From owner-freebsd-isp@FreeBSD.ORG Mon Mar 14 23:35:48 2005 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 7695F16A4CE for ; Mon, 14 Mar 2005 23:35:48 +0000 (GMT) Received: from seven.Alameda.net (seven.alameda.net [64.81.53.71]) by mx1.FreeBSD.org (Postfix) with ESMTP id 2D44043D39 for ; Mon, 14 Mar 2005 23:35:48 +0000 (GMT) (envelope-from ulf@Alameda.net) Received: by seven.Alameda.net (Postfix, from userid 1000) id E0EFD3A206; Mon, 14 Mar 2005 15:35:47 -0800 (PST) Date: Mon, 14 Mar 2005 15:35:47 -0800 From: Ulf Zimmermann To: isp@freebsd.org Message-ID: <20050314233547.GN13396@seven.alameda.net> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Organization: Alameda Networks, Inc. X-Operating-System: FreeBSD 4.10-RELEASE-p2 User-Agent: Mutt/1.5.6i Subject: Suggestion wanted in regards to Loadbalancer/SSL Offloader X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list Reply-To: ulf@Alameda.net List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 14 Mar 2005 23:35:48 -0000 Hello, everyone. The place I work currently uses pairs of Alteon AD3 and Alteon iSD100 to do load balancing and SSL offloading. Both devices haven't been manufactored for like 3+ years and software upgrades have been very rare too. In addition with our configuration size (150KB) the iSD100 can not be upgraded without removing the config first and then restoring it, so causing much longer downtime. We use two more sets of AD3/iSD100 for our failover site and our development enviroment and a single AD3/iSD100 for low level testing (IT/OS level). Because of the lack of support from Nortel for these devices, I decided to look around for a new set of hardware. Currently have one device from Coyote Point here (E450, waiting still for the SSL card). Initial impression are rather negative, even it is FreeBSD based. The Alteon devices are appliances without moving parts such as harddisks. The Coyote Point uses a 80GB ide drive. Although ntpd is included in their install of FreeBSD, they do not seem to use it anywhere. There are other things, which made me look around for yet other devices. I am currently trying to look at Redlinenetworks and Netscaler and so I would like to ask the community for feedback on any loadbalancer/SSL offloader they are using. Any traffic we do is http and https based, on the front end mostly on port 80 and 443, but we also have some http/https based webservices running on other ports. On the frontend we have currently some 110 virtual servers but only 7 real servers on the back. -- Regards, Ulf. --------------------------------------------------------------------- Ulf Zimmermann, 1525 Pacific Ave., Alameda, CA-94501, #: 510-865-0204 You can find my resume at: http://seven.Alameda.net/~ulf/resume.html From owner-freebsd-isp@FreeBSD.ORG Tue Mar 15 11:19:08 2005 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 7360816A4CE for ; Tue, 15 Mar 2005 11:19:08 +0000 (GMT) Received: from pion19.tphys.physik.uni-tuebingen.de (pion19.tphys.physik.uni-tuebingen.de [134.2.78.142]) by mx1.FreeBSD.org (Postfix) with ESMTP id C1F0543D48 for ; Tue, 15 Mar 2005 11:19:07 +0000 (GMT) (envelope-from epple@pion19.tphys.physik.uni-tuebingen.de) Received: from pion05.tphys.physik.uni-tuebingen.de (pion05.tphys.physik.uni-tuebingen.de [134.2.78.200]) id j2FBJ6tP021672 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=OK); Tue, 15 Mar 2005 12:19:06 +0100 Received: from pion05.tphys.physik.uni-tuebingen.de (localhost [127.0.0.1]) id j2FBJ5X4001135 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Tue, 15 Mar 2005 12:19:06 +0100 Received: (from epple@localhost)j2FBJ51k001134; Tue, 15 Mar 2005 12:19:05 +0100 Date: Tue, 15 Mar 2005 12:19:05 +0100 From: Dominik Epple To: Arshkit Dullat Message-ID: <20050315111905.GA1094@pion05.tphys.physik.uni-tuebingen.de> References: <20050311192131.72833.qmail@web52403.mail.yahoo.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20050311192131.72833.qmail@web52403.mail.yahoo.com> User-Agent: Mutt/1.4.1i cc: freebsd-isp@freebsd.org Subject: Re: sendmail authentication relay X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 15 Mar 2005 11:19:08 -0000 On Fri, Mar 11, 2005 at 11:21:31AM -0800, Arshkit Dullat wrote: > /configure --prefix=/usr --sysconfdir=/etc > --infodir=/usr/share/info --mandir=/usr/share/man > --enable-login > > and then "make" and "make install" Why don't you use the ports collection? Should make your life easier. > I tried to run the SASL Authentication Daemon : > using the following command : > > saslauthd -a shadow Are you sure this is what you want? Not perhaps -a pam? > but I get this message ; > > [root@safari sasl2]# saslauthd -a shadow > saslauthd[10615] :main : could not chdir > to: /var/state/saslauthd > saslauthd[10615] :main : chdir: No such > file or directory > saslauthd[10615] :main : Check to make sure > the directory exists and is > saslauthd[10615] :main : writeable by the > user this process runs as. So just create the directory and see what happens? I guess using the ports collection and doing something like '/usr/local/etc/rc.d/saslauthd start' (dont know the correct path by heart and cannot check it atm since my FreeBSD box is at home) will get your nearer to your goal. -- ASCII ribbon campaign - against proprietary email attachments () "Why do people assume that everyone has () /\ either paid for Office or ripped it off?" /\ Visit my projects page: http://www.dominik-epple.de/projects/ From owner-freebsd-isp@FreeBSD.ORG Tue Mar 15 17:54:17 2005 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 0DD9F16A4CE for ; Tue, 15 Mar 2005 17:54:17 +0000 (GMT) Received: from forrie.com (forrie.ne.client2.attbi.com [24.147.45.106]) by mx1.FreeBSD.org (Postfix) with ESMTP id 794C743D5C for ; Tue, 15 Mar 2005 17:54:16 +0000 (GMT) (envelope-from forrie@forrie.com) Received: from [192.168.1.99] (i-99.forrie.net. [192.168.1.99]) (authenticated bits=0) by forrie.com with ESMTP id j2FHsAUe056326 for ; Tue, 15 Mar 2005 12:54:10 -0500 (EST) (envelope-from forrie@forrie.com) Message-ID: <42372141.4000302@forrie.com> Date: Tue, 15 Mar 2005 12:54:09 -0500 From: Forrest Aldrich User-Agent: Mozilla Thunderbird 1.0.1 (Windows/20050307) X-Accept-Language: en-us, en MIME-Version: 1.0 To: isp@freebsd.org X-Enigmail-Version: 0.90.1.1 X-Enigmail-Supports: pgp-inline, pgp-mime Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit X-RAVMilter-Version: 8.3.0(snapshot 20010925) (forrie.ne.client2.attbi.com) X-MailScanner-LocalNet: Found to be clean Subject: GNU Mailman scalability X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 15 Mar 2005 17:54:17 -0000 Hi there, I'm looking into HA and scalability issues with GNU Mailman, and I wonder whom at FreeBSD handles this... I'd be interested in any tips/feedback they have. We're using FreeBSD-5.x. Thanks, Forrest From owner-freebsd-isp@FreeBSD.ORG Tue Mar 15 18:57:07 2005 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 441ED16A4CE for ; Tue, 15 Mar 2005 18:57:07 +0000 (GMT) Received: from mx2.duracom.net (mx2.duracom.net [65.66.8.5]) by mx1.FreeBSD.org (Postfix) with ESMTP id BF0F843D49 for ; Tue, 15 Mar 2005 18:57:06 +0000 (GMT) (envelope-from kmcelroy@duracom.net) Received: from duracom.net (mail.duracom.net [65.66.8.3]) by mx2.duracom.net (Postfix) with ESMTP id 4A687D54DC for ; Tue, 15 Mar 2005 13:03:13 -0600 (CST) (envelope-from kmcelroy@duracom.net) Received: from KrisLaptop [65.66.11.103] by duracom.net with ESMTP (SMTPD32-8.05) id AFFB13B0140; Tue, 15 Mar 2005 12:56:59 -0600 From: "Kris McElroy" To: Date: Tue, 15 Mar 2005 12:56:04 -0600 MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit X-Mailer: Microsoft Office Outlook, Build 11.0.6353 Thread-Index: AcUpkKMeJXI6scS6QDyaQJ7RosZ4Jg== X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2800.1441 Message-Id: <200503151256789.SM01228@KrisLaptop> X-Declude-Sender: kmcelroy@duracom.net [65.66.11.103] X-Declude-Spoolname: D2ffb013b0140afb4.SMD Subject: MTR X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 15 Mar 2005 18:57:07 -0000 First of all I am an FreeBSD Newbie. I am trying to install mtr on FreeBSD 4.11. I did the following: 1. pkg_add -r mtr 2. changed directories to /usr/ports/net 3. make It works if I do the following from the prompt /usr/local/sbin/mtr yahoo.com How can I just do mtr yahoo.com from the command prompt? Did I do the install correct? Thanks, Kris From owner-freebsd-isp@FreeBSD.ORG Tue Mar 15 19:05:01 2005 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 3570E16A4CE for ; Tue, 15 Mar 2005 19:05:01 +0000 (GMT) Received: from mail.day-light.net (day-light.net [64.37.72.2]) by mx1.FreeBSD.org (Postfix) with ESMTP id ACD0643D4C for ; Tue, 15 Mar 2005 19:05:00 +0000 (GMT) (envelope-from john@day-light.com) Received: from w1 (gabriel.day-light.net [69.27.46.22]) by mail.day-light.net (Postfix) with SMTP id 3024E352B2; Tue, 15 Mar 2005 13:05:00 -0600 (CST) From: "John Brooks" To: "'Kris McElroy'" , Date: Tue, 15 Mar 2005 13:05:00 -0600 Message-ID: <003101c52991$e3179f20$2005010a@daylight.net> MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook CWS, Build 9.0.6604 (9.0.2911.0) X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2800.1441 Importance: Normal In-Reply-To: <200503151256789.SM01228@KrisLaptop> Subject: RE: MTR X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list Reply-To: john@day-light.com List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 15 Mar 2005 19:05:01 -0000 run the command "rehash" to pick up the new program -- John Brooks john@day-light.com > -----Original Message----- > From: owner-freebsd-isp@freebsd.org > [mailto:owner-freebsd-isp@freebsd.org]On Behalf Of Kris McElroy > Sent: Tuesday, March 15, 2005 12:56 PM > To: freebsd-isp@freebsd.org > Subject: MTR > > > First of all I am an FreeBSD Newbie. I am trying to install > mtr on FreeBSD > 4.11. I did the following: > > 1. pkg_add -r mtr > 2. changed directories to /usr/ports/net > 3. make > > > It works if I do the following from the prompt > /usr/local/sbin/mtr yahoo.com > > How can I just do mtr yahoo.com from the command prompt? > Did I do the install correct? > > > Thanks, > > > Kris > > _______________________________________________ > freebsd-isp@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-isp > To unsubscribe, send any mail to > "freebsd-isp-unsubscribe@freebsd.org" From owner-freebsd-isp@FreeBSD.ORG Wed Mar 16 18:38:38 2005 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 2D4E416A4CE for ; Wed, 16 Mar 2005 18:38:38 +0000 (GMT) Received: from gumby.citytel.net (gumby.rupert.net [204.244.98.46]) by mx1.FreeBSD.org (Postfix) with ESMTP id BB63B43D1F for ; Wed, 16 Mar 2005 18:38:37 +0000 (GMT) (envelope-from kwoody@citytel.net) Received: from pop.citytel.net (pop.citytel.net [204.244.98.50]) by gumby.citytel.net (Postfix) with ESMTP id E303223734F for ; Wed, 16 Mar 2005 10:38:32 -0800 (PST) Date: Wed, 16 Mar 2005 10:38:58 -0800 (PST) From: Keith Woodworth To: freebsd-isp@freebsd.org Message-ID: <20050316103222.P33592@pop.citytel.net> MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Subject: Chroot X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 16 Mar 2005 18:38:38 -0000 Playing around with ftpchroot, FBSD 4.10. I have one person that logs in to update two different virtual websites. They were only doing one before and ftpchroot'd them and it worked fine. So instead of creating a new login for them I gave them a new home dir and put in two symlinks in that home dir pointing to each website directory. Well ftpchroot locks them in and doesnt allow a cd to either of those website directories. Obviously taking them out of ftpchroot this works. Ive looked over the man pages for ftp and related config files as well as ln but do not see a way to have one person to have on login, to be ftpchroot'd, yet update two directories. Unless I do it the other way around. Instead, create two real dir's under their home directory and symlink from the document root that apache expects to the directories under their home dir. Did that make sense? From owner-freebsd-isp@FreeBSD.ORG Wed Mar 16 18:45:23 2005 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id A2B0816A4CE for ; Wed, 16 Mar 2005 18:45:23 +0000 (GMT) Received: from kelly.talon.net (kelly.talon.net [199.224.105.22]) by mx1.FreeBSD.org (Postfix) with ESMTP id 5276543D4C for ; Wed, 16 Mar 2005 18:45:22 +0000 (GMT) (envelope-from scott@scottah.com) Received: from dormont (melinda.talon.net [199.224.105.45]) by kelly.talon.net (8.13.3/8.12.9) with ESMTP id j2GIinBi053119 for ; Wed, 16 Mar 2005 13:44:49 -0500 (EST) (envelope-from scott@scottah.com) Message-Id: <200503161844.j2GIinBi053119@kelly.talon.net> From: "Scott St. John" To: Date: Wed, 16 Mar 2005 13:45:07 -0500 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable X-Mailer: Microsoft Office Outlook, Build 11.0.5510 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2900.2527 Thread-Index: AcUqWEXvzbZtG4z1Rxq/rbeznE7UFw== Subject: FTP controlled by SQL X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 16 Mar 2005 18:45:23 -0000 Hi- I have a client who wants to be able to add/remove users to an FTP = site.=A0 They do not have access to the machine so this sounds like a job for PHP = and MySQL.=A0 I have been trying (pulling hair out) with Proftp and MySQL. My question is:=A0 is anyone on the list doing something like this and = what are you using? Thanks! -Scott From owner-freebsd-isp@FreeBSD.ORG Wed Mar 16 19:12:07 2005 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id D47D016A4CE for ; Wed, 16 Mar 2005 19:12:07 +0000 (GMT) Received: from extra.rwsystems.net (52.6b.d1c4.cidr.airmail.net [209.196.107.82]) by mx1.FreeBSD.org (Postfix) with ESMTP id B4C2B43D4C for ; Wed, 16 Mar 2005 19:12:06 +0000 (GMT) (envelope-from jwyatt@RWSystems.net) Received: from extra.rwsystems.net (localhost.rwsystems.net [127.0.0.1]) by extra.rwsystems.net (8.12.10/8.12.10) with ESMTP id j2GJBHQE089493; Wed, 16 Mar 2005 13:11:17 -0600 (CST) (envelope-from jwyatt@RWSystems.net) Received: from localhost (jwyatt@localhost)j2GJBHtN089490; Wed, 16 Mar 2005 13:11:17 -0600 (CST) (envelope-from jwyatt@RWSystems.net) X-Authentication-Warning: extra.rwsystems.net: jwyatt owned process doing -bs Date: Wed, 16 Mar 2005 13:11:17 -0600 (CST) From: James Wyatt To: "Scott St. John" In-Reply-To: <200503161844.j2GIinBi053119@kelly.talon.net> Message-ID: <20050316130856.G87336@extra.rwsystems.net> References: <200503161844.j2GIinBi053119@kelly.talon.net> MIME-Version: 1.0 Content-Type: MULTIPART/MIXED; BOUNDARY="0-1785286953-1111000231=:87336" Content-ID: <20050316131039.I87336@extra.rwsystems.net> cc: freebsd-isp@freebsd.org Subject: Re: FTP controlled by SQL X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 16 Mar 2005 19:12:07 -0000 This message is in MIME format. The first part should be readable text, while the remaining parts are likely unreadable without MIME-aware tools. --0-1785286953-1111000231=:87336 Content-Type: TEXT/PLAIN; CHARSET=X-UNKNOWN; FORMAT=flowed Content-Transfer-Encoding: QUOTED-PRINTABLE Content-ID: <20050316131039.W87336@extra.rwsystems.net> I know you asked for folks actually doing this and I'm not, but I believe= =20 you are correct in the PHP+MySQL for the admin portion and that the=20 pam_mysql module will let you leverage the existing FreeBSD FTP server=20 which can do things like chrooted-account support. Hope this helps - Jy@ On Wed, 16 Mar 2005, Scott St. John wrote: > Hi- > > I have a client who wants to be able to add/remove users to an FTP site.= =A0 > They do not have access to the machine so this sounds like a job for PHP = and > MySQL.=A0 I have been trying (pulling hair out) with Proftp and MySQL. > > My question is:=A0 is anyone on the list doing something like this and wh= at > are you using? > > Thanks! > > -Scott --0-1785286953-1111000231=:87336-- From owner-freebsd-isp@FreeBSD.ORG Wed Mar 16 19:22:11 2005 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 87B0516A4CE for ; Wed, 16 Mar 2005 19:22:11 +0000 (GMT) Received: from a.dotpix.com.br (ns1.dotpix.com.br [200.101.99.12]) by mx1.FreeBSD.org (Postfix) with ESMTP id 451D643D1D for ; Wed, 16 Mar 2005 19:22:06 +0000 (GMT) (envelope-from wendel@dotpix.com.br) Received: from localhost (x [127.0.0.1]) by mx1.dotpix.com.br (Postfix) with ESMTP id EEBDB473B; Wed, 16 Mar 2005 16:24:30 -0300 (BRST) Received: from a.dotpix.com.br ([127.0.0.1]) by localhost (a.dotpix.com.br [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 97430-15; Wed, 16 Mar 2005 16:24:30 -0300 (BRST) Received: from d.dotpix.com.br (log [192.168.200.253]) by a.dotpix.com.br (Postfix) with ESMTP id 9EC4346D5; Wed, 16 Mar 2005 16:24:30 -0300 (BRST) Received: from [192.168.200.198] (a [200.101.99.12]) by d.dotpix.com.br (Postfix) with ESMTP id 1013223CD; Wed, 16 Mar 2005 16:24:40 -0300 (BRST) Date: Wed, 16 Mar 2005 16:20:50 -0300 From: wendelmaques To: "Scott St. John" , freebsd-isp@freebsd.org Message-ID: <79356D6906EBF0A10510AF15@[192.168.200.198]> In-Reply-To: <200503161844.j2GIinBi053119@kelly.talon.net> References: <200503161844.j2GIinBi053119@kelly.talon.net> X-Mailer: Mulberry/4.0.0a7 (Win32) MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8; format=flowed Content-Transfer-Encoding: quoted-printable Content-Disposition: inline X-Virus-Scanned: by amavisd-new at dotpix.com.br Subject: Re: FTP controlled by SQL X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 16 Mar 2005 19:22:11 -0000 > I have a client who wants to be able to add/remove users to an FTP = site.=C2=A0 > They do not have access to the machine so this sounds like a job for PHP > and MySQL.=C2=A0 I have been trying (pulling hair out) with Proftp and = MySQL. > > My question is:=C2=A0 is anyone on the list doing something like this and = what > are you using? I'm using pure-ftpd + MySQL. You can use "PureFTPD User Manager" '' to allow the client to manage user via php interface. -- wendelmaques http://www.dotpix.com.br/~wendel/site/ From owner-freebsd-isp@FreeBSD.ORG Wed Mar 16 19:36:02 2005 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id E26F616A4CE for ; Wed, 16 Mar 2005 19:36:02 +0000 (GMT) Received: from a.dotpix.com.br (ns1.dotpix.com.br [200.101.99.12]) by mx1.FreeBSD.org (Postfix) with ESMTP id 9F3A743D2D for ; Wed, 16 Mar 2005 19:36:01 +0000 (GMT) (envelope-from wendel@dotpix.com.br) Received: from localhost (x [127.0.0.1]) by mx1.dotpix.com.br (Postfix) with ESMTP id E79184727; Wed, 16 Mar 2005 16:38:26 -0300 (BRST) Received: from a.dotpix.com.br ([127.0.0.1]) by localhost (a.dotpix.com.br [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 97430-19; Wed, 16 Mar 2005 16:38:26 -0300 (BRST) Received: from d.dotpix.com.br (log [192.168.200.253]) by a.dotpix.com.br (Postfix) with ESMTP id 7B0CD46D5; Wed, 16 Mar 2005 16:38:26 -0300 (BRST) Received: from [192.168.200.198] (a [200.101.99.12]) by d.dotpix.com.br (Postfix) with ESMTP id E976323E5; Wed, 16 Mar 2005 16:38:35 -0300 (BRST) Date: Wed, 16 Mar 2005 16:34:46 -0300 From: wendelmaques To: Keith Woodworth , freebsd-isp@freebsd.org Message-ID: In-Reply-To: <20050316103222.P33592@pop.citytel.net> References: <20050316103222.P33592@pop.citytel.net> X-Mailer: Mulberry/4.0.0a7 (Win32) MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Content-Disposition: inline X-Virus-Scanned: by amavisd-new at dotpix.com.br Subject: Re: Chroot X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 16 Mar 2005 19:36:03 -0000 > Did that make sense? Another way is to mount the second dir in you chroot environment. You con use: # mount -t null /www/second-site /www/ftp-chroot-site/second-site This allow the user to manage another dir in the same chroot dir. -- wendelmaques http://www.dotpix.com.br/~wendel/site/ From owner-freebsd-isp@FreeBSD.ORG Wed Mar 16 19:38:57 2005 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 4542316A4CE for ; Wed, 16 Mar 2005 19:38:57 +0000 (GMT) Received: from mail0.beanfield.net (mail0.beanfield.net [66.207.192.8]) by mx1.FreeBSD.org (Postfix) with ESMTP id 6819843D55 for ; Wed, 16 Mar 2005 19:38:56 +0000 (GMT) (envelope-from mike@databloom.com) Received: (qmail 83417 invoked by uid 89); 16 Mar 2005 19:38:53 -0000 Received: by simscan 1.0.8 ppid: 83386, pid: 83393, t: 0.7541s scanners: attach: 1.0.8 clamav: 0.80/m:29/d:689 spam: 2.64 Received: from unknown (HELO ?192.168.66.106?) (66.207.193.249) by mail0.beanfield.net with SMTP; 16 Mar 2005 19:38:52 -0000 Message-ID: <42388A00.2000408@databloom.com> Date: Wed, 16 Mar 2005 14:33:20 -0500 From: Mike Bloom User-Agent: Mozilla Thunderbird 0.7.3 (X11/20041110) X-Accept-Language: en-us, en MIME-Version: 1.0 To: James Wyatt References: <200503161844.j2GIinBi053119@kelly.talon.net> <20050316130856.G87336@extra.rwsystems.net> In-Reply-To: <20050316130856.G87336@extra.rwsystems.net> Content-Type: text/plain; charset=UTF-8; format=flowed Content-Transfer-Encoding: 8bit X-Spam-DCC: : X-Spam-Checker-Version: SpamAssassin 2.64 (2004-01-11) on mail0.beanfield.net X-Spam-Status: No, hits=-4.8 required=5.0 tests=AWL,BAYES_00 autolearn=ham version=2.64 cc: freebsd-isp@freebsd.org Subject: Re: FTP controlled by SQL X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 16 Mar 2005 19:38:57 -0000 Hi, The pureftp port has a really nice management interface called UserManager. Its swell. M James Wyatt wrote: > I know you asked for folks actually doing this and I'm not, but I > believe you are correct in the PHP+MySQL for the admin portion and > that the pam_mysql module will let you leverage the existing FreeBSD > FTP server which can do things like chrooted-account support. Hope > this helps - Jy@ > > On Wed, 16 Mar 2005, Scott St. John wrote: > >> Hi- >> >> I have a client who wants to be able to add/remove users to an FTP >> site.� >> They do not have access to the machine so this sounds like a job for >> PHP and >> MySQL.� I have been trying (pulling hair out) with Proftp and MySQL. >> >> My question is:� is anyone on the list doing something like this and >> what >> are you using? >> >> Thanks! >> >> -Sco > > tt > >------------------------------------------------------------------------ > >_______________________________________________ >freebsd-isp@freebsd.org mailing list >http://lists.freebsd.org/mailman/listinfo/freebsd-isp >To unsubscribe, send any mail to "freebsd-isp-unsubscribe@freebsd.org" > > From owner-freebsd-isp@FreeBSD.ORG Wed Mar 16 19:54:37 2005 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 9B03016A4CE for ; Wed, 16 Mar 2005 19:54:37 +0000 (GMT) Received: from skyweb.ca (smtp-1.vancouver.ipapp.com [216.152.192.190]) by mx1.FreeBSD.org (Postfix) with ESMTP id E3C9E43D39 for ; Wed, 16 Mar 2005 19:54:36 +0000 (GMT) (envelope-from mjohnston@skyweb.ca) Received: from [192.168.15.82] ([64.42.246.34]) by smtp-1.vancouver.ipapp.com ; Wed, 16 Mar 2005 11:54:24 -0800 From: Mark Johnston To: "Scott St. John" In-Reply-To: <200503161844.j2GIinBi053119@kelly.talon.net> References: <200503161844.j2GIinBi053119@kelly.talon.net> Content-Type: text/plain Date: Wed, 16 Mar 2005 13:54:23 -0600 Message-Id: <1111002863.7843.8.camel@localhost.localdomain> Mime-Version: 1.0 X-Mailer: Evolution 2.2.0 Content-Transfer-Encoding: 7bit X-Country: CA cc: freebsd-isp@freebsd.org Subject: Re: FTP controlled by SQL X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 16 Mar 2005 19:54:37 -0000 On Wed, 2005-03-16 at 13:45 -0500, Scott St. John wrote: > I have a client who wants to be able to add/remove users to an FTP site. > They do not have access to the machine so this sounds like a job for PHP and > MySQL. I have been trying (pulling hair out) with Proftp and MySQL. > > My question is: is anyone on the list doing something like this and what > are you using? I'm doing something very like this, using the ProFTPD port version 1.2.10_1 and PostgreSQL. Relevant config chunks: AuthPAM off DefaultRoot ~ SQLConnectInfo dbname@db.host.fqdn username password SQLAuthenticate users # Could also use groups SQLAuthTypes Plaintext # Passwords are stored as plaintext SQLHomedirOnDemand on # Create missing home directories SQLNegativeCache on # Cache missing usernames SQLDefaultGID 10000 # Everyone will get this GID SQLMinUserUID 10000 # Users must be at least UID 10000 SQLNamedQuery getuser SELECT "name, password, uid, NULL, '/home/' || name, NULL FROM domain WHERE name = '%U' AND enabled" SQLUserInfo custom:/getuser Basically, this turns off PAM, and authenticates using the given SQL query. It doesn't use groups (everyone gets the DefaultGID of 10000). The order in the SQLNamedQuery is significant - it's name, password, numeric uid, numeric gid, home directory, something else (sorry). %U is the username the user entered. Management of the database table is done with an internal web front-end, but it's a trivial matter of programming anyway. PHP sounds eminently suitable. HTH, Mark From owner-freebsd-isp@FreeBSD.ORG Wed Mar 16 20:42:31 2005 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 3B77D16A4CF for ; Wed, 16 Mar 2005 20:42:31 +0000 (GMT) Received: from saturn.bueller.ca (c180636.static.uniserve.ca [216.113.195.89]) by mx1.FreeBSD.org (Postfix) with SMTP id 4C68943D2D for ; Wed, 16 Mar 2005 20:42:30 +0000 (GMT) (envelope-from matt@bueller.ca) Received: (qmail 68638 invoked by uid 89); 16 Mar 2005 20:57:56 -0000 Received: from trapdoor.netbistro.com (HELO ?192.168.1.103?) (204.239.167.96) by saturn.bueller.ca with SMTP; 16 Mar 2005 20:57:56 -0000 Message-ID: <42389A66.40605@bueller.ca> Date: Wed, 16 Mar 2005 12:43:18 -0800 From: Matt Ferris User-Agent: Mozilla Thunderbird 1.0 (Windows/20041206) X-Accept-Language: en-us, en MIME-Version: 1.0 To: "Scott St. John" References: <200503161844.j2GIinBi053119@kelly.talon.net> In-Reply-To: <200503161844.j2GIinBi053119@kelly.talon.net> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit cc: freebsd-isp@freebsd.org Subject: Re: FTP controlled by SQL X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 16 Mar 2005 20:42:31 -0000 On 3/16/2005 10:45 AM,Scott St. John wrote: > Hi- > > I have a client who wants to be able to add/remove users to an FTP site. > They do not have access to the machine so this sounds like a job for PHP and > MySQL. I have been trying (pulling hair out) with Proftp and MySQL. > > My question is: is anyone on the list doing something like this and what > are you using? > > Thanks! > > -Scott We have ProFTP authenticating via a MySQL database. It was a little tricky to setup given the ProFTP site is restructuring their documentation. You can find some help at http://www.castaglia.org/proftpd/doc/contrib/ProFTPD-mini-HOWTO-SQL.html -- Matt Ferris matt@bueller.ca From owner-freebsd-isp@FreeBSD.ORG Thu Mar 17 12:09:18 2005 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 4676316A4CE for ; Thu, 17 Mar 2005 12:09:18 +0000 (GMT) Received: from fmx5.freemail.hu (fmx5.freemail.hu [195.228.242.225]) by mx1.FreeBSD.org (Postfix) with SMTP id 67B2D43D4C for ; Thu, 17 Mar 2005 12:09:17 +0000 (GMT) (envelope-from ucsaba@freemail.hu) Received: (qmail 50398 invoked from network); 17 Mar 2005 13:09:15 +0100 Received: from fm10.freemail.hu (195.228.242.210) by fmx5.freemail.hu with SMTP; 17 Mar 2005 13:09:15 +0100 Received: (qmail 86982 invoked by uid 227048); 17 Mar 2005 13:09:15 +0100 Date: Thu, 17 Mar 2005 13:09:15 +0100 (CET) From: =?ISO-8859-2?Q?Urb=E1n_Csaba?= To: freebsd-isp@freebsd.org Message-ID: X-Originating-IP: [62.112.217.90] X-HTTP-User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1) MIME-Version: 1.0 Content-Type: TEXT/PLAIN; CHARSET=ISO-8859-2 Subject: RFC 3069 X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 17 Mar 2005 12:09:18 -0000 Hello, Are there any plans for implementing VLAN aggregation (according to RFC 3069) in FreeBSD? I think it is an extremly useful feature for a ISP. Regards, Csaba From owner-freebsd-isp@FreeBSD.ORG Wed Mar 16 18:41:38 2005 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 9849116A4CE for ; Wed, 16 Mar 2005 18:41:38 +0000 (GMT) Received: from pelican.talon.net (pelican.talon.net [199.224.105.18]) by mx1.FreeBSD.org (Postfix) with ESMTP id 9660C43D3F for ; Wed, 16 Mar 2005 18:41:37 +0000 (GMT) (envelope-from scott@talon.net) Received: from dormont (melinda.talon.net [199.224.105.45]) by pelican.talon.net (Postfix) with ESMTP id C2070111792 for ; Wed, 16 Mar 2005 13:39:23 -0500 (EST) From: "Scott St. John" To: Date: Wed, 16 Mar 2005 13:41:29 -0500 MIME-Version: 1.0 X-Mailer: Microsoft Office Outlook, Build 11.0.5510 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2900.2527 Thread-Index: AcUqV8QX9qLH12zcQu2JpFCwLfDXww== Message-Id: <20050316183923.C2070111792@pelican.talon.net> X-Mailman-Approved-At: Thu, 17 Mar 2005 13:38:27 +0000 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit X-Content-Filtered-By: Mailman/MimeDel 2.1.1 Subject: FTP controlled by SQL X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 16 Mar 2005 18:41:38 -0000 Hi- I have a client who wants to be able to add/remove users to an FTP site. They do not have access to the machine so this sounds like a job for PHP and MySQL. I have been trying (pulling hair out) with Proftp and MySQL. My question is: is anyone on the list doing something like this and what are you using? Thanks! -Scott From owner-freebsd-isp@FreeBSD.ORG Thu Mar 17 13:42:55 2005 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id C0C6716A4CE for ; Thu, 17 Mar 2005 13:42:55 +0000 (GMT) Received: from rena.mysmt.net (rena.mysmt.net [82.150.137.102]) by mx1.FreeBSD.org (Postfix) with ESMTP id 9BD4D43D2F for ; Thu, 17 Mar 2005 13:42:54 +0000 (GMT) (envelope-from erik@microcontroller.nl) Received: (qmail 56536 invoked by uid 89); 17 Mar 2005 13:42:51 -0000 Received: by simscan 1.1.0 ppid: 56530, pid: 56532, t: 0.9530s scanners: clamav: 0.83/m:29/d:709 spam: 3.0.2 Received: from unknown (HELO 192.168.0.14) (microcon@microcontroller.nl@213.84.50.76) by 82-150-137-14.mysmt.net with SMTP; 17 Mar 2005 13:42:50 -0000 From: "Erik @ Microcontroller.nl" To: "Scott St. John" In-Reply-To: <20050316183923.C2070111792@pelican.talon.net> References: <20050316183923.C2070111792@pelican.talon.net> Content-Type: text/plain Date: Thu, 17 Mar 2005 14:43:00 +0100 Message-Id: <1111066981.10457.3.camel@tessa.mysmt.net> Mime-Version: 1.0 X-Mailer: Evolution 2.0.2 (2.0.2-3) Content-Transfer-Encoding: 7bit X-Spam-Checker-Version: SpamAssassin 3.0.2 (2004-11-16) on rena.mysmt.net X-Spam-Level: X-Spam-Status: No, score=-2.3 required=4.0 tests=AWL,BAYES_00 autolearn=ham version=3.0.2 cc: freebsd-isp@freebsd.org Subject: Re: FTP controlled by SQL X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 17 Mar 2005 13:42:55 -0000 > My question is: is anyone on the list doing something like this and what > are you using? sure! pureftpd.org ! -Erik. From owner-freebsd-isp@FreeBSD.ORG Thu Mar 17 13:43:20 2005 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id ED47516A4CE for ; Thu, 17 Mar 2005 13:43:20 +0000 (GMT) Received: from mail.eurosoft-uk.com (sl-gw01.e1.eurosoft-uk.com [82.195.165.202]) by mx1.FreeBSD.org (Postfix) with ESMTP id B530543D31 for ; Thu, 17 Mar 2005 13:43:19 +0000 (GMT) (envelope-from DavidR@eurosoft-uk.com) Message-ID: <23AF6C4F864B4F42948DA24DDC828AA098B0B3@esuk02> From: David Richards To: "Scott St. John" , freebsd-isp@freebsd.org Date: Thu, 17 Mar 2005 13:43:14 -0000 MIME-Version: 1.0 X-Mailer: Internet Mail Service (5.5.2656.59) Content-Type: text/plain X-Content-Filtered-By: Mailman/MimeDel 2.1.1 Subject: RE: FTP controlled by SQL X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 17 Mar 2005 13:43:21 -0000 I found pure-ftp works with mysql and I got the web interface from http://www.solariz.de/stuff/scripts_and_more/ > -----Original Message----- > From: Scott St. John [mailto:scott@talon.net] > Sent: 16 March 2005 18:41 > To: freebsd-isp@freebsd.org > Subject: FTP controlled by SQL > > Hi- > > > > I have a client who wants to be able to add/remove users to > an FTP site. > They do not have access to the machine so this sounds like a > job for PHP and MySQL. I have been trying (pulling hair out) > with Proftp and MySQL. > > > > My question is: is anyone on the list doing something like > this and what are you using? > > > > Thanks! > > > > -Scott > > > > _______________________________________________ > freebsd-isp@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-isp > To unsubscribe, send any mail to "freebsd-isp-unsubscribe@freebsd.org" > DISCLAIMER: The information contained in this e-mail is confidential and may be privileged. It is intended for the addressee only. If you are not the intended recipient, please delete this e-mail immediately. The contents of this email must not be disclosed or copied without the sender's consent. We cannot accept any responsibility for viruses, so please scan all attachments. The statements and opinions expressed in this message are those of the author and do not necessarily reflect those of the company. The company does not take any responsibility for the views of the author. From owner-freebsd-isp@FreeBSD.ORG Thu Mar 17 14:02:45 2005 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 2F9E816A4CE for ; Thu, 17 Mar 2005 14:02:45 +0000 (GMT) Received: from srvu01.telod.net (node-423a192b.mdw.onnet.us.uu.net [66.58.25.43]) by mx1.FreeBSD.org (Postfix) with ESMTP id 668A143D39 for ; Thu, 17 Mar 2005 14:02:44 +0000 (GMT) (envelope-from evs@telod.net) Received: (qmail 4384 invoked from network); 17 Mar 2005 14:02:43 -0000 Received: from qmail by qscan (mail filter); 17 Mar 2005 14:02:43 +0000 Received: from unknown (HELO stranger) (66.58.25.42) by ns1.telod.net with SMTP; 17 Mar 2005 14:02:43 -0000 From: "Edward Shabotinsky" To: Date: Thu, 17 Mar 2005 08:02:32 -0600 Organization: TELOD INC MIME-Version: 1.0 Content-Type: text/plain; charset="US-ASCII" Content-Transfer-Encoding: 7bit X-Mailer: Microsoft Office Outlook, Build 11.0.6353 In-Reply-To: <23AF6C4F864B4F42948DA24DDC828AA098B0B3@esuk02> X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2900.2180 Thread-Index: AcUq91Mi7qQxMQaHR5S5gO7ZeuZWKAAAnjYQ Message-Id: <20050317140244.668A143D39@mx1.FreeBSD.org> Subject: RE: FTP controlled by SQL X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 17 Mar 2005 14:02:45 -0000 One more link http://machiel.generaal.net/index.php?subject=pureftpd&language=eng Good luck. --Edward. -----Original Message----- From: owner-freebsd-isp@freebsd.org [mailto:owner-freebsd-isp@freebsd.org] On Behalf Of David Richards Sent: Thursday, March 17, 2005 07:43 AM To: Scott St. John; freebsd-isp@freebsd.org Subject: RE: FTP controlled by SQL I found pure-ftp works with mysql and I got the web interface from http://www.solariz.de/stuff/scripts_and_more/ > -----Original Message----- > From: Scott St. John [mailto:scott@talon.net] > Sent: 16 March 2005 18:41 > To: freebsd-isp@freebsd.org > Subject: FTP controlled by SQL > > Hi- > > > > I have a client who wants to be able to add/remove users to > an FTP site. > They do not have access to the machine so this sounds like a > job for PHP and MySQL. I have been trying (pulling hair out) > with Proftp and MySQL. > > > > My question is: is anyone on the list doing something like > this and what are you using? > > > > Thanks! > > > > -Scott > > > > _______________________________________________ > freebsd-isp@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-isp > To unsubscribe, send any mail to "freebsd-isp-unsubscribe@freebsd.org" > DISCLAIMER: The information contained in this e-mail is confidential and may be privileged. It is intended for the addressee only. If you are not the intended recipient, please delete this e-mail immediately. The contents of this email must not be disclosed or copied without the sender's consent. We cannot accept any responsibility for viruses, so please scan all attachments. The statements and opinions expressed in this message are those of the author and do not necessarily reflect those of the company. The company does not take any responsibility for the views of the author. _______________________________________________ freebsd-isp@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-isp To unsubscribe, send any mail to "freebsd-isp-unsubscribe@freebsd.org" From owner-freebsd-isp@FreeBSD.ORG Thu Mar 17 20:59:46 2005 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 0C79416A4CE for ; Thu, 17 Mar 2005 20:59:46 +0000 (GMT) Received: from ns8.vianetworks.com.ar (ns8.via-net-works.net.ar [200.61.12.19]) by mx1.FreeBSD.org (Postfix) with SMTP id 6D6C143D48 for ; Thu, 17 Mar 2005 20:59:44 +0000 (GMT) (envelope-from hnunez@vianetworks.com.ar) Received: (qmail 42919 invoked from network); 17 Mar 2005 17:59:45 -0300 Received: from valkyria.via-net-works.net.ar (nunezh@200.61.12.50) by ns8.vianetworks.com.ar with SMTP; 17 Mar 2005 17:59:45 -0300 Date: Thu, 17 Mar 2005 17:59:46 -0300 From: Hernan =?ISO-8859-1?Q?Nu=F1ez?= To: freebsd-isp@freebsd.org Message-Id: <20050317175946.019816ab@valkyria.via-net-works.net.ar> In-Reply-To: References: Organization: Vianetworks - Velocom - Winstar X-Mailer: Sylpheed version 0.9.10claws (GTK+ 1.2.10; i386-portbld-freebsd4.9) Mime-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable Subject: BIND problem, a bad delegation or both of them ? X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 17 Mar 2005 20:59:46 -0000 Our DNS is having a problem trying to resolve some domains, and I'm wonder= ing if anybody saw anything like that.=20 As the RFC 2181, section 10.3 said, a RR mustn't be an alias. So in my opi= nion ther is the problem why bind dosen't retrieve any information of this = domain. dig @localhost ns mediabusiness.tv ; <<>> DiG 8.3 <<>> @localhost ns mediabusiness.tv=20 ; (1 server found) ;; res options: init recurs defnam dnsrch ;; got answer: ;; ->>HEADER<<- opcode: QUERY, status: SERVFAIL, id: 39733 ;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0 ;; QUERY SECTION: ;; mediabusiness.tv, type =3D NS, class =3D IN ;; Total query time: 1 msec ;; FROM: my.server. to SERVER: 127.0.0.1 ;; WHEN: Thu Mar 17 17:28:30 2005 ;; MSG SIZE sent: 34 rcvd: 34 Bind Debug Level 3=20 ------------------ req: nlookup(mediabusiness.tv) id 61851 type=3D15 class=3D1 req: found 'mediabusiness.tv' as 'mediabusiness.tv' (cname=3D0) wanted(0x9011420, IN MX) [IN NS] =20 wanted(0x90113f0, IN MX) [IN NS] findns: 2 NS's added for 'mediabusiness' ns_forw() find_zone(mediabusiness.tv, 1) find_zone: unknown zone find_zone(tv, 1) find_zone: unknown zone find_zone(., 1) find_zone: existing zone 1 nslookup(nsp=3D0xbfbfdb38, qp=3D0x8693000, "mediabusiness.tv", d=3D0) nslookup: NS "NS1.SENIC.BIZ" c=3D1 t=3D2 (flags 0x2) < NS 'NS1.SENIC.BIZ' NS points to CNAME < BAD nslookup: NS "NS2.SENIC.BIZ" c=3D1 t=3D2 (flags 0x2) < DELEGATION ? NS 'NS2.SENIC.BIZ' NS points to CNAME < nslookup: 0 ns addrs total forw: nslookup reports danger ns_freeqry(0x8693000) ----------------------------------------------------------------------- I collected the NS of mediabusiness.tv from whois.networksolutions.com dat= abase. whois -h whois.networksolutions.com mediabusiness.tv Whois Server Version 1.0 Domain names can now be registered with many different competing registrars. Go to http://registrar.verisign-grs.com/whois/ for detailed information. Domain Name: MEDIABUSINESS.TV Registrar: NETWORK SOLUTIONS, LLC. Whois Server: whois.networksolutions.com Referral URL: http://www.networksolutions.com Name Server: NS1.SENIC.BIZ Name Server: NS2.SENIC.BIZ Status: CLIENT-XFER-PROHIBITED Updated Date: 22-dec-2004 Creation Date: 20-jan-2004 Expiration Date: 20-jan-2006 Domain servers in listed order: NS1.SENIC.BIZ 67.18.31.242 NS2.SENIC.BIZ 67.18.31.243 ----------------------------------------------------------------------- Then, I did the followning query 'dig @67.18.31.242 NS1.SENIC.BIZ'. So, I = confirmed that this RR was delegated as aliases. dig @67.18.31.242 NS1.SENIC.BIZ ; <<>> DiG 8.3 <<>> @67.18.31.242 NS1.SENIC.BIZ=20 ; (1 server found) ;; res options: init recurs defnam dnsrch ;; got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 2178 ;; flags: qr aa rd; QUERY: 1, ANSWER: 8, AUTHORITY: 0, ADDITIONAL: 0 ;; QUERY SECTION: ;; NS1.SENIC.BIZ, type =3D A, class =3D IN ;; ANSWER SECTION: NS1.SENIC.BIZ. 4H IN CNAME NS1.SENIC.BIZ. NS1.SENIC.BIZ. 4H IN CNAME NS1.SENIC.BIZ. NS1.SENIC.BIZ. 4H IN CNAME NS1.SENIC.BIZ. NS1.SENIC.BIZ. 4H IN CNAME NS1.SENIC.BIZ. NS1.SENIC.BIZ. 4H IN CNAME NS1.SENIC.BIZ. NS1.SENIC.BIZ. 4H IN CNAME NS1.SENIC.BIZ. NS1.SENIC.BIZ. 4H IN CNAME NS1.SENIC.BIZ. NS1.SENIC.BIZ. 4H IN CNAME NS1.SENIC.BIZ. ;; Total query time: 161 msec ;; FROM: ns1.via-net-works.net.ar to SERVER: 67.18.31.242 ;; WHEN: Thu Mar 17 17:26:31 2005 ;; MSG SIZE sent: 31 rcvd: 143 At last, I wonder if BIND must behave like RFC 2181 said and just claim to= NETWORK SOLUTIONS or what ? . Well any coment about it will be apreciated. ------------------------------------------------- Lic. Hernan Nu=F1ez =20 Un*x System Administrator=20 Velocom Argentina - Datco Tecnolog=EDa y Operaciones | DDI +54 11 4316-1400 ------------------------------------------------- From owner-freebsd-isp@FreeBSD.ORG Thu Mar 17 21:08:55 2005 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 0147516A4CE for ; Thu, 17 Mar 2005 21:08:55 +0000 (GMT) Received: from mx1-b.inoc.net (mx1-b.inoc.net [64.246.131.28]) by mx1.FreeBSD.org (Postfix) with ESMTP id 679FF43D53 for ; Thu, 17 Mar 2005 21:08:54 +0000 (GMT) (envelope-from rblayzor@inoc.net) Received: from [192.168.0.16] (noc-gw0-fe.dc1-alb.inoc.net [64.246.129.30]) by mx1-b.inoc.net (build v5.2.7) with ESMTP id 20946417 for ; Thu, 17 Mar 2005 16:08:53 -0500 Message-ID: <4239F1E4.3000007@inoc.net> Date: Thu, 17 Mar 2005 16:08:52 -0500 From: Robert Blayzor Organization: Independent Network Operations Consortium, LLC User-Agent: Mozilla Thunderbird 1.0 (Macintosh/20041206) X-Accept-Language: en-us, en MIME-Version: 1.0 To: freebsd-isp@freebsd.org X-Enigmail-Version: 0.90.1.0 X-Enigmail-Supports: pgp-inline, pgp-mime Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Subject: Dell PowerEdge 1855 servers X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 17 Mar 2005 21:08:55 -0000 I'd like to know if anyone has experience with the Dell PowerEdge 1855 blade servers running on either FreeBSD_4 or FreeBSD_5. I'm looking to deploy several servers and I know that the 1850's will run just fine. I have concerns over the PERC4/im and the ethernet controllers on the 1855's. I assume since the 1855's have Intel Gig-E controllers they use the em driver, which I've had good luck with in the past. Apparently the 1855's integrated RAID uses the LSI (mpt) driver. I've heard mixed results on this with earlier versions of 4.x and 5.x, but nothing in the latest releases, 4.10+ and 5.3. Can anyone share their experiences with performance and stability on these machines? TIA -- Robert Blayzor, BOFH INOC, LLC rblayzor\@(inoc.net|gmail.com) PGP: http://www.inoc.net/~dev/ Key fingerprint = 1E02 DABE F989 BC03 3DF5 0E93 8D02 9D0B CB1A A7B0 Windows 95 is little more than a 32bit patch for a 16bit GUI designed for an 8bit OS built for a 4bit processor by a 2bit company who can't stand 1bit of competition!" From owner-freebsd-isp@FreeBSD.ORG Thu Mar 17 21:13:16 2005 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 43DC716A4CE for ; Thu, 17 Mar 2005 21:13:16 +0000 (GMT) Received: from mh1.centtech.com (moat3.centtech.com [207.200.51.50]) by mx1.FreeBSD.org (Postfix) with ESMTP id 3415143D5A for ; Thu, 17 Mar 2005 21:13:15 +0000 (GMT) (envelope-from anderson@centtech.com) Received: from [10.177.171.220] (neutrino.centtech.com [10.177.171.220]) by mh1.centtech.com (8.13.1/8.13.1) with ESMTP id j2HLDE99018785; Thu, 17 Mar 2005 15:13:14 -0600 (CST) (envelope-from anderson@centtech.com) Message-ID: <4239F2E0.6030908@centtech.com> Date: Thu, 17 Mar 2005 15:13:04 -0600 From: Eric Anderson User-Agent: Mozilla/5.0 (X11; U; FreeBSD i386; en-US; rv:1.7.5) Gecko/20050210 X-Accept-Language: en-us, en MIME-Version: 1.0 To: Robert Blayzor References: <4239F1E4.3000007@inoc.net> In-Reply-To: <4239F1E4.3000007@inoc.net> Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit X-Virus-Scanned: ClamAV 0.82/768/Thu Mar 17 14:18:40 2005 on mh1.centtech.com X-Virus-Status: Clean cc: freebsd-isp@freebsd.org Subject: Re: Dell PowerEdge 1855 servers X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 17 Mar 2005 21:13:16 -0000 Robert Blayzor wrote: > I'd like to know if anyone has experience with the Dell PowerEdge 1855 > blade servers running on either FreeBSD_4 or FreeBSD_5. > > I'm looking to deploy several servers and I know that the 1850's will > run just fine. > > I have concerns over the PERC4/im and the ethernet controllers on the > 1855's. I assume since the 1855's have Intel Gig-E controllers they use > the em driver, which I've had good luck with in the past. > > Apparently the 1855's integrated RAID uses the LSI (mpt) driver. I've > heard mixed results on this with earlier versions of 4.x and 5.x, but > nothing in the latest releases, 4.10+ and 5.3. > > Can anyone share their experiences with performance and stability on > these machines? I can tell you that on my current 1850's, FreeBSD 5.3 is rock solid (with Perc 4's, which are LSI chips). I have used Perc's for a long time with FreeBSD, and have always liked them. I will warn you about Perc 4e/Di controllers - supposedly they are different, and are not completely compatible with the other Perc 4's (I know this because SLES8 does not support the 4e, but does support the 4). I can also tell you that a RAID disk from a Perc 4 won't work in a Perc 4e. As for specifically the 1855's, I can't comment. Eric -- ------------------------------------------------------------------------ Eric Anderson Sr. Systems Administrator Centaur Technology I have seen the future and it is just like the present, only longer. ------------------------------------------------------------------------ From owner-freebsd-isp@FreeBSD.ORG Thu Mar 17 22:16:08 2005 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 9D1C416A4CE for ; Thu, 17 Mar 2005 22:16:08 +0000 (GMT) Received: from plum.flirble.org (plum.flirble.org [195.40.6.20]) by mx1.FreeBSD.org (Postfix) with ESMTP id 3026F43D2F for ; Thu, 17 Mar 2005 22:16:08 +0000 (GMT) (envelope-from jake@poptart.org) Received: from fruity.poptart.org ([82.152.7.145] helo=poptart.org) by plum.flirble.org with esmtpa (Exim 4.43) id 1DC3Hi-000HL6-Nf for freebsd-isp@freebsd.org; Thu, 17 Mar 2005 22:16:07 +0000 Received: from choccy.int.poptart.org ([10.0.0.1]) by poptart.org with esmtp (Exim 4.14) id 1DC3Hi-000OCU-CC for freebsd-isp@freebsd.org; Thu, 17 Mar 2005 22:16:06 +0000 Message-ID: <423A01A6.9040601@poptart.org> Date: Thu, 17 Mar 2005 22:16:06 +0000 From: Jake Scott User-Agent: Mozilla Thunderbird 1.0 (Windows/20041206) X-Accept-Language: en-us, en MIME-Version: 1.0 To: freebsd-isp@freebsd.org Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit X-Content-Filtered-By: Mailman/MimeDel 2.1.1 Subject: Multiple passwords for ftp/ssh X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 17 Mar 2005 22:16:08 -0000 Hi. I've just configured a new 5.3-Stable system to use nss_ldap and pam_ldap. It's all working very well. However, I'd like users to have two passwords - one for logging into services over encrypted links and one for unencrypted links - eg. one for ssh/imaps and another for http/imap/ftp. I've created a new LDAP object class that provides a new attribute (insecurePassword). nss_ldap is configured with a rootbinddn, and "nss_map_attribute userPassword insecurePassword". Now, getent() as root returns the insecurePassowrd for users. So - I've got sshd's PAM config using pam_ldap and pam_unix, and ftp's PAM config just using pam_unix. This means that when a user logs in via FTP, they must use the password stored in the insecurePassword attribute. When logging in via SSH, they can use the password in the userPassword attribute (authenticated via an LDAP bind operation in pam_ldap). The problem is that a user can also use their insecure password via ssh because I need pam_unix in the PAM chain so that users in the local password file can also log in. Whan I'd like, is for a user in the LDAP directory to only be able to log in using their secure (userPassword) password. It would be good if I could make the PAM chain stop if the presented password doesn't match the userPassword attribute - but to continue if that's because the user isn't in the directory. Does anyone know if there's a way I can do this - or is there a better way to achieve this? Many thanks in advance Jake From owner-freebsd-isp@FreeBSD.ORG Fri Mar 18 00:05:48 2005 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 42CA716A4CE for ; Fri, 18 Mar 2005 00:05:48 +0000 (GMT) Received: from kelly.talon.net (kelly.talon.net [199.224.105.22]) by mx1.FreeBSD.org (Postfix) with ESMTP id 6ECD443D2F for ; Fri, 18 Mar 2005 00:05:47 +0000 (GMT) (envelope-from scott@scottah.com) Received: from kelly.talon.net (localhost.talon.net [127.0.0.1]) by kelly.talon.net (8.13.3/8.12.9) with ESMTP id j2I05Ah7062306 for ; Thu, 17 Mar 2005 19:05:11 -0500 (EST) (envelope-from scott@scottah.com) Received: from localhost (scott@localhost) by kelly.talon.net (8.13.3/8.12.9/Submit) with ESMTP id j2I05A9M062303 for ; Thu, 17 Mar 2005 19:05:10 -0500 (EST) (envelope-from scott@scottah.com) X-Authentication-Warning: kelly.talon.net: scott owned process doing -bs Date: Thu, 17 Mar 2005 19:05:10 -0500 (EST) From: "Scott St. John" X-X-Sender: scott@kelly.talon.net To: freebsd-isp@freebsd.org Message-ID: <20050317190237.A62297@kelly.talon.net> MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Subject: FTP with SQL, Thank you X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 18 Mar 2005 00:05:48 -0000 A big thanks to everyone who offered advice on using MySQL for FTP users. I gave up on ProFTP and went with PureFTP and after about 30 minutes of playing around I have it up and running. The only way I got it to work correctly was to install Pure from the ports and uncheck PAM support leaving just MySQL. Now that I have this working I might even attempt Postfix with MySQL :) Would make life at my ISP simpler. -Scott From owner-freebsd-isp@FreeBSD.ORG Fri Mar 18 06:28:05 2005 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 8DF4916A4CE for ; Fri, 18 Mar 2005 06:28:05 +0000 (GMT) Received: from brando.numericable.net (brando.numericable.net [80.236.3.116]) by mx1.FreeBSD.org (Postfix) with ESMTP id 5E10243D2F for ; Fri, 18 Mar 2005 06:28:04 +0000 (GMT) (envelope-from noc@fr.claryss.net) Received: (qmail 13497 invoked from network); 18 Mar 2005 06:28:03 -0000 Received: from unknown (HELO [192.168.1.10]) ([81.220.66.145]) (envelope-sender ) by brando.numericable.net (qmail-ldap-1.03) with SMTP for ; 18 Mar 2005 06:28:03 -0000 In-Reply-To: <20050317190237.A62297@kelly.talon.net> References: <20050317190237.A62297@kelly.talon.net> Mime-Version: 1.0 (Apple Message framework v619.2) Content-Type: text/plain; charset=US-ASCII; format=flowed Message-Id: <2f5ae24d496bc60c8cb0892037f08960@fr.claryss.net> Content-Transfer-Encoding: 7bit From: NOC - Claryss.Net - FR Date: Fri, 18 Mar 2005 07:27:57 +0100 To: "Scott St. John" X-Mailer: Apple Mail (2.619.2) cc: freebsd-isp@freebsd.org Subject: Re: FTP with SQL, Thank you => s/Postfix/Exim\+vexim/ X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 18 Mar 2005 06:28:05 -0000 > > Now that I have this working I might even attempt Postfix with MySQL :) > Would make life at my ISP simpler. > If your choice for postfix is not completely locked, i invite you to take a look on exim+vexim+mysql. (+sa+clamav) http://mirror.fr.claryss.net/exim.org/ http://mirror.fr.claryss.net/silverwraith.com/vexim/ Have a nice day. -adrien -- Claryss Networks Network Operation Center - FRANCE www.claryss.com - noc@fr.claryss.net From owner-freebsd-isp@FreeBSD.ORG Fri Mar 18 08:25:46 2005 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 21B8116A4CE for ; Fri, 18 Mar 2005 08:25:46 +0000 (GMT) Received: from zoot.lafn.org (zoot.lafn.ORG [206.117.18.6]) by mx1.FreeBSD.org (Postfix) with ESMTP id BAD3743D39 for ; Fri, 18 Mar 2005 08:25:45 +0000 (GMT) (envelope-from bc979@lafn.org) Received: from [10.0.1.90] ([4.28.157.47]) (authenticated bits=0) by zoot.lafn.org (8.13.1/8.13.1) with ESMTP id j2I8PgjT088103 (version=TLSv1/SSLv3 cipher=RC4-SHA bits=128 verify=NO) for ; Fri, 18 Mar 2005 00:25:43 -0800 (PST) (envelope-from bc979@lafn.org) Mime-Version: 1.0 (Apple Message framework v619.2) Content-Transfer-Encoding: 7bit Message-Id: Content-Type: text/plain; charset=US-ASCII; format=flowed To: freebsd-isp@freebsd.org From: Doug Hardie Date: Fri, 18 Mar 2005 00:25:41 -0800 X-Mailer: Apple Mail (2.619.2) X-Virus-Scanned: ClamAV version 0.82, clamav-milter version 0.82 on zoot.lafn.org X-Virus-Status: Clean Subject: dspam data sizes X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 18 Mar 2005 08:25:46 -0000 After seeing the recommendations here I am testing dspam. I currently have 2 users testing it. They are at both extreme ends of mail demands. My account gets about 1000 emails a day of which about 25-30% are spam. The other account gets about 100 emails a day of which about 90% are spam. So far, dspam is quarantining about 1/3rd of the spam I receive. Is basically the same as Apple's mail filtering. My mail is being sent to both. However, the storage of the data used by dspam is a bit overwhealming. The storage is at 250 MB for me and 20 MB for the other account. I have cut way down the purge retention intervals which appears to help somewhat but not enough. I have thousands of users and at 250 MB per user (it would probably be a bit below that) its just not practical. How do other users of dspam deal with this issue? Is there some setting I have wrong (or at least not set most efficently)? From owner-freebsd-isp@FreeBSD.ORG Fri Mar 18 10:53:36 2005 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id CF39616A4CE for ; Fri, 18 Mar 2005 10:53:36 +0000 (GMT) Received: from materva.diewebmaster.at (materva.diewebmaster.at [80.66.42.216]) by mx1.FreeBSD.org (Postfix) with ESMTP id 12AD443D49 for ; Fri, 18 Mar 2005 10:53:36 +0000 (GMT) (envelope-from christian.damm@diewebmaster.at) Received: from localhost (localhost.diewebmaster.at [127.0.0.1]) by materva.diewebmaster.at (Postfix) with ESMTP id 9E795218073; Fri, 18 Mar 2005 11:53:34 +0100 (CET) Received: from materva.diewebmaster.at ([127.0.0.1]) by localhost (materva.diewebmaster.at [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 89781-06; Fri, 18 Mar 2005 11:53:34 +0100 (CET) Received: from [192.168.1.14] (da.diewebmaster.at [192.168.1.14]) by materva.diewebmaster.at (Postfix) with ESMTP id 06180218052; Fri, 18 Mar 2005 11:53:33 +0100 (CET) Message-ID: <423AB25E.3000909@diewebmaster.at> Date: Fri, 18 Mar 2005 11:50:06 +0100 From: Christian Damm User-Agent: Mozilla Thunderbird 0.9 (Windows/20041103) X-Accept-Language: de-DE, de, en-us, en MIME-Version: 1.0 To: Doug Hardie References: In-Reply-To: Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 8bit X-Virus-Scanned: by amavisd-new at diewebmaster.at cc: freebsd-isp@freebsd.org Subject: Re: dspam data sizes X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 18 Mar 2005 10:53:36 -0000 this was discussed in detail (several times) on the dspam mailing list - search the archives: 'http://dspam.nuclearelephant.com/search.shtml'. you can extremely cut down your db size using different methods...which training method you are currently using? - once dspam is "mature" enough (training wise) it is (for example) a good idea to switch to TOE mode (train on error) if your user base is large - your db shrinks and the performance gain is big. Doug Hardie schrieb: > After seeing the recommendations here I am testing dspam. I currently > have 2 users testing it. They are at both extreme ends of mail > demands. My account gets about 1000 emails a day of which about 25-30% > are spam. The other account gets about 100 emails a day of which about > 90% are spam. So far, dspam is quarantining about 1/3rd of the spam I > receive. Is basically the same as Apple's mail filtering. My mail is > being sent to both. However, the storage of the data used by dspam is a > bit overwhealming. The storage is at 250 MB for me and 20 MB for the > other account. I have cut way down the purge retention intervals which > appears to help somewhat but not enough. I have thousands of users and > at 250 MB per user (it would probably be a bit below that) its just not > practical. How do other users of dspam deal with this issue? Is there > some setting I have wrong (or at least not set most efficently)? > > _______________________________________________ > freebsd-isp@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-isp > To unsubscribe, send any mail to "freebsd-isp-unsubscribe@freebsd.org" > > !DSPAM:423a90a8860071995817248! > -- mfg. christian damm technische leitung phone: dw 42 email: christian.damm@diewebmaster.at icq at work: 124464652 die webmaster - flötzerweg 156 - 4030 linz - austria phone: +43-732-381242, fax: +43-732-381242-22, isdn (leonardo): +43-732-381242-33 homepage: www.diewebmaster.at, public email: office@diewebmaster.at From owner-freebsd-isp@FreeBSD.ORG Sat Mar 19 00:35:53 2005 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 457E616A4CF for ; Sat, 19 Mar 2005 00:35:53 +0000 (GMT) Received: from mail.nativenerds.com (host-70-0-111-24.midco.net [24.111.0.70]) by mx1.FreeBSD.org (Postfix) with ESMTP id 80B2043D39 for ; Sat, 19 Mar 2005 00:35:52 +0000 (GMT) (envelope-from estover@nativenerds.com) Received: from red (host-14-37-230-24.midco.net [24.230.37.14]) by mail.nativenerds.com (8.12.11/8.12.11) with ESMTP id j2J0jx0w008757 for ; Fri, 18 Mar 2005 17:46:00 -0700 (MST) (envelope-from estover@nativenerds.com) From: Ed Stover To: freebsd-isp@freebsd.org Content-Type: text/plain Organization: Native Nerds Date: Fri, 18 Mar 2005 17:35:52 -0700 Message-Id: <1111192552.1768.15.camel@red.nativenerds.com> Mime-Version: 1.0 X-Mailer: Evolution 2.0.3 FreeBSD GNOME Team Port Content-Transfer-Encoding: 7bit X-Spam-Status: No, hits=0.0 required=5.0 tests=none autolearn=no version=2.63 X-Spam-Checker-Version: SpamAssassin 2.63 (2004-01-11) on mail.nativenerds.com Subject: A quick question X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list Reply-To: estover@nativenerds.com List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 19 Mar 2005 00:35:53 -0000 I am in the process of designing a server to be used as a "pop toaster" type deal. Basically, I have experience with sendmail and imap-uw but knowing the limitations of that combination I am wondering what you FreeBSD-ISP guys & gals use as your combinations on your high traffic environments. Also, what is your opinion on using OpenLDAP vs FreeBSD's built in NIS infrastructure in combination with those other your MTA MDA set ups. Although with a some research on the net I have found that ISPs and other large organization are drifting toward qmail. If you use qmail +NIS or LDAP what was your experience like when replacing sendmail with qmail on FreeBSD? Any response with be greatly appreciated. PS Any ideas on filtering inappropriate content from emails aside from procmail? From owner-freebsd-isp@FreeBSD.ORG Sat Mar 19 00:48:20 2005 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 9AEF816A4CE for ; Sat, 19 Mar 2005 00:48:20 +0000 (GMT) Received: from beer.ux6.net (beer.ux6.net [64.62.253.29]) by mx1.FreeBSD.org (Postfix) with ESMTP id 5E72843D48 for ; Sat, 19 Mar 2005 00:48:20 +0000 (GMT) (envelope-from miha@ghuug.org) Received: from [64.62.253.84] (helo=m) by beer.ux6.net with esmtpa (Exim 4.44 (FreeBSD)) id 1DCS8U-000Nup-J8; Fri, 18 Mar 2005 16:48:15 -0800 From: "Mikhail P." To: freebsd-isp@freebsd.org, estover@nativenerds.com Date: Sat, 19 Mar 2005 00:48:00 +0000 User-Agent: KMail/1.7.2 References: <1111192552.1768.15.camel@red.nativenerds.com> In-Reply-To: <1111192552.1768.15.camel@red.nativenerds.com> Organization: Ghana Unix Users Group MIME-Version: 1.0 Content-Type: text/plain; charset="windows-1251" Content-Transfer-Encoding: 7bit Content-Disposition: inline Message-Id: <200503190048.00790.miha@ghuug.org> X-Spam-Score: -5.9 (-----) X-Spam-Report: Spam detection software, running on the system "beer.ux6.net", hasmessagelabel similar future email. If you have any questions, see the administrator of that system for details.I>> knowing the limitations of that combination I am wondering what you > >FreeBSD'sMTA MDA > set ups. Although with a some research on the net I have found If you use qmail > +NIS or LDAP what was your experience like when replacing sendmail with > qmail on FreeBSD? Any response with be greatly appreciated. > > PS Any ideas on filtering inappropriate content from emails aside from > procmail? [...] Content analysis details: (-5.9 points, 6.0 required) pts rule name description -------------------------------------------------- -3.3 ALL_TRUSTED Did not pass through any untrusted hosts 1% [score: 0.0000] Subject: Re: A quick question X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list Reply-To: miha@ghuug.org List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 19 Mar 2005 00:48:20 -0000 On Saturday 19 March 2005 00:35, Ed Stover wrote: > I am in the process of designing a server to be used as a "pop toaster" > type deal. Basically, I have experience with sendmail and imap-uw but > knowing the limitations of that combination I am wondering what you > FreeBSD-ISP guys & gals use as your combinations on your high traffic > environments. Also, what is your opinion on using OpenLDAP vs FreeBSD's > built in NIS infrastructure in combination with those other your MTA MDA > set ups. Although with a some research on the net I have found that ISPs > and other large organization are drifting toward qmail. If you use qmail > +NIS or LDAP what was your experience like when replacing sendmail with > qmail on FreeBSD? Any response with be greatly appreciated. > > PS Any ideas on filtering inappropriate content from emails aside from > procmail? We used qmail + vpopmail + MySQL setup in the past, but switched to Exim + MySQL setup about a year ago. Current setup consists of classic Exim + Courier (pop[s]/imap[s]) + MySQL + ClamAV + SpamAssassin combo. Exim and Courier-Imap both use MySQL. Exim integrates very well and easily with SpamAssassin and ClamAV for filtering purposes. regards, M. From owner-freebsd-isp@FreeBSD.ORG Sat Mar 19 01:43:03 2005 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id A6C1816A4CE for ; Sat, 19 Mar 2005 01:43:03 +0000 (GMT) Received: from conversation.bsdunix.ch (unixsecurity.ch [82.220.17.18]) by mx1.FreeBSD.org (Postfix) with ESMTP id 5F60C43D2F for ; Sat, 19 Mar 2005 01:43:01 +0000 (GMT) (envelope-from freebsdlists@bsdunix.ch) Received: from [192.168.0.14] ([192.168.0.14])j2J1hxcC057771 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Sat, 19 Mar 2005 02:44:00 +0100 (CET) (envelope-from freebsdlists@bsdunix.ch) Message-ID: <423B83AA.8030109@bsdunix.ch> Date: Sat, 19 Mar 2005 02:43:06 +0100 From: Thomas Vogt User-Agent: Mozilla Thunderbird 1.0 (Windows/20041206) X-Accept-Language: en-us, en MIME-Version: 1.0 To: estover@nativenerds.com References: <1111192552.1768.15.camel@red.nativenerds.com> In-Reply-To: <1111192552.1768.15.camel@red.nativenerds.com> X-Enigmail-Version: 0.89.6.0 X-Enigmail-Supports: pgp-inline, pgp-mime Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit X-Spam-Status: No, score=-5.1 required=5.0 tests=ALL_TRUSTED,BAYES_00, NO_RDNS2,SARE_FROM_SPAM_WORD3 autolearn=ham version=3.0.2 X-Spam-Checker-Version: SpamAssassin 3.0.2 (2004-11-16) on conversation.bsdunix.ch cc: freebsd-isp@freebsd.org Subject: Re: A quick question X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 19 Mar 2005 01:43:03 -0000 Hi We use Postfix, cyrus-imapd, openldap, clamd and spamassassin and freebsd 4.x. Cyrus-imapd handles ~20k accounts on each machine. All 3 machines also doing spam an virus checks. With an average of ~1.5 mio emails a weeks, most of the time all machines are idle (intel p3 smp machines) Regards Thomas Vogt Ed Stover wrote: > I am in the process of designing a server to be used as a "pop toaster" > type deal. Basically, I have experience with sendmail and imap-uw but > knowing the limitations of that combination I am wondering what you > FreeBSD-ISP guys & gals use as your combinations on your high traffic > environments. Also, what is your opinion on using OpenLDAP vs FreeBSD's > built in NIS infrastructure in combination with those other your MTA MDA > set ups. Although with a some research on the net I have found that ISPs > and other large organization are drifting toward qmail. If you use qmail > +NIS or LDAP what was your experience like when replacing sendmail with > qmail on FreeBSD? Any response with be greatly appreciated. > > PS Any ideas on filtering inappropriate content from emails aside from > procmail? > > _______________________________________________ > freebsd-isp@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-isp > To unsubscribe, send any mail to "freebsd-isp-unsubscribe@freebsd.org" From owner-freebsd-isp@FreeBSD.ORG Sat Mar 19 02:18:51 2005 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id B762916A4CE for ; Sat, 19 Mar 2005 02:18:51 +0000 (GMT) Received: from mail.yazzy.org (mail.yazzy.org [217.8.140.16]) by mx1.FreeBSD.org (Postfix) with ESMTP id 3F39C43D31 for ; Sat, 19 Mar 2005 02:18:49 +0000 (GMT) (envelope-from lists@yazzy.org) Received: from yazzy.yazzy.org (yazzy.yazzy.org [192.168.98.11]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by mail.yazzy.org (Postfix) with ESMTP id E90F53986D; Sat, 19 Mar 2005 03:20:25 +0100 (CET) Date: Sat, 19 Mar 2005 02:18:44 +0000 From: Marcin Jessa To: miha@ghuug.org Message-Id: <20050319021844.63b05a82.lists@yazzy.org> In-Reply-To: <200503190048.00790.miha@ghuug.org> References: <1111192552.1768.15.camel@red.nativenerds.com> <200503190048.00790.miha@ghuug.org> Organization: YazzY.org X-Mailer: Sylpheed version 1.0.0 (GTK+ 1.2.10; i686-pc-linux-gnu) Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit cc: freebsd-isp@freebsd.org cc: estover@nativenerds.com Subject: Re: A quick question X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 19 Mar 2005 02:18:51 -0000 On Sat, 19 Mar 2005 00:48:00 +0000 "Mikhail P." wrote: > Exim integrates very well and easily with SpamAssassin and ClamAV for > filtering purposes. Not to mention Exim has excellent ACL's. You can do virtually everything with Exim. Qmail needs tons of incompatible patches to be able to do the same thing. I have migrated to Exim as well after I tested numerous MTA's and SMTP proxies. Postfix is another powerful MTA but not as flexible and well integrated with clamd and spamassassin as Exim. Regards, Marcin Jessa www.yazzy.org From owner-freebsd-isp@FreeBSD.ORG Sat Mar 19 04:58:56 2005 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 10BC816A4CE for ; Sat, 19 Mar 2005 04:58:56 +0000 (GMT) Received: from virusproxy2.wilkshire.net (virusproxy2.wilkshire.net [12.111.120.22]) by mx1.FreeBSD.org (Postfix) with SMTP id 410E643D41 for ; Sat, 19 Mar 2005 04:58:55 +0000 (GMT) (envelope-from cody@wilkshire.net) Received: (qmail 67490 invoked by uid 5020); 19 Mar 2005 08:06:57 -0000 Received: from 12.111.120.20 by virusproxy2.wilkshire.net (envelope-from , uid 5013) with qmail-scanner-1.24 (clamdscan: 0.75.1. Clear:RC:1(12.111.120.20):. Processed in 0.080513 secs); 19 Mar 2005 08:06:57 -0000 Received: from mail.wilkshire.net (12.111.120.20) by virusproxy2.wilkshire.net with SMTP; 19 Mar 2005 08:06:56 -0000 Received: (qmail 15135 invoked by uid 0); 19 Mar 2005 04:55:47 -0000 Received: from unknown (HELO ?10.200.213.140?) (cody@143.206.249.254) by mail.wilkshire.net with (DHE-RSA-AES256-SHA encrypted) SMTP; 19 Mar 2005 04:55:47 -0000 Message-ID: <423BB16D.9090303@wilkshire.net> Date: Fri, 18 Mar 2005 23:58:21 -0500 From: Cody Baker User-Agent: Mozilla Thunderbird 1.0 (Windows/20041206) X-Accept-Language: en-us, en MIME-Version: 1.0 To: estover@nativenerds.com, freebsd-isp@freebsd.org References: <1111192552.1768.15.camel@red.nativenerds.com> In-Reply-To: <1111192552.1768.15.camel@red.nativenerds.com> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Subject: Re: A quick question X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 19 Mar 2005 04:58:56 -0000 We're using a setup with net-qmail, qmail-scanner, clamd, spamassassin, vpopmail/mysql, courier-imap, and some home brew message processing. We've been using qmail for almost 5 years now, and could feasibly use it for another 5+ without looking back. The 2 beauties of qmail are its configurablity and its reliability. Qmail is divided in to nearly 20 separate small special purpose programs. The advantage to this system is that messages can be directed through qmail in almost unlimited ways. For example, our virus scanning boxen use the "smtproutes" configuration to proxy clean mail to our storage server rather than attempt to deliver it local users on that box. On that main mail server we modify the default delivery configuration to insert our homebrew spam sorting script before delivery. The reliability of qmail is unmatched. Many people are kind of confused by the lack of qmail updates. The latest release, 1.03 was put out in the mid 90s. Quite simply there aren't bugs or exploits in qmail so why bother releasing newer versions. The only maintenance we really need to do for our servers is related to other packages. We spend about an hour a month doing a makeworld on all of our mail machines, and portupgrading for courier-imap, mysql, spam assassin, and clamscan. The only real down time is the reboot for the make world, and the time during a mysql update where the database is offline. The other dimension of qmail's reliability is it's toughness. We push about a million messages per day through qmail without it flinching, but that should be expected of any MTA. What I really like about qmail is that it's reasonably forgiving. A messages life time in qmail is essentially divided in to two portions. The first of these portions is during its arrival. Only once a message has fully arrived and has been written successfully in to the queue will qmail-smtpd mark the message as being accepted. Once the message is in the queue it is processed for delivery. If the message is bound for a local user, qmail-local reads the message from the queue and attempts to delivery it. If it's unsuccessful, for example the user database was down, it marks a temporary failure and instructs qmail to try again in a few minutes. Only after the message is successfully in the users Maildir is the message removed from the queue. This queue system guarantees that no mail will EVER be lost. Last week we updated our mail storage/pop/imap server to a SATA RAID setup. Our virusproxying servers mentioned above queued nearly 300,000 messages while the master server was down. As soon as their destination on the master server was available the messages were delivered and removed from the queue. We were able to pull a central server out of operation for 6 hours without losing a single message. The one issue commonly mentioned with qmail is the patching process. This is problem is largely obsolete with the advent of net-qmail. Net-qmail is essentially stock qmail, patched with a few blessed additions. By itself qmail has pretty much everything you could need, there are a few patches for example to add SMTP-AUTH or TLS support. Simply apply the patch and wallah features. At the same time, if you don't need TLS support, then why incorporate it in your MTA. As for setting it up with NIS or LDAP, vpopmail and courier-imap offer an LDAP authentication module. That should be all you need. We use a mysql backend for vpopmail and courier-imap, but essentially all of the AuthDB stuff is hidden behind vpopmail and courier-imap. Qmail's support for authentication comes through checkpassword programs. This is where vpopmail's vchkpw fits in. Therefore, your authentication DB is essentially abstracted behind vpopmail. Thank You, Cody Baker cody@wilkshire.net http://www.wilkshire.net Ed Stover wrote: >I am in the process of designing a server to be used as a "pop toaster" >type deal. Basically, I have experience with sendmail and imap-uw but >knowing the limitations of that combination I am wondering what you >FreeBSD-ISP guys & gals use as your combinations on your high traffic >environments. Also, what is your opinion on using OpenLDAP vs FreeBSD's >built in NIS infrastructure in combination with those other your MTA MDA >set ups. Although with a some research on the net I have found that ISPs >and other large organization are drifting toward qmail. If you use qmail >+NIS or LDAP what was your experience like when replacing sendmail with >qmail on FreeBSD? Any response with be greatly appreciated. > >PS Any ideas on filtering inappropriate content from emails aside from >procmail? > >_______________________________________________ >freebsd-isp@freebsd.org mailing list >http://lists.freebsd.org/mailman/listinfo/freebsd-isp >To unsubscribe, send any mail to "freebsd-isp-unsubscribe@freebsd.org" > > From owner-freebsd-isp@FreeBSD.ORG Sat Mar 19 07:53:36 2005 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 7AEBC16A4CE for ; Sat, 19 Mar 2005 07:53:36 +0000 (GMT) Received: from mail.nativenerds.com (host-70-0-111-24.midco.net [24.111.0.70]) by mx1.FreeBSD.org (Postfix) with ESMTP id C03B443D3F for ; Sat, 19 Mar 2005 07:53:35 +0000 (GMT) (envelope-from estover@nativenerds.com) Received: from red (host-14-37-230-24.midco.net [24.230.37.14]) by mail.nativenerds.com (8.12.11/8.12.11) with ESMTP id j2J83jCd010137 for ; Sat, 19 Mar 2005 01:03:46 -0700 (MST) (envelope-from estover@nativenerds.com) From: Ed Stover To: freebsd-isp@freebsd.org In-Reply-To: <1111192552.1768.15.camel@red.nativenerds.com> References: <1111192552.1768.15.camel@red.nativenerds.com> Content-Type: text/plain Organization: Native Nerds Date: Sat, 19 Mar 2005 00:53:36 -0700 Message-Id: <1111218816.991.3.camel@red.nativenerds.com> Mime-Version: 1.0 X-Mailer: Evolution 2.0.3 FreeBSD GNOME Team Port Content-Transfer-Encoding: 7bit X-Spam-Status: No, hits=0.0 required=5.0 tests=none autolearn=no version=2.63 X-Spam-Checker-Version: SpamAssassin 2.63 (2004-01-11) on mail.nativenerds.com Subject: Re: A quick question X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list Reply-To: estover@nativenerds.com List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 19 Mar 2005 07:53:36 -0000 Thanks for the replys! FreeBSD communities are by far the best! On Fri, 2005-03-18 at 17:35 -0700, Ed Stover wrote: > I am in the process of designing a server to be used as a "pop toaster" > type deal. Basically, I have experience with sendmail and imap-uw but > knowing the limitations of that combination I am wondering what you > FreeBSD-ISP guys & gals use as your combinations on your high traffic > environments. Also, what is your opinion on using OpenLDAP vs FreeBSD's > built in NIS infrastructure in combination with those other your MTA MDA > set ups. Although with a some research on the net I have found that ISPs > and other large organization are drifting toward qmail. If you use qmail > +NIS or LDAP what was your experience like when replacing sendmail with > qmail on FreeBSD? Any response with be greatly appreciated. > > PS Any ideas on filtering inappropriate content from emails aside from > procmail? > > _______________________________________________ > freebsd-isp@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-isp > To unsubscribe, send any mail to "freebsd-isp-unsubscribe@freebsd.org" From owner-freebsd-isp@FreeBSD.ORG Sat Mar 19 08:23:49 2005 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 07E5016A4CE for ; Sat, 19 Mar 2005 08:23:49 +0000 (GMT) Received: from zoot.lafn.org (zoot.lafn.ORG [206.117.18.6]) by mx1.FreeBSD.org (Postfix) with ESMTP id 8958643D39 for ; Sat, 19 Mar 2005 08:23:48 +0000 (GMT) (envelope-from bc979@lafn.org) Received: from [10.0.1.4] ([4.28.157.47]) (authenticated bits=0) by zoot.lafn.org (8.13.1/8.13.1) with ESMTP id j2J8Nk26018907 (version=TLSv1/SSLv3 cipher=RC4-SHA bits=128 verify=NO) for ; Sat, 19 Mar 2005 00:23:47 -0800 (PST) (envelope-from bc979@lafn.org) Mime-Version: 1.0 (Apple Message framework v619.2) In-Reply-To: <423AB25E.3000909@diewebmaster.at> References: <423AB25E.3000909@diewebmaster.at> Content-Type: text/plain; charset=US-ASCII; format=flowed Message-Id: Content-Transfer-Encoding: 7bit From: Doug Hardie Date: Sat, 19 Mar 2005 00:23:45 -0800 To: freebsd-isp@freebsd.org X-Mailer: Apple Mail (2.619.2) X-Virus-Scanned: ClamAV version 0.82, clamav-milter version 0.82 on zoot.lafn.org X-Virus-Status: Clean Subject: Re: dspam data sizes X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 19 Mar 2005 08:23:49 -0000 On Mar 18, 2005, at 02:50, Christian Damm wrote: > > this was discussed in detail (several times) on the dspam mailing list > - search the archives: > 'http://dspam.nuclearelephant.com/search.shtml'. > > you can extremely cut down your db size using different > methods...which training method you are currently using? - once dspam > is "mature" enough (training wise) it is (for example) a good idea to > switch to TOE mode (train on error) if your user base is large - your > db shrinks and the performance gain is big. > > Doug Hardie schrieb: >> After seeing the recommendations here I am testing dspam. I >> currently have 2 users testing it. They are at both extreme ends of >> mail demands. My account gets about 1000 emails a day of which about >> 25-30% are spam. The other account gets about 100 emails a day of >> which about 90% are spam. So far, dspam is quarantining about 1/3rd >> of the spam I receive. Is basically the same as Apple's mail >> filtering. My mail is being sent to both. However, the storage of >> the data used by dspam is a bit overwhealming. The storage is at 250 >> MB for me and 20 MB for the other account. I have cut way down the >> purge retention intervals which appears to help somewhat but not >> enough. I have thousands of users and at 250 MB per user (it would >> probably be a bit below that) its just not practical. How do other >> users of dspam deal with this issue? Is there some setting I have >> wrong (or at least not set most efficently)? Thanks. I dug through the archives and it appears the recommend approach is to use BDB4 as the backend with TOE mode, chained disabled, and frequent dspam_clean -p0, and -s0 purges. My current setup is: sqlite backend TOE mode nightly purges using the provided script but with the days reduced to 3. Will have about 3K users when in production chained has been disabled I believe all other settings are default except that I have to use Home directories for the data storage. From owner-freebsd-isp@FreeBSD.ORG Sat Mar 19 09:28:41 2005 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 9B98916A4CE for ; Sat, 19 Mar 2005 09:28:41 +0000 (GMT) Received: from materva.diewebmaster.at (materva.diewebmaster.at [80.66.42.216]) by mx1.FreeBSD.org (Postfix) with ESMTP id E096F43D60 for ; Sat, 19 Mar 2005 09:28:40 +0000 (GMT) (envelope-from christian.damm@diewebmaster.at) Received: from localhost (localhost.diewebmaster.at [127.0.0.1]) by materva.diewebmaster.at (Postfix) with ESMTP id B0C0D218073; Sat, 19 Mar 2005 10:28:39 +0100 (CET) Received: from materva.diewebmaster.at ([127.0.0.1]) by localhost (materva.diewebmaster.at [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 91938-10; Sat, 19 Mar 2005 10:28:39 +0100 (CET) Received: from [192.168.1.11] (unknown [80.66.40.101]) by materva.diewebmaster.at (Postfix) with ESMTP id B586D218052; Sat, 19 Mar 2005 10:28:38 +0100 (CET) Message-ID: <423BF0C4.7010009@diewebmaster.at> Date: Sat, 19 Mar 2005 10:28:36 +0100 From: Christian Damm Organization: Die Webmaster User-Agent: Mozilla Thunderbird 0.9 (Windows/20041103) X-Accept-Language: de-DE, de, en-us, en MIME-Version: 1.0 To: Doug Hardie References: <423AB25E.3000909@diewebmaster.at> In-Reply-To: Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 8bit X-Virus-Scanned: by amavisd-new at diewebmaster.at cc: freebsd-isp@freebsd.org Subject: Re: dspam data sizes X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 19 Mar 2005 09:28:41 -0000 Doug Hardie schrieb: > > On Mar 18, 2005, at 02:50, Christian Damm wrote: > >> >> this was discussed in detail (several times) on the dspam mailing list >> - search the archives: 'http://dspam.nuclearelephant.com/search.shtml'. >> >> you can extremely cut down your db size using different >> methods...which training method you are currently using? - once dspam >> is "mature" enough (training wise) it is (for example) a good idea to >> switch to TOE mode (train on error) if your user base is large - your >> db shrinks and the performance gain is big. >> >> Doug Hardie schrieb: >> >>> After seeing the recommendations here I am testing dspam. I >>> currently have 2 users testing it. They are at both extreme ends of >>> mail demands. My account gets about 1000 emails a day of which about >>> 25-30% are spam. The other account gets about 100 emails a day of >>> which about 90% are spam. So far, dspam is quarantining about 1/3rd >>> of the spam I receive. Is basically the same as Apple's mail >>> filtering. My mail is being sent to both. However, the storage of >>> the data used by dspam is a bit overwhealming. The storage is at 250 >>> MB for me and 20 MB for the other account. I have cut way down the >>> purge retention intervals which appears to help somewhat but not >>> enough. I have thousands of users and at 250 MB per user (it would >>> probably be a bit below that) its just not practical. How do other >>> users of dspam deal with this issue? Is there some setting I have >>> wrong (or at least not set most efficently)? > > > Thanks. I dug through the archives and it appears the recommend > approach is to use BDB4 as the backend with TOE mode, chained disabled, > and frequent dspam_clean -p0, and -s0 purges. My current setup is: from what i have seen/heard in the past: stay away from BDB - regarding dspam its really unreliable! dont know much about dspam`s quite new sqlite support, the postgresql support seems to have improved too...anyway, mysql is for sure the best choice if you wanna stay out of trouble. > > sqlite backend > TOE mode > nightly purges using the provided script but with the days reduced to 3. > Will have about 3K users when in production > chained has been disabled > I believe all other settings are default except that I have to use Home > directories for the data storage. sounds ok > > _______________________________________________ > freebsd-isp@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-isp > To unsubscribe, send any mail to "freebsd-isp-unsubscribe@freebsd.org" > > !DSPAM:423be1a7903811228318292! > -- mfg. christian damm technische leitung phone: dw 42 email: christian.damm@diewebmaster.at icq at work: 124464652 die webmaster - flötzerweg 156 - 4030 linz - austria phone: +43-732-381242 fax: +43-732-381242-22 isdn (leonardo): +43-732-381242-33 homepage: www.diewebmaster.at, public email: office@diewebmaster.at -----BEGIN PGP PUBLIC KEY BLOCK----- Version: PGPfreeware 7.0.3 for non-commercial use mQGiBD6BdjoRBAD6ZEPqO2y3jbudyWuMfj+84mOAOFa13d+bHjNsx5M3IXl0KDjL LJZe7mO4aVX5Uo6zWskuVztXk4EdvIt96XkPweazYX7SN3w41QD6/lHGkQr5PO/b Qp/G2KLFLQXjXUJibXMbNK8j4RtSHPFwJAXVVVO2uigsCnanMbr5KXqQmQCg/w/q srHviHQuJXcfpTKB4ys2xnsEAOkLTDwQ5Z5SjRoAkxJywneOyG11uRqvlBaBNjyx 5mb0T+zh5ed0jmu1a91F5VRrXzAKyWfA4jc1/jpYpHpDW72bk8eF/WltxQ5LMfaJ nqPcNEukMkm/lGCfk+Prtktz9/MoRnhxHreEasEqhYILlPFjG0Tg4yd618TPuRdf qkR4A/0VCGzBPK289npn1ssIiNntOd0Dtu8UnbZGx4uPOP3jJP8awNH/XpV4Q8VZ ePoZnjamYjPGDPIiBtLI60Wx7z4tDXlqKSUy7GkddGw0dGnNyiiHu/ESjd2cYX8y /WkRnWyHcBRb4aEe4vYAt2PwP3Iemt9VMoPXJRQU6e6BkUzsbLQvQ2hyaXN0aWFu IERhbW0gPGNocmlzdGlhbi5kYW1tQGRpZXdlYm1hc3Rlci5hdD6JAFgEEBECABgF Aj6BdjoICwMJCAcCAQoCGQEFGwMAAAAACgkQjWTAFtIJONrURgCfWAdk77WMgOIL GAkzXJGUghdSufUAn2BNvaFF8f4SnqyVAX6MSCeZFQsouQINBD6BdjoQCAD2Qle3 CH8IF3KiutapQvMF6PlTETlPtvFuuUs4INoBp1ajFOmPQFXz0AfGy0OplK33TGSG SfgMg71l6RfUodNQ+PVZX9x2Uk89PY3bzpnhV5JZzf24rnRPxfx2vIPFRzBhznzJ Zv8V+bv9kV7HAarTW56NoKVyOtQa8L9GAFgr5fSI/VhOSdvNILSd5JEHNmszbDgN RR0PfIizHHxbLY7288kjwEPwpVsYjY67VYy4XTjTNP18F1dDox0YbN4zISy1Kv88 4bEpQBgRjXyEpwpy1obEAxnIByl6ypUM2Zafq9AKUJsCRtMIPWakXUGfnHy9iUsi GSa6q6Jew1XpMgs7AAICCADV9CD8D0TdkGRs7bKIzh8pc7uWAprhqLF6B/KdVo+k URDNWLVzpuR1ZVu612xLK/a7Q875P2DTdAuc1eBc0/5Q/jXH6pzo/lDmNbrFvJtu p+GRGyC3hJF25TBDRNhKfIQYT+9pm6sOyLw+mh+ruHKi+PEwvTQK/gPHr5GAGKor 0EmYdfIGm2t1kFSifCm+/1jeITtQedDAlcN8ESBY+b+gONa1H/7LdPrWHVUPUs9k WDwHFvTh8u28ixCcRaiT2wOkk7n+a2NPIe8LIznlbgwB8GK/7axIEXOBd0XyCyft pJxYDZ4kxtRAD6CnpqswCzSaGJmllGwFD4QyWKKIFgCwiQBMBBgRAgAMBQI+gXY6 BRsMAAAAAAoJEI1kwBbSCTjaiC8AoKfArhjrTMto6hm7gQFc7hh+9W6RAKDqZloe VR7EixSKaBhw5bZ5WUYM0Q== =l3K/ -----END PGP PUBLIC KEY BLOCK----- From owner-freebsd-isp@FreeBSD.ORG Sat Mar 19 11:08:10 2005 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 057E116A4CE for ; Sat, 19 Mar 2005 11:08:10 +0000 (GMT) Received: from rproxy.gmail.com (rproxy.gmail.com [64.233.170.196]) by mx1.FreeBSD.org (Postfix) with ESMTP id 5E83143D5A for ; Sat, 19 Mar 2005 11:08:09 +0000 (GMT) (envelope-from vladgalu@gmail.com) Received: by rproxy.gmail.com with SMTP id c16so370637rne for ; Sat, 19 Mar 2005 03:08:09 -0800 (PST) DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=beta; d=gmail.com; h=received:message-id:date:from:reply-to:to:subject:cc:in-reply-to:mime-version:content-type:content-transfer-encoding:references; b=fXpJI8gTiKJxPjbeHaHGZyuZO/r0r41KvGfbsp0Re5ibXgSVtxOij6gZmsKxnBFQCjgbcTmhARJIif1LWq7xIUJamOVF2WSPIGpx0knG7nMjumuEeFgRrQl5xKI7rZmCviGNNnxJVi6Pp2p4uZO/nrhdfZFITS5T7YEreTso7+Q= Received: by 10.38.102.12 with SMTP id z12mr3199308rnb; Sat, 19 Mar 2005 03:08:08 -0800 (PST) Received: by 10.38.149.56 with HTTP; Sat, 19 Mar 2005 03:08:08 -0800 (PST) Message-ID: <79722fad0503190308364f84e9@mail.gmail.com> Date: Sat, 19 Mar 2005 13:08:08 +0200 From: Vlad GALU To: Cody Baker In-Reply-To: <423BB16D.9090303@wilkshire.net> Mime-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit References: <1111192552.1768.15.camel@red.nativenerds.com> <423BB16D.9090303@wilkshire.net> cc: freebsd-isp@freebsd.org cc: estover@nativenerds.com Subject: Re: A quick question X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list Reply-To: Vlad GALU List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 19 Mar 2005 11:08:10 -0000 On Fri, 18 Mar 2005 23:58:21 -0500, Cody Baker wrote: > We're using a setup with net-qmail, qmail-scanner, clamd, spamassassin, > vpopmail/mysql, courier-imap, and some home brew message processing. > We've been using qmail for almost 5 years now, and could feasibly use it > for another 5+ without looking back. The 2 beauties of qmail are its > configurablity and its reliability. > > Qmail is divided in to nearly 20 separate small special purpose > programs. The advantage to this system is that messages can be directed > through qmail in almost unlimited ways. For example, our virus scanning > boxen use the "smtproutes" configuration to proxy clean mail to our > storage server rather than attempt to deliver it local users on that > box. On that main mail server we modify the default delivery > configuration to insert our homebrew spam sorting script before delivery. > > The reliability of qmail is unmatched. Many people are kind of confused > by the lack of qmail updates. The latest release, 1.03 was put out in > the mid 90s. Quite simply there aren't bugs or exploits in qmail so why > bother releasing newer versions. The only maintenance we really need to > do for our servers is related to other packages. We spend about an hour > a month doing a makeworld on all of our mail machines, and portupgrading > for courier-imap, mysql, spam assassin, and clamscan. The only real > down time is the reboot for the make world, and the time during a mysql > update where the database is offline. > > The other dimension of qmail's reliability is it's toughness. We push > about a million messages per day through qmail without it flinching, but > that should be expected of any MTA. What I really like about qmail is > that it's reasonably forgiving. A messages life time in qmail is > essentially divided in to two portions. The first of these portions is > during its arrival. Only once a message has fully arrived and has been > written successfully in to the queue will qmail-smtpd mark the message > as being accepted. Once the message is in the queue it is processed for > delivery. If the message is bound for a local user, qmail-local reads > the message from the queue and attempts to delivery it. If it's > unsuccessful, for example the user database was down, it marks a > temporary failure and instructs qmail to try again in a few minutes. > Only after the message is successfully in the users Maildir is the > message removed from the queue. This queue system guarantees that no > mail will EVER be lost. Last week we updated our mail storage/pop/imap > server to a SATA RAID setup. Our virusproxying servers mentioned above > queued nearly 300,000 messages while the master server was down. As > soon as their destination on the master server was available the > messages were delivered and removed from the queue. We were able to > pull a central server out of operation for 6 hours without losing a > single message. > > The one issue commonly mentioned with qmail is the patching process. > This is problem is largely obsolete with the advent of net-qmail. > Net-qmail is essentially stock qmail, patched with a few blessed > additions. By itself qmail has pretty much everything you could need, > there are a few patches for example to add SMTP-AUTH or TLS support. > Simply apply the patch and wallah features. At the same time, if you > don't need TLS support, then why incorporate it in your MTA. > > As for setting it up with NIS or LDAP, vpopmail and courier-imap offer > an LDAP authentication module. That should be all you need. We use a > mysql backend for vpopmail and courier-imap, but essentially all of the > AuthDB stuff is hidden behind vpopmail and courier-imap. Qmail's > support for authentication comes through checkpassword programs. This > is where vpopmail's vchkpw fits in. Therefore, your authentication DB > is essentially abstracted behind vpopmail. > > Thank You, > While you're at it, you might want to try this: http://freshmeat.net/projects/uqmail/ -- If it's there, and you can see it, it's real. If it's not there, and you can see it, it's virtual. If it's there, and you can't see it, it's transparent. If it's not there, and you can't see it, you erased it. From owner-freebsd-isp@FreeBSD.ORG Sat Mar 19 13:14:16 2005 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id EB53916A4CE for ; Sat, 19 Mar 2005 13:14:15 +0000 (GMT) Received: from mail.futratec.com (rrcs-24-73-239-230.se.biz.rr.com [24.73.239.230]) by mx1.FreeBSD.org (Postfix) with ESMTP id 34D9443D2F for ; Sat, 19 Mar 2005 13:14:15 +0000 (GMT) (envelope-from joe@futratec.com) MIME-Version: 1.0 Date: Sat, 19 Mar 2005 07:42:44 -0500 Content-class: urn:content-classes:message X-MimeOLE: Produced By Microsoft Exchange V6.5.6944.0 Message-ID: X-MS-Has-Attach: X-MS-TNEF-Correlator: Thread-Topic: Kernel 12 panics Thread-Index: AcUsgSX01flx+w/BQFak5QPh+RmiNQ== From: "joe" To: Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: quoted-printable X-Content-Filtered-By: Mailman/MimeDel 2.1.1 Subject: Kernel 12 panics X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 19 Mar 2005 13:14:16 -0000 Greetings, =20 Can someone point me into the right direction for help on resolving kernel panic errors. I am looking for a definitive way to identify hardware/software issues with a FreeBSD 5.3 box running cPanel. =20 Cheers From owner-freebsd-isp@FreeBSD.ORG Sat Mar 19 13:14:16 2005 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 8126716A4CE for ; Sat, 19 Mar 2005 13:14:16 +0000 (GMT) Received: from mail.futratec.com (rrcs-24-73-239-230.se.biz.rr.com [24.73.239.230]) by mx1.FreeBSD.org (Postfix) with ESMTP id 32F9C43D2F for ; Sat, 19 Mar 2005 13:14:16 +0000 (GMT) (envelope-from joe@futratec.com) MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: quoted-printable Date: Sat, 19 Mar 2005 07:56:44 -0500 Content-class: urn:content-classes:message X-MimeOLE: Produced By Microsoft Exchange V6.5.6944.0 Message-ID: X-MS-Has-Attach: X-MS-TNEF-Correlator: Thread-Topic: Kernel 12 panics Thread-Index: AcUsgSX01flx+w/BQFak5QPh+RmiNQAAdHyw From: "joe" To: Subject: Kernel 12 panics X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 19 Mar 2005 13:14:16 -0000 =20 Greetings, =20 I am looking for a point me in the right direction for help on resolving kernel panic errors. The goal being a definitive way to identify hardware/software issues with a FreeBSD 5.3 box running cPanel. =20 Cheers From owner-freebsd-isp@FreeBSD.ORG Sat Mar 19 19:41:33 2005 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 120AC16A4CE for ; Sat, 19 Mar 2005 19:41:33 +0000 (GMT) Received: from parmail02.sgcib.com (parmail02.sgcib.com [207.45.250.34]) by mx1.FreeBSD.org (Postfix) with ESMTP id 63B2943D54 for ; Sat, 19 Mar 2005 19:41:32 +0000 (GMT) (envelope-from postmaster.par-msw@sgcib.com) Message-Id: <3ta9hj$4024g@parirp02.sgcib.com> X-IronPort-AV: i="3.91,104,1110150000"; d="scan'208"; a="4196496:sNHT16103064" From: postmaster.par-msw@sgcib.com To: freebsd-isp@freebsd.org Date: Sat, 19 Mar 2005 20:41:31 +0100 (CET) MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Subject: Your mail have been blocked X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 19 Mar 2005 19:41:33 -0000 Your mail have been blocked