From owner-freebsd-isp Sun May 4 00:08:58 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id AAA13084 for isp-outgoing; Sun, 4 May 1997 00:08:58 -0700 (PDT) Received: from obiwan.psinet.net.au (obiwan.psinet.net.au [203.19.28.59]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id AAA13079 for ; Sun, 4 May 1997 00:08:53 -0700 (PDT) Received: from localhost (adrian@localhost) by obiwan.psinet.net.au (8.8.5/8.8.5) with SMTP id OAA13178; Sun, 4 May 1997 14:53:14 +0800 (WST) Date: Sun, 4 May 1997 14:53:14 +0800 (WST) From: Adrian Chadd To: Joe Mays - freebsd-isp cc: freebsd-isp@FreeBSD.ORG Subject: Re: News... In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk > > You keep talking about the cost of defending yourself against > prosecution. Can you offer me an estimate of the amount of > dollars spent by ISP's to defend themselves against prosecution for > carrying binary groups thus far? In my experience, the amount of > dollars we have spent on legal defense for carrying whatever comes > down the usenet pipe is approximately $0. > *so* far. If you've been listening to the arguement you'll know that there ARE groups out there who are starting to put pressure on ISPs carrying binary groups, pornography in particular. So right now its $0, but the risk is there that it WILL start costing to keep the groups legally. > This aspect of your argument seems specious to me. You don't seem to be thinking ahead. Personally I couldn't care less about binary newsgroups. If someone wanted to post people porn, they should setup a web or ftp site. Proxy caches (which any decent ISP enforces for their own sake) would cache it, the ISPs which users then connect to to view this crap on the net aren't liable. (In my interpretation anyway, someone correct me if I'm wrong). Same for email I guess, but then binary attachments in email are usually a one-to-one thing, and again AFAIK we aren't responsible. Adrian. From owner-freebsd-isp Sun May 4 01:56:28 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id BAA16417 for isp-outgoing; Sun, 4 May 1997 01:56:28 -0700 (PDT) Received: from trifork.gu.net (trifork.gu.net [194.93.190.194]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id BAA16412; Sun, 4 May 1997 01:56:22 -0700 (PDT) Received: from localhost (localhost.gu.kiev.ua [127.0.0.1]) by trifork.gu.net (8.8.5/8.8.5) with SMTP id LAA18749; Sun, 4 May 1997 11:57:12 +0300 (EEST) Date: Sun, 4 May 1997 11:57:12 +0300 (EEST) From: Andrew Stesin Reply-To: stesin@gu.net To: "Mikhail A. Sokolov" cc: hackers@FreeBSD.ORG, isp@FreeBSD.ORG Subject: Re: strange 2.2.1 behaviour. In-Reply-To: <19970504013700.25396@skraldespand.demos.su> Message-ID: X-NCC-RegID: ua.gu MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk Hi, On Sun, 4 May 1997, Mikhail A. Sokolov wrote: > MH > model HP 6/200 VA > P6-200 > chipset Intel "Natoma" > 128MB EDO RAM > adaptec 3949UW (TAG and SCB enabled) > seagate ST32151W > Intel EtherExpress Pro 10/100B (two, 100Mb full duplex) > nfs client ^^^^^^^^^^^ !!! > network activity is 200-400in/200-400out 1k packets/sec > GK > model HP 5/166 VL series 4 > P5-166 > chipset Intel 82437FX > 128MB RAM > adaptec 2949UW (aic7880, TAG and SCB enabled) > seagate ST32550W > Intel EtherExpress Pro 10/100B (one, 100Mb full duplex) > nfs client ^^^^^^^^^^^ !!! > network activity is also some kind of 200-400in/200-400out packets/sec > crashes every 5-30 minutes. > > This one never let society know, why is it willing to crash. > > SB > asus P/I-P6NP5 > P6-200 > chipset Intel "Natoma" > 128MB RAM > adaptec 3949UW (TAG and SCB enabled) > seagate ST32151W and ST19171W > Intel EtherExpress Pro 10/100B (two, 100Mb full duplex) > nfs server ^^^^^^^^^^ and now -- gmmm... > network activity 500-1000in/500-1000out packets/sec > crashed once 24-48 hr As for me, I'd try to avoid the whole NFS stuff and see what'll happen. Best regards, Andrew Stesin nic-hdl: ST73-RIPE From owner-freebsd-isp Sun May 4 03:02:35 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id DAA18445 for isp-outgoing; Sun, 4 May 1997 03:02:35 -0700 (PDT) Received: from kremvax.demos.su (kremvax.demos.su [194.87.0.20]) by hub.freebsd.org (8.8.5/8.8.5) with SMTP id DAA18425; Sun, 4 May 1997 03:02:23 -0700 (PDT) Received: by kremvax.demos.su (8.6.13/D) from 0@sinbin.demos.su [194.87.0.31] with ESMTP id OAA29938; Sun, 4 May 1997 14:01:19 +0400 Received: by sinbin.demos.su id OAA03719; (8.6.12/D) Sun, 4 May 1997 14:01:28 +0400 From: bag@sinbin.demos.su (Alex G. Bulushev) Message-Id: <199705041001.OAA03719@sinbin.demos.su> Subject: Re: strange 2.2.1 behaviour. In-Reply-To: from Andrew Stesin at "May 4, 97 11:57:12 am" To: stesin@gu.net Date: Sun, 4 May 1997 14:01:28 +0400 (MSD) Cc: mishania@demos.su, hackers@freebsd.org, isp@freebsd.org X-Mailer: ELM [version 2.4ME+ PL31H (25)] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk > > Hi, > > On Sun, 4 May 1997, Mikhail A. Sokolov wrote: > > > Intel EtherExpress Pro 10/100B (two, 100Mb full duplex) > > nfs client > ^^^^^^^^^^^ !!! > > network activity is 200-400in/200-400out 1k packets/sec > > Intel EtherExpress Pro 10/100B (one, 100Mb full duplex) > > nfs client > ^^^^^^^^^^^ !!! > > network activity is also some kind of 200-400in/200-400out packets/sec > > crashes every 5-30 minutes. > > Intel EtherExpress Pro 10/100B (two, 100Mb full duplex) > > nfs server > ^^^^^^^^^^ and now -- gmmm... > > network activity 500-1000in/500-1000out packets/sec > > crashed once 24-48 hr > > As for me, I'd try to avoid the whole NFS stuff and see what'll > happen. we test it witout nfs, the same results :( critical is a number of network packets/sec (not traffic) when packets/sec > 100-300 box's crashed periodicaly for some box's (with asus mother board) critical is > 1000 packets/sec we see this in 2.1, 2.1.5 and now in 2.2.1-RELENG this is not fully a hardware problem, we test this feature on several box's (HP PC, DEC PC, home made box with asus) and have the same results ... difference is in a time without reboots (from 5 min to week) and critical number of packets/sec may be this is problem in fbsd network layer or pci networks card drivers ... (we check if_de and if_fxp) another problem begins in 2.2, on hightly loaded server with squid (300 cliens) ircd (50 clients) simultaniously ftpd (100 clients) ... etc ... number of mbuf clusters increases permanently, and as a result, box crashed with " ... out of mbuf ... " message ... this bug or feature of fbsd >= 2.2 (mbuf.h changed in 2.2) now we use NMBCLUSTERS=12288 ( ~1 week to work ... ) we report this problem several weeks ago ... Alex > > Best regards, > Andrew Stesin > > nic-hdl: ST73-RIPE > > > From owner-freebsd-isp Sun May 4 07:54:02 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id HAA26618 for isp-outgoing; Sun, 4 May 1997 07:54:02 -0700 (PDT) Received: from uhf.wdc.net (uhf.4d.net [207.137.157.140]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id HAA26511; Sun, 4 May 1997 07:53:47 -0700 (PDT) Received: from localhost (bad@localhost) by uhf.wdc.net (8.8.5/8.6.12) with SMTP id KAA00457; Sun, 4 May 1997 10:54:26 -0400 (EDT) Date: Sun, 4 May 1997 10:54:24 -0400 (EDT) From: Bernie Doehner To: admin@linkeasy.net, freebsd-isp@freebsd.org, freebsd-questions@freebsd.org cc: dduchene@wireless.net Subject: Computone Intelliport II - 8 Port ISA Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk Hi: I am writing in reference to Mike Parks' posting of 15 Nov. asking about the 64 port Intelliserver by Computone. I have come across an excellent deal for Intelliport II's (8 port, ISA), and would like to ask to what extent/how solidly these cards are supported under FreeBSD 2.2.1, before I spend any money? Computone's web site didn't even list FreeBSD, so I want to be careful. Please reply to me directly, as I am not subscribed to these two lists. Thanks. Bernie bad@uhf.wireless.net From owner-freebsd-isp Sun May 4 09:14:30 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id JAA01966 for isp-outgoing; Sun, 4 May 1997 09:14:30 -0700 (PDT) Received: from kremvax.demos.su (kremvax.demos.su [194.87.0.20]) by hub.freebsd.org (8.8.5/8.8.5) with SMTP id JAA01948; Sun, 4 May 1997 09:14:24 -0700 (PDT) Received: by kremvax.demos.su (8.6.13/D) from 0@skraldespand.demos.su [194.87.0.19] with ESMTP id UAA18809; Sun, 4 May 1997 20:14:11 +0400 Received: by skraldespand.demos.su id UAA21108; (8.8.5/D) Sun, 4 May 1997 20:14:42 +0400 (MSD) Message-ID: <19970504201442.11618@skraldespand.demos.su> Date: Sun, 4 May 1997 20:14:42 +0400 From: "Mikhail A. Sokolov" To: "Mikhail A. Sokolov" Cc: hackers@FreeBSD.ORG, isp@FreeBSD.ORG Subject: Re: strange 2.2.1 behaviour. References: <19970504013700.25396@skraldespand.demos.su> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 0.65_p2,4-7,10-11,15,18,21-22 Organization: Demos Company, Ltd., Moscow, Russian Federation. X-Point-of-View: Gravity is myth, - the earth sucks. X-Om-Livet-Suger: Ja. Ja, ja. Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk On Sun, May 04, 1997 at 01:37:01AM +0400, Mikhail A. Sokolov wrote: > Hello, Hi, I've got variety of replies, pointing to a) NFS, b) aic*.c, and c) nonstandard tags usage. What we have here now: a) NFS was turtned on this boxes only several days ago for testing purposes only, so we have boxes running with huge network load. Their behaviour was exactly the same when they had no NFS, but have had been some kind of shell machines. b) Now it's 2.2-970422-RELENG what they are running, all of them. I.e. aic driver is the most last available. c) We played with those in all possible configurations, having SCB enabled, having it disabled, etc. They, mh/sb/gk have kernel.GENERIC loaded, - same result. The only box we know one should never use MEMIO for sure is ASUS P/I-P6NP5 based and HP5/166/VL4, it's vendors info. -mishania > > there's one problem I would dare to disturb you, people. > Let's take 4 machines, as described below, 2 HP, 2 something (selfmade > rack industrial PC). They all reboot themselves without warnings since became > 2.2.1. Let me explain, they all are heavily loaded servers, with 100mbitx2 > connection, and I assume it'd be better to explain each of them in particular: > > MH > model HP 6/200 VA > P6-200 > chipset Intel "Natoma" > 128MB EDO RAM > adaptec 3949UW (TAG and SCB enabled) > seagate ST32151W > Intel EtherExpress Pro 10/100B (two, 100Mb full duplex) > nfs client > network activity is 200-400in/200-400out 1k packets/sec > > The *&^&^ crashes each 5-30 min with the following reason: > Trap 12 : fault while in kernel mode ... virtual page adress 0x0 page not present , - that's rare ocasions this shy box escape's a yell like that, ussualy it'd > just crash down. > > GK > model HP 5/166 VL series 4 > P5-166 > chipset Intel 82437FX > 128MB RAM > adaptec 2949UW (aic7880, TAG and SCB enabled) > seagate ST32550W > Intel EtherExpress Pro 10/100B (one, 100Mb full duplex) > nfs client > network activity is also some kind of 200-400in/200-400out packets/sec > crashes every 5-30 minutes. > > This one never let society know, why is it willing to crash. > > SB > asus P/I-P6NP5 > P6-200 > chipset Intel "Natoma" > 128MB RAM > adaptec 3949UW (TAG and SCB enabled) > seagate ST32151W and ST19171W > Intel EtherExpress Pro 10/100B (two, 100Mb full duplex) > nfs server > network activity 500-1000in/500-1000out packets/sec > crashed once 24-48 hr > > Here, it's silent also, but is definetely more loaded and is more stable for > some unknown reasons. Of course I know HP sucks (pardon, but it does), but > ASUS motherboarded machines definetely seems to be more stable than any HP > made PC. Anyhow, There's another one, selfmade also, ASUS ppro200x2/Natoma/256 > RAM and 3x3940 adaptecs, 10 disks (2x9gb and 8x4gb seagates) plus 2 fxp > intel cards. It already reboots once per ~week, but without _any_ notice. > This one is the most loaded, handling huge ftp server, proxy server etc. > > The most interesting part is that hardware is _not_ culprit in this situations, > we changed memory in boxes, disks, ethernet's (tried de0's by SMC), even power > supplies. They all are double UPS'd, all supplies have enough power to feed > that iron pieces, but still, reboots happen. > > When we investigated what's wrong, we tried to correlate their reboots with a) > high disk activities, b) network activities, c) network situation changes. We > got: > a) has nothing to do with situation, since both ppro200's handle use disk more > than others, and the last one, unnamed, serves 10 disk easylly, still crahes a > less than others. > > b) should be the culpit here, - MH and GK boxes were made to exec looped find's > -exec ls -alRt (etc) over 100mbit full duplex NFS v 3.0 (tested both, TCP and > UDP variants) on disk, mounted to SB, and here, - MH and GK crash in 10/20/30 > minutes, still the server stands still, plus serving 40/60 clients > simultaneously (that gives 200-300 processes, a la sh/slirp). > That is odd, but when you unplugg boxes from network, they do ok for weeks > (tested). > > c) we tried to correlate sb's crashes with arp info changes by arp proxy by > nearby standing cisco (4500/IOS 10.3), - tough luck. Tried to correlate virtual > inerfaces quantity increasing on SB (now it's ~130) with it's reboots, no luck > here also. > > Now we totalaly misunderstand what is going on, what can it be and why, this > boxes don't run anything than well known software, like squid, ircd, slirpd and > alike things. > > > Sorry for complicated explanation, > > Sincerely yours, > > Mikhail A. Sokolov. > From owner-freebsd-isp Sun May 4 09:53:15 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id JAA04062 for isp-outgoing; Sun, 4 May 1997 09:53:15 -0700 (PDT) Received: from pluto.plutotech.com (root@mail.plutotech.com [206.168.67.137]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id JAA04052; Sun, 4 May 1997 09:53:12 -0700 (PDT) Received: from narnia.plutotech.com (narnia.plutotech.com [206.168.67.130]) by pluto.plutotech.com (8.8.5/8.8.3) with ESMTP id KAA14032; Sun, 4 May 1997 10:53:07 -0600 (MDT) Message-Id: <199705041653.KAA14032@pluto.plutotech.com> X-Mailer: exmh version 2.0beta 12/23/96 To: "Mikhail A. Sokolov" cc: hackers@FreeBSD.ORG, isp@FreeBSD.ORG Subject: Re: strange 2.2.1 behaviour. In-reply-to: Your message of "Sun, 04 May 1997 20:14:42 +0400." <19970504201442.11618@skraldespand.demos.su> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Date: Sun, 04 May 1997 11:51:27 -0600 From: "Justin T. Gibbs" Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk >b) Now it's 2.2-970422-RELENG what they are running, all of them. I.e. aic >driver is the most last available. The last changes where committed on the 26th. >-mishania -- Justin T. Gibbs =========================================== FreeBSD: Turning PCs into workstations =========================================== From owner-freebsd-isp Sun May 4 14:41:26 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id OAA18810 for isp-outgoing; Sun, 4 May 1997 14:41:26 -0700 (PDT) Received: from ns2.win.net (ns2.win.net [204.215.209.4]) by hub.freebsd.org (8.8.5/8.8.5) with SMTP id OAA18804 for ; Sun, 4 May 1997 14:41:23 -0700 (PDT) Received: from launchpad.win.net (uucp@localhost) by ns2.win.net (8.6.12/8.6.9) with UUCP id RAA25581 for freebsd-isp@freebsd.org; Sun, 4 May 1997 17:30:27 -0400 Received: by win.net!launchpad; Sun, 04 May 1997 01:06:21 X-Mailer: WinNET Mail, v4.0c Message-ID: Reply-To: fbsd-isp@launchpad.win.net (Joe Mays - freebsd-isp) To: freebsd-isp@freebsd.org Date: Sun, 04 May 1997 01:06:21 -0400 Subject: Re: News... From: fbsd-isp@launchpad.win.net (Joe Mays - freebsd-isp) Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk >Doing some user logging, info gathering, just to get some numbers >should not be all the difficult. Would be good to see what percentage >of a typical ISP's news customers are spending what percentage of their >time on the which groups. Then, you can assign a dollar value to it, >and weigh that against the cost of defending yourself from prosecution, >etc.You could also mesure the total bandwidth that those customers use, >and weigh that against the other users. You keep talking about the cost of defending yourself against prosecution. Can you offer me an estimate of the amount of dollars spent by ISP's to defend themselves against prosecution for carrying binary groups thus far? In my experience, the amount of dollars we have spent on legal defense for carrying whatever comes down the usenet pipe is approximately $0. This aspect of your argument seems specious to me. Joe Mays From owner-freebsd-isp Sun May 4 16:11:47 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id QAA22257 for isp-outgoing; Sun, 4 May 1997 16:11:47 -0700 (PDT) Received: from ns2.win.net (ns2.win.net [204.215.209.4]) by hub.freebsd.org (8.8.5/8.8.5) with SMTP id QAA22248 for ; Sun, 4 May 1997 16:11:41 -0700 (PDT) Received: from launchpad.win.net (uucp@localhost) by ns2.win.net (8.6.12/8.6.9) with UUCP id TAA10453 for freebsd-isp@FreeBSD.ORG; Sun, 4 May 1997 19:02:19 -0400 Received: by win.net!launchpad; Sun, 04 May 1997 18:09:38 X-Mailer: WinNET Mail, v4.0c Message-ID: Reply-To: fbsd-isp@launchpad.win.net (Joe Mays - freebsd-isp) To: freebsd-isp@FreeBSD.ORG Date: Sun, 04 May 1997 18:09:38 -0400 Subject: Re: News... From: fbsd-isp@launchpad.win.net (Joe Mays - freebsd-isp) Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk >> In my experience, the amount of >> dollars we have spent on legal defense for carrying whatever comes >> down the usenet pipe is approximately $0. > >*so* far. > >If you've been listening to the arguement you'll know that there ARE >groups out there who are starting to put pressure on ISPs carrying >binary groups, pornography in particular. So what? Dropping the groups *then* is a matter of sending one command to ctlinnd. There are also groups fighting for free speech. Given the choice of actions right now I would choose to support the fight for free speech. Giving in now risks both losing customers unnecessarily and implies that the battle is a lost cause when it isn't. >So right now its $0, but the risk is there that it WILL start costing to >keep the groups legally. > > >> This aspect of your argument seems specious to me. > >You don't seem to be thinking ahead. Okay, let me rephrase the statement. Claiming that legal costs are in any way relevant to keeping all usenet groups is a specious argument right now. I'll listen to it when the laws change. Joe Mays From owner-freebsd-isp Sun May 4 19:28:55 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id TAA29400 for isp-outgoing; Sun, 4 May 1997 19:28:55 -0700 (PDT) Received: from microwrks.com ([207.254.73.50]) by hub.freebsd.org (8.8.5/8.8.5) with SMTP id TAA29395 for ; Sun, 4 May 1997 19:28:53 -0700 (PDT) Received: from [206.85.128.44] by microwrks.com (SMTPD32-3.02) id A5D218570144; Sun, 04 May 1997 19:28:34 -0700 Message-Id: <1.5.4.32.19970505021410.006d7094@microwrks.com> X-Sender: adamg@microwrks.com X-Mailer: Windows Eudora Light Version 1.5.4 (32) Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Date: Sun, 04 May 1997 19:14:10 -0700 To: freebsd-isp@freebsd.org From: Adam Geiger Subject: syslog.conf Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk Hey All! I am in the process of setting up my first FreeBSD server for my ISP. Could someone send me a good syslog.conf file that has a good assortment of logging features. Right now, under /var/log/messages, I have syslogd logging ftp;auth.notice and the rest of the 'regular' logging options. I just want to make sure I log everything so that nothing gets past me! Thanks! ---- Adam L. Geiger Microworks, LLC From owner-freebsd-isp Mon May 5 06:49:18 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id GAA24904 for isp-outgoing; Mon, 5 May 1997 06:49:18 -0700 (PDT) Received: from fireball.blast.net (fireball.blast.net [204.141.163.53]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id GAA24894 for ; Mon, 5 May 1997 06:49:12 -0700 (PDT) Received: from flashpoint.blast.net (flashpoint.blast.net [204.141.163.62]) by fireball.blast.net (8.8.5/8.8.5) with ESMTP id JAA02592 for ; Mon, 5 May 1997 09:47:15 -0400 (EDT) Message-Id: <199705051347.JAA02592@fireball.blast.net> From: "Pat McPartland" To: Subject: shutting down idle tcsh shells Date: Mon, 5 May 1997 21:45:01 -0400 X-MSMail-Priority: Normal X-Priority: 3 X-Mailer: Microsoft Internet Mail 4.70.1155 MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk Hello, How can I automatically log a user out that is in an idle tcsh shell? Thanks, Pat Patrick McPartland mcp@blast.net From owner-freebsd-isp Mon May 5 08:13:00 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id IAA00199 for isp-outgoing; Mon, 5 May 1997 08:13:00 -0700 (PDT) Received: from dilbert.iagnet.net (root@dilbert.iagnet.net [207.206.8.155]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id IAA00194 for ; Mon, 5 May 1997 08:12:55 -0700 (PDT) Received: (from jamie@localhost) by dilbert.iagnet.net (8.8.5/8.8.5) id LAA27605; Mon, 5 May 1997 11:12:10 -0400 (EDT) Message-Id: <199705051512.LAA27605@dilbert.iagnet.net> Subject: Re: shutting down idle tcsh shells To: mcp@blast.net (Pat McPartland) Date: Mon, 5 May 1997 11:12:10 -0400 (EDT) Cc: freebsd-isp@FreeBSD.ORG In-Reply-To: <199705051347.JAA02592@fireball.blast.net> from Pat McPartland at "May 5, 97 09:45:01 pm" RFC_Violation: You saw it here first! From: jamie@dilbert.iagnet.net (Jamie Rishaw) Reply-To: jamie@dilbert.iagnet.net Organization: Internet Access Group X-No-Archive: yes X-Face: >:-p X-Mailer: ELM [version 2.4ME+ PL22 (25)] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk Umm. Kill their process. > Hello, > How can I automatically log a user out that is in an idle tcsh shell? > > > Thanks, > Pat > > Patrick McPartland > mcp@blast.net > -- jamie g.k. rishaw Internet Access Group Chance favors the prepared mind. __ [http://www.iagnet.net] DID:216.902.5455 FAX:216.623.3566 \/ 800:800.637.4IAGx5455 From owner-freebsd-isp Mon May 5 11:13:27 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id LAA09907 for isp-outgoing; Mon, 5 May 1997 11:13:27 -0700 (PDT) Received: from aviion.ts.kiev.ua (aviion.ts.kiev.ua [193.124.229.12]) by hub.freebsd.org (8.8.5/8.8.5) with SMTP id LAA09895 for ; Mon, 5 May 1997 11:13:20 -0700 (PDT) Received: from nbki.ipri.kiev.ua by aviion.ts.kiev.ua with ESMTP id SAA18906; (8.6.11/zah/2.1) Mon, 5 May 1997 18:08:06 GMT Received: from cki.ipri.kiev.ua by nbki.ipri.kiev.ua with ESMTP id TAA06786; (8.6.9/zah/1.1) Mon, 5 May 1997 19:23:27 +0100 Received: from 194.44.146.14 (mac.ipri.kiev.ua [194.44.146.14]) by cki.ipri.kiev.ua (8.7.6/8.7.3) with SMTP id TAA07470; Mon, 5 May 1997 19:34:07 +0300 (EET DST) Message-ID: <336DFE3B.3ABB@cki.ipri.kiev.ua> Date: Mon, 05 May 1997 18:35:03 +0300 From: Ruslan Shevchenko Reply-To: rssh@cki.ipri.kiev.ua Organization: IPRI X-Mailer: Mozilla 3.01Gold (Macintosh; I; 68K) MIME-Version: 1.0 To: jamie@dilbert.iagnet.net CC: Pat McPartland , freebsd-isp@FreeBSD.ORG Subject: Re: shutting down idle tcsh shells References: <199705051512.LAA27605@dilbert.iagnet.net> Content-Type: text/plain; charset=koi8-r Content-Transfer-Encoding: 7bit Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk Jamie Rishaw wrote: > > Umm. > > Kill their process. > > > Hello, > > How can I automatically log a user out that is in an idle tcsh shell? > > > > set autologout in root cshrc (or in cshrc for all users) Details: man tcsh > > Thanks, > > Pat > > > > Patrick McPartland > > mcp@blast.net > > > > -- > jamie g.k. rishaw Internet Access Group > Chance favors the prepared mind. __ [http://www.iagnet.net] > DID:216.902.5455 FAX:216.623.3566 \/ 800:800.637.4IAGx5455 From owner-freebsd-isp Mon May 5 11:32:18 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id LAA10683 for isp-outgoing; Mon, 5 May 1997 11:32:18 -0700 (PDT) Received: from amiga.amitar.com.au (root@amiga.amitar.com.au [203.57.242.1]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id LAA10678 for ; Mon, 5 May 1997 11:32:15 -0700 (PDT) Received: from localhost (slaterm@localhost) by amiga.amitar.com.au (8.8.4/8.8.4) with SMTP id CAA02123 for ; Tue, 6 May 1997 02:23:40 +0800 Date: Tue, 6 May 1997 02:23:40 +0800 (SGT) From: Michael Slater To: freebsd-isp@freebsd.org Subject: Ping flood atacks Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk Hello, earlier this evening my system with a 64k ISDN link was subjected to an extremley vicious Ping flood attack with randomly spoofed I.P addresses.This completly saturated our link rendering it unusable for several hours. My question, is it in any way possible to trace such an attack back to it's true source ? any info would be appriciated Michael Slater slaterm@amitar.com.au From owner-freebsd-isp Mon May 5 14:01:04 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id OAA19675 for isp-outgoing; Mon, 5 May 1997 14:01:04 -0700 (PDT) Received: from shell.futuresouth.com (shell.futuresouth.com [207.141.254.20]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id OAA19670; Mon, 5 May 1997 14:01:02 -0700 (PDT) Received: (from tim@localhost) by shell.futuresouth.com (8.8.5/8.8.5) id QAA14674; Mon, 5 May 1997 16:00:56 -0500 (CDT) Message-ID: <19970505160056.57385@shell.futuresouth.com> Date: Mon, 5 May 1997 16:00:56 -0500 From: Tim Tsai To: questions@freebsd.org Cc: isp@freebsd.org Subject: Intel EtherExpress Pro 10/100B Group buy? Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 0.69 Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk I am getting 10 of Intel EtherExpress Pro 10/100 Model B PCI ethernet cards. The problem is that I can get 2 5PK's for $354.44 each, or I can get a 20PK for $1087.62. Is anybody interested in buying the other 10 at cost? Anybody know of a better price? Thanks, Tim FSCI From owner-freebsd-isp Mon May 5 14:06:51 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id OAA20189 for isp-outgoing; Mon, 5 May 1997 14:06:51 -0700 (PDT) Received: from mixcom.mixcom.com (mixcom.mixcom.com [198.137.186.100]) by hub.freebsd.org (8.8.5/8.8.5) with SMTP id OAA20181 for ; Mon, 5 May 1997 14:06:46 -0700 (PDT) Received: by mixcom.mixcom.com (8.6.12/2.2) id QAA19480; Mon, 5 May 1997 16:10:14 -0500 Received: from p75.mixcom.com(198.137.186.25) by mixcom.mixcom.com via smap (V1.3) id sma019405; Mon May 5 16:09:50 1997 Message-Id: <3.0.32.19970505160824.00aaac24@mixcom.com> X-Sender: sysop@mixcom.com X-Mailer: Windows Eudora Pro Version 3.0 (32) Date: Mon, 05 May 1997 16:08:24 -0500 To: Adrian Chadd From: "Jeffrey J. Mountin" Subject: Re: News... Cc: freebsd-isp@FreeBSD.ORG Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk At 02:53 PM 5/4/97 +0800, Adrian Chadd wrote: >Personally I couldn't care less about binary newsgroups. If someone wanted >to post people porn, they should setup a web or ftp site. Proxy caches >(which any decent ISP enforces for their own sake) would cache it, the >ISPs which users then connect to to view this crap on the net aren't >liable. (In my interpretation anyway, someone correct me if I'm wrong). They better have password protection *and* user verification or you will be responsible, as well as blacking out any "preview" pictures. We shut down one locally for the preview problem. Besides, they didn't pay the Internic fee, so they only worked locally. Everyone's best bet is to keep the government out of it or at least minimize the laws and keep the ISP from being responsible, but the first implies that we should "police" ourselves. ------------------------------------------- Jeff Mountin - System/Network Administrator jeff@mixcom.net MIX Communications Serving the Internet since 1990 From owner-freebsd-isp Mon May 5 16:22:42 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id QAA27269 for isp-outgoing; Mon, 5 May 1997 16:22:42 -0700 (PDT) Received: from zen.nash.org (nash.pr.mcs.net [204.95.47.72]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id QAA27264 for ; Mon, 5 May 1997 16:22:39 -0700 (PDT) Received: from zen.nash.org (localhost [127.0.0.1]) by zen.nash.org (8.8.5/8.6.12) with SMTP id SAA05749; Mon, 5 May 1997 18:21:51 -0500 (CDT) Message-ID: <336E6B8F.7DE14518@mcs.com> Date: Mon, 05 May 1997 18:21:51 -0500 From: Alex Nash X-Mailer: Mozilla 3.01Gold (X11; I; FreeBSD 3.0-CURRENT i386) MIME-Version: 1.0 To: Michael Slater CC: freebsd-isp@FreeBSD.ORG Subject: Re: Ping flood atacks References: Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk Michael Slater wrote: > earlier this evening my system with a 64k ISDN link was subjected to > an extremley vicious Ping flood attack with randomly spoofed I.P > addresses.This completly saturated our link rendering it unusable for > several hours. My question, is it in any way possible to trace such an > attack back to it's true source ? > > any info would be appriciated It's unfortunate that not everyone blocks spoofed addresses at their routers, that's only real way to prevent this kind of thing. What I would suggest to you so that you could reduce half the bandwidth consumed by such an attack is this: Compile your kernel with ipfw and deny icmptype 8 (echo request). Assuming you're not already using a firewall (i.e., running with everything wide open), these would be the commands: ipfw add deny icmp from any to your.ip.address icmptype 5 ipfw add allow all from any to any The first one swallows ICMP echo requests (incoming pings), and the second one lets all other traffic through. Personally I don't run with everything wide open, but if that's the way you're running now, it won't change the security one bit. Note that this does not prevent you from pinging other hosts, as their replies are of type 0. One other thing you might want to try: if things are quiet for a while, you might want to add the 'log' keyword to the 'deny icmp' command above. There's a good chance that the person who's pinging you will see if your host is up/echoing replies back at some point. While you obviously can't jump on the first person who pings you, if you see a pattern of repeated pings over a period of time it might give you a good indication (and you might even recognize the culprit). As with any time you use the log keyword, investigate the usage of IPFW_VERBOSE_LIMIT (see ipfw(8)). Alex From owner-freebsd-isp Mon May 5 17:33:07 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id RAA00945 for isp-outgoing; Mon, 5 May 1997 17:33:07 -0700 (PDT) Received: from house.key.net.au (root@house.key.net.au [203.35.4.2]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id RAA00934 for ; Mon, 5 May 1997 17:33:04 -0700 (PDT) Received: from localhost (andrew@localhost) by house.key.net.au (8.8.5/8.8.5) with SMTP id KAA11892; Tue, 6 May 1997 10:32:51 +1000 (EST) Date: Tue, 6 May 1997 10:32:50 +1000 (EST) From: Andrew To: Pat McPartland cc: freebsd-isp@FreeBSD.ORG Subject: Re: shutting down idle tcsh shells In-Reply-To: <199705051347.JAA02592@fireball.blast.net> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk On Mon, 5 May 1997, Pat McPartland wrote: > How can I automatically log a user out that is in an idle tcsh shell? Install idled from the ports collection.. Andrew From owner-freebsd-isp Mon May 5 18:05:57 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id SAA03265 for isp-outgoing; Mon, 5 May 1997 18:05:57 -0700 (PDT) Received: from mail.MCESTATE.COM (mail.MCESTATE.COM [207.211.200.50]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id SAA03259 for ; Mon, 5 May 1997 18:05:54 -0700 (PDT) Received: from localhost (vince@localhost) by mail.MCESTATE.COM (8.8.5/8.8.5) with SMTP id SAA04323; Mon, 5 May 1997 18:05:19 -0700 (PDT) Date: Mon, 5 May 1997 18:05:17 -0700 (PDT) From: Vincent Poy To: Adam David cc: freebsd-isp@freebsd.org Subject: Re: ISP Terminal Server Remote Site Requirements In-Reply-To: <199705022037.UAA02024@veda.is> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk On Fri, 2 May 1997, Adam David wrote: > > I was wondering what else would be needed to do a FreeBSD based > >terminal server that does it authenicitation with a actual FreeBSD based > >server over the network besides the following: > > >1) FreeBSD box with Cyclades Serial Ports and modems, will the box alone > > be able to support ISDN or USR X2 modems assuming I had a ISDN PRI > > coming in and will there be support for the PRI? I heard for X2 that > > more than the modems is needed but also their server is needed? > > X2 will work on any digital line, ISDN lines are digital lines that also > support ISDN. Perhaps all digital lines support ISDN with your telco. > Any modem server can be used for X2 since the modems don't care whether > the incoming connection is analog or digital (i.e. the modems look like > "fast modems"), but to get the most out of it you will need the new Z series > serial ports (to get compression bandwidth). Unfortunately there is no > FreeBSD driver available for them yet. Therefore, some legwork or brainwork > will be necessary to get Z-ports to work. On the other hand, how far away > are we from using Linux drivers with FreeBSD? That would be awesome! :) Who makes the Z series serial ports anyways? For the X2, I think you need to get a USR Terminal Modem Server in order to support the X2 speed. > Another question though. Can X2 modems accept 56k connections from Rockwell > and Motorola (assuming them to be the 3rd player) modems? I don't think they could. > >2) Daniel O'Callaghan's terminal server kit for FreeBSD > > With Radius support in the works. Daniel, in case you're listening, > I'm interested in helping with this. So FreeBSD can't do radius as a server yet? > >3) A router which I can use either a Cisco or ETinc's syncronous card > > on a FreeBSD box. > > The ETinc card looks like the only serious high speed sync solution. Of > course, you don't need this for a normal dialin terminal-server. > Unless... Hmmm, this would work well though if you wanted to resell dedicated leased lines as well. > How about a 2Mb/s connection from the telco (primary rate ISDN) with channel > differentiation and modems implemented solely in software (on some custom > hardware card maybe)? Might this be possible or even feasible, now or later? Not too sure about this one but even with a PRI, you still need a T1 or something for the terminal server to go to the core router at the NOC. Cheers, Vince - vince@MCESTATE.COM - vince@GAIANET.NET ________ __ ____ Unix Networking Operations - FreeBSD-Real Unix for Free / / / / | / |[__ ] GaiaNet Corporation - M & C Estate / / / / | / | __] ] Beverly Hills, California USA 90210 / / / / / |/ / | __] ] HongKong Stars/Gravis UltraSound Mailing Lists Admin /_/_/_/_/|___/|_|[____] From owner-freebsd-isp Mon May 5 18:08:09 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id SAA03428 for isp-outgoing; Mon, 5 May 1997 18:08:09 -0700 (PDT) Received: from mail.MCESTATE.COM (mail.MCESTATE.COM [207.211.200.50]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id SAA03422 for ; Mon, 5 May 1997 18:08:07 -0700 (PDT) Received: from localhost (vince@localhost) by mail.MCESTATE.COM (8.8.5/8.8.5) with SMTP id SAA04332; Mon, 5 May 1997 18:07:33 -0700 (PDT) Date: Mon, 5 May 1997 18:07:32 -0700 (PDT) From: Vincent Poy To: Greg Stringfellow cc: Adam David , freebsd-isp@FreeBSD.ORG Subject: Re: ISP Terminal Server Remote Site Requirements In-Reply-To: <199705022128.QAA22402@smokey.prismnet.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk On Fri, 2 May 1997, Greg Stringfellow wrote: > Adam David said: > > X2 will work on any digital line, ISDN lines are digital lines that also > > support ISDN. Perhaps all digital lines support ISDN with your telco. > > Any modem server can be used for X2 since the modems don't care whether > > the incoming connection is analog or digital (i.e. the modems look like > > "fast modems"), but to get the most out of it you will need the new Z series > > serial ports (to get compression bandwidth). Unfortunately there is no > > FreeBSD driver available for them yet. Therefore, some legwork or brainwork > > will be necessary to get Z-ports to work. On the other hand, how far away > > are we from using Linux drivers with FreeBSD? That would be awesome! :) > > Probably the easiest way I have seen to do X2 is to purchase a USR Total > Control 8/I (I think that's the model #). It allows 8 BRIs in and has 8 DB25 > outputs. They might have a PRI version, or at least one in the works. I > don't use USR TC gear, so I really don't keep up with it. The only problem in BRIs is that you need 8 BRI's going in while with a PRI, it's just one PRI for 24 modems. > > Another question though. Can X2 modems accept 56k connections from Rockwell > > and Motorola (assuming them to be the 3rd player) modems? > > No. No standard has really been set yet on a 56k analog protocol so it's > either USR or everyone else. Besides the fact that FCC regulations only allow up to 53kBps even on X2. Cheers, Vince - vince@MCESTATE.COM - vince@GAIANET.NET ________ __ ____ Unix Networking Operations - FreeBSD-Real Unix for Free / / / / | / |[__ ] GaiaNet Corporation - M & C Estate / / / / | / | __] ] Beverly Hills, California USA 90210 / / / / / |/ / | __] ] HongKong Stars/Gravis UltraSound Mailing Lists Admin /_/_/_/_/|___/|_|[____] From owner-freebsd-isp Mon May 5 18:38:00 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id SAA04733 for isp-outgoing; Mon, 5 May 1997 18:38:00 -0700 (PDT) Received: from wopr.inetu.net ([207.18.13.3]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id SAA04726 for ; Mon, 5 May 1997 18:37:56 -0700 (PDT) Received: from localhost (dev@localhost) by wopr.inetu.net (8.8.5/8.8.5) with SMTP id VAA10300 for ; Mon, 5 May 1997 21:38:55 -0400 (EDT) Date: Mon, 5 May 1997 21:38:55 -0400 (EDT) From: Dev Chanchani To: freebsd-isp@freebsd.org Subject: Syslogd/Chroot() Questions. Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk I have questions about syslog in regards to programs that are chroot'ed. Can I just create another chroot()'ed syslog.conf and point everything back to the main server via udp? Should I run another syslogd and tell it to create its local socket in /chroot/dev/log and not bind to a udp port again? Just looking for some advice on how to set this up the best way.. Regards, Dev Chanchani From owner-freebsd-isp Mon May 5 19:05:39 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id TAA06188 for isp-outgoing; Mon, 5 May 1997 19:05:39 -0700 (PDT) Received: from veda.is (ubiq.veda.is [193.4.230.60]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id TAA06180 for ; Mon, 5 May 1997 19:05:34 -0700 (PDT) Received: (from adam@localhost) by veda.is (8.8.5/8.7.3) id CAA01371; Tue, 6 May 1997 02:24:59 GMT From: Adam David Message-Id: <199705060224.CAA01371@veda.is> Subject: Re: ISP Terminal Server Remote Site Requirements In-Reply-To: from Vincent Poy at "May 5, 97 06:05:17 pm" To: vince@mail.MCESTATE.COM (Vincent Poy) Date: Tue, 6 May 1997 02:24:57 +0000 (GMT) Cc: freebsd-isp@freebsd.org X-Mailer: ELM [version 2.4ME+ PL31 (25)] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk > > Any modem server can be used for X2 since the modems don't care whether > > the incoming connection is analog or digital (i.e. the modems look like > > "fast modems"), but to get the most out of it you will need the new Z series > > serial ports (to get compression bandwidth). Unfortunately there is no > > FreeBSD driver available for them yet. Therefore, some legwork or brainwork > > will be necessary to get Z-ports to work. On the other hand, how far away > > are we from using Linux drivers with FreeBSD? That would be awesome! :) In the meantime, I suppose a Linux box just to contain the ports and run the driver, forwarding raw TCP/PPP datastreams to a FreeBSD box, might just cut it. > Who makes the Z series serial ports anyways? For the X2, I think > you need to get a USR Terminal Modem Server in order to support the X2 > speed. Cyclades, they support up to 921.6kb/s per port, simultaneously. 8 ports per card already available. Up to 64 (perhaps 128?) ports per card available after a month or two. > > >2) Daniel O'Callaghan's terminal server kit for FreeBSD > > > > With Radius support in the works. Daniel, in case you're listening, > > I'm interested in helping with this. > > So FreeBSD can't do radius as a server yet? Yes. Trouble is FreeBSD does not have radius support yet in pppd (or ppp?). > > The ETinc card looks like the only serious high speed sync solution. Of > > course, you don't need this for a normal dialin terminal-server. > > Unless... > > Hmmm, this would work well though if you wanted to resell > dedicated leased lines as well. Typically from a separate box than the terminal server. -- Adam David From owner-freebsd-isp Mon May 5 19:31:51 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id TAA07949 for isp-outgoing; Mon, 5 May 1997 19:31:51 -0700 (PDT) Received: from mail.MCESTATE.COM (mail.MCESTATE.COM [207.211.200.50]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id TAA07944 for ; Mon, 5 May 1997 19:31:48 -0700 (PDT) Received: from localhost (vince@localhost) by mail.MCESTATE.COM (8.8.5/8.8.5) with SMTP id TAA04871; Mon, 5 May 1997 19:31:15 -0700 (PDT) Date: Mon, 5 May 1997 19:31:12 -0700 (PDT) From: Vincent Poy To: Alex Nash cc: Michael Slater , freebsd-isp@FreeBSD.ORG Subject: Re: Ping flood atacks In-Reply-To: <336E6B8F.7DE14518@mcs.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk What about if we're running a FreeBSD based router using a ET/5025 Dual ported card and we wanted to filter out only packets larger than a certain sized for ICMP ping requests for any ping requests coming in the router? Cheers, Vince - vince@MCESTATE.COM - vince@GAIANET.NET ________ __ ____ Unix Networking Operations - FreeBSD-Real Unix for Free / / / / | / |[__ ] GaiaNet Corporation - M & C Estate / / / / | / | __] ] Beverly Hills, California USA 90210 / / / / / |/ / | __] ] HongKong Stars/Gravis UltraSound Mailing Lists Admin /_/_/_/_/|___/|_|[____] From owner-freebsd-isp Mon May 5 19:34:15 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id TAA08134 for isp-outgoing; Mon, 5 May 1997 19:34:15 -0700 (PDT) Received: from mail.MCESTATE.COM (mail.MCESTATE.COM [207.211.200.50]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id TAA08126 for ; Mon, 5 May 1997 19:34:10 -0700 (PDT) Received: from localhost (vince@localhost) by mail.MCESTATE.COM (8.8.5/8.8.5) with SMTP id TAA04880; Mon, 5 May 1997 19:33:36 -0700 (PDT) Date: Mon, 5 May 1997 19:33:35 -0700 (PDT) From: Vincent Poy To: Adam David cc: freebsd-isp@freebsd.org Subject: Re: ISP Terminal Server Remote Site Requirements In-Reply-To: <199705060224.CAA01371@veda.is> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk On Tue, 6 May 1997, Adam David wrote: > In the meantime, I suppose a Linux box just to contain the ports and run > the driver, forwarding raw TCP/PPP datastreams to a FreeBSD box, might > just cut it. Wouldn't this create a bottleneck though? > > Who makes the Z series serial ports anyways? For the X2, I think > > you need to get a USR Terminal Modem Server in order to support the X2 > > speed. > > Cyclades, they support up to 921.6kb/s per port, simultaneously. > 8 ports per card already available. Up to 64 (perhaps 128?) ports per card > available after a month or two. I thought FreeBSD did support the Cyclades boards already? > > So FreeBSD can't do radius as a server yet? > > Yes. Trouble is FreeBSD does not have radius support yet in pppd (or ppp?). What about for a terminal server such as a Xyglogics or Livingston that needs radius authetication from a FreeBSD host? Would that work? > > > The ETinc card looks like the only serious high speed sync solution. Of > > > course, you don't need this for a normal dialin terminal-server. > > > Unless... > > > > Hmmm, this would work well though if you wanted to resell > > dedicated leased lines as well. > > Typically from a separate box than the terminal server. Yep, this was what I was thinking of. Cheers, Vince - vince@MCESTATE.COM - vince@GAIANET.NET ________ __ ____ Unix Networking Operations - FreeBSD-Real Unix for Free / / / / | / |[__ ] GaiaNet Corporation - M & C Estate / / / / | / | __] ] Beverly Hills, California USA 90210 / / / / / |/ / | __] ] HongKong Stars/Gravis UltraSound Mailing Lists Admin /_/_/_/_/|___/|_|[____] From owner-freebsd-isp Mon May 5 19:52:47 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id TAA09135 for isp-outgoing; Mon, 5 May 1997 19:52:47 -0700 (PDT) Received: from panda.hilink.com.au (panda.hilink.com.au [203.2.144.5]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id TAA09130 for ; Mon, 5 May 1997 19:52:41 -0700 (PDT) Received: (from danny@localhost) by panda.hilink.com.au (8.8.5/8.7.3) id MAA22186; Tue, 6 May 1997 12:54:54 +1000 (EST) Date: Tue, 6 May 1997 12:54:53 +1000 (EST) From: "Daniel O'Callaghan" To: Vincent Poy cc: Adam David , freebsd-isp@FreeBSD.ORG Subject: Re: ISP Terminal Server Remote Site Requirements In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk On Mon, 5 May 1997, Vincent Poy wrote: > > > > With Radius support in the works. Daniel, in case you're listening, > > I'm interested in helping with this. > > So FreeBSD can't do radius as a server yet? FreeBSD *can* act as a Radius server. progress on pppd as a Radius client is slow. Adam, I'll make that stuff available to you. Danny From owner-freebsd-isp Mon May 5 20:13:08 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id UAA10222 for isp-outgoing; Mon, 5 May 1997 20:13:08 -0700 (PDT) Received: from veda.is (ubiq.veda.is [193.4.230.60]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id UAA10216 for ; Mon, 5 May 1997 20:13:03 -0700 (PDT) Received: (from adam@localhost) by veda.is (8.8.5/8.7.3) id DAA01485; Tue, 6 May 1997 03:32:26 GMT From: Adam David Message-Id: <199705060332.DAA01485@veda.is> Subject: Re: ISP Terminal Server Remote Site Requirements In-Reply-To: from Vincent Poy at "May 5, 97 07:33:35 pm" To: vince@mail.MCESTATE.COM (Vincent Poy) Date: Tue, 6 May 1997 03:32:24 +0000 (GMT) Cc: freebsd-isp@freebsd.org X-Mailer: ELM [version 2.4ME+ PL31 (25)] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk > > In the meantime, I suppose a Linux box just to contain the ports and run > > the driver, forwarding raw TCP/PPP datastreams to a FreeBSD box, might > > just cut it. > > Wouldn't this create a bottleneck though? At 100Mb/s on a dedicated segment... How many ports at what load would saturate it? Dialup traffic is typically still bursty, and you can get full duplex at 100Mb/s. If I'm going to run Linux in a server context, I'd prefer it to be barebones/blackbox in as isolated an environment as possible (i.e. a port engine, nothing more). > I thought FreeBSD did support the Cyclades boards already? Y series, maximum speed 115.2kb/s each port. Z series is a possible future driver. Linux and Windows drivers already exist. > > > So FreeBSD can't do radius as a server yet? > > > > Yes. Trouble is FreeBSD does not have radius support yet in pppd (or ppp?). > > What about for a terminal server such as a Xyglogics or Livingston > that needs radius authetication from a FreeBSD host? Would that work? Of course it would work, but those terminal servers cannot be reused to run FreeBSD later. :) -- Adam David From owner-freebsd-isp Mon May 5 20:22:05 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id UAA10742 for isp-outgoing; Mon, 5 May 1997 20:22:05 -0700 (PDT) Received: from zen.nash.org (nash.pr.mcs.net [204.95.47.72]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id UAA10735 for ; Mon, 5 May 1997 20:21:59 -0700 (PDT) Received: from zen.nash.org (localhost [127.0.0.1]) by zen.nash.org (8.8.5/8.6.12) with SMTP id WAA07087; Mon, 5 May 1997 22:20:36 -0500 (CDT) Message-ID: <336EA384.6201DD56@mcs.com> Date: Mon, 05 May 1997 22:20:36 -0500 From: Alex Nash X-Mailer: Mozilla 3.01Gold (X11; I; FreeBSD 3.0-CURRENT i386) MIME-Version: 1.0 To: Vincent Poy CC: Michael Slater , freebsd-isp@FreeBSD.ORG Subject: Re: Ping flood atacks References: Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk Vincent Poy wrote: > > What about if we're running a FreeBSD based router using a ET/5025 > Dual ported card and we wanted to filter out only packets larger than a > certain sized for ICMP ping requests for any ping requests coming in the > router? ipfw can't filter by packet size. Are you worried about the ping o' death? FreeBSD is immune. Alex From owner-freebsd-isp Mon May 5 20:23:27 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id UAA10782 for isp-outgoing; Mon, 5 May 1997 20:23:27 -0700 (PDT) Received: from panda.hilink.com.au (panda.hilink.com.au [203.2.144.5]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id UAA10776 for ; Mon, 5 May 1997 20:23:18 -0700 (PDT) Received: (from danny@localhost) by panda.hilink.com.au (8.8.5/8.7.3) id NAA22316; Tue, 6 May 1997 13:25:29 +1000 (EST) Date: Tue, 6 May 1997 13:25:28 +1000 (EST) From: "Daniel O'Callaghan" To: Vincent Poy cc: freebsd-isp@FreeBSD.ORG Subject: Re: Ping flood atacks In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk On Mon, 5 May 1997, Vincent Poy wrote: > What about if we're running a FreeBSD based router using a ET/5025 > Dual ported card and we wanted to filter out only packets larger than a > certain sized for ICMP ping requests for any ping requests coming in the > router? Read the stuff on ipfilter: http://coombs.anu.edu.au/~avalon/ Danny From owner-freebsd-isp Mon May 5 20:23:43 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id UAA10811 for isp-outgoing; Mon, 5 May 1997 20:23:43 -0700 (PDT) Received: from srv1.thuntek.net (root@srv1.thuntek.net [206.206.98.18]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id UAA10806 for ; Mon, 5 May 1997 20:23:41 -0700 (PDT) Received: from thor1.thuntek.net (abq1-18.thuntek.net [207.66.52.28]) by srv1.thuntek.net (8.8.4/8.6.12) with SMTP id VAA17405 for ; Mon, 5 May 1997 21:23:33 -0600 (MDT) Message-Id: <3.0.32.19970505212008.01103168@thuntek.net> X-Sender: thor@thuntek.net X-Mailer: Windows Eudora Pro Version 3.0 (32) Date: Mon, 05 May 1997 21:23:53 -0600 To: freebsd-isp@FreeBSD.ORG From: Scott Halbert Subject: Apache Socket Starvation Bug in 1.2 Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk Is anyone familiar with the problems with Apache versions 1.2 with socket starvation? The problem manifests itself as the server locking itself up and clients hanging with "waiting for reply". For me a KILL -HUP will get things going again. To quote the apacheweek article, "This problem only affects systems which do not define USE_FLOCK_SERIALIZED_ACCEPT or USE_FCNTL_SERIALIZED_ACCEPT in conf.h (this includes SunOS 4, FreeBSD, BSDI and some others)." Here are some URLS documenting the bug: http://www.apache.org/bugdb.cgi/full/467 http://www.apacheweek.com/issues/97-04-25 My problem is that the Apache workaround does not work for me. Turning on USE_FLOCK_SERIALIZED_ACCEPT does not help and USE_FCNTL_SERIALIZED_ACCEPT hangs the server immediately. It sure seems to me that I've got something unique in my configuration. If this happened to all apache 1.2 servers under FreeBSD, I'd hear this group freaking out. I daresay that a very high majority of FreeBSD ISPs use Apache. Maybe some of you have seen it and were in the same boat? This problem is upsetting my customers and making me pull my hair out. Maybe this is not exactly the bug I'm chasing, though it sure looks like it. Maybe I've got my timeouts and idles messed up in my configuration file. Thanks! ---Scott Halbert Thunder Network Technologies, Inc. From owner-freebsd-isp Mon May 5 20:41:35 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id UAA11460 for isp-outgoing; Mon, 5 May 1997 20:41:35 -0700 (PDT) Received: from panda.hilink.com.au (panda.hilink.com.au [203.2.144.5]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id UAA11455 for ; Mon, 5 May 1997 20:41:29 -0700 (PDT) Received: (from danny@localhost) by panda.hilink.com.au (8.8.5/8.7.3) id NAA22397; Tue, 6 May 1997 13:43:51 +1000 (EST) Date: Tue, 6 May 1997 13:43:50 +1000 (EST) From: "Daniel O'Callaghan" To: Vincent Poy cc: Adam David , freebsd-isp@FreeBSD.ORG Subject: Re: ISP Terminal Server Remote Site Requirements In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk On Mon, 5 May 1997, Vincent Poy wrote: > What about for a terminal server such as a Xyglogics or Livingston > that needs radius authetication from a FreeBSD host? Would that work? Yes. I do this now. Danny From owner-freebsd-isp Mon May 5 21:45:20 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id VAA14454 for isp-outgoing; Mon, 5 May 1997 21:45:20 -0700 (PDT) Received: from mail.MCESTATE.COM (mail.MCESTATE.COM [207.211.200.50]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id VAA14449 for ; Mon, 5 May 1997 21:45:18 -0700 (PDT) Received: from localhost (vince@localhost) by mail.MCESTATE.COM (8.8.5/8.8.5) with SMTP id VAA05741; Mon, 5 May 1997 21:44:37 -0700 (PDT) Date: Mon, 5 May 1997 21:44:35 -0700 (PDT) From: Vincent Poy To: "Daniel O'Callaghan" cc: Adam David , freebsd-isp@FreeBSD.ORG Subject: Re: ISP Terminal Server Remote Site Requirements In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk On Tue, 6 May 1997, Daniel O'Callaghan wrote: > On Mon, 5 May 1997, Vincent Poy wrote: > > > > With Radius support in the works. Daniel, in case you're listening, > > > I'm interested in helping with this. > > > > So FreeBSD can't do radius as a server yet? > > FreeBSD *can* act as a Radius server. progress on pppd as a Radius > client is slow. Adam, I'll make that stuff available to you. Ah okay, I thought it can act as a client but not a server but thanks for clarifying that. Are there any docs on how to do this somewhere? Cheers, Vince - vince@MCESTATE.COM - vince@GAIANET.NET ________ __ ____ Unix Networking Operations - FreeBSD-Real Unix for Free / / / / | / |[__ ] GaiaNet Corporation - M & C Estate / / / / | / | __] ] Beverly Hills, California USA 90210 / / / / / |/ / | __] ] HongKong Stars/Gravis UltraSound Mailing Lists Admin /_/_/_/_/|___/|_|[____] From owner-freebsd-isp Mon May 5 21:48:23 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id VAA14582 for isp-outgoing; Mon, 5 May 1997 21:48:23 -0700 (PDT) Received: from mail.MCESTATE.COM (mail.MCESTATE.COM [207.211.200.50]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id VAA14577 for ; Mon, 5 May 1997 21:48:21 -0700 (PDT) Received: from localhost (vince@localhost) by mail.MCESTATE.COM (8.8.5/8.8.5) with SMTP id VAA05760; Mon, 5 May 1997 21:47:47 -0700 (PDT) Date: Mon, 5 May 1997 21:47:46 -0700 (PDT) From: Vincent Poy To: Adam David cc: freebsd-isp@freebsd.org Subject: Re: ISP Terminal Server Remote Site Requirements In-Reply-To: <199705060332.DAA01485@veda.is> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk On Tue, 6 May 1997, Adam David wrote: > > > In the meantime, I suppose a Linux box just to contain the ports and run > > > the driver, forwarding raw TCP/PPP datastreams to a FreeBSD box, might > > > just cut it. > > > > Wouldn't this create a bottleneck though? > > At 100Mb/s on a dedicated segment... > > How many ports at what load would saturate it? Dialup traffic is typically > still bursty, and you can get full duplex at 100Mb/s. If I'm going to run > Linux in a server context, I'd prefer it to be barebones/blackbox in as > isolated an environment as possible (i.e. a port engine, nothing more). What I meant from reading what you wrote was would the data be going from the modem into the linux box then the freebsd machine then the router? > > I thought FreeBSD did support the Cyclades boards already? > > Y series, maximum speed 115.2kb/s each port. > Z series is a possible future driver. Linux and Windows drivers already exist. Never knew they had two different series. > > What about for a terminal server such as a Xyglogics or Livingston > > that needs radius authetication from a FreeBSD host? Would that work? > > Of course it would work, but those terminal servers cannot be reused to run > FreeBSD later. :) That's true but UUNet has this radius service which is what MSN is using. When you dialup, it actually uses UUNet's resources except it verifies the login and password so all traffic wouldn't even go through your own network at all. Cheers, Vince - vince@MCESTATE.COM - vince@GAIANET.NET ________ __ ____ Unix Networking Operations - FreeBSD-Real Unix for Free / / / / | / |[__ ] GaiaNet Corporation - M & C Estate / / / / | / | __] ] Beverly Hills, California USA 90210 / / / / / |/ / | __] ] HongKong Stars/Gravis UltraSound Mailing Lists Admin /_/_/_/_/|___/|_|[____] From owner-freebsd-isp Mon May 5 21:55:24 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id VAA14949 for isp-outgoing; Mon, 5 May 1997 21:55:24 -0700 (PDT) Received: from mail.MCESTATE.COM (mail.MCESTATE.COM [207.211.200.50]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id VAA14944 for ; Mon, 5 May 1997 21:55:22 -0700 (PDT) Received: from localhost (vince@localhost) by mail.MCESTATE.COM (8.8.5/8.8.5) with SMTP id VAA05798; Mon, 5 May 1997 21:54:51 -0700 (PDT) Date: Mon, 5 May 1997 21:54:51 -0700 (PDT) From: Vincent Poy To: Alex Nash cc: Michael Slater , freebsd-isp@FreeBSD.ORG Subject: Re: Ping flood atacks In-Reply-To: <336EA384.6201DD56@mcs.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk On Mon, 5 May 1997, Alex Nash wrote: > Vincent Poy wrote: > > > > What about if we're running a FreeBSD based router using a ET/5025 > > Dual ported card and we wanted to filter out only packets larger than a > > certain sized for ICMP ping requests for any ping requests coming in the > > router? > > ipfw can't filter by packet size. Are you worried about the ping o' > death? FreeBSD is immune. Well not actually worried but it did happen a few times before and our provider being CRL had to like do something on their core router to stop it and they said it could be done on a Cisco router which is what we don't have. Cheers, Vince - vince@MCESTATE.COM - vince@GAIANET.NET ________ __ ____ Unix Networking Operations - FreeBSD-Real Unix for Free / / / / | / |[__ ] GaiaNet Corporation - M & C Estate / / / / | / | __] ] Beverly Hills, California USA 90210 / / / / / |/ / | __] ] HongKong Stars/Gravis UltraSound Mailing Lists Admin /_/_/_/_/|___/|_|[____] From owner-freebsd-isp Mon May 5 22:19:03 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id WAA16126 for isp-outgoing; Mon, 5 May 1997 22:19:03 -0700 (PDT) Received: from veda.is (ubiq.veda.is [193.4.230.60]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id WAA16119 for ; Mon, 5 May 1997 22:18:57 -0700 (PDT) Received: (from adam@localhost) by veda.is (8.8.5/8.7.3) id FAA01652; Tue, 6 May 1997 05:38:19 GMT From: Adam David Message-Id: <199705060538.FAA01652@veda.is> Subject: Re: ISP Terminal Server Remote Site Requirements In-Reply-To: from Vincent Poy at "May 5, 97 09:47:46 pm" To: vince@mail.MCESTATE.COM (Vincent Poy) Date: Tue, 6 May 1997 05:38:18 +0000 (GMT) Cc: freebsd-isp@freebsd.org X-Mailer: ELM [version 2.4ME+ PL31 (25)] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk > > At 100Mb/s on a dedicated segment... > > > > How many ports at what load would saturate it? Dialup traffic is typically > > still bursty, and you can get full duplex at 100Mb/s. If I'm going to run > > Linux in a server context, I'd prefer it to be barebones/blackbox in as > > isolated an environment as possible (i.e. a port engine, nothing more). > > What I meant from reading what you wrote was would the data > be going from the modem into the linux box then the freebsd machine then > the router? It would add another hop at a few milliseconds extra delay, one of the costs of using unsupported fast hardware. ;) Yes, if the linux stuff isn't streamlined enough, it might be a bit of a bottleneck at a lower loading level than expected. > > > What about for a terminal server such as a Xyglogics or Livingston > > > that needs radius authetication from a FreeBSD host? Would that work? > > > > Of course it would work, but those terminal servers cannot be reused to run > > FreeBSD later. :) > > That's true but UUNet has this radius service which is what MSN is > using. When you dialup, it actually uses UUNet's resources except it > verifies the login and password so all traffic wouldn't even go through > your own network at all. It goes through your outer loop, right? What about proxies and local stuff? Oh, you are talking about setting up a remote POP to the world serviced by your headquarters? You run the radius server and other remote partners run the clients and provide PPP access? The boundaries are somewhat different then I'd say. -- Adam David From owner-freebsd-isp Mon May 5 22:25:32 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id WAA16457 for isp-outgoing; Mon, 5 May 1997 22:25:32 -0700 (PDT) Received: from scanner.worldgate.com (scanner.worldgate.com [198.161.84.3]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id WAA16452 for ; Mon, 5 May 1997 22:25:29 -0700 (PDT) Received: from znep.com (uucp@localhost) by scanner.worldgate.com (8.8.5/8.8.5) with UUCP id XAA22618; Mon, 5 May 1997 23:25:23 -0600 (MDT) Received: from localhost (marcs@localhost) by alive.znep.com (8.7.5/8.7.3) with SMTP id XAA00551; Mon, 5 May 1997 23:25:26 -0600 (MDT) Date: Mon, 5 May 1997 23:25:26 -0600 (MDT) From: Marc Slemko To: Scott Halbert cc: freebsd-isp@FreeBSD.ORG Subject: Re: Apache Socket Starvation Bug in 1.2 In-Reply-To: <3.0.32.19970505212008.01103168@thuntek.net> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk On Mon, 5 May 1997, Scott Halbert wrote: > Is anyone familiar with the problems with Apache versions 1.2 with socket > starvation? The problem manifests itself as the server locking itself up > and clients hanging with "waiting for reply". For me a KILL -HUP will get > things going again. > > To quote the apacheweek article, "This problem only affects systems which > do not define USE_FLOCK_SERIALIZED_ACCEPT or USE_FCNTL_SERIALIZED_ACCEPT > in conf.h (this includes SunOS 4, FreeBSD, BSDI and some others)." > > Here are some URLS documenting the bug: > > http://www.apache.org/bugdb.cgi/full/467 > http://www.apacheweek.com/issues/97-04-25 > > My problem is that the Apache workaround does not work for me. Turning > on USE_FLOCK_SERIALIZED_ACCEPT does not help and USE_FCNTL_SERIALIZED_ACCEPT > hangs the server immediately. What version of FreeBSD are you using? You may not have a /usr/tmp and Apache is braindead and just uses /usr/tmp Try changing the: strncpy(lock_fname, "/usr/tmp/htlock.XXXXXX", sizeof(lock_fname)-1); lines (note there are two; one is compiled for USE_FLOCK_SERIALIZED_ACCEPT, one for USE_FCNTL_SERIALIZED_ACCEPT) to reference /var/tmp. This is a bad thing that I have been meaning to get around to fix, but didn't get around to it. Grr. The reason why the FCNTL doesn't work is a bug caused by someone being lazy. Fixed it somewhere else but guess not there... The patch included at the end of this message should fix that one; should apply cleanly against 1.2b10, but I haven't tried. > It sure seems to me that I've got something unique in my configuration. > If this happened to all apache 1.2 servers under FreeBSD, I'd hear this > group freaking out. I daresay that a very high majority of FreeBSD ISPs > use Apache. Maybe some of you have seen it and were in the same boat? > > This problem is upsetting my customers and making me pull my hair out. > > Maybe this is not exactly the bug I'm chasing, though it sure looks like > it. Maybe I've got my timeouts and idles messed up in my configuration > file. Are you using multiple Listen directives? That is the only case where the bug you refer to above shows up. Are you sure you aren't running into processes per uid or file descriptor limits? If your config file isn't overly complex, try it with as close to the distributed config file as possible. How much traffic does your site see? How many virtual hosts does it have? How often does the problem happen? When it happens, do a ps to see how many child processes there are (ie. not the one running as root, but the ones that serve requests as whatever your User directive is set to). Do a ktrace (eg. ktrace -p 1234) on a child and see where it is hanging. If that fails, compile with -g and attach gdb to a child process and see where it is hanging. If the child is blocked waiting for a lock, then it could be the problem you mention above. Rest assured that this problem does _not_ happen all the time. Many of the developers (including me) use FreeBSD both for development and production machines pushing high volumes of traffic. Index: http_main.c =================================================================== RCS file: /export/home/cvs/apache/src/http_main.c,v retrieving revision 1.142 diff -c -r1.142 http_main.c *** http_main.c 1997/04/29 02:39:01 1.142 --- http_main.c 1997/05/06 05:16:53 *************** *** 191,198 **** #endif #if defined(USE_FCNTL_SERIALIZED_ACCEPT) ! static struct flock lock_it = { F_WRLCK, 0, 0, 0 }; ! static struct flock unlock_it = { F_UNLCK, 0, 0, 0 }; static int lock_fd=-1; --- 191,198 ---- #endif #if defined(USE_FCNTL_SERIALIZED_ACCEPT) ! static struct flock lock_it; ! static struct flock unlock_it; static int lock_fd=-1; *************** *** 204,209 **** --- 204,220 ---- accept_mutex_init(pool *p) { char lock_fname[256]; + + lock_it.l_whence = SEEK_SET; /* from current point */ + lock_it.l_start = 0; /* -"- */ + lock_it.l_len = 0; /* until end of file */ + lock_it.l_type = F_WRLCK; /* set exclusive/write lock */ + lock_it.l_pid = 0; /* pid not actually interesting */ + unlock_it.l_whence = SEEK_SET; /* from current point */ + unlock_it.l_start = 0; /* -"- */ + unlock_it.l_len = 0; /* until end of file */ + unlock_it.l_type = F_UNLCK; /* set exclusive/write lock */ + unlock_it.l_pid = 0; /* pid not actually interesting */ #ifdef __MACHTEN__ strncpy(lock_fname, "/var/tmp/htlock.XXXXXX", sizeof(lock_fname)-1); From owner-freebsd-isp Mon May 5 23:38:06 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id XAA19735 for isp-outgoing; Mon, 5 May 1997 23:38:06 -0700 (PDT) Received: from srv1.thuntek.net (root@srv1.thuntek.net [206.206.98.18]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id XAA19730 for ; Mon, 5 May 1997 23:38:04 -0700 (PDT) Received: from thor1.thuntek.net (abq1-18.thuntek.net [207.66.52.28]) by srv1.thuntek.net (8.8.4/8.6.12) with SMTP id AAA03598; Tue, 6 May 1997 00:37:55 -0600 (MDT) Message-Id: <3.0.32.19970506003705.01730f30@thuntek.net> X-Sender: thor@thuntek.net X-Mailer: Windows Eudora Pro Version 3.0 (32) Date: Tue, 06 May 1997 00:38:14 -0600 To: Marc Slemko From: Scott Halbert Subject: Re: Apache Socket Starvation Bug in 1.2 Cc: freebsd-isp@FreeBSD.ORG Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk At 11:25 PM 5/5/97 -0600, Marc Slemko wrote: >On Mon, 5 May 1997, Scott Halbert wrote: > >> Is anyone familiar with the problems with Apache versions 1.2 with socket >> starvation? The problem manifests itself as the server locking itself up >> and clients hanging with "waiting for reply". For me a KILL -HUP will get >> things going again. >> >> To quote the apacheweek article, "This problem only affects systems which >> do not define USE_FLOCK_SERIALIZED_ACCEPT or USE_FCNTL_SERIALIZED_ACCEPT >> in conf.h (this includes SunOS 4, FreeBSD, BSDI and some others)." >> >> Here are some URLS documenting the bug: >> >> http://www.apache.org/bugdb.cgi/full/467 >> http://www.apacheweek.com/issues/97-04-25 >> >> My problem is that the Apache workaround does not work for me. Turning >> on USE_FLOCK_SERIALIZED_ACCEPT does not help and USE_FCNTL_SERIALIZED_ACCEPT >> hangs the server immediately. > >What version of FreeBSD are you using? You may not have a /usr/tmp and >Apache is braindead and just uses /usr/tmp Just now I'm running FreeBSD 2.2-BETA_A. I do have a /usr/tmp but it is not set up like a normal /tmp (no group or world write). I'm not sure it access this directory as my 'User' user or as root. If root, it should have been able to write to it. >Try changing the: > > strncpy(lock_fname, "/usr/tmp/htlock.XXXXXX", sizeof(lock_fname)-1); > >lines (note there are two; one is compiled for >USE_FLOCK_SERIALIZED_ACCEPT, one for USE_FCNTL_SERIALIZED_ACCEPT) to >reference /var/tmp. This is a bad thing that I have been meaning to get >around to fix, but didn't get around to it. > >Grr. The reason why the FCNTL doesn't work is a bug caused by someone >being lazy. Fixed it somewhere else but guess not there... The patch >included at the end of this message should fix that one; should apply >cleanly against 1.2b10, but I haven't tried. I tried the above with 1.2b8, but am running vanilla 1.2b10. >> It sure seems to me that I've got something unique in my configuration. >> If this happened to all apache 1.2 servers under FreeBSD, I'd hear this >> group freaking out. I daresay that a very high majority of FreeBSD ISPs >> use Apache. Maybe some of you have seen it and were in the same boat? >> >> This problem is upsetting my customers and making me pull my hair out. >> >> Maybe this is not exactly the bug I'm chasing, though it sure looks like >> it. Maybe I've got my timeouts and idles messed up in my configuration >> file. > >Are you using multiple Listen directives? That is the only case where the >bug you refer to above shows up. Definately. Right now I have about 100 domains. The thing I noticed though is that when I put them all in one server, they system seems to lock up immediately. So, I divided my servers into about 6 servers with no more than 15 servers in year. This was a wild goose chase. >Are you sure you aren't running into processes per uid or file descriptor >limits? No, I checked that and definately not. I did notice that my shells were not passing through some quota limits to 'unlimited'. I fixed that, but still it wasn't a problem. >If your config file isn't overly complex, try it with as close to the >distributed config file as possible. I'll check it. My config files are generated by scripts. >How much traffic does your site see? How many virtual hosts does it have? >How often does the problem happen? Not huge amounts on these servers. 100 virtual servers, but as I said, I've got those running on 6 separate servers (they're all running on 1 machine). Seems like the problem happens a few times daily. It's hard to tell what actually is hanging up and which servers are hanging. It also seems to clear itself up. I can artificially clear it with kill -HUP. >When it happens, do a ps to see how many child processes there are (ie. >not the one running as root, but the ones that serve requests as whatever >your User directive is set to). Do a ktrace (eg. ktrace -p 1234) on a >child and see where it is hanging. If that fails, compile with -g and >attach gdb to a child process and see where it is hanging. If the child >is blocked waiting for a lock, then it could be the problem you mention >above. I'll look. >Rest assured that this problem does _not_ happen all the time. Many of >the developers (including me) use FreeBSD both for development and >production machines pushing high volumes of traffic. I figured. Otherwise, I'm sure I would have heard. I modified http_main.c on 1.2b10 changed /usr/tmp to /var/tmp Added USE_FLOCK_SERIALIZED_ACCEPT to FreeBSD profile in conf.h We'll see how that works. I guess I should certainly see files showing up in /var/tmp now. ---Scott Halbert Thunder Network Technologies, Inc. From owner-freebsd-isp Tue May 6 01:31:25 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id BAA24859 for isp-outgoing; Tue, 6 May 1997 01:31:25 -0700 (PDT) Received: from npc.haplink.co.cn ([202.96.192.53]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id BAA24854 for ; Tue, 6 May 1997 01:31:21 -0700 (PDT) Received: (from xiyuan@localhost) by npc.haplink.co.cn (8.8.4/8.6.9) id QAA02942 for isp@freebsd.org; Tue, 6 May 1997 16:35:48 GMT Date: Tue, 6 May 1997 16:35:48 GMT From: xiyuan qian Message-Id: <199705061635.QAA02942@npc.haplink.co.cn> To: isp@freebsd.org Subject: What's wrong? Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk Hi, my host is now busy on showing me the following message: May 6 16:29:25 npc sendmail[2916]: gethostby*getanswer: ask for type 12(162.70.11.133.in.addr.arpa), got 5(162.70.11.133.in.addr.arpa) ... ... What's wrong with this? How can I deny this? Best regaurds! --xiyuan From owner-freebsd-isp Tue May 6 06:42:01 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id GAA11152 for isp-outgoing; Tue, 6 May 1997 06:42:01 -0700 (PDT) Received: from dilbert.iagnet.net (root@dilbert.iagnet.net [207.206.8.155]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id GAA11135; Tue, 6 May 1997 06:41:56 -0700 (PDT) Received: (from jamie@localhost) by dilbert.iagnet.net (8.8.5/8.8.5) id JAA19609; Tue, 6 May 1997 09:41:54 -0400 (EDT) Message-Id: <199705061341.JAA19609@dilbert.iagnet.net> Subject: More news reboots after upgrade to 2.2.1.. news server.. To: freebsd-isp@freebsd.org, freebsd-scsi@freebsd.org Date: Tue, 6 May 1997 09:41:54 -0400 (EDT) RFC_Violation: You saw it here first! From: jamie@dilbert.iagnet.net (Jamie Rishaw) Reply-To: jamie@dilbert.iagnet.net Organization: Internet Access Group X-No-Archive: yes X-Face: >:-p X-Mailer: ELM [version 2.4ME+ PL22 (25)] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk More SCSI errors.. except now the machine doesnt even reboot. I upgraded to FreeBSD 2.2.1-RELEASE last week. It worked for three days and then locked.. I went to a pinging machine, dead activity, locked console reading: Queueing an Abort SCB SCB 0x1 - timed out while idle, LASTPHASE == 0x1, SCSISIGI=0xe6 [...] sd1(ahc0:2:0): no longer in timeout ahc0: Issued channel A bus reset. 2 SCBs aborted [lockup] Bad disk? Bad controller? Another upgrade? -- jamie g.k. rishaw Internet Access Group Chance favors the prepared mind. __ [http://www.iagnet.net] DID:216.902.5455 FAX:216.623.3566 \/ 800:800.637.4IAGx5455 From owner-freebsd-isp Tue May 6 06:44:50 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id GAA11319 for isp-outgoing; Tue, 6 May 1997 06:44:50 -0700 (PDT) Received: from scanner.worldgate.com (scanner.worldgate.com [198.161.84.3]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id GAA11313 for ; Tue, 6 May 1997 06:44:48 -0700 (PDT) Received: from znep.com (uucp@localhost) by scanner.worldgate.com (8.8.5/8.8.5) with UUCP id HAA08384; Tue, 6 May 1997 07:44:38 -0600 (MDT) Received: from localhost (marcs@localhost) by alive.znep.com (8.7.5/8.7.3) with SMTP id HAA02687; Tue, 6 May 1997 07:43:47 -0600 (MDT) Date: Tue, 6 May 1997 07:43:46 -0600 (MDT) From: Marc Slemko To: Scott Halbert cc: freebsd-isp@FreeBSD.ORG Subject: Re: Apache Socket Starvation Bug in 1.2 In-Reply-To: <3.0.32.19970506003705.01730f30@thuntek.net> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk On Tue, 6 May 1997, Scott Halbert wrote: > At 11:25 PM 5/5/97 -0600, Marc Slemko wrote: > >On Mon, 5 May 1997, Scott Halbert wrote: > > > >> Is anyone familiar with the problems with Apache versions 1.2 with socket > >> starvation? The problem manifests itself as the server locking itself up > >> and clients hanging with "waiting for reply". For me a KILL -HUP will get > >> things going again. > >> > >> To quote the apacheweek article, "This problem only affects systems which > >> do not define USE_FLOCK_SERIALIZED_ACCEPT or USE_FCNTL_SERIALIZED_ACCEPT > >> in conf.h (this includes SunOS 4, FreeBSD, BSDI and some others)." > >> > >> Here are some URLS documenting the bug: > >> > >> http://www.apache.org/bugdb.cgi/full/467 > >> http://www.apacheweek.com/issues/97-04-25 > >> > >> My problem is that the Apache workaround does not work for me. Turning > >> on USE_FLOCK_SERIALIZED_ACCEPT does not help and > USE_FCNTL_SERIALIZED_ACCEPT > >> hangs the server immediately. > > > >What version of FreeBSD are you using? You may not have a /usr/tmp and > >Apache is braindead and just uses /usr/tmp > > Just now I'm running FreeBSD 2.2-BETA_A. I do have a /usr/tmp but it > is not set up like a normal /tmp (no group or world write). I'm not > sure it access this directory as my 'User' user or as root. If root, > it should have been able to write to it. It opens the file as root, but expects to access the descriptor as the user in your User directive. Normally this means that if root can access it you are OK, but some OSes are odd about it. > >> It sure seems to me that I've got something unique in my configuration. > >> If this happened to all apache 1.2 servers under FreeBSD, I'd hear this > >> group freaking out. I daresay that a very high majority of FreeBSD ISPs > >> use Apache. Maybe some of you have seen it and were in the same boat? > >> > >> This problem is upsetting my customers and making me pull my hair out. > >> > >> Maybe this is not exactly the bug I'm chasing, though it sure looks like > >> it. Maybe I've got my timeouts and idles messed up in my configuration > >> file. > > > >Are you using multiple Listen directives? That is the only case where the > >bug you refer to above shows up. > > Definately. Right now I have about 100 domains. The thing I noticed though > is that when I put them all in one server, they system seems to lock up > immediately. So, I divided my servers into about 6 servers with no more > than 15 servers in year. This was a wild goose chase. How many Listen directives do you have and how many virtual hosts do you have? In 99% of the cases with virtual hosts, it is not necessary or desirable to have a Listen directive for each virtual host. If you can avoid that it is a very very good thing. [...] > We'll see how that works. I guess I should certainly see files showing > up in /var/tmp now. No. Only one file is created, and it is unlinked almost as soon as it is opened; the only thing used for locking is the file descriptor so the file doesn't have to actually exist on disk any more. From owner-freebsd-isp Tue May 6 07:32:28 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id HAA13515 for isp-outgoing; Tue, 6 May 1997 07:32:28 -0700 (PDT) Received: from pluto.plutotech.com (root@pluto100.plutotech.com [206.168.67.137]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id HAA13492; Tue, 6 May 1997 07:32:20 -0700 (PDT) Received: from narnia.plutotech.com (narnia.plutotech.com [206.168.67.130]) by pluto.plutotech.com (8.8.5/8.8.3) with ESMTP id IAA27498; Tue, 6 May 1997 08:32:18 -0600 (MDT) Message-Id: <199705061432.IAA27498@pluto.plutotech.com> To: jamie@dilbert.iagnet.net cc: freebsd-isp@FreeBSD.ORG, freebsd-scsi@FreeBSD.ORG Subject: Re: More news reboots after upgrade to 2.2.1.. news server.. In-reply-to: Your message of "Tue, 06 May 1997 09:41:54 EDT." <199705061341.JAA19609@dilbert.iagnet.net> Date: Tue, 06 May 1997 09:30:51 -0600 From: "Justin T. Gibbs" Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk >More SCSI errors.. except now the machine doesnt even reboot. > >I upgraded to FreeBSD 2.2.1-RELEASE last week. It worked for three days >and then locked.. Run 2.2-Stable not 2.2.1R. There were bugs in the 2.2.1R aic7xxx driver that have since been fixed. You should also read teh announce list where Jordan mentioned these problems and the solution (upgrade). -- Justin T. Gibbs =========================================== FreeBSD: Turning PCs into workstations =========================================== From owner-freebsd-isp Tue May 6 10:34:09 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id KAA23174 for isp-outgoing; Tue, 6 May 1997 10:34:09 -0700 (PDT) Received: from maciek.gv.edu.pl ([195.117.86.240]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id KAA23160 for ; Tue, 6 May 1997 10:34:03 -0700 (PDT) Received: (from andrzej@localhost) by maciek.gv.edu.pl (8.8.5/8.8.2) id TAA00609; Tue, 6 May 1997 19:35:25 +0200 (CEST) From: Andrzej Szydlo Message-Id: <199705061735.TAA00609@maciek.gv.edu.pl> Subject: Filtering unwanted sites To: freebsd-isp@freebsd.org Date: Tue, 6 May 1997 19:35:25 +0200 (CEST) Cc: andrzej@eden.tu.kielce.pl X-Mailer: ELM [version 2.4ME+ PL31 (25)] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk Hi, I need to block access to some (porno) sites in a school for small children. Moral question: should I? Technical question - how to do this? TIA Andrzej From owner-freebsd-isp Tue May 6 10:59:53 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id KAA24701 for isp-outgoing; Tue, 6 May 1997 10:59:53 -0700 (PDT) Received: from dilbert.iagnet.net (root@dilbert.iagnet.net [207.206.8.155]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id KAA24672; Tue, 6 May 1997 10:59:47 -0700 (PDT) Received: (from jamie@localhost) by dilbert.iagnet.net (8.8.5/8.8.5) id NAA23880; Tue, 6 May 1997 13:59:44 -0400 (EDT) Message-Id: <199705061759.NAA23880@dilbert.iagnet.net> Subject: Re: More news reboots after upgrade to 2.2.1.. news server.. To: gibbs@plutotech.com (Justin T. Gibbs) Date: Tue, 6 May 1997 13:59:44 -0400 (EDT) Cc: freebsd-isp@FreeBSD.ORG, freebsd-scsi@FreeBSD.ORG In-Reply-To: <199705061432.IAA27498@pluto.plutotech.com> from "Justin T. Gibbs" at "May 6, 97 09:30:51 am" RFC_Violation: You saw it here first! From: jamie@dilbert.iagnet.net (Jamie Rishaw) Reply-To: jamie@dilbert.iagnet.net Organization: Internet Access Group X-No-Archive: yes X-Face: >:-p X-Mailer: ELM [version 2.4ME+ PL22 (25)] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk > >More SCSI errors.. except now the machine doesnt even reboot. > > > >I upgraded to FreeBSD 2.2.1-RELEASE last week. It worked for three days > >and then locked.. > > Run 2.2-Stable not 2.2.1R. There were bugs in the 2.2.1R aic7xxx > driver that have since been fixed. You should also read teh announce > list where Jordan mentioned these problems and the solution (upgrade). ftp> ls -CF 200 PORT command successful. 150 Opening ASCII mode data connection for /bin/ls. .notar I18N/ packages-3.0@ 2.1.7-RELEASE@ README packages-current/ 2.1.7.1-RELEASE@ XFree86/ ports@ 2.2-970422-RELENG@ distfiles/ ports-2.1.6@ 2.2-RELEASE@ docs/ ports-2.1.7@ 2.2.1-RELEASE/ incoming/ ports-2.2/ 3.0-970502-SNAP@ index.html ports-3.0@ 3.0-CURRENT@ ls-lR.gz ports-current@ CTM@ packages@ sup/ FreeBSD-2.2/ packages-2.1@ test/ FreeBSD-CVS/ packages-2.1.6@ tools/ FreeBSD-current/ packages-2.1.7@ FreeBSD-stable/ packages-2.2/ There is no 2.2-Stable :) RELENG perhaps? ftp> cd FreeBSD-stable 250 CWD command successful. ftp> ls -l 200 PORT command successful. 150 Opening ASCII mode data connection for /bin/ls. total 6 lrwxrwxr-x 1 root ftp-Free 14 Apr 6 11:03 ctm -> ../CTM/src-2.1 lrwxrwxr-x 1 root ftp-Free 17 Apr 6 11:03 packages -> ../packages-2.1.7 drwxrwxr-x 18 root ftp-Free 512 Nov 13 06:22 src drwxrwxr-x 18 root ftp-Free 512 Nov 13 06:22 sup -rw-rw-r-- 1 root ftp-Free 2880 Aug 8 1996 supfile -rw-rw-r-- 1 root ftp-Free 831 Jan 11 17:53 supfile.cvsup 226 Transfer complete. looks like 2.1-stable.. > > -- > Justin T. Gibbs > =========================================== > FreeBSD: Turning PCs into workstations > =========================================== > -- jamie g.k. rishaw Internet Access Group Chance favors the prepared mind. __ [http://www.iagnet.net] DID:216.902.5455 FAX:216.623.3566 \/ 800:800.637.4IAGx5455 From owner-freebsd-isp Tue May 6 11:18:46 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id LAA25883 for isp-outgoing; Tue, 6 May 1997 11:18:46 -0700 (PDT) Received: from pluto.plutotech.com (root@pluto100.plutotech.com [206.168.67.137]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id LAA25860; Tue, 6 May 1997 11:18:42 -0700 (PDT) Received: from narnia.plutotech.com (narnia.plutotech.com [206.168.67.130]) by pluto.plutotech.com (8.8.5/8.8.3) with ESMTP id MAA04568; Tue, 6 May 1997 12:18:40 -0600 (MDT) Message-Id: <199705061818.MAA04568@pluto.plutotech.com> X-Mailer: exmh version 2.0beta 12/23/96 To: jamie@dilbert.iagnet.net cc: gibbs@plutotech.com (Justin T. Gibbs), freebsd-isp@FreeBSD.ORG, freebsd-scsi@FreeBSD.ORG Subject: Re: More news reboots after upgrade to 2.2.1.. news server.. In-reply-to: Your message of "Tue, 06 May 1997 13:59:44 EDT." <199705061759.NAA23880@dilbert.iagnet.net> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Date: Tue, 06 May 1997 13:17:11 -0600 From: "Justin T. Gibbs" Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk >> >More SCSI errors.. except now the machine doesnt even reboot. >> > >> >I upgraded to FreeBSD 2.2.1-RELEASE last week. It worked for three days >> >and then locked.. >> >> Run 2.2-Stable not 2.2.1R. There were bugs in the 2.2.1R aic7xxx >> driver that have since been fixed. You should also read teh announce >> list where Jordan mentioned these problems and the solution (upgrade). > >ftp> ls -CF Don't use ftp. Use CVSup. Only static releases and snapshots are availible via ftp. Information on how to use CVSup is availible from www.FreeBSD.org. -- Justin T. Gibbs =========================================== FreeBSD: Turning PCs into workstations =========================================== From owner-freebsd-isp Tue May 6 12:17:19 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id MAA29366 for isp-outgoing; Tue, 6 May 1997 12:17:19 -0700 (PDT) Received: from asis.com (root@red.asis.com [206.99.112.12]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id MAA29356 for ; Tue, 6 May 1997 12:17:16 -0700 (PDT) From: nella@asis.com Received: from Rana (ppp-19.asis.com [206.99.112.35]) by asis.com (8.8.5/8.7.3) with SMTP id MAA10914 for ; Tue, 6 May 1997 12:16:52 -0700 (PDT) Date: Tue, 6 May 1997 12:16:52 -0700 (PDT) Message-Id: <199705061916.MAA10914@asis.com> X-Sender: nella@asis.com X-Mailer: Windows Eudora Version 1.4.4 Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii" To: freebsd-isp@FreeBSD.ORG Subject: ftp default permissions Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk Can anyone tell me how to configure ftpd to have default permissions when files are uploaded be group writable? I am running 2.2 STABLE. Nella From owner-freebsd-isp Tue May 6 15:52:35 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id PAA11084 for isp-outgoing; Tue, 6 May 1997 15:52:35 -0700 (PDT) Received: from panda.hilink.com.au (panda.hilink.com.au [203.2.144.5]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id PAA11079 for ; Tue, 6 May 1997 15:52:29 -0700 (PDT) Received: (from danny@localhost) by panda.hilink.com.au (8.8.5/8.7.3) id IAA26953; Wed, 7 May 1997 08:55:18 +1000 (EST) Date: Wed, 7 May 1997 08:55:18 +1000 (EST) From: "Daniel O'Callaghan" To: Andrzej Szydlo cc: freebsd-isp@FreeBSD.ORG, andrzej@eden.tu.kielce.pl Subject: Re: Filtering unwanted sites In-Reply-To: <199705061735.TAA00609@maciek.gv.edu.pl> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk On Tue, 6 May 1997, Andrzej Szydlo wrote: > I need to block access to some (porno) sites in a school for small > children. > Moral question: should I? Yes, you should. > Technical question - how to do this? If you are using Squid, then you can add ACL rules to block those sites, or pass them to a redirector program which changes the URL to, for example, that of a "Not allowed to go here" page on your local server. Danny From owner-freebsd-isp Tue May 6 15:58:21 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id PAA11406 for isp-outgoing; Tue, 6 May 1997 15:58:21 -0700 (PDT) Received: from pinky.junction.net (pinky.junction.net [199.166.227.12]) by hub.freebsd.org (8.8.5/8.8.5) with SMTP id PAA11398 for ; Tue, 6 May 1997 15:58:18 -0700 (PDT) Received: from sidhe.memra.com (sidhe.memra.com [199.166.227.105]) by pinky.junction.net (8.6.12/8.6.12) with ESMTP id PAA27868 for ; Tue, 6 May 1997 15:58:13 -0700 Received: from localhost (michael@localhost) by sidhe.memra.com (8.6.12/8.6.12) with SMTP id PAA02836 for ; Tue, 6 May 1997 15:52:45 -0700 Date: Tue, 6 May 1997 15:52:43 -0700 (PDT) From: Michael Dillon To: freebsd-isp@FreeBSD.ORG Subject: Re: Filtering unwanted sites In-Reply-To: <199705061735.TAA00609@maciek.gv.edu.pl> Message-ID: Organization: Memra Software Inc. - Internet consulting MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk On Tue, 6 May 1997, Andrzej Szydlo wrote: > I need to block access to some (porno) sites in a school for small > children. > Moral question: should I? Of course. Schools are responsible for supervising children in place of the parents. > Technical question - how to do this? Set up a FreeBSD web proxy server for them. Block all incoming port 80 access at the router except for the proxy server and then use the proxy server rules to block any sites that you need to. Squid will do this http://www.nlanr.net/Squid Michael Dillon - Internet & ISP Consulting http://www.memra.com - E-mail: michael@memra.com The bottom line is track record. Not track tearing. Not track derailing. But pounding the damn dirt around the track with the rest of us worms. -- Randy Bush From owner-freebsd-isp Tue May 6 18:51:08 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id SAA20955 for isp-outgoing; Tue, 6 May 1997 18:51:08 -0700 (PDT) Received: from irbs.irbs.com (jc@irbs.irbs.com [199.182.75.129]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id SAA20949 for ; Tue, 6 May 1997 18:51:02 -0700 (PDT) Received: (from jc@localhost) by irbs.irbs.com (8.8.5/8.8.5) id VAA13454; Tue, 6 May 1997 21:50:37 -0400 (EDT) Message-ID: <19970506215037.34284@irbs.com> Date: Tue, 6 May 1997 21:50:37 -0400 From: John Capo To: Dev Chanchani Cc: freebsd-isp@FreeBSD.ORG Subject: Re: Syslogd/Chroot() Questions. References: Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 0.69 In-Reply-To: ; from Dev Chanchani on Mon, May 05, 1997 at 09:38:55PM -0400 X-Organization: IRBS Engineering, (954) 792-9551 Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk Quoting Dev Chanchani (dev@wopr.inetu.net): > I have questions about syslog in regards to programs that are chroot'ed. > Can I just create another chroot()'ed syslog.conf and point everything > back to the main server via udp? Should I run another syslogd and tell it to create > its local socket in /chroot/dev/log and not bind to a udp port again? > I had occasion to use a chrooted syslogd recently. I modifed syslogd.c to not bind a udp socket or open /dev/klog. I let it create /dev/log in the chrooted space. Worked fine. John Capo IRBS Engineering From owner-freebsd-isp Tue May 6 19:55:09 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id TAA26024 for isp-outgoing; Tue, 6 May 1997 19:55:09 -0700 (PDT) Received: from wopr.inetu.net (wopr.inetu.net [207.18.13.3]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id TAA26019 for ; Tue, 6 May 1997 19:55:06 -0700 (PDT) Received: from localhost (dev@localhost) by wopr.inetu.net (8.8.5/8.8.5) with SMTP id XAA08676 for ; Tue, 6 May 1997 23:00:38 -0400 (EDT) Date: Tue, 6 May 1997 23:00:38 -0400 (EDT) From: Dev Chanchani To: freebsd-isp@freebsd.org Subject: Hylafax Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk Has anyone setup Hylafax? I see it adds the messages to the queue, and faxstat -a shows them, but they never get sent. I run faxq -m /dev/cua1 where my modem resides, and still nothing. Btw: Should I have /var/spool/fax and all subdirs be owned by user fax? And faxq should run as root or fax? Thanks Dev Chanchani From owner-freebsd-isp Tue May 6 20:30:43 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id UAA27723 for isp-outgoing; Tue, 6 May 1997 20:30:43 -0700 (PDT) Received: from gds.de (ns.gds.de [194.77.222.14]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id UAA27718 for ; Tue, 6 May 1997 20:30:40 -0700 (PDT) Received: from host.plusline.de (tfroadie.plusline.de [194.231.79.10]) by gds.de (8.8.5/8.6.12) with SMTP id FAA21372 for ; Wed, 7 May 1997 05:30:33 +0200 (MET DST) Message-Id: <3.0.1.32.19970507052845.00693964@ns-ww.plusline.de> X-Sender: richard@ns-ww.plusline.de (Unverified) X-Mailer: Windows Eudora Light Version 3.0.1 (32) Date: Wed, 07 May 1997 05:28:45 +0200 To: freebsd-isp@freebsd.org From: Richard Gresek Subject: CD Writer Software for FBSD Mime-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 8bit X-MIME-Autoconverted: from quoted-printable to 8bit by hub.freebsd.org id UAA27719 Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk Hallo, we are asked to build a CD with the contents fo a web server of one of our customers. Id like to make the CD on the FreeBSD box. Which software can I take for that? Thank Richard #======================================================= # # ==============> D P N <============== # =======> Deutsches Provider Network <========= # # Richard Gresek Internet PoP fuer # c/o Plus.Line -> Frankfurt # Oppenheimer Landstr. 55 -> Stuttgart # D-60596 Frankfurt/M. -> Westerwald # Tel.: +49 69 61991275 # Fax: +49 69 610238 http://www.plusline.de #======================================================= From owner-freebsd-isp Tue May 6 22:13:09 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id WAA01783 for isp-outgoing; Tue, 6 May 1997 22:13:09 -0700 (PDT) Received: from npc.haplink.co.cn ([202.96.192.53]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id WAA01772 for ; Tue, 6 May 1997 22:13:02 -0700 (PDT) Received: (from xiyuan@localhost) by npc.haplink.co.cn (8.8.4/8.6.9) id NAA07654 for isp@freebsd.org; Wed, 7 May 1997 13:17:11 GMT Date: Wed, 7 May 1997 13:17:11 GMT From: xiyuan qian Message-Id: <199705071317.NAA07654@npc.haplink.co.cn> To: isp@freebsd.org Subject: popper command? Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk Hi, I can "telnet the-mail-server 110" to connect popper server, and just by try, I can enter user xiyuan and pass foo*** to get myself in, then enter list command can get all the mail lists. But I can not get the mail contents. I can't guess the command and I can't find the command in the popper manual. Where can I find it? I even get RFC1801-RFC1802 but unluck. Best regaurds! --xiyuan From owner-freebsd-isp Wed May 7 01:49:52 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id BAA11440 for isp-outgoing; Wed, 7 May 1997 01:49:52 -0700 (PDT) Received: from mail.MCESTATE.COM (mail.MCESTATE.COM [207.211.200.50]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id BAA11433 for ; Wed, 7 May 1997 01:49:50 -0700 (PDT) Received: from localhost (vince@localhost) by mail.MCESTATE.COM (8.8.5/8.8.5) with SMTP id BAA01430; Wed, 7 May 1997 01:49:39 -0700 (PDT) Date: Wed, 7 May 1997 01:49:39 -0700 (PDT) From: Vincent Poy To: Adam David cc: freebsd-isp@freebsd.org Subject: Re: ISP Terminal Server Remote Site Requirements In-Reply-To: <199705060538.FAA01652@veda.is> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk On Tue, 6 May 1997, Adam David wrote: > It would add another hop at a few milliseconds extra delay, one of the costs > of using unsupported fast hardware. ;) I guess it's just like going through another hop or something in a route. > Yes, if the linux stuff isn't streamlined enough, it might be a bit of a > bottleneck at a lower loading level than expected. I wouldn't be surprised at all since FreeBSD's networking really sparkles. :) > > That's true but UUNet has this radius service which is what MSN is > > using. When you dialup, it actually uses UUNet's resources except it > > verifies the login and password so all traffic wouldn't even go through > > your own network at all. > > It goes through your outer loop, right? What about proxies and local stuff? > Oh, you are talking about setting up a remote POP to the world serviced by > your headquarters? You run the radius server and other remote partners run > the clients and provide PPP access? The boundaries are somewhat different > then I'd say. It's actually the later but what I can't figure out is why do we need a dedicated T1 to that provider in addition to our own providers to do radius authentication? Cheers, Vince - vince@MCESTATE.COM - vince@GAIANET.NET ________ __ ____ Unix Networking Operations - FreeBSD-Real Unix for Free / / / / | / |[__ ] GaiaNet Corporation - M & C Estate / / / / | / | __] ] Beverly Hills, California USA 90210 / / / / / |/ / | __] ] HongKong Stars/Gravis UltraSound Mailing Lists Admin /_/_/_/_/|___/|_|[____] From owner-freebsd-isp Wed May 7 02:01:27 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id CAA11961 for isp-outgoing; Wed, 7 May 1997 02:01:27 -0700 (PDT) Received: from lab321.ru (pppl321.omsk.net.ru [194.226.32.34]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id CAA11948 for ; Wed, 7 May 1997 02:01:13 -0700 (PDT) Received: from lab321.ru (kev@FreeBSD-1.l321.omsk.net.ru [194.226.33.65]) by lab321.ru (8.8.5/8.8.5) with SMTP id PAA09601; Wed, 7 May 1997 15:59:01 +0700 (OSD) Content-Transfer-Encoding: 8bit Date: Wed, 7 May 1997 15:59:01 +0700 (OSD) From: Eugeny Kuzakov To: nella@asis.com cc: freebsd-isp@FreeBSD.ORG Subject: Re: ftp default permissions In-Reply-To: <199705061916.MAA10914@asis.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk On Tue, 6 May 1997 nella@asis.com wrote: > Date: Tue, 6 May 1997 12:16:52 -0700 (PDT) > From: nella@asis.com > To: freebsd-isp@FreeBSD.ORG > Subject: ftp default permissions > > Can anyone tell me how to configure ftpd to have default permissions when > files are uploaded be group writable? I am running 2.2 STABLE. Just try to install wu-ftpd. Best wishes, Eugeny Kuzakov Laboratory 321 ( Omsk, Russia ) kev@lab321.ru From owner-freebsd-isp Wed May 7 06:55:41 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id GAA23489 for isp-outgoing; Wed, 7 May 1997 06:55:41 -0700 (PDT) Received: from bagpuss.visint.co.uk (bagpuss.vis.net.uk [194.207.134.1]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id GAA23453; Wed, 7 May 1997 06:55:30 -0700 (PDT) Received: from bagpuss.visint.co.uk (bagpuss.vis.net.uk [194.207.134.1]) by bagpuss.visint.co.uk (8.7.5/8.7.3) with SMTP id PAA07449; Wed, 7 May 1997 15:07:06 +0100 (BST) Date: Wed, 7 May 1997 15:07:06 +0100 (BST) From: Stephen Roome To: freebsd-current@freebsd.org, freebsd-isp@freebsd.org Subject: tun0 problem in 3.0-970209-SNAP Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk Not sure if this is a problem and whether is persists in newer versions. Anyway, it's fairly simple: here's a snip from ifconfig tun0: flags=8051 mtu 1524 inet 194.222.196.174 --> 158.152.1.222 netmask 0xffffff00 Now, I can ping the other end of this line at the moment. (I'm running ppp -alias -auto ) So, I type ifconfig tun0 down, and I can _STILL_ ping the other end of the line ? really that doesn't make a lot of sense to me. Either I'm missing something or this is really odd. Secondly, this machine does name lookups even on local emails, I haven't got the faintest idea where to try and stop this, as I don't want to have to hack sendmail.cf The best hack option so far seems to be to set a dfilter for ppp so that it won't dial out unless a machine other than the one with the modem is trying to initialise the connection. I thought I needed these lines in my config file.. set dfilter 0 deny 194.222.196.174 set dfilter 2000 permit 0/0 0/0 For some reason this doesn't work, I'm not sure why. This ia basically for an intranet router, which can handle internal and external mail, but I don't want the connection coming up because person A sends person B mail internally on the machine.... using PoP though, but that shouldn't make much difference, even typing this sets of my modem : root@visnet01# mail root Subject: hello test . EOT <---- modem makes connection now ----> root@visnet01# I don't want to have to run a DNS here to set this machine as it's mail exchanger, and this machine shouldn't need a mail exchanger for local stuff anyway. I just don't get it anymore =( -- Steve Roome Technical Systems Manager, Vision Interactive Ltd. E: steve@visint.co.uk M: +44 (0) 976 241 342 T: +44 (0) 117 973 0597 F: +44 (0) 117 923 8522 From owner-freebsd-isp Wed May 7 08:45:36 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id IAA28211 for isp-outgoing; Wed, 7 May 1997 08:45:36 -0700 (PDT) Received: from dilbert.iagnet.net (root@dilbert.iagnet.net [207.206.8.155]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id IAA28204 for ; Wed, 7 May 1997 08:45:31 -0700 (PDT) Received: (from jamie@localhost) by dilbert.iagnet.net (8.8.5/8.8.5) id LAA21036 for freebsd-isp@freebsd.org; Wed, 7 May 1997 11:45:28 -0400 (EDT) Message-Id: <199705071545.LAA21036@dilbert.iagnet.net> Subject: Most stable network card.. To: freebsd-isp@freebsd.org Date: Wed, 7 May 1997 11:45:28 -0400 (EDT) RFC_Violation: You saw it here first! From: jamie@dilbert.iagnet.net (Jamie Rishaw) X-PGP-Fingerprint: <921C135D> C4 48 1B 26 18 7B 1F D9 BA C4 9C 7A B1 07 07 E8 Reply-To: jamie@dilbert.iagnet.net Organization: Internet Access Group, Inc. X-No-Archive: yes X-Face: >:-p X-Mailer: ELM [version 2.4ME+ PL22 (25)] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk Has anyone agreed upon a really stable, fast (10Mb) ethernet card for FreeBSD? My 3com's have been kinda flaky.. but i've never had problems with SMC .. comments? -jamie -- jamie g.k. rishaw Internet Access Group Chance favors the prepared mind. __ [http://www.iagnet.net] DID:216.902.5455 FAX:216.623.3566 \/ 800:800.637.4IAGx5455 From owner-freebsd-isp Wed May 7 08:59:17 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id IAA28739 for isp-outgoing; Wed, 7 May 1997 08:59:17 -0700 (PDT) Received: from florence.pavilion.net (mailrelay1.pavilion.net [194.242.128.25]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id IAA28734 for ; Wed, 7 May 1997 08:59:12 -0700 (PDT) Received: (from joe@localhost) by florence.pavilion.net (8.8.5/8.8.5) id QAA12597; Wed, 7 May 1997 16:58:40 +0100 (BST) Message-ID: <19970507165839.38466@pavilion.net> Date: Wed, 7 May 1997 16:58:39 +0100 From: Josef Karthauser To: freebsd-isp@FreeBSD.ORG Subject: Re: Most stable network card.. References: <199705071545.LAA21036@dilbert.iagnet.net> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 0.69 In-Reply-To: <199705071545.LAA21036@dilbert.iagnet.net>; from Jamie Rishaw on Wed, May 07, 1997 at 11:45:28AM -0400 Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk On Wed, May 07, 1997 at 11:45:28AM -0400, Jamie Rishaw wrote: > Has anyone agreed upon a really stable, fast (10Mb) ethernet card > for FreeBSD? > > My 3com's have been kinda flaky.. but i've never had problems with SMC .. > > comments? > > -jamie We run SMC's as well. Not a dicky bird of a problem (that couldn't be tied to elsewhere of course ;) Joe -- Josef Karthauser Technical Manager Email: joe@pavilion.net Pavilion Internet plc. [Tel: +44 1273 607072 Fax: +44 1273 607073] From owner-freebsd-isp Wed May 7 09:38:33 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id JAA00732 for isp-outgoing; Wed, 7 May 1997 09:38:33 -0700 (PDT) Received: from mail.calweb.com ([208.131.56.11]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id JAA00724 for ; Wed, 7 May 1997 09:38:29 -0700 (PDT) Received: by mail.calweb.com (8.8.5/8.8.5) with SMTP id JAA28385; Wed, 7 May 1997 09:38:12 -0700 (PDT) X-SMTP: hello web2.calweb.com from rdugaue@calweb.com server rdugaue@web2.calweb.com ip 208.131.56.52 Date: Wed, 7 May 1997 09:38:14 -0700 (PDT) From: Robert Du Gaue To: Josef Karthauser cc: freebsd-isp@FreeBSD.ORG Subject: Re: Most stable network card.. In-Reply-To: <19970507165839.38466@pavilion.net> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk > On Wed, May 07, 1997 at 11:45:28AM -0400, Jamie Rishaw wrote: > > Has anyone agreed upon a really stable, fast (10Mb) ethernet card > > for FreeBSD? > > > > My 3com's have been kinda flaky.. but i've never had problems with SMC .. > > > > comments? > > > > -jamie > > We run SMC's as well. Not a dicky bird of a problem (that couldn't > be tied to elsewhere of course ;) We've used SMC products for quite some time as well. We do think there's a problem with heavy NFS activity with this card, but there's so many different variables that it's not 100% for sure. We recently tried a couple of new cards from a recommendation. These are the Intel PCI 10/100 cards. At $79 you can't beat the price, and I'm told these are the only cards that support Full Duplex at 100BT. So far we've been impressed, but we haven't swapped the card yet into a heavy production machine. Just another opinion.... > > Joe > -- > Josef Karthauser > Technical Manager Email: joe@pavilion.net > Pavilion Internet plc. [Tel: +44 1273 607072 Fax: +44 1273 607073] > -------------------------------------------------------------------------- Robert Du Gaue - rdugaue@calweb.com http://www.calweb.com President, CalWeb Internet Services Inc. (916) 641-9320 -------------------------------------------------------------------------- From owner-freebsd-isp Wed May 7 10:07:04 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id KAA02016 for isp-outgoing; Wed, 7 May 1997 10:07:04 -0700 (PDT) Received: from sabre.goldsword.com (sabre.goldsword.com [199.170.202.32]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id KAA02011 for ; Wed, 7 May 1997 10:07:02 -0700 (PDT) Received: (from jfarmer@localhost) by sabre.goldsword.com (8.7.5/8.7.3) id NAA24557; Wed, 7 May 1997 13:01:24 -0400 (EDT) Date: Wed, 7 May 1997 13:01:24 -0400 (EDT) From: "John T. Farmer" Message-Id: <199705071701.NAA24557@sabre.goldsword.com> To: joe@pavilion.net, rdugaue@calweb.com Subject: Re: Most stable network card.. Cc: freebsd-isp@FreeBSD.ORG, jfarmer@goldsword.com Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk On Wed, 7 May 1997 09:38:14 -0700 Robert Du Gaue said: >> On Wed, May 07, 1997 at 11:45:28AM -0400, Jamie Rishaw wrote: >> > Has anyone agreed upon a really stable, fast (10Mb) ethernet card >> > for FreeBSD? >> > >> > My 3com's have been kinda flaky.. but i've never had problems with SMC .. >> > >> > comments? >> > >> > -jamie >> >> We run SMC's as well. Not a dicky bird of a problem (that couldn't >> be tied to elsewhere of course ;) > >We've used SMC products for quite some time as well. We do think there's a >problem with heavy NFS activity with this card, but there's so many >different variables that it's not 100% for sure. > >We recently tried a couple of new cards from a recommendation. These are >the Intel PCI 10/100 cards. At $79 you can't beat the price, and I'm told >these are the only cards that support Full Duplex at 100BT. So far we've >been impressed, but we haven't swapped the card yet into a heavy >production machine. Is the key to getting an efficent and robust card the present of the Dec PCI-Ethernet chipset? If this is true, then are there any other reasons to select one brand over another? The reason I ask is that I've been seeing the D-Link PCI cards (which use the DEC chipset) in the $50 range (quantity 1). Since I'm about to upgrade some servers (old EISA machines with 3c579's and other with 509's), I would like to select a decent PCI card for them. I'm primiarly concerned with FreeBSD performance (all servers, Web, News, Mail, NFS, etc.) with them (except for one client who keeps talking about WinNt...) So what what should we be looking for? John ------------------------------------------------------------------------- John T. Farmer Proprietor, GoldSword Systems jfarmer@goldsword.com Public Internet Access in East Tennessee dial-in (423)470-9953 for info, e-mail to info@goldsword.com Network Design, Internet Services & Servers, Consulting From owner-freebsd-isp Wed May 7 11:02:49 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id LAA05049 for isp-outgoing; Wed, 7 May 1997 11:02:49 -0700 (PDT) Received: from aviion.ts.kiev.ua (aviion.ts.kiev.ua [193.124.229.12]) by hub.freebsd.org (8.8.5/8.8.5) with SMTP id LAA05040 for ; Wed, 7 May 1997 11:02:43 -0700 (PDT) Received: from nbki.ipri.kiev.ua by aviion.ts.kiev.ua with ESMTP id RAA25851; (8.6.11/zah/2.1) Wed, 7 May 1997 17:33:23 GMT Received: from cki.ipri.kiev.ua by nbki.ipri.kiev.ua with ESMTP id SAA01629; (8.6.9/zah/1.1) Wed, 7 May 1997 18:22:16 +0100 Received: from 194.44.146.14 (mac.ipri.kiev.ua [194.44.146.14]) by cki.ipri.kiev.ua (8.7.6/8.7.3) with SMTP id SAA11958; Wed, 7 May 1997 18:33:27 +0300 (EET DST) Message-ID: <33709318.58EF@cki.ipri.kiev.ua> Date: Wed, 07 May 1997 17:34:41 +0300 From: Ruslan Shevchenko Reply-To: rssh@cki.ipri.kiev.ua Organization: IPRI X-Mailer: Mozilla 3.01Gold (Macintosh; I; 68K) MIME-Version: 1.0 To: nella@asis.com CC: freebsd-isp@FreeBSD.ORG Subject: Re: ftp default permissions References: <199705061916.MAA10914@asis.com> Content-Type: text/plain; charset=koi8-r Content-Transfer-Encoding: 7bit Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk nella@asis.com wrote: > > Can anyone tell me how to configure ftpd to have default permissions when > files are uploaded be group writable? I am running 2.2 STABLE. > chmod in ~ftp/pub/upload > Nella From owner-freebsd-isp Wed May 7 11:13:15 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id LAA05792 for isp-outgoing; Wed, 7 May 1997 11:13:15 -0700 (PDT) Received: from time.cdrom.com (root@time.cdrom.com [204.216.27.226]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id LAA05787; Wed, 7 May 1997 11:13:13 -0700 (PDT) Received: from time.cdrom.com (jkh@localhost [127.0.0.1]) by time.cdrom.com (8.8.5/8.6.9) with ESMTP id LAA09987; Wed, 7 May 1997 11:13:09 -0700 (PDT) To: Stephen Roome cc: freebsd-current@FreeBSD.ORG, freebsd-isp@FreeBSD.ORG Subject: Re: tun0 problem in 3.0-970209-SNAP In-reply-to: Your message of "Wed, 07 May 1997 15:07:06 BST." Date: Wed, 07 May 1997 11:13:09 -0700 Message-ID: <9983.863028789@time.cdrom.com> From: "Jordan K. Hubbard" Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk > Anyway, it's fairly simple: > > here's a snip from ifconfig > tun0: flags=8051 mtu 1524 > inet 194.222.196.174 --> 158.152.1.222 netmask 0xffffff00 Don't do that. ppp should be managing the tun0 device *exclusively* and you shouldn't be ifconfig'ing it at all. > So, I type ifconfig tun0 down, and I can _STILL_ ping the other end of > the line ? really that doesn't make a lot of sense to me. Because you're not supposed to be frobbing tun0 at all, that's why. :) Control its state entirely through ppp, please. Jordan From owner-freebsd-isp Wed May 7 11:34:13 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id LAA07125 for isp-outgoing; Wed, 7 May 1997 11:34:13 -0700 (PDT) Received: from biggusdiskus.flyingfox.com (biggusdiskus.flyingfox.com [206.14.52.27]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id LAA07120 for ; Wed, 7 May 1997 11:34:09 -0700 (PDT) Received: (from jas@localhost) by biggusdiskus.flyingfox.com (8.8.5/8.8.5) id LAA10211; Wed, 7 May 1997 11:32:45 -0700 (PDT) Date: Wed, 7 May 1997 11:32:45 -0700 (PDT) From: Jim Shankland Message-Id: <199705071832.LAA10211@biggusdiskus.flyingfox.com> To: jfarmer@sabre.goldsword.com, joe@pavilion.net, rdugaue@calweb.com Subject: Re: Most stable network card.. Cc: freebsd-isp@FreeBSD.ORG, jfarmer@goldsword.com Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk John T. Farmer writes: > Is the key to getting an efficent and robust card the present > of the Dec PCI-Ethernet chipset? If this is true, then are > there any other reasons to select one brand over another? The > reason I ask is that I've been seeing the D-Link PCI cards > (which use the DEC chipset) in the $50 range (quantity 1). No. There are annoying differences between the various cards based on the DEC chips. Can't say anything one way or the other about the D-Link cards; but for a while, newer versions of SMC's 10/100 card didn't work with FreeBSD 2.x. That's now fixed, but the Znyx 10/100 cards don't work with FreeBSD 2.2. Making them work requires getting the latest de driver from NetBSD, which in turn requires bringing over NetBSD's version of ifconfig. This isn't as bad as it sounds, as Matt Thomas, who (wrote and?) maintains the de driver, has instructions at http://www.3am-software.com/ifmedia.html. Still: the point is, these cards are *not* all equivalent. Buyer beware. I'm contemplating a switch to the Intel 10/100 cards, once my current stock of Znyx cards runs out. They're price-competitive, they are claimed to have lower CPU overhead than the de cards, and the fxp driver is well-supported in FreeBSD (not that the de driver isn't; but my sense is that keeping up with all the various vendors and their gratuitous, compatibility-breaking hardware changes is a big task). Jim Shankland Flying Fox Computer Systems, Inc. From owner-freebsd-isp Wed May 7 14:53:22 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id OAA19914 for isp-outgoing; Wed, 7 May 1997 14:53:22 -0700 (PDT) Received: from air.infinetgroup.com (air.infinetgroup.com [207.23.43.2]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id OAA19895; Wed, 7 May 1997 14:53:17 -0700 (PDT) Received: from localhost (lenc@localhost) by air.infinetgroup.com (8.8.5/8.8.4) with SMTP id OAA19168; Wed, 7 May 1997 14:52:30 -0700 (PDT) Date: Wed, 7 May 1997 14:52:30 -0700 (PDT) From: Leonard Chua To: freebsd-isp@freebsd.org, freebsd-security@freebsd.org Subject: CERT Advisory CA-97.13 - Vulnerability in xlock (fwd) Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk Hope I'm not wasting bandwidth. But having at least a dozen xterms and other windows open, I use xlock a lot. Surely someone else out there does the same. better safe than sorry. :) ============================================================================= CERT* Advisory CA-97.13 Original issue date: May 7, 1997 Last revised: -- Topic: Vulnerability in xlock - ----------------------------------------------------------------------------- The CERT Coordination Center has received reports that a buffer overflow condition exists in some implementations of xlock. This vulnerability makes it possible for local users (users with access to an account on the system) to execute arbitrary programs as a privileged user. Exploitation information involving this vulnerability has been made publicly available. If your system is vulnerable, the CERT/CC team recommends installing a patch from your vendor. If you are not certain whether your system is vulnerable or if you know that your system is vulnerable and you cannot add a patch immediately, we urge you to apply the workaround described in Section III.B. We will update this advisory as we receive additional information. Please check our advisory files regularly for updates that relate to your site. - ----------------------------------------------------------------------------- I. Description xlock is a program that allows a user to "lock" an X terminal. A buffer overflow condition exists in some implementations of xlock. It is possible attain unauthorized access to a system by engineering a particular environment and calling a vulnerable version of xlock that has setuid or setgid bits set. Information about vulnerable versions must be obtained from vendors. Some vendor information can be found in Appendix A of this advisory. Exploitation information involving this vulnerability has been made publicly available. Note that this problem is different from that discussed in CERT Advisory CA-97.11.libXt. II. Impact Local users are able to execute arbitrary programs as a privileged user without authorization. III. Solution Install a patch from your vendor as described in Solution A. If you are not certain whether your system is vulnerable or if you know that your system is vulnerable and you cannot install a patch immediately, we recommend Solution B. A. Obtain and install a patch for this problem. Below is a list of vendors who have provided information about xlock. Details are in Appendix A of this advisory; we will update the appendix as we receive more information. If your vendor's name is not on this list, the CERT/CC did not hear from that vendor. Please contact your vendor directly. Berkeley Software Design, Inc. (BSDI) Cray Research - A Silicon Graphics Company Data General Corporation Digital Equipment Corporation FreeBSD, Inc. Hewlett-Packard Company IBM Corporation LINUX NEC Corporation The Open Group [This group distributes the publicly available software that was formerly distributed by X Consortium] Solbourne Sun Microsystems, Inc. B. We recommend the following workaround if you are not certain whether your system is vulnerable or if you know that your system is vulnerable and you cannot install a patch immediately. 1. Find and disable any copies of xlock that exist on your system and that have the setuid or setgid bits set. 2. Install a version of xlock known to be immune to this vulnerablility. One such supported tool is xlockmore. The latest version of this tool is 4.02, and you should ensure that this is the version you are using. This utility can be obtained from the following site: ftp://ftp.x.org/contrib/applications/xlockmore-4.02.tar.gz MD5 (xlockmore-4.02.tar.gz) = c158e6b4b99b3cff4b52b39219dbfe0e You can also obtain this version from mirror sites. A list of these sites will be displayed if you are not able to access the above archive due to load. ........................................................................... Appendix A - Vendor Information Below is a list of the vendors who have provided information for this advisory. We will update this appendix as we receive additional information. If you do not see your vendor's name, the CERT/CC did not hear from that vendor. Please contact the vendor directly. (snip) FreeBSD, Inc. ============= The xlockmore version we ship in our ports collection is vulnerable in all shipped releases. The port in FreeBSD-current is fixed. Solution is to install the latest xlockmore version (4.02). (more snip) - ----------------------------------------------------------------------------- The CERT Coordination Center thanks David Hedley for reporting the original problem and Kaleb Keithley at The Open Group for his support in the development of this advisory. - ----------------------------------------------------------------------------- If you believe that your system has been compromised, contact the CERT Coordination Center or your representative in the Forum of Incident Response and Security Teams (see http://www.first.org/team-info/). CERT/CC Contact Information - ---------------------------- Email cert@cert.org Phone +1 412-268-7090 (24-hour hotline) CERT personnel answer 8:30-5:00 p.m. EST(GMT-5) / EDT(GMT-4) and are on call for emergencies during other hours. Fax +1 412-268-6989 Postal address CERT Coordination Center Software Engineering Institute Carnegie Mellon University Pittsburgh PA 15213-3890 USA Using encryption We strongly urge you to encrypt sensitive information sent by email. We can support a shared DES key or PGP. Contact the CERT/CC for more information. Location of CERT PGP key ftp://info.cert.org/pub/CERT_PGP.key Getting security information CERT publications and other security information are available from http://www.cert.org/ ftp://info.cert.org/pub/ CERT advisories and bulletins are also posted on the USENET newsgroup comp.security.announce To be added to our mailing list for advisories and bulletins, send email to cert-advisory-request@cert.org In the subject line, type SUBSCRIBE your-email-address - --------------------------------------------------------------------------- * Registered U.S. Patent and Trademark Office. Copyright 1997 Carnegie Mellon University This material may be reproduced and distributed without permission provided it is used for noncommercial purposes and the copyright statement is included. The CERT Coordination Center is part of the Software Engineering Institute (SEI). The SEI is sponsored by the U.S. Department of Defense. - --------------------------------------------------------------------------- This file: ftp://info.cert.org/pub/cert_advisories/CA-97.13.xlock http://www.cert.org click on "CERT Advisories" ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Revision history -----BEGIN PGP SIGNATURE----- Version: 2.6.2 iQCVAwUBM3DOFnVP+x0t4w7BAQH9MwQAwULlCDTqDbW+CiS0/Z36BtGf6Eqzx43B pEt72rQlQbw2AqRnHeq85dzVUB4eKmL0T//bGYyo0sCt+8nlFaS3cNYh0cyl3jdu JPDVoNhWB7v2+8nHvAEDz2UdomNVaxXDFvAbZ9JvEk/Ex6aFiXtl4qXdjxtcC4ze kGKLcu0+LzE= =nF5B -----END PGP SIGNATURE----- From owner-freebsd-isp Wed May 7 14:56:18 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id OAA20046 for isp-outgoing; Wed, 7 May 1997 14:56:18 -0700 (PDT) Received: from aviion.ts.kiev.ua (aviion.ts.kiev.ua [193.124.229.12]) by hub.freebsd.org (8.8.5/8.8.5) with SMTP id OAA20041 for ; Wed, 7 May 1997 14:56:13 -0700 (PDT) Received: from nbki.ipri.kiev.ua by aviion.ts.kiev.ua with ESMTP id WAA02833; (8.6.11/zah/2.1) Wed, 7 May 1997 22:27:43 GMT Received: from cki.ipri.kiev.ua by nbki.ipri.kiev.ua with ESMTP id WAA02481; (8.6.9/zah/1.1) Wed, 7 May 1997 22:56:40 +0100 Received: from 194.44.146.14 (mac.ipri.kiev.ua [194.44.146.14]) by cki.ipri.kiev.ua (8.7.6/8.7.3) with SMTP id XAA12454; Wed, 7 May 1997 23:07:27 +0300 (EET DST) Message-ID: <3370D353.3337@cki.ipri.kiev.ua> Date: Wed, 07 May 1997 22:08:43 +0300 From: Ruslan Shevchenko Reply-To: rssh@cki.ipri.kiev.ua Organization: IPRI X-Mailer: Mozilla 3.01Gold (Macintosh; I; 68K) MIME-Version: 1.0 To: freebsd-isp@freebsd.org CC: dk+@ua.net Subject: UUCP server tuning [Q] Content-Type: text/plain; charset=koi8-r Content-Transfer-Encoding: 7bit Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk When I tried to tune FreeBSD as UUCP server, which accept calls from users. users have domains over our (i.e. user: uuu.kiev.ua and server is itc.ipri.kiev.ua ) Then, during testing I want to have some table, and look at it *before* adding the domainname to the addreess without dns record. and then, I want to perform DNS lookup, If I not found host in this table. so FEAUTURE(nodns) is not for me. Is exists way to do this ? From owner-freebsd-isp Wed May 7 21:04:59 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id VAA06054 for isp-outgoing; Wed, 7 May 1997 21:04:59 -0700 (PDT) Received: from agora.rdrop.com (root@agora.rdrop.com [199.2.210.241]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id VAA06048 for ; Wed, 7 May 1997 21:04:56 -0700 (PDT) Received: (from batie@localhost) by agora.rdrop.com (8.8.5/8.8.5) id VAA05279; Wed, 7 May 1997 21:04:11 -0700 (PDT) From: Alan Batie Message-Id: <199705080404.VAA05279@agora.rdrop.com> Subject: Re: Most stable network card.. To: jfarmer@sabre.goldsword.com (John T. Farmer) Date: Wed, 7 May 1997 21:04:11 -0700 (PDT) Cc: joe@pavilion.net, rdugaue@calweb.com, freebsd-isp@FreeBSD.ORG, jfarmer@goldsword.com In-Reply-To: <199705071701.NAA24557@sabre.goldsword.com> from "John T. Farmer" at May 7, 97 01:01:24 pm X-Mailer: ELM [version 2.4 PL24 ME8a] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk > seeing the D-Link PCI cards If their hubs and switches are any indication, run screaming from these. I see major packet corruption with some I got at work, and tossed them out, replacing with SMC hubs and low end cisco switches. -- Alan Batie ______ It's not my fault! It's some guy batie@agora.rdrop.com \ / named "General Protection"! +1 503 452-0960 \ / --Ratbert PGP FP: DE 3C 29 17 C0 49 \/ 7A 27 40 A5 3C 37 4A DA 52 B9 It is my policy to avoid purchase of any products from companies which use unrequested email advertisements or telephone solicitation. From owner-freebsd-isp Wed May 7 23:45:55 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id XAA12485 for isp-outgoing; Wed, 7 May 1997 23:45:55 -0700 (PDT) Received: from aviion.ts.kiev.ua (aviion.ts.kiev.ua [193.124.229.12]) by hub.freebsd.org (8.8.5/8.8.5) with SMTP id XAA12458 for ; Wed, 7 May 1997 23:44:30 -0700 (PDT) Received: from nbki.ipri.kiev.ua by aviion.ts.kiev.ua with ESMTP id HAA11354; (8.6.11/zah/2.1) Thu, 8 May 1997 07:27:24 GMT Received: from cki.ipri.kiev.ua by nbki.ipri.kiev.ua with ESMTP id IAA04371; (8.6.9/zah/1.1) Thu, 8 May 1997 08:55:03 +0100 Received: from 194.44.146.14 (mac.ipri.kiev.ua [194.44.146.14]) by cki.ipri.kiev.ua (8.7.6/8.7.3) with SMTP id JAA13273; Thu, 8 May 1997 09:04:33 +0300 (EET DST) Message-ID: <33715F49.16A@cki.ipri.kiev.ua> Date: Thu, 08 May 1997 08:05:53 +0300 From: Ruslan Shevchenko Reply-To: rssh@cki.ipri.kiev.ua Organization: IPRI X-Mailer: Mozilla 3.01Gold (Macintosh; I; 68K) MIME-Version: 1.0 To: Swee-Chuan Khoo CC: freebsd-isp@freebsd.org Subject: Re: UUCP server tuning [Q] References: Content-Type: text/plain; charset=koi8-r Content-Transfer-Encoding: 7bit Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk Swee-Chuan Khoo wrote: > > On Wed, 7 May 1997, Ruslan Shevchenko wrote: > > When I tried to tune FreeBSD as UUCP server, > > which accept calls from users. > > users have domains over our > > hi, > > i work for an isp and would like to setup > an UUCP server too using freebsd. any doc that i can > look at? > uucp good described in info (info uucp on your system) The main headache is a sendmail. Exists good book about it from O'Reillly, but about low-level stuff. The step-to step instruction, hove to setup UUCP server I was not able find. > thanx. > > +-------------------------------------------+ > | Swee-Chuan Khoo - System Administrator | > | 603-7337757 ( voice ) 603-7345577 ( fax ) | > | sckhoo@tm.net.my, sckhoo@asiapac.net | > | #include | > +-------------------------------------------+ > Live Long and Prosper From owner-freebsd-isp Thu May 8 03:01:33 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id DAA19120 for isp-outgoing; Thu, 8 May 1997 03:01:33 -0700 (PDT) Received: from aviion.ts.kiev.ua (aviion.ts.kiev.ua [193.124.229.12]) by hub.freebsd.org (8.8.5/8.8.5) with SMTP id DAA19077 for ; Thu, 8 May 1997 03:00:06 -0700 (PDT) Received: from nbki.ipri.kiev.ua by aviion.ts.kiev.ua with ESMTP id KAA15753; (8.6.11/zah/2.1) Thu, 8 May 1997 10:39:57 GMT Received: from cki.ipri.kiev.ua by nbki.ipri.kiev.ua with ESMTP id LAA04897; (8.6.9/zah/1.1) Thu, 8 May 1997 11:24:03 +0100 Received: from 194.44.146.14 (mac.ipri.kiev.ua [194.44.146.14]) by cki.ipri.kiev.ua (8.7.6/8.7.3) with SMTP id LAA13497; Thu, 8 May 1997 11:33:41 +0300 (EET DST) Message-ID: <3371823D.3CE0@cki.ipri.kiev.ua> Date: Thu, 08 May 1997 10:35:25 +0300 From: Ruslan Shevchenko Reply-To: rssh@cki.ipri.kiev.ua Organization: IPRI X-Mailer: Mozilla 3.01Gold (Macintosh; I; 68K) MIME-Version: 1.0 To: Swee-Chuan Khoo , freebsd-isp@FreeBSD.ORG Subject: Re: UUCP server tuning [Q] References: <33715F49.16A@cki.ipri.kiev.ua> Content-Type: text/plain; charset=koi8-r Content-Transfer-Encoding: 7bit Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk Ruslan Shevchenko wrote: > > Swee-Chuan Khoo wrote: > > > > On Wed, 7 May 1997, Ruslan Shevchenko wrote: > > > When I tried to tune FreeBSD as UUCP server, > > > which accept calls from users. > > > users have domains over our > > > > hi, > > > > i work for an isp and would like to setup > > an UUCP server too using freebsd. any doc that i can > > look at? > > > > uucp good described in info > (info uucp on your system) > > The main headache is a sendmail. > Exists good book about it from O'Reillly, but about low-level stuff. > > The step-to step instruction, hove to setup UUCP server I > was not able find. > Exists sections in FreeBSD-FAQ, but for UUCP client. Next is a particular solution: sendmail.mc: # # Generic BSD4.4 with UUCP support divert(0)dnl VERSIONID(`@(#)freeebsd+uucp.mc $Revision: 1.1.4.3 $') OSTYPE(bsd4.4)dnl DOMAIN(generic)dnl MAILER(local)dnl MAILER(smtp)dnl FEATURE(nodns)dnl FEATURE(nocanonify)dnl MAILER(uucp)dnl FEATURE(mailertable, `hash -o /etc/mailertable')dnl define(`UUCP_RELAY', ucbvax.Berkeley.EDU)dnl define(`BITNET_RELAY', mailhost.Berkeley.EDU)dnl define(`CSNET_RELAY', mailhost.Berkeley.EDU)dnl define(`confCW_FILE', `-o /etc/sendmail.cw')dnl /etc/mailertable: . smtp8:nbki.ipri.kiev.ua zuka.kiev.ua uucp:zuka zuka.ipri.kiev.ua uucp:zuka The question is: what do with the smtp local net, when I want to have only one relay host for all ? (In our example, nbki deffered mail via smtp, it's our mashine, so they can smtp to uor local net) Bur what doo, when the main relay situated not in local-net, and we do not want have two mashine for (local smtp/uucp) ? > > thanx. > > > > +-------------------------------------------+ > > | Swee-Chuan Khoo - System Administrator | > > | 603-7337757 ( voice ) 603-7345577 ( fax ) | > > | sckhoo@tm.net.my, sckhoo@asiapac.net | > > | #include | > > +-------------------------------------------+ > > Live Long and Prosper P.S. uucp-dom in FAQ don't work, may be ask faq-mainteiner change it ? From owner-freebsd-isp Thu May 8 03:27:58 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id DAA19927 for isp-outgoing; Thu, 8 May 1997 03:27:58 -0700 (PDT) Received: from bagpuss.visint.co.uk (bagpuss.vis.net.uk [194.207.134.1]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id DAA19922 for ; Thu, 8 May 1997 03:27:55 -0700 (PDT) Received: from bagpuss.visint.co.uk (bagpuss.vis.net.uk [194.207.134.1]) by bagpuss.visint.co.uk (8.7.5/8.7.3) with SMTP id LAA21784; Thu, 8 May 1997 11:39:49 +0100 (BST) Date: Thu, 8 May 1997 11:39:48 +0100 (BST) From: Stephen Roome To: "Jordan K. Hubbard" cc: freebsd-isp@FreeBSD.ORG Subject: Re: tun0 problem in 3.0-970209-SNAP In-Reply-To: <9983.863028789@time.cdrom.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk [snipped current out of cc: list as what I'm asking now isn't current specific.] On Wed, 7 May 1997, Jordan K. Hubbard wrote: > > Anyway, it's fairly simple: > > > > here's a snip from ifconfig > > tun0: flags=8051 mtu 1524 > > inet 194.222.196.174 --> 158.152.1.222 netmask 0xffffff00 > > Don't do that. ppp should be managing the tun0 device *exclusively* > and you shouldn't be ifconfig'ing it at all. > > > So, I type ifconfig tun0 down, and I can _STILL_ ping the other end of > > the line ? really that doesn't make a lot of sense to me. > > Because you're not supposed to be frobbing tun0 at all, that's why. :) > Control its state entirely through ppp, please. Okay, from here I have a problem: I have a modem connected to this machine and it runs the following ppp -alias -auto myprovider This all works fine and the modem starts up whenever the network is needed as expected and it aliases properly so I have a gateway for other boxes needing net access. Unfortunately just mailing anyone locally sets off a dialup though. I'm assuming I have to either: a) hack at sendmail.cf for a few more weeks. or b) set a dialfilter so that only packets originating from other machines can set the modem dialling. I was looking at the second option, as it appears to be a lot easier. although, using the set dfilter options for ppp doesn't actually seem to work. I don't see any reason why the following shouldn't do what I'm asking. set dfilter 0 deny this.box's.address set dfilter 1 deny 10.0.1.1 (this box's address as well) set dfilter 2 deny 127.0.0.1 set dfilter 3 permit 0/0 0/0 (anything else ?) Any answers? or should I give up on the dfilter approach and take my hammer to sendmail to make it not need the net to deliver local mail. (What's really odd about that is that the mail gets delivered before the line even starts up properly!) -- Steve Roome Technical Systems Manager, Vision Interactive Ltd. E: steve@visint.co.uk M: +44 (0) 976 241 342 T: +44 (0) 117 973 0597 F: +44 (0) 117 923 8522 From owner-freebsd-isp Thu May 8 04:09:35 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id EAA21144 for isp-outgoing; Thu, 8 May 1997 04:09:35 -0700 (PDT) Received: from time.cdrom.com (root@time.cdrom.com [204.216.27.226]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id EAA21139 for ; Thu, 8 May 1997 04:09:30 -0700 (PDT) Received: from time.cdrom.com (jkh@localhost [127.0.0.1]) by time.cdrom.com (8.8.5/8.6.9) with ESMTP id EAA13504; Thu, 8 May 1997 04:09:29 -0700 (PDT) To: Stephen Roome cc: freebsd-isp@FreeBSD.ORG Subject: Re: tun0 problem in 3.0-970209-SNAP In-reply-to: Your message of "Thu, 08 May 1997 11:39:48 BST." Date: Thu, 08 May 1997 04:09:29 -0700 Message-ID: <13501.863089769@time.cdrom.com> From: "Jordan K. Hubbard" Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk > Unfortunately just mailing anyone locally sets off a dialup though. Set up a dfilter to ignore DNS queries and I'll bet this goes away just from that action alone. Jordan From owner-freebsd-isp Thu May 8 07:33:20 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id HAA29945 for isp-outgoing; Thu, 8 May 1997 07:33:20 -0700 (PDT) Received: from chess.inetspace.com ([206.50.163.14]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id HAA29939 for ; Thu, 8 May 1997 07:33:18 -0700 (PDT) Received: (from kgor@localhost) by chess.inetspace.com (8.8.5/8.7.3) id JAA02487; Thu, 8 May 1997 09:31:16 -0500 (CDT) Date: Thu, 8 May 1997 09:31:16 -0500 (CDT) Message-Id: <199705081431.JAA02487@chess.inetspace.com> From: "Kent S. Gordon" To: steve@visint.co.uk CC: jkh@time.cdrom.com, freebsd-isp@FreeBSD.ORG In-reply-to: (message from Stephen Roome on Thu, 8 May 1997 11:39:48 +0100 (BST)) Subject: Re: tun0 problem in 3.0-970209-SNAP Mime-Version: 1.0 (generated by tm-edit 7.105) Content-Type: text/plain; charset=US-ASCII Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk >>>>> "steve" == Stephen Roome writes: > [snipped current out of cc: list as what I'm asking now isn't > current specific.] > Okay, from here I have a problem: I have a modem connected to > this machine and it runs the following ppp -alias -auto > myprovider > This all works fine and the modem starts up whenever the network > is needed as expected and it aliases properly so I have a > gateway for other boxes needing net access. > Unfortunately just mailing anyone locally sets off a dialup > though. Let me guess /etc/resolv.conf points to a machine at your provider. Set up a local caching DNS ( or local secondary for your domain) to stop this. sendmail is doing a DNS lookup before processing the mail. Sendmail could also be reconfigured to not do DNS lookups, but I would suggest the caching DNS server approach. Kent S. Gordon Senior Software Engineer iNetSpace Co. voice: (972)851-3494 fax:(972)702-0384 e-mail:kgor@inetspace.com From owner-freebsd-isp Thu May 8 08:50:45 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id IAA04187 for isp-outgoing; Thu, 8 May 1997 08:50:45 -0700 (PDT) Received: from mail.warp.co.uk (mail.warp.co.uk [194.207.68.5]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id IAA04172; Thu, 8 May 1997 08:50:32 -0700 (PDT) Received: (from tony@localhost) by mail.warp.co.uk (8.8.5/8.8.5) id QAA09361; Thu, 8 May 1997 16:50:38 +0100 (BST) From: Anthony Barlow Message-Id: <199705081550.QAA09361@mail.warp.co.uk> Subject: Script to check if porgram is running To: freebsd-questions@freebsd.org Date: Thu, 8 May 1997 16:50:38 +0100 (BST) Cc: freebsd-isp@freebsd.org X-Mailer: ELM [version 2.4ME+ PL31 (25)] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk Hi Does anyone have a script to check if radiusd is running that can be run from the cron? After a few login failures it seems to exit with the following: exited on signal 10 (core dumped) Regards, Anthony From owner-freebsd-isp Thu May 8 09:32:58 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id JAA06090 for isp-outgoing; Thu, 8 May 1997 09:32:58 -0700 (PDT) Received: from bagpuss.visint.co.uk (bagpuss.vis.net.uk [194.207.134.1]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id JAA06085 for ; Thu, 8 May 1997 09:32:55 -0700 (PDT) Received: from bagpuss.visint.co.uk (bagpuss.vis.net.uk [194.207.134.1]) by bagpuss.visint.co.uk (8.7.5/8.7.3) with SMTP id RAA26425; Thu, 8 May 1997 17:44:53 +0100 (BST) Date: Thu, 8 May 1997 17:44:53 +0100 (BST) From: Stephen Roome To: "Kent S. Gordon" cc: freebsd-isp@freebsd.org Subject: Re: tun0 problem in 3.0-970209-SNAP In-Reply-To: <199705081431.JAA02487@chess.inetspace.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk On Thu, 8 May 1997, Kent S. Gordon wrote: > >>>>> "steve" == Stephen Roome writes: > > > [snipped current out of cc: list as what I'm asking now isn't > > current specific.] > > > Okay, from here I have a problem: I have a modem connected to > > this machine and it runs the following ppp -alias -auto > > myprovider > > > This all works fine and the modem starts up whenever the network > > is needed as expected and it aliases properly so I have a > > gateway for other boxes needing net access. > > > Unfortunately just mailing anyone locally sets off a dialup > > though. > Let me guess /etc/resolv.conf points to a machine at your provider. > Set up a local caching DNS ( or local secondary for your domain) to > stop this. sendmail is doing a DNS lookup before processing the mail. > Sendmail could also be reconfigured to not do DNS lookups, but I would > suggest the caching DNS server approach. This was the decided 'alternative' approach, I've had resolv.conf actually looking at hosts first before bind. This was what confused me so much, as sendmail still DNS lookups on localhost, even sending mail to root@localhost I even tried root@localhost. same result. After this I tried sendmail -bt and got it to parse root@localhost and I can't figure out what on eart the system for determining if an address is local is anyway. It seems to need to use almost every ruleset there is. Thanks anyway, I didn't want to have to take the DNS approach as this is for proposal customers, and I have no idea what they will be wanting to call their local machines... (which will be given addresses in 10.0.1/24 range, can't remember why only class C in the 10. range but it made sense at the time..) Cacheing sorts that, and has it's other benefits, I just didn't want to have to set it up. Yeah, bad excuse, but apart from laziness I want the minimal amount of stuff running on this box. Steve Roome Technical Systems Manager, Vision Interactive Ltd. E: steve@visint.co.uk M: +44 (0) 976 241 342 T: +44 (0) 117 973 0597 F: +44 (0) 117 923 8522 From owner-freebsd-isp Thu May 8 10:43:44 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id KAA09592 for isp-outgoing; Thu, 8 May 1997 10:43:44 -0700 (PDT) Received: from homer.duff-beer.com (mail@homer.duff-beer.com [194.207.51.241]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id KAA09568; Thu, 8 May 1997 10:43:38 -0700 (PDT) Received: (from scot@localhost) by homer.duff-beer.com (8.8.5/8.8.5) id SAA04562; Thu, 8 May 1997 18:42:03 +0100 (BST) Date: Thu, 8 May 1997 18:42:02 +0100 (BST) From: Scot Elliott To: Anthony Barlow cc: freebsd-questions@FreeBSD.ORG, freebsd-isp@FreeBSD.ORG Subject: Re: Script to check if porgram is running In-Reply-To: <199705081550.QAA09361@mail.warp.co.uk> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk On Thu, 8 May 1997, Anthony Barlow wrote: > Hi > > Does anyone have a script to check if radiusd is running that can be run > from the cron? > > After a few login failures it seems to exit with the following: > > exited on signal 10 (core dumped) > > Regards, > Anthony > > Well kind-of... I use the script below to keep PPP up during certain free- call hours. Just change the PPP process name to radiusd: -------------------------------------------------------------------------- #!/usr/bin/perl $PPPcommand="ppp -auto bogo"; open( InPipe, "ps -xa|"); # make sure PPP isn't running for( ) { $thisProc = $_; $thisProc =~ /([0-9]+).+\b[0-9]+\b\s(.*)$/; # $1 is PID; $2 is process name $PID = $1; $NAME=$2; if( "$NAME" eq "$PPPcommand" ) { exit; } } close (InPipe); # OK - PPP not running - so start it and restart socks system($PPPcommand); -------------------------------------------------------------------------- Scot. ----------------------------------------------------------------------------- Scot Elliott scot@poptart.org Tel: +44 (0)171 2322924 ----------------------------------------------------------------------------- Public key available by finger at: finger scot@poptart.org or at: http://www.poptart.org/pgpkey.html From owner-freebsd-isp Thu May 8 11:45:05 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id LAA12789 for isp-outgoing; Thu, 8 May 1997 11:45:05 -0700 (PDT) Received: from starbase.globalpc.net ([207.211.100.102]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id LAA12773 for ; Thu, 8 May 1997 11:44:58 -0700 (PDT) Received: from localhost (agonzalez@localhost) by starbase.globalpc.net (8.8.5/8.8.5) with SMTP id NAA05197 for ; Thu, 8 May 1997 13:45:09 -0500 (CDT) Date: Thu, 8 May 1997 13:45:09 -0500 (CDT) From: Adrian Gonzalez To: freebsd-isp@freebsd.org Subject: Spider Graphics Tarantula MK3D PCI Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk Hello I was just looking at the shopper's guide to graphics cards in the April 97 issue of Computer Shopper. I was impressed with the features of the Tarantula MK3D board, however, I can't find any info on the board, or where I can buy one. I know it uses the S3 Virge VX chipset, so XF86 should work just fine, but I'd like to get more detailed specs, especially about the TV and video capture features. Help from somebody who owns one of these boards would be really appreciated. (Does Spider Gfx have a website?? I can't find info on them) Sorry if this is a bit off-subject, but I can't seem to find any information about this board anywhere, and I've seen it mentioned a couple of times on the list archives. thanks -Adrian From owner-freebsd-isp Thu May 8 12:37:33 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id MAA14985 for isp-outgoing; Thu, 8 May 1997 12:37:33 -0700 (PDT) Received: from ccsales.ccsales.com ([207.137.172.4]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id MAA14978; Thu, 8 May 1997 12:37:31 -0700 (PDT) Received: from ccsales.ccsales.com (ccsales.ccsales.com [207.137.172.4]) by ccsales.ccsales.com (8.8.5/8.6.12) with SMTP id MAA12435; Thu, 8 May 1997 12:37:44 -0700 (PDT) Date: Thu, 8 May 1997 12:37:44 -0700 (PDT) From: Randy Katz To: freebsd-questions@freebsd.org, freebsd-isp@freebsd.org Subject: Remote Mail Server Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk I have a client who wants an inhouse mail server. I could setup a FreeBSD machine and put popper on it. The question is: How do I configure it to dialup the dns server and mail gateway and retrieve the mail. Here is the way it would look: mx1.hiper.net - Mail gateway ns1.hiper.net - DNS Server (same machine) pm1.hiper.net - Livinston Portmaster with modems and radius authentication. mach1.frajjoe.com - Machine on their premises with a modem, network adapter, tied into their network, pop3 configured, delivering mail to local users ... So, mach1.frajjoe.com needs to dialup, periodically, and get the mail directed to frajjoe.com, store it until users grab it through the pop3 server. How is this setup? RAK ------------------------------------------------------------------------------- Randy A. Katz Computer Consultation & Sales 505 S. Beverly Drive, Suite 472 Beverly Hills, CA 90212 (213) 307-9581 http://www.ccsales.com ------------------------------------------------------------------------------- From owner-freebsd-isp Thu May 8 15:13:30 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id PAA22812 for isp-outgoing; Thu, 8 May 1997 15:13:30 -0700 (PDT) Received: from junior.apk.net (root@junior.apk.net [207.54.158.15]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id PAA22806 for ; Thu, 8 May 1997 15:13:24 -0700 (PDT) Received: from as5-19.apk.net (as5-19.apk.net [207.54.160.217]) by junior.apk.net (8.8.5/8.8.5) with SMTP id SAA22072 for ; Thu, 8 May 1997 18:09:53 -0400 (EDT) From: stuart@krivis.com (Stuart Krivis) To: freebsd-isp@freebsd.org Date: Thu, 08 May 1997 22:13:03 GMT Organization: Yoyodyne Propulsion Systems, Inc. Reply-To: stuart@krivis.com Message-ID: <33764fe5.83688291@mail.apk.net> X-Mailer: Forte Agent 1.0/32.390 MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 8bit X-MIME-Autoconverted: from quoted-printable to 8bit by hub.freebsd.org id PAA22807 Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk -- Stuart Krivis stuart@krivis.com [Team OS/2] From owner-freebsd-isp Thu May 8 16:24:31 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id QAA26034 for isp-outgoing; Thu, 8 May 1997 16:24:31 -0700 (PDT) Received: from bsd.fs.bauing.th-darmstadt.de (bsd.fs.bauing.th-darmstadt.de [130.83.63.241]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id QAA26029; Thu, 8 May 1997 16:24:29 -0700 (PDT) Received: from campa.panke.de (anonymous231.ppp.cs.tu-berlin.de [130.149.17.231]) by bsd.fs.bauing.th-darmstadt.de (8.8.5/8.8.5) with ESMTP id BAA05007; Fri, 9 May 1997 01:24:15 +0200 (MET DST) Received: (from wosch@localhost) by campa.panke.de (8.8.5/8.6.12) id BAA10187; Fri, 9 May 1997 01:10:56 +0200 (MET DST) To: Anthony Barlow Cc: freebsd-questions@FreeBSD.ORG, freebsd-isp@FreeBSD.ORG Subject: Re: Script to check if porgram is running References: <199705081550.QAA09361@mail.warp.co.uk> From: Wolfram Schneider Date: 09 May 1997 01:10:53 +0200 In-Reply-To: Anthony Barlow's message of Thu, 8 May 1997 16:50:38 +0100 (BST) Message-ID: Lines: 15 Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk Anthony Barlow writes: > Does anyone have a script to check if radiusd is running that can be run > from the cron? Signal zero is your friend. E.g.: if killall -0 radiusd; then : else radiusd & fi `killall -s radiusd >/dev/null || radiusd &' works too. -- Wolfram Schneider http://www.apfel.de/~wosch/ From owner-freebsd-isp Thu May 8 17:17:24 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id RAA28568 for isp-outgoing; Thu, 8 May 1997 17:17:24 -0700 (PDT) Received: from tok.qiv.com ([204.214.141.211]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id RAA28563 for ; Thu, 8 May 1997 17:17:22 -0700 (PDT) Received: (from uucp@localhost) by tok.qiv.com (8.8.5/8.8.5) with UUCP id TAA26121; Thu, 8 May 1997 19:15:28 -0500 (CDT) Received: from localhost (jdn@localhost) by acp.qiv.com (8.8.5/8.8.5) with SMTP id SAA00942; Thu, 8 May 1997 18:48:31 -0500 (CDT) X-Authentication-Warning: acp.qiv.com: jdn owned process doing -bs Date: Thu, 8 May 1997 18:48:31 -0500 (CDT) From: "Jay D. Nelson" To: Ruslan Shevchenko cc: freebsd-isp@FreeBSD.ORG, dk+@ua.net Subject: Re: UUCP server tuning [Q] In-Reply-To: <3370D353.3337@cki.ipri.kiev.ua> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk If I understand your situation, you want one machine to MX for the kiev.ua domain, but have everything else forwarded to your upstream UUCP connection. I think your solution is to keep DNS and use smtp, except: Define your smart relay host as your upstream provider (the DS macro). DSuucp-dom:smarthost Then set up a mailertable that has an entry like: smarthost: uucp-dom:smarthost If all your mail users are local, all should be well. If not, a mailertable entry like: subdomain.kiev.ua: smtp:host.subdomain.kiev.ua for each of their mail exchangers should solve the problem. I've never done anything like this -- so if anyone has or knows the best way, please let us know. -- Jay On Wed, 7 May 1997, Ruslan Shevchenko wrote: ->When I tried to tune FreeBSD as UUCP server, ->which accept calls from users. ->users have domains over our ->(i.e. ->user: uuu.kiev.ua ->and server is itc.ipri.kiev.ua ->) -> ->Then, during testing I want to have some table, ->and look at it *before* adding the domainname ->to the addreess without dns record. -> ->and then, I want to perform DNS lookup, ->If I not found host in this table. ->so FEAUTURE(nodns) is not for me. -> ->Is exists way to do this ? -> From owner-freebsd-isp Thu May 8 17:47:34 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id RAA29783 for isp-outgoing; Thu, 8 May 1997 17:47:34 -0700 (PDT) Received: from lightning.tbe.net (qmailr@lightning.tbe.net [208.208.122.5]) by hub.freebsd.org (8.8.5/8.8.5) with SMTP id RAA29778 for ; Thu, 8 May 1997 17:47:32 -0700 (PDT) Received: (qmail 2161 invoked from network); 9 May 1997 00:43:33 -0000 Received: from port1.go-pc.com (HELO bc.go-pc.com) (206.20.105.140) by lightning.tbe.net with SMTP; 9 May 1997 00:43:33 -0000 Message-ID: <33727417.134B@bythehand.com> Date: Thu, 08 May 1997 20:47:19 -0400 From: Bernard Courtney Reply-To: bc@bythehand.com Organization: Internet Creations By The Hand X-Mailer: Mozilla 3.01Gold (Win95; I) MIME-Version: 1.0 To: freebsd-isp@freebsd.org Subject: Virtual Domains Under 2.1.5 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk Hi All, One of my customers want's me to set up a virtual server for his compnay. I need step-by-step directions on setting up apache and FreeBSD 2.1.5 to accept connections for the new domain. I greatly appreciate any help you may give. Thanks in advance, Bernard Courtney PS: FreeBSD is the **BEST** OS we have ever run here!!! Keep up the good work! From owner-freebsd-isp Thu May 8 18:18:14 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id SAA00864 for isp-outgoing; Thu, 8 May 1997 18:18:14 -0700 (PDT) Received: from panda.hilink.com.au (panda.hilink.com.au [203.2.144.5]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id SAA00859 for ; Thu, 8 May 1997 18:18:08 -0700 (PDT) Received: (from danny@localhost) by panda.hilink.com.au (8.8.5/8.7.3) id LAA09269; Fri, 9 May 1997 11:23:03 +1000 (EST) Date: Fri, 9 May 1997 11:23:01 +1000 (EST) From: "Daniel O'Callaghan" To: Bernard Courtney cc: freebsd-isp@FreeBSD.ORG Subject: Re: Virtual Domains Under 2.1.5 In-Reply-To: <33727417.134B@bythehand.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk On Thu, 8 May 1997, Bernard Courtney wrote: > One of my customers want's me to set up a virtual server for his > compnay. I need step-by-step directions on setting up apache and > FreeBSD 2.1.5 to accept connections for the new domain. > > I greatly appreciate any help you may give. The best place to get this info is www.apache.org and the Apache documentation. How many virtual web servers do you want? If only 1, then it is just a web server - get Apache, run it, be happy. If you want more than one web server, then you'll need to add IP addresses to your machine. Post more info with a real description of your network setup and FreeBSD machine setup for appropriate answers. Danny From owner-freebsd-isp Thu May 8 18:48:05 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id SAA02169 for isp-outgoing; Thu, 8 May 1997 18:48:05 -0700 (PDT) Received: from lightning.tbe.net (qmailr@lightning.tbe.net [208.208.122.5]) by hub.freebsd.org (8.8.5/8.8.5) with SMTP id SAA02162 for ; Thu, 8 May 1997 18:48:02 -0700 (PDT) Received: (qmail 2599 invoked from network); 9 May 1997 01:44:15 -0000 Received: from port1.go-pc.com (HELO bc.go-pc.com) (206.20.105.140) by lightning.tbe.net with SMTP; 9 May 1997 01:44:15 -0000 Message-ID: <3372824D.63C6@bythehand.com> Date: Thu, 08 May 1997 21:47:57 -0400 From: Bernard Courtney Reply-To: bc@bythehand.com Organization: Internet Creations By The Hand X-Mailer: Mozilla 3.01Gold (Win95; I) MIME-Version: 1.0 To: freebsd-isp@freebsd.org Subject: Re: Virtual Domains Under 2.1.5 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk Thanks, I already have apache installed and running the main domain perfectly. I now have configured it to act a a vrtual server for the secons domain, however I need to set up FreeBSD to respond to another IP address. I am running FreeBSD 2.1.5. Thanks again in advance, Bernard Courtney From owner-freebsd-isp Thu May 8 19:25:35 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id TAA04121 for isp-outgoing; Thu, 8 May 1997 19:25:35 -0700 (PDT) Received: from panda.hilink.com.au (panda.hilink.com.au [203.2.144.5]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id TAA04110 for ; Thu, 8 May 1997 19:25:30 -0700 (PDT) Received: (from danny@localhost) by panda.hilink.com.au (8.8.5/8.8.5) id MAA09615; Fri, 9 May 1997 12:30:45 +1000 (EST) Date: Fri, 9 May 1997 12:30:44 +1000 (EST) From: "Daniel O'Callaghan" To: Bernard Courtney cc: freebsd-isp@FreeBSD.ORG Subject: Re: Virtual Domains Under 2.1.5 In-Reply-To: <3372824D.63C6@bythehand.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk On Thu, 8 May 1997, Bernard Courtney wrote: > Thanks, > > I already have apache installed and running the main domain perfectly. > I now have configured it to act a a vrtual server for the secons domain, > however I need to set up FreeBSD to respond to another IP address. I am > running FreeBSD 2.1.5. OK. What is your network setup? I have my www server on a subnet (mask 255.255.255.240) and a route to a class C network with the web servers on it. I have each of the ipaddresses 203.8.13.{1-254} aliased onto lo0 with commands like below in /etc/ipaliases, run at boot time. ifconfig lo0 203.8.13.1 netmask 0xfffffff alias If you have just a class C network, and you did not subnet it, so your PPP dialups all use proxy arp etc, you'll have to put your aliases onto your ethernet interface: ifconfig ed0 203.8.13.1 netmask 0xfffffff alias Note that while the primary ifconfig for the ethernet interface uses a correct netmask, the aliases should use 0xffffffff (255.255.255.255) In 2.1.7, there is a feature for /etc/start_if.ed0 which can be just a series of ifconfig statements, to be used instead of the ifconfig args definition in /etc/sysconfig. Danny From owner-freebsd-isp Thu May 8 23:19:24 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id XAA13947 for isp-outgoing; Thu, 8 May 1997 23:19:24 -0700 (PDT) Received: from time.cdrom.com (root@time.cdrom.com [204.216.27.226]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id XAA13934 for ; Thu, 8 May 1997 23:19:21 -0700 (PDT) Received: from time.cdrom.com (jkh@localhost [127.0.0.1]) by time.cdrom.com (8.8.5/8.6.9) with ESMTP id XAA16759; Thu, 8 May 1997 23:19:21 -0700 (PDT) To: jbryant@tfs.net cc: freebsd-isp@FreeBSD.ORG Subject: Re: ESCAPE! Florida Cruise/Vacation $598/4 People In-reply-to: Your message of "Fri, 09 May 1997 00:16:09 CDT." <199705090516.AAA00327@argus> Date: Thu, 08 May 1997 23:19:20 -0700 Message-ID: <16755.863158760@time.cdrom.com> From: "Jordan K. Hubbard" Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk > given that most of the people on this mailing list are either > operating system programmers, ISP owners, ISP sysadmins, or people > looking for technical help with the FreeBSD Unix operating system, we > must not overlook that the spammers are now using our mailing list to > further their scams... I agree. However, I think that waiting for congress to face, let alone deal with, this problem is a strategy guaranteed to have all of us reading spam in ever increasing quantities, right up to the start of the next millenium and probably well beyond it. Government is just not going to move as fast as we need it to move one this, and while it's certainly a commendable goal to push this into the limited scope of awareness most congresscritters seem to possess, it's just not a solution for the short-to-medium term. We need to do this in *parallel* with a set of more realistic initiatives in order for the quality of our lives to improve anytime soon. Such realistic initiatives, IMHO, are: 1. Registering any and all spammers with Paul Vixie's spammer blacklist (http://spam.abuse.net/spam/). He, at least, is one of the very few people trying to organize this process somewhat. 2. Blocking, as ISPs, any and all traffic from known spammers. THIS IS CRUCIAL! By denying the spammers access to your customer base, you are achieving two objectives: First, you are sparing your customers from the ravages of SPAM. Second, you are imposing a harsh penalty on any other ISP who might host spammers since you're blocking all traffic from them. Refuse to peer with ISPs who host spammers or otherwise do business with them. Basically, *make life as hard as possible* for spammers or spam-hosting ISPs so that the cost-effectiveness of this medium is eroded for them. Only once the monetary incentive is removed, or the punishments become severe enough, will this stop (e.g. robbing a Brink's truck may be "profitable", but the likelyhood of being shot to death in the process or hounded to the ends of the earth afterwards makes it considerably less desirable). 3. START EXCHANGING MORE INFORMATION! It's an all-too-common scenario now that notorious spammers simply jump from one ISP to another. Wore out your welcome at ATT.NET? No problem! IBM.NET will be *happy* to take your cash! IBM.NET now starting to get snippy after that last 100,000 entry spam? No problem, there are dozens of ISPs who are so desparate for a buck that they'd sell services to Jeffrey Dahmer for his Shrunken Heads Page if he had the money. This kind of money-before-everything-else- and-damn-the-ethics approach to selling services has got to stop, and you guys are the only ones to stop it. Consider also that most sports or professions which are inherantly dangerous and/or have a high abuse potential are either: a) Regulated by goverment. b) Self-regulated. And having the luxury of being in section (b) is primarily the result of taking such effective self-policing action that the government never feels compelled to step in. Blow it and you'll have Big Brother breathing down your neck and only yourselves to blame (not that this will stop ISPs from crying from the rafters about what a poor, abused minority they are when it happens :). A good example of (b) is the International Hang-gliding Association. They have their own rules and regs, and they preside over a fairly dangerous sport (strapping a kite to your back and jumping off of tall cliffs is, I'd say, a risky hobby). Well, about 10 years ago if not a little longer, the FAA (Federal Aviation Administration) was considering making hang gliders licensed craft and imposing a whole set of regulations on them to ensure that they were airworthy, the pilots could handle them, etc. The association saw this as an undesirable scenario given that such certification could only drive the costs of the sport up considerably, so they stepped in with a set of rules *even more stringent* than the FAA proposed rulings and they enforced them at all landing sites, using volunteer instructor pilots. So successful was this program that the FAA backed off and actually congradulated the IHGA on its degree of responsibility and effectiveness, citing that the IHGA was now policing the sport even better than the FAA could ever hope to manage and, thus, needed no government oversite in the matter. Now the ISPs can take it one of two ways: 1. You can continue to jealously guard your customer lists and refuse to talk to any other ISPs since you know they're just out to steal your precious bodily fluids anyway and can't be trusted. 2. You can realize that selling services to spammers is a truly bad thing and it's time for you to start passing blacklists around, just as various merchants (whom, I might add, are also in competition with one another but grew up and got past arguing that point) do with bad- check writers and notorious forgers. You can generally see the array of pictures up behind the sales counter. You could even put the equivalent of an "IHGA" together to manage the blacklist and publish a newsletter of relevant topics. But first and before any of this can happen, the ISPs need to grow up and stop trying to poke eachother in the eyes with sticks and start cooperating. Sadly, my perception of about 80% of the ISP market is that they wouldn't paddle on the same side of the boat if they needed to do so in order to escape an approaching tsunami, preferring instead to drown rather than give eachother the time of day. That's not only sad, but if spammers take over the internet and break it as a reasonable medium, it will be *solely* through poor business practices (and even less ethics) like this, and the ISPs will be squarely to blame for opening the gates to the barbarian hordes in exchange for a piece of the action on their raping and pillaging. Jordan From owner-freebsd-isp Fri May 9 03:36:52 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id DAA25892 for isp-outgoing; Fri, 9 May 1997 03:36:52 -0700 (PDT) Received: from homer.duff-beer.com (mail@homer.duff-beer.com [194.207.51.241]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id DAA25872; Fri, 9 May 1997 03:36:47 -0700 (PDT) Received: (from scot@localhost) by homer.duff-beer.com (8.8.5/8.8.5) id LAA05560; Fri, 9 May 1997 11:36:33 +0100 (BST) Date: Fri, 9 May 1997 11:36:33 +0100 (BST) From: Scot Elliott To: Wolfram Schneider cc: Anthony Barlow , freebsd-questions@FreeBSD.ORG, freebsd-isp@FreeBSD.ORG Subject: Re: Script to check if porgram is running In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk On 9 May 1997, Wolfram Schneider wrote: > if killall -0 radiusd; then : > else > radiusd & > fi My system doesn't have a killall command - I assume it's like the Linux version. So is it available as a FreeBSD package then? ----------------------------------------------------------------------------- Scot Elliott scot@poptart.org Tel: +44 (0)171 2322924 ----------------------------------------------------------------------------- Public key available by finger at: finger scot@poptart.org or at: http://www.poptart.org/pgpkey.html From owner-freebsd-isp Fri May 9 06:24:18 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id GAA01254 for isp-outgoing; Fri, 9 May 1997 06:24:18 -0700 (PDT) Received: from mail.cs.tu-berlin.de (root@mail.cs.tu-berlin.de [130.149.17.13]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id GAA01235; Fri, 9 May 1997 06:24:11 -0700 (PDT) Received: from ole.cs.tu-berlin.de (wosch@ole.cs.tu-berlin.de [130.149.28.1]) by mail.cs.tu-berlin.de (8.8.5/8.8.5) with ESMTP id PAA08253; Fri, 9 May 1997 15:24:05 +0200 (MET DST) From: Wolfram Schneider Received: (from wosch@localhost) by ole.cs.tu-berlin.de (8.8.5/8.8.5) id PAA16168; Fri, 9 May 1997 15:24:03 +0200 (MET DST) Message-Id: <199705091324.PAA16168@ole.cs.tu-berlin.de> Subject: Re: Script to check if porgram is running To: scot@poptart.org (Scot Elliott) Date: Fri, 9 May 1997 15:24:01 +0200 (MET DST) Cc: wosch@apfel.de, tony@mail.warp.co.uk, freebsd-questions@FreeBSD.ORG, freebsd-isp@FreeBSD.ORG In-Reply-To: from "Scot Elliott" at May 9, 97 11:36:33 am X-Mailer: ELM [version 2.4 PL25] MIME-Version: 1.0 Content-Transfer-Encoding: 7bit Content-Type: text/plain; charset=US-ASCII Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk Scot Elliott > My system doesn't have a killall command - I assume it's like the Linux > version. So is it available as a FreeBSD package then? Killall is part of the base system since 1995/06/25. The current sources are available at ftp://ftp.freebsd.org/pub/FreeBSD/FreeBSD-current/src/usr.bin/killall/ -- Wolfram Schneider http://www.apfel.de/~wosch/ From owner-freebsd-isp Fri May 9 07:34:52 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id HAA06695 for isp-outgoing; Fri, 9 May 1997 07:34:52 -0700 (PDT) Received: from ns2.harborcom.net (root@ns2.harborcom.net [206.158.4.4]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id HAA06688; Fri, 9 May 1997 07:34:49 -0700 (PDT) Received: from localhost (bradley@localhost) by ns2.harborcom.net (8.8.5/8.8.5) with SMTP id KAA16476; Fri, 9 May 1997 10:34:26 -0400 (EDT) Date: Fri, 9 May 1997 10:34:19 -0400 (EDT) From: Bradley Dunn X-Sender: bradley@ns2.harborcom.net To: Randy Katz cc: freebsd-questions@FreeBSD.ORG, freebsd-isp@FreeBSD.ORG Subject: Re: Remote Mail Server In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk On Thu, 8 May 1997, Randy Katz wrote: > So, mach1.frajjoe.com needs to dialup, periodically, and get the mail > directed to frajjoe.com, store it until users grab it through the pop3 > server. How is this setup? UUCP. There is an O'Reilly book called _Using and Managing UUCP_ I think. pbd From owner-freebsd-isp Fri May 9 08:06:46 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id IAA08347 for isp-outgoing; Fri, 9 May 1997 08:06:46 -0700 (PDT) Received: from federation.addy.com (federation.addy.com [207.239.68.2]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id IAA08342 for ; Fri, 9 May 1997 08:06:44 -0700 (PDT) Received: from freyes.dh.i-2000.com (slip166-72-9-215.il.us.ibm.net [166.72.9.215]) by federation.addy.com (8.8.5/8.6.12) with SMTP id LAA08270 for ; Fri, 9 May 1997 11:06:41 -0400 (EDT) Message-Id: <199705091506.LAA08270@federation.addy.com> From: "Francisco Reyes" To: "FreebSD ISP list" Date: Fri, 09 May 97 11:04:17 -0400 Reply-To: "Francisco Reyes" Priority: Normal X-Mailer: PMMail 1.91 For OS/2 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit Subject: Need host for mailing list Sender: owner-isp@FreeBSD.org X-Loop: FreeBSD.org Precedence: bulk I would like to run a mailing list for a client, but neither my ISP or my WEB hosting company do it. I have never managed a mailing list before so excuse me if I am asking for the obvious. I will need to be able to administer the list myself. Some of the requirements are: close registration (I want to register users since it will be a paid service), open unsubscription (anyone can drop him/herself out of the list, or at the end of their contract I would get them out). Please respond by email since I am not on this list. Thanks. From owner-freebsd-isp Fri May 9 13:10:06 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id NAA26349 for isp-outgoing; Fri, 9 May 1997 13:10:06 -0700 (PDT) Received: from tyger.inna.net (root@tyger.inna.net [206.151.66.1]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id NAA26314 for ; Fri, 9 May 1997 13:09:59 -0700 (PDT) Received: from caught.inna.net (caught.inna.net [206.151.66.7]) by tyger.inna.net (8.8.5/8.7.3) with SMTP id QAA01251 for ; Fri, 9 May 1997 16:12:41 -0400 (EDT) Date: Fri, 9 May 1997 16:09:55 -0400 (EDT) From: Thomas Arnold To: freebsd-isp@freebsd.org Subject: Imapd Problem Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk IMapd has been working fine here for a while. We switched over to using ssh unstead of rsh and imapd is now slower then heck on initial start and loading new mailfolders. Since rsh no longer works I symlinked ssh to rsh. That didn't help. Any other suggestions? Imap client programs work just very slow. I tried compiling a new imapd and it does the same thing except I also get the new error that it cant create lockfiles. Suggestions and whaps with a LART are appreciated. +-----------------------------------------------+ : Tom Arnold - No relation to Rosanne : : SysAdmin/Pres - TBI, Ltd ( inna.net ) : : The Middle Peninsula's Internet Connection : +-----------------------------------------------+ From owner-freebsd-isp Fri May 9 17:34:21 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id RAA08256 for isp-outgoing; Fri, 9 May 1997 17:34:21 -0700 (PDT) Received: from ganymede.arisia.net (ganymede.arisia.net [207.100.94.11]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id RAA08232 for ; Fri, 9 May 1997 17:34:19 -0700 (PDT) Received: from mars (ppp-jup-256.arisia.net [207.100.94.12]) by ganymede.arisia.net (8.8.5/8.8.5) with SMTP id UAA02358 for ; Fri, 9 May 1997 20:34:21 -0400 (EDT) Message-Id: <2.2.32.19970510003446.01f17e6c@207.100.94.11> X-Sender: msv@207.100.94.11 X-Mailer: Windows Eudora Pro Version 2.2 (32) Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Date: Fri, 09 May 1997 20:34:46 -0400 To: freebsd-isp@FreeBSD.ORG From: "Mark S. Velasquez" Subject: Re: Virtual Domains Under 2.1.5 Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk At 08:47 PM 5/8/97 -0400, you wrote: >Hi All, > >One of my customers want's me to set up a virtual server for his >compnay. I need step-by-step directions on setting up apache and >FreeBSD 2.1.5 to accept connections for the new domain. I've been playing with this all week. Unfortunately there seems to be a problem with FreeBSD 2.1.5R and IP aliasing on my system(or I should with its interaction with squid-1.1.10). Its been exhibit very weird behavior( works if accesssed via the proxy, BUT, only if the lo0 interface was aliased. if the de0 interface is aliased, it fails totally). I reinstalled on Solaris 2.5.1 and, so far, its been working... From owner-freebsd-isp Fri May 9 18:07:49 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id SAA09442 for isp-outgoing; Fri, 9 May 1997 18:07:49 -0700 (PDT) Received: from buffnet4.buffnet.net (buffnet4.buffnet.net [205.246.19.13]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id SAA09437 for ; Fri, 9 May 1997 18:07:45 -0700 (PDT) Received: from buffnet11.buffnet.net (shovey@buffnet11.buffnet.net [205.246.19.55]) by buffnet4.buffnet.net (8.7.5/8.7.3) with SMTP id VAA10199; Fri, 9 May 1997 21:09:01 -0400 (EDT) Date: Fri, 9 May 1997 21:08:31 -0400 (EDT) From: Steve To: Thomas Arnold cc: freebsd-isp@FreeBSD.ORG Subject: Re: Imapd Problem In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk On Fri, 9 May 1997, Thomas Arnold wrote: > > IMapd has been working fine here for a while. > We switched over to using ssh unstead of rsh and imapd is now slower then > heck on initial start and loading new mailfolders. > > Since rsh no longer works I symlinked ssh to rsh. That didn't help. Any > other suggestions? Imap client programs work just very slow. > > I tried compiling a new imapd and it does the same thing except I also get > the new error that it cant create lockfiles. > > Suggestions and whaps with a LART are appreciated. I think ssh encrypts everything, and I think when pine does an imap it hauls the works over, thus you are encrypt and decrypting your entire folder.. I think... From owner-freebsd-isp Fri May 9 18:44:18 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id SAA10768 for isp-outgoing; Fri, 9 May 1997 18:44:18 -0700 (PDT) Received: from panda.hilink.com.au (panda.hilink.com.au [203.2.144.5]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id SAA10762 for ; Fri, 9 May 1997 18:44:15 -0700 (PDT) Received: (from danny@localhost) by panda.hilink.com.au (8.8.5/8.8.5) id LAA16871; Sat, 10 May 1997 11:50:16 +1000 (EST) Date: Sat, 10 May 1997 11:50:15 +1000 (EST) From: "Daniel O'Callaghan" To: "Mark S. Velasquez" cc: freebsd-isp@FreeBSD.ORG Subject: Re: Virtual Domains Under 2.1.5 In-Reply-To: <2.2.32.19970510003446.01f17e6c@207.100.94.11> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk On Fri, 9 May 1997, Mark S. Velasquez wrote: > I've been playing with this all week. Unfortunately there seems to be a > problem with FreeBSD 2.1.5R and IP aliasing on my system(or I should with > its interaction with squid-1.1.10). Its been exhibit very weird behavior( > works if accesssed via the proxy, BUT, only if the lo0 interface was > aliased. if the de0 interface is aliased, it fails totally). You need to make sure there are routes via lo0 to the aliased addresses, or squid won't be able to connect. This is probably a bug, but the workaraound is easy. Danny From owner-freebsd-isp Fri May 9 22:48:22 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id WAA20636 for isp-outgoing; Fri, 9 May 1997 22:48:22 -0700 (PDT) Received: from mixcom.mixcom.com (mixcom.mixcom.com [198.137.186.100]) by hub.freebsd.org (8.8.5/8.8.5) with SMTP id WAA20631 for ; Fri, 9 May 1997 22:48:13 -0700 (PDT) Received: by mixcom.mixcom.com (8.6.12/2.2) id AAA25545; Sat, 10 May 1997 00:47:07 -0500 Received: from p75.mixcom.com(198.137.186.25) by mixcom.mixcom.com via smap (V1.3) id sma025531; Sat May 10 00:46:38 1997 Message-Id: <3.0.32.19970510004921.00bb6064@mixcom.com> X-Sender: sysop@mixcom.com X-Mailer: Windows Eudora Pro Version 3.0 (32) Date: Sat, 10 May 1997 00:49:21 -0500 To: "Jordan K. Hubbard" From: "Jeffrey J. Mountin" Subject: Regulating Mail was (Re: ESCAPE! blah...) Cc: jbryant@tfs.net, freebsd-isp@FreeBSD.ORG Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk At 11:19 PM 5/8/97 -0700, Jordan K. Hubbard wrote: >I agree. However, I think that waiting for congress to face, let >alone deal with, this problem is a strategy guaranteed to have all of >us reading spam in ever increasing quantities, right up to the start >of the next millenium and probably well beyond it. And in the mean time more and more banwidth/clock cycles will be wasted, not to mention users either do or will be paying to received them when residential phone service is metered and some areas are. --snip-- >Such realistic initiatives, IMHO, are: > > 1. Registering any and all spammers with Paul Vixie's > spammer blacklist (http://spam.abuse.net/spam/). He, at least, > is one of the very few people trying to organize this process > somewhat. > > 2. Blocking, as ISPs, any and all traffic from known spammers. > THIS IS CRUCIAL! By denying the spammers access to your customer > base, you are achieving two objectives: First, you are sparing > your customers from the ravages of SPAM. Second, you are imposing > a harsh penalty on any other ISP who might host spammers since > you're blocking all traffic from them. The problem with this is they relay mail off other network's server and THIS IS THE BIGGEST PART OF THE PROBLEM. Only local servers and customers should be able to bounce mail off your servers. > Refuse to peer with ISPs who host spammers or otherwise do business > with them. Basically, *make life as hard as possible* for > spammers or spam-hosting ISPs so that the cost-effectiveness of > this medium is eroded for them. Only once the monetary > incentive is removed, or the punishments become severe > enough, will this stop (e.g. robbing a Brink's truck may be > "profitable", but the likelyhood of being shot to death in the > process or hounded to the ends of the earth afterwards > makes it considerably less desirable). This is difficult and can cost business. We block hotmail right now and thankfully the few customers that have friends/associates that are trying to send mail and cannot are understanding of our position. > 3. START EXCHANGING MORE INFORMATION! It's an all-too-common > scenario now that notorious spammers simply jump from one > ISP to another. Wore out your welcome at ATT.NET? No > problem! IBM.NET will be *happy* to take your cash! > IBM.NET now starting to get snippy after that last 100,000 > entry spam? No problem, there are dozens of ISPs who > are so desparate for a buck that they'd sell services to > Jeffrey Dahmer for his Shrunken Heads Page if he had > the money. This kind of money-before-everything-else- > and-damn-the-ethics approach to selling services has got > to stop, and you guys are the only ones to stop it. This would be good. I'd be willing to share the user's name and credit card name (if different) with other ISP, as well as why they are blacklisted. --snip part about hang gliding (something I want to do... someday)-- >Now the ISPs can take it one of two ways: > >1. You can continue to jealously guard your customer lists and > refuse to talk to any other ISPs since you know they're just out > to steal your precious bodily fluids anyway and can't be trusted. So far there have been no problems for myself dealing with other local ISPs, whether it was a problem user or what ever. >2. You can realize that selling services to spammers is a truly bad > thing and it's time for you to start passing blacklists around, just > as various merchants (whom, I might add, are also in competition with > one another but grew up and got past arguing that point) do with bad- > check writers and notorious forgers. You can generally see the > array of pictures up behind the sales counter. Have to remember that customers will go where they will. And if they do leave, don't alienate them. Funny thing is today we met with our TCG rep and were talking about the 3 T1 we have over Time Warner's fiber. They don't mind the competition and know that we need the redundancy. We prefer either of them, but we don't recommend Ameritech. ;-) Bashing other providers is a no-no, but if someone want to give us a testimonial, we're willing to use it. >You could even put the equivalent of an "IHGA" together to manage the >blacklist and publish a newsletter of relevant topics. > >But first and before any of this can happen, the ISPs need to grow up >and stop trying to poke eachother in the eyes with sticks and start >cooperating. Sadly, my perception of about 80% of the ISP market is >that they wouldn't paddle on the same side of the boat if they needed >to do so in order to escape an approaching tsunami, preferring instead >to drown rather than give eachother the time of day. >That's not only sad, but if spammers take over the internet and break >it as a reasonable medium, it will be *solely* through poor business >practices (and even less ethics) like this, and the ISPs will be >squarely to blame for opening the gates to the barbarian hordes in >exchange for a piece of the action on their raping and pillaging. It is quite clear here that my resignation will be tendered minutes after I hear that we will support mass mailing. My only plea to other is to stop being used as a relay. Earthlink is going after CyberPromo, but they have yet to stop allowing relay. Ditto for Netcom. ------------------------------------------- Jeff Mountin - System/Network Administrator jeff@mixcom.net MIX Communications Serving the Internet since 1990 From owner-freebsd-isp Fri May 9 23:13:59 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id XAA21892 for isp-outgoing; Fri, 9 May 1997 23:13:59 -0700 (PDT) Received: from border.besys.net.au (border.besys.net.au [203.30.15.129]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id XAA21884 for ; Fri, 9 May 1997 23:13:48 -0700 (PDT) Received: from ingold.besys.net.au (ingold@ingold.besys.net.au [203.30.15.130]) by border.besys.net.au (8.7.6/8.7.3) with SMTP id QAA06824 for ; Sat, 10 May 1997 16:20:33 +1000 (EST) Message-Id: <3.0.1.32.19970510160656.007a5760@mail.besys.net.au> X-Sender: ingold@mail.besys.net.au X-Mailer: Windows Eudora Light Version 3.0.1 (32) Date: Sat, 10 May 1997 16:06:56 +1000 To: freebsd-isp@FreeBSD.ORG From: Peter Champas Subject: Problems with installed Peal 5.0xx In-Reply-To: <3371823D.3CE0@cki.ipri.kiev.ua> References: <33715F49.16A@cki.ipri.kiev.ua> Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk Hiya all, HELP! I just installed perl 5.xx on my system, it seems to run the scrips ok but as it does, I get this warning. I have seen it b4 but for the life of me can't remember how to fix it. I am running Freebsd v2.1.5. here is the warning fresh from a past :) --------- warning: setlocale(LC_CTYPE, "") failed. warning: LC_ALL = "(null)", LC_CTYPE = "(null)", LANG = "en_US.ISO_8859-1", warning: falling back to the "C" locale. ---------- Thanks for any help. o--------------------- Peter Champas --------------------o /*\ Life is a challange.. Just ask your local ISP /*\ /* *\ ingold@besys.net.au /* *\ o-----o-------- http://www.besys.net.au/~ingold --------o------o From owner-freebsd-isp Fri May 9 23:38:56 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id XAA22862 for isp-outgoing; Fri, 9 May 1997 23:38:56 -0700 (PDT) Received: from arka.mtl.pl (root@arka.mtl.pl [195.116.4.4]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id XAA22856 for ; Fri, 9 May 1997 23:38:50 -0700 (PDT) Received: from arka.mtl.pl (rh@arka.mtl.pl [195.116.4.4]) by arka.mtl.pl (8.8.5/8.6.12) with SMTP id IAA09618; Sat, 10 May 1997 08:40:46 GMT Date: Sat, 10 May 1997 08:40:46 +0000 () From: Robert Heron To: "Mark S. Velasquez" cc: freebsd-isp@FreeBSD.ORG Subject: Re: Virtual Domains Under 2.1.5 In-Reply-To: <2.2.32.19970510003446.01f17e6c@207.100.94.11> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk On Fri, 9 May 1997, Mark S. Velasquez wrote: > >One of my customers want's me to set up a virtual server for his > >compnay. I need step-by-step directions on setting up apache and > >FreeBSD 2.1.5 to accept connections for the new domain. > > I've been playing with this all week. Unfortunately there seems to be a > problem with FreeBSD 2.1.5R and IP aliasing on my system(or I should with > its interaction with squid-1.1.10). Its been exhibit very weird behavior( > works if accesssed via the proxy, BUT, only if the lo0 interface was > aliased. if the de0 interface is aliased, it fails totally). Yes, I've had similar problems with lo0 interface aliasing. It doesn't work well. Instead, I create more lo* interfaces in kernel and setup one virtual server on each lo* interface. I don't know if it is a good solution, but it works with no problems. Robert Heron From owner-freebsd-isp Sat May 10 03:43:40 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id DAA01127 for isp-outgoing; Sat, 10 May 1997 03:43:40 -0700 (PDT) Received: from homer.duff-beer.com (mail@homer.duff-beer.com [194.207.51.241]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id DAA01122 for ; Sat, 10 May 1997 03:43:36 -0700 (PDT) Received: (from scot@localhost) by homer.duff-beer.com (8.8.5/8.8.5) id LAA08309; Sat, 10 May 1997 11:43:11 +0100 (BST) Date: Sat, 10 May 1997 11:43:10 +0100 (BST) From: Scot Elliott To: "Mark S. Velasquez" cc: freebsd-isp@FreeBSD.ORG Subject: Re: Virtual Domains Under 2.1.5 In-Reply-To: <2.2.32.19970510003446.01f17e6c@207.100.94.11> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk On Fri, 9 May 1997, Mark S. Velasquez wrote: > At 08:47 PM 5/8/97 -0400, you wrote: > >Hi All, > > > >One of my customers want's me to set up a virtual server for his > >compnay. I need step-by-step directions on setting up apache and > >FreeBSD 2.1.5 to accept connections for the new domain. > > > I've been playing with this all week. Unfortunately there seems to be a > problem with FreeBSD 2.1.5R and IP aliasing on my system(or I should with > its interaction with squid-1.1.10). Its been exhibit very weird behavior( > works if accesssed via the proxy, BUT, only if the lo0 interface was > aliased. if the de0 interface is aliased, it fails totally). > > I reinstalled on Solaris 2.5.1 and, so far, its been working... > > I've been using FreeBSD 2.1.5R for ages now with a fair number of both IP-based and Non-IP based virtual servers. The script I use to make the OS listen to it's other addresses is: --------------------------------------------------------------------- #!/bin/sh # # file: /usr/local/etc/rc.d/virtual-ips.sh # sets up the aliased IP addresses # IPs are as follows: # # 243 = PopTart.org # 242 = warehouse.co.uk # 244 = extreme.org.uk # 245 = i-love-stephen-gately.ie for haddr in 242 243 244 245; do /sbin/ifconfig ed0 inet 194.207.51.$haddr netmask 255.255.255.255 alias done ------------------------------------------------------------------------- You should make sure that routing and arp-table entries appear for the new adresses, or you won't be able to ping them (they may only appear the first time data is received for the new address, so ping them from localhost first)... Part of my netstat -r output is: Destination Gateway Flags Refs Use Netif Expire 194.207.51.243 0:20:18:60:a9:a6 UHLW 0 4 lo0 => 194.207.51.243/32 link#1 UC 0 0 And my arp -a output: ? (194.207.51.243) at 0:20:18:60:a9:a6 permanent I used so have a lot of trouble getting the other IPs working, but it seems that if you locally ping the address then it comes to life occasionally ;-) Scot. ----------------------------------------------------------------------------- Scot Elliott scot@poptart.org Tel: +44 (0)171 2322924 ----------------------------------------------------------------------------- Public key available by finger at: finger scot@poptart.org or at: http://www.poptart.org/pgpkey.html From owner-freebsd-isp Sat May 10 08:29:06 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id IAA08060 for isp-outgoing; Sat, 10 May 1997 08:29:06 -0700 (PDT) Received: from aviion.ts.kiev.ua (aviion.ts.kiev.ua [193.124.229.12]) by hub.freebsd.org (8.8.5/8.8.5) with SMTP id IAA08041 for ; Sat, 10 May 1997 08:29:01 -0700 (PDT) Received: from nbki.ipri.kiev.ua by aviion.ts.kiev.ua with ESMTP id QAA20618; (8.6.11/zah/2.1) Sat, 10 May 1997 16:04:52 GMT Received: from cki.ipri.kiev.ua by nbki.ipri.kiev.ua with ESMTP id QAA11400; (8.6.9/zah/1.1) Sat, 10 May 1997 16:51:15 +0100 Received: from 194.44.146.14 (mac.ipri.kiev.ua [194.44.146.14]) by cki.ipri.kiev.ua (8.7.6/8.7.3) with SMTP id RAA00293; Sat, 10 May 1997 17:02:56 +0300 (EET DST) Message-ID: <33745FEF.3BD3@cki.ipri.kiev.ua> Date: Sat, 10 May 1997 16:03:38 +0300 From: Ruslan Shevchenko Reply-To: rssh@cki.ipri.kiev.ua Organization: IPRI X-Mailer: Mozilla 3.01Gold (Macintosh; I; 68K) MIME-Version: 1.0 To: "Jay D. Nelson" CC: freebsd-isp@FreeBSD.ORG, dk+@ua.net Subject: Re: UUCP server tuning [Q] References: Content-Type: text/plain; charset=koi8-r Content-Transfer-Encoding: 7bit Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk Jay D. Nelson wrote: > > If I understand your situation, you want one machine to MX for the kiev.ua > domain, but have everything else forwarded to your upstream UUCP > connection. > No. The proble, that i want use: 1. smtp to outside world (to provider, with or without DNS) 2. smtp to my local net (with DNS!!!) 3. uucp and all oo *one* mashine. but uucp require nodns. So, I need in : 1. table lookup without DNS 2. if NOT FOUND --- DNS, latest table lookup. Is it possible ? From owner-freebsd-isp Sat May 10 09:26:54 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id JAA10058 for isp-outgoing; Sat, 10 May 1997 09:26:54 -0700 (PDT) Received: from burka.carrier.kiev.ua (snar@burka.carrier.kiev.ua [193.193.193.100]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id JAA10053 for ; Sat, 10 May 1997 09:26:47 -0700 (PDT) Received: (from snar@localhost) by burka.carrier.kiev.ua (8.8.5/8.who.cares.1) id TAA09523 for freebsd-isp@freebsd.org; Sat, 10 May 1997 19:26:27 +0300 (EET DST) From: Alexander Snarskii Message-Id: <199705101626.TAA09523@burka.carrier.kiev.ua> Subject: Any whois proxy ? To: freebsd-isp@freebsd.org Date: Sat, 10 May 1997 19:26:26 +0300 (EET DST) Content-type: text/plain; charset=koi8-r X-Mailer: ELM [version 2.4 PL24] Content-Type: text Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk May be that question is out of topic, but: does anbody knows about any whois caching proxy server ? -- Alexander Snarskii the source code is included. From owner-freebsd-isp Sat May 10 09:52:04 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id JAA11030 for isp-outgoing; Sat, 10 May 1997 09:52:04 -0700 (PDT) Received: from tok.qiv.com ([204.214.141.211]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id JAA11025 for ; Sat, 10 May 1997 09:52:02 -0700 (PDT) Received: (from uucp@localhost) by tok.qiv.com (8.8.5/8.8.5) with UUCP id LAA02020; Sat, 10 May 1997 11:48:41 -0500 (CDT) Received: from localhost (jdn@localhost) by acp.qiv.com (8.8.5/8.8.5) with SMTP id LAA00537; Sat, 10 May 1997 11:45:29 -0500 (CDT) X-Authentication-Warning: acp.qiv.com: jdn owned process doing -bs Date: Sat, 10 May 1997 11:45:28 -0500 (CDT) From: "Jay D. Nelson" To: Ruslan Shevchenko cc: freebsd-isp@FreeBSD.ORG, dk+@ua.net Subject: Re: UUCP server tuning [Q] In-Reply-To: <33745FEF.3BD3@cki.ipri.kiev.ua> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk I'm doing the same thing. I haven't worried about DNS. We have hosts that are unknown to DNS so I have my /etc/resolv.conf set up with a lookup order of hosts, bind. If sendmail can resolve the address, it makes no difference if the destination is internal or external. The exception is UUCP. I use a mailertable for my UUCP neighbors, most with the uucp-dom mailer. I think if you rebuild your sendmail.cf with the uucp mailer and put the hosts you want to reach through UUCP in the mailer table, you'll have what you want. If sendmail can resolve to a host in the mailertable, it will use whatever mailer you've specified. In other words, I'm using DNS and UUCP with no problems. Mailertable: acp.qiv.com uucp-dom:acp charon uucp-dom:acp cityhall uucp:cityhall My mc file: divert(0)dnl VERSIONID(`@(#)tok-bsd.mc 8.2 (Berkeley) 3/12/97') OSTYPE(bsd4.4)dnl FEATURE(mailertable)dnl FEATURE(local_procmail)dnl MASQUERADE_AS(qiv.com)dnl MAILER(local)dnl MAILER(smtp)dnl MAILER(uucp)dnl -- Jay On Sat, 10 May 1997, Ruslan Shevchenko wrote: ->Jay D. Nelson wrote: ->> ->> If I understand your situation, you want one machine to MX for the kiev.ua ->> domain, but have everything else forwarded to your upstream UUCP ->> connection. ->> -> ->No. The proble, that i want use: -> -> 1. smtp to outside world (to provider, with or without DNS) -> 2. smtp to my local net (with DNS!!!) -> 3. uucp -> ->and all oo *one* mashine. -> ->but uucp require nodns. -> ->So, I need in : -> 1. table lookup without DNS -> 2. if NOT FOUND --- DNS, latest table lookup. -> ->Is it possible ? -> From owner-freebsd-isp Sat May 10 17:07:47 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id RAA01541 for isp-outgoing; Sat, 10 May 1997 17:07:47 -0700 (PDT) Received: from net-thing.net (root@shell.net-thing.net [207.94.83.66]) by hub.freebsd.org (8.8.5/8.8.5) with SMTP id RAA01530 for ; Sat, 10 May 1997 17:07:45 -0700 (PDT) From: Obelisk@DAL.net Received: from [207.94.83.119] (acetone.net-thing.net [207.94.83.119]) by net-thing.net (8.6.12/8.6.9) with ESMTP id UAA04903 for ; Sat, 10 May 1997 20:08:24 -0400 X-Sender: nellie@mail.net-thing.net Message-Id: Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Date: Sat, 10 May 1997 20:09:43 -0500 To: freebsd-isp@freebsd.org Subject: SMP Processor Support Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk Any idea when SMP processor support will be released in it's final version, and not in beta? __ _-==-=_,-. /--`' \_@-@.--< `--'\ \ <___/. \ \\ " / >=\\_/`< ____ /= | \_|/ _' `\ _/=== \___/ = -_ __/===================================================================== | PhiberOptics | Find me on DALnet as: | | obelisk@dal.net | PhiberOptics | | Beloved Fan of the Philadelphia Flyers | /server orion.dal.net port 7000 | ============================================================================= From owner-freebsd-isp Sat May 10 18:39:08 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id SAA05219 for isp-outgoing; Sat, 10 May 1997 18:39:08 -0700 (PDT) Received: from lightning.tbe.net (qmailr@lightning.tbe.net [208.208.122.5]) by hub.freebsd.org (8.8.5/8.8.5) with SMTP id SAA05211 for ; Sat, 10 May 1997 18:39:06 -0700 (PDT) Received: (qmail 9005 invoked from network); 11 May 1997 01:35:40 -0000 Received: from port7.go-pc.com (HELO bc.go-pc.com) (206.20.105.146) by lightning.tbe.net with SMTP; 11 May 1997 01:35:40 -0000 Message-ID: <33752339.CE4@bythehand.com> Date: Sat, 10 May 1997 21:39:05 -0400 From: Bernard Courtney Reply-To: bc@bythehand.com Organization: Internet Creations By The Hand X-Mailer: Mozilla 3.01Gold (Win95; I) MIME-Version: 1.0 To: freebsd-isp@freebsd.org Subject: Telnet Problems With 2.2.1 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk Hi all, I just installed FreeBSD 2.2.1 on my web server. It is a P-75 with 64MB of memory. I previously had FreeBSD 2.1.5 installed on it. When I now telnet the the machenes IP address over my local network it takes at least 3 min. for the login prompt to come up. I never had this problem with 2.1.5, I have no idea what might be causing this problem. Thanks in advance for all of your help. From owner-freebsd-isp Sat May 10 19:01:56 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id TAA05815 for isp-outgoing; Sat, 10 May 1997 19:01:56 -0700 (PDT) Received: from guardian.fortress.org (fortress.org [198.168.253.52]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id TAA05808 for ; Sat, 10 May 1997 19:01:51 -0700 (PDT) Received: from localhost (andrew@localhost) by guardian.fortress.org (8.8.5/8.6.12) with SMTP id WAA19430; Sat, 10 May 1997 22:01:15 -0400 (EDT) Date: Sat, 10 May 1997 22:01:13 -0400 (EDT) From: Andrew Webster Reply-To: andrew@pubnix.net To: Bernard Courtney cc: freebsd-isp@FreeBSD.ORG Subject: Re: Telnet Problems With 2.2.1 In-Reply-To: <33752339.CE4@bythehand.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk On Sat, 10 May 1997, Bernard Courtney wrote: > Hi all, > > > I just installed FreeBSD 2.2.1 on my web server. It is a P-75 with 64MB > of memory. I previously had FreeBSD 2.1.5 installed on it. When I now > telnet the the machenes IP address over my local network it takes at > least 3 min. for the login prompt to come up. I never had this problem > with 2.1.5, I have no idea what might be causing this problem. > Thanks in advance for all of your help. Hi, Most likely that the system can't resolve the IP address that you are telnetting FROM into a hostname. Make sure your in-addr.arpa domains are correctly registered and operating. Andrew Webster andrew@pubnix.net Key fingerprint = CF E8 16 B8 A6 DB E3 C9 83 E7 96 24 25 58 15 6E PubNIX Montreal Connected to the world Branche au monde P.O. Box 147 Cote Saint Luc, Quebec H4V 2Y3 tel 514.990.5911 http://www.pubnix.net fax 514.990.9443 From owner-freebsd-isp Sat May 10 19:17:20 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id TAA06266 for isp-outgoing; Sat, 10 May 1997 19:17:20 -0700 (PDT) Received: from narcissus.ml.org (root@brosenga.Pitzer.edu [134.173.120.201]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id TAA06261 for ; Sat, 10 May 1997 19:17:18 -0700 (PDT) Received: from localhost (fullermd@localhost) by narcissus.ml.org (8.8.5/8.7.3) with SMTP id TAA27169; Sat, 10 May 1997 19:17:13 -0700 (PDT) Date: Sat, 10 May 1997 19:17:13 -0700 (PDT) From: The Devil Himself To: Obelisk@DAL.net cc: freebsd-isp@FreeBSD.ORG Subject: Re: SMP Processor Support In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Content-Transfer-Encoding: 8bit X-MIME-Autoconverted: from QUOTED-PRINTABLE to 8bit by hub.freebsd.org id TAA06262 Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk On Sat, 10 May 1997 Obelisk@DAL.net wrote: > Any idea when SMP processor support will be released in it's final version, > and not in beta? Weeelllll...... That's kinda like asking 'when will FreeBSD be released in it's final version?' It's kinda a useless questions, because there will always be changes. I believe the plan right now is to include it in 3.0 when it's released; it's already been integrated into the -current tree, and I've heard some good things about it. It's all a question of how daring you are; by the time it gets to release, it should be about as solid as the rest of the system [FreeBSD]. > > __ _-==-=_,-. > /--`' \_@-@.--< > `--'\ \ <___/. > \ \\ " / > >=\\_/`< > ____ /= | \_|/ > _' `\ _/=== \___/ > = -_ __/===================================================================== > | PhiberOptics | Find me on DALnet as: | > | obelisk@dal.net | PhiberOptics | > | Beloved Fan of the Philadelphia Flyers | /server orion.dal.net port 7000 | > ============================================================================= *-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-* |FreeBSD is good. FreeBSD is our friend. UNIX is our god.| *Micro$oft is bad. Micro$oft causes problems.* |MicroBSD??? I DON'T THINK SO!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!| |"I hate quotes in signature files" :-} MAtthew Fuller| *fullermd@narcissus.ml.org FreeBSD junkie* |http://keystone.westminster.edu/~fullermd Westminster College| *-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-* From owner-freebsd-isp Sat May 10 23:51:04 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id XAA15324 for isp-outgoing; Sat, 10 May 1997 23:51:04 -0700 (PDT) Received: from mail.webspan.net (mail.webspan.net [206.154.70.7]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id XAA15318 for ; Sat, 10 May 1997 23:51:02 -0700 (PDT) Received: from orion.webspan.net (orion.webspan.net [206.154.70.5]) by mail.webspan.net (WEBSPAN/970116) with ESMTP id CAA14246; Sun, 11 May 1997 02:50:15 -0400 (EDT) Received: from orion.webspan.net (localhost [127.0.0.1]) by orion.webspan.net (WEBSPN/970116) with ESMTP id CAA19156; Sun, 11 May 1997 02:50:15 -0400 (EDT) To: Thomas Arnold cc: freebsd-isp@FreeBSD.ORG From: "Gary Palmer" Subject: Re: Imapd Problem In-reply-to: Your message of "Fri, 09 May 1997 16:09:55 EDT." Date: Sun, 11 May 1997 02:50:14 -0400 Message-ID: <19152.863333414@orion.webspan.net> Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk > IMapd has been working fine here for a while. > We switched over to using ssh unstead of rsh and imapd is now slower then > heck on initial start and loading new mailfolders. put rsh-open-timeout=0 into /usr/local/etc/pine.conf (assuming you have imapd from inetd available) Gary -- Gary Palmer FreeBSD Core Team Member FreeBSD: Turning PC's into workstations. See http://www.FreeBSD.ORG/ for info