From owner-freebsd-isp Sun Aug 6 16:53:41 2000 Delivered-To: freebsd-isp@freebsd.org Received: from slarti.muc.de (slarti.muc.de [193.149.48.10]) by hub.freebsd.org (Postfix) with SMTP id B2C6937B640 for ; Sun, 6 Aug 2000 16:53:36 -0700 (PDT) (envelope-from jhs@jhs.muc.de) Received: (qmail 22341 invoked from network); 6 Aug 2000 23:51:39 -0000 Received: from jhs.muc.de (HELO park.jhs.no?domain) (193.149.49.84) by slarti.muc.de with SMTP; 6 Aug 2000 23:51:39 -0000 Received: from park.jhs.no_domain (localhost [127.0.0.1]) by park.jhs.no_domain (8.9.3/8.9.3) with ESMTP id XAA08769 for ; Sun, 6 Aug 2000 23:36:01 GMT (envelope-from jhs@park.jhs.no_domain) Message-Id: <200008062336.XAA08769@park.jhs.no_domain> To: freebsd-isp@FreeBSD.ORG Subject: named entry for a private net From: "Julian Stacey" Organization: Vector Systems Ltd - Unix & Internet consultancy X-Web: http://www.jhs.muc.de http://bim.bsn.com/~jhs/ In-reply-to: Your message of "Sat, 05 Aug 2000 12:49:38 +0800." Date: Mon, 07 Aug 2000 01:36:00 +0200 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org I'd appreciate criticism of my `named` config that does not yet work. Thanks ! - It is for a FreeBSD-3.4 based internal host. - My unregistered ethernet domain lives behind a firewall with a single registered IP address on an ISDN interface to the internet (dial up). - The host with isdnd & ipfw is working OK to the world, & I don't want to touch that, (to avoid packets keeping the phone line open). - What I hope to do is run a 2nd named on an internal host to satisfy local ethernet requirements, EG: NCD X terminal boots, diskless boot, sendmail between local hosts etc. - Named must act as master for the internal *.jhs.ether/24, & ideally maybe also refer non- *.jhs.ether names to gateway host. Thanks for any ideas/criticism/examples ! /etc/namedb/named.conf:: options { directory "/etc/namedb"; }; zone "jhs.ether" { type master; file "DB.jhs.ether"; }; zone "57.168.192.in-addr.arpa" { type master; file "DB.jhs.reverse"; }; /etc/namedb/internal/DB.jhs.ether:: jhs.ether IN SOA intern.jhs.ether. root.jhs.ether. ( 2000080600 ; Serial 3600 ; Refresh 900 ; Retry 3600000 ; Expire 3600 ) ; Minimum IN NS ns IN NS ns1 ns IN A 192.168.57.24 ns1 IN A 192.168.57.31 IN MX 50 intern.jhs.ether. IN MX 100 gateway.jhs.ether. intern IN A 192.168.57.24 gateway IN A 192.168.57.31 /etc/namedb/DB.jhs.reverse:: @ IN SOA intern.jhs.ether. root.jhs.ether. ( 2000080600 ; Serial 3600 ; Refresh 900 ; Retry 3600000 ; Expire 3600 ) ; Minimum IN NS ns.jhs.ether. IN NS ns1.jhs.ether. 24 IN PTR intern.jhs.ether. 31 IN PTR gateway.jhs.ether. Julian - Julian Stacey http://bim.bsn.com/~jhs/ Munich Unix Consultant. Free BSD Unix with 3600 packages & sources. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sun Aug 6 22:29:52 2000 Delivered-To: freebsd-isp@freebsd.org Received: from ns.internet.dk (ns.internet.dk [194.19.140.1]) by hub.freebsd.org (Postfix) with ESMTP id C386D37BC43 for ; Sun, 6 Aug 2000 22:29:48 -0700 (PDT) (envelope-from leifn@neland.dk) Received: (from uucp@localhost) by ns.internet.dk (8.9.3/8.9.3) with UUCP id GAA75358 for freebsd-isp@FreeBSD.ORG; Mon, 7 Aug 2000 06:49:19 +0200 (CEST) (envelope-from leifn@neland.dk) Received: from gina (gina.neland.dk [192.168.0.14]) by arnold.neland.dk (8.11.0/8.9.3) with SMTP id e774ii545538 for ; Mon, 7 Aug 2000 06:44:49 +0200 (CEST) (envelope-from leifn@neland.dk) Message-ID: <006a01c0002a$3c45aec0$0e00a8c0@neland.dk> Reply-To: "Leif Neland" From: "Leif Neland" To: References: <200008062336.XAA08769@park.jhs.no_domain> Subject: Re: named entry for a private net Date: Mon, 7 Aug 2000 06:43:08 +0200 X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.00.2919.6600 X-MimeOLE: Produced By Microsoft MimeOLE V5.00.2919.6600 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org ----- Original Message ----- From: "Julian Stacey" To: Sent: Monday, August 07, 2000 1:36 AM Subject: named entry for a private net > I'd appreciate criticism of my `named` config that does not yet work. Thanks ! "Does not work" is not a valid error description. Do you get error messages? Post 'em. Does it not work the way you want it to? Tell what you want it to, and what is happening instead. Don't expect us to set up a nameserver with these configfiles, and start guessing what your problem is. Love to help, but within reason. Leif To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon Aug 7 2:37:44 2000 Delivered-To: freebsd-isp@freebsd.org Received: from mgw1.MEIway.com (mgw1.meiway.com [212.73.210.75]) by hub.freebsd.org (Postfix) with ESMTP id 1C8C037BC71 for ; Mon, 7 Aug 2000 02:37:42 -0700 (PDT) (envelope-from lconrad@Go2France.com) Received: from mail.Go2France.com (ms1.meiway.com [212.73.210.73]) by mgw1.MEIway.com (Postfix Relay Hub) with ESMTP id 8F4306A903 for ; Mon, 7 Aug 2000 11:37:58 +0200 (CEST) Received: from sv.Go2France.com [212.73.210.79] by mail.Go2France.com with ESMTP (SMTPD32-6.04) id A3A813F2013A; Mon, 07 Aug 2000 11:38:48 +0200 Message-Id: <4.3.2.7.2.20000807112901.00d2aa10@mail.Go2France.com> X-Sender: lconrad%Go2France.com@mail.Go2France.com X-Mailer: QUALCOMM Windows Eudora Version 4.3.2 Date: Mon, 07 Aug 2000 11:34:29 +0200 To: freebsd-isp@freebsd.org From: Len Conrad Subject: Re: apparently FreeBSD-specific DNS failure In-Reply-To: <71461.965639018@verdi.nethelp.no> References: <200008070811.DAA14294@cs.rice.edu> Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii"; format=flowed Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org >wtime.net has an inconsistent DNS configuration, and you should *expect* >something to fail. From the .net name servers: The wtime.net zone is a mess. illegal characters, illegal CNAMEs, lame delegation, open mail relay, only one NS in the zone. I've sent Vivek the DNS Expert report privately. I'd be very surprised if his DNS queries difficulties were FreeBSD-related. Len http://BIND8NT.MEIway.com: ISC BIND 8.2.2 p5 installable binary for NT4 http://IMGate.MEIway.com: Build free, hi-perf, anti-spam mail gateways To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon Aug 7 11:51:40 2000 Delivered-To: freebsd-isp@freebsd.org Received: from cache.sai.co.za (mail.sai.co.za [196.33.40.1]) by hub.freebsd.org (Postfix) with ESMTP id A4B8B37B6B0 for ; Mon, 7 Aug 2000 11:51:25 -0700 (PDT) (envelope-from davew@sai.co.za) Received: from fdisk (fdisk.pmburg.co.za [196.33.40.17]) by cache.sai.co.za (8.9.3/8.9.3) with SMTP id UAA03548 for ; Mon, 7 Aug 2000 20:51:24 +0200 (SAST) (envelope-from davew@sai.co.za) Message-ID: <015d01c000a2$1ad236a0$112821c4@sai.co.za> From: "Dave Wilson" To: Subject: IP header precedence bit set to a value to discriminate between local and international traffic to limit bandwidth ? Date: Mon, 7 Aug 2000 21:02:59 +0200 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.50.4133.2400 X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4133.2400 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hi guys, howzit going ? I've been assigned the task of limiting our leased-line clients on the amount of local and international traffic which they are allowed to use. At the moment I'm using FreeBSD's built in traffic shaper using ipfw to allow a certain amount of bandwidth from our clients to our country's local IP's. Here is an example for one client: ipfw add pipe 1 ip from 1.1.1.0/28 to 196.0.0.0/8 ipfw pipe 1 config delay 0ms bw 128Kbit/s queue 10 ipfw add pipe 2 ip from 1.1.1.0/28 to 152.0.0.0/8 ipfw pipe 2 config delay 0ms bw 128Kbit/s queue 10 ipfw add pipe 3 ip from 1.1.1.0/28 to 206.0.0.0/8 ipfw pipe 3 config delay 0ms bw 128Kbit/s queue 10 ipfw add pipe 4 ip from 1.1.1.0/28 to 216.0.0.0/8 ipfw pipe 4 config delay 0ms bw 128Kbit/s queue 10 ipfw add pipe 5 ip from 196.0.0.0/8 to 1.1.1.0/28 ipfw pipe 5 config delay 0ms bw 128Kbit/s queue 10 ipfw add pipe 6 ip from 152.0.0.0/8 to 1.1.1.0/28 ipfw pipe 6 config delay 0ms bw 128Kbit/s queue 10 ipfw add pipe 7 ip from 206.0.0.0/8 to 1.1.1.0/28 ipfw pipe 7 config delay 0ms bw 128Kbit/s queue 10 ipfw add pipe 8 ip from 216.0.0.0/8 to 1.1.1.0/28 ipfw pipe 8 config delay 0ms bw 128Kbit/s queue 10 ipfw add pipe 9 ip from 1.1.1.0/28 to any ipfw pipe 9 config delay 0ms bw 32Kbit/s queue 10 ipfw add pipe 10 ip from any to 1.1.1.0/28 ipfw pipe 10 config delay 0ms bw 32Kbit/s queue 10 196.0.0.0, 152.0.0.0, 206.0.0.0, 216.0.0.0 being some of our country's IP's i.e.. local IP's. My question is: Does anyone have a better way of limiting local and international bandwidth ? Our bandwidth provider has now started setting the precedence bit in all IP headers from international regions to a value, therefore if we had some software to do traffic shaping by looking at the precedence bit then we could limit international bandwidth for our clients accordingly......Does anyone know what software will do this for us ? Thanks ;-) Regards Dave Wilson The S.A. Internet (033) 3456777 0825496159 http://www.sai.co.za "Who is General Failure and why is he reading my hard drive ?" To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon Aug 7 21:15: 4 2000 Delivered-To: freebsd-isp@freebsd.org Received: from spooky.eis.net.au (spooky.eis.net.au [203.12.171.2]) by hub.freebsd.org (Postfix) with ESMTP id 257D637B511 for ; Mon, 7 Aug 2000 21:14:58 -0700 (PDT) (envelope-from ernie@spooky.eis.net.au) Received: (from ernie@localhost) by spooky.eis.net.au (8.9.3/8.9.3) id OAA39735 for freebsd-isp@freebsd.org; Tue, 8 Aug 2000 14:14:52 +1000 (EST) (envelope-from ernie) From: Ernie Elu Message-Id: <200008080414.OAA39735@spooky.eis.net.au> Subject: Traffic Counting To: freebsd-isp@freebsd.org Date: Tue, 8 Aug 2000 14:14:51 +1000 (EST) X-Mailer: ELM [version 2.4ME+ PL40 (25)] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Can anyone suggest some traffic counting software for FreeBSD boxes? I have tried PACT but it has problems when the interface rolls over 2^32 and back to zero in a short period of time, it looses the plot. What I am trying to do is count the traffic my ethernet connected customers are using in the building. They all hang of managed switches that plug into a central FreeBSD router/gateway. - Ernie. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue Aug 8 4:48:55 2000 Delivered-To: freebsd-isp@freebsd.org Received: from qmail.corpex.net (qmail.corpex.net [195.153.247.40]) by hub.freebsd.org (Postfix) with SMTP id 143F237B7F9 for ; Tue, 8 Aug 2000 04:48:46 -0700 (PDT) (envelope-from jonathan@corpex.com) Received: (qmail 16721 invoked from network); 8 Aug 2000 11:49:01 -0000 Received: from perseus.corpex.net (HELO perseus) (195.153.247.226) by qmail.corpex.net with SMTP; 8 Aug 2000 11:49:01 -0000 From: "Jonathan Defries" To: "Freebsd-Isp@Freebsd. Org" Subject: RE: Traffic Counting Date: Tue, 8 Aug 2000 12:49:04 +0100 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2910.0) In-Reply-To: <200008080414.OAA39735@spooky.eis.net.au> X-MimeOLE: Produced By Microsoft MimeOLE V5.00.2314.1300 Importance: Normal Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Have you looked at mrtg? That sounds like it might do the job. - Jonathan > -----Original Message----- > From: owner-freebsd-isp@FreeBSD.ORG > [mailto:owner-freebsd-isp@FreeBSD.ORG]On Behalf Of Ernie Elu > Sent: 08 August 2000 05:15 > To: freebsd-isp@freebsd.org > Subject: Traffic Counting > > > Can anyone suggest some traffic counting software for FreeBSD boxes? > > I have tried PACT but it has problems when the interface rolls > over 2^32 and > back to zero in a short period of time, it looses the plot. > > What I am trying to do is count the traffic my ethernet > connected customers > are using in the building. They all hang of managed switches > that plug into > a central FreeBSD router/gateway. > > - Ernie. > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue Aug 8 4:58: 8 2000 Delivered-To: freebsd-isp@freebsd.org Received: from server02.belenus.com (ns2.belenus.com [131.99.17.130]) by hub.freebsd.org (Postfix) with ESMTP id 971E437B7F9 for ; Tue, 8 Aug 2000 04:58:03 -0700 (PDT) (envelope-from H.Schmalzbauer@belenus.com) Received: by server02.belenus.com with Internet Mail Service (5.5.2650.21) id ; Tue, 8 Aug 2000 13:56:47 +0200 Message-ID: From: "Schmalzbauer, Harald" To: freebsd-isp@freebsd.org Subject: AW: Traffic Counting Date: Tue, 8 Aug 2000 13:56:36 +0200 MIME-Version: 1.0 X-Mailer: Internet Mail Service (5.5.2650.21) Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hello Ernie, if you're using IPFilter try http://www2.empnet.com/ipacct/. Regards, Harry belenus GmbH Harald Schmalzbauer Sys/Net Admin Tel: +49 (89) 21979-120 Fax: +49 (89) 21979-111 www.belenus.com > -----Urspr=FCngliche Nachricht----- > Von: Ernie Elu [mailto:ernie@spooky.eis.net.au] > Gesendet: Dienstag, 8. August 2000 06:15 > An: freebsd-isp@freebsd.org > Betreff: Traffic Counting >=20 >=20 > Can anyone suggest some traffic counting software for FreeBSD boxes? >=20 > I have tried PACT but it has problems when the interface=20 > rolls over 2^32 and > back to zero in a short period of time, it looses the plot. >=20 > What I am trying to do is count the traffic my ethernet=20 > connected customers > are using in the building. They all hang of managed switches=20 > that plug into > a central FreeBSD router/gateway. >=20 > - Ernie. >=20 >=20 >=20 > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message >=20 -----BEGIN PGP SIGNATURE----- Version: PGP 6.5.2 iQA/AwUBOY/nlVXEptsBus8cEQJOEgCgg4HaBEUc5ZfjArDJVZ8N991rR+YAn0mi HyZoAXYvMxEmcVw3r/HQMONW =3DuqQc -----END PGP SIGNATURE----- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue Aug 8 8:28:24 2000 Delivered-To: freebsd-isp@freebsd.org Received: from etinc.com (et-gw.etinc.com [207.252.1.2]) by hub.freebsd.org (Postfix) with ESMTP id 3889837B545 for ; Tue, 8 Aug 2000 08:28:14 -0700 (PDT) (envelope-from dennis@etinc.com) Received: from dbsys (dbsys.etinc.com [207.252.1.18]) by etinc.com (8.9.3/8.9.3) with SMTP id LAA07797; Tue, 8 Aug 2000 11:29:35 -0400 (EDT) Message-Id: <200008081529.LAA07797@etinc.com> X-Sender: dennis@etinc.com X-Mailer: QUALCOMM Windows Eudora Pro Version 4.0 Date: Tue, 08 Aug 2000 11:41:43 -0400 To: Ernie Elu From: Dennis Subject: Re: Traffic Counting Cc: isp@freebsd.org In-Reply-To: <200008080414.OAA39735@spooky.eis.net.au> Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org At 02:14 PM 8/8/00 +1000, you wrote: >Can anyone suggest some traffic counting software for FreeBSD boxes? > >I have tried PACT but it has problems when the interface rolls over 2^32 and >back to zero in a short period of time, it looses the plot. > >What I am trying to do is count the traffic my ethernet connected customers >are using in the building. They all hang of managed switches that plug into >a central FreeBSD router/gateway. > If you need to gather based on IP address, traffic type, MAC address, etc you could use our bwmgr product with or without bandwidth controls. You can maintains stats for different types of traffic for each customer as well. A graphing function is integrated into an HTML based management system The next version (going into beta next week) will store the info in an SQL database ready for customized reporting. its is commercial however..... www.etinc.com Dennis Emerging Technologies, Inc. ---------------------------------------------------------------------------- --------- http://www.etinc.com ISA and PCI T1/T3/V35/HSSI Cards for FreeBSD and LINUX Multiport T1 and HSSI/T3 UNIX-based Routers Bandwidth Management Standalone Systems Bandwidth Management software for LINUX and FreeBSD To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue Aug 8 10:23:59 2000 Delivered-To: freebsd-isp@freebsd.org Received: from post.corpex.com (post.corpex.com [195.153.247.11]) by hub.freebsd.org (Postfix) with SMTP id AD5CC37BEB5 for ; Tue, 8 Aug 2000 10:23:43 -0700 (PDT) (envelope-from webmaster@homerton.org.uk) Received: (qmail 14583 invoked by uid 0); 8 Aug 2000 17:21:49 -0000 MBOX-Line: From homerton.org.uk!webmaster Tue Aug 8 18:21:49 2000 remote from mail Received: from perseus(perseus.corpex.net[195.153.247.226]) (935 bytes) by mail.corpex.com via smail with P:smtp/R:bind_hosts/T:smtp-filter (sender: ) id for ; Tue, 8 Aug 2000 18:21:49 +0100 (BST) (Smail-3.2.0.105 1999-Mar-3 #3 built 1999-Mar-26) Message-ID: <000801c0015d$5e1f4db0$e2f799c3@corpex.net> From: "Homerton Webmaster" To: Subject: Problems with proftpd Date: Tue, 8 Aug 2000 18:23:28 +0100 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.50.4133.2400 X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4133.2400 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hi all, I've just installed proftpd1.2.0rc2 and thought all was going well, expect now I can't chmod anything through ftp. Can someone help? A quick web search hasn't revealed any hints, nor has a look through the documentation. I'm using the stock ports version on a 3.3-RELEASE machine in standalone mode. TIA, Adam To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue Aug 8 11:13:26 2000 Delivered-To: freebsd-isp@freebsd.org Received: from gerbang.untan.ac.id (gerbang.untan.ac.id [167.205.153.129]) by hub.freebsd.org (Postfix) with SMTP id B8CD037C020 for ; Tue, 8 Aug 2000 11:12:56 -0700 (PDT) (envelope-from odhienx@untan.ac.id) Received: (qmail 1854 invoked by uid 1001); 8 Aug 2000 17:21:10 -0000 Received: from localhost (sendmail-bs@127.0.0.1) by localhost with SMTP; 8 Aug 2000 17:21:10 -0000 Date: Wed, 9 Aug 2000 01:21:10 +0800 (BORT) From: Salihin To: freebsd-isp@freebsd.org Subject: script user ppp for server (recieve dial-in) Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org hello,... anyone knows or have script user ppp for server (recieve dial-in) -isp- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue Aug 8 23:16:41 2000 Delivered-To: freebsd-isp@freebsd.org Received: from atlas.usls.edu (atlas.usls.edu [202.47.133.46]) by hub.freebsd.org (Postfix) with ESMTP id C6B6737BDA2 for ; Tue, 8 Aug 2000 23:16:13 -0700 (PDT) (envelope-from francis@usls.edu) Received: by atlas.usls.edu (Postfix, from userid 1001) id 786F89B0A; Wed, 9 Aug 2000 14:15:10 +0800 (PHT) Received: from localhost (localhost [127.0.0.1]) by atlas.usls.edu (Postfix) with ESMTP id 6C6155D07 for ; Wed, 9 Aug 2000 14:15:10 +0800 (PHT) Date: Wed, 9 Aug 2000 14:15:10 +0800 (PHT) From: "Francis A. Vidal" To: FreeBSD ISP Subject: time-based access to dialup Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org hi all, i'm currently testing tacacs+ for dialup authentication from the cisco router. however, i can't find any references on how to setup tacacs+ for time-based access. do you know of a "before authorization" that can implement this? thanks! -- francis vidal university of st. la salle, bacolod city, philippines . . . . . . . PGP key available via e-mail / subject: get PGP key u s l s N E T tel nos. (+63.34).433.3526 / fax (+63.34).434.0415 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Aug 9 5:57:56 2000 Delivered-To: freebsd-isp@freebsd.org Received: from hawk.prod.itd.earthlink.net (hawk.prod.itd.earthlink.net [207.217.120.22]) by hub.freebsd.org (Postfix) with ESMTP id 7C76537B590 for ; Wed, 9 Aug 2000 05:57:52 -0700 (PDT) (envelope-from jim@siteplus.net) Received: from veager.siteplus.net (1Cust92.tnt10.chattanooga.tn.da.uu.net [63.22.145.92]) by hawk.prod.itd.earthlink.net (8.9.3-EL_1_3/8.9.3) with ESMTP id FAA02001 for ; Wed, 9 Aug 2000 05:57:50 -0700 (PDT) Date: Wed, 9 Aug 2000 08:57:52 -0400 (EDT) From: Jim Weeks To: freebsd-isp@freebsd.org Subject: SMTP Help Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org I was hoping some one with more experience in spam abuse would tell me what happened here. Aug 8 11:17:19 XXXXX sendmail[20337]: LAA20337: ruleset=check_mail, arg1=, relay=216-119-18-247.o1.jps.net [216.119.18.247], reject=553 ... Domain name required Aug 8 11:17:19 XXXXX sendmail[20337]: LAA20337: from=, size=0, class=0, pri=0, nrcpts=0, proto=SMTP, relay=216-119-18-247.o1.jps.net [216.119.18.247] I greped mailboxes for "LAA20337" but nothing turned up. Thanks, -- Jim To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Aug 9 6: 8:26 2000 Delivered-To: freebsd-isp@freebsd.org Received: from kernel.net (nix.org [208.211.134.100]) by hub.freebsd.org (Postfix) with SMTP id 8C29C37B680 for ; Wed, 9 Aug 2000 06:08:23 -0700 (PDT) (envelope-from oogali@kernel.net) Received: (qmail 30444 invoked by uid 614); 9 Aug 2000 13:08:22 -0000 Received: from localhost (sendmail-bs@127.0.0.1) by localhost with SMTP; 9 Aug 2000 13:08:22 -0000 Date: Wed, 9 Aug 2000 09:08:22 -0400 (EDT) From: Omachonu Ogali X-Sender: oogali@depression.downwards.com To: Jim Weeks Cc: freebsd-isp@freebsd.org Subject: Re: SMTP Help In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Wed, 9 Aug 2000, Jim Weeks wrote: > I was hoping some one with more experience in spam abuse would tell me > what happened here. > > Aug 8 11:17:19 XXXXX sendmail[20337]: LAA20337: ruleset=check_mail, > arg1=, relay=216-119-18-247.o1.jps.net > [216.119.18.247], reject=553 ... Domain name > required > Aug 8 11:17:19 XXXXX sendmail[20337]: LAA20337: from= Simple>, size=0, class=0, pri=0, nrcpts=0, proto=SMTP, > relay=216-119-18-247.o1.jps.net [216.119.18.247] > > I greped mailboxes for "LAA20337" but nothing turned up. > > Thanks, > > -- > Jim > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message > Example Scenario: HELO i.am.a.spammer.com MAIL FROM: The System Sooo Simple RCPT TO: some.spam@easytargets.com DATA Subject: MAKE MONEY NOW . QUIT -EOF- Omachonu Ogali To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Aug 9 6:30:28 2000 Delivered-To: freebsd-isp@freebsd.org Received: from swan.prod.itd.earthlink.net (swan.prod.itd.earthlink.net [207.217.120.123]) by hub.freebsd.org (Postfix) with ESMTP id 5306D37B50C for ; Wed, 9 Aug 2000 06:30:26 -0700 (PDT) (envelope-from jim@siteplus.net) Received: from veager.siteplus.net (1Cust92.tnt10.chattanooga.tn.da.uu.net [63.22.145.92]) by swan.prod.itd.earthlink.net (8.9.3-EL_1_3/8.9.3) with ESMTP id GAA10659 for ; Wed, 9 Aug 2000 06:30:23 -0700 (PDT) Date: Wed, 9 Aug 2000 09:30:24 -0400 (EDT) From: Jim Weeks To: freebsd-isp@freebsd.org Subject: Re: SMTP Help In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Wed, 9 Aug 2000, Omachonu Ogali wrote: > > Aug 8 11:17:19 XXXXX sendmail[20337]: LAA20337: ruleset=check_mail, > > arg1=, relay=216-119-18-247.o1.jps.net > > [216.119.18.247], reject=553 ... Domain name > > required > > Aug 8 11:17:19 XXXXX sendmail[20337]: LAA20337: from= > Simple>, size=0, class=0, pri=0, nrcpts=0, proto=SMTP, > > relay=216-119-18-247.o1.jps.net [216.119.18.247] > Example Scenario: > > HELO i.am.a.spammer.com > MAIL FROM: The System Sooo Simple > RCPT TO: some.spam@easytargets.com > DATA > Subject: MAKE MONEY NOW > > . > QUIT Thanks to everyone that has sent private messages. I can certainly get my mind around this idea, but I am confused... Did the second attempt make it through, and if it did would the messages have the LAA20337 identifier? Jim To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Aug 9 8: 5: 7 2000 Delivered-To: freebsd-isp@freebsd.org Received: from mail1.accessus.net (postal.accessus.net [209.145.150.75]) by hub.freebsd.org (Postfix) with ESMTP id 7874837BADB for ; Wed, 9 Aug 2000 08:05:04 -0700 (PDT) (envelope-from jyoung@accessus.net) Received: from exchange.accessus.net (exchange.accessus.net [207.206.171.65]) by mail1.accessus.net (Postfix) with ESMTP id AFD98728D7; Wed, 9 Aug 2000 10:05:02 -0500 (CDT) Received: by exchange.accessus.net with Internet Mail Service (5.5.2650.21) id ; Wed, 9 Aug 2000 09:58:32 -0500 Message-ID: From: Jason Young To: 'Jim Weeks' , freebsd-isp@freebsd.org Subject: RE: SMTP Help Date: Wed, 9 Aug 2000 09:58:32 -0500 MIME-Version: 1.0 X-Mailer: Internet Mail Service (5.5.2650.21) Content-Type: text/plain; charset="iso-8859-1" Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org If I understand correctly, there was no second attempt. Both log messages are from one attempt. Your system didn't accept the message. Jason Young Access US(tm) Chief Network Engineer > -----Original Message----- > From: Jim Weeks [mailto:jim@siteplus.net] > Sent: Wednesday, August 09, 2000 8:30 AM > To: freebsd-isp@freebsd.org > Subject: Re: SMTP Help > > > > On Wed, 9 Aug 2000, Omachonu Ogali wrote: > > > > Aug 8 11:17:19 XXXXX sendmail[20337]: LAA20337: > ruleset=check_mail, > > > arg1=, relay=216-119-18-247.o1.jps.net > > > [216.119.18.247], reject=553 ... > Domain name > > > required > > > Aug 8 11:17:19 XXXXX sendmail[20337]: LAA20337: > from= > > Simple>, size=0, class=0, pri=0, nrcpts=0, proto=SMTP, > > > relay=216-119-18-247.o1.jps.net [216.119.18.247] > > > Example Scenario: > > > > HELO i.am.a.spammer.com > > MAIL FROM: The System Sooo Simple > > RCPT TO: some.spam@easytargets.com > > DATA > > Subject: MAKE MONEY NOW > > > > . > > QUIT > > Thanks to everyone that has sent private messages. > > I can certainly get my mind around this idea, but I am confused... > > Did the second attempt make it through, and if it did would > the messages > have the LAA20337 identifier? > > Jim > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Aug 9 8:14:38 2000 Delivered-To: freebsd-isp@freebsd.org Received: from scaup.prod.itd.earthlink.net (scaup.prod.itd.earthlink.net [207.217.121.49]) by hub.freebsd.org (Postfix) with ESMTP id EC1A337BDD6 for ; Wed, 9 Aug 2000 08:14:29 -0700 (PDT) (envelope-from jim@siteplus.net) Received: from veager.siteplus.net (1Cust92.tnt10.chattanooga.tn.da.uu.net [63.22.145.92]) by scaup.prod.itd.earthlink.net (8.9.3-EL_1_3/8.9.3) with ESMTP id IAA17276 for ; Wed, 9 Aug 2000 08:14:24 -0700 (PDT) Date: Wed, 9 Aug 2000 11:14:27 -0400 (EDT) From: Jim Weeks To: freebsd-isp@freebsd.org Subject: RE: SMTP Help In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Wed, 9 Aug 2000, Jason Young wrote: > > If I understand correctly, there was no second attempt. Both log messages > are from one attempt. Your system didn't accept the message. Thank you, This is what happens when you put the keyboard in gear before engaging the brain. The second entry is sendmail's reply HUH! Jim To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Aug 9 11: 5: 0 2000 Delivered-To: freebsd-isp@freebsd.org Received: from hoemail2.firewall.lucent.com (hoemail2.lucent.com [192.11.226.163]) by hub.freebsd.org (Postfix) with ESMTP id 59D2F37B90B for ; Wed, 9 Aug 2000 11:04:57 -0700 (PDT) (envelope-from jmcswain@lucent.com) Received: from hoemail2.firewall.lucent.com (localhost [127.0.0.1]) by hoemail2.firewall.lucent.com (Pro-8.9.3/8.9.3) with ESMTP id OAA16517 for ; Wed, 9 Aug 2000 14:04:56 -0400 (EDT) Received: from cbemh.cb.lucent.com (h135-7-35-160.lucent.com [135.7.35.160]) by hoemail2.firewall.lucent.com (Pro-8.9.3/8.9.3) with ESMTP id OAA16513 for ; Wed, 9 Aug 2000 14:04:55 -0400 (EDT) Received: by cbemh.cb.lucent.com (8.8.8+Sun/EMS-1.5 sol2) id OAA24524; Wed, 9 Aug 2000 14:04:54 -0400 (EDT) Received: from lucent.com by cbemh.cb.lucent.com (8.8.8+Sun/EMS-1.5 sol2) id OAA24520; Wed, 9 Aug 2000 14:04:53 -0400 (EDT) Message-ID: <39919D26.5B073C3F@lucent.com> Date: Wed, 09 Aug 2000 14:04:22 -0400 From: "J.D McSwain" Organization: Lucent Technologies X-Mailer: Mozilla 4.06 [en]C-CCK-MCD EMS-1.4 (Win98; I) MIME-Version: 1.0 To: freebsd-isp@freebsd.org Subject: Sendmail crashing under 3.4 release Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Greetings, I'm losing sendmail every couple of days to a signal 10 under 3.4 (from the cdrom). I've put in a cron job to restart it when it dies. Any ideas as to how to debug this? Dale Mc Swain To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Aug 9 11: 5:41 2000 Delivered-To: freebsd-isp@freebsd.org Received: from smtppop3.gte.net (smtppop3pub.gte.net [206.46.170.22]) by hub.freebsd.org (Postfix) with ESMTP id 5AF1D37BEFD for ; Wed, 9 Aug 2000 11:05:38 -0700 (PDT) (envelope-from lsp3@gte.net) Received: from pentium-166 (lsajca1-ar2-000-060.dsl.gtei.net [4.33.0.60]) by smtppop3.gte.net with SMTP for ; id NAA9448128 Wed, 9 Aug 2000 13:01:53 -0500 (CDT) Message-ID: <008c01c0022b$d19499c0$0400a8c0@pentium-166.dsl.gtei.net> From: "Leland" To: Subject: Rack Space in Phoenix, Scottsdale Date: Wed, 9 Aug 2000 11:01:17 -0700 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 4.72.2106.4 X-MimeOLE: Produced By Microsoft MimeOLE V4.72.2106.4 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Looking to place a secondary or backup server out of the Los Angeles. Should need little bandwith and 1U space. Leland Prince lsp3@gte.net To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Aug 9 12: 4:13 2000 Delivered-To: freebsd-isp@freebsd.org Received: from hoemail2.firewall.lucent.com (hoemail2.lucent.com [192.11.226.163]) by hub.freebsd.org (Postfix) with ESMTP id A2D5937BF46 for ; Wed, 9 Aug 2000 12:04:06 -0700 (PDT) (envelope-from jmcswain@lucent.com) Received: from hoemail2.firewall.lucent.com (localhost [127.0.0.1]) by hoemail2.firewall.lucent.com (Pro-8.9.3/8.9.3) with ESMTP id PAA23998 for ; Wed, 9 Aug 2000 15:04:04 -0400 (EDT) Received: from cbemh.cb.lucent.com (h135-7-35-160.lucent.com [135.7.35.160]) by hoemail2.firewall.lucent.com (Pro-8.9.3/8.9.3) with ESMTP id PAA23993 for ; Wed, 9 Aug 2000 15:04:04 -0400 (EDT) Received: by cbemh.cb.lucent.com (8.8.8+Sun/EMS-1.5 sol2) id PAA27283; Wed, 9 Aug 2000 15:04:02 -0400 (EDT) Cc: freebsd-isp@freebsd.org Received: from lucent.com by cbemh.cb.lucent.com (8.8.8+Sun/EMS-1.5 sol2) id PAA27274; Wed, 9 Aug 2000 15:04:00 -0400 (EDT) Message-ID: <3991AAFE.FC67EE82@lucent.com> Date: Wed, 09 Aug 2000 15:03:26 -0400 From: "J.D McSwain" Organization: Lucent Technologies X-Mailer: Mozilla 4.06 [en]C-CCK-MCD EMS-1.4 (Win98; I) MIME-Version: 1.0 To: Jeff Palmer Original-CC: freebsd-isp@freebsd.org Subject: Re: Sendmail crashing under 3.4 release References: <4.3.2.7.0.20000809141330.00b9a670@127.0.0.1> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Jeff, The only log entry that I got was the signal 10 /var/log/messages.1.gz:Aug 9 08:49:33 mail /kernel: pid 26372 (sendmail), uid 0: exited on signal 10 /var/log/messages.1.gz:Aug 9 08:49:33 mail /kernel: pid 26354 (sendmail), uid 0: exited on signal 10 Jeff Palmer wrote: > > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA1 > > Would help if we saw some of the logs.. > > Jeff > > At 02:04 PM 8/9/00 -0400, you wrote: > >Greetings, > > > >I'm losing sendmail every couple of days > >to a signal 10 under 3.4 (from the cdrom). > >I've put in a cron job to restart it when > >it dies. > > > >Any ideas as to how to debug this? > > > >Dale Mc Swain > > > > > >To Unsubscribe: send mail to majordomo@FreeBSD.org > >with "unsubscribe freebsd-isp" in the body of the message > > -----BEGIN PGP SIGNATURE----- > Version: PGPfreeware 6.5.1 for non-commercial use > > iQA/AwUBOZGfZc4OBXy2X0wKEQLuGQCg7q6Nx/mGlAEpQjrxtBhfLO3/5ykAoPoD > KJFPcQNsBAtC89SVsqd3ChT9 > =D/Da > -----END PGP SIGNATURE----- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Aug 9 12:49:21 2000 Delivered-To: freebsd-isp@freebsd.org Received: from databits.net (analog.databits.net [207.29.192.55]) by hub.freebsd.org (Postfix) with SMTP id E072737B635 for ; Wed, 9 Aug 2000 12:49:13 -0700 (PDT) (envelope-from petef@databits.net) Received: (qmail 26742 invoked by uid 1000); 9 Aug 2000 19:49:11 -0000 Date: Wed, 9 Aug 2000 15:49:11 -0400 From: Pete Fritchman To: "J.D McSwain" Cc: freebsd-isp@freebsd.org Subject: Re: Sendmail crashing under 3.4 release Message-ID: <20000809154911.A20292@databits.net> References: <4.3.2.7.0.20000809141330.00b9a670@127.0.0.1> <3991AAFE.FC67EE82@lucent.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2i In-Reply-To: <3991AAFE.FC67EE82@lucent.com>; from jmcswain@lucent.com on Wed, Aug 09, 2000 at 03:03:26PM -0400 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Anything useful in /var/log/maillog? -Pete ++ 09/08/00 15:03 -0400 - J.D McSwain: >Jeff, > >The only log entry that I got was >the signal 10 > >/var/log/messages.1.gz:Aug 9 08:49:33 mail /kernel: pid 26372 >(sendmail), uid 0: exited on signal 10 >/var/log/messages.1.gz:Aug 9 >08:49:33 mail /kernel: pid 26354 (sendmail), uid 0: exited on signal >10 > >Jeff Palmer wrote: >> >> -----BEGIN PGP SIGNED MESSAGE----- >> Hash: SHA1 >> >> Would help if we saw some of the logs.. >> >> Jeff >> >> At 02:04 PM 8/9/00 -0400, you wrote: >> >Greetings, >> > >> >I'm losing sendmail every couple of days >> >to a signal 10 under 3.4 (from the cdrom). >> >I've put in a cron job to restart it when >> >it dies. >> > >> >Any ideas as to how to debug this? >> > >> >Dale Mc Swain >> > >> > >> >To Unsubscribe: send mail to majordomo@FreeBSD.org >> >with "unsubscribe freebsd-isp" in the body of the message >> >> -----BEGIN PGP SIGNATURE----- >> Version: PGPfreeware 6.5.1 for non-commercial use >> >> iQA/AwUBOZGfZc4OBXy2X0wKEQLuGQCg7q6Nx/mGlAEpQjrxtBhfLO3/5ykAoPoD >> KJFPcQNsBAtC89SVsqd3ChT9 >> =D/Da >> -----END PGP SIGNATURE----- > > >To Unsubscribe: send mail to majordomo@FreeBSD.org >with "unsubscribe freebsd-isp" in the body of the message -- Pete Fritchman Databits Network Services, Inc http://www.databits.net finger: petef@analog.databits.net To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Aug 9 13:31:56 2000 Delivered-To: freebsd-isp@freebsd.org Received: from auemlsrv.firewall.lucent.com (auemail1.lucent.com [192.11.223.161]) by hub.freebsd.org (Postfix) with ESMTP id D529837BA28 for ; Wed, 9 Aug 2000 13:31:47 -0700 (PDT) (envelope-from jmcswain@lucent.com) Received: from auemlsrv.firewall.lucent.com (localhost [127.0.0.1]) by auemlsrv.firewall.lucent.com (Pro-8.9.3/8.9.3) with ESMTP id QAA27051 for ; Wed, 9 Aug 2000 16:31:46 -0400 (EDT) Received: from cbemh.cb.lucent.com (h135-7-35-160.lucent.com [135.7.35.160]) by auemlsrv.firewall.lucent.com (Pro-8.9.3/8.9.3) with ESMTP id QAA27038 for ; Wed, 9 Aug 2000 16:31:45 -0400 (EDT) Received: by cbemh.cb.lucent.com (8.8.8+Sun/EMS-1.5 sol2) id QAA28043; Wed, 9 Aug 2000 16:31:43 -0400 (EDT) Cc: freebsd-isp@FreeBSD.ORG Received: from lucent.com by cbemh.cb.lucent.com (8.8.8+Sun/EMS-1.5 sol2) id QAA28034; Wed, 9 Aug 2000 16:31:42 -0400 (EDT) Message-ID: <3991BF87.8AA9AD3F@lucent.com> Date: Wed, 09 Aug 2000 16:31:03 -0400 From: "J.D McSwain" Organization: Lucent Technologies X-Mailer: Mozilla 4.06 [en]C-CCK-MCD EMS-1.4 (Win98; I) MIME-Version: 1.0 To: Pete Fritchman Original-CC: freebsd-isp@FreeBSD.ORG Subject: Re: Sendmail crashing under 3.4 release References: <4.3.2.7.0.20000809141330.00b9a670@127.0.0.1> <3991AAFE.FC67EE82@lucent.com> <20000809154911.A20292@databits.net> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Nothing. Dale Pete Fritchman wrote: > > Anything useful in /var/log/maillog? > > -Pete > > ++ 09/08/00 15:03 -0400 - J.D McSwain: > >Jeff, > > > >The only log entry that I got was > >the signal 10 > > > >/var/log/messages.1.gz:Aug 9 08:49:33 mail /kernel: pid 26372 > >(sendmail), uid 0: exited on signal 10 > >/var/log/messages.1.gz:Aug 9 > >08:49:33 mail /kernel: pid 26354 (sendmail), uid 0: exited on signal > >10 > > > >Jeff Palmer wrote: > >> > >> -----BEGIN PGP SIGNED MESSAGE----- > >> Hash: SHA1 > >> > >> Would help if we saw some of the logs.. > >> > >> Jeff > >> > >> At 02:04 PM 8/9/00 -0400, you wrote: > >> >Greetings, > >> > > >> >I'm losing sendmail every couple of days > >> >to a signal 10 under 3.4 (from the cdrom). > >> >I've put in a cron job to restart it when > >> >it dies. > >> > > >> >Any ideas as to how to debug this? > >> > > >> >Dale Mc Swain > >> > > >> > > >> >To Unsubscribe: send mail to majordomo@FreeBSD.org > >> >with "unsubscribe freebsd-isp" in the body of the message > >> > >> -----BEGIN PGP SIGNATURE----- > >> Version: PGPfreeware 6.5.1 for non-commercial use > >> > >> iQA/AwUBOZGfZc4OBXy2X0wKEQLuGQCg7q6Nx/mGlAEpQjrxtBhfLO3/5ykAoPoD > >> KJFPcQNsBAtC89SVsqd3ChT9 > >> =D/Da > >> -----END PGP SIGNATURE----- > > > > > >To Unsubscribe: send mail to majordomo@FreeBSD.org > >with "unsubscribe freebsd-isp" in the body of the message > -- > Pete Fritchman > Databits Network Services, Inc > http://www.databits.net > finger: petef@analog.databits.net > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu Aug 10 2:46:30 2000 Delivered-To: freebsd-isp@freebsd.org Received: from malawi.net (mx2.malawi.net [208.148.169.8]) by hub.freebsd.org (Postfix) with ESMTP id B988637B980; Thu, 10 Aug 2000 02:45:34 -0700 (PDT) (envelope-from gani.phiri@wiss.co.mw) Received: from ben (malawi.net [208.148.169.182] (may be forged)) by malawi.net (8.10.0/8.10.0) with SMTP id e7A9A4121899; Thu, 10 Aug 2000 11:10:27 +0200 (CAT) Message-ID: <007a01c002f7$020a9700$6502a8c0@ben> From: "Ganizani Phiri" To: "Chris Szilagyi" , "Subscribers of Qpopper" , "Randall Gellens" Cc: , , References: <273884749818919440879@lists.pensive.org> <529986597270799650106@lists.pensive.org> Subject: Sendmail Vs Exim Date: Thu, 10 Aug 2000 11:14:00 -0700 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.00.2615.200 X-MimeOLE: Produced By Microsoft MimeOLE V5.00.2615.200 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Excuse me. I know this could be a wrong forum. But obviously not a wrong people. Would somebody tell me the better software between exim-3.13 or sendmail-8.10.* Thanxs in advance. Ganizani Phiri Systems Administrator Web and Internet System Solutions Malawi. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu Aug 10 7:18: 4 2000 Delivered-To: freebsd-isp@freebsd.org Received: from shemp.palomine.net (shemp.palomine.net [205.198.88.200]) by hub.freebsd.org (Postfix) with SMTP id 4B25A37BA23 for ; Thu, 10 Aug 2000 07:18:00 -0700 (PDT) (envelope-from cjohnson@palomine.net) Received: (qmail 39299 invoked by uid 1000); 10 Aug 2000 14:17:57 -0000 Date: Thu, 10 Aug 2000 10:17:57 -0400 From: Chris Johnson To: Ganizani Phiri Cc: Chris Szilagyi , Subscribers of Qpopper , Randall Gellens , chris@esphere.net, freebsd-questions@freebsd.org, freebsd-isp@freebsd.org Subject: Re: Sendmail Vs Exim Message-ID: <20000810101757.A39281@palomine.net> References: <273884749818919440879@lists.pensive.org> <529986597270799650106@lists.pensive.org> <007a01c002f7$020a9700$6502a8c0@ben> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.4i In-Reply-To: <007a01c002f7$020a9700$6502a8c0@ben>; from gani.phiri@wiss.co.mw on Thu, Aug 10, 2000 at 11:14:00AM -0700 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Thu, Aug 10, 2000 at 11:14:00AM -0700, Ganizani Phiri wrote: > Excuse me. I know this could be a wrong forum. You're right--it is the wrong forum. Take it elsewhere. > But obviously not a wrong people. Would somebody tell me the better software > between exim-3.13 or sendmail-8.10.* To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu Aug 10 7:20:56 2000 Delivered-To: freebsd-isp@freebsd.org Received: from shemp.palomine.net (shemp.palomine.net [205.198.88.200]) by hub.freebsd.org (Postfix) with SMTP id 5440C37BE90 for ; Thu, 10 Aug 2000 07:20:53 -0700 (PDT) (envelope-from cjohnson@palomine.net) Received: (qmail 39364 invoked by uid 1000); 10 Aug 2000 14:20:45 -0000 Date: Thu, 10 Aug 2000 10:20:45 -0400 From: Chris Johnson To: Ganizani Phiri Cc: Chris Szilagyi , Subscribers of Qpopper , Randall Gellens , chris@esphere.net, freebsd-questions@freebsd.org, freebsd-isp@freebsd.org Subject: Re: Sendmail Vs Exim Message-ID: <20000810102045.A39346@palomine.net> References: <273884749818919440879@lists.pensive.org> <529986597270799650106@lists.pensive.org> <007a01c002f7$020a9700$6502a8c0@ben> <20000810101757.A39281@palomine.net> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.4i In-Reply-To: <20000810101757.A39281@palomine.net>; from cjohnson@palomine.net on Thu, Aug 10, 2000 at 10:17:57AM -0400 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Thu, Aug 10, 2000 at 10:17:57AM -0400, Chris Johnson wrote: > On Thu, Aug 10, 2000 at 11:14:00AM -0700, Ganizani Phiri wrote: > > Excuse me. I know this could be a wrong forum. > > You're right--it is the wrong forum. Take it elsewhere. Oops! Sorry about that. I thought I was reading a message on the qmail list. Chris To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu Aug 10 9:22: 3 2000 Delivered-To: freebsd-isp@freebsd.org Received: from phoenix.volant.org (phoenix.volant.org [205.179.79.193]) by hub.freebsd.org (Postfix) with ESMTP id 812D937B658; Thu, 10 Aug 2000 09:21:47 -0700 (PDT) (envelope-from patl@Phoenix.Volant.ORG) Received: from asimov.phoenix.volant.org ([205.179.79.65]) by phoenix.volant.org with esmtp (Exim 1.92 #8) id 13Mv5J-0007Fo-00; Thu, 10 Aug 2000 09:21:33 -0700 Received: from localhost (localhost [127.0.0.1]) by asimov.phoenix.volant.org (8.9.3+Sun/8.9.3) with SMTP id JAA16041; Thu, 10 Aug 2000 09:21:07 -0700 (PDT) From: patl@Phoenix.Volant.ORG Date: Thu, 10 Aug 2000 09:21:07 -0700 (PDT) Reply-To: patl@Phoenix.Volant.ORG Subject: Re: Sendmail Vs Exim To: Ganizani Phiri Cc: Chris Szilagyi , Subscribers of Qpopper , Randall Gellens , chris@esphere.net, freebsd-questions@freebsd.org, freebsd-isp@freebsd.org In-Reply-To: <007a01c002f7$020a9700$6502a8c0@ben> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; CHARSET=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On 10-Aug-00 at 02:47, Ganizani Phiri (gani.phiri@wiss.co.mw) wrote: > > Excuse me. I know this could be a wrong forum. But obviously not a wrong > people. Would somebody tell me the better software between exim-3.13 or > sendmail-8.10.* This is something of a religious issue, like the vi-vs-emacs debate. It depends heavily on your personal definition of 'better'. Sendmail has the advantage of a larger userbase and a longer history. Exim has the advantage of -MUCH- easier to understand configuration files. Sendmail is a frequent target for cracker attacks. The supporters of Sendmail claim that because of this, it is is now one one of the most secure MTAs available. Sendmail detractors remain unconvinced. I do not know of any exploit ever being found against Exim. Sendmail supporters would say that is because the crackers haven't bothered to target exim. Exim supporters say it is because exim is better written in the first place. I switched to exim several years ago when sendmail didn't support virtual domains at all. I've been extremely happy with the flexability and ease of configuration as compared to Sendmail. -Pat To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Aug 11 0:28:37 2000 Delivered-To: freebsd-isp@freebsd.org Received: from daemon.jump.net (daemon.jump.net [206.196.88.67]) by hub.freebsd.org (Postfix) with ESMTP id 7F4AE37BA03; Fri, 11 Aug 2000 00:28:33 -0700 (PDT) (envelope-from jnn@daemon.jump.net) Received: (from jnn@localhost) by daemon.jump.net (8.11.0/8.11.0) id e7B7R6q59308; Fri, 11 Aug 2000 02:27:06 -0500 (CDT) Date: Fri, 11 Aug 2000 02:27:06 -0500 From: John Newman To: Ganizani Phiri Cc: Chris Szilagyi , Subscribers of Qpopper , Randall Gellens , chris@esphere.net, freebsd-questions@FreeBSD.ORG, freebsd-isp@FreeBSD.ORG Subject: Re: Sendmail Vs Exim Message-ID: <20000811022706.A59284@daemon.jump.net> References: <273884749818919440879@lists.pensive.org> <529986597270799650106@lists.pensive.org> <007a01c002f7$020a9700$6502a8c0@ben> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2i In-Reply-To: <007a01c002f7$020a9700$6502a8c0@ben>; from gani.phiri@wiss.co.mw on Thu, Aug 10, 2000 at 11:14:00AM -0700 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org > > Excuse me. I know this could be a wrong forum. But obviously not a wrong > people. Would somebody tell me the better software between exim-3.13 or > sendmail-8.10.* Sendmail is a lot more fun, if you have time to invest in learning the configuration. -- John To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Aug 11 0:50:51 2000 Delivered-To: freebsd-isp@freebsd.org Received: from hc1.hci.net (hc1.hci.net [204.255.136.1]) by hub.freebsd.org (Postfix) with ESMTP id DDEAC37BF9E; Fri, 11 Aug 2000 00:50:46 -0700 (PDT) (envelope-from ahze@hci.net) Received: from 24-216-177-184.hsacorp.net (ahze@24-216-177-184.hsacorp.net [24.216.177.184]) by hc1.hci.net (8.9.0/8.9.0) with ESMTP id DAA08961; Fri, 11 Aug 2000 03:49:33 -0400 (EDT) Message-Id: <200008110749.DAA08961@hc1.hci.net> Date: Fri, 11 Aug 2000 03:50:01 EDT From: ahze@hci.net To: John Newman , Ganizani Phiri Cc: Chris Szilagyi , Subscribers of Qpopper , Randall Gellens , chris@esphere.net, freebsd-questions@FreeBSD.ORG, freebsd-isp@FreeBSD.ORG Subject: Re: Sendmail Vs Exim Reply-To: ahze@wp.cc.nc.us X-Mailer: Spruce 0.6.5 for X11 w/smtpio 0.7.9 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 8bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org exim doesnt run as root though On Fri, 11 Aug 2000, John Newman wrote: > Date: Fri, 11 Aug 2000 02:27:06 -0500 > To: Ganizani Phiri > From: John Newman > Subject: Re: Sendmail Vs Exim > > > > > Excuse me. I know this could be a wrong forum. But obviously not a > wrong > > people. Would somebody tell me the better software between exim-3.13 or > > sendmail-8.10.* > > Sendmail is a lot more fun, if you have time to invest in learning > the configuration. > > -- > John > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-questions" in the body of the message To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Aug 11 1:46: 2 2000 Delivered-To: freebsd-isp@freebsd.org Received: from dire.bris.ac.uk (dire.bris.ac.uk [137.222.10.60]) by hub.freebsd.org (Postfix) with ESMTP id 120D937BFD6 for ; Fri, 11 Aug 2000 01:46:00 -0700 (PDT) (envelope-from Jan.Grant@bristol.ac.uk) Received: from mail.ilrt.bris.ac.uk by dire.bris.ac.uk with SMTP-PRIV with ESMTP; Fri, 11 Aug 2000 09:45:51 +0100 Received: from localhost (cmjg@localhost) by mail.ilrt.bris.ac.uk (8.8.7/8.8.8) with ESMTP id JAA25290; Fri, 11 Aug 2000 09:45:49 +0100 (BST) Date: Fri, 11 Aug 2000 09:45:48 +0100 (BST) From: Jan Grant To: freebsd-questions@freebsd.org Cc: freebsd-isp@FreeBSD.ORG Subject: Re: Sendmail Vs Exim In-Reply-To: <200008110749.DAA08961@hc1.hci.net> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Fri, 11 Aug 2000 ahze@hci.net wrote: > exim doesnt run as root though Yes it does, when it needs to. The documentation (very good) is available at exim.org; why not take a look? > > Sendmail is a lot more fun, if you have time to invest in learning > > the configuration. I'd agree with this; however, we're just in the process of switching to a new MTA. We went for Exim here because (a) it did everything we wanted it to, (b) the user community has a very good user-interface, (c) it's well-specified, well-documented, (d) the code is straightforward to read and extend if required (though that's rare). Most importantly, though, was reason (e): the configuration is simpler to read! - not everyone here shares my affection for sendmail's way of doing things. jan PS. Yes, I know what my headers say; the switch to the new MTA has been delayed because of what appears to be a 'novelty' of Solaris 8's ffs :-( -- jan grant, ILRT, University of Bristol. http://www.ilrt.bris.ac.uk/ Tel +44(0)117 9287163 Fax +44 (0)117 9287112 RFC822 jan.grant@bris.ac.uk To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Aug 11 6: 3:11 2000 Delivered-To: freebsd-isp@freebsd.org Received: from ns0.sitesnow.com (ns0.sitesnow.com [63.166.182.130]) by hub.freebsd.org (Postfix) with ESMTP id 336AF37C111 for ; Fri, 11 Aug 2000 06:03:09 -0700 (PDT) (envelope-from gskouby@ns0.sitesnow.com) Received: from gskouby (helo=localhost) by ns0.sitesnow.com with local-esmtp (Exim 3.13 #1) id 13NESl-000Jhy-00 for freebsd-isp@freebsd.org; Fri, 11 Aug 2000 09:03:03 -0400 Date: Fri, 11 Aug 2000 09:03:03 -0400 (EDT) From: Greg Skouby To: freebsd-isp@freebsd.org Subject: anonymous rsync or RSA Auth with empty passwd? Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hello, I am in the process of making a "hot" copy of our main server here. The logical way (at least in my mind) would be to use rsync. I want to run it through a cron job every night or so. I believe I basically have two options here. One would be run rsync as a daemon and allow anonymous connections to it and copy the data like that. There are some security measures with the rysncd.conf such as hosts allow and hosts deny and some other things you can do as far as a security precaution. I just don't like the thought of having anonymous copying off our data. The second way would be to login as root with rysnc using empty rsa passwords. There are obvious security risks with that. Which way would the people on this list proceed with the task? Are there alternatives that I am missing that would be better? Thanks for the time. Have a good one. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Aug 11 6:25:19 2000 Delivered-To: freebsd-isp@freebsd.org Received: from day.anthologeek.net (day.anthologeek.net [212.43.217.20]) by hub.freebsd.org (Postfix) with ESMTP id EBDC337C102 for ; Fri, 11 Aug 2000 06:25:16 -0700 (PDT) (envelope-from sw@anthologeek.net) Received: by day.anthologeek.net (Postfix, from userid 1000) id 952291711B; Fri, 11 Aug 2000 15:22:13 +0200 (CEST) Date: Fri, 11 Aug 2000 15:22:13 +0200 From: Sameh Ghane To: Homerton Webmaster Cc: freebsd-isp@freebsd.org Subject: Re: Problems with proftpd Message-ID: <20000811152213.H3766@anthologeek.net> References: <000801c0015d$5e1f4db0$e2f799c3@corpex.net> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.4i In-Reply-To: <000801c0015d$5e1f4db0$e2f799c3@corpex.net>; from webmaster@homerton.org.uk on Tue, Aug 08, 2000 at 06:23:28PM +0100 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Le Tue, Aug 08, 2000 at 06:23:28PM +0100, Homerton Webmaster ecrivit: > Hi all, > > I've just installed proftpd1.2.0rc2 and thought all was going well, expect > now I can't chmod anything through ftp. proftpd changed it's default behaviour, now chmod is not allowed, and you have to explicitly allow it in the config file with: AllowChmod on It looks like it is an undocumented feature... To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Aug 11 6:25:46 2000 Delivered-To: freebsd-isp@freebsd.org Received: from hitline.ch (mail.hitline.ch [195.129.74.66]) by hub.freebsd.org (Postfix) with ESMTP id 5D16037C146 for ; Fri, 11 Aug 2000 06:25:36 -0700 (PDT) (envelope-from micheal@com4u.ch) Received: from [10.10.10.150] (HELO [10.10.10.150]) by hitline.ch (CommuniGate Pro SMTP 3.3b9) with ESMTP id 1880926 for freebsd-isp@freebsd.org; Fri, 11 Aug 2000 15:26:37 +0200 Mime-Version: 1.0 X-Sender: micheal%com4u.ch@mail.com4u.ch Message-Id: In-Reply-To: References: Date: Fri, 11 Aug 2000 15:25:20 +0200 To: freebsd-isp@freebsd.org From: Michael O Shea Subject: Re: anonymous rsync or RSA Auth with empty passwd? Content-Type: text/plain; charset="us-ascii" ; format="flowed" Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org >Hello, > >I am in the process of making a "hot" copy of our main server here. The >logical way (at least in my mind) would be to use rsync. Yup.Its perfect for that. > I want to run it >through a cron job every night or so. I believe I basically have two >options here. One would be run rsync as a daemon and allow anonymous >connections to it and copy the data like that. Why anonymous ? Use Rsyncs security settings.Define your Modules and who can sync them. You can run RSYNC over SSH if you wish. -- Micheal O Shea Email:micheal@com4u.ch com4u.ch http://www.com4u.ch Breitistrasse 7B PGP key available upon request. CH-5506 Maegenwil Tel: +41 62 896 46 26 Switzerland To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Aug 11 6:38: 2 2000 Delivered-To: freebsd-isp@freebsd.org Received: from ns0.sitesnow.com (ns0.sitesnow.com [63.166.182.130]) by hub.freebsd.org (Postfix) with ESMTP id 6D0A837BABF for ; Fri, 11 Aug 2000 06:37:53 -0700 (PDT) (envelope-from gskouby@ns0.sitesnow.com) Received: from gskouby (helo=localhost) by ns0.sitesnow.com with local-esmtp (Exim 3.13 #1) id 13NF0L-000K6F-00; Fri, 11 Aug 2000 09:37:45 -0400 Date: Fri, 11 Aug 2000 09:37:45 -0400 (EDT) From: Greg Skouby To: Michael O Shea Cc: freebsd-isp@freebsd.org Subject: Re: anonymous rsync or RSA Auth with empty passwd? In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org > > Why anonymous ? Use Rsyncs security settings.Define your Modules and > who can sync them. > You can run RSYNC over SSH if you wish. Because I want to run this via cron every night I was looking for a solution that didn't need a password to be entered. I can use the host allows and deny in the rsyncd.conf and also turn off listing of the modules and give the modules funky names for an extra "layer" of security. Albeit a weak/corny one. Sound like a viable solution? > > -- > > > Micheal O Shea Email:micheal@com4u.ch > com4u.ch http://www.com4u.ch > Breitistrasse 7B PGP key available upon request. > CH-5506 Maegenwil Tel: +41 62 896 46 26 > Switzerland > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Aug 11 6:45:15 2000 Delivered-To: freebsd-isp@freebsd.org Received: from hitline.ch (mail.hitline.ch [195.129.74.66]) by hub.freebsd.org (Postfix) with ESMTP id 49DA537B8A7 for ; Fri, 11 Aug 2000 06:45:10 -0700 (PDT) (envelope-from micheal@com4u.ch) Received: from [10.10.10.150] (HELO [10.10.10.150]) by hitline.ch (CommuniGate Pro SMTP 3.3b9) with ESMTP id 1881044 for freebsd-isp@freebsd.org; Fri, 11 Aug 2000 15:46:20 +0200 Mime-Version: 1.0 X-Sender: micheal%com4u.ch@mail.com4u.ch Message-Id: In-Reply-To: References: Date: Fri, 11 Aug 2000 15:45:05 +0200 To: freebsd-isp@freebsd.org From: Michael O Shea Subject: Re: anonymous rsync or RSA Auth with empty passwd? Content-Type: text/plain; charset="us-ascii" ; format="flowed" Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org > > >> Why anonymous ? Use Rsyncs security settings.Define your Modules and >> who can sync them. >> You can run RSYNC over SSH if you wish. > > >Because I want to run this via cron every night I was looking for a >solution that didn't need a password to be entered. I can use the host >allows and deny in the rsyncd.conf and also turn off listing of the >modules and give the modules funky names for an extra "layer" of security. >Albeit a weak/corny one. Sound like a viable solution? > Do not run rsync direct from cron. Instead get cron to run a script say myrsync.csh , which could be #! /bin/csh cd /usr/bin setenv RSYNC_PASSWORD blabla rsync -avW --stats --delete and so on....... -- Micheal O Shea Email:micheal@com4u.ch com4u.ch http://www.com4u.ch Breitistrasse 7B PGP key available upon request. CH-5506 Maegenwil Tel: +41 62 896 46 26 Switzerland To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Aug 11 7: 1:52 2000 Delivered-To: freebsd-isp@freebsd.org Received: from day.anthologeek.net (day.anthologeek.net [212.43.217.20]) by hub.freebsd.org (Postfix) with ESMTP id 8782437B91A for ; Fri, 11 Aug 2000 07:01:47 -0700 (PDT) (envelope-from sw@anthologeek.net) Received: by day.anthologeek.net (Postfix, from userid 1000) id AACBB1711B; Fri, 11 Aug 2000 15:58:40 +0200 (CEST) Date: Fri, 11 Aug 2000 15:58:40 +0200 From: Sameh Ghane To: Michael O Shea Cc: freebsd-isp@freebsd.org Subject: Re: anonymous rsync or RSA Auth with empty passwd? Message-ID: <20000811155840.I3766@anthologeek.net> References: Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.4i In-Reply-To: ; from micheal@com4u.ch on Fri, Aug 11, 2000 at 03:45:05PM +0200 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Le Fri, Aug 11, 2000 at 03:45:05PM +0200, Michael O Shea ecrivit: > > setenv RSYNC_PASSWORD blabla > rsync -avW --stats --delete and so on....... And if you don't want to use environment variables, which is quite probable, use the --password-file= option for rsync. Sameh. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Aug 11 7: 6:56 2000 Delivered-To: freebsd-isp@freebsd.org Received: from ns0.sitesnow.com (ns0.sitesnow.com [63.166.182.130]) by hub.freebsd.org (Postfix) with ESMTP id 556BC37BB96 for ; Fri, 11 Aug 2000 07:06:53 -0700 (PDT) (envelope-from gskouby@ns0.sitesnow.com) Received: from gskouby (helo=localhost) by ns0.sitesnow.com with local-esmtp (Exim 3.13 #1) id 13NFSG-000KR9-00; Fri, 11 Aug 2000 10:06:36 -0400 Date: Fri, 11 Aug 2000 10:06:35 -0400 (EDT) From: Greg Skouby To: Sameh Ghane Cc: Michael O Shea , freebsd-isp@freebsd.org Subject: Re: anonymous rsync or RSA Auth with empty passwd? In-Reply-To: <20000811155840.I3766@anthologeek.net> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org > > And if you don't want to use environment variables, which is quite probable, use > the --password-file= option for rsync. > Is the format for the password-file just one line of text with the corresponding password? To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Aug 11 7:10:33 2000 Delivered-To: freebsd-isp@freebsd.org Received: from day.anthologeek.net (day.anthologeek.net [212.43.217.20]) by hub.freebsd.org (Postfix) with ESMTP id EF0B937BD8F for ; Fri, 11 Aug 2000 07:10:30 -0700 (PDT) (envelope-from sw@anthologeek.net) Received: by day.anthologeek.net (Postfix, from userid 1000) id 944CE1711B; Fri, 11 Aug 2000 16:07:17 +0200 (CEST) Date: Fri, 11 Aug 2000 16:07:17 +0200 From: Sameh Ghane To: Greg Skouby Cc: freebsd-isp@freebsd.org Subject: Re: anonymous rsync or RSA Auth with empty passwd? Message-ID: <20000811160717.J3766@anthologeek.net> References: <20000811155840.I3766@anthologeek.net> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.4i In-Reply-To: ; from gskouby@ns0.sitesnow.com on Fri, Aug 11, 2000 at 10:06:35AM -0400 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Le Fri, Aug 11, 2000 at 10:06:35AM -0400, Greg Skouby ecrivit: > > > And if you don't want to use environment variables, which is quite probable, use > > the --password-file= option for rsync. > > Is the format for the password-file just one line of text with the > corresponding password? Yes. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Aug 11 7:28:24 2000 Delivered-To: freebsd-isp@freebsd.org Received: from vyrus.net (vyrus.net [207.246.130.43]) by hub.freebsd.org (Postfix) with ESMTP id BACCE37BAF6 for ; Fri, 11 Aug 2000 07:28:20 -0700 (PDT) (envelope-from phill@freebsd.org) Received: from localhost (phill@localhost) by vyrus.net (8.9.3/8.9.3) with ESMTP id HAA12923; Fri, 11 Aug 2000 07:27:13 -0700 (PDT) (envelope-from phill@freebsd.org) X-Authentication-Warning: vyrus.net: phill owned process doing -bs Date: Fri, 11 Aug 2000 07:27:13 -0700 (PDT) From: Phillip Salzman X-Sender: phill@vyrus.net To: Michael O Shea Cc: freebsd-isp@freebsd.org Subject: Re: anonymous rsync or RSA Auth with empty passwd? In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Instead of keeping the password in clear text, what about using SSH authentication keys and host rules? I've set it up like that in the past, and had zero problems with it. --- Phillip Salzman phill@freebsd.org On Fri, 11 Aug 2000, Michael O Shea wrote: > > > > >> Why anonymous ? Use Rsyncs security settings.Define your Modules and > >> who can sync them. > >> You can run RSYNC over SSH if you wish. > > > > > >Because I want to run this via cron every night I was looking for a > >solution that didn't need a password to be entered. I can use the host > >allows and deny in the rsyncd.conf and also turn off listing of the > >modules and give the modules funky names for an extra "layer" of security. > >Albeit a weak/corny one. Sound like a viable solution? > > > Do not run rsync direct from cron. Instead get cron to run a script > say myrsync.csh , which could be > > > #! /bin/csh > cd /usr/bin > setenv RSYNC_PASSWORD blabla > rsync -avW --stats --delete and so on....... > -- > > > Micheal O Shea Email:micheal@com4u.ch > com4u.ch http://www.com4u.ch > Breitistrasse 7B PGP key available upon request. > CH-5506 Maegenwil Tel: +41 62 896 46 26 > Switzerland > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Aug 11 9:45:26 2000 Delivered-To: freebsd-isp@freebsd.org Received: from finland.ispro.net.tr (finland.ispro.net.tr [212.174.120.1]) by hub.freebsd.org (Postfix) with ESMTP id 9DF3737B720 for ; Fri, 11 Aug 2000 09:44:56 -0700 (PDT) (envelope-from yurtesen@ispro.net.tr) Received: from localhost (yurtesen@localhost) by finland.ispro.net.tr (8.9.3/8.9.3) with ESMTP id TAA14024 for ; Fri, 11 Aug 2000 19:44:55 +0300 (EEST) (envelope-from yurtesen@ispro.net.tr) Date: Fri, 11 Aug 2000 19:44:54 +0300 (EEST) From: Evren Yurtesen To: freebsd-isp@freebsd.org Subject: root password in NIS maps Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org I would like to have root password in NIS maps but there is only one problem. When I login to a client machine everything works fine. I can even use 'su' but when I use a command like 'ls -la' I see 0 for the UID field of the output. Does anybody have root password in their NIS maps and it works fine? if yes then how??? Evren To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Aug 11 9:50:10 2000 Delivered-To: freebsd-isp@freebsd.org Received: from mail.alpha1.net (mail.alpha1.net [216.88.112.3]) by hub.freebsd.org (Postfix) with ESMTP id 72FC437B77B for ; Fri, 11 Aug 2000 09:50:04 -0700 (PDT) (envelope-from marius@alpha1.net) Received: from beaker.alpha1.net (beaker.alpha1.net [216.88.237.14]) by mail.alpha1.net (8.9.3/8.9.3) with ESMTP id LAA04184; Fri, 11 Aug 2000 11:49:24 -0500 Date: Fri, 11 Aug 2000 11:49:24 -0500 (CDT) From: Marius Strom To: Evren Yurtesen Cc: freebsd-isp@FreeBSD.ORG Subject: Re: root password in NIS maps In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On an unrelated note, I hope your NIS master doesn't ever go down. -- Marius Strom Professional Geek/Unix System Administrator Alpha1 Internet http://www.marius.org/marius.pgp 0x42C74CBA Turn off the faucet? We're too busy mopping up the floor! On Fri, 11 Aug 2000, Evren Yurtesen wrote: > I would like to have root password in NIS maps but there is only one > problem. When I login to a client machine everything works fine. I can > even use 'su' but when I use a command like 'ls -la' I see 0 for the UID > field of the output. > > Does anybody have root password in their NIS maps and it works fine? if > yes then how??? > > Evren > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Aug 11 9:57:24 2000 Delivered-To: freebsd-isp@freebsd.org Received: from finland.ispro.net.tr (finland.ispro.net.tr [212.174.120.1]) by hub.freebsd.org (Postfix) with ESMTP id 0656E37B55C for ; Fri, 11 Aug 2000 09:57:17 -0700 (PDT) (envelope-from yurtesen@ispro.net.tr) Received: from localhost (yurtesen@localhost) by finland.ispro.net.tr (8.9.3/8.9.3) with ESMTP id TAA27332; Fri, 11 Aug 2000 19:57:12 +0300 (EEST) (envelope-from yurtesen@ispro.net.tr) Date: Fri, 11 Aug 2000 19:57:12 +0300 (EEST) From: Evren Yurtesen To: Marius Strom Cc: freebsd-isp@FreeBSD.ORG Subject: Re: root password in NIS maps In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org I thought of that. I will have NIS secondary and toor passwords set. Only a very restricted set of people will know the toor password but others will know the root password. So it will be easy to update the root passwords while keeping redundancy. Dont you think that this would be nice if NIS in FreeBSD could understand the root passwords? Evren On Fri, 11 Aug 2000, Marius Strom wrote: > On an unrelated note, I hope your NIS master doesn't ever go down. > > -- > Marius Strom > Professional Geek/Unix System Administrator > Alpha1 Internet > http://www.marius.org/marius.pgp 0x42C74CBA > > Turn off the faucet? We're too busy mopping up the floor! > > On Fri, 11 Aug 2000, Evren Yurtesen wrote: > > > I would like to have root password in NIS maps but there is only one > > problem. When I login to a client machine everything works fine. I can > > even use 'su' but when I use a command like 'ls -la' I see 0 for the UID > > field of the output. > > > > Does anybody have root password in their NIS maps and it works fine? if > > yes then how??? > > > > Evren > > > > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > > with "unsubscribe freebsd-isp" in the body of the message > > > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Aug 11 10: 4:58 2000 Delivered-To: freebsd-isp@freebsd.org Received: from mail.prophetnetworks.net (mail.pns.net [63.71.252.9]) by hub.freebsd.org (Postfix) with ESMTP id 07D5237B55C for ; Fri, 11 Aug 2000 10:04:50 -0700 (PDT) (envelope-from freebsd@jnternet.net) Received: from shell01.pns.net (nmj3e@shell01.prophetnetworks.net [63.71.252.10]) by mail.prophetnetworks.net (8.9.3/8.9.1) with ESMTP id MAA99659; Fri, 11 Aug 2000 12:03:52 -0500 (EST) (envelope-from freebsd@jnternet.net) Date: Fri, 11 Aug 2000 12:03:52 -0500 (EST) From: Nate Johnston X-Sender: nmj3e@shell01.pns.net To: Evren Yurtesen Cc: freebsd-isp@freebsd.org Subject: Re: root password in NIS maps In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Fri, 11 Aug 2000, Evren Yurtesen wrote: > I would like to have root password in NIS maps but there is only one > problem. When I login to a client machine everything works fine. I can > even use 'su' but when I use a command like 'ls -la' I see 0 for the UID > field of the output. > > Does anybody have root password in their NIS maps and it works fine? if > yes then how??? Having the password for user 'root' in your NIS maps is really a bad idea. What happens if the machine fails, and for some reason it can't connect to the NIS server? What happens when you want to use the server in single-user mode? probably the best thing to do is this: leave 'root' as a local UID 0 user as usual. On your NIS server, create a new user that also has UID 0, but with a centrally controlled password. Then, the local root will assert itself in all the usual ways (UID mapping, single-user-mode passwords), but you will be able to control root logins. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Aug 11 13:14:41 2000 Delivered-To: freebsd-isp@freebsd.org Received: from FergInc.com (toth.ferguson.com [205.139.23.69]) by hub.freebsd.org (Postfix) with ESMTP id 2E55337BB29 for ; Fri, 11 Aug 2000 13:14:29 -0700 (PDT) (envelope-from branson@FergInc.com) Received: (from branson@localhost) by FergInc.com (8.9.2/8.9.1) id QAA54685 for freebsd-isp@FreeBSD.ORG; Fri, 11 Aug 2000 16:14:27 -0400 (EDT) Date: Fri, 11 Aug 2000 16:14:27 -0400 From: Branson Matheson To: freebsd-isp@FreeBSD.ORG Subject: Re: root password in NIS maps Message-ID: <20000811161426.K2314@toth.ferginc.com> Reply-To: Branson.Matheson@FergInc.com Mail-Followup-To: freebsd-isp@FreeBSD.ORG References: Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 1.0i In-Reply-To: ; from freebsd@jnternet.net on Fri, Aug 11, 2000 at 12:03:52PM -0500 Organization: Ferguson Enterprises, Inc. X-Operating-System: FreeBSD 3.1-19990306-STABLE Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Ugh.. a better solution is to use a program like sudo and runas.. using root routinely for anything is a bad idea - there is little to no tracking on what was done - the only log you have is that it was logged into - the more people that know the password the more people that can be held liable if there is a breach of security Having under NIS is bad for the below reasons .. but also because NIS is inherently insecure!!! it is not that hard to spoof an NIS client. So anyone could get root. And... Unless you have been really careful.. it would be fairly easy to bind to your server and pull your password file ( including root ) and given the speed of computers these days.. and a good dictionary and rules file .. your root password could be brute forced at some point. Better to not make it available at all.. use runas/sudo to allocate specific commands to those that need them.. impliment central syslogging so that you have a record, and go from there. As a rule .. you never want priviledged logins under a distributed login system. *possibly* LDAP .. if you have been anal retentive in setting it up. But definately not NIS. As much as a PITA as it is to maintain the apache account seperately on all hosts .. it is a better solution. ssh can be your friend for this. rdist as well.. there are any number of fairly well documented push and pull schemes out on the net using those two softwares to mass update accounts in a secure manner. - branson On Fri, Aug 11, 2000 at 12:03:52PM -0500,Nate Johnston did mutter: > On Fri, 11 Aug 2000, Evren Yurtesen wrote: > > > I would like to have root password in NIS maps but there is only one > > problem. When I login to a client machine everything works fine. I can > > even use 'su' but when I use a command like 'ls -la' I see 0 for the UID > > field of the output. > > > > Does anybody have root password in their NIS maps and it works fine? if > > yes then how??? > > Having the password for user 'root' in your NIS maps is really a bad > idea. What happens if the machine fails, and for some reason it can't > connect to the NIS server? What happens when you want to use the server > in single-user mode? > > probably the best thing to do is this: leave 'root' as a local UID 0 user > as usual. On your NIS server, create a new user that also has UID 0, but > with a centrally controlled password. Then, the local root will assert > itself in all the usual ways (UID mapping, single-user-mode passwords), > but you will be able to control root logins. > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message - branson ------------------------------------------------------------------------------- Branson Matheson " If you are falling off of a mountain, Unix Systems Manager You may as well try to fly." Ferguson Enterprises, Inc. - Delenn, Minbari Ambassador ( $statements = ) !~ /Corporate Opinion/; To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message