From ilektrojohn at yahoo.gr  Mon Sep  3 05:01:55 2007
From: ilektrojohn at yahoo.gr (john kakavas)
Date: Mon, 3 Sep 2007 12:01:55 +0000 (GMT)
Subject: [NoCat] Nocat custom login page
Message-ID: <660399.85289.qm@web25802.mail.ukl.yahoo.com>

As i said before the problem with the css is fixed, but i still have the same problem with the encoding. The page is in UTF-8, there is a meta tag 
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
declaring that also, so the browser should understand it. The problem is that it doesn't. It sees it as it has 8859-1 encoding(checked it from page info in firefox) . So the text is unreadable(its greek, and all i can see is symbols) . The strange thing is that if i ask the page directly from the browser, it detects its encoding and displays it correctly.Any ideas, anyone?I'm pretty sure there s nothing wrong with the html page because as i said if i ask it directly from the browser it dislays correctly. But then what else could be wrong ?

----- Original Message ----
From: twistedpickles <twistedpickles at gmail.com>
To: john kakavas <ilektrojohn at yahoo.gr>
Cc: NoCatAuth <nocat at lists.nocat.net>
Sent: Friday, August 31, 2007 7:42:38 PM
Subject: Re: [NoCat] Nocat custom login page

Try using an absolute URL for css style sheets and images it sounds as if you might be using relative URL's.
Try  <link href="/css/style.css" rel="stylesheet" type"text/css">


And place the css folder and style.css in /usr/local/nocat/auth/htdocs ex: ../auth/htdocs/css/style.css

On 8/31/07, john kakavas <
ilektrojohn at yahoo.gr> wrote:
Yes, its very strange......with the default pages everything works ok, but the default pages dont have any css,....
The errors i get in apache log are

[error]script not found or unable to stat: /usr/local/nocat/auth/cgi-bin/style.css, referer https://..........
[error]script not found or unable to stat: /usr/local/nocat/auth/cgi-bin/images, referer 
https://..........


it seems as though apache thinks style.css and images(its a folder) are scripts and tries to find them in cgi-bin

I don't have the slightest clue as what is happening....


----- Original Message ----
From: twistedpickles <
twistedpickles at gmail.com>
To: john kakavas <ilektrojohn at yahoo.gr>

Cc: noct at lists.nocat.net
Sent: Friday, August 31, 2007 6:37:12 AM

Subject: Re: [NoCat] Nocat custom login page

That is strange. I creted a cutom login as well however I didn't run into any problems. Does the original login.html work and display correctly?

 

 

Check your document root in auth/nocat.conf, should read 'DocumentRoot    /usr/local/nocat/auth/htdocs'

 

 


 


 

On 8/30/07, john kakavas <ilektrojohn at yahoo.gr
> wrote:



Yes I did. It opens the login-no-skip.html, but it seems as it can't find style.css and the images folder so the pages loads with no graphic. It also cant detect the pages encoding so the text is all symbols. If i access it directly everything is fine. In the 
error.log i found entries that it was looking for images and css in the usr/local/nocat/auth/cgi-bin  isnt that starnge ? why there and not in thd htdocs folder where the html are ? 



----- Original Message ----
From: twistedpickles <

twistedpickles at gmail.com>
To: john kakavas <ilektrojohn at yahoo.gr>
Sent: Thursday, August 30, 2007 10:42:48 PM

Subject: Re: [NoCat] Nocat custom login page

did you specify login-no-skip.html as your login page in authserv/nocat.conf 



-----snip-----
# Auth service template names. See the individual templates
#   for details on what each one does.
#
LoginForm       login.html  <--- change to login-no-skip.html 
LoginOKForm     login_ok.html

FatalForm       fatal.html
ExpiredForm     expired.html
RenewForm       renew.html
PassiveRenewForm renew_pasv.html
--------snip-------- 
 



On 8/30/07, john kakavas <ilektrojohn at yahoo.gr
> wrote: 
I've edited the login pages of nocat so to meet our company's needs
using a little css but i have a problem. When it opens the page, it

seems as though the browser can't find the css and cannot detect the 
encoding of the page (it's utf-8) .If i ask for the page directly from
the same pc (

https://xxx.xxx.xxx.xxx/login-no-skip.html ) everythings
looks fine. The graphics and the encoding of the page. Any suggestions ? 




___________________________________________________________

?????????????? Yahoo!;

?????????? ?? ?????????? ???????? (spam); ?? Yahoo! Mail
???????? ??? ???????? ?????? ????????? ???? ??? ??????????? 
????????? 

http://login.yahoo.com/config/mail?.intl=gr
_______________________________________________
NoCat mailing list


NoCat at lists.nocat.net
http://lists.nocat.net/mailman/listinfo/nocat






-- 
::twistedPickles:: : 







?????????????? Yahoo!
?????????? ?? ?????????? ???? ???? (spam); ?? Yahoo! Mail ???????? ??? ???????? ?????? ????????? ???? ??? ??????????? ????????? 

http://login.yahoo.com/config/mail?.intl=gr 






-- 
::twistedPickles:: : 










       
?????????????? Yahoo!
 
?????????? ?? ?????????? ???? ???? (spam); ?? Yahoo! Mail ???????? ??? ???????? ?????? ????????? ???? ??? ??????????? ????????? 
 
http://login.yahoo.com/config/mail?.intl=gr 






-- 
::twistedPickles:: :






      
___________________________________________________________ 
?????????????? Yahoo!; 
?????????? ?? ?????????? ???????? (spam); ?? Yahoo! Mail 
???????? ??? ???????? ?????? ????????? ???? ??? ??????????? 
????????? http://login.yahoo.com/config/mail?.intl=gr 

From noteris at gmail.com  Tue Sep  4 05:01:08 2007
From: noteris at gmail.com (benoit noteris)
Date: Tue, 4 Sep 2007 14:01:08 +0200
Subject: [NoCat] [CGI checksum and Hardware sql table]
Message-ID: <4551fd5b0709040501v60ea3f40r376348d0065a0f9f@mail.gmail.com>

HI everybody,

I'm still working on my project,i'm in front of 2 problem.
And my dev collegue must put some change on the perl CGI coding, but each
time, he is adding any thing also comentarie he has a server errore like
there is a checksum done over the cgi lib file to protect them could you
provide us the solution for adding our code in it.

our second request is about the hardware table it seem to not be use
anymore,it's a future extention never finish or a depreciated option ?
because in fact we need to ask the CGI to execute some shell script for our
project and if this table was fulled by the CGI it could be easyer for us.

thanks in advance for you help

From schuyler at nocat.net  Wed Sep 12 11:40:46 2007
From: schuyler at nocat.net (Schuyler Erle)
Date: Wed, 12 Sep 2007 11:40:46 -0700
Subject: [NoCat] Nocat custom login page
In-Reply-To: <918510.30793.qm@web25809.mail.ukl.yahoo.com>
References: <918510.30793.qm@web25809.mail.ukl.yahoo.com>
Message-ID: <20070912184046.GY21890@vishnu.tridity.org>

* On  1-Sep-2007 at  5:15AM PDT, john kakavas said:
> Yes, its very strange......with the default pages everything works ok, but the default pages dont have any css,....
> The errors i get in apache log are
> [error]script not found or unable to stat: /usr/local/nocat/auth/cgi-bin/style.css, referer https://..........
> [error]script not found or unable to stat: /usr/local/nocat/auth/cgi-bin/images, referer https://..........
> 
> 
> it seems as though apache thinks style.css and images(its a folder) are scripts and tries to find them in cgi-bin
> 
> I don't have the slightest clue as what is happening....

I have a horrible feeling that somewhere in the code is a regex or
something similar that looks at file extensions to figure out what to
do with them... I would grep the code for "html" and see what you
find. It's totally possible that in 2001 it didn't occur to me that
people might want to serve CSS on their splash page.

SDE



From ilektrojohn at yahoo.gr  Wed Sep 12 17:51:27 2007
From: ilektrojohn at yahoo.gr (john kakavas)
Date: Thu, 13 Sep 2007 01:51:27 +0100 (BST)
Subject: [NoCat] Nocat custom login page
Message-ID: <601314.40399.qm@web25807.mail.ukl.yahoo.com>

thanks but that was solved by adding a slash(/) before images ande style.css in the login.html. 
The problem with the encoding remains though. The html is written in greek with utf8 encoding, that fact is declared in a meta tag in  but there is still a problem. Browser cant get the encoding, so it pridusew symboles unless i manually set the character encoding in ff after the page is loaded. The funny thing is that if i try to access the login page directly by http://serverip/login.html i.e the browser detects the encoding and displays the characters properly. It made me wonder if that was a prob of nocat, or the way that redirection is made.. If it was for my apache , the error would happen in the second case too.

Any thoughts on that ?

----- Original Message ----
From: Schuyler Erle <schuyler at nocat.net>
To: john kakavas <ilektrojohn at yahoo.gr>
Cc: twistedpickles <twistedpickles at gmail.com>; NoCatAuth <nocat at lists.nocat.net>
Sent: Wednesday, September 12, 2007 9:40:46 PM
Subject: Re: [NoCat] Nocat custom login page

* On  1-Sep-2007 at  5:15AM PDT, john kakavas said:
> Yes, its very strange......with the default pages everything works ok, but the default pages dont have any css,....
> The errors i get in apache log are
> [error]script not found or unable to stat: /usr/local/nocat/auth/cgi-bin/style.css, referer https://..........
> [error]script not found or unable to stat: /usr/local/nocat/auth/cgi-bin/images, referer https://..........
> 
> 
> it seems as though apache thinks style.css and images(its a folder) are scripts and tries to find them in cgi-bin
> 
> I don't have the slightest clue as what is happening....

I have a horrible feeling that somewhere in the code is a regex or
something similar that looks at file extensions to figure out what to
do with them... I would grep the code for "html" and see what you
find. It's totally possible that in 2001 it didn't occur to me that
people might want to serve CSS on their splash page..

SDE







      
___________________________________________________________ 
?????????????? Yahoo!; 
?????????? ?? ?????????? ???????? (spam); ?? Yahoo! Mail 
???????? ??? ???????? ?????? ????????? ???? ??? ??????????? 
????????? http://login.yahoo.com/config/mail?.intl=gr 

From schuyler at nocat.net  Wed Sep 12 14:10:40 2007
From: schuyler at nocat.net (Schuyler Erle)
Date: Wed, 12 Sep 2007 14:10:40 -0700
Subject: [NoCat] Nocat custom login page
In-Reply-To: <601314.40399.qm@web25807.mail.ukl.yahoo.com>
References: <601314.40399.qm@web25807.mail.ukl.yahoo.com>
Message-ID: <20070912211040.GA21890@vishnu.tridity.org>

* On 12-Sep-2007 at  1:33PM PDT, john kakavas said:
>
> The problem with the encoding remains though. The html is written in
> greek with utf8 encoding, that fact is declared in a meta tag in
> but there is still a problem. Browser cant get the encoding, so it
> pridusew symboles unless i manually set the character encoding in ff
> after the page is loaded. The funny thing is that if i try to access
> the login page directly by http://serverip/login.html i.e the
> browser detects the encoding and displays the characters properly.
> It made me wonder if that was a prob of nocat, or the way that
> redirection is made.. If it was for my apache , the error would
> happen in the second case too.

Find where in the code it says "text/html" and change it to
"text/html; charset=utf-8".

http://www.w3.org/International/O-HTTP-charset

SDE



From ilektrojohn at yahoo.gr  Thu Sep 13 08:28:25 2007
From: ilektrojohn at yahoo.gr (john kakavas)
Date: Thu, 13 Sep 2007 17:28:25 +0200 (CEST)
Subject: [NoCat] Nocat custom login page
Message-ID: <926759.73949.qm@web25810.mail.ukl.yahoo.com>

To which code are you refering ? If you mean the html code, i've already done that in a meta tag in the header of my page. If you mean in the nocat code can you be more specific ?

----- Original Message ----
From: Schuyler Erle <schuyler at nocat.net>
To: john kakavas <ilektrojohn at yahoo.gr>
Cc: NoCatAuth <nocat at lists.nocat.net>
Sent: Thursday, September 13, 2007 12:10:40 AM
Subject: Re: [NoCat] Nocat custom login page

* On 12-Sep-2007 at  1:33PM PDT, john kakavas said:
>
> The problem with the encoding remains though. The html is written in
> greek with utf8 encoding, that fact is declared in a meta tag in
> but there is still a problem. Browser cant get the encoding, so it
> pridusew symboles unless i manually set the character encoding in ff
> after the page is loaded. The funny thing is that if i try to access
> the login page directly by http://serverip/login.html i.e the
> browser detects the encoding and displays the characters properly.
> It made me wonder if that was a prob of nocat, or the way that
> redirection is made.. If it was for my apache , the error would
> happen in the second case too.

Find where in the code it says "text/html" and change it to
"text/html; charset=utf-8".

http://www.w3.org/International/O-HTTP-charset

SDE







      
___________________________________________________________ 
?????????????? Yahoo!; 
?????????? ?? ?????????? ???????? (spam); ?? Yahoo! Mail 
???????? ??? ???????? ?????? ????????? ???? ??? ??????????? 
????????? http://login.yahoo.com/config/mail?.intl=gr 

From twistedpickles at gmail.com  Thu Sep 13 20:10:32 2007
From: twistedpickles at gmail.com (twistedpickles)
Date: Thu, 13 Sep 2007 22:10:32 -0500
Subject: [NoCat]  Nocat custom login page
In-Reply-To: <a0df4bc40709132009u53fe8a54xefe56bb92d4a8000@mail.gmail.com>
References: <926759.73949.qm@web25810.mail.ukl.yahoo.com>
	<a0df4bc40709132009u53fe8a54xefe56bb92d4a8000@mail.gmail.com>
Message-ID: <a0df4bc40709132010j5c07dc5areb234df430e19b4c@mail.gmail.com>

in gateway.pm ????

sub respond {
    my ($self, $peer, $template, $extra) = @_;
    $peer->socket->print(
    "HTTP/1.1 200 OK\r\n",
    "Content-type: text/html\r\n\r\n",
    $self->template( $template => $extra )
    );
    $peer->socket->close;



-- 
::twistedPickles:: :

From steve.platt at mrc-bsu.cam.ac.uk  Tue Sep 18 04:43:37 2007
From: steve.platt at mrc-bsu.cam.ac.uk (Steve Platt)
Date: Tue, 18 Sep 2007 12:43:37 +0100
Subject: [NoCat] problems renewing logins [ timeout issues? ]
In-Reply-To: Message from Steve Platt <steve.platt@mrc-bsu.cam.ac.uk> of "Wed,
	15 Aug 2007 15:10:01 BST."
	<E1ILJZR-0001Qu-VW@bernstein.mrc-bsu.cam.ac.uk> 
Message-ID: <E1IXbUP-00032N-LS@bernstein.mrc-bsu.cam.ac.uk>



I previously posted a query about an intermittent problem that has only 
started to occur recently; in which I said:

> ... *sometimes* our client computer seems to get "cut off"

I think that this has something to do with the "IdleTimeout" (ARP table) 
feature, judging by the logged message "Expiring inactive connection from ..."

I have seen client connections getting "expired" by Gateway.pm only 2 or 3 
minutes after successfully renewing their login.

So now I do not think they are failing to renew correctly, I think that 
despite renewing regularly (every 7.5 minutes) they are losing their ARP table 
entries and that this is tripping the IdleTimeout code.

Perhaps my settings are stupid; after all I finf the timeout settings a bit 
confusing so I could have made a mistake. We currently have :-

 LoginTimeout is set to the recommended 600 seconds (10 minutes)
 IdleTimeout  is not set, I believe the default is 300 seconds (5 minutes)

Any thoughts please?
Steve Platt




From elesoteric at yahoo.com  Wed Sep 26 18:17:19 2007
From: elesoteric at yahoo.com (elesoteric)
Date: Wed, 26 Sep 2007 18:17:19 -0700 (PDT)
Subject: [NoCat] resetcmd message...nocatsplash not starting
Message-ID: <431637.29768.qm@web90509.mail.mud.yahoo.com>

greetings all...

trying to setup an open hotspot, on gateway pc, ubuntu
7.04 server, 2 nics...w/ eth0 going thru a switch then
to gateway router & WAN, w/ eth1 pointing to LAN
wireless/hotspot.  setup seemed fine, configed
nocat.conf w/ basic stuff for simple open wifinet, and
setup the netwrk on gateway (using webmin interface)
trying a million ways, same for the linksys wrt54g
router...and keep getting this:
~~~~~~~~~~~~~~~~~~~~

root at hotspot:/usr/local/sbin# ./splashd
Message: Autodetected ExternalDevice eth0 (10.26.x.x)
Message: Autodetected InternalDevice eth1 (10.10.x.x)
Message: Autodetected LocalNetwork
10.10.10.0/255.255.255.0
Message: My node ID is 0015E9F9D8DE (eth1)
Message: Read 38 config items from
/usr/local/etc/nocat.conf
Message: initializing static splash page
Message: Got command
/usr/local/libexec/NoCatSplash/initialize.fw from
action ResetCmd
Message: starting main loop

** WARNING **: ResetCmd on peer (null) returned 1
Message: Checking peers for expiration
Message: Checking peers for expiration
Terminated

~~~~~~~~~~~~~~~~~~

i've tried every virtual routing can think of, appear
to have some/limited connectivity...can ping from a
test laptop on wireless side thru to eth1 but not to
eth0, ping thru from wireless router in to WAN gateway
router and ping thru from gateway pc back to WAN (ext)
router and out to LAN (int) router.  i am stumped
(beyond the usual) and any help/guidance/direction w/
this would be GREATLY appreciated.

Shar


      ____________________________________________________________________________________
Check out the hottest 2008 models today at Yahoo! Autos.
http://autos.yahoo.com/new_cars.html



From bsteinberg at minlib.net  Sat Sep 29 11:30:39 2007
From: bsteinberg at minlib.net (Ben Steinberg)
Date: Sat, 29 Sep 2007 14:30:39 -0400
Subject: [NoCat] problems renewing logins [ timeout issues? ]
In-Reply-To: <E1IXbUP-00032N-LS@bernstein.mrc-bsu.cam.ac.uk>
References: <steve.platt@mrc-bsu.cam.ac.uk>
	<E1ILJZR-0001Qu-VW@bernstein.mrc-bsu.cam.ac.uk>
	<E1IXbUP-00032N-LS@bernstein.mrc-bsu.cam.ac.uk>
Message-ID: <20070929183039.GA4791@nevis>

I've been meaning to repond to this for some time.  I don't know
whether your problem is like ours, but you may want to look into it.

We have had an intermittent problem similar to this, in which
logged-in clients are forced back to the login screen.  It occurs
during an ARP spoofing attack.  The initial technical fix for the
attack was to put a large number in
/proc/sys/net/ipv4/neigh/eth1/locktime, so that clients can't change
their MACs willy-nilly -- that prevents the attacker from actually
sitting in the middle and interfering with traffic, but it constitutes
a denial of service, since attacked clients can no longer get past the
login screen.

The real fix for our problem turned out to be one of management; we
were able to identify the user whose computer was infected and was
attacking other clients, and told her she needed to clean her computer
before using our system again.

A way to tell if an ARP cache spoofing attack is occurring is to run
"ip neigh show dev eth1" (or whatever interface you're using) -- if
two or more entries share a MAC address, one is attacking the
other(s).  I wrote a little script to keep an eye on the ARP table and
let me know if an attack is happening.

Please let me know if you have any questions.  Also, if anyone has a
better approach to this problem, I'd love to hear it.

Ben

On Tue, Sep 18, 2007 at 12:43:37PM +0100, Steve Platt wrote:
> 
> 
> I previously posted a query about an intermittent problem that has only 
> started to occur recently; in which I said:
> 
> > ... *sometimes* our client computer seems to get "cut off"
> 
> I think that this has something to do with the "IdleTimeout" (ARP table) 
> feature, judging by the logged message "Expiring inactive connection from ..."
> 
> I have seen client connections getting "expired" by Gateway.pm only 2 or 3 
> minutes after successfully renewing their login.
> 
> So now I do not think they are failing to renew correctly, I think that 
> despite renewing regularly (every 7.5 minutes) they are losing their ARP table 
> entries and that this is tripping the IdleTimeout code.
> 
> Perhaps my settings are stupid; after all I finf the timeout settings a bit 
> confusing so I could have made a mistake. We currently have :-
> 
>  LoginTimeout is set to the recommended 600 seconds (10 minutes)
>  IdleTimeout  is not set, I believe the default is 300 seconds (5 minutes)
> 
> Any thoughts please?
> Steve Platt
> 
> 
> 
> _______________________________________________
> NoCat mailing list
> NoCat at lists.nocat.net
> http://lists.nocat.net/mailman/listinfo/nocat