From owner-freebsd-isp Sun Jul 30 4:42:36 2000 Delivered-To: freebsd-isp@freebsd.org Received: from zeus.dnt.md (dnt.md [195.138.124.37]) by hub.freebsd.org (Postfix) with ESMTP id 1731437B5D4 for ; Sun, 30 Jul 2000 04:42:32 -0700 (PDT) (envelope-from vr@dnt.md) Received: from localhost (vr@localhost) by zeus.dnt.md (8.9.3/8.9.3) with ESMTP id OAA37585 for ; Sun, 30 Jul 2000 14:42:28 +0300 (EEST) Date: Sun, 30 Jul 2000 14:42:28 +0300 (EEST) From: Veaceslav Revutchi To: freebsd-isp@freebsd.org Subject: web hosting, what ftp to use? Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Greetings, I would like to know what is common practice in giving the web hosting clients access to their virtual http servers to update their files. As ftp sends clear text passwords i see it inappropriate for at least those clients that use other ISPs to access their web server. What is the standard procedure that you guys use in this situation? Do you allow only sftp or do you use something else or do you just not care that a clients password gets sniffed and his web site gets highjacked? Any advice is greatly appreciated. slava revutchi To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sun Jul 30 4:59:57 2000 Delivered-To: freebsd-isp@freebsd.org Received: from venus3.ttnet.net.tr (venus3.ttnet.net.tr [212.156.4.35]) by hub.freebsd.org (Postfix) with ESMTP id 99B5737B599 for ; Sun, 30 Jul 2000 04:59:50 -0700 (PDT) (envelope-from alisoylu@yahoo.com) Received: from loner ([212.174.111.223]) by venus3.ttnet.net.tr (Netscape Messaging Server 4.15) with SMTP id FYIBOM00.V4N; Sun, 30 Jul 2000 14:55:34 +0400 From: "Ali Soylu" To: "Veaceslav Revutchi" , Subject: RE: web hosting, what ftp to use? Date: Sun, 30 Jul 2000 14:52:43 +0300 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2910.0) In-Reply-To: X-MimeOLE: Produced By Microsoft MimeOLE V5.00.2919.6700 Importance: Normal Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Most ISPs don't care about the passwords being sniffed (or maybe they don't have another choice), and give plain ftp accounts. ALi > -----Original Message----- > From: owner-freebsd-isp@FreeBSD.ORG > [mailto:owner-freebsd-isp@FreeBSD.ORG]On Behalf Of Veaceslav Revutchi > Sent: Sunday, July 30, 2000 2:42 PM > To: freebsd-isp@freebsd.org > Subject: web hosting, what ftp to use? > > > > Greetings, > > I would like to know what is common practice in giving the web hosting > clients access to their virtual http servers to update their files. > > As ftp sends clear text passwords i see it inappropriate for at least > those > clients that use other ISPs to access their web server. What is the > standard > procedure that you guys use in this situation? Do you allow only sftp > or do you use something else or do you just not care > that a clients password gets sniffed and his web site gets > highjacked? > > Any advice is greatly appreciated. > > slava revutchi > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sun Jul 30 6: 8:34 2000 Delivered-To: freebsd-isp@freebsd.org Received: from smartsoft.cc (client-209-158-91-33.bellatlantic.net [209.158.91.33]) by hub.freebsd.org (Postfix) with SMTP id DC9D237B5D4 for ; Sun, 30 Jul 2000 06:08:30 -0700 (PDT) (envelope-from jan@smartsoft.cc) Received: (qmail 1013 invoked from network); 30 Jul 2000 13:05:57 -0000 Received: from unknown (HELO smartsoft.cc) (192.168.0.73) by smartsoft.cc with SMTP; 30 Jul 2000 13:05:57 -0000 Message-ID: <398428B5.7818BB52@smartsoft.cc> Date: Sun, 30 Jul 2000 09:08:05 -0400 From: Jan Knepper Organization: Smartsoft, LLC X-Mailer: Mozilla 4.73 [en] (Windows NT 5.0; I) X-Accept-Language: en MIME-Version: 1.0 To: Veaceslav Revutchi Cc: freebsd-isp@FreeBSD.ORG Subject: Re: web hosting, what ftp to use? References: Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Well, I use proftpd and configure it with alternate passwd and group files. proftpd setup works almost the same as Apache. Users once they have access are locked into their server root directory. I only configure it for those that need it of course. HTH Jan Veaceslav Revutchi wrote: > Greetings, > > I would like to know what is common practice in giving the web hosting > clients access to their virtual http servers to update their files. > > As ftp sends clear text passwords i see it inappropriate for at least > those > clients that use other ISPs to access their web server. What is the > standard > procedure that you guys use in this situation? Do you allow only sftp > or do you use something else or do you just not care > that a clients password gets sniffed and his web site gets > highjacked? > > Any advice is greatly appreciated. > > slava revutchi > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message -- Jan Knepper Smartsoft, LLC 88 Petersburg Road Petersburg, NJ 08270 U.S.A. http://www.smartsoft.cc/ http://www.pianoprincess.com/ http://www.mp3.com/pianoprincess http://www.riffage.com/Bands/0,2939,2859,00.html http://pianoprincess.iuma.com/ http://www.changemusic.com/piano_princess Phone : 609-628-4260 FAX : 609-628-1267 FAX : 303-845-6415 http://www.fax4free.com/ Phone : 020-873-3837 http://www.xoip.nl/ (Dutch) FAX : 020-873-3837 http://www.xoip.nl/ (Dutch) To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sun Jul 30 9:33:35 2000 Delivered-To: freebsd-isp@freebsd.org Received: from mail.camelot.de (mailout.camelot.de [195.30.224.18]) by hub.freebsd.org (Postfix) with ESMTP id 4477937B68C for ; Sun, 30 Jul 2000 09:33:30 -0700 (PDT) (envelope-from bofax@camelot.de) Received: from robin.camelot.de (bofax@robin.camelot.de [195.30.224.3]) by mail.camelot.de (8.11.0/8.11.0) with ESMTP id e6UGXQQ26399 (using TLSv1/SSLv3 with cipher EDH-RSA-DES-CBC3-SHA (168 bits) verified OK); Sun, 30 Jul 2000 18:33:27 +0200 (CEST) Received: (from bofax@localhost) by robin.camelot.de (8.11.0/8.11.0) id e6UGXQj26396; Sun, 30 Jul 2000 18:33:26 +0200 (CEST) Date: Sun, 30 Jul 2000 18:33:26 +0200 From: Florian Bofinger To: Jan Knepper Cc: Veaceslav Revutchi , freebsd-isp@FreeBSD.ORG Subject: Re: web hosting, what ftp to use? Message-ID: <20000730183326.A24934@camelot.de> Mail-Followup-To: Florian Bofinger , Jan Knepper , Veaceslav Revutchi , freebsd-isp@FreeBSD.ORG References: <398428B5.7818BB52@smartsoft.cc> Mime-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-md5; protocol="application/pgp-signature"; boundary="ReaqsoxgOBHFXBhH" Content-Disposition: inline User-Agent: Mutt/1.2.4i In-Reply-To: <398428B5.7818BB52@smartsoft.cc>; from jan@smartsoft.cc on Sun, Jul 30, 2000 at 09:08:05AM -0400 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org --ReaqsoxgOBHFXBhH Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable Hi, On Sun, Jul 30, 2000 at 09:08:05AM -0400, Jan Knepper wrote: > Well, I use proftpd and configure it with alternate passwd and group > files. > proftpd setup works almost the same as Apache. Users once they have access > are locked into their server root directory. I only configure it for those > that need it of course. >=20 > HTH >=20 > Jan Are there any sftp-Clients for Windows? We use proftpd, too, and I'm thinking of using proftpd within a ssl-tunnel... Florian --=20 Florian Bofinger - CameloT e.K. www.camelot.de - Der "sagenhafte" Internet Full-Service Provider=20 'Can't buy what I want because it's free' - Pearl Jam (FreeBSD rocks) --ReaqsoxgOBHFXBhH Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: 2.6.3ia iQCVAwUBOYRY1sC1OWRWejehAQHtvgQAp29titWpZUeXj5R8BSRKAthYr5AoBXdJ njP0/FIBq923Qe8phdyl01wcbdTqPeKcg6BLENFJQnrEQgBIAgqdbO3238273/Vl 3agXjcFdxu/gBrPgyW4riqih+BLNaUjPcaLdYyyg0CAB2+Me40xYWYfdFawhwsg0 8N7DaORdL9U= =s+Cf -----END PGP SIGNATURE----- --ReaqsoxgOBHFXBhH-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sun Jul 30 10: 6:40 2000 Delivered-To: freebsd-isp@freebsd.org Received: from alpha.root-servers.ch (alpha.root-servers.ch [195.49.62.125]) by hub.freebsd.org (Postfix) with SMTP id BB23437B524 for ; Sun, 30 Jul 2000 10:06:34 -0700 (PDT) (envelope-from gabriel_ambuehl@buz.ch) Received: (qmail 7861 invoked from network); 30 Jul 2000 17:06:32 -0000 Received: from client98-229.hispeed.ch (HELO 10.2.2.100) (62.2.98.229) by ns1.root-servers.ch with SMTP; 30 Jul 2000 17:06:32 -0000 Date: Sun, 30 Jul 2000 19:07:46 +0200 From: Gabriel Ambuehl X-Mailer: The Bat! (v1.45 Beta/6) Personal Organization: BUZ Internet Services X-Priority: 3 (Normal) Message-ID: <12774225420.20000730190746@buz.ch> To: Veaceslav Revutchi Cc: freebsd-isp@freebsd.org Subject: Re: web hosting, what ftp to use? In-reply-To: References: Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org > procedure that you guys use in this situation? Do you allow only sftp > or do you use something else or do you just not care > that a clients password gets sniffed and his web site gets > highjacked? If a client asked about some secure fashion to update his website, I'd give him a very limited shell account which would basically just allow scp and some of the bin utils to manage his own files. But normal clients don't worry about such issues and most wouldn't be able to use scp either... If FTP wouldn't use that sick split of data and command connection one could use some sort of SSL proxy but I didn't manage to get such a thing working. SFTP is not an option at the time, I think (or are there any Windowsclients for it?). Best regards, Gabriel To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sun Jul 30 19:13: 3 2000 Delivered-To: freebsd-isp@freebsd.org Received: from enya.clari.net.au (enya.clari.net.au [203.8.14.116]) by hub.freebsd.org (Postfix) with ESMTP id D6D9E37B810 for ; Sun, 30 Jul 2000 19:12:54 -0700 (PDT) (envelope-from danny@freebsd.org) Received: from localhost (danny@localhost) by enya.clari.net.au (8.9.2/8.9.1) with ESMTP id MAA12829; Mon, 31 Jul 2000 12:12:18 +1000 (EST) (envelope-from danny@freebsd.org) X-Authentication-Warning: enya.clari.net.au: danny owned process doing -bs Date: Mon, 31 Jul 2000 12:12:18 +1000 (EST) From: "Daniel O'Callaghan" X-Sender: danny@enya.clari.net.au To: Gabriel Ambuehl Cc: Veaceslav Revutchi , freebsd-isp@freebsd.org Subject: Re: web hosting, what ftp to use? In-Reply-To: <12774225420.20000730190746@buz.ch> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Sun, 30 Jul 2000, Gabriel Ambuehl wrote: > > procedure that you guys use in this situation? Do you allow only sftp > > or do you use something else or do you just not care > > that a clients password gets sniffed and his web site gets > > highjacked? > > If a client asked about some secure fashion to update his website, I'd > give him a very limited shell account which would basically just allow scp > and some of the bin utils to manage his own files. > > But normal clients don't worry about such issues and most wouldn't be > able to use scp either... If FTP wouldn't use that sick split of data > and command connection one could use some sort of SSL proxy but I You can use sslproxy and WS_FTP (and others) in passive mode. Danny To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon Jul 31 0:34:58 2000 Delivered-To: freebsd-isp@freebsd.org Received: from mail.malawi.net (mail.malawi.net [208.148.169.7]) by hub.freebsd.org (Postfix) with ESMTP id B432237BB18; Mon, 31 Jul 2000 00:34:31 -0700 (PDT) (envelope-from ganizani@malawi.net) Received: from sysanalyst ([208.148.168.138]) by mail.malawi.net (8.10.0/8.10.0) with SMTP id e6V9XMp06406; Mon, 31 Jul 2000 11:33:33 +0200 (CAT) Message-ID: <005701bffac1$4048acc0$03000004@sysanalyst.galaxy> Reply-To: "Ganizani Phiri" From: "Ganizani Phiri" To: "Enno Davids" Cc: , , , Subject: How can I disable FreeBsd Users Date: Mon, 31 Jul 2000 09:30:10 +0200 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 4.72.3110.1 X-MimeOLE: Produced By Microsoft MimeOLE V4.72.3110.3 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org I want to carry out a disconnection of my users.How do I go about it. Can somebody please provide me with a script to disable and enable a group of users. I want to do it like this. Have all the users in a file. A script will read from this file and then disable the user in whatever file say password file. Thanks in advance. Ganizani MalawiNet Limited To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon Jul 31 0:48:47 2000 Delivered-To: freebsd-isp@freebsd.org Received: from mail.theinternet.com.au (zeus.theinternet.com.au [203.34.176.2]) by hub.freebsd.org (Postfix) with ESMTP id D84D037BADF; Mon, 31 Jul 2000 00:48:34 -0700 (PDT) (envelope-from akm@mail.theinternet.com.au) Received: (from akm@localhost) by mail.theinternet.com.au (8.9.3/8.9.3) id RAA27718; Mon, 31 Jul 2000 17:41:49 +1000 (EST) (envelope-from akm) From: Andrew Kenneth Milton Message-Id: <200007310741.RAA27718@mail.theinternet.com.au> Subject: Re: How can I disable FreeBsd Users In-Reply-To: <005701bffac1$4048acc0$03000004@sysanalyst.galaxy> from Ganizani Phiri at "Jul 31, 2000 09:30:10 am" To: Ganizani Phiri Date: Mon, 31 Jul 2000 17:41:49 +1000 (EST) Cc: Enno Davids , freebsd-isp@FreeBSD.ORG, randy@qualcomm.com, freebsd-questions@FreeBSD.ORG, qpopper@lists.pensive.org X-Mailer: ELM [version 2.4ME+ PL68 (25)] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org +----[ Ganizani Phiri ]--------------------------------------------- [Charset iso-8859-1 unsupported, filtering to ASCII...] | I want to carry out a disconnection of my users.How do I go about it. | Can somebody please provide me with a script to disable and enable | a group of users. | | I want to do it like this. Have all the users in a file. A script will read | from this | file and then disable the user in whatever file say password file. man 8 pw should provide you with enough stuff to disable/enable accounts. -- Totally Holistic Enterprises Internet| P:+61 7 3870 0066 | Andrew Milton The Internet (Aust) Pty Ltd | F:+61 7 3870 4477 | ACN: 082 081 472 ABN: 83 082 081 472 | M:+61 416 022 411 | Carpe Daemon PO Box 837 Indooroopilly QLD 4068 |akm@theinternet.com.au| To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon Jul 31 2: 6: 1 2000 Delivered-To: freebsd-isp@freebsd.org Received: from mailhost.manawatu.net.nz (mailhost.manawatu.net.nz [202.36.148.91]) by hub.freebsd.org (Postfix) with ESMTP id 5A64737BAC2; Mon, 31 Jul 2000 02:05:45 -0700 (PDT) (envelope-from alan@manawatu.gen.nz) Received: from localhost (alanb@localhost) by mailhost.manawatu.net.nz (8.10.1/8.9.3) with ESMTP id e6V942B26359; Mon, 31 Jul 2000 21:04:03 +1200 Date: Mon, 31 Jul 2000 21:04:02 +1200 (NZST) From: Alan Brown X-Sender: alanb@mailhost.manawatu.net.nz To: Ganizani Phiri Cc: Enno Davids , freebsd-isp@FreeBSD.ORG, randy@qualcomm.com, freebsd-questions@FreeBSD.ORG, qpopper@lists.pensive.org Subject: Re: How can I disable FreeBsd Users In-Reply-To: <128781159372793904056@lists.pensive.org> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Remove or just suspend? passwd -l will suspend a user. It's trivial to make a script to handle bulk suspensions. AB To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon Jul 31 4:39:24 2000 Delivered-To: freebsd-isp@freebsd.org Received: from zeus.dnt.md (dnt.md [195.138.124.37]) by hub.freebsd.org (Postfix) with ESMTP id 0A59837BCBD for ; Mon, 31 Jul 2000 04:39:11 -0700 (PDT) (envelope-from vr@dnt.md) Received: from localhost (vr@localhost) by zeus.dnt.md (8.9.3/8.9.3) with ESMTP id OAA03750 for ; Mon, 31 Jul 2000 14:39:08 +0300 (EEST) Date: Mon, 31 Jul 2000 14:39:08 +0300 (EEST) From: Veaceslav Revutchi To: freebsd-isp@freebsd.org Subject: Re: web hosting, what ftp to use? In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Thanks everyone for sharing your experience with me! I have one more question about cgi. I was thinking about giving ftp access for each user to its own cgi directory but then I won't be able to control the contents of their scripts. What would be a wise procedure to allow users to update their cgi stuff? thanks again very much, slava revutchi To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon Jul 31 5:56:13 2000 Delivered-To: freebsd-isp@freebsd.org Received: from venus2.ttnet.net.tr (venus2.ttnet.net.tr [212.156.4.19]) by hub.freebsd.org (Postfix) with ESMTP id 963DA37BABE for ; Mon, 31 Jul 2000 05:56:02 -0700 (PDT) (envelope-from alisoylu@yahoo.com) Received: from loner ([212.174.111.251]) by venus2.ttnet.net.tr (Netscape Messaging Server 4.15) with SMTP id FYBU7C00.Q1V; Thu, 27 Jul 2000 02:52:24 +0400 From: "Ali Soylu" To: , Subject: RE: Reliable rackmount servers? Date: Thu, 27 Jul 2000 02:49:13 +0300 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2910.0) In-Reply-To: <20000726194318.M26915@TK147108.telekabel.at> X-MimeOLE: Produced By Microsoft MimeOLE V5.00.2919.6700 Importance: Normal Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org I'm running FreeBSD on PenguinComputing 2000 series rackmount servers. They work great with both freebsd and linux. www.penguincomputing.com ALi > -----Original Message----- > From: owner-freebsd-isp@FreeBSD.ORG > [mailto:owner-freebsd-isp@FreeBSD.ORG]On Behalf Of Marinos J . Yannikos > Sent: Wednesday, July 26, 2000 8:43 PM > To: freebsd-isp@freebsd.org > Subject: Reliable rackmount servers? > > > Hi! > > I'm looking at buying a rackmount server (preferably 2-3U) with the > following specifications: > - dual Pentium-III FC-PGA CPU capable > - >=1GB ECC SDRAM > - LVD-SCSI RAID-1 or Adaptec AAA-UDMA > - 2 x 36GB+ disks > > I have looked at the offerings of the following companies: > - Penguin Computing > - VA Linux > - Dell > - IBM (Netfinity) > > Can anyone please comment on the quality of the products of those > companies and how well they can be expected to work with FreeBSD? > Recommendations for other companies are also very welcome... > > Thanks in advance! > -mjy > -- > ***==> Marinos J. Yannikos > ***==> http://pobox.com/~mjy > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon Jul 31 6:11:50 2000 Delivered-To: freebsd-isp@freebsd.org Received: from mail.camelot.de (mailout.camelot.de [195.30.224.18]) by hub.freebsd.org (Postfix) with ESMTP id 7FDBF37BD24 for ; Mon, 31 Jul 2000 06:11:34 -0700 (PDT) (envelope-from bofax@camelot.de) Received: from robin.camelot.de (bofax@robin.camelot.de [195.30.224.3]) by mail.camelot.de (8.11.0/8.11.0) with ESMTP id e6VDBUQ73717 (using TLSv1/SSLv3 with cipher EDH-RSA-DES-CBC3-SHA (168 bits) verified OK); Mon, 31 Jul 2000 15:11:31 +0200 (CEST) Received: (from bofax@localhost) by robin.camelot.de (8.11.0/8.11.0) id e6VDBU773714; Mon, 31 Jul 2000 15:11:30 +0200 (CEST) Date: Mon, 31 Jul 2000 15:11:30 +0200 From: Florian Bofinger To: Veaceslav Revutchi Cc: freebsd-isp@FreeBSD.ORG Subject: Re: web hosting, what ftp to use? Message-ID: <20000731151130.F92108@camelot.de> Mail-Followup-To: Florian Bofinger , Veaceslav Revutchi , freebsd-isp@FreeBSD.ORG References: Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.4i In-Reply-To: ; from vr@dnt.md on Mon, Jul 31, 2000 at 02:39:08PM +0300 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hi, On Mon, Jul 31, 2000 at 02:39:08PM +0300, Veaceslav Revutchi wrote: > > Thanks everyone for sharing your experience with me! > > I have one more question about cgi. I was thinking about giving > ftp access for each user to its own cgi directory but then > I won't be able to control the contents of their scripts. > What would be a wise procedure to allow users to update their > cgi stuff? > > thanks again very much, > slava revutchi We preserve us the right to browse through the Skripts of our customers they send to us via email. Another possibility would be a chroot/jail-environment, but there's still the problem of programs making high load on your webserver.. FLorian -- Florian Bofinger - CameloT e.K. www.camelot.de - Der "sagenhafte" Internet Full-Service Provider 'Can't buy what I want because it's free' - Pearl Jam (FreeBSD rocks) To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon Jul 31 7:43:28 2000 Delivered-To: freebsd-isp@freebsd.org Received: from klaabu.ml.ee (klaabu.ml.ee [194.106.100.151]) by hub.freebsd.org (Postfix) with ESMTP id D3B1737B625 for ; Mon, 31 Jul 2000 07:43:23 -0700 (PDT) (envelope-from Aleksei.Davidenko@microlink.ee) Received: from microlink.ee ([194.106.100.155]) by klaabu.ml.ee (Netscape Messaging Server 3.6) with ESMTP id AAA3644 for ; Mon, 31 Jul 2000 16:45:44 +0300 Message-ID: <398583A9.8D7A233D@microlink.ee> Date: Mon, 31 Jul 2000 16:48:25 +0300 From: "Aleksei Davidenko" Organization: Microlink systems X-Mailer: Mozilla 4.7 [en] (WinNT; I) X-Accept-Language: en MIME-Version: 1.0 To: "freebsd-isp@FreeBSD.ORG" Subject: NAT forwarding Content-Type: multipart/mixed; boundary="------------0B42B3088439A90075284027" Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org This is a multi-part message in MIME format. --------------0B42B3088439A90075284027 Content-Type: text/plain; charset=koi8-r Content-Transfer-Encoding: 7bit Hi,All! I have Free Box with NAT&ipfw and some Oracle NT Box into inside network Oracle listening 1521 port ---> Inet -> Free BOX (NAT) --->(192.168.X.X network) - Oracle Box (192.168.1.10) Which IPFW rule for IPFW I must write for forwarding all packets from OUTSIDE request 1521 port into inside 192.168.X.X 1521 Oracle box ? Best regards Aleksei Davidenko --------------0B42B3088439A90075284027 Content-Type: text/x-vcard; charset=koi8-r; name="aleksei.vcf" Content-Transfer-Encoding: 7bit Content-Description: Card for Aleksei Davidenko Content-Disposition: attachment; filename="aleksei.vcf" begin:vcard n:Davidenko;Aleskei tel;cell:+372-5-079644 tel;work:+372-6-501778 x-mozilla-html:FALSE adr:;;;;;; version:2.1 email;internet:aleksei@microlink.ee end:vcard --------------0B42B3088439A90075284027-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon Jul 31 8:20: 3 2000 Delivered-To: freebsd-isp@freebsd.org Received: from jade.chc-chimes.com (jade.chc-chimes.com [216.28.46.6]) by hub.freebsd.org (Postfix) with ESMTP id 0A0DF37B5DB for ; Mon, 31 Jul 2000 08:19:56 -0700 (PDT) (envelope-from billf@jade.chc-chimes.com) Received: by jade.chc-chimes.com (Postfix, from userid 1001) id F10931C6E; Mon, 31 Jul 2000 11:19:54 -0400 (EDT) Date: Mon, 31 Jul 2000 11:19:54 -0400 From: Bill Fumerola To: Aleksei Davidenko Cc: "freebsd-isp@FreeBSD.ORG" Subject: Re: NAT forwarding Message-ID: <20000731111954.B5021@jade.chc-chimes.com> References: <398583A9.8D7A233D@microlink.ee> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 1.0i In-Reply-To: <398583A9.8D7A233D@microlink.ee>; from Aleksei.Davidenko@microlink.ee on Mon, Jul 31, 2000 at 04:48:25PM +0300 X-Operating-System: FreeBSD 3.3-STABLE i386 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Mon, Jul 31, 2000 at 04:48:25PM +0300, Aleksei Davidenko wrote: > Hi,All! > I have Free Box with NAT&ipfw and some Oracle NT Box into inside > network > Oracle listening 1521 port > > ---> Inet -> Free BOX (NAT) --->(192.168.X.X network) - Oracle Box > (192.168.1.10) > > Which IPFW rule for IPFW I must write for forwarding all packets from > OUTSIDE request 1521 port into inside > 192.168.X.X 1521 Oracle box ? man 8 natd or e-mail questions@freebsd.org -- Bill Fumerola - Network Architect, BOFH / Chimes, Inc. billf@chimesnet.com / billf@FreeBSD.org Hint: -redirect_port To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon Jul 31 8:27:30 2000 Delivered-To: freebsd-isp@freebsd.org Received: from mail-secure.toplink.net (mail-secure.toplink.net [195.2.171.5]) by hub.freebsd.org (Postfix) with ESMTP id 047DD37BBFC for ; Mon, 31 Jul 2000 08:27:15 -0700 (PDT) (envelope-from ck@toplink.net) Received: from localhost.toplink.net (mail-scan.toplink.net [195.2.171.141]) by mail-secure.toplink.net (8.9.3/8.9.3) with ESMTP id RAA39964; Mon, 31 Jul 2000 17:27:06 +0200 (CEST) Received: from mail-secure.toplink.net (mail-scan [127.0.0.1]) by localhost.toplink.net (8.9.3/8.9.3) with ESMTP id RAA14695; Mon, 31 Jul 2000 17:17:23 +0200 Received: from babylon.toplink.net (babylon.toplink.net [195.2.171.90]) by mail-secure.toplink.net (8.9.3/8.9.3) with ESMTP id RAA39959; Mon, 31 Jul 2000 17:27:05 +0200 (CEST) Received: from localhost (ck@localhost) by babylon.toplink.net (8.9.3/8.9.3) with ESMTP id RAA38469; Mon, 31 Jul 2000 17:27:05 +0200 (CEST) Date: Mon, 31 Jul 2000 17:27:05 +0200 (CEST) From: Christian Kratzer To: Florian Bofinger Cc: Veaceslav Revutchi , freebsd-isp@FreeBSD.ORG Subject: Re: web hosting, what ftp to use? In-Reply-To: <20000731151130.F92108@camelot.de> Message-ID: X-NCC-RegID: de.toplink X-Spammer-Kill-Ratio: 75% X-Jihad: Will hunt down all cases of Spam and Net abuse. MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hi, On Mon, 31 Jul 2000, Florian Bofinger wrote: [snipp] > We preserve us the right to browse through the Skripts of our > customers they send to us via email. > > Another possibility would be a chroot/jail-environment, but there's still > the problem of programs making high load on your webserver.. we have modified suexec to set resource limits for cgi's from /etc/login.conf before execing the customers cgi script. We currently limit cpu time to 10 seconds and memory consumption to 20mb. This has successfully stopped cpu and memory hogging cgi scripts which otherwise would have severely impacted performance on the webserver Greetings Christian -- from the end of /etc/login.conf --- apache-suexec:\ :cputime=10s:\ :filesize=unlimited:\ :datasize=20M:\ :stacksize=20M:\ :coredumpsize=unlimited:\ :memoryuse=20M:\ :memorylocked=20M:\ :maxproc=20:\ :openfiles=20:\ :priority=0: -- from the end of /etc/login.conf --- --- suexec patch --- ck@toplink8: {26} diff -c suexec.c.orig suexec.c *** suexec.c.orig Tue Jan 11 20:47:59 2000 --- suexec.c Mon Jul 31 17:25:45 2000 *************** *** 90,95 **** --- 90,99 ---- #include + #ifdef __FreeBSD__ + # include + #endif + #include "suexec.h" /* *************** *** 429,434 **** --- 433,446 ---- log_err("emerg: failed to setgid (%ld: %s)\n", gid, cmd); exit(109); } + + #ifdef __FreeBSD__ + /* + * set resource limits from /etc/login.conf + * allows one to limit cpu and memory consumption by cgi's + */ + setclasscontext( "apache-suexec", LOGIN_SETRESOURCES|LOGIN_SETPRIORITY ); + #endif /* * setuid() to the target user. Error out on fail. --- suexec patch --- -- TopLink Internet Services GmbH ck@171.2.195.in-addr.arpa Christian Kratzer http://www.toplink.net/ Phone: +49 7032 2701-0 Fax: +49 7032 2701-19 FreeBSD spoken here! To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon Jul 31 10:12:34 2000 Delivered-To: freebsd-isp@freebsd.org Received: from ns1.aha.ru (ns1.aha.ru [195.2.80.142]) by hub.freebsd.org (Postfix) with ESMTP id 8019037B884 for ; Mon, 31 Jul 2000 10:12:28 -0700 (PDT) (envelope-from shurick@zenon.net) X-BodyDigest: d9eac028b080f8aa6f3b357d9f07f792 Received: from pb.zenon.net (caesar.zenon.net [195.2.64.7]) by ns1.aha.ru (8.9.3/8.9.3/aha-r/0.04B) with ESMTP id VAA91690; Mon, 31 Jul 2000 21:12:24 +0400 (MSD) Received: from aha.ru (mp.hq.zenon.net [192.168.9.150]) by pb.zenon.net (8.9.3/8.9.3) with ESMTP id VAA67185; Mon, 31 Jul 2000 21:12:23 +0400 (MSD) (envelope-from shurick@zenon.net) Received: by aha.ru (CommuniGate Pro PIPE 3.3b1) with PIPE id 2758081; Mon, 31 Jul 2000 21:12:15 +0400 X-Mailer: CommuniGate Pro CLI mailer Message-ID: X-Mailer: XFMail 1.3 [p0] on FreeBSD X-Priority: 3 (Normal) Content-Type: text/plain; charset=KOI8-R Content-Transfer-Encoding: 8bit MIME-Version: 1.0 In-Reply-To: <398583A9.8D7A233D@microlink.ee> Date: Mon, 31 Jul 2000 21:12:11 +0400 (MSD) Organization: Zenon N.S.P. From: Alexander Radunsky To: Aleksei Davidenko Subject: RE: NAT forwarding Cc: "freebsd-isp@FreeBSD.ORG" Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On 31-Jul-00 Aleksei Davidenko wrote: > Hi,All! > I have Free Box with NAT&ipfw and some Oracle NT Box into inside > network > Oracle listening 1521 port > > ---> Inet -> Free BOX (NAT) --->(192.168.X.X network) - Oracle Box > (192.168.1.10) > > Which IPFW rule for IPFW I must write for forwarding all packets from > OUTSIDE request 1521 port into inside 192.168.X.X 1521 Oracle box ? It could be simple if your Oracle don't run under NT. For unix versions of Oracle the simple IP-to-IP NAT for one port and permit for back connections through 'from $iip {oracle_listener_port} to any established' is enough (was successfully tested for Oracle 7.3.4 under Solaris). Unfortunately, for the same version of Oracle under NT instead of unix versions no way for NAT in the common cases. It tries to send some redirects *inside* of the Sql*Net packets which is unusable for NAT. For this Oracle Corp. developed product called 'Connection Manager' which is proxying such requests and really usable for NATing. Maybe in Net8 things looks differently - I haven't tested this. -- Alexander A. Radunsky AR8-RIPN AAR2-RIPE Zenon N.S.P. Moscow, Russia Phone: +7-095-2511071 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon Jul 31 11: 9:27 2000 Delivered-To: freebsd-isp@freebsd.org Received: from elbas.partitur.se (elbas.partitur.se [193.219.246.222]) by hub.freebsd.org (Postfix) with ESMTP id 721CD37B9CA for ; Mon, 31 Jul 2000 11:09:10 -0700 (PDT) (envelope-from girgen@partitur.se) Received: from partitur.se (localhost.partitur.se [127.0.0.1]) by elbas.partitur.se (8.9.3/8.9.3) with ESMTP id UAA62866; Mon, 31 Jul 2000 20:09:28 +0200 (CEST) (envelope-from girgen@partitur.se) Message-ID: <3985C0D8.602224BC@partitur.se> Date: Mon, 31 Jul 2000 20:09:28 +0200 From: Palle Girgensohn Organization: Partitur X-Mailer: Mozilla 4.74 [en] (X11; U; FreeBSD 4.0-STABLE i386) X-Accept-Language: sv, en MIME-Version: 1.0 To: php-db@lists.php.net, freebsd-isp@freebsd.org, pgsql-admin@postgresql.org Subject: php/postgres persistent connections fail Content-Type: multipart/mixed; boundary="------------CDF7690A832A8CA70B1CC97B" Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org This is a multi-part message in MIME format. --------------CDF7690A832A8CA70B1CC97B Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Hi! I am experiencing a very strange error usign this combination: FreeBSD 4.0-STABLE postgres 7.0.2 apache 1.3.12 php 4.0.1p2 Here's the problem: PHP's pg_pconnect (persistent connect) will not keep the connection open. What happens is, that after executing the page just fine, upon pg_close (I guess), something happens and I get this (when running postgres with -d 2): ProcessQuery CommitTransactionCommand pq_recvbuf: unexpected EOF on client connection proc_exit(0) shmem_exit(0) exit(0) /usr/local/pgsql/bin/postmaster: reaping dead processes... /usr/local/pgsql/bin/postmaster: CleanupProc: pid 32628 exited with status 0 ... What happens here is, that the connection gets broken. Hence, next time I try to connect to the same "persistent" connection (i.e. next time i hit the same apache process from the process pool) it fails, spitting this to the apache error log: [Mon Jul 31 19:24:26 2000] [error] PHP Warning: PostgreSQL query failed: pqReadData() -- read() failed: errno=9 Bad file descriptor in /usr/local/www/www.sssf.se/data/internt/matrikel/foo.php on line 20 What is happening here? I have ran tcpdump to try to see what is going on between apache and postgres. I've attached two dumps, one on the failing system, which will lead to the "pq_recvbuf: unexpected EOF on client connection", and antoher dump, doing exactly the same thing on another machine. The machines both have php 4.0.1p2 and apache 1.3.12. Both run FreeBSD. The failing machine has a slightly newer version of the FreeBSD system, but both are 4.0-STABLE. uname -a: FreeBSD bastuba.partitur.se 4.0-STABLE FreeBSD 4.0-STABLE #0: Sat Jul 1 15:56:11 CEST 2000 girgen@tuba.partitur.se:/usr/local/obj/usr/src/sys/TUBA i386 FreeBSD elbas.partitur.se 4.0-STABLE FreeBSD 4.0-STABLE #0: Wed Jun 14 20:55:20 CEST 2000 girgen@tb303.partitur.se:/usr/obj/usr/src/sys/WORKSTATION i386 The two files attached show tcpdumps of the communication between apache(php) and postgres. The failing machine is bastuba while elbas is OK. Same php program, of course. This might well be a configuration error. The bastuba is runs around 50 virtual hosts (but not many use php), elbas is a simple workstation running only a test setup. The problem is finding the config error, in one exists, since I can't really tamper too much with the bastuba setup, and I can't reporduce the error elsewhere. php.ini files are identical, as are phpinfo() outputs. I'm out of ideas. Best regards, Palle Girgensohn Partitur --------------CDF7690A832A8CA70B1CC97B Content-Type: text/plain; charset=us-ascii; name="bastuba-php-dump.txt" Content-Transfer-Encoding: 7bit Content-Disposition: inline; filename="bastuba-php-dump.txt" $ tcpdump -s 1532 -Xx -i lo0 tcp port 5432 ... 19:24:27.626723 localhost.4750 > localhost.5432: S 5242155:5242155(0) win 16384 (DF) 0x0000 4500 003c 3c53 4000 4006 0067 7f00 0001 E..< localhost.4750: S 5323579:5323579(0) ack 5242156 win 57344 (DF) 0x0000 4500 003c 3c54 4000 4006 0066 7f00 0001 E..< localhost.5432: . ack 1 win 57344 (DF) 0x0000 4500 0034 3c55 4000 4006 006d 7f00 0001 E..4 localhost.5432: P 1:297(296) ack 1 win 57344 (DF) 0x0000 4500 015c 3c56 4000 4006 ff43 7f00 0001 E..\ localhost.4750: P 1:6(5) ack 297 win 57344 (DF) 0x0000 4500 0039 3c57 4000 4006 0066 7f00 0001 E..9 localhost.4750: P 6:16(10) ack 297 win 57344 (DF) 0x0000 4500 003e 3c58 4000 4006 0060 7f00 0001 E..> localhost.5432: P 297:327(30) ack 16 win 57344 (DF) 0x0000 4500 0052 3c59 4000 4006 004b 7f00 0001 E..R localhost.4750: P 16:77(61) ack 327 win 57344 (DF) 0x0000 4500 0071 3c5a 4000 4006 002b 7f00 0001 E..q localhost.5432: P 327:386(59) ack 77 win 57344 (DF) 0x0000 4500 006f 3c70 4000 4006 0017 7f00 0001 E..o localhost.4750: P 77:128(51) ack 386 win 57344 (DF) 0x0000 4500 0067 3c7a 4000 4006 0015 7f00 0001 E..g localhost.5432: F 386:386(0) ack 128 win 57344 (DF) 0x0000 4500 0034 3c7b 4000 4006 0047 7f00 0001 E..4<{@.@..G.... 0x0010 7f00 0001 128e 1538 004f fead 0051 3bbb .......8.O...Q;. 0x0020 8011 e000 03e5 0000 0101 080a 0ee4 8a1e ................ 0x0030 0ee4 8a1e .... 19:24:27.769462 localhost.5432 > localhost.4750: . ack 387 win 57344 (DF) 0x0000 4500 0034 3c7c 4000 4006 0046 7f00 0001 E..4<|@.@..F.... 0x0010 7f00 0001 1538 128e 0051 3bbb 004f feae .....8...Q;..O.. 0x0020 8010 e000 03e5 0000 0101 080a 0ee4 8a1e ................ 0x0030 0ee4 8a1e .... 19:24:27.769691 localhost.5432 > localhost.4750: F 128:128(0) ack 387 win 57344 (DF) 0x0000 4500 0034 3c7d 4000 4006 0045 7f00 0001 E..4<}@.@..E.... 0x0010 7f00 0001 1538 128e 0051 3bbb 004f feae .....8...Q;..O.. 0x0020 8011 e000 03e4 0000 0101 080a 0ee4 8a1e ................ 0x0030 0ee4 8a1e .... 19:24:27.769746 localhost.4750 > localhost.5432: . ack 129 win 57344 (DF) 0x0000 4500 0034 3c7e 4000 4006 0044 7f00 0001 E..4<~@.@..D.... 0x0010 7f00 0001 128e 1538 004f feae 0051 3bbc .......8.O...Q;. 0x0020 8010 e000 03e4 0000 0101 080a 0ee4 8a1e ................ 0x0030 0ee4 8a1e .... --------------CDF7690A832A8CA70B1CC97B Content-Type: text/plain; charset=us-ascii; name="elbas-php-dump.txt" Content-Transfer-Encoding: 7bit Content-Disposition: inline; filename="elbas-php-dump.txt" $ tcpdump -s 1532 -Xx -i lo0 tcp port 5432 ... 19:23:06.691601 localhost.partitur.se.1903 > localhost.partitur.se.5432: S 3689158218:3689158218(0) win 16384 (DF) 0x0000 4500 002c 659b 4000 4006 d72e 7f00 0001 E..,e.@.@....... 0x0010 7f00 0001 076f 1538 dbe4 164a 0000 0000 .....o.8...J.... 0x0020 6002 4000 112a 0000 0204 3fd8 `.@..*....?. 19:23:06.691660 localhost.partitur.se.5432 > localhost.partitur.se.1903: S 3689275855:3689275855(0) ack 3689158219 win 57344 (DF) 0x0000 4500 002c 659c 4000 4006 d72d 7f00 0001 E..,e.@.@..-.... 0x0010 7f00 0001 1538 076f dbe5 e1cf dbe4 164b .....8.o.......K 0x0020 6012 e000 b362 0000 0204 3fd8 `....b....?. 19:23:06.691687 localhost.partitur.se.1903 > localhost.partitur.se.5432: . ack 1 win 57344 (DF) 0x0000 4500 0028 659d 4000 4006 d730 7f00 0001 E..(e.@.@..0.... 0x0010 7f00 0001 076f 1538 dbe4 164b dbe5 e1d0 .....o.8...K.... 0x0020 5010 e000 0544 0000 P....D.. 19:23:06.691961 localhost.partitur.se.1903 > localhost.partitur.se.5432: P 1:297(296) ack 1 win 57344 (DF) 0x0000 4500 0150 659e 4000 4006 d607 7f00 0001 E..Pe.@.@....... 0x0010 7f00 0001 076f 1538 dbe4 164b dbe5 e1d0 .....o.8...K.... 0x0020 5018 e000 e6b7 0000 0000 0128 0002 0000 P..........(.... 0x0030 7373 7366 0000 0000 0000 0000 0000 0000 sssf............ 0x0040 0000 0000 0000 0000 0000 0000 0000 0000 ................ 0x0050 0000 0000 0000 0000 0000 0000 0000 0000 ................ 0x0060 0000 0000 0000 0000 0000 0000 0000 0000 ................ 0x0070 6e6f 626f 6479 0000 0000 0000 0000 0000 nobody.......... 0x0080 0000 0000 0000 0000 0000 0000 0000 0000 ................ 0x0090 0000 0000 0000 0000 0000 0000 0000 0000 ................ 0x00a0 0000 0000 0000 0000 0000 0000 0000 0000 ................ 0x00b0 0000 0000 0000 0000 0000 0000 0000 0000 ................ 0x00c0 0000 0000 0000 0000 0000 0000 0000 0000 ................ 0x00d0 0000 0000 0000 0000 0000 0000 0000 0000 ................ 0x00e0 0000 0000 0000 0000 0000 0000 0000 0000 ................ 0x00f0 0000 0000 0000 0000 0000 0000 0000 0000 ................ 0x0100 0000 0000 0000 0000 0000 0000 0000 0000 ................ 0x0110 0000 0000 0000 0000 0000 0000 0000 0000 ................ 0x0120 0000 0000 0000 0000 0000 0000 0000 0000 ................ 0x0130 0000 0000 0000 0000 0000 0000 0000 0000 ................ 0x0140 0000 0000 0000 0000 0000 0000 0000 0000 ................ 19:23:06.693384 localhost.partitur.se.5432 > localhost.partitur.se.1903: P 1:6(5) ack 297 win 57344 (DF) 0x0000 4500 002d 659f 4000 4006 d729 7f00 0001 E..-e.@.@..).... 0x0010 7f00 0001 1538 076f dbe5 e1d0 dbe4 1773 .....8.o.......s 0x0020 5018 e000 b20e 0000 5200 0000 00 P.......R.... 19:23:06.716696 localhost.partitur.se.5432 > localhost.partitur.se.1903: P 6:16(10) ack 297 win 57344 (DF) 0x0000 4500 0032 65a6 4000 4006 d71d 7f00 0001 E..2e.@.@....... 0x0010 7f00 0001 1538 076f dbe5 e1d5 dbe4 1773 .....8.o.......s 0x0020 5018 e000 29bc 0000 4b00 00f5 2d6c 4b8d P...)...K...-lK. 0x0030 155a .Z 19:23:06.716928 localhost.partitur.se.1903 > localhost.partitur.se.5432: P 297:327(30) ack 16 win 57344 (DF) 0x0000 4500 0046 65a7 4000 4006 d708 7f00 0001 E..Fe.@.@....... 0x0010 7f00 0001 076f 1538 dbe4 1773 dbe5 e1df .....o.8...s.... 0x0020 5018 e000 36ab 0000 5173 656c 6563 7420 P...6...Qselect. 0x0030 6765 7464 6174 6162 6173 6565 6e63 6f64 getdatabaseencod 0x0040 696e 6728 2900 ing(). 19:23:06.722171 localhost.partitur.se.5432 > localhost.partitur.se.1903: P 16:77(61) ack 327 win 57344 (DF) 0x0000 4500 0065 65a8 4000 4006 d6e8 7f00 0001 E..ee.@.@....... 0x0010 7f00 0001 1538 076f dbe5 e1df dbe4 1791 .....8.o........ 0x0020 5018 e000 1519 0000 5062 6c61 6e6b 0054 P.......Pblank.T 0x0030 0001 6765 7464 6174 6162 6173 6565 6e63 ..getdatabaseenc 0x0040 6f64 696e 6700 0000 0013 0020 ffff ffff oding........... 0x0050 4480 0000 000a 4c41 5449 4e31 4353 454c D.....LATIN1CSEL 0x0060 4543 5400 5a ECT.Z 19:23:06.796484 localhost.partitur.se.1903 > localhost.partitur.se.5432: P 327:386(59) ack 77 win 57344 (DF) 0x0000 4500 0063 65c2 4000 4006 d6d0 7f00 0001 E..ce.@.@....... 0x0010 7f00 0001 076f 1538 dbe4 1791 dbe5 e21c .....o.8........ 0x0020 5018 e000 3662 0000 5153 454c 4543 5420 P...6b..QSELECT. 0x0030 656e 616d 6e20 6672 6f6d 206d 6174 7269 enamn.from.matri 0x0040 6b65 6c20 7768 6572 6520 7573 6572 6964 kel.where.userid 0x0050 3d27 5061 756c 2047 6972 6765 6e73 6f68 ='Paul.Girgensoh 0x0060 6e27 00 n'. 19:23:06.813505 localhost.partitur.se.5432 > localhost.partitur.se.1903: P 77:128(51) ack 386 win 57344 (DF) 0x0000 4500 005b 65d1 4000 4006 d6c9 7f00 0001 E..[e.@.@....... 0x0010 7f00 0001 1538 076f dbe5 e21c dbe4 17cc .....8.o........ 0x0020 5018 e000 e733 0000 5062 6c61 6e6b 0054 P....3..Pblank.T 0x0030 0001 656e 616d 6e00 0000 0019 ffff ffff ..enamn......... 0x0040 ffff 4480 0000 000e 4769 7267 656e 736f ..D.....Girgenso 0x0050 686e 4353 454c 4543 5400 5a hnCSELECT.Z 19:23:06.908042 localhost.partitur.se.1903 > localhost.partitur.se.5432: . ack 128 win 57344 (DF) 0x0000 4500 0028 6625 4000 4006 d6a8 7f00 0001 E..(f%@.@....... 0x0010 7f00 0001 076f 1538 dbe4 17cc dbe5 e24f .....o.8.......O 0x0020 5010 e000 0344 0000 P....D.. --------------CDF7690A832A8CA70B1CC97B-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon Jul 31 12:38: 7 2000 Delivered-To: freebsd-isp@freebsd.org Received: from bsdie.rwsystems.net (bsdie.rwsystems.net [209.197.223.2]) by hub.freebsd.org (Postfix) with ESMTP id 4558737B8E2 for ; Mon, 31 Jul 2000 12:38:03 -0700 (PDT) (envelope-from jwyatt@rwsystems.net) Received: from bsdie.rwsystems.net([209.197.223.2]) (1537 bytes) by bsdie.rwsystems.net via sendmail with P:esmtp/R:bind_hosts/T:inet_zone_bind_smtp (sender: ) id for ; Mon, 31 Jul 2000 14:33:42 -0500 (CDT) (Smail-3.2.0.106 1999-Mar-31 #1 built 1999-Aug-7) Date: Mon, 31 Jul 2000 14:33:42 -0500 (CDT) From: James Wyatt To: Veaceslav Revutchi Cc: freebsd-isp@freebsd.org Subject: Re: web hosting, what ftp to use? In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Mon, 31 Jul 2000, Veaceslav Revutchi wrote: > Thanks everyone for sharing your experience with me! > > I have one more question about cgi. I was thinking about giving > ftp access for each user to its own cgi directory but then > I won't be able to control the contents of their scripts. > What would be a wise procedure to allow users to update their > cgi stuff? > > thanks again very much, > slava revutchi You might *seriously* look at a jail or chroot approach. There have been several web servers hacked when folks uploaded scripts that allowed them to do things like search for broken suid programs, read world-readable files with config info, etc... You should also provide some simple scripts users can clone/modify to cut down on support calls and provide hints to approach forms, etc... You should also look into using FreeBSD's login limitations on your server account - but there are *much* better experts around here than I on doing so. - Jy@ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon Jul 31 13: 1:43 2000 Delivered-To: freebsd-isp@freebsd.org Received: from mail.gtw.net (mail.gtw.net [208.33.253.12]) by hub.freebsd.org (Postfix) with SMTP id CA51037BCFD for ; Mon, 31 Jul 2000 13:01:36 -0700 (PDT) (envelope-from john@day-light.com) Received: (qmail 28274 invoked from network); 31 Jul 2000 20:01:13 -0000 Received: from 62.pm3.gtw.net (HELO w1) (63.161.82.62) by mail.gtw.net with SMTP; 31 Jul 2000 20:01:13 -0000 Reply-To: From: "John Brooks" To: Subject: RE: web hosting, what ftp to use? Date: Mon, 31 Jul 2000 14:55:25 -0500 Message-ID: <000f01bffb29$48b64940$0b00a8c0@dle> X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook 8.5, Build 4.71.2173.0 In-Reply-To: X-MIMEOLE: Produced By Microsoft MimeOLE V5.00.2615.200 Importance: Normal Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Instead of allowing cgi-bin access to the customer, what about supplying PHP and chroot the FTP access to just apache's document root for the virtual domain of that particular customer? Is that a workable option? jb -----Original Message----- From: owner-freebsd-isp@FreeBSD.ORG [mailto:owner-freebsd-isp@FreeBSD.ORG]On Behalf Of James Wyatt Sent: Monday, July 31, 2000 2:34 PM To: Veaceslav Revutchi Cc: freebsd-isp@freebsd.org Subject: Re: web hosting, what ftp to use? On Mon, 31 Jul 2000, Veaceslav Revutchi wrote: > Thanks everyone for sharing your experience with me! > > I have one more question about cgi. I was thinking about giving > ftp access for each user to its own cgi directory but then > I won't be able to control the contents of their scripts. > What would be a wise procedure to allow users to update their > cgi stuff? > > thanks again very much, > slava revutchi You might *seriously* look at a jail or chroot approach. There have been several web servers hacked when folks uploaded scripts that allowed them to do things like search for broken suid programs, read world-readable files with config info, etc... You should also provide some simple scripts users can clone/modify to cut down on support calls and provide hints to approach forms, etc... You should also look into using FreeBSD's login limitations on your server account - but there are *much* better experts around here than I on doing so. - Jy@ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon Jul 31 16:52:55 2000 Delivered-To: freebsd-isp@freebsd.org Received: from bastuba.partitur.se (bastuba.partitur.se [193.219.246.194]) by hub.freebsd.org (Postfix) with ESMTP id 9AFB637BA79 for ; Mon, 31 Jul 2000 16:52:38 -0700 (PDT) (envelope-from girgen@partitur.se) Received: from stordatan.palle.se (c193.150.250.87.cm-upc.chello.se [193.150.250.87]) by bastuba.partitur.se (8.9.3/8.9.3) with ESMTP id BAA39081; Tue, 1 Aug 2000 01:52:34 +0200 (CEST) (envelope-from girgen@partitur.se) Received: from partitur.se (localhost [127.0.0.1]) by stordatan.palle.se (8.9.3/8.9.3) with ESMTP id BAA46477; Tue, 1 Aug 2000 01:52:33 +0200 (CEST) (envelope-from girgen@partitur.se) Message-ID: <39861141.7A620532@partitur.se> Date: Tue, 01 Aug 2000 01:52:33 +0200 From: Palle Girgensohn Organization: Partitur X-Mailer: Mozilla 4.74 [en] (X11; U; FreeBSD 4.1-STABLE i386) X-Accept-Language: sv, en MIME-Version: 1.0 To: Evren Yurtesen Cc: freebsd-isp@freebsd.org Subject: Re: NIS+AMD References: Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Evren Yurtesen wrote: > > Is there anybody using amd with nis maps? > I couldnt make it work with nis but it works fine without it with the same > conf file. I also use it a lot. What exactly is the problem? -- Palle To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon Jul 31 17:36:46 2000 Delivered-To: freebsd-isp@freebsd.org Received: from joe.halenet.com.au (joe.halenet.com.au [203.37.141.114]) by hub.freebsd.org (Postfix) with ESMTP id 6795A37B78F; Mon, 31 Jul 2000 17:36:33 -0700 (PDT) (envelope-from timbo@halenet.com.au) Received: from temp19 (modem-117-st.halenet.com.au [203.55.33.117]) by joe.halenet.com.au (8.9.1/8.9.1) with SMTP id LAA12676; Tue, 1 Aug 2000 11:03:09 +1000 (EST) (envelope-from timbo@halenet.com.au) Message-ID: <00f501bffb51$07e47a40$752137cb@halenet.com.au> From: "Tim McCullagh" To: , , References: <000f01bffb29$48b64940$0b00a8c0@dle> Subject: Difficulty installing Release-4.1 from boot floppies Date: Tue, 1 Aug 2000 10:40:00 +1000 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.00.2919.6600 X-MimeOLE: Produced By Microsoft MimeOLE V5.00.2919.6600 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hi All Has anyone had any difficulty loading release 4.1 ? I have a Tyan Thunder Main board with 128 MB ram When I try and install it bypasses the kernel configuration and takes me straight to the /stand/sysinstall menu. There is also no keyboard support, therefore I am unable to complete an install. I have tried the boot floppies on another machine with a non ps2 keyboard and it worked fine. The machine I am trying to load to can run the boot floppies for release 4.0 without any difficulties. Has anyone else had similar difficulties with ps 2 keyboards on release 4.1 Thanks in advance Tim To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon Jul 31 18:21: 6 2000 Delivered-To: freebsd-isp@freebsd.org Received: from mail.gtw.net (mail.gtw.net [208.33.253.12]) by hub.freebsd.org (Postfix) with SMTP id 49A3937BDAA for ; Mon, 31 Jul 2000 18:21:01 -0700 (PDT) (envelope-from john@day-light.com) Received: (qmail 14283 invoked from network); 1 Aug 2000 01:20:38 -0000 Received: from 62.pm3.gtw.net (HELO w1) (63.161.82.62) by mail.gtw.net with SMTP; 1 Aug 2000 01:20:38 -0000 Reply-To: From: "John Brooks" To: "'Tim McCullagh'" , Subject: RE: Difficulty installing Release-4.1 from boot floppies Date: Mon, 31 Jul 2000 20:14:49 -0500 Message-ID: <001801bffb55$e63220a0$0b00a8c0@dle> X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook 8.5, Build 4.71.2173.0 In-Reply-To: <00f501bffb51$07e47a40$752137cb@halenet.com.au> X-MIMEOLE: Produced By Microsoft MimeOLE V5.00.2615.200 Importance: Normal Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org I don't know about version 4.1, but my experience with 3.3 required that I thoroughly wipe the hard drive before retrying a failed install. It seemed that the install would always want to pick up where it left off and never clean itself up. To completely remove 3.3 I had to fdisk and format with windows, then redo the BSD install. HTH jb -----Original Message----- From: owner-freebsd-isp@FreeBSD.ORG [mailto:owner-freebsd-isp@FreeBSD.ORG]On Behalf Of Tim McCullagh Sent: Monday, July 31, 2000 7:40 PM To: freebsd-isp@FreeBSD.ORG; freebsd-hardware@FreeBSD.ORG; freebsd-questions@FreeBSD.ORG Subject: Difficulty installing Release-4.1 from boot floppies Hi All Has anyone had any difficulty loading release 4.1 ? I have a Tyan Thunder Main board with 128 MB ram When I try and install it bypasses the kernel configuration and takes me straight to the /stand/sysinstall menu. There is also no keyboard support, therefore I am unable to complete an install. I have tried the boot floppies on another machine with a non ps2 keyboard and it worked fine. The machine I am trying to load to can run the boot floppies for release 4.0 without any difficulties. Has anyone else had similar difficulties with ps 2 keyboards on release 4.1 Thanks in advance Tim To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon Jul 31 20:30:45 2000 Delivered-To: freebsd-isp@freebsd.org Received: from in-design.com (cleo.in-design.com [209.166.166.241]) by hub.freebsd.org (Postfix) with ESMTP id 08E6037BE0E for ; Mon, 31 Jul 2000 20:30:40 -0700 (PDT) (envelope-from archive@in-design.com) Received: from nero (ns3.iservetech.com [64.241.125.11]) by in-design.com (8.8.8/8.8.5) with SMTP id XAA03761 for ; Mon, 31 Jul 2000 23:30:55 -0400 (EDT) Reply-To: From: "ARCHIVE" To: "freebsd-isp@FreeBSD. ORG" Subject: Date: Mon, 31 Jul 2000 23:43:11 -0400 Message-ID: MIME-Version: 1.0 Content-Type: multipart/mixed; boundary="----=_NextPart_000_001D_01BFFB49.16232690" X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2910.0) X-MIMEOLE: Produced By Microsoft MimeOLE V5.00.2919.6700 Importance: Normal Disposition-Notification-To: "ARCHIVE" Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org This is a multi-part message in MIME format. ------=_NextPart_000_001D_01BFFB49.16232690 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit Hello all; I was wondering if there is a way of sharing passwd information between FreeBSD; Solaris; AIX and a bunsh of NT boxes. It seams that Kerberos was ment for this - am I on the right track? Any pointers greatly appreciated. Thanks Tamer Ziady Network Connectovity Specialist iServe Technologies http://www.iservetech.com 1627 Penn Ave. 5th Floor Pittsburgh, PA 15222 TEL: 800-937-1043 FAX: 800-891-6729 AUX: 412-682-5415 Email: nero@iservetech.com ------=_NextPart_000_001D_01BFFB49.16232690 Content-Type: text/x-vcard; name="Tamer Ziady.vcf" Content-Transfer-Encoding: quoted-printable Content-Disposition: attachment; filename="Tamer Ziady.vcf" BEGIN:VCARD VERSION:2.1 N:Ziady;Tamer FN:Tamer Ziady ORG:iServe Technologies TITLE:Network Connectivity Specialist TEL;WORK;VOICE:800-937-1043 TEL;HOME;VOICE:412-682-5415 TEL;CELL;VOICE:412-414-5493 TEL;WORK;FAX:800-891-6729 ADR;WORK;ENCODING=3DQUOTED-PRINTABLE:;;iServe Technologies=3D0D=3D0A1627 = Penn Ave.=3D0D=3D0A5th Floor;Pittsburgh;PA;15222=3D ;United States of America LABEL;WORK;ENCODING=3DQUOTED-PRINTABLE:iServe Technologies=3D0D=3D0A1627 = Penn Ave.=3D0D=3D0A5th Floor=3D0D=3D0APittsburgh, PA 1=3D 5222=3D0D=3D0AUnited States of America EMAIL;PREF;INTERNET:nero@iservetech.com REV:20000721T193650Z END:VCARD ------=_NextPart_000_001D_01BFFB49.16232690-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon Jul 31 21: 4:37 2000 Delivered-To: freebsd-isp@freebsd.org Received: from warf.msc.cornell.edu (warf.msc.cornell.edu [128.84.249.249]) by hub.freebsd.org (Postfix) with ESMTP id D15B037BDF0 for ; Mon, 31 Jul 2000 21:04:34 -0700 (PDT) (envelope-from mitch@ccmr.cornell.edu) Received: from khitomer.msc.cornell.edu (IDENT:0@khitomer.msc.cornell.edu [128.84.249.245]) by warf.msc.cornell.edu (8.9.3/8.9.3) with ESMTP id AAA04894; Tue, 1 Aug 2000 00:04:32 -0400 Received: from localhost (mitch@localhost) by khitomer.msc.cornell.edu (8.9.3/8.9.3) with ESMTP id AAA18950; Tue, 1 Aug 2000 00:04:30 -0400 X-Authentication-Warning: khitomer.msc.cornell.edu: mitch owned process doing -bs Date: Tue, 1 Aug 2000 00:04:30 -0400 (EDT) From: Mitch Collinsworth To: ARCHIVE Cc: "freebsd-isp@FreeBSD. ORG" Subject: Re: your mail In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; CHARSET=US-ASCII Content-ID: Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org > I was wondering if there is a way of sharing passwd information between > FreeBSD; Solaris; AIX and a bunsh of NT boxes. > It seams that Kerberos was ment for this - am I on the right track? Any > pointers greatly appreciated. This is what we all want. You're on the right track but so far as I'm aware all of the above but NT will do it. Win2000 will do it, too. To do kerberos authentication in NT you need something like Gina from Notre Dame. I'm not sure what state that's in these days. The dept I just moved to is in the process of removing Gina from our NT boxen and going to multiple password databases. I'd love to find a way to avoid that. Samba might be a possibility but I'm told it doesn't avoid the clear-text password problem. I still need to verify that before eliminating it from consideration. -Mitch To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon Jul 31 21:12:29 2000 Delivered-To: freebsd-isp@freebsd.org Received: from joe.halenet.com.au (joe.halenet.com.au [203.37.141.114]) by hub.freebsd.org (Postfix) with ESMTP id B47E937BE04; Mon, 31 Jul 2000 21:12:15 -0700 (PDT) (envelope-from timbo@halenet.com.au) Received: from temp19 (modem-117-st.halenet.com.au [203.55.33.117]) by joe.halenet.com.au (8.9.1/8.9.1) with SMTP id OAA16687; Tue, 1 Aug 2000 14:38:51 +1000 (EST) (envelope-from timbo@halenet.com.au) Message-ID: <01d101bffb6f$26d68d80$752137cb@halenet.com.au> From: "Tim McCullagh" To: "Alan Batie" Cc: , , References: <000f01bffb29$48b64940$0b00a8c0@dle> <00f501bffb51$07e47a40$752137cb@halenet.com.au> <20000731182512.B17730@agora.rdrop.com> Subject: Re: Difficulty installing Release-4.1 from boot floppies Date: Tue, 1 Aug 2000 14:15:37 +1000 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.00.2919.6600 X-MimeOLE: Produced By Microsoft MimeOLE V5.00.2919.6600 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hi Thanks for the feedback. Maybe my problem is hardware capability related. I have tried formating the HDD I have swaped HDD, I even tried booting from a release4.0 floppy to no avail. I know the floppies are ok (I think) because I used them on another compaq machine flawlessly as well. I have removed network cards changed cables etc and yet it still wants to pass over the kernel config and go straight to the /stand/sysinstall screen with no keyboard support I will create a new set of boot floppies and change the FDD regards Tim ----- Original Message ----- From: "Alan Batie" To: "Tim McCullagh" Cc: ; ; Sent: Tuesday, 1 August 2000 11:25 Subject: Re: Difficulty installing Release-4.1 from boot floppies On Tue, Aug 01, 2000 at 10:40:00AM +1000, Tim McCullagh wrote: > Has anyone had any difficulty loading release 4.1 ? I just upgraded 4.0 -> 4.1 on an Asus PII motherboard and it went pretty flawlessly. The only problem I had was adding additional disks --- I had to go to single user mode before /stand/sysinstall would touch them. I suppose that's a safety/security compromise that's not unreasonable. -- Alan Batie ______ www.rdrop.com/users/alan Me alan@batie.org \ / www.qrd.org The Triangle PGPFP DE 3C 29 17 C0 49 7A \ / www.pgpi.com The Weird Numbers 27 40 A5 3C 37 4A DA 52 B9 \/ www.anti-spam.net NO SPAM! To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue Aug 1 0:11:36 2000 Delivered-To: freebsd-isp@freebsd.org Received: from nirwana.gng.de (nirwana.gng.de [194.123.204.122]) by hub.freebsd.org (Postfix) with ESMTP id 8E3F737B8DD; Tue, 1 Aug 2000 00:11:09 -0700 (PDT) (envelope-from philipp@gng.de) Received: from nt.hh.gng.de ([62.157.88.211] helo=nt) by nirwana.gng.de with smtp (Exim 3.12 #1) id 13JWCc-0008JE-00; Tue, 01 Aug 2000 09:11:02 +0200 From: "=?iso-8859-1?Q?Philipp_Gasch=FCtz?=" To: "Ganizani Phiri" , "Enno Davids" Cc: , , , Subject: RE: How can I disable FreeBsd Users Date: Tue, 1 Aug 2000 09:12:41 +0200 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2910.0) X-MimeOLE: Produced By Microsoft MimeOLE V4.72.3110.3 In-Reply-To: <128781159372793904056@lists.pensive.org> Importance: Normal Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hey, I think it's far more easy to go via the shell. Have a look into - i think - pop_pass.c. There is a function which checks whether the user's shell is a valid shell. Now, if you are giving all users that you want to disable a shell such as popper.shell (which is a symlink to i.e. bash or false) and you add a couple of lines of code into pop_pass.c where you compare the shell retrieved by popper with "popper.shell", you are able to lock those out... hope this helps, -p > -----Original Message----- > From: Ganizani Phiri [mailto:ganizani@malawi.net] > Sent: Montag, 31. Juli 2000 09:30 > To: Enno Davids > Cc: freebsd-isp@FreeBSD.ORG; randy@qualcomm.com; > freebsd-questions@FreeBSD.ORG; qpopper@lists.pensive.org > Subject: How can I disable FreeBsd Users > > > I want to carry out a disconnection of my users.How do I go about it. > Can somebody please provide me with a script to disable and enable > a group of users. > > I want to do it like this. Have all the users in a file. A > script will read > from this > file and then disable the user in whatever file say password file. > > Thanks in advance. > > Ganizani > MalawiNet Limited > > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue Aug 1 0:35:43 2000 Delivered-To: freebsd-isp@freebsd.org Received: from in-design.com (cleo.in-design.com [209.166.166.241]) by hub.freebsd.org (Postfix) with ESMTP id 92E7A37BE2E for ; Tue, 1 Aug 2000 00:35:37 -0700 (PDT) (envelope-from archive@in-design.com) Received: from caligula (ba-045.adsl.stargate.net [209.166.187.45]) by in-design.com (8.8.8/8.8.5) with SMTP id DAA06100 for ; Tue, 1 Aug 2000 03:35:35 -0400 (EDT) Reply-To: From: "ARCHIVE" To: "freebsd-isp@FreeBSD. ORG" Subject: Passwd and dir distribution system Date: Tue, 1 Aug 2000 03:48:27 -0400 Message-ID: MIME-Version: 1.0 Content-Type: multipart/mixed; boundary="----=_NextPart_000_0035_01BFFB6B.59C728C0" X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2911.0) X-MimeOLE: Produced By Microsoft MimeOLE V5.00.3018.1300 Importance: Normal Disposition-Notification-To: "ARCHIVE" Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org This is a multi-part message in MIME format. ------=_NextPart_000_0035_01BFFB6B.59C728C0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit Hello all; I was wondering if there is a way of sharing passwd information between FreeBSD; Solaris; AIX and a bunsh of NT boxes. It seams that Kerberos was ment for this - am I on the right track? Any pointers greatly appreciated. Thanks Tamer Ziady Network Connectovity Specialist iServe Technologies http://www.iservetech.com 1627 Penn Ave. 5th Floor Pittsburgh, PA 15222 TEL: 800-937-1043 FAX: 800-891-6729 AUX: 412-682-5415 Email: nero@iservetech.com "Some people dance to the beat of a different drummer and some people tango!" ------=_NextPart_000_0035_01BFFB6B.59C728C0 Content-Type: text/x-vcard; name="Tamer G. Ziady.vcf" Content-Transfer-Encoding: quoted-printable Content-Disposition: attachment; filename="Tamer G. Ziady.vcf" BEGIN:VCARD VERSION:2.1 N:Ziady;Tamer;G.;Mr. FN:Tamer G. Ziady NICKNAME:nero ORG:Intuitive Design TITLE:Administration TEL;WORK;VOICE:412-682-5415 TEL;HOME;VOICE:412-682-5415 TEL;CELL;VOICE:412-414-5493 TEL;WORK;FAX:412-687-6136 TEL;HOME;FAX:412-687-6136 ADR;WORK;ENCODING=3DQUOTED-PRINTABLE:;;414 S. Craig St.=3D0D=3D0ASuite = #290;Pittsburgh;PA;15213;US LABEL;WORK;ENCODING=3DQUOTED-PRINTABLE:414 S. Craig St.=3D0D=3D0ASuite = #290=3D0D=3D0APittsburgh, PA 15213=3D0D=3D0AUS ADR;HOME;ENCODING=3DQUOTED-PRINTABLE:;;307 S. Dithridge = St.=3D0D=3D0AApt. #401;Pittsburgh;PA;15213-3709;US LABEL;HOME;ENCODING=3DQUOTED-PRINTABLE:307 S. Dithridge = St.=3D0D=3D0AApt. #401=3D0D=3D0APittsburgh, PA 15213-3709=3D0D=3D0AUS URL:http://www.in-design.com URL:http://www.in-design.com EMAIL;PREF;INTERNET:nero@iservetech.com EMAIL;INTERNET:nero@in-design.com REV:20000421T234920Z END:VCARD ------=_NextPart_000_0035_01BFFB6B.59C728C0-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue Aug 1 7:29:26 2000 Delivered-To: freebsd-isp@freebsd.org Received: from strange.qualcomm.com (strange.qualcomm.com [129.46.2.27]) by hub.freebsd.org (Postfix) with ESMTP id 8303D37B580; Tue, 1 Aug 2000 07:29:20 -0700 (PDT) (envelope-from randy@qualcomm.com) Received: from [10.81.78.127] (vpnap-g1-012007.qualcomm.com [10.13.12.7]) by strange.qualcomm.com (8.9.3/8.9.3/1.0) with ESMTP id HAA29974; Tue, 1 Aug 2000 07:27:01 -0700 (PDT) Mime-Version: 1.0 Message-Id: In-Reply-To: <786610576774963059030@lists.pensive.org> References: <786610576774963059030@lists.pensive.org> X-Mailer: QUALCOMM Eudora v5.0b8 for Macintosh Date: Tue, 1 Aug 2000 10:25:54 -0400 To: =?iso-8859-1?Q?=22Philipp_Gasch=FCtz=22?= , "Ganizani Phiri" , "Enno Davids" From: Randall Gellens Subject: RE: How can I disable FreeBsd Users Cc: , , , Mime-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" ; format="flowed" Content-Transfer-Encoding: quoted-printable Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org At 9:12 AM +0200 8/1/00, Philipp Gasch=FCtz wrote: > Hey, > > I think it's far more easy to go via the shell. Have a look into - i > think - pop_pass.c. There is a function which checks whether the user's > shell is a valid shell. Now, if you are giving all users that you want to > disable a shell such as popper.shell (which is a symlink to i.e. bash or > false) and you add a couple of lines of code into pop_pass.c where you > compare the shell retrieved by popper with "popper.shell", you are able > to lock those out... If you want to disable access via the shell, just add '#define CHECK_SHELL 1' to the top of config.h and recompile Qpopper. If the user's shell is not valid, the user will be unable to access the system. If you want to prevent the user from telneting in but still permit POP access, use a shell value of /POPPER/ANY/SHELL/. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue Aug 1 8:47:59 2000 Delivered-To: freebsd-isp@freebsd.org Received: from bsdie.rwsystems.net (bsdie.rwsystems.net [209.197.223.2]) by hub.freebsd.org (Postfix) with ESMTP id 2A77037BF01; Tue, 1 Aug 2000 08:47:54 -0700 (PDT) (envelope-from jwyatt@rwsystems.net) Received: from bsdie.rwsystems.net([209.197.223.2]) (1658 bytes) by bsdie.rwsystems.net via sendmail with P:esmtp/R:bind_hosts/T:inet_zone_bind_smtp (sender: ) id for ; Tue, 1 Aug 2000 10:42:58 -0500 (CDT) (Smail-3.2.0.106 1999-Mar-31 #1 built 1999-Aug-7) Date: Tue, 1 Aug 2000 10:42:58 -0500 (CDT) From: James Wyatt To: Randall Gellens Cc: freebsd-isp@freebsd.org, freebsd-questions@freebsd.org Subject: RE: How can I disable FreeBsd Users In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=X-UNKNOWN Content-Transfer-Encoding: QUOTED-PRINTABLE Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Tue, 1 Aug 2000, Randall Gellens wrote: > At 9:12 AM +0200 8/1/00, Philipp Gasch=FCtz wrote: > > I think it's far more easy to go via the shell. Have a look into - i > > think - pop_pass.c. There is a function which checks whether the user'= s > > shell is a valid shell. Now, if you are giving all users that you want= to > > disable a shell such as popper.shell (which is a symlink to i.e. bash = or > > false) and you add a couple of lines of code into pop_pass.c where you > > compare the shell retrieved by popper with "popper.shell", you are abl= e > > to lock those out... >=20 > If you want to disable access via the shell, just add '#define > CHECK_SHELL 1' to the top of config.h and recompile Qpopper. If the > user's shell is not valid, the user will be unable to access the > system. If you want to prevent the user from telneting in but still > permit POP access, use a shell value of /POPPER/ANY/SHELL/. Nuts, that's where I put tcsh... 100% (^_^) To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue Aug 1 13:51:52 2000 Delivered-To: freebsd-isp@freebsd.org Received: from sn1oexchr01.nextvenue.com (sn1oexchr01.nextvenue.com [63.209.169.9]) by hub.freebsd.org (Postfix) with SMTP id E079737BAAD for ; Tue, 1 Aug 2000 13:51:46 -0700 (PDT) (envelope-from nevans@nextvenue.com) Received: FROM sn1exchmbx.nextvenue.com BY sn1oexchr01.nextvenue.com ; Tue Aug 01 16:49:56 2000 -0400 Received: by sn1exchmbx.nextvenue.com with Internet Mail Service (5.5.2650.21) id ; Tue, 1 Aug 2000 16:47:16 -0400 Message-ID: <712384017032D411AD7B0001023D799B33B188@sn1exchmbx.nextvenue.com> From: Nick Evans To: "'freebsd-net@freebsd.org'" , "'freebsd-hackers@freebsd.org'" , "'freebsd-isp@freebsd.org'" Subject: Teaming Network Interfaces Date: Tue, 1 Aug 2000 16:47:16 -0400 MIME-Version: 1.0 X-Mailer: Internet Mail Service (5.5.2650.21) Content-Type: multipart/alternative; boundary="----_=_NextPart_001_01BFFBF9.AD4B87A0" Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org This message is in MIME format. Since your mail reader does not understand this format, some or all of this message may not be legible. ------_=_NextPart_001_01BFFBF9.AD4B87A0 Content-Type: text/plain; charset="iso-8859-1" Does anyone know of a project or other plans to implement teaming of network interfaces in FreeBSD? Something that will allow two or more NICs share the "same" IP Address, MAC address, etc. for network fault tolerance purposes? I found nothing in the archives and it's pretty disconcerting that no one is spending any time on fault tolerance for a network operating system. thx nick ------------------------------------------ nick.evans network.engineering NextVenue, Inc. phone: (212) 909.2988 pager: (888) 642.5541 ------_=_NextPart_001_01BFFBF9.AD4B87A0 Content-Type: text/html; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Teaming Network Interfaces

Does anyone know of a project or other plans to = implement teaming of network interfaces in FreeBSD? Something that will = allow two or more NICs share the "same" IP Address, MAC = address, etc. for network fault tolerance purposes? I found nothing in = the archives and it's pretty disconcerting that no one is spending any = time on fault tolerance for a network operating system.

thx
nick

------------------------------------------
nick.evans
network.engineering
NextVenue, Inc.
phone: (212) 909.2988
pager: (888) 642.5541

------_=_NextPart_001_01BFFBF9.AD4B87A0-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue Aug 1 14:50:39 2000 Delivered-To: freebsd-isp@freebsd.org Received: from gamera.comnetcom.net (ns1.comnetcom.net [209.100.247.254]) by hub.freebsd.org (Postfix) with ESMTP id 10F2D37BE4E for ; Tue, 1 Aug 2000 14:50:37 -0700 (PDT) (envelope-from jeff@comnetcom.net) Received: from JEFF (jeff.comnetcom.net [209.100.247.124]) by gamera.comnetcom.net (8.10.2/8.10.2) with SMTP id e71LqEK09689 for ; Tue, 1 Aug 2000 16:52:15 -0500 (CDT) Message-ID: <001301bffc02$74a640d0$7cf764d1@JEFF> From: "Jeff Tolley" To: Subject: 4.1-Release, Jail, and virtual servers Date: Tue, 1 Aug 2000 16:50:06 -0500 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.00.3018.1300 X-MimeOLE: Produced By Microsoft MimeOLE V5.00.3018.1300 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org I'm configuring a machine to offer virtual hosting service for our customers, using FreeBSD 4.1-Release and the new jail(8) feature. Everything is going pretty smoothly, however, I was wondering if anyone knows of any documentation for jail(8) other than, obviously, the man page. I haven't had much luck finding anything on www.freebsd.org, etc... I'm specifically interested in security issues, and just some general case studies or whatnot. Thanks, --- Jeff Tolley - jeff@comnetcom.net Senior Systems Administrator Com Net Communications System, Inc. Network Operations Center noc@comnetcom.net To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue Aug 1 19:55:48 2000 Delivered-To: freebsd-isp@freebsd.org Received: from velvet.sensation.net.au (serial1-2-velvet-brunswick.sensation.net.au [203.20.114.195]) by hub.freebsd.org (Postfix) with ESMTP id 77FFB37BF7E for ; Tue, 1 Aug 2000 19:55:37 -0700 (PDT) (envelope-from rowan@sensation.net.au) Received: from localhost (rowan@localhost) by velvet.sensation.net.au (8.9.3/8.9.3) with ESMTP id MAA92238 for ; Wed, 2 Aug 2000 12:55:30 +1000 (EST) (envelope-from rowan@sensation.net.au) X-Authentication-Warning: velvet.sensation.net.au: rowan owned process doing -bs Date: Wed, 2 Aug 2000 12:55:26 +1000 (EST) From: Rowan Crowe To: freebsd-isp@freebsd.org Subject: Re: Teaming Network Interfaces In-Reply-To: <712384017032D411AD7B0001023D799B33B188@sn1exchmbx.nextvenue.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Tue, 1 Aug 2000, Nick Evans wrote: > Does anyone know of a project or other plans to implement teaming of network > interfaces in FreeBSD? Something that will allow two or more NICs share the > "same" IP Address, MAC address, etc. for network fault tolerance purposes? I > found nothing in the archives and it's pretty disconcerting that no one is > spending any time on fault tolerance for a network operating system. You could do something similar with dynamic routing. 1. Each NIC has a separate address and physical network (or perhaps the same physical network, but still different IPs). 2. Actual "server" IPs are aliases on lo0. 3. A dynamic routing protocol such as RIP or OSPF advertises these IPs, perhaps applying a higher metric to one of the interfaces so that one is preferred when both are working. 4. When one interface fails, the route to the server IPs changes to the other card. Of course, this requires that the interface fails *completely*, if it starts behaving erratically then that's another matter... Cheers. -- Rowan Crowe http://www.rowan.sensation.net.au/ Sensation Internet Services http://info.sensation.net.au/ Melbourne, Australia Phone: +61-3-9388-9260 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue Aug 1 20: 3:29 2000 Delivered-To: freebsd-isp@freebsd.org Received: from g-net.globe.com.ph (g-net.globe.com.ph [203.127.225.10]) by hub.freebsd.org (Postfix) with ESMTP id 6EDE837BF6A for ; Tue, 1 Aug 2000 20:03:22 -0700 (PDT) (envelope-from nitronarc@iname.com) Received: from gw ([203.177.35.56]) by g-net.globe.com.ph (8.9.3/8.9.3) with SMTP id LAA09176 for ; Wed, 2 Aug 2000 11:13:34 +0800 (HKT) Date: Wed, 2 Aug 2000 11:13:34 +0800 (HKT) Message-Id: <200008020313.LAA09176@g-net.globe.com.ph> From: To: freebsd-isp@freebsd.org; Subject: time usage and billing generation Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii" X-Mailer: QuickSend 1.3 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hi all! I have a small project on my plate now. It has to deal with a network of info-kiosks in selected areas in our city. Eack kiosk has between 10-15 terminal units and a server. There is a central server for updates and accounting purposes. The main requirement of the project is to be able to track the log-in/log-out, create a usage log/report and generate a billing slip for the client. And lastly, batch the daily data for uploading to the central server. Are there any systems or software packages that are available for this purpose. Our servers are FreeBSD or Linux, the terminals are OS-hardware embedded (Linux/WinCE)/X-Windows-based. Hope someone out there could give us the virtual boost. TIA Ramon To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue Aug 1 20: 3:34 2000 Delivered-To: freebsd-isp@freebsd.org Received: from g-net.globe.com.ph (g-net.globe.com.ph [203.127.225.10]) by hub.freebsd.org (Postfix) with ESMTP id E1FC437BF6A for ; Tue, 1 Aug 2000 20:03:29 -0700 (PDT) (envelope-from nitronarc@iname.com) Received: from gw ([203.177.35.56]) by g-net.globe.com.ph (8.9.3/8.9.3) with SMTP id LAA22767 for ; Wed, 2 Aug 2000 11:13:41 +0800 (HKT) Date: Wed, 2 Aug 2000 11:13:41 +0800 (HKT) Message-Id: <200008020313.LAA22767@g-net.globe.com.ph> From: To: freebsd-isp@freebsd.org; Subject: time usage and billing generation Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii" X-Mailer: QuickSend 1.3 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hi all! I have a small project on my plate now. It has to deal with a network of info-kiosks in selected areas in our city. Eack kiosk has between 10-15 terminal units and a server. There is a central server for updates and accounting purposes. The main requirement of the project is to be able to track the log-in/log-out, create a usage log/report and generate a billing slip for the client. And lastly, batch the daily data for uploading to the central server. Are there any systems or software packages that are available for this purpose. Our servers are FreeBSD or Linux, the terminals are OS-hardware embedded (Linux/WinCE)/X-Windows-based. Hope someone out there could give us the virtual boost. TIA Ramon To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue Aug 1 21: 6:31 2000 Delivered-To: freebsd-isp@freebsd.org Received: from misery.sdf.com (misery.sdf.com [204.244.213.49]) by hub.freebsd.org (Postfix) with ESMTP id 8B14737B546 for ; Tue, 1 Aug 2000 21:06:27 -0700 (PDT) (envelope-from tom@sdf.com) Received: from tom (helo=localhost) by misery.sdf.com with local-esmtp (Exim 2.12 #1) id 13JpTH-0003lT-00; Tue, 1 Aug 2000 20:45:31 -0700 Date: Tue, 1 Aug 2000 20:45:28 -0700 (PDT) From: Tom Samplonius To: Nick Evans Cc: "'freebsd-isp@freebsd.org'" Subject: Re: Teaming Network Interfaces In-Reply-To: <712384017032D411AD7B0001023D799B33B188@sn1exchmbx.nextvenue.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Tue, 1 Aug 2000, Nick Evans wrote: > Does anyone know of a project or other plans to implement teaming of network > interfaces in FreeBSD? Something that will allow two or more NICs share the > "same" IP Address, MAC address, etc. for network fault tolerance purposes? I > found nothing in the archives and it's pretty disconcerting that no one is > spending any time on fault tolerance for a network operating system. First of all, there is no reason to CC a question to three lists. That is just a big waste of bandwidth. If fault tolerance of network interfaces and links is your big concern, there are already ways of doing that. Simply use a new alias IP bound to lo0 and then advertise that via a routing protocol to your router or routers. If an interface dies, routing updates can't be made from it, so the border router(s) won't send traffic through it anymore. This is easy to do, I just never found it worthwhile since NICs might very well the most reliable component you can buy these days (at least for Intel Pro100+s anyway). I've never had a NIC fail in a server yet. Many people are interested in load-balancing traffic over multiple interfaces. There is an equal-cost routing patch that can add this. Tom To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue Aug 1 22:11:25 2000 Delivered-To: freebsd-isp@freebsd.org Received: from atlas.usls.edu (atlas.usls.edu [202.47.133.46]) by hub.freebsd.org (Postfix) with ESMTP id C717237BF51 for ; Tue, 1 Aug 2000 22:11:23 -0700 (PDT) (envelope-from francis@usls.edu) Received: by atlas.usls.edu (Postfix, from userid 1001) id 030449B34; Wed, 2 Aug 2000 13:11:12 +0800 (PHT) Received: from localhost (localhost [127.0.0.1]) by atlas.usls.edu (Postfix) with ESMTP id E774B5D07 for ; Wed, 2 Aug 2000 13:11:12 +0800 (PHT) Date: Wed, 2 Aug 2000 13:11:12 +0800 (PHT) From: "Francis A. Vidal" To: FreeBSD ISP Subject: Cyclades Z series vs. Cisco 2600 Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hi all, How does the Cyclades Z series system on a FreeBSD machine compare to a Cisco 2600 router in terms of async/dialup performance? I'm also interested to know why you chose Cyclades over Cisco and vice versa. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue Aug 1 23: 1: 1 2000 Delivered-To: freebsd-isp@freebsd.org Received: from ns.internet.dk (ns.internet.dk [194.19.140.1]) by hub.freebsd.org (Postfix) with ESMTP id 8183637B63D for ; Tue, 1 Aug 2000 23:00:56 -0700 (PDT) (envelope-from leifn@neland.dk) Received: (from uucp@localhost) by ns.internet.dk (8.9.3/8.9.3) with UUCP id IAA12162; Wed, 2 Aug 2000 08:00:43 +0200 (CEST) (envelope-from leifn@neland.dk) Received: from localhost (localhost [127.0.0.1]) by arnold.neland.dk (8.11.0/8.9.3) with ESMTP id e7260H531295; Wed, 2 Aug 2000 08:00:23 +0200 (CEST) (envelope-from leifn@neland.dk) Date: Wed, 2 Aug 2000 08:00:12 +0200 (CEST) From: Leif Neland To: nitronarc@iname.com Cc: freebsd-isp@FreeBSD.ORG Subject: Re: time usage and billing generation In-Reply-To: <200008020313.LAA09176@g-net.globe.com.ph> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Wed, 2 Aug 2000 nitronarc@iname.com wrote: > Hi all! > > I have a small project on my plate now. It has to deal with a network > of info-kiosks in selected areas in our city. Eack kiosk has between > 10-15 terminal units and a server. There is a central server for > updates and accounting purposes. > > The main requirement of the project is to be able to track the > log-in/log-out, create a usage log/report and generate a billing slip > for the client. And lastly, batch the daily data for uploading to the > central server. > Define "log-in/log-out". Are users supposed to supply a login/password at the start, and logout at the end? What should the bill be calculated on? Number of pages served? cached pages or non-cached? Number of bytes served? Number of minutes somebody has stood at front of a terminal? Number of minutes somebody has accessed at least one page? (Beware of auto-refreshing pages) There is no such concept as "logging on/off" an ethernet. The machine is on from boot to shutdown, regardless if an user is there. > Are there any systems or software packages that are available for this > purpose. Our servers are FreeBSD or Linux, the terminals are > OS-hardware embedded (Linux/WinCE)/X-Windows-based. > Define what you want to measure first. Leif To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Aug 2 9: 4:26 2000 Delivered-To: freebsd-isp@freebsd.org Received: from aurora.sol.net (aurora.sol.net [206.55.65.76]) by hub.freebsd.org (Postfix) with ESMTP id 3C6FD37BBEF for ; Wed, 2 Aug 2000 09:04:16 -0700 (PDT) (envelope-from jgreco@aurora.sol.net) Received: (from jgreco@localhost) by aurora.sol.net (8.9.2/8.9.2/SNNS-1.02) id LAA70715; Wed, 2 Aug 2000 11:21:52 -0500 (CDT) From: Joe Greco Message-Id: <200008021621.LAA70715@aurora.sol.net> Subject: Re: Cyclades Z series vs. Cisco 2600 In-Reply-To: <200008021522.KAA10959@earth.execpc.com> from "jgreco@execpc.com" at "Aug 2, 2000 10:22:38 am" To: freebsd-isp@freebsd.org Date: Wed, 2 Aug 2000 11:21:52 -0500 (CDT) Cc: francis@usls.edu X-Mailer: ELM [version 2.4ME+ PL43 (25)] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org > How does the Cyclades Z series system on a FreeBSD machine compare to > a Cisco 2600 router in terms of async/dialup performance? I'm also > interested to know why you chose Cyclades over Cisco and vice versa. I just got one of these in, but I've not had time to play with it. Basically a Cisco 2600 is a dinky little router with very few overall resources. It has a nice 1U form factor that makes it attractive for tight locations, and of course it's got fewer moving parts than a PC. I'm guessing that you can get 16-port serial modules for it, although I don't know... but if the modules can do 230,400 I'd be impressed, and I'm fairly sure that the unit would be saturated trying to handle a few dozen busy ports. Now, again, not actually having played with the Z just yet, here we have a card with rack-mountable 16-port breakout boxes. One PCI card can handle up to four 16-port modules. The unit is built with 16c654 (yes, 16650's) and a built-in MIPS(?) processor of some sort, which means that not only do you have the advantage of larger rx/tx buffers than most serial devices, you also get real hardware ASIC flow control rather than the CPU-intervention model used by the 16550. And you get the benefit of enhanced 960.8kbps serial ports instead of the 115.2 or maybe 230.4 most other things provide. Lower interrupt loads, etc. All of that is offloaded onto the MIPS processor, anyways...! In theory you can throw several of these cards into a PC. With 5-PCI-slot machines being quite common, think of putting 4 loaded Z's into a machine with a dual 10/100 Ethernet, to get a 256-port terminal server with impressive throughput. Now, again, all of this is hypothetical, since I've not actually tried the card yet. However, I _can_ speak well for your average PC as a terminal server. It isn't the cheapest possible solution, but it _is_ completely programmable, and more importantly, the cheapest CPU and motherboard you can buy new today is many times faster than that Cisco 2600. It means that you can do things like packet filtering without worrying as much about melting the CPU, you can do ssh, write custom stuff, and if you're using it as a serial console server, you get the ability to log to hard disk. :-) One downside to the Cyclades is that the RJ45 pinout seems to have been chosen by a dartboard and an engineer with a bad throw. It makes no sense to me. Cisco at least did something useful, even if it was the exact opposite of an existing standard (sigh). -- ... Joe ------------------------------------------------------------------------------- Joe Greco - Systems Administrator jgreco@ns.sol.net Solaria Public Access UNIX - Milwaukee, WI 414/342-4847 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Aug 2 9:30:27 2000 Delivered-To: freebsd-isp@freebsd.org Received: from cache.sai.co.za (mail.sai.co.za [196.33.40.1]) by hub.freebsd.org (Postfix) with ESMTP id 9CCB237BC20 for ; Wed, 2 Aug 2000 09:30:16 -0700 (PDT) (envelope-from davew@sai.co.za) Received: from fdisk (fdisk.pmburg.co.za [196.33.40.17]) by cache.sai.co.za (8.9.3/8.9.3) with SMTP id SAA73873 for ; Wed, 2 Aug 2000 18:30:29 +0200 (SAST) (envelope-from davew@sai.co.za) Message-ID: <01f601bffca0$7e432600$112821c4@sai.co.za> From: "Dave Wilson" To: Subject: USR radius filter attributes for email only clients Date: Wed, 2 Aug 2000 18:41:19 +0200 MIME-Version: 1.0 Content-Type: multipart/alternative; boundary="----=_NextPart_000_01F3_01BFFCB1.3F738710" X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.50.4133.2400 X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4133.2400 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org This is a multi-part message in MIME format. ------=_NextPart_000_01F3_01BFFCB1.3F738710 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Hi Guys, howzit going? I'm trying to limit our dial-up users to only accessing our mailserver = and no other hosts. I'm using Cistron radiusd to authenticate users dialing in to a USR = Total Control Rack and have specified the following in my "users" file: username Auth-Type =3D System Service-Type =3D Framed-User, Framed-MTU =3D 1500, Framed-Filter-Id =3D "mailonly", Fall-Through =3D Yes With regards to the "Framed-Filter-Id =3D "mailonly"" line I have read = that a file must exist in the same folder as the "users" file, with a = name "mailonly". So in the "mailonly" file I have put the following: USR-PW_USR_OFilter_IP =3D "mymailserverIP" USR-PW_USR_IFilter_IP =3D "mymailserverIP" What happens is that the user dials in authenticates and then is = disconnected about 2 seconds afterwards. I have looked at the radius logs and it says "login OK" Has anyone else out there set up IP filtering with a USR Total Control = Rack, running Cistron radiusd or any other radiusd ? Please help if you can, I can't seem to find any documentation anywhere = on IP filtering with USR radius attributes. Thanks. ;-) Regards Dave Wilson The S.A. Internet (033) 3456777 0825496159 http://www.sai.co.za "Who is General Failure and why is he reading my hard drive ?" ------=_NextPart_000_01F3_01BFFCB1.3F738710 Content-Type: text/html; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable
Hi Guys, howzit = going?
 
I'm trying to limit our = dial-up users to=20 only accessing our mailserver and no other hosts.
I'm using Cistron radiusd to = authenticate=20 users dialing in to a USR Total Control Rack and have specified the = following in=20 my "users" file:
 
username   Auth-Type =3D=20 System
          &nb= sp;     =20 Service-Type =3D=20 Framed-User,
         &nb= sp;      =20 Framed-MTU =3D=20 1500,
          &nbs= p;     =20 Framed-Filter-Id =3D=20 "mailonly",
         &nbs= p;      =20 Fall-Through =3D Yes
With regards to the "Framed-Filter-Id =3D = "mailonly""  line I have=20 read that a file must exist in the same folder as the "users" file, with = a name=20 "mailonly".
So in the "mailonly" file I have put the following:
 
USR-PW_USR_OFilter_IP =3D "mymailserverIP"
USR-PW_USR_IFilter_IP = =3D=20 "mymailserverIP"
What happens is that the user = dials in=20 authenticates and then is disconnected about 2 seconds = afterwards.
I have looked at the radius = logs and it=20 says "login OK"
 
Has anyone else out there set = up IP=20 filtering with a USR Total Control Rack, running Cistron radiusd or any = other=20 radiusd ?
 
Please help if you can, I = can't seem to=20 find any documentation anywhere on IP filtering with USR radius=20 attributes.
Thanks.  = ;-)
 

Regards
Dave Wilson
The = S.A.=20 Internet
(033) 3456777
0825496159
http://www.sai.co.za
 "Who is = General=20 Failure and why is he reading my hard drive = ?"
------=_NextPart_000_01F3_01BFFCB1.3F738710-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Aug 2 11:27:37 2000 Delivered-To: freebsd-isp@freebsd.org Received: from mail1.accessus.net (postal.accessus.net [209.145.150.75]) by hub.freebsd.org (Postfix) with ESMTP id E0C9637C2BC for ; Wed, 2 Aug 2000 11:27:27 -0700 (PDT) (envelope-from jyoung@accessus.net) Received: from exchange.accessus.net (exchange.accessus.net [207.206.171.65]) by mail1.accessus.net (Postfix) with ESMTP id 79C5972892; Wed, 2 Aug 2000 13:27:24 -0500 (CDT) Received: by exchange.accessus.net with Internet Mail Service (5.5.2650.21) id ; Wed, 2 Aug 2000 13:20:57 -0500 Message-ID: From: Jason Young To: 'Dave Wilson' , freebsd-isp@FreeBSD.ORG Subject: RE: USR radius filter attributes for email only clients Date: Wed, 2 Aug 2000 13:20:56 -0500 MIME-Version: 1.0 X-Mailer: Internet Mail Service (5.5.2650.21) Content-Type: text/plain; charset="iso-8859-1" Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Framed-Filter-ID indicates use of a filter which is already installed on the NAS. Try creating a filter called "mailonly" on the USR TC rack itself. Alternately, if you create a mailonly.in and mailonly.out set of filters, specifying "mailonly" as the Framed-Filter-ID is supposed to do the right thing with the two .in/.out filters. Jason Young Access US(tm) Chief Network Engineer -----Original Message----- From: Dave Wilson [mailto:davew@sai.co.za] Sent: Wednesday, August 02, 2000 11:41 AM To: freebsd-isp@FreeBSD.ORG Subject: USR radius filter attributes for email only clients Hi Guys, howzit going? I'm trying to limit our dial-up users to only accessing our mailserver and no other hosts. I'm using Cistron radiusd to authenticate users dialing in to a USR Total Control Rack and have specified the following in my "users" file: username Auth-Type = System Service-Type = Framed-User, Framed-MTU = 1500, Framed-Filter-Id = "mailonly", Fall-Through = Yes With regards to the "Framed-Filter-Id = "mailonly"" line I have read that a file must exist in the same folder as the "users" file, with a name "mailonly". So in the "mailonly" file I have put the following: USR-PW_USR_OFilter_IP = "mymailserverIP" USR-PW_USR_IFilter_IP = "mymailserverIP" What happens is that the user dials in authenticates and then is disconnected about 2 seconds afterwards. I have looked at the radius logs and it says "login OK" Has anyone else out there set up IP filtering with a USR Total Control Rack, running Cistron radiusd or any other radiusd ? Please help if you can, I can't seem to find any documentation anywhere on IP filtering with USR radius attributes. Thanks. ;-) Regards Dave Wilson The S.A. Internet (033) 3456777 0825496159 http://www.sai.co.za "Who is General Failure and why is he reading my hard drive ?" To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Aug 2 12:17:55 2000 Delivered-To: freebsd-isp@freebsd.org Received: from hermes.deadbbs.com (hermes.cpetc.com [207.137.157.132]) by hub.freebsd.org (Postfix) with ESMTP id A6D3937B6C5 for ; Wed, 2 Aug 2000 12:17:51 -0700 (PDT) (envelope-from Kahn@deadbbs.com) Received: from erin-laptop (mongo.sdccd.cc.ca.us [209.129.16.5]) by hermes.deadbbs.com (8.10.2/8.10.2) with SMTP id e72JIvm27366 for ; Wed, 2 Aug 2000 12:18:57 -0700 (PDT) From: "Erin" To: Subject: Secondary BIND server. Date: Wed, 2 Aug 2000 12:17:46 -0700 Message-ID: <001d01bffcb6$5799ae00$e815820a@erin-laptop.sdccd.cc.ca.us> MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook 8.5, Build 4.71.2173.0 X-MimeOLE: Produced By Microsoft MimeOLE V4.72.3155.0 Importance: Normal Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Does anyone have some sugestions on how I would go about getting my secondary DNS server to automatically setup the secondary domain when I put it in the primary DNS server. Is there any software that already does this? Yes, I am using FreeBSD for both and I know this should go to the BIND mailing list, but I thought someone using FreeBSD may be able topoint me in the right direction. Thanks, Erin mailto:kahn@deadbbs.com http://www.deadbbs.com http://www.fortenberry.net Failure is not an option. It comes bundled with your Microsoft product. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Aug 2 12:26: 2 2000 Delivered-To: freebsd-isp@freebsd.org Received: from mgw1.MEIway.com (mgw1.meiway.com [212.73.210.75]) by hub.freebsd.org (Postfix) with ESMTP id 086ED37B845 for ; Wed, 2 Aug 2000 12:25:59 -0700 (PDT) (envelope-from lconrad@Go2France.com) Received: from mail.Go2France.com (ms1.meiway.com [212.73.210.73]) by mgw1.MEIway.com (Postfix Relay Hub) with ESMTP id B3C096A901 for ; Wed, 2 Aug 2000 21:26:08 +0200 (CEST) Received: from sv.Go2France.com [212.73.210.79] by mail.Go2France.com with ESMTP (SMTPD32-6.03) id A601ACDF0086; Wed, 02 Aug 2000 21:26:57 +0200 Message-Id: <4.3.2.7.2.20000802212136.02c77330@mail.Go2France.com> X-Sender: lconrad%Go2France.com@mail.Go2France.com X-Mailer: QUALCOMM Windows Eudora Version 4.3.2 Date: Wed, 02 Aug 2000 21:23:43 +0200 To: freebsd-isp@freebsd.org From: Len Conrad Subject: Re: Secondary BIND server. In-Reply-To: <001d01bffcb6$5799ae00$e815820a@erin-laptop.sdccd.cc.ca.us> Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii"; format=flowed Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org >Does anyone have some sugestions on how I would go about getting my >secondary DNS server to automatically setup the secondary domain when I put >it in the primary DNS server. > >Is there any software that already does this? run them both as masters, and use rsync to sync the /etc/namedb files from one to the other. Len http://BIND8NT.MEIway.com: ISC BIND 8.2.2 p5 installable binary for NT4 http://IMGate.MEIway.com: Build free, hi-perf, anti-spam mail gateways To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Aug 2 12:36:14 2000 Delivered-To: freebsd-isp@freebsd.org Received: from mail.numachi.com (numachi.numachi.com [198.175.254.2]) by hub.freebsd.org (Postfix) with SMTP id 7B3BA37BA2F for ; Wed, 2 Aug 2000 12:36:07 -0700 (PDT) (envelope-from reichert@numachi.com) Received: (qmail 14908 invoked by uid 1001); 2 Aug 2000 19:36:04 -0000 Date: Wed, 2 Aug 2000 15:36:04 -0400 From: Brian Reichert To: Erin Cc: freebsd-isp@freebsd.org Subject: Re: Secondary BIND server. Message-ID: <20000802153603.H12265@numachi.com> References: <001d01bffcb6$5799ae00$e815820a@erin-laptop.sdccd.cc.ca.us> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 1.0pre4i In-Reply-To: <001d01bffcb6$5799ae00$e815820a@erin-laptop.sdccd.cc.ca.us>; from Kahn@deadbbs.com on Wed, Aug 02, 2000 at 12:17:46PM -0700 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Wed, Aug 02, 2000 at 12:17:46PM -0700, Erin wrote: > Does anyone have some sugestions on how I would go about getting my > secondary DNS server to automatically setup the secondary domain when I put > it in the primary DNS server. > > Is there any software that already does this? Yes, BIND. :) If all of these are true: - your primary server's zone file lists both your name servers in the SOA - your primary server's been told it's master for that zone - your slave server's been told it's a slave for that zone (and who the master is) Then when you start the secondary server up, it will automatically get the zone file from the primary. If you modify the zone, the primary will notify the secondary of the change, and the secondary will get a new copy of the zone file. This does mean that you inform have to infrom both servers of the domain in question. If you have a fluid set of domains, your new question becomes 'how can I propegate changes to my named.conf file?'. > Thanks, > > Erin -- Brian 'you Bastard' Reichert reichert@numachi.com 37 Crystal Ave. #303 Daytime number: (603) 434-6842 Derry NH 03038-1713 USA Intel architecture: the left-hand path To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Aug 2 12:41: 4 2000 Delivered-To: freebsd-isp@freebsd.org Received: from hitline.ch (ccgate.com4u.ch [195.129.74.66]) by hub.freebsd.org (Postfix) with ESMTP id 8A74337B926 for ; Wed, 2 Aug 2000 12:41:00 -0700 (PDT) (envelope-from micheal@com4u.ch) Received: from [195.129.74.2] (HELO [10.10.10.150]) by hitline.ch (CommuniGate Pro SMTP 3.3b9) with ESMTP id 1816102 for freebsd-isp@freebsd.org; Wed, 02 Aug 2000 21:42:12 +0200 Mime-Version: 1.0 X-Sender: micheal%com4u.ch@mail.com4u.ch Message-Id: In-Reply-To: <001d01bffcb6$5799ae00$e815820a@erin-laptop.sdccd.cc.ca.us> References: <001d01bffcb6$5799ae00$e815820a@erin-laptop.sdccd.cc.ca.us> Date: Wed, 2 Aug 2000 21:36:18 +0200 To: freebsd-isp@freebsd.org From: Michael O Shea Subject: Re: Secondary BIND server. Content-Type: text/plain; charset="us-ascii" ; format="flowed" Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org >Does anyone have some sugestions on how I would go about getting my >secondary DNS server to automatically setup the secondary domain when I put >it in the primary DNS server. > >Is there any software that already does this? > >Yes, I am using FreeBSD for both and I know this should go to the BIND >mailing list, but I thought someone using FreeBSD may be able topoint me in >the right direction. > > >Thanks, > >Erin > Take a look at http://www.namesurfer.com does it very cool with ssh. -- Micheal O Shea Email:micheal@com4u.ch com4u.ch http://www.com4u.ch Breitistrasse 7B PGP key available upon request. CH-5506 Maegenwil Tel: +41 62 896 46 26 Switzerland To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Aug 2 12:45:28 2000 Delivered-To: freebsd-isp@freebsd.org Received: from workhorse.iMach.com (workhorse.iMach.com [206.127.77.89]) by hub.freebsd.org (Postfix) with ESMTP id A7ECB37B903 for ; Wed, 2 Aug 2000 12:45:08 -0700 (PDT) (envelope-from forrestc@imach.com) Received: from localhost (forrestc@localhost) by workhorse.iMach.com (8.9.3/8.9.3) with ESMTP id MAA17439; Wed, 2 Aug 2000 12:46:20 -0600 (MDT) Date: Wed, 2 Aug 2000 12:46:18 -0600 (MDT) From: "Forrest W. Christian" To: Joe Greco Cc: freebsd-isp@FreeBSD.ORG, francis@usls.edu Subject: Re: Cyclades Z series vs. Cisco 2600 In-Reply-To: <200008021621.LAA70715@aurora.sol.net> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Wed, 2 Aug 2000, Joe Greco wrote: > > How does the Cyclades Z series system on a FreeBSD machine compare to > > a Cisco 2600 router in terms of async/dialup performance? I'm also > > interested to know why you chose Cyclades over Cisco and vice versa. > > Basically a Cisco 2600 is a dinky little router with very few overall > resources. It has a nice 1U form factor that makes it attractive for > tight locations, and of course it's got fewer moving parts than a PC. > I'm guessing that you can get 16-port serial modules for it, although > I don't know... but if the modules can do 230,400 I'd be impressed, > and I'm fairly sure that the unit would be saturated trying to handle > a few dozen busy ports. Technical specs: A 2600 has a 50MHz RISC CPU. You can get either 16 or 32 port serial cards which are capable of up to 134.4kb/s. If you need the 2600 for other things (such as your connection to the internet) then this might be just what the doctor ordered. However, I think it might not be the best solution. Have you considered picking up a used Pormaster 2? You can get a 30 port version for less than 500 regularly on Ebay. I have used these heavily over the years and as far as terminal servers go I really don't think you can go wrong with one of these. - Forrest W. Christian (forrestc@imach.com) AC7DE ---------------------------------------------------------------------- iMach, Ltd., P.O. Box 5749, Helena, MT 59604 http://www.imach.com Solutions for your high-tech problems. (406)-442-6648 ---------------------------------------------------------------------- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Aug 2 12:46:28 2000 Delivered-To: freebsd-isp@freebsd.org Received: from hermes.deadbbs.com (hermes.cpetc.com [207.137.157.132]) by hub.freebsd.org (Postfix) with ESMTP id 5B9CF37BA8A for ; Wed, 2 Aug 2000 12:46:25 -0700 (PDT) (envelope-from Kahn@deadbbs.com) Received: from erin-laptop (mongo.sdccd.cc.ca.us [209.129.16.5]) by hermes.deadbbs.com (8.10.2/8.10.2) with SMTP id e72Jktm27769; Wed, 2 Aug 2000 12:46:56 -0700 (PDT) From: "Erin" To: "'Brian Reichert'" Cc: Subject: RE: Secondary BIND server. Date: Wed, 2 Aug 2000 12:45:44 -0700 Message-ID: <002101bffcba$400be060$e815820a@erin-laptop.sdccd.cc.ca.us> MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook 8.5, Build 4.71.2173.0 X-MimeOLE: Produced By Microsoft MimeOLE V4.72.3155.0 Importance: Normal In-Reply-To: <20000802153603.H12265@numachi.com> Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org > - your primary server's zone file lists both your name > servers in the SOA > - your primary server's been told it's master for that zone > - your slave server's been told it's a slave for that zone (and > who the master is) > > Then when you start the secondary server up, it will automatically > get the zone file from the primary. > > If you modify the zone, the primary will notify the secondary of > the change, and the secondary will get a new copy of the zone file. > > This does mean that you inform have to infrom both servers of the > domain in question. If you have a fluid set of domains, your new > question becomes 'how can I propegate changes to my named.conf > file?'. I knew what I wanted to say in my head, it just never makes it to the email that way. :-) ok, If I add the domain into the named.conf and set it up on the primary, what I would like to do is have it automatically set its self up on the secondary in the named.conf and then get a cop of the zone file. Does this make sense? Thanks again, Erin mailto:kahn@deadbbs.com http://www.deadbbs.com http://www.fortenberry.net "Can i dial 1-255-255-255255 and make every phone in the world ring?" -- Tanuki To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Aug 2 12:49:28 2000 Delivered-To: freebsd-isp@freebsd.org Received: from PacHell.TelcoSucks.org (pachell.telcosucks.org [207.90.181.5]) by hub.freebsd.org (Postfix) with ESMTP id CF3F437C1AA for ; Wed, 2 Aug 2000 12:49:23 -0700 (PDT) (envelope-from ulf@PacHell.TelcoSucks.org) Received: (from ulf@localhost) by PacHell.TelcoSucks.org (8.9.3/8.9.1) id MAA38610; Wed, 2 Aug 2000 12:48:50 -0700 (PDT) (envelope-from ulf) Date: Wed, 2 Aug 2000 12:48:50 -0700 From: Ulf Zimmermann To: "Forrest W. Christian" Cc: Joe Greco , freebsd-isp@FreeBSD.ORG, francis@usls.edu Subject: Re: Cyclades Z series vs. Cisco 2600 Message-ID: <20000802124850.P10581@PacHell.TelcoSucks.org> Reply-To: ulf@Alameda.net References: <200008021621.LAA70715@aurora.sol.net> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 1.0i In-Reply-To: ; from forrestc@imach.com on Wed, Aug 02, 2000 at 12:46:18PM -0600 Organization: Alameda Networks, Inc. X-Operating-System: FreeBSD 3.4-STABLE Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Wed, Aug 02, 2000 at 12:46:18PM -0600, Forrest W. Christian wrote: > On Wed, 2 Aug 2000, Joe Greco wrote: > > > > How does the Cyclades Z series system on a FreeBSD machine compare to > > > a Cisco 2600 router in terms of async/dialup performance? I'm also > > > interested to know why you chose Cyclades over Cisco and vice versa. > > > > Basically a Cisco 2600 is a dinky little router with very few overall > > resources. It has a nice 1U form factor that makes it attractive for > > tight locations, and of course it's got fewer moving parts than a PC. > > I'm guessing that you can get 16-port serial modules for it, although > > I don't know... but if the modules can do 230,400 I'd be impressed, > > and I'm fairly sure that the unit would be saturated trying to handle > > a few dozen busy ports. > > Technical specs: A 2600 has a 50MHz RISC CPU. You can get either 16 or Last time I checked, the 261x (ethernet and tokenring versions) has a 40 MHz cpu. The 262x (Fastethernet versions) have the 50MHz cpu. > 32 port serial cards which are capable of up to 134.4kb/s. If you need > the 2600 for other things (such as your connection to the internet) then > this might be just what the doctor ordered. However, I think it might > not be the best solution. > > Have you considered picking up a used Pormaster 2? You can get a 30 port > version for less than 500 regularly on Ebay. I have used these heavily > over the years and as far as terminal servers go I really don't think you > can go wrong with one of these. > > - Forrest W. Christian (forrestc@imach.com) AC7DE > ---------------------------------------------------------------------- > iMach, Ltd., P.O. Box 5749, Helena, MT 59604 http://www.imach.com > Solutions for your high-tech problems. (406)-442-6648 > ---------------------------------------------------------------------- > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message -- Regards, Ulf. --------------------------------------------------------------------- Ulf Zimmermann, 1525 Pacific Ave., Alameda, CA-94501, #: 510-769-2936 Alameda Networks, Inc. | http://www.Alameda.net | Fax#: 510-521-5073 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Aug 2 12:52:26 2000 Delivered-To: freebsd-isp@freebsd.org Received: from ethereal.backchat.co.za (firewall.backchat.co.za [196.25.19.86]) by hub.freebsd.org (Postfix) with ESMTP id 5F03437BA8A for ; Wed, 2 Aug 2000 12:52:10 -0700 (PDT) (envelope-from natey@backchat.co.za) Received: from natey (helo=localhost) by ethereal.backchat.co.za with local-esmtp (Exim 2.12 #1) id 13K4W4-0005RY-00; Wed, 2 Aug 2000 21:49:24 +0200 Date: Wed, 2 Aug 2000 21:49:24 +0200 (SAST) From: Natey on IRC To: Erin Cc: 'Brian Reichert' , freebsd-isp@freebsd.org Subject: RE: Secondary BIND server. In-Reply-To: <002101bffcba$400be060$e815820a@erin-laptop.sdccd.cc.ca.us> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Write a perl script that ssh's into the secondary server and runs another perl script on the other boxxie that creates the secondary zone info in the named.conf and runs ndc restart and you are a for away :) On Wed, 2 Aug 2000, Erin wrote: > > - your primary server's zone file lists both your name > > servers in the SOA > > - your primary server's been told it's master for that zone > > - your slave server's been told it's a slave for that zone (and > > who the master is) > > > > Then when you start the secondary server up, it will automatically > > get the zone file from the primary. > > > > If you modify the zone, the primary will notify the secondary of > > the change, and the secondary will get a new copy of the zone file. > > > > This does mean that you inform have to infrom both servers of the > > domain in question. If you have a fluid set of domains, your new > > question becomes 'how can I propegate changes to my named.conf > > file?'. > > I knew what I wanted to say in my head, it just never makes it to the email > that way. :-) > > ok, If I add the domain into the named.conf and set it up on the primary, > what I would like to do is have it automatically set its self up on the > secondary in the named.conf and then get a cop of the zone file. > > Does this make sense? > > > Thanks again, > > Erin > > > mailto:kahn@deadbbs.com > http://www.deadbbs.com > http://www.fortenberry.net > > > "Can i dial 1-255-255-255255 and make every phone in the world ring?" > > -- Tanuki To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Aug 2 12:57:57 2000 Delivered-To: freebsd-isp@freebsd.org Received: from aurora.sol.net (aurora.sol.net [206.55.65.76]) by hub.freebsd.org (Postfix) with ESMTP id 4E62837C0F1 for ; Wed, 2 Aug 2000 12:57:48 -0700 (PDT) (envelope-from jgreco@aurora.sol.net) Received: (from jgreco@localhost) by aurora.sol.net (8.9.2/8.9.2/SNNS-1.02) id PAA87442; Wed, 2 Aug 2000 15:15:15 -0500 (CDT) From: Joe Greco Message-Id: <200008022015.PAA87442@aurora.sol.net> Subject: Re: Cyclades Z series vs. Cisco 2600 In-Reply-To: from "Forrest W. Christian" at "Aug 2, 2000 12:46:18 pm" To: forrestc@imach.com (Forrest W. Christian) Date: Wed, 2 Aug 2000 15:15:15 -0500 (CDT) Cc: freebsd-isp@FreeBSD.ORG, francis@usls.edu X-Mailer: ELM [version 2.4ME+ PL43 (25)] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org > > Basically a Cisco 2600 is a dinky little router with very few overall > > resources. It has a nice 1U form factor that makes it attractive for > > tight locations, and of course it's got fewer moving parts than a PC. > > I'm guessing that you can get 16-port serial modules for it, although > > I don't know... but if the modules can do 230,400 I'd be impressed, > > and I'm fairly sure that the unit would be saturated trying to handle > > a few dozen busy ports. > > Technical specs: A 2600 has a 50MHz RISC CPU. You can get either 16 or > 32 port serial cards which are capable of up to 134.4kb/s. If you need > the 2600 for other things (such as your connection to the internet) then > this might be just what the doctor ordered. However, I think it might > not be the best solution. > > Have you considered picking up a used Pormaster 2? You can get a 30 port > version for less than 500 regularly on Ebay. I have used these heavily > over the years and as far as terminal servers go I really don't think you > can go wrong with one of these. Beware the PM2, they are relatively low performance. They can handle a full load of V.34 modems without undue suffering, but beyond that are mainly useful for things like monitor stands. They're pretty good for doing serial console stuff for stupid equipment like Cisco routers, Total Controls, etc., but for any smart bit of equipment like a BGP speaker or a server, I'd much prefer to have a FreeBSD based terminal server for the logging capabilities. They also don't allow things like ssh, so you should use them on a secured network or a secure serial line. -- ... Joe ------------------------------------------------------------------------------- Joe Greco - Systems Administrator jgreco@ns.sol.net Solaria Public Access UNIX - Milwaukee, WI 414/342-4847 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Aug 2 13: 4:13 2000 Delivered-To: freebsd-isp@freebsd.org Received: from yoda.fdt.net (yoda.fdt.net [209.212.128.32]) by hub.freebsd.org (Postfix) with ESMTP id 7019D37C1AF for ; Wed, 2 Aug 2000 13:04:05 -0700 (PDT) (envelope-from flaboy@gnv.fdt.net) Received: from localhost (flaboy@localhost) by yoda.fdt.net with ESMTP id QAA04163; Wed, 2 Aug 2000 16:03:54 -0400 Date: Wed, 2 Aug 2000 16:03:54 -0400 (EDT) From: Joe Barnhart X-Sender: flaboy@yoda.fdt.net To: Michael O Shea Cc: freebsd-isp@FreeBSD.ORG Subject: Re: Secondary BIND server. In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org #!/bin/sh /usr/local/bin/scp dist@some.machine.net:/etc/named.slaves.conf /etc/ exec /usr/sbin/ndc reload of course you need to set up a dist account :) On Wed, 2 Aug 2000, Michael O Shea wrote: > >Does anyone have some sugestions on how I would go about getting my > >secondary DNS server to automatically setup the secondary domain when I put > >it in the primary DNS server. > > > >Is there any software that already does this? > > > >Yes, I am using FreeBSD for both and I know this should go to the BIND > >mailing list, but I thought someone using FreeBSD may be able topoint me in > >the right direction. > > > > > >Thanks, > > > >Erin > > > Take a look at http://www.namesurfer.com does it very cool with ssh. > -- > > > Micheal O Shea Email:micheal@com4u.ch > com4u.ch http://www.com4u.ch > Breitistrasse 7B PGP key available upon request. > CH-5506 Maegenwil Tel: +41 62 896 46 26 > Switzerland > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Aug 2 13:52:24 2000 Delivered-To: freebsd-isp@freebsd.org Received: from mail.numachi.com (numachi.numachi.com [198.175.254.2]) by hub.freebsd.org (Postfix) with SMTP id 054D137BBE2 for ; Wed, 2 Aug 2000 13:52:19 -0700 (PDT) (envelope-from reichert@numachi.com) Received: (qmail 15706 invoked by uid 1001); 2 Aug 2000 20:52:14 -0000 Date: Wed, 2 Aug 2000 16:52:14 -0400 From: Brian Reichert To: Erin Cc: 'Brian Reichert' , freebsd-isp@freebsd.org Subject: Re: Secondary BIND server. Message-ID: <20000802165214.K12265@numachi.com> References: <20000802153603.H12265@numachi.com> <002101bffcba$400be060$e815820a@erin-laptop.sdccd.cc.ca.us> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 1.0pre4i In-Reply-To: <002101bffcba$400be060$e815820a@erin-laptop.sdccd.cc.ca.us>; from Kahn@deadbbs.com on Wed, Aug 02, 2000 at 12:45:44PM -0700 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Wed, Aug 02, 2000 at 12:45:44PM -0700, Erin wrote: > > - your primary server's zone file lists both your name > > servers in the SOA > > - your primary server's been told it's master for that zone > > - your slave server's been told it's a slave for that zone (and > > who the master is) > > > > Then when you start the secondary server up, it will automatically > > get the zone file from the primary. > > > > If you modify the zone, the primary will notify the secondary of > > the change, and the secondary will get a new copy of the zone file. > > > > This does mean that you inform have to infrom both servers of the > > domain in question. If you have a fluid set of domains, your new > > question becomes 'how can I propegate changes to my named.conf > > file?'. > > I knew what I wanted to say in my head, it just never makes it to the email > that way. :-) > > ok, If I add the domain into the named.conf and set it up on the primary, > what I would like to do is have it automatically set its self up on the > secondary in the named.conf and then get a cop of the zone file. > > Does this make sense? Yep. :) There are a million-and-one (well, a dozen or so) tools on http://www.freshmeat.net. Search for 'BIND'. See, this looks cute; I've been being to put something into place like this myself: AutoDNS accepts GPG signed emails instructing it to setup secondary DNS for domains and adds appropriate entries to the BIND configuration file in order to make this happen. Homepage: http://www.earth.li/projectpurple/progs/autodns.html (989 hits) or, you could use ssh like everyone says. Or rsync. Or, run BIND in a chroot environment, and FTP stuff around. Did I mention tftp? Pay a high school kid to type stuff in; they need work. Say, I need more coffee... > Thanks again, > > Erin -- Brian 'you Bastard' Reichert reichert@numachi.com 37 Crystal Ave. #303 Daytime number: (603) 434-6842 Derry NH 03038-1713 USA Intel architecture: the left-hand path To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Aug 2 13:55:47 2000 Delivered-To: freebsd-isp@freebsd.org Received: from goofy.intcom.net (goofy.intcom.net [207.17.172.51]) by hub.freebsd.org (Postfix) with ESMTP id CA27B37B5E4 for ; Wed, 2 Aug 2000 13:55:36 -0700 (PDT) (envelope-from jason@iac.net) Received: from jason ([207.17.172.225]) by goofy.intcom.net (Netscape Messaging Server 3.6) with SMTP id AAA157B; Wed, 2 Aug 2000 16:55:20 -0400 From: "Jason Portwood" To: "'Erin'" , Subject: RE: Secondary BIND server. Date: Wed, 2 Aug 2000 16:52:40 -0400 Message-ID: <6381A6A8826BD31199500090279CAFBA106C25@FOGHORN> MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook CWS, Build 9.0.2416 (9.0.2910.0) In-Reply-To: <6381A6A8826BD31199500090279CAFBA10206E@FOGHORN> X-MimeOLE: Produced By Microsoft MimeOLE V5.00.2314.1300 Importance: Normal Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org > > Does anyone have some sugestions on how I would go about getting my > secondary DNS server to automatically setup the secondary > domain when I put it in the primary DNS server. > > Is there any software that already does this? > I saw the other posts about this and how to do it. I came up with an idea about a week ago on how to do this using a pair of Perl scripts and DNS only. One Perl script to parse the domains out into a zone file with entries like... IN TXT "somehost.com" Then on the secondary the second script does a dig @yourdnsserver zonefile.list.net axfr and then parses that out into a (included) named.conf file. Reload if there is a change ala serial numbers... On the primary you would set that zone file up to allow only zone transfers from your secondary and no queries on the domain. // something like... zone "slaves.somehost.net" { type master; file "slaves.somehost.net"; allow-transfer { 10.1.1.1; }; allow-query { none; }; }; I would have done this update just through the normal zone transfers by that appears to do a query before a transfer (dig doesn't). Also I didn't want to have to set up a record on the secondary and have to fuss protecting that. Plus getting it to sync after a transfer seemed a little hard than just doing a dig and parsing that out. I haven't put it into production yet (still doing the by hand tests) but all appears to be going well. I have also sent a message off to the ISC BIND suggestion people to make sure what I have done is sane. If anyone is interested in a copy of the two scripts just ask. It is still in the beginning stages (doesn't do any sanity checks on the data for one) but it does work at least in tests. If someone can come up with a better reason why not to GPL it I'm going to send it out that way... I would be very interested in any feedback on it or just this idea in general. The usual disclaimer... The script is beta and even if it wasn't. Always backup before/read code/etc... Don't blame me if it goes nuts as it works for me. I've either come up with a good idea or one that is so bad that there is a good reason why it isn't being used already. Jason Portwood - jason@iac.net Systems Administrator - Strategic/Internet Access Cincinnati Sales and Tech Support - 513-860-9052 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Aug 2 14: 0:41 2000 Delivered-To: freebsd-isp@freebsd.org Received: from yoda.fdt.net (yoda.fdt.net [209.212.128.32]) by hub.freebsd.org (Postfix) with ESMTP id 3FA8F37BAAC for ; Wed, 2 Aug 2000 14:00:36 -0700 (PDT) (envelope-from flaboy@gnv.fdt.net) Received: from localhost (flaboy@localhost) by yoda.fdt.net with ESMTP id RAA13688; Wed, 2 Aug 2000 17:00:22 -0400 Date: Wed, 2 Aug 2000 17:00:22 -0400 (EDT) From: Joe Barnhart X-Sender: flaboy@yoda.fdt.net To: Jason Portwood Cc: "'Erin'" , freebsd-isp@FreeBSD.ORG Subject: RE: Secondary BIND server. In-Reply-To: <6381A6A8826BD31199500090279CAFBA106C25@FOGHORN> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org This is the simplest way: First set up a cron: #update secondary dns info 1 0,12 * * * /usr/local/sbin/update.virtuals Second write the simple bash script, use whatever account@host.com you wish, I use dist@ : /usr/local/bin/scp dist@whatever.host.net:/etc/named.slaves.conf /etc/ exec /usr/sbin/ndc reload no perl scripts, simple, effective. I assume everyone has ssh. JB On Wed, 2 Aug 2000, Jason Portwood wrote: > > > > Does anyone have some sugestions on how I would go about getting my > > secondary DNS server to automatically setup the secondary > > domain when I put it in the primary DNS server. > > > > Is there any software that already does this? > > > > I saw the other posts about this and how to do it. I came up with an idea > about a week ago > on how to do this using a pair of Perl scripts and DNS only. > > One Perl script to parse the domains out into a zone file with entries > like... > > IN TXT "somehost.com" > > Then on the secondary the second script does a dig @yourdnsserver > zonefile.list.net axfr > and then parses that out into a (included) named.conf file. Reload if there > is a change ala serial numbers... > > On the primary you would set that zone file up to allow only zone transfers > from > your secondary and no queries on the domain. > > // something like... > zone "slaves.somehost.net" { > type master; > file "slaves.somehost.net"; > allow-transfer { 10.1.1.1; }; > allow-query { none; }; > }; > > I would have done this update just through the normal zone transfers by that > appears to do a query before a transfer (dig doesn't). Also I didn't want > to have to set up a record on the secondary and have to fuss protecting > that. Plus getting it to sync after a transfer seemed a little hard than > just doing a dig and parsing that out. > > I haven't put it into production yet (still doing the by hand tests) but all > appears to be > going well. I have also sent a message off to the ISC BIND suggestion > people to make sure what I > have done is sane. > > If anyone is interested in a copy of the two scripts just ask. It is still > in the beginning stages (doesn't do any sanity checks on the data for one) > but it does work at least in tests. > If someone can come up with a better reason why not to GPL it I'm going to > send it out that way... I would be very interested in any feedback on it or > just this idea in general. > The usual disclaimer... The script is beta and even if it wasn't. Always > backup before/read code/etc... Don't blame me if it goes nuts as it works > for me. > > I've either come up with a good idea or one that is so bad that there is a > good reason why it isn't being used already. > > Jason Portwood - jason@iac.net > Systems Administrator - Strategic/Internet Access Cincinnati > Sales and Tech Support - 513-860-9052 > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Aug 2 21: 6:19 2000 Delivered-To: freebsd-isp@freebsd.org Received: from jade.chc-chimes.com (jade.chc-chimes.com [216.28.46.6]) by hub.freebsd.org (Postfix) with ESMTP id DA78937B78E for ; Wed, 2 Aug 2000 21:06:12 -0700 (PDT) (envelope-from billf@jade.chc-chimes.com) Received: by jade.chc-chimes.com (Postfix, from userid 1001) id 3C0AF1C65; Thu, 3 Aug 2000 00:06:10 -0400 (EDT) Date: Thu, 3 Aug 2000 00:06:10 -0400 From: Bill Fumerola To: Joe Greco Cc: freebsd-isp@freebsd.org, francis@usls.edu Subject: Re: Cyclades Z series vs. Cisco 2600 Message-ID: <20000803000610.G58109@jade.chc-chimes.com> References: <200008021522.KAA10959@earth.execpc.com> <200008021621.LAA70715@aurora.sol.net> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 1.0i In-Reply-To: <200008021621.LAA70715@aurora.sol.net>; from jgreco@ns.sol.net on Wed, Aug 02, 2000 at 11:21:52AM -0500 X-Operating-System: FreeBSD 3.3-STABLE i386 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Wed, Aug 02, 2000 at 11:21:52AM -0500, Joe Greco wrote: > > How does the Cyclades Z series system on a FreeBSD machine compare to > > a Cisco 2600 router in terms of async/dialup performance? I'm also > > interested to know why you chose Cyclades over Cisco and vice versa. > > I just got one of these in, but I've not had time to play with it. > > Basically a Cisco 2600 is a dinky little router with very few overall > resources. It has a nice 1U form factor that makes it attractive for > tight locations, and of course it's got fewer moving parts than a PC. > I'm guessing that you can get 16-port serial modules for it, although > I don't know... but if the modules can do 230,400 I'd be impressed, > and I'm fairly sure that the unit would be saturated trying to handle > a few dozen busy ports. cisco 2511 (68030) processor (revision M) with 6144K/2048K bytes of memory. does everything you need (for 16 ports) with the right cables.. -- Bill Fumerola - Network Architect, BOFH / Chimes, Inc. billf@chimesnet.com / billf@FreeBSD.org To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu Aug 3 11:31:56 2000 Delivered-To: freebsd-isp@freebsd.org Received: from cache.sai.co.za (mail.sai.co.za [196.33.40.1]) by hub.freebsd.org (Postfix) with ESMTP id C53CF37B695 for ; Thu, 3 Aug 2000 11:31:42 -0700 (PDT) (envelope-from davew@sai.co.za) Received: from fdisk (fdisk.pmburg.co.za [196.33.40.17]) by cache.sai.co.za (8.9.3/8.9.3) with SMTP id UAA03218; Thu, 3 Aug 2000 20:31:27 +0200 (SAST) (envelope-from davew@sai.co.za) Message-ID: <001a01bffd7a$9d926e00$112821c4@sai.co.za> From: "Dave Wilson" To: Cc: Subject: Multiple DEFAULT values ? Date: Thu, 3 Aug 2000 20:42:43 +0200 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.50.4133.2400 X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4133.2400 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hi Guys, howzit going ? I'm running Cistron radiusd version 1.6.1 on a FreeBSD 4.0 server. I 've been trying to get certain groups of users to have email only access, and other groups to have full internet access. The hassle is that each time a user logs in he receives the DEFAULT attributes instead of his group attributes. This is my "users" file: staticipuser1 Auth-Type = System Framed-IP-Address = 196.22.87.2, Service-Type = Framed-User, Framed-Protocol = PPP, Framed-Routing = None, Framed-Compression = Van-Jacobson-TCP-IP, Framed-MTU = 1500 staticipuser2 Auth-Type = System Framed-IP-Address = 196.22.87.3, Service-Type = Framed-User, Framed-Protocol = PPP, Framed-Routing = None, Framed-Compression = Van-Jacobson-TCP-IP, Framed-MTU = 1500 DEFAULT Auth-Type = System, Group = "mailonly" Service-Type = Framed-User, Framed-Protocol = PPP, Framed-IP-Address = 255.255.255.254, Framed-Routing = None, Framed-Compression = Van-Jacobson-TCP-IP, Framed-Filter-Id = "mailonly", Framed-MTU = 1500 DEFAULT2 Auth-Type = System, NAS-Port-Type = Async Service-Type = Framed-User, Framed-Protocol = PPP, Framed-IP-Address = 255.255.255.254, Framed-Routing = None, Framed-Compression = Van-Jacobson-TCP-IP, Framed-MTU = 1500 If staticipuser1 or staticipuser2 dials in they get their static IP and everything works 100%, when a normal user that doesn't belong to the "mailonly" UNIX group dials in he gets assigned the Filter from the "DEFAULT" section, and can't access the internet, when he should be getting full access from the "DEFAULT2" section. Basically how do we get multiple DEFAULT sections support. Thanks ;-) Regards Dave Wilson The S.A. Internet (033) 3456777 0825496159 http://www.sai.co.za "Who is General Failure and why is he reading my hard drive ?" To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu Aug 3 12:52:24 2000 Delivered-To: freebsd-isp@freebsd.org Received: from mail1.accessus.net (postal.accessus.net [209.145.150.75]) by hub.freebsd.org (Postfix) with ESMTP id 35F4137B748 for ; Thu, 3 Aug 2000 12:52:20 -0700 (PDT) (envelope-from jyoung@accessus.net) Received: from exchange.accessus.net (exchange.accessus.net [207.206.171.65]) by mail1.accessus.net (Postfix) with ESMTP id F166F72693; Thu, 3 Aug 2000 14:52:16 -0500 (CDT) Received: by exchange.accessus.net with Internet Mail Service (5.5.2650.21) id ; Thu, 3 Aug 2000 14:45:49 -0500 Message-ID: From: Jason Young To: 'Dave Wilson' , cistron-radius@info.cistron.nl Cc: freebsd-isp@FreeBSD.ORG Subject: RE: Multiple DEFAULT values ? Date: Thu, 3 Aug 2000 14:45:45 -0500 MIME-Version: 1.0 X-Mailer: Internet Mail Service (5.5.2650.21) Content-Type: text/plain; charset="iso-8859-1" Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org I think you really want to call them both DEFAULT. Jason Young Access US(tm) Chief Network Engineer > -----Original Message----- > From: Dave Wilson [mailto:davew@sai.co.za] > Sent: Thursday, August 03, 2000 1:43 PM > To: cistron-radius@info.cistron.nl > Cc: freebsd-isp@FreeBSD.ORG > Subject: Multiple DEFAULT values ? > > > Hi Guys, howzit going ? > > I'm running Cistron radiusd version 1.6.1 on a FreeBSD 4.0 server. > I 've been trying to get certain groups of users to have > email only access, > and other groups to have full internet access. > The hassle is that each time a user logs in he receives the DEFAULT > attributes instead of his group attributes. > This is my "users" file: > > > staticipuser1 Auth-Type = System > Framed-IP-Address = 196.22.87.2, > Service-Type = Framed-User, > Framed-Protocol = PPP, > Framed-Routing = None, > Framed-Compression = Van-Jacobson-TCP-IP, > Framed-MTU = 1500 > > staticipuser2 Auth-Type = System > Framed-IP-Address = 196.22.87.3, > Service-Type = Framed-User, > Framed-Protocol = PPP, > Framed-Routing = None, > Framed-Compression = Van-Jacobson-TCP-IP, > Framed-MTU = 1500 > > DEFAULT Auth-Type = System, Group = "mailonly" > Service-Type = Framed-User, > Framed-Protocol = PPP, > Framed-IP-Address = 255.255.255.254, > Framed-Routing = None, > Framed-Compression = Van-Jacobson-TCP-IP, > Framed-Filter-Id = "mailonly", > Framed-MTU = 1500 > > DEFAULT2 Auth-Type = System, NAS-Port-Type = Async > Service-Type = Framed-User, > Framed-Protocol = PPP, > Framed-IP-Address = 255.255.255.254, > Framed-Routing = None, > Framed-Compression = Van-Jacobson-TCP-IP, > Framed-MTU = 1500 > > If staticipuser1 or staticipuser2 dials in they get their > static IP and > everything works 100%, when a normal user that doesn't belong to the > "mailonly" UNIX group dials in he gets assigned the Filter from the > "DEFAULT" section, and can't access the internet, when he > should be getting > full access from the "DEFAULT2" section. > Basically how do we get multiple DEFAULT sections support. > Thanks ;-) > > Regards > Dave Wilson > The S.A. Internet > (033) 3456777 > 0825496159 > http://www.sai.co.za > "Who is General Failure and why is he reading my hard drive ?" > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu Aug 3 20:36:59 2000 Delivered-To: freebsd-isp@freebsd.org Received: from mta5.snfc21.pbi.net (mta5.snfc21.pbi.net [206.13.28.241]) by hub.freebsd.org (Postfix) with ESMTP id 05EB037B898 for ; Thu, 3 Aug 2000 20:36:57 -0700 (PDT) (envelope-from aah@acm.org) Received: from desire ([63.202.70.106]) by mta5.snfc21.pbi.net (Sun Internet Mail Server sims.3.5.2000.01.05.12.18.p9) with SMTP id <0FYR0023P0I72K@mta5.snfc21.pbi.net> for freebsd-isp@FreeBSD.ORG; Thu, 3 Aug 2000 20:32:31 -0700 (PDT) Date: Thu, 03 Aug 2000 20:31:24 -0700 From: Andrew Houghton Subject: ISP newbie, help me to not get sued To: freebsd-isp@FreeBSD.ORG Message-id: <009301bffdc4$777c5ec0$0ca8a8c0@desire> MIME-version: 1.0 X-Mailer: Microsoft Outlook Express 5.00.3018.1300 Content-type: text/plain; charset="iso-8859-1" Content-transfer-encoding: 7bit X-MSMail-Priority: Normal X-MimeOLE: Produced By Microsoft MimeOLE V5.00.3018.1300 X-Priority: 3 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Despite the tongue-in-cheek subject line, this is a serious request. I'm in the process of trying to set up a box as a mail/web server for multiple sites. I plan on offering clients the ability to create their own email aliases and forwarding addresses, run cgi scripts / java servlets, and host mailing lists on their site. For the moment, all those planning on using this box are friends or good acquaintances, and potential problems don't make me too nervous. But as I get closer to actually putting this thing together, I get more nervous, and want to make sure that even if it's a small enterprise it's run as professionally as possible. Assume I know nothing about this. I've been reading the lists, reading the FreeBSD documentation and handbook, and generally scouring the web for whatever information I can find, but it's all academic until the machine is up and running. There is a wealth of "how-to" information out there, but very little practical "what I did" information. Please help people in my situation by responding to this post; If there's any interest at all I'll collect any information I get and try to coalesce it into a usable form. Specifically, 1) what software did you try and decide against, and why? I'm specifically interested in sendmail and replacements, majordomo and replacements, ftpd and replacements.. commercial products or not, any information is valuable. 2) if you decided not to use 'jail', what steps did you take to minimize risk for running CGI / servlets? If you *are* using jail, how did you handle things before that was an option? 3) how would you / did you handle upgrades with a single machine? 4) what did you *not* consider that came back to haunt you? I have no illusions that I'll be able plan for everything, but I'd like to be able to plan for most. The machine I'm using is a VALinux FullOn 2240; it's a RAID machine with a tape backup, but in retrospect I'm thinking CD or DAT may have made more sense. - Andrew To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Aug 4 1:13:20 2000 Delivered-To: freebsd-isp@freebsd.org Received: from mail.island.net.au (mail.island.net.au [203.28.142.3]) by hub.freebsd.org (Postfix) with ESMTP id 712D937B953 for ; Fri, 4 Aug 2000 01:13:09 -0700 (PDT) (envelope-from hugh@island.net.au) Received: from hansolo (solo.island.net.au [203.28.142.5]) by mail.island.net.au (8.10.1/8.10.1) with SMTP id e748CQ703172; Fri, 4 Aug 2000 18:12:26 +1000 (EST) Message-ID: <00d101bffdeb$b12fb960$088ea8c0@island.net.au> From: "Hugh Blandford" To: "Dave Wilson" Cc: References: <001a01bffd7a$9d926e00$112821c4@sai.co.za> Subject: Re: Multiple DEFAULT values ? Date: Fri, 4 Aug 2000 18:12:10 +1000 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.00.2919.6600 X-MimeOLE: Produced By Microsoft MimeOLE V5.00.2919.6600 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hi Dave, incase you haven't already had an answer, below are two groups that I have working: DEFAULT Group-Name = popper Auth-Type = Reject DEFAULT Group-Name = long Idle-Timeout = 2147483, Session-Timeout = 432000, Fall-Through = Yes Regards, Hugh Blandford ----- Original Message ----- From: "Dave Wilson" To: Cc: Sent: Friday, August 04, 2000 4:42 AM Subject: Multiple DEFAULT values ? > Hi Guys, howzit going ? > > I'm running Cistron radiusd version 1.6.1 on a FreeBSD 4.0 server. > I 've been trying to get certain groups of users to have email only access, > and other groups to have full internet access. > The hassle is that each time a user logs in he receives the DEFAULT > attributes instead of his group attributes. > This is my "users" file: > > > staticipuser1 Auth-Type = System > Framed-IP-Address = 196.22.87.2, > Service-Type = Framed-User, > Framed-Protocol = PPP, > Framed-Routing = None, > Framed-Compression = Van-Jacobson-TCP-IP, > Framed-MTU = 1500 > > staticipuser2 Auth-Type = System > Framed-IP-Address = 196.22.87.3, > Service-Type = Framed-User, > Framed-Protocol = PPP, > Framed-Routing = None, > Framed-Compression = Van-Jacobson-TCP-IP, > Framed-MTU = 1500 > > DEFAULT Auth-Type = System, Group = "mailonly" > Service-Type = Framed-User, > Framed-Protocol = PPP, > Framed-IP-Address = 255.255.255.254, > Framed-Routing = None, > Framed-Compression = Van-Jacobson-TCP-IP, > Framed-Filter-Id = "mailonly", > Framed-MTU = 1500 > > DEFAULT2 Auth-Type = System, NAS-Port-Type = Async > Service-Type = Framed-User, > Framed-Protocol = PPP, > Framed-IP-Address = 255.255.255.254, > Framed-Routing = None, > Framed-Compression = Van-Jacobson-TCP-IP, > Framed-MTU = 1500 > > If staticipuser1 or staticipuser2 dials in they get their static IP and > everything works 100%, when a normal user that doesn't belong to the > "mailonly" UNIX group dials in he gets assigned the Filter from the > "DEFAULT" section, and can't access the internet, when he should be getting > full access from the "DEFAULT2" section. > Basically how do we get multiple DEFAULT sections support. > Thanks ;-) > > Regards > Dave Wilson > The S.A. Internet > (033) 3456777 > 0825496159 > http://www.sai.co.za > "Who is General Failure and why is he reading my hard drive ?" > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Aug 4 4:24:14 2000 Delivered-To: freebsd-isp@freebsd.org Received: from atlas.usls.edu (atlas.usls.edu [202.47.133.46]) by hub.freebsd.org (Postfix) with ESMTP id 6C82337BA23 for ; Fri, 4 Aug 2000 04:22:50 -0700 (PDT) (envelope-from francis@usls.edu) Received: by atlas.usls.edu (Postfix, from userid 1001) id 1D9449B09; Fri, 4 Aug 2000 19:22:37 +0800 (PHT) Received: from localhost (localhost [127.0.0.1]) by atlas.usls.edu (Postfix) with ESMTP id 12BC95D04 for ; Fri, 4 Aug 2000 19:22:37 +0800 (PHT) Date: Fri, 4 Aug 2000 19:22:37 +0800 (PHT) From: "Francis A. Vidal" To: FreeBSD ISP Subject: V.90 modems (Was: Cyclades Z series vs. Cisco 2600) In-Reply-To: <200008021621.LAA70715@aurora.sol.net> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hi all, Thank you to all those who responded to my post. I think I'll go for Cyclades =) BTW, I have a off-topic question for you guys regarding Cisco 2500 series and the new V.90/56k modems. Do you have a modemcap of a generic V.90/56k modem? I have a cheap CNET modem that I would like to use here in the university but I don't know if I'm exploiting it's full potential. What other tweakings (to the router) do you do to maximize the modems on the ISP end? Do you also know of a resource on the web where I can read more info on different modem brands and how to configure them so they work at their best? -- francis vidal university of st. la salle, bacolod city, philippines . . . . . . . PGP key available via e-mail / subject: get PGP key u s l s N E T tel nos. (+63.34).433.3526 / fax (+63.34).434.0415 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Aug 4 4:42:55 2000 Delivered-To: freebsd-isp@freebsd.org Received: from hitline.ch (ccgate.com4u.ch [195.129.74.66]) by hub.freebsd.org (Postfix) with ESMTP id 8D12F37BA23 for ; Fri, 4 Aug 2000 04:42:42 -0700 (PDT) (envelope-from micheal@com4u.ch) Received: from [195.129.74.2] (HELO [10.10.10.150]) by hitline.ch (CommuniGate Pro SMTP 3.3b9) with ESMTP id 1821902 for freebsd-isp@freebsd.org; Fri, 04 Aug 2000 13:44:05 +0200 Mime-Version: 1.0 X-Sender: micheal%com4u.ch@mail.com4u.ch Message-Id: Date: Fri, 4 Aug 2000 13:42:34 +0200 To: freebsd-isp@freebsd.org From: Michael O Shea Subject: multiple PHPs Content-Type: text/plain; charset="us-ascii" ; format="flowed" Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hi folks. I have 3 FreeBSD servers set up with PHP in "safe mode" for my hosting customers. However I would like to have PHP in normal mode for some of our own sites. IS the best way to go on this is to complie and run 2 php binaries, one for Ext use and one for our own sites. or does anyone know of a simpler way ? Thanks in advance. -- Micheal O Shea Email:micheal@com4u.ch com4u.ch http://www.com4u.ch Breitistrasse 7B PGP key available upon request. CH-5506 Maegenwil Tel: +41 62 896 46 26 Switzerland To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Aug 4 6:51: 6 2000 Delivered-To: freebsd-isp@freebsd.org Received: from scooby.lineone.net (doggy.lineone.net [194.75.152.224]) by hub.freebsd.org (Postfix) with ESMTP id 800E537B5F6 for ; Fri, 4 Aug 2000 06:51:02 -0700 (PDT) (envelope-from war-zone@uk2.net) Received: from galaxy (host213-1-58-108.host.btclick.com [213.1.58.108]) by scooby.lineone.net (8.9.3/8.9.3) with SMTP id OAA11738; Fri, 4 Aug 2000 14:50:48 +0100 (BST) From: "Stone" To: "Michael O Shea" Cc: Subject: RE: multiple PHPs Date: Fri, 4 Aug 2000 14:52:03 +0100 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2911.0) X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4133.2400 In-Reply-To: Importance: Normal Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hi, Is safe mode defined in the php.ini or is it an option to set when using ./configure? If its built into the php binary (hence set in configure) you could use Apache's DSO support and use a different file name extention for your php scripts perhaps? I dont have access to FreeBSD or Apache at the moment so i cannot confirm this. -----Original Message----- From: owner-freebsd-isp@FreeBSD.ORG [mailto:owner-freebsd-isp@FreeBSD.ORG]On Behalf Of Michael O Shea Sent: 04 August 2000 12:43 To: freebsd-isp@FreeBSD.ORG Subject: multiple PHPs Hi folks. I have 3 FreeBSD servers set up with PHP in "safe mode" for my hosting customers. However I would like to have PHP in normal mode for some of our own sites. IS the best way to go on this is to complie and run 2 php binaries, one for Ext use and one for our own sites. or does anyone know of a simpler way ? Thanks in advance. -- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Aug 4 6:58:52 2000 Delivered-To: freebsd-isp@freebsd.org Received: from mout1.freenet.de (mout1.freenet.de [194.97.50.132]) by hub.freebsd.org (Postfix) with ESMTP id 9EC7037BB2B for ; Fri, 4 Aug 2000 06:58:47 -0700 (PDT) (envelope-from netchild@leidinger.net) Received: from [194.97.50.138] (helo=mx0.freenet.de) by mout1.freenet.de with esmtp (Exim 3.16 #2) id 13Khzo-0007AS-00; Fri, 04 Aug 2000 15:58:44 +0200 Received: from a2c5e.pppool.de ([213.6.44.94] helo=Magelan.Leidinger.net) by mx0.freenet.de with esmtp (Exim 3.16 #2) id 13Khzn-0005w4-00; Fri, 04 Aug 2000 15:58:44 +0200 Received: from Leidinger.net (netchild@localhost [127.0.0.1]) by Magelan.Leidinger.net (8.9.3/8.9.3) with ESMTP id PAA02041; Fri, 4 Aug 2000 15:25:09 +0200 (CEST) (envelope-from netchild@Leidinger.net) Message-Id: <200008041325.PAA02041@Magelan.Leidinger.net> Date: Fri, 4 Aug 2000 15:25:08 +0200 (CEST) From: Alexander Leidinger Subject: Re: multiple PHPs To: micheal@com4u.ch Cc: freebsd-isp@FreeBSD.ORG In-Reply-To: MIME-Version: 1.0 Content-Type: TEXT/plain; charset=us-ascii Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On 4 Aug, Michael O Shea wrote: > Hi folks. I have 3 FreeBSD servers set up with PHP in "safe mode" for > my hosting customers. However I would like to have PHP in normal mode > for some of our own sites. IS the best way to go on this is to > complie and run 2 php binaries, one for Ext use and one for our own > sites. or does anyone know of a simpler way ? You didn't describe your setup. If you use apache: there's the "php3_safe_mode on/off" directive, it's usable in a virtual host section. Bye, Alexander. -- I believe the technical term is "Oops!" http://www.Leidinger.net Alexander @ Leidinger.net GPG fingerprint = 7423 F3E6 3A7E B334 A9CC B10A 1F5F 130A A638 6E7E To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Aug 4 7: 1: 9 2000 Delivered-To: freebsd-isp@freebsd.org Received: from hitline.ch (ccgate.com4u.ch [195.129.74.66]) by hub.freebsd.org (Postfix) with ESMTP id 812FF37BB28 for ; Fri, 4 Aug 2000 07:01:05 -0700 (PDT) (envelope-from micheal@com4u.ch) Received: from [195.129.74.2] (HELO [10.10.10.150]) by hitline.ch (CommuniGate Pro SMTP 3.3b9) with ESMTP id 1822451 for freebsd-isp@freebsd.org; Fri, 04 Aug 2000 16:02:28 +0200 Mime-Version: 1.0 X-Sender: micheal%com4u.ch@mail.com4u.ch Message-Id: In-Reply-To: <200008041325.PAA02041@Magelan.Leidinger.net> References: <200008041325.PAA02041@Magelan.Leidinger.net> Date: Fri, 4 Aug 2000 16:01:01 +0200 To: freebsd-isp@freebsd.org From: Michael O Shea Subject: Re: multiple PHPs Content-Type: text/plain; charset="us-ascii" ; format="flowed" Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org >On 4 Aug, Michael O Shea wrote: >> Hi folks. I have 3 FreeBSD servers set up with PHP in "safe mode" for >> my hosting customers. However I would like to have PHP in normal mode >> for some of our own sites. IS the best way to go on this is to >> complie and run 2 php binaries, one for Ext use and one for our own >> sites. or does anyone know of a simpler way ? > >You didn't describe your setup. If you use apache: there's the >"php3_safe_mode on/off" directive, it's usable in a virtual host >section. > >Bye, >Alexander. Sorry , Setup is a FreeBSD cluster with php running as a ISAPI under Zeus WebServer. I guess the easiest way is for 2 binaries. -- Micheal O Shea Email:micheal@com4u.ch com4u.ch http://www.com4u.ch Breitistrasse 7B PGP key available upon request. CH-5506 Maegenwil Tel: +41 62 896 46 26 Switzerland To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Aug 4 7:13:23 2000 Delivered-To: freebsd-isp@freebsd.org Received: from mail1.accessus.net (postal.accessus.net [209.145.150.75]) by hub.freebsd.org (Postfix) with ESMTP id 54C6D37BB44 for ; Fri, 4 Aug 2000 07:13:08 -0700 (PDT) (envelope-from jyoung@accessus.net) Received: from exchange.accessus.net (exchange.accessus.net [207.206.171.65]) by mail1.accessus.net (Postfix) with ESMTP id 4825F727C0; Fri, 4 Aug 2000 09:13:07 -0500 (CDT) Received: by exchange.accessus.net with Internet Mail Service (5.5.2650.21) id ; Fri, 4 Aug 2000 09:06:39 -0500 Message-ID: From: Jason Young To: "'Francis A. Vidal'" , FreeBSD ISP Subject: RE: V.90 modems (Was: Cyclades Z series vs. Cisco 2600) Date: Fri, 4 Aug 2000 09:06:33 -0500 MIME-Version: 1.0 X-Mailer: Internet Mail Service (5.5.2650.21) Content-Type: text/plain; charset="iso-8859-1" Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Well, unfortunately v.90 modems (actually most modems in general) vary wide and far in initialization strings. It is rare to have a setup where you would hook 56K modems up to a 2500-series router and get 56K -inbound- connections. Your everyday POTS-using external 56K modem won't do this, you need to have the modems hooked up to a channelized T1 or PRI. Unless you have something like a USR Total Control hub which can accept calls over CT1 or PRI and still have actual serial ports on all the modems, it won't happen. So, there probably isn't a lot of gain in tweaking your init strings. Jason Young Access US(tm) Chief Network Engineer > -----Original Message----- > From: Francis A. Vidal [mailto:francis@usls.edu] > Sent: Friday, August 04, 2000 6:23 AM > To: FreeBSD ISP > Subject: V.90 modems (Was: Cyclades Z series vs. Cisco 2600) > > > Hi all, > > Thank you to all those who responded to my post. I think I'll go for > Cyclades =) > > BTW, I have a off-topic question for you guys regarding Cisco 2500 > series and the new V.90/56k modems. Do you have a modemcap of a > generic V.90/56k modem? I have a cheap CNET modem that I would like to > use here in the university but I don't know if I'm exploiting it's > full potential. What other tweakings (to the router) do you do to > maximize the modems on the ISP end? Do you also know of a resource on > the web where I can read more info on different modem brands and how > to configure them so they work at their best? > > -- > francis vidal university of st. la salle, bacolod city, philippines > . . . . . . . PGP key available via e-mail / subject: get PGP key > u s l s N E T tel nos. (+63.34).433.3526 / fax (+63.34).434.0415 > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Aug 4 13: 1: 3 2000 Delivered-To: freebsd-isp@freebsd.org Received: from workhorse.iMach.com (workhorse.iMach.com [206.127.77.89]) by hub.freebsd.org (Postfix) with ESMTP id CCE9D37B78B for ; Fri, 4 Aug 2000 13:00:59 -0700 (PDT) (envelope-from forrestc@imach.com) Received: from localhost (forrestc@localhost) by workhorse.iMach.com (8.9.3/8.9.3) with ESMTP id NAA08520; Fri, 4 Aug 2000 13:01:59 -0600 (MDT) Date: Fri, 4 Aug 2000 13:01:58 -0600 (MDT) From: "Forrest W. Christian" To: "Francis A. Vidal" Cc: FreeBSD ISP Subject: Re: V.90 modems (Was: Cyclades Z series vs. Cisco 2600) In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Fri, 4 Aug 2000, Francis A. Vidal wrote: > What other tweakings (to the router) do you do to maximize the modems > on the ISP end? I don't necessarily know of any resources for you, but I just wanted to make sure you were aware that in order to get 56K connections, you MUST either use a ISDN or T1 (or other digital method) from the modem to the switch. If you have one standard 56K modem call another, the most you are going to get is 33.6. This is one of the reasons I recommended the Portmaster. If you were looking for a 56K solution, there is a whole different set of solutions. - Forrest W. Christian (forrestc@imach.com) AC7DE ---------------------------------------------------------------------- iMach, Ltd., P.O. Box 5749, Helena, MT 59604 http://www.imach.com Solutions for your high-tech problems. (406)-442-6648 ---------------------------------------------------------------------- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Aug 4 16:38:37 2000 Delivered-To: freebsd-isp@freebsd.org Received: from imo-d07.mx.aol.com (imo-d07.mx.aol.com [205.188.157.39]) by hub.freebsd.org (Postfix) with ESMTP id ED26237B5E3 for ; Fri, 4 Aug 2000 16:38:30 -0700 (PDT) (envelope-from JonSlivko@aol.com) Received: from JonSlivko@aol.com by imo-d07.mx.aol.com (mail_out_v27.12.) id n.20.9a893ff (15699) for ; Fri, 4 Aug 2000 19:37:08 -0400 (EDT) Received: from web30.aolmail.aol.com (web30.aolmail.aol.com [205.188.222.6]) by air-id05.mx.aol.com (v75_b3.11) with ESMTP; Fri, 04 Aug 2000 19:37:08 -0400 Date: Fri, 04 Aug 2000 19:37:07 EDT From: JonSlivko@aol.com Subject: FreeBSD 3.5 on an HP Pavillion To: Mime-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit X-Mailer: Unknown Message-Id: <20000804233830.ED26237B5E3@hub.freebsd.org> Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Does anyone know if there is a problem with running FreeBSD on an HP Pavillion which has propriatery software? -- Jonathan M. Slivko To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Aug 4 18: 8:44 2000 Delivered-To: freebsd-isp@freebsd.org Received: from klapaucius.zer0.org (klapaucius.zer0.org [204.152.186.45]) by hub.freebsd.org (Postfix) with ESMTP id 7E6D337B67E for ; Fri, 4 Aug 2000 18:08:39 -0700 (PDT) (envelope-from gsutter@zer0.org) Received: (from gsutter@localhost) by klapaucius.zer0.org (8.9.3/8.9.3) id SAA48759; Fri, 4 Aug 2000 18:08:37 -0700 (PDT) (envelope-from gsutter@zer0.org) X-Authentication-Warning: klapaucius.zer0.org: gsutter set sender to gsutter@zer0.org using -f Date: Fri, 4 Aug 2000 18:08:37 -0700 From: Gregory Sutter To: Michael Haro Cc: freebsd-isp@freebsd.org Subject: Re: Bay Area Colo Recommendations? Message-ID: <20000804180837.A48428@klapaucius.zer0.org> References: <20000727213337.A80236@area51.fremont.ca.us> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2i In-Reply-To: <20000727213337.A80236@area51.fremont.ca.us>; from mharo@area51.fremont.ca.us on Thu, Jul 27, 2000 at 09:33:37PM -0700 Organization: Zer0 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On 2000-07-27 21:33 -0700, Michael Haro wrote: > Hi, a few of my friends want to setup a FreeBSD server and colocate it > at a colo facility in the Bay Area (California). I am wondering which > colo places to look at and if this is something that I would be able to > afford. > > We could get away with 1 IP and 2-4RU of rack space and don't plan > on using much bandwidth. We do want it on a fast net connection though > (1-10 Mbit) so we can access it from our DSL and cable modem connections. > > Any pointers as to where to look would be great. I was trying to do this not too long ago. Here is a message I sent about the matter to a private mailing list: === Date: Fri, 17 Mar 2000 19:47:18 -0800 From: Gregory Sutter gsutter@zer0.org Subject: [colo] Welcome and explanation Welcome. This is a new list, set up for the express purpose of setting up shared colocation. If you want in on this, or at least want to hear more, you're in the right place. I've been doing some preliminary research; it seems that the real big colo hosting places are still a bit out of the price range that I'm looking for. However, there are some one-and-a-halfth-tier joints with good connectivity that I believe can properly serve our needs. One thing I'd like to note here is that I am _not_ looking for colo in the South Bay. I need to be closer to my server than that (I reside in Berkeley). If you're looking for south bay colo, then don't run away, as we can potentially form two groups (yes, there seem to be that many of us). I'm in the process of researching these colo joints: level3.com SF appliedtheory.com Hayward value.net Walnut Creek emf.net Berkeley istep.com SF inreach.com Oakland isp.net SF maxim.net Fremont So far, isp.net looks to be the best value, but remember that this is just preliminary. If you're in the south bay, and want to use this list and opportunity to find a colo place there, I suggest researching: globalcenter.net Sunnyvale above.net SJ exodus.net Santa Clara hmmmv.net Santa Clara bayarea.net SJ meer.net MV verio.net The last issue that has to be raised right away is that of physical server size. The larger the box, the more expensive it will be, since space is at a premium in all these datacenters. Unless someone else volunteers or has already done it, I will take a look at some server vendors in an effort to get us a group discount on 1U, 2U, or 2.5U cases and/or complete servers. These are extremely space-efficient, and by raising the number of servers we can fit into a rack, we lower our overall cost markedly. Discuss. ===== HTH. If you're willing to pick up where I left off, I'll bet that some of the members of the colo list will still be willing to go in with you on space. Let me know and I'll add you to the list. Greg -- Gregory S. Sutter Computing is a terminal addiction. mailto:gsutter@zer0.org http://www.zer0.org/~gsutter/ PGP DSS public key 0x40AE3052 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Aug 4 21:50:10 2000 Delivered-To: freebsd-isp@freebsd.org Received: from atlas.usls.edu (atlas.usls.edu [202.47.133.46]) by hub.freebsd.org (Postfix) with ESMTP id 8CDB537B933 for ; Fri, 4 Aug 2000 21:49:52 -0700 (PDT) (envelope-from francis@usls.edu) Received: by atlas.usls.edu (Postfix, from userid 1001) id C5E219B22; Sat, 5 Aug 2000 12:49:38 +0800 (PHT) Received: from localhost (localhost [127.0.0.1]) by atlas.usls.edu (Postfix) with ESMTP id B91945D04; Sat, 5 Aug 2000 12:49:38 +0800 (PHT) Date: Sat, 5 Aug 2000 12:49:38 +0800 (PHT) From: "Francis A. Vidal" To: "Forrest W. Christian" Cc: FreeBSD ISP Subject: Re: V.90 modems (Was: Cyclades Z series vs. Cisco 2600) In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org ---- Quoting Forrest W. Christian's message, sent 08/04/00 1:01pm ---- > > What other tweakings (to the router) do you do to maximize the modems > > on the ISP end? > > I don't necessarily know of any resources for you, but I just > wanted to make sure you were aware that in order to get 56K > connections, you MUST either use a ISDN or T1 (or other digital > method) from the modem to the switch. Thanks for the reminder. > If you have one standard 56K modem call another, the most you are > going to get is 33.6. This is one of the reasons I recommended > the Portmaster. If you were looking for a 56K solution, there is > a whole different set of solutions. My problem is: I can't connect higher than 28.8. I'll try disabling V.90 and use V.34 and see if the connection improves. Do you have init strings that I can use? -- francis vidal university of st. la salle, bacolod city, philippines . . . . . . . PGP key available via e-mail / subject: get PGP key u s l s N E T tel nos. (+63.34).433.3526 / fax (+63.34).434.0415 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message