From owner-freebsd-isp Sun Aug 20 9:17:18 2000 Delivered-To: freebsd-isp@freebsd.org Received: from mail.polytechnic.edu.na (mail.polytechnic.edu.na [196.31.225.2]) by hub.freebsd.org (Postfix) with ESMTP id 3E01837B423 for ; Sun, 20 Aug 2000 09:17:13 -0700 (PDT) Received: from ns1.horizon.na ([196.31.225.199] helo=polytechnic.edu.na) by mail.polytechnic.edu.na with esmtp (Exim 3.02 #2) id 13Qabz-0000EA-00; Sun, 20 Aug 2000 17:18:27 -0200 Message-ID: <39A0048A.B2310DE4@polytechnic.edu.na> Date: Sun, 20 Aug 2000 17:17:14 +0100 From: Tim Priebe Reply-To: tim@iafrica.com.na X-Mailer: Mozilla 4.7 [en] (X11; I; FreeBSD 3.4-RELEASE i386) X-Accept-Language: en MIME-Version: 1.0 To: Dennis Cc: Stanley Hopcroft , freebsd-isp@freebsd.org Subject: Re: Throughput & Availability: Does anyone have experiencewith Trunking products (eg EtherChannel) ... ? References: <200008191506.LAA10918@etinc.com> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Dennis wrote: > > > eg 4 100 TX NICs > > => 200 Mbps => 400 Mbps > > > >Auto Failover Yes Yes > > We've considered doing this by balancing ethernets within bridge groups > (using our bridging code), but we have doubts about the marketability. > "Marketability" implies 1) the number of people who need it and 2) the > number of people willing to pay for a commercial product. > > Its fairly easy for us to do, but the question we ask is "why not just use > gigabit ethernet" if the application is PTP. If you are talking that sort of load, then gigabit ethernet makes a lot of sense for interupt load as well. A 64 Bit PCI card will reduce the time to transfer the data over the bus, and I understand that multiple packets can be handled per interupt on the Alteon cards. Tim. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sun Aug 20 9:20:43 2000 Delivered-To: freebsd-isp@freebsd.org Received: from mail.polytechnic.edu.na (mail.polytechnic.edu.na [196.31.225.2]) by hub.freebsd.org (Postfix) with ESMTP id 2B0D437B424 for ; Sun, 20 Aug 2000 09:20:38 -0700 (PDT) Received: from ns1.horizon.na ([196.31.225.199] helo=polytechnic.edu.na) by mail.polytechnic.edu.na with esmtp (Exim 3.02 #2) id 13Qafi-0000EO-00; Sun, 20 Aug 2000 17:22:18 -0200 Message-ID: <39A00571.F4CE407@polytechnic.edu.na> Date: Sun, 20 Aug 2000 17:21:05 +0100 From: Tim Priebe Reply-To: tim@iafrica.com.na X-Mailer: Mozilla 4.7 [en] (X11; I; FreeBSD 3.4-RELEASE i386) X-Accept-Language: en MIME-Version: 1.0 To: Chris Cook Cc: Nick Evans , freebsd-isp@freebsd.org Subject: Re: Monitoring Network Traffic References: <712384017032D411AD7B0001023D799B33B2BF@sn1exchmbx.nextvenue.com> <399DAF96.30129A@tcworks.net> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org If all of the data passes through a FreeBSD box, set up a firewall rule for each IP address, and feed the byte count for each rule into MRTG or what ever. Tim. Chris Cook wrote: > > I currently have MRTG in place but I was wanting to know if there was > someway to record say... which ip addresses get the most traffic.. > Thanks! > > > Nick Evans wrote: > > > > MRTG > > > > > -----Original Message----- > > From: Chris Cook [mailto:ccook@tcworks.net] > > Sent: Friday, August 18, 2000 3:46 PM > > To: freebsd-isp@freebsd.org > > Subject: Monitoring Network Traffic > > > > Hello all, > > I was wondering if anyone had some good suggestions on > > software that > > would allow us to monitor where the majority of our backbone traffic > > is > > being used. We have a cisco border router and FreeBSD servers... is > > there some port or package that will help? Thanks in advance! > > > > -- > Chris > > o----< ccook@tcworks.net >-----------------------------------------o > |Chris Cook - Network Admin | TCWORKS.NET - http://www.tcworks.net | > |The Computer Works ISP | FreeBSD - http://www.freebsd.org | > o------------------------------------------------------------------o > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sun Aug 20 10:46:10 2000 Delivered-To: freebsd-isp@freebsd.org Received: from qmail.corpex.net (qmail.corpex.net [195.153.247.40]) by hub.freebsd.org (Postfix) with SMTP id 725D237B42C for ; Sun, 20 Aug 2000 10:46:08 -0700 (PDT) Received: (qmail 49414 invoked from network); 20 Aug 2000 17:48:25 -0000 Received: from perseus.corpex.net (HELO perseus) (195.153.247.226) by qmail.corpex.net with SMTP; 20 Aug 2000 17:48:25 -0000 From: "Jonathan Defries" To: Cc: Subject: RE: Secure Email end-to-end? Date: Sun, 20 Aug 2000 18:46:05 +0100 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2910.0) X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4133.2400 In-Reply-To: <399F0951.964BA9D0@aspenworks.com> Importance: Normal Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org PGP is probably the best solution for end-to-end encryption. There are lots of clients which support this now, Outlook, Outlook Express, Eudora, Calypso, mutt etc. http://www.pgpi.org/products/tools/search/ - Jonathan > -----Original Message----- > From: owner-freebsd-isp@FreeBSD.ORG > [mailto:owner-freebsd-isp@FreeBSD.ORG]On Behalf Of Alex > Sent: 19 August 2000 23:25 > Cc: freebsd-isp@FreeBSD.ORG > Subject: Secure Email end-to-end? > > > > We have a small number of paranoid clients who'd really like us to > provide encrypted Email services. Any suggestions on which method > would provide end-to-end encoded email best? Perfer Netscape Email > end-to-end or MS if need be. > > Thanks, > > -Alex > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sun Aug 20 10:58:10 2000 Delivered-To: freebsd-isp@freebsd.org Received: from agora.rdrop.com (agora.rdrop.com [199.2.210.241]) by hub.freebsd.org (Postfix) with ESMTP id 14A5B37B424 for ; Sun, 20 Aug 2000 10:58:07 -0700 (PDT) Received: (from alan@localhost) by agora.rdrop.com (8.8.7/8.8.7) id KAA14480 for isp@freebsd.org; Sun, 20 Aug 2000 10:58:06 -0700 (PDT) (envelope-from alan) Date: Sun, 20 Aug 2000 10:58:06 -0700 From: Alan Batie To: isp@freebsd.org Subject: Re: Secure Email end-to-end? Message-ID: <20000820105805.B11533@agora.rdrop.com> Mail-Followup-To: isp@freebsd.org References: <399F0951.964BA9D0@aspenworks.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.4i In-Reply-To: <399F0951.964BA9D0@aspenworks.com>; from alex@aspenworks.com on Sat, Aug 19, 2000 at 04:25:21PM -0600 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Sat, Aug 19, 2000 at 04:25:21PM -0600, Alex wrote: > We have a small number of paranoid clients who'd really like us to > provide encrypted Email services. Any suggestions on which method > would provide end-to-end encoded email best? Perfer Netscape Email > end-to-end or MS if need be. Netscape supports S/MIME; you just need to get certificates for the clients, but PGP is a more widely used encryption method and would be my recommendation. -- Alan Batie ______ www.rdrop.com/users/alan Me alan@batie.org \ / www.qrd.org The Triangle PGPFP DE 3C 29 17 C0 49 7A \ / www.pgpi.com The Weird Numbers 27 40 A5 3C 37 4A DA 52 B9 \/ www.anti-spam.net NO SPAM! To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sun Aug 20 12:25: 9 2000 Delivered-To: freebsd-isp@freebsd.org Received: from bsdie.rwsystems.net (bsdie.rwsystems.net [209.197.223.2]) by hub.freebsd.org (Postfix) with ESMTP id 3395E37B42C for ; Sun, 20 Aug 2000 12:25:08 -0700 (PDT) Received: from bsdie.rwsystems.net([209.197.223.2]) (1087 bytes) by bsdie.rwsystems.net via sendmail with P:esmtp/R:bind_hosts/T:inet_zone_bind_smtp (sender: ) id for ; Sun, 20 Aug 2000 14:19:54 -0500 (CDT) (Smail-3.2.0.106 1999-Mar-31 #1 built 1999-Aug-7) Date: Sun, 20 Aug 2000 14:19:53 -0500 (CDT) From: James Wyatt To: freebsd-isp@FreeBSD.ORG Subject: Re: Secure Email end-to-end? In-Reply-To: <399F0951.964BA9D0@aspenworks.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org You can 'cheat' by using a webmail package and the https support in netscape. Your server CPU takes the hit, but you can also have PGP via procmail to enable simple encryption to outside folks. Another plus: you get whatever other features the webmail package provides, like sncrypted group calendaring, etc... - Jy@ On Sat, 19 Aug 2000, Alex wrote: > We have a small number of paranoid clients who'd really like us to > provide encrypted Email services. Any suggestions on which method > would provide end-to-end encoded email best? Perfer Netscape Email > end-to-end or MS if need be. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sun Aug 20 12:37:55 2000 Delivered-To: freebsd-isp@freebsd.org Received: from hitline.ch (ccgate.com4u.ch [195.129.74.66]) by hub.freebsd.org (Postfix) with ESMTP id CDAE337B422 for ; Sun, 20 Aug 2000 12:37:48 -0700 (PDT) Received: from [10.10.10.150] (HELO [10.10.10.150]) by hitline.ch (CommuniGate Pro SMTP 3.3b9) with ESMTP id 1927458 for freebsd-isp@freebsd.org; Sun, 20 Aug 2000 21:38:37 +0200 Mime-Version: 1.0 X-Sender: micheal%com4u.ch@mail.com4u.ch Message-Id: In-Reply-To: References: Date: Sun, 20 Aug 2000 21:37:38 +0200 To: freebsd-isp@freebsd.org From: Michael O Shea Subject: Re: Secure Email end-to-end? Content-Type: text/plain; charset="us-ascii" ; format="flowed" Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org >You can 'cheat' by using a webmail package and the https support in >netscape. Your server CPU takes the hit, but you can also have PGP via >procmail to enable simple encryption to outside folks. > >Another plus: you get whatever other features the webmail package >provides, like sncrypted group calendaring, etc... - Jy@ If you use a mailserver like CommuniGatePro http://www.stalker.com you get all the above plus you can run POP or IMAP also over SSL. -- Micheal O Shea Email:micheal@com4u.ch com4u.ch http://www.com4u.ch Breitistrasse 7B PGP key available upon request. CH-5506 Maegenwil Tel: +41 62 896 46 26 Switzerland To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sun Aug 20 12:49:25 2000 Delivered-To: freebsd-isp@freebsd.org Received: from aspenworks.com (aspenworks.com [192.94.236.1]) by hub.freebsd.org (Postfix) with ESMTP id 0656237B422 for ; Sun, 20 Aug 2000 12:49:21 -0700 (PDT) Received: from aspenworks.com (hh1127215.direcpc.com [206.71.127.215]) by aspenworks.com (8.11.0/8.11.0) with ESMTP id e7KJn7855983; Sun, 20 Aug 2000 13:49:08 -0600 (MDT) Message-ID: <39A03621.BEA5DAB7@aspenworks.com> Date: Sun, 20 Aug 2000 13:48:49 -0600 From: Alex Reply-To: alex@aspenworks.com X-Mailer: Mozilla 4.73 [en] (Win98; U) X-Accept-Language: en MIME-Version: 1.0 To: James Wyatt , free Subject: Re: Secure Email end-to-end? References: Content-Type: multipart/signed; protocol="application/x-pkcs7-signature"; micalg=sha1; boundary="------------ms35BD1053339EA433A8C8C2E7" Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org This is a cryptographically signed message in MIME format. --------------ms35BD1053339EA433A8C8C2E7 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit That's great to provide security between the client and the Sendmail or qmail or whatever Internet SMTP server is out there, but I'm looking for something that would allow client A to encrypt a message to say, client B, where client B needs to decrypt the message with a password at minimum. Right now I'm playing with Netcsape and Verisign. It does more, like actually authenticating that the person who received the message is the intended reciever, (as if that's possible without a thumbprint and a handshake.. *LOL) and Verisign has a 60 day free trial.. I just tried it.. it required that all parties that you want to exchange email with exchange certificates.. It'd be interesting to see if it's possible to setup a list server, like this one that has some security too. My feeling is it's the next big thing. James Wyatt wrote: > > You can 'cheat' by using a webmail package and the https support in > netscape. Your server CPU takes the hit, but you can also have PGP via > procmail to enable simple encryption to outside folks. > > Another plus: you get whatever other features the webmail package > provides, like sncrypted group calendaring, etc... - Jy@ > > On Sat, 19 Aug 2000, Alex wrote: > > We have a small number of paranoid clients who'd really like us to > > provide encrypted Email services. Any suggestions on which method > > would provide end-to-end encoded email best? Perfer Netscape Email > > end-to-end or MS if need be. > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message --------------ms35BD1053339EA433A8C8C2E7 Content-Type: application/x-pkcs7-signature; name="smime.p7s" Content-Transfer-Encoding: base64 Content-Disposition: attachment; filename="smime.p7s" Content-Description: S/MIME Cryptographic Signature MIIJowYJKoZIhvcNAQcCoIIJlDCCCZACAQExCzAJBgUrDgMCGgUAMAsGCSqGSIb3DQEHAaCC By8wggP5MIIDYqADAgECAhBFI0OCu4bTBZZcxcU9NhHDMA0GCSqGSIb3DQEBBAUAMIHMMRcw FQYDVQQKEw5WZXJpU2lnbiwgSW5jLjEfMB0GA1UECxMWVmVyaVNpZ24gVHJ1c3QgTmV0d29y azFGMEQGA1UECxM9d3d3LnZlcmlzaWduLmNvbS9yZXBvc2l0b3J5L1JQQSBJbmNvcnAuIEJ5 IFJlZi4sTElBQi5MVEQoYyk5ODFIMEYGA1UEAxM/VmVyaVNpZ24gQ2xhc3MgMSBDQSBJbmRp dmlkdWFsIFN1YnNjcmliZXItUGVyc29uYSBOb3QgVmFsaWRhdGVkMB4XDTAwMDgyMDAwMDAw MFoXDTAwMTAxOTIzNTk1OVowggEIMRcwFQYDVQQKEw5WZXJpU2lnbiwgSW5jLjEfMB0GA1UE CxMWVmVyaVNpZ24gVHJ1c3QgTmV0d29yazFGMEQGA1UECxM9d3d3LnZlcmlzaWduLmNvbS9y ZXBvc2l0b3J5L1JQQSBJbmNvcnAuIGJ5IFJlZi4sTElBQi5MVEQoYyk5ODEeMBwGA1UECxMV UGVyc29uYSBOb3QgVmFsaWRhdGVkMSYwJAYDVQQLEx1EaWdpdGFsIElEIENsYXNzIDEgLSBO ZXRzY2FwZTEYMBYGA1UEAxQPYWxleCBodXBwZW50aGFsMSIwIAYJKoZIhvcNAQkBFhNhbGV4 QGFzcGVud29ya3MuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDBRvHgczhICBll waxU3WMqF5NFeuMJqPNplumMj7F5VHokKEPfM1j7JA4NQoUvH8xVWiEJEdYyoB314Mu5H1rI t4XVIh61k8avgejnmNeAtGHnEhiej3AqhQIWtxmRmm/iqYZK5nw9KTBNDyc6A46waQBUPG6Q 6NGje8YgsQpDgwIDAQABo4GcMIGZMAkGA1UdEwQCMAAwRAYDVR0gBD0wOzA5BgtghkgBhvhF AQcBCDAqMCgGCCsGAQUFBwIBFhxodHRwczovL3d3dy52ZXJpc2lnbi5jb20vcnBhMBEGCWCG SAGG+EIBAQQEAwIHgDAzBgNVHR8ELDAqMCigJqAkhiJodHRwOi8vY3JsLnZlcmlzaWduLmNv bS9jbGFzczEuY3JsMA0GCSqGSIb3DQEBBAUAA4GBAF0FISQNg+HBowYqKaWIzQCJCkusMn2T LsrBaFYahfy1/LclojsUfQDmn0pNeoMm+QGFnWsh0XV2aWR5SWlFgmYE0TG0Zw0cMKEh5esj VXOEkhvbr3E8xiLNt/cGnUzsYORfP/l5vJu0s1kf9pNPnHYubW1SdNZvrYbpruIKp4F8MIID LjCCApegAwIBAgIRANJ2Lo0UDD19sqglXa/uDXUwDQYJKoZIhvcNAQECBQAwXzELMAkGA1UE BhMCVVMxFzAVBgNVBAoTDlZlcmlTaWduLCBJbmMuMTcwNQYDVQQLEy5DbGFzcyAxIFB1Ymxp YyBQcmltYXJ5IENlcnRpZmljYXRpb24gQXV0aG9yaXR5MB4XDTk4MDUxMjAwMDAwMFoXDTA4 MDUxMjIzNTk1OVowgcwxFzAVBgNVBAoTDlZlcmlTaWduLCBJbmMuMR8wHQYDVQQLExZWZXJp U2lnbiBUcnVzdCBOZXR3b3JrMUYwRAYDVQQLEz13d3cudmVyaXNpZ24uY29tL3JlcG9zaXRv cnkvUlBBIEluY29ycC4gQnkgUmVmLixMSUFCLkxURChjKTk4MUgwRgYDVQQDEz9WZXJpU2ln biBDbGFzcyAxIENBIEluZGl2aWR1YWwgU3Vic2NyaWJlci1QZXJzb25hIE5vdCBWYWxpZGF0 ZWQwgZ8wDQYJKoZIhvcNAQEBBQADgY0AMIGJAoGBALtaRIoEFrtV/QN6ii2UTxV4NrgNSrJv nFS/vOh3Kp258Gi7ldkxQXB6gUu5SBNWLccI4YRCq8CikqtEXKpC8IIOAukv+8I7u77JJwpd trA2QjO1blSIT4dKvxna+RXoD4e2HOPMxpqOf2okkuP84GW6p7F+78nbN2rISsgJBuSZAgMB AAGjfDB6MBEGCWCGSAGG+EIBAQQEAwIBBjBHBgNVHSAEQDA+MDwGC2CGSAGG+EUBBwEBMC0w KwYIKwYBBQUHAgEWH3d3dy52ZXJpc2lnbi5jb20vcmVwb3NpdG9yeS9SUEEwDwYDVR0TBAgw BgEB/wIBADALBgNVHQ8EBAMCAQYwDQYJKoZIhvcNAQECBQADgYEAiLg3O93alDcAraqf4YEB cR6Sam0v9vGd08pkONwbmAwHhluFFWoPuUmFpJXxF31ntH8tLN2aQp7DPrSOquULBt7yVir6 M8e+GddTTMO9yOMXtaRJQmPswqYXD11YGkk8kFxVo2UgAP0YIOVfgqaxqJLFWGrBjQM868PN BaKQrm4xggI8MIICOAIBATCB4TCBzDEXMBUGA1UEChMOVmVyaVNpZ24sIEluYy4xHzAdBgNV BAsTFlZlcmlTaWduIFRydXN0IE5ldHdvcmsxRjBEBgNVBAsTPXd3dy52ZXJpc2lnbi5jb20v cmVwb3NpdG9yeS9SUEEgSW5jb3JwLiBCeSBSZWYuLExJQUIuTFREKGMpOTgxSDBGBgNVBAMT P1ZlcmlTaWduIENsYXNzIDEgQ0EgSW5kaXZpZHVhbCBTdWJzY3JpYmVyLVBlcnNvbmEgTm90 IFZhbGlkYXRlZAIQRSNDgruG0wWWXMXFPTYRwzAJBgUrDgMCGgUAoIGxMBgGCSqGSIb3DQEJ AzELBgkqhkiG9w0BBwEwHAYJKoZIhvcNAQkFMQ8XDTAwMDgyMDE5NDg1MlowIwYJKoZIhvcN AQkEMRYEFMtwZiGjXHE9egAgVrN5CafZmyD7MFIGCSqGSIb3DQEJDzFFMEMwCgYIKoZIhvcN AwcwDgYIKoZIhvcNAwICAgCAMAcGBSsOAwIHMA0GCCqGSIb3DQMCAgFAMA0GCCqGSIb3DQMC AgEoMA0GCSqGSIb3DQEBAQUABIGAIwf9WVeaVhG06twd2tXmIEsA4fzeJpaqxs8gB9yyAUoq a7v5LdR1UfcKGHOpXf4wYz+jX4stIVMlwjqwqemor2VIfh+F4s36MUQ5zlQSv+TYy0exw6MS qeCE8xsSWbwRFJ+MC4aUj2lwdrUshy97PKMPaaAVI4a1DETwlnOFqsQ= --------------ms35BD1053339EA433A8C8C2E7-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sun Aug 20 13:41:36 2000 Delivered-To: freebsd-isp@freebsd.org Received: from aspenworks.com (aspenworks.com [192.94.236.1]) by hub.freebsd.org (Postfix) with ESMTP id 226B737B43C for ; Sun, 20 Aug 2000 13:41:27 -0700 (PDT) Received: from aspenworks.com (hh1127215.direcpc.com [206.71.127.215]) by aspenworks.com (8.11.0/8.11.0) with ESMTP id e7KKfK856265 for ; Sun, 20 Aug 2000 14:41:22 -0600 (MDT) Message-ID: <39A04260.E2D3A0DB@aspenworks.com> Date: Sun, 20 Aug 2000 14:41:04 -0600 From: Alex Reply-To: alex@aspenworks.com X-Mailer: Mozilla 4.73 [en] (Win98; U) X-Accept-Language: en MIME-Version: 1.0 Cc: freebsd-isp@FreeBSD.ORG Subject: Re: Secure Email end-to-end? References: Content-Type: multipart/signed; protocol="application/x-pkcs7-signature"; micalg=sha1; boundary="------------ms25B25426105994CBFD72BDF3" Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org This is a cryptographically signed message in MIME format. --------------ms25B25426105994CBFD72BDF3 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit News on Thawte.. They claim that by Sept 1 this year, they'll be dropping support for PGP. Quoting their website: "We would like to inform all of Thawte's PGP users that we will soon be discontinuing our support of PGP. We are in the process of making changes to our signing engines, and as of 1 September 2000, we will be converting to new systems. These changes will result in us no longer being able to sign PGP keys for our users" Michael O Shea wrote: > > >You can 'cheat' by using a webmail package and the https support in > >netscape. Your server CPU takes the hit, but you can also have PGP via > >procmail to enable simple encryption to outside folks. > > > >Another plus: you get whatever other features the webmail package > >provides, like sncrypted group calendaring, etc... - Jy@ > If you use a mailserver like CommuniGatePro http://www.stalker.com > you get all the above plus you can run POP or IMAP also over SSL. > -- > > Micheal O Shea Email:micheal@com4u.ch > com4u.ch http://www.com4u.ch > Breitistrasse 7B PGP key available upon request. > CH-5506 Maegenwil Tel: +41 62 896 46 26 > Switzerland > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message --------------ms25B25426105994CBFD72BDF3 Content-Type: application/x-pkcs7-signature; name="smime.p7s" Content-Transfer-Encoding: base64 Content-Disposition: attachment; filename="smime.p7s" Content-Description: S/MIME Cryptographic Signature MIIJowYJKoZIhvcNAQcCoIIJlDCCCZACAQExCzAJBgUrDgMCGgUAMAsGCSqGSIb3DQEHAaCC By8wggP5MIIDYqADAgECAhBFI0OCu4bTBZZcxcU9NhHDMA0GCSqGSIb3DQEBBAUAMIHMMRcw FQYDVQQKEw5WZXJpU2lnbiwgSW5jLjEfMB0GA1UECxMWVmVyaVNpZ24gVHJ1c3QgTmV0d29y azFGMEQGA1UECxM9d3d3LnZlcmlzaWduLmNvbS9yZXBvc2l0b3J5L1JQQSBJbmNvcnAuIEJ5 IFJlZi4sTElBQi5MVEQoYyk5ODFIMEYGA1UEAxM/VmVyaVNpZ24gQ2xhc3MgMSBDQSBJbmRp dmlkdWFsIFN1YnNjcmliZXItUGVyc29uYSBOb3QgVmFsaWRhdGVkMB4XDTAwMDgyMDAwMDAw MFoXDTAwMTAxOTIzNTk1OVowggEIMRcwFQYDVQQKEw5WZXJpU2lnbiwgSW5jLjEfMB0GA1UE CxMWVmVyaVNpZ24gVHJ1c3QgTmV0d29yazFGMEQGA1UECxM9d3d3LnZlcmlzaWduLmNvbS9y ZXBvc2l0b3J5L1JQQSBJbmNvcnAuIGJ5IFJlZi4sTElBQi5MVEQoYyk5ODEeMBwGA1UECxMV UGVyc29uYSBOb3QgVmFsaWRhdGVkMSYwJAYDVQQLEx1EaWdpdGFsIElEIENsYXNzIDEgLSBO ZXRzY2FwZTEYMBYGA1UEAxQPYWxleCBodXBwZW50aGFsMSIwIAYJKoZIhvcNAQkBFhNhbGV4 QGFzcGVud29ya3MuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDBRvHgczhICBll waxU3WMqF5NFeuMJqPNplumMj7F5VHokKEPfM1j7JA4NQoUvH8xVWiEJEdYyoB314Mu5H1rI t4XVIh61k8avgejnmNeAtGHnEhiej3AqhQIWtxmRmm/iqYZK5nw9KTBNDyc6A46waQBUPG6Q 6NGje8YgsQpDgwIDAQABo4GcMIGZMAkGA1UdEwQCMAAwRAYDVR0gBD0wOzA5BgtghkgBhvhF AQcBCDAqMCgGCCsGAQUFBwIBFhxodHRwczovL3d3dy52ZXJpc2lnbi5jb20vcnBhMBEGCWCG SAGG+EIBAQQEAwIHgDAzBgNVHR8ELDAqMCigJqAkhiJodHRwOi8vY3JsLnZlcmlzaWduLmNv bS9jbGFzczEuY3JsMA0GCSqGSIb3DQEBBAUAA4GBAF0FISQNg+HBowYqKaWIzQCJCkusMn2T LsrBaFYahfy1/LclojsUfQDmn0pNeoMm+QGFnWsh0XV2aWR5SWlFgmYE0TG0Zw0cMKEh5esj VXOEkhvbr3E8xiLNt/cGnUzsYORfP/l5vJu0s1kf9pNPnHYubW1SdNZvrYbpruIKp4F8MIID LjCCApegAwIBAgIRANJ2Lo0UDD19sqglXa/uDXUwDQYJKoZIhvcNAQECBQAwXzELMAkGA1UE BhMCVVMxFzAVBgNVBAoTDlZlcmlTaWduLCBJbmMuMTcwNQYDVQQLEy5DbGFzcyAxIFB1Ymxp YyBQcmltYXJ5IENlcnRpZmljYXRpb24gQXV0aG9yaXR5MB4XDTk4MDUxMjAwMDAwMFoXDTA4 MDUxMjIzNTk1OVowgcwxFzAVBgNVBAoTDlZlcmlTaWduLCBJbmMuMR8wHQYDVQQLExZWZXJp U2lnbiBUcnVzdCBOZXR3b3JrMUYwRAYDVQQLEz13d3cudmVyaXNpZ24uY29tL3JlcG9zaXRv cnkvUlBBIEluY29ycC4gQnkgUmVmLixMSUFCLkxURChjKTk4MUgwRgYDVQQDEz9WZXJpU2ln biBDbGFzcyAxIENBIEluZGl2aWR1YWwgU3Vic2NyaWJlci1QZXJzb25hIE5vdCBWYWxpZGF0 ZWQwgZ8wDQYJKoZIhvcNAQEBBQADgY0AMIGJAoGBALtaRIoEFrtV/QN6ii2UTxV4NrgNSrJv nFS/vOh3Kp258Gi7ldkxQXB6gUu5SBNWLccI4YRCq8CikqtEXKpC8IIOAukv+8I7u77JJwpd trA2QjO1blSIT4dKvxna+RXoD4e2HOPMxpqOf2okkuP84GW6p7F+78nbN2rISsgJBuSZAgMB AAGjfDB6MBEGCWCGSAGG+EIBAQQEAwIBBjBHBgNVHSAEQDA+MDwGC2CGSAGG+EUBBwEBMC0w KwYIKwYBBQUHAgEWH3d3dy52ZXJpc2lnbi5jb20vcmVwb3NpdG9yeS9SUEEwDwYDVR0TBAgw BgEB/wIBADALBgNVHQ8EBAMCAQYwDQYJKoZIhvcNAQECBQADgYEAiLg3O93alDcAraqf4YEB cR6Sam0v9vGd08pkONwbmAwHhluFFWoPuUmFpJXxF31ntH8tLN2aQp7DPrSOquULBt7yVir6 M8e+GddTTMO9yOMXtaRJQmPswqYXD11YGkk8kFxVo2UgAP0YIOVfgqaxqJLFWGrBjQM868PN BaKQrm4xggI8MIICOAIBATCB4TCBzDEXMBUGA1UEChMOVmVyaVNpZ24sIEluYy4xHzAdBgNV BAsTFlZlcmlTaWduIFRydXN0IE5ldHdvcmsxRjBEBgNVBAsTPXd3dy52ZXJpc2lnbi5jb20v cmVwb3NpdG9yeS9SUEEgSW5jb3JwLiBCeSBSZWYuLExJQUIuTFREKGMpOTgxSDBGBgNVBAMT P1ZlcmlTaWduIENsYXNzIDEgQ0EgSW5kaXZpZHVhbCBTdWJzY3JpYmVyLVBlcnNvbmEgTm90 IFZhbGlkYXRlZAIQRSNDgruG0wWWXMXFPTYRwzAJBgUrDgMCGgUAoIGxMBgGCSqGSIb3DQEJ AzELBgkqhkiG9w0BBwEwHAYJKoZIhvcNAQkFMQ8XDTAwMDgyMDIwNDEwNVowIwYJKoZIhvcN AQkEMRYEFKLXYwul8qfsVRhiq5oARWhXnFC1MFIGCSqGSIb3DQEJDzFFMEMwCgYIKoZIhvcN AwcwDgYIKoZIhvcNAwICAgCAMAcGBSsOAwIHMA0GCCqGSIb3DQMCAgFAMA0GCCqGSIb3DQMC AgEoMA0GCSqGSIb3DQEBAQUABIGADIAYdqW8XTuOAm1c6VUHwYHLvTZfrg43AMZ17jJrYlQ2 ywmyqUZlHMMnRwEZiCYMpO7rqged+UcA+Gg1pPrZoX7+oxAezx3JInPttr8flbB5235baOsR kzbROD6dHRwYYs9Mo229DIMSWV5jjXnJVQyyQ1pe+qHYqMhgCZUvwB4= --------------ms25B25426105994CBFD72BDF3-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sun Aug 20 17:46:39 2000 Delivered-To: freebsd-isp@freebsd.org Received: from saturn.mikesweb.com (saturn.mikesweb.com [216.91.66.1]) by hub.freebsd.org (Postfix) with SMTP id 04AA837B42C for ; Sun, 20 Aug 2000 17:46:38 -0700 (PDT) Received: (qmail 22697 invoked from network); 21 Aug 2000 00:46:31 -0000 Received: from delta.mikesweb.com (HELO SUN.mikesweb.com) (@216.91.66.252) by saturn.mikesweb.com with SMTP; 21 Aug 2000 00:46:31 -0000 Message-Id: <4.3.2.7.2.20000820205038.00b2b648@127.0.0.1> X-Sender: sturdee/mail.mikesweb.com@127.0.0.1 X-Mailer: QUALCOMM Windows Eudora Version 4.3.2 Date: Sun, 20 Aug 2000 20:51:25 -0400 To: freebsd-isp@freebsd.org From: Mike Subject: ps question Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii"; format=flowed Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Quick question, how do I make 'ps' work so no matter how users run it, it only shows them their processes, and only root can see what -a would display? thanks Mike To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sun Aug 20 17:56:52 2000 Delivered-To: freebsd-isp@freebsd.org Received: from sex-lies-video.tape.net (sex-lies-video.tape.net [216.115.128.64]) by hub.freebsd.org (Postfix) with SMTP id 6468037B423 for ; Sun, 20 Aug 2000 17:56:50 -0700 (PDT) Received: (qmail 241 invoked from network); 20 Aug 2000 19:56:45 -0500 Received: from duct.tape.net (HELO duct.intersurf.com) (216.115.130.196) by sex-lies-video.tape.net with SMTP; 20 Aug 2000 19:56:45 -0500 Message-Id: <4.3.1.2.20000820195532.06534350@mail.tape.net> X-Sender: gerry@mail.tape.net X-Mailer: QUALCOMM Windows Eudora Version 4.3.1 Date: Sun, 20 Aug 2000 19:56:43 -0500 To: Mike , freebsd-isp@freebsd.org From: Gerry Boudreaux Subject: Re: ps question In-Reply-To: <4.3.2.7.2.20000820205038.00b2b648@127.0.0.1> Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii"; format=flowed Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org sudo might be the answer :-) /ports/security/sudo That way it runs as "root" for everyone you allow. Hope this helps. Gerry At 08:51 PM 8/20/00 -0400, Mike wrote: >Quick question, how do I make 'ps' work so no matter how users run it, it >only shows them their processes, and only root can see what -a would display? >thanks >Mike > > > >To Unsubscribe: send mail to majordomo@FreeBSD.org >with "unsubscribe freebsd-isp" in the body of the message To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sun Aug 20 18:58:14 2000 Delivered-To: freebsd-isp@freebsd.org Received: from databits.net (analog.databits.net [207.29.192.55]) by hub.freebsd.org (Postfix) with SMTP id 99CC637B424 for ; Sun, 20 Aug 2000 18:58:11 -0700 (PDT) Received: (qmail 27234 invoked by uid 1000); 21 Aug 2000 00:58:03 -0000 Date: Sun, 20 Aug 2000 20:58:02 -0400 From: Pete Fritchman To: Mike Cc: freebsd-isp@freebsd.org Subject: Re: ps question Message-ID: <20000820205802.B27829@databits.net> References: <4.3.2.7.2.20000820205038.00b2b648@127.0.0.1> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2i In-Reply-To: <4.3.2.7.2.20000820205038.00b2b648@127.0.0.1>; from mike@mikesweb.com on Sun, Aug 20, 2000 at 08:51:25PM -0400 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org # mv /bin/ps /bin/ps. # cat > /bin/ps #!/bin/sh /bin/ps. -x ^D # You can add tests into the script for arguments or the UID/GID calling it, you get the idea. Basically you need to write a script wrapper. Of course, the above average luser who _really_ wants to see processes will figure that out and find /bin/ps. to use. Warning, this may have some unwanted side effects... -Pete ++ 20/08/00 20:51 -0400 - Mike: >Quick question, how do I make 'ps' work so no matter how users run it, it >only shows them their processes, and only root can see what -a would display? >thanks >Mike > > > >To Unsubscribe: send mail to majordomo@FreeBSD.org >with "unsubscribe freebsd-isp" in the body of the message -- Pete Fritchman Databits Network Services, Inc http://www.databits.net finger: petef@analog.databits.net To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sun Aug 20 19: 9:52 2000 Delivered-To: freebsd-isp@freebsd.org Received: from aspenworks.com (aspenworks.com [192.94.236.1]) by hub.freebsd.org (Postfix) with ESMTP id 2CB3A37B422 for ; Sun, 20 Aug 2000 19:09:50 -0700 (PDT) Received: from aspenworks.com (hh1127215.direcpc.com [206.71.127.215]) by aspenworks.com (8.11.0/8.11.0) with ESMTP id e7L29k857960 for ; Sun, 20 Aug 2000 20:09:46 -0600 (MDT) Message-ID: <39A08F4B.A5CA2D2A@aspenworks.com> Date: Sun, 20 Aug 2000 20:09:15 -0600 From: Alex Reply-To: alex@aspenworks.com X-Mailer: Mozilla 4.73 [en] (Win98; U) X-Accept-Language: en MIME-Version: 1.0 Cc: freebsd-isp@FreeBSD.ORG Subject: End to End Secure Email - no more signatures References: <4.3.2.7.2.20000820205038.00b2b648@127.0.0.1> <20000820205802.B27829@databits.net> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hi, It appears that I've been sending a 6K attachment with each message. My apologies.. I've turned that bandwidth waster off. I'd checked off 'sign messages', assuming it was a small 2 line digital signature, not a 6k attachment.. -Alex To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sun Aug 20 19:11:29 2000 Delivered-To: freebsd-isp@freebsd.org Received: from thehousleys.net (frenchknot.ne.mediaone.net [24.147.224.201]) by hub.freebsd.org (Postfix) with ESMTP id 6346137B42C for ; Sun, 20 Aug 2000 19:11:26 -0700 (PDT) Received: from thehousleys.net (baby.int.thehousleys.net. [192.168.0.24]) by thehousleys.net (8.9.3/8.9.3) with ESMTP id WAA56089; Sun, 20 Aug 2000 22:11:09 -0400 (EDT) (envelope-from jim@thehousleys.net) Message-ID: <39A08FBD.5CAF9137@thehousleys.net> Date: Sun, 20 Aug 2000 22:11:09 -0400 From: James Housley Organization: The Housleys dot Net X-Mailer: Mozilla 4.73 [en] (X11; U; FreeBSD 4.1-STABLE i386) X-Accept-Language: en MIME-Version: 1.0 To: Mike , freebsd-isp@FreeBSD.ORG Subject: Re: ps question References: <4.3.2.7.2.20000820205038.00b2b648@127.0.0.1> <20000820205802.B27829@databits.net> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org ++ 20/08/00 20:51 -0400 - Mike: >Quick question, how do I make 'ps' work so no matter how users run it, it >only shows them their processes, and only root can see what -a would display? >thanks It shouldn't be too hard or re-write ps so that at the top while/after processing the command line args the user-id is checked, getuid(2)?. If it is is ZERO then nothing special. If it is not ZERO then limit. Here is a very simple hack: --- ps.c Thu Jul 13 14:16:49 2000 +++ ps-limited.c Sun Aug 20 22:09:53 2000 @@ -121,6 +121,7 @@ dev_t ttydev; pid_t pid; uid_t uid; + int isroot; int all, ch, flag, i, fmt, lineno, nentries, dropgid; int prtheader, wflag, what, xflg; char *nlistf, *memf, *swapf, errbuf[_POSIX2_LINE_MAX]; @@ -138,6 +139,10 @@ if (argc > 1) argv[1] = kludge_oldps_options(argv[1]); + if (getuid() == 0 || getgid() == 0) + isroot = 1; + else + isroot = 0; all = fmt = prtheader = wflag = xflg = 0; pid = -1; uid = (uid_t) -1; @@ -152,7 +157,8 @@ #endif switch((char)ch) { case 'a': - all = 1; + if (isroot) + all = 1; break; case 'C': rawcpu = 1; Jim -- "Eagles may soar, but weasels don't get sucked into jet engines" -- Anon To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sun Aug 20 20:15:18 2000 Delivered-To: freebsd-isp@freebsd.org Received: from bsdie.rwsystems.net (bsdie.rwsystems.net [209.197.223.2]) by hub.freebsd.org (Postfix) with ESMTP id 4EC4D37B423 for ; Sun, 20 Aug 2000 20:15:16 -0700 (PDT) Received: from bsdie.rwsystems.net([209.197.223.2]) (1675 bytes) by bsdie.rwsystems.net via sendmail with P:esmtp/R:bind_hosts/T:inet_zone_bind_smtp (sender: ) id for ; Sun, 20 Aug 2000 22:12:04 -0500 (CDT) (Smail-3.2.0.106 1999-Mar-31 #1 built 1999-Aug-7) Date: Sun, 20 Aug 2000 22:12:04 -0500 (CDT) From: James Wyatt To: Pete Fritchman Cc: Mike , freebsd-isp@freebsd.org Subject: Re: ps question In-Reply-To: <20000820205802.B27829@databits.net> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Even if you drop read access to the script, it's just too easy to figure this out for almost anyone. I will be *amazed* if it doesn't break several things. I thought shutdowns used /bin/ps for some reason. - Jy@ btw: The suggested change to the source sounds like the cleanest thing to do, but I'd compare the UID to your lowest login user UID so system scripts and background daemons work as expected. On Sun, 20 Aug 2000, Pete Fritchman wrote: > # mv /bin/ps /bin/ps. > # cat > /bin/ps > #!/bin/sh > /bin/ps. -x > ^D > # > > You can add tests into the script for arguments or the UID/GID calling it, you > get the idea. Basically you need to write a script wrapper. Of course, the > above average luser who _really_ wants to see processes will figure that out and > find /bin/ps. to use. > > Warning, this may have some unwanted side effects... > > -Pete > > ++ 20/08/00 20:51 -0400 - Mike: > >Quick question, how do I make 'ps' work so no matter how users run it, it > >only shows them their processes, and only root can see what -a would display? > >thanks > >Mike To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sun Aug 20 22:41:26 2000 Delivered-To: freebsd-isp@freebsd.org Received: from saturn.mikesweb.com (saturn.mikesweb.com [216.91.66.1]) by hub.freebsd.org (Postfix) with SMTP id 98A6837B42C for ; Sun, 20 Aug 2000 22:41:22 -0700 (PDT) Received: (qmail 46688 invoked from network); 21 Aug 2000 05:41:21 -0000 Received: from delta.mikesweb.com (HELO SUN.mikesweb.com) (@216.91.66.252) by saturn.mikesweb.com with SMTP; 21 Aug 2000 05:41:21 -0000 Message-Id: <4.3.2.7.2.20000821014336.00b81aa0@127.0.0.1> X-Sender: sturdee/mail.mikesweb.com@127.0.0.1 X-Mailer: QUALCOMM Windows Eudora Version 4.3.2 Date: Mon, 21 Aug 2000 01:46:15 -0400 To: James Housley From: Mike Subject: Re: ps question Cc: freebsd-isp@freebsd.org In-Reply-To: <39A08FBD.5CAF9137@thehousleys.net> References: <4.3.2.7.2.20000820205038.00b2b648@127.0.0.1> <20000820205802.B27829@databits.net> Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii"; format=flowed Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org tried that, (and changed the line to if (getuid() > 999 || getgid() > 999) so anything that's not a regular user can use it. no luck, can still ps -a as a regular user and see everything running.. At 10:11 PM 8/20/2000 -0400, you wrote: >++ 20/08/00 20:51 -0400 - Mike: > >Quick question, how do I make 'ps' work so no matter how users run it, it > >only shows them their processes, and only root can see what -a would > display? > >thanks > >It shouldn't be too hard or re-write ps so that at the top while/after >processing the command line args the user-id is checked, getuid(2)?. If >it is is ZERO then nothing special. If it is not ZERO then limit. > >Here is a very simple hack: >--- ps.c Thu Jul 13 14:16:49 2000 >+++ ps-limited.c Sun Aug 20 22:09:53 2000 >@@ -121,6 +121,7 @@ > dev_t ttydev; > pid_t pid; > uid_t uid; >+ int isroot; > int all, ch, flag, i, fmt, lineno, nentries, dropgid; > int prtheader, wflag, what, xflg; > char *nlistf, *memf, *swapf, errbuf[_POSIX2_LINE_MAX]; >@@ -138,6 +139,10 @@ > if (argc > 1) > argv[1] = kludge_oldps_options(argv[1]); > >+ if (getuid() == 0 || getgid() == 0) >+ isroot = 1; >+ else >+ isroot = 0; > all = fmt = prtheader = wflag = xflg = 0; > pid = -1; > uid = (uid_t) -1; >@@ -152,7 +157,8 @@ > #endif > switch((char)ch) { > case 'a': >- all = 1; >+ if (isroot) >+ all = 1; > break; > case 'C': > rawcpu = 1; > >Jim >-- >"Eagles may soar, but weasels don't get sucked into jet engines" > -- Anon > > >To Unsubscribe: send mail to majordomo@FreeBSD.org >with "unsubscribe freebsd-isp" in the body of the message To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon Aug 21 7:12:52 2000 Delivered-To: freebsd-isp@freebsd.org Received: from mail.island.net.au (mail.island.net.au [203.28.142.3]) by hub.freebsd.org (Postfix) with ESMTP id 3145937B422 for ; Mon, 21 Aug 2000 07:12:50 -0700 (PDT) Received: from localhost (hugh@localhost) by mail.island.net.au (8.10.1/8.10.1) with SMTP id e7LECc310053 for ; Tue, 22 Aug 2000 00:12:39 +1000 (EST) Date: Tue, 22 Aug 2000 00:12:38 +1000 (EST) From: Hugh Blandford To: freebsd-isp@freebsd.org Subject: One time passwords and radius Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hi all, I'm wondering whether anyone has a radius server working with a one time password system. I know that S/key is availble in the base system of FreeBSD, but is it possible to use this via radius? I have a series of terminals that will be available for public use. I would like to be able to give out a password to a user and once they have been logged off, be unable to log back in again without gaining a new password. I have thought about systems that could alter the password etc but it really needs to run without any interference of a technical nature.....ie no enabling or disabling of accounts. This would be too much hard work, the one time passwords have the added advantage of confirming how many people have logged in :) Any suggestions or thoughts would be appreciated. Thanks, Hugh Blandford To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon Aug 21 7:59:20 2000 Delivered-To: freebsd-isp@freebsd.org Received: from etinc.com (et-gw.etinc.com [207.252.1.2]) by hub.freebsd.org (Postfix) with ESMTP id 3036537B42C for ; Mon, 21 Aug 2000 07:59:17 -0700 (PDT) Received: from dbsys (dbsys.etinc.com [207.252.1.18]) by etinc.com (8.9.3/8.9.3) with SMTP id LAA14440; Mon, 21 Aug 2000 11:02:50 -0400 (EDT) Message-Id: <200008211502.LAA14440@etinc.com> X-Sender: dennis@etinc.com X-Mailer: QUALCOMM Windows Eudora Pro Version 4.0 Date: Mon, 21 Aug 2000 11:14:36 -0400 To: tim@iafrica.com.na, Chris Cook From: Dennis Subject: Re: Monitoring Network Traffic Cc: Nick Evans , freebsd-isp@FreeBSD.ORG In-Reply-To: <39A00571.F4CE407@polytechnic.edu.na> References: <712384017032D411AD7B0001023D799B33B2BF@sn1exchmbx.nextvenue.com> <399DAF96.30129A@tcworks.net> Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org At 05:21 PM 8/20/00 +0100, Tim Priebe wrote: >If all of the data passes through a FreeBSD box, set up a firewall rule >for each IP address, and feed the byte count for each rule into MRTG or >what ever. > >Tim. We have a commercial product that can do this along with rate-limiting in an integrated environment with an HTML interface. MRTG can be a real dog when monitoring hundreds of addresses as such. New "stats-only" rules allow you to gather stats on multiple occurances of the same packet, for example if you were gathering stats for: 1) www traffic for all ips 2) tcp traffic for ip 1.2.3.4 3) all traffic for ip 1.2.3.4 info at www.etinc.com DB To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon Aug 21 12:38:23 2000 Delivered-To: freebsd-isp@freebsd.org Received: from bluerose.windmoon.nu (c255152-a.plstn1.sfba.home.com [24.176.132.48]) by hub.freebsd.org (Postfix) with ESMTP id 4A3AD37B424 for ; Mon, 21 Aug 2000 12:38:20 -0700 (PDT) Received: from localhost (fengyue@localhost) by bluerose.windmoon.nu (8.10.2/Windmoon/8.10.2) with ESMTP id e7LJrrY14241; Mon, 21 Aug 2000 12:53:53 -0700 (PDT) Date: Mon, 21 Aug 2000 12:53:53 -0700 (PDT) From: FengYue To: Mike Cc: James Housley , freebsd-isp@FreeBSD.ORG Subject: Re: ps question In-Reply-To: <4.3.2.7.2.20000821014336.00b81aa0@127.0.0.1> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org What's the use of all those hacks in ps code? People can simply either access /proc or directly call kvm_* () functions to get a full list of processes running on the machine, or even simply ftp a ps binary from another freebsd machine. On Mon, 21 Aug 2000, Mike wrote: > tried that, (and changed the line to if (getuid() > 999 || getgid() > 999) > so anything that's not a regular user can use it. no luck, can still ps -a > as a regular user and see everything running.. > > At 10:11 PM 8/20/2000 -0400, you wrote: > >++ 20/08/00 20:51 -0400 - Mike: > > >Quick question, how do I make 'ps' work so no matter how users run it, it > > >only shows them their processes, and only root can see what -a would > > display? > > >thanks > > > >It shouldn't be too hard or re-write ps so that at the top while/after > >processing the command line args the user-id is checked, getuid(2)?. If > >it is is ZERO then nothing special. If it is not ZERO then limit. > > > >Here is a very simple hack: > >--- ps.c Thu Jul 13 14:16:49 2000 > >+++ ps-limited.c Sun Aug 20 22:09:53 2000 > >@@ -121,6 +121,7 @@ > > dev_t ttydev; > > pid_t pid; > > uid_t uid; > >+ int isroot; > > int all, ch, flag, i, fmt, lineno, nentries, dropgid; > > int prtheader, wflag, what, xflg; > > char *nlistf, *memf, *swapf, errbuf[_POSIX2_LINE_MAX]; > >@@ -138,6 +139,10 @@ > > if (argc > 1) > > argv[1] = kludge_oldps_options(argv[1]); > > > >+ if (getuid() == 0 || getgid() == 0) > >+ isroot = 1; > >+ else > >+ isroot = 0; > > all = fmt = prtheader = wflag = xflg = 0; > > pid = -1; > > uid = (uid_t) -1; > >@@ -152,7 +157,8 @@ > > #endif > > switch((char)ch) { > > case 'a': > >- all = 1; > >+ if (isroot) > >+ all = 1; > > break; > > case 'C': > > rawcpu = 1; > > > >Jim > >-- > >"Eagles may soar, but weasels don't get sucked into jet engines" > > -- Anon > > > > > >To Unsubscribe: send mail to majordomo@FreeBSD.org > >with "unsubscribe freebsd-isp" in the body of the message > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon Aug 21 12:52: 1 2000 Delivered-To: freebsd-isp@freebsd.org Received: from jade.chc-chimes.com (jade.chc-chimes.com [216.28.46.6]) by hub.freebsd.org (Postfix) with ESMTP id C66CF37B423 for ; Mon, 21 Aug 2000 12:51:59 -0700 (PDT) Received: by jade.chc-chimes.com (Postfix, from userid 1001) id 3EF941C6C; Mon, 21 Aug 2000 15:51:59 -0400 (EDT) Date: Mon, 21 Aug 2000 15:51:59 -0400 From: Bill Fumerola To: FengYue Cc: Mike , James Housley , freebsd-isp@FreeBSD.ORG Subject: Re: ps question Message-ID: <20000821155159.F65562@jade.chc-chimes.com> References: <4.3.2.7.2.20000821014336.00b81aa0@127.0.0.1> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 1.0i In-Reply-To: ; from fengyue@bluerose.windmoon.nu on Mon, Aug 21, 2000 at 12:53:53PM -0700 X-Operating-System: FreeBSD 3.3-STABLE i386 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Mon, Aug 21, 2000 at 12:53:53PM -0700, FengYue wrote: > > What's the use of all those hacks in ps code? People can simply either > access /proc or directly call kvm_* () functions to get a full list of > processes running on the machine, or even simply ftp a ps binary > from another freebsd machine. Exactly. If you don't want users snooping around, installing a watered down ps(1) isn't going to help much. Unmounting /proc may help, not giving users that would abuse an account might help, giving users restricted shells might help, a bullet in the head of people who abuse your system might help, but a watered down ps(1) sadly won't. -- Bill Fumerola - Network Architect, BOFH / Chimes, Inc. billf@chimesnet.com / billf@FreeBSD.org To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon Aug 21 12:54:22 2000 Delivered-To: freebsd-isp@freebsd.org Received: from saturn.mikesweb.com (saturn.mikesweb.com [216.91.66.1]) by hub.freebsd.org (Postfix) with SMTP id EDD5837B423 for ; Mon, 21 Aug 2000 12:54:17 -0700 (PDT) Received: (qmail 82078 invoked from network); 21 Aug 2000 19:54:16 -0000 Received: from delta.mikesweb.com (HELO SUN.mikesweb.com) (@216.91.66.252) by saturn.mikesweb.com with SMTP; 21 Aug 2000 19:54:16 -0000 Message-Id: <4.3.2.7.2.20000821155501.06384920@127.0.0.1> X-Sender: sturdee/mail.mikesweb.com@127.0.0.1 X-Mailer: QUALCOMM Windows Eudora Version 4.3.2 Date: Mon, 21 Aug 2000 15:59:11 -0400 To: FengYue From: Mike Subject: Re: ps question Cc: freebsd-isp@freebsd.org In-Reply-To: References: <4.3.2.7.2.20000821014336.00b81aa0@127.0.0.1> Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii"; format=flowed Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org I just put together a hosting server for an isp, and they want to try as much as possible "private" from user to user.. I looked into using jail, but don't think they'd need that much right now.. I've gone over the security info on the freebsd web site, now I was just working on making it so users wouldn't be "watching" everything that goes on. At 12:53 PM 8/21/2000 -0700, you wrote: >What's the use of all those hacks in ps code? People can simply either >access /proc or directly call kvm_* () functions to get a full list of >processes running on the machine, or even simply ftp a ps binary >from another freebsd machine. > >On Mon, 21 Aug 2000, Mike wrote: > > > tried that, (and changed the line to if (getuid() > 999 || getgid() > 999) > > so anything that's not a regular user can use it. no luck, can still ps -a > > as a regular user and see everything running.. > > > > At 10:11 PM 8/20/2000 -0400, you wrote: > > >++ 20/08/00 20:51 -0400 - Mike: > > > >Quick question, how do I make 'ps' work so no matter how users run > it, it > > > >only shows them their processes, and only root can see what -a would > > > display? > > > >thanks > > > > > >It shouldn't be too hard or re-write ps so that at the top while/after > > >processing the command line args the user-id is checked, getuid(2)?. If > > >it is is ZERO then nothing special. If it is not ZERO then limit. > > > > > >Here is a very simple hack: > > >--- ps.c Thu Jul 13 14:16:49 2000 > > >+++ ps-limited.c Sun Aug 20 22:09:53 2000 > > >@@ -121,6 +121,7 @@ > > > dev_t ttydev; > > > pid_t pid; > > > uid_t uid; > > >+ int isroot; > > > int all, ch, flag, i, fmt, lineno, nentries, dropgid; > > > int prtheader, wflag, what, xflg; > > > char *nlistf, *memf, *swapf, errbuf[_POSIX2_LINE_MAX]; > > >@@ -138,6 +139,10 @@ > > > if (argc > 1) > > > argv[1] = kludge_oldps_options(argv[1]); > > > > > >+ if (getuid() == 0 || getgid() == 0) > > >+ isroot = 1; > > >+ else > > >+ isroot = 0; > > > all = fmt = prtheader = wflag = xflg = 0; > > > pid = -1; > > > uid = (uid_t) -1; > > >@@ -152,7 +157,8 @@ > > > #endif > > > switch((char)ch) { > > > case 'a': > > >- all = 1; > > >+ if (isroot) > > >+ all = 1; > > > break; > > > case 'C': > > > rawcpu = 1; > > > > > >Jim > > >-- > > >"Eagles may soar, but weasels don't get sucked into jet engines" > > > -- Anon > > > > > > > > >To Unsubscribe: send mail to majordomo@FreeBSD.org > > >with "unsubscribe freebsd-isp" in the body of the message > > > > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > > with "unsubscribe freebsd-isp" in the body of the message > > > > > >To Unsubscribe: send mail to majordomo@FreeBSD.org >with "unsubscribe freebsd-isp" in the body of the message To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon Aug 21 12:57: 8 2000 Delivered-To: freebsd-isp@freebsd.org Received: from saturn.mikesweb.com (saturn.mikesweb.com [216.91.66.1]) by hub.freebsd.org (Postfix) with SMTP id AC2E737B423 for ; Mon, 21 Aug 2000 12:57:06 -0700 (PDT) Received: (qmail 82313 invoked from network); 21 Aug 2000 19:57:06 -0000 Received: from delta.mikesweb.com (HELO SUN.mikesweb.com) (@216.91.66.252) by saturn.mikesweb.com with SMTP; 21 Aug 2000 19:57:06 -0000 Message-Id: <4.3.2.7.2.20000821160105.00b81008@127.0.0.1> X-Sender: sturdee/mail.mikesweb.com@127.0.0.1 X-Mailer: QUALCOMM Windows Eudora Version 4.3.2 Date: Mon, 21 Aug 2000 16:02:00 -0400 To: Bill Fumerola From: Mike Subject: Re: ps question Cc: freebsd-isp@FreeBSD.ORG In-Reply-To: <20000821155159.F65562@jade.chc-chimes.com> References: <4.3.2.7.2.20000821014336.00b81aa0@127.0.0.1> Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii"; format=flowed Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Damn those "script kiddiez" At 03:51 PM 8/21/2000 -0400, Bill Fumerola wrote: >On Mon, Aug 21, 2000 at 12:53:53PM -0700, FengYue wrote: > > > > What's the use of all those hacks in ps code? People can simply either > > access /proc or directly call kvm_* () functions to get a full list of > > processes running on the machine, or even simply ftp a ps binary > > from another freebsd machine. > >Exactly. If you don't want users snooping around, installing a watered >down ps(1) isn't going to help much. > >Unmounting /proc may help, not giving users that would abuse an account >might help, giving users restricted shells might help, a bullet in the >head of people who abuse your system might help, but a watered down ps(1) >sadly won't. > >-- >Bill Fumerola - Network Architect, BOFH / Chimes, Inc. > billf@chimesnet.com / billf@FreeBSD.org > > > > > >To Unsubscribe: send mail to majordomo@FreeBSD.org >with "unsubscribe freebsd-isp" in the body of the message To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue Aug 22 1:26:40 2000 Delivered-To: freebsd-isp@freebsd.org Received: from atlas.usls.edu (atlas.usls.edu [202.47.133.46]) by hub.freebsd.org (Postfix) with ESMTP id 1A1CD37B43F for ; Tue, 22 Aug 2000 01:26:31 -0700 (PDT) Received: by atlas.usls.edu (Postfix, from userid 1001) id 7BAEC9B09; Tue, 22 Aug 2000 16:26:11 +0800 (PHT) Received: from localhost (localhost [127.0.0.1]) by atlas.usls.edu (Postfix) with ESMTP id 710DB5D03 for ; Tue, 22 Aug 2000 16:26:11 +0800 (PHT) Date: Tue, 22 Aug 2000 16:26:11 +0800 (PHT) From: "Francis A. Vidal" To: FreeBSD ISP Subject: Configuring Cyclades Ze + FreeBSD 4.1 Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hi all, Finally got Cyclades Ze with 2 serial expanders for 32 dial-up lines. The package didn't come with the FreeBSD drivers and I thought it is directly supported in the kernel. But browsing through the LINT file yielded no references to Cyclades Ze. What must I do? Can you also point me to pointers on the web on how to setup a PPP dial-in server using Cyclades? Thanks! -- francis vidal university of st. la salle, bacolod city, philippines . . . . . . . PGP key available via e-mail / subject: get PGP key u s l s N E T tel nos. (+63.34).433.3526 / fax (+63.34).434.0415 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue Aug 22 2:58:26 2000 Delivered-To: freebsd-isp@freebsd.org Received: from web1401.mail.yahoo.com (web1401.mail.yahoo.com [128.11.23.165]) by hub.freebsd.org (Postfix) with SMTP id 72ED637B423 for ; Tue, 22 Aug 2000 02:58:18 -0700 (PDT) Received: (qmail 9999 invoked by uid 60001); 22 Aug 2000 10:00:18 -0000 Message-ID: <20000822100018.9998.qmail@web1401.mail.yahoo.com> Received: from [159.148.130.2] by web1401.mail.yahoo.com; Tue, 22 Aug 2000 03:00:18 PDT Date: Tue, 22 Aug 2000 03:00:18 -0700 (PDT) From: John Braun Subject: divert disabled To: freebsd-isp@freebsd.org Cc: freebsd-ipfw@FreeBSD.ORG MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hello I try to start router (BSD 3.2), but I get a not so satisfactory results. When BSD starting, it shows message like this: "Divert disabled" Where is a problem? My router configuration looks like that: 1) Lines from /etc/defaults/rc.conf =========================================== firewall_enable="YES" firewall functionality firewall_script="/etc/rc.firewall" firewall_type="OPEN" #!!!!!! (I also try firewall type UNKNOWN and SIMPLE) firewall_quiet="NO" natd_program="/sbin/natd" natd_enable="YES" natd_interface="fxp0" natd_flags="-l -u -m" #natd_flags="" # !!! There I try to change firewall rules /sbin/ipfw -f flush /sbin/ipfw add divert natd all from any to any via fxp0 /sbin/ipfw add pass all from any to any tcp_extensions="NO" network_interfaces="lo0 rl0 fxp0" ifconfig_lo0="inet 127.0.0.1" ifconfig_fxp0="inet 159.148.166.75 netmask 255.255.255.248" ifconfig_rl0="inet 192.168.37.9 netmask 255.255.255.0" defaultrouter="159.148.166.73" static_routes="" gateway_enable="YES" router_enable="NO" router="routed" router_flags="-q" mrouted_enable="NO" mrouted_flags="" arpproxy_all="" forward_sourceroute="YES" accept_sourceroute="YES" ============================================ 2) My fw rules looks like that (ipfw -a l) 00100 149 17161 divert 8668 ip from any to any via fxp0 00200 12 606 allow ip from any to any 65535 0 0 deny ip from any to any ============================================ 3) My kernel configuration options: (/usr/src/sys/conf/options) options IPFIREWALL opt_ipfw.h options IPDIVERT opt_ipdivert.h options IPFIREWALL_FORWARD opt_ipfw.h options IPFIREWALL_VERBOSE opt_ipfw.h ============================================ 4) When I try to ping some server, I got relpies: PING 159.148.60.2 (159.148.60.2): 56 data bytes ping: sendto: Permission denied ping: sendto: Permission denied ping: sendto: Permission denied ping: sendto: Permission denied --- 159.148.60.2 ping statistics --- 3 packets transmitted, 0 packets received, 100% packet loss ============================================ ============================================ What can I do? Regards, J.B. __________________________________________________ Do You Yahoo!? Yahoo! Mail – Free email you can access from anywhere! http://mail.yahoo.com/ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue Aug 22 3:53: 1 2000 Delivered-To: freebsd-isp@freebsd.org Received: from jupiter.systems.cais.net (jupiter.systems.cais.net [205.177.9.227]) by hub.freebsd.org (Postfix) with ESMTP id F308B37B43E for ; Tue, 22 Aug 2000 03:52:55 -0700 (PDT) Received: from localhost (cheiser@localhost) by jupiter.systems.cais.net (8.9.3/8.9.3) with ESMTP id GAA72982; Tue, 22 Aug 2000 06:51:18 -0400 (EDT) (envelope-from cheiser@cais.net) X-Authentication-Warning: jupiter.systems.cais.net: cheiser owned process doing -bs Date: Tue, 22 Aug 2000 06:51:18 -0400 (EDT) From: Chris Heiser X-Sender: cheiser@jupiter.systems.cais.net To: "Francis A. Vidal" Cc: FreeBSD ISP Subject: Re: Configuring Cyclades Ze + FreeBSD 4.1 In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org If you look through LINT, you'll see an entry for cy0 at isa? This of course, doesn't work since the Cyclades Ze card is PCI. In FreeBSD 3.4, I used a line like this to get it to work device cy0 at pci0 I presume this will most likely still work. I'd test it myself if I had the hardware lying around here. _____________________v Chris Heiser ^ Systems Administrator CAIS Internet cheiser@cais.net On Tue, 22 Aug 2000, Francis A. Vidal wrote: > Hi all, > > Finally got Cyclades Ze with 2 serial expanders for 32 dial-up > lines. The package didn't come with the FreeBSD drivers and I thought > it is directly supported in the kernel. But browsing through the LINT > file yielded no references to Cyclades Ze. What must I do? Can you > also point me to pointers on the web on how to setup a PPP dial-in > server using Cyclades? Thanks! > > -- > francis vidal university of st. la salle, bacolod city, philippines > . . . . . . . PGP key available via e-mail / subject: get PGP key > u s l s N E T tel nos. (+63.34).433.3526 / fax (+63.34).434.0415 > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue Aug 22 4:45:16 2000 Delivered-To: freebsd-isp@freebsd.org Received: from whale.sunbay.crimea.ua (whale.sunbay.crimea.ua [212.110.138.65]) by hub.freebsd.org (Postfix) with ESMTP id D6F7C37B423; Tue, 22 Aug 2000 04:45:04 -0700 (PDT) Received: (from ru@localhost) by whale.sunbay.crimea.ua (8.9.3/1.13) id OAA13667; Tue, 22 Aug 2000 14:44:22 +0300 (EEST) Date: Tue, 22 Aug 2000 14:44:22 +0300 From: Ruslan Ermilov To: John Braun Cc: freebsd-isp@freebsd.org, freebsd-ipfw@FreeBSD.ORG Subject: Re: divert disabled Message-ID: <20000822144422.B12855@sunbay.com> Mail-Followup-To: John Braun , freebsd-isp@freebsd.org, freebsd-ipfw@FreeBSD.ORG References: <20000822100018.9998.qmail@web1401.mail.yahoo.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 1.0i In-Reply-To: <20000822100018.9998.qmail@web1401.mail.yahoo.com>; from uktests@yahoo.com on Tue, Aug 22, 2000 at 03:00:18AM -0700 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Tue, Aug 22, 2000 at 03:00:18AM -0700, John Braun wrote: > Hello > > I try to start router (BSD 3.2), > but I get a not so satisfactory results. > > When BSD starting, it shows message > like this: "Divert disabled" > > Where is a problem? > You need to compile your kernel with `options IPDIVERT'. Module version (ipfw.ko) is compiled without this option. -- Ruslan Ermilov Oracle Developer/DBA, ru@sunbay.com Sunbay Software AG, ru@FreeBSD.org FreeBSD committer, +380.652.512.251 Simferopol, Ukraine http://www.FreeBSD.org The Power To Serve http://www.oracle.com Enabling The Information Age To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue Aug 22 6:36:19 2000 Delivered-To: freebsd-isp@freebsd.org Received: from server.comnix.com (ns1.comnix.com [195.196.30.50]) by hub.freebsd.org (Postfix) with SMTP id 0221B37B507 for ; Tue, 22 Aug 2000 06:36:15 -0700 (PDT) Received: (qmail 3421 invoked from network); 22 Aug 2000 13:36:08 -0000 Received: from lb36-utv-sto.telia.net (HELO veidit.net) (@193.44.56.36) by ns1.comnix.com with SMTP; 22 Aug 2000 13:36:08 -0000 Message-ID: <39A281C7.BA9839F3@veidit.net> Date: Tue, 22 Aug 2000 15:36:07 +0200 From: John Angelmo X-Mailer: Mozilla 4.75 [en] (Win98; U) X-Accept-Language: sv, en MIME-Version: 1.0 To: FreeBSD ISP Subject: stress test Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hi I have a system that goes down from time to time.. And now I need to stresstest it ;.) does any of you Guys/gals know of any stresstest tool for HDs? or system tests? /John To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue Aug 22 9:25: 1 2000 Delivered-To: freebsd-isp@freebsd.org Received: from misery.sdf.com (misery.sdf.com [204.244.213.49]) by hub.freebsd.org (Postfix) with ESMTP id D2E7C37B42C for ; Tue, 22 Aug 2000 09:24:57 -0700 (PDT) Received: from tom (helo=localhost) by misery.sdf.com with local-esmtp (Exim 2.12 #1) id 13RGW0-0002JP-00; Tue, 22 Aug 2000 09:03:04 -0700 Date: Tue, 22 Aug 2000 09:03:02 -0700 (PDT) From: Tom Samplonius To: John Angelmo Cc: FreeBSD ISP Subject: Re: stress test In-Reply-To: <39A281C7.BA9839F3@veidit.net> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Tue, 22 Aug 2000, John Angelmo wrote: > Hi > > I have a system that goes down from time to time.. And now I need to > stresstest it ;.) > > does any of you Guys/gals know of any stresstest tool for HDs? or system > tests? > > /John "make world" is a good all around test. It is CPU, memory and disk intensive, and it take a few hours even on a fast machine. Tom To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue Aug 22 9:26:55 2000 Delivered-To: freebsd-isp@freebsd.org Received: from spes.lutgen.net (spes.lutgen.net [198.174.235.19]) by hub.freebsd.org (Postfix) with ESMTP id 9FCD037B43F for ; Tue, 22 Aug 2000 09:26:52 -0700 (PDT) Received: from localhost (mlutgen@localhost) by spes.lutgen.net (8.9.3/8.9.3) with ESMTP id LAA30662; Tue, 22 Aug 2000 11:26:23 -0500 (CDT) (envelope-from mlutgen@lutgen.net) Date: Tue, 22 Aug 2000 11:26:23 -0500 (CDT) From: Mark Lutgen To: John Angelmo Cc: FreeBSD ISP Subject: Re: stress test In-Reply-To: <39A281C7.BA9839F3@veidit.net> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Have you tried using Bonnie? /usr/ports/benchmarks/bonnie Mark ------------------------------------------------------ Mark M. Lutgen Systems Engineer - U S WEST is now Qwest On Tue, 22 Aug 2000, John Angelmo wrote: > > > Hi > > I have a system that goes down from time to time.. And now I need to > stresstest it ;.) > > does any of you Guys/gals know of any stresstest tool for HDs? or system > tests? > > /John > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue Aug 22 10:39:42 2000 Delivered-To: freebsd-isp@freebsd.org Received: from elvis.mu.org (elvis.mu.org [207.154.226.10]) by hub.freebsd.org (Postfix) with ESMTP id 0B9EE37B424 for ; Tue, 22 Aug 2000 10:39:38 -0700 (PDT) Received: by elvis.mu.org (Postfix, from userid 1000) id 77F6F2B23F; Tue, 22 Aug 2000 12:39:32 -0500 (CDT) Date: Tue, 22 Aug 2000 10:39:32 -0700 From: Paul Saab To: Bill Fumerola Cc: FengYue , Mike , James Housley , freebsd-isp@FreeBSD.ORG Subject: Re: ps question Message-ID: <20000822103932.A62542@elvis.mu.org> References: <4.3.2.7.2.20000821014336.00b81aa0@127.0.0.1> <20000821155159.F65562@jade.chc-chimes.com> Mime-Version: 1.0 Content-Type: multipart/mixed; boundary="AhhlLboLdkugWU4S" Content-Disposition: inline User-Agent: Mutt/1.2i In-Reply-To: <20000821155159.F65562@jade.chc-chimes.com>; from billf@chimesnet.com on Mon, Aug 21, 2000 at 03:51:59PM -0400 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org --AhhlLboLdkugWU4S Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Bill Fumerola (billf@chimesnet.com) wrote: > On Mon, Aug 21, 2000 at 12:53:53PM -0700, FengYue wrote: > > > > What's the use of all those hacks in ps code? People can simply either > > access /proc or directly call kvm_* () functions to get a full list of > > processes running on the machine, or even simply ftp a ps binary > > from another freebsd machine. > > Exactly. If you don't want users snooping around, installing a watered > down ps(1) isn't going to help much. > > Unmounting /proc may help, not giving users that would abuse an account > might help, giving users restricted shells might help, a bullet in the > head of people who abuse your system might help, but a watered down ps(1) > sadly won't. Not only that, you still have access to the sysctl as any user to pull all the processes, so a watered down ps isn't going to help, but this patch will.. :) If I get some time, I can do somethign similar for procfs. paul --AhhlLboLdkugWU4S Content-Type: text/plain; charset=us-ascii Content-Disposition: attachment; filename="ps.diff" Index: kern_proc.c =================================================================== RCS file: /shit/FreeBSD4/cvs/src/sys/kern/kern_proc.c,v retrieving revision 1.1 retrieving revision 1.2 diff -u -r1.1 -r1.2 --- kern_proc.c 2000/07/22 08:02:17 1.1 +++ kern_proc.c 2000/08/19 16:36:17 1.2 @@ -55,6 +55,10 @@ static MALLOC_DEFINE(M_PROC, "proc", "Proc structures"); MALLOC_DEFINE(M_SUBPROC, "subproc", "Proc sub-structures"); +static int ps_showallprocs = 1; +SYSCTL_INT(_kern, OID_AUTO, ps_showallprocs, CTLFLAG_RW, + &ps_showallprocs, 0, ""); + static void pgdelete __P((struct pgrp *)); /* @@ -522,7 +526,7 @@ } static int -sysctl_kern_proc SYSCTL_HANDLER_ARGS +sysctl_kern_proc(SYSCTL_HANDLER_ARGS) { int *name = (int*) arg1; u_int namelen = arg2; @@ -561,6 +565,11 @@ p = LIST_FIRST(&zombproc); for (; p != 0; p = LIST_NEXT(p, p_list)) { /* + * Show a user only their processes + */ + if ((!ps_showallprocs) && p_trespass(curproc, p)) + continue; + /* * Skip embryonic processes. */ if (p->p_stat == SIDL) @@ -618,7 +627,7 @@ * title to a string of its own choice. */ static int -sysctl_kern_proc_args SYSCTL_HANDLER_ARGS +sysctl_kern_proc_args(SYSCTL_HANDLER_ARGS) { int *name = (int*) arg1; u_int namelen = arg2; --AhhlLboLdkugWU4S-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue Aug 22 13:28:33 2000 Delivered-To: freebsd-isp@freebsd.org Received: from atlas.usls.edu (atlas.usls.edu [202.47.133.46]) by hub.freebsd.org (Postfix) with ESMTP id 3BF9837B422 for ; Tue, 22 Aug 2000 13:28:31 -0700 (PDT) Received: from usls.edu (localhost.usls.edu [127.0.0.1]) by atlas.usls.edu (Postfix) with SMTP id 227B89B1B; Wed, 23 Aug 2000 04:28:29 +0800 (PHT) Date: Tue, 22 Aug 2000 20:28:29 -0000 To: Chris Heiser , "Francis A. Vidal" Subject: Re: Configuring Cyclades Ze + FreeBSD 4.1 From: Francis A.Vidal X-Mailer: TWIG 2.3.2 Cc: FreeBSD ISP Reply-To: francis@usls.edu Message-Id: <20000822202829.227B89B1B@atlas.usls.edu> Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Chris Heiser said: > If you look through LINT, youll see an entry for cy0 at isa? > > This of course, doesnt work since the Cyclades Ze card is PCI. > In FreeBSD 3.4, I used a line like this to get it to work > > device cy0 at pci0 > > I presume this will most likely still work. Id test it myself if I had > the hardware lying around here. I download the drivers for Ze series from Cyclades (according to the documentation, the driver was for FreeBSD 3.2) and installed them on a FreeBSD 3.5.1 system but it wouldnt recognize the board. I couldnt see the board (cz0) in the messages log =( Im trying what youre suggesting and lets see what happens. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue Aug 22 13:36:31 2000 Delivered-To: freebsd-isp@freebsd.org Received: from isot.com (isot.com [63.161.224.3]) by hub.freebsd.org (Postfix) with ESMTP id 16C3637B42C for ; Tue, 22 Aug 2000 13:36:28 -0700 (PDT) Received: from gism (ns1.gism.com [63.161.238.200]) by isot.com (8.9.3/8.9.3) with SMTP id PAA01194 for ; Tue, 22 Aug 2000 15:34:08 -0500 (CDT) Message-ID: <005101c00c78$e647fc20$c8eea13f@gism> From: "Felix Castillo" To: "FreeBSD-ISP" Subject: Apache mod_php w/ MySqL Date: Tue, 22 Aug 2000 15:38:15 -0500 MIME-Version: 1.0 Content-Type: multipart/alternative; boundary="----=_NextPart_000_004E_01C00C4E.FD0B9130" X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.00.2919.6700 X-MimeOLE: Produced By Microsoft MimeOLE V5.00.2919.6700 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org This is a multi-part message in MIME format. ------=_NextPart_000_004E_01C00C4E.FD0B9130 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable MySQL and PHP4 running fine. But when a line, extension=3Dphp_mysql.so is added to the php.ini, the apache will not startup. Please help. Felix. ------=_NextPart_000_004E_01C00C4E.FD0B9130 Content-Type: text/html; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable
MySQL and PHP4 running fine.  But = when a=20 line,
 
extension=3Dphp_mysql.so
 
is added to the php.ini, the apache = will not=20 startup.  Please help.
 
Felix.
------=_NextPart_000_004E_01C00C4E.FD0B9130-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue Aug 22 13:42:12 2000 Delivered-To: freebsd-isp@freebsd.org Received: from saturn.mikesweb.com (saturn.mikesweb.com [216.91.66.1]) by hub.freebsd.org (Postfix) with SMTP id 36B5D37B440 for ; Tue, 22 Aug 2000 13:42:08 -0700 (PDT) Received: (qmail 69676 invoked from network); 22 Aug 2000 20:42:06 -0000 Received: from delta.mikesweb.com (HELO SUN.mikesweb.com) (@216.91.66.252) by saturn.mikesweb.com with SMTP; 22 Aug 2000 20:42:06 -0000 Message-Id: <4.3.2.7.2.20000822163954.00b2b530@127.0.0.1> X-Sender: sturdee/mail.mikesweb.com@127.0.0.1 X-Mailer: QUALCOMM Windows Eudora Version 4.3.2 Date: Tue, 22 Aug 2000 16:40:58 -0400 To: Paul Saab From: Mike Subject: Re: ps question Cc: freebsd-isp@FreeBSD.ORG In-Reply-To: <20000822103932.A62542@elvis.mu.org> References: <20000821155159.F65562@jade.chc-chimes.com> <4.3.2.7.2.20000821014336.00b81aa0@127.0.0.1> <20000821155159.F65562@jade.chc-chimes.com> Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii"; format=flowed Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Actually, I disallowed the use of sysctl for everyone except root.. At 10:39 AM 8/22/2000 -0700, Paul Saab wrote: >Bill Fumerola (billf@chimesnet.com) wrote: > > On Mon, Aug 21, 2000 at 12:53:53PM -0700, FengYue wrote: > > > > > > What's the use of all those hacks in ps code? People can simply either > > > access /proc or directly call kvm_* () functions to get a full list of > > > processes running on the machine, or even simply ftp a ps binary > > > from another freebsd machine. > > > > Exactly. If you don't want users snooping around, installing a watered > > down ps(1) isn't going to help much. > > > > Unmounting /proc may help, not giving users that would abuse an account > > might help, giving users restricted shells might help, a bullet in the > > head of people who abuse your system might help, but a watered down ps(1) > > sadly won't. > >Not only that, you still have access to the sysctl as any user to pull >all the processes, so a watered down ps isn't going to help, but this >patch will.. :) > >If I get some time, I can do somethign similar for procfs. > >paul To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue Aug 22 13:57:28 2000 Delivered-To: freebsd-isp@freebsd.org Received: from ns1.sunesi.net (ns1.sunesi.net [196.15.192.194]) by hub.freebsd.org (Postfix) with ESMTP id 4680937B43C for ; Tue, 22 Aug 2000 13:57:24 -0700 (PDT) Received: from nbm by ns1.sunesi.net with local (Exim 3.03 #1) id 13RL6g-0000HH-00; Tue, 22 Aug 2000 22:57:14 +0200 Date: Tue, 22 Aug 2000 22:57:14 +0200 From: Neil Blakey-Milner To: Mike Cc: Paul Saab , freebsd-isp@FreeBSD.ORG Subject: Re: ps question Message-ID: <20000822225714.A1044@mithrandr.moria.org> References: <20000821155159.F65562@jade.chc-chimes.com> <4.3.2.7.2.20000821014336.00b81aa0@127.0.0.1> <20000821155159.F65562@jade.chc-chimes.com> <20000822103932.A62542@elvis.mu.org> <4.3.2.7.2.20000822163954.00b2b530@127.0.0.1> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 1.0.1i In-Reply-To: <4.3.2.7.2.20000822163954.00b2b530@127.0.0.1>; from mike@mikesweb.com on Tue, Aug 22, 2000 at 04:40:58PM -0400 Organization: Sunesi Clinical Systems X-Operating-System: FreeBSD 3.3-RELEASE i386 X-URL: http://rucus.ru.ac.za/~nbm/ Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Tue 2000-08-22 (16:40), Mike wrote: > Actually, I disallowed the use of sysctl for everyone except root.. The command, perhaps, but not the function, I imagine. Neil -- Neil Blakey-Milner Sunesi Clinical Systems nbm@mithrandr.moria.org To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue Aug 22 14: 4: 9 2000 Delivered-To: freebsd-isp@freebsd.org Received: from spooky.eis.net.au (spooky.eis.net.au [203.12.171.2]) by hub.freebsd.org (Postfix) with ESMTP id 1155B37B43C for ; Tue, 22 Aug 2000 14:04:05 -0700 (PDT) Received: (from ernie@localhost) by spooky.eis.net.au (8.9.3/8.9.3) id GAA29808 for freebsd-isp@freebsd.org; Wed, 23 Aug 2000 06:21:35 +1000 (EST) (envelope-from ernie) From: Ernie Elu Message-Id: <200008222021.GAA29808@spooky.eis.net.au> Subject: Stopping User unknown messages To: freebsd-isp@freebsd.org Date: Wed, 23 Aug 2000 06:21:35 +1000 (EST) X-Mailer: ELM [version 2.4ME+ PL40 (25)] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Does anyone know of a sendmail directive to stop the postmasters mail box filling up with "User unknown" messages? This occurs from typos, deleted users, and most of all spam programs trying random user names. I have just taken over the postmasters job and my mailbox is full of garbage that requires no follow up every hour. Freebsd 4.1-RELEASE with sendmail version 8.9.3.1 - Ernie. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue Aug 22 21:45:11 2000 Delivered-To: freebsd-isp@freebsd.org Received: from mta6.snfc21.pbi.net (mta6.snfc21.pbi.net [206.13.28.240]) by hub.freebsd.org (Postfix) with ESMTP id BCBE137B424 for ; Tue, 22 Aug 2000 21:45:09 -0700 (PDT) Received: from desire ([63.202.70.107]) by mta6.snfc21.pbi.net (Sun Internet Mail Server sims.3.5.2000.01.05.12.18.p9) with SMTP id <0FZQ00ISZAG4OJ@mta6.snfc21.pbi.net> for freebsd-isp@freebsd.org; Tue, 22 Aug 2000 21:43:16 -0700 (PDT) Date: Tue, 22 Aug 2000 21:41:25 -0700 From: Andrew Houghton Subject: nsyslogd claims "security" is an unknown facility To: freebsd-isp@freebsd.org Message-id: <001a01c00cbc$66112b00$6b46ca3f@desire> MIME-version: 1.0 X-Mailer: Microsoft Outlook Express 5.50.4133.2400 Content-type: text/plain; charset="iso-8859-1" Content-transfer-encoding: 7bit X-MSMail-Priority: Normal X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4133.2400 X-Priority: 3 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Can't find anywhere else to ask this, so it goes here. Trying to switch from syslogd to nsyslogd on a FreeBSD 4.1-STABLE box (current as of about a week ago), and here's what I get: everything compiles fine, I can start the daemon and it correctly reads in the legacy syslog.conf, but nothing gets logged after that. I tried using logger, but nothing came through. The only message in the log from nsyslogd is: Aug 22 17:13:32 ns1 unknown facility name "security" Any thoughts? Thanks, Andrew To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Aug 23 3:53:25 2000 Delivered-To: freebsd-isp@freebsd.org Received: from yukaton.warpnet.ro (yukaton.warpnet.ro [194.102.224.4]) by hub.freebsd.org (Postfix) with ESMTP id 6EAE737B424; Wed, 23 Aug 2000 03:53:16 -0700 (PDT) Received: (from ady@localhost) by yukaton.warpnet.ro (8.9.3/8.9.3) id PAA00380; Wed, 23 Aug 2000 15:00:21 +0300 (EEST) (envelope-from ady) Date: Wed, 23 Aug 2000 15:00:21 +0300 (EEST) From: "ady@warpnet.ro" Message-Id: <200008231200.PAA00380@yukaton.warpnet.ro> To: freebsd-isp@FreeBSD.org, freebsd-questions@FreeBSD.org Subject: Server side PPPoE daemon in FreeBSD 3.5 Cc: brian@awfulhak.org Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hi, Are there any issues with pppoed in 3.5-STABLE ? I'm trying to offer PPPoE service over DSL links (Net to Net Tech) and it doesn't work. Here's a snaphost of what it happens: [root@yukaton 02:27pm] /root# /usr/libexec/pppoed -Fd -e "/usr/sbin/ppp -direct apollostar-dsl" -p * ed1 Sending NGM_LISTHOOKS to ed1: Got reply from id [3]: Type ether with 0 hooks Send MKPEER: ed1:orphans -> [type pppoe]:ethernet Sending PPPOE_LISTEN to .:pppoe-375, provider * pppoed[375]: Listening as provider * And that's all, nothing else. Still, tcpdump catches the PADI requests from the client: [root@yukaton 02:28pm] /root# tcpdump -n -i ed1 tcpdump: listening on ed1 14:29:03.100556 PPPoE PADI v1, type 1, sess 0 len 26 [Service-Name apollostar-dsl] [Host-Uniq c0e77bc0] 14:29:05.099975 PPPoE PADI v1, type 1, sess 0 len 26 [Service-Name apollostar-dsl] [Host-Uniq c0e77bc0] I'm really confused, could someone give me a hint what's wrong ? I'm using 3.5-STABLE as of 20th August. Thanks, Ady (@warpnet.ro) To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Aug 23 4:17:45 2000 Delivered-To: freebsd-isp@freebsd.org Received: from hq1.tyfon.net (hq1.tyfon.net [213.212.29.17]) by hub.freebsd.org (Postfix) with ESMTP id 5164337B423 for ; Wed, 23 Aug 2000 04:17:43 -0700 (PDT) Received: from localhost (localhost [127.0.0.1]) by hq1.tyfon.net (Postfix) with ESMTP id 0F1221C7BB for ; Wed, 23 Aug 2000 13:16:34 +0200 (CEST) Date: Wed, 23 Aug 2000 13:16:34 +0200 (CEST) From: Dan Larsson To: isp@freebsd.org Subject: mux-feature with FreeBSD? Message-ID: Organization: Tyfon Svenska AB MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Are there any solutions to mux ethernet lines on FreeBSD? Regards +------ Dan Larsson | Tel: +46 8 550 120 21 Tyfon Svenska AB | Fax: +46 8 550 120 02 Public PGP keys | finger dl@hq1.tyfon.net To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Aug 23 4:18:50 2000 Delivered-To: freebsd-isp@freebsd.org Received: from jupiter.systems.cais.net (jupiter.systems.cais.net [205.177.9.227]) by hub.freebsd.org (Postfix) with ESMTP id CD24F37B422 for ; Wed, 23 Aug 2000 04:18:45 -0700 (PDT) Received: from localhost (cheiser@localhost) by jupiter.systems.cais.net (8.9.3/8.9.3) with ESMTP id HAA01630; Wed, 23 Aug 2000 07:17:43 -0400 (EDT) (envelope-from cheiser@cais.net) X-Authentication-Warning: jupiter.systems.cais.net: cheiser owned process doing -bs Date: Wed, 23 Aug 2000 07:17:43 -0400 (EDT) From: Chris Heiser X-Sender: cheiser@jupiter.systems.cais.net To: Andrew Houghton Cc: freebsd-isp@FreeBSD.ORG Subject: Re: nsyslogd claims "security" is an unknown facility In-Reply-To: <001a01c00cbc$66112b00$6b46ca3f@desire> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Um.... comment out the line that starts security.* ??? _____________________v Chris Heiser ^ Systems Administrator CAIS Internet cheiser@cais.net On Tue, 22 Aug 2000, Andrew Houghton wrote: > Can't find anywhere else to ask this, so it goes here. Trying to switch > from syslogd to nsyslogd on a FreeBSD 4.1-STABLE box (current as of about a > week ago), and here's what I get: everything compiles fine, I can start the > daemon and it correctly reads in the legacy syslog.conf, but nothing gets > logged after that. I tried using logger, but nothing came through. > > The only message in the log from nsyslogd is: > > Aug 22 17:13:32 ns1 unknown facility name "security" > > Any thoughts? > > Thanks, > > Andrew > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Aug 23 9:14:37 2000 Delivered-To: freebsd-isp@freebsd.org Received: from mail2.aracnet.com (mail2.aracnet.com [216.99.193.35]) by hub.freebsd.org (Postfix) with ESMTP id 64D7537B43E for ; Wed, 23 Aug 2000 09:14:31 -0700 (PDT) Received: from shell1.aracnet.com (shell1.aracnet.com [216.99.193.21]) by mail2.aracnet.com (8.9.3/8.9.3) with ESMTP id JAA10192 for ; Wed, 23 Aug 2000 09:14:35 -0700 Received: by shell1.aracnet.com (8.9.3) id JAA03545; Wed, 23 Aug 2000 09:14:31 -0700 Date: Wed, 23 Aug 2000 09:14:31 -0700 (PDT) From: Rick Hamell To: freebsd-isp@freebsd.org Subject: Domain names and Nameserver Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hi all, trying to get my domain name to resolve to my IP. I've gone to network solutions and finally got the nameserver IP set to my own IP. Problem is I do not have a valid secondary nameserver quite yet, though I think I'd still be able to get to it. I can manually enter my IP into a web browser, the Apache is installed Web Page comes up just fine. Whois reports the information except for the secondary nameserver, which is a typo. Oh, the domain is 1nova.com @ 63.105.24.23 If anyone could point me to a document on how to set this kind of stuff up with Network Solutions or other, it'd be much appreciated! Thanks in advance! Rick To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Aug 23 9:25: 9 2000 Delivered-To: freebsd-isp@freebsd.org Received: from smtp-out2.bellatlantic.net (smtp-out2.bellatlantic.net [199.45.39.157]) by hub.freebsd.org (Postfix) with ESMTP id D282B37B43C for ; Wed, 23 Aug 2000 09:24:51 -0700 (PDT) Received: from smartsoft.cc (client-209-158-91-197.bellatlantic.net [209.158.91.197]) by smtp-out2.bellatlantic.net (8.9.1/8.9.1) with ESMTP id MAA05806; Wed, 23 Aug 2000 12:24:42 -0400 (EDT) Message-ID: <39A3FAAF.80030FE3@smartsoft.cc> Date: Wed, 23 Aug 2000 12:24:15 -0400 From: Jan Knepper Organization: Smartsoft, LLC X-Mailer: Mozilla 4.75 [en] (Windows NT 5.0; U) X-Accept-Language: en MIME-Version: 1.0 To: Rick Hamell Cc: freebsd-isp@FreeBSD.ORG Subject: Re: Domain names and Nameserver References: Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Rick Hamell wrote: > Hi all, trying to get my domain name to resolve to my IP. I've > gone to network solutions and finally got the nameserver IP set to my own > IP. What do you mean: "Set to my own IP" The nameserver IP on network solutions NEEDS to be an IP address of a DOMAIN NAME SERVER. Not the IP address of your site! > Problem is I do not have a valid secondary nameserver quite yet, > though I think I'd still be able to get to it. I can manually enter my IP > into a web browser, the Apache is installed Web Page comes up just > fine. Whois reports the information except for the secondary nameserver, > which is a typo. Oh, the domain is 1nova.com @ 63.105.24.23 What you need is two DOMAIN NAME SERVER (DNS) that resolve "1nova.com." to 63.105.24.23 On other words (simply speaking) the user types 1nova.com in the URL on the browser. The browser sends "1nova.com" to the DNS and the DNS reponds: 63.105.24.23 > If anyone could point me to a document on how to set this kind of > stuff up with Network Solutions or other, it'd be much appreciated! Thanks > in advance! DNS and BIND. a book available at FreeBSDMall Don't worry, be Kneppie! Jan -- Jan Knepper Smartsoft, LLC 88 Petersburg Road Petersburg, NJ 08270 U.S.A. http://www.smartsoft.cc/ http://www.pianoprincess.com/ http://www.mp3.com/pianoprincess http://www.riffage.com/Bands/0,2939,2859,00.html http://pianoprincess.iuma.com/ http://www.changemusic.com/piano_princess Phone : 609-628-4260 FAX : 609-628-1267 FAX : 303-845-6415 http://www.fax4free.com/ Phone : 020-873-3837 http://www.xoip.nl/ (Dutch) FAX : 020-873-3837 http://www.xoip.nl/ (Dutch) Rick Hamell wrote: > Hi all, trying to get my domain name to resolve to my IP. I've > gone to network solutions and finally got the nameserver IP set to my own > IP. Problem is I do not have a valid secondary nameserver quite yet, > though I think I'd still be able to get to it. I can manually enter my IP > into a web browser, the Apache is installed Web Page comes up just > fine. Whois reports the information except for the secondary nameserver, > which is a typo. Oh, the domain is 1nova.com @ 63.105.24.23 > If anyone could point me to a document on how to set this kind of > stuff up with Network Solutions or other, it'd be much appreciated! Thanks > in advance! > > Rick > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message -- Jan Knepper Smartsoft, LLC 88 Petersburg Road Petersburg, NJ 08270 U.S.A. http://www.smartsoft.cc/ http://www.pianoprincess.com/ http://www.mp3.com/pianoprincess http://www.riffage.com/Bands/0,2939,2859,00.html http://pianoprincess.iuma.com/ http://www.changemusic.com/piano_princess Phone : 609-628-4260 FAX : 609-628-1267 FAX : 303-845-6415 http://www.fax4free.com/ Phone : 020-873-3837 http://www.xoip.nl/ (Dutch) FAX : 020-873-3837 http://www.xoip.nl/ (Dutch) To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Aug 23 10:19:30 2000 Delivered-To: freebsd-isp@freebsd.org Received: from mta6.snfc21.pbi.net (mta6.snfc21.pbi.net [206.13.28.240]) by hub.freebsd.org (Postfix) with ESMTP id B23AB37B423 for ; Wed, 23 Aug 2000 10:19:24 -0700 (PDT) Received: from desire ([63.202.70.107]) by mta6.snfc21.pbi.net (Sun Internet Mail Server sims.3.5.2000.01.05.12.18.p9) with SMTP id <0FZR00M6H98TAO@mta6.snfc21.pbi.net> for freebsd-isp@FreeBSD.ORG; Wed, 23 Aug 2000 10:14:54 -0700 (PDT) Date: Wed, 23 Aug 2000 10:13:10 -0700 From: Andrew Houghton Subject: Re: nsyslogd claims "security" is an unknown facility To: Chris Heiser Cc: freebsd-isp@FreeBSD.ORG Message-id: <00fb01c00d25$69bcdd30$6b46ca3f@desire> MIME-version: 1.0 X-Mailer: Microsoft Outlook Express 5.50.4133.2400 Content-type: text/plain; charset="iso-8859-1" Content-transfer-encoding: 7bit X-MSMail-Priority: Normal X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4133.2400 References: X-Priority: 3 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Well, that certainly seems like a bandaid approach. =) Removing the security line from syslog.conf stops nsyslogd from complaining about the security facility, but it still isn't logging anything. - a. ----- Original Message ----- From: "Chris Heiser" To: "Andrew Houghton" Cc: Sent: Wednesday, August 23, 2000 4:17 AM Subject: Re: nsyslogd claims "security" is an unknown facility > Um.... comment out the line that starts > > security.* ??? > > _____________________v > Chris Heiser ^ > Systems Administrator > CAIS Internet > cheiser@cais.net > > On Tue, 22 Aug 2000, Andrew Houghton wrote: > > > Can't find anywhere else to ask this, so it goes here. Trying to switch > > from syslogd to nsyslogd on a FreeBSD 4.1-STABLE box (current as of about a > > week ago), and here's what I get: everything compiles fine, I can start the > > daemon and it correctly reads in the legacy syslog.conf, but nothing gets > > logged after that. I tried using logger, but nothing came through. > > > > The only message in the log from nsyslogd is: > > > > Aug 22 17:13:32 ns1 unknown facility name "security" > > > > Any thoughts? > > > > Thanks, > > > > Andrew > > > > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > > with "unsubscribe freebsd-isp" in the body of the message > > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Aug 23 13:42:40 2000 Delivered-To: freebsd-isp@freebsd.org Received: from gadolinium.btinternet.com (gadolinium.btinternet.com [194.73.73.111]) by hub.freebsd.org (Postfix) with ESMTP id DA02A37B43C for ; Wed, 23 Aug 2000 13:42:31 -0700 (PDT) Received: from [195.99.48.214] (helo=harryhome) by tungsten.btinternet.com with smtp (Exim 3.03 #83) id 13RM1I-0000lt-00 for freebsd-isp@FreeBSD.ORG; Tue, 22 Aug 2000 22:55:45 +0100 From: "InvictaNet Customer Support" To: "Freebsd-ISP" Subject: RE: Stopping User unknown messages Date: Tue, 22 Aug 2000 22:55:41 +0100 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2910.0) In-Reply-To: <200008222021.GAA29808@spooky.eis.net.au> X-MimeOLE: Produced By Microsoft MimeOLE V5.00.2919.6600 Importance: Normal Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Pardon me for seeming stupid, but isn't that exactly what the postmaster user is for? RFC 822 6.3. Reserved Address It often is necessary to send mail to a site, without know- ing any of its valid addresses. For example, there may be mail system dysfunctions, or a user may wish to find out a person's correct address, at that site. This standard specifies a single, reserved mailbox address (local-part) which is to be valid at each site. Mail sent to that address is to be routed to a person responsible for the site's mail system or to a person with responsibility for general site operation. The name of the reserved local-part address is: Postmaster so that "Postmaster@domain" is required to be valid. Note: This reserved local-part must be matched without sensi- tivity to alphabetic case, so that "POSTMASTER", "postmas- ter", and even "poStmASteR" is to be accepted. Martyn ----------------------------------------------------- InvictaNet - The Internet in Plain English, Guaranteed http://www.invictanet.co.uk mailto:info@invictanet.co.uk phone: 0870 7402252 fax: +44 (0)1233 334001 ------------------------------------------------------ -----Original Message----- From: owner-freebsd-isp@FreeBSD.ORG [mailto:owner-freebsd-isp@FreeBSD.ORG]On Behalf Of Ernie Elu Sent: Tuesday, August 22, 2000 9:22 PM To: freebsd-isp@FreeBSD.ORG Subject: Stopping User unknown messages Does anyone know of a sendmail directive to stop the postmasters mail box filling up with "User unknown" messages? This occurs from typos, deleted users, and most of all spam programs trying random user names. I have just taken over the postmasters job and my mailbox is full of garbage that requires no follow up every hour. Freebsd 4.1-RELEASE with sendmail version 8.9.3.1 - Ernie. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Aug 23 14:21:38 2000 Delivered-To: freebsd-isp@freebsd.org Received: from elvis.mu.org (elvis.mu.org [207.154.226.10]) by hub.freebsd.org (Postfix) with ESMTP id 5C6F337B424 for ; Wed, 23 Aug 2000 14:21:37 -0700 (PDT) Received: by elvis.mu.org (Postfix, from userid 1000) id 0CB442B249; Wed, 23 Aug 2000 16:21:37 -0500 (CDT) Date: Wed, 23 Aug 2000 14:21:36 -0700 From: Paul Saab To: Mike Cc: freebsd-isp@FreeBSD.ORG Subject: Re: ps question Message-ID: <20000823142136.A84356@elvis.mu.org> References: <20000821155159.F65562@jade.chc-chimes.com> <4.3.2.7.2.20000821014336.00b81aa0@127.0.0.1> <20000821155159.F65562@jade.chc-chimes.com> <20000822103932.A62542@elvis.mu.org> <4.3.2.7.2.20000822163954.00b2b530@127.0.0.1> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2i In-Reply-To: <4.3.2.7.2.20000822163954.00b2b530@127.0.0.1>; from mike@mikesweb.com on Tue, Aug 22, 2000 at 04:40:58PM -0400 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Mike (mike@mikesweb.com) wrote: > Actually, I disallowed the use of sysctl for everyone except root.. sysctl is a system call too To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Aug 23 16:35:24 2000 Delivered-To: freebsd-isp@freebsd.org Received: from bsdie.rwsystems.net (bsdie.rwsystems.net [209.197.223.2]) by hub.freebsd.org (Postfix) with ESMTP id EFD0137B5AF for ; Wed, 23 Aug 2000 16:35:11 -0700 (PDT) Received: from bsdie.rwsystems.net([209.197.223.2]) (2620 bytes) by bsdie.rwsystems.net via sendmail with P:esmtp/R:bind_hosts/T:inet_zone_bind_smtp (sender: ) id for ; Wed, 23 Aug 2000 18:28:02 -0500 (CDT) (Smail-3.2.0.106 1999-Mar-31 #1 built 1999-Aug-7) Date: Wed, 23 Aug 2000 18:28:02 -0500 (CDT) From: James Wyatt To: InvictaNet Customer Support Cc: Freebsd-ISP Subject: RE: Stopping User unknown messages In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Tue, 22 Aug 2000, InvictaNet Customer Support wrote: > On Tue, 22 Aug 2000, Ernie Elu wrote: > > Does anyone know of a sendmail directive to stop the postmasters > > mail box filling up with "User unknown" messages? > > > > This occurs from typos, deleted users, and most of all spam programs > > trying random user names. > > > > I have just taken over the postmasters job and my mailbox is full of > > garbage that requires no follow up every hour. > > Pardon me for seeming stupid, but isn't that exactly what the postmaster > user is for? > > RFC 822 > > 6.3. Reserved Address > > It often is necessary to send mail to a site, without know- > ing any of its valid addresses. For example, there may be mail > system dysfunctions, or a user may wish to find out a person's > correct address, at that site. [ we've seen the rest. ] I don't see where the RFC states the postmaster *has* to receive *bounce* messages. It says someone has to receive 'postmaster' messages so you can ask the postmaster directly. I hope that postmaster@hotmail.com doesn't get all bounce messages from malformed recipients! There is a great option in SMail config called 'error_copy_postmaster' that controls this behaviour. I'm sure there is some switch in sendmail that can do the same. Bounce messages can contain sensitive material that, as postbastard, I don't care to read. The 'mailer-daemon' reply is sent back to the original sender so they can see their typo or contact the postmaster. I am *amazed* at the confidential personal or corporate information folks will send with no pre-check on the receiver address(es) whatsoever, let alone fixing it to a short alias so typos ara minimized! I've been postmaster for over 10 years for various large (Tandy, Burlington Northern Railway, etc...) and small companies and would have been completely deluged if I'd received bounce messages for them all! Hope this explains my interpretation of the RFC a bit - Jy@ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Aug 23 21: 7: 0 2000 Delivered-To: freebsd-isp@freebsd.org Received: from ux11.cso.uiuc.edu (ux11.cso.uiuc.edu [128.174.5.105]) by hub.freebsd.org (Postfix) with ESMTP id 3E49437B424; Wed, 23 Aug 2000 21:06:56 -0700 (PDT) Received: from localhost by ux11.cso.uiuc.edu (8.10.1/8.10.1) with ESMTP id e7O46sO18556; Wed, 23 Aug 2000 23:06:55 -0500 (CDT) X-Authentication-Warning: ux11.cso.uiuc.edu: brueggma owned process doing -bs Date: Wed, 23 Aug 2000 23:06:54 -0500 (CDT) From: Eric Brueggmann X-Sender: brueggma@ux11.cso.uiuc.edu To: freebsd-isp@freebsd.org Cc: security@freebsd.org Subject: after "make world" Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hello, I try to keep my box up to date, and cvsup every week or so with cron. And make install world when ever there is a security alert. My question to the list is: What kind of scripts do shell server admins use after they make world? This question is in regaurds to permissions, suid, sgid, etc.. Do you upgrade often enough to even warrent a script like this? Below is a little script, of some of the stuff that I have collected over the past couple of weeks. Am I missing something? Thanks for the help, Eric Brueggmann Hobbiest P.S. Sorry for posting to 2 lists, I thought it pertained to both of `em. I know my spelling sucks.. =============================================================================== #!/bin/sh # Run this after a make world, for better security. chflags noschg /bin/* chflags noschg /usr/bin/* chflags noschg /sbin/* chflags noschg /usr/sbin/* chflags noschg /bin ; chflags noschg /sbin chflags noschg /usr/bin ; chflags noschg /usr/sbin cd /var/log; chmod g-w,o-r * ; chmod a+r wtmp echo "Edit /etc/rc.conf and change the kernellevel to 2" for i in ` find / -type f -perm -2000 | egrep -wv "lockfile" ` ; do chmod g-s $i ; done for i in ` find / -type f -perm -4000 | egrep -wv "man|login|passwd|su|ssh|sendmail|procmail|sudo|mail.local" ` ; do chmod u-s $i ; done for i in ` find / -type d -perm -002 | egrep -v "tmp" ` ; do chmod o-w $i ; done chmod 700 /root # cd to /home and chmod 700 every directory except "apache|newuser|ftp|?????" chflags schg /bin/* chflags schg /usr/bin/* chflags schg /sbin/* chflags schg /usr/sbin/* chflags schg /bin ; chflags schg /sbin chflags schg /usr/bin ; chflags schg /usr/sbin # To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu Aug 24 2:51:13 2000 Delivered-To: freebsd-isp@freebsd.org Received: from lucifer.ninth-circle.org (lucifer.bart.nl [194.158.168.74]) by hub.freebsd.org (Postfix) with ESMTP id 9352537B422 for ; Thu, 24 Aug 2000 02:51:10 -0700 (PDT) Received: (from asmodai@localhost) by lucifer.ninth-circle.org (8.9.3/8.9.3) id LAA07186; Thu, 24 Aug 2000 11:50:46 +0200 (CEST) (envelope-from asmodai) Date: Thu, 24 Aug 2000 11:50:45 +0200 From: Jeroen Ruigrok van der Werven To: John Angelmo Cc: FreeBSD ISP Subject: Re: stress test Message-ID: <20000824115045.D6832@lucifer.bart.nl> References: <39A281C7.BA9839F3@veidit.net> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2i In-Reply-To: <39A281C7.BA9839F3@veidit.net>; from john@veidit.net on Tue, Aug 22, 2000 at 03:36:07PM +0200 Organisation: VIA Net.Works The Netherlands Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org -On [20000822 15:40], John Angelmo (john@veidit.net) wrote: >does any of you Guys/gals know of any stresstest tool for HDs? or system >tests? Greg Lehey's rawio. -- Jeroen Ruigrok van der Werven Network- and systemadministrator VIA Net.Works The Netherlands BSD: Technical excellence at its best http://www.via-net-works.nl Dream, a noise, the wind awakes me, and you're already here... To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu Aug 24 4:43:24 2000 Delivered-To: freebsd-isp@freebsd.org Received: from scooby.lineone.net (doggy.lineone.net [194.75.152.224]) by hub.freebsd.org (Postfix) with ESMTP id B060E37B42C for ; Thu, 24 Aug 2000 04:43:21 -0700 (PDT) Received: from server1.0risknames.net (host213-1-42-233.host.btclick.com [213.1.42.233]) by scooby.lineone.net (8.9.3/8.9.3) with ESMTP id MAA19982 for ; Thu, 24 Aug 2000 12:43:12 +0100 (BST) Received: from doncasterser1 [127.0.0.1] by 0risknames.net [127.0.0.1] with SMTP (MDaemon.v2.84.R) for ; Thu, 24 Aug 2000 12:42:56 +0100 From: "Daniel Conlon" To: Subject: Monitoring User's Data Transfer Date: Thu, 24 Aug 2000 12:42:56 +0100 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2910.0) X-MimeOLE: Produced By Microsoft MimeOLE V5.00.2314.1300 Importance: Normal X-MDaemon-Deliver-To: freebsd-isp@freebsd.org X-Return-Path: dconlon@0risknames.com Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Greetings, Does anybody have any tips on how to monitor the data transfer of each = user on a server. I can obviously use apache log files to find the = amount of data transfer used by their web site, but what about the data = transferred by POP3 or incoming SMTP and when they upload their files by = FTP? If anybody has accomplished this I would be grateful of any tips or = advice. Many Thanks Daniel Conlon ########################## Tel: +44 8707 41 41 51 Fax: +44 8707 41 51 07 http://www.0risknames.com ########################## To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu Aug 24 5:46:47 2000 Delivered-To: freebsd-isp@freebsd.org Received: from qmail.corpex.net (qmail.corpex.net [195.153.247.40]) by hub.freebsd.org (Postfix) with SMTP id 289FC37B422 for ; Thu, 24 Aug 2000 05:46:45 -0700 (PDT) Received: (qmail 1051 invoked from network); 24 Aug 2000 12:49:39 -0000 Received: from perseus.corpex.net (HELO perseus) (195.153.247.226) by qmail.corpex.net with SMTP; 24 Aug 2000 12:49:39 -0000 From: "Jonathan Defries" To: "Daniel Conlon" , Subject: RE: Monitoring User's Data Transfer Date: Thu, 24 Aug 2000 13:46:30 +0100 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2910.0) In-Reply-To: X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4133.2400 Importance: Normal Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org What FTP server are you running? > -----Original Message----- > From: owner-freebsd-isp@FreeBSD.ORG > [mailto:owner-freebsd-isp@FreeBSD.ORG]On Behalf Of Daniel Conlon > Sent: 24 August 2000 12:43 > To: freebsd-isp@freebsd.org > Subject: Monitoring User's Data Transfer > > > Greetings, > > Does anybody have any tips on how to monitor the data transfer > of each user on a server. I can obviously use apache log files > to find the amount of data transfer used by their web site, but > what about the data transferred by POP3 or incoming SMTP and > when they upload their files by FTP? > > If anybody has accomplished this I would be grateful of any tips > or advice. > > Many Thanks > > Daniel Conlon > > ########################## > Tel: +44 8707 41 41 51 > Fax: +44 8707 41 51 07 > http://www.0risknames.com > ########################## > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu Aug 24 6:20:14 2000 Delivered-To: freebsd-isp@freebsd.org Received: from wopr.chc-chimes.com (wopr.chc-chimes.com [216.234.105.162]) by hub.freebsd.org (Postfix) with ESMTP id 8938337B42C for ; Thu, 24 Aug 2000 06:20:12 -0700 (PDT) Received: from localhost (matta@localhost) by wopr.chc-chimes.com (8.9.3/8.9.3) with ESMTP id JAA01029; Thu, 24 Aug 2000 09:22:00 -0400 (EDT) (envelope-from matta@unixshell.com) Date: Thu, 24 Aug 2000 09:22:00 -0400 (EDT) From: Matt Ayres X-Sender: matta@wopr.chc-chimes.com To: Daniel Conlon Cc: freebsd-isp@FreeBSD.ORG Subject: Re: Monitoring User's Data Transfer In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org ipfw add count ip from any to any uid That is the only method i can think of off the top of my head. While it is slow and probably not the solution you were looking for, using skipto rules and a small number of users it shouldn't be noticable. You would then write a script to parse the output of 'ipfw show' and integrate that into any system you currently have in place. Thanks, Matt Ayres On Thu, 24 Aug 2000, Daniel Conlon wrote: > Greetings, > > Does anybody have any tips on how to monitor the data transfer of each user on a server. I can obviously use apache log files to find the amount of data transfer used by their web site, but what about the data transferred by POP3 or incoming SMTP and when they upload their files by FTP? > > If anybody has accomplished this I would be grateful of any tips or advice. > > Many Thanks > > Daniel Conlon > > ########################## > Tel: +44 8707 41 41 51 > Fax: +44 8707 41 51 07 > http://www.0risknames.com > ########################## > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu Aug 24 17:43:52 2000 Delivered-To: freebsd-isp@freebsd.org Received: from rosencrantz.citytel.net (rosencrantz.rupert.net [204.244.98.45]) by hub.freebsd.org (Postfix) with ESMTP id 8AB6037B422 for ; Thu, 24 Aug 2000 17:43:50 -0700 (PDT) Received: from rosencrantz.citytel.net (kwoody@rosencrantz.rupert.net [204.244.98.45]) by rosencrantz.citytel.net (8.9.1/8.9.1) with SMTP id RAA16984; Thu, 24 Aug 2000 17:43:40 -0700 (PDT) Date: Thu, 24 Aug 2000 17:43:39 -0700 (PDT) From: Keith Woodworth Reply-To: kwoody@citytel.net To: Daniel Conlon Cc: freebsd-isp@FreeBSD.ORG Subject: Re: Monitoring User's Data Transfer In-Reply-To: Message-ID: Approved: yes MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Thu, 24 Aug 2000, Daniel Conlon wrote: >>Greetings, >> >>Does anybody have any tips on how to monitor the data transfer of each user on a server. I can obviously use apache log files to find the amount of data transfer used by their web site, but what about the data transferred by POP3 or incoming SMTP and when they upload their files by FTP? Well for FTP it should not be too hard. Just parse your ftp.log file if you have one for the users in question. SMTP, well I guess if you use sendmail you can do read your maillog file for the users and glean some info from there.. POP3 might be a bit harder. What popper are you using? >>Daniel Conlon Keith To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu Aug 24 21:47:59 2000 Delivered-To: freebsd-isp@freebsd.org Received: from ns.tcworks.net (ns.tcworks.net [216.61.218.2]) by hub.freebsd.org (Postfix) with ESMTP id 829CB37B423 for ; Thu, 24 Aug 2000 21:47:55 -0700 (PDT) Received: from tcworks.net (stuck.sticky.org [216.61.218.6]) by ns.tcworks.net (8.9.2/8.9.2) with ESMTP id XAA45866 for ; Thu, 24 Aug 2000 23:42:55 -0500 (CDT) (envelope-from ccook@tcworks.net) Message-ID: <39A5FADA.7E1DE9C@tcworks.net> Date: Thu, 24 Aug 2000 23:49:30 -0500 From: Chris Cook X-Mailer: Mozilla 4.72 [en] (X11; I; Linux 2.2.12 i386) X-Accept-Language: en MIME-Version: 1.0 To: freebsd-isp@freebsd.org Subject: test Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org testing -- Chris o----< ccook@tcworks.net >-----------------------------------------o |Chris Cook - Network Admin | TCWORKS.NET - http://www.tcworks.net | |The Computer Works ISP | FreeBSD - http://www.freebsd.org | o------------------------------------------------------------------o To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Aug 25 7:34:58 2000 Delivered-To: freebsd-isp@freebsd.org Received: from cache.sai.co.za (mail.sai.co.za [196.33.40.1]) by hub.freebsd.org (Postfix) with ESMTP id 90BB337B424; Fri, 25 Aug 2000 07:34:43 -0700 (PDT) Received: from fdisk (fdisk.pmburg.co.za [196.33.40.17]) by cache.sai.co.za (8.9.3/8.9.3) with SMTP id QAA34623; Fri, 25 Aug 2000 16:34:48 +0200 (SAST) (envelope-from davew@sai.co.za) Message-ID: <006501c00ea3$6d8b7cd0$112821c4@sai.co.za> From: "Dave Wilson" To: , , Subject: Redelivering delivered mail Date: Fri, 25 Aug 2000 16:47:37 +0200 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.50.4133.2400 X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4133.2400 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hi guys, howzit going ? We are in the process of moving all our mail accounts (800 accounts) off a FreeBSD4.0 box to a new mailserver. Is there a way to redeliver the mail that has already been written to /var/mail/$user ? In other words user@mydomain.com has all his mail waiting in /var/mail/user to be collected, now what we want to do is change the MX for mydomain.com and point it to the new mail server and somehow forward all his mail from /var/mail/user to the new mail server ? Obviously we could log in as each user, retrieve his/her mail and then forward it but that would be a bit heavy for 800 accounts ;-) Any ideas ? Regards Dave Wilson The S.A. Internet (033) 3456777 0825496159 http://www.sai.co.za "Who is General Failure and why is he reading my hard drive ?" To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Aug 25 8:25:45 2000 Delivered-To: freebsd-isp@freebsd.org Received: from euclid.cs.niu.edu (euclid.cs.niu.edu [131.156.145.14]) by hub.freebsd.org (Postfix) with ESMTP id 4A72337B424; Fri, 25 Aug 2000 08:25:41 -0700 (PDT) Received: from localhost (rickert@localhost [127.0.0.1]) by euclid.cs.niu.edu (8.11.1.Alpha0/8.11.1.Alpha0) with ESMTP id e7PFPBW06002; Fri, 25 Aug 2000 10:25:11 -0500 (CDT) X-Mailer: exmh version 2.1.2 06/08/2000 To: "Dave Wilson" Cc: freebsd-questions@FreeBSD.ORG, freebsd-isp@FreeBSD.ORG, sendmail-questions@sendmail.org Reply-To: sendmail-questions@sendmail.org Subject: Re: Redelivering delivered mail References: <006501c00ea3$6d8b7cd0$112821c4@sai.co.za> In-Reply-To: Message from "Dave Wilson" of "Fri, 25 Aug 2000 16:47:37 +0200." <006501c00ea3$6d8b7cd0$112821c4@sai.co.za> Date: Fri, 25 Aug 2000 10:25:11 -0500 Message-ID: <5998.967217111@euclid.cs.niu.edu> From: Neil W Rickert Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org "Dave Wilson" wrote: >We are in the process of moving all our mail accounts (800 accounts) off a >FreeBSD4.0 box to a new mailserver. >Is there a way to redeliver the mail that has already been written to >/var/mail/$user ? >In other words user@mydomain.com has all his mail waiting in /var/mail/user >to be collected, now what we want to do is change the MX for mydomain.com >and point it to the new mail server and somehow forward all his mail from >/var/mail/user to the new mail server ? >Obviously we could log in as each user, retrieve his/her mail and then >forward it but that would be a bit heavy for 800 accounts ;-) Unless the mailbox format for the new system is badly incompatible, why not just copy the directory over. Or use 'rdist', or cd /var tar cf - mail | rsh newsystem "cd /var ; tar xpf -" In any case, this is not a sendmail problem. If you really want to remail all of those messages, there are probably ways of doing it with 'formail', a utility that comes with 'procmail'. -NWR To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Aug 25 8:29:51 2000 Delivered-To: freebsd-isp@freebsd.org Received: from vyrus.net (vyrus.net [207.246.130.43]) by hub.freebsd.org (Postfix) with ESMTP id 4B24537B43F; Fri, 25 Aug 2000 08:29:47 -0700 (PDT) Received: from localhost (phill@localhost) by vyrus.net (8.9.3/8.9.3) with ESMTP id IAA31777; Fri, 25 Aug 2000 08:27:56 -0700 (PDT) (envelope-from phill@freebsd.org) X-Authentication-Warning: vyrus.net: phill owned process doing -bs Date: Fri, 25 Aug 2000 08:27:56 -0700 (PDT) From: Phillip Salzman X-Sender: phill@vyrus.net To: Dave Wilson Cc: freebsd-questions@freebsd.org, freebsd-isp@freebsd.org, sendmail-questions@sendmail.org Subject: Re: Redelivering delivered mail In-Reply-To: <006501c00ea3$6d8b7cd0$112821c4@sai.co.za> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org If you're going to another UNIX (or sendmail) system, simply use a tool like scp, rsync, or even ftp, to move the files. What type of system are you moving too? If it's one that does Maildir format, I have a script (somewhere) that will convert your var/mail/$USER file into Maildir (for something like qmail), but will have to locate it... I haven't used it in a long time. --- Phillip Salzman phill@freebsd.org On Fri, 25 Aug 2000, Dave Wilson wrote: > Hi guys, howzit going ? > > We are in the process of moving all our mail accounts (800 accounts) off a > FreeBSD4.0 box to a new mailserver. > Is there a way to redeliver the mail that has already been written to > /var/mail/$user ? > In other words user@mydomain.com has all his mail waiting in /var/mail/user > to be collected, now what we want to do is change the MX for mydomain.com > and point it to the new mail server and somehow forward all his mail from > /var/mail/user to the new mail server ? > Obviously we could log in as each user, retrieve his/her mail and then > forward it but that would be a bit heavy for 800 accounts ;-) > > Any ideas ? > > Regards > Dave Wilson > The S.A. Internet > (033) 3456777 > 0825496159 > http://www.sai.co.za > "Who is General Failure and why is he reading my hard drive ?" > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Aug 25 8:32:47 2000 Delivered-To: freebsd-isp@freebsd.org Received: from mail.alpha1.net (mail.alpha1.net [216.88.112.3]) by hub.freebsd.org (Postfix) with ESMTP id 9861F37B43C; Fri, 25 Aug 2000 08:32:40 -0700 (PDT) Received: from beaker.alpha1.net (beaker.alpha1.net [216.88.237.14]) by mail.alpha1.net (8.9.3/8.9.3) with ESMTP id KAA11414; Fri, 25 Aug 2000 10:32:38 -0500 Date: Fri, 25 Aug 2000 10:32:38 -0500 (CDT) From: Marius Strom To: Phillip Salzman Cc: Dave Wilson , freebsd-questions@FreeBSD.ORG, freebsd-isp@FreeBSD.ORG, sendmail-questions@sendmail.org Subject: Re: Redelivering delivered mail In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Install procmail from /usr/ports/mail/procmail, then do: formail -b -Y -f -s /usr/lib/sendmail -oi \ $USERNAME@new.mail.server < /var/mail/$USERNAME -- Marius Strom Professional Geek/Unix System Administrator Alpha1 Internet http://www.marius.org/marius.pgp 0x42C74CBA Turn off the faucet? We're too busy mopping up the floor! On Fri, 25 Aug 2000, Phillip Salzman wrote: > If you're going to another UNIX (or sendmail) system, simply use > a tool like scp, rsync, or even ftp, to move the files. > > What type of system are you moving too? > > If it's one that does Maildir format, I have a script (somewhere) that > will convert your var/mail/$USER file into Maildir (for something like > qmail), but will have to locate it... I haven't used it in a long time. > > --- > Phillip Salzman > phill@freebsd.org > > On Fri, 25 Aug 2000, Dave Wilson wrote: > > > Hi guys, howzit going ? > > > > We are in the process of moving all our mail accounts (800 accounts) off a > > FreeBSD4.0 box to a new mailserver. > > Is there a way to redeliver the mail that has already been written to > > /var/mail/$user ? > > In other words user@mydomain.com has all his mail waiting in /var/mail/user > > to be collected, now what we want to do is change the MX for mydomain.com > > and point it to the new mail server and somehow forward all his mail from > > /var/mail/user to the new mail server ? > > Obviously we could log in as each user, retrieve his/her mail and then > > forward it but that would be a bit heavy for 800 accounts ;-) > > > > Any ideas ? > > > > Regards > > Dave Wilson > > The S.A. Internet > > (033) 3456777 > > 0825496159 > > http://www.sai.co.za > > "Who is General Failure and why is he reading my hard drive ?" > > > > > > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > > with "unsubscribe freebsd-isp" in the body of the message > > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Aug 25 10:25:24 2000 Delivered-To: freebsd-isp@freebsd.org Received: from mproxy.zedo.fuedo.de (mproxy.zedo.fuedo.de [193.99.167.226]) by hub.freebsd.org (Postfix) with ESMTP id 9971D37B422; Fri, 25 Aug 2000 10:25:17 -0700 (PDT) Received: from master.zkom.de (master.zkom.de [193.99.166.6]) by mproxy.zedo.fuedo.de (8.9.3/8.9.3) with ESMTP id TAA23364; Fri, 25 Aug 2000 19:25:16 +0200 (CEST) Received: from zkom.de (jack.zkom.de [193.99.166.10]) by master.zkom.de (8.9.1a/8.8.8) with ESMTP id TAA05122; Fri, 25 Aug 2000 19:25:15 +0200 (CEST) (envelope-from hartung@zkom.de) Message-ID: <39A6AC0C.2F8A6D3B@zkom.de> Date: Fri, 25 Aug 2000 19:25:33 +0200 From: Michael Hartung Organization: ZKOM GmbH, Fax: +49 (0)231 9700 474, Germany X-Mailer: Mozilla 4.61 [en] (Win98; I) X-Accept-Language: en MIME-Version: 1.0 To: freebsd-isp@freebsd.org Subject: HW-RAID1 FreeBSD 4.1 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hi girls and boys, We need to setup a server with HW-raid (RAID1 mirroring / 30-60Gbyte). LINT says: # RAID controllers device ida # Compaq Smart RAID device amr # AMI MegaRAID device mlx # Mylex DAC960 family Of course the OS schould be FreeBSD (4.1). Which controller is supported/a good choice? What about the configuration-SW? Is there a substitute for the Mylex DAC960 which is not longer available? Which Compaq, AMI models are supported? A nice weekend and thanks in advance. Michael Hartung -- Michael Hartung |~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| | ZKOM GmbH | | State Diagnostics Systems | | and Computer Networks | | | | WWW: www.zkom.de (WebCam) | | | | Joseph-von-Fraunhofer Str. 20 | | D-44227 Dortmund | | Germany | | E-mail: hartung@zkom.de | | Phone: +49 (0)231 / 9700 336 | | Fax: +49 (0)231 / 9700 474 | | Mobile: +49 (0)172 / 67 70 522 | | | | AG Dortmund HRB 12918 | | Managing Director: Dipl.-Ing. Michael Hartung | |_______________________________________________| To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Aug 25 10:26:53 2000 Delivered-To: freebsd-isp@freebsd.org Received: from pawn.primelocation.net (pawn.primelocation.net [205.161.238.235]) by hub.freebsd.org (Postfix) with ESMTP id 603D337B422 for ; Fri, 25 Aug 2000 10:26:51 -0700 (PDT) Received: by pawn.primelocation.net (Postfix, from userid 1016) id CAFD99B05; Fri, 25 Aug 2000 13:26:50 -0400 (EDT) Received: from localhost (localhost [127.0.0.1]) by pawn.primelocation.net (Postfix) with ESMTP id BF77BBA03; Fri, 25 Aug 2000 13:26:50 -0400 (EDT) Date: Fri, 25 Aug 2000 13:26:50 -0400 (EDT) From: "Chris D. Faulhaber" X-Sender: cdf.lists@pawn.primelocation.net To: Michael Hartung Cc: freebsd-isp@freebsd.org Subject: Re: HW-RAID1 FreeBSD 4.1 In-Reply-To: <39A6AC0C.2F8A6D3B@zkom.de> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Fri, 25 Aug 2000, Michael Hartung wrote: > Hi girls and boys, > > We need to setup a server with HW-raid (RAID1 mirroring / 30-60Gbyte). > LINT says: > > # RAID controllers > device ida # Compaq Smart RAID > device amr # AMI MegaRAID > device mlx # Mylex DAC960 family > > Of course the OS schould be FreeBSD (4.1). Which controller is > supported/a good choice? > What about the configuration-SW? Is there a substitute for the Mylex > DAC960 which is not > longer available? Which Compaq, AMI models are supported? > http://people.FreeBSD.org/~msmith/RAID/ has overviews of what controllers are supported (and to what degree). ----- Chris D. Faulhaber - jedgar@fxp.org - jedgar@FreeBSD.org -------------------------------------------------------- FreeBSD: The Power To Serve - http://www.FreeBSD.org To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Aug 25 10:58:15 2000 Delivered-To: freebsd-isp@freebsd.org Received: from qmail.corpex.net (qmail.corpex.net [195.153.247.40]) by hub.freebsd.org (Postfix) with SMTP id 7E07237B42C for ; Fri, 25 Aug 2000 10:58:07 -0700 (PDT) Received: (qmail 14075 invoked from network); 25 Aug 2000 18:01:13 -0000 Received: from perseus.corpex.net (HELO perseus) (195.153.247.226) by qmail.corpex.net with SMTP; 25 Aug 2000 18:01:13 -0000 From: "Jonathan Defries" To: "Michael Hartung" , Subject: RE: HW-RAID1 FreeBSD 4.1 Date: Fri, 25 Aug 2000 18:57:54 +0100 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2910.0) In-Reply-To: <39A6AC0C.2F8A6D3B@zkom.de> X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4133.2400 Importance: Normal Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org This one works well for me, on 4.0-RELEASE: mlx0: mem 0xf5800000-0xf5ffffff irq 11 at device 15.1 on pci0 mlx0: DAC960PTL1, 1 channel, firmware 4.07-0-29, 8MB RAM I think this model is still available. - Jonathan > -----Original Message----- > From: owner-freebsd-isp@FreeBSD.ORG > [mailto:owner-freebsd-isp@FreeBSD.ORG]On Behalf Of Michael Hartung > Sent: 25 August 2000 18:26 > To: freebsd-isp@freebsd.org > Subject: HW-RAID1 FreeBSD 4.1 > > > Hi girls and boys, > > We need to setup a server with HW-raid (RAID1 mirroring / 30-60Gbyte). > LINT says: > > # RAID controllers > device ida # Compaq Smart RAID > device amr # AMI MegaRAID > device mlx # Mylex DAC960 family > > Of course the OS schould be FreeBSD (4.1). Which controller is > supported/a good choice? > What about the configuration-SW? Is there a substitute for the Mylex > DAC960 which is not > longer available? Which Compaq, AMI models are supported? > > A nice weekend and thanks in advance. > > Michael Hartung > > > -- > > Michael Hartung > > |~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| > | ZKOM GmbH | > | State Diagnostics Systems | > | and Computer Networks | > | | > | WWW: www.zkom.de (WebCam) | > | | > | Joseph-von-Fraunhofer Str. 20 | > | D-44227 Dortmund | > | Germany | > | E-mail: hartung@zkom.de | > | Phone: +49 (0)231 / 9700 336 | > | Fax: +49 (0)231 / 9700 474 | > | Mobile: +49 (0)172 / 67 70 522 | > | | > | AG Dortmund HRB 12918 | > | Managing Director: Dipl.-Ing. Michael Hartung | > |_______________________________________________| > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Aug 25 16:59:57 2000 Delivered-To: freebsd-isp@freebsd.org Received: from theartofwar.org (adslppp17.tcsn.uswest.net [216.161.144.17]) by hub.freebsd.org (Postfix) with SMTP id 54BA437B43C for ; Fri, 25 Aug 2000 16:59:55 -0700 (PDT) Received: (qmail 28470 invoked by uid 1001); 25 Aug 2000 23:59:55 -0000 Received: from localhost (sendmail-bs@127.0.0.1) by localhost with SMTP; 25 Aug 2000 23:59:55 -0000 Date: Fri, 25 Aug 2000 16:59:55 -0700 (MST) From: Hartoyo To: Michael Hartung Cc: freebsd-isp@freebsd.org Subject: Re: HW-RAID1 FreeBSD 4.1 In-Reply-To: <39A6AC0C.2F8A6D3B@zkom.de> Message-ID: MIME-Version: 1.0 Content-Type: MULTIPART/MIXED; BOUNDARY="0-545418881-967247975=:21106" Content-ID: Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org This message is in MIME format. The first part should be readable text, while the remaining parts are likely unreadable without MIME-aware tools. Send mail to mime@docserver.cac.washington.edu for more info. --0-545418881-967247975=:21106 Content-Type: TEXT/PLAIN; CHARSET=US-ASCII Content-ID: I use Dell PERC/2SC (which I believe is an AMI RAID controller) under FreeBSD 4.1 without any problem whatsoever. I use a 2GB SCSI disk as boot disk. The RAID is for data only. Hope this help... -- Hartoyo --0-545418881-967247975=:21106 Content-Type: TEXT/PLAIN; CHARSET=US-ASCII; NAME=raid Content-Transfer-Encoding: BASE64 Content-ID: Content-Description: Content-Disposition: ATTACHMENT; FILENAME=raid YW1yMDogPEFNSSBNZWdhUkFJRD4gbWVtIDB4ZjcwMDAwMDAtMHhmNzNmZmZm ZiBpcnEgMTcgYXQgZGV2aWNlIDEzLjEgb24gcGNpMA0KYW1yMDogZmlybXdh cmUgMy4xMyBiaW9zIDEuNDMgIDE2TUIgbWVtb3J5DQphbXJkMDogPE1lZ2FS QUlEIGxvZ2ljYWwgZHJpdmU+IG9uIGFtcjANCmFtcmQwOiA1MTgzNE1CICgx MDYxNTYwMzIgc2VjdG9ycykgUkFJRCA1IChvcHRpbWFsKQ0K --0-545418881-967247975=:21106-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sat Aug 26 1:44:17 2000 Delivered-To: freebsd-isp@freebsd.org Received: from mass.osd.bsdi.com (adsl-63-202-177-115.dsl.snfc21.pacbell.net [63.202.177.115]) by hub.freebsd.org (Postfix) with ESMTP id 7333637B42C for ; Sat, 26 Aug 2000 01:44:14 -0700 (PDT) Received: from mass.osd.bsdi.com (localhost [127.0.0.1]) by mass.osd.bsdi.com (8.9.3/8.9.3) with ESMTP id BAA01070; Sat, 26 Aug 2000 01:57:14 -0700 (PDT) (envelope-from msmith@mass.osd.bsdi.com) Message-Id: <200008260857.BAA01070@mass.osd.bsdi.com> X-Mailer: exmh version 2.1.1 10/15/1999 To: Michael Hartung Cc: freebsd-isp@freebsd.org Subject: Re: HW-RAID1 FreeBSD 4.1 In-reply-to: Your message of "Fri, 25 Aug 2000 19:25:33 +0200." <39A6AC0C.2F8A6D3B@zkom.de> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Date: Sat, 26 Aug 2000 01:57:14 -0700 From: Mike Smith Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org http://people.freebsd.org/~msmith/RAID/index.html > Hi girls and boys, > > We need to setup a server with HW-raid (RAID1 mirroring / 30-60Gbyte). > LINT says: > > # RAID controllers > device ida # Compaq Smart RAID > device amr # AMI MegaRAID > device mlx # Mylex DAC960 family > > Of course the OS schould be FreeBSD (4.1). Which controller is > supported/a good choice? > What about the configuration-SW? Is there a substitute for the Mylex > DAC960 which is not > longer available? Which Compaq, AMI models are supported? > > A nice weekend and thanks in advance. > > Michael Hartung > > > -- > > Michael Hartung > > |~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| > | ZKOM GmbH | > | State Diagnostics Systems | > | and Computer Networks | > | | > | WWW: www.zkom.de (WebCam) | > | | > | Joseph-von-Fraunhofer Str. 20 | > | D-44227 Dortmund | > | Germany | > | E-mail: hartung@zkom.de | > | Phone: +49 (0)231 / 9700 336 | > | Fax: +49 (0)231 / 9700 474 | > | Mobile: +49 (0)172 / 67 70 522 | > | | > | AG Dortmund HRB 12918 | > | Managing Director: Dipl.-Ing. Michael Hartung | > |_______________________________________________| > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-scsi" in the body of the message > -- ... every activity meets with opposition, everyone who acts has his rivals and unfortunately opponents also. But not because people want to be opponents, rather because the tasks and relationships force people to take different points of view. [Dr. Fritz Todt] To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message