From owner-freebsd-isp@FreeBSD.ORG Sun May 18 02:51:11 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 18F7537B401; Sun, 18 May 2003 02:51:11 -0700 (PDT) Received: from smtp.infracaninophile.co.uk (ns0.infracaninophile.co.uk [81.2.69.218]) by mx1.FreeBSD.org (Postfix) with ESMTP id A2D8C43FAF; Sun, 18 May 2003 02:51:09 -0700 (PDT) (envelope-from m.seaman@infracaninophile.co.uk) Received: from happy-idiot-talk.infracaninophile.co.uk (localhost [127.0.0.1]) h4I9p7dP087649 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Sun, 18 May 2003 10:51:07 +0100 (BST) (envelope-from matthew@happy-idiot-talk.infracaninophile.co.uk) Received: (from matthew@localhost)h4I9p6gi087644; Sun, 18 May 2003 10:51:06 +0100 (BST) (envelope-from matthew) Date: Sun, 18 May 2003 10:51:06 +0100 From: Matthew Seaman To: Rohit Neupane Message-ID: <20030518095106.GB14471@happy-idiot-talk.infracaninophile.co.uk> Mail-Followup-To: Matthew Seaman , Rohit Neupane , freebsd-isp@freebsd.org, freebsd-questions@freebsd.org References: <3EC723F7.9090001@wlink.com.np> Mime-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="yEPQxsgoJgBvi8ip" Content-Disposition: inline In-Reply-To: <3EC723F7.9090001@wlink.com.np> User-Agent: Mutt/1.5.4i X-Spam-Status: No, hits=-38.8 required=5.0 tests=EMAIL_ATTRIBUTION,IN_REP_TO,PGP_SIGNATURE_2, QUOTED_EMAIL_TEXT,REFERENCES,REPLY_WITH_QUOTES, USER_AGENT_MUTT version=2.53 X-Spam-Checker-Version: SpamAssassin 2.53 (1.174.2.15-2003-03-30-exp) cc: freebsd-isp@freebsd.org cc: freebsd-questions@freebsd.org Subject: Re: Transproxy and ipfw X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 18 May 2003 09:51:11 -0000 --yEPQxsgoJgBvi8ip Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Sun, May 18, 2003 at 11:56:03AM +0545, Rohit Neupane wrote: > Hi, > `ipfw add 50 fwd 127.0.0.1,3128 tcp from any to any 80` returns ipfw:=20 > getsockopt(IP_FW_ADD): Invalid argument >=20 > I'm running FreeBSD 4.6 with the default kernel. I guess=20 > IPFIREWALL_FORWARD option is enabled in kernel. > Do i need to enable it in /etc/rc.conf? if so then how? ipfw(8) is not enabled in the GENERIC kernel. You've got two choices: i) build yourself a custom kernel with the appropriate options --- at least: options IPFIREWALL and probably such things as options IPFIREWALL_VERBOSE options IPFIREWALL_VERBOSE_LIMIT=3D128 options IPDIVERT (IPDIVERT is needed if you're going to using ipfw(8) and natd(8)) --- see /usr/src/sys/i386/conf/LINT for details of what's available. ii) Load the ipfw.ko kernel module into your kernel at boot time. You can see which kernel modules you have loaded by: # kldstat and you can load the ipfw module by: # kldload ipfw However, in the specific case of ipfw(8), you can arrange for all necessary kernel modules to be loaded at boot time by setting: firewall_enable=3D"YES" in /etc/rc.conf --- you'll need that even if you've compiled a kernel with ipfw support built in. Cheers, Matthew --=20 Dr Matthew J Seaman MA, D.Phil. 26 The Paddocks Savill Way PGP: http://www.infracaninophile.co.uk/pgpkey Marlow Tel: +44 1628 476614 Bucks., SL7 1TH UK --yEPQxsgoJgBvi8ip Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.2 (FreeBSD) iD8DBQE+x1eKdtESqEQa7a0RAsonAKCRkH4YBGa3Af64uUYr1yj/0sQF3gCfWpbw lHPzMNWlkYRwCNA+hYayZH8= =mxMy -----END PGP SIGNATURE----- --yEPQxsgoJgBvi8ip-- From owner-freebsd-isp@FreeBSD.ORG Sun May 18 11:15:50 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 4BAA337B401; Sun, 18 May 2003 11:15:49 -0700 (PDT) Received: from dhumketu.homeunix.net (dialpool-210-214-66-43.maa.sify.net [210.214.66.43]) by mx1.FreeBSD.org (Postfix) with ESMTP id 1086043F85; Sun, 18 May 2003 11:15:47 -0700 (PDT) (envelope-from freebsd@dhumketu.cjb.net) Received: by dhumketu.homeunix.net (Postfix, from userid 1000) id 8ED18580; Sun, 18 May 2003 23:43:23 +0530 (IST) Date: Sun, 18 May 2003 23:43:23 +0530 From: Shantanu Mahajan To: Rohit Neupane Message-ID: <20030518181323.GA531@dhumketu.homeunix.net> Mail-Followup-To: Rohit Neupane , freebsd-isp@freebsd.org, freebsd-questions@freebsd.org References: <3EC723F7.9090001@wlink.com.np> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <3EC723F7.9090001@wlink.com.np> User-Agent: Mutt/1.4i Organization: Hmmm... I dunno X-OS: FreeBSD 4.8-STABLE i386 cc: freebsd-isp@freebsd.org cc: freebsd-questions@freebsd.org Subject: Re: Transproxy and ipfw X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 18 May 2003 18:15:50 -0000 +++ Rohit Neupane [freebsd] [18-05-03 11:56 +0545]: | Hi, | `ipfw add 50 fwd 127.0.0.1,3128 tcp from any to any 80` returns ipfw: | getsockopt(IP_FW_ADD): Invalid argument | | I'm running FreeBSD 4.6 with the default kernel. I guess | IPFIREWALL_FORWARD option is enabled in kernel. | Do i need to enable it in /etc/rc.conf? if so then how? | | Thanks a lot. | Regards, | Rohit Neupane | ------------------------------ options IPFIREWALL #firewall options IPFIREWALL_VERBOSE #enable logging to syslogd(8) options IPFIREWALL_FORWARD #enable transparent proxy support options IPFIREWALL_VERBOSE_LIMIT=100 #limit verbosity options IPFIREWALL_DEFAULT_TO_ACCEPT #allow everything by default options IPV6FIREWALL #firewall for IPv6 options IPV6FIREWALL_VERBOSE options IPV6FIREWALL_VERBOSE_LIMIT=100 options IPV6FIREWALL_DEFAULT_TO_ACCEPT Above are the relavent options required in kernel. Other option is # kldload ipfw and then test the ipfw rule. Regards, Shantanu -- Madness has no purpose. Or reason. But it may have a goal. From owner-freebsd-isp@FreeBSD.ORG Sun May 18 13:58:40 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 6824637B401 for ; Sun, 18 May 2003 13:58:40 -0700 (PDT) Received: from coleman.org (adsl-64-175-70-233.dsl.pltn13.pacbell.net [64.175.70.233]) by mx1.FreeBSD.org (Postfix) with ESMTP id 8492E43F3F for ; Sun, 18 May 2003 13:58:39 -0700 (PDT) (envelope-from don@coleman.org) Received: from coleman.org (kestrel.coleman.org [10.0.0.11]) by eozoon.coleman.org (8.12.8p1/8.12.8) with ESMTP id h4GKCKlQ022573 for ; Fri, 16 May 2003 13:12:20 -0700 (PDT) (envelope-from don@coleman.org) Message-Id: <200305162012.h4GKCKlQ022573@eozoon.coleman.org> X-Mailer: exmh version 2.6.2 03/21/2003 with nmh-1.0.4 To: freebsd-isp@freebsd.org Mime-Version: 1.0 Content-Type: multipart/mixed ; boundary="==_Exmh_-11980032640" Date: Fri, 16 May 2003 13:11:56 -0700 From: "Donald C. Coleman" X-Content-Filtered-By: Mailman/MimeDel 2.1.1 Subject: SBC dsl/PPPeE w/dynamic ip address & bad DNS records X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list Reply-To: don@coleman.org List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 18 May 2003 20:58:40 -0000 This is a multipart MIME message. --==_Exmh_-11980032640 Content-Type: text/plain; charset=us-ascii So I ran into a problem where the dynamic IP address I was handed by SBC had a DNS ptr record which referred to an A record which didn't exist (and the ptr record also had an error as it didn't follow the naming strategy obviously intended). ie: 216.71.175.64.in-addr.arpa -> adsl-64-174-71-216.dsl.pltn13.pacbell.net. ^- the problem rather then adsl-64-175-71-216.dsl.pltn13.pacbell.net. ^- the correct value and no A record exists for adsl-64-174-71-216.dsl.pltn13.pacbell.net. I won't bore you with the details of SBC's rudeness and lack of interest in fixing the problem -- basically, if you can browse, they think that is enough. The fact that some web-sites/internet services check for valid DNS records as part of their security policies, doesn't matter, let alone their violation of internet conventions/RFCs. Luckly, only a small number of their dynamic IP addresses have this problem. Below is my solution. I basically check at "link up" time that the DNS records are valid, and if not, signal ppp to drop the connection, and since my ppp is in "ddial" mode, it reestablishes the connection, and we check again, and, etc... I've never seen it have to do more then one retry. So folks won't have to re-invent the wheel, I've attached what I've done. I've also included my hooks for updating my "dynamic" domain name ip address. Delete/replace this with want you need. Put all these files in /etc/ppp. chmod a+x both the .sh files change the "sbc_yahoo:" line in the ppp.linkup file with your link name. change/delete dnsupdate.sh to fit your domain name update scheme, if you have one. --==_Exmh_-11980032640 Content-Type: text/plain ; name="ppp.linkup"; charset=us-ascii Content-Description: ppp.linkup Content-Disposition: attachment; filename="ppp.linkup" sbc_yahoo: !bg sh -c "/etc/ppp/ppp.linkup.sh MYADDR PROCESSID 2>&1 | logger -t ppp -p 'daemon.notice'" --==_Exmh_-11980032640-- From owner-freebsd-isp@FreeBSD.ORG Sun May 18 23:52:49 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 0E7D737B401; Sun, 18 May 2003 23:52:49 -0700 (PDT) Received: from mgw1.MEIway.com (mgw1.meiway.com [212.73.210.75]) by mx1.FreeBSD.org (Postfix) with ESMTP id 0AF1043F3F; Sun, 18 May 2003 23:52:48 -0700 (PDT) (envelope-from ericdahan@MEIway.com) Received: from VirusGate.MEIway.com (virus-gate.meiway.com [212.73.210.91]) by mgw1.MEIway.com (Postfix Relay Hub) with ESMTP id 43245EF42E; Mon, 19 May 2003 08:45:11 +0200 (CEST) Received: from localhost (localhost.meiway.com [127.0.0.1]) by VirusGate.MEIway.com (Postfix) with SMTP id 7FCD65D00A; Mon, 19 May 2003 08:54:21 +0200 (CEST) Received: from ms1.meiway.com (ms1.meiway.com [212.73.210.73]) by VirusGate.MEIway.com (Postfix) with ESMTP id 1AF4D5D008; Mon, 19 May 2003 08:54:21 +0200 (CEST) Received: from EDA_VAIO.meiway.com [193.252.44.38] by ms1.meiway.com with ESMTP (SMTPD32-6.06) id A47C960C0130; Mon, 19 May 2003 09:15:08 +0200 Message-Id: <5.2.0.9.2.20030519085052.02efb5f0@ms1.meiway.com> X-Sender: ericdahan@meiway.com@ms1.meiway.com X-Mailer: QUALCOMM Windows Eudora Version 5.2.0.9 Date: Mon, 19 May 2003 08:52:40 +0200 To: freebsd-questions@freebsd.org From: Eric Dahan Mime-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1"; format=flowed Content-Transfer-Encoding: quoted-printable X-Content-Filtered-By: Mailman/MimeDel 2.1.1 cc: freebsd-isp@freebsd.org cc: freebsd-net@freebsd.org Subject: PCI ADSL card X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 19 May 2003 06:52:49 -0000 Hi All, Can anyone recommend a lower-price-range PCI ADSL card for Freebsd 4.8 R ? Thanks. Eric DAHAN. MEI 25 Avenue des Bretagnes 93230 ROMAINVILLE Tel : 01.41.71.06.06. Fax : 01.41.71.06.04. Centre de formation agr=E9e N=B011752906075 www.meiway.com _______________________________________________ freebsd-hardware@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-hardware To unsubscribe, send any mail to "freebsd-hardware-unsubscribe@freebsd.org" Eric DAHAN. MEI 25 Avenue des Bretagnes 93230 ROMAINVILLE Tel : 01.41.71.06.06. Fax : 01.41.71.06.04. Centre de formation agr=E9e N=B011752906075 www.meiway.com=20 From owner-freebsd-isp@FreeBSD.ORG Mon May 19 00:26:04 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id A43F437B401 for ; Mon, 19 May 2003 00:26:04 -0700 (PDT) Received: from relay.kiev.sovam.com (relay.kiev.sovam.com [212.109.32.5]) by mx1.FreeBSD.org (Postfix) with ESMTP id 9FF3E43F85 for ; Mon, 19 May 2003 00:26:03 -0700 (PDT) (envelope-from dimitry@al.org.ua) Received: from [212.109.32.116] (helo=dimitry.kiev.sovam.com) by relay.kiev.sovam.com with esmtp (Exim 3.36 #5) id 19Hf1q-000CkL-00; Mon, 19 May 2003 10:25:50 +0300 From: Dmitry Alyabyev To: "PsYxAkIaS (FreeBSD)" Date: Mon, 19 May 2003 10:25:50 +0300 User-Agent: KMail/1.5 References: <000a01c31ca5$10ae8440$162ea8c0@computer> In-Reply-To: <000a01c31ca5$10ae8440$162ea8c0@computer> X-NCC-RegID: ua.svitonline MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit Content-Disposition: inline Message-Id: <200305191025.50499.dimitry@al.org.ua> cc: freebsd-isp@freebsd.org Subject: Re: Load Averages problem - Suddenly it goes over 100+ - Any ideas? X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list Reply-To: dimitry@al.org.ua List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 19 May 2003 07:26:04 -0000 At the first glance you have lots of processes which cannot be kept in memory so your system swaps them out (480M of swap space is used). On Saturday 17 May 2003 21:49, PsYxAkIaS (FreeBSD) wrote: > Hi all again, > > I am usually having 0.xx load averages but sometimes SUDDENLY it goes more > than 100+ load averages and then it goes down again. > > While it was having 97+ load averages i did 'top -n -S' but didnt show > anything that wastes so much resources. > > I tried tcpdump if there was an incoming attack but didnt notice anything, > I also checked ipfm, tcpstat, trafshow but there wasnt any badwidth usage. > > I am worried for 3 things: > 1. some type of attack > 2. hardware problem > 3. customer's program that wastes resources > > Do you have ANY ideas? OR any utilities that will give me more information? > > BEFORE: > ------- > uptime > 1:32PM up 22 days, 14:09, 8 users, load averages: 0.11, 0.15, 0.17 > > AFTER some minutes: > ------------------- > top -n -S > last pid: 8129; load averages: 97.11, 38.51, 38.03 up 22+14:17:52 > 13:41:48 858 processes: 2 running, 856 sleeping > > Mem: 247M Active, 34M Inact, 174M Wired, 14M Cache, 57M Buf, 952K Free > Swap: 1024M Total, 480M Used, 544M Free, 46% Inuse > > > PID USERNAME PRI NICE SIZE RES STATE TIME WCPU CPU > COMMAND 2 root -18 0 0K 0K wswbuf 213:28 2.83% 2.83% > pagedaemo 42668 2 0 8312K 5460K select 18:39 0.73% > 0.73% eggdrop-1 42075 -22 0 20228K 8908K swread 27:17 > 0.29% 0.29% eggdrop-1 16785 2 0 14768K 11544K select > 8:15 0.15% 0.15% eggdrop-1 97981 2 0 8392K 5648K > select 62:58 0.10% 0.10% eggdrop-1 32965 2 0 5124K > 1028K select 3:32 0.05% 0.05% psybnc 937 2 0 23796K > 4300K poll 216:35 0.00% 0.00% ircd 60963 2 0 4480K > 2432K select 113:17 0.00% 0.00% eggdrop-1 945 2 0 > 2064K 224K poll 100:24 0.00% 0.00% wbt 77261 2 0 > 4972K 304K poll 72:42 0.00% 0.00% shoutpsyx 48141 2 > 0 4736K 2444K select 68:04 0.00% 0.00% eggdrop-1 56567 > 2 0 5292K 476K poll 63:58 0.00% 0.00% sc_serv 956 > 2 0 14068K 4660K poll 61:50 0.00% 0.00% ircd 17753 > 2 0 4500K 344K poll 54:50 0.00% 0.00% shoutpsyx 48327 > 2 0 4700K 2332K select 43:20 0.00% 0.00% eggdrop-1 48217 > 2 0 4720K 2004K select 39:56 0.00% 0.00% eggdrop-1 > 41547 2 0 7508K 3980K select 31:50 0.00% 0.00% named > 55890 2 0 4588K 2168K select 25:43 0.00% 0.00% > eggdrop-1 _______________________________________________ > freebsd-isp@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-isp > To unsubscribe, send any mail to "freebsd-isp-unsubscribe@freebsd.org" -- Dimitry From owner-freebsd-isp@FreeBSD.ORG Mon May 19 09:17:18 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 68CA337B401 for ; Mon, 19 May 2003 09:17:18 -0700 (PDT) Received: from mordrede.visionsix.com (mordrede.visionsix.com [65.202.119.3]) by mx1.FreeBSD.org (Postfix) with ESMTP id B4D5843FCB for ; Mon, 19 May 2003 09:17:15 -0700 (PDT) (envelope-from lists@visionsix.com) Received: from vsis169 (unverified [65.202.119.169]) by mordrede.visionsix.com for ; Mon, 19 May 2003 11:17:14 -0500 Message-ID: <005701c31e22$21b00150$de0a0a0a@vsis169> From: "Lewis Watson" To: Date: Mon, 19 May 2003 11:17:23 -0500 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2800.1158 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2800.1165 Subject: Hmm.. / is 108%! X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 19 May 2003 16:17:18 -0000 This system is a production www server in an isp environment. Please let me know if this is too {OT}.. Disk status: Filesystem 1K-blocks Used Avail Capacity Mounted on /dev/ar0s1a 128990 128174 -9502 108% / /dev/ar0s1h 61934666 4572354 52407540 8% /home /dev/ar0s1f 257998 696 236664 0% /tmp /dev/ar0s1g 9289902 2486716 6059994 29% /usr /dev/ar0s1e 2064302 109496 1789662 6% /var procfs 4 4 0 100% /proc I had an automated script that got out of hand the other night and now I have 108% in /. I don't see anything out of the ordinary in / so I am not sure where to look next. Can someone push me in the right direction? Thanks! Lewis From owner-freebsd-isp@FreeBSD.ORG Mon May 19 09:21:08 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 4B7F037B401 for ; Mon, 19 May 2003 09:21:08 -0700 (PDT) Received: from io.gigguardian.com (io.gigguardian.com [216.52.21.6]) by mx1.FreeBSD.org (Postfix) with ESMTP id D7A0A43FCB for ; Mon, 19 May 2003 09:21:07 -0700 (PDT) (envelope-from vhm3@gigguardian.com) Received: from io.gigguardian.com (vhm3@io.gigguardian.com [216.52.21.6]) by io.gigguardian.com (8.11.6/8.11.6) with ESMTP id h4JGJ3u13634; Mon, 19 May 2003 09:19:03 -0700 Date: Mon, 19 May 2003 09:19:03 -0700 (PDT) From: Chip McClure To: Lewis Watson In-Reply-To: <005701c31e22$21b00150$de0a0a0a@vsis169> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII cc: freebsd-isp@freebsd.org Subject: Re: Hmm.. / is 108%! X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 19 May 2003 16:21:08 -0000 On Mon, 19 May 2003, Lewis Watson wrote: Hello Lewis, try doing a "du -k /" when in the root partition. That will give you a listing of directory usage (preceded by the KB size), so you know where to look for the files. Chip > This system is a production www server in an isp environment. Please let > me know if this is too {OT}.. > > Disk status: > Filesystem 1K-blocks Used Avail Capacity Mounted on > /dev/ar0s1a 128990 128174 -9502 108% / > /dev/ar0s1h 61934666 4572354 52407540 8% /home > /dev/ar0s1f 257998 696 236664 0% /tmp > /dev/ar0s1g 9289902 2486716 6059994 29% /usr > /dev/ar0s1e 2064302 109496 1789662 6% /var > procfs 4 4 0 100% /proc > > I had an automated script that got out of hand the other night and now I > have 108% in /. > > I don't see anything out of the ordinary in / so I am not sure where to > look next. Can someone push me in the right direction? > Thanks! > Lewis > > > > _______________________________________________ > freebsd-isp@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-isp > To unsubscribe, send any mail to "freebsd-isp-unsubscribe@freebsd.org" > From owner-freebsd-isp@FreeBSD.ORG Mon May 19 09:24:49 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 5DD0237B401 for ; Mon, 19 May 2003 09:24:49 -0700 (PDT) Received: from bilver.wjv.com (user38.net339.fl.sprint-hsd.net [65.40.24.38]) by mx1.FreeBSD.org (Postfix) with ESMTP id 3AD5443F3F for ; Mon, 19 May 2003 09:24:48 -0700 (PDT) (envelope-from bv@wjv.com) Received: from bilver.wjv.com (localhost.wjv.com [127.0.0.1]) by bilver.wjv.com (8.12.9/8.12.9) with ESMTP id h4JGOi3Q029944; Mon, 19 May 2003 12:24:44 -0400 (EDT) (envelope-from bv@wjv.com) Received: (from bv@localhost) by bilver.wjv.com (8.12.9/8.12.9/Submit) id h4JGOhGa029943; Mon, 19 May 2003 12:24:43 -0400 (EDT) Date: Mon, 19 May 2003 12:24:43 -0400 From: Bill Vermillion To: Lewis Watson Message-ID: <20030519162442.GC28258@wjv.com> References: <005701c31e22$21b00150$de0a0a0a@vsis169> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <005701c31e22$21b00150$de0a0a0a@vsis169> Organization: W.J.Vermillion / Orlando - Winter Park ReplyTo: bv@wjv.com User-Agent: Mutt/1.5.1i X-Spam-Status: No, hits=-26.2 required=5.0 tests=IN_REP_TO,QUOTED_EMAIL_TEXT,REFERENCES,REPLY_WITH_QUOTES, USER_AGENT_MUTT version=2.53 X-Spam-Checker-Version: SpamAssassin 2.53 (1.174.2.15-2003-03-30-exp) cc: freebsd-isp@freebsd.org Subject: Re: Hmm.. / is 108%! X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 19 May 2003 16:24:49 -0000 On Mon, May 19, 2003 at 11:17 , Lewis Watson gie sprachen "Vyizdur zomen nemororz izaziz zander isorziz", and continued with: > This system is a production www server in an isp environment. Please let > me know if this is too {OT}.. > Disk status: > Filesystem 1K-blocks Used Avail Capacity Mounted on > /dev/ar0s1a 128990 128174 -9502 108% / > /dev/ar0s1h 61934666 4572354 52407540 8% /home > /dev/ar0s1f 257998 696 236664 0% /tmp > /dev/ar0s1g 9289902 2486716 6059994 29% /usr > /dev/ar0s1e 2064302 109496 1789662 6% /var > procfs 4 4 0 100% /proc > I had an automated script that got out of hand the other night > and now I have 108% in /. If you were running it as root from your /root directory check /root for a large core file. > I don't see anything out of the ordinary in / so I am not sure > where to look next. Can someone push me in the right direction? Be sure to look in /tmp. Also you might use du on anything mounted on root. lsof might help. If your program opened a temporary file and then removed the file, the file could still be open using memory and disk space as it is not removed until the last link is removed, so you might not find that file at all. You will have problems as any non-root program that need to write in /tmp will probably fail. Bill -- Bill Vermillion - bv @ wjv . com From owner-freebsd-isp@FreeBSD.ORG Mon May 19 09:32:26 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 728A237B401 for ; Mon, 19 May 2003 09:32:26 -0700 (PDT) Received: from mordrede.visionsix.com (mordrede.visionsix.com [65.202.119.3]) by mx1.FreeBSD.org (Postfix) with ESMTP id C25C443F3F for ; Mon, 19 May 2003 09:32:25 -0700 (PDT) (envelope-from lists@visionsix.com) Received: from vsis169 (unverified [65.202.119.169]) by mordrede.visionsix.com for ; Mon, 19 May 2003 11:32:25 -0500 Message-ID: <015e01c31e24$40a02980$de0a0a0a@vsis169> From: "Lewis Watson" To: References: <005701c31e22$21b00150$de0a0a0a@vsis169> Date: Mon, 19 May 2003 11:32:34 -0500 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2800.1158 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2800.1165 Subject: Re: Hmm.. / is 108%! X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 19 May 2003 16:32:26 -0000 > Filesystem 1K-blocks Used Avail Capacity Mounted on > /dev/ar0s1a 128990 128174 -9502 108% / > /dev/ar0s1h 61934666 4572354 52407540 8% /home > /dev/ar0s1f 257998 696 236664 0% /tmp > /dev/ar0s1g 9289902 2486716 6059994 29% /usr > /dev/ar0s1e 2064302 109496 1789662 6% /var > procfs 4 4 0 100% /proc > > I had an automated script that got out of hand the other night and now I > have 108% in /. > > I don't see anything out of the ordinary in / so I am not sure where to > look next. Can someone push me in the right direction? > Thanks! > Lewis Hey folks.. I found it! This is much better... /dev/ar0s1a 125 40 75 35% / /dev/ar0s1h 60483 4551 51092 8% /home /dev/ar0s1f 251 0 231 0% /tmp /dev/ar0s1g 9072 2428 5917 29% /usr /dev/ar0s1e 2015 107 1747 6% /var procfs 0 0 0 100% /proc Thanks!! Lewis From owner-freebsd-isp@FreeBSD.ORG Mon May 19 11:10:08 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 9C30137B401 for ; Mon, 19 May 2003 11:10:07 -0700 (PDT) Received: from p3.saignon.net (66-146-166-52.skyriver.net [66.146.166.52]) by mx1.FreeBSD.org (Postfix) with ESMTP id 33A6A43FD7 for ; Mon, 19 May 2003 11:10:07 -0700 (PDT) (envelope-from tony@saign.com) Received: (qmail 83657 invoked by uid 89); 19 May 2003 18:09:52 -0000 Received: from unknown (HELO frankenmobl) (tony@saign.com@127.0.0.1) by localhost with SMTP; 19 May 2003 18:09:52 -0000 From: "Tony Saign" To: Date: Mon, 19 May 2003 11:09:51 -0700 Message-ID: <000201c31e31$dc54c680$6ad2f10a@frankenmobl> MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook, Build 10.0.4024 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2800.1165 In-Reply-To: <20030515145731.D13729-100000@opium.co.za> Importance: Normal Subject: Illegal use of my server?? X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 19 May 2003 18:10:08 -0000 Any legal gurus out there?? Long story, but I'll summarize; On Friday 05/16 my T1 went down. In troubleshooting attempts it was discovered that a machine, on my network was being used maliciously. Not hacked, but Squid was being used to relay mail (i.e. SPAM). The machine was immediately brought down, and Squid was disabled. I received a call from my ISP, and they are NOT happy. Looking @ the logs, it appears that several thousand SPAM emails may have been sent. What should I do? Can I pursue each ISP in attempts to track down the guilty parties? Can I take any legal action against them? This is the last straw! I'm so frickin' sick of SPAM, and now people potentially got some w/ my IP address! Grrr!!! Any suggestions, advice would be greatly appreciated. From owner-freebsd-isp@FreeBSD.ORG Mon May 19 11:19:00 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 131FA37B404 for ; Mon, 19 May 2003 11:19:00 -0700 (PDT) Received: from monet.titania.net (adsl-68-78-82-25.dsl.milwwi.ameritech.net [68.78.82.25]) by mx1.FreeBSD.org (Postfix) with ESMTP id 6267043F93 for ; Mon, 19 May 2003 11:18:53 -0700 (PDT) (envelope-from jtk@titania.net) Received: from titania.net (morisot.titania.net [192.133.102.10]) (authenticated bits=0) by monet.titania.net (8.12.9/8.12.9) with ESMTP id h4JIKqMT031391 (version=TLSv1/SSLv3 cipher=DES-CBC3-SHA bits=168 verify=NO); Mon, 19 May 2003 18:20:52 GMT (envelope-from jtk@titania.net) Date: Mon, 19 May 2003 13:18:42 -0500 Content-Type: text/plain; charset=US-ASCII; format=flowed Mime-Version: 1.0 (Apple Message framework v552) To: "Tony Saign" From: "Joseph T. Klein" In-Reply-To: <000201c31e31$dc54c680$6ad2f10a@frankenmobl> Message-Id: <523443F2-8A26-11D7-A0BC-003065BA9B36@titania.net> Content-Transfer-Encoding: 7bit X-Mailer: Apple Mail (2.552) cc: freebsd-isp@freebsd.org Subject: Re: Illegal use of my server?? X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 19 May 2003 18:19:00 -0000 The Squid package and port should have a *big* warning sign on them about this. I know of at least one network that was blacklisted due to the lack of tight ACLs on Squid. On Monday, May 19, 2003, at 01:09 PM, Tony Saign wrote: > Any legal gurus out there?? > > Long story, but I'll summarize; > > On Friday 05/16 my T1 went down. > In troubleshooting attempts it was discovered that a machine, on my > network was being used maliciously. > Not hacked, but Squid was being used to relay mail (i.e. SPAM). > The machine was immediately brought down, and Squid was disabled. > > I received a call from my ISP, and they are NOT happy. > Looking @ the logs, it appears that several thousand SPAM emails may > have been sent. > > What should I do? Can I pursue each ISP in attempts to track down the > guilty parties? > Can I take any legal action against them? > This is the last straw! I'm so frickin' sick of SPAM, and now people > potentially got some w/ my IP address! > Grrr!!! > > Any suggestions, advice would be greatly appreciated. > > > _______________________________________________ > freebsd-isp@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-isp > To unsubscribe, send any mail to "freebsd-isp-unsubscribe@freebsd.org" > > -- Joseph T. Klein PSTN: +1 415 462 1534 Mobile: +1 414 628 3380 From owner-freebsd-isp@FreeBSD.ORG Mon May 19 11:25:52 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 6421D37B401 for ; Mon, 19 May 2003 11:25:52 -0700 (PDT) Received: from mail.openserve.net (mail.openserve.net [208.12.101.249]) by mx1.FreeBSD.org (Postfix) with SMTP id 350C343FBF for ; Mon, 19 May 2003 11:25:51 -0700 (PDT) (envelope-from bsd@hub3.net) Received: (qmail 31200 invoked from network); 19 May 2003 18:25:48 -0000 Received: from gw.hub3.net (HELO hub3.net) (bryan@208.12.101.245) by mail.openserve.net with SMTP; 19 May 2003 18:25:48 -0000 Date: Mon, 19 May 2003 11:25:48 -0700 Content-Type: text/plain; charset=US-ASCII; format=flowed Mime-Version: 1.0 (Apple Message framework v552) From: Bryan Vyhmeister To: freebsd-isp@freebsd.org Content-Transfer-Encoding: 7bit In-Reply-To: <523443F2-8A26-11D7-A0BC-003065BA9B36@titania.net> Message-Id: <501EEBD0-8A27-11D7-8061-000393D5E5DA@hub3.net> X-Mailer: Apple Mail (2.552) Subject: Re: Illegal use of my server?? X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 19 May 2003 18:25:52 -0000 I don't quite understand what happened. How was Squid used to relay mail? I'm glad this thread came up because I am just about to deploy a Squid cache. Bryan On Monday, May 19, 2003, at 11:18 AM, Joseph T. Klein wrote: > The Squid package and port should have a *big* warning sign on them > about this. > I know of at least one network that was blacklisted due to the lack of > tight > ACLs on Squid. > > On Monday, May 19, 2003, at 01:09 PM, Tony Saign wrote: > >> Any legal gurus out there?? >> >> Long story, but I'll summarize; >> >> On Friday 05/16 my T1 went down. >> In troubleshooting attempts it was discovered that a machine, on my >> network was being used maliciously. >> Not hacked, but Squid was being used to relay mail (i.e. SPAM). >> The machine was immediately brought down, and Squid was disabled. >> >> I received a call from my ISP, and they are NOT happy. >> Looking @ the logs, it appears that several thousand SPAM emails may >> have been sent. >> >> What should I do? Can I pursue each ISP in attempts to track down the >> guilty parties? >> Can I take any legal action against them? >> This is the last straw! I'm so frickin' sick of SPAM, and now people >> potentially got some w/ my IP address! >> Grrr!!! >> >> Any suggestions, advice would be greatly appreciated. >> >> >> _______________________________________________ >> freebsd-isp@freebsd.org mailing list >> http://lists.freebsd.org/mailman/listinfo/freebsd-isp >> To unsubscribe, send any mail to "freebsd-isp-unsubscribe@freebsd.org" >> >> > > -- > Joseph T. Klein > > PSTN: +1 415 462 1534 Mobile: +1 414 628 3380 > > _______________________________________________ > freebsd-isp@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-isp > To unsubscribe, send any mail to "freebsd-isp-unsubscribe@freebsd.org" > From owner-freebsd-isp@FreeBSD.ORG Mon May 19 11:35:17 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id D165637B401 for ; Mon, 19 May 2003 11:35:17 -0700 (PDT) Received: from mx2.dobleJ.net (213-97-10-243.uc.nombres.ttd.es [213.97.10.243]) by mx1.FreeBSD.org (Postfix) with SMTP id 61D4343FB1 for ; Mon, 19 May 2003 11:35:15 -0700 (PDT) (envelope-from juanjo.listas@dobleJ.net) X-Server: Redirección vía mx2.doblej.net Message-Id: <5.2.1.1.2.20030519203232.03657a90@192.168.0.3> X-Sender: juanjo.listas@doblej.net@192.168.0.3 X-Mailer: QUALCOMM Windows Eudora Version 5.2.1 Date: Mon, 19 May 2003 20:35:11 +0200 To: freebsd-isp@freebsd.org From: Juan =?iso-8859-1?Q?Jos=E9?= =?iso-8859-1?Q?_S=E1nchez?= Mesa In-Reply-To: <501EEBD0-8A27-11D7-8061-000393D5E5DA@hub3.net> References: <523443F2-8A26-11D7-A0BC-003065BA9B36@titania.net> Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii"; format=flowed Subject: Re: Illegal use of my server?? X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 19 May 2003 18:35:18 -0000 >I don't quite understand what happened. How was Squid used to relay mail? >I'm glad this thread came up because I am just about to deploy a Squid cache. Using the CONNECT method. CONNECT ip_mailrelay:25 HTTP/1.0 .... It will open a conection to the ip and act has a tunnel to the "conversation". It's used to proxy SSL connections. Disable CONNECT method in Squid or limit it to 443 port. From owner-freebsd-isp@FreeBSD.ORG Mon May 19 11:40:00 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id A984337B401 for ; Mon, 19 May 2003 11:40:00 -0700 (PDT) Received: from seattlefenix.net (seattlefenix.net [216.231.34.252]) by mx1.FreeBSD.org (Postfix) with ESMTP id 1228743FAF for ; Mon, 19 May 2003 11:40:00 -0700 (PDT) (envelope-from roo@seattlefenix.net) Received: by seattlefenix.net (Postfix, from userid 1001) id 4F81AB25E; Mon, 19 May 2003 11:33:24 -0700 (PDT) Date: Mon, 19 May 2003 11:33:24 -0700 From: Benjamin Krueger To: Bryan Vyhmeister Message-ID: <20030519183324.GH233@surreal.seattlefenix.net> References: <523443F2-8A26-11D7-A0BC-003065BA9B36@titania.net> <501EEBD0-8A27-11D7-8061-000393D5E5DA@hub3.net> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <501EEBD0-8A27-11D7-8061-000393D5E5DA@hub3.net> User-Agent: Mutt/1.4i cc: freebsd-isp@freebsd.org Subject: Re: Illegal use of my server?? X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list Reply-To: Benjamin Krueger List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 19 May 2003 18:40:00 -0000 * Bryan Vyhmeister (bsd@hub3.net) [030519 11:19]: > I don't quite understand what happened. How was Squid used to relay > mail? I'm glad this thread came up because I am just about to deploy a > Squid cache. > > Bryan It happened because somebody just dropped a proxy server on their network without fully considering the consequences of their action. They didn't bother to properly design an access control list, and because it is available on the public internet, a spammer found it and began to use it for their spamming ventures. Technically, a proxy server can proxy many different TCP services. This includes SMTP, IRC, Messaging services, and others. Now somebody is very upset at his mistake, and is looking to "pursue each ISP in atempts to track down the guilty parties". Unfortunately, he is ignoring the person who had the most power to prevent this situation. Himself. Live, learn, realize that you made a mistake configuring your proxy server, and get back to working. Unless your business is that of hunting spammers, it really will not be worth your while to waste money and time chasing ISPs and shadows of spam fiends. > > >The Squid package and port should have a *big* warning sign on them > >about this. > >I know of at least one network that was blacklisted due to the lack of > >tight > >ACLs on Squid. > > > >On Monday, May 19, 2003, at 01:09 PM, Tony Saign wrote: > > > >>Any legal gurus out there?? > >> > >>Long story, but I'll summarize; > >> > >>On Friday 05/16 my T1 went down. > >>In troubleshooting attempts it was discovered that a machine, on my > >>network was being used maliciously. > >>Not hacked, but Squid was being used to relay mail (i.e. SPAM). > >>The machine was immediately brought down, and Squid was disabled. > >> > >>I received a call from my ISP, and they are NOT happy. > >>Looking @ the logs, it appears that several thousand SPAM emails may > >>have been sent. > >> > >>What should I do? Can I pursue each ISP in attempts to track down the > >>guilty parties? > >>Can I take any legal action against them? > >>This is the last straw! I'm so frickin' sick of SPAM, and now people > >>potentially got some w/ my IP address! > >>Grrr!!! > >> > >>Any suggestions, advice would be greatly appreciated. Lock down your proxy server, live and let live. Make things right with your ISP, assure them that you won't be making a proxy server mistake again. Be certain that you fully consider the consequences of deploying public services to your network in the future. -- Benjamin Krueger From owner-freebsd-isp@FreeBSD.ORG Mon May 19 11:54:25 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id A539237B401 for ; Mon, 19 May 2003 11:54:25 -0700 (PDT) Received: from traven9.uol.com.br (traven9.uol.com.br [200.221.29.35]) by mx1.FreeBSD.org (Postfix) with ESMTP id B90A143F75 for ; Mon, 19 May 2003 11:54:22 -0700 (PDT) (envelope-from antonio.torres@newspace.net.br) Received: from thinkpad.newspace.net.br ([200.161.130.58]) by traven9.uol.com.br (8.9.1/8.9.1) with SMTP id PAA05898 for ; Mon, 19 May 2003 15:54:18 -0300 (BRT) Date: Mon, 19 May 2003 15:54:19 -0300 From: Antonio Torres To: freebsd-isp@freebsd.org Message-Id: <20030519155419.4a37c6de.antonio.torres@newspace.net.br> In-Reply-To: <501EEBD0-8A27-11D7-8061-000393D5E5DA@hub3.net> References: <523443F2-8A26-11D7-A0BC-003065BA9B36@titania.net> <501EEBD0-8A27-11D7-8061-000393D5E5DA@hub3.net> Organization: Newspace Telecom. X-Mailer: Sylpheed version 0.9.0 (GTK+ 1.2.10; i386-portbld-freebsd5.0) Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Subject: Re: Illegal use of my server?? X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 19 May 2003 18:54:25 -0000 *Any* http proxy misconfigured can be used for mail relay ... Squid, Apache+mod_proxy, delegate ... a simple "CONNECT xxx.yyy.zzz.ttt:25 HTTP/1.0" can put your proxy (or your IP) in trouble (or in RBL).... For *any* kind o proxy : Read the manual ! Search google for tips&tricks be paranoic: use ipfw (or other 'firewall') to add an extra level of security/filtering be more paranoic : read the logs !! []s On Mon, 19 May 2003 11:25:48 -0700 Bryan Vyhmeister wrote: > I don't quite understand what happened. How was Squid used to relay > mail? I'm glad this thread came up because I am just about to deploy a > Squid cache. > > Bryan > > On Monday, May 19, 2003, at 11:18 AM, Joseph T. Klein wrote: > > > The Squid package and port should have a *big* warning sign on them > > about this. > > I know of at least one network that was blacklisted due to the lack of > > tight > > ACLs on Squid. > > > > On Monday, May 19, 2003, at 01:09 PM, Tony Saign wrote: > > > >> Any legal gurus out there?? > >> > >> Long story, but I'll summarize; > >> > >> On Friday 05/16 my T1 went down. > >> In troubleshooting attempts it was discovered that a machine, on my > >> network was being used maliciously. > >> Not hacked, but Squid was being used to relay mail (i.e. SPAM). > >> The machine was immediately brought down, and Squid was disabled. > >> > >> I received a call from my ISP, and they are NOT happy. > >> Looking @ the logs, it appears that several thousand SPAM emails may > >> have been sent. > >> > >> What should I do? Can I pursue each ISP in attempts to track down the > >> guilty parties? > >> Can I take any legal action against them? > >> This is the last straw! I'm so frickin' sick of SPAM, and now people > >> potentially got some w/ my IP address! > >> Grrr!!! > >> > >> Any suggestions, advice would be greatly appreciated. > >> > >> -- Antonio Torres antonio.torres@newspace.net.br From owner-freebsd-isp@FreeBSD.ORG Mon May 19 15:28:02 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 26C2837B401 for ; Mon, 19 May 2003 15:28:02 -0700 (PDT) Received: from stella.pyramus.com (ns2.pyramus.com [67.92.212.2]) by mx1.FreeBSD.org (Postfix) with ESMTP id 50A7F43F93 for ; Mon, 19 May 2003 15:27:59 -0700 (PDT) (envelope-from blake@pyramus.com) Received: from pyramus.com (dark-star.pyramus.com [10.10.1.7]) by stella.pyramus.com (8.11.6/8.9.3) with ESMTP id h4JMUcH67585 for ; Mon, 19 May 2003 15:30:38 -0700 (PDT) (envelope-from blake@pyramus.com) Message-ID: <3EC95987.5090404@pyramus.com> Date: Mon, 19 May 2003 15:24:07 -0700 From: Blake Swensen User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.0; en-US; rv:1.3b) Gecko/20030210 X-Accept-Language: en-us, en MIME-Version: 1.0 To: FreeBSD ISP List Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Subject: Anyone else run into PHP build issues? X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 19 May 2003 22:28:02 -0000 (see below for all version and system information) When running configure on php-4.3.1 (cvs'd fresh) I get the error that /usr/libexec/elf/ld cannot find -lmysqlclient. The client libraries are in /usr/local/lib/mysql as per instructions and ldconfig -r sees them in the hints file. I could get the system to configure under 4.2.2, but the make would crash with the same error. Read some message about editing config_vars.mk and adding "-L/usr/local/lib/mysql" to the EXTRA_LIBS line. This seemed to work but Apache crashed... was something to do with a missing symbol in the gd library. In the hope of not having to go clear to 4.1.0, I was wondering if someone had found similar problems. Blake Configure command: ./configure \ --prefix=/usr/local \ --with-mysql=/usr/local \ --with-gdbm \ --with-gd=shared \ --with-apxs=/usr/local/sbin/apxs \ --with-zlib-dir=/usr/include \ --with-png-dir=/usr/local \ --with-tiff=/usr/local \ --with-jpeg=/usr/local \ --with-openssl \ --without-oracle \ --without-oci8 \ --includedir=/usr/local/include \ --libdir=/usr/local/li UNAME: FreeBSD 4.8-PRERELEASE LIBTOOL: 1.3.4-freebsd-ports MYSQL: Distrib 3.23.56 AUTOCONF: autoconf (GNU Autoconf) 2.53 LD: ld version 2.12.1 APACHE: Server version: Apache/1.3.26 gd: gd-1.8.4_4 -- ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ The Internet Rescue Company - http://www.pyramus.com ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Blake R. Swensen Pyramus Online, Inc. President 2080 SE Oak Grove Blvd. Suite 11 Milwaukie, Oregon 97267 800-327-5101 vox:503-353-0455 fax:503-353-0453 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ "We measure success by the success of our clients" From owner-freebsd-isp@FreeBSD.ORG Mon May 19 17:07:48 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 2240537B401 for ; Mon, 19 May 2003 17:07:48 -0700 (PDT) Received: from usenet.isot.com (usenet.isot.com [63.161.224.13]) by mx1.FreeBSD.org (Postfix) with ESMTP id F3F7443FCB for ; Mon, 19 May 2003 17:07:46 -0700 (PDT) (envelope-from freebsd@isot.com) Received: (from www@localhost) by usenet.isot.com (8.11.6/8.11.6) id h4K0Eqv72104 for freebsd-isp@freebsd.org; Mon, 19 May 2003 19:14:52 -0500 (CDT) (envelope-from freebsd@isot.com) X-Authentication-Warning: usenet.isot.com: www set sender to freebsd@isot.com using -f Received: from 63.161.239.70 ( [63.161.239.70]) as user freebsd@isot.com by webmail.isot.com with HTTP; Mon, 19 May 2003 19:14:52 -0500 Message-ID: <1053389692.3ec9737c97859@webmail.isot.com> Date: Mon, 19 May 2003 19:14:52 -0500 From: itchibahn To: freebsd-isp@freebsd.org MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 8bit User-Agent: Internet Messaging Program (IMP) 3.1-cvs X-Originating-IP: 63.161.239.70 Subject: syslogd not logging X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list Reply-To: song@isot.com List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 20 May 2003 00:07:48 -0000 I replaced my old server (FBSD 4.3) with new FBSD 5.0. And now I can't get the syslogd to log from my routers. I have configured the /etc/syslog.conf file to exactly as in old box and restarted syslogd. Is there something I'm missing? Please help. ------------------------------------------------- This mail sent through ISOT. To find out more about ISOT, visit http://isot.com From owner-freebsd-isp@FreeBSD.ORG Mon May 19 17:20:22 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 217AD37B401 for ; Mon, 19 May 2003 17:20:22 -0700 (PDT) Received: from mail.tcworks.net (mail.tcworks.net [216.61.218.4]) by mx1.FreeBSD.org (Postfix) with ESMTP id 67C2343FA3 for ; Mon, 19 May 2003 17:20:21 -0700 (PDT) (envelope-from ccook@tcworks.net) Received: from tcworks.net (stp.tcworks.net [216.61.218.6]) by mail.tcworks.net (8.12.6/8.12.6) with ESMTP id h4K0IHBY094999; Mon, 19 May 2003 19:18:17 -0500 (CDT) Sender: xcess@mail.tcworks.net Message-ID: <3EC97577.28B379E9@tcworks.net> Date: Mon, 19 May 2003 19:23:19 -0500 From: Chris Cook X-Mailer: Mozilla 4.78 [en] (X11; U; Linux 2.4.2 i386) X-Accept-Language: en MIME-Version: 1.0 To: song@isot.com References: <1053389692.3ec9737c97859@webmail.isot.com> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-RAVMilter-Version: 8.4.1(snapshot 20020920) (mail.tcworks.net) X-Spam-Status: No, hits=-122.8 required=7.0 tests=EMAIL_ATTRIBUTION,QUOTED_EMAIL_TEXT,REFERENCES, REPLY_WITH_QUOTES,USER_IN_WHITELIST version=2.50 X-Spam-Checker-Version: SpamAssassin 2.50 (1.173-2003-02-20-exp) cc: freebsd-isp@freebsd.org Subject: Re: syslogd not logging X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 20 May 2003 00:20:22 -0000 itchibahn wrote: > > I replaced my old server (FBSD 4.3) with new FBSD 5.0. And now I can't get > the syslogd to log from my routers. > > I have configured the /etc/syslog.conf file to exactly as in old box and > restarted syslogd. Is there something I'm missing? Please help. syslogd in newer versions of FBSD is more secure, you must allow hosts to log to your box via a command line argument when starting syslogd. See the -a argument in "man syslogd". -- Chris o----< ccook@tcworks.net >------------------------------------o |Chris Cook - Admin |TCWORKS.NET - http://www.tcworks.net | |The Computer Works ISP |FreeBSD - http://www.freebsd.org | o-------------------------------------------------------------o From owner-freebsd-isp@FreeBSD.ORG Mon May 19 18:25:10 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 3F2D337B401 for ; Mon, 19 May 2003 18:25:10 -0700 (PDT) Received: from misery.sdf.com (misery.sdf.com [207.200.153.226]) by mx1.FreeBSD.org (Postfix) with ESMTP id 7792243FA3 for ; Mon, 19 May 2003 18:25:08 -0700 (PDT) (envelope-from tom@sdf.com) Received: from tom (helo=localhost) by misery.sdf.com with local-esmtp (Exim 2.12 #1) id 19HuGB-0001Tv-00; Mon, 19 May 2003 16:41:39 -0700 Date: Mon, 19 May 2003 16:41:08 -0700 (PDT) From: Tom Samplonius To: "Joseph T. Klein" In-Reply-To: <523443F2-8A26-11D7-A0BC-003065BA9B36@titania.net> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII cc: freebsd-isp@freebsd.org Subject: Re: Illegal use of my server?? X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 20 May 2003 01:25:10 -0000 On Mon, 19 May 2003, Joseph T. Klein wrote: > The Squid package and port should have a *big* warning sign on them > about this. > I know of at least one network that was blacklisted due to the lack of > tight > ACLs on Squid. ... The Squid port should probably ship with a default-deny rule. As far I can see, every IP on the Internet is port scanned at least several times a day. If you have something that is wide-open, it will be found very quickly. Tom From owner-freebsd-isp@FreeBSD.ORG Mon May 19 19:23:39 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 5C8D937B401 for ; Mon, 19 May 2003 19:23:39 -0700 (PDT) Received: from visi.gothic.net.au (visi.gothic.net.au [202.182.69.51]) by mx1.FreeBSD.org (Postfix) with ESMTP id 289CE43FA3 for ; Mon, 19 May 2003 19:23:38 -0700 (PDT) (envelope-from sean@gothic.net.au) Received: from localhost (localhost [127.0.0.1]) by visi.gothic.net.au (Postfix) with ESMTP id 2DFD5A6B72; Tue, 20 May 2003 12:23:35 +1000 (EST) Received: from visi.gothic.net.au (visi.gothic.net.au [202.182.69.51]) by visi.gothic.net.au (Postfix) with ESMTP id 4A933A6B43; Tue, 20 May 2003 12:23:31 +1000 (EST) Date: Tue, 20 May 2003 12:23:27 +1000 (EST) From: Sean To: Tom Samplonius In-Reply-To: Message-ID: <20030520122211.J54488@visi.gothic.net.au> References: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII X-Spam-Status: No, hits=-7.9 required=5.0 tests=BAYES_01,EMAIL_ATTRIBUTION,IN_REP_TO,QUOTED_EMAIL_TEXT, QUOTE_TWICE_1,REFERENCES,REPLY_WITH_QUOTES autolearn=ham version=2.54 X-Spam-Level: X-Spam-Checker-Version: SpamAssassin 2.54 (1.174.2.17-2003-05-11-exp) X-Virus-Scanned: by AMaViS snapshot-20020531 cc: freebsd-isp@freebsd.org Subject: Re: Illegal use of my server?? X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 20 May 2003 02:23:39 -0000 On Mon, 19 May 2003, Tom Samplonius wrote: > > On Mon, 19 May 2003, Joseph T. Klein wrote: > > > The Squid package and port should have a *big* warning sign on them > > about this. > > I know of at least one network that was blacklisted due to the lack of > > tight > > ACLs on Squid. > ... > > The Squid port should probably ship with a default-deny rule. As it already does: 12:21 sean@old [/usr/local/etc/squid] grep ^http_access squid.conf.default http_access allow manager localhost http_access deny manager http_access deny !Safe_ports http_access deny CONNECT !SSL_ports http_access deny all > > As far I can see, every IP on the Internet is port scanned at least > several times a day. If you have something that is wide-open, it will be > found very quickly. > > > Tom > > _______________________________________________ > freebsd-isp@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-isp > To unsubscribe, send any mail to "freebsd-isp-unsubscribe@freebsd.org" > > From owner-freebsd-isp@FreeBSD.ORG Mon May 19 23:48:04 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 04D4737B404 for ; Mon, 19 May 2003 23:48:03 -0700 (PDT) Received: from smtp23.singnet.com.sg (smtp23.singnet.com.sg [165.21.101.203]) by mx1.FreeBSD.org (Postfix) with ESMTP id A8F7643FA3 for ; Mon, 19 May 2003 23:48:02 -0700 (PDT) (envelope-from sajari@staff.singnet.com.sg) Received: from singapura.singnet.com.sg (singapura.singnet.com.sg [165.21.10.10])h4K6m0LD016792; Tue, 20 May 2003 14:48:00 +0800 Received: from localhost (sajari@localhost) by singapura.singnet.com.sg (8.8.5/8.7.2) with ESMTP id OAA01339; Tue, 20 May 2003 14:47:58 +0800 (SST) Date: Tue, 20 May 2003 14:47:58 +0800 (SST) From: SaJaRi X-Sender: sajari@singapura.singnet.com.sg To: song@isot.com In-Reply-To: <1053389692.3ec9737c97859@webmail.isot.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII cc: freebsd-isp@freebsd.org Subject: Re: syslogd not logging X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 20 May 2003 06:48:04 -0000 Hi there! If u enable syslogd on the new version the default option is -s which means Operate in secure mode and do not log messages from remote machines which is the reason why ur routers logs is not appearing on ur syslog log file. U might want to use the -a option to allow only specific ip address or domain to write to ur syslog servers. Hope that help. Cheers! -----BEGIN PGP PUBLIC KEY BLOCK----- Version: 2.6.i mQBtAjc9fI4AAAEDAMx6kkJcuhMq9TJEecb3JaiHe6fHRMlaVX/5Om7eCi2xdONO HfVeuTUryabhb7J2mRgKo7z4YWoNxOdNdDtRVaMfD7H18mdV0KYvlR/+9NAgKGxi UEaOYPJsKNHWCAKV1QAFEbQeU2FKYVJpIDxzYWphcmlAc2luZ25ldC5jb20uc2c+ =gG2n -----END PGP PUBLIC KEY BLOCK----- On Mon, 19 May 2003, itchibahn wrote: > I replaced my old server (FBSD 4.3) with new FBSD 5.0. And now I can't get > the syslogd to log from my routers. > > I have configured the /etc/syslog.conf file to exactly as in old box and > restarted syslogd. Is there something I'm missing? Please help. > > > > ------------------------------------------------- > This mail sent through ISOT. To find out more > about ISOT, visit http://isot.com > _______________________________________________ > freebsd-isp@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-isp > To unsubscribe, send any mail to "freebsd-isp-unsubscribe@freebsd.org" > From owner-freebsd-isp@FreeBSD.ORG Wed May 21 02:10:11 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 0C97437B401; Wed, 21 May 2003 02:10:11 -0700 (PDT) Received: from mail.cvt.dk (funnyitworkedlasttime.cvt.dk [130.225.95.154]) by mx1.FreeBSD.org (Postfix) with ESMTP id 6A86D43F3F; Wed, 21 May 2003 02:10:09 -0700 (PDT) (envelope-from cp@cvt.dk) Received: from cvt.dk (cp.cvt.dk [130.225.95.152]) by mail.cvt.dk (Postfix) with ESMTP id 24340F3873; Wed, 21 May 2003 11:10:07 +0200 (CEST) Message-ID: <3ECB3EC7.574DD8D6@cvt.dk> Date: Wed, 21 May 2003 10:54:31 +0200 From: Christoffer Pio Organization: Center for Videnteknologi X-Mailer: Mozilla 4.79 [en] (Windows NT 5.0; U) X-Accept-Language: en MIME-Version: 1.0 To: freebsd-questions@freebsd.org, freebsd-isp@freebsd.org Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Subject: FreeBSD on IBM x345 2U server? X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 21 May 2003 09:10:11 -0000 Hello, I'm trying to install FreeBSD 5.0 on the new IBM x345 2U server, it comes with the LSI 53C1030 scsi raid controller onboard the motherboard, this controller is listed as supported hardware, however the FreeBSD does not find the controller or any disks at boot-time. The driver is not included on the drivers.flp. Anyone running FreeBSD on the IBM x345 2U box, and if so any suggestions on how to get this controller to work? Please include any replies directly to me via email .. Thank you Christoffer From owner-freebsd-isp@FreeBSD.ORG Wed May 21 02:17:06 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id AB12837B401; Wed, 21 May 2003 02:17:06 -0700 (PDT) Received: from mail.droso.net (koala.droso.net [193.162.142.59]) by mx1.FreeBSD.org (Postfix) with ESMTP id 7398F43F75; Wed, 21 May 2003 02:17:05 -0700 (PDT) (envelope-from erwin@mail.droso.net) Received: by mail.droso.net (Postfix, from userid 1001) id A7AF832D04; Wed, 21 May 2003 11:17:03 +0200 (CEST) Date: Wed, 21 May 2003 11:17:03 +0200 From: Erwin Lansing To: Christoffer Pio Message-ID: <20030521091703.GB76149@droso.net> References: <3ECB3EC7.574DD8D6@cvt.dk> Mime-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="k1lZvvs/B4yU6o8G" Content-Disposition: inline In-Reply-To: <3ECB3EC7.574DD8D6@cvt.dk> X-Operating-System: FreeBSD/i386 4.8-RC User-Agent: Mutt/1.5.4i cc: freebsd-isp@freebsd.org cc: freebsd-questions@freebsd.org Subject: Re: FreeBSD on IBM x345 2U server? X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 21 May 2003 09:17:07 -0000 --k1lZvvs/B4yU6o8G Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Wed, May 21, 2003 at 10:54:31AM +0200, Christoffer Pio wrote: > Hello, Howdy, >=20 > I'm trying to install FreeBSD 5.0 on the new IBM x345 > 2U server, it comes with the LSI 53C1030 scsi raid > controller onboard the motherboard, this controller is > listed as supported hardware, however the FreeBSD > does not find the controller or any disks at boot-time. >=20 > The driver is not included on the drivers.flp. >=20 > Anyone running FreeBSD on the IBM x345 2U box, and if so > any suggestions on how to get this controller to work? >=20 This sound awfully similar to the LSILogic 1030 Ultra4 Adapter in an IBM x335 1U, which is supported by the mpt driver. I never tried a disk install, but it works perfectly from a cd install. Cheers, -erwin --=20 _._ _,-'""`-._ Erwin Lansing (,-.`._,'( |\`-/| http://droso.org/ erwin@lansing.dk `-.-' \ )-`( , o o) http://fnidder.dk/ -bf- `- \`_`"'- --k1lZvvs/B4yU6o8G Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.1 (FreeBSD) iD8DBQE+y0QPqy9aWxUlaZARAo6VAKDITz+NbcZXDq7mLdDdn5b8uavWWwCgyFe7 GFZzr425RiV2eRjg8n22oc0= =ArRn -----END PGP SIGNATURE----- --k1lZvvs/B4yU6o8G-- From owner-freebsd-isp@FreeBSD.ORG Wed May 21 02:24:00 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 1F76A37B401; Wed, 21 May 2003 02:24:00 -0700 (PDT) Received: from mail.droso.net (koala.droso.net [193.162.142.59]) by mx1.FreeBSD.org (Postfix) with ESMTP id 8523B43F85; Wed, 21 May 2003 02:23:59 -0700 (PDT) (envelope-from erwin@mail.droso.net) Received: by mail.droso.net (Postfix, from userid 1001) id CA9B632D04; Wed, 21 May 2003 11:23:58 +0200 (CEST) Date: Wed, 21 May 2003 11:23:58 +0200 From: Erwin Lansing Message-ID: <20030521092358.GC76149@droso.net> References: <3ECB3EC7.574DD8D6@cvt.dk> <20030521091703.GB76149@droso.net> Mime-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="aVD9QWMuhilNxW9f" Content-Disposition: inline In-Reply-To: <20030521091703.GB76149@droso.net> X-Operating-System: FreeBSD/i386 4.8-RC User-Agent: Mutt/1.5.4i cc: freebsd-isp@freebsd.org cc: Christoffer Pio cc: freebsd-questions@freebsd.org Subject: Re: FreeBSD on IBM x345 2U server? X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 21 May 2003 09:24:00 -0000 --aVD9QWMuhilNxW9f Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Wed, May 21, 2003 at 11:17:03AM +0200, Erwin Lansing wrote: > On Wed, May 21, 2003 at 10:54:31AM +0200, Christoffer Pio wrote: > > Hello, >=20 > Howdy, > >=20 > > I'm trying to install FreeBSD 5.0 on the new IBM x345 > > 2U server, it comes with the LSI 53C1030 scsi raid > > controller onboard the motherboard, this controller is > > listed as supported hardware, however the FreeBSD > > does not find the controller or any disks at boot-time. > >=20 > > The driver is not included on the drivers.flp. > >=20 > > Anyone running FreeBSD on the IBM x345 2U box, and if so > > any suggestions on how to get this controller to work? > >=20 > This sound awfully similar to the LSILogic 1030 Ultra4 Adapter in an IBM > x335 1U, which is supported by the mpt driver. I never tried a disk > install, but it works perfectly from a cd install. >=20 I should get better at reading the whole message before answering... This is on 4.x, not 5.0 Cheers, -erwin --=20 _._ _,-'""`-._ Erwin Lansing (,-.`._,'( |\`-/| http://droso.org/ erwin@lansing.dk `-.-' \ )-`( , o o) http://fnidder.dk/ -bf- `- \`_`"'- --aVD9QWMuhilNxW9f Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.1 (FreeBSD) iD8DBQE+y0Wuqy9aWxUlaZARAuTJAKC7PESBr/SWZ14LQYDHDnQAAVj3gACfeF/m GPcRcfdLnZ6RnaEY5WIJwNk= =vjNG -----END PGP SIGNATURE----- --aVD9QWMuhilNxW9f-- From owner-freebsd-isp@FreeBSD.ORG Wed May 21 02:27:12 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id AD40B37B401; Wed, 21 May 2003 02:27:12 -0700 (PDT) Received: from mail.cvt.dk (funnyitworkedlasttime.cvt.dk [130.225.95.154]) by mx1.FreeBSD.org (Postfix) with ESMTP id 1AB2943F3F; Wed, 21 May 2003 02:27:12 -0700 (PDT) (envelope-from cp@cvt.dk) Received: from cvt.dk (cp.cvt.dk [130.225.95.152]) by mail.cvt.dk (Postfix) with ESMTP id 11BB1F3873; Wed, 21 May 2003 11:27:11 +0200 (CEST) Message-ID: <3ECB42C7.5152DB48@cvt.dk> Date: Wed, 21 May 2003 11:11:35 +0200 From: Christoffer Pio Organization: Center for Videnteknologi X-Mailer: Mozilla 4.79 [en] (Windows NT 5.0; U) X-Accept-Language: en MIME-Version: 1.0 To: Erwin Lansing References: <3ECB3EC7.574DD8D6@cvt.dk> <20030521091703.GB76149@droso.net> <20030521092358.GC76149@droso.net> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit cc: freebsd-isp@freebsd.org cc: freebsd-questions@freebsd.org Subject: Re: FreeBSD on IBM x345 2U server? X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 21 May 2003 09:27:13 -0000 Actually, I tried install FreeBSD 4.8 at first, it did not detect the controller. Then I tried 5.0 and checked out the drivers.flp option as well. No luck either .. I'm installing from floppies (kern.flp and mfsroot.flp), I cannot imagine how it could make a difference installing from a CDROM. Christoffer Erwin Lansing wrote: > > On Wed, May 21, 2003 at 11:17:03AM +0200, Erwin Lansing wrote: > > On Wed, May 21, 2003 at 10:54:31AM +0200, Christoffer Pio wrote: > > > Hello, > > > > Howdy, > > > > > > I'm trying to install FreeBSD 5.0 on the new IBM x345 > > > 2U server, it comes with the LSI 53C1030 scsi raid > > > controller onboard the motherboard, this controller is > > > listed as supported hardware, however the FreeBSD > > > does not find the controller or any disks at boot-time. > > > > > > The driver is not included on the drivers.flp. > > > > > > Anyone running FreeBSD on the IBM x345 2U box, and if so > > > any suggestions on how to get this controller to work? > > > > > This sound awfully similar to the LSILogic 1030 Ultra4 Adapter in an IBM > > x335 1U, which is supported by the mpt driver. I never tried a disk > > install, but it works perfectly from a cd install. > > > I should get better at reading the whole message before answering... > This is on 4.x, not 5.0 > > Cheers, > -erwin > > -- > _._ _,-'""`-._ > Erwin Lansing (,-.`._,'( |\`-/| http://droso.org/ > erwin@lansing.dk `-.-' \ )-`( , o o) http://fnidder.dk/ > -bf- `- \`_`"'- > > ----------------------------------------------------------------------------------------------- > Part 1.2Type: application/pgp-signature From owner-freebsd-isp@FreeBSD.ORG Wed May 21 03:53:01 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 60FF837B401 for ; Wed, 21 May 2003 03:53:01 -0700 (PDT) Received: from ginsberg.uol.com.br (ginsberg.uol.com.br [200.221.29.48]) by mx1.FreeBSD.org (Postfix) with ESMTP id 204BA43F3F for ; Wed, 21 May 2003 03:52:59 -0700 (PDT) (envelope-from antonio.torres@newspace.net.br) Received: from thinkpad.newspace.net.br ([200.221.55.15]) by ginsberg.uol.com.br (8.9.1/8.9.1) with SMTP id HAA23083 for ; Wed, 21 May 2003 07:52:55 -0300 (BRT) Date: Wed, 21 May 2003 07:52:54 -0300 From: Antonio Torres To: freebsd-isp@freebsd.org Message-Id: <20030521075254.6bdd7bf4.antonio.torres@newspace.net.br> In-Reply-To: <3ECB42C7.5152DB48@cvt.dk> References: <3ECB3EC7.574DD8D6@cvt.dk> <20030521091703.GB76149@droso.net> <20030521092358.GC76149@droso.net> <3ECB42C7.5152DB48@cvt.dk> Organization: Newspace Telecom. X-Mailer: Sylpheed version 0.9.0 (GTK+ 1.2.10; i386-portbld-freebsd5.0) Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Subject: Re: FreeBSD on IBM x345 2U server? X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 21 May 2003 10:53:01 -0000 On Wed, 21 May 2003 11:11:35 +0200 Christoffer Pio wrote: > Actually, I tried install FreeBSD 4.8 at first, it did not > detect the controller. Then I tried 5.0 and checked out > the drivers.flp option as well. No luck either .. I'm installing > from floppies (kern.flp and mfsroot.flp), I cannot imagine > how it could make a difference installing from a CDROM. > > Christoffer Please, read the docs from FreeBSD 5.0 The diference cames from a new "CD boot layout", is not "floopy size limited" ... []s -- Antonio Torres antonio.torres@newspace.net.br From owner-freebsd-isp@FreeBSD.ORG Wed May 21 05:29:15 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 5012D37B401; Wed, 21 May 2003 05:29:15 -0700 (PDT) Received: from mail19.messagelabs.com (mail19.messagelabs.com [193.109.254.3]) by mx1.FreeBSD.org (Postfix) with SMTP id 5FD3243F75; Wed, 21 May 2003 05:29:11 -0700 (PDT) (envelope-from Scott_Koh/Bluewave.BLUEWAVE@bluewave.com) X-VirusChecked: Checked X-Env-Sender: Scott_Koh/Bluewave.BLUEWAVE@bluewave.com X-Msg-Ref: server-5.tower-19.messagelabs.com!1053520148!12458 Received: (qmail 30776 invoked from network); 21 May 2003 12:29:08 -0000 Received: from dns2.bluewave.com (HELO thebe.bluewave.com) (195.152.6.109) by server-5.tower-19.messagelabs.com with SMTP; 21 May 2003 12:29:08 -0000 Received: from crocodile.bluewave.com (14.0.10.193.210.in-addr.arpa [210.193.10.14] (may be forged)) by thebe.bluewave.com (8.11.6/8.11.6) with ESMTP id h4LCSTF21137; Wed, 21 May 2003 13:28:30 +0100 To: Christoffer Pio X-Mailer: Lotus Notes Release 5.0.9 November 16, 2001 Message-ID: From: Scott_Koh/Bluewave.BLUEWAVE@bluewave.com Date: Wed, 21 May 2003 20:11:53 +0800 X-MIMETrack: Serialize by Router on crocodile/Bluewave(Release 5.0.9 |November 16, 2001) at 05/21/2003 08:11:58 PM MIME-Version: 1.0 Content-type: text/plain; charset=us-ascii cc: freebsd-isp@freebsd.org cc: freebsd-questions@freebsd.org cc: Erwin Lansing cc: owner-freebsd-questions@freebsd.org Subject: Re: FreeBSD on IBM x345 2U server? X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 21 May 2003 12:29:15 -0000 Hi, We have installed FreeBSD 4.8 successfully on x345 using the integrated Raid LSI1030. For FreeBSD 5 and 5.1 beta encountered keyboard freeze on setup menu screen and kernel panic during booting respectively. (ServeRAID 5i still unable to be used for the moment). To enable the x345 integrated Raid F1 to bios setup and Go IO devices to ensure Planar SCSI is enabled. Save setting and exit. F1 again and then CTRL C to invoke LSI RAID configuration utility. This will bring you to LSI Logic MPT SCSI Setup utility 2400 9 Yes 0 Enabled 2500 9 Yes 1 Enabled Highlight the 1st line Select and hit enter. The default setting shows ID 0 80Mb/sec with bandwidth 8 <- move cursor to bandwidth column and press spacebar to change it to 16 this will automatically change the MB/sec to 160Mb/sec to match the rest of the harddisks to 160Mb. You can leave as default if you do not wish to change it. Press ESC to go back to Device properties menu Move cursor to Set your Primary Mirror, Secondary Mirror and hot spare accordingly under the Mirror Pair. Use Spacebar to change. Once done you can press Esc and Esc to Save your configuration and Reboot Note: If you do not want Mirroring you can leave Mirror Pair column blank but it will shows all the available harddisk during FreeBSD setup. Once done and rebooted you should see LSI scanning for SCSI devices and displayed the configured setting. Your FreeBSD setup should be smooth sailing from here.. Hope the above helps. Regards, Scott Koh Christoffer Pio To: Erwin Lansing Sent by: cc: freebsd-isp@freebsd.org, freebsd-questions@freebsd.org owner-freebsd-questions@ Subject: Re: FreeBSD on IBM x345 2U server? freebsd.org 05/21/2003 05:11 PM Actually, I tried install FreeBSD 4.8 at first, it did not detect the controller. Then I tried 5.0 and checked out the drivers.flp option as well. No luck either .. I'm installing from floppies (kern.flp and mfsroot.flp), I cannot imagine how it could make a difference installing from a CDROM. Christoffer Erwin Lansing wrote: > > On Wed, May 21, 2003 at 11:17:03AM +0200, Erwin Lansing wrote: > > On Wed, May 21, 2003 at 10:54:31AM +0200, Christoffer Pio wrote: > > > Hello, > > > > Howdy, > > > > > > I'm trying to install FreeBSD 5.0 on the new IBM x345 > > > 2U server, it comes with the LSI 53C1030 scsi raid > > > controller onboard the motherboard, this controller is > > > listed as supported hardware, however the FreeBSD > > > does not find the controller or any disks at boot-time. > > > > > > The driver is not included on the drivers.flp. > > > > > > Anyone running FreeBSD on the IBM x345 2U box, and if so > > > any suggestions on how to get this controller to work? > > > > > This sound awfully similar to the LSILogic 1030 Ultra4 Adapter in an IBM > > x335 1U, which is supported by the mpt driver. I never tried a disk > > install, but it works perfectly from a cd install. > > > I should get better at reading the whole message before answering... > This is on 4.x, not 5.0 > > Cheers, > -erwin > > -- > _._ _,-'""`-._ > Erwin Lansing (,-.`._,'( |\`-/| http://droso.org/ > erwin@lansing.dk `-.-' \ )-`( , o o) http://fnidder.dk/ > -bf- `- \`_`"'- > > ----------------------------------------------------------------------------------------------- > Part 1.2Type: application/pgp-signature _______________________________________________ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscribe@freebsd.org" From owner-freebsd-isp@FreeBSD.ORG Wed May 21 06:17:20 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 3AD1B37B401; Wed, 21 May 2003 06:17:20 -0700 (PDT) Received: from mail.cvt.dk (funnyitworkedlasttime.cvt.dk [130.225.95.154]) by mx1.FreeBSD.org (Postfix) with ESMTP id 3E68443F3F; Wed, 21 May 2003 06:17:19 -0700 (PDT) (envelope-from cp@cvt.dk) Received: from cvt.dk (cp.cvt.dk [130.225.95.152]) by mail.cvt.dk (Postfix) with ESMTP id 3F4E4F3873; Wed, 21 May 2003 15:17:18 +0200 (CEST) Message-ID: <3ECB78B5.A4E3FBE9@cvt.dk> Date: Wed, 21 May 2003 15:01:41 +0200 From: Christoffer Pio Organization: Center for Videnteknologi X-Mailer: Mozilla 4.79 [en] (Windows NT 5.0; U) X-Accept-Language: en MIME-Version: 1.0 To: Scott_Koh/Bluewave.BLUEWAVE@bluewave.com References: Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit cc: freebsd-isp@freebsd.org cc: freebsd-questions@freebsd.org cc: Erwin Lansing cc: owner-freebsd-questions@freebsd.org Subject: Re: FreeBSD on IBM x345 2U server? (works now) X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 21 May 2003 13:17:20 -0000 Thanks alot. It works now. I also did encounter the keyboard freeze in setup menu on FreeBSD 5.0. 4.8 seems to work well. I'm happy with a more conservative approach to upgrading. 4.5 worked very well, I hope we will be as satisfied on this more powerful setup and running 4.8. Thanks Christoffer Scott_Koh/Bluewave.BLUEWAVE@bluewave.com wrote: > > Hi, > > We have installed FreeBSD 4.8 successfully on x345 using the integrated > Raid LSI1030. For FreeBSD 5 and 5.1 beta encountered keyboard freeze on > setup menu screen and kernel panic during booting respectively. (ServeRAID > 5i still unable to be used for the moment). > > To enable the x345 integrated Raid > F1 to bios setup and Go IO devices to ensure Planar SCSI is enabled. Save > setting and exit. > F1 again and then CTRL C to invoke LSI RAID configuration utility. > > This will bring you to LSI Logic MPT SCSI Setup utility > > 2400 9 Yes 0 Enabled > 2500 9 Yes 1 Enabled > > Highlight the 1st line > This will brings you to Adapter Properties with > > > > Select and hit enter. > The default setting shows ID 0 80Mb/sec with bandwidth 8 <- move cursor to > bandwidth column and press spacebar to change it to 16 > this will automatically change the MB/sec to 160Mb/sec to match the rest of > the harddisks to 160Mb. You can leave as default if you do > not wish to change it. Press ESC to go back to Device properties menu > > Move cursor to > Set your Primary Mirror, Secondary Mirror and hot spare accordingly under > the Mirror Pair. Use Spacebar to change. > Once done you can press Esc and Esc to Save your configuration and Reboot > Note: If you do not want Mirroring you can leave Mirror Pair column blank > but it will shows all the available harddisk during FreeBSD setup. > > Once done and rebooted you should see LSI scanning for SCSI devices and > displayed the configured setting. > Your FreeBSD setup should be smooth sailing from here.. > > Hope the above helps. > > Regards, > Scott Koh > > > Christoffer Pio > To: Erwin Lansing > Sent by: cc: freebsd-isp@freebsd.org, freebsd-questions@freebsd.org > owner-freebsd-questions@ Subject: Re: FreeBSD on IBM x345 2U server? > freebsd.org > > > 05/21/2003 05:11 PM > > > > Actually, I tried install FreeBSD 4.8 at first, it did not > detect the controller. Then I tried 5.0 and checked out > the drivers.flp option as well. No luck either .. I'm installing > from floppies (kern.flp and mfsroot.flp), I cannot imagine > how it could make a difference installing from a CDROM. > > Christoffer > > Erwin Lansing wrote: > > > > On Wed, May 21, 2003 at 11:17:03AM +0200, Erwin Lansing wrote: > > > On Wed, May 21, 2003 at 10:54:31AM +0200, Christoffer Pio wrote: > > > > Hello, > > > > > > Howdy, > > > > > > > > I'm trying to install FreeBSD 5.0 on the new IBM x345 > > > > 2U server, it comes with the LSI 53C1030 scsi raid > > > > controller onboard the motherboard, this controller is > > > > listed as supported hardware, however the FreeBSD > > > > does not find the controller or any disks at boot-time. > > > > > > > > The driver is not included on the drivers.flp. > > > > > > > > Anyone running FreeBSD on the IBM x345 2U box, and if so > > > > any suggestions on how to get this controller to work? > > > > > > > This sound awfully similar to the LSILogic 1030 Ultra4 Adapter in an > IBM > > > x335 1U, which is supported by the mpt driver. I never tried a disk > > > install, but it works perfectly from a cd install. > > > > > I should get better at reading the whole message before answering... > > This is on 4.x, not 5.0 > > > > Cheers, > > -erwin > > > > -- > > _._ _,-'""`-._ > > Erwin Lansing (,-.`._,'( |\`-/| http://droso.org/ > > erwin@lansing.dk `-.-' \ )-`( , o o) http://fnidder.dk/ > > -bf- `- \`_`"'- > > > > > ----------------------------------------------------------------------------------------------- > > > Part 1.2Type: application/pgp-signature > _______________________________________________ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to > "freebsd-questions-unsubscribe@freebsd.org" From owner-freebsd-isp@FreeBSD.ORG Wed May 21 10:30:21 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 43E7F37B404 for ; Wed, 21 May 2003 10:30:21 -0700 (PDT) Received: from misery.sdf.com (misery.sdf.com [207.200.153.226]) by mx1.FreeBSD.org (Postfix) with ESMTP id 94FDE43FAF for ; Wed, 21 May 2003 10:30:19 -0700 (PDT) (envelope-from tom@sdf.com) Received: from tom (helo=localhost) by misery.sdf.com with local-esmtp (Exim 2.12 #1) id 19IVop-0006sh-00; Wed, 21 May 2003 08:47:55 -0700 Date: Wed, 21 May 2003 08:47:50 -0700 (PDT) From: Tom Samplonius To: Christoffer Pio In-Reply-To: <3ECB42C7.5152DB48@cvt.dk> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII cc: freebsd-isp@freebsd.org cc: Erwin Lansing Subject: Re: FreeBSD on IBM x345 2U server? X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 21 May 2003 17:30:21 -0000 On Wed, 21 May 2003, Christoffer Pio wrote: ... > from floppies (kern.flp and mfsroot.flp), I cannot imagine > how it could make a difference installing from a CDROM. Well, way more drivers can fit on the CDROM for one. However, I don't know why anyone would install from floppies, if you have a CD-ROM. Floppies are slow and hold a tiny amount of data. > Christoffer Tom From owner-freebsd-isp@FreeBSD.ORG Wed May 21 12:16:20 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 5EDFD37B401 for ; Wed, 21 May 2003 12:16:20 -0700 (PDT) Received: from mail.cvt.dk (funnyitworkedlasttime.cvt.dk [130.225.95.154]) by mx1.FreeBSD.org (Postfix) with ESMTP id A599243F85 for ; Wed, 21 May 2003 12:16:19 -0700 (PDT) (envelope-from cp@cvt.dk) Received: from cvt.dk (localhost [127.0.0.1]) by mail.cvt.dk (Postfix) with SMTP id 98D3FF38EA; Wed, 21 May 2003 21:16:18 +0200 (CEST) Received: from 80.196.249.98 (SquirrelMail authenticated user cp) by ns.cvt.dk with HTTP; Wed, 21 May 2003 21:16:18 +0200 (CEST) Message-ID: <39659.80.196.249.98.1053544578.squirrel@ns.cvt.dk> Date: Wed, 21 May 2003 21:16:18 +0200 (CEST) From: To: In-Reply-To: References: <3ECB42C7.5152DB48@cvt.dk> X-Priority: 3 Importance: Normal X-MSMail-Priority: Normal X-Mailer: SquirrelMail (version 1.2.6) MIME-Version: 1.0 Content-Type: text/plain; charset=iso-8859-1 Content-Transfer-Encoding: 8bit cc: freebsd-isp@freebsd.org cc: cp@cvt.dk cc: erwin@lansing.dk Subject: Re: FreeBSD on IBM x345 2U server? X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 21 May 2003 19:16:20 -0000 Thats right. I was thinking that same kernel would be on the floppy and CDROM, and if remaining drivers did not fit onto the floppy they would be on the drivers.flp option. Regardless, it works now. I guess its time I give up the very old (bad?) habbit of installing from a floppy-set and ftp :) I look forward to see how much data I can push through FreeBSD and IPF with gigabit ethernet cards on a PCI-X bus. Thanks Christoffer > > On Wed, 21 May 2003, Christoffer Pio wrote: > > ... >> from floppies (kern.flp and mfsroot.flp), I cannot imagine >> how it could make a difference installing from a CDROM. > > Well, way more drivers can fit on the CDROM for one. > > However, I don't know why anyone would install from floppies, if you > have a CD-ROM. Floppies are slow and hold a tiny amount of data. > >> Christoffer > > > Tom From owner-freebsd-isp@FreeBSD.ORG Wed May 21 14:35:21 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 8D81C37B401 for ; Wed, 21 May 2003 14:35:21 -0700 (PDT) Received: from usenet.isot.com (usenet.isot.com [63.161.224.13]) by mx1.FreeBSD.org (Postfix) with ESMTP id C101343FA3 for ; Wed, 21 May 2003 14:35:20 -0700 (PDT) (envelope-from song@isot.com) Received: (from www@localhost) by usenet.isot.com (8.11.6/8.11.6) id h4LLgQg76190; Wed, 21 May 2003 16:42:26 -0500 (CDT) (envelope-from song@isot.com) X-Authentication-Warning: usenet.isot.com: www set sender to song@isot.com using -f Received: from 63.161.239.70 ( [63.161.239.70]) as user freebsd@isot.com by webmail.isot.com with HTTP; Wed, 21 May 2003 16:42:26 -0500 Message-ID: <1053553346.3ecbf2c2282d3@webmail.isot.com> Date: Wed, 21 May 2003 16:42:26 -0500 From: Sing Song To: Chris Cook References: <1053389692.3ec9737c97859@webmail.isot.com> <3EC97577.28B379E9@tcworks.net> In-Reply-To: <3EC97577.28B379E9@tcworks.net> MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 8bit User-Agent: Internet Messaging Program (IMP) 3.1-cvs X-Originating-IP: 63.161.239.70 cc: freebsd-isp@freebsd.org Subject: Re: syslogd not logging X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 21 May 2003 21:35:21 -0000 I tried "syslogd -a *isot.com:*", and "ps -ax" shows it running 44866 ?? Ss 0:03.07 syslogd -a *isot.com:* But after a day, still no log. ------------------------------------------------- This mail sent through ISOT. To find out more about ISOT, visit http://isot.com From owner-freebsd-isp@FreeBSD.ORG Thu May 22 04:22:40 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id E2DE337B401 for ; Thu, 22 May 2003 04:22:40 -0700 (PDT) Received: from mail.munk.nu (213-152-51-194.dsl.eclipse.net.uk [213.152.51.194]) by mx1.FreeBSD.org (Postfix) with ESMTP id 53E8D43F75 for ; Thu, 22 May 2003 04:22:40 -0700 (PDT) (envelope-from munk@mail.munk.nu) Received: from munk by mail.munk.nu with local (Exim 4.20) id 19Io9f-0005tI-AP for freebsd-isp@freebsd.org; Thu, 22 May 2003 12:22:39 +0100 Date: Thu, 22 May 2003 12:22:39 +0100 From: Jez Hancock To: FreeBSD ISP List Message-ID: <20030522112239.GB22219@users.munk.nu> Mail-Followup-To: FreeBSD ISP List Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.4.1i Sender: User Munk Subject: Determining what process/uid is attempting a network connection X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 22 May 2003 11:22:41 -0000 Hi, I have a large number of user processes (eggdrops) connected to numerous networks and recently started noticing a number of connection attempts outgoing to a reserved network address, 0.0.13.5. My firewall logs show: May 21 00:00:22 users ipmon[62]: 00:00:21.557455 fxp0 @0:12 b 213.152.51.194,4138 -> 0.0.13.5,3333 PR tcp len 20 60 -S OUT May 21 00:00:22 users ipmon[62]: 00:00:21.557529 fxp0 @0:12 b 213.152.51.194,4139 -> 0.0.13.5,3334 PR tcp len 20 60 -S OUT May 21 00:00:22 users ipmon[62]: 00:00:21.557578 fxp0 @0:12 b 213.152.51.194,4140 -> 0.0.13.5,3335 PR tcp len 20 60 -S OUT May 21 00:00:22 users ipmon[62]: 00:00:21.557625 fxp0 @0:12 b 213.152.51.194,4141 -> 0.0.13.5,3336 PR tcp len 20 60 -S OUT How can I determine what process is spawning this connection attempt and the uid of the process? I use ipfw to analyze bandwidth on a per user basis, but I can't think of a way to use ipfw to capture the kind of info I need in this instance. Thanks in advance, Jez From owner-freebsd-isp@FreeBSD.ORG Thu May 22 04:49:05 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 2741637B404 for ; Thu, 22 May 2003 04:49:05 -0700 (PDT) Received: from lapdance.yazzy.org (mail.wrs.no [213.236.173.130]) by mx1.FreeBSD.org (Postfix) with ESMTP id 2F66843F85 for ; Thu, 22 May 2003 04:49:04 -0700 (PDT) (envelope-from yazzy@ezunix.org) Received: from localhost ([127.0.0.1] helo=lapdance) by lapdance.yazzy.org with smtp (Exim 4.14) id 19IoXg-000JpN-LQ for freebsd-isp@freebsd.org; Thu, 22 May 2003 13:47:28 +0200 Date: Thu, 22 May 2003 13:47:27 +0200 From: Martin Jessa To: freebsd-isp@freebsd.org Message-Id: <20030522134727.1adb7463.yazzy@ezunix.org> Organization: ezunix.org X-Mailer: Sylpheed version 0.8.10claws (GTK+ 1.2.10; i386-portbld-freebsd4.7) Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Subject: Radius auth X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 22 May 2003 11:49:05 -0000 My question may seem to be a bit off the list but I know that people here have both experience and knowledge to help me out. I have Soekris boxes placed different places to serve WLAN access. All of them are connected to a main FreeBSD server with mpd to create vpn tunnels and authenticate users also acting as router and firewall/gateway. I would like to have a central controll center where I could add new accounts, check the account status, give the users certain bandtwith based on their username and possibly handle billing. Maybe with SQL or LDAP backend. The best way would be to have all that enabled via web based interface. Is there any Radius setup supporting it ? Thank you in advance. Martin Jessa From owner-freebsd-isp@FreeBSD.ORG Thu May 22 09:50:59 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 7B40237B401 for ; Thu, 22 May 2003 09:50:59 -0700 (PDT) Received: from gray.impulse.net (gray.impulse.net [207.154.64.174]) by mx1.FreeBSD.org (Postfix) with ESMTP id EEA4F43FAF for ; Thu, 22 May 2003 09:50:58 -0700 (PDT) (envelope-from secabeen@pobox.com) Received: by gray.impulse.net (Postfix, from userid 1000) id 911371B8; Thu, 22 May 2003 09:50:58 -0700 (PDT) To: Tom Samplonius References: From: Ted Cabeen Date: Thu, 22 May 2003 09:50:58 -0700 In-Reply-To: (Tom Samplonius's message of "Wed, 21 May 2003 08:47:50 -0700 (PDT)") Message-ID: <87vfw353il.fsf@gray.impulse.net> User-Agent: Gnus/5.1001 (Gnus v5.10.1) XEmacs/21.4 (Portable Code, berkeley-unix) MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii cc: freebsd-isp@freebsd.org cc: Christoffer Pio cc: Erwin Lansing Subject: Re: FreeBSD on IBM x345 2U server? X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 22 May 2003 16:50:59 -0000 Tom Samplonius writes: > On Wed, 21 May 2003, Christoffer Pio wrote: > > ... >> from floppies (kern.flp and mfsroot.flp), I cannot imagine >> how it could make a difference installing from a CDROM. > > Well, way more drivers can fit on the CDROM for one. > > However, I don't know why anyone would install from floppies, if you > have a CD-ROM. Floppies are slow and hold a tiny amount of data. Because you have a local mirror of FreeBSD and all you need is the two boot floppies and a copy of your install.cfg to do a full automated install. Many of our systems don't have CD-ROM drives, but they all have floppies. Ideally I'd be doing entirely net-based installs, but the Ethernet cards we have don't do netboot. :( -- Ted Cabeen http://www.pobox.com/~secabeen ted@impulse.net Check Website or Keyserver for PGP/GPG Key BA0349D2 secabeen@pobox.com "I have taken all knowledge to be my province." -F. Bacon secabeen@cabeen.org "Human kind cannot bear very much reality."-T.S.Eliot cabeen@netcom.com From owner-freebsd-isp@FreeBSD.ORG Thu May 22 10:17:43 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 1E66537B401 for ; Thu, 22 May 2003 10:17:43 -0700 (PDT) Received: from misery.sdf.com (misery.sdf.com [207.200.153.226]) by mx1.FreeBSD.org (Postfix) with ESMTP id 4594343F85 for ; Thu, 22 May 2003 10:17:41 -0700 (PDT) (envelope-from tom@sdf.com) Received: from tom (helo=localhost) by misery.sdf.com with local-esmtp (Exim 2.12 #1) id 19Is69-0007ku-00; Thu, 22 May 2003 08:35:17 -0700 Date: Thu, 22 May 2003 08:35:14 -0700 (PDT) From: Tom Samplonius To: Ted Cabeen In-Reply-To: <87vfw353il.fsf@gray.impulse.net> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII cc: freebsd-isp@freebsd.org cc: Christoffer Pio cc: Erwin Lansing Subject: Re: FreeBSD on IBM x345 2U server? X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 22 May 2003 17:17:43 -0000 On Thu, 22 May 2003, Ted Cabeen wrote: > Tom Samplonius writes: > > > On Wed, 21 May 2003, Christoffer Pio wrote: > > > > ... > >> from floppies (kern.flp and mfsroot.flp), I cannot imagine > >> how it could make a difference installing from a CDROM. > > > > Well, way more drivers can fit on the CDROM for one. > > > > However, I don't know why anyone would install from floppies, if you > > have a CD-ROM. Floppies are slow and hold a tiny amount of data. > > Because you have a local mirror of FreeBSD and all you need is the two > boot floppies and a copy of your install.cfg to do a full automated > install. Many of our systems don't have CD-ROM drives, but they all > have floppies. Ideally I'd be doing entirely net-based installs, but > the Ethernet cards we have don't do netboot. :( Well, you might want to add CD-ROMs, or upgrade your NICs before floppy drives are completely obsolete. A external USB drive (CD-ROM or flash) would also be an option. Some vendors (Dell) are not going to include floppies on their systems anymore. Soon floppies will gone entirely. > -- > Ted Cabeen http://www.pobox.com/~secabeen ted@impulse.net > Check Website or Keyserver for PGP/GPG Key BA0349D2 secabeen@pobox.com > "I have taken all knowledge to be my province." -F. Bacon secabeen@cabeen.org > "Human kind cannot bear very much reality."-T.S.Eliot cabeen@netcom.com Tom From owner-freebsd-isp@FreeBSD.ORG Thu May 22 13:06:42 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 67D6737B401 for ; Thu, 22 May 2003 13:06:42 -0700 (PDT) Received: from sysadmin.datapro.co.za (db.datapro.co.za [196.3.164.100]) by mx1.FreeBSD.org (Postfix) with ESMTP id F194843F93 for ; Thu, 22 May 2003 13:06:39 -0700 (PDT) (envelope-from etienne@unix.za.org) Received: from ThieF.home.unix.za.org (home.unix.za.org [196.41.195.16]) by sysadmin.datapro.co.za (8.12.8/8.12.8) with ESMTP id h4MK69ia081618 for ; Thu, 22 May 2003 22:06:34 +0200 (SAST) (envelope-from etienne@unix.za.org) Received: from localhost (localhost [127.0.0.1]) by ThieF.home.unix.za.org (Postfix) with ESMTP id E22513A3DE for ; Thu, 22 May 2003 22:05:50 +0200 (SAST) Received: from ThieF (localhost [127.0.0.1]) by ThieF.home.unix.za.org (Postfix) with ESMTP id 96DAF3A02B for ; Thu, 22 May 2003 22:05:43 +0200 (SAST) Content-Type: text/plain; charset="us-ascii" From: Etienne Ledoux To: freebsd-isp@freebsd.org Date: Thu, 22 May 2003 22:05:42 +0200 User-Agent: KMail/1.4.3 MIME-Version: 1.0 Content-Transfer-Encoding: quoted-printable Message-Id: <200305222205.42277.etienne@unix.za.org> X-Virus-Scanned: by AMaViS 0.3.12pre8 Subject: migrating users from an exchange server to a unix mailserver. X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list Reply-To: etienne@unix.za.org List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 22 May 2003 20:06:42 -0000 Greetings, I'm busy with project which involves merging different mail servers with differnet setups *transparently* into one "beeg" mail enviroment. One of the problems I am currently facing is merging a MS exchange server with=20 thousands of users authenticating using domain\username as their username= =2E So far I'm considering using postfix + mysql + courier-imap + vmailadmin. I've based my setup on the following guides. - http://www.probsd.net/vmail/ - http://www.marlow.dk/postfix/ But it gets a little tricky with the merge of the exchange server. - Is it possible to authenticate exchange type usernames ( domain\usernam= e ) in a unix mail enviroment. If so what should I use etc. - I would like to do this and still keep the user info in the mysql db, t= his will eventually be linked to the rest of the customer db with billing inf= o etc. which is also kept in a mysql db. Any hints ? Has anybody else done something similar, maybe my setup is wrong for this kind of thing and I should be looking at something else ? Any help will be appreciated. I've tried adding an account with domain\username into the mysql db but i= t doesn't seem to be able to authenticate with courier-pop3/imap. e. From owner-freebsd-isp@FreeBSD.ORG Thu May 22 16:30:14 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 1ABB137B401 for ; Thu, 22 May 2003 16:30:14 -0700 (PDT) Received: from inet03.citec.qld.gov.au (inet03.citec.qld.gov.au [203.5.10.10]) by mx1.FreeBSD.org (Postfix) with ESMTP id 9B9D143FDD for ; Thu, 22 May 2003 16:30:12 -0700 (PDT) (envelope-from sgcccdc@citec.qld.gov.au) Received: by inet03.citec.qld.gov.au; id h4MNUB317059; Fri, 23 May 2003 09:30:11 +1000 (EST) Received: from inetbml1.citec.qld.gov.au( 147.132.176.90) by inet03.citec.qld.gov.au via smap (V2.0) id xma016262; Fri, 23 May 03 09:29:54 +1000 Received: from guru.citec.qld.gov.au (guru.cfmu.citec.qld.gov.au [147.132.22.88]) by inetbml1.citec.qld.gov.au (Postfix) with ESMTP id 370C560175 for ; Fri, 23 May 2003 09:29:54 +1000 (EST) Received: from guru.citec.qld.gov.au (localhost.citec.qld.gov.au [127.0.0.1]) by guru.citec.qld.gov.au (Postfix) with SMTP id CCF54D92A for ; Fri, 23 May 2003 09:29:53 +1000 (EST) Date: Fri, 23 May 2003 09:29:53 +1000 From: Colin Campbell To: freebsd-isp@freebsd.org Message-Id: <20030523092953.363eaab5.sgcccdc@citec.qld.gov.au> In-Reply-To: <20030522112239.GB22219@users.munk.nu> References: <20030522112239.GB22219@users.munk.nu> Organization: Citec X-Mailer: Sylpheed version 0.8.9 (GTK+ 1.2.10; i386-unknown-freebsd4.2) Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Subject: Re: Determining what process/uid is attempting a network connection X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 22 May 2003 23:30:14 -0000 Hi, On Thu, 22 May 2003 12:22:39 +0100 Jez Hancock wrote: > Hi, > > I have a large number of user processes (eggdrops) connected to numerous > networks and recently started noticing a number of connection attempts > outgoing to a reserved network address, 0.0.13.5. My firewall logs > show: > > May 21 00:00:22 users ipmon[62]: 00:00:21.557455 fxp0 @0:12 b > 213.152.51.194,4138 -> 0.0.13.5,3333 PR tcp len 20 60 -S OUT May 21 00:00:22 > users ipmon[62]: 00:00:21.557529 fxp0 @0:12 b 213.152.51.194,4139 -> > 0.0.13.5,3334 PR tcp len 20 60 -S OUT May 21 00:00:22 users ipmon[62]: > 00:00:21.557578 fxp0 @0:12 b 213.152.51.194,4140 -> 0.0.13.5,3335 PR tcp len > 20 60 -S OUT May 21 00:00:22 users ipmon[62]: 00:00:21.557625 fxp0 @0:12 b > 213.152.51.194,4141 -> 0.0.13.5,3336 PR tcp len 20 60 -S OUT > > > How can I determine what process is spawning this connection attempt and > the uid of the process? Try "sockstat" or install "lsof". Colin -- Colin Campbell Unix Support/Postmaster/Hostmaster CITEC +61 7 3227 6334 From owner-freebsd-isp@FreeBSD.ORG Thu May 22 17:28:27 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id AA7A737B401 for ; Thu, 22 May 2003 17:28:27 -0700 (PDT) Received: from mail.munk.nu (213-152-51-194.dsl.eclipse.net.uk [213.152.51.194]) by mx1.FreeBSD.org (Postfix) with ESMTP id 0A20243F85 for ; Thu, 22 May 2003 17:28:27 -0700 (PDT) (envelope-from munk@mail.munk.nu) Received: from munk by mail.munk.nu with local (Exim 4.20) id 19J0Q5-000CMc-KA for freebsd-isp@freebsd.org; Fri, 23 May 2003 01:28:25 +0100 Date: Fri, 23 May 2003 01:28:25 +0100 From: Jez Hancock To: freebsd-isp@freebsd.org Message-ID: <20030523002825.GJ28372@users.munk.nu> Mail-Followup-To: freebsd-isp@freebsd.org References: <20030522112239.GB22219@users.munk.nu> <20030523092953.363eaab5.sgcccdc@citec.qld.gov.au> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20030523092953.363eaab5.sgcccdc@citec.qld.gov.au> User-Agent: Mutt/1.4.1i Sender: User Munk Subject: Re: Determining what process/uid is attempting a network connection X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 23 May 2003 00:28:28 -0000 On Fri, May 23, 2003 at 09:29:53AM +1000, Colin Campbell wrote: > > How can I determine what process is spawning this connection attempt and > > the uid of the process? > > Try "sockstat" or install "lsof". Cheers, just trawled through the man page for lsof and never realized it was so useful or had such an extensive array of filtering parameters. lsof -i@0.0.13.5 -r10 should hopefully catch the problematic requests. Thanks also to the others who responded in private. Jez From owner-freebsd-isp@FreeBSD.ORG Thu May 22 19:24:39 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 2F77137B401 for ; Thu, 22 May 2003 19:24:39 -0700 (PDT) Received: from mercury.jorsm.com (mercury.jorsm.com [207.112.128.9]) by mx1.FreeBSD.org (Postfix) with ESMTP id 711E643F93 for ; Thu, 22 May 2003 19:24:38 -0700 (PDT) (envelope-from jeff@mercury.jorsm.com) Received: from 127.0.0.1 (localhost [127.0.0.1]) by localhost (Postfix) with SMTP id DED4F1E1796; Thu, 22 May 2003 21:24:37 -0500 (CDT) Received: by mercury.jorsm.com (Postfix, from userid 101) id 9BA831E1A61; Thu, 22 May 2003 21:24:31 -0500 (CDT) Received: from localhost (localhost [127.0.0.1]) by mercury.jorsm.com (Postfix) with ESMTP id 98D111E1A5B; Thu, 22 May 2003 21:24:31 -0500 (CDT) Date: Thu, 22 May 2003 21:24:31 -0500 (CDT) From: Jeff Lynch To: Etienne Ledoux In-Reply-To: <200305222205.42277.etienne@unix.za.org> Message-ID: <20030522204601.T87632-100000@mercury.jorsm.com> MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII cc: freebsd-isp@freebsd.org Subject: Re: migrating users from an exchange server to a unix mailserver. X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 23 May 2003 02:24:39 -0000 On Thu, 22 May 2003, Etienne Ledoux wrote: > Greetings, > > I'm busy with project which involves merging different mail servers with > differnet setups *transparently* into one "beeg" mail enviroment. One of > the problems I am currently facing is merging a MS exchange server with > thousands of users authenticating using domain\username as their username. We did something similar, maybe I can help with part of it... > > So far I'm considering using postfix + mysql + courier-imap + vmailadmin. > I've based my setup on the following guides. More complex than ours, not sure about mailbox storage format. Is it /var/mail/username (mbox format?) > > - http://www.probsd.net/vmail/ > - http://www.marlow.dk/postfix/ > > But it gets a little tricky with the merge of the exchange server. This is where we ran into trouble (exchange that is) > > - Is it possible to authenticate exchange type usernames ( domain\username ) > in a unix mail enviroment. If so what should I use etc. Not clear on domail\username, we ignored any domain issues, maybe our situation wasn't as complex, but we just needed username and password. Most of the pws were un-available to us so we used Loftcrack to get the usernames and pws in plaintext. > - I would like to do this and still keep the user info in the mysql db, this > will eventually be linked to the rest of the customer db with billing info > etc. which is also kept in a mysql db. We didn't do this, but you can export the exchange user information (less passwd) in csv format. Maybe you could use that and cut the fields you don't need and import using phpMyAdmin? > > Any hints ? > Has anybody else done something similar, maybe my setup is wrong for this > kind > of thing and I should be looking at something else ? > > Any help will be appreciated. > > I've tried adding an account with domain\username into the mysql db but it > doesn't seem to be able to authenticate with courier-pop3/imap We were able to auth the exchange user accounts with username and password so I hacked a perl script to step through a text file with username:plaintext-password and used POP3 to grab the mailbox from the exchange server. There were some issues with exchange format so I cleaned it by running through formail (from the procmail port) and appended mbox format data for each user to be moved. Here is the script, names changed to protect the innocent. It was not designed for production environment or general distribution. If you need a different inbox format than mbox, this could get the mailboxes first and then you can convert (such as mbox2maildir conversions out there) from there. It's been a long time since we did this so I am a little fuzzy on the other details. I'm pretty sure we did things in this order: 1) created new accounts on the bigass mailserver for users to be moved 2) moved the IP address from exchange-server and aliased on bigass server (avoid DNS ttl issues for MX change) 3) allowed bigass mailserver to accept new mail for accounts in progress of being moved (UIDL support handles messages already read or not) 4) ran the script on bigass server which appends the mbox data to the newly created mail account "inbox" (/var/mail/username) 6) shut down the exchange server (woohoo!), be careful, no file locking is done by this script, but was negligible risk for us. If you use this script, you might want to change the paths to write temporary files and check things out before going live with this. ----cut here------ #!/usr/bin/perl # # use at your own risk, I disclaim all warranties of merchantability # of fitness for any particular purpose # --jeff lynch (jorsm.net) # use Mail::POP3Client; # Default pop3 host to retrive accounts from $host = "exchange-server.domain.com"; # Input file containing list of usernames and passwords one each line # of the form: # username:password $pwfile = "pop3logins.txt"; # mbox mail spool path $mail = "/var/mail"; # We use formail to make sure we write in mbox format (Exchange 5.5 does # not include a leading "From ..." line. $formail = "/usr/local/bin/formail -ds"; # Debugging $debug = 1; #$debug = 0; open(LOG, ">pop3movembox.log") or die "Can't create logfile\n"; print LOG "pop3movembox.pl started `date`\n"; open(PWF, "<$pwfile") or die "Can't open password list file $pwfile\n"; while () { chomp; ($user,$pass) = split(":",$_); # Check if we've already got a mailbox for this user @uidls = (); if ( open(MBOX,"<$mail/$user") ) { # yes, create a list of the message unique id lables print LOG "$user - mbox exists, checking UIDLS\n" if $debug; while () { chomp; $label = $1 and push(@uidls, $label) if /^X-UIDL:\s+(\w+)/; } print LOG "$user - has these UIDLS: " if $debug; foreach $j (@uidls) { print LOG $j, ", " if $debug; } print LOG "\n" if $debug; } else { print LOG "$user - mbox not found, skip local UIDL check\n" if $debug; } close(MBOX); # initiate pop3 login $pop = new Mail::POP3Client( USER => $user, PASSWORD => $pass, HOST => $host ); # if login yes if( $pop->State =~ "TRANSACTION" ) { # open mbox append mode open(MBOX, "| $formail >> $mail/$user") or die "formail died on $user\n"; # Step through messages for ($i = 1; $i <= $pop->Count; $i++) { # Ask the POP server for the message X-UIDL: header field foreach ($pop->Uidl($i)) { $ruidl = $2 if /^(\w+)\s+(\w+)/; } print LOG "$user - get msg $i UIDL: $ruidl?\n" if $debug; # Determine if current message UIDL is in the list of known UIDLs from # mbox on this server $missing = "yes"; foreach $id (@uidls) { if( $id =~ $ruidl ) { $missing = "no"; } } # If message on remote server is not in local mbox, download it if( $missing =~ /yes/ ) { # print LOG "$user - downloading msg $i, UIDL: $ruidl\n" if $debug; # Print message header foreach ($pop->Head($i)) { print MBOX $_, "\n"; } # Add the UIDL field to message header print MBOX "X-UIDL: $ruidl\n\n"; # Print the message body foreach ($pop->Body($i)) { print MBOX $_, "\n"; } # Blank line between messages print MBOX "\n"; } else { print LOG "$user - has msg $i UIDL: $ruidl, skipping\n" if $debug; } } $pop->Close(); close(MBOX); } else { # Problem logging in to remote POP server print LOG "Login failed for: $user\n"; } } close(LOG); close(PWF); ============================================================================ Jeffrey A. Lynch | JORSM Internet, Regional Internet Services email: jeff@jorsm.com | 7 Area Codes in Chicagoland and NW Indiana Voice: (219)322-2180 | 100Mbps+ Connectivity, 56K-DS3, V.90, ISDN Autoresponse: info@jorsm.com | Quality Service, Affordable Prices http://www.jorsm.com | Serving Gov, Biz, Residential Since 1995 From owner-freebsd-isp@FreeBSD.ORG Fri May 23 03:46:55 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id B182037B401 for ; Fri, 23 May 2003 03:46:55 -0700 (PDT) Received: from lapdance.yazzy.org (mail.wrs.no [213.236.173.130]) by mx1.FreeBSD.org (Postfix) with ESMTP id 9E8A243FBD for ; Fri, 23 May 2003 03:46:54 -0700 (PDT) (envelope-from yazzy@ezunix.org) Received: from localhost ([127.0.0.1] helo=lapdance) by lapdance.yazzy.org with smtp (Exim 4.14) id 19JA2w-000KIY-9y; Fri, 23 May 2003 12:45:10 +0200 Date: Fri, 23 May 2003 12:45:09 +0200 From: Martin Jessa To: Terje Elde , freebsd-isp@freebsd.org Message-Id: <20030523124509.62b6877b.yazzy@ezunix.org> In-Reply-To: <20030523081947.GA13160@tiger.thinksec.no> References: <20030522134727.1adb7463.yazzy@ezunix.org> <20030523081947.GA13160@tiger.thinksec.no> Organization: ezunix.org X-Mailer: Sylpheed version 0.8.10claws (GTK+ 1.2.10; i386-portbld-freebsd4.7) Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Subject: Re: Radius auth X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 23 May 2003 10:46:56 -0000 Hei Terje. Yes, it seems like our setups are pretty similar. I use FreeBSD 5.0 with mpd creating pptp vlan tunnels with both 40 and 128 bit encryption. I allowed 40 bit encryption since some of our WLAN users still use Windows 9x which doesnt support any sane form for data protection... I have a few IP-zones connected to a main server with mpd running on it. Some of the zones need to talk to AP's inbetween them and the main server becouse of the mountainous terrain. I dont have any WEP encryption enabled since it's a joke and would just slow down the traffic. I am relying on what the security of the vpn tunnels can provide. The main server acts as DHCPd, DNS, mail rely and firewall/gateway. As it is now, users have their usernames and passwords stored in text files. The windows clients create a "plain" pptp vpn tunnel to the main server. The simplicity of the setup is one of the main issues. I didnt do any particular tweaking on the server. The maxuser is set to 64, no custom sysctl settings. The value of mbuf clusters never goes insane. I have 100 ng devices set up for usage but the clients do not seem to use more then 10 at a time. The performance seems to be ok, I am getting 2.4 mbit on each of the nodes which is what the SDSL INET link uses. What I really need to figure out now is how to enable bw throttling based on the users's usernames. So some of the users could get say 128 kbit and some 1 mbit without reconfiguring of the DUMMYNET or ALTQ settings manually for each of the users. This is also pretty impossible since IP's of the users are handed out by our DHCP server and static IP allocation can be only done knowing MAC-addresses of the client cards, which too may change. I am open to use any *NIX to make it work or any hardware sollution as long as it's not windows based (as long as it works without periodic reboots). Feel free to contact me any time Terje. mvh, Martin :) On Fri, 23 May 2003 10:19:47 +0200 Terje Elde wrote: > On Thu, May 22, 2003 at 01:47:27PM +0200, Martin Jessa wrote: > > My question may seem to be a bit off the list but I know that people here have both experience and knowledge to help me out. > > I have Soekris boxes placed different places to serve WLAN access. > > All of them are connected to a main FreeBSD server with mpd to create vpn tunnels and authenticate users also acting as router and firewall/gateway. > > I would like to have a central controll center where I could add new accounts, check the account status, give the users certain bandtwith based on their username and possibly handle billing. Maybe with SQL or LDAP backend. > > The best way would be to have all that enabled via web based interface. > > Is there any Radius setup supporting it ? > > Hi, > > I'm doing this at my work. We're using mpd, with PPTP from windows clients. > On the authentication side, we've set up MS-CHAPv2, so we get MPPE 128-bit > stateless encryption to the clients. > > We're storing the username/password combos in a PostgreSQL database, and we're > using FreeRadius for authenticating against it. It works really well, and > once it's up and running, it runs pretty smooth. > > I should note that I think the FreeRadius in ports is a bit out of date, and > the learning curve can be steep. > > > Let me know if you want any help with this. > > > I'm a bit curious about your mpd setup. I've been experiencing that when > using mpd and pptp over wireless, I get a crawling performance, and somewhere > in the FreeBSD tcp/ip stack I end up runnign out of buffers. Have you had any > problems with this? > > > Since we're runnign so similar setups, would you mind if I take note of your > email for future reference? > > Hope this helps, > Terje > -- > email: terje@ipzone.biz mobil: +47 40 83 10 24 > telefon: +47 67 55 04 00 fax: +47 67 55 04 01 From owner-freebsd-isp@FreeBSD.ORG Fri May 23 09:19:22 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 3251737B401 for ; Fri, 23 May 2003 09:19:22 -0700 (PDT) Received: from ns2.wananchi.com (ns2.wananchi.com [62.8.64.4]) by mx1.FreeBSD.org (Postfix) with ESMTP id CA4E743F85 for ; Fri, 23 May 2003 09:19:20 -0700 (PDT) (envelope-from wash@wananchi.com) Received: from wash by ns2.wananchi.com with local (Exim 4.20 #5 (FreeBSD)) id 19JFG0-0004TV-EH for ; Fri, 23 May 2003 19:19:00 +0300 Date: Fri, 23 May 2003 19:19:00 +0300 From: ODHIAMBO Washington To: freebsd-isp@freebsd.org Message-ID: <20030523161900.GA12569@ns2.wananchi.com> Mail-Followup-To: ODHIAMBO Washington , freebsd-isp@freebsd.org Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline X-Disclaimer: Any views expressed in this message,where not explicitly attributed otherwise, are mine alone!. X-Fortune: "Cable is not a luxury, since many areas have poor TV reception." -- The mayor of Tucson, Arizona, 1989 X-Operating-System: FreeBSD 4.8-STABLE i386 X-Best-Window-Manager: Blackbox X-Mailer: Mutt 1.5.3i (2002-12-17) X-Designation: Systems Administrator, Wananchi Online Ltd. X-Location: Nairobi, KE, East Africa. X-Uptime: 7:14PM up 6 days, 19:24, 4 users, load averages: 0.15, 0.16, 0.17 User-Agent: Mutt/1.5.3i X-SA-Exim-Mail-From: wash@wananchi.com X-SA-Exim-Scanned: No; SAEximRunCond expanded to false Subject: Expiring old mail in Maildir/ X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 23 May 2003 16:19:22 -0000 Hiya ISP Admins, Apart from using `find`, I am wondering if someone already owns the wheel that can expire mail older than N number of days from users Maildir. I used to use one by Phil Male of Information Systems Engineering Group which was well adapted for mbox-type mailboxes, but now I have changed to Maildir/ Thanks in advance for any pointers. -Wash -- Odhiambo Washington "The box said 'Requires Wananchi Online Ltd. www.wananchi.com Windows 95, NT, or better,' Tel: +254 2 313985-9 +254 2 313922 so I installed FreeBSD." GSM: +254 72 743223 +254 733 744121 This sig is McQ! :-) Stult's Report: Our problems are mostly behind us. What we have to do now is fight the solutions. From owner-freebsd-isp@FreeBSD.ORG Fri May 23 09:27:13 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 9BAC837B401 for ; Fri, 23 May 2003 09:27:13 -0700 (PDT) Received: from ip68-2-98-210.ph.ph.cox.net (ip68-2-89-14.ph.ph.cox.net [68.2.89.14]) by mx1.FreeBSD.org (Postfix) with ESMTP id CC4A143F85 for ; Fri, 23 May 2003 09:27:12 -0700 (PDT) (envelope-from joeym@ip68-2-98-210.ph.ph.cox.net) Received: (from joeym@localhost) by ip68-2-98-210.ph.ph.cox.net (8.11.6/8.11.6) id h4NGWpa15951; Fri, 23 May 2003 16:32:51 GMT (envelope-from joeym) Date: Fri, 23 May 2003 09:32:51 -0700 From: Joe Miller To: ODHIAMBO Washington , freebsd-isp@freebsd.org Message-ID: <20030523163250.GS51524@joeym.net> References: <20030523161900.GA12569@ns2.wananchi.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20030523161900.GA12569@ns2.wananchi.com> User-Agent: Mutt/1.3.25i Subject: Re: Expiring old mail in Maildir/ X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list Reply-To: joeym@joeym.net List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 23 May 2003 16:27:13 -0000 http://archivemail.sourceforge.net/ Usage: archivemail [options] mailbox [mailbox...] Moves old mail in IMAP, mbox, MH or maildir-format mailboxes to an mbox-format mailbox compressed with gzip. Options are as follows: -a, --days-new=NUM archive messages _newer_ than NUM days (default: 30) -A, --date-new=DATE archive messages _newer_ than DATE -d, --days=NUM archive messages older than NUM days (default: 180) -D, --date=DATE archive messages older than DATE -o, --output-dir=DIR directory to store archives (default: same as original) -s, --suffix=NAME suffix for archive filename (default: '_archive') -S, --size=NUM only archive messages NUM bytes or larger -n, --dry-run don't write to anything - just show what would be done -u, --preserve-unread never archive unread messages --delete delete rather than archive old mail (use with caution!) --include-flagged messages flagged important can also be archived --no-compress do not compress archives with gzip --warn-duplicate warn about duplicate Message-IDs in the same mailbox -v, --verbose report lots of extra debugging information -q, --quiet quiet mode - print no statistics (suitable for crontab) -V, --version display version information -h, --help display this message Example: archivemail linux-kernel This will move all messages older than 180 days to a 'mbox' mailbox called 'linux-kernel_archive.gz', deleting them from the original 'linux-kernel' mailbox. If the 'linux-kernel_archive.gz' mailbox already exists, the newly archived messages are appended. To archive IMAP mailboxes, format your mailbox argument like this: imap://username:password@server/mailbox -- Joe Miller On Fri, May 23, 2003 at 07:19:00PM +0300, ODHIAMBO Washington wrote: // // Hiya ISP Admins, // // // Apart from using `find`, I am wondering if someone already owns the wheel // that can expire mail older than N number of days from users Maildir. // I used to use one by Phil Male of Information Systems Engineering Group // which was well adapted for mbox-type mailboxes, but now I have changed to // Maildir/ // // Thanks in advance for any pointers. // // // -Wash // // -- // Odhiambo Washington "The box said 'Requires // Wananchi Online Ltd. www.wananchi.com Windows 95, NT, or better,' // Tel: +254 2 313985-9 +254 2 313922 so I installed FreeBSD." // GSM: +254 72 743223 +254 733 744121 This sig is McQ! :-) // // // Stult's Report: // Our problems are mostly behind us. What we have to do now is // fight the solutions. // _______________________________________________ // freebsd-isp@freebsd.org mailing list // http://lists.freebsd.org/mailman/listinfo/freebsd-isp // To unsubscribe, send any mail to "freebsd-isp-unsubscribe@freebsd.org" From owner-freebsd-isp@FreeBSD.ORG Fri May 23 09:38:17 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 4363037B401 for ; Fri, 23 May 2003 09:38:17 -0700 (PDT) Received: from ns2.wananchi.com (ns2.wananchi.com [62.8.64.4]) by mx1.FreeBSD.org (Postfix) with ESMTP id 0219743F93 for ; Fri, 23 May 2003 09:38:16 -0700 (PDT) (envelope-from wash@wananchi.com) Received: from wash by ns2.wananchi.com with local (Exim 4.20 #5 (FreeBSD)) id 19JFYJ-0007eG-N2 for ; Fri, 23 May 2003 19:37:55 +0300 Date: Fri, 23 May 2003 19:37:55 +0300 From: ODHIAMBO Washington To: freebsd-isp@freebsd.org Message-ID: <20030523163755.GB12569@ns2.wananchi.com> Mail-Followup-To: ODHIAMBO Washington , freebsd-isp@freebsd.org References: <20030523161900.GA12569@ns2.wananchi.com> <20030523163250.GS51524@joeym.net> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20030523163250.GS51524@joeym.net> X-Disclaimer: Any views expressed in this message,where not explicitly attributed otherwise, are mine alone!. X-Fortune: "Cable is not a luxury, since many areas have poor TV reception." -- The mayor of Tucson, Arizona, 1989 X-Operating-System: FreeBSD 4.8-STABLE i386 X-Best-Window-Manager: Blackbox X-Mailer: Mutt 1.5.3i (2002-12-17) X-Designation: Systems Administrator, Wananchi Online Ltd. X-Location: Nairobi, KE, East Africa. X-Uptime: 7:35PM up 6 days, 19:44, 4 users, load averages: 0.25, 0.17, 0.18 User-Agent: Mutt/1.5.3i X-SA-Exim-Mail-From: wash@wananchi.com X-SA-Exim-Scanned: No; SAEximRunCond expanded to false Subject: Re: Expiring old mail in Maildir/ X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 23 May 2003 16:38:17 -0000 * Joe Miller [20030523 19:26]: wrote: > http://archivemail.sourceforge.net/ > > Usage: archivemail [options] mailbox [mailbox...] > Moves old mail in IMAP, mbox, MH or maildir-format mailboxes to an > mbox-format mailbox compressed with gzip. I would like to DELETE the messages and if possible, notify the owner the same way "expire_mail" did. If there are no other alternatives then I will seriously look at this one, but I really need to "put a check on space usage". Archiving them still uses space. I know you will suggest I can delete the archive after creating it ;-) Thanks -Wash -- Odhiambo Washington "The box said 'Requires Wananchi Online Ltd. www.wananchi.com Windows 95, NT, or better,' Tel: +254 2 313985-9 +254 2 313922 so I installed FreeBSD." GSM: +254 72 743223 +254 733 744121 This sig is McQ! :-) Uncle Ed's Rule of Thumb: Never use your thumb for a rule. You'll either hit it with a hammer or get a splinter in it. From owner-freebsd-isp@FreeBSD.ORG Fri May 23 09:45:41 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 9861137B401 for ; Fri, 23 May 2003 09:45:41 -0700 (PDT) Received: from ip68-2-98-210.ph.ph.cox.net (ip68-2-89-14.ph.ph.cox.net [68.2.89.14]) by mx1.FreeBSD.org (Postfix) with ESMTP id EB81143F93 for ; Fri, 23 May 2003 09:45:40 -0700 (PDT) (envelope-from joeym@ip68-2-98-210.ph.ph.cox.net) Received: (from joeym@localhost) by ip68-2-98-210.ph.ph.cox.net (8.11.6/8.11.6) id h4NGpVd16141; Fri, 23 May 2003 16:51:31 GMT (envelope-from joeym) Date: Fri, 23 May 2003 09:51:31 -0700 From: Joe Miller To: ODHIAMBO Washington , freebsd-isp@freebsd.org Message-ID: <20030523165130.GT51524@joeym.net> References: <20030523161900.GA12569@ns2.wananchi.com> <20030523163250.GS51524@joeym.net> <20030523163755.GB12569@ns2.wananchi.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20030523163755.GB12569@ns2.wananchi.com> User-Agent: Mutt/1.3.25i Subject: Re: Expiring old mail in Maildir/ X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list Reply-To: joeym@joeym.net List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 23 May 2003 16:45:41 -0000 You didn't read the full usage summary for archivemail: --delete delete rather than archive old mail (use with caution!) -- Joe Miller On Fri, May 23, 2003 at 07:37:55PM +0300, ODHIAMBO Washington wrote: // * Joe Miller [20030523 19:26]: wrote: // > http://archivemail.sourceforge.net/ // > // > Usage: archivemail [options] mailbox [mailbox...] // > Moves old mail in IMAP, mbox, MH or maildir-format mailboxes to an // > mbox-format mailbox compressed with gzip. // // I would like to DELETE the messages and if possible, notify the owner // the same way "expire_mail" did. // // If there are no other alternatives then I will seriously look at this // one, but I really need to "put a check on space usage". Archiving them // still uses space. // // I know you will suggest I can delete the archive after creating it ;-) // // // Thanks // // -Wash // // -- // Odhiambo Washington "The box said 'Requires // Wananchi Online Ltd. www.wananchi.com Windows 95, NT, or better,' // Tel: +254 2 313985-9 +254 2 313922 so I installed FreeBSD." // GSM: +254 72 743223 +254 733 744121 This sig is McQ! :-) // // // Uncle Ed's Rule of Thumb: // Never use your thumb for a rule. You'll either hit it with a // hammer or get a splinter in it. // _______________________________________________ // freebsd-isp@freebsd.org mailing list // http://lists.freebsd.org/mailman/listinfo/freebsd-isp // To unsubscribe, send any mail to "freebsd-isp-unsubscribe@freebsd.org" From owner-freebsd-isp@FreeBSD.ORG Fri May 23 09:47:50 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 3DB2437B401 for ; Fri, 23 May 2003 09:47:50 -0700 (PDT) Received: from mail.one2netmail.co.ug (mail.one2netmail.co.ug [216.250.215.80]) by mx1.FreeBSD.org (Postfix) with ESMTP id 3346643F75 for ; Fri, 23 May 2003 09:47:37 -0700 (PDT) (envelope-from ziggy@one2net.co.ug) Received: from localhost (localhost [127.0.0.1]) by mail.one2netmail.co.ug (Postfix) with ESMTP id 4ECD368D6E; Fri, 23 May 2003 19:47:28 +0300 (EAT) Received: from mail.one2netmail.co.ug ([127.0.0.1]) by localhost (mail.one2netmail.co.ug [127.0.0.1:10024]) (amavisd-new) with ESMTP id 04131-04; Fri, 23 May 2003 19:47:22 +0300 (EAT) Received: from one2net.co.ug (localhost [127.0.0.1]) by mail.one2netmail.co.ug (Postfix) with SMTP id C70BF68D33; Fri, 23 May 2003 19:47:21 +0300 (EAT) Received: from 216.250.215.27 (SquirrelMail authenticated user ziggy@one2net.co.ug) by webmail.sanyutel.com with HTTP; Fri, 23 May 2003 19:47:21 +0300 (EAT) Message-ID: <63294.216.250.215.27.1053708441.squirrel@webmail.sanyutel.com> Date: Fri, 23 May 2003 19:47:21 +0300 (EAT) From: To: In-Reply-To: <20030523163755.GB12569@ns2.wananchi.com> References: <20030523163755.GB12569@ns2.wananchi.com> X-Priority: 3 Importance: Normal X-MSMail-Priority: Normal X-Mailer: SquirrelMail (version 1.2.2) MIME-Version: 1.0 Content-Type: text/plain; charset=iso-8859-1 Content-Transfer-Encoding: 8bit X-Virus-Scanned: by amavisd-new cc: freebsd-isp@freebsd.org Subject: Re: Expiring old mail in Maildir/ X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 23 May 2003 16:47:50 -0000 if you are worried about space wouldnt something like setquota help ??? so that the user knows how much space they can actually use up, also makes life easier for you the administrator. cheers David > * Joe Miller [20030523 19:26]: wrote: >> http://archivemail.sourceforge.net/ >> >> Usage: archivemail [options] mailbox [mailbox...] >> Moves old mail in IMAP, mbox, MH or maildir-format mailboxes to an >> mbox-format mailbox compressed with gzip. > > I would like to DELETE the messages and if possible, notify the owner > the same way "expire_mail" did. > > If there are no other alternatives then I will seriously look at this > one, but I really need to "put a check on space usage". Archiving them > still uses space. > > I know you will suggest I can delete the archive after creating it ;-) > > > Thanks > > -Wash > > -- > Odhiambo Washington "The box said 'Requires > Wananchi Online Ltd. www.wananchi.com Windows 95, NT, or better,' > Tel: +254 2 313985-9 +254 2 313922 so I installed FreeBSD." > GSM: +254 72 743223 +254 733 744121 This sig is McQ! :-) > > > Uncle Ed's Rule of Thumb: > Never use your thumb for a rule. You'll either hit it with a > hammer or get a splinter in it. > _______________________________________________ > freebsd-isp@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-isp > To unsubscribe, send any mail to "freebsd-isp-unsubscribe@freebsd.org" From owner-freebsd-isp@FreeBSD.ORG Sat May 24 00:14:24 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id F036E37B401 for ; Sat, 24 May 2003 00:14:24 -0700 (PDT) Received: from ns2.wananchi.com (ns2.wananchi.com [62.8.64.4]) by mx1.FreeBSD.org (Postfix) with ESMTP id ACD7243FA3 for ; Sat, 24 May 2003 00:14:23 -0700 (PDT) (envelope-from wash@wananchi.com) Received: from wash by ns2.wananchi.com with local (Exim 4.20 #5 (FreeBSD)) id 19JTE7-000H9J-7C for ; Sat, 24 May 2003 10:13:59 +0300 Date: Sat, 24 May 2003 10:13:59 +0300 From: ODHIAMBO Washington To: freebsd-isp@freebsd.org Message-ID: <20030524071359.GG12569@ns2.wananchi.com> Mail-Followup-To: ODHIAMBO Washington , freebsd-isp@freebsd.org References: <20030523163755.GB12569@ns2.wananchi.com> <63294.216.250.215.27.1053708441.squirrel@webmail.sanyutel.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <63294.216.250.215.27.1053708441.squirrel@webmail.sanyutel.com> X-Disclaimer: Any views expressed in this message,where not explicitly attributed otherwise, are mine alone!. X-Fortune: "Cable is not a luxury, since many areas have poor TV reception." -- The mayor of Tucson, Arizona, 1989 X-Operating-System: FreeBSD 4.8-STABLE i386 X-Best-Window-Manager: Blackbox X-Mailer: Mutt 1.5.3i (2002-12-17) X-Designation: Systems Administrator, Wananchi Online Ltd. X-Location: Nairobi, KE, East Africa. X-Uptime: 10:13AM up 7 days, 10:22, 5 users, load averages: 1.24, 1.15, 1.15 User-Agent: Mutt/1.5.3i X-SA-Exim-Mail-From: wash@wananchi.com X-SA-Exim-Scanned: No; SAEximRunCond expanded to false Subject: Re: Expiring old mail in Maildir/ X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 24 May 2003 07:14:25 -0000 * ziggy@one2net.co.ug [20030523 19:47]: wrote: > > if you are worried about space wouldnt something like setquota help ??? > so that the user knows how much space they can actually use up, also makes > life easier for you the administrator. > > cheers > > David These users don't have shell accounts, and I do not want to use system quotas. I use MTA-implemented quota. -Wash -- Odhiambo Washington "The box said 'Requires Wananchi Online Ltd. www.wananchi.com Windows 95, NT, or better,' Tel: +254 2 313985-9 +254 2 313922 so I installed FreeBSD." GSM: +254 72 743223 +254 733 744121 This sig is McQ! :-) One monk said to the other, "The fish has flopped out of the net! How will it live?" The other said, "When you have gotten out of the net, I'll tell you." From owner-freebsd-isp@FreeBSD.ORG Sat May 24 09:13:11 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 0B5C437B401 for ; Sat, 24 May 2003 09:13:11 -0700 (PDT) Received: from pop016.verizon.net (pop016pub.verizon.net [206.46.170.173]) by mx1.FreeBSD.org (Postfix) with ESMTP id ED7CB43F3F for ; Sat, 24 May 2003 09:13:09 -0700 (PDT) (envelope-from cswiger@mac.com) Received: from mac.com ([129.44.60.214]) by pop016.verizon.net (InterMail vM.5.01.05.33 201-253-122-126-133-20030313) with ESMTP id <20030524161309.JLD3199.pop016.verizon.net@mac.com>; Sat, 24 May 2003 11:13:09 -0500 Message-ID: <3ECF9A17.5010807@mac.com> Date: Sat, 24 May 2003 12:13:11 -0400 From: Chuck Swiger Organization: The Courts of Chaos User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.4b) Gecko/20030507 X-Accept-Language: en-us, en MIME-Version: 1.0 To: ODHIAMBO Washington References: <20030523163755.GB12569@ns2.wananchi.com> <63294.216.250.215.27.1053708441.squirrel@webmail.sanyutel.com> <20030524071359.GG12569@ns2.wananchi.com> In-Reply-To: <20030524071359.GG12569@ns2.wananchi.com> X-Enigmail-Version: 0.75.0.0 X-Enigmail-Supports: pgp-inline, pgp-mime Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit X-Authentication-Info: Submitted using SMTP AUTH at pop016.verizon.net from [129.44.60.214] at Sat, 24 May 2003 11:13:09 -0500 cc: freebsd-isp@freebsd.org Subject: Re: Expiring old mail in Maildir/ X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 24 May 2003 16:13:11 -0000 ODHIAMBO Washington wrote: > * ziggy@one2net.co.ug [20030523 19:47]: wrote: >>if you are worried about space wouldnt something like setquota help ??? >>so that the user knows how much space they can actually use up, also makes >>life easier for you the administrator. > > These users don't have shell accounts, and I do not want to use system > quotas. I use MTA-implemented quota. MTA's generally don't implement user quotas. In fact, a MTA like sendmail doesn't even perform local delivery: the LDA, such as procmail or mail.local does. Procmail or mail.local doesn't implement quotas either: they depend on the system to provide that functionality. -Chuck From owner-freebsd-isp@FreeBSD.ORG Sat May 24 13:45:36 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 561EA37B47C for ; Sat, 24 May 2003 13:45:34 -0700 (PDT) Received: from p3.saignon.net (66-146-166-52.skyriver.net [66.146.166.52]) by mx1.FreeBSD.org (Postfix) with ESMTP id 9D95743F85 for ; Sat, 24 May 2003 13:45:33 -0700 (PDT) (envelope-from tony@saign.com) Received: (qmail 7186 invoked by uid 89); 24 May 2003 20:44:39 -0000 Received: from unknown (HELO frankenmobl) (tony@saign.com@127.0.0.1) by localhost with SMTP; 24 May 2003 20:44:39 -0000 From: "Tony Saign" To: Date: Sat, 24 May 2003 13:45:21 -0700 Message-ID: <000501c32235$67aa9730$2f01a8c0@frankenmobl> MIME-Version: 1.0 X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook, Build 10.0.4024 Importance: Normal X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2800.1165 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit X-Content-Filtered-By: Mailman/MimeDel 2.1.1 Subject: FreeBSD & NoCatAuth anyone using it?? X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 24 May 2003 20:45:36 -0000 http://nocat.net/ Looks like a good wireless gateway package, wondering if any FreeBSD people are using?? -Tony From owner-freebsd-isp@FreeBSD.ORG Sat May 24 14:16:49 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 20D3C37B401 for ; Sat, 24 May 2003 14:16:49 -0700 (PDT) Received: from mail.npubs.com (mail.writemehere.com [207.111.208.224]) by mx1.FreeBSD.org (Postfix) with ESMTP id 370EB43F75 for ; Sat, 24 May 2003 14:16:48 -0700 (PDT) (envelope-from nielsen@memberwebs.com) Resent-Message-Id: From: "Nielsen" To: "Chuck Swiger" , "ODHIAMBO Washington" References: <20030523163755.GB12569@ns2.wananchi.com><63294.216.250.215.27.1053708441.squirrel@webmail.sanyutel.com><20030524071359.GG12569@ns2.wananchi.com> <3ECF9A17.5010807@mac.com> MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2600.0000 X-MIMEOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Message-Id: <20030524212008.877273FF33A@mail.npubs.com> Resent-Date: Sat, 24 May 2003 21:20:09 +0000 (GMT) Resent-From: nielsen@memberwebs.com (Postfix Filters) cc: freebsd-isp@freebsd.org Subject: Re: Expiring old mail in Maildir/ X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Date: Sat, 24 May 2003 21:16:49 -0000 X-List-Received-Date: Sat, 24 May 2003 21:16:49 -0000 postfix can provide user quotas. Not everyone is using LDA's antiquated enough to require a uid on the system for every account. Cheers Nate ----- Original Message ----- From: "Chuck Swiger" To: "ODHIAMBO Washington" Cc: Sent: Saturday, May 24, 2003 10:13 Subject: Re: Expiring old mail in Maildir/ > ODHIAMBO Washington wrote: > > * ziggy@one2net.co.ug [20030523 19:47]: wrote: > >>if you are worried about space wouldnt something like setquota help ??? > >>so that the user knows how much space they can actually use up, also makes > >>life easier for you the administrator. > > > > These users don't have shell accounts, and I do not want to use system > > quotas. I use MTA-implemented quota. > > MTA's generally don't implement user quotas. In fact, a MTA like > sendmail doesn't even perform local delivery: the LDA, such as procmail > or mail.local does. Procmail or mail.local doesn't implement quotas > either: they depend on the system to provide that functionality. > > -Chuck > > _______________________________________________ > freebsd-isp@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-isp > To unsubscribe, send any mail to "freebsd-isp-unsubscribe@freebsd.org" From owner-freebsd-isp@FreeBSD.ORG Sat May 24 15:17:40 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id B2F9737B401 for ; Sat, 24 May 2003 15:17:40 -0700 (PDT) Received: from out001.verizon.net (out001pub.verizon.net [206.46.170.140]) by mx1.FreeBSD.org (Postfix) with ESMTP id 88BBD43F85 for ; Sat, 24 May 2003 15:17:39 -0700 (PDT) (envelope-from cswiger@mac.com) Received: from mac.com ([129.44.60.214]) by out001.verizon.net (InterMail vM.5.01.05.33 201-253-122-126-133-20030313) with ESMTP id <20030524221738.XYOU12592.out001.verizon.net@mac.com> for ; Sat, 24 May 2003 17:17:38 -0500 Message-ID: <3ECFEF83.4000901@mac.com> Date: Sat, 24 May 2003 18:17:39 -0400 From: Chuck Swiger Organization: The Courts of Chaos User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.4b) Gecko/20030507 X-Accept-Language: en-us, en MIME-Version: 1.0 To: freebsd-isp@freebsd.org References: <20030523163755.GB12569@ns2.wananchi.com><63294.216.250.215.27.1053708441.squirrel@webmail.sanyutel.com><20030524071359.GG12569@ns2.wananchi.com> <3ECF9A17.5010807@mac.com> <20030524212008.877273FF33A@mail.npubs.com> In-Reply-To: <20030524212008.877273FF33A@mail.npubs.com> X-Enigmail-Version: 0.75.0.0 X-Enigmail-Supports: pgp-inline, pgp-mime Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit X-Authentication-Info: Submitted using SMTP AUTH at out001.verizon.net from [129.44.60.214] at Sat, 24 May 2003 17:17:38 -0500 Subject: Re: Expiring old mail in Maildir/ X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 24 May 2003 22:17:41 -0000 Nielsen wrote: > postfix can provide user quotas. Not everyone is using LDA's > antiquated enough to require a uid on the system for every account. The most constructive response I can make is that I phased my comment carefully; the part of postfix which binds to port 25 and speaks SMTP is distinguishable from the part of postfix which does quotas, true? -- -Chuck From owner-freebsd-isp@FreeBSD.ORG Sat May 24 16:07:22 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id D739037B401 for ; Sat, 24 May 2003 16:07:22 -0700 (PDT) Received: from loops.nilpotent.org (loops.nilpotent.org [12.17.163.70]) by mx1.FreeBSD.org (Postfix) with SMTP id E19C743F75 for ; Sat, 24 May 2003 16:07:21 -0700 (PDT) (envelope-from fn@hungry.org) Received: (qmail 10385 invoked from network); 24 May 2003 23:07:20 -0000 Received: from unknown (root@203.215.181.53) by loops.nilpotent.org with QMTP; 24 May 2003 23:07:20 -0000 Received: (qmail 949 invoked by uid 500); 24 May 2003 23:05:16 -0000 To: etienne@unix.za.org References: <200305222205.42277.etienne@unix.za.org> X-nil: X-Useless-info: System load is 0.08 with 65 processes active. X-Neuromancer: You wanna wait? From: Faried Nawaz Organization: Integral Domains User-Agent: Gnus/5.090019 (Oort Gnus v0.19) XEmacs/21.4 (Artificial Intelligence, berkeley-unix) Date: Sun, 25 May 2003 04:05:16 +0500 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii cc: freebsd-isp@freebsd.org Subject: Re: migrating users from an exchange server to a unix mailserver. X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 24 May 2003 23:07:23 -0000 Etienne Ledoux writes: > - Is it possible to authenticate exchange type usernames (domain\username) > in a unix mail enviroment. If so what should I use etc. There are several ways of doing this, but they all require you to hack on some code. #1: Use /usr/ports/security/pam_smb to authenticate the users. You may need to hack your POP server to use PAM. This is probably the cleanest solution. #2: Hack your POP server to read in the username/password, and then connect to the exchange server to authenticate them. Works okay as long as you fork off a POP server instance for every connecting client. #3: Install samba on your mail server, add the machine to your Windows domain, and hack your POP server to use libsmbclient. This is a variant of #1. #4: /usr/ports/www/squid has some NT authentication code as a separate module. You could hack your POP server to make use of that. > - I would like to do this and still keep the user info in the mysql db, > this will eventually be linked to the rest of the customer db with billing > info etc. which is also kept in a mysql db. By "user info" I assume you mean username ("domain\user") and password. I don't know how you can make your mysql db your authoritative authentication source if users can change their password elsewhere (ie, by changing it on the Windows domain). Perhaps someone else can chime in here... Now, moving mail across is a lot easier. I see Jeff Lynch has mailed a script to do this. I had to do something similar, essentially, when I shifted my users over from an old Lotus Notes server to a qmail+vpopmail system (only my code used IMAP to move mail, not POP). Using any of the above schemes, you can grab the username/password, and then use that info to move mail over. Faried. -- The Great GNU has arrived, infidels, behold his wrath ! "If a MOO runs on a port no one accesses, does it run?"