DEPARTMENTS
Operating Systems
Server Management
Networking
Security
Storage
Databases
Languages
Your Career
SYS ADMIN
Issues
Source Code
Whitepapers
About Us
Contact Us
Editors
Advertise

Current Issue


Table of contents

CD-ROM

Sys Admin and The Perl Journal CD-ROM version 12.0

Version 12.0 delivers every issue of Sys Admin from 1992 through 2006 and every
issue of The Perl Journal from 1996-2002 in one convenient CD-ROM!

Order now!
Sys Admin Magazine > Archives > 2001 > May 2001
Page art

Questions and Answers

Jim McKinstry and Amy Rich

Q: I have a Linux machine that logged the following error message. Do you know what it's from or what it means?

kernel: Suspect short first fragment.
kernel: eth0 PROTO=17 OUTSIDE_IP:0 MY_IP:0 L=24 S=0x00 I=57374 F=0x2000 T=116 (#0)

A: This is your kernel intercepting a packet that is too short to be valid. IP packets that are too large can be split into multiple packets, and each part is called a fragment. The kernel then reassembles all of the fragments to get a full packet. This kernel message indicates that someone (probably maliciously) sent you a packet that was too short even to contain the headers for the fragment. Short fragments are usually signs of an attack on your machine.


Q: I was running FreeBSD 4.2-STABLE on a second partition on my laptop, when the need arose to install Windows. I put Windows 98 on the primary partition, and, unfortunately, this overwrote the MBR, and I can no longer boot into my FreeBSD partition. Can I recover my data? Do I need to reinstall?

A: You can easily recover your information, and even be able to boot off the secondary partition as long as your Windows install didn't overwrite the partition your FreeBSD install resides on. You can download the bootinst.exe DOS program from: ftp://ftp.FreeBSD.org/pub/FreeBSD/releases/i386/4.2-RELEASE/tools/ and redo the MBR from DOS.

You can also use boot0cfg from FreeBSD. Insert your FreeBSD boot disk, and press a key when the machine starts to boot. If you don't have a boot disk, the images can be obtained from:




MarketPlace

Build IT Knowledge with Current & Trusted Content
Helps Employees Develop & Hone New Technical Programming Skills. Sign Up & Get Full Access.

Six Sigma Certification
100% Online-Six Sigma Certificate from Villanova - Find Out More Now.

WinDev 11 - Powerful IDE
Develop 10 times faster ! ALM, IDE, .Net, RAD, 5GL, Database, 5GL, 64-bit, etc. Free Express version

Domain Name Registrations, Web Hosting, Email
Pay less for Domain Names, Increase your company's bottom line - get a raise. Accredited domain name registrar, ZippyNames.us : Discount bulk transfers, email, webhosting, dedicated servers. Earn money as a domain name reseller - better discounts!

Wanna see your ad here?
© 2008 Think Services, Privacy Policy, Terms of Service
United Business Media Limited
Comments about the Web site: webmaster@sysadminmag.com
Web Sites: BYTE.com, dotnetjunkies.com, Dr. Dobb's Journal, SD Expo, Sys Admin, sqljunkies.com, UnixReview.com,

web2