From owner-freebsd-isp Mon Feb 17 01:32:47 1997 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.5/8.8.5) id BAA04143 for isp-outgoing; Mon, 17 Feb 1997 01:32:47 -0800 (PST) Received: from esimene.cynet.net.au (root@esimene.cynet.net.au [203.24.16.1]) by freefall.freebsd.org (8.8.5/8.8.5) with ESMTP id BAA04138 for ; Mon, 17 Feb 1997 01:32:42 -0800 (PST) Received: from warpy (warpy.cynet.net.au [203.24.16.9]) by esimene.cynet.net.au (8.8.5/8.6.12) with SMTP id UAA23035 for ; Mon, 17 Feb 1997 20:34:46 +1100 (EST) Message-Id: <199702170934.UAA23035@esimene.cynet.net.au> From: Mikel Lindsaar Reply-to: mikel@cynet.net.au Date: Mon, 17 Feb 97 20:30:04 +1000 To: freebsd-isp@freebsd.org Subject: Apache Virtual Servers (single IP) X-Mailer: MR/2 Internet Cruiser Edition for OS/2 v1.24 Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk I have an apache server running virtual hosts using multiple IP addresses (one per virtual server) I believe there is a way to have this run all on a single IP address, instead of using a heap of IP Alias settings. How is this done? Regards, Mikel -- ----------------------------------------------------------- Mikel Lindsaar | "The dream is the foundation, mikel@cynet.net.au | of our society!" ----------------------------------------------------------- Cynet! The Business ISP! http://www.cynet.net.au/ ----------------------------------------------------------- From owner-freebsd-isp Mon Feb 17 10:03:02 1997 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.5/8.8.5) id KAA01811 for isp-outgoing; Mon, 17 Feb 1997 10:03:02 -0800 (PST) Received: from agora.rdrop.com (root@agora.rdrop.com [199.2.210.241]) by freefall.freebsd.org (8.8.5/8.8.5) with SMTP id KAA01802 for ; Mon, 17 Feb 1997 10:02:58 -0800 (PST) Received: by agora.rdrop.com (Smail3.1.29.1 #17) id m0vwXO8-0008zjC; Mon, 17 Feb 97 10:02 PST Message-Id: From: batie@agora.rdrop.com (Alan Batie) Subject: Re: Apache Virtual Servers (single IP) To: mikel@cynet.net.au Date: Mon, 17 Feb 1997 10:02:04 -0800 (PST) Cc: freebsd-isp@freebsd.org In-Reply-To: <199702170934.UAA23035@esimene.cynet.net.au> from "Mikel Lindsaar" at Feb 17, 97 08:30:04 pm X-Mailer: ELM [version 2.4 PL24 ME8a] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk > I believe there is a way to have this run all on a single IP address, > instead of using a heap of IP Alias settings. > > How is this done? You just assign the same IP address to all the names. BUT --- it only works with HTTP 1.1 browsers, which admittedly is a large chunk of them, but not all. The rest will get the default server because http 1.0 doesn't pass the expected server name along. -- Alan Batie ______ It's not my fault! It's some guy batie@agora.rdrop.com \ / named "General Protection"! +1 503 452-0960 \ / --Ratbert PGP FP: DE 3C 29 17 C0 49 \/ 7A 27 40 A5 3C 37 4A DA 52 B9 It is my policy to avoid purchase of any products from companies which use unrequested email advertisements or telephone solicitation. From owner-freebsd-isp Mon Feb 17 10:45:58 1997 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.5/8.8.5) id KAA05529 for isp-outgoing; Mon, 17 Feb 1997 10:45:58 -0800 (PST) Received: from super-g.inch.com (super-g.com [204.178.32.161]) by freefall.freebsd.org (8.8.5/8.8.5) with ESMTP id KAA05523 for ; Mon, 17 Feb 1997 10:45:53 -0800 (PST) Received: from localhost (spork@localhost) by super-g.inch.com (8.8.5/8.6.9) with SMTP id NAA10851 for ; Mon, 17 Feb 1997 13:50:09 -0500 (EST) Date: Mon, 17 Feb 1997 13:50:09 -0500 (EST) From: spork X-Sender: spork@super-g.inch.com To: freebsd-isp@freebsd.org Subject: closed NFS network Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk Hi, I'm trying to patch together a small 100M ether network for NFS traffic between our POP server and shell server (and in the future, additional shell machines). NFS looked like a good way to tackle this, as we can have the shell machine die, and PPP users can still do most everything but shell; our shell accounts are strictly a value-add. Also, future shell machines could go on the same network and access the same mail spool that resides on the POP machine, and they could export /home out to the web server as well. In the interest of security, it seems like putting NFS on a seperate, closed network is a bit safer. My questions then are: 1. Am I on the right track? It seems this is safer and faster than sharing the existing ethernet, and we've got the spare 100M cards. 2. Is there any value in using "inside" addresses (10.x.x.x) on these cards to further confuse someone trying to spoof one of these addresses? 3. So far, I've been unsuccessful in figuring out exactly how to explicitly state that the machine I'm exporting too is out on another network. I'm close, but I'm definetly missing something here... Any info is appreciated... Charles From owner-freebsd-isp Mon Feb 17 11:17:25 1997 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.5/8.8.5) id LAA07835 for isp-outgoing; Mon, 17 Feb 1997 11:17:25 -0800 (PST) Received: from main.netcorps.com (main.netcorps.com [205.149.1.66]) by freefall.freebsd.org (8.8.5/8.8.5) with ESMTP id LAA07823 for ; Mon, 17 Feb 1997 11:17:19 -0800 (PST) Received: from localhost (localhost [127.0.0.1]) by main.netcorps.com (8.7.1/8.6.12) with SMTP id LAA07955; Mon, 17 Feb 1997 11:14:43 -0800 (PST) Message-Id: <199702171914.LAA07955@main.netcorps.com> X-Authentication-Warning: main.netcorps.com: Host localhost [127.0.0.1] didn't use HELO protocol To: batie@agora.rdrop.com (Alan Batie) cc: freebsd-isp@freebsd.org Subject: Re: Apache Virtual Servers (single IP) In-reply-to: Your message of "Mon, 17 Feb 1997 10:02:04 PST." Date: Mon, 17 Feb 1997 11:14:43 -0800 From: Chris Bura Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk Are many ISPs doing this? It seems to make sence. Cut's down on ifconfigs, DNS, scarcity of IP addresses. What are the drawbacks? Chris > > I believe there is a way to have this run all on a single IP address, > > instead of using a heap of IP Alias settings. > > > > How is this done? > > You just assign the same IP address to all the names. > > BUT --- it only works with HTTP 1.1 browsers, which admittedly is a large > chunk of them, but not all. The rest will get the default server because > http 1.0 doesn't pass the expected server name along. > > -- > Alan Batie ______ It's not my fault! It's some guy > batie@agora.rdrop.com \ / named "General Protection"! > +1 503 452-0960 \ / --Ratbert > PGP FP: DE 3C 29 17 C0 49 \/ 7A 27 40 A5 3C 37 4A DA 52 B9 > > It is my policy to avoid purchase of any products from companies which > use unrequested email advertisements or telephone solicitation. From owner-freebsd-isp Mon Feb 17 11:27:31 1997 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.5/8.8.5) id LAA08533 for isp-outgoing; Mon, 17 Feb 1997 11:27:31 -0800 (PST) Received: from agora.rdrop.com (root@agora.rdrop.com [199.2.210.241]) by freefall.freebsd.org (8.8.5/8.8.5) with SMTP id LAA08528 for ; Mon, 17 Feb 1997 11:27:28 -0800 (PST) Received: by agora.rdrop.com (Smail3.1.29.1 #17) id m0vwYih-0008xZC; Mon, 17 Feb 97 11:27 PST Message-Id: From: batie@agora.rdrop.com (Alan Batie) Subject: Re: Apache Virtual Servers (single IP) To: chris@MAIN.Netcorps.com (Chris Bura) Date: Mon, 17 Feb 1997 11:27:23 -0800 (PST) Cc: freebsd-isp@freebsd.org In-Reply-To: <199702171914.LAA07955@main.netcorps.com> from "Chris Bura" at Feb 17, 97 11:14:43 am X-Mailer: ELM [version 2.4 PL24 ME8a] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk > Are many ISPs doing this? I don't know. > It seems to make sence. Cut's down on ifconfigs, DNS, scarcity of IP > addresses. It's a definitely a big win... > What are the drawbacks? Mainly that it doesn't work for non-HTTP 1.1 browsers. I will probably switch in the near future. -- Alan Batie ______ It's not my fault! It's some guy batie@agora.rdrop.com \ / named "General Protection"! +1 503 452-0960 \ / --Ratbert PGP FP: DE 3C 29 17 C0 49 \/ 7A 27 40 A5 3C 37 4A DA 52 B9 It is my policy to avoid purchase of any products from companies which use unrequested email advertisements or telephone solicitation. From owner-freebsd-isp Mon Feb 17 12:26:29 1997 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.5/8.8.5) id MAA12193 for isp-outgoing; Mon, 17 Feb 1997 12:26:29 -0800 (PST) Received: from pinky.junction.net (pinky.junction.net [199.166.227.12]) by freefall.freebsd.org (8.8.5/8.8.5) with SMTP id MAA12188 for ; Mon, 17 Feb 1997 12:26:26 -0800 (PST) Received: from sidhe.memra.com (sidhe.memra.com [199.166.227.105]) by pinky.junction.net (8.6.12/8.6.12) with ESMTP id MAA16692 for ; Mon, 17 Feb 1997 12:26:16 -0800 Received: from localhost (michael@localhost) by sidhe.memra.com (8.6.12/8.6.12) with SMTP id MAA25704 for ; Mon, 17 Feb 1997 12:21:03 -0800 Date: Mon, 17 Feb 1997 12:21:02 -0800 (PST) From: Michael Dillon To: freebsd-isp@freebsd.org Subject: Re: Apache Virtual Servers (single IP) In-Reply-To: Message-ID: Organization: Memra Software Inc. - Internet consulting MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk On Mon, 17 Feb 1997, Alan Batie wrote: > > I believe there is a way to have this run all on a single IP address, > > instead of using a heap of IP Alias settings. > > > > How is this done? > > You just assign the same IP address to all the names. > > BUT --- it only works with HTTP 1.1 browsers, which admittedly is a large > chunk of them, but not all. The rest will get the default server because > http 1.0 doesn't pass the expected server name along. That's right. Get ready for the lawsuits when your customers find you are delivering a substandard product. IP addresses don't cost that much even in Oz that you can't just allocate every virtual domain their own unique IP address so that their site is universally accessible and can be seen by the search engines. Michael Dillon - Internet & ISP Consulting Memra Software Inc. - Fax: +1-250-546-3049 http://www.memra.com - E-mail: michael@memra.com From owner-freebsd-isp Mon Feb 17 12:33:48 1997 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.5/8.8.5) id MAA12677 for isp-outgoing; Mon, 17 Feb 1997 12:33:48 -0800 (PST) Received: from cold.org (cold.org [206.81.134.103]) by freefall.freebsd.org (8.8.5/8.8.5) with ESMTP id MAA12672 for ; Mon, 17 Feb 1997 12:33:46 -0800 (PST) Received: from localhost (brandon@localhost) by cold.org (8.8.5/8.8.3) with SMTP id NAA12780 for ; Mon, 17 Feb 1997 13:33:55 -0700 (MST) Date: Mon, 17 Feb 1997 13:33:54 -0700 (MST) From: Brandon Gillespie To: freebsd-isp@freebsd.org Subject: Which way is 'correct'? (was: Re: Aliases) In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk >From this thread I heard that both of the following ways of adding an IP alias will work. What I'm wondering is which way is the 'best' way? ifconfig lo0 alias x.y.z netmask 255.255.255.255 arp -s x.y.z 00:c0:f0:0a:25:de pub vs: ifconfig ed0 alias x.y.z netmask 255.255.255.255 arp add x.y.z 127.0.0.1 They both work, which is the better way? Frankly I'd think the latter would be, as it isn't tied to any hardware configuration (i.e. the ethernet address). -Brandon Gillespie From owner-freebsd-isp Mon Feb 17 12:36:36 1997 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.5/8.8.5) id MAA12894 for isp-outgoing; Mon, 17 Feb 1997 12:36:36 -0800 (PST) Received: from pinky.junction.net (pinky.junction.net [199.166.227.12]) by freefall.freebsd.org (8.8.5/8.8.5) with SMTP id MAA12888 for ; Mon, 17 Feb 1997 12:36:31 -0800 (PST) Received: from sidhe.memra.com (sidhe.memra.com [199.166.227.105]) by pinky.junction.net (8.6.12/8.6.12) with ESMTP id MAA16850 for ; Mon, 17 Feb 1997 12:35:11 -0800 Received: from localhost (michael@localhost) by sidhe.memra.com (8.6.12/8.6.12) with SMTP id MAA25792 for ; Mon, 17 Feb 1997 12:29:59 -0800 Date: Mon, 17 Feb 1997 12:29:58 -0800 (PST) From: Michael Dillon To: freebsd-isp@freebsd.org Subject: Re: Apache Virtual Servers (single IP) In-Reply-To: <199702171914.LAA07955@main.netcorps.com> Message-ID: Organization: Memra Software Inc. - Internet consulting MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk On Mon, 17 Feb 1997, Chris Bura wrote: > > Are many ISPs doing this? No. Only a few clueless ones. > > It seems to make sence. Cut's down on ifconfigs, DNS, scarcity of IP > addresses. > > What are the drawbacks? Lost customers, lawsuits. Besides, IP addresses are not scarce. You have to justify your usage of them and cannot waste them but the 3 NIC's all accept virtual webservers as a legitimate use of IP space. Michael Dillon - Internet & ISP Consulting Memra Software Inc. - Fax: +1-250-546-3049 http://www.memra.com - E-mail: michael@memra.com From owner-freebsd-isp Mon Feb 17 14:18:13 1997 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.5/8.8.5) id OAA19775 for isp-outgoing; Mon, 17 Feb 1997 14:18:13 -0800 (PST) Received: from panda.hilink.com.au (panda.hilink.com.au [203.2.144.5]) by freefall.freebsd.org (8.8.5/8.8.5) with ESMTP id OAA19769 for ; Mon, 17 Feb 1997 14:18:06 -0800 (PST) Received: (from danny@localhost) by panda.hilink.com.au (8.7.6/8.7.3) id JAA24027; Tue, 18 Feb 1997 09:20:51 +1100 (EST) Date: Tue, 18 Feb 1997 09:20:50 +1100 (EST) From: "Daniel O'Callaghan" To: Brandon Gillespie cc: freebsd-isp@freebsd.org Subject: Re: Which way is 'correct'? (was: Re: Aliases) In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk On Mon, 17 Feb 1997, Brandon Gillespie wrote: > >From this thread I heard that both of the following ways of adding an IP > alias will work. What I'm wondering is which way is the 'best' way? > > ifconfig lo0 alias x.y.z netmask 255.255.255.255 > arp -s x.y.z 00:c0:f0:0a:25:de pub > > vs: > > ifconfig ed0 alias x.y.z netmask 255.255.255.255 > arp add x.y.z 127.0.0.1 > > They both work, which is the better way? Frankly I'd think the latter > would be, as it isn't tied to any hardware configuration (i.e. the > ethernet address). Doesn't really matter. Defining an alias on an ethernet interface will cause it to reply to arp queries for that IP address, just as arp -s does. But, your dilemma only arises when you are using IP addresses which belong on the subnet. If you did what I consider to be the *Right Thing*, you would use subnets, put your extra IPs onto lo0 and define your WWW box as a gateway to the subnet. But really, it is not worth going to that trouble if you only have 3 or 4. Danny From owner-freebsd-isp Mon Feb 17 16:23:28 1997 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.5/8.8.5) id QAA27332 for isp-outgoing; Mon, 17 Feb 1997 16:23:28 -0800 (PST) Received: from time.cdrom.com (time.cdrom.com [204.216.27.226]) by freefall.freebsd.org (8.8.5/8.8.5) with ESMTP id QAA27326 for ; Mon, 17 Feb 1997 16:23:26 -0800 (PST) Received: from time.cdrom.com (localhost [127.0.0.1]) by time.cdrom.com (8.8.5/8.6.9) with ESMTP id QAA28203; Mon, 17 Feb 1997 16:23:18 -0800 (PST) To: Brandon Gillespie cc: freebsd-isp@freebsd.org Subject: Re: Which way is 'correct'? (was: Re: Aliases) In-reply-to: Your message of "Mon, 17 Feb 1997 13:33:54 MST." Date: Mon, 17 Feb 1997 16:23:18 -0800 Message-ID: <28199.856225398@time.cdrom.com> From: "Jordan K. Hubbard" Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk > ifconfig ed0 alias x.y.z netmask 255.255.255.255 > arp add x.y.z 127.0.0.1 ^^^^^^^^^^^^^^^^^^^^^^^ Not needed. So the ed0 case eliminates an extra arp call. I suppose you could thusly deem it superior, but either method works so I also wouldn't go to the trouble of changing an existing system. :-) Jordan From owner-freebsd-isp Mon Feb 17 18:41:11 1997 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.5/8.8.5) id SAA05477 for isp-outgoing; Mon, 17 Feb 1997 18:41:11 -0800 (PST) Received: from agora.rdrop.com (root@agora.rdrop.com [199.2.210.241]) by freefall.freebsd.org (8.8.5/8.8.5) with SMTP id SAA05471 for ; Mon, 17 Feb 1997 18:41:07 -0800 (PST) Received: by agora.rdrop.com (Smail3.1.29.1 #17) id m0vwfUH-00090GC; Mon, 17 Feb 97 18:40 PST Message-Id: From: batie@agora.rdrop.com (Alan Batie) Subject: Re: Apache Virtual Servers (single IP) To: michael@memra.com (Michael Dillon) Date: Mon, 17 Feb 1997 18:40:57 -0800 (PST) Cc: freebsd-isp@freebsd.org In-Reply-To: from "Michael Dillon" at Feb 17, 97 12:21:02 pm X-Mailer: ELM [version 2.4 PL24 ME8a] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk > That's right. Get ready for the lawsuits when your customers find you are > delivering a substandard product. Even in the litigous US, I find that really hard to swallow. Switching them without warning them about the older browsers perhaps, but calling it "substandard product" is silly. -- Alan Batie ______ It's not my fault! It's some guy batie@agora.rdrop.com \ / named "General Protection"! +1 503 452-0960 \ / --Ratbert PGP FP: DE 3C 29 17 C0 49 \/ 7A 27 40 A5 3C 37 4A DA 52 B9 It is my policy to avoid purchase of any products from companies which use unrequested email advertisements or telephone solicitation. From owner-freebsd-isp Mon Feb 17 21:01:24 1997 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.5/8.8.5) id VAA17008 for isp-outgoing; Mon, 17 Feb 1997 21:01:24 -0800 (PST) Received: from pinky.junction.net (pinky.junction.net [199.166.227.12]) by freefall.freebsd.org (8.8.5/8.8.5) with SMTP id VAA17000 for ; Mon, 17 Feb 1997 21:01:20 -0800 (PST) Received: from sidhe.memra.com (sidhe.memra.com [199.166.227.105]) by pinky.junction.net (8.6.12/8.6.12) with ESMTP id VAA27039 for ; Mon, 17 Feb 1997 21:00:48 -0800 Received: from localhost (michael@localhost) by sidhe.memra.com (8.6.12/8.6.12) with SMTP id UAA00489 for ; Mon, 17 Feb 1997 20:55:36 -0800 Date: Mon, 17 Feb 1997 20:55:35 -0800 (PST) From: Michael Dillon To: freebsd-isp@freebsd.org Subject: Re: Apache Virtual Servers (single IP) In-Reply-To: Message-ID: Organization: Memra Software Inc. - Internet consulting MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk On Mon, 17 Feb 1997, Alan Batie wrote: > > That's right. Get ready for the lawsuits when your customers find you are > > delivering a substandard product. > > Even in the litigous US, I find that really hard to swallow. Switching them > without warning them about the older browsers perhaps, but calling it > "substandard product" is silly. It's not silly. ISP's have been selling a specific bundle of services under the name "virtual domain" for almost three years now. This requires that each virtual domain have a globally unique IP address allocated to it. Some people are suggesting that they can continue to use this name for a different service in which they do not use a globally unique IP address. But by doing so, they ensure that a significant percentage of WWW browsers cannot reach the domain. Since the ISP has no way of knowing the intended audience for a website they also have no way to predict what percentage of WWW browsers cannot reach the site. In addition, the search engines that use webcrawlers will not index these sites. This is a substandard product. And since there is no cost difference to most ISP's for the IP address or a very low cost difference in some countries, it simply does not make any sense for an ISP to offer a virtual domain without also allocating a globally unique IP address. Anyone who is suckered in by an ISP offering these substandard virtual domains would quite rightly feel that they had been the victims of fraud or negligence on the part of the ISP. This is bad enough for business to get a reputation for ripping off your customers, but if a customer suffers significant damages because of the ISP's ignorance and negligence then they may very well sue and if they do sue the ISP they will almost certainly win their lawsuit. There will be no shortage of expert witnesses ready to testify what commonly accepted industry standards for a "virtual domain" are. HTTP 1.1 host header support is a neat bit of technology but it has no place in the ISP business today. Michael Dillon - Internet & ISP Consulting Memra Software Inc. - Fax: +1-250-546-3049 http://www.memra.com - E-mail: michael@memra.com From owner-freebsd-isp Mon Feb 17 21:06:55 1997 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.5/8.8.5) id VAA17537 for isp-outgoing; Mon, 17 Feb 1997 21:06:55 -0800 (PST) Received: from cold.org (cold.org [206.81.134.103]) by freefall.freebsd.org (8.8.5/8.8.5) with ESMTP id VAA17531 for ; Mon, 17 Feb 1997 21:06:49 -0800 (PST) Received: from localhost (brandon@localhost) by cold.org (8.8.5/8.8.3) with SMTP id WAA14082; Mon, 17 Feb 1997 22:06:51 -0700 (MST) Date: Mon, 17 Feb 1997 22:06:51 -0700 (MST) From: Brandon Gillespie To: "Jordan K. Hubbard" cc: freebsd-isp@freebsd.org Subject: Re: Which way is 'correct'? (was: Re: Aliases) In-Reply-To: <28199.856225398@time.cdrom.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk On Mon, 17 Feb 1997, Jordan K. Hubbard wrote: > > ifconfig ed0 alias x.y.z netmask 255.255.255.255 > > arp add x.y.z 127.0.0.1 > ^^^^^^^^^^^^^^^^^^^^^^^ Not needed. > > So the ed0 case eliminates an extra arp call. I suppose you could > thusly deem it superior, but either method works so I also wouldn't go > to the trouble of changing an existing system. :-) Erm.. Previous to 2.2 I'd say this worked fine. But after my upgrade to 2.2 (actually, just a clean install) doing just the ifconfig no longer worked... Actually, it would work at first, but then it wouldn't work. Doing the arp would fix the problem. Why? I have no idea--I'm just a monkey hitting keys at this point. -Brandon Gillespie From owner-freebsd-isp Mon Feb 17 21:19:17 1997 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.5/8.8.5) id VAA18355 for isp-outgoing; Mon, 17 Feb 1997 21:19:17 -0800 (PST) Received: from time.cdrom.com (time.cdrom.com [204.216.27.226]) by freefall.freebsd.org (8.8.5/8.8.5) with ESMTP id VAA18348 for ; Mon, 17 Feb 1997 21:19:14 -0800 (PST) Received: from time.cdrom.com (localhost [127.0.0.1]) by time.cdrom.com (8.8.5/8.6.9) with ESMTP id VAA29554; Mon, 17 Feb 1997 21:18:58 -0800 (PST) To: Brandon Gillespie cc: freebsd-isp@freebsd.org Subject: Re: Which way is 'correct'? (was: Re: Aliases) In-reply-to: Your message of "Mon, 17 Feb 1997 22:06:51 MST." Date: Mon, 17 Feb 1997 21:18:57 -0800 Message-ID: <29551.856243137@time.cdrom.com> From: "Jordan K. Hubbard" Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk > Erm.. Previous to 2.2 I'd say this worked fine. But after my upgrade to > 2.2 (actually, just a clean install) doing just the ifconfig no longer > worked... Actually, it would work at first, but then it wouldn't work. Must be pilot error - I brought up a 2.2 system from scratch just a few days ago and it's now serving about 20 virtual IPs using the /etc/sysconfig hooks for it. Works great. The code in netstart is only doing this: # Check to see if aliases need to be added alias=0 while : do eval ifconfig_args=\$ifconfig_${ifn}_alias${alias} if [ -n "${ifconfig_args}" ]; then ifconfig ${ifn} ${ifconfig_args} alias alias=`expr ${alias} + 1` else break; fi done No arp anywhere. Works perfectly for me. Jordan From owner-freebsd-isp Tue Feb 18 01:25:30 1997 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.5/8.8.5) id BAA19500 for isp-outgoing; Tue, 18 Feb 1997 01:25:30 -0800 (PST) Received: from shadows.aeon.net (bsdisp@ns.aeon.net [194.100.41.2]) by freefall.freebsd.org (8.8.5/8.8.5) with ESMTP id BAA19486 for ; Tue, 18 Feb 1997 01:25:25 -0800 (PST) Received: (from bsdisp@localhost) by shadows.aeon.net (8.8.5/8.8.3) id LAA24937; Tue, 18 Feb 1997 11:23:48 +0200 (EET) From: mika ruohotie Message-Id: <199702180923.LAA24937@shadows.aeon.net> Subject: Re: Which way is 'correct'? (was: Re: Aliases) To: jkh@time.cdrom.com (Jordan K. Hubbard) Date: Tue, 18 Feb 1997 11:23:48 +0200 (EET) Cc: brandon@cold.org, freebsd-isp@freebsd.org In-Reply-To: <29551.856243137@time.cdrom.com> from "Jordan K. Hubbard" at "Feb 17, 97 09:18:57 pm" X-Mailer: ELM [version 2.4ME+ PL22 (25)] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk > Must be pilot error - I brought up a 2.2 system from scratch just > a few days ago and it's now serving about 20 virtual IPs using the > /etc/sysconfig hooks for it. Works great. The code in netstart > is only doing this: hmm? how about 2.1.x? (yes, i am more and more tempted to go to the 2.2 or even current but i want to run cdrom-released on production, so i can keep myself excused for subscribing =) ) if i dont put something (and from the history i remember once the right thing to do would've been 'route add -host w.x.y.z -interface 127.0.0.1'), it just doesnt work... and even with that i had serious probs that caused me severe hair loss, the general ip's for server (for services) comes from "our" server subnet, a /27, the customer's virtual ips are from the space after two /27's from the beginning of a c-class, starting from *.65 anyway, after i started to assign those ips it looked clean first, then from the bright sky the server dropped itself from the ether one night, i was connected to another machine in the same subnet, which is my developing desktop (and firewall to the inner subnet and for all those other tasks i rather not run on www server, read i dont trust our business to a machine that's dedicated for www, paranoid? always. ofcourse i fired up tcpdump and saw no packets on the ether from the machine. the machine connected itself twice for few minutes, and i was amazed to see it had not rebooted. but before i could do more it was gone again... (at the time i was wondering if someone's SYN flooding it, what is the best way to find that out?) next day i read the logs and everything including lastcomm, and as far as the machine was concerned it was up and kicking all the time. i probably managed to reproduce the prob artificially by rebooting it, it didnt "walk back on" even tho it seemed to operate perfectly, itself being able to ping it's interfaces and all... just _nothing_ on the ethernet. coz i dont run bpfilter kernels on production machines i was not able to tcpdump, so i dont know exactly what was going on... one of _those_ moments when i was swearing about being "safe", on machine that's not offering shell and is incapable of answering telnet _and_ ssh (ssh from few selected machines is not ipfw:ed, rest are rejected) i know i probably would be relatively safe having the bpfilter (opinions?) for situations like this one... tcpdump on the ether again showed no trace whatsoever that this machine would've been on the net... and didnt hint there'd be other prob than just no such machine/addresses present. oh yes, i use smc 21040-A 10/100 pci adapters. i changed the adapter, no dice. actually i changed the hub too, and the cable, and the pci slot, i did not change the motherboard. but no dice. i read my configs, compared them to another machine, the developing desktop, which ran and runs without coughing with _two_ ether adapters... i twiddled with the router, but was all the time confident those were right... still tried different things... i could get it to the net with some twiddling, i had to tell it the main ether ifconfig again, manually. finally i dumped the /etc/sysconfig and did what i like most, simple separate lines in the /etc/netstart. and replaced the '-interface 127.0.0.1' with '-gateway w.x.y.z' (gateway being our main router) and it worked from the first bootup. (this was 2 days later, mostly coz i had 10001 other things to do between the moments i had time to track down the problem) now i've been wondering what did i do wrong? notice that on the desktop which works without probs i have all the aliased ip's from the same subnet, but on the server they are not, and problems came _after_ i assigned those other ips... router "knows" where those ip's should be. i assign the ip's to de0, and do that 'route add' from /etc/netstart and it does work fine... (i actually removed the /etc/sysconfig totally) right/wrong? (i dont include my configs, those were out from the "book", i did multiple checks) how about ppp0, i noticed at home ppp0 dislikes aliased ip's, i had to twiddle with it too... even if the ip's are from same subnet... i got that about to work too (it works but i dont quite like the way it works if it makes sense), but i assume the right thing to do it with ppp0 would be aliasing those to lo0, right? it's -current (pre lite/2) and there too i have no /etc/sysconfig in use coz it's been -current for ages and i havent felt like upgrading that. mickey -- mika@aeon.net mickey@supsys.fi From owner-freebsd-isp Tue Feb 18 02:25:22 1997 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.5/8.8.5) id CAA24627 for isp-outgoing; Tue, 18 Feb 1997 02:25:22 -0800 (PST) Received: from wicket.elit.chernigov.ua (wicket.elit.chernigov.ua [193.125.84.10]) by freefall.freebsd.org (8.8.5/8.8.5) with SMTP id CAA24618 for ; Tue, 18 Feb 1997 02:25:03 -0800 (PST) Received: (from dodo@localhost) by wicket.elit.chernigov.ua (8.6.12/BIG/1.3) id MAA12552 for freebsd-isp@freebsd.org; Tue, 18 Feb 1997 12:24:15 +0200 Date: Tue, 18 Feb 1997 12:24:15 +0200 Organization: SRE "ElIT" Ltd. From: "Vsevolod V. Denisenko" Message-Id: <199702181024.MAA12552@wicket.elit.chernigov.ua> Subject: test only Apparently-To: freebsd-isp@freebsd.org Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk From owner-freebsd-isp Tue Feb 18 02:31:28 1997 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.5/8.8.5) id CAA24837 for isp-outgoing; Tue, 18 Feb 1997 02:31:28 -0800 (PST) Received: from brc.minsk.by ([194.226.121.36]) by freefall.freebsd.org (8.8.5/8.8.5) with ESMTP id CAA24816 for ; Tue, 18 Feb 1997 02:30:58 -0800 (PST) Received: (from uucp@localhost) by brc.minsk.by (8.8.2/8.8.2) with UUCP id MAA01672; Tue, 18 Feb 1997 12:03:04 +0200 (EET) Received: from david (david [150.97.0.2]) by wvb.gomel.by (8.7.5/8.7.3) with SMTP id LAA01114; Tue, 18 Feb 1997 11:26:42 +0200 (EET) Received: by david with Microsoft Mail id <01BC1D8F.AB8FFB40@david>; Tue, 18 Feb 1997 11:34:15 +-200 Message-ID: <01BC1D8F.AB8FFB40@david> From: David Stickney To: "'CS'" , "'FPFAQ'" , "'FBSD ISP'" , "'F&P'" Subject: Satellite ISP, English Teachers. Friends and Partners FAQ Date: Tue, 18 Feb 1997 11:34:13 +-200 Encoding: 29 TEXT Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk Greetings Friends, I have a couple of items that I would like to ask for your assistance. I am looking for Satelite Internet Service Providers, with a footprint covering Belarus as well as ISPs that can reach the North Cuacuses. I have heard that EutelSat and the HotBirds have such abilities, but they are not exploited. I am writing a 2 projects. 1 that will teach selected Businessmen Computer Skills and English, the other, will teach the same to ladies who have just had children, and have 2 years of welfare. Both these projects are income development, one based on a factory or enterprise level, the other on a family level. I am in need of: Information on groups specializing in ESL Volunteer Orgnizations that may be interested in sending people. Other resources, sources of funding. I am looking for Voluteers on the Creation of the Friends and Partners FAQ. I would like to find a person who would like to manage the project, (Get all the Glory), as I am often traveling and not reliable as a contact person. Please Reply to or if there is some problem Thanks for your time, David From owner-freebsd-isp Tue Feb 18 05:36:36 1997 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.5/8.8.5) id FAA04091 for isp-outgoing; Tue, 18 Feb 1997 05:36:36 -0800 (PST) Received: from mail.id.net (mail.id.net [199.125.1.6]) by freefall.freebsd.org (8.8.5/8.8.5) with ESMTP id FAA04085 for ; Tue, 18 Feb 1997 05:36:34 -0800 (PST) Received: from server.id.net (server.id.net [199.125.2.20]) by mail.id.net (8.7.5/ID-Net) with ESMTP id IAA10733; Tue, 18 Feb 1997 08:47:52 -0500 (EST) From: Robert Shady Received: (from rls@localhost) by server.id.net (8.8.2/8.7.3) id IAA18213; Tue, 18 Feb 1997 08:36:46 -0500 (EST) Message-Id: <199702181336.IAA18213@server.id.net> Subject: Re: Which way is 'correct'? (was: Re: Aliases) In-Reply-To: from Brandon Gillespie at "Feb 17, 97 10:06:51 pm" To: brandon@cold.org (Brandon Gillespie) Date: Tue, 18 Feb 1997 08:36:46 -0500 (EST) Cc: jkh@time.cdrom.com, freebsd-isp@freebsd.org X-Mailer: ELM [version 2.4ME+ PL25 (25)] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk > On Mon, 17 Feb 1997, Jordan K. Hubbard wrote: > > > > ifconfig ed0 alias x.y.z netmask 255.255.255.255 > > > arp add x.y.z 127.0.0.1 > > ^^^^^^^^^^^^^^^^^^^^^^^ Not needed. > > > > So the ed0 case eliminates an extra arp call. I suppose you could > > thusly deem it superior, but either method works so I also wouldn't go > > to the trouble of changing an existing system. :-) > > Erm.. Previous to 2.2 I'd say this worked fine. But after my upgrade to > 2.2 (actually, just a clean install) doing just the ifconfig no longer > worked... Actually, it would work at first, but then it wouldn't work. > Doing the arp would fix the problem. Why? I have no idea--I'm just a > monkey hitting keys at this point. We're running around 64 virtual hosts per machine right now with 2.2-960612-SNAP using "ifconfig fxp0 alias x.x.x.x netmask 255.255.255.255" -- Rob === _/_/_/_/_/ _/_/_/_/ _/_/ _/ _/_/_/_/_/ _/_/_/_/_/ _/ _/ _/ _/_/_/ _/ _/ _/ _/_/_/_/ _/ _/_/_/_/_/ _/_/_/_/ _/ _/ _/_/_/_/_/ _/ Innovative Data Services Serving South-Eastern Michigan Internet Service Provider / Hardware Sales / Consulting Services Voice: (810)855-0404 / Fax: (810)855-3268 / Web: http://www.id.net From owner-freebsd-isp Tue Feb 18 06:03:56 1997 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.5/8.8.5) id GAA05171 for isp-outgoing; Tue, 18 Feb 1997 06:03:56 -0800 (PST) Received: from mail.intercenter.net (mir.intercenter.net [207.211.128.20]) by freefall.freebsd.org (8.8.5/8.8.5) with SMTP id GAA05164 for ; Tue, 18 Feb 1997 06:03:51 -0800 (PST) Received: (qmail 18404 invoked from network); 18 Feb 1997 14:03:50 -0000 Received: from bigboy.intercenter.net (207.211.128.17) by mir.intercenter.net with SMTP; 18 Feb 1997 14:03:50 -0000 Date: Tue, 18 Feb 1997 09:03:50 -0500 (EST) From: Ron Bickers To: freebsd-isp@freebsd.org Subject: Re: Apache Virtual Servers (single IP) In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk On Mon, 17 Feb 1997, Michael Dillon wrote: > > Are many ISPs doing this? > > No. Only a few clueless ones. Just like the clueless ISPs that went to dynamic IP addresses for dialup customers? There were a lot of complaints about that, but it's pretty much the norm now. > Besides, IP addresses are not scarce. You have to justify your usage of > them and cannot waste them but the 3 NIC's all accept virtual webservers > as a legitimate use of IP space. Tell the Internic they aren't scarce and see what they say. I will be surprised if the Internic doesn't soon consider that you don't need to waste addresses to serve multiple domains. The Internet is moving forward, so should it's users. It won't be long before the vast majority of clients and servers use a single IP for virtual domains. It also doesn't take much to support both. Besides, if you're still using an old browser, you're going to be missing a lot more than just a Host: header. Ron From owner-freebsd-isp Tue Feb 18 06:36:24 1997 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.5/8.8.5) id GAA07015 for isp-outgoing; Tue, 18 Feb 1997 06:36:24 -0800 (PST) Received: from mail.intercenter.net (mir.intercenter.net [207.211.128.20]) by freefall.freebsd.org (8.8.5/8.8.5) with SMTP id GAA07009 for ; Tue, 18 Feb 1997 06:36:22 -0800 (PST) Received: (qmail 18722 invoked from network); 18 Feb 1997 14:36:21 -0000 Received: from bigboy.intercenter.net (207.211.128.17) by mir.intercenter.net with SMTP; 18 Feb 1997 14:36:21 -0000 Date: Tue, 18 Feb 1997 09:36:21 -0500 (EST) From: Ron Bickers To: freebsd-isp@freebsd.org Subject: Re: Apache Virtual Servers (single IP) In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk On Mon, 17 Feb 1997, Michael Dillon wrote: > It's not silly. ISP's have been selling a specific bundle of services > under the name "virtual domain" for almost three years now. This requires > that each virtual domain have a globally unique IP address allocated to > it. Just like dialup use to "require" an IP address per customer. > Some people are suggesting that they can continue to use this name for a > different service in which they do not use a globally unique IP address. > But by doing so, they ensure that a significant percentage of WWW browsers > cannot reach the domain. Since the ISP has no way of knowing the intended > audience for a website they also have no way to predict what percentage of > WWW browsers cannot reach the site. In addition, the search engines that > use webcrawlers will not index these sites. I can only agree with this today, but again, we're moving forward. It sounds like some search engines need to do the same. > countries, it simply does not make any sense for an ISP to offer a virtual > domain without also allocating a globally unique IP address. It's increasingly not making sense to use multiple addresses. > HTTP 1.1 host header support is a neat bit of technology but it > has no place in the ISP business today. Just like audio on demand, video on demand, java, and a whole slew of other neat bits of technology, the use of a single IP for virtual hosting will soon spread like kudzu. Ron From owner-freebsd-isp Tue Feb 18 12:21:14 1997 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.5/8.8.5) id MAA28575 for isp-outgoing; Tue, 18 Feb 1997 12:21:14 -0800 (PST) Received: from inetsrv.wtrt.net (inetsrv.wtrt.net [205.231.181.67]) by freefall.freebsd.org (8.8.5/8.8.5) with ESMTP id MAA28564; Tue, 18 Feb 1997 12:21:07 -0800 (PST) Received: from allenh.wtrt.net (local2.wtrt.net [205.231.181.228]) by inetsrv.wtrt.net (8.8.3/8.8.3) with SMTP id OAA08310; Tue, 18 Feb 1997 14:22:30 -0600 (CST) Message-Id: <3.0.1.32.19970218142231.00bf2b28@wtrt.net> X-Sender: allenh@wtrt.net X-Mailer: Windows Eudora Pro Version 3.0.1 (32) Date: Tue, 18 Feb 1997 14:22:31 -0600 To: questions@freebsd.org From: Allen Hyer Subject: radiusd dying on 2.1.6 Cc: isp@freebsd.org Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk I am running merit radiusd 2.4.21 on a 2.1.6-Release box. Everything seems to be working well, except for one problem. Every now and then radiusd dies, dumping core to /radiusd.core. I investigated the /var/log/messages file and found this: Feb 18 13:57:55 inetsrv /kernel: pid 3505 (radiusd), uid 0: exited on signal 11 Feb 18 13:57:55 inetsrv /kernel: pid 3505 (radiusd), uid 0: exited on signal 11 Feb 18 13:57:55 inetsrv inetd[83]: /usr/local/sbin/radiusd: exit status 0x8b Has anyone seen this before? I compiled this radiusd from ports. I can't remember now, but it is possible that I compiled it under 2.1.5. Should I try recompiling it under 2.1.6? Any other ideas? Allen Hyer System Administrator West Texas Rural Telephone From owner-freebsd-isp Tue Feb 18 16:06:40 1997 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.5/8.8.5) id QAA11748 for isp-outgoing; Tue, 18 Feb 1997 16:06:40 -0800 (PST) Received: from pinky.junction.net (pinky.junction.net [199.166.227.12]) by freefall.freebsd.org (8.8.5/8.8.5) with SMTP id QAA11735 for ; Tue, 18 Feb 1997 16:06:34 -0800 (PST) Received: from sidhe.memra.com (sidhe.memra.com [199.166.227.105]) by pinky.junction.net (8.6.12/8.6.12) with ESMTP id QAA13220; Tue, 18 Feb 1997 16:06:28 -0800 Received: from localhost (michael@localhost) by sidhe.memra.com (8.6.12/8.6.12) with SMTP id QAA10473; Tue, 18 Feb 1997 16:01:18 -0800 Date: Tue, 18 Feb 1997 16:01:17 -0800 (PST) From: Michael Dillon To: Ron Bickers cc: freebsd-isp@freebsd.org Subject: Re: Apache Virtual Servers (single IP) In-Reply-To: Message-ID: Organization: Memra Software Inc. - Internet consulting MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk On Tue, 18 Feb 1997, Ron Bickers wrote: > On Mon, 17 Feb 1997, Michael Dillon wrote: > > > > Are many ISPs doing this? > > > > No. Only a few clueless ones. > > Just like the clueless ISPs that went to dynamic IP addresses for dialup > customers? There were a lot of complaints about that, but it's pretty > much the norm now. There's nothing clueless about using dynamic IP's for dialup. It makes sense to only use as many IP's as you have interfaces for, i.e. one per modem port. But virtual domains are servers and are a whole different ballgame. You need to have a globally unique IP address in order for the WWW server to be globally visible. Whether or not you run this website on a shared piece of equipment is a separate decision and should not be visible to the world, thus unique IP addresses for each domain. > > Besides, IP addresses are not scarce. You have to justify your usage of > > them and cannot waste them but the 3 NIC's all accept virtual webservers > > as a legitimate use of IP space. > > Tell the Internic they aren't scarce and see what they say. I have done so and they basically agree. In fact I posted my statements on a public mailing list where RIPE and APNIC people also read them and nobody disagreed with me. There is no shortage of IP addresses. There is certainly a limited number of IP addresses and we certainly do not want to waste them but virtual domains are a legitimate use for IP addresses. Waste would be assigning a /24 block for a point-to-point interface or not using IP subnet zero or giving customers a /24 when they only have 7 hosts. > I will be > surprised if the Internic doesn't soon consider that you don't need to > waste addresses to serve multiple domains. The Internic does not set these policies. They are set by the global Internet community and the same policies are administered by RIPE, APNIC and Internic (soon to be ARIN). RFC2050 is the current set of rules and discussions about those rules are happening on the PAGAN mailing list. Send a subscribe message to pagan-request@apnic.net to join or read the archives at ftp.apnic.net > The Internet is moving forward, so should it's users. It won't be long > before the vast majority of clients and servers use a single IP for > virtual domains. It also doesn't take much to support both. It requires all clients everywhere in the world to upgrade. That's a very tall order and IMHO will take three years before we can reasonably stop using unique IP addresses for virtual domains. There is no point breaking things before the world is ready to switch, especially when there is no pressing need to force everyone to switch. > Besides, if > you're still using an old browser, you're going to be missing a lot more > than just a Host: header. I'll let the user make that decision. There are lots of good reasons to be running Lynx or MacWeb or WinWeb. Michael Dillon - Internet & ISP Consulting Memra Software Inc. - Fax: +1-250-546-3049 http://www.memra.com - E-mail: michael@memra.com From owner-freebsd-isp Tue Feb 18 17:12:08 1997 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.5/8.8.5) id RAA17920 for isp-outgoing; Tue, 18 Feb 1997 17:12:08 -0800 (PST) Received: from horst.bfd.com (horst.bfd.com [204.160.242.10]) by freefall.freebsd.org (8.8.5/8.8.5) with ESMTP id RAA17872 for ; Tue, 18 Feb 1997 17:11:29 -0800 (PST) Received: from harlie (bastion.bfd.com [204.160.242.14]) by horst.bfd.com (8.8.5/8.7.3) with SMTP id RAA19454; Tue, 18 Feb 1997 17:11:12 -0800 (PST) Date: Tue, 18 Feb 1997 17:11:12 -0800 (PST) From: "Eric J. Schwertfeger" X-Sender: ejs@harlie To: Michael Dillon cc: Ron Bickers , freebsd-isp@freebsd.org Subject: Re: Apache Virtual Servers (single IP) In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk On Tue, 18 Feb 1997, Michael Dillon wrote: > > Just like the clueless ISPs that went to dynamic IP addresses for dialup > > customers? There were a lot of complaints about that, but it's pretty > > much the norm now. > > There's nothing clueless about using dynamic IP's for dialup. It makes > sense to only use as many IP's as you have interfaces for, i.e. one per > modem port. But virtual domains are servers and are a whole different > ballgame. You need to have a globally unique IP address in order for the > WWW server to be globally visible. Whether or not you run this website on > a shared piece of equipment is a separate decision and should not be > visible to the world, thus unique IP addresses for each domain. We offer two services that don't work at all with the HTTP 1.1 virtual hosts. 1: Virtual FTP 2: Virtual HTTPS The first is never told what server the client actually wanted to connect to, the second needs to know before the client has the chance to tell. I can see a need for the non-IP virtual domains, but there is also a need for the IP based ones, though I can see an ISP charging a little more for one. From owner-freebsd-isp Tue Feb 18 17:35:23 1997 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.5/8.8.5) id RAA19400 for isp-outgoing; Tue, 18 Feb 1997 17:35:23 -0800 (PST) Received: from highdesert.net (empnet82.empnet.com [208.192.38.116]) by freefall.freebsd.org (8.8.5/8.8.5) with ESMTP id RAA19245; Tue, 18 Feb 1997 17:33:54 -0800 (PST) Received: (from natlow@localhost) by highdesert.net (8.8.3/8.8.3) id RAA04097; Tue, 18 Feb 1997 17:32:29 GMT Date: Tue, 18 Feb 1997 17:32:29 +0000 () From: Nat Low X-Sender: natlow@highdesert.net To: Allen Hyer cc: questions@FreeBSD.org, isp@FreeBSD.org Subject: Re: radiusd dying on 2.1.6 In-Reply-To: <3.0.1.32.19970218142231.00bf2b28@wtrt.net> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@FreeBSD.org X-Loop: FreeBSD.org Precedence: bulk On Tue, 18 Feb 1997, Allen Hyer wrote: > > I am running merit radiusd 2.4.21 on a 2.1.6-Release box. Everything seems > to be working well, except for one problem. Every now and then radiusd > dies, dumping core to /radiusd.core. I investigated the /var/log/messages > file and found this: > > Has anyone seen this before? I compiled this radiusd from ports. I can't > remember now, but it is possible that I compiled it under 2.1.5. Should I > try recompiling it under 2.1.6? Any other ideas? > Allen, when I upgraded our UltraSparc running SunOs to Radius2.0 it did this quite often. I tried recompiling radiusd on the same machine, and magically it hasn't done it since...it's been about a month, and no problems yet. From owner-freebsd-isp Tue Feb 18 17:42:46 1997 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.5/8.8.5) id RAA19965 for isp-outgoing; Tue, 18 Feb 1997 17:42:46 -0800 (PST) Received: from ns2.harborcom.net (root@ns2.harborcom.net [206.158.4.4]) by freefall.freebsd.org (8.8.5/8.8.5) with ESMTP id RAA19954 for ; Tue, 18 Feb 1997 17:42:42 -0800 (PST) Received: from swoosh.dunn.org (swoosh.dunn.org [206.158.7.243]) by ns2.harborcom.net (8.8.5/8.8.4) with SMTP id UAA27627; Tue, 18 Feb 1997 20:40:01 -0500 (EST) Date: Tue, 18 Feb 1997 20:35:17 -0500 (EST) From: Bradley Dunn To: spork cc: freebsd-isp@freebsd.org Subject: Re: closed NFS network In-Reply-To: Message-ID: X-X-Sender: bradley@harborcom.net MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk On Mon, 17 Feb 1997, spork wrote: > I'm trying to patch together a small 100M ether network for NFS traffic > between our POP server and shell server (and in the future, additional > shell machines). NFS looked like a good way to tackle this, as we can > have the shell machine die, and PPP users can still do most everything but > shell; our shell accounts are strictly a value-add. Also, future shell > machines could go on the same network and access the same mail spool that > resides on the POP machine, and they could export /home out to the web > server as well. Look into IMAP. More info is at http://www.imap.org/ In the documents section the is a paper called "Message Access Paradigms and Protocols" that explains why IMAP is superior for mailbox access. pbd From owner-freebsd-isp Tue Feb 18 17:44:39 1997 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.5/8.8.5) id RAA20135 for isp-outgoing; Tue, 18 Feb 1997 17:44:39 -0800 (PST) Received: from excel.tnet.com.au (excel.tnet.com.au [203.15.94.3]) by freefall.freebsd.org (8.8.5/8.8.5) with ESMTP id RAA20129 for ; Tue, 18 Feb 1997 17:44:34 -0800 (PST) Received: (from slaterm@localhost) by excel.tnet.com.au (8.7.4/8.7.3) id JAA02569; Wed, 19 Feb 1997 09:49:28 +0800 Date: Wed, 19 Feb 1997 09:49:27 +0800 (WST) From: Michael Slater To: "Eric J. Schwertfeger" cc: Michael Dillon , Ron Bickers , freebsd-isp@freebsd.org Subject: Re: Apache Virtual Servers (single IP) In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk > > > Just like the clueless ISPs that went to dynamic IP addresses for What's clueless about ISP's that use dynamic IP's ? Are they "clueless" because they dont do it the way you do it ? From owner-freebsd-isp Tue Feb 18 17:50:28 1997 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.5/8.8.5) id RAA20464 for isp-outgoing; Tue, 18 Feb 1997 17:50:28 -0800 (PST) Received: from tok.qiv.com (root@[204.214.141.211]) by freefall.freebsd.org (8.8.5/8.8.5) with ESMTP id RAA20452 for ; Tue, 18 Feb 1997 17:50:23 -0800 (PST) Received: (from uucp@localhost) by tok.qiv.com (8.7.5/8.7.3) with UUCP id TAA09860 for freebsd-isp@freebsd.org; Tue, 18 Feb 1997 19:49:06 -0600 Received: from localhost (jdn@localhost) by acp.qiv.com (8.8.3/8.7.3) with SMTP id TAA00977 for ; Tue, 18 Feb 1997 19:39:31 -0600 (CST) X-Authentication-Warning: acp.qiv.com: jdn owned process doing -bs Date: Tue, 18 Feb 1997 19:39:31 -0600 (CST) From: "Jay D. Nelson" To: freebsd-isp@freebsd.org Subject: Re: Apache Virtual Servers (single IP) In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk Gentlemen, I have to jump in and add my viewpoint as a customer. I spend my money -- and recommend to my clients they spend their money -- with an ISP who will deliver the service _I_ want and _I_ expect. To whit: if I need a static IP address for a good and legitimate reason -- I _will_ get it or I will change my ISP. If I need a full class C -- I'll go to the ISP who can provide it. The long and the short of this is: why should I give an ISP money who insists on dictating to me? HTTP 1.1 is great -- I'd like to see it become standard -- but it's not. As an aside, I am using lynx much more, because so many ignorant web designers want animated icons and enough gewgaw bulls**t on their pages that I can't get to the real information because of the distraction. I don't waste my time with those who don't deliver what I need and want. If you, as Internet __Service__ Providers choose to ignore me -- and many like me, you will lose the business to those who are willing to provide the service for which we are willing to pay. Sorry for the rant. -- Jay From owner-freebsd-isp Tue Feb 18 18:45:27 1997 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.5/8.8.5) id SAA23776 for isp-outgoing; Tue, 18 Feb 1997 18:45:27 -0800 (PST) Received: from excel.tnet.com.au (excel.tnet.com.au [203.15.94.3]) by freefall.freebsd.org (8.8.5/8.8.5) with ESMTP id SAA23768 for ; Tue, 18 Feb 1997 18:45:22 -0800 (PST) Received: (from slaterm@localhost) by excel.tnet.com.au (8.7.4/8.7.3) id KAA04964; Wed, 19 Feb 1997 10:46:33 +0800 Date: Wed, 19 Feb 1997 10:46:33 +0800 (WST) From: Michael Slater To: "Jay D. Nelson" cc: freebsd-isp@freebsd.org Subject: Re: Apache Virtual Servers (single IP) In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk > Gentlemen, I have to jump in and add my viewpoint as a customer. > > I spend my money -- and recommend to my clients they spend their money -- > with an ISP who will deliver the service _I_ want and _I_ expect. To whit: If I need a static IP address for a good and legitimate reason -- I _will_ If any of my customers have a reason for needing a static I.P address, then they get one. I dont know how it is in the U.S these days, but in Australia as of the end of this month their will not be any more class C network addresses available. (Thats what i was told when i applied for another class C address) It seems Australia has used the _FEW_ I.P addresses that were allocated to it. So as a result,we have to make do with what we have (at least that's the impression that i get) . We always try to accomodate the needs of our customers. Michael Slater slaterm@tnet.com.au From owner-freebsd-isp Tue Feb 18 19:24:06 1997 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.5/8.8.5) id TAA26546 for isp-outgoing; Tue, 18 Feb 1997 19:24:06 -0800 (PST) Received: from mail.intercenter.net (mir.intercenter.net [207.211.128.20]) by freefall.freebsd.org (8.8.5/8.8.5) with SMTP id TAA26503 for ; Tue, 18 Feb 1997 19:23:56 -0800 (PST) Received: (qmail 26285 invoked from network); 19 Feb 1997 03:23:53 -0000 Received: from ct1-10.intercenter.net (HELO oz.intercenter.net) (207.211.129.43) by mir.intercenter.net with SMTP; 19 Feb 1997 03:23:53 -0000 Date: Tue, 18 Feb 1997 22:23:21 -0500 (EST) From: Ron Bickers To: freebsd-isp@freebsd.org Subject: Re: Apache Virtual Servers (single IP) In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk On Tue, 18 Feb 1997, Michael Dillon wrote: > modem port. But virtual domains are servers and are a whole different > ballgame. You need to have a globally unique IP address in order for the > WWW server to be globally visible. Whether or not you run this website on > a shared piece of equipment is a separate decision and should not be > visible to the world, thus unique IP addresses for each domain. Today that's pretty much true, but it's happening that "globally visible" through the HTTP protocol doesn't *necessitate* a unique IP address. I thought that was the whole point of the Host: header. Maybe there's another use, I don't know. > There is no point breaking things before the world is ready to switch, > especially when there is no pressing need to force everyone to switch. Probably true. I don't really disagree with your points, however, *if* Internic (or whomever had the power) said you can't have anymore IP addrseses, the world would have no choice but to be ready. Maybe we'll never reach that point and all this Host: header for virtual domains is just a fallback solution. > Besides, if you're still using an old browser, you're going to be > missing a lot more than just a Host: header. > > I'll let the user make that decision. There are lots of good reasons to be > running Lynx or MacWeb or WinWeb. I guess if the user doesn't want to grow with the industry, that's their choice, yes. I was simply saying, even if they COULD get to these "IP-less" virtual domains, chances are it'd look like garbage. I use Lynx often myself and more often find I can't do what I need to because of other features used on a web site and not supported. That's a whole different issue though. From owner-freebsd-isp Tue Feb 18 19:27:49 1997 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.5/8.8.5) id TAA26734 for isp-outgoing; Tue, 18 Feb 1997 19:27:49 -0800 (PST) Received: from pinky.junction.net (pinky.junction.net [199.166.227.12]) by freefall.freebsd.org (8.8.5/8.8.5) with SMTP id TAA26723 for ; Tue, 18 Feb 1997 19:27:40 -0800 (PST) Received: from sidhe.memra.com (sidhe.memra.com [199.166.227.105]) by pinky.junction.net (8.6.12/8.6.12) with ESMTP id TAA17090 for ; Tue, 18 Feb 1997 19:27:06 -0800 Received: from localhost (michael@localhost) by sidhe.memra.com (8.6.12/8.6.12) with SMTP id TAA12226 for ; Tue, 18 Feb 1997 19:21:57 -0800 Date: Tue, 18 Feb 1997 19:21:55 -0800 (PST) From: Michael Dillon To: freebsd-isp@freebsd.org Subject: Re: Apache Virtual Servers (single IP) In-Reply-To: Message-ID: Organization: Memra Software Inc. - Internet consulting MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk On Wed, 19 Feb 1997, Michael Slater wrote: > then they get one. I dont know how it is in the U.S these days, but in > Australia as of the end of this month their will not be any more class > C network addresses available. > (Thats what i was told when i applied for another class C address) > It seems Australia has used the _FEW_ I.P addresses > that were allocated to it. So as a result,we have to make do with what > we have (at least that's the impression that i get) . This doesn't make sense. If you have made use of the IP addresses that you have been allocated and have documented this fact then your upstream ISP must give you more address space. If they won't then you can appeal it to APNIC http://www.apnic.net In Europe the appeal would go to RIPE http://www.ripe.net and in the Americas and South Africa the appeal would go to the Internic. You may want to read through RFC2050 before following up on this. One good source of information is the Recommended Reading section at http://www.arin.net and it includes RFC2050 Michael Dillon - Internet & ISP Consulting Memra Software Inc. - Fax: +1-250-546-3049 http://www.memra.com - E-mail: michael@memra.com From owner-freebsd-isp Tue Feb 18 19:31:54 1997 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.5/8.8.5) id TAA27057 for isp-outgoing; Tue, 18 Feb 1997 19:31:54 -0800 (PST) Received: from mail.intercenter.net (mir.intercenter.net [207.211.128.20]) by freefall.freebsd.org (8.8.5/8.8.5) with SMTP id TAA27052 for ; Tue, 18 Feb 1997 19:31:49 -0800 (PST) Received: (qmail 26417 invoked from network); 19 Feb 1997 03:31:47 -0000 Received: from ct1-10.intercenter.net (HELO oz.intercenter.net) (207.211.129.43) by mir.intercenter.net with SMTP; 19 Feb 1997 03:31:47 -0000 Date: Tue, 18 Feb 1997 22:31:15 -0500 (EST) From: Ron Bickers Reply-To: Ron Bickers To: freebsd-isp@freebsd.org Subject: Re: Apache Virtual Servers (single IP) In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk On Wed, 19 Feb 1997, Michael Slater wrote: > > > > Just like the clueless ISPs that went to dynamic IP addresses for > What's clueless about ISP's that use dynamic IP's ? Are they > "clueless" because they dont do it the way you do it ? I can tell I need to leave my sarcasm for voice. The point was that when static IP addressing was the norm and ISPs started switching to dynamic, everyone cried bloody murder. I don't know if that's really a decent analogy because, like Michael said, dynamic IP addresses makes technical sense, this "IP-less" virtual hosting really doesn't. If we have to make a technical kludge because of address space, then so be it. From owner-freebsd-isp Tue Feb 18 19:39:49 1997 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.5/8.8.5) id TAA27817 for isp-outgoing; Tue, 18 Feb 1997 19:39:49 -0800 (PST) Received: from rainey.sj-coop.net (root@rainey.sj-coop.net [206.25.0.252]) by freefall.freebsd.org (8.8.5/8.8.5) with SMTP id TAA27812 for ; Tue, 18 Feb 1997 19:39:44 -0800 (PST) From: michael@blueneptune.com Received: (from michael@localhost) by rainey.sj-coop.net (8.6.12/8.6.12) id TAA16406; Tue, 18 Feb 1997 19:48:51 -0800 Message-Id: <199702190348.TAA16406@rainey.sj-coop.net> Subject: Re: Apache Virtual Servers (single IP) To: slaterm@excel.tnet.com.au (Michael Slater) Date: Tue, 18 Feb 1997 19:48:51 -0800 (PST) Cc: freebsd-isp@freebsd.org In-Reply-To: from "Michael Slater" at Feb 19, 97 10:46:33 am Reply-To: michael@blueneptune.com X-Mailer: ELM [version 2.4 PL24 ME8b] Content-Type: text Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk > > I spend my money -- and recommend to my clients they spend their money -- > > with an ISP who will deliver the service _I_ want and _I_ expect. To whit: > > > > If I need a static IP address > > for a good and legitimate reason -- I _will_ > > If any of my customers have a reason for needing a static I.P address, > then they get one. Exactly. As an ISP, I think it is reasonable to ask and make sure that a given request is really what the customer needs. I would never give out a class C network to a customer without checking things out first. However, I -would- ask them why they needed it, and if they had a reasonable need, I'd say sure. But if they said "I have five machines at my home office, and want to be ready to expand in the future", I would work with them to find out what their real anticipated needs were for the next year or so, and assign them a subnet with enough room, plus some growth. Determining "reasonable need" can sometimes be tricky, but it's not that hard. I find that once people are told that there really is a need to conserve IP addresses at the moment, and assure them that their needs will be met, and that the purpose for being "stingy" is to make sure addresses are not grossly wasted, they are really quite reasonable to work with. Meeting customer needs is important. But part of that job means knowing what the needs really are. Somebody who just wants to hog addresses on the slight chance of needing them five years from now isn't doing -anybody- any good. Regarding the use of static and distinct IP addresses for virtual domains, as somebody else pointed out, you -need- to do that for virtual FTP servers, since FTP does not provide for any other way to tell the server what host is being requested. And the argument that many browsers still do not support the "shared IP address" mechanism is also valid. Fortunately, you can get by with a single IP address for all the desired services on that virtual domain, provided you serve them from the same physical machine. (For instance, ftp.some.domain would have the same address as www.some.domain.) At least you can get by with only one address for everything on a virtual domain. That's a -huge- improvement over one alternative --- if the company in question were to get it's own network, with a router, and possibly multiple machines, they could eat up quite a bit more than just a single address. -- Michael Bryan michael@blueneptune.com From owner-freebsd-isp Tue Feb 18 19:46:53 1997 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.5/8.8.5) id TAA28329 for isp-outgoing; Tue, 18 Feb 1997 19:46:53 -0800 (PST) Received: from mail.intercenter.net (mir.intercenter.net [207.211.128.20]) by freefall.freebsd.org (8.8.5/8.8.5) with SMTP id TAA28317 for ; Tue, 18 Feb 1997 19:46:50 -0800 (PST) Received: (qmail 26583 invoked from network); 19 Feb 1997 03:46:43 -0000 Received: from ct1-02.intercenter.net (HELO oz.intercenter.net) (207.211.129.35) by mir.intercenter.net with SMTP; 19 Feb 1997 03:46:43 -0000 Date: Tue, 18 Feb 1997 22:46:11 -0500 (EST) From: Ron Bickers Reply-To: Ron Bickers To: freebsd-isp@freebsd.org Subject: Re: Apache Virtual Servers (single IP) In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk > The long and the short of this is: why should I give an ISP money who > insists on dictating to me? HTTP 1.1 is great -- I'd like to see it become > standard -- but it's not. At this point you have a choice, someday you *may* not. > As an aside, I am using lynx much more, because so many ignorant web > designers want animated icons and enough gewgaw bulls**t on their pages > that I can't get to the real information because of the distraction. I > don't waste my time with those who don't deliver what I need and want. That's a whole 'nother issue but without condoning Jay's filthy language :-), I fully concur. Some sites are just out of control. > If you, as Internet __Service__ Providers choose to ignore me -- and many > like me, you will lose the business to those who are willing to provide > the service for which we are willing to pay. And well they should lose the business. The customer deserves the best, though someday the best may be the kludge HTTP 1.1 offers. We'll see.. From owner-freebsd-isp Tue Feb 18 20:04:28 1997 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.5/8.8.5) id UAA29524 for isp-outgoing; Tue, 18 Feb 1997 20:04:28 -0800 (PST) Received: from luke.cpl.net ([206.85.245.131]) by freefall.freebsd.org (8.8.5/8.8.5) with ESMTP id UAA29519 for ; Tue, 18 Feb 1997 20:04:24 -0800 (PST) Received: from localhost (shawn@localhost) by luke.cpl.net (8.8.5/8.7.3) with SMTP id UAA00364; Tue, 18 Feb 1997 20:03:59 GMT Date: Tue, 18 Feb 1997 20:03:59 +0000 (GMT) From: Shawn Ramsey X-Sender: shawn@luke.cpl.net To: Ron Bickers cc: freebsd-isp@freebsd.org Subject: Re: Apache Virtual Servers (single IP) In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk > I guess if the user doesn't want to grow with the industry, that's their > choice, yes. I was simply saying, even if they COULD get to these > "IP-less" virtual domains, chances are it'd look like garbage. > > I use Lynx often myself and more often find I can't do what I need to > because of other features used on a web site and not supported. That's a > whole different issue though. I use Lynx a lot myself too, because for the most part it works well, and is functional enough on most web sites. The newer versions also support HTTP 1.1, so the ip'less domains will still work with Lynx. Mosaic 2.75 also works like this. If you are using Netscape 1.1, or Explorer >2.0, you are not to be helped anyway. :) From owner-freebsd-isp Tue Feb 18 20:21:05 1997 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.5/8.8.5) id UAA00402 for isp-outgoing; Tue, 18 Feb 1997 20:21:05 -0800 (PST) Received: from panda.hilink.com.au (panda.hilink.com.au [203.2.144.5]) by freefall.freebsd.org (8.8.5/8.8.5) with ESMTP id UAA00396 for ; Tue, 18 Feb 1997 20:20:58 -0800 (PST) Received: (from danny@localhost) by panda.hilink.com.au (8.7.6/8.7.3) id PAA01742; Wed, 19 Feb 1997 15:24:42 +1100 (EST) Date: Wed, 19 Feb 1997 15:24:41 +1100 (EST) From: "Daniel O'Callaghan" To: Michael Dillon cc: freebsd-isp@freebsd.org Subject: Re: Apache Virtual Servers (single IP) In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk On Tue, 18 Feb 1997, Michael Dillon wrote: > On Wed, 19 Feb 1997, Michael Slater wrote: > > > then they get one. I dont know how it is in the U.S these days, but in > > Australia as of the end of this month their will not be any more class > > C network addresses available. > > (Thats what i was told when i applied for another class C address) > > It seems Australia has used the _FEW_ I.P addresses > > that were allocated to it. So as a result,we have to make do with what > > we have (at least that's the impression that i get) . > > This doesn't make sense. If you have made use of the IP addresses > that you have been allocated and have documented this fact then your > upstream ISP must give you more address space. If they won't then you can > appeal it to APNIC http://www.apnic.net I replied privately to Michael Slater; I should have replied publicly. Once upon a time APNIC gave AARNet the 203.0.0.0-203.63.255.0 netblock to allocate to Australians. The idea was that AARNet was the monopoly ISP and so could aggregate. They allocated Class Cs to anyone who asked. When I set up as an ISP, I asked for an 8 class C netblock so I could hand out subnets to little customers, and I was told by Geoff Huston, (one time?) secretary of the Internet Society, that it was AARNet's policy not to hand out netblocks for this purpose - each business should have its own Class C network and should not have to renumber if it moved ISPs. Thanks to that strategy, whereby 3 man companies who need 4 hosts have class Cs in Australia, the 203.0.0.0-203.63.255.0 block was exhausted on 12/2/97. Because Geoff Huston now understands CIDR, Telstra Internet (who took over the commercial side of AARNet) will not allocate general purpose *portable* IP addresses. Telstra Internet *will* allocate non-portable IP addresses to its customers. The Telstra Internet announcement about this (see off http://www.aunic.net/) explicitly states that people who need portable address ranges should ask APNIC. In other words, Australians should not complain that Telstra is doing something wrong, rather, they should be happy that it is now doing the right thing, and helping to prevent core-router collapse. cheers, Danny From owner-freebsd-isp Tue Feb 18 20:30:12 1997 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.5/8.8.5) id UAA00832 for isp-outgoing; Tue, 18 Feb 1997 20:30:12 -0800 (PST) Received: from tut.o2.net (root@tut.o2.net [206.27.219.51]) by freefall.freebsd.org (8.8.5/8.8.5) with ESMTP id UAA00825 for ; Tue, 18 Feb 1997 20:30:07 -0800 (PST) Received: from [208.130.187.104] ([208.130.187.104]) by tut.o2.net (8.8.4/8.8.4) with SMTP id WAA01181 for ; Tue, 18 Feb 1997 22:29:58 -0600 Date: Tue, 18 Feb 1997 22:29:58 -0600 Message-Id: <3.0.16.19970218223452.268fff2c@pop3.theheart.com> X-Sender: david.ambs@pop3.theheart.com X-Mailer: Windows Eudora Pro Version 3.0 (16) To: freebsd-isp@freebsd.org From: David Subject: unsubscribe Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk From owner-freebsd-isp Tue Feb 18 21:18:20 1997 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.5/8.8.5) id VAA03166 for isp-outgoing; Tue, 18 Feb 1997 21:18:20 -0800 (PST) Received: from pinky.junction.net (pinky.junction.net [199.166.227.12]) by freefall.freebsd.org (8.8.5/8.8.5) with SMTP id VAA03159 for ; Tue, 18 Feb 1997 21:18:15 -0800 (PST) Received: from sidhe.memra.com (sidhe.memra.com [199.166.227.105]) by pinky.junction.net (8.6.12/8.6.12) with ESMTP id VAA19167 for ; Tue, 18 Feb 1997 21:18:06 -0800 Received: from localhost (michael@localhost) by sidhe.memra.com (8.6.12/8.6.12) with SMTP id VAA13175 for ; Tue, 18 Feb 1997 21:12:54 -0800 Date: Tue, 18 Feb 1997 21:12:52 -0800 (PST) From: Michael Dillon To: freebsd-isp@freebsd.org Subject: Re: Apache Virtual Servers (single IP) In-Reply-To: Message-ID: Organization: Memra Software Inc. - Internet consulting MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk On Tue, 18 Feb 1997, Ron Bickers wrote: > On Tue, 18 Feb 1997, Michael Dillon wrote: > > > modem port. But virtual domains are servers and are a whole different > > ballgame. You need to have a globally unique IP address in order for the > > WWW server to be globally visible. Whether or not you run this website on > > a shared piece of equipment is a separate decision and should not be > > visible to the world, thus unique IP addresses for each domain. > > Today that's pretty much true, but it's happening that "globally visible" > through the HTTP protocol doesn't *necessitate* a unique IP address. I > thought that was the whole point of the Host: header. Maybe there's > another use, I don't know. Right now the host header is only useful on an intranet. Eventually it will become useful on the global public Internet but it will take time for everybody to upgrade their browser. At least two years, maybe three. As an ISP who is being paid to deliver access to as close to 100% of the global Internet as possible, you cannot arbitrarily decide to cut off 25% or 10% or even 5% of your customer website's audience. > > There is no point breaking things before the world is ready to switch, > > especially when there is no pressing need to force everyone to switch. > > Probably true. I don't really disagree with your points, however, *if* > Internic (or whomever had the power) said you can't have anymore IP > addrseses, the world would have no choice but to be ready. The Internic isn't saying this nor is RIPE nor APNIC. If anyone does encounter this from one of the NIC's, tell me about it and I will help you work out the problem which will probably be due to some NIC employee misunderstanding the current policies. Michael Dillon - Internet & ISP Consulting Memra Software Inc. - Fax: +1-250-546-3049 http://www.memra.com - E-mail: michael@memra.com From owner-freebsd-isp Tue Feb 18 23:29:16 1997 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.5/8.8.5) id XAA09813 for isp-outgoing; Tue, 18 Feb 1997 23:29:16 -0800 (PST) Received: from agora.rdrop.com (root@agora.rdrop.com [199.2.210.241]) by freefall.freebsd.org (8.8.5/8.8.5) with SMTP id XAA09807 for ; Tue, 18 Feb 1997 23:29:14 -0800 (PST) Received: by agora.rdrop.com (Smail3.1.29.1 #17) id m0vx6Si-0008yAC; Tue, 18 Feb 97 23:29 PST Message-Id: From: batie@agora.rdrop.com (Alan Batie) Subject: Re: Apache Virtual Servers (single IP) To: jdn@qiv.com (Jay D. Nelson) Date: Tue, 18 Feb 1997 23:29:08 -0800 (PST) Cc: freebsd-isp@FreeBSD.ORG In-Reply-To: from "Jay D. Nelson" at Feb 18, 97 07:39:31 pm X-Mailer: ELM [version 2.4 PL24 ME8a] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk > The long and the short of this is: why should I give an ISP money who > insists on dictating to me? HTTP 1.1 is great -- I'd like to see it become > standard -- but it's not. If one dictates to you, I would run as fast as I can. Calling it fraud, as someone else did, to implement a technical solution to which most people could care less about is another matter entirely, which is what raises my hackles. As if "virtual domains" meant the same thing to any two isp's regardless... There's no need to get nasty when discussing the technical merits of various solutions. As an ISP, if a customer wants a static IP address, and I have them to give, I will. As it happens, I haven't switched to the uni-address model yet myself, having just recently discovered that Apache even supported another method. I want to analyze the Agent logs and determine just what the count is of browsers that will go to the wrong place, and would then discuss it with existing customers before switching them. Given that Lynx and Netscape 2.x both do it, I think the count of browsers that don't is very *very* small, I don't see any particular reason not to, but each environment must make that determination itself. Ftp in particular is a case where you do have to have unique addresses. For Web and email, which is what most people care about, they could care less what the ip address is though, and probably don't even realize there is one. But, I think this horse is quite dead now. In the end, as a provider, you provide what you think is the best solution, and if the customer wants something different, and you can give it to them, you do. -- Alan Batie ______ It's not my fault! It's some guy batie@agora.rdrop.com \ / named "General Protection"! +1 503 452-0960 \ / --Ratbert PGP FP: DE 3C 29 17 C0 49 \/ 7A 27 40 A5 3C 37 4A DA 52 B9 It is my policy to avoid purchase of any products from companies which use unrequested email advertisements or telephone solicitation. From owner-freebsd-isp Wed Feb 19 07:24:57 1997 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.5/8.8.5) id HAA27570 for isp-outgoing; Wed, 19 Feb 1997 07:24:57 -0800 (PST) Received: from nero.in-design.com (root@nero.in-design.com [204.157.146.146]) by freefall.freebsd.org (8.8.5/8.8.5) with ESMTP id HAA27563 for ; Wed, 19 Feb 1997 07:24:55 -0800 (PST) Received: (from archive@localhost) by nero.in-design.com (8.7.5/8.7.3) id KAA21074; Wed, 19 Feb 1997 10:25:47 -0500 (EST) Date: Wed, 19 Feb 1997 10:25:47 -0500 (EST) From: Archive Service To: Jim Dixon cc: Intuitive Design Info , isp@freebsd.org Subject: Re: ATM Frame Relay vs P2P? In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk On Sat, 15 Feb 1997, Jim Dixon wrote: > On Fri, 14 Feb 1997, Intuitive Design Info wrote: > > > Since we are on the subject... What have people's experience been > > with SMDS vs. Frame Relay or a DS1? All at simular streams. General > > feelings, some of the pricing and the like? > > SMDS has very very high overheads. As I recall you get 1.07 Mbps over > a 1.544 Mbps T1. Avoid it. > > Frame relay has acceptable overheads and is usually significantly > cheaper than a straight T1. > ok Frame Relay it is, then! next I have looked and it seams my choises for routers are: 1) 1601 Cisco Router 2) 2509 Cisco Router This will support about 10-16 machines. Mostly internet servers, FTP, www, the usual. Nothing extraordinary. What choices do people seam to like out there. Also been told that I can get away with a cisco 1000 or something, what do you people think. Again. Thanks alot for The HELP. Tamer Ziady From owner-freebsd-isp Wed Feb 19 07:31:01 1997 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.5/8.8.5) id HAA27771 for isp-outgoing; Wed, 19 Feb 1997 07:31:01 -0800 (PST) Received: from mail.intercenter.net (mir.intercenter.net [207.211.128.20]) by freefall.freebsd.org (8.8.5/8.8.5) with SMTP id HAA27766 for ; Wed, 19 Feb 1997 07:30:59 -0800 (PST) Received: (qmail 626 invoked from network); 19 Feb 1997 15:30:57 -0000 Received: from bigboy.intercenter.net (207.211.128.17) by mir.intercenter.net with SMTP; 19 Feb 1997 15:30:57 -0000 Date: Wed, 19 Feb 1997 10:30:57 -0500 (EST) From: Ron Bickers Reply-To: Ron Bickers To: freebsd-isp@freebsd.org Subject: Re: Apache Virtual Servers (single IP) In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk On Tue, 18 Feb 1997, Michael Dillon wrote: > Right now the host header is only useful on an intranet. Eventually it > will become useful on the global public Internet but it will take time > for everybody to upgrade their browser. At least two years, maybe three. > As an ISP who is being paid to deliver access to as close to 100% of the > global Internet as possible, you cannot arbitrarily decide to cut off > 25% or 10% or even 5% of your customer website's audience. So why do so many sites use html and other web features that these 25%, 10% or 5% of customers can't view anyway? They may be better off not being able to view a site than viewing it and not know what it is they're looking at. I know, I know....that's not necessarily true, but you see what I'm saying. People are already needing to upgrade to make a large number of sites useful. > > Probably true. I don't really disagree with your points, however, *if* > > Internic (or whomever had the power) said you can't have anymore IP > > addrseses, the world would have no choice but to be ready. > > The Internic isn't saying this nor is RIPE nor APNIC. If anyone does > encounter this from one of the NIC's, tell me about it and I will help you > work out the problem which will probably be due to some NIC employee > misunderstanding the current policies. That was *if*. I suppose "*if* there were no more addresses" would have been a better phrase. Course, we'd have bigger problems than virtual websites if that ever happened. From owner-freebsd-isp Wed Feb 19 07:47:33 1997 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.5/8.8.5) id HAA28490 for isp-outgoing; Wed, 19 Feb 1997 07:47:33 -0800 (PST) Received: from nero.in-design.com (root@nero.in-design.com [204.157.146.146]) by freefall.freebsd.org (8.8.5/8.8.5) with ESMTP id HAA28484 for ; Wed, 19 Feb 1997 07:47:29 -0800 (PST) Received: (from archive@localhost) by nero.in-design.com (8.7.5/8.7.3) id KAA21129; Wed, 19 Feb 1997 10:48:19 -0500 (EST) Date: Wed, 19 Feb 1997 10:48:19 -0500 (EST) From: Archive Service To: Michael Dillon cc: Ron Bickers , freebsd-isp@FreeBSD.ORG Subject: Re: Apache Virtual Servers (single IP) In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk On Tue, 18 Feb 1997, Michael Dillon wrote: > On Tue, 18 Feb 1997, Ron Bickers wrote: > > > On Mon, 17 Feb 1997, Michael Dillon wrote: > > > > > > Are many ISPs doing this? > > > > > > No. Only a few clueless ones. > > > > Just like the clueless ISPs that went to dynamic IP addresses for dialup > > customers? There were a lot of complaints about that, but it's pretty > > much the norm now. > > There's nothing clueless about using dynamic IP's for dialup. It makes > sense to only use as many IP's as you have interfaces for, i.e. one per > modem port. But virtual domains are servers and are a whole different > ballgame. You need to have a globally unique IP address in order for the > WWW server to be globally visible. Whether or not you run this website on > a shared piece of equipment is a separate decision and should not be > visible to the world, thus unique IP addresses for each domain. > > > > Besides, IP addresses are not scarce. You have to justify your usage of > > > them and cannot waste them but the 3 NIC's all accept virtual webservers > > > as a legitimate use of IP space. > > > > Tell the Internic they aren't scarce and see what they say. > > I have done so and they basically agree. In fact I posted my statements on > a public mailing list where RIPE and APNIC people also read them and > nobody disagreed with me. There is no shortage of IP addresses. There > is certainly a limited number of IP addresses and we certainly do not want > to waste them but virtual domains are a legitimate use for IP addresses. > Waste would be assigning a /24 block for a point-to-point interface or > not using IP subnet zero or giving customers a /24 when they only have > 7 hosts. > > > I will be > > surprised if the Internic doesn't soon consider that you don't need to > > waste addresses to serve multiple domains. > > The Internic does not set these policies. They are set by the global > Internet community and the same policies are administered by RIPE, APNIC > and Internic (soon to be ARIN). RFC2050 is the current set of rules and > discussions about those rules are happening on the PAGAN mailing list. > Send a subscribe message to pagan-request@apnic.net to join or read > the archives at ftp.apnic.net > > > The Internet is moving forward, so should it's users. It won't be long > > before the vast majority of clients and servers use a single IP for > > virtual domains. It also doesn't take much to support both. > > It requires all clients everywhere in the world to upgrade. That's a very > tall order and IMHO will take three years before we can reasonably stop > using unique IP addresses for virtual domains. There is no point breaking > things before the world is ready to switch, especially when there is no > pressing need to force everyone to switch. > > > Besides, if > > you're still using an old browser, you're going to be missing a lot more > > than just a Host: header. > > I'll let the user make that decision. There are lots of good reasons to be > running Lynx or MacWeb or WinWeb. > Just have to agree, I have used Lynx and macweb in the last week :) Laters. From owner-freebsd-isp Wed Feb 19 07:59:38 1997 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.5/8.8.5) id HAA28905 for isp-outgoing; Wed, 19 Feb 1997 07:59:38 -0800 (PST) Received: from mail.intercenter.net (mir.intercenter.net [207.211.128.20]) by freefall.freebsd.org (8.8.5/8.8.5) with SMTP id HAA28899 for ; Wed, 19 Feb 1997 07:59:36 -0800 (PST) Received: (qmail 884 invoked from network); 19 Feb 1997 15:59:35 -0000 Received: from bigboy.intercenter.net (207.211.128.17) by mir.intercenter.net with SMTP; 19 Feb 1997 15:59:35 -0000 Date: Wed, 19 Feb 1997 10:59:35 -0500 (EST) From: Ron Bickers To: isp@freebsd.org Subject: ypbind and many interface aliases In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk I'm running FreeBSD 2.1.6 + those patches that are suppose to show up as 2.1.7 someday. ypbind will not bind with more than about 30 interface aliases (as in 'ifconfig x.x.x.x alias' for web hosting). The portmapper forks like mad until 'Cannot fork' messages show up in the log and until I kill ypbind. Anyone else using yp and many interfaces without this problem? Or if you have this problem, what's the fix? Thanks. Ron From owner-freebsd-isp Wed Feb 19 08:40:29 1997 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.5/8.8.5) id IAA00892 for isp-outgoing; Wed, 19 Feb 1997 08:40:29 -0800 (PST) Received: from absinthe.i3inc.com (Absinthe.stonos.washington.dc.us [206.27.237.33]) by freefall.freebsd.org (8.8.5/8.8.5) with ESMTP id IAA00881 for ; Wed, 19 Feb 1997 08:40:21 -0800 (PST) Received: from localhost (localhost [127.0.0.1]) by absinthe.i3inc.com (8.7.2/8.7.2) with SMTP id LAA20726 for ; Wed, 19 Feb 1997 11:38:47 -0500 (EST) Message-Id: <199702191638.LAA20726@absinthe.i3inc.com> X-Authentication-Warning: absinthe.i3inc.com: Host localhost [127.0.0.1] didn't use HELO protocol To: isp@freebsd.org Subject: Script to send mail to all users? X-Mailer: Mew version 1.03 on Emacs 19.34.1 Mime-Version: 1.0 Content-Type: Text/Plain; charset=us-ascii Date: Wed, 19 Feb 1997 11:38:46 -0500 From: Chris Shenton Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk I'm looking for a script to send mail to all users in my /etc/passwd file; anyone got one? I'd rather plagiarize than write from scratch. :-) Thanks. From owner-freebsd-isp Wed Feb 19 08:51:43 1997 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.5/8.8.5) id IAA01751 for isp-outgoing; Wed, 19 Feb 1997 08:51:43 -0800 (PST) Received: from irbs.irbs.com (jc@irbs.irbs.com [199.182.75.129]) by freefall.freebsd.org (8.8.5/8.8.5) with ESMTP id IAA01742 for ; Wed, 19 Feb 1997 08:51:39 -0800 (PST) Received: (from jc@localhost) by irbs.irbs.com (8.8.5/8.8.5) id LAA12101; Wed, 19 Feb 1997 11:51:17 -0500 (EST) Message-ID: <19970219115117.KS43971@irbs.com> Date: Wed, 19 Feb 1997 11:51:17 -0500 From: jc@irbs.com (John Capo) To: rbickers@intercenter.net (Ron Bickers) Cc: isp@FreeBSD.ORG Subject: Re: ypbind and many interface aliases References: X-Mailer: Mutt 0.60 Mime-Version: 1.0 X-Organization: IRBS Engineering, (954) 792-9551 In-Reply-To: ; from Ron Bickers on Feb 19, 1997 10:59:35 -0500 Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk Quoting Ron Bickers (rbickers@intercenter.net): > > I'm running FreeBSD 2.1.6 + those patches that are suppose to show up as > 2.1.7 someday. > > ypbind will not bind with more than about 30 interface aliases (as in > 'ifconfig x.x.x.x alias' for web hosting). The portmapper forks like mad > until 'Cannot fork' messages show up in the log and until I kill ypbind. > Anyone else using yp and many interfaces without this problem? Or if you > have this problem, what's the fix? > The best solution is to not use aliases on a broadcast interface if you are running YP. Alias a subnet to lo0 instead and announce a route to the aliased net. Quite a while back I filed a PR with a hack to getbroadcastnets() that gets around the problem. I can dig it up if you want it. John Capo From owner-freebsd-isp Wed Feb 19 09:17:43 1997 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.5/8.8.5) id JAA03841 for isp-outgoing; Wed, 19 Feb 1997 09:17:43 -0800 (PST) Received: from bigpuppy.newell.arlington.va.us (mcnsisdn.newell.arlington.va.us [206.27.237.14]) by freefall.freebsd.org (8.8.5/8.8.5) with SMTP id JAA03830 for ; Wed, 19 Feb 1997 09:17:33 -0800 (PST) Received: from localhost (mnewell@localhost) by bigpuppy.newell.arlington.va.us (8.6.12/8.6.9) with SMTP id MAA00169; Wed, 19 Feb 1997 12:13:03 -0500 Date: Wed, 19 Feb 1997 12:13:02 -0500 (EST) From: Mike Newell To: Chris Shenton cc: isp@freebsd.org Subject: Re: Script to send mail to all users? In-Reply-To: <199702191638.LAA20726@absinthe.i3inc.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk It's actually a pretty trivial script; you just read each line, parse out the first element (I used awk for that), and use Mail(1) to send the message. Mike On Wed, 19 Feb 1997, Chris Shenton wrote: chris> Date: Wed, 19 Feb 1997 11:38:46 -0500 chris> From: Chris Shenton chris> To: isp@freebsd.org chris> Subject: Script to send mail to all users? chris> chris> I'm looking for a script to send mail to all users in my /etc/passwd chris> file; anyone got one? I'd rather plagiarize than write from scratch. :-) chris> chris> Thanks. chris> Much obliged, Mike +--------------------------------------+------------------------------------+ | Mike Newell | The opinions expressed herein | | Affiliation: | are mine. You can take them or | | Address: | leave them. Flames to /dev/null. | +--------------------------------------+------------------------------------+ | Mike@Newell.arlington.va.us | http://www.newell.arlington.va.us | +--------------------------------------+------------------------------------+ | "Peace. It's wonderful!" Father Divine. | +---------------------------------------------------------------------------+ From owner-freebsd-isp Wed Feb 19 09:59:25 1997 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.5/8.8.5) id JAA07160 for isp-outgoing; Wed, 19 Feb 1997 09:59:25 -0800 (PST) Received: from magrathea.chance.ru (root@magrathea.chance.ru [194.58.86.1]) by freefall.freebsd.org (8.8.5/8.8.5) with SMTP id JAA07123 for ; Wed, 19 Feb 1997 09:59:16 -0800 (PST) Received: (from caseq@localhost) by magrathea.chance.ru (8.6.12/8.6.12) id UAA12437; Wed, 19 Feb 1997 20:58:26 +0300 From: Andrew Kosyakov Message-Id: <199702191758.UAA12437@magrathea.chance.ru> Subject: Re: Script to send mail to all users? To: mnewell@newell.arlington.va.us (Mike Newell) Date: Wed, 19 Feb 1997 20:58:26 +0300 (MSK) Cc: chris@absinthe.i3inc.com, isp@freebsd.org In-Reply-To: from "Mike Newell" at Feb 19, 97 12:13:02 pm Organization: Chance Publishing House X-Mailer: ELM [version 2.4 PL24 ME8a] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk Quoting Mike Newell: > It's actually a pretty trivial script; you just read each line, parse out > the first element (I used awk for that), and use Mail(1) to send the > message. Here's stupid one-line solution: mail `cut -f 1 -d : /etc/passwd` Received: (from root@localhost) by freefall.freebsd.org (8.8.5/8.8.5) id KAA07780 for isp-outgoing; Wed, 19 Feb 1997 10:09:44 -0800 (PST) Received: from sand.sentex.ca (sand.sentex.ca [206.222.77.6]) by freefall.freebsd.org (8.8.5/8.8.5) with ESMTP id KAA07765 for ; Wed, 19 Feb 1997 10:09:38 -0800 (PST) Received: from gravel (gravel.sentex.ca [205.211.165.210]) by sand.sentex.ca (8.8.3/8.8.3) with SMTP id NAA23793; Wed, 19 Feb 1997 13:18:33 -0500 (EST) Message-Id: <3.0.1.32.19970219125824.009ec260@sentex.net> X-Sender: mdtancsa@sentex.net X-Mailer: Windows Eudora Pro Version 3.0.1 (32) Date: Wed, 19 Feb 1997 12:58:24 -0500 To: Chris Shenton , isp@freebsd.org From: Mike Tancsa Subject: Re: Script to send mail to all users? In-Reply-To: <199702191638.LAA20726@absinthe.i3inc.com> Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk At 11:38 AM 2/19/97 -0500, Chris Shenton wrote: >I'm looking for a script to send mail to all users in my /etc/passwd >file; anyone got one? I'd rather plagiarize than write from scratch. :-) You might consider using the qualcomm popper daemon.. It has a feature that allows you to create bulletins so that when users collect their mail, it sends out an extra message of your choosing... Its much more effcient that duplicating the same message over and over again. ---Mike From owner-freebsd-isp Wed Feb 19 11:29:38 1997 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.5/8.8.5) id LAA13383 for isp-outgoing; Wed, 19 Feb 1997 11:29:38 -0800 (PST) Received: from absinthe.i3inc.com (Absinthe.stonos.washington.dc.us [206.27.237.33]) by freefall.freebsd.org (8.8.5/8.8.5) with ESMTP id LAA13372 for ; Wed, 19 Feb 1997 11:29:30 -0800 (PST) Received: from localhost (localhost [127.0.0.1]) by absinthe.i3inc.com (8.7.2/8.7.2) with SMTP id OAA20877 for ; Wed, 19 Feb 1997 14:27:58 -0500 (EST) Message-Id: <199702191927.OAA20877@absinthe.i3inc.com> X-Authentication-Warning: absinthe.i3inc.com: Host localhost [127.0.0.1] didn't use HELO protocol To: isp@freebsd.org Subject: Re: Script to send mail to all users? In-Reply-To: Your message of "Wed, 19 Feb 1997 20:58:26 +0300 (MSK)" References: <199702191758.UAA12437@magrathea.chance.ru> X-Mailer: Mew version 1.03 on Emacs 19.34.1 Mime-Version: 1.0 Content-Type: Text/Plain; charset=us-ascii Date: Wed, 19 Feb 1997 14:27:58 -0500 From: Chris Shenton Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk Thanks for the suggestions. Some iterated on the users, one message per user; another cut the names and submitted that as part of the command but I was concerned that the recipients would see all the usernames and that the command line might be too long; a couple suggested Qualcomm's pop bulletin board. I finally went with a little program which used awk to create a file with all users, then modifying /etc/aliases to use this. This avoids users having to see thousands of names on the To: line, sending multiple messages, and long command (or /etc/aliases) lines; it also allows us to use whatever mail client to send the message, rather than putting a message in a file. It requires that you generate the new list of aliases to ensure the list is current, but it's trivial. FYI, here's what I did: /etc/aliases: allusers: :include:/etc/aliases.allusers /usr/local/bin/makeallusers: #!/bin/sh # $Id: makeallusers,v 1.1 1997/02/19 19:20:56 chris Exp $ # # Create a list of all (real) users, one per line, to be used as a # mail alias via an :include: directive. ############################################################################### cat /etc/passwd | awk -F':' '{print $1}' | egrep -v '^(root|toor|daemon|operator|bin|games|news|man|uucp|xten|nobody|ftp)$' > /etc/aliases.allusers From owner-freebsd-isp Wed Feb 19 12:40:30 1997 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.5/8.8.5) id MAA17214 for isp-outgoing; Wed, 19 Feb 1997 12:40:30 -0800 (PST) Received: from ns2.harborcom.net (root@ns2.harborcom.net [206.158.4.4]) by freefall.freebsd.org (8.8.5/8.8.5) with ESMTP id MAA17203 for ; Wed, 19 Feb 1997 12:40:23 -0800 (PST) Received: from swoosh.dunn.org (swoosh.dunn.org [206.158.7.243]) by ns2.harborcom.net (8.8.5/8.8.4) with SMTP id PAA24912; Wed, 19 Feb 1997 15:40:18 -0500 (EST) Date: Wed, 19 Feb 1997 15:35:28 -0500 (EST) From: Bradley Dunn To: Chris Shenton cc: isp@freebsd.org Subject: Re: Script to send mail to all users? In-Reply-To: <199702191927.OAA20877@absinthe.i3inc.com> Message-ID: X-X-Sender: bradley@harborcom.net MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk On Wed, 19 Feb 1997, Chris Shenton wrote: > /etc/aliases: > > allusers: :include:/etc/aliases.allusers As an aside, you should probably comment that line out and only uncomment it when you have a message to send. A spammer or unknowing user could wreak havoc with it. pbd From owner-freebsd-isp Wed Feb 19 12:45:28 1997 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.5/8.8.5) id MAA17472 for isp-outgoing; Wed, 19 Feb 1997 12:45:28 -0800 (PST) Received: from ns.mexcom.net (root@ns.mexcom.net [206.103.64.9]) by freefall.freebsd.org (8.8.5/8.8.5) with ESMTP id MAA17457 for ; Wed, 19 Feb 1997 12:45:20 -0800 (PST) Received: from sunix (eculp@sunix.mexcom.net [206.103.64.3]) by ns.mexcom.net (8.7.5/8.6.9) with SMTP id OAA21696; Wed, 19 Feb 1997 14:44:44 -0600 Message-ID: <330B6645.56B25411@mexcom.net> Date: Wed, 19 Feb 1997 14:44:53 -0600 From: Edwin Culp Organization: Mexico Communicates, S.C. X-Mailer: Mozilla 3.01Gold (X11; I; Linux 2.0.14 i586) MIME-Version: 1.0 To: Chris Shenton CC: isp@freebsd.org Subject: Re: Script to send mail to all users? References: <199702191758.UAA12437@magrathea.chance.ru> <199702191927.OAA20877@absinthe.i3inc.com> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk Chris Shenton wrote: > > Thanks for the suggestions. Some iterated on the users, one message > per user; another cut the names and submitted that as part of the > command but I was concerned that the recipients would see all the > usernames and that the command line might be too long; a couple > suggested Qualcomm's pop bulletin board. > > I finally went with a little program which used awk to create a file > with all users, then modifying /etc/aliases to use this. This avoids > users having to see thousands of names on the To: line, sending > multiple messages, and long command (or /etc/aliases) lines; it also > allows us to use whatever mail client to send the message, rather than > putting a message in a file. > > It requires that you generate the new list of aliases to ensure the > list is current, but it's trivial. FYI, here's what I did: > > /etc/aliases: > > allusers: :include:/etc/aliases.allusers > > /usr/local/bin/makeallusers: > > #!/bin/sh > # $Id: makeallusers,v 1.1 1997/02/19 19:20:56 chris Exp $ > # > # Create a list of all (real) users, one per line, to be used as a > # mail alias via an :include: directive. > ############################################################################### > > cat /etc/passwd | awk -F':' '{print $1}' | egrep -v '^(root|toor|daemon|operator|bin|games|news|man|uucp|xten|nobody|ftp)$' > /etc/aliases.allusers A little easier: awk -F':' '!/^root|toor|daemon|operator|bin|games|news|man|uucp|xten|nobody|ftp/{print $1}' /etc/passwd > /etc/aliases.allusers easier: awk -F':' '$3>100{print $1}' /etc/passwd > /etc/aliases.allusers Without alias: for i in `awk -F':' '$3>100{print $1}' /etc/passwd` do mail -s "Your Subject" $i <<% You can put you message en this space and can even use shell variables, executables, etc. % done Ed From owner-freebsd-isp Wed Feb 19 12:52:09 1997 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.5/8.8.5) id MAA17988 for isp-outgoing; Wed, 19 Feb 1997 12:52:09 -0800 (PST) Received: from vic.cioe.com (vic.cioe.com [204.120.165.37]) by freefall.freebsd.org (8.8.5/8.8.5) with ESMTP id MAA17983 for ; Wed, 19 Feb 1997 12:52:07 -0800 (PST) Received: (from steve@localhost) by vic.cioe.com (8.7.5/8.7.3) id PAA05558 for freebsd-isp@freebsd.org; Wed, 19 Feb 1997 15:52:22 -0500 (EST) Date: Wed, 19 Feb 1997 15:52:22 -0500 (EST) From: Steve Ames Message-Id: <199702192052.PAA05558@vic.cioe.com> To: freebsd-isp@freebsd.org Subject: radius and USR (again) Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk *sigh* more radius problems. After much trial and error (and much help from all of you) I got the merit radius server up and running on my freebsd box and a cisco 2511 authenticating off it. Works quite well. Now the problem is this little USR Total control box... it doesn't work with me at all... in fact whenever I try to auth from it the radiusd process gets a seg fault or a bus error and exits. Since it works on some of the other NAS I've tried I assume a USR config error. USR is unwilling to be very supportive... ideas? -Steve From owner-freebsd-isp Wed Feb 19 14:56:31 1997 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.5/8.8.5) id OAA24373 for isp-outgoing; Wed, 19 Feb 1997 14:56:31 -0800 (PST) Received: from revelstone.jvm.com (revelstone.jvm.com [207.98.213.2]) by freefall.freebsd.org (8.8.5/8.8.5) with ESMTP id OAA24368 for ; Wed, 19 Feb 1997 14:56:27 -0800 (PST) Received: (from fbsdlist@localhost) by revelstone.jvm.com (8.7.5/8.6.12) id RAA16387; Wed, 19 Feb 1997 17:56:21 -0500 (EST) Date: Wed, 19 Feb 1997 17:56:21 -0500 (EST) From: Cliff Addy To: Ron Bickers cc: freebsd-isp@FreeBSD.ORG Subject: Re: Apache Virtual Servers (single IP) In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk On Tue, 18 Feb 1997, Ron Bickers wrote: > On Mon, 17 Feb 1997, Michael Dillon wrote: > > > It's not silly. ISP's have been selling a specific bundle of services > > under the name "virtual domain" for almost three years now. This requires > > that each virtual domain have a globally unique IP address allocated to > > it. (snip) > > HTTP 1.1 host header support is a neat bit of technology but it > > has no place in the ISP business today. > > Just like audio on demand, video on demand, java, and a whole slew of > other neat bits of technology, the use of a single IP for virtual hosting > will soon spread like kudzu. Yes, it will. The point I think you're missing is that *ISPs* supporting *business* clients shouldn't base those client's sites on a new technique that guarentees that some browsers won't reach them at all. Those other things you mention are client-side issues, if the browser doesn't support Java, not only does the user (hopefully) know it, but you'd be an idiot not to plan for it by adding an alternate access. If you're using the 1.1 host header, there *is* no alternative and the user won't have a clue. Now, as I noted before, I look at this from the perspective of supporting business clients. If all you're serving is your own vanity pages to show the world what a cool java/shockwave/realaudio/etc dude you are, then sure, you can tell many people to piss off with their low-tech systems. Businesses can't do this. Until we can count on universal or nearly universal support of the host header, stick with dedicated ips. From owner-freebsd-isp Wed Feb 19 14:58:13 1997 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.5/8.8.5) id OAA24435 for isp-outgoing; Wed, 19 Feb 1997 14:58:13 -0800 (PST) Received: from panda.hilink.com.au (panda.hilink.com.au [203.2.144.5]) by freefall.freebsd.org (8.8.5/8.8.5) with ESMTP id OAA24430 for ; Wed, 19 Feb 1997 14:58:06 -0800 (PST) Received: (from danny@localhost) by panda.hilink.com.au (8.7.6/8.7.3) id KAA06249; Thu, 20 Feb 1997 10:02:21 +1100 (EST) Date: Thu, 20 Feb 1997 10:02:20 +1100 (EST) From: "Daniel O'Callaghan" To: Chris Shenton cc: isp@freebsd.org Subject: Re: Script to send mail to all users? In-Reply-To: <199702191638.LAA20726@absinthe.i3inc.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk On Wed, 19 Feb 1997, Chris Shenton wrote: > I'm looking for a script to send mail to all users in my /etc/passwd > file; anyone got one? I'd rather plagiarize than write from scratch. :-) Well, you could start with something like: awk -F ':' \ '{print "/bin/Mailmail -s \"Daily Bulletin \" " $1 \ " < /tmp/bulletin.txt"}' | sh But that would start a new mail process for each user. Danny From owner-freebsd-isp Wed Feb 19 16:42:25 1997 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.5/8.8.5) id QAA00823 for isp-outgoing; Wed, 19 Feb 1997 16:42:25 -0800 (PST) Received: from main.netcorps.com (main.netcorps.com [205.149.1.66]) by freefall.freebsd.org (8.8.5/8.8.5) with ESMTP id QAA00814 for ; Wed, 19 Feb 1997 16:42:23 -0800 (PST) Received: from localhost (localhost [127.0.0.1]) by main.netcorps.com (8.7.1/8.6.12) with SMTP id QAA05122 for ; Wed, 19 Feb 1997 16:40:06 -0800 (PST) Message-Id: <199702200040.QAA05122@main.netcorps.com> X-Authentication-Warning: main.netcorps.com: Host localhost [127.0.0.1] didn't use HELO protocol To: freebsd-isp@freebsd.org Subject: backup server Date: Wed, 19 Feb 1997 16:40:06 -0800 From: Chris Bura Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk We have a backup server and are wondering which files in the /etc directory of the main server need to be copied so that username, password and groups are all identical on the backup. This is what we copied. But we're still getting "unknown user"s /etc/ group master.passwd pwd.db passwd login.access What are we missing? Thanks Chris From owner-freebsd-isp Wed Feb 19 16:50:09 1997 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.5/8.8.5) id QAA01462 for isp-outgoing; Wed, 19 Feb 1997 16:50:09 -0800 (PST) Received: from who.cdrom.com (who.cdrom.com [204.216.27.3]) by freefall.freebsd.org (8.8.5/8.8.5) with ESMTP id QAA01457 for ; Wed, 19 Feb 1997 16:50:06 -0800 (PST) Received: from excel.tnet.com.au (excel.tnet.com.au [203.15.94.3]) by who.cdrom.com (8.7.5/8.6.11) with ESMTP id QAA22850 for ; Wed, 19 Feb 1997 16:49:59 -0800 (PST) Received: (from slaterm@localhost) by excel.tnet.com.au (8.7.4/8.7.3) id IAA13160; Thu, 20 Feb 1997 08:53:20 +0800 Date: Thu, 20 Feb 1997 08:53:20 +0800 (WST) From: Michael Slater To: Chris Shenton cc: isp@freebsd.org Subject: Re: Script to send mail to all users? In-Reply-To: <199702191638.LAA20726@absinthe.i3inc.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk How about a line in /etc/aliases that looks like this. allusers: :include:/etc/users with /etc/users being a list of all users on your system. No special script required, but it does leave users with the ability to send their own mail to allusers. Michael Slater slaterm@tnet.com.au http://www.tnet.com.au/~slaterm On Wed, 19 Feb 1997, Chris Shenton wrote: > I'm looking for a script to send mail to all users in my /etc/passwd > file; anyone got one? I'd rather plagiarize than write from scratch. :-) > > Thanks. > From owner-freebsd-isp Wed Feb 19 16:54:42 1997 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.5/8.8.5) id QAA01715 for isp-outgoing; Wed, 19 Feb 1997 16:54:42 -0800 (PST) Received: from etinc.com (et-gw-fr1.etinc.com [204.141.244.98]) by freefall.freebsd.org (8.8.5/8.8.5) with ESMTP id QAA01686 for ; Wed, 19 Feb 1997 16:54:24 -0800 (PST) Received: from ntws (ntws.etinc.com [204.141.95.142]) by etinc.com (8.8.3/8.6.9) with SMTP id TAA06161; Wed, 19 Feb 1997 19:59:42 -0500 (EST) Message-Id: <3.0.32.19970219195335.00af7920@etinc.com> X-Sender: dennis@etinc.com X-Mailer: Windows Eudora Pro Version 3.0 (32) Date: Wed, 19 Feb 1997 19:53:39 -0500 To: Archive Service From: dennis Subject: Re: ATM Frame Relay vs P2P? Cc: Intuitive Design Info , isp@freebsd.org Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk At 10:25 AM 2/19/97 -0500, Archive Service wrote: >On Sat, 15 Feb 1997, Jim Dixon wrote: > >> On Fri, 14 Feb 1997, Intuitive Design Info wrote: >> >> > Since we are on the subject... What have people's experience been >> > with SMDS vs. Frame Relay or a DS1? All at simular streams. General >> > feelings, some of the pricing and the like? >> >> SMDS has very very high overheads. As I recall you get 1.07 Mbps over >> a 1.544 Mbps T1. Avoid it. >> >> Frame relay has acceptable overheads and is usually significantly >> cheaper than a straight T1. >> > > > ok Frame Relay it is, then! > > next I have looked and it seams my choises for routers are: > > 1) 1601 Cisco Router > 2) 2509 Cisco Router Why not put a Frame Relay card in a FreeBSD system and support any number of customers? Just a thought. Dennis > > This will support about 10-16 machines. Mostly internet servers, >FTP, www, the usual. Nothing extraordinary. What choices do people seam >to like out there. Also been told that I can get away with a cisco 1000 >or something, what do you people think. > > Again. Thanks alot for > The HELP. > > Tamer Ziady > > Emerging Technologies, Inc. Router cards for BSD/OS, FreeBSD and Linux Standalone Routers Bandwidth Allocation/Limiter Manager http://www.etinc.com sales@etinc.com (516) 271-4525 From owner-freebsd-isp Wed Feb 19 17:13:13 1997 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.5/8.8.5) id RAA03254 for isp-outgoing; Wed, 19 Feb 1997 17:13:13 -0800 (PST) Received: from panda.hilink.com.au (panda.hilink.com.au [203.2.144.5]) by freefall.freebsd.org (8.8.5/8.8.5) with ESMTP id RAA03249 for ; Wed, 19 Feb 1997 17:13:07 -0800 (PST) Received: (from danny@localhost) by panda.hilink.com.au (8.7.6/8.7.3) id MAA06812; Thu, 20 Feb 1997 12:17:09 +1100 (EST) Date: Thu, 20 Feb 1997 12:17:08 +1100 (EST) From: "Daniel O'Callaghan" To: freebsd-isp@freebsd.org Subject: Request: Email to fax gateway Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk Can anyone tell me where I could find some e-mail to fax gateway software, please. Thanks, Danny From owner-freebsd-isp Wed Feb 19 18:14:32 1997 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.5/8.8.5) id SAA06968 for isp-outgoing; Wed, 19 Feb 1997 18:14:32 -0800 (PST) Received: from hydrogen.nike.efn.org (metriclient-12.uoregon.edu [128.223.172.12]) by freefall.freebsd.org (8.8.5/8.8.5) with ESMTP id SAA06961 for ; Wed, 19 Feb 1997 18:14:26 -0800 (PST) Received: from localhost (localhost [127.0.0.1]) by hydrogen.nike.efn.org (8.8.4/8.8.4) with SMTP id SAA08748; Wed, 19 Feb 1997 18:13:51 -0800 (PST) Date: Wed, 19 Feb 1997 18:13:50 -0800 (PST) From: John-Mark Gurney Reply-To: John-Mark Gurney To: Chris Bura cc: freebsd-isp@FreeBSD.ORG Subject: Re: backup server In-Reply-To: <199702200040.QAA05122@main.netcorps.com> Message-ID: X-PGP-Fingerprint: B7 EC EF F8 AE ED A7 31 96 7A 22 B3 D8 56 36 F4 MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk On Wed, 19 Feb 1997, Chris Bura wrote: > > We have a backup server and are wondering which files in the /etc > directory of the main server need to be copied so that username, password > and groups are all identical on the backup. > > This is what we copied. But we're still getting "unknown user"s > > /etc/ > group > master.passwd > pwd.db > passwd > login.access > > What are we missing? spwd.db... that is the file that contains the encrypted passwords... read pwd_mkdb(8) for more info on these files... you can use pwd_mkdb(8) to create {pwd.db,spwd.db,passwd} from master.passwd... hope this helps... ttyl.. John-Mark gurney_j@efn.org http://resnet.uoregon.edu/~gurney_j/ Modem/FAX: (541) 683-6954 (FreeBSD Box) Live in Peace, destroy Micro$oft, support free software, run FreeBSD (unix) From owner-freebsd-isp Wed Feb 19 19:17:39 1997 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.5/8.8.5) id TAA10854 for isp-outgoing; Wed, 19 Feb 1997 19:17:39 -0800 (PST) Received: from pop.cybernex.net (root@pop.cybernex.net [204.141.116.15]) by freefall.freebsd.org (8.8.5/8.8.5) with ESMTP id TAA10844 for ; Wed, 19 Feb 1997 19:17:31 -0800 (PST) Received: from wjgrun.grunfelder.com (nj006a-081.cybernex.net [204.141.117.81]) by pop.cybernex.net (8.8.5/8.6.12) with SMTP id WAA15179 for ; Wed, 19 Feb 1997 22:17:10 -0500 Message-Id: <3.0.1.32.19970219221655.006d1b38@mail.cybernex.net> X-Sender: wjgrun@mail.cybernex.net X-Mailer: Windows Eudora Pro Version 3.0.1 beta 13 (32) Date: Wed, 19 Feb 1997 22:16:55 -0500 To: isp@freebsd.org From: Bill Grunfelder Subject: radius and xylogics terminal server. Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk Does anyone have any experience with Xylogics terminal servers using radius authentication? I've got a couple of Xylogics Remote Annex 4000s that are currently using xylogics' acp authentication, but I would like to start using radius authentication. The radius server will be the same machine as the xylogics security server, which uses a standard unix style password file (no shadow). I believe most of my problems currently lie in the radius config files (authfile, users, clients)...I'm not sure how to set them up. (BTW, the acp_passwd file is not /etc/passwd - So I also need to tell radiusd where the UNIX-PW file is). Any help anyone could offer would be greatly appreciated. Thank you, Bill .......................................................................... Bill Grunfelder wjgrun@poboxes.com ................... http://planetx.bloomu.edu/~wjgrun/ ................... From owner-freebsd-isp Wed Feb 19 19:21:32 1997 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.5/8.8.5) id TAA11237 for isp-outgoing; Wed, 19 Feb 1997 19:21:32 -0800 (PST) Received: from mail.intercenter.net (mir.intercenter.net [207.211.128.20]) by freefall.freebsd.org (8.8.5/8.8.5) with SMTP id TAA11224 for ; Wed, 19 Feb 1997 19:21:25 -0800 (PST) Received: (qmail 7879 invoked from network); 20 Feb 1997 03:21:23 -0000 Received: from ct1-11.intercenter.net (HELO oz.intercenter.net) (207.211.129.44) by mir.intercenter.net with SMTP; 20 Feb 1997 03:21:23 -0000 Date: Wed, 19 Feb 1997 22:20:49 -0500 (EST) From: Ron Bickers Reply-To: Ron Bickers To: freebsd-isp@freebsd.org Subject: Re: Apache Virtual Servers (single IP) In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk On Wed, 19 Feb 1997, Cliff Addy wrote: > not to plan for it by adding an alternate access. If you're using the > 1.1 host header, there *is* no alternative and the user won't have a > clue. Now, as I noted before, I look at this from the perspective of There is an alternative, however dirty, as noted in the Apache documentation. The points for sticking with multiple addresses are well made and I agree it's still necessary in most cases. I imagine things would've been quite different had the original HTTP protocol included the Host header. I doubt we ever would've used multiple addresses. From owner-freebsd-isp Thu Feb 20 02:12:00 1997 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.5/8.8.5) id CAA03667 for isp-outgoing; Thu, 20 Feb 1997 02:12:00 -0800 (PST) Received: from marlin.com.br (blue.marlin.com.br [200.255.107.33]) by freefall.freebsd.org (8.8.5/8.8.5) with SMTP id CAA03659 for ; Thu, 20 Feb 1997 02:11:53 -0800 (PST) Received: by marlin.com.br (8.6.12/SMI-4.1) id HAA19454; Thu, 20 Feb 1997 07:08:01 -0300 Date: Thu, 20 Feb 1997 07:08:00 -0300 (EST) From: "Alexsandro D. F. Correia" To: John-Mark Gurney cc: Chris Bura , freebsd-isp@freebsd.org Subject: Re: backup server In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk If I'm not wrong, You just have to run vipw and save the file again. Doing this, he will change the database. Alexsandro +-------------------------------------------------------------+ Alexsandro Correia E-mail: acorreia@marlin.com.br Analista de Suporte Internet Tel : +55 21 224-9950 +55 21 253-2971 +-------------------------------------------------------------+ Marlin Internet http://www.marlin.com.br Rua 7 de Setembro 48/13 Andar Tel: +55 21 224-9950 Centro - Rio de Janeiro Fax: +55 21 223-427 RJ - Brasil +-------------------------------------------------------------+ From owner-freebsd-isp Thu Feb 20 07:06:00 1997 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.5/8.8.5) id HAA16217 for isp-outgoing; Thu, 20 Feb 1997 07:06:00 -0800 (PST) Received: from hydrogen.nike.efn.org (resnet.uoregon.edu [128.223.170.28]) by freefall.freebsd.org (8.8.5/8.8.5) with ESMTP id HAA16197 for ; Thu, 20 Feb 1997 07:05:53 -0800 (PST) Received: from localhost (localhost [127.0.0.1]) by hydrogen.nike.efn.org (8.8.4/8.8.4) with SMTP id HAA00644; Thu, 20 Feb 1997 07:05:13 -0800 (PST) Date: Thu, 20 Feb 1997 07:05:11 -0800 (PST) From: John-Mark Gurney Reply-To: John-Mark Gurney To: "Alexsandro D. F. Correia" cc: Chris Bura , freebsd-isp@freebsd.org Subject: Re: backup server In-Reply-To: Message-ID: X-PGP-Fingerprint: B7 EC EF F8 AE ED A7 31 96 7A 22 B3 D8 56 36 F4 MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk On Thu, 20 Feb 1997, Alexsandro D. F. Correia wrote: > If I'm not wrong, You just have to run vipw and save the file again. > Doing this, he will change the database. all vipw does is some locking, and then runs pwd_mkdb when you are done... all I'm talking about is recreating the database files... if master.passwd hasn't changed then the database won't change significantly... if at all... I know this quite well as I'm working on adding a feature of vipw to keep your master.passwd in a different location (directory) than pwd.db and spwd.db... this is useful for people that run diskless machines... hope this helps... ttyl... John-Mark gurney_j@efn.org http://resnet.uoregon.edu/~gurney_j/ Modem/FAX: (541) 683-6954 (FreeBSD Box) Live in Peace, destroy Micro$oft, support free software, run FreeBSD (unix) From owner-freebsd-isp Thu Feb 20 12:07:49 1997 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.5/8.8.5) id MAA04815 for isp-outgoing; Thu, 20 Feb 1997 12:07:49 -0800 (PST) Received: from main.netcorps.com (main.netcorps.com [205.149.1.66]) by freefall.freebsd.org (8.8.5/8.8.5) with ESMTP id MAA04808 for ; Thu, 20 Feb 1997 12:07:41 -0800 (PST) Received: from localhost (localhost [127.0.0.1]) by main.netcorps.com (8.7.1/8.6.12) with SMTP id MAA13550 for ; Thu, 20 Feb 1997 12:05:13 -0800 (PST) Message-Id: <199702202005.MAA13550@main.netcorps.com> X-Authentication-Warning: main.netcorps.com: Host localhost [127.0.0.1] didn't use HELO protocol To: freebsd-isp@freebsd.org Subject: more password stuff Date: Thu, 20 Feb 1997 12:05:13 -0800 From: Chris Bura Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk More on the backup server password stuff. Okay, I copied: /etc/ master.psswd passwd pwd.db spwd.db and for good measure: group from main server to backup server. But no one can log on. -so I do a vipw - nothing. -pwd_mkdb -p master.passwd - nothing -However, if I do a "passwd user", then that user can log on. I don't get it. Is there another file I'm missing? Why does the "passwd" command fix that user that copying the files didn't do. Thanks again. Chris From owner-freebsd-isp Thu Feb 20 12:37:02 1997 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.5/8.8.5) id MAA06485 for isp-outgoing; Thu, 20 Feb 1997 12:37:02 -0800 (PST) Received: from who.cdrom.com (who.cdrom.com [204.216.27.3]) by freefall.freebsd.org (8.8.5/8.8.5) with ESMTP id MAA06477 for ; Thu, 20 Feb 1997 12:36:56 -0800 (PST) Received: from alpo.whistle.com (alpo.whistle.com [207.76.204.38]) by who.cdrom.com (8.7.5/8.6.11) with ESMTP id MAA24967 for ; Thu, 20 Feb 1997 12:36:54 -0800 (PST) Received: from current1.whistle.com (current1.whistle.com [207.76.205.22]) by alpo.whistle.com (8.8.5/8.8.4) with SMTP id LAA13350; Thu, 20 Feb 1997 11:28:41 -0800 (PST) Message-ID: <330CA56D.41C67EA6@whistle.com> Date: Thu, 20 Feb 1997 11:26:37 -0800 From: Julian Elischer Organization: Whistle Communications X-Mailer: Mozilla 3.0Gold (X11; I; FreeBSD 2.2-CURRENT i386) MIME-Version: 1.0 To: dennis CC: Archive Service , Intuitive Design Info , isp@FreeBSD.org Subject: Re: ATM Frame Relay vs P2P? References: <3.0.32.19970219195335.00af7920@etinc.com> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-isp@FreeBSD.org X-Loop: FreeBSD.org Precedence: bulk dennis wrote: > > > > > ok Frame Relay it is, then! > > > > next I have looked and it seams my choises for routers are: > > > > 1) 1601 Cisco Router > > 2) 2509 Cisco Router > > Why not put a Frame Relay card in a FreeBSD system and support any number > of customers? > > Just a thought. > > Dennis > that'd be my suggestion.. a T1 Frame link would support maybe 100 custommers with 56/64Kb frame links, (depending on your oversubscription rate) From owner-freebsd-isp Thu Feb 20 16:42:53 1997 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.5/8.8.5) id QAA20208 for isp-outgoing; Thu, 20 Feb 1997 16:42:53 -0800 (PST) Received: from pinky.junction.net (pinky.junction.net [199.166.227.12]) by freefall.freebsd.org (8.8.5/8.8.5) with SMTP id QAA20133 for ; Thu, 20 Feb 1997 16:41:20 -0800 (PST) Received: from sidhe.memra.com (sidhe.memra.com [199.166.227.105]) by pinky.junction.net (8.6.12/8.6.12) with ESMTP id QAA30932; Thu, 20 Feb 1997 16:39:38 -0800 Received: from localhost (michael@localhost) by sidhe.memra.com (8.6.12/8.6.12) with SMTP id QAA05452; Thu, 20 Feb 1997 16:33:14 -0800 Date: Thu, 20 Feb 1997 16:33:13 -0800 (PST) From: Michael Dillon To: iap@vma.cc.nd.edu cc: linuxisp@lightning.com, linuxisp@jeffnet.org, freebsd-isp@freebsd.org, os2-isp@dental.stat.com, apple-internet-providers@solutions.apple.com Subject: ISPCON 97 - Aug 20-23rd - San Francisco (fwd) Message-ID: Organization: Memra Software Inc. - Internet consulting MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk ---------- Forwarded message ---------- Date: Thu, 20 Feb 1997 14:33:24 -0700 From: Jack Rickard Reply-To: inet-access@earth.com To: inet-access@earth.com Subject: ISPCON 97 - Aug 20-23rd - San Francisco Resent-Date: Thu, 20 Feb 1997 14:35:15 -0700 (MST) Resent-From: inet-access@earth.com SUMMARY: ISPCON 97 - August 20-23rd, 1997, San Francisco Hilton, More at http://www.ispcon.com. I will rave for a page or two, but the summary line has all the facts. A number of you have been inquiring about our plans for a 1997 Internet Service Provider Convention (ISPCON). As it is late February, we should probably be a little further along than we are. In any event, we have committed to doing ISPCON again for 1997. We had 3042 total attendees to the 1996 show in San Francisco - 946 Internet Service Providers among them. Slightly under a thousand were exhibit only attendees of not very specific vintage. And we had 104 vendors exhibiting in Moscone. This year, as a result of some well founded if perhaps a bit loud comments regarding the separation of the exhibits and the sessions, we have pulled it all under one roof at the San Francisco Hilton and Towers Hotel, San Francisco, California. The exhibit setup will begin Wednesday, August 20th, with the traditional welcoming reception held that evening. The show will go through Saturday, August 23rd, with a closing banquet that evening. We had a lot of interest from some of the larger vendors in being show sponsors for the event. We need a couple of weeks to round up the truly interested from those that said they were, so the promotional efforts will lag a week or so. Cisco has already signed on and I understand a couple of our guys are meeting with Ascend this morning. Others who had expressed an interest in becoming essentially co-sponsors of the show: US Robotics Microsoft DEC Cascade Compaq IBM Bay Networks Shiva We should have this element of who is sponsoring the show finalized in about three weeks. The web site is mostly wreckage from last year at this point. http://www.ispcon.com. But we do have it set up to take registrations, and should be able to improve it a bit within the next week or so. Those interested in exhibiting can call Bob Holley at 800-933-6038. We're also issuing a call for papers for those who would like to present in the educational session schedule. As many of you know, we did over 120 sessions last year with very little in the way of the feel-good pap you may be accustomed to at most of these trade show events. We don't do "Internet is Cool" stuff. But if you have a concept for a solid technical session, or something productive on legal, business, or economic issues facing ISP's, we're all ears now and it gets very difficult to work in during the last week of July when it will probably finally occur to you. Papers should include a summary of the session, a bio paragraph on the speaker, full speaker contact information, and if possible a photo suitable for publication. Address session proposals to ISPCON Session Schedule, Boardwatch Magazine, 8500 West Bowles Ave., Suite 210, Littleton, CO 80123. Jack Rickard Boardwatch Magazine ============================== ISP Mailing List ============================== Email ``unsubscribe'' to inet-access-request@earth.com to be removed. Wrap your text at 80 columns, don't post messages with long lines. From owner-freebsd-isp Thu Feb 20 18:46:42 1997 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.5/8.8.5) id SAA29267 for isp-outgoing; Thu, 20 Feb 1997 18:46:42 -0800 (PST) Received: from gamma.pair.com (gamma.pair.com [207.86.128.13]) by freefall.freebsd.org (8.8.5/8.8.5) with ESMTP id SAA29257 for ; Thu, 20 Feb 1997 18:46:35 -0800 (PST) Received: from [207.104.16.70] (ppp-207-104-16-70.snrf01.pacbell.net [207.104.16.70]) by gamma.pair.com (8.8.5/8.6.12) with SMTP id VAA11029; Thu, 20 Feb 1997 21:46:51 -0500 (EST) X-Envelope-To: freebsd-isp@freebsd.org X-Sender: erich@mail.powerwareintl.com Message-Id: Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Date: Thu, 20 Feb 1997 18:47:22 -0800 To: "Daniel O'Callaghan" , freebsd-isp@freebsd.org From: erich@powerwareintl.com (Eric Harley) Subject: Re: Request: Email to fax gateway Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk At 12:17 PM 2/20/97, Daniel O'Callaghan wrote: >Can anyone tell me where I could find some e-mail to fax gateway >software, please. > www.innosoft.com PMDF-FAX is a very nice email to fax gateway. ============================================================================== Eric Harley "Of all God's creatures there is only one that cannot be made the slave of the lash. That one is the cat. If man could be crossed with the cat it would improve man, but deteriorate the cat." -Mark Twain Email: eric.harley@powerwareintl.com Web: http://www.powerwareintl.com/staff/erich/ PGP: http://www.powerwareintl.com/staff/erich/pgp.txt From owner-freebsd-isp Thu Feb 20 18:47:45 1997 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.5/8.8.5) id SAA29334 for isp-outgoing; Thu, 20 Feb 1997 18:47:45 -0800 (PST) Received: from riker.comcirc.com.au (riker.comcirc.com.au [203.17.165.1]) by freefall.freebsd.org (8.8.5/8.8.5) with SMTP id SAA29312 for ; Thu, 20 Feb 1997 18:47:31 -0800 (PST) Received: (from paul@localhost) by riker.comcirc.com.au (8.6.11/8.6.9) id NAA09250; Fri, 21 Feb 1997 13:47:30 +1100 Date: Fri, 21 Feb 1997 13:47:30 +1100 (EST) From: Paul Sondhu To: freebsd-isp@freebsd.org Subject: Multiple PPP connections from the one host to increase effective B/W Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk Hi, I was wondering if anyone can help me with the following problem. What I want to do is set up a FreeBSD machine as a router so that a small LAN can access the internet through dialup modem lines. This part I have set up OK using dialup PPP to our internet service through one 33.6K modem. The FreeBSD machine is routing fine. What I want to do is have multiple 33.6K modems coming out of the FreeBSD machine dialling up to our internet service so that I have an effective bandwidth of say 67.2K ( 33.6K x 2 ) or higher. Is this possible? Does anything special have to be set up to make this possible? We dialup into a Xylogics Annex terminal server. I have heard that Windows NT 4.0 has this feature built in. Any help would be greatly appreciated. Regards, Paul. ------------------------------------------------------------------------- Paul Sondhu Email: P.Sondhu@comcirc.com.au Computer Circuit Pty. Ltd. Tel: +61 03 53826959 27 Darlot St. Fax: +61 03 53826301 Horsham 3400 WWW: http://www.comcirc.com.au/staff/paul Victoria Australia ------------------------------------------------------------------------- From owner-freebsd-isp Thu Feb 20 18:48:26 1997 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.5/8.8.5) id SAA29517 for isp-outgoing; Thu, 20 Feb 1997 18:48:26 -0800 (PST) Received: from lannon.qc.ca (bsd1.lannon.qc.ca [207.253.12.2]) by freefall.freebsd.org (8.8.5/8.8.5) with SMTP id SAA29488 for ; Thu, 20 Feb 1997 18:48:18 -0800 (PST) Received: from Default ([206.47.102.164]) by lannon.qc.ca (8.6.12/8.6.12) with SMTP id VAA12804 for ; Thu, 20 Feb 1997 21:33:44 -0500 Date: Thu, 20 Feb 1997 21:33:44 -0500 Message-Id: <199702210233.VAA12804@lannon.qc.ca> X-Sender: admin@lannon.qc.ca X-Mailer: Windows Eudora Version 1.4.4 Mime-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" To: freebsd-isp@freebsd.org From: admin@lannon.qc.ca (Real Melancon) Subject: Users getting disconnected... Content-Transfer-Encoding: 8bit X-MIME-Autoconverted: from quoted-printable to 8bit by freefall.freebsd.org id SAA29494 Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk Hi to all of you. I have a stupid question, but we recently started a brand new ISP, and some of our users are complaining about getting disconnected from time to time, without any warning. Even tough I looked up the log files in /var/log I don`t seem to have any error there. I suspect a bad Ethernet card, but I must check this during the weekend. Here is my setup: - Pentium 90 (48 megs RAM), 2 SCSI QUANTUM drives - FreeBSD 2.0.5 - Using RADIUS on a Livingston Portmaster 2er (20 ports) ComOs 3.3.1 - Users time is stored in an Msql database (ver 1.0.8) - Usrobotics 33.6 modems (init string: af&f1&w) Any tips, advices, informations, files to check, good sites, etc... would be really appreciated. You guys probably had these kind of problems before. Thanks again. ------------------------------------------------------------------- Salutations :-) Réal Melançon - Programmeur/Analyste Internet L`Annonciation (http://lannon.qc.ca) Developpement de sites Web. Intranets. Formation. ------------------------------------------------------------------- From owner-freebsd-isp Thu Feb 20 19:34:46 1997 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.5/8.8.5) id TAA03181 for isp-outgoing; Thu, 20 Feb 1997 19:34:46 -0800 (PST) Received: from panda.hilink.com.au (panda.hilink.com.au [203.2.144.5]) by freefall.freebsd.org (8.8.5/8.8.5) with ESMTP id TAA03135 for ; Thu, 20 Feb 1997 19:34:22 -0800 (PST) Received: (from danny@localhost) by panda.hilink.com.au (8.7.6/8.7.3) id OAA13033; Fri, 21 Feb 1997 14:39:32 +1100 (EST) Date: Fri, 21 Feb 1997 14:39:32 +1100 (EST) From: "Daniel O'Callaghan" To: Paul Sondhu cc: freebsd-isp@freebsd.org Subject: Re: Multiple PPP connections from the one host to increase effective B/W In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk On Fri, 21 Feb 1997, Paul Sondhu wrote: > What I want to do is have multiple 33.6K modems coming out of the > FreeBSD machine dialling up to our internet service so that I have > an effective bandwidth of say 67.2K ( 33.6K x 2 ) or higher. Is > this possible? Does anything special have to be set up to make this > possible? We dialup into a Xylogics Annex terminal server. See ftp.freebsd.org:/incoming/mpd* I don't know about running through an Annex, but it works fine FreeBSD<->FreeBSD. I have a 2x customer and a 3x customer very happy. > I have heard that Windows NT 4.0 has this feature built in. Yes, it does, but NT 4.0 has problems running with mpd. Microsoft sent one of my NT multilink customers a patch and the patch broke PPP completely. They are now running on single channel CSLIP :-) Danny From owner-freebsd-isp Thu Feb 20 20:28:05 1997 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.5/8.8.5) id UAA00346 for isp-outgoing; Thu, 20 Feb 1997 20:28:05 -0800 (PST) Received: from who.cdrom.com (who.cdrom.com [204.216.27.3]) by freefall.freebsd.org (8.8.5/8.8.5) with ESMTP id UAA00328 for ; Thu, 20 Feb 1997 20:28:02 -0800 (PST) Received: from nimbus.superior.net (root@nimbus.superior.net [206.153.96.1]) by who.cdrom.com (8.7.5/8.6.11) with ESMTP id UAA26689 for ; Thu, 20 Feb 1997 20:18:27 -0800 (PST) Received: (from exidor@localhost) by nimbus.superior.net (8.8.5/8.8.5-SUPERIOR) id XAA26025; Thu, 20 Feb 1997 23:17:07 -0500 (EST) Message-ID: <19970220231705.SA22304@@> Date: Thu, 20 Feb 1997 23:17:06 -0500 From: exidor@superior.net (Christopher Masto) To: admin@lannon.qc.ca (Real Melancon) Cc: freebsd-isp@freebsd.org Subject: Re: Users getting disconnected... References: <199702210233.VAA12804@lannon.qc.ca> X-Mailer: Mutt 0.59.1 Mime-Version: 1.0 In-Reply-To: <199702210233.VAA12804@lannon.qc.ca>; from Real Melancon on Feb 20, 1997 21:33:44 -0500 Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk Real Melancon writes: > - Usrobotics 33.6 modems (init string: af&f1&w) The users probably have crappy modems and/or crappy phone lines. You can go with PRI or channelized T1 and eliminate line problems on your end, but there are still going to be some percentage of people who buy Acer, Global Villiage, *RPI/WinModem, or generic nonames. None of which actually work at all, so there's nothing you can do about it on your end. -- Christopher Masto . . . . chris@masto.com . . . . . Masto Consulting: info@masto.com On Talking: If I wasn't talking, I wounldn't know what to say. - Chico Resch, New York Islanders goaltender From owner-freebsd-isp Thu Feb 20 20:28:44 1997 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.5/8.8.5) id UAA00531 for isp-outgoing; Thu, 20 Feb 1997 20:28:44 -0800 (PST) Received: from who.cdrom.com (who.cdrom.com [204.216.27.3]) by freefall.freebsd.org (8.8.5/8.8.5) with ESMTP id UAA00521 for ; Thu, 20 Feb 1997 20:28:41 -0800 (PST) Received: from hydrogen.nike.efn.org (metriclient-11.uoregon.edu [128.223.172.11]) by who.cdrom.com (8.7.5/8.6.11) with ESMTP id TAA26531 for ; Thu, 20 Feb 1997 19:57:09 -0800 (PST) Received: from localhost (localhost [127.0.0.1]) by hydrogen.nike.efn.org (8.8.4/8.8.4) with SMTP id TAA04757; Thu, 20 Feb 1997 19:53:30 -0800 (PST) Date: Thu, 20 Feb 1997 19:53:30 -0800 (PST) From: John-Mark Gurney Reply-To: John-Mark Gurney To: Paul Sondhu cc: freebsd-isp@freebsd.org Subject: Re: Multiple PPP connections from the one host to increase effective B/W In-Reply-To: Message-ID: X-PGP-Fingerprint: B7 EC EF F8 AE ED A7 31 96 7A 22 B3 D8 56 36 F4 MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk On Fri, 21 Feb 1997, Paul Sondhu wrote: > > Hi, I was wondering if anyone can help me with the following problem. > > What I want to do is set up a FreeBSD machine as a router so that > a small LAN can access the internet through dialup modem lines. > This part I have set up OK using dialup PPP to our internet service > through one 33.6K modem. The FreeBSD machine is routing fine. > > What I want to do is have multiple 33.6K modems coming out of the > FreeBSD machine dialling up to our internet service so that I have > an effective bandwidth of say 67.2K ( 33.6K x 2 ) or higher. Is > this possible? Does anything special have to be set up to make this > possible? We dialup into a Xylogics Annex terminal server. what you probably want is mpd (multilink ppp) from ftp.cdrom.com/pub/FreeBSD/incoming... I'm not sure if it will work with Annex or not... hope this does what you want... ttyl.. John-Mark gurney_j@efn.org http://resnet.uoregon.edu/~gurney_j/ Modem/FAX: (541) 683-6954 (FreeBSD Box) Live in Peace, destroy Micro$oft, support free software, run FreeBSD (unix) From owner-freebsd-isp Fri Feb 21 04:28:13 1997 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.5/8.8.5) id EAA21840 for isp-outgoing; Fri, 21 Feb 1997 04:28:13 -0800 (PST) Received: from obiwan.aceonline.com.au (obiwan.aceonline.com.au [203.103.90.67]) by freefall.freebsd.org (8.8.5/8.8.5) with ESMTP id EAA21833 for ; Fri, 21 Feb 1997 04:28:07 -0800 (PST) Received: from localhost (adrian@localhost) by obiwan.aceonline.com.au (8.8.5/8.8.5) with SMTP id GAA00200; Fri, 5 Jan 1996 06:56:27 +0800 (WST) Date: Fri, 5 Jan 1996 06:56:26 +0800 (WST) From: Adrian Chadd To: Paul Sondhu cc: freebsd-isp@freebsd.org Subject: Re: Multiple PPP connections from the one host to increase effective B/W In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk On Fri, 21 Feb 1997, Paul Sondhu wrote: [cut] > What I want to do is have multiple 33.6K modems coming out of the > FreeBSD machine dialling up to our internet service so that I have > an effective bandwidth of say 67.2K ( 33.6K x 2 ) or higher. Is > this possible? Does anything special have to be set up to make this > possible? We dialup into a Xylogics Annex terminal server. > Hmm.. I would like to know too actually. I know Linux also supports it, I've been playing around with the linux support for a while (but since the second line isn't mine for exclusive use I couldn't keep it going :) Adrian. From owner-freebsd-isp Fri Feb 21 09:51:40 1997 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.5/8.8.5) id JAA08758 for isp-outgoing; Fri, 21 Feb 1997 09:51:40 -0800 (PST) Received: from avon-gw.uk1.vbc.net (jdd@avon-gw.uk1.vbc.net [194.207.2.20]) by freefall.freebsd.org (8.8.5/8.8.5) with ESMTP id JAA08740 for ; Fri, 21 Feb 1997 09:51:37 -0800 (PST) Received: (from jdd@localhost) by avon-gw.uk1.vbc.net (8.8.2/8.7.3) id RAA08265; Fri, 21 Feb 1997 17:51:36 GMT Date: Fri, 21 Feb 1997 17:51:35 +0000 (GMT) From: Jim Dixon X-Sender: jdd@avon-gw.uk1.vbc.net To: freebsd-isp@freebsd.org Subject: x400 ? edi ? edifact ? Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk We would be grateful if anyone could give us any pointers to x400, edi, or edifact software running on FreeBSD. -- Jim Dixon VBCnet GB Ltd http://www.vbc.net tel +44 117 929 1316 fax +44 117 927 2015 From owner-freebsd-isp Fri Feb 21 09:56:35 1997 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.5/8.8.5) id JAA09289 for isp-outgoing; Fri, 21 Feb 1997 09:56:35 -0800 (PST) Received: from absinthe.i3inc.com (Absinthe.stonos.washington.dc.us [206.27.237.33]) by freefall.freebsd.org (8.8.5/8.8.5) with ESMTP id JAA09267; Fri, 21 Feb 1997 09:56:06 -0800 (PST) Received: from localhost (localhost [127.0.0.1]) by absinthe.i3inc.com (8.7.2/8.7.2) with SMTP id MAA21993; Fri, 21 Feb 1997 12:54:18 -0500 (EST) Message-Id: <199702211754.MAA21993@absinthe.i3inc.com> X-Authentication-Warning: absinthe.i3inc.com: Host localhost [127.0.0.1] didn't use HELO protocol To: questions@freebsd.org Cc: isp@freebsd.org Subject: 2.1.7 running SSL+apache? X-Mailer: Mew version 1.03 on Emacs 19.34.1 Mime-Version: 1.0 Content-Type: Text/Plain; charset=us-ascii Date: Fri, 21 Feb 1997 12:54:17 -0500 From: Chris Shenton Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk I'm trying to build Apache with SSL on a 2.1.7 system; running into two major problems. I figured others, especially ISPs, must be running like this, so here's the deal. 1. Building ports/apache, requesting SSL extensions: cd /usr/ports/www/apache/ make -k -DSECURE_SERVER ===> apache_SSL-1.1.1 is marked as broken: SSLeay has changed, and the patches for apache need more work. I could take a whack at patching it up, but I have to admit to not having played with SSL before now. The next problem seems to be more of an impediment to me. 2. Building port/SSLeay: pkg/DESCR says: As this is a FreeBSD port, it has been tailored to FreeBSD. It uses the DES, MD2 and MD5 from FreeBSD 2.2+. Earlier versions of freebsd have a DES library that is missing bits, and SSLeay will not compile properly. The answer is to get the latest secure/ dist. and as expected, it fails at link time [lines split for readability]: cc -o out/ssleay -O tmp/verify.o tmp/asn1pars.o tmp/req.o tmp/dgst.o tmp/dh.o tmp/enc.o tmp/gendh.o tmp/errstr.o tmp/ca.o tmp/pkcs7.o tmp/crl2p7.o tmp/crl.o tmp/rsa.o tmp/x509.o tmp/genrsa.o tmp/s_server.o tmp/s_client.o tmp/speed.o tmp/s_time.o tmp/apps.o tmp/s_cb.o tmp/s_socket.o tmp/version.o tmp/sess_id.o tmp/ciphers.o tmp/ssleay.o out/libssl.a out/libcrypto.a -ldes -lmd e_xcbc_d.o: Undefined symbol `_des_xcbc_encrypt' referenced from text segment *** Error code 1 (continuing) `all' not remade because of errors. The DESCR seems to imply that I might be able to build the "secure" distribution from the latest 2.2; is this true? will it merge in with my 2.1.7 system? pointers on how to go about it? Any other words of wisdom? Thanks. From owner-freebsd-isp Fri Feb 21 10:01:17 1997 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.5/8.8.5) id KAA09654 for isp-outgoing; Fri, 21 Feb 1997 10:01:17 -0800 (PST) Received: from rustler.gwc.cccd.edu (rustler.gwc.cccd.edu [159.115.129.108]) by freefall.freebsd.org (8.8.5/8.8.5) with SMTP id KAA09637 for ; Fri, 21 Feb 1997 10:01:07 -0800 (PST) Received: from mpeer (mpeer.csc.gwc.cccd.edu [159.115.129.100]) by rustler.gwc.cccd.edu (8.6.11/8.6.9) with SMTP id KAA05985; Fri, 21 Feb 1997 10:00:59 -0800 Message-Id: <2.2.32.19970221180546.00bb979c@rustler.gwc.cccd.edu> X-Sender: mpeer@rustler.gwc.cccd.edu X-Mailer: Windows Eudora Pro Version 2.2 (32) Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Date: Fri, 21 Feb 1997 10:05:46 -0800 To: admin@lannon.qc.ca (Real Melancon) From: Michael Peer Subject: Re: Users getting disconnected... Cc: freebsd-isp@freebsd.org Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk At 09:33 PM 2/20/97 -0500, you wrote: > > Hi to all of you. I have a stupid question, but we recently started > a brand new ISP, and some of our users are complaining about getting > disconnected from time to time, without any warning. > > [... snip ...] > > Any tips, advices, informations, files to check, good sites, etc... > would be really appreciated. You guys probably had these kind of > problems before. > > Thanks again. > As a horror story, at work we switched from an analog PBX switch to an all digital system about 6 months ago. Voice was fine, but couldn't hold a data connection to save your life. Finally a telephone.god was brought in and he found that our now digital trunk line was not looping back clock at telco end, so it had a frame error every 192 bits. He switched the card, and now it works fine. Amazing we did nothing at our end, but suddenly instead of wishing for a 5 minute connection to hold, I have been on for 5 to 6 hours with no drop off. Just one mans story. > > > > >------------------------------------------------------------------- >Salutations :-) >Rial Melangon - Programmeur/Analyste >Internet L`Annonciation (http://lannon.qc.ca) >Developpement de sites Web. Intranets. Formation. >------------------------------------------------------------------- > > > ---------------------------------------------------------------------- Michael Peer Data Electronics Technician I Golden West College Computer Services Center 15744 Goldenwest St. Huntington Beach, CA 92647 e-mail: mpeer@gwc.cccd.edu Voice: (714)892-7711 ext 55067 WWW: http://pioneer.gwc.cccd.edu FAX: (714)895-8980 From owner-freebsd-isp Fri Feb 21 10:24:27 1997 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.5/8.8.5) id KAA10822 for isp-outgoing; Fri, 21 Feb 1997 10:24:27 -0800 (PST) Received: from brc.minsk.by ([194.226.121.36]) by freefall.freebsd.org (8.8.5/8.8.5) with ESMTP id KAA10716 for ; Fri, 21 Feb 1997 10:22:46 -0800 (PST) Received: (from uucp@localhost) by brc.minsk.by (8.8.2/8.8.2) with UUCP id UAA09316 for freebsd-isp@freebsd.org; Fri, 21 Feb 1997 20:07:44 +0200 (EET) Received: from david (david [150.97.0.2]) by wvb.gomel.by (8.7.5/8.7.3) with SMTP id SAA01879 for ; Fri, 21 Feb 1997 18:11:44 +0200 (EET) Received: by david with Microsoft Mail id <01BC2023.E0990480@david>; Fri, 21 Feb 1997 18:20:12 +-200 Message-ID: <01BC2023.E0990480@david> From: David Stickney To: "'FBSD ISP'" Subject: Big Directories.. Date: Fri, 21 Feb 1997 18:20:10 +-200 Encoding: 19 TEXT Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk I some questions, that nobody can seem to answer while : ; do mkdir x cd x done 1. How can you prevent users from running this in their home directory, without cutting off their shell account 2. How can you get rid of the directory once it has 300 or so subdirectories. The shell keeps saying there is no such directory, and nothing seems to delete it. I tried moving it to a floppy, but it worked for 45 minutes and I didn't want to burn out the drive. As Always, If you send your address with your answer, I'll send you 20 Soviet Roubles, Thanks for reading,... Dave From owner-freebsd-isp Fri Feb 21 11:31:53 1997 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.5/8.8.5) id LAA15496 for isp-outgoing; Fri, 21 Feb 1997 11:31:53 -0800 (PST) Received: from buffnet4.buffnet.net (root@buffnet4.buffnet.net [205.246.19.13]) by freefall.freebsd.org (8.8.5/8.8.5) with SMTP id LAA15490 for ; Fri, 21 Feb 1997 11:31:50 -0800 (PST) Received: from buffnet1.buffnet.net (mmdf@buffnet1.buffnet.net [205.246.19.10]) by buffnet4.buffnet.net (8.6.12/8.6.9) with SMTP id OAA11461; Fri, 21 Feb 1997 14:27:44 -0500 Received: from buffnet11.buffnet.net by buffnet1.buffnet.net id aa01392; 21 Feb 97 14:31 EST Date: Fri, 21 Feb 1997 14:30:38 -0500 (EST) From: Steve To: David Stickney cc: "'FBSD ISP'" Subject: Re: Big Directories.. In-Reply-To: <01BC2023.E0990480@david> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk On Fri, 21 Feb 1997, David Stickney wrote: > I some questions, that nobody can seem to answer > > while : ; do > mkdir x > cd x > done > > 2. How can you get rid of the directory once it has 300 or so > subdirectories. The shell keeps saying there is no such directory, and What I did once was cd down several levels and move what was below up into a higher dir - over and over again - until what was below me was removable with rm -r . From owner-freebsd-isp Fri Feb 21 11:38:42 1997 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.5/8.8.5) id LAA16160 for isp-outgoing; Fri, 21 Feb 1997 11:38:42 -0800 (PST) Received: from rainey.sj-coop.net (root@rainey.sj-coop.net [206.25.0.252]) by freefall.freebsd.org (8.8.5/8.8.5) with SMTP id LAA16150 for ; Fri, 21 Feb 1997 11:38:36 -0800 (PST) From: michael@blueneptune.com Received: (from michael@localhost) by rainey.sj-coop.net (8.6.12/8.6.12) id LAA05836; Fri, 21 Feb 1997 11:37:51 -0800 Message-Id: <199702211937.LAA05836@rainey.sj-coop.net> Subject: Re: Big Directories.. To: david@wvb.gomel.by (David Stickney) Date: Fri, 21 Feb 1997 11:37:51 -0800 (PST) Cc: freebsd-isp@FreeBSD.org In-Reply-To: <01BC2023.E0990480@david> from "David Stickney" at Feb 21, 97 06:20:10 pm Reply-To: michael@blueneptune.com X-Mailer: ELM [version 2.4 PL24 ME8b] Content-Type: text Sender: owner-isp@FreeBSD.org X-Loop: FreeBSD.org Precedence: bulk > 1. How can you prevent users from running this in their home directory, > without cutting off their shell account That one I don't know an answer to. Obviously, if they did it intentionally, I'd give them a stern warning, or boot them from the system. But that's a reactive "solution", not proactive. > 2. How can you get rid of the directory once it has 300 or so > subdirectories. The shell keeps saying there is no such directory, and > nothing seems to delete it. I tried moving it to a floppy, but it worked > for 45 minutes and I didn't want to burn out the drive. If the command "rm -rf x" doesn't work, then there is one method you can use as a last-ditch effort. First of all, unmount the filesystem, and run 'fsck' against that partition, fixing any errors that might show up. Then create a small C program as follows: main() { unlink("x"); return(0); } and run that as root from the appropriate directory. It should just unlink the directory entry, without the normal "directory must be empty" checks done by rmdir. It has to be run as root, though, as that is the only user that is allowed to do this. [Also, it might be the case that FreeBSD does not allow this, but it is worth a shot.] The down side of doing this is that your disk is no longer consistent, and you must run an fsck against it again. Unmount the partition, and then run fsck against the raw partition. For each of the subdirectory entries, you will be asked if you want to reconnect them --- say "no". It will then ask if you want to clear them, to which you should say "yes". [The exact questions asked might be different, based on the specifics of the FreeBSD version of fsck. But the general idea should be as given.] Note that I have never done this under FreeBSD, but have done it with other Unix boxes before. It's possible that it won't work for one reason or another under FreeBSD, but it won't hurt to try. -- Michael Bryan michael@blueneptune.com Quicken Web Page: http://quicken.blueneptune.com/Quicken.html From owner-freebsd-isp Fri Feb 21 11:51:09 1997 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.5/8.8.5) id LAA17439 for isp-outgoing; Fri, 21 Feb 1997 11:51:09 -0800 (PST) Received: from relay2.mail.uk.psi.net (sys1.london.uk.psi.net [154.32.108.2]) by freefall.freebsd.org (8.8.5/8.8.5) with ESMTP id LAA17430 for ; Fri, 21 Feb 1997 11:51:01 -0800 (PST) Received: from sys4.cambridge.uk.psi.net (sys4.cambridge.uk.psi.net [154.32.106.14]) by relay2.mail.uk.psi.net (8.8.4/) with ESMTP id TAA07402 for ; Fri, 21 Feb 1997 19:50:52 GMT Received: from nadt.org.uk by sys4.cambridge.uk.psi.net (8.7.5/SMI-5.5-UKPSINet) id TAA27688; Fri, 21 Feb 1997 19:41:54 GMT Received: from infodev.nadt.org.uk (infodev.nadt.org.uk [194.155.224.205]) by charlie.nadt.org.uk (8.6.12/8.6.12) with SMTP id TAA06360; Fri, 21 Feb 1997 19:05:27 GMT Posted-Date: Fri, 21 Feb 1997 19:05:27 GMT X-Website: http://www.innotts.co.uk/~nadt Message-Id: <1.5.4.32.19970221190520.00b2eb98@wrcmail> X-Sender: robmel@wrcmail X-Mailer: Windows Eudora Light Version 1.5.4 (32) Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Date: Fri, 21 Feb 1997 19:05:20 +0000 To: Paul Sondhu , freebsd-isp@freebsd.org From: Robin Melville Subject: Re: Multiple PPP connections from the one host to increase effective B/W Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk At 13:47 21/02/97 +1100, Paul Sondhu wrote: >What I want to do is set up a FreeBSD machine as a router so that >a small LAN can access the internet through dialup modem lines. >This part I have set up OK using dialup PPP to our internet service >through one 33.6K modem. The FreeBSD machine is routing fine. > >What I want to do is have multiple 33.6K modems coming out of the >FreeBSD machine dialling up to our internet service so that I have >an effective bandwidth of say 67.2K ( 33.6K x 2 ) or higher. Is >this possible? Does anything special have to be set up to make this >possible? We dialup into a Xylogics Annex terminal server. You might want to consider ISDN for this. The lower latency on a single 64K ISDN will give you greater throughput than 2x33K acoustic modems. Good luck Robin. -------------------------------------------------------- Robin Melville, Addiction & Forensic Information Service Nottingham Alcohol & Drug Team (Extn. 49178) Vox: +44 (0)115 952 9478 Fax: +44 (0)115 952 9421 Email: robmel@nadt.org.uk WWW: http://www.innotts.co.uk/nadt/ --------------------------------------------------------- From owner-freebsd-isp Fri Feb 21 11:57:29 1997 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.5/8.8.5) id LAA17929 for isp-outgoing; Fri, 21 Feb 1997 11:57:29 -0800 (PST) Received: from gds.de (ns.gds.de [194.77.222.14]) by freefall.freebsd.org (8.8.5/8.8.5) with ESMTP id LAA17909 for ; Fri, 21 Feb 1997 11:57:19 -0800 (PST) Received: from pluto.gds.de (pluto.gds.de [194.77.222.13]) by gds.de (8.8.4/8.6.12) with SMTP id UAA02287 for ; Fri, 21 Feb 1997 20:57:15 +0100 (MET) Message-Id: <199702211957.UAA02287@gds.de> Comments: Authenticated sender is From: rg@plusline.de To: freebsd-isp@freebsd.org Date: Fri, 21 Feb 1997 20:54:15 +0000 MIME-Version: 1.0 Content-type: text/plain; charset=US-ASCII Content-transfer-encoding: 7BIT Subject: nfs question Priority: normal X-mailer: Pegasus Mail for Win32 (v2.42a) Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk Hallo, what does it mean, when mountd tells me Feb 21 20:55:02 www mountd[230]: Can't change attributes for /usr/src. Feb 21 20:55:02 www mountd[230]: Bad exports list line /usr/src -maproot ?? My /etc/exports is: /usr/home/pdecker -mapall=pdecker /usr/sw -maproot=root news.plusnet.de ns-ww.plusline.de /usr/src -maproot=root news.plusnet.de ns-ww.plusline.de Thanks in advance Richard +-------------------------------------------------------------------+ : GRESEK DATA SYSTEMS : Hauptstrasse 2 : 56271 Kleinmaischeid : Tel.: +49 2689 959120 http://www.gds.de : Fax : +49 2689 959122 +-------------------------------------------------------------------+ From owner-freebsd-isp Fri Feb 21 12:00:22 1997 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.5/8.8.5) id MAA18183 for isp-outgoing; Fri, 21 Feb 1997 12:00:22 -0800 (PST) Received: from tchnet.tchnet.com (tchnet.tchnet.com [198.109.196.2]) by freefall.freebsd.org (8.8.5/8.8.5) with SMTP id MAA18178 for ; Fri, 21 Feb 1997 12:00:17 -0800 (PST) Received: (from rnet@localhost) by tchnet.tchnet.com (8.6.12/8.6.9) id PAA26010; Fri, 21 Feb 1997 15:02:48 -0500 Date: Fri, 21 Feb 1997 15:02:47 -0500 (EST) From: "R. A. Nethercott" To: David Stickney cc: "'FBSD ISP'" Subject: Re: Big Directories.. In-Reply-To: <01BC2023.E0990480@david> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk On Fri, 21 Feb 1997, David Stickney wrote: > I some questions, that nobody can seem to answer > > while : ; do > mkdir x > cd x > done > > 1. How can you prevent users from running this in their home directory, > without cutting off their shell account > 2. How can you get rid of the directory once it has 300 or so > subdirectories. The shell keeps saying there is no such directory, and > nothing seems to delete it. I tried moving it to a floppy, but it worked > for 45 minutes and I didn't want to burn out the drive. > > As Always, If you send your address with your answer, I'll send you 20 > Soviet Roubles, > > Thanks for reading,... > Dave Ok, just as a warning, this will be the first time I have answered a question here...so correct me if I am wrong. =) I think a simple rm -R should work. As for the first part, I dont think there is a way to not let a sh user to not make directories in his/her home dir. Perhaps a rsh? Roy From owner-freebsd-isp Fri Feb 21 13:09:07 1997 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.5/8.8.5) id NAA23448 for isp-outgoing; Fri, 21 Feb 1997 13:09:07 -0800 (PST) Received: from ns2.harborcom.net (root@ns2.harborcom.net [206.158.4.4]) by freefall.freebsd.org (8.8.5/8.8.5) with ESMTP id NAA23440 for ; Fri, 21 Feb 1997 13:09:04 -0800 (PST) Received: from swoosh.dunn.org (swoosh.dunn.org [206.158.7.243]) by ns2.harborcom.net (8.8.5/8.8.4) with SMTP id QAA01627; Fri, 21 Feb 1997 16:06:51 -0500 (EST) Date: Fri, 21 Feb 1997 16:01:46 -0500 (EST) From: Bradley Dunn To: David Stickney cc: "'FBSD ISP'" Subject: Re: Big Directories.. In-Reply-To: <01BC2023.E0990480@david> Message-ID: X-X-Sender: bradley@harborcom.net MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk On Fri, 21 Feb 1997, David Stickney wrote: > I some questions, that nobody can seem to answer > > while : ; do > mkdir x > cd x > done > > 1. How can you prevent users from running this in their home directory, > without cutting off their shell account Install quotas. Then if they want to use their quota on empty directories, let them. > 2. How can you get rid of the directory once it has 300 or so > subdirectories. The shell keeps saying there is no such directory, and > nothing seems to delete it. I tried moving it to a floppy, but it worked > for 45 minutes and I didn't want to burn out the drive. Maybe do a 'ls -id' on the top directory and then use clri(8) to clear the inode. Then run fsck(8) on the filesystem. It should work, although I have never tried it in this situation. pbd From owner-freebsd-isp Fri Feb 21 13:34:19 1997 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.5/8.8.5) id NAA24990 for isp-outgoing; Fri, 21 Feb 1997 13:34:19 -0800 (PST) Received: from alpo.whistle.com (alpo.whistle.com [207.76.204.38]) by freefall.freebsd.org (8.8.5/8.8.5) with ESMTP id NAA24980 for ; Fri, 21 Feb 1997 13:34:13 -0800 (PST) Received: from current1.whistle.com (current1.whistle.com [207.76.205.22]) by alpo.whistle.com (8.8.5/8.8.4) with SMTP id MAA16312; Fri, 21 Feb 1997 12:25:50 -0800 (PST) Message-ID: <330E0452.41C67EA6@whistle.com> Date: Fri, 21 Feb 1997 12:23:46 -0800 From: Julian Elischer Organization: Whistle Communications X-Mailer: Mozilla 3.0Gold (X11; I; FreeBSD 2.2-CURRENT i386) MIME-Version: 1.0 To: Adrian Chadd CC: Paul Sondhu , freebsd-isp@freebsd.org Subject: Re: Multiple PPP connections from the one host to increase effective B/W References: Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk Adrian Chadd wrote: > > On Fri, 21 Feb 1997, Paul Sondhu wrote: > > [cut] > > > What I want to do is have multiple 33.6K modems coming out of the > > FreeBSD machine dialling up to our internet service so that I have > > an effective bandwidth of say 67.2K ( 33.6K x 2 ) or higher. Is > > this possible? Does anything special have to be set up to make this > > possible? We dialup into a Xylogics Annex terminal server. > > > > Hmm.. I would like to know too actually. I know Linux also supports it, > I've been playing around with the linux support for a while (but since the > second line isn't mine for exclusive use I couldn't keep it going :) > > Adrian. > It's in ftp://ftp.freebsd.org/pub/FreeBSD/incoming look for the files starting with mpd it's a "whistle communications product" :) hey how did you go in the TEE? c'mon you're refusing to give out numbers elsewhere but inquiring minds want to know :) the general consensus is that you must have gotten a nasty shock... though you did well enough to get in which is all that matters because no on eis ever going to look a thtose numbers ever again in your life. :) julian From owner-freebsd-isp Fri Feb 21 15:01:18 1997 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.5/8.8.5) id PAA00928 for isp-outgoing; Fri, 21 Feb 1997 15:01:18 -0800 (PST) Received: from rhiannon.clari.net.au (dns1.clari.net.au [203.27.85.9]) by freefall.freebsd.org (8.8.5/8.8.5) with ESMTP id PAA00920 for ; Fri, 21 Feb 1997 15:01:11 -0800 (PST) Received: (from root@localhost) by rhiannon.clari.net.au (8.8.5/8.6.12) id KAA29156; Sat, 22 Feb 1997 10:02:04 +1100 (EST) Date: Sat, 22 Feb 1997 10:02:04 +1100 (EST) From: Peter Hawkins Message-Id: <199702212302.KAA29156@rhiannon.clari.net.au> To: freebsd-isp@FreeBSD.ORG, paul@comcirc.com.au, robmel@nadt.org.uk Subject: Re: Multiple PPP connections from the one host to increase effective B/W Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk Use mpd - it's perfect for the purpose. Peter From owner-freebsd-isp Fri Feb 21 19:47:06 1997 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.5/8.8.5) id TAA17647 for isp-outgoing; Fri, 21 Feb 1997 19:47:06 -0800 (PST) Received: from packfish.gateway.net.hk (john@packfish.gateway.net.hk [202.76.19.16]) by freefall.freebsd.org (8.8.5/8.8.5) with ESMTP id TAA17641 for ; Fri, 21 Feb 1997 19:47:02 -0800 (PST) Received: (from john@localhost) by packfish.gateway.net.hk (8.8.3/8.7.3) id LAA18443; Sat, 22 Feb 1997 11:47:35 +0800 (HKT) Date: Sat, 22 Feb 1997 11:47:35 +0800 (HKT) From: John Beukema To: "R. A. Nethercott" cc: David Stickney , "'FBSD ISP'" Subject: Re: Big Directories.. In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk rm -r works by creating a command line with all the subdirectories included, ie. in effect rmdir x/x/x rmdir x/x rm x. This fails when the maximum command line length is reached. One way to remove them is to write a shell that does the opposite of the shell that wrote them. in psuedo code while no error cd x; end while cd .. while no error rmdir x cd .. end while This may take as much as several hours so put an echo statement in to follow the progress. Kick the user off the system. jbeukema On Fri, 21 Feb 1997, R. A. Nethercott wrote: > On Fri, 21 Feb 1997, David Stickney wrote: > > > I some questions, that nobody can seem to answer > > > > while : ; do > > mkdir x > > cd x > > done > > > > 1. How can you prevent users from running this in their home directory, > > without cutting off their shell account > > 2. How can you get rid of the directory once it has 300 or so > > subdirectories. The shell keeps saying there is no such directory, and > > nothing seems to delete it. I tried moving it to a floppy, but it worked > > for 45 minutes and I didn't want to burn out the drive. > > > > As Always, If you send your address with your answer, I'll send you 20 > > Soviet Roubles, > > > > Thanks for reading,... > > Dave > > Ok, just as a warning, this will be the first time I have answered a > question here...so correct me if I am wrong. =) > > I think a simple rm -R should work. > > As for the first part, I dont think there is a way to not let a sh user > to not make directories in his/her home dir. Perhaps a rsh? > > Roy > > From owner-freebsd-isp Fri Feb 21 20:40:56 1997 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.5/8.8.5) id UAA19968 for isp-outgoing; Fri, 21 Feb 1997 20:40:56 -0800 (PST) Received: from bmccane.uit.net (bmccane.uit.net [208.129.189.48]) by freefall.freebsd.org (8.8.5/8.8.5) with ESMTP id UAA19951 for ; Fri, 21 Feb 1997 20:40:40 -0800 (PST) Received: (from root@localhost) by bmccane.uit.net (8.8.5/8.7.3) id WAA04094; Fri, 21 Feb 1997 22:39:02 -0600 (CST) Date: Fri, 21 Feb 1997 22:39:00 -0600 (CST) From: Wm Brian McCane To: David Stickney cc: "'FBSD ISP'" Subject: Re: Big Directories.. In-Reply-To: <01BC2023.E0990480@david> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk On Fri, 21 Feb 1997, David Stickney wrote: > I some questions, that nobody can seem to answer > > while : ; do > mkdir x > cd x > done > > 1. How can you prevent users from running this in their home directory, > without cutting off their shell account > 2. How can you get rid of the directory once it has 300 or so > subdirectories. The shell keeps saying there is no such directory, and > nothing seems to delete it. I tried moving it to a floppy, but it worked > for 45 minutes and I didn't want to burn out the drive. > > As Always, If you send your address with your answer, I'll send you 20 > Soviet Roubles, > > Thanks for reading,... > Dave > > 1. try to determine if they did it on purpose, if so hire someone to take them out 8). 2. Run the following, it uses ftw to go down in the tree via a depth first search, and builds a unique remove directory on its way back out. find x -type d -depth -exec rmdir {} \; BTW> McCane Consulting 700 S Main Independence, MO 64050-4414 ^ ^ o | o ^ \___/ +-------------------------------------+----------------------------------------+ He rides a cycle of mighty days, and \ Wm Brian and Lori McCane he represents the last great schizm \ McCane Consulting among the gods. Evil though he obviously \ root@bmccane.uit.net is, he is a mighty figure, this father of \ http://bmccane.uit.net/ my spirit, and I respect him as the sons \ http://bmccane.uit.net/~pictures/ of old did the fathers of their bodies. \ http://bmccane.uit.net/~bmccane/ Roger Zelazny - "Lord of Light" \ http://bmccane.uit.net/~bbs/ +---------------------------------------------+--------------------------------+ From owner-freebsd-isp Sat Feb 22 09:51:43 1997 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.5/8.8.5) id JAA28607 for isp-outgoing; Sat, 22 Feb 1997 09:51:43 -0800 (PST) Received: from brc.minsk.by ([194.226.121.36]) by freefall.freebsd.org (8.8.5/8.8.5) with ESMTP id JAA28590 for ; Sat, 22 Feb 1997 09:51:30 -0800 (PST) Received: (from uucp@localhost) by brc.minsk.by (8.8.2/8.8.2) with UUCP id OAA17052 for freebsd-isp@freebsd.org; Sat, 22 Feb 1997 14:14:47 +0200 (EET) Received: from david (david [150.97.0.2]) by wvb.gomel.by (8.7.5/8.7.3) with SMTP id NAA06842 for ; Sat, 22 Feb 1997 13:37:01 +0200 (EET) Received: by david with Microsoft Mail id <01BC20C6.A2794040@david>; Sat, 22 Feb 1997 13:45:16 +-200 Message-ID: <01BC20C6.A2794040@david> From: David Stickney To: "'FBSD ISP'" Subject: Answer to Big Directories Date: Sat, 22 Feb 1997 13:45:14 +-200 Encoding: 74 TEXT Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk Dear ISP'ers I thought I would share the results of my questions. > while : ; do > mkdir x > cd x > done > > 1. How can you prevent users from running this in their home directory, > without cutting off their shell account Preventing this can only be achieved by not letting users have shell accounts, or rewriting the OS.. (?) Controlling the effects can be accomplished by Disks Quotas (Bradley Dunn). Other Ideas such as shooting the user, were viewed by management too stern, although they agreed to allow me to stick toothpicks under his fingernails. ( Sergey explains that he read it in a white paper about UNIX security and wanted to see if it worked.... Some peoples kids...) As for fixing it; Lots of Good Answers, several would even work.... "rm -r works by creating a command line with all the subdirectories included, ie. in effect rmdir x/x/x rmdir x/x rm x. This fails when the maximum command line length is reached" (John Beukema) Funny, I read the man page for rmdir, it didn't mention any parameters.. "Try this... 1. cd to x (first level) 2. find . -depth -exec rmdir {} \; 3. cd .. 4. rmdir x If find doesn't blow up because of all the subdirs, it should work." (Chaz} Blew Up.. It reached about 1/3 up the structure and said it was too long.. Michael Bryan had the most original answer,, included compiling. .. As for Mounting Unmounting, fscking, and the like, sounded like to much work, (I'm lazy) Paul Danckaert, John Beukema and Richard Hodges all had the right Idea, Here is what I did and it worked on a directory with 900 subdirectories. In the directory, do while : ; do cd x done When It starts bitch'n at you hit control-c ( I'm lazy) Then run : While : ; do cd .. rmdir x done ^c to stop... It only took about 15 seconds on a 486/66 with LB IDE Roubles are in the Outbox, and it should take 2-3 weeks to the US, holler it the mail gets eaten by the mail system here, they like to open mail with US addresses, (Maybe you have heard of Belarus) Thanks everyone, Someday I hope to have a real IP connection so I can sign up to the list and read everything.. Best, Dave From owner-freebsd-isp Sat Feb 22 15:19:05 1997 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.5/8.8.5) id PAA27539 for isp-outgoing; Sat, 22 Feb 1997 15:19:05 -0800 (PST) Received: from train.tgci.com ([205.185.169.3]) by freefall.freebsd.org (8.8.5/8.8.5) with SMTP id PAA27528 for ; Sat, 22 Feb 1997 15:18:59 -0800 (PST) Received: from emilyd ([206.250.85.68]) by train.tgci.com (8.6.12/8.6.9) with SMTP id PAA16211 for ; Sat, 22 Feb 1997 15:21:15 -0800 Message-Id: <199702222321.PAA16211@train.tgci.com> Comments: Authenticated sender is From: "Riley J. McIntire" To: "'FBSD ISP'" Date: Sat, 22 Feb 1997 15:18:05 +0000 MIME-Version: 1.0 Content-type: text/plain; charset=US-ASCII Content-transfer-encoding: 7BIT Subject: Cyrus IMAP server Reply-to: rjmcintire@wilshire.net Priority: normal X-mailer: Pegasus Mail for Win32 (v2.42a) Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk Anyone have any experience, thoughts, suggestions on IMAP servers under freebsd? I'm thinking in particualar of the Cyrus IMAP Server... tia, Riley From owner-freebsd-isp Sat Feb 22 16:16:08 1997 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.5/8.8.5) id QAA03479 for isp-outgoing; Sat, 22 Feb 1997 16:16:08 -0800 (PST) Received: from scanner.worldgate.com (scanner.worldgate.com [198.161.84.3]) by freefall.freebsd.org (8.8.5/8.8.5) with ESMTP id QAA03454 for ; Sat, 22 Feb 1997 16:16:01 -0800 (PST) Received: from znep.com (uucp@localhost) by scanner.worldgate.com (8.8.5/8.7.3) with UUCP id RAA19733; Sat, 22 Feb 1997 17:15:41 -0700 (MST) Received: from localhost (marcs@localhost) by alive.znep.com (8.7.5/8.7.3) with SMTP id RAA00396; Sat, 22 Feb 1997 17:15:27 -0700 (MST) Date: Sat, 22 Feb 1997 17:15:26 -0700 (MST) From: Marc Slemko To: Jason Fesler cc: freebsd-isp@FreeBSD.org Subject: Re: Apache In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@FreeBSD.org X-Loop: FreeBSD.org Precedence: bulk On Wed, 12 Feb 1997, Marc Slemko wrote: > On Tue, 11 Feb 1997, Jason Fesler wrote: > > > At 11:33 AM 2/10/97 -0800, Dan Busarow wrote: > > >> Does it have to do with the number of V hosts? Is 125 really high? > > > > > >It might. If you're running named on this machine it may be having > > >problems caused by binding to all the addresses. If you are running > > >named on this machine try turning it off and pointing to another > > >nameserver in /etc/resolv.conf > > > > We have *definately* seen this behavior; I've also read about this in > > an FAQ somewhere (where, I don't remember... the grey matter upstairs > > went on strike). We *tried* to run DNS on such a server (400 hosts), > > and it kept dying, not starting, etc *after* the IP aliases were defined. > > It would do fine if we started *before*. We ended up moving the DNS > > server to a different machine (it was only a secondary) instead of > > reading the source code due to time constraints. > > There is a patch that someone (Mark Andrews?) made available once that > adds a directive to specify which addreses named should listen on. I have > it around somewhere, updated for a recent version of BIND, and can make it > available if people want. Ok, Jason asked for this... sorry it took a while. It is against the raw 4.9.5-P1 source; you should be able to make it apply to the source in the FreeBSD tree, but some effort may be needed. To set it up, apply the patch and recompile, then add a line like: interface 127.0.0.1 10.0.1.1 10.1.2.2 to your named.boot, where the IPs are those of the interfaces you want it to listen on. Note that you most likely do not want to leave out the loopback or bad things will happen. Works fine for me but, as always, YMMV. It has been around for long enough here that I don't remember who wrote it, but ISTR that it may have been Mark Andrews. --- conf/options.h 1996/06/28 17:35:52 1.1 +++ conf/options.h 1996/07/06 00:54:19 @@ -120,6 +120,7 @@ /*#define BIND_NOTIFY /* experimental - do not enable in customer products */ #define LOC_RR /* support for LOC record parsing (ckd/vix) */ #define SORT_RESPONSE /* should we try to sort responses optimally? (vix) */ +#define IFALIASES /*--------------------------------------------* * no user-servicable parts beyond this point * --- named/ns_glob.h 1996/07/06 00:33:11 1.1 +++ named/ns_glob.h 1996/07/06 00:39:19 @@ -174,6 +174,11 @@ DECL struct netinfo *boglist INIT(NULL); #endif +#ifdef IFALIASES + /* list of interfaces to config */ +DECL struct netinfo *ipifaddr INIT(NULL); +#endif + /* loopback net */ DECL struct netinfo netloop; --- named/ns_init.c 1996/07/06 00:33:35 1.1 +++ named/ns_init.c 1996/08/26 18:08:05 @@ -174,6 +175,10 @@ #ifdef BOGUSNS free_netlist(&boglist); #endif +#ifdef IFALIASES + free_netlist(&ipifaddr); +#endif + forward_only = 0; } @@ -308,6 +313,11 @@ get_netlist(fp, &xfrnets, ALLOW_NETS, buf); continue; #endif +#ifdef IFALIASES + } else if (strcasecmp(buf, "interface") == 0) { + get_netlist(fp, &ipifaddr, ALLOW_HOSTS, buf); + continue; +#endif #ifdef LOCALDOM } else if (strcasecmp(buf, "domain") == 0) { if (getword(buf, sizeof(buf), fp, 1)) --- named/ns_main.c 1996/07/06 00:33:22 1.1 +++ named/ns_main.c 1996/08/26 18:08:07 @@ -413,6 +414,14 @@ buildservicelist(); buildprotolist(); ns_init(bootfile); +#ifdef IFALIASES + /* + * the first pass just established the wild card address + * now that we have read the boot file, establish the interface + * spacific addresses + */ + getnetconf(); +#endif #ifdef DEBUG if (debug) { fprintf(ddt, "Network and sort list:\n"); @@ -928,7 +937,10 @@ char buf[32768], *cp, *cplim; u_int32_t nm; time_t my_generation = time(NULL); - +#ifdef IFALIASES + if (first) + goto dofirst; +#endif ifc.ifc_len = sizeof buf; ifc.ifc_buf = buf; if (ioctl(vs, SIOCGIFCONF, (char *)&ifc) < 0) { @@ -967,6 +979,16 @@ dprintf(1, (ddt, "considering [%s]\n", inet_ntoa(((struct sockaddr_in *) &ifreq.ifr_addr)->sin_addr))); +#ifdef IFALIASES + /* + * if ipifaddr is set only configure these interfaces + */ + if (ipifaddr && + !addr_on_netlist( + ((struct sockaddr_in *)&ifreq.ifr_addr)->sin_addr + , ipifaddr)) + continue; +#endif /* build datagram queue */ /* * look for an already existing source interface address. @@ -1093,6 +1115,9 @@ * Create separate qdatagram structure for socket * wildcard address. */ +#ifdef IFALIASES + dofirst: +#endif if (first) { if (!(dqp = (struct qdatagram *)calloc(1, sizeof(*dqp)))) panic(errno, "malloc(qdatagram)"); From owner-freebsd-isp Sat Feb 22 22:36:38 1997 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.5/8.8.5) id WAA23512 for isp-outgoing; Sat, 22 Feb 1997 22:36:38 -0800 (PST) Received: from gatekeeper.tsc.tdk.com (root@gatekeeper.tsc.tdk.com [207.113.159.21]) by freefall.freebsd.org (8.8.5/8.8.5) with ESMTP id WAA23492; Sat, 22 Feb 1997 22:36:34 -0800 (PST) Received: from sunrise.gv.tsc.tdk.com (root@sunrise.gv.tsc.tdk.com [192.168.241.191]) by gatekeeper.tsc.tdk.com (8.8.4/8.8.4) with ESMTP id WAA25530; Sat, 22 Feb 1997 22:36:29 -0800 (PST) Received: from salsa.gv.tsc.tdk.com (salsa.gv.tsc.tdk.com [192.168.241.194]) by sunrise.gv.tsc.tdk.com (8.8.5/8.8.5) with ESMTP id WAA06143; Sat, 22 Feb 1997 22:36:28 -0800 (PST) Received: (from gdonl@localhost) by salsa.gv.tsc.tdk.com (8.8.5/8.8.5) id WAA22830; Sat, 22 Feb 1997 22:36:27 -0800 (PST) Date: Sat, 22 Feb 1997 22:36:27 -0800 (PST) From: Don Lewis Message-Id: <199702230636.WAA22830@salsa.gv.tsc.tdk.com> To: freebsd-isp@freebsd.org, freebsd-security@freebsd.org Subject: improved setuid and device file checker for /etc/security Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk A few weeks ago I solicited input on how to prevent locate.updatedb and /etc/security wasting a lot of time digging around the article spool on our news server. I got a lot of suggestions on different ways to tweak these scripts to prevent this, but the suggestions mostly involved making custom changes to these scripts that would be somewhat of a hassle to maintain. At least in the case of /etc/security, I came up with a scheme that should be a lot more automatic. It's more complete in that it checks filesystems other than UFS, such as NFS, since someone could sneak a setuid executable onto one of these other filesystems. It doesn't check filesystems that are mounted nosuid or noexec, since any setuid executables present on these filesystems aren't a security threat. These two features give you more incentive to mount filesystems nosuid or noexec unless you have a good reason to do otherwise ;-) I also added device file checking (other than their timestamps which tend do get updated). I also supress the checking of the ownerships and permissions on the tty devices, since these devices get chowned and chmoded. --------------------------------- Cut Here --------------------------- echo "checking setuid files:" # don't have ncheck, but this does the equivalent of the commented out block. # note that one of the original problem, the possibility of overrunning # the args to ls, is still here... # MP=`mount | awk '!/\([^(]*(noexec|nosuid)[^(]*\)$/{ print $3 }'` set $MP while test $# -ge 1; do mount=$1 shift find -X $mount -xdev -type f \ \( -perm -u+x -or -perm -g+x -or -perm -o+x \) \ \( -perm -u+s -or -perm -g+s \) | sort done | xargs -n 20 ls -lgTd > $TMP if [ ! -f $LOG/setuid.today ] ; then echo "no $LOG/setuid.today" cp $TMP $LOG/setuid.today fi if cmp $LOG/setuid.today $TMP >/dev/null; then :; else echo "$host setuid diffs:" diff -b $LOG/setuid.today $TMP mv $LOG/setuid.today $LOG/setuid.yesterday mv $TMP $LOG/setuid.today fi rm -f $TMP echo "" echo "" echo "checking device files:" MP=`mount | awk '!/\([^(]*nodev[^(]*\)$/{ print $3 }'` set $MP while test $# -ge 1; do mount=$1 shift find -X $mount -xdev \( -type b -o -type c \) | sort done | xargs -n 20 ls -lgTd | awk '{mode = $1; user = $3; group = $4; if ($11 ~ /\/tty/) { mode = substr(mode, 1, 1) "........."; user = ""; group = ""} printf "%7s %-2s %-8s %-8s %4s %9s %s\n", mode, $2, user, group, $5, $6, $11}' >> $TMP if [ ! -f $LOG/device.today ] ; then echo "no $LOG/device.today" cp $TMP $LOG/device.today fi if cmp $LOG/device.today $TMP >/dev/null; then :; else echo "$host device diffs:" diff -b $LOG/device.today $TMP mv $LOG/device.today $LOG/device.yesterday mv $TMP $LOG/device.today fi rm -f $TMP --------------------------------- Cut Here --------------------------- --- Truck