From owner-freebsd-config Wed Apr 25 3:32:32 2001 Delivered-To: freebsd-config@freebsd.org Received: from hotmail.com (f223.law7.hotmail.com [216.33.237.223]) by hub.freebsd.org (Postfix) with ESMTP id 7384537B422 for ; Wed, 25 Apr 2001 03:32:30 -0700 (PDT) (envelope-from tiasen_83@hotmail.com) Received: from mail pickup service by hotmail.com with Microsoft SMTPSVC; Wed, 25 Apr 2001 03:32:30 -0700 Received: from 62.20.103.69 by lw7fd.law7.hotmail.msn.com with HTTP; Wed, 25 Apr 2001 10:32:29 GMT X-Originating-IP: [62.20.103.69] From: "Mattias Tiasen" To: freebsd-config@freebsd.org Subject: ftpd guidelines Date: Wed, 25 Apr 2001 12:32:29 +0200 Mime-Version: 1.0 Content-Type: text/plain; format=flowed Message-ID: X-OriginalArrivalTime: 25 Apr 2001 10:32:30.0216 (UTC) FILETIME=[07CCA880:01C0CD73] Sender: owner-freebsd-config@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG I need some freebsd-ftpd (6.00) guidelines. First of all, I want to chroot() specifik users ftpd sessions (already disallowing them from remote login via ssh with noshell). On this, I would like to limit the login sessions for the users to one. So that user "ape" cannot hand out his account to various folks. I only want say one "ape" at a time. Then, I want to limit the time wich some users may and may not log in, I thought that could be easaly done by crontab and echo "account" > /etc/ftpuse s Hey, when I have problems and ask for help I might aswell go for it, I have a machine with freebsd. system disk is on 10gb and I have two 31gb. The system wont boot if i do not specify 0:ad(0,a)/kernel I heard that this is because of the larfge disks and a work around is to make a 1mb FAT16partition on the disk. My question now is if it would work to make the partition AFTER a installation, because my current is good. Summary; The FTPD problem is the most important since I can boot. I could really need some good guidelines/help Thanks in advance Best regards, Mattias B. _________________________________________________________________________ Get Your Private, Free E-mail from MSN Hotmail at http://www.hotmail.com. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-config" in the body of the message From owner-freebsd-config Wed Apr 25 4:32: 3 2001 Delivered-To: freebsd-config@freebsd.org Received: from obsecurity.dyndns.org (adsl-63-207-60-27.dsl.lsan03.pacbell.net [63.207.60.27]) by hub.freebsd.org (Postfix) with ESMTP id 2BC2237B422 for ; Wed, 25 Apr 2001 04:32:01 -0700 (PDT) (envelope-from kris@obsecurity.org) Received: by obsecurity.dyndns.org (Postfix, from userid 1000) id B362166E09; Wed, 25 Apr 2001 04:32:00 -0700 (PDT) Date: Wed, 25 Apr 2001 04:32:00 -0700 From: Kris Kennaway To: Mattias Tiasen Cc: freebsd-config@FreeBSD.ORG Subject: Re: ftpd guidelines Message-ID: <20010425043200.A72073@xor.obsecurity.org> References: Mime-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-md5; protocol="application/pgp-signature"; boundary="OgqxwSJOaUobr8KG" Content-Disposition: inline User-Agent: Mutt/1.2.5i In-Reply-To: ; from tiasen_83@hotmail.com on Wed, Apr 25, 2001 at 12:32:29PM +0200 Sender: owner-freebsd-config@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG --OgqxwSJOaUobr8KG Content-Type: text/plain; charset=us-ascii Content-Disposition: inline On Wed, Apr 25, 2001 at 12:32:29PM +0200, Mattias Tiasen wrote: > I need some freebsd-ftpd (6.00) guidelines. Try asking on questions@freebsd.org which is the general support list -- freebsd-config is a special-purpose technical mailing list. Kris --OgqxwSJOaUobr8KG Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.4 (FreeBSD) Comment: For info see http://www.gnupg.org iD8DBQE65rWwWry0BWjoQKURAt5gAJ9YY+j4trrjYPvBzEXYq8jh9OkPFACgl/rc XiWBE8xnjUtnTaazP8+b69I= =wGfk -----END PGP SIGNATURE----- --OgqxwSJOaUobr8KG-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-config" in the body of the message From owner-freebsd-config Fri Apr 27 13:26:27 2001 Delivered-To: freebsd-config@freebsd.org Received: from kristen.shadowdale.net (omah6400gw2poolB75.omah.uswest.net [63.227.157.75]) by hub.freebsd.org (Postfix) with ESMTP id 5DA2D37B627; Fri, 27 Apr 2001 13:26:15 -0700 (PDT) (envelope-from hey9811@yahoo.com) Received: from localhost (hey9811@localhost) by kristen.shadowdale.net (8.9.3/8.9.3) with ESMTP id PAA00649; Fri, 27 Apr 2001 15:26:14 -0500 (CDT) (envelope-from hey9811@yahoo.com) X-Authentication-Warning: kristen.shadowdale.net: hey9811 owned process doing -bs Date: Fri, 27 Apr 2001 15:26:14 -0500 (CDT) From: Virtual Bob To: FreeBSD STABLE discussion , FreeBSD Install & Config discussion Subject: adjkerntz ain't running' Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-config@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG This morning while ftp'ing, I noticed the date stamp was funny. I then checked the clock out and it was 2 days behind. Dang. I looked through ps output -- xntpd and adjkerntz wasn't there. Figures. I used ntpdate to bring the clock up-to-date and reboot the server. I then logged on again, and interestingly adjkerntz wasn't running (xntpd was running, though). I checked my secondary server which is the only other computer here running 3.5-STABLE. adjkerntz+xntpd was running there fine. I checked through log files but to no avail. There wasn't any message related to adjkerntz. I tried one last try by rebooting the server (I don't have direct terminal to the server so I couldn't just drop to single user mode, and I was too lazy to hook up a terminal to the serial port). Well, that didn't work, something's not right. Does adjkerntz exist? Check -- it's at /sbin/adjkerntz, and it runs if I typed it at the prompt. Is rc tampered with? Nope -- "adjkerntz -i" is in there, and set to start without any condition. Alright, what's wrong? I sure like to know under what conditions will adjkerntz fail to run? Should I even be concerned with adjkerntz? ------------- clip here with virtual scissors -------------- ************************************************************ Keyboard stuck error. Press F1 to continue. Any unsolicited e-mails will be charged US$500 per e-mail, plus court cost. Your contribution to Bill Gates' personal wealth: US$359.17 ************************************************************ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-config" in the body of the message From owner-freebsd-config Fri Apr 27 16:22:19 2001 Delivered-To: freebsd-config@freebsd.org Received: from nova.fnal.gov (nova.fnal.gov [131.225.121.207]) by hub.freebsd.org (Postfix) with ESMTP id BBBBD37B424; Fri, 27 Apr 2001 16:22:15 -0700 (PDT) (envelope-from zingelman@fnal.gov) Received: from localhost (tez@localhost) by nova.fnal.gov (8.9.3+Sun/8.9.3) with ESMTP id SAA02788; Fri, 27 Apr 2001 18:22:13 -0500 (CDT) X-Authentication-Warning: nova.fnal.gov: tez owned process doing -bs Date: Fri, 27 Apr 2001 18:22:13 -0500 (CDT) From: Tim Zingelman X-Sender: To: Virtual Bob Cc: FreeBSD STABLE discussion , FreeBSD Install & Config discussion Subject: Re: adjkerntz ain't running' In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-config@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG > output -- xntpd and adjkerntz wasn't there. Figures. I used ntpdate to > bring the clock up-to-date and reboot the server. xntpd was probably crashed by an attempted (possibly successfull) remote root exploit that xntpd is vulnerable to unless patched... search the mailing list archive for details. > Alright, what's wrong? I sure like to know under what conditions will > adjkerntz fail to run? Should I even be concerned with adjkerntz? adjkerntz only runs if your CMOS (hardware) clock is set to local time, it is not needed if the CMOS clock is set to UTC. 'man adjkerntz' for details. If /etc/wall_cmos_clock exists, adjkerntz will run, otherwise it will not. - Tim To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-config" in the body of the message From owner-freebsd-config Sat Apr 28 15:21:29 2001 Delivered-To: freebsd-config@freebsd.org Received: from kristen.shadowdale.net (omah6400gw2poolB75.omah.uswest.net [63.227.157.75]) by hub.freebsd.org (Postfix) with ESMTP id A0DD137B42C; Sat, 28 Apr 2001 15:21:24 -0700 (PDT) (envelope-from hey9811@yahoo.com) Received: from localhost (hey9811@localhost) by kristen.shadowdale.net (8.9.3/8.9.3) with ESMTP id RAA11684; Sat, 28 Apr 2001 17:21:20 -0500 (CDT) (envelope-from hey9811@yahoo.com) X-Authentication-Warning: kristen.shadowdale.net: hey9811 owned process doing -bs Date: Sat, 28 Apr 2001 17:21:20 -0500 (CDT) From: Virtual Bob To: Tim Zingelman Cc: FreeBSD STABLE discussion , FreeBSD Install & Config discussion Subject: Re: adjkerntz ain't running' In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-config@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG > > Alright, what's wrong? I sure like to know under what conditions will > > adjkerntz fail to run? Should I even be concerned with adjkerntz? > > adjkerntz only runs if your CMOS (hardware) clock is set to local time, it > is not needed if the CMOS clock is set to UTC. 'man adjkerntz' for > details. If /etc/wall_cmos_clock exists, adjkerntz will run, otherwise it > will not. Whew! That's certainly good to know. My previous impression by reading the man page was that adjkerntz was some interface between CMOS clock and the internal clock. I thought that's bit weird, but didn't thought about it too much. And the server is indeed in UTC in CMOS. Now I have to go change that secondary server to UTC so I don't get confused... ------------- clip here with virtual scissors -------------- ************************************************************ Keyboard stuck error. Press F1 to continue. Any unsolicited e-mails will be charged US$500 per e-mail, plus court cost. Your contribution to Bill Gates' personal wealth: US$359.17 ************************************************************ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-config" in the body of the message