsubscribe(a)opensuse.org For additional commands, e-mail: opensuse-edu+help(a)opensuse.org

1 0