From owner-freebsd-isp Sun Sep 23 0:13:59 2001 Delivered-To: freebsd-isp@freebsd.org Received: from home.com (c1737881-a.plano1.tx.home.com [65.10.46.29]) by hub.freebsd.org (Postfix) with ESMTP id 0302037B413; Sun, 23 Sep 2001 00:13:53 -0700 (PDT) Received: (from mcbrune@localhost) by home.com (8.11.6/8.11.4) id f8N7Dph01844; Sun, 23 Sep 2001 02:13:51 -0500 (CDT) (envelope-from mcbrune) From: mcbrune Message-Id: <200109230713.f8N7Dph01844@home.com> Subject: Re: so many TIME_WAIT, FIN_WAIT_1, FIN_WAIT_2 In-Reply-To: <00c301c14237$b00c11a0$125131ce@wavephil.com> To: Jun Favoreal Date: Sun, 23 Sep 2001 02:13:51 -0500 (CDT) Cc: freebsd-questions@FreeBSD.ORG, freebsd-isp@FreeBSD.ORG X-Mailer: ELM [version 2.4ME+ PL92 (25)] MIME-Version: 1.0 Content-Transfer-Encoding: 7bit Content-Type: text/plain; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org I have not seen this on FreeBSD, but I have seen something like this on Sun. Are you sure these *_WAITs never go away, and are replaced by other WAITs? The default for TIME_WAIT is 4 minutes. Corey [ Charset ISO-8859-1 unsupported, converting... ] > > Hello, > > This is my setup. I have a transparent proxy server running SQUID2.4-STABLE2 > on a FreeBSD box running 4.3-RELEASE. As any transparent proxy out there, > HTTP requests are intercepted by our primary router and redirected to the > FreeBSD box and the FreeBSD box hijacks it and makes the HTTP connection in > behalf of the hijacked HTTP request. Everything is working just fine. But, > just one observation from the FreeBSD box if you do a > > # netstat -an > > I see so many tcp socket connections in either FIN_WAIT_1, FIN_WAIT_2, or > TIME_WAIT status. > > > tcp4 0 0 199.172.146.99.80 202.58.248.20.3108 > FIN_WAIT_1 > tcp4 0 0 64.4.13.171.80 202.58.248.20.3106 > FIN_WAIT_2 > tcp4 0 0 206.49.81.19.24737 207.25.71.212.80 TIME_WAIT > tcp4 0 0 64.38.209.154.80 202.58.248.20.3099 > FIN_WAIT_2 > tcp4 0 0 216.136.172.223.80 202.58.253.254.3894 TIME_WAIT > tcp4 0 0 64.38.209.154.80 202.58.248.20.3095 > FIN_WAIT_2 > tcp4 0 0 216.115.106.35.80 202.58.248.20.3092 > FIN_WAIT_2 > tcp4 0 0 216.136.173.152.80 202.58.247.204.3265 TIME_WAIT > tcp4 0 0 216.136.173.152.80 202.58.247.204.3263 TIME_WAIT > tcp4 0 0 207.68.177.124.80 202.58.248.20.3090 > FIN_WAIT_2 > tcp4 0 0 64.58.76.229.80 202.58.247.211.1400 TIME_WAIT > tcp4 0 0 209.85.3.8.80 202.58.248.20.3088 > FIN_WAIT_2 > > > Previously I have setup 2 other transparent proxy servers running FreeBSD > 3.3-RELEASE and I see the same thing. Once its there, it stays there and > each day its number grows. So what I do from time to time is to shutdown the > FreeBSD box and boot it again just to remove these things and start over > with a clean slate. I have also tried some tweaking in SQUID, most of them > decreasing the timeout values like connect_timeout, read_timeout, > request_timeout, pconn_timeout, and client_lifetime. > > Anyone out there who had this problem before ??? > > Thank you in advance. > > -- > > > > _________________________________________________________ > Do You Yahoo!? > Get your free @yahoo.com address at http://mail.yahoo.com > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-questions" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sun Sep 23 0:27: 9 2001 Delivered-To: freebsd-isp@freebsd.org Received: from joshua.site-fx.net (h24-78-60-149.vc.shawcable.net [24.78.60.149]) by hub.freebsd.org (Postfix) with ESMTP id 7006637B41B for ; Sun, 23 Sep 2001 00:27:03 -0700 (PDT) Received: from localhost (kissyfur.site-fx.net [192.168.0.2]) by joshua.site-fx.net (8.11.4/8.11.4) with ESMTP id f8N7R0l02035 for ; Sun, 23 Sep 2001 00:27:00 -0700 (PDT) Message-Id: <200109230727.f8N7R0l02035@joshua.site-fx.net> Date: Sun, 23 Sep 2001 00:23:30 -0700 Content-Type: text/plain; format=flowed; charset=us-ascii Mime-Version: 1.0 (Apple Message framework v388) From: james@site-fx.net To: freebsd-isp@freebsd.org X-Mailer: Apple Mail (2.388) Content-Transfer-Encoding: 7bit Subject: Migrate Web Server Users from OpenBSD Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Does anyone have a quick way of moving from OpenBSD to FreeBSD for a web server. Does OpenBSD support blowfish encyption by default or through changing passwd.conf so that I can just copy the master.passwd file over and rebuild the shadow passwd file. - James To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sun Sep 23 14:22:57 2001 Delivered-To: freebsd-isp@freebsd.org Received: from tsunami.acidpit.org (tsunami.acidpit.org [206.190.163.234]) by hub.freebsd.org (Postfix) with ESMTP id B024D37B418 for ; Sun, 23 Sep 2001 14:22:54 -0700 (PDT) Received: (from rch@localhost) by tsunami.acidpit.org (8.11.3/8.11.3) id f8NLMnQ11041; Sun, 23 Sep 2001 17:22:49 -0400 (EDT) (envelope-from rch@acidpit.org) Date: Sun, 23 Sep 2001 17:22:48 -0400 From: Robert Hough To: james@site-fx.net Cc: freebsd-isp@freebsd.org Subject: Re: Migrate Web Server Users from OpenBSD Message-ID: <20010923172248.A3752@acidpit.org> Mail-Followup-To: james@site-fx.net, freebsd-isp@freebsd.org References: <200109230727.f8N7R0l02035@joshua.site-fx.net> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i In-Reply-To: <200109230727.f8N7R0l02035@joshua.site-fx.net>; from james@site-fx.net on Sun, Sep 23, 2001 at 00:23:30 -0700 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org On Sun, Sep 23, 2001, james@site-fx.net wrote: > > Does anyone have a quick way of moving from OpenBSD to FreeBSD for a web > server. Does OpenBSD support blowfish encyption by default or through > changing passwd.conf so that I can just copy the master.passwd file over > and rebuild the shadow passwd file. man login.conf, and search for passwd_format. I'm pretty sure it supports blowfish 'blf', but I can't say with 100% certainty, as I'm too damned lazy to look atm. :) -- Robert Hough (rch@acidpit.org) To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sun Sep 23 15: 1:48 2001 Delivered-To: freebsd-isp@freebsd.org Received: from mailsrv.otenet.gr (mailsrv.otenet.gr [195.170.0.5]) by hub.freebsd.org (Postfix) with ESMTP id 6391D37B433 for ; Sun, 23 Sep 2001 15:01:43 -0700 (PDT) Received: from hades.hell.gr (patr530-a017.otenet.gr [212.205.215.17]) by mailsrv.otenet.gr (8.11.5/8.11.5) with ESMTP id f8NM1dF12710; Mon, 24 Sep 2001 01:01:39 +0300 (EEST) Received: (from charon@localhost) by hades.hell.gr (8.11.6/8.11.6) id f8NLm8j05501; Mon, 24 Sep 2001 00:48:08 +0300 (EEST) (envelope-from charon@labs.gr) Date: Mon, 24 Sep 2001 00:48:07 +0300 From: Giorgos Keramidas To: james@site-fx.net Cc: freebsd-isp@FreeBSD.ORG Subject: Re: Migrate Web Server Users from OpenBSD Message-ID: <20010924004807.A5421@hades.hell.gr> References: <200109230727.f8N7R0l02035@joshua.site-fx.net> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <200109230727.f8N7R0l02035@joshua.site-fx.net> User-Agent: Mutt/1.3.22.1i X-GPG-Fingerprint: C1EB 0653 DB8B A557 3829 00F9 D60F 941A 3186 03B6 X-URL: http://labs.gr/~charon/ Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org james@site-fx.net wrote: > Does anyone have a quick way of moving from OpenBSD to FreeBSD for a web > server. Does OpenBSD support blowfish encyption by default or through > changing passwd.conf so that I can just copy the master.passwd file over > and rebuild the shadow passwd file. If Blowfish is the only impediment in switching, then the answer is ``yes, it's supported''. From the manpage of login.conf(5) I quote: | passwd_format string md5 The encryption format that new or | changed passwords will use. Valid | values include "des", "md5" and | "blf". NIS clients using a | non-FreeBSD NIS server should prob- | ably use "des". Of course, the question that arises from a thought of switching to FreeBSD (mind you, at times I enjoy being a raving FreeBSD lunatic), is: Why are you going to change your operating system? If it isn't broken, why `fix' it? Even if it *is* broken, are you sure FreeBSD is not broken too? -giorgos To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sun Sep 23 15:49:46 2001 Delivered-To: freebsd-isp@freebsd.org Received: from joshua.site-fx.net (h24-78-60-149.vc.shawcable.net [24.78.60.149]) by hub.freebsd.org (Postfix) with ESMTP id 957EB37B406 for ; Sun, 23 Sep 2001 15:49:33 -0700 (PDT) Received: from localhost (kissyfur.site-fx.net [192.168.0.2]) by joshua.site-fx.net (8.11.4/8.11.4) with ESMTP id f8NMnTl30243; Sun, 23 Sep 2001 15:49:30 -0700 (PDT) Message-Id: <200109232249.f8NMnTl30243@joshua.site-fx.net> Date: Sun, 23 Sep 2001 15:45:58 -0700 From: "James A. Peltier" Content-Type: text/plain; format=flowed; charset=us-ascii Subject: Re: Migrate Web Server Users from OpenBSD Cc: freebsd-isp@FreeBSD.ORG To: Giorgos Keramidas X-Mailer: Apple Mail (2.388) In-Reply-To: <20010924004807.A5421@hades.hell.gr> Mime-Version: 1.0 (Apple Message framework v388) Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Just more applications available for FreeBSD, pgaccess, mods for apache etc. I'm not moving all my servers to FreeBSD just some of the busier Websites since OpenBSD tends to be much slower for some reason than Free. DNS, Secure HTTP, FTP etc is still going to be on Open. -James A. Peltier On Sunday, September 23, 2001, at 02:48 PM, Giorgos Keramidas wrote: > james@site-fx.net wrote: >> Does anyone have a quick way of moving from OpenBSD to FreeBSD for a >> web >> server. Does OpenBSD support blowfish encyption by default or through >> changing passwd.conf so that I can just copy the master.passwd file >> over >> and rebuild the shadow passwd file. > > If Blowfish is the only impediment in switching, then the answer is > ``yes, > it's supported''. From the manpage of login.conf(5) I quote: > > | passwd_format string md5 The encryption format that new or > | changed passwords will use. Valid > | values include "des", "md5" and > | "blf". NIS clients using a > | non-FreeBSD NIS server should prob- > | ably use "des". > > Of course, the question that arises from a thought of switching to > FreeBSD > (mind you, at times I enjoy being a raving FreeBSD lunatic), is: > > Why are you going to change your operating system? > If it isn't broken, why `fix' it? > Even if it *is* broken, are you sure FreeBSD is not broken too? > > -giorgos > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sun Sep 23 15:56:29 2001 Delivered-To: freebsd-isp@freebsd.org Received: from mailsrv.otenet.gr (mailsrv.otenet.gr [195.170.0.5]) by hub.freebsd.org (Postfix) with ESMTP id E621F37B439 for ; Sun, 23 Sep 2001 15:56:26 -0700 (PDT) Received: from hades.hell.gr (patr530-a017.otenet.gr [212.205.215.17]) by mailsrv.otenet.gr (8.11.5/8.11.5) with ESMTP id f8NMtrF15005; Mon, 24 Sep 2001 01:56:00 +0300 (EEST) Received: (from charon@localhost) by hades.hell.gr (8.11.6/8.11.6) id f8NMtZM07085; Mon, 24 Sep 2001 01:55:35 +0300 (EEST) (envelope-from charon@labs.gr) Date: Mon, 24 Sep 2001 01:55:35 +0300 From: Giorgos Keramidas To: "James A. Peltier" Cc: freebsd-isp@FreeBSD.ORG Subject: Re: Migrate Web Server Users from OpenBSD Message-ID: <20010924015534.A6990@hades.hell.gr> References: <20010924004807.A5421@hades.hell.gr> <200109232249.f8NMnTl30243@joshua.site-fx.net> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <200109232249.f8NMnTl30243@joshua.site-fx.net> User-Agent: Mutt/1.3.22.1i X-GPG-Fingerprint: C1EB 0653 DB8B A557 3829 00F9 D60F 941A 3186 03B6 X-URL: http://labs.gr/~charon/ Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org James A. Peltier wrote: > Just more applications available for FreeBSD, pgaccess, mods for apache > etc. I'm not moving all my servers to FreeBSD just some of the busier > Websites since OpenBSD tends to be much slower for some reason than Free. > > DNS, Secure HTTP, FTP etc is still going to be on Open. Nice :) I just felt like asking, don't get me wrong. -giorgos To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sun Sep 23 16: 8: 6 2001 Delivered-To: freebsd-isp@freebsd.org Received: from joshua.site-fx.net (h24-78-60-149.vc.shawcable.net [24.78.60.149]) by hub.freebsd.org (Postfix) with ESMTP id CB7EF37B41E for ; Sun, 23 Sep 2001 16:08:02 -0700 (PDT) Received: from localhost (kissyfur.site-fx.net [192.168.0.2]) by joshua.site-fx.net (8.11.4/8.11.4) with ESMTP id f8NN80l03036; Sun, 23 Sep 2001 16:08:00 -0700 (PDT) Message-Id: <200109232308.f8NN80l03036@joshua.site-fx.net> Date: Sun, 23 Sep 2001 16:04:29 -0700 From: "James A. Peltier" Content-Type: text/plain; format=flowed; charset=us-ascii Subject: Re: Migrate Web Server Users from OpenBSD Cc: freebsd-isp@FreeBSD.ORG To: Giorgos Keramidas X-Mailer: Apple Mail (2.388) In-Reply-To: <20010924015534.A6990@hades.hell.gr> Mime-Version: 1.0 (Apple Message framework v388) Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org No probs! - James A. Peltier On Sunday, September 23, 2001, at 03:55 PM, Giorgos Keramidas wrote: > James A. Peltier wrote: >> Just more applications available for FreeBSD, pgaccess, mods for apache >> etc. I'm not moving all my servers to FreeBSD just some of the busier >> Websites since OpenBSD tends to be much slower for some reason than >> Free. >> >> DNS, Secure HTTP, FTP etc is still going to be on Open. > > Nice :) > I just felt like asking, don't get me wrong. > > -giorgos > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon Sep 24 4:40:59 2001 Delivered-To: freebsd-isp@freebsd.org Received: from web20109.mail.yahoo.com (web20109.mail.yahoo.com [216.136.226.46]) by hub.freebsd.org (Postfix) with SMTP id 2218837B416 for ; Mon, 24 Sep 2001 04:40:52 -0700 (PDT) Message-ID: <20010924114050.24599.qmail@web20109.mail.yahoo.com> Received: from [193.227.212.160] by web20109.mail.yahoo.com via HTTP; Mon, 24 Sep 2001 13:40:50 CEST Date: Mon, 24 Sep 2001 13:40:50 +0200 (CEST) From: =?iso-8859-1?q?Fabrizio=20Ravazzini?= Subject: Balance.sourceforge.net & MailServer To: freebsd-isp@freebsd.org MIME-Version: 1.0 Content-Type: text/plain; charset=iso-8859-1 Content-Transfer-Encoding: 8bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Hello all, I've two mail servers, I want to balance them with Balance.sourceforge.net. In the documentation coming with balance is written that the connection to the local machine can be forwarded to other machine. What I want is that the request that arrive to the local machine(i.e. smtp or imap) is redirected or to the local machine or to another machine in order to balance 50%, this because I've got only two machines and don't ave a third machine to install balance on it. Or, if I have two network cards for each machine, if the request arrives on the first net.card of the first machine is redirected to the second net card of the same machine or, load-balanced to the second card of the second machine. Seems complicated... I make a scheme: +--------+ Ip2A Ip2B +------------+ | MX1 |-------------------| MX2 | +--------+ +------------+ |Ip1A |Ip2A | +---------------+ | +--------| HUB |--------+ +---------------+ | |Internet I'd like to install Balance in the MX1 and serve connections with either MX1 or MX2 at 50%. Can I do this with balance or are there other solutions with balance? In DNS there are either records for MX1 and MX2, not round-robin. thanks a lot ______________________________________________________________________ Do You Yahoo!? Il tuo indirizzo gratis e per sempre @yahoo.it su http://mail.yahoo.it To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon Sep 24 21:54:35 2001 Delivered-To: freebsd-isp@freebsd.org Received: from wari.semo.net (216-41-128-73.semo.net [216.41.128.73]) by hub.freebsd.org (Postfix) with SMTP id CF24C37B435 for ; Mon, 24 Sep 2001 21:54:32 -0700 (PDT) Received: (qmail 4815 invoked from network); 25 Sep 2001 04:54:06 -0000 Received: from mail.sheltonbbs.com (206.196.109.2) by 216-41-128-73.semo.net with SMTP; 25 Sep 2001 04:54:06 -0000 Received: (qmail 21031 invoked from network); 25 Sep 2001 04:58:36 -0000 Received: from unknown (HELO 216-41-137-20.semo.net) (216.41.137.20) by mail.sheltonbbs.com with SMTP; 25 Sep 2001 04:58:36 -0000 Date: Mon, 24 Sep 2001 23:54:04 -0500 (CDT) From: Butch Evans X-Sender: root@216-41-137-20.semo.net To: Freebsd-ISP Subject: couple of questions Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org First of all, I want to add another disk to my server. I will use this disk exclusively for log files. As you know, the logs can grow quite large, so I wonder about the block size. Is it better to use a larger than 8192 block size? Pros and cons would be helpful. Next, I will be moving my existing logfiles to this disk. Is something like the following a good plan (new disk will be mounted as /var/logs): mv -R /var/log/* /var/logs mv /var/log /var/log.old ln -sf /var/logs /var/log Is there a better method? I don't mind losing a few lines of log entries during the move, I am just concerned about unknown side effects. On a side note...does anyone have a script to clean the entries in an apache log of the junk requests from the Code Red and Nimda worm? This is something I will be using in my daily maint script until the storm starts to pass. I am more familiar with perl than awk or sed (or other scripting languages), so please send in that language, if possible. TIA -- Butch Evans http://www.ChristInVerse.com/ http://www.HeIsComingSoon.com/ (in the works) To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon Sep 24 23:55:30 2001 Delivered-To: freebsd-isp@freebsd.org Received: from gekko.ms-agentur.de (server.ms-agentur.de [62.153.134.194]) by hub.freebsd.org (Postfix) with ESMTP id 8483637B40B for ; Mon, 24 Sep 2001 23:55:24 -0700 (PDT) Received: from i-clue.de (automatix.i-clue.de [192.168.0.112]) by gekko.ms-agentur.de (8.9.3/8.9.3/SuSE Linux 8.9.3-0.1) with ESMTP id JAA20635; Tue, 25 Sep 2001 09:05:04 +0200 Message-ID: <3BB02A56.60908@i-clue.de> Date: Tue, 25 Sep 2001 08:55:18 +0200 From: Christoph Sold User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.0; de-AT; rv:0.9.4+) Gecko/20010916 X-Accept-Language: de, en MIME-Version: 1.0 To: Butch Evans Cc: Freebsd-ISP Subject: Re: couple of questions References: Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Butch Evans wrote: >First of all, I want to add another disk to my server. I will use >this disk exclusively for log files. As you know, the logs can grow >quite large, so I wonder about the block size. Is it better to use >a larger than 8192 block size? Pros and cons would be helpful. > Don't know. Since there are a lot of inodes in the default disk format, you may wish to decrease the number of inodes. Anyhow, that buys only a few MB of saved space. >Next, I will be moving my existing logfiles to this disk. Is >something like the following a good plan (new disk will be mounted >as /var/logs): > >mv -R /var/log/* /var/logs >mv /var/log /var/log.old >ln -sf /var/logs /var/log > >Is there a better method? I don't mind losing a few lines of log >entries during the move, I am just concerned about unknown side >effects. > This will not work, at least, you'd have to singal each program logging to /var/log the file location has changed. Better: # mnt /dev/newdisk /mnt # cd /var/log # tar cf - . | (cd /mnt; tar xpf -) # umount /mnt To copy the old logs; # shutdown now to have all daemons (including the ones you forgot as well as syslogd) to shutdown themselves, # rm -rf /var/log/* to free the disk space occupied by your old logs # mount /dev/newdisk /var/log # ^D and you're all set up. Needs about a minute or two in single user mode. >In a side note...does anyone have a script to clean the entries in >an apache log of the junk requests from the Code Red and Nimda >worm? > grep -v "offending string" < apache.errors > apache.errors.filtered > This is something I will be using in my daily maint script >until the storm starts to pass. I am more familiar with perl than >awk or sed (or other scripting languages), so please send in that >language, if possible. > HTH -Christoph Sold To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue Sep 25 19:16:32 2001 Delivered-To: freebsd-isp@freebsd.org Received: from EnContacto.Net (adsl-64-173-182-158.dsl.mtry01.pacbell.net [64.173.182.158]) by hub.freebsd.org (Postfix) with ESMTP id 0A19837B408; Tue, 25 Sep 2001 19:16:27 -0700 (PDT) Received: (from root@localhost) by EnContacto.Net (8.11.6/8.11.4) id f8Q2GN423768; Tue, 25 Sep 2001 19:16:23 -0700 (PDT) (envelope-from eculp@EnContacto.Net) Received: from 24.20.19.75 ( [24.20.19.75]) as user eculp@Mail.SavvyWorld.Net by Mail.SavvyWorld.Net with HTTP; Tue, 25 Sep 2001 19:16:23 -0700 Message-ID: <1001470583.3bb13a7799dd4@Mail.SavvyWorld.Net> Date: Tue, 25 Sep 2001 19:16:23 -0700 From: Edwin Culp To: hardware@FreeBSD.Org Cc: ISP@FreeBSD.Org Subject: Server recommendation for co-location. MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 8bit User-Agent: Internet Messaging Program (IMP) 2.3.7-cvs X-Originating-IP: 24.20.19.75 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org I need to co-locate a server in Singapore so reliability is important:-). I am thinking of something with a ServerWorks LE-based board, multiprocessor, but with one P-III Xeon to start, running at from 700 Mhz to 1,000 Mhz, 2Gb initial ram, an extremely well ventilated box with multiple, hot swap, power supplies 500-750 watts, each. I would like to have a Raid 10 array with from .5 TB to 1 TB initially. I find the 3ware escalade 64 bit, switched, 7000 series to be a a very compelling solution but I remember seeing a thread not long ago about it having pretty serious problems in one installation, but I've also heard some very good things about it. Does anyone know of a solid raid 10 SCSI solution for FreeBSD? All suggestions appreciated especially about 3ware, motherboard, drives, etc. If I remember the drives that were having problems in the 3ware thread were IBM, so they are out. I was thinking about maxtor, I've used several (7500 rpm) for a couple of years with no problems. Now for the hard part, our finance guy wants to lease the equipment and would prefer to buy from a supplier rather than build it in house.:-( He obviously suggested, IBM, Dell, HP, Compaq, etc. etc. all of which have more trade-offs than I would like to make. Does anyone know of a real company that [could|would|does] build[s] something similar? Thanks, ed --- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue Sep 25 19:32:15 2001 Delivered-To: freebsd-isp@freebsd.org Received: from backup.dagupan.com (www.psysc.org.ph [206.101.69.5]) by hub.freebsd.org (Postfix) with ESMTP id 95FB137B414 for ; Tue, 25 Sep 2001 19:32:11 -0700 (PDT) Received: by chat.dagupan.com with Internet Mail Service (5.5.2653.19) id ; Wed, 26 Sep 2001 10:32:13 +0800 Message-ID: <10F29E27A956D511B0940050DA8D86A93409D4@chat.dagupan.com> From: francisv@dagupan.com To: isp@freebsd.org Subject: E-Commerce frontend Date: Wed, 26 Sep 2001 10:32:12 +0800 MIME-Version: 1.0 X-Mailer: Internet Mail Service (5.5.2653.19) Content-Type: text/plain Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Hi all, We're going to offer e-commerce tools as part of our web hosting package. My employer also wants the backend to interface with MS SQL but I don't like the idea of using ODBC because it's just too slow. So far, I have tried using RedHat's Interchange but I can't even make the ODBC connectivity work! Do you know any other product that meets my requirements? Thanks! --- francis vidal [bitstop network services] streaming media + web services v(02)330-2871,(02)330-2872 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue Sep 25 22: 7:21 2001 Delivered-To: freebsd-isp@freebsd.org Received: from mailsrv.otenet.gr (mailsrv.otenet.gr [195.170.0.5]) by hub.freebsd.org (Postfix) with ESMTP id 5399237B413 for ; Tue, 25 Sep 2001 22:07:15 -0700 (PDT) Received: from hades.hell.gr (patr530-a028.otenet.gr [212.205.215.28]) by mailsrv.otenet.gr (8.11.5/8.11.5) with ESMTP id f8Q56gN04112; Wed, 26 Sep 2001 08:06:51 +0300 (EEST) Received: (from charon@localhost) by hades.hell.gr (8.11.6/8.11.6) id f8Q38ZX22263; Wed, 26 Sep 2001 06:08:35 +0300 (EEST) (envelope-from charon@labs.gr) Date: Wed, 26 Sep 2001 06:08:33 +0300 From: Giorgos Keramidas To: francisv@dagupan.com Cc: isp@FreeBSD.ORG Subject: Re: E-Commerce frontend Message-ID: <20010926060832.B21817@hades.hell.gr> References: <10F29E27A956D511B0940050DA8D86A93409D4@chat.dagupan.com> Mime-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="xHFwDpU9dbj6ez1V" Content-Disposition: inline In-Reply-To: <10F29E27A956D511B0940050DA8D86A93409D4@chat.dagupan.com> User-Agent: Mutt/1.3.22.1i X-GPG-Fingerprint: C1EB 0653 DB8B A557 3829 00F9 D60F 941A 3186 03B6 X-URL: http://labs.gr/~charon/ Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org --xHFwDpU9dbj6ez1V Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable francisv@dagupan.com wrote: > Hi all, >=20 > We're going to offer e-commerce tools as part of our web hosting package.= My > employer also wants the backend to interface with MS SQL but I don't like > the idea of using ODBC because it's just too slow. So far, I have tried > using RedHat's Interchange but I can't even make the ODBC connectivity wo= rk! > Do you know any other product that meets my requirements? It would certainly help to have those requirements stated in a clear, and as much detailed way as possible. It's hard to gues if anything might meet yo= ur requirements and do what you need to do, without knowing exactly what you w= ant to do. -giorgos --xHFwDpU9dbj6ez1V Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (FreeBSD) iD8DBQE7sUaw1g+UGjGGA7YRAqsEAKCfqBfsY1rB5j9Po6ySMfBFHtlKaQCffLlS +GrkfYwUTwdted188x/ass0= =GiSM -----END PGP SIGNATURE----- --xHFwDpU9dbj6ez1V-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Sep 26 6:11:48 2001 Delivered-To: freebsd-isp@freebsd.org Received: from relay.kiev.sovam.com (relay.kiev.sovam.com [212.109.32.5]) by hub.freebsd.org (Postfix) with ESMTP id 9957237B419 for ; Wed, 26 Sep 2001 06:11:41 -0700 (PDT) Received: from [212.109.32.117] (helo=dimitry-vm.kiev.sovam.com) by relay.kiev.sovam.com with esmtp (Exim 3.22 #4) id 15mETS-000A6D-00 for freebsd-isp@freebsd.org; Wed, 26 Sep 2001 16:11:38 +0300 Date: Wed, 26 Sep 2001 16:12:19 +0300 From: Dmitry Alyabyev X-Mailer: The Bat! (v1.51) UNREG / CD5BF9353B3B7091 Reply-To: Dmitry Alyabyev X-Priority: 3 (Normal) Message-ID: <737085176.20010926161219@al.org.ua> To: freebsd-isp@freebsd.org Subject: Long usernames with '@' MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Hello I'm trying to use long usernames with '@' in passwd-file (looks like e-mails). It's need for getting account information only - not real authorization. The manual says that it's impossible. In Linux it was possible in case of using pwdb in pam.conf How I can get over that in FreeBSD 4.4 ? Thanks, -- Dimitry To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Sep 26 7:40:12 2001 Delivered-To: freebsd-isp@freebsd.org Received: from nexusinternetsolutions.net (nx1.nexusinternetsolutions.net [204.50.158.10]) by hub.freebsd.org (Postfix) with SMTP id 8737037B40E for ; Wed, 26 Sep 2001 07:40:09 -0700 (PDT) Received: (qmail 75961 invoked from network); 26 Sep 2001 14:36:44 -0000 Received: from unknown (HELO WS1) (204.50.158.15) by nx1.nexusinternetsolutions.net with SMTP; 26 Sep 2001 14:36:44 -0000 From: "Dave" To: Subject: hack or virus? Date: Wed, 26 Sep 2001 10:39:32 -0400 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 8bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2911.0) Importance: Normal X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Have a bunch of apache error log entries appearing recently... did a traceroute/dig etc... on the IP address... nothing, suspect this is an infected windows box trying to propogate its virus payload. Or is some kid trying to hack us? [Wed Sep 26 10:22:02 2001] [error] [client 204.50.92.13] File does not exist: /usr/local/www/data/nx1/scripts/..Áœ../winnt/system32/cmd.exe [Wed Sep 26 10:22:03 2001] [error] [client 204.50.92.13] File does not exist: /usr/local/www/data/nx1/scripts/..%5c../winnt/system32/cmd.exe [Wed Sep 26 10:22:03 2001] [error] [client 204.50.92.13] File does not exist: /usr/local/www/data/nx1/scripts/..%2f../winnt/system32/cmd.exe Obviously this particular incident isn't bothering us greatly since we don't have any NT servers in our network, however it is disturbing. Comments or insights appreciated. Dave To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Sep 26 7:42:48 2001 Delivered-To: freebsd-isp@freebsd.org Received: from ext-ch1gw-3.online-age.net (ext-ch1gw-3.online-age.net [216.34.191.37]) by hub.freebsd.org (Postfix) with ESMTP id DEEDE37B41F for ; Wed, 26 Sep 2001 07:42:39 -0700 (PDT) Received: from int-ch1gw-4.online-age.net (int-ch1gw-4 [3.159.232.68]) by ext-ch1gw-3.online-age.net (8.9.3+Sun/8.9.1/990426-RLH) with ESMTP id KAA06825; Wed, 26 Sep 2001 10:42:34 -0400 (EDT) Received: from crdns.crd.ge.com (localhost [127.0.0.1]) by int-ch1gw-4.online-age.net (8.9.3+Sun/8.9.1/990426-RLH) with ESMTP id KAA07484; Wed, 26 Sep 2001 10:42:33 -0400 (EDT) Received: from exc01crdge.crd.ge.com (exc01crdge.crd.ge.com [3.1.116.47]) by crdns.crd.ge.com (8.9.3/8.9.3) with ESMTP id KAA20188; Wed, 26 Sep 2001 10:42:33 -0400 (EDT) Received: by exc01crdge.crd.ge.com with Internet Mail Service (5.5.2653.19) id ; Wed, 26 Sep 2001 10:42:32 -0400 Message-ID: From: "Lapinski, Michael (CRD)" To: "'Dave'" , freebsd-isp@FreeBSD.ORG Subject: RE: hack or virus? Date: Wed, 26 Sep 2001 10:42:30 -0400 X-Mailer: Internet Mail Service (5.5.2653.19) Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Its nimda, code red, etc worms propagating themselves. -------------------------------------------------- Michael Lapinski Computer Scientist GE Corporate Research & Development "I think there is a world market for maybe five computers." - IBM Chairman Thomas Watson, 1943 -----Original Message----- From: Dave [mailto:dave@nexusinternetsolutions.net] Sent: Wednesday, September 26, 2001 10:40 AM To: freebsd-isp@FreeBSD.ORG Subject: hack or virus? Have a bunch of apache error log entries appearing recently... did a traceroute/dig etc... on the IP address... nothing, suspect this is an infected windows box trying to propogate its virus payload. Or is some kid trying to hack us? [Wed Sep 26 10:22:02 2001] [error] [client 204.50.92.13] File does not exist: /usr/local/www/data/nx1/scripts/..Aoe../winnt/system32/cmd.exe [Wed Sep 26 10:22:03 2001] [error] [client 204.50.92.13] File does not exist: /usr/local/www/data/nx1/scripts/..%5c../winnt/system32/cmd.exe [Wed Sep 26 10:22:03 2001] [error] [client 204.50.92.13] File does not exist: /usr/local/www/data/nx1/scripts/..%2f../winnt/system32/cmd.exe Obviously this particular incident isn't bothering us greatly since we don't have any NT servers in our network, however it is disturbing. Comments or insights appreciated. Dave To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Sep 26 8:47:12 2001 Delivered-To: freebsd-isp@freebsd.org Received: from atlas.rccn.net (atlas.rccn.net [193.136.7.1]) by hub.freebsd.org (Postfix) with SMTP id 73E2637B40E for ; Wed, 26 Sep 2001 08:47:08 -0700 (PDT) Received: (qmail 92435 invoked from network); 26 Sep 2001 15:46:54 -0000 Received: (ofmipd unknown); 26 Sep 2001 15:46:32 -0000 Date: 26 Sep 2001 16:46:45 +0100 Message-ID: <0ca401c146a2$723de5f0$dc0788c1@jpsp2> From: "=?iso-8859-1?Q?Jo=E3o_Pagaime?=" To: freebsd-isp@freebsd.org Subject: Fw: SSH2 dies when idle MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 8bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.50.4522.1200 X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4522.1200 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Hello all, I remember someone set a call-back for me to reply to his email, if I got to solve this problem, but I deleted his email, so here it is anyhow. The problem was a statefull firewall that closed idle connections older than one hour. The solution was to make the server start the TCP keep-alive algorithm earlier (75 seconds for instance instead of 2 hours), through a sysctl command, like this: $ sysctl -w net.inet.tcp.keepinit=75000 The bad network channel was just a coincidence (after the firewall, all network channels aren't so great...) --jp ----- Original Message ----- From: "João Pagaime" To: Hello all, > > My idle SSH sessions sometimes die out, when connected > to some servers reachable through a not-so-good > network channel (1% packet loss and big jitter) > > I wouldn't like to totally desconfigure TCP Keep > alives on those SSH sessions, but would like > to decrease it's sensibly. > > Has anybody had the same problem and come up > with a solution? > > Thanks, > Joao > > PS: SSH version is 2.0.13 > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Sep 26 13:30:21 2001 Delivered-To: freebsd-isp@freebsd.org Received: from coloradosurf.com (c1520339-a.lakwod1.co.home.com [24.179.159.58]) by hub.freebsd.org (Postfix) with ESMTP id ADA2537B409 for ; Wed, 26 Sep 2001 13:30:13 -0700 (PDT) Received: (from root@localhost) by coloradosurf.com (8.9.3/8.9.3) id OAA38936 for freebsd-isp@freebsd.org; Wed, 26 Sep 2001 14:34:13 -0600 (MDT) (envelope-from mike) Received: (from mike@localhost) by coloradosurf.com (8.9.3/8.9.3av) id OAA38928 for freebsd-isp@freebsd.org; Wed, 26 Sep 2001 14:34:11 -0600 (MDT) (envelope-from mike) Date: Wed, 26 Sep 2001 14:34:11 -0600 From: mike To: freebsd-isp@freebsd.org Subject: Maildirs [OT?] Message-ID: <20010926143411.A38907@coloradosurf.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i X-Virus-Scanned: by AMaViS perl-10 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Sorry if this should've gone to -questions. Wasn't sure... My question is about the mail dir (where the local delivery agent puts incoming mail). It branches off into 'where does the $MAIL variable come from' (and I'm pretty sure it isn't from under the cabbage patch). Does it come from /etc/login.conf ? Is it hidden in a conf file some where? In Ted Middlestadt's book, he sez that FreeBSD puts its mail in /var/mail. This is familiar. How does one utilize the "feature" of putting mail into something like $HOME/mail. I use sendmail/procmail/cucipop for my users. The real question: Is the $MAILDIR specific to each program and therefore supported by certain MTA's LDA's and pop3 servers or is it determined somewhere in the OS and overridden by some of these programs? Grateful for any clues, direction, man pages, reference material, etc. mike To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Sep 26 13:50:24 2001 Delivered-To: freebsd-isp@freebsd.org Received: from smtp.kka.com (smtp.kka.com [63.141.65.2]) by hub.freebsd.org (Postfix) with ESMTP id CC88837B431 for ; Wed, 26 Sep 2001 13:50:19 -0700 (PDT) Subject: Re: Maildirs [OT?] To: mike Cc: freebsd-isp@freebsd.org X-Mailer: Lotus Notes Release 5.0.2a November 23, 1999 Message-ID: From: Eric_Stanfield@kenokozie.com Date: Wed, 26 Sep 2001 15:47:57 -0500 X-MIMETrack: Serialize by Router on Notes1st/Keno(Release 5.0.4 |June 8, 2000) at 09/26/2001 03:48:10 PM MIME-Version: 1.0 Content-type: text/plain; charset=us-ascii Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org I know of two ways to go - your mileage may vary. 1) I symlinked /var/mail to /usr/mail so I could take advantage of the disk space in /usr w/o having to screw around with option 2... ie, ln /var/mail/joe -> /usr/mail/joe or 2) recompile the mail substem. There's a file in there that defines /var/mail as the system mail dir. You can change it to what you like, recompile everything and you're good. I believe the source files in question are in src/mail . Now, I've seen posts of people having trouble doing the symlink thing. It's worked fine for me for quite some time but maybe I got lucky. I can also tell you that if you try and define $MAIL as something other than /var/mail/username it will take your changes and then continue to dump mail into /var/mail/username regardless. To get around that, you must recompile the mail system per above. -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- Eric Stanfield, K2Access Keno Kozie Associates 222 N LaSalle #1500 Chicago, IL 60606 (312) 332-3000 mike cc: Sent by: Subject: Maildirs [OT?] owner-freebsd-isp@F reeBSD.ORG 09/26/01 03:34 PM Sorry if this should've gone to -questions. Wasn't sure... My question is about the mail dir (where the local delivery agent puts incoming mail). It branches off into 'where does the $MAIL variable come from' (and I'm pretty sure it isn't from under the cabbage patch). Does it come from /etc/login.conf ? Is it hidden in a conf file some where? In Ted Middlestadt's book, he sez that FreeBSD puts its mail in /var/mail. This is familiar. How does one utilize the "feature" of putting mail into something like $HOME/mail. I use sendmail/procmail/cucipop for my users. The real question: Is the $MAILDIR specific to each program and therefore supported by certain MTA's LDA's and pop3 servers or is it determined somewhere in the OS and overridden by some of these programs? Grateful for any clues, direction, man pages, reference material, etc. mike To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Sep 26 14:14:13 2001 Delivered-To: freebsd-isp@freebsd.org Received: from rj.sgi.com (rj.SGI.COM [204.94.215.100]) by hub.freebsd.org (Postfix) with ESMTP id 88EE737B40F for ; Wed, 26 Sep 2001 14:14:06 -0700 (PDT) Received: from relay1.corp.sgi.com (spindle.corp.sgi.com [198.29.75.13]) by rj.sgi.com (8.11.4/8.11.4/linux-outbound_gateway-1.0) with ESMTP id f8QLE6L07499; Wed, 26 Sep 2001 14:14:06 -0700 Received: from site-fx.net (sshgate.corp.sgi.com [169.238.216.146]) by relay1.corp.sgi.com (980427.SGI.8.8.8/970903.SGI.AUTOCF) via ESMTP id OAA90836; Wed, 26 Sep 2001 14:13:48 -0700 (PDT) Message-ID: <3BB24488.2020804@site-fx.net> Date: Wed, 26 Sep 2001 14:11:36 -0700 From: "James A. Peltier" User-Agent: Mozilla/5.0 (Windows; U; WinNT4.0; en-US; rv:0.9.2) Gecko/20010726 Netscape6/6.1 X-Accept-Language: en-us MIME-Version: 1.0 To: Eric_Stanfield@kenokozie.com Cc: mike , freebsd-isp@FreeBSD.ORG Subject: Re: Maildirs [OT?] References: Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org can't you just create a symlink from /home/$user to /var/mail/$user ??? Eric_Stanfield@kenokozie.com wrote: >I know of two ways to go - your mileage may vary. > >1) I symlinked /var/mail to /usr/mail so I could take advantage of the disk >space in /usr w/o having to screw around with option 2... ie, ln >/var/mail/joe -> /usr/mail/joe > >or > >2) recompile the mail substem. There's a file in there that defines >/var/mail as the system mail dir. You can change it to what you like, >recompile everything and you're good. I believe the source files in >question are in src/mail . > >Now, I've seen posts of people having trouble doing the symlink thing. >It's worked fine for me for quite some time but maybe I got lucky. > >I can also tell you that if you try and define $MAIL as something other >than /var/mail/username it will take your changes and then continue to dump >mail into /var/mail/username regardless. To get around that, you must >recompile the mail system per above. > >-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- > >Eric Stanfield, K2Access >Keno Kozie Associates >222 N LaSalle #1500 >Chicago, IL 60606 >(312) 332-3000 > > > > > > mike > com> cc: > Sent by: Subject: Maildirs [OT?] > owner-freebsd-isp@F > reeBSD.ORG > > > 09/26/01 03:34 PM > > > > > > >Sorry if this should've gone to -questions. Wasn't sure... > > >My question is about the mail dir (where the local delivery agent puts >incoming mail). It branches off into 'where does the $MAIL variable >come from' (and I'm pretty sure it isn't from under the cabbage patch). > >Does it come from /etc/login.conf ? Is it hidden in a conf file some >where? In Ted Middlestadt's book, he sez that FreeBSD puts its mail >in /var/mail. This is familiar. How does one utilize the "feature" of >putting mail into something like $HOME/mail. > >I use sendmail/procmail/cucipop for my users. > >The real question: > >Is the $MAILDIR specific to each program and therefore supported by >certain MTA's LDA's and pop3 servers or is it determined somewhere >in the OS and overridden by some of these programs? > >Grateful for any clues, direction, man pages, reference material, etc. > >mike > >To Unsubscribe: send mail to majordomo@FreeBSD.org >with "unsubscribe freebsd-isp" in the body of the message > > > > > >To Unsubscribe: send mail to majordomo@FreeBSD.org >with "unsubscribe freebsd-isp" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Sep 26 14:21:30 2001 Delivered-To: freebsd-isp@freebsd.org Received: from opensrs.saignon.net (216-120-17-31.dsl.cust.tfb.com [216.120.17.31]) by hub.freebsd.org (Postfix) with ESMTP id 0A83237B401 for ; Wed, 26 Sep 2001 14:21:26 -0700 (PDT) Received: from tsaignmobl (u2938@prx2.ipivot.com [216.188.41.2]) by opensrs.saignon.net (8.11.4/8.11.3) with SMTP id f8QLNBw19605 for ; Wed, 26 Sep 2001 14:23:11 -0700 (PDT) (envelope-from tony@saign.com) From: Tony Saign Reply-To: To: Subject: Question about FreeBSD isp server Date: Wed, 26 Sep 2001 14:21:21 -0700 Message-ID: <000001c146d1$310588c0$da0b010a@tsaignmobl> X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook CWS, Build 9.0.2416 (9.0.2911.0) Importance: Normal X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org I just registered a domain name for my family, and would appreciate some advice. I want to configure a web server that people can request an account, and after I approve it's automagically created. Planning on using FreeBSD4.4 with Apache & ??? - I want to configure the server so anyone can publish a website based in their home directory to share pictures etc. (i.e. websitename.mydomain.info, where 'website' name will be picked by them) - I can handle the DNS portion, and the Apache virtual server(s) - Any way to automate this, or utilities out there that have already been scripted?? - Needs to be password protected for access to any 3rd level webs Since I have seen quite a few messages posted about similar issues on this list, I figured all you experts could offer some advice. Thanks in advance, -Tony To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Sep 26 15: 8: 4 2001 Delivered-To: freebsd-isp@freebsd.org Received: from mailsrv.otenet.gr (mailsrv.otenet.gr [195.170.0.5]) by hub.freebsd.org (Postfix) with ESMTP id C6DF337B434 for ; Wed, 26 Sep 2001 15:07:57 -0700 (PDT) Received: from hades.hell.gr (patr530-a169.otenet.gr [212.205.215.169]) by mailsrv.otenet.gr (8.11.5/8.11.5) with ESMTP id f8QM7mY25774; Thu, 27 Sep 2001 01:07:48 +0300 (EEST) Received: (from charon@localhost) by hades.hell.gr (8.11.6/8.11.6) id f8QLwGr44061; Thu, 27 Sep 2001 00:58:16 +0300 (EEST) (envelope-from charon@labs.gr) Date: Thu, 27 Sep 2001 00:58:16 +0300 From: Giorgos Keramidas To: Dmitry Alyabyev Cc: freebsd-isp@FreeBSD.ORG Subject: Re: Long usernames with '@' Message-ID: <20010927005816.C43618@hades.hell.gr> References: <737085176.20010926161219@al.org.ua> Mime-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="JWEK1jqKZ6MHAcjA" Content-Disposition: inline In-Reply-To: <737085176.20010926161219@al.org.ua> User-Agent: Mutt/1.3.22.1i X-GPG-Fingerprint: C1EB 0653 DB8B A557 3829 00F9 D60F 941A 3186 03B6 X-URL: http://labs.gr/~charon/ Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org --JWEK1jqKZ6MHAcjA Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable Dmitry Alyabyev wrote: > Hello >=20 > I'm trying to use long usernames with '@' in passwd-file (looks like > e-mails). It's need for getting account information only - not real > authorization. The manual says that it's impossible. > In Linux it was possible in case of using pwdb in pam.conf > How I can get over that in FreeBSD 4.4 ? Do you absolutely *have* to use the password file for this type of stuff? If all you want is some form of textual database, that holds account information, then you're much better rolling off some custom interface to a= set of flat text files, instead of polluting your passwd files with information that is not related to authentication. (As for the original question, you dont say how exactly you 'are trying to = use usernames with '@' in passwd-file'. You'll have to provide more informatio= n, if you really want someone to be able to help you. The exact steps taken to use such usernames, ar a good starting point.) -giorgos --JWEK1jqKZ6MHAcjA Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (FreeBSD) iD8DBQE7sk931g+UGjGGA7YRAgj6AJ9HthjtNT+ZQAGBzO4Bp58QN1uw8ACgkIYB qaPqWM9cIsV18nShru89UZY= =29eb -----END PGP SIGNATURE----- --JWEK1jqKZ6MHAcjA-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Sep 26 17: 3:10 2001 Delivered-To: freebsd-isp@freebsd.org Received: from ren.sasknow.com (ren.sasknow.com [207.195.92.131]) by hub.freebsd.org (Postfix) with ESMTP id 312F537B407 for ; Wed, 26 Sep 2001 17:03:05 -0700 (PDT) Received: from localhost (ryan@localhost) by ren.sasknow.com (8.9.3/8.9.3) with ESMTP id SAA70733; Wed, 26 Sep 2001 18:03:01 -0600 (CST) (envelope-from ryan@sasknow.com) Date: Wed, 26 Sep 2001 18:03:01 -0600 (CST) From: Ryan Thompson To: Butch Evans Cc: Freebsd-ISP Subject: Re: couple of questions In-Reply-To: Message-ID: Organization: SaskNow Technologies [www.sasknow.com] MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Butch Evans wrote to Freebsd-ISP: > First of all, I want to add another disk to my server. I will use > this disk exclusively for log files. As you know, the logs can grow > quite large, so I wonder about the block size. Is it better to use a > larger than 8192 block size? Pros and cons would be helpful. I doubt it... You're not going to really waste any space with a larger blocksize, because presumably the number of log files you have will be small. But then again, you're not going to gain much either. Logs are written in small pieces (line by line, maybe buffered in small chunks), but since they're written to a lot, having a really huge blocksize means that every time they're written, you're moving around larger blocks and larger frags... So in that case, larger blocks might actually hinder performance. Depending on what sort of caching you have, you probably won't notice. 8192/1024 is good for most everything these days. Turn your bytes per inode way up. Otherwise, on large drives, you'll have WAY more inodes than you'll ever use, which wastes space. The default is to allocate one inode per every 4096 bytes! (So, unless you have a million or so fragment-size files, you probably want to increase that :-). Other than that, don't be too tempted to play with newfs/tunefs options... There isn't a lot to be gained, and many settings can cause problems (sometimes WEIRD ones ;-) many of them are legacy options that don't apply to newer, smarter controllers. > Next, I will be moving my existing logfiles to this disk. Is > something like the following a good plan (new disk will be mounted > as /var/logs): > > mv -R /var/log/* /var/logs > mv /var/log /var/log.old > ln -sf /var/logs /var/log > > Is there a better method? I don't mind losing a few lines of log > entries during the move, I am just concerned about unknown side > effects. Well, assuming your new drive is not hot-pluggable, you're going to have to shut the system down to install it anyway... So, when you bring the system up with the new drive, newfs, disklabel, and mount it in single user mode, and while you're still in single user, do something like what you mention above. If you do this while in single user mode, it will probably only take a minute or two (unless you have many GB of logs), but you won't lose any log data, and you won't have to worry about restarting syslog and other daemons that keep open files in /var/log). > On a side note...does anyone have a script to clean the entries in an > apache log of the junk requests from the Code Red and Nimda worm? Who needs a script? :-) grep -v system32/cmd.exe access.log >access.filtered.log Run the same command on error.log > This is something I will be using in my daily maint script until the > storm starts to pass. Just wrap that in a shell script. It is recommended that you run this on log files that have already been rotated. Otherwise, you will have locking problems and/or cause grief with apache writing further info to logs. Not quite sure exactly what your scenario is in that regard, so I'll refrain from speculation ;-) > I am more familiar with perl than awk or sed (or other scripting > languages), so please send in that language, if possible. > > TIA > > -- Ryan Thompson Network Administrator, Accounts SaskNow Technologies - http://www.sasknow.com #106-380 3120 8th St E - Saskatoon, SK - S7H 0W2 Tel: 306-664-3600 Fax: 306-664-1161 Saskatoon Toll-Free: 877-727-5669 (877-SASKNOW) North America To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu Sep 27 2:30: 6 2001 Delivered-To: freebsd-isp@freebsd.org Received: from relay.kiev.sovam.com (relay.kiev.sovam.com [212.109.32.5]) by hub.freebsd.org (Postfix) with ESMTP id 47F4A37B408 for ; Thu, 27 Sep 2001 02:29:55 -0700 (PDT) Received: from [212.109.32.117] (helo=dimitry-vm.kiev.sovam.com) by relay.kiev.sovam.com with esmtp (Exim 3.22 #4) id 15mXUN-000NrS-00; Thu, 27 Sep 2001 12:29:51 +0300 Date: Thu, 27 Sep 2001 12:30:50 +0300 From: Dmitry Alyabyev X-Mailer: The Bat! (v1.51) UNREG / CD5BF9353B3B7091 Reply-To: Dmitry Alyabyev X-Priority: 3 (Normal) Message-ID: <12180028553.20010927123050@al.org.ua> To: Giorgos Keramidas Cc: freebsd-isp@FreeBSD.ORG Subject: Re[2]: Long usernames with '@' In-Reply-To: <20010927005816.C43618@hades.hell.gr> References: <737085176.20010926161219@al.org.ua> <20010927005816.C43618@hades.hell.gr> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Thursday, September 27, 2001, 12:58:16 AM, Giorgos Keramidas wrote: > Dmitry Alyabyev wrote: >> Hello >> >> I'm trying to use long usernames with '@' in passwd-file (looks like >> e-mails). It's need for getting account information only - not real >> authorization. The manual says that it's impossible. >> In Linux it was possible in case of using pwdb in pam.conf >> How I can get over that in FreeBSD 4.4 ? > Do you absolutely *have* to use the password file for this type of stuff? No, I just try to find a solution. But using *SQL isn't preferable way. > If all you want is some form of textual database, that holds account > information, then you're much better rolling off some custom interface to a set > of flat text files, instead of polluting your passwd files with information > that is not related to authentication. Reasonable. Could you recommend some pam-module for working over plain text file ? > (As for the original question, you dont say how exactly you 'are trying to use > usernames with '@' in passwd-file'. You'll have to provide more information, > if you really want someone to be able to help you. The exact steps taken to > use such usernames, ar a good starting point.) Well, my target is getting account info via PAM for ftp daemon. -- Dimitry To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu Sep 27 8: 7: 6 2001 Delivered-To: freebsd-isp@freebsd.org Received: from backup.dagupan.com (www.psysc.org.ph [206.101.69.5]) by hub.freebsd.org (Postfix) with ESMTP id 23B4D37B427 for ; Thu, 27 Sep 2001 08:07:03 -0700 (PDT) Received: by chat.dagupan.com with Internet Mail Service (5.5.2653.19) id ; Thu, 27 Sep 2001 23:06:55 +0800 Message-ID: <10F29E27A956D511B0940050DA8D86A93409EF@chat.dagupan.com> From: francisv@dagupan.com To: isp@freebsd.org Subject: 3Ware vendors Date: Thu, 27 Sep 2001 23:06:54 +0800 MIME-Version: 1.0 X-Mailer: Internet Mail Service (5.5.2653.19) Content-Type: text/plain Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Hi all, I've been trying to communicate with 3Ware for since last week and I haven't gotten any response. I also contacted their resellers via e-mail in Southeast Asia but none responded (out of 3). Do you know where I can buy _directly_ 3Ware's Escalade (IDE RAID controller) product line? __ | |--. : francis_vidal [ bitstop_network_services ] | _ | : v+63.2.330.2871-73 / f+63.2.330.2873 / easycall 755 |_____| : http://www.dagupan.com :: pgp_key_id 0x30500CA1 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu Sep 27 10:44:57 2001 Delivered-To: freebsd-isp@freebsd.org Received: from backup.dagupan.com (www.psysc.org.ph [206.101.69.5]) by hub.freebsd.org (Postfix) with ESMTP id B0F7537B41D for ; Thu, 27 Sep 2001 10:44:50 -0700 (PDT) Received: by chat.dagupan.com with Internet Mail Service (5.5.2653.19) id ; Fri, 28 Sep 2001 01:44:45 +0800 Message-ID: <10F29E27A956D511B0940050DA8D86A93409F4@chat.dagupan.com> From: francisv@dagupan.com To: isp@freebsd.org Subject: jail tips Date: Fri, 28 Sep 2001 01:44:44 +0800 MIME-Version: 1.0 X-Mailer: Internet Mail Service (5.5.2653.19) Content-Type: text/plain Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Hi all, We would like to offer virtual private servers to our clients and we would be needing FreeBSD's 'jail'. I tried creating a sample jail by following the steps outlined in the man page but doing this twice or thrice would mean re-building the sources again from scratch! What's the fastest way of doing this? Also, there seems to be a quirk when running /stand/sysinstall from a jailed environment without a CD-ROM present in the drive. It refuses to detect the drive after failing to detect the media on the first try. What's the workaround this quirk? __ | |--.-----.-----. francis Vidal :: bitstop network services | _ | |__ --| v+63.2.330.2871-73 / f+63.2.330.2873 / EasyCall 755 |_____|__|__|_____| http://www.dagupan.com :: PGP Key ID 0x30500CA1 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu Sep 27 11:25:40 2001 Delivered-To: freebsd-isp@freebsd.org Received: from smtp.kka.com (smtp.kka.com [63.141.65.2]) by hub.freebsd.org (Postfix) with ESMTP id 1C3DC37B414 for ; Thu, 27 Sep 2001 11:25:37 -0700 (PDT) Subject: OT: 4.4-RELEASE wtf did they do To: isp@freebsd.org X-Mailer: Lotus Notes Release 5.0.2a November 23, 1999 Message-ID: From: Eric_Stanfield@kenokozie.com Date: Thu, 27 Sep 2001 13:23:24 -0500 X-MIMETrack: Serialize by Router on Notes1st/Keno(Release 5.0.4 |June 8, 2000) at 09/27/2001 01:23:26 PM MIME-Version: 1.0 Content-type: text/plain; charset=us-ascii Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Anyone else played with 4.4 yet? I did a binary upgrade from 4.3 which said it was successful and then left me with a massive amount of errors to deal with after I rebooted. Threw in the towel and decided to install from scratch. Everything went well but using sysinstall to toss in some basic packages after the initial installation as well as two subsequent attempts the next day show sysinstall taking 99% cpu and stalling out after downloading a couple of packages. I let it run overnight and eventually it did finish the package downloads but only succedded in installing 2 of the 10 I selected (using the 4.4 install iso as media). Been doing this since 3.4 so I don't think this is user error on my part. Never had such troubles in the past... -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- Eric Stanfield, K2Access Keno Kozie Associates 222 N LaSalle #1500 Chicago, IL 60606 (312) 332-3000 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu Sep 27 19:40: 4 2001 Delivered-To: freebsd-isp@freebsd.org Received: from hotmail.com (f224.law11.hotmail.com [64.4.17.224]) by hub.freebsd.org (Postfix) with ESMTP id E6D6F37B406; Thu, 27 Sep 2001 19:39:58 -0700 (PDT) Received: from mail pickup service by hotmail.com with Microsoft SMTPSVC; Thu, 27 Sep 2001 19:39:58 -0700 Received: from 63.11.217.211 by lw11fd.law11.hotmail.msn.com with HTTP; Fri, 28 Sep 2001 02:39:58 GMT X-Originating-IP: [63.11.217.211] From: "Van Mathers" To: freebsd-isp@freebsd.org, freebsd-security@freebsd.org Subject: protect name services from denial of service? Date: Fri, 28 Sep 2001 02:39:58 +0000 Mime-Version: 1.0 Content-Type: text/plain; format=flowed Message-ID: X-OriginalArrivalTime: 28 Sep 2001 02:39:58.0755 (UTC) FILETIME=[DD740730:01C147C6] Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Hi, I've some FreeBSD based name servers for a government agency. I'd like to develop some Denial of service prevention mechanism. Can anyone recommend configurations or sysctl knobs to turn to assist in DoS type attacks? Any advice or direction welcome here. VM _________________________________________________________________ Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu Sep 27 19:51:15 2001 Delivered-To: freebsd-isp@freebsd.org Received: from ns.morning.ru (ns.morning.ru [195.161.98.5]) by hub.freebsd.org (Postfix) with ESMTP id 5558F37B408; Thu, 27 Sep 2001 19:51:09 -0700 (PDT) Received: from NDNM ([195.161.98.250]) by ns.morning.ru (8.11.5/8.11.5) with ESMTP id f8S2p4d50920; Fri, 28 Sep 2001 10:51:04 +0800 (KRAST) Date: Fri, 28 Sep 2001 10:52:10 +0800 From: Igor Podlesny X-Mailer: The Bat! (v1.53d) UNREG / CD5BF9353B3B7091 Organization: Morning Network X-Priority: 3 (Normal) Message-ID: <1731110523918.20010928105210@morning.ru> To: "Van Mathers" Cc: freebsd-isp@FreeBSD.ORG, freebsd-security@FreeBSD.ORG Subject: Re: protect name services from denial of service? In-Reply-To: References: MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org > Hi, > I've some FreeBSD based name servers for a government agency. > I'd like to develop some Denial of service prevention mechanism. > Can anyone recommend configurations or sysctl knobs to turn > to assist in DoS type attacks? Any advice or direction welcome > here. VM http://www.money-for-nothing.org/ > _________________________________________________________________ > Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message -- Igor mailto:poige@morning.ru To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Sep 28 8:50:57 2001 Delivered-To: freebsd-isp@freebsd.org Received: from smtp1.amigo.net (smtp1.amigo.net [209.94.64.30]) by hub.freebsd.org (Postfix) with ESMTP id 2D67637B409 for ; Fri, 28 Sep 2001 08:50:54 -0700 (PDT) Received: from there (billing.amigo.net [209.94.67.250]) by smtp1.amigo.net (8.11.4/8.11.4) with SMTP id f8SFv2v05555; Fri, 28 Sep 2001 09:57:08 -0600 (MDT) (envelope-from randys@amigo.net) Message-Id: <200109281557.f8SFv2v05555@smtp1.amigo.net> Content-Type: text/plain; charset="iso-8859-1" From: Randy Smith Organization: Amigo.Net To: Subject: Re: Question about FreeBSD isp server Date: Fri, 28 Sep 2001 09:50:59 -0600 X-Mailer: KMail [version 1.3] References: <000001c146d1$310588c0$da0b010a@tsaignmobl> In-Reply-To: <000001c146d1$310588c0$da0b010a@tsaignmobl> Cc: freebsd-isp@freebsd.org MIME-Version: 1.0 Content-Transfer-Encoding: 8bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org On Wednesday 26 September 2001 15:21, you wrote: > I just registered a domain name for my family, and would appreciate some > advice. > > I want to configure a web server that people can request an account, and > after I approve it's automagically created. Planning on using FreeBSD4.4 > with Apache & ??? > > - I want to configure the server so anyone can publish a website based in > their home directory to share pictures etc. (i.e. > websitename.mydomain.info, where 'website' name will be picked by them) - I > can handle the DNS portion, and the Apache virtual server(s) > - Any way to automate this, or utilities out there that have already been > scripted?? I have a Perl script that will create the user, website and update apache. (Runs from the command line.) (I use it to add virtual hosts at the ISP where I work.) You have to be there to enter the password so it's not totally automatic. (It's not a problem for me since I have to enter their password sometime. :-) However, I use 'pw' to add the user so pw(8) my give you some clues on how to automate the password entry if you need to.) Contact me off the list if you (or anyone else reading this) wants a copy. > - Needs to be password protected for access to any 3rd level > webs > I'm not sure what you need here. Do you want to password protect the sites or the script? > > Since I have seen quite a few messages posted about similar issues on this > list, I figured all you experts could offer some advice. > > Thanks in advance, Glad to help. > > -Tony > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message -- Randy Smith Amigo.Net Systems Administrator 1-719-589-6100 x 4185 http://www.amigo.net/ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Sep 28 9:51:50 2001 Delivered-To: freebsd-isp@freebsd.org Received: from smtp1.amigo.net (smtp1.amigo.net [209.94.64.30]) by hub.freebsd.org (Postfix) with ESMTP id 548B137B40E for ; Fri, 28 Sep 2001 09:51:46 -0700 (PDT) Received: from there (billing.amigo.net [209.94.67.250]) by smtp1.amigo.net (8.11.4/8.11.4) with SMTP id f8SGwEv07365 for ; Fri, 28 Sep 2001 10:58:14 -0600 (MDT) (envelope-from randys@amigo.net) Message-Id: <200109281658.f8SGwEv07365@smtp1.amigo.net> Content-Type: text/plain; charset="iso-8859-1" From: Randy Smith Organization: Amigo.Net To: freebsd-isp@freebsd.org Subject: Re: Question about FreeBSD isp server Date: Fri, 28 Sep 2001 10:52:12 -0600 X-Mailer: KMail [version 1.3] References: <000001c146d1$310588c0$da0b010a@tsaignmobl> <200109281557.f8SFv2v05555@smtp1.amigo.net> In-Reply-To: <200109281557.f8SFv2v05555@smtp1.amigo.net> MIME-Version: 1.0 Content-Transfer-Encoding: 8bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org > I have a Perl script that will create the user, website and update apache. > (Runs from the command line.) (I use it to add virtual hosts at the ISP > where I work.) You have to be there to enter the password so it's not > totally automatic. (It's not a problem for me since I have to enter their > password sometime. :-) However, I use 'pw' to add the user so pw(8) my give > you some clues on how to automate the password entry if you need to.) > > Contact me off the list if you (or anyone else reading this) wants a copy. > Due to your great intrest, I've posted a tarball with the script at ftp://ftp.amigo.net/add-site.tar.gz. It's five files: add-site.pl create-cgi.sh start stop restart Let me know if you have any questions. -- Randy Smith Amigo.Net Systems Administrator 1-719-589-6100 x 4185 http://www.amigo.net/ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Sep 28 13:52:28 2001 Delivered-To: freebsd-isp@freebsd.org Received: from workhorse.iMach.com (workhorse.iMach.com [206.127.77.89]) by hub.freebsd.org (Postfix) with ESMTP id 3504C37B407 for ; Fri, 28 Sep 2001 13:52:26 -0700 (PDT) Received: from localhost (forrestc@localhost) by workhorse.iMach.com (8.9.3/8.9.3) with ESMTP id OAA03383 for ; Fri, 28 Sep 2001 14:52:13 -0600 (MDT) Date: Fri, 28 Sep 2001 14:52:12 -0600 (MDT) From: "Forrest W. Christian" To: freebsd-isp@freebsd.org Subject: Jail Hosting Provider? Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Does anyone (or know of someone who) provide Jail virtual "server" hosting? In relation to the Secondary DNS service I run (http://www.backupdns.com), I would like to add another DNS server somewhere else in the country. However, I can't particularly afford to put this in a separate box in a collocation facility elsewhere due to the high recurring. Ideally, I'd either like to find someone who would let me run named, cron and a few scripts in a jail (root access to the jail is needed). Or perhaps even better a dirt-cheap-real-collocation provider. Any ideas? - Forrest W. Christian (forrestc@imach.com) AC7DE ---------------------------------------------------------------------- The Innovation Machine Ltd. P.O. Box 5749 http://www.imach.com/ Helena, MT 59604 Home of PacketFlux Technogies and BackupDNS.com (406)-442-6648 ---------------------------------------------------------------------- Protect your personal freedoms - visit http://www.lp.org/ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Sep 28 17: 3: 9 2001 Delivered-To: freebsd-isp@freebsd.org Received: from mailsrv.otenet.gr (mailsrv.otenet.gr [195.170.0.5]) by hub.freebsd.org (Postfix) with ESMTP id F0AB537B415; Fri, 28 Sep 2001 17:02:46 -0700 (PDT) Received: from hades.hell.gr (patr530-a031.otenet.gr [212.205.215.31]) by mailsrv.otenet.gr (8.11.5/8.11.5) with ESMTP id f8T02fR17956; Sat, 29 Sep 2001 03:02:41 +0300 (EEST) Received: (from charon@localhost) by hades.hell.gr (8.11.6/8.11.6) id f8S9O0Z44539; Fri, 28 Sep 2001 12:24:01 +0300 (EEST) (envelope-from charon@labs.gr) Date: Fri, 28 Sep 2001 12:23:58 +0300 From: Giorgos Keramidas To: Igor Podlesny Cc: Van Mathers , freebsd-isp@freebsd.org, freebsd-security@freebsd.org Subject: Re: protect name services from denial of service? Message-ID: <20010928122357.A44423@hades.hell.gr> References: <1731110523918.20010928105210@morning.ru> Mime-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="gBBFr7Ir9EOA20Yy" Content-Disposition: inline In-Reply-To: <1731110523918.20010928105210@morning.ru> User-Agent: Mutt/1.3.22.1i X-GPG-Fingerprint: C1EB 0653 DB8B A557 3829 00F9 D60F 941A 3186 03B6 X-URL: http://labs.gr/~charon/ Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org --gBBFr7Ir9EOA20Yy Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable Igor Podlesny wrote: >=20 > > I've some FreeBSD based name servers for a government agency. > > I'd like to develop some Denial of service prevention mechanism. > > Can anyone recommend configurations or sysctl knobs to turn > > to assist in DoS type attacks? Any advice or direction welcome > > here. VM >=20 > http://www.money-for-nothing.org/ Hmmm, forgive my ignorance. But what would the ``official Dire Straits homepage'' have to do with DNS attacks? :-/ -giorgos --gBBFr7Ir9EOA20Yy Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (FreeBSD) iD8DBQE7tEGt1g+UGjGGA7YRAortAJ4lmbm0hoE/aV751uKPrmkWqc7LpwCgxAMc 65iEnRB9eN89SYqu3XGEusQ= =MtDL -----END PGP SIGNATURE----- --gBBFr7Ir9EOA20Yy-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Sep 28 17:45:41 2001 Delivered-To: freebsd-isp@freebsd.org Received: from mail.day-light.net (dle.day-light.net [64.37.72.2]) by hub.freebsd.org (Postfix) with ESMTP id C9C2337B40D for ; Fri, 28 Sep 2001 17:45:38 -0700 (PDT) Received: from w1 (118-203.bestdsl.net [216.162.118.203]) by mail.day-light.net (Postfix) with SMTP id 0924043E52 for ; Fri, 28 Sep 2001 19:45:38 -0500 (CDT) Reply-To: From: "John Brooks" To: Subject: RE: protect name services from denial of service? Date: Fri, 28 Sep 2001 19:43:11 -0500 Message-ID: <000401c1487f$ba358280$1505010a@daylight.net> MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook 8.5, Build 4.71.2173.0 In-Reply-To: <20010928122357.A44423@hades.hell.gr> X-MimeOLE: Produced By Microsoft MimeOLE V5.00.2615.200 Importance: Normal Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Had those same thoughts. -- John Brooks Email: john@stlbsd.org -----Original Message----- > > http://www.money-for-nothing.org/ Hmmm, forgive my ignorance. But what would the ``official Dire Straits homepage'' have to do with DNS attacks? :-/ -giorgos To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Sep 28 19: 9: 8 2001 Delivered-To: freebsd-isp@freebsd.org Received: from 4evermail.com (equinox.4evermail.com [204.92.209.4]) by hub.freebsd.org (Postfix) with SMTP id 41B0737B40B for ; Fri, 28 Sep 2001 19:09:05 -0700 (PDT) Received: (qmail 12999 invoked from network); 29 Sep 2001 01:42:32 -0000 Received: from 24-168-44-136.nyc.rr.com (HELO equinox) (24.168.44.136) by equinox.4evermail.com with SMTP; 29 Sep 2001 01:42:32 -0000 Message-ID: <020401c14888$02ef16a0$6401a8c0@equinox> From: "Jonathan M. Slivko" To: "Forrest W. Christian" , References: Subject: Re: Jail Hosting Provider? Date: Fri, 28 Sep 2001 21:42:04 -0400 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2600.0000 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Would a Cobalt RaQ do? www.cobaltracks.com if so. -- Jonathan ----- Original Message ----- From: "Forrest W. Christian" To: Sent: Friday, September 28, 2001 4:52 PM Subject: Jail Hosting Provider? > Does anyone (or know of someone who) provide Jail virtual > "server" hosting? In relation to the Secondary DNS service I run > (http://www.backupdns.com), I would like to add another DNS server > somewhere else in the country. However, I can't particularly afford to > put this in a separate box in a collocation facility elsewhere due to the > high recurring. > > Ideally, I'd either like to find someone who would let me run named, cron > and a few scripts in a jail (root access to the jail is needed). Or > perhaps even better a dirt-cheap-real-collocation provider. > > Any ideas? > > - Forrest W. Christian (forrestc@imach.com) AC7DE > ---------------------------------------------------------------------- > The Innovation Machine Ltd. P.O. Box 5749 > http://www.imach.com/ Helena, MT 59604 > Home of PacketFlux Technogies and BackupDNS.com (406)-442-6648 > ---------------------------------------------------------------------- > Protect your personal freedoms - visit http://www.lp.org/ > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sat Sep 29 1: 4: 2 2001 Delivered-To: freebsd-isp@freebsd.org Received: from web12602.mail.yahoo.com (web12602.mail.yahoo.com [216.136.173.225]) by hub.freebsd.org (Postfix) with SMTP id D681937B405 for ; Sat, 29 Sep 2001 01:03:54 -0700 (PDT) Message-ID: <20010929080354.34607.qmail@web12602.mail.yahoo.com> Received: from [62.11.57.82] by web12602.mail.yahoo.com via HTTP; Sat, 29 Sep 2001 10:03:54 CEST Date: Sat, 29 Sep 2001 10:03:54 +0200 (CEST) From: =?iso-8859-1?q?fabrizio=20ravazzini?= Subject: Mail Servers + NFS To: misc@openbsd.org MIME-Version: 1.0 Content-Type: text/plain; charset=iso-8859-1 Content-Transfer-Encoding: 8bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Hello all,I'm building a mail Server with Q-mail. The Server is composed of two machines load-balanced with either Balance or Dns Round Robin tecnique. I know that the two machines can share the same disk array mounted via NFS where I'll put the users Maildirs using vpopmail virtual domain. The two machines so can share the array at the same time. I also know that NFS works as client-server configuration, so the array must be the "server" side and the two mailservers should be the clients (Is right?). The problem is, since the Array is just attached at the machines with a SCSI controller, so is not a pc where i can install any operating system, how can be mounted via NFS? (I cannot put any "nfsd" in the array...) Sorry for the "stupid question" but...!!! This the scheme: +-------+ __________| Array |_______ | +-------+ | | | +---+--+ +-+---+ | MX1 | | MX2 | | | | | | | | | +------+ +-----+ | | | | +<---->Internet or Lan<--->+ Thanks bye ______________________________________________________________________ Do You Yahoo!? Il tuo indirizzo gratis e per sempre @yahoo.it su http://mail.yahoo.it To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sat Sep 29 3:23:55 2001 Delivered-To: freebsd-isp@freebsd.org Received: from mailout02.sul.t-online.de (mailout02.sul.t-online.com [194.25.134.17]) by hub.freebsd.org (Postfix) with ESMTP id 8103037B405 for ; Sat, 29 Sep 2001 03:23:47 -0700 (PDT) Received: from fwd05.sul.t-online.de by mailout02.sul.t-online.de with smtp id 15nHHd-0000kA-08; Sat, 29 Sep 2001 12:23:45 +0200 Received: from asterix.local (320080844193-0001@[62.225.210.136]) by fmrl05.sul.t-online.com with smtp id 15nHHa-254oLoC; Sat, 29 Sep 2001 12:23:42 +0200 Received: (qmail 1151 invoked from network); 29 Sep 2001 10:23:42 -0000 Received: from homer.local (HELO homer.local.nlocal) (192.168.1.50) by 0 with SMTP; 29 Sep 2001 10:23:42 -0000 Received: (nullmailer pid 2290 invoked by uid 1100); Sat, 29 Sep 2001 10:23:42 -0000 Date: Sat, 29 Sep 2001 12:23:42 +0200 From: Clemens Hermann To: BSD-ISP Subject: qmail smtp-accounting Message-ID: <20010929122341.A2255@homer.local> Mail-Followup-To: Clemens Hermann , BSD-ISP Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i X-Mailer: Mutt 1.2.5i (FreeBSD 4.3-RELEASE i386) X-Sender: 320080844193-0001@t-dialin.net Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Hi, is anyone here doing qmail-accounting for virtual domains? Seems as it might not be that easy so perhaps somebody might supply some hints/scripts/patches or the like. My goal is to get a monthly smtp/pop/imap traffic summary for each domain. any kind of help is appreceated a lot! /ch -- "Contrary to popular belief, Unix is user friendly. It just happens to be selective about who it makes friends with." To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sat Sep 29 7:45:37 2001 Delivered-To: freebsd-isp@freebsd.org Received: from backup.dagupan.com (www.psysc.org.ph [206.101.69.5]) by hub.freebsd.org (Postfix) with ESMTP id 904E037B40A for ; Sat, 29 Sep 2001 07:45:34 -0700 (PDT) Received: by chat.dagupan.com with Internet Mail Service (5.5.2653.19) id ; Sat, 29 Sep 2001 22:45:21 +0800 Message-ID: <10F29E27A956D511B0940050DA8D86A9340A02@chat.dagupan.com> From: francisv@dagupan.com To: isp@freebsd.org Subject: New perl 5.6.1 installation Date: Sat, 29 Sep 2001 22:45:19 +0800 MIME-Version: 1.0 X-Mailer: Internet Mail Service (5.5.2653.19) Content-Type: text/plain Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Hi, I just replaced the perl binary that came with 4.3-RELEASE with 5.6.1. Now, how do I tell it where to look for the proper files (like in @INC)? --- francis vidal [bitstop network services] streaming media + web services v(02)330-2871,(02)330-2872 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sat Sep 29 13:17:49 2001 Delivered-To: freebsd-isp@freebsd.org Received: from bigglesworth.mail.be.easynet.net (bigglesworth.mail.be.easynet.net [212.100.160.67]) by hub.freebsd.org (Postfix) with ESMTP id 393E637B409 for ; Sat, 29 Sep 2001 13:17:47 -0700 (PDT) Received: from 213-193-182-3.adsl.easynet.be ([213.193.182.3] helo=krijt.dyn.dhs.org) by bigglesworth.mail.be.easynet.net with esmtp (Exim 3.16 #1) id 15nQYS-0004Af-00; Sat, 29 Sep 2001 22:17:45 +0200 Received: (from wim@localhost) by krijt.dyn.dhs.org (8.11.3/8.11.3) id f8TKJ3N78584; Sat, 29 Sep 2001 22:19:03 +0200 (CEST) (envelope-from wim) Date: Sat, 29 Sep 2001 22:16:42 +0200 From: Wim Livens To: forrestc@imach.com Cc: freebsd-isp@freebsd.org Subject: Re: Jail Hosting Provider? Message-ID: <20010929221642.A4585@krijt.livens.net> References: <020401c14888$02ef16a0$6401a8c0@equinox> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i In-Reply-To: <020401c14888$02ef16a0$6401a8c0@equinox>; from jslivko@4evermail.com on Fri, Sep 28, 2001 at 09:42:04PM -0400 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org > > Does anyone (or know of someone who) provide Jail virtual > > "server" hosting? http://ispserver.com/ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message