From owner-freebsd-isp Sun Jul 5 02:15:08 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id CAA11587 for freebsd-isp-outgoing; Sun, 5 Jul 1998 02:15:08 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from tweetie.online.barbour-index.co.uk (tweetie-pipex.online.barbour-index.co.uk [194.129.192.48]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id CAA11554; Sun, 5 Jul 1998 02:14:57 -0700 (PDT) (envelope-from scot@planet-three.com) Received: from localhost (scot@localhost) by tweetie.online.barbour-index.co.uk (8.8.8/8.8.8) with SMTP id KAA19355; Sun, 5 Jul 1998 10:14:58 +0100 (BST) (envelope-from scot@planet-three.com) X-Authentication-Warning: tweetie.online.barbour-index.co.uk: scot owned process doing -bs Date: Sun, 5 Jul 1998 10:14:58 +0100 (BST) From: Scot Elliott X-Sender: scot@tweetie.online.barbour-index.co.uk To: freebsd-isp@FreeBSD.ORG, freebsd-security@FreeBSD.ORG Subject: Security Alert: Qualcomm POP Server Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Morning all. I caught someone last night with a root shell on our mail server. I traced it back to somewhere in the US, but unfortunately got locked out and the log files removed before I had time to fix it ;-( I shut the machine down remotely by mounting /usr over NFS and changing /usr/libexec/atrun to a shell script that run /sbin/shutdown (near huh? ;-) Anyway - the point is that is looks like some kind of buffer overflow in the POP daemon that ships with FreeBSD 2.2.6. I noticed lots of ^P^P^P... messages from popper in the log file before it was removed. There was an extra line in /etc/inetd.conf which ran a shell as root on some port I wasn't using (talk I think). So I'm guessing that the exploit allows anyone to run any command as root. Nice. Whomever it was was having a whale of a time with my C compiler for some reason... very dodgy. If I can find out the source of this then I'd like to follow it up. Does anyone have experience of chasing this sort of thing from across the US border? Also, of course, everyone should check their popper version. Cheers Yours - Scot. ----------------------------------------------------------------------------- Scot Elliott (scot@poptart.org, scot@nic.cx) | Work: +44 (0)171 7046777 PGP fingerprint: FCAE9ED3A234FEB59F8C7F9DDD112D | Home: +44 (0)181 8961019 ----------------------------------------------------------------------------- Public key available by finger at: finger scot@poptart.org or at: http://www.poptart.org/pgpkey.html To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sun Jul 5 03:03:28 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id DAA16660 for freebsd-isp-outgoing; Sun, 5 Jul 1998 03:03:28 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from freebie.lemis.com (freebie.lemis.com [139.130.136.133] (may be forged)) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id DAA16649; Sun, 5 Jul 1998 03:03:02 -0700 (PDT) (envelope-from grog@freebie.lemis.com) Received: (from grog@localhost) by freebie.lemis.com (8.9.0/8.9.0) id TAA19346; Sun, 5 Jul 1998 19:32:50 +0930 (CST) Message-ID: <19980705193250.N18970@freebie.lemis.com> Date: Sun, 5 Jul 1998 19:32:50 +0930 From: Greg Lehey To: Scot Elliott , freebsd-isp@FreeBSD.ORG, freebsd-security@FreeBSD.ORG Subject: Re: Security Alert: Qualcomm POP Server References: Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 0.91.1i In-Reply-To: ; from Scot Elliott on Sun, Jul 05, 1998 at 10:14:58AM +0100 WWW-Home-Page: http://www.lemis.com/~grog Organization: LEMIS, PO Box 460, Echunga SA 5153, Australia Phone: +61-8-8388-8286 Fax: +61-8-8388-8725 Mobile: +61-41-739-7062 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Sunday, 5 July 1998 at 10:14:58 +0100, Scot Elliott wrote: > Morning all. > > I caught someone last night with a root shell on our mail server. I > traced it back to somewhere in the US, but unfortunately got locked out > and the log files removed before I had time to fix it ;-( > > I shut the machine down remotely by mounting /usr over NFS and changing > /usr/libexec/atrun to a shell script that run /sbin/shutdown (near huh? > ;-) > > Anyway - the point is that is looks like some kind of buffer overflow in > the POP daemon that ships with FreeBSD 2.2.6. I noticed lots of ^P^P^P... > messages from popper in the log file before it was removed. There was an > extra line in /etc/inetd.conf which ran a shell as root on some port I > wasn't using (talk I think). So I'm guessing that the exploit allows > anyone to run any command as root. Nice. Whomever it was was having a > whale of a time with my C compiler for some reason... very dodgy. > > If I can find out the source of this then I'd like to follow it up. Does > anyone have experience of chasing this sort of thing from across the US > border? Also, of course, everyone should check their popper version. Yes, it looks as if your assessment was right. The problem was fixed on June 28. Greg -- See complete headers for address and phone numbers finger grog@lemis.com for PGP public key To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sun Jul 5 03:50:21 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id DAA22316 for freebsd-isp-outgoing; Sun, 5 Jul 1998 03:50:21 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from shell6.ba.best.com (jkb@shell6.ba.best.com [206.184.139.137]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id DAA22209; Sun, 5 Jul 1998 03:49:59 -0700 (PDT) (envelope-from jkb@best.com) Received: from localhost (jkb@localhost) by shell6.ba.best.com (8.9.0/8.9.0/best.sh) with SMTP id DAA15669; Sun, 5 Jul 1998 03:48:31 -0700 (PDT) X-Authentication-Warning: shell6.ba.best.com: jkb owned process doing -bs Date: Sun, 5 Jul 1998 03:48:30 -0700 (PDT) From: "Jan B. Koum " X-Sender: jkb@shell6.ba.best.com To: Scot Elliott cc: freebsd-isp@FreeBSD.ORG, freebsd-security@FreeBSD.ORG Subject: Re: Security Alert: Qualcomm POP Server In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Where have you been all this time? Dont' you follow bugtraq? Yes, Qualcomm had remote root shell buffer overflow "y3r 0wned" type thingie. Exploits for both *bsd and linux systems were published. Get cucipop or updated qualcomm pop server. -- Yan Jan Koum jkb@best.com | "Turn up the lights; I don't want www.FreeBSD.org -- The Power to Serve | to go home in the dark." ---------------------------------------+----------------------------------- ICMP: What happens when you hack into a military network and they catch you. On Sun, 5 Jul 1998, Scot Elliott wrote: >Morning all. > >I caught someone last night with a root shell on our mail server. I >traced it back to somewhere in the US, but unfortunately got locked out >and the log files removed before I had time to fix it ;-( > >I shut the machine down remotely by mounting /usr over NFS and changing >/usr/libexec/atrun to a shell script that run /sbin/shutdown (near huh? >;-) > >Anyway - the point is that is looks like some kind of buffer overflow in >the POP daemon that ships with FreeBSD 2.2.6. I noticed lots of ^P^P^P... >messages from popper in the log file before it was removed. There was an >extra line in /etc/inetd.conf which ran a shell as root on some port I >wasn't using (talk I think). So I'm guessing that the exploit allows >anyone to run any command as root. Nice. Whomever it was was having a >whale of a time with my C compiler for some reason... very dodgy. > >If I can find out the source of this then I'd like to follow it up. Does >anyone have experience of chasing this sort of thing from across the US >border? Also, of course, everyone should check their popper version. > >Cheers > > >Yours - Scot. > > >----------------------------------------------------------------------------- >Scot Elliott (scot@poptart.org, scot@nic.cx) | Work: +44 (0)171 7046777 >PGP fingerprint: FCAE9ED3A234FEB59F8C7F9DDD112D | Home: +44 (0)181 8961019 >----------------------------------------------------------------------------- >Public key available by finger at: finger scot@poptart.org > or at: http://www.poptart.org/pgpkey.html > > > >To Unsubscribe: send mail to majordomo@FreeBSD.org >with "unsubscribe freebsd-isp" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sun Jul 5 07:49:28 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id HAA12017 for freebsd-isp-outgoing; Sun, 5 Jul 1998 07:49:28 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from megaweapon.zigg.com (ip121.grand-rapids.mi.pub-ip.psi.net [38.11.210.121]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id HAA11950; Sun, 5 Jul 1998 07:49:18 -0700 (PDT) (envelope-from matt@megaweapon.zigg.com) Received: from megaweapon.zigg.com (megaweapon.zigg.com [192.168.1.1]) by megaweapon.zigg.com (8.8.8/8.8.8) with SMTP id KAA15549; Sun, 5 Jul 1998 10:49:55 -0400 (EDT) (envelope-from matt@megaweapon.zigg.com) Date: Sun, 5 Jul 1998 10:49:55 -0400 (EDT) From: Matt Behrens To: Scot Elliott cc: freebsd-isp@FreeBSD.ORG, freebsd-security@FreeBSD.ORG Subject: Re: Security Alert: Qualcomm POP Server In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org This is the bug mentioned on BUGTRAQ about two weeks ago. A friend of mine got hit as well by "well-meaning" attackers. Blah. In any case, he upgraded to 2.52 of popper and is now immune to at least the script kiddie attacks. On Sun, 5 Jul 1998, Scot Elliott wrote: > Morning all. > > I caught someone last night with a root shell on our mail server. I > traced it back to somewhere in the US, but unfortunately got locked out > and the log files removed before I had time to fix it ;-( > > I shut the machine down remotely by mounting /usr over NFS and changing > /usr/libexec/atrun to a shell script that run /sbin/shutdown (near huh? > ;-) > > Anyway - the point is that is looks like some kind of buffer overflow in > the POP daemon that ships with FreeBSD 2.2.6. I noticed lots of ^P^P^P... > messages from popper in the log file before it was removed. There was an > extra line in /etc/inetd.conf which ran a shell as root on some port I > wasn't using (talk I think). So I'm guessing that the exploit allows > anyone to run any command as root. Nice. Whomever it was was having a > whale of a time with my C compiler for some reason... very dodgy. > > If I can find out the source of this then I'd like to follow it up. Does > anyone have experience of chasing this sort of thing from across the US > border? Also, of course, everyone should check their popper version. > > Cheers > > > Yours - Scot. > > > ----------------------------------------------------------------------------- > Scot Elliott (scot@poptart.org, scot@nic.cx) | Work: +44 (0)171 7046777 > PGP fingerprint: FCAE9ED3A234FEB59F8C7F9DDD112D | Home: +44 (0)181 8961019 > ----------------------------------------------------------------------------- > Public key available by finger at: finger scot@poptart.org > or at: http://www.poptart.org/pgpkey.html > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe security" in the body of the message > Matt Behrens | http://www.zigg.com/ Network Operations, The Iserv Company | Proudly running FreeBSD; sworn MIS, Michigan Kenworth, Inc. | enemy of Linux, a free hack OS Chanop Script Coordinator, WWFIN | and Windows, a non-free hack OS! To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sun Jul 5 16:33:44 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id QAA15150 for freebsd-isp-outgoing; Sun, 5 Jul 1998 16:33:44 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from ns.isot.com ([208.24.245.34]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id QAA15137 for ; Sun, 5 Jul 1998 16:33:34 -0700 (PDT) (envelope-from freebsd@mail.isot.com) Received: from felix.isot.com (dialup04.isot.com [208.24.245.42]) by ns.isot.com (8.8.8/8.8.8) with SMTP id NAA06270 for ; Sun, 5 Jul 1998 13:33:04 -0500 (CDT) (envelope-from freebsd@mail.isot.com) Received: by felix.isot.com with Microsoft Mail id <01BDA843.82DDEFA0@felix.isot.com>; Sun, 5 Jul 1998 18:34:14 -0500 Message-ID: <01BDA843.82DDEFA0@felix.isot.com> From: Felix Castillo To: "'FreeBSD-ISP'" Subject: Reverse DNS lookup Date: Sun, 5 Jul 1998 18:34:05 -0500 MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 8bit X-MIME-Autoconverted: from quoted-printable to 8bit by hub.freebsd.org id QAA15143 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org I seem to have one hack of time trying to get the reverse DNS lookup to work properly. Forward lookup works fine and the reverse lookup works fine too if looked up from local server. But will not find reverse lookup from other servers. I even copied the exact format of a working named files from another ISP and still do not work. Could anyone give me some ideas? To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sun Jul 5 17:37:39 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id RAA26588 for freebsd-isp-outgoing; Sun, 5 Jul 1998 17:37:39 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from buddy.palomine.net (qmailr@buddy.palomine.net [205.198.88.50]) by hub.freebsd.org (8.8.8/8.8.8) with SMTP id RAA26556 for ; Sun, 5 Jul 1998 17:37:18 -0700 (PDT) (envelope-from cjohnson-lists@palomine.net) Received: (qmail 25157 invoked from network); 6 Jul 1998 00:37:13 -0000 Received: from blinky.palomine.net (HELO lappy.palomine.net) (206.84.62.38) by buddy.palomine.net with SMTP; 6 Jul 1998 00:37:13 -0000 Message-ID: <00ae01bda876$38469900$320aa8c0@lappy.palomine.net> From: "Chris Johnson" To: "Felix Castillo" , "'FreeBSD-ISP'" Subject: Re: Reverse DNS lookup Date: Sun, 5 Jul 1998 20:37:13 -0400 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 4.72.3110.5 X-MimeOLE: Produced By Microsoft MimeOLE V4.72.3110.3 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org >I seem to have one hack of time trying to get the >reverse DNS lookup to work properly. > >Forward lookup works fine and the reverse lookup >works fine too if looked up from local server. But >will not find reverse lookup from other servers. > >I even copied the exact format of a working named >files from another ISP and still do not work. Could >anyone give me some ideas? Has the range of IPs you're trying to reverse map been delegated to the server in question? Your server might give out the right answers if asked, but that doesn't do much good if nobody knows to ask it. Could you give one of the IPs so someone here could follow the delegation and see where it ends up? Also, how big a range of IPs is it? Chris Johnson To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sun Jul 5 18:02:55 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id SAA00353 for freebsd-isp-outgoing; Sun, 5 Jul 1998 18:02:55 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from Gatekeeper.Alameda.net (gatekeeper.Alameda.net [207.90.181.2]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id SAA00331 for ; Sun, 5 Jul 1998 18:02:48 -0700 (PDT) (envelope-from ulf@Gatekeeper.Alameda.net) Received: by Gatekeeper.Alameda.net (8.8.8/8.8.6) id SAA05337; Sun, 5 Jul 1998 18:02:41 -0700 (PDT) Message-ID: <19980705180241.B786@Alameda.net> Date: Sun, 5 Jul 1998 18:02:41 -0700 From: Ulf Zimmermann To: Felix Castillo , "'FreeBSD-ISP'" Subject: Re: Reverse DNS lookup Reply-To: ulf@Alameda.net References: <01BDA843.82DDEFA0@felix.isot.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 0.91.1i In-Reply-To: <01BDA843.82DDEFA0@felix.isot.com>; from Felix Castillo on Sun, Jul 05, 1998 at 06:34:05PM -0500 Organization: Alameda Networks, Inc. X-Operating-System: FreeBSD 2.2.6-STABLE Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Sun, Jul 05, 1998 at 06:34:05PM -0500, Felix Castillo wrote: > I seem to have one hack of time trying to get the reverse DNS lookup to work properly. > > Forward lookup works fine and the reverse lookup works fine too if looked up from local server. But will not find reverse lookup from other servers. > > I even copied the exact format of a working named files from another ISP and still do not work. Could anyone give me some ideas? Is that network delegated to you ? Ask your upstream provider. > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message -- Ulf. --------------------------------------------------------------------- Ulf Zimmermann, 1525 Pacific Ave., Alameda, CA-94501, #: 510-769-2936 Alameda Networks, Inc. | http://www.Alameda.net | Fax#: 510-521-5073 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sun Jul 5 19:23:51 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id TAA13437 for freebsd-isp-outgoing; Sun, 5 Jul 1998 19:23:51 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from gate.gateway.net.hk (qmailr@home.gateway.net.hk [202.76.19.5]) by hub.freebsd.org (8.8.8/8.8.8) with SMTP id TAA13429 for ; Sun, 5 Jul 1998 19:23:47 -0700 (PDT) (envelope-from bmf@gate.gateway.net.hk) Received: (qmail 24016 invoked by uid 653); 6 Jul 1998 02:23:31 -0000 Date: Mon, 6 Jul 1998 10:23:31 +0800 (CST) From: Bo Fussing To: Ulf Zimmermann cc: Felix Castillo , "'FreeBSD-ISP'" Subject: Re: Reverse DNS lookup In-Reply-To: <19980705180241.B786@Alameda.net> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Sun, 5 Jul 1998, Ulf Zimmermann wrote: > Is that network delegated to you ? Ask your upstream provider. You could try an play around with 'dig -x' and find out without asking your upstream provider. Bo To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon Jul 6 05:55:56 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id FAA03803 for freebsd-isp-outgoing; Mon, 6 Jul 1998 05:55:56 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from mirage.nlink.com.br (mirage.nlink.com.br [200.238.120.3]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id FAA03776 for ; Mon, 6 Jul 1998 05:55:43 -0700 (PDT) (envelope-from paulo@nlink.com.br) Received: from localhost (paulo@localhost) by mirage.nlink.com.br (8.8.8/8.8.5) with SMTP id JAA09329 for ; Mon, 6 Jul 1998 09:55:14 -0300 (EST) Date: Mon, 6 Jul 1998 09:55:14 -0300 (EST) From: Paulo Fragoso To: freebsd-isp@FreeBSD.ORG Subject: Majordomo Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hi, Are there any way to make majordomo work without suid root? Thanks, Paulo. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon Jul 6 08:17:26 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id IAA24053 for freebsd-isp-outgoing; Mon, 6 Jul 1998 08:17:26 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: (from jmb@localhost) by hub.freebsd.org (8.8.8/8.8.8) id IAA24029; Mon, 6 Jul 1998 08:16:30 -0700 (PDT) (envelope-from jmb) From: "Jonathan M. Bresler" Message-Id: <199807061516.IAA24029@hub.freebsd.org> Subject: Re: Majordomo In-Reply-To: from Paulo Fragoso at "Jul 6, 98 09:55:14 am" To: paulo@nlink.com.br (Paulo Fragoso) Date: Mon, 6 Jul 1998 08:16:29 -0700 (PDT) Cc: freebsd-isp@FreeBSD.ORG X-Mailer: ELM [version 2.4ME+ PL32 (25)] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Paulo Fragoso wrote: > Hi, > > Are there any way to make majordomo work without suid root? yes! only wrapper should be suid root. jmb To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon Jul 6 09:49:19 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id JAA07755 for freebsd-isp-outgoing; Mon, 6 Jul 1998 09:49:19 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from i-p-d.com (i-p-d.host4u.com [209.60.43.5]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id JAA07742 for ; Mon, 6 Jul 1998 09:49:17 -0700 (PDT) (envelope-from chem@i-p-d.com) From: chem@i-p-d.com Received: from gateway (safehaven@brd1-p93.worldonline.nl [195.241.136.93]) by i-p-d.com (8.8.8/8.8.8) with SMTP id SAA05181 for ; Mon, 6 Jul 1998 18:50:07 +0200 (CEST) (envelope-from chem@i-p-d.com) Message-Id: <199807061650.SAA05181@i-p-d.com> Comments: Authenticated sender is To: freebsd-isp@FreeBSD.ORG Date: Mon, 6 Jul 1998 18:50:43 +0000 MIME-Version: 1.0 Content-type: text/plain; charset=US-ASCII Content-transfer-encoding: 7BIT Subject: virtual hosts and apache-fp Reply-to: chem@i-p-d.com In-reply-to: <199807061516.IAA24029@hub.freebsd.org> References: from Paulo Fragoso at "Jul 6, 98 09:55:14 am" X-mailer: Pegasus Mail for Win32 (v2.54) Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hi, Is it possible to have apache with frontpage extensions and still have normal multiple domainhosting on 1 IP? I have FreeBSD 2.2.6 and apache 1.2.6. I have tried to compile frontpage extensions, but than the virtual domains I have dont seem to work no more. Anybody know if it is possible and how to go about it? TIA Gina To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon Jul 6 11:49:38 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id LAA28527 for freebsd-isp-outgoing; Mon, 6 Jul 1998 11:49:38 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from darla.swimsuit.internet.dk (mail.swimsuit.internet.dk [194.255.12.232]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id LAA28507 for ; Mon, 6 Jul 1998 11:49:28 -0700 (PDT) (envelope-from leifn@internet.dk) Received: from darla.swimsuit.internet.dk (darla.swimsuit.internet.dk [192.168.0.10]) by darla.swimsuit.internet.dk (8.9.1/8.8.8) with SMTP id UAA00922; Mon, 6 Jul 1998 20:49:23 +0200 (CEST) (envelope-from leifn@internet.dk) Date: Mon, 6 Jul 1998 20:49:23 +0200 (CEST) From: Leif Neland Reply-To: leifn@internet.dk To: Terry Lambert cc: freebsd-isp@FreeBSD.ORG Subject: Re: SASL References In-Reply-To: <199806122252.PAA23412@usr01.primenet.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Fri, 12 Jun 1998, Terry Lambert wrote: > > I don't have the ACAP references handy. The > > proposed SMTP SASL interface (AUTH command) is described in the I-D > > draft-myers-smtp-auth-*.txt. > > I like this (a bit), but I hate the use to which it is supposedly going > to be put by Qualcomm: > > http://www.imc.org/draft-gellens-on-demand > > Which is basically a workaround for ISP brain damage that can only > be implemented by non-brain-damaged ISPs. It's a tautology. > > This a very annoying. The same functionality for dynamic IP addresses > polling a server for queued mail is available through a correctly > configured split dynamic DNS and the existing ETRN verb. > Is there a simple instruction to do this split dynamic DNS somewhere? Leif Neland leifn@internet.dk To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon Jul 6 14:13:06 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id OAA19421 for freebsd-isp-outgoing; Mon, 6 Jul 1998 14:13:06 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from clifford.inch.com (omar@clifford.inch.com [207.240.140.163]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id OAA19401 for ; Mon, 6 Jul 1998 14:12:57 -0700 (PDT) (envelope-from omar@clifford.inch.com) Received: (from omar@localhost) by clifford.inch.com (8.8.5/8.8.5) id RAA03450; Mon, 6 Jul 1998 17:10:56 -0400 Message-ID: <19980706171055.A3430@clifford.inch.com> Date: Mon, 6 Jul 1998 17:10:55 -0400 From: Omar Thameen To: freebsd-isp@FreeBSD.ORG Subject: setting up a secure webserver service Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 0.91.1i Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org How do most companies (like webfarms) handle setting up clients with secure web servers? We'd like to offer one level of service where they use our key (for say, secure.ourdomain.com). What's not clear is how the different client accounts are handled on the secure server. Do generic solutions like this usually offer cgi-bin access for the client's transaction software (if so, how?), or do you provide a default set of scripts for everyone to use? How is access to their data normally handled, via a secure http connection with a password-protected directory? Or is it via custom scripts? Thanks for any tips, Omar To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon Jul 6 15:02:44 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id PAA27303 for freebsd-isp-outgoing; Mon, 6 Jul 1998 15:02:44 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from stingray.ivision.co.uk (stingray.ivision.co.uk [195.50.91.40]) by hub.freebsd.org (8.8.8/8.8.8) with SMTP id PAA27297 for ; Mon, 6 Jul 1998 15:02:33 -0700 (PDT) (envelope-from manar@ivision.co.uk) Received: from pretender.ivision.co.uk [194.112.59.212] by stingray.ivision.co.uk with smtp (Exim 1.62 #2) id 0ytJL2-0004h5-00; Mon, 6 Jul 1998 23:02:20 +0100 Message-Id: <3.0.5.32.19980706230046.007fb420@stingray.ivision.co.uk> X-Sender: manarpop@stingray.ivision.co.uk X-Mailer: QUALCOMM Windows Eudora Pro Version 3.0.5 (32) Date: Mon, 06 Jul 1998 23:00:46 +0100 To: freebsd-isp@FreeBSD.ORG From: Manar Hussain Subject: Re: Majordomo In-Reply-To: Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org At 09:55 06/07/98 -0300, Paulo Fragoso wrote: >Hi, > >Are there any way to make majordomo work without suid root? Someone suggested this was a bogus questions as majordomo doesn't run setuid - a wrapper that calls it does. I suspect that was an unintentional question dodge - you'd still need to run *a* setuid program to run that majordomo installation including the wrapper. Using Exim or qmail instead of sendmail you can run majordomo direct as user majordom rather than running things through the wrapper. Bear in mind that the wrapper does more than just set the setuid - it's sets a few environment vars up too. I can dig out how we did it under Exim if that'd be considered helpful. Manar To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon Jul 6 19:03:13 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id TAA23849 for freebsd-isp-outgoing; Mon, 6 Jul 1998 19:03:13 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from darla.swimsuit.internet.dk (mail.swimsuit.internet.dk [194.255.12.232]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id TAA23803 for ; Mon, 6 Jul 1998 19:03:04 -0700 (PDT) (envelope-from leifn@internet.dk) Received: from darla.swimsuit.internet.dk (darla.swimsuit.internet.dk [192.168.0.10]) by darla.swimsuit.internet.dk (8.9.1/8.9.1) with SMTP id EAA03260 for ; Tue, 7 Jul 1998 04:03:27 +0200 (CEST) Date: Tue, 7 Jul 1998 04:03:21 +0200 (CEST) From: Leif Neland Reply-To: leifn@internet.dk To: isp@FreeBSD.ORG Subject: radiusd, livingston portmaster, dns adress Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org (How) can I supply the addresses of nameserver(s) to the dialin users? So they in e.g. windows can use server supplied dns-adress, just as they use server supplied ip-adresses. Is it a function of radiusd or have I missed an option in the setup of the portmaster? Leif Neland leifn@internet.dk To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon Jul 6 19:48:36 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id TAA01905 for freebsd-isp-outgoing; Mon, 6 Jul 1998 19:48:36 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from Radford.i-Plus.net (root@Radford.i-Plus.net [208.24.67.15]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id TAA01876 for ; Mon, 6 Jul 1998 19:48:29 -0700 (PDT) (envelope-from rewt@i-Plus.net) Received: from Radford.i-Plus.net (rewt@Radford.i-Plus.net [208.24.67.15]) by Radford.i-Plus.net (8.8.8/8.8.5) with SMTP id WAA28953; Mon, 6 Jul 1998 22:48:02 -0400 (EDT) Date: Mon, 6 Jul 1998 22:48:02 -0400 (EDT) From: Troy Settle To: Leif Neland cc: isp@FreeBSD.ORG Subject: Re: radiusd, livingston portmaster, dns adress In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Tue, 7 Jul 1998, Leif Neland wrote: > (How) can I supply the addresses of nameserver(s) to the dialin users? > > So they in e.g. windows can use server supplied dns-adress, just as they > use server supplied ip-adresses. > > Is it a function of radiusd or have I missed an option in the setup of the > portmaster? > Assigning DNS addresses to a dial-up peer is a function of PPP. And while I could be wrong, you should be able to set this either on the portmaster, or through your radius profile. You probably just need to check the docs for details. -- Troy Settle Network Administrator, iPlus Internet Services http://www.i-Plus.net To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon Jul 6 20:08:29 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id UAA04691 for freebsd-isp-outgoing; Mon, 6 Jul 1998 20:08:29 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from Radford.i-Plus.net (root@Radford.i-Plus.net [208.24.67.15]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id UAA04622 for ; Mon, 6 Jul 1998 20:08:14 -0700 (PDT) (envelope-from rewt@i-Plus.net) Received: from Radford.i-Plus.net (rewt@Radford.i-Plus.net [208.24.67.15]) by Radford.i-Plus.net (8.8.8/8.8.5) with SMTP id XAA29686; Mon, 6 Jul 1998 23:08:01 -0400 (EDT) Date: Mon, 6 Jul 1998 23:08:01 -0400 (EDT) From: Troy Settle To: Omar Thameen cc: freebsd-isp@FreeBSD.ORG Subject: Re: setting up a secure webserver service In-Reply-To: <19980706171055.A3430@clifford.inch.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Mon, 6 Jul 1998, Omar Thameen wrote: > How do most companies (like webfarms) handle setting up clients with > secure web servers? We'd like to offer one level of service where they > use our key (for say, secure.ourdomain.com). What's not clear is how > the different client accounts are handled on the secure server. I am in the process of setting up this same thing, and as a cost saving device, I am also opting for using a single cert for all secure transactions. > Do generic solutions like this usually offer cgi-bin access for the > client's transaction software (if so, how?), or do you provide a default > set of scripts for everyone to use? What I'm planning, is to skip the cgi-bin route, and just use php or a handler for .cgi files (you can do some funky things with the URI with mod_rewrite). I think at this time, all scripting will be done on a per-user basis. Of course, this may change as we grow. > How is access to their data normally handled, via a secure http connection > with a password-protected directory? Or is it via custom scripts? I'd say both. I think the most secure way to give customers a list of transactions would be through the server itself, or just process all transactions automatically with an online processor, report summary information back to the customer (fax, email, cgi), and take the processing fee + 2% for yourself :) I'm open to anyone willing to point out any holes in this scheme. -- Troy Settle Network Administrator, iPlus Internet Services http://www.i-Plus.net To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon Jul 6 21:35:23 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id VAA18582 for freebsd-isp-outgoing; Mon, 6 Jul 1998 21:35:23 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from granite.sentex.net (granite.sentex.ca [199.212.134.1]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id VAA18569 for ; Mon, 6 Jul 1998 21:35:15 -0700 (PDT) (envelope-from mike@sentex.net) Received: from ospf-mdt.sentex.net (ospf-mdt.sentex.net [205.211.164.81]) by granite.sentex.net (8.8.6/8.6.9) with SMTP id AAA15577; Tue, 7 Jul 1998 00:34:50 -0400 (EDT) From: mike@sentex.net (Mike Tancsa) To: leifn@internet.dk Cc: freebsd-isp@FreeBSD.ORG Subject: Re: radiusd, livingston portmaster, dns adress Date: Tue, 07 Jul 1998 04:34:32 GMT Message-ID: <35a1a452.577304429@mail.sentex.net> References: In-Reply-To: X-Mailer: Forte Agent .99e/32.227 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Tue, 7 Jul 1998 04:03:21 +0200 (CEST), in sentex.lists.freebsd.misc you wrote: >(How) can I supply the addresses of nameserver(s) to the dialin users? This is a function of the values set in the portmaster, and not radiusd. e.g. From the ComOS prompt, enter in pmsomething> set nameserver 192.168.101.1 pmsomething> set nameserver 2 192.168.101.2 The above on portmaster pmsomething would use 192.168.101.1 as the primary and 192.168.101.2 as the secondary. In the PPP negotiation phase, this would then also try and assign those DNS numbers to the dialup user. Have a look at the PortMaster mailling list. (http://www.livingston.com), you will find a lot more answers there as this question relates more to the PMs rather than FreeBSD. ---Mike To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon Jul 6 22:03:39 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id WAA23452 for freebsd-isp-outgoing; Mon, 6 Jul 1998 22:03:39 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from mail.triax.com (postoffice@mail.triax.com [206.58.96.4]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id WAA23431 for ; Mon, 6 Jul 1998 22:03:24 -0700 (PDT) (envelope-from joer@triax.com) Received: from joe.triax.com ([206.58.97.69]) by mail.triax.com (Post.Office MTA v3.1.2 release (PO203-101c) ID# 0-41958U5000L500S0) with SMTP id AAA12808 for ; Mon, 6 Jul 1998 21:58:02 -0700 X-Sender: joework@mail.triax.com X-Mailer: QUALCOMM Windows Eudora Pro Version 4.0 Date: Mon, 06 Jul 1998 22:03:10 -0700 To: isp@FreeBSD.ORG From: Joe Read Subject: Generating CSR for apache+ssleay Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Message-ID: <19980707045802.AAA12808@joe.triax.com> Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Subject says it all.. after a little hacking of the 1.3-release of apache and 0.9 (i think, been a long night) release of SSLeay, it's all compiled and ready to go. I generated a key doing a "make certificate", but all that produced was an actual private key and certificate. I need to produce a new certificate request for a Verisign renewal. Help? Thanks, Joe Read System Administrator TRIAX, Inc. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon Jul 6 22:10:30 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id WAA24470 for freebsd-isp-outgoing; Mon, 6 Jul 1998 22:10:30 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from shell.thebestisp.com (shell.thebestisp.com [209.98.116.11]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id WAA24442 for ; Mon, 6 Jul 1998 22:10:10 -0700 (PDT) (envelope-from joe@thebestisp.com) Received: from speed ([209.98.116.34]) by shell.thebestisp.com (8.8.7/8.8.7) with SMTP id AAA13578 for ; Tue, 7 Jul 1998 00:13:29 -0500 (CDT) (envelope-from joe@thebestisp.com) Message-ID: <00a901bda964$625e1a80$227462d1@speed.thebestisp.com> From: "joe" To: Subject: Re: radiusd, livingston portmaster, dns adress Date: Tue, 7 Jul 1998 00:02:04 -0500 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 4.72.3110.5 X-MimeOLE: Produced By Microsoft MimeOLE V4.72.3110.3 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org just enter: set namesvc dns then set nameserver xxx.xxx.xxx.xxx and set nameserver again for second nameserver.. the end.. then when someone logs in the dhcp conversation will include information about your dns servers :) joe@thebestisp.com -----Original Message----- From: Leif Neland To: isp@freebsd.org Date: Monday, July 06, 1998 9:47 PM Subject: radiusd, livingston portmaster, dns adress >(How) can I supply the addresses of nameserver(s) to the dialin users? > >So they in e.g. windows can use server supplied dns-adress, just as they >use server supplied ip-adresses. > >Is it a function of radiusd or have I missed an option in the setup of the >portmaster? > >Leif Neland >leifn@internet.dk > > > >To Unsubscribe: send mail to majordomo@FreeBSD.org >with "unsubscribe freebsd-isp" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon Jul 6 22:46:43 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id WAA29608 for freebsd-isp-outgoing; Mon, 6 Jul 1998 22:46:43 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from idiom.com (idiom.com [209.157.64.1]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id WAA29592 for ; Mon, 6 Jul 1998 22:46:33 -0700 (PDT) (envelope-from muir@idiom.com) Received: (from muir@localhost) by idiom.com (8.8.8/8.8.5) id WAA22718; Mon, 6 Jul 1998 22:46:30 -0700 (PDT) Date: Mon, 6 Jul 1998 22:46:30 -0700 (PDT) From: David Muir Sharnoff Message-Id: <199807070546.WAA22718@idiom.com> To: spork@super-g.com Cc: freebsd-isp@FreeBSD.ORG Subject: Re: Recommended SCSI Drives In-Reply-To: <6mq4im$guu$1@news.idiom.com> Organization: Idiom Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org In article <6mq4im$guu$1@news.idiom.com> spork@super-g.com writes: > >Being a big fan of trying to keep drives at room temperature while >sticking as many as I can in a colo machine that has to be small, I'd love >to see a picture of the box you described below. For a long time we >shopped for "the ultimate PC enclosure" and it was always give and take. >Room for drives, horrid airflow. Great airflow, room for two drives. >Grrr. > >Anyone else here need to stuff lots of machines in a small space? What >case do you use? How do you keep things cool? I've got a possible solution for keeping drives cool: lots of fans. I've found a little device that you put in front of your drive instead of the normal plastic faceplate. It has two little fans in it. Costs about $10. I've now got the disks for my main server (idiom.com) in an external enclosure. Four disks. Eleven fans. (One on the power supply, two in the enclosure, and eight little ones right in front of the disks). I got mine from Wetex (http://www.wetex.com). The part number is FAN-HDD-CK2. -Dave To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon Jul 6 22:53:24 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id WAA00952 for freebsd-isp-outgoing; Mon, 6 Jul 1998 22:53:24 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from smtp02.primenet.com (daemon@smtp02.primenet.com [206.165.6.132]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id WAA00937 for ; Mon, 6 Jul 1998 22:53:19 -0700 (PDT) (envelope-from tlambert@usr06.primenet.com) Received: (from daemon@localhost) by smtp02.primenet.com (8.8.8/8.8.8) id WAA11429; Mon, 6 Jul 1998 22:53:17 -0700 (MST) Received: from usr06.primenet.com(206.165.6.206) via SMTP by smtp02.primenet.com, id smtpd011415; Mon Jul 6 22:53:12 1998 Received: (from tlambert@localhost) by usr06.primenet.com (8.8.5/8.8.5) id WAA00849; Mon, 6 Jul 1998 22:53:09 -0700 (MST) From: Terry Lambert Message-Id: <199807070553.WAA00849@usr06.primenet.com> Subject: Re: SASL References To: leifn@internet.dk Date: Tue, 7 Jul 1998 05:53:09 +0000 (GMT) Cc: tlambert@primenet.com, freebsd-isp@FreeBSD.ORG In-Reply-To: from "Leif Neland" at Jul 6, 98 08:49:23 pm X-Mailer: ELM [version 2.4 PL25] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org > > This a very annoying. The same functionality for dynamic IP addresses > > polling a server for queued mail is available through a correctly > > configured split dynamic DNS and the existing ETRN verb. > > > > Is there a simple instruction to do this split dynamic DNS somewhere? There is a perl implementation, but not a radiusd implementation that is freely available. If you search for +perl +"dynamic dns" on altavista, the reference pops right up: http://simmons.starkville.ms.us/tips/081797/ This is somewhat less than satisfying, in that it requires the ISP to trust the "ppp-up"/"ppp-down" on the client to do the updates at the ISP. But it shows how it can be done. A radiusd implementation is more interesting. I've been trying to convince a number of companies to fund one, since it would want to be applied to all the implementations available so the technology gets widely adopted. The amount of work is small, but the test-bed would require several machines, a terminal server that uses radiusd (and supports reporting "Framed-IP-Address" reply item, or supports acting as a DHCP client, and which provides the "Framed-IP-Address" to the client explicitly). This is a relatively small hack, but is more difficult on FreeBSD because FreeBSD integrates the bind 4.x.x library into libc, and dynamic DNS requires that you run bind 8.x.x (on the internal DNS server, at least). You can compile the bind distribution, and link with -lresolv before -lc, and this will allow you to make the DDNS update calls. One annoying note: Microsoft's "Internet Authentication Server" for NT already supports this: http://irpcomm.microsoft.com/sbs/ispkit/system2.htm (see the second to last bold subheader item). Terry Lambert terry@lambert.org --- Any opinions in this posting are my own and not those of my present or previous employers. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon Jul 6 23:31:35 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id XAA06453 for freebsd-isp-outgoing; Mon, 6 Jul 1998 23:31:35 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from idiom.com (idiom.com [209.157.64.1]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id XAA06446 for ; Mon, 6 Jul 1998 23:31:31 -0700 (PDT) (envelope-from muir@idiom.com) Received: (from muir@localhost) by idiom.com (8.8.8/8.8.5) id XAA26083; Mon, 6 Jul 1998 23:31:28 -0700 (PDT) Date: Mon, 6 Jul 1998 23:31:28 -0700 (PDT) From: David Muir Sharnoff Message-Id: <199807070631.XAA26083@idiom.com> To: wayne@msen.com Cc: freebsd-isp@FreeBSD.ORG Subject: Re: ETinc cards, PPP and OSPF In-Reply-To: Organization: Idiom Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org In article you write: > >Please reply TO ME and not just to the list as I am still waiting >(3 days now) for my subscription to this list to be approved. > > >We are doing an evaluation of the ETinc T1 cards, using them in PPP >mode. So far, I have been completely unable to get them to respond to >OSPF packets from our routers. Since the interfaces supplied by ETinc >cards do not operate in multicast mode, I have added to my gated.conf > >interfaces { > define 148.59.21.129 pointtopoint 148.59.21.130 ; > } ; > >but this seems to not make a difference (the router remains in INIT >state) sending multicast packets at the ETinc card and the ETinc card >never responds. > >I assume that I am missing something obvious but need a fresh outlook >on this problem as I have run out of ideas. I have ETinc+OSPF(gated) working just fine. It took me a while to find the magic bullet though. Here are some snippets from a gated.conf file... routerid 209.157.69.253 ; rip no ; bgp no ; ospf yes { backbone { authtype simple ; networks { 209.157.64.0 mask 255.255.224.0; 140.174.82.0 mask 255.255.255.0; 209.66.121.0 mask 255.255.255.0; } ; interface eth0 nonbroadcast { pollinterval 2; # routers { # 209.157.69.21 eligible ; # } ; enable ; retransmitinterval 2; authkey "latenite" ; transitdelay 1; priority 88; hellointerval 2; routerdeadinterval 10; } ; stubhosts { 209.157.69.253 cost 1 ; } ; } ; traceoptions "/var/log/gated.ospf.log" size 1m files 5 packets; } ; The trick was that I had to identify the interface by name rather than IP address. -Dave To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon Jul 6 23:54:06 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id XAA09490 for freebsd-isp-outgoing; Mon, 6 Jul 1998 23:54:06 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from super-g.inch.com (super-g.com [207.240.140.161]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id XAA09378 for ; Mon, 6 Jul 1998 23:54:01 -0700 (PDT) (envelope-from spork@super-g.com) Received: from localhost (localhost [127.0.0.1]) by super-g.inch.com (8.8.8/8.8.5) with SMTP id CAA05872; Tue, 7 Jul 1998 02:53:55 -0400 (EDT) Date: Tue, 7 Jul 1998 02:53:55 -0400 (EDT) From: spork X-Sender: spork@super-g.inch.com To: Doug Russell cc: isp@FreeBSD.ORG Subject: Re: Recommended SCSI Drives In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Tue, 23 Jun 1998, Doug Russell wrote: > Makes great flow from the front to the back, and really sucks air past the > drives. (There are 10 exposed bays on the front, and I drill holes in the > bottom of the case to mount 4 hard disks to the bottom. They get great > cooling with the air flowing across the bottom and nothing within about 4" > above them. > > Too bad I don't have a picture on the web site yet. :) Since no one else posted pics of their designs (especially the gentleman with all his parts on a sheet of plywood), I thought I'd show you what I did to a slightly fritzed laptop. Now it's a something-top. Still needs some work so that I can tilt it to a comfortable angle, but it looks neat, and keeps my neighbors without cable from watching TV when I turn it on... http://www.inch.com/~spork/footop.html Charles > > Later...... > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue Jul 7 03:15:22 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id DAA02482 for freebsd-isp-outgoing; Tue, 7 Jul 1998 03:15:22 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from voltage.net (voltage.net [204.214.227.3]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id DAA02477 for ; Tue, 7 Jul 1998 03:15:21 -0700 (PDT) (envelope-from sward@voltage.net) Received: from arky.voltage.net (ArkyLady@compnet2.compnetar.com [204.214.227.12] (may be forged)) by voltage.net (8.8.8/8.8.8) with SMTP id CAA19893; Tue, 7 Jul 1998 02:11:49 -0500 (CDT) Message-Id: <199807070711.CAA19893@voltage.net> X-Sender: sward@mail.voltage.net X-Mailer: QUALCOMM Windows Eudora Pro Version 4.0.1 Date: Tue, 07 Jul 1998 02:06:18 -0500 To: Joe Read , isp@FreeBSD.ORG From: Susie Ward Subject: Re: Generating CSR for apache+ssleay In-Reply-To: <19980707045802.AAA12808@joe.triax.com> Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org At 10:03 PM 7/6/98 -0700, Joe Read wrote: >Subject says it all.. after a little hacking of the 1.3-release of apache >and 0.9 (i think, been a long night) release of SSLeay, it's all compiled >and ready to go. I generated a key doing a "make certificate", but all >that produced was an actual private key and certificate. I need to >produce a new certificate request for a Verisign renewal. I dunno about Verisign, but Thawte has some nice detailed instructions (and their certs are only $125). I can't remember for sure which one had the correct instructions offhand, but I think it was the first URL that worked for me: http://www.thawte.com/certs/server/key_ssleay.html http://www.thawte.com/certs/server/key_apachessl.html HTH Susie To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue Jul 7 07:23:24 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id HAA03434 for freebsd-isp-outgoing; Tue, 7 Jul 1998 07:23:24 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from mirage.nlink.com.br (mirage.nlink.com.br [200.238.120.3]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id HAA03415 for ; Tue, 7 Jul 1998 07:23:16 -0700 (PDT) (envelope-from paulo@nlink.com.br) Received: from localhost (paulo@localhost) by mirage.nlink.com.br (8.9.0/8.9.0) with SMTP id LAA05370; Tue, 7 Jul 1998 11:22:40 -0300 (EST) Date: Tue, 7 Jul 1998 11:22:40 -0300 (EST) From: Paulo Fragoso To: Manar Hussain cc: freebsd-isp@FreeBSD.ORG Subject: Re: Majordomo In-Reply-To: <3.0.5.32.19980706230046.007fb420@stingray.ivision.co.uk> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hi, On Mon, 6 Jul 1998, Manar Hussain wrote: > At 09:55 06/07/98 -0300, Paulo Fragoso wrote: > >Hi, > > > >Are there any way to make majordomo work without suid root? > > Someone suggested this was a bogus questions as majordomo doesn't run > setuid - a wrapper that calls it does. I suspect that was an unintentional > question dodge - you'd still need to run *a* setuid program to run that > majordomo installation including the wrapper. > > Using Exim or qmail instead of sendmail you can run majordomo direct as > user majordom rather than running things through the wrapper. Bear in mind > that the wrapper does more than just set the setuid - it's sets a few > environment vars up too. I can dig out how we did it under Exim if that'd > be considered helpful. > Yes, I would like to learn how to make majordomo (wrapper) without suid. Can you help me? > Manar > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message > Thanks, Paulo. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue Jul 7 08:20:31 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id IAA12480 for freebsd-isp-outgoing; Tue, 7 Jul 1998 08:20:31 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from fireworm.bluesun.net ([209.186.78.5]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id IAA12452 for ; Tue, 7 Jul 1998 08:20:18 -0700 (PDT) (envelope-from doug@bluesun.net) Received: from bluesun.net (host82.omega-slc.com [208.200.222.82]) by fireworm.bluesun.net (8.8.8/8.8.8) with ESMTP id JAA20057 for ; Tue, 7 Jul 1998 09:18:57 GMT (envelope-from doug@bluesun.net) Message-ID: <35A1E874.530D300E@bluesun.net> Date: Tue, 07 Jul 1998 09:20:52 +0000 From: Jon Zobrist X-Mailer: Mozilla 4.04 [en] (X11; I; FreeBSD 2.2.5-RELEASE i386) MIME-Version: 1.0 To: freebsd-isp@FreeBSD.ORG Subject: Problems with Ascend Radius authentication Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org I have a MAX 4002, and am running ascend-radius package off of the FreeBSD 2.2.6 CD, as well as running 2.2.6 I have no problem authenticating users from the users file, but whenever I try a UNIX password, it won't login. I get a message in the log file that says CHAP Unix Attempt. Then some other info, like user name, time, client, etc. but it won't authenticate. I have the DEFAULT set to Password="UNIX" as well as one user with password="UNIX" Anyone else running similar configurations? Any help is appreciated... Thanks, Jon Zobrist To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue Jul 7 11:08:51 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id LAA08375 for freebsd-isp-outgoing; Tue, 7 Jul 1998 11:08:51 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from jasper.southwind.net (root@jasper.southwind.net [206.53.103.7]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id LAA08369 for ; Tue, 7 Jul 1998 11:08:45 -0700 (PDT) (envelope-from abcjr@jasper.southwind.net) Received: from jasper.southwind.net (abcjr@jasper.southwind.net [206.53.103.7]) by jasper.southwind.net (8.8.8/8.8.8) with SMTP id NAA04580; Tue, 7 Jul 1998 13:08:17 -0500 (CDT) Date: Tue, 7 Jul 1998 13:08:17 -0500 (CDT) From: "Arnold B. Cavazos, Jr." Reply-To: "Arnold B. Cavazos, Jr." To: Jon Zobrist cc: freebsd-isp@FreeBSD.ORG Subject: Re: Problems with Ascend Radius authentication In-Reply-To: <35A1E874.530D300E@bluesun.net> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Tue, 7 Jul 1998, Jon Zobrist wrote: >I have a MAX 4002, and am running ascend-radius package off of the >FreeBSD 2.2.6 CD, as well as running 2.2.6 >I have no problem authenticating users from the users file, but whenever >I try a UNIX password, it won't login. I get a message in the log file >that says CHAP Unix Attempt. >Then some other info, like user name, time, client, etc. but it won't >authenticate. >I have the DEFAULT set to Password="UNIX" as well as one user with >password="UNIX" >Anyone else running similar configurations? >Any help is appreciated... > >Thanks, >Jon Zobrist > > >To Unsubscribe: send mail to majordomo@FreeBSD.org >with "unsubscribe freebsd-isp" in the body of the message > Jon, This problem is independent of the operating system. Here is the answer to your question... Make sure that you have the following set on your MAX: Ethernet->Answer->PPP options->Recv Auth=PAP Here is the reason that this is necessary: http://www.ascend.com/688.html ---------------------------------------------------------- Arnold Cavazos, Jr. abcjr@southwind.net SouthWind Internet Access, Inc. ____ ___ ____ ___ ____ Dedicated Access Sales |__| |__] | | |__/ | | |__] |___ __| | \ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue Jul 7 17:20:05 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id RAA25635 for freebsd-isp-outgoing; Tue, 7 Jul 1998 17:20:05 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from stingray.ivision.co.uk (stingray.ivision.co.uk [195.50.91.40]) by hub.freebsd.org (8.8.8/8.8.8) with SMTP id RAA25568 for ; Tue, 7 Jul 1998 17:19:55 -0700 (PDT) (envelope-from manar@ivision.co.uk) Received: from pretender.ivision.co.uk [194.112.52.86] by stingray.ivision.co.uk with smtp (Exim 1.62 #2) id 0ythxb-0006sw-00; Wed, 8 Jul 1998 01:19:48 +0100 Message-Id: <3.0.5.32.19980708011815.008c2820@stingray.ivision.co.uk> X-Sender: manarpop@stingray.ivision.co.uk X-Mailer: QUALCOMM Windows Eudora Pro Version 3.0.5 (32) Date: Wed, 08 Jul 1998 01:18:15 +0100 To: Paulo Fragoso From: Manar Hussain Subject: Re: Majordomo Cc: freebsd-isp@FreeBSD.ORG In-Reply-To: References: <3.0.5.32.19980706230046.007fb420@stingray.ivision.co.uk> Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org >Yes, I would like to learn how to make majordomo (wrapper) without suid. >Can you help me? As I said we use Exim. We find it an excellently documented alternative to sendmail that's better in most other respects we can think of whilst still looking like sendmail enough that other programs can't tell the difference (We install Exim "as" sendmail). You can get details on it (including where to get it) at www.exim.org Here is what we might put in the exim config file that (a) define a new aliases file for majordomo aliases and (b) states that delivery for these aliases should be as the user "majordom majordomo_aliases: driver = aliasfile file = /etc/majordomo_aliases search_type = lsearch user = majordom group = mail So put the -owner etc. aliases in /etc/majordomo_aliases One of the other benefits of this sort of approach is that you can also do away with the security problems with the -outgoing alias by putting it in a different aliases file that has a different exim config associated with it that adds the requirement that delivery only occur if it's a local delivery request from the user majordom. I.e. something like: private_majordomo_aliases: driver = aliasfile file = /etc/majordomo_private_aliases search_type = lsearch user = majordom group = mail condition = "${if eq {$received_protocol}{local-bsmtp} {${if eq {$sender_ident}{majordom} {true}{false}}}{false}}" In this case you'd put things like -outgoing in this file and anyone other than majordom doing a local delivery to this alias will get an unknown user report. Manar To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Jul 8 07:58:49 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id HAA10567 for freebsd-isp-outgoing; Wed, 8 Jul 1998 07:58:49 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from orbisexchange.orbisnews.com (orbisexchange.orbisnews.com [208.214.156.91]) by hub.freebsd.org (8.8.8/8.8.8) with SMTP id HAA10562; Wed, 8 Jul 1998 07:58:47 -0700 (PDT) (envelope-from john.sconiers@Orbisnews.com) Received: by orbisexchange.orbisnews.com with SMTP (Microsoft Exchange Server Internet Mail Connector Version 4.0.994.63) id <01BDAA57.68D295F0@orbisexchange.orbisnews.com>; Wed, 8 Jul 1998 10:01:43 -0500 Message-ID: From: "Sconiers, John" To: "'freebsd-isp@freebsd.org'" , "'freebsd-questions@freebsd.org'" Subject: Linux- Freebsd Switch Date: Wed, 8 Jul 1998 10:01:41 -0500 X-Mailer: Microsoft Exchange Server Internet Mail Connector Version 4.0.994.63 MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org First and foremost thank you for the suggestions and leading me to that great article by Sys Admin Magazine as well as the FAQ and Handbook. I have successfully made the switch from Linux to Freebsd on two of the three machines. The firewall as well as the web server is up. The last machine I have to replace has shell access, email, ftp, and hosts 3 sites. The one thing that I am having problems with is the ports collection. It was extremely obvious which to allow and disallow especially on the web server and firewall because they have specific jobs where the need for a port is limited. If possible can someone give me some Ideas on ports to allow and not to allow as well as useful utilities. One developer told me to install the bare minimum that would allow people to get mail, ftp and if people ask for something then install it later. JOHN PS If someone like myself developed another choice to be added to the setup options that would allow people to setup for these thing out of the box if submitted would it ever make it into the distribution. I have a copy of Sun Solaris and the install included something like I'm suggesting. Just a thought. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Jul 8 08:39:08 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id IAA15331 for freebsd-isp-outgoing; Wed, 8 Jul 1998 08:39:08 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from axe.cablenet.net (axe.cablenet.net [195.248.96.20]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id IAA15292 for ; Wed, 8 Jul 1998 08:38:51 -0700 (PDT) (envelope-from damian@cablenet.net) Received: from cablenet.net (localhost [127.0.0.1]) by axe.cablenet.net (8.9.0.Beta3/8.9.0.Beta3) with ESMTP id QAA29031; Wed, 8 Jul 1998 16:15:12 +0100 (BST) Message-ID: <35A38CFE.FCF07ABF@cablenet.net> Date: Wed, 08 Jul 1998 16:15:10 +0100 From: Damian Hamill Organization: CableNet Ltd X-Mailer: Mozilla 4.05 [en] (X11; I; SunOS 4.1.4 sun4m) MIME-Version: 1.0 To: Terry Lambert , freebsd-isp@FreeBSD.ORG Subject: Re: SASL References References: <199807071823.LAA18971@usr01.primenet.com> Content-Type: multipart/mixed; boundary="------------F0E7820B0AA8AE204326DE3B" Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org This is a multi-part message in MIME format. --------------F0E7820B0AA8AE204326DE3B Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Terry Lambert wrote: > > > We experimented with DDNS for some time with our radius server doing > > the updates but in the end we patched sendmail to get the address of a > > customer's host from a database that the radius server maintained. > > > > The patches to both the radius server and to sendmail are simple. > > Are they available for reference? I'll include some attachements below. They will need work to integrate into your mail server but you will get the idea. The sendmail diff file is against version 8.9b3. Both files contain references to some other functions which you can replace with your own versions (or download my Vdb package from the MySQL site and it's mirrors). > > In general, the reason I was leaning toward pottung the code in the > radiusd, instead of in the radiusd and the mail server, is to reduce > the number of changes. There are a *lot* of third party mail servers > out there (surprising as that seems). We did it as an internal requirement and we were only using sendmail. It has meant tracking new releases of sendmail but it hasn't been too difficult. We were going to patch the mail server anyway to stop it trying to connect to hosts that were offline. It was just a little bit more work to get the IP address from an SQL table. > > What problems were you thinking of, in particular? Unless you had > a malfunction, there's really little reason that the DNS database > couldn't be the "database maintained by the radius server". I found the dynamic DNS to be unreliable and the version of bind that we are using would fall over if a secondary forwarded it an update query. It was much less work patching sendmail than it was to get the dynamic DNS working. If a delete doesn't happen then when another host gets the same IP address it will start to get the previous hosts email. Remember the DNS updates (and the Radius accounting requests) are via UDP, an unreliable protocol. Using SQL (via TCP or Domain socket) the whole process is much reliable. What's more if a delete is missed then the DNS mapping will hang around, unless you periodically restart your name server (which I ended up doing - at which point I realised it was the wrong way to solve the problem). regards damian -- * Damian Hamill M.D. damian@cablenet.net * CableNet & The Landscape Channel * http://www.cablenet.net/ http://www.landscapetv.com/ --------------F0E7820B0AA8AE204326DE3B Content-Type: text/plain; charset=us-ascii; name="sendmail-daemon.c.diffs" Content-Transfer-Encoding: 7bit Content-Disposition: inline; filename="sendmail-daemon.c.diffs" 810,814d809 < /*-- Cablenet Begin *********/ < u_long al, dl; < char qbuf[1024], *fldv[1], login[64], domain[256], hostbuf[32], *p; < extern SOCKADDR dummy_ip; < /*-- Cablenet End *********/ 829,903d823 < /*-- Cablenet Begin *********/ < /* if we can find it in the online database then set up host to the < char representation of the IP address < break the host into login and domain parts < if the domain isn't our domain then carry on as normal < */ < < strcpy(domain, LowerStr(host)); < < if (tTd(16, 1)) < syslog(LOG_INFO,"makeconnection: to %s ",domain); < < if ((p = strchr(domain, '.')) != NULL) { < *p = '\0'; < < strcpy(login, domain); < < strcpy(domain, p +1); < < if (domain[strlen(domain) -1] == '.') < domain[strlen(domain) -1] = '\0'; < < } else < domain[0] = '\0'; < < if ( domain[0] && strcmp(domain, dflt_domain) == 0) { < int num; < < /* if this is a local domain then they must be in the online < database to continue */ < < /* connect to the dns sql engine */ < < if (dnshandle < 0) { < if ((dnshandle = ConnectSql(dns_host, dns_dbase)) < 0) { < < /* the only way to handle this is to post an error to < syslog and fail */ < < syslog( LOG_ERR, "couldn't open dns database for %s", < Vusrmsg ); < < return EX_TEMPFAIL; < } < } < < sprintf(qbuf, < "select ipaddr from online where login = '%s'", < login ); < < num = 1; < if ( VdbQuery(dnshandle, qbuf) == 0 && < VdbFirstRec(dnshandle, &fldv[0], &num ) == 0) < { < sprintf(hostbuf, "[%s]", fldv[0] ); < < if (tTd(16, 1)) < syslog(LOG_INFO, < "found IP address %s for %s from online table\n", < hostbuf, host ); < < host = hostbuf; < < DisconnectSql(); < < } else { < < DisconnectSql(); < < return EX_TEMPFAIL; < } < < } < /*-- Cablenet End *********/ < 1009,1037d928 < < /*-- Cablenet Begin *********/ < /* if this is the dummy IP address for the ISP < then just return fail */ < < /* compare dummy_ip_address with < the address we are going to connect to */ < < al = addr.sin.sin_addr.s_addr; < dl = dummy_ip.sin.sin_addr.s_addr; < < #ifdef IPv6 < #ifdef NETINET < if ( bcmp(&dummy_ip.sin.sin_addr.s_addr, < &addr.sin.sin_addr.s_addr, < sizeof (addr.sin.sin_addr.s_addr)) == 0) < #else < if ( bcmp(&dummy_ip.sa.sa_data, < &addr.sa.sa_data, < sizeof (addr.sa.sa_data)) == 0) < < #endif < #else < if ( al == dl) < #endif < { < return (EX_TEMPFAIL); < } < /*-- Cablenet End *********/ --------------F0E7820B0AA8AE204326DE3B Content-Type: text/plain; charset=us-ascii; name="radacct.extra" Content-Transfer-Encoding: 7bit Content-Disposition: inline; filename="radacct.extra" /**************** include in acct.c **********/ int CableNetStart(char *login, char *ipaddr, time_t t) { char qbuf[512], msg[512], sbuf[1024], *fldv[3]; int num, child_pid; /* connect to the dns sql engine */ if (dnshandle < 0) { if ((dnshandle = ConnectSql(dns_host, dns_dbase)) < 0) { sprintf(msg, "CableNetStart can't connect to dns\n"); log_err(msg); syslog(LOG_ERR, "CableNetStart can't connect to dns\n"); return -1; } } /* remove any old entry from the online table */ /* make sure no records are hanging around for any old ip address */ sprintf(qbuf, "delete from online where ipaddr = '%s' or login = '%s'", ipaddr,login ); if (VdbQuery(dnshandle, qbuf) < 0) { DisconnectSql(); return -1; } sprintf(qbuf, "insert into online (login,ipaddr,start) values('%s','%s',%ld)", login, ipaddr, t ); if (VdbQuery(dnshandle, qbuf) < 0) { syslog( LOG_ERR, "error inserting into database >>%s<< [%s]", qbuf, Vdbmsg); DisconnectSql(); return -1; } finish_ok: DEBUG("login user %s ipaddr: %s\n", login, ipaddr ); syslog(LOG_NOTICE, "login user %s ipaddr: %s\n", login, ipaddr ); /* now do things like punt the mail to the user */ /* fork a child to do the work */ child_pid = fork(); if(child_pid < 0) { sprintf(msg, "Fork failed for %s [%s]", login, ipaddr ); log_err(msg); } if (child_pid == 0) { /* This is the child, do the work */ sprintf(sbuf, "%s/bin/logonuser %s %s", csms_base, login, ipaddr); system(sbuf); exit(0); } return 0; } int CableNetStop(char *login, char *ipaddr, int inoct, int outoct, time_t t, int session_time) { char qbuf[512], msg[512], *fldv[1]; char sbuf[1024]; int num; /* connect to the accounts sql engine */ if (accthandle < 0) { if ((accthandle = ConnectSql(acct_host, acct_dbase)) < 0) { sprintf(msg, "CableNetStop can't connect to acct\n"); log_err(msg); return -1; } } DEBUG("logoff user %s\n", login ); /* connect to the dns sql engine */ if (dnshandle < 0) { if ((dnshandle = ConnectSql(dns_host, dns_dbase)) < 0) { sprintf(msg, "CableNetStop can't connect to dns\n"); log_err(msg); return -1; } } sprintf(qbuf, "delete from online where ipaddr = '%s'", ipaddr ); if (VdbQuery(dnshandle, qbuf) < 0) { DisconnectSql(); return -1; } DisconnectSql(); return 0; } int DoCableNetAccounting(authreq) AUTH_REQ *authreq; { char login[64], ipaddrbuf[64]; int session_time = 0, status_type = 0, in_octets = 0; int out_octets = 0; time_t t; VALUE_PAIR *pair; t = time((time_t *)NULL); /* Acct-Status-Type = Stop Acct-Session-Time = 304 Acct-Authentic = RADIUS Acct-Input-Octets = 4877 Acct-Output-Octets = 1174 Acct-Delay-Time = 357 User-Service-Type = Framed-User Framed-Protocol = PPP Framed-Address = User-Name = "snor" */ login[0] = '0'; ipaddrbuf[0] = '\0'; pair = authreq->request; while(pair != (VALUE_PAIR *)NULL) { switch(pair->type) { case PW_TYPE_STRING: if (strncmp(pair->name, "User-Name", 9) == 0) { strncpy(login, pair->strvalue, 63); StripLTBlanks(login); } break; case PW_TYPE_INTEGER: if (strncmp(pair->name, "Acct-Session-Time", 16) == 0) { session_time = pair->lvalue; t -= session_time; } else if (strncmp(pair->name, "Acct-Status-Type", 16) == 0) { status_type = pair->lvalue; } else if (strncmp(pair->name, "Acct-Input-Octets", 16) == 0) { in_octets = pair->lvalue; } else if (strncmp(pair->name, "Acct-Output-Octets", 16) == 0) { out_octets = pair->lvalue; } else if (strncmp(pair->name, "Acct-Delay-Time", 15) == 0) { t -= pair->lvalue; } break; case PW_TYPE_IPADDR: if (strncmp(pair->name,"Framed-Address",14) == 0) { ipaddr2str(ipaddrbuf, pair->lvalue); } break; } pair = pair->next; } if ( login[0] == '\0' || ipaddrbuf[0] == '\0') return -1; switch (status_type) { case PW_STATUS_START: CableNetStart(login,ipaddrbuf,t); break; case PW_STATUS_STOP: CableNetStop(login,ipaddrbuf,in_octets, out_octets, t, session_time); break; } return 0; } /******************** in rad_accounting() **********/ if((namepair == (VALUE_PAIR *)NULL) || (strlen(namepair->strvalue) <= 0)) { sprintf(msg, "Accounting: from %s - No User Name\n", ip_hostname(authreq->ipaddr)); log_err(msg); pairfree(authreq->request); memset(authreq, 0, sizeof(AUTH_REQ)); free(authreq); return; } + /* try to save this accounting information for CableNet users */ + DoCableNetAccounting(authreq); + /* * Create a directory for this client. */ sprintf(buffer, "%s/%s", radacct_dir, clientname); mkdir(buffer, 0755); /* * Write Detail file. */ sprintf(buffer, "%s/%s/detail", radacct_dir, clientname); --------------F0E7820B0AA8AE204326DE3B-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Jul 8 16:57:45 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id QAA19474 for freebsd-isp-outgoing; Wed, 8 Jul 1998 16:57:45 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from veda.is (veda.is [193.4.230.1]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id QAA19403 for ; Wed, 8 Jul 1998 16:57:34 -0700 (PDT) (envelope-from adam@veda.is) Received: (from adam@localhost) by veda.is (8.9.0/8.9.0) id XAA23388 for freebsd-isp@freebsd.org; Wed, 8 Jul 1998 23:57:26 GMT From: Adam David Message-Id: <199807082357.XAA23388@veda.is> Subject: central authentication database? To: freebsd-isp@FreeBSD.ORG Date: Wed, 8 Jul 1998 23:57:25 +0000 (GMT) X-Mailer: ELM [version 2.4ME+ PL40 (25)] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org What tools/packages would be best to integrate in order to facilitate implementation of the following scenario? A server host/cluster provides service for multiple domains. A single authentication server program (with optional fallback servers on other hosts) does sitewide user authentication for a variety of purposes: 1. POP 2. Shell login to specified hosts 3. FTP to specified hosts 4. PAP/CHAP 5. ... (extensible). The user specifies his username@domain and his password, and the service type is implied by the connection/authentication being attempted, i.e. this is a central authentication database that contains {domain, {username, password_value, }} entries. If passwords are to be shared between various services, the service names can be listed in a single access record. If each service is to have a unique password, they can be specified in multiple user records. Integration with RADIUS (which is designed to only deal with one service per username@domain scenarios). Automatic generation of mailing lists from the database, for instance: "allusers@domain1" "allusers@domain2" "allusers@alldomains" "allshellusers" "allpppusers" (etc)... obviously these are not actual names of the lists. Anything else worthy of mention. Radius looks like it's mostly there, but there are various other parts need fitting together to make this work. Has anyone already worked this one out so I can forget about reinventing the wheel? Where does the good information about this subject reside? -- Adam David To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Jul 8 18:16:53 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id SAA28535 for freebsd-isp-outgoing; Wed, 8 Jul 1998 18:16:53 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from pinky.junction.net (pinky.junction.net [199.166.227.12]) by hub.freebsd.org (8.8.8/8.8.8) with SMTP id SAA28530 for ; Wed, 8 Jul 1998 18:16:51 -0700 (PDT) (envelope-from michael@memra.com) Received: from sidhe.memra.com (sidhe.memra.com [199.166.227.105]) by pinky.junction.net (8.6.12/8.6.12) with ESMTP id SAA00957 for ; Wed, 8 Jul 1998 18:16:41 -0700 Received: from localhost (michael@localhost) by sidhe.memra.com (8.9.0.Beta5/8.9.0.Beta5) with SMTP id SAA12241 for ; Wed, 8 Jul 1998 18:16:39 -0700 (PDT) Date: Wed, 8 Jul 1998 18:16:37 -0700 (PDT) From: Michael Dillon To: freebsd-isp@FreeBSD.ORG Subject: ISP Forum in Atlanta Message-ID: Organization: Memra Communications Inc. MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org There will be an ISP conference in Atlanta this fall. You can read more about it at http://www.ispf.com Since the conference agenda is not yet frozen in stone perhaps there are some of you who could speak on something FreeBSD related at the conference? If so, have a look at http://www.ispf.com/speakers/ and fill out a speaker's proposal form. -- Michael Dillon - Internet & ISP Consulting Memra Communications Inc. - E-mail: michael@memra.com Check the website for my Internet World articles - http://www.memra.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Jul 8 19:41:26 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id TAA08696 for freebsd-isp-outgoing; Wed, 8 Jul 1998 19:41:26 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from ritchie.loop.com (ritchie-inet.loop.com [207.211.60.70]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id TAA08677; Wed, 8 Jul 1998 19:41:23 -0700 (PDT) (envelope-from cassy@loop.com) Received: from patty.loop.com (patty-inet.loop.com [207.211.60.69]) by ritchie.loop.com (8.8.7/8.8.7) with SMTP id TAA05617; Wed, 8 Jul 1998 19:38:10 -0700 (PDT) (envelope-from cassy@loop.com) Date: Wed, 8 Jul 1998 19:36:57 -0700 (PDT) From: "Cassandra M. Perkins" To: "Jan B. Koum " cc: Scot Elliott , freebsd-isp@FreeBSD.ORG, freebsd-security@FreeBSD.ORG Subject: Re: Security Alert: Qualcomm POP Server In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org What version of qpopper is not vunerable to the hole? ---------------------------------------------------------------------------- | Cassandra M. Perkins | People usually get what's coming to | | Network Operations | them... unless it's been mailed. | | The Loop Internet Switch Co., LLC | -fortune | ---------------------------------------------------------------------------- On Sun, 5 Jul 1998, Jan B. Koum wrote: > > Where have you been all this time? Dont' you follow bugtraq? > Yes, Qualcomm had remote root shell buffer overflow "y3r 0wned" > type thingie. Exploits for both *bsd and linux systems were published. Get > cucipop or updated qualcomm pop server. > > -- Yan > > Jan Koum jkb@best.com | "Turn up the lights; I don't want > www.FreeBSD.org -- The Power to Serve | to go home in the dark." > ---------------------------------------+----------------------------------- > ICMP: What happens when you hack into a military network and they catch you. > > On Sun, 5 Jul 1998, Scot Elliott wrote: > > >Morning all. > > > >I caught someone last night with a root shell on our mail server. I > >traced it back to somewhere in the US, but unfortunately got locked out > >and the log files removed before I had time to fix it ;-( > > > >I shut the machine down remotely by mounting /usr over NFS and changing > >/usr/libexec/atrun to a shell script that run /sbin/shutdown (near huh? > >;-) > > > >Anyway - the point is that is looks like some kind of buffer overflow in > >the POP daemon that ships with FreeBSD 2.2.6. I noticed lots of ^P^P^P... > >messages from popper in the log file before it was removed. There was an > >extra line in /etc/inetd.conf which ran a shell as root on some port I > >wasn't using (talk I think). So I'm guessing that the exploit allows > >anyone to run any command as root. Nice. Whomever it was was having a > >whale of a time with my C compiler for some reason... very dodgy. > > > >If I can find out the source of this then I'd like to follow it up. Does > >anyone have experience of chasing this sort of thing from across the US > >border? Also, of course, everyone should check their popper version. > > > >Cheers > > > > > >Yours - Scot. > > > > > >----------------------------------------------------------------------------- > >Scot Elliott (scot@poptart.org, scot@nic.cx) | Work: +44 (0)171 7046777 > >PGP fingerprint: FCAE9ED3A234FEB59F8C7F9DDD112D | Home: +44 (0)181 8961019 > >----------------------------------------------------------------------------- > >Public key available by finger at: finger scot@poptart.org > > or at: http://www.poptart.org/pgpkey.html > > > > > > > >To Unsubscribe: send mail to majordomo@FreeBSD.org > >with "unsubscribe freebsd-isp" in the body of the message > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Jul 8 20:12:36 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id UAA12060 for freebsd-isp-outgoing; Wed, 8 Jul 1998 20:12:36 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from odyssey.apana.org.au (odyssey.apana.org.au [203.11.114.1]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id UAA12027; Wed, 8 Jul 1998 20:12:26 -0700 (PDT) (envelope-from dean@odyssey.apana.org.au) Received: from localhost (dean@localhost) by odyssey.apana.org.au (8.8.8/8.8.7) with SMTP id LAA11542; Thu, 9 Jul 1998 11:12:05 +0800 (WST) Date: Thu, 9 Jul 1998 11:12:05 +0800 (WST) From: Dean Hollister To: "Cassandra M. Perkins" cc: "Jan B. Koum " , Scot Elliott , freebsd-isp@FreeBSD.ORG, freebsd-security@FreeBSD.ORG Subject: Re: Security Alert: Qualcomm POP Server In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Wed, 8 Jul 1998, Cassandra M. Perkins wrote: > What version of qpopper is not vunerable to the hole? 2.52. Regards, d. +-------------------------------------------------------+ | Dean Hollister, | dean@mushka.ml.org | | Perth, Western Australia. | dean@wa.apana.org.au | +-------------------------------------------------------+ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Jul 8 20:15:15 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id UAA12588 for freebsd-isp-outgoing; Wed, 8 Jul 1998 20:15:15 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from stevie.loop.com (stevie-inet.loop.com [207.211.60.71]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id UAA12565; Wed, 8 Jul 1998 20:15:08 -0700 (PDT) (envelope-from cassy@loop.com) Received: from patty.loop.com (patty-inet.loop.com [207.211.60.69]) by stevie.loop.com (8.8.6/8.8.6) with SMTP id UAA07683; Wed, 8 Jul 1998 20:14:38 -0700 (PDT) Date: Wed, 8 Jul 1998 20:10:18 -0700 (PDT) From: "Cassandra M. Perkins" To: Dean Hollister cc: "Jan B. Koum " , Scot Elliott , freebsd-isp@FreeBSD.ORG, freebsd-security@FreeBSD.ORG Subject: Re: Security Alert: Qualcomm POP Server In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Got it. Thanks. ---------------------------------------------------------------------------- | Cassandra M. Perkins | People usually get what's coming to | | Network Operations | them... unless it's been mailed. | | The Loop Internet Switch Co., LLC | -fortune | ---------------------------------------------------------------------------- On Thu, 9 Jul 1998, Dean Hollister wrote: > On Wed, 8 Jul 1998, Cassandra M. Perkins wrote: > > > What version of qpopper is not vunerable to the hole? > > 2.52. > > Regards, > > d. > > +-------------------------------------------------------+ > | Dean Hollister, | dean@mushka.ml.org | > | Perth, Western Australia. | dean@wa.apana.org.au | > +-------------------------------------------------------+ > > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu Jul 9 11:02:26 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id LAA22322 for freebsd-isp-outgoing; Thu, 9 Jul 1998 11:02:26 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from blizzard.ctalk.com (host43.ctalk.com [204.19.165.43]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id LAA22304 for ; Thu, 9 Jul 1998 11:02:24 -0700 (PDT) (envelope-from awebster@ctalk.com) Received: from ctalk.com ([198.168.253.2]) by blizzard.ctalk.com (Netscape Messaging Server 3.52) with ESMTP id AAA2CC3; Thu, 9 Jul 1998 14:02:16 -0400 Message-ID: <35A50683.E08F0197@ctalk.com> Date: Thu, 09 Jul 1998 14:05:55 -0400 From: "Andrew Webster" X-Mailer: Mozilla 4.05 [en] (WinNT; U) MIME-Version: 1.0 To: freebsd-isp@FreeBSD.ORG Subject: VeriSign now selling IDs for all versions of Apache! Content-Type: multipart/mixed; boundary="------------90376C92D55912A4B5FF48D0" Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org This is a multi-part message in MIME format. --------------90376C92D55912A4B5FF48D0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Not strictly related to FreeBSD, but I thought that the ISPs would find this useful! In Verisign's latest newsletter: > > > 7. VeriSign Server IDs Now Available for all Apache-based Servers > > Apache freeware is among the most popular server software packages on > the Internet today. Until recently, only those sites using commercial > versions of Apache (such as C2Net's Stronghold Product) were able > to obtain VeriSign Secure Server IDs for conducting SSL sessions. Now, > VeriSign is issuing IDs for all Apache-based servers. To learn more and > get your free guide to securing an Apache server, please visit > http://www.verisign.com/guide/apache now. > > Or, if you would like to test that this solution works for your implementation of > Apache, please visit https://digitalid.verisign.com/server/trial for a Free Trial > Server ID. --------------90376C92D55912A4B5FF48D0 Content-Type: message/rfc822 Content-Transfer-Encoding: 7bit Content-Disposition: inline Return-Path: Received: from lumbago.verisign.net ([205.139.94.50]) by blizzard.ctalk.com (Netscape Messaging Server 3.52) with ESMTP id AAA2AA3 for ; Thu, 9 Jul 1998 00:21:59 -0400 Received: by lumbago.verisign.net (8.8.5/BCH1.0) id VAA19246; Wed, 8 Jul 1998 21:21:57 -0700 (PDT) Date: Wed, 8 Jul 1998 21:21:57 -0700 (PDT) Message-Id: <199807090421.VAA19246@lumbago.verisign.net> To: awebster@ctalk.com From: newsltr@verisign.com Reply-To: newsltr@verisign.com Content-Type: text/plain; charset=us-ascii Subject: VeriSign Secure Server News Dear VeriSign Secure Server ID Holder: VeriSign provides its Secure Server ID customers with a periodic newsletter as a free customer benefit. If you do not wish to receive this newsletter in the future, simply reply with a subject of "unsubscribe." **************************************************************** SECURE SERVER ID - JULY 1998 NEWSLETTER: 1) Securing Multiple Servers Within Your Domain 2) Join the VeriSign Trust Network Associates Program 3) Strong Encryption for Added Security Across or Outside US Borders 4) VeriSign and AICPA Create Seal of Trust 5) Test Your Server's Y2K Performance 6) Register New Web Site Domains Easily with Network Solutions' New Registration Plus 7) VeriSign Server IDs Now Available to all Apache-based Servers 8) Implement Secure E-mail Within your Organization - Pre-purchase bundles of Digital IDs **************************************************************** 1. Now You Can Issue Your Own Server IDs with One Easy Enrollment Our new VeriSign OnSite for Secure Server IDs safeguards all the servers within your domain by allowing you to issue multiple Server IDs with one easy enrollment. OnSite can save you time and money and also helps to coordinate the security of all of your Web servers. For more information and enrollment, please visit http://www.verisign.com/serveronsite now. 2. Join the VeriSign Trust Network Associates Program The VeriSign Trust Network Associates Program allows you to resell VeriSign Digital ID products on your Web site and make a commission on all sales you originate. With Digital IDs, your customers can digitally sign and encrypt all e-mail messages, increasing their online security and peace-of-mind. Plus, you demonstrate to customers your commitment to security by displaying the Associates Program's VeriSign Digital ID buttons. Please visit http://www.verisign.com/associate to learn more and to sign up today. 3. Strong (128-Bit) Encryption For Added Security Across or Outside US Borders Current US export laws restrict the use of "strong" (128-bit) encryption across or outside US borders. Until recently, the export versions of Microsoft Internet Explorer and Netscape Navigator browsers only allowed 40-bit SSL connections. However, 40 bits isn't secure enough for many businesses conducting high value financial transactions or sending sensitive corporate engineering and/or financial data internationally. VeriSign, in conjunction with Microsoft and Netscape, and in cooperation with the US Government, has developed a solution to allow certain types of companies to get 128-bit SSL encryption virtually anywhere in the world. 128-bit encryption is 309,485,009,821,345,000,000,000,000 times stronger than 40-bit encryption. If you are a bank (located anywhere in the world) or a US company, please visit http://digitalid.verisign.com/server/global/ to get more information about strengthening your Web site's security with a Global Server ID. 4. VeriSign and AICPA Create WebTrust Seal to Build Online Trust VeriSign and the American Institute of Certified Public Accountants (AICPA) have jointly developed the WebTrust Seal program to give online customers an instant level of trust with Web sites they are visiting. WebTrust is designed to assess web sites to ensure that they meet AICPA and CICA-defined criteria for standard business practices and controls over transaction integrity and information protection. Audited sites are given a special AICPA WebTrust Seal to display on their Web pages along with Certified Accountant's reports on the standards maintained by the site. To learn more or enroll for the WebTrust program, please visit http://www.verisign.com/webtrust today. 5. Test Your Web Server's Y2K Performance VeriSign recently introduced a program to allow Web sites to obtain free Trial Server IDs with built-in year 2000 date scenarios. By obtaining these Trial IDs, you can assess how the year 2000 will affect your servers and people visiting your Web site. Please visit http://digitalid.verisign.com/server/y2k/ to begin testing and to ensure your Web server's seamless transition to the next millennium. 6. Register New Web Site Domains Easily with Network Solutions' New Registration Plus Network Solutions offers enhanced domain name registration services to help small businesses and individuals establish and build their identity on the Internet. RegistrationPlus features a simple five-step process that allows Internet users to search, select and reserve or register a web addresses in minutes. Additionally, customers now have access to customer support 24 hours a day. For more information visit http://www.networksolutions.com or call 1-888-642-9675. 7. VeriSign Server IDs Now Available for all Apache-based Servers Apache freeware is among the most popular server software packages on the Internet today. Until recently, only those sites using commercial versions of Apache (such as C2Net's Stronghold Product) were able to obtain VeriSign Secure Server IDs for conducting SSL sessions. Now, VeriSign is issuing IDs for all Apache-based servers. To learn more and get your free guide to securing an Apache server, please visit http://www.verisign.com/guide/apache now. Or, if you would like to test that this solution works for your implementation of Apache, please visit https://digitalid.verisign.com/server/trial for a Free Trial Server ID. 8. Implement Secure E-mail within your Organization - Pre-purchase bundles of Digital IDs With VeriSign's convenient new Digital ID bundles, you can pre-purchase Class 1 Digital IDs in bulk and issue tokens for easy redemption. By distributing these tokens to employees, business partners or customers, you can begin to secure all e-mail messages and implement access control privileges on your corporate intranet or extranet. Please visit http://www.verisign.com/client/token/ to learn more and to enroll today. **************************************************************** Thanks again for choosing VeriSign. We look forward to serving your future electronic commerce and communication needs. Sincerely, VeriSign Digital ID Services --------------90376C92D55912A4B5FF48D0-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu Jul 9 11:10:52 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id LAA24115 for freebsd-isp-outgoing; Thu, 9 Jul 1998 11:10:52 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from rheingold.reed.edu (wcooley@c029h021.ipdorm.reed.edu [134.10.29.21]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id LAA24078 for ; Thu, 9 Jul 1998 11:10:39 -0700 (PDT) (envelope-from wcooley@nakedape.ml.org) Received: from localhost (wcooley@localhost) by rheingold.reed.edu (8.8.7/8.8.7) with SMTP id LAA02632 for ; Thu, 9 Jul 1998 11:10:25 -0700 Date: Thu, 9 Jul 1998 11:10:25 -0700 (PDT) From: "W. Reilly Cooley, Esq." X-Sender: wcooley@rheingold Reply-To: "W. Reilly Cooley, Esq." To: freebsd-isp@FreeBSD.ORG Subject: Recommended FTP servers? Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Thanks to all who responded in my request for opinions about CUCIPOP. Now I'd like to know opinions about the various FTP servers available. I'm interested most in stability and especially security, features and performance last. The chief purpose of this FTP server is to upload files for the web server, so it doesn't receive much traffic. At a quick glance, I only see WU-Ftpd and ProFTPD in the ports collection (I could have missed one), shall I suppose that those are the only ones FreeBSDers thought worthwhile? There are also BeroFTP and NcFTPd. Opinions and experience please. Wil -- W. Reilly Cooley Linux 2.0.34 Naked Ape Consulting FreeBSD 2.2.6 wcooley@nakedape.ml.org NetBSD/sun3 1.3.2 http://www.nakedape.ml.org NetBSD/pmax 1.3.2 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu Jul 9 11:40:59 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id LAA01002 for freebsd-isp-outgoing; Thu, 9 Jul 1998 11:40:59 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from Gatekeeper.Alameda.net (gatekeeper.Alameda.net [207.90.181.2]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id LAA00993 for ; Thu, 9 Jul 1998 11:40:53 -0700 (PDT) (envelope-from ulf@Gatekeeper.Alameda.net) Received: by Gatekeeper.Alameda.net (8.8.8/8.8.6) id LAA18122; Thu, 9 Jul 1998 11:40:53 -0700 (PDT) Message-ID: <19980709114053.D23837@Alameda.net> Date: Thu, 9 Jul 1998 11:40:53 -0700 From: Ulf Zimmermann To: "W. Reilly Cooley, Esq." , freebsd-isp@FreeBSD.ORG Subject: Re: Recommended FTP servers? Reply-To: ulf@Alameda.net References: Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 0.91.1i In-Reply-To: ; from W. Reilly Cooley, Esq. on Thu, Jul 09, 1998 at 11:10:25AM -0700 Organization: Alameda Networks, Inc. X-Operating-System: FreeBSD 2.2.6-STABLE Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Thu, Jul 09, 1998 at 11:10:25AM -0700, W. Reilly Cooley, Esq. wrote: > > Thanks to all who responded in my request for opinions about CUCIPOP. > > Now I'd like to know opinions about the various FTP servers available. > I'm interested most in stability and especially security, features and > performance last. The chief purpose of this FTP server is to upload files > for the web server, so it doesn't receive much traffic. At a quick > glance, I only see WU-Ftpd and ProFTPD in the ports collection (I could > have missed one), shall I suppose that those are the only ones FreeBSDers > thought worthwhile? There are also BeroFTP and NcFTPd. Opinions and > experience please. I am very happy with ncftpd (50 user and unlimited available at reasonable price). Only thing I am annoyed about, is a 64 char file name limit, because of the way the internal cache works. But otherwise flawless for me. > > > Wil > -- > W. Reilly Cooley Linux 2.0.34 > Naked Ape Consulting FreeBSD 2.2.6 > wcooley@nakedape.ml.org NetBSD/sun3 1.3.2 > http://www.nakedape.ml.org NetBSD/pmax 1.3.2 > > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message -- Regards, Ulf. --------------------------------------------------------------------- Ulf Zimmermann, 1525 Pacific Ave., Alameda, CA-94501, #: 510-769-2936 Alameda Networks, Inc. | http://www.Alameda.net | Fax#: 510-521-5073 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu Jul 9 12:55:30 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id MAA15633 for freebsd-isp-outgoing; Thu, 9 Jul 1998 12:55:30 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from freefall.pipeline.ch (freefall.pipeline.ch [195.134.128.40]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id MAA15582 for ; Thu, 9 Jul 1998 12:55:21 -0700 (PDT) (envelope-from andre@pipeline.ch) Received: from pipeline.ch ([195.134.128.41]) by freefall.pipeline.ch (Netscape Mail Server v2.02) with ESMTP id AAA420; Thu, 9 Jul 1998 21:54:06 +0200 Message-ID: <35A51FEA.1B89F1A8@pipeline.ch> Date: Thu, 09 Jul 1998 21:54:18 +0200 From: "IBS / Andre Oppermann" Organization: Internet Business Solutions Ltd. (AG) X-Mailer: Mozilla 4.03 [en] (WinNT; U) MIME-Version: 1.0 To: "W. Reilly Cooley, Esq." CC: freebsd-isp@FreeBSD.ORG Subject: Re: Recommended FTP servers? References: Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org W. Reilly Cooley, Esq. wrote: > > Thanks to all who responded in my request for opinions about CUCIPOP. > > Now I'd like to know opinions about the various FTP servers available. > I'm interested most in stability and especially security, features and > performance last. The chief purpose of this FTP server is to upload files > for the web server, so it doesn't receive much traffic. At a quick > glance, I only see WU-Ftpd and ProFTPD in the ports collection (I could > have missed one), shall I suppose that those are the only ones FreeBSDers > thought worthwhile? There are also BeroFTP and NcFTPd. Opinions and > experience please. Why not the standard FreeBSD ftpd with INTERNAL_LS compiled in? man ftpd -- Andre Oppermann CEO / Geschaeftsfuehrer Internet Business Solutions Ltd. (AG) Hardstrasse 235, 8005 Zurich, Switzerland Fon +41 1 277 75 75 / Fax +41 1 277 75 77 http://www.pipeline.ch ibs@pipeline.ch To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu Jul 9 13:14:31 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id NAA18669 for freebsd-isp-outgoing; Thu, 9 Jul 1998 13:14:31 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from hp9000.chc-chimes.com (billf@hp9000.chc-chimes.com [206.67.97.84]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id NAA18661 for ; Thu, 9 Jul 1998 13:14:29 -0700 (PDT) (envelope-from billf@chc-chimes.com) Received: from localhost by hp9000.chc-chimes.com with SMTP (1.39.111.2/16.2) id AA166645231; Thu, 9 Jul 1998 16:13:51 -0400 Date: Thu, 9 Jul 1998 16:13:51 -0400 (EDT) From: Bill Fumerola To: "W. Reilly Cooley, Esq." Cc: freebsd-isp@FreeBSD.ORG Subject: Re: Recommended FTP servers? In-Reply-To: Message-Id: Mime-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org proFTPd kicks so much ass it hurts. I believe NcFTPd is commercial, though I could be wrong. I don't run anything commercial on my FreeBSD boxes. wu-ftpd bothers me, but that's a personal opinion. On Thu, 9 Jul 1998, W. Reilly Cooley, Esq. wrote: > > for the web server, so it doesn't receive much traffic. At a quick > glance, I only see WU-Ftpd and ProFTPD in the ports collection (I could > have missed one), shall I suppose that those are the only ones FreeBSDers > thought worthwhile? There are also BeroFTP and NcFTPd. Opinions and > experience please. > bill fumerola [root/billf]@chc-chimes.com computer horizons corp - www.computerhorizons.com ph:(800)252.2421 x128 / bill.fumerola@computerhorizons.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu Jul 9 13:37:15 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id NAA21089 for freebsd-isp-outgoing; Thu, 9 Jul 1998 13:37:15 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: (from jmb@localhost) by hub.freebsd.org (8.8.8/8.8.8) id NAA21082 for isp; Thu, 9 Jul 1998 13:37:14 -0700 (PDT) (envelope-from jmb) From: "Jonathan M. Bresler" Message-Id: <199807092037.NAA21082@hub.freebsd.org> Subject: not-for-mail headers To: isp Date: Thu, 9 Jul 1998 13:37:14 -0700 (PDT) X-Mailer: ELM [version 2.4ME+ PL32 (25)] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org what does the "not-for-mail" header mean? i thought it means that the message should not be propagated to email. nonetheless, some of these show up at freebsd.org each day. so what does it mean, if not not for mail? jmb To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu Jul 9 14:04:31 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id OAA24467 for freebsd-isp-outgoing; Thu, 9 Jul 1998 14:04:31 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from gate.part.net (gate.part.net [209.160.89.206]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id OAA24457; Thu, 9 Jul 1998 14:04:23 -0700 (PDT) (envelope-from jlp@Part.NET) Received: (from mail@localhost) by gate.part.net (8.8.8/8.8.8) id PAA01817; Thu, 9 Jul 1998 15:03:57 -0600 (MDT) Received: from loa.part.net( 10.0.1.146) by gate.part.net via smap (V2.1) id xma001815; Thu, 9 Jul 98 15:03:49 -0600 Received: from loa.part.net (localhost [127.0.0.1]) by loa.part.net (8.8.8/8.8.8) with ESMTP id PAA21015; Thu, 9 Jul 1998 15:03:47 -0600 (MDT) Message-Id: <199807092103.PAA21015@loa.part.net> X-Mailer: exmh version 2.0.2 2/24/98 To: "Jonathan M. Bresler" cc: isp@hub.freebsd.org Subject: Re: not-for-mail headers X-face: p=61=y<.Il$z+k*y~"j>%c[8R~8{j3WTnaSd-'RyC>t.Ub>AAm\zYA#5JF +W=G?EI+|EI);]=fs_MOfKN0n9`OlmB[1^0;L^64K5][nOb&gv/n}p@mm06|J|WNa asp7mMEw0w)e_6T~7v-\]yHKvI^1}[2k)] References: <199807092037.NAA21082@hub.freebsd.org> In-reply-to: Your message of "Thu, 09 Jul 1998 13:37:14 PDT." <199807092037.NAA21082@hub.freebsd.org> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Date: Thu, 09 Jul 1998 15:03:47 -0600 From: "Jan L. Peterson" Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org > what does the "not-for-mail" header mean? It means that you should not use the Path: header from a Usenet message in order to get back to the sender. The Path header shows the path that the message took to get to you (what news servers it passed through). In the olden days, e-mail addresses looked like this, too (bang paths, we called 'em). Sometimes, people would send mail to them, assuming that it was a valid path for uucp-based mail to get back to the author. This was often a bad assumption. not-for-mail was appended at some point so that the mail would bounce and the sender would get the idea that the Path header was "not for mail". Now, isn't that more than you wanted to know? :-) -jan- -- Jan L. Peterson PartNET tel. +1 801 581 1118 Senior Systems Admin 423 Wakara Way, Suite 216 fax +1 801 581 1785 jlp@part.net Salt Lake City, UT 84108 http://www.part.net/ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu Jul 9 14:22:50 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id OAA27322 for freebsd-isp-outgoing; Thu, 9 Jul 1998 14:22:50 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: (from jmb@localhost) by hub.freebsd.org (8.8.8/8.8.8) id OAA27310; Thu, 9 Jul 1998 14:22:43 -0700 (PDT) (envelope-from jmb) From: "Jonathan M. Bresler" Message-Id: <199807092122.OAA27310@hub.freebsd.org> Subject: Re: not-for-mail headers In-Reply-To: <199807092103.PAA21015@loa.part.net> from "Jan L. Peterson" at "Jul 9, 98 03:03:47 pm" To: jlp@Part.NET (Jan L. Peterson) Date: Thu, 9 Jul 1998 14:22:42 -0700 (PDT) Cc: jmb@FreeBSD.ORG, isp@hub.freebsd.org X-Mailer: ELM [version 2.4ME+ PL32 (25)] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Jan L. Peterson wrote: > > what does the "not-for-mail" header mean? > > It means that you should not use the Path: header from a Usenet message > in order to get back to the sender. The Path header shows the path > that the message took to get to you (what news servers it passed > through). In the olden days, e-mail addresses looked like this, too > (bang paths, we called 'em). Sometimes, people would send mail to > them, assuming that it was a valid path for uucp-based mail to get back > to the author. This was often a bad assumption. > > not-for-mail was appended at some point so that the mail would bounce > and the sender would get the idea that the Path header was "not for > mail". > > Now, isn't that more than you wanted to know? :-) not at all! i remember bang-paths, through i never had to user them much. so if a not-for-mail header appears at freebsd.org, the mail message is an "escapee" from some news server, and i can drop it...we dont accept mail from news, but allow, even encourage, mail to news gateways. jmb To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu Jul 9 14:32:35 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id OAA29088 for freebsd-isp-outgoing; Thu, 9 Jul 1998 14:32:35 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from gate.part.net (gate.part.net [209.160.89.206]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id OAA29076; Thu, 9 Jul 1998 14:32:31 -0700 (PDT) (envelope-from jlp@Part.NET) Received: (from mail@localhost) by gate.part.net (8.8.8/8.8.8) id PAA01938; Thu, 9 Jul 1998 15:32:28 -0600 (MDT) Received: from loa.part.net( 10.0.1.146) by gate.part.net via smap (V2.1) id xma001935; Thu, 9 Jul 98 15:32:14 -0600 Received: from loa.part.net (localhost [127.0.0.1]) by loa.part.net (8.8.8/8.8.8) with ESMTP id PAA22048; Thu, 9 Jul 1998 15:32:14 -0600 (MDT) Message-Id: <199807092132.PAA22048@loa.part.net> X-Mailer: exmh version 2.0.2 2/24/98 To: "Jonathan M. Bresler" cc: isp@hub.freebsd.org Subject: Re: not-for-mail headers X-face: p=61=y<.Il$z+k*y~"j>%c[8R~8{j3WTnaSd-'RyC>t.Ub>AAm\zYA#5JF +W=G?EI+|EI);]=fs_MOfKN0n9`OlmB[1^0;L^64K5][nOb&gv/n}p@mm06|J|WNa asp7mMEw0w)e_6T~7v-\]yHKvI^1}[2k)] References: <199807092122.OAA27310@hub.freebsd.org> In-reply-to: Your message of "Thu, 09 Jul 1998 14:22:42 PDT." <199807092122.OAA27310@hub.freebsd.org> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Date: Thu, 09 Jul 1998 15:32:13 -0600 From: "Jan L. Peterson" Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org > so if a not-for-mail header appears at freebsd.org, > the mail message is an "escapee" from some news server, > and i can drop it...we dont accept mail from news, but > allow, even encourage, mail to news gateways. Yes, that's true, but why drop mail from news? Just to avoid spam? -jan- -- Jan L. Peterson PartNET tel. +1 801 581 1118 Senior Systems Admin 423 Wakara Way, Suite 216 fax +1 801 581 1785 jlp@part.net Salt Lake City, UT 84108 http://www.part.net/ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu Jul 9 14:33:34 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id OAA29240 for freebsd-isp-outgoing; Thu, 9 Jul 1998 14:33:34 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: (from jmb@localhost) by hub.freebsd.org (8.8.8/8.8.8) id OAA29228; Thu, 9 Jul 1998 14:33:30 -0700 (PDT) (envelope-from jmb) From: "Jonathan M. Bresler" Message-Id: <199807092133.OAA29228@hub.freebsd.org> Subject: Re: not-for-mail headers In-Reply-To: <199807092132.PAA22048@loa.part.net> from "Jan L. Peterson" at "Jul 9, 98 03:32:13 pm" To: jlp@Part.NET (Jan L. Peterson) Date: Thu, 9 Jul 1998 14:33:30 -0700 (PDT) Cc: jmb@FreeBSD.ORG, isp@hub.freebsd.org X-Mailer: ELM [version 2.4ME+ PL32 (25)] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Jan L. Peterson wrote: > > so if a not-for-mail header appears at freebsd.org, > > the mail message is an "escapee" from some news server, > > and i can drop it...we dont accept mail from news, but > > allow, even encourage, mail to news gateways. > > Yes, that's true, but why drop mail from news? Just to avoid spam? that's one. two, news has too many spontaneously combusting posters. jmb To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu Jul 9 16:02:38 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id QAA11561 for freebsd-isp-outgoing; Thu, 9 Jul 1998 16:02:38 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from postal.c-zone.net (postal.c-zone.net [207.211.22.14]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id QAA11550 for ; Thu, 9 Jul 1998 16:02:29 -0700 (PDT) (envelope-from medlir@c-zone.net) Received: from localhost (medlir@localhost) by postal.c-zone.net (8.8.7/8.8.7) with SMTP id QAA11608; Thu, 9 Jul 1998 16:02:22 -0700 (PDT) (envelope-from medlir@c-zone.net) Date: Thu, 9 Jul 1998 16:02:22 -0700 (PDT) From: Dan Babb To: IBS / Andre Oppermann cc: freebsd-isp@FreeBSD.ORG Subject: Re: Recommended FTP servers? In-Reply-To: <35A51FEA.1B89F1A8@pipeline.ch> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org > Why not the standard FreeBSD ftpd with INTERNAL_LS compiled in? > > man ftpd that is all i am using, works fine. Dan Babb Network Administrator - www.czis.net - hell is the possibility of sanity To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu Jul 9 20:42:27 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id UAA13069 for freebsd-isp-outgoing; Thu, 9 Jul 1998 20:42:27 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from ms.lawton.com.cn ([202.96.242.129]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id UAA13064; Thu, 9 Jul 1998 20:42:22 -0700 (PDT) (envelope-from haifeng@ms.lawton.com.cn) Received: from jianping ([202.96.242.251]) by ms.lawton.com.cn (8.8.7/8.8.7) with SMTP id LAA11417; Fri, 10 Jul 1998 11:45:54 +0800 (CST) (envelope-from haifeng@ms.lawton.com.cn) Message-ID: <000f01bdabac$283860f0$fbf260ca@jianping.lawton.com.cn> From: "Haifeng" To: Cc: Subject: how about this error Date: Fri, 10 Jul 1998 11:40:52 +0900 MIME-Version: 1.0 Content-Type: multipart/alternative; boundary="----=_NextPart_000_000C_01BDABF7.97804680" X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 4.72.2106.4 X-MimeOLE: Produced By Microsoft MimeOLE V4.72.2106.4 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org This is a multi-part message in MIME format. ------=_NextPart_000_000C_01BDABF7.97804680 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Hi guys: I use freebsd, the server send me some mail told me below problem: >From daemon Fri Jul 10 02:00:37 1998 Received: (from root@localhost) by ms.lawton.com.cn (8.8.7/8.8.7) id CAA10178 for root; Fri, 10 Jul 1998 02:00:01 +0800 (CST) (envelope-from root) Date: Fri, 10 Jul 1998 02:00:01 +0800 (CST) From: Charlie Root Message-Id: <199807091800.CAA10178@ms.lawton.com.cn> Subject: ms security check output Status: R checking setuid files and devices: checking for uids of 0: root 0 toor 0 ms kernel log messages: > arplookup 242.255.112.156 failed: host is not on local network > arplookup 242.255.0.0 failed: host is not on local network > arplookup 242.255.112.156 failed: host is not on local network > arplookup 242.255.112.156 failed: host is not on local network > arplookup 242.255.0.0 failed: host is not on local network ------=_NextPart_000_000C_01BDABF7.97804680 Content-Type: text/html; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable
Hi guys:
 
I use freebsd, the server send me = some mail told=20 me below problem:
 

From daemon Fri Jul 10 02:00:37 1998

Received: (from root@localhost)

by ms.lawton.com.cn (8.8.7/8.8.7) id CAA10178

for root; Fri, 10 Jul 1998 02:00:01 +0800 (CST)

(envelope-from root)

Date: Fri, 10 Jul 1998 02:00:01 +0800 (CST)

From: Charlie Root <root>

Message-Id: <199807091800.CAA10178@ms.lawton.com.cn>

Subject: ms security check output

Status: R

checking setuid files and devices:

 

checking for uids of 0:

root 0

toor 0

 

ms kernel log messages:

> arplookup 242.255.112.156 failed: host is not on local = network

> arplookup 242.255.0.0 failed: host is not on local network

> arplookup 242.255.112.156 failed: host is not on local = network

> arplookup 242.255.112.156 failed: host is not on local = network

> arplookup 242.255.0.0 failed: host is not on local network

 

------=_NextPart_000_000C_01BDABF7.97804680-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu Jul 9 23:29:29 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id XAA28009 for freebsd-isp-outgoing; Thu, 9 Jul 1998 23:29:29 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from coleridge.kublai.com (coleridge.kublai.com [207.96.1.116]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id XAA27993; Thu, 9 Jul 1998 23:29:12 -0700 (PDT) (envelope-from shmit@natasya.kublai.com) Received: from natasya.kublai.com (natasya.kublai.com [207.172.25.236]) by coleridge.kublai.com (8.8.8/8.8.8) with ESMTP id BAA22311; Fri, 10 Jul 1998 01:48:11 -0400 (EDT) (envelope-from shmit@natasya.kublai.com) Received: (from shmit@localhost) by natasya.kublai.com (8.8.8/8.8.8) id BAA04408; Fri, 10 Jul 1998 01:48:10 -0400 (EDT) Message-ID: <19980710014810.21760@kublai.com> Date: Fri, 10 Jul 1998 01:48:10 -0400 From: Brian Cully To: "Jonathan M. Bresler" , "Jan L. Peterson" Cc: isp@hub.freebsd.org Subject: Re: not-for-mail headers Reply-To: shmit@kublai.com References: <199807092132.PAA22048@loa.part.net> <199807092133.OAA29228@hub.freebsd.org> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 0.89i In-Reply-To: <199807092133.OAA29228@hub.freebsd.org>; from Jonathan M. Bresler on Thu, Jul 09, 1998 at 02:33:30PM -0700 X-Sender: If your mailer pays attention to this, it's broken. X-PGP-Info: finger shmit@kublai.com for my public key. Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Thu, Jul 09, 1998 at 02:33:30PM -0700, Jonathan M. Bresler wrote: > two, news has too many spontaneously combusting posters. That sounds like censorsh... *FOOM* To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Jul 10 05:40:11 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id FAA03063 for freebsd-isp-outgoing; Fri, 10 Jul 1998 05:40:11 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from ntserver.computronic.hu (ntserver.computronic.hu [194.149.43.67]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id FAA03058; Fri, 10 Jul 1998 05:40:06 -0700 (PDT) (envelope-from andras.tudos@computronic.hu) Received: from gericom-nt (dhcp1.computronic.hu [194.149.43.80]) by ntserver.computronic.hu (Post.Office MTA v3.1.2 release (PO205-101c) ID# 0-44403U100L100S0) with SMTP id AAA750; Fri, 10 Jul 1998 14:39:57 +0200 Message-Id: <3.0.5.32.19980710144137.00ad7930@computronic.hu> X-Sender: andras.tudos@computronic.hu X-Mailer: QUALCOMM Windows Eudora Pro Version 3.0.5 (32) Date: Fri, 10 Jul 1998 14:41:37 +0200 To: freebsd-isp@FreeBSD.ORG, freebsd-database@FreeBSD.ORG From: "Andras Tudos - Computronic, C3" Subject: Highly reliable database package Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hi, we need recommendations of a highly reliable database package having a FreeBSD client library (preferably running on FreeBSD) , which can serve a simple database with *a lot of concurrent queries* without crashing every day. We are using Postgres at the moment, but can't stay with it any more. Even the developers acknowledge this being a problem. The application: user database of a large mail server (currently ~65000 users). Andras Tudos C3, Budapest To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Jul 10 06:34:19 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id GAA10216 for freebsd-isp-outgoing; Fri, 10 Jul 1998 06:34:19 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from casimir.easynet.fr (casimir.easynet.fr [195.114.64.17]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id GAA10207 for ; Fri, 10 Jul 1998 06:34:14 -0700 (PDT) (envelope-from rama@casimir.easynet.fr) Received: (from rama@localhost) by casimir.easynet.fr (8.8.8/8.8.8) id PAA18276 for freebsd-isp@FreeBSD.ORG; Fri, 10 Jul 1998 15:34:02 +0200 (CEST) (envelope-from rama) Message-ID: <19980710153402.A18243@easynet.fr> Date: Fri, 10 Jul 1998 15:34:02 +0200 From: David Ramahefason To: freebsd-isp@FreeBSD.ORG Subject: G703 anyone ?? Reply-To: David Ramahefason Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 0.92.8 Organization: Systems Team Easynet France SA X-Operating-System: FreeBSD Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hi, We're about to have 2x2Mbs links here in G703. The question I have is: what hardware do I need under FreeBSD to use such sort of link ?? How to aggregate 2x2Mbs ?? Thankx -- /David Ramahefason Administrateur Systeme/Reseau/ /rama@easynet.fr Easynet France SA / /0144547031 ICQ: 14292822 / To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Jul 10 08:55:11 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id IAA28475 for freebsd-isp-outgoing; Fri, 10 Jul 1998 08:55:11 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from chickenbean.ais-gwd.com (chickenbean.com [205.160.97.50]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id IAA28470; Fri, 10 Jul 1998 08:55:08 -0700 (PDT) (envelope-from charlespeters@chickenbean.com) From: charlespeters@chickenbean.com Received: from ci1000971-c.sptnbrg1.sc.home.com (ci1000971-c.sptnbrg1.sc.home.com [24.4.113.32]) by chickenbean.ais-gwd.com (8.8.8/8.8.8) with SMTP id MAA11248; Fri, 10 Jul 1998 12:00:31 -0400 (EDT) (envelope-from charlespeters@chickenbean.com) To: , Subject: Front Page Extensions - Where Can I Get Them? Date: Fri, 10 Jul 1998 11:52:06 -0400 Message-ID: <000001bdac1a$b10d2dc0$20710418@ci1000971-c.sptnbrg1.sc.home.com> MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook 8.5, Build 4.71.2173.0 Importance: Normal X-MimeOLE: Produced By Microsoft MimeOLE V4.72.2106.4 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org I understand that there exist a set of 'extensions' for use with Apache and FreeBSD. Where may I get these extensions and documentation on their installation? Thanks in Advance, Charles mailto:charlespeters@tecpro.com mailto:charlespeters@chickenbean.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Jul 10 08:59:38 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id IAA29104 for freebsd-isp-outgoing; Fri, 10 Jul 1998 08:59:38 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from hp9000.chc-chimes.com (billf@hp9000.chc-chimes.com [206.67.97.84]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id IAA29091 for ; Fri, 10 Jul 1998 08:59:33 -0700 (PDT) (envelope-from billf@chc-chimes.com) Received: from localhost by hp9000.chc-chimes.com with SMTP (1.39.111.2/16.2) id AA282456356; Fri, 10 Jul 1998 11:59:16 -0400 Date: Fri, 10 Jul 1998 11:59:15 -0400 (EDT) From: Bill Fumerola To: David Ramahefason Cc: freebsd-isp@FreeBSD.ORG Subject: Re: G703 anyone ?? In-Reply-To: <19980710153402.A18243@easynet.fr> Message-Id: Mime-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org I don't think you're looking for hardware to run under FreeBSD. You'll need routers and CSU/DSUs. talk to your uplink or go to http://www.cisco.com (get a router with a built in csu/dsu) On Fri, 10 Jul 1998, David Ramahefason wrote: > We're about to have 2x2Mbs links here in G703. > The question I have is: what hardware do I need under > FreeBSD to use such sort of link ?? > How to aggregate 2x2Mbs ?? bill fumerola [root/billf]@chc-chimes.com computer horizons corp - www.computerhorizons.com ph:(800)252.2421 x128 / bill.fumerola@computerhorizons.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Jul 10 09:08:21 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id JAA00533 for freebsd-isp-outgoing; Fri, 10 Jul 1998 09:08:21 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from casimir.easynet.fr (casimir.easynet.fr [195.114.64.17]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id JAA00525 for ; Fri, 10 Jul 1998 09:08:18 -0700 (PDT) (envelope-from rama@casimir.easynet.fr) Received: (from rama@localhost) by casimir.easynet.fr (8.8.8/8.8.8) id SAA20607; Fri, 10 Jul 1998 18:08:01 +0200 (CEST) (envelope-from rama) Message-ID: <19980710180801.A20393@easynet.fr> Date: Fri, 10 Jul 1998 18:08:01 +0200 From: David Ramahefason To: Bill Fumerola Cc: freebsd-isp@FreeBSD.ORG Subject: Re: G703 anyone ?? Reply-To: David Ramahefason References: <19980710153402.A18243@easynet.fr> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 0.92.8 In-Reply-To: ; from Bill Fumerola on Fri, Jul 10, 1998 at 11:59:15AM -0400 Organization: Systems Team Easynet France SA X-Operating-System: FreeBSD Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Fri, Jul 10, 1998 at 11:59:15AM -0400, Bill Fumerola wrote: > > I don't think you're looking for hardware to run under FreeBSD. You'll > need routers and CSU/DSUs. talk to your uplink or go to > http://www.cisco.com (get a router with a built in csu/dsu) ---end quoted text--- Well, no :), What I'd like is to plug the line into my FBSD box, via an ETINC or Riscom card. We're using several here, but only for 2Mbs connections... and the G703 is new for me and I don't know anything about this... I see that there was some small boxes that could do the stuff (plugging the G703 --> convert to X21). That's what I'm looking for... Thanks -- /David Ramahefason Administrateur Systeme/Reseau/ /rama@easynet.fr Easynet France SA / /0144547031 ICQ: 14292822 / To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Jul 10 09:19:39 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id JAA01456 for freebsd-isp-outgoing; Fri, 10 Jul 1998 09:19:39 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from hp9000.chc-chimes.com (billf@hp9000.chc-chimes.com [206.67.97.84]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id JAA01445 for ; Fri, 10 Jul 1998 09:19:37 -0700 (PDT) (envelope-from billf@chc-chimes.com) Received: from localhost by hp9000.chc-chimes.com with SMTP (1.39.111.2/16.2) id AA289617552; Fri, 10 Jul 1998 12:19:12 -0400 Date: Fri, 10 Jul 1998 12:19:12 -0400 (EDT) From: Bill Fumerola To: David Ramahefason Cc: freebsd-isp@FreeBSD.ORG Subject: Re: G703 anyone ?? In-Reply-To: <19980710180801.A20393@easynet.fr> Message-Id: Mime-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Digi International (www.digii.com, I believe) has a lot of telecomm converers. www.blackbox.com too. On Fri, 10 Jul 1998, David Ramahefason wrote: > On Fri, Jul 10, 1998 at 11:59:15AM -0400, Bill Fumerola wrote: > > > > I don't think you're looking for hardware to run under FreeBSD. You'll > > need routers and CSU/DSUs. talk to your uplink or go to > > http://www.cisco.com (get a router with a built in csu/dsu) > ---end quoted text--- > > Well, > no :), What I'd like is to plug the line into my FBSD box, > via an ETINC or Riscom card. > We're using several here, but only for 2Mbs connections... > and the G703 is new for me and I don't know anything about > this... I see that there was some small boxes that could do > the stuff (plugging the G703 --> convert to X21). That's what > I'm looking for... > > Thanks > > -- > /David Ramahefason Administrateur Systeme/Reseau/ > /rama@easynet.fr Easynet France SA / > /0144547031 ICQ: 14292822 / > > bill fumerola [root/billf]@chc-chimes.com computer horizons corp - www.computerhorizons.com ph:(800)252.2421 x128 / bill.fumerola@computerhorizons.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Jul 10 09:52:26 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id JAA05482 for freebsd-isp-outgoing; Fri, 10 Jul 1998 09:52:26 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from java.dpcsys.com (java.dpcsys.com [206.16.184.7]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id JAA05448; Fri, 10 Jul 1998 09:52:18 -0700 (PDT) (envelope-from dan@dpcsys.com) Received: from localhost (dan@localhost) by java.dpcsys.com (8.8.7/8.8.2) with SMTP id JAA05436; Fri, 10 Jul 1998 09:53:18 -0700 (PDT) Date: Fri, 10 Jul 1998 09:53:18 -0700 (PDT) From: Dan Busarow To: "Andras Tudos - Computronic, C3" cc: freebsd-isp@FreeBSD.ORG, freebsd-database@FreeBSD.ORG Subject: Re: Highly reliable database package In-Reply-To: <3.0.5.32.19980710144137.00ad7930@computronic.hu> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Fri, 10 Jul 1998, Andras Tudos - Computronic, C3 wrote: > we need recommendations of a highly reliable database package having a > FreeBSD client library (preferably running on FreeBSD) , which can serve a > simple database with *a lot of concurrent queries* without crashing every > day. We are using Postgres at the moment, but can't stay with it any more. > Even the developers acknowledge this being a problem. We're real happy with mysql. Using it handle a bunch of database apps on client websites. Running wll over 300,000 queries a day. calafia:/usr/home/dan $ mysqladmin status Uptime: 4818806 Running threads: 2 Questions: 17519383 Reloads: 5 Open tables: 63 Dan -- Dan Busarow 949 443 4172 DPC Systems / Beach.Net dan@dpcsys.com Dana Point, California 83 09 EF 59 E0 11 89 B4 8D 09 DB FD E1 DD 0C 82 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Jul 10 11:09:29 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id LAA16724 for freebsd-isp-outgoing; Fri, 10 Jul 1998 11:09:29 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from bastuba.partitur.se (bastuba.partitur.se [193.219.246.194]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id LAA16715 for ; Fri, 10 Jul 1998 11:09:26 -0700 (PDT) (envelope-from girgen@partitur.se) Received: from solist. (solist.partitur.se [193.219.246.204]) by bastuba.partitur.se (8.8.8/8.8.8) with SMTP id UAA09688; Fri, 10 Jul 1998 20:09:23 +0200 (CEST) (envelope-from girgen@partitur.se) Received: from partitur.se by solist. (SMI-8.6/SMI-SVR4) id UAA04329; Fri, 10 Jul 1998 20:07:56 +0200 Message-ID: <35A6587B.D5F4F228@partitur.se> Date: Fri, 10 Jul 1998 20:07:55 +0200 From: Palle Girgensohn Organization: Partitur X-Mailer: Mozilla 4.05 [en] (X11; I; SunOS 5.6 sun4u) MIME-Version: 1.0 To: freebsd-isp@FreeBSD.ORG Subject: Help: bridge router trouble Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hello, I have a problem setting up a fbsd machine as a packet filtering router. It just won't route properly. Now the net looks like this: x.y.z.193 is my isp's router and we connect directly to it. No problem. Our network is x.y.z.192/26 The new order that I want is this: enet enet |---- | | -------------- | --------------- |---- |isp's router| | |fbsd machine | | our LAN | A |---|---| B |-------| C -------------- | --------------- |---- x.y.q.45 | x.y.q.46 x.y.z.193 | x.y.z.n That is, we "insert" a small ip net (x.y.q.44/30) between and add a second router, the FreeBSD machine. B has two NICs. A bridge! Pretty basic. :) I have set up the fbsd machine in a testbed like the one above, with another fbsd as .45, and it worked well, pinging and telnetting in all directions. I rebooted it to see that rc.conf was correct, and it was. Rebooted again, and connected it live to the isp's router at the same time that they changed from x.y.z.193 to x.y.q.45. >From B, I could ping A, but A couldn't ping B! >From C both interfaces' IPs on B were seen, but C couldn't ping A. B was set up with a default route to A, and C with a default to B. A is a cisco router, that's all I know. Here's some info on B: >sysctl net.inet.ip.forwarding gives 1. I also tried turning ip forwarding off, and shutting down the internal interface with ifconfig, but to no avail. I could still ping from B to A, but not from A to B. What's happening? >ipfw list gives: 65000 allow ip from any to any 65535 deny ip from any to any >uname -a FreeBSD gw.partitur.se 2.2.6-STABLE FreeBSD 2.2.6-STABLE #0: Fri Jun 12 22:41:10 CEST 1998 root@trumpet.partitur.se:/usr/src/sys/compile/PALLEDIKET i386 I've tried running with and without 'routed', but whouldn't matter, right? Here are relevant parts of rc.conf: ... firewall_enable="YES" firewall_type="/etc/firewall.conf" firewall_quiet="NO" tcp_extensions="NO" network_interfaces="fxp0 fxp1 lo0" ifconfig_fxp0="inet x.y.z.193 netmask 0xffffffc0" ifconfig_fxp1="inet x.y.q.46 netmask 0xfffffffc" ifconfig_lo0="inet 127.0.0.1" # default loopback device configuration. defaultrouter="x.y.q.45" static_routes="" gateway_enable="YES" router_enable="YES" router="routed" router_flags="" mrouted_enable="NO" mrouted_flags="" forward_sourceroute="NO" accept_sourceroute="NO" Relevant parts of the kernel config: options MROUTING #Multicast routing options IPFIREWALL options IPFIREWALL_VERBOSE options "IPFIREWALL_VERBOSE_LIMIT=100" options IPDIVERT /etc/firewall.conf: add 65000 allow ip from any to any (for now anyway ;-) Phew, that was exhausting ;-) Any ideas? I must be missing some tweaky setting, eh? Regards, Palle To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Jul 10 12:03:33 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id MAA23511 for freebsd-isp-outgoing; Fri, 10 Jul 1998 12:03:33 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from unix.kawartha.com (unix.kawartha.com [204.101.15.2]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id MAA23497; Fri, 10 Jul 1998 12:03:28 -0700 (PDT) (envelope-from paul@kawartha.com) Received: from kawartha.com (tech.kawartha.com [204.101.15.95]) by unix.kawartha.com (8.8.8/8.8.7) with ESMTP id PAA08346; Fri, 10 Jul 1998 15:05:12 -0400 (EDT) Message-ID: <35A66786.DA9FEC9E@kawartha.com> Date: Fri, 10 Jul 1998 15:12:06 -0400 From: Paul Stewart X-Mailer: Mozilla 4.05 [en] (Win95; I) MIME-Version: 1.0 To: charlespeters@chickenbean.com CC: questions@FreeBSD.ORG, isp@FreeBSD.ORG Subject: Re: Front Page Extensions - Where Can I Get Them? References: <000001bdac1a$b10d2dc0$20710418@ci1000971-c.sptnbrg1.sc.home.com> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org If you run the ports collection, you will find them under /usr/ports/www/apache-fp Paul charlespeters@chickenbean.com wrote: > > I understand that there exist a set of 'extensions' for use with Apache and > FreeBSD. > > Where may I get these extensions and documentation on their installation? > > Thanks in Advance, > > Charles > > mailto:charlespeters@tecpro.com > mailto:charlespeters@chickenbean.com > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Jul 10 13:23:52 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id NAA04057 for freebsd-isp-outgoing; Fri, 10 Jul 1998 13:23:52 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from bastuba.partitur.se (bastuba.partitur.se [193.219.246.194]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id NAA03934; Fri, 10 Jul 1998 13:23:22 -0700 (PDT) (envelope-from girgen@partitur.se) Received: from solist. (solist.partitur.se [193.219.246.204]) by bastuba.partitur.se (8.8.8/8.8.8) with SMTP id WAA10360; Fri, 10 Jul 1998 22:23:18 +0200 (CEST) (envelope-from girgen@partitur.se) Received: from partitur.se by solist. (SMI-8.6/SMI-SVR4) id WAA04423; Fri, 10 Jul 1998 22:21:51 +0200 Message-ID: <35A677DE.5D6033DA@partitur.se> Date: Fri, 10 Jul 1998 22:21:50 +0200 From: Palle Girgensohn Organization: Partitur X-Mailer: Mozilla 4.05 [en] (X11; I; SunOS 5.6 sun4u) MIME-Version: 1.0 To: charlespeters@chickenbean.com CC: questions@FreeBSD.ORG, isp@FreeBSD.ORG Subject: Re: Front Page Extensions - Where Can I Get Them? References: <000001bdac1a$b10d2dc0$20710418@ci1000971-c.sptnbrg1.sc.home.com> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org charlespeters@chickenbean.com wrote: > > I understand that there exist a set of 'extensions' for use with Apache and > FreeBSD. > > Where may I get these extensions and documentation on their installation? > > Thanks in Advance, > > Charles > > mailto:charlespeters@tecpro.com > mailto:charlespeters@chickenbean.com > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-questions" in the body of the message Hi! cd /usr/ports/www/apache-fp for a start, if you have a fresh ports tree. Otherwise get one with cvsup, or fetch the tarball from ftp://ftp.freebsd.org/pub/FreeBSD/ports-current/www/apache-fp.tar . Check the Makefile for install info. Regards, Palle To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Jul 10 14:18:06 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id OAA17820 for freebsd-isp-outgoing; Fri, 10 Jul 1998 14:18:06 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from server.comsys.com (dialup-A238.europa.com [204.202.48.238]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id OAA17695 for ; Fri, 10 Jul 1998 14:17:55 -0700 (PDT) (envelope-from alex@comsys.com) Received: from comsys.com (dell3200 [204.202.49.61]) by server.comsys.com (8.8.8/8.8.5) with ESMTP id PAA00251 for ; Fri, 10 Jul 1998 15:17:35 -0700 (PDT) Message-ID: <35A6850D.11AEAE7@comsys.com> Date: Fri, 10 Jul 1998 14:18:05 -0700 From: Alex Huppenthal X-Mailer: Mozilla 4.05 [en] (Win95; I) MIME-Version: 1.0 To: freebsd-isp@FreeBSD.ORG Subject: testing throughput Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org We're running new HDSL modems and want to test various kinds of thruput.. Any suggestions? To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Jul 10 14:59:43 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id OAA25074 for freebsd-isp-outgoing; Fri, 10 Jul 1998 14:59:43 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from bastuba.partitur.se (bastuba.partitur.se [193.219.246.194]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id OAA24969 for ; Fri, 10 Jul 1998 14:59:06 -0700 (PDT) (envelope-from girgen@partitur.se) Received: from solist. (solist.partitur.se [193.219.246.204]) by bastuba.partitur.se (8.8.8/8.8.8) with SMTP id XAA10909; Fri, 10 Jul 1998 23:59:01 +0200 (CEST) (envelope-from girgen@partitur.se) Received: from partitur.se by solist. (SMI-8.6/SMI-SVR4) id XAA04667; Fri, 10 Jul 1998 23:57:28 +0200 Message-ID: <35A68E48.BD4B924A@partitur.se> Date: Fri, 10 Jul 1998 23:57:28 +0200 From: Palle Girgensohn Organization: Partitur X-Mailer: Mozilla 4.05 [en] (X11; I; SunOS 5.6 sun4u) MIME-Version: 1.0 To: Glen Foster CC: freebsd-isp@FreeBSD.ORG Subject: Re: Help: bridge router trouble References: <199807102131.RAA11918@gfoster.intr.net> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Glen, Thanks for your reply. I'll get back to my ISP on monday. BTW, did I mentione that my ISP could ping me if I set up a client machine (a mac, in fact) directly on the cisco with IP x.y.q.46. But he couldn't ping me when the freebsd machine was there instead, even if I shut off ip forwarding in the kernel (w/ sysctl) and shut off the internal interface (sort of simulating a client)? Odd... I'm _not_ using a private address space, btw. (I have set up the machine to route a private net with natd now, just to test that it works. seems to be just fine; it routes my 192.168.0.2 powerbook and an old fbsd workstation out to the internet and back, which also leads me to believe that my isp made a mistake... a static route seems like the way to go). Thanks! /Palle Glen Foster wrote: > > It sounds like A is missing a route to C (through B). Either have > your ISP configure a static route on A or run a routing protocol > between A & B (RIP/routed is fine). Just running routed on B isn't > enough unless A knows to listen to it. > > If A is a Cisco > > Cisco> show ip route x.y.z.193 > > should return > > x.y.q.46 > > If you cannot get your ISP to configure a static route on the Cisco > (e.g. if you are using private address space for C), you will have to > do NAT to make your C addresses appear to be x.y.q.46 to the outside > world. > > Good luck, > Glen Foster > > >Date: Fri, 10 Jul 1998 20:07:55 +0200 > >From: Palle Girgensohn > >Organization: Partitur > > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Jul 10 15:15:04 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id PAA28608 for freebsd-isp-outgoing; Fri, 10 Jul 1998 15:15:04 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from hobbes.saturn-tech.com (drussell@hobbes.saturn-tech.com [207.229.19.5]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id PAA28595 for ; Fri, 10 Jul 1998 15:14:57 -0700 (PDT) (envelope-from drussell@saturn-tech.com) Received: from localhost (drussell@localhost) by hobbes.saturn-tech.com (8.8.4/8.8.2) with SMTP id QAA23343; Fri, 10 Jul 1998 16:15:37 -0600 (MDT) Date: Fri, 10 Jul 1998 16:15:36 -0600 (MDT) From: Doug Russell To: Alex Huppenthal cc: freebsd-isp@FreeBSD.ORG Subject: Re: testing throughput In-Reply-To: <35A6850D.11AEAE7@comsys.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Fri, 10 Jul 1998, Alex Huppenthal wrote: > We're running new HDSL modems and want to test various kinds > of thruput.. > > Any suggestions? How many kinds of throughput are there? :) I can ftp a file from a remote location at up to about 800 K/sec and send at up to about 120 K/sec on my RADSL link..... What are you trying to test? Later...... To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Jul 10 16:28:08 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id QAA12046 for freebsd-isp-outgoing; Fri, 10 Jul 1998 16:28:08 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: (from jmb@localhost) by hub.freebsd.org (8.8.8/8.8.8) id QAA12016; Fri, 10 Jul 1998 16:28:04 -0700 (PDT) (envelope-from jmb) From: "Jonathan M. Bresler" Message-Id: <199807102328.QAA12016@hub.freebsd.org> Subject: Re: testing throughput In-Reply-To: <35A6850D.11AEAE7@comsys.com> from Alex Huppenthal at "Jul 10, 98 02:18:05 pm" To: alex@comsys.com (Alex Huppenthal) Date: Fri, 10 Jul 1998 16:28:04 -0700 (PDT) Cc: freebsd-isp@FreeBSD.ORG X-Mailer: ELM [version 2.4ME+ PL32 (25)] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Alex Huppenthal wrote: > We're running new HDSL modems and want to test various kinds > of thruput.. > > Any suggestions? yes....last time i tested modems, i found that some could not handle bi-directional traffic sent at max rate. one brand of modems would hang up the phone line after 7 minutes (+- 10 secs) of this test jmb To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Jul 10 16:55:20 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id QAA17071 for freebsd-isp-outgoing; Fri, 10 Jul 1998 16:55:20 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from news1.gtn.com (news1.gtn.com [194.77.0.15]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id QAA16993 for ; Fri, 10 Jul 1998 16:54:51 -0700 (PDT) (envelope-from andreas@klemm.gtn.com) Received: (from uucp@localhost) by news1.gtn.com (8.8.6/8.8.6) with UUCP id BAA16456; Sat, 11 Jul 1998 01:45:09 +0200 (MET DST) Received: (from andreas@localhost) by klemm.gtn.com (8.8.8/8.8.8) id BAA15739; Sat, 11 Jul 1998 01:19:38 +0200 (CEST) (envelope-from andreas) Message-ID: <19980711011938.A15730@klemm.gtn.com> Date: Sat, 11 Jul 1998 01:19:38 +0200 From: Andreas Klemm To: Doug Russell , Alex Huppenthal Cc: freebsd-isp@FreeBSD.ORG Subject: Re: testing throughput References: <35A6850D.11AEAE7@comsys.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 0.91.1i In-Reply-To: ; from Doug Russell on Fri, Jul 10, 1998 at 04:15:36PM -0600 X-Disclaimer: A free society is one where it is safe to be unpopular X-Operating-System: FreeBSD 3.0-CURRENT SMP Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Fri, Jul 10, 1998 at 04:15:36PM -0600, Doug Russell wrote: > > On Fri, 10 Jul 1998, Alex Huppenthal wrote: > > > We're running new HDSL modems and want to test various kinds > > of thruput.. > > > > Any suggestions? > > How many kinds of throughput are there? :) > > I can ftp a file from a remote location at up to about 800 K/sec and send > at up to about 120 K/sec on my RADSL link..... What are you trying to > test? What modem / serial card do you use ? -- Andreas Klemm http://www.FreeBSD.ORG/~andreas What gives you 90% more speed, for example, in kernel compilation ? http://www.FreeBSD.ORG/~fsmp/SMP/akgraph-a/graph1.html "NT = Not Today" (Maggie Biggs) ``powered by FreeBSD SMP'' To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Jul 10 18:18:29 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id SAA03118 for freebsd-isp-outgoing; Fri, 10 Jul 1998 18:18:29 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from Amnesiac.123.org (mcl@Amnesiac.mtl.pl [195.116.4.13]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id SAA03103 for ; Fri, 10 Jul 1998 18:18:23 -0700 (PDT) (envelope-from mcl@Amnesiac.123.org) Received: from localhost (mcl@localhost) by Amnesiac.123.org (8.9.0/8.9.0) with SMTP id DAA04586; Sat, 11 Jul 1998 03:18:03 +0200 (CEST) Date: Sat, 11 Jul 1998 03:18:03 +0200 (CEST) From: Michal Listos To: Alex Huppenthal cc: freebsd-isp@FreeBSD.ORG Subject: Re: testing throughput In-Reply-To: <35A6850D.11AEAE7@comsys.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Fri, 10 Jul 1998, Alex Huppenthal wrote: > We're running new HDSL modems and want to test various kinds > of thruput.. > Any suggestions? Have a look at Linkname: Internet Measurement Tool Survey URL: http://www.nlanr.net/Caidants/meastools.html and FreeBSD ports collection. Michal * God used fork() to create Eve. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Jul 10 18:40:24 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id SAA06327 for freebsd-isp-outgoing; Fri, 10 Jul 1998 18:40:24 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from server.comsys.com (dialup-A110.europa.com [204.202.48.110]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id SAA06321 for ; Fri, 10 Jul 1998 18:40:17 -0700 (PDT) (envelope-from alex@comsys.com) Received: from comsys.com (dell3200 [204.202.49.61]) by server.comsys.com (8.8.8/8.8.5) with ESMTP id TAA00527; Fri, 10 Jul 1998 19:39:16 -0700 (PDT) Message-ID: <35A6C260.9BF85796@comsys.com> Date: Fri, 10 Jul 1998 18:39:44 -0700 From: Alex Huppenthal X-Mailer: Mozilla 4.05 [en] (Win95; I) MIME-Version: 1.0 To: Doug Russell CC: freebsd-isp@FreeBSD.ORG Subject: Re: testing throughput References: Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Doug, Thanks for your response...We are testing our "Personal T1" modems, which have 3 thruput settings. Cheers, -Alex Doug Russell wrote: > > On Fri, 10 Jul 1998, Alex Huppenthal wrote: > > > We're running new HDSL modems and want to test various kinds > > of thruput.. > > > > Any suggestions? > > How many kinds of throughput are there? :) > > I can ftp a file from a remote location at up to about 800 K/sec and send > at up to about 120 K/sec on my RADSL link..... What are you trying to > test? > > Later...... To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Jul 10 23:36:56 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id XAA02796 for freebsd-isp-outgoing; Fri, 10 Jul 1998 23:36:56 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from pasca1.unpad.ac.id (pasca1.unpad.ac.id [167.205.206.193]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id XAA02770 for ; Fri, 10 Jul 1998 23:36:51 -0700 (PDT) (envelope-from mukti@unpad.ac.id) Received: from localhost (mukti@localhost) by pasca1.unpad.ac.id (8.8.7/8.8.7) with SMTP id NAA03643 for ; Sat, 11 Jul 1998 13:14:46 +0700 (JAVT) (envelope-from mukti@unpad.ac.id) Date: Sat, 11 Jul 1998 13:14:31 +0700 (JAVT) From: Mukti Arip To: freebsd-isp@FreeBSD.ORG Subject: Connecting two networks with FreeBSD Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hi everyone!!! I have a problem about connecting two networks with a computer running FreeBSD 2.2.6. The network address for one side is 192.168.1.0 mask 255.255.255.0 and the other side is 10.1.1.0 mask 255.255.255.0. 192.168.1.0 10.1.1.0 ---------------------+ +---------------------- 255.255.255.0 | | 255.255.255.0 | | 192.168.1.1 | | 10.1.1.100 +------+----------+-------+ | ed0 ed1 | | | | FreeBSD | | 2.2.6 | | | +-------------------------+ Until now, I can't ping or traceroute from my workstation (10.1.1.9) to my friend's workstation (IP add. 192.168.1.25). So, how to setup that FreeBSD machine? Any help would be greatly appreciated. Thanks very much, Mukti Arip. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Jul 10 23:57:16 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id XAA04631 for freebsd-isp-outgoing; Fri, 10 Jul 1998 23:57:16 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from breadfruit.seychelles.net (breadfruit.seychelles.net [202.84.227.4]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id XAA04600 for ; Fri, 10 Jul 1998 23:57:10 -0700 (PDT) (envelope-from muditha@seychelles.net) Received: from ATLAS.seychelles.net ([202.84.227.29]) by breadfruit.seychelles.net (8.8.2/8.8.2) with ESMTP id KAA08579 for ; Sat, 11 Jul 1998 10:57:52 +0400 (SMT) Message-ID: <35A70DB0.58277647@seychelles.net> Date: Sat, 11 Jul 1998 11:01:04 +0400 From: Muditha Gunatilake X-Mailer: Mozilla 4.01 [en] (Win95; I) MIME-Version: 1.0 To: freebsd-isp@FreeBSD.ORG Subject: server problems..urgent help needed X-Priority: 3 (Normal) Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Dear All, We are a small ISP. We have a portmaster 2E communication server ( running comos 3.5). Radius and SMTP,pop and password files are sitting on another server runnig freebsd 2.1.5. Since yesterday there seems to be periods of lags meaning mail server will not respond to clients and dial-up customers will get diconnected while verifying username and password. After a little while things seems to be back to normal for another period and then back to the same problem again. This keeps going on and on. I think this is something to do with the Freebsd server since both dial-up and mail accessing problems occur at the same time. Possibility of something to do with authentication. question is what? any ideas help before one of my clients shoot me. :-) Thanx -- --------------------- Muditha Gunatilake Atlas Seychelles Ltd Phone:304060 email: muditha@seychelles.net mbh3gpa@afs.mcc.ac.uk muditha@creole.seychelles.net :-) To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sat Jul 11 06:01:25 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id GAA01416 for freebsd-isp-outgoing; Sat, 11 Jul 1998 06:01:25 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from breadfruit.seychelles.net (breadfruit.seychelles.net [202.84.227.4]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id GAA01408 for ; Sat, 11 Jul 1998 06:01:19 -0700 (PDT) (envelope-from muditha@seychelles.net) Received: from ATLAS.seychelles.net ([202.84.227.29]) by breadfruit.seychelles.net (8.8.2/8.8.2) with ESMTP id RAA02118 for ; Sat, 11 Jul 1998 17:01:40 +0400 (SMT) Message-ID: <35A762FB.7E48675F@seychelles.net> Date: Sat, 11 Jul 1998 17:04:59 +0400 From: Muditha Gunatilake X-Mailer: Mozilla 4.01 [en] (Win95; I) MIME-Version: 1.0 To: freebsd-isp@FreeBSD.ORG Subject: Re: server problems..urgent help needed X-Priority: 3 (Normal) References: <35A70DB0.58277647@seychelles.net> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org I managed to get it sorted out...there was a IP conflict with a leased line setup. thanx Muditha Gunatilake wrote: > Dear All, > > We are a small ISP. We have a portmaster 2E communication server ( > running comos 3.5). Radius and SMTP,pop and password files are sitting > > on another server runnig freebsd 2.1.5. Since yesterday there seems to > > be periods of lags meaning mail server will not respond to clients and > > dial-up customers will get diconnected while verifying username and > password. After a little while things seems to be back to normal for > another period and then back to the same problem again. This keeps > going > on and on. > > I think this is something to do with the Freebsd server since both > dial-up and mail accessing problems occur at the same time. > Possibility > of something to do with authentication. question is what? any ideas > help > before one of my clients shoot me. :-) > > Thanx > > -- > --------------------- > Muditha Gunatilake > Atlas Seychelles Ltd > > Phone:304060 > email: muditha@seychelles.net > mbh3gpa@afs.mcc.ac.uk > muditha@creole.seychelles.net > :-) > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message -- -- --------------------- Muditha Gunatilake Atlas Seychelles Ltd Phone:304060 email: muditha@seychelles.net mbh3gpa@afs.mcc.ac.uk muditha@creole.seychelles.net :-) To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sat Jul 11 10:32:57 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id KAA21949 for freebsd-isp-outgoing; Sat, 11 Jul 1998 10:32:57 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from news1.gtn.com (news1.gtn.com [194.77.0.15]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id KAA21932 for ; Sat, 11 Jul 1998 10:32:43 -0700 (PDT) (envelope-from andreas@klemm.gtn.com) Received: (from uucp@localhost) by news1.gtn.com (8.8.6/8.8.6) with UUCP id TAA22063; Sat, 11 Jul 1998 19:30:16 +0200 (MET DST) Received: (from andreas@localhost) by klemm.gtn.com (8.8.8/8.8.8) id TAA12472; Sat, 11 Jul 1998 19:24:57 +0200 (CEST) (envelope-from andreas) Message-ID: <19980711192457.A12033@klemm.gtn.com> Date: Sat, 11 Jul 1998 19:24:57 +0200 From: Andreas Klemm To: Mukti Arip , freebsd-isp@FreeBSD.ORG Subject: Re: Connecting two networks with FreeBSD References: Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 0.91.1i In-Reply-To: ; from Mukti Arip on Sat, Jul 11, 1998 at 01:14:31PM +0700 X-Disclaimer: A free society is one where it is safe to be unpopular X-Operating-System: FreeBSD 3.0-CURRENT SMP Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Sat, Jul 11, 1998 at 01:14:31PM +0700, Mukti Arip wrote: > > Hi everyone!!! > > I have a problem about connecting two networks with a computer running > FreeBSD 2.2.6. The network address for one side is 192.168.1.0 mask > 255.255.255.0 and the other side is 10.1.1.0 mask 255.255.255.0. > > 192.168.1.0 10.1.1.0 > ---------------------+ +---------------------- > 255.255.255.0 | | 255.255.255.0 > | | > 192.168.1.1 | | 10.1.1.100 > +------+----------+-------+ > | ed0 ed1 | > | | > | FreeBSD | > | 2.2.6 | > | | > +-------------------------+ > > Until now, I can't ping or traceroute from my workstation (10.1.1.9) to my > friend's workstation (IP add. 192.168.1.25). So, how to setup that FreeBSD > machine? > > Any help would be greatly appreciated. Did you configure your machine to act as a gateway ? /etc/rc.conf: gateway_enable="YES" # Set to YES if this host will be a gateway. Where is your routing table (netstat -rn) and your machines /etc/rc.conf ? -- Andreas Klemm http://www.FreeBSD.ORG/~andreas What gives you 90% more speed, for example, in kernel compilation ? http://www.FreeBSD.ORG/~fsmp/SMP/akgraph-a/graph1.html "NT = Not Today" (Maggie Biggs) ``powered by FreeBSD SMP'' To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message