From owner-freebsd-isp@FreeBSD.ORG Sun Oct 16 05:04:10 2005 Return-Path: X-Original-To: freebsd-isp@freebsd.org Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 4833B16A41F for ; Sun, 16 Oct 2005 05:04:10 +0000 (GMT) (envelope-from lists@natserv.com) Received: from zoraida.natserv.net (p65-147.acedsl.com [66.114.65.147]) by mx1.FreeBSD.org (Postfix) with ESMTP id EBBF643D46 for ; Sun, 16 Oct 2005 05:04:09 +0000 (GMT) (envelope-from lists@natserv.com) Received: from localhost (localhost.natserv.net [127.0.0.1]) by zoraida.natserv.net (Postfix) with ESMTP id 0A0FF7DA2; Sun, 16 Oct 2005 01:04:09 -0400 (EDT) Date: Sun, 16 Oct 2005 01:04:08 -0400 (EDT) From: Francisco Reyes X-X-Sender: fran@zoraida.natserv.net To: Aaron Glenn In-Reply-To: <18f601940510151547ka3573f8v2f0633010ad2874f@mail.gmail.com> Message-ID: <20051016010251.R90770@zoraida.natserv.net> References: <20051012234337.K63956@zoraida.natserv.net> <57416b300510142221r2c3da329o65d54cb0aa04fc73@mail.gmail.com> <20051015133148.P97899@zoraida.natserv.net> <18f601940510151547ka3573f8v2f0633010ad2874f@mail.gmail.com> MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII; format=flowed Cc: FreeBSD ISP list Subject: Re: Distributed authentication. Which one? X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 16 Oct 2005 05:04:10 -0000 On Sat, 15 Oct 2005, Aaron Glenn wrote: > Exactly. The problem I've always had is, what happens when you can > reach the device, but the device can't reach any KDC (for whatever > reason)? How can one fall back on another authentication method while > maintaining consistant login credentials? Food for thought... I am totally new at distributed authentication, but would think that at least the adminstrator(s), would want to have their id(s) in the local password database. > I would say LDAP, but then I've never used NIS. The general comment I am seeing in archives is that it is not commonly used anymore. From owner-freebsd-isp@FreeBSD.ORG Sun Oct 16 05:34:58 2005 Return-Path: X-Original-To: freebsd-isp@freebsd.org Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 06E7C16A420 for ; Sun, 16 Oct 2005 05:34:58 +0000 (GMT) (envelope-from lists@natserv.com) Received: from zoraida.natserv.net (p65-147.acedsl.com [66.114.65.147]) by mx1.FreeBSD.org (Postfix) with ESMTP id 95F3343D46 for ; Sun, 16 Oct 2005 05:34:57 +0000 (GMT) (envelope-from lists@natserv.com) Received: from localhost (localhost.natserv.net [127.0.0.1]) by zoraida.natserv.net (Postfix) with ESMTP id CF9857DFA for ; Sun, 16 Oct 2005 01:34:56 -0400 (EDT) Date: Sun, 16 Oct 2005 01:34:56 -0400 (EDT) From: Francisco Reyes X-X-Sender: fran@zoraida.natserv.net To: FreeBSD ISP list Message-ID: <20051016012931.J90964@zoraida.natserv.net> MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII; format=flowed Subject: Courier from ports without FAM? or securing FAM. X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 16 Oct 2005 05:34:58 -0000 Got courier working, however it keeps getting built with FAM even though I told the port not to use it. Looking at the makefile I saw .if defined(WITH_FAM) || exists(${LOCALBASE}/lib/libfam.so) CONFIGURE_ENV= CPPFLAGS="-I${LOCALBASE}/include" \ LDFLAGS="${LDFLAGS}" LDFLAGS+= -L${LOCALBASE}/lib LIB_DEPENDS+= fam.0:${PORTSDIR}/devel/fam .endif So I commented them all out.. still built with FAM. :-( Unforntunately I had FAM already installed and it seems the port compiles against it if present.. even after commenting the lines above. If it will be easier to keep it then I would like to secure it. Could not find on the archives what would be the best way to keep FAM/portmaper (which seems is needed for FAM) secure. Anyone familiar with Courier could comment on how usefull is FAM for users? Is it worth the trouble/security risk? From owner-freebsd-isp@FreeBSD.ORG Sun Oct 16 05:47:05 2005 Return-Path: X-Original-To: freebsd-isp@freebsd.org Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 188D616A41F for ; Sun, 16 Oct 2005 05:47:05 +0000 (GMT) (envelope-from lists@natserv.com) Received: from zoraida.natserv.net (p65-147.acedsl.com [66.114.65.147]) by mx1.FreeBSD.org (Postfix) with ESMTP id CE18C43D48 for ; Sun, 16 Oct 2005 05:47:04 +0000 (GMT) (envelope-from lists@natserv.com) Received: from localhost (localhost.natserv.net [127.0.0.1]) by zoraida.natserv.net (Postfix) with ESMTP id 2DCB67DB4 for ; Sun, 16 Oct 2005 01:47:04 -0400 (EDT) Date: Sun, 16 Oct 2005 01:47:04 -0400 (EDT) From: Francisco Reyes X-X-Sender: fran@zoraida.natserv.net To: FreeBSD ISP list Message-ID: <20051016013507.S90964@zoraida.natserv.net> MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII; format=flowed Subject: Alternatives to NFS X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 16 Oct 2005 05:47:05 -0000 What are people using in an ISP environment for directory sharing. I was looking at the AFS FAQ and it sounds interesting. The environment is mail services. From owner-freebsd-isp@FreeBSD.ORG Sun Oct 16 07:49:34 2005 Return-Path: X-Original-To: freebsd-isp@freebsd.org Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 6496216A41F for ; Sun, 16 Oct 2005 07:49:34 +0000 (GMT) (envelope-from lists@natserv.com) Received: from zoraida.natserv.net (p65-147.acedsl.com [66.114.65.147]) by mx1.FreeBSD.org (Postfix) with ESMTP id 22C1043D46 for ; Sun, 16 Oct 2005 07:49:33 +0000 (GMT) (envelope-from lists@natserv.com) Received: from localhost (localhost.natserv.net [127.0.0.1]) by zoraida.natserv.net (Postfix) with ESMTP id 3FB0D7E01 for ; Sun, 16 Oct 2005 03:49:32 -0400 (EDT) Date: Sun, 16 Oct 2005 03:49:31 -0400 (EDT) From: Francisco Reyes X-X-Sender: fran@zoraida.natserv.net To: FreeBSD ISP list Message-ID: <20051016034401.R92427@zoraida.natserv.net> MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII; format=flowed Subject: Postfix+Courier. Where/How to setup user filters? X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 16 Oct 2005 07:49:34 -0000 On a courier+postfix setup how do users get to setup filters for mails to go to specific folders for IMAP? At the client level? As content filter for IMAP and build an interface for the user to create whatever configuration files? From owner-freebsd-isp@FreeBSD.ORG Sun Oct 16 13:05:41 2005 Return-Path: X-Original-To: freebsd-isp@freebsd.org Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 147B716A41F for ; Sun, 16 Oct 2005 13:05:41 +0000 (GMT) (envelope-from discussion-lists@linnet.org) Received: from orb.pobox.com (orb.pobox.com [207.8.226.5]) by mx1.FreeBSD.org (Postfix) with ESMTP id B292C43D4C for ; Sun, 16 Oct 2005 13:05:40 +0000 (GMT) (envelope-from discussion-lists@linnet.org) Received: from orb (localhost [127.0.0.1]) by orb.pobox.com (Postfix) with ESMTP id 799042244; Sun, 16 Oct 2005 09:06:03 -0400 (EDT) Received: from mappit.local.linnet.org (212-74-113-67.static.dsl.as9105.com [212.74.113.67]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by orb.sasl.smtp.pobox.com (Postfix) with ESMTP id 391E587; Sun, 16 Oct 2005 09:06:01 -0400 (EDT) Received: from lists by mappit.local.linnet.org with local (Exim 4.54 (FreeBSD)) id 1ER8Cl-0008se-6y; Sun, 16 Oct 2005 14:05:35 +0100 Date: Sun, 16 Oct 2005 14:05:35 +0100 From: Brian Candler To: Francisco Reyes Message-ID: <20051016130535.GA34124@uk.tiscali.com> References: <20051016012931.J90964@zoraida.natserv.net> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20051016012931.J90964@zoraida.natserv.net> User-Agent: Mutt/1.4.2.1i Cc: FreeBSD ISP list Subject: Re: Courier from ports without FAM? or securing FAM. X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 16 Oct 2005 13:05:41 -0000 On Sun, Oct 16, 2005 at 01:34:56AM -0400, Francisco Reyes wrote: > Got courier working, however it keeps getting built with FAM even though I > told the port not to use it. > > Looking at the makefile I saw > .if defined(WITH_FAM) || exists(${LOCALBASE}/lib/libfam.so) > CONFIGURE_ENV= CPPFLAGS="-I${LOCALBASE}/include" \ > LDFLAGS="${LDFLAGS}" > LDFLAGS+= -L${LOCALBASE}/lib > LIB_DEPENDS+= fam.0:${PORTSDIR}/devel/fam > .endif > > So I commented them all out.. still built with FAM. :-( It will, unless the port people heavily patched courier's configure system. It automatically looks for fam and uses it, and there's no --disable-fam option. I keep asking for this, but MrSam keeps rejecting it. He seems to think FAM is a good idea (despite the number of people who are broken by bad FAM installs) > Unforntunately I had FAM already installed and it seems the port compiles > against it if present.. even after commenting the lines above. Yep. You need to pkg_delete fam before building courier; you can reinstall it afterwards. > Anyone familiar with Courier could comment on how usefull is FAM for > users? Is it worth the trouble/security risk? I've always built on a clean system without FAM, and it works fine; however the vast majority of the userbase was POP3 with only a handful of IMAP users. FAM is only used for IMAP and is supposed to make the IMAP IDLE command more efficient / faster to respond to incoming mail. Regards, Brian. From owner-freebsd-isp@FreeBSD.ORG Sun Oct 16 13:13:32 2005 Return-Path: X-Original-To: freebsd-isp@freebsd.org Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 0307416A41F for ; Sun, 16 Oct 2005 13:13:32 +0000 (GMT) (envelope-from tscrum@aaawebsolution.com) Received: from server1.aaawebsolution.com (server1.aaawebsolution.com [72.3.131.51]) by mx1.FreeBSD.org (Postfix) with ESMTP id 74CDE43D48 for ; Sun, 16 Oct 2005 13:13:31 +0000 (GMT) (envelope-from tscrum@aaawebsolution.com) Received: from wolf (c-67-187-58-171.hsd1.tx.comcast.net [67.187.58.171]) (authenticated bits=0) by server1.aaawebsolution.com (8.12.11/8.12.11) with ESMTP id j9GDEO21036355 for ; Sun, 16 Oct 2005 08:14:28 -0500 (CDT) (envelope-from tscrum@aaawebsolution.com) From: "Thomas S. Crum - AAA Web Solution, Inc." To: Date: Sun, 16 Oct 2005 08:11:50 -0500 Message-ID: <000a01c5d253$2bb2bde0$0601a8c0@wolf> MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook, Build 10.0.6626 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2900.2527 Importance: Normal Subject: Loading permanent ARP entries at boot time X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 16 Oct 2005 13:13:32 -0000 Hi all, I am having a terrible time answering this silly question. I am trying to load arp entries from a file at boot time. I can add the individual permanent arp entries with: arp -S hostname ether_addr But, when I reboot the system the arp entries are lost. I understand that I can load arp entries from a file with: arp -f file.txt file.txt = hostname ether_addr [temp] [pub] But, how can I make arp read this file at boot time? Thank you, -Tom From owner-freebsd-isp@FreeBSD.ORG Sun Oct 16 15:18:07 2005 Return-Path: X-Original-To: freebsd-isp@freebsd.org Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 7B06D16A41F for ; Sun, 16 Oct 2005 15:18:07 +0000 (GMT) (envelope-from tscrum@aaawebsolution.com) Received: from server1.aaawebsolution.com (server1.aaawebsolution.com [72.3.131.51]) by mx1.FreeBSD.org (Postfix) with ESMTP id 247D243D48 for ; Sun, 16 Oct 2005 15:18:07 +0000 (GMT) (envelope-from tscrum@aaawebsolution.com) Received: from wolf (c-67-187-58-171.hsd1.tx.comcast.net [67.187.58.171]) (authenticated bits=0) by server1.aaawebsolution.com (8.12.11/8.12.11) with ESMTP id j9GFIuAO037790; Sun, 16 Oct 2005 10:19:04 -0500 (CDT) (envelope-from tscrum@aaawebsolution.com) From: "Thomas S. Crum - AAA Web Solution, Inc." To: "'Thomas S. Crum - AAA Web Solution, Inc.'" , Date: Sun, 16 Oct 2005 10:16:21 -0500 Message-ID: <001001c5d264$93df3a90$0601a8c0@wolf> MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook, Build 10.0.6626 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2900.2527 In-Reply-To: <000a01c5d253$2bb2bde0$0601a8c0@wolf> Importance: Normal Cc: Subject: RE: Loading permanent ARP entries at boot time X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 16 Oct 2005 15:18:07 -0000 If I am missing an easier way to do this with rc.conf, etc. please let me know. Otherwise, here is the only way I could come up with adding arp entries on boot. HOW TO ADD STATIC ARP ENTRIES ON BOOT // CREATE THE ARP FILE ee /root/ARP_TABLE.txt // ADD THE ARP ENTRIES (Note you must use ips within your subnet. You may remove perm, if needed) 192.168.1.10 00:04:23:bd:c9:44 perm 192.168.1.11 00:04:23:bd:c9:45 perm // CREATE THE STARTUP SCRIPT ee /usr/local/etc/rc.d/arpstatic.sh // ADD THE FOLLOWING TO STARTUP SCRIPT #!/bin/sh arp -f /root/ARP_TABLE.txt // CHMOD THE NEW STARTUP SCRIPT chmod 555 /usr/local/etc/rc.d/arpstatic.sh // Will now load arp entries on boot -Tom > -----Original Message----- > From: owner-freebsd-isp@freebsd.org > [mailto:owner-freebsd-isp@freebsd.org] On Behalf Of Thomas S. > Crum - AAA Web Solution, Inc. > Sent: Sunday, October 16, 2005 8:12 AM > To: freebsd-isp@freebsd.org > Subject: Loading permanent ARP entries at boot time > > > Hi all, > > I am having a terrible time answering this silly question. > > I am trying to load arp entries from a file at boot time. > > I can add the individual permanent arp entries with: > arp -S hostname ether_addr > > But, when I reboot the system the arp entries are lost. > > I understand that I can load arp entries from a file with: > > arp -f file.txt > > file.txt = hostname ether_addr [temp] [pub] > > But, how can I make arp read this file at boot time? > > Thank you, > > -Tom > > > _______________________________________________ > freebsd-isp@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-isp > To unsubscribe, send any mail to "freebsd-isp-unsubscribe@freebsd.org" > > From owner-freebsd-isp@FreeBSD.ORG Mon Oct 17 07:14:23 2005 Return-Path: X-Original-To: freebsd-isp@freebsd.org Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 891C416A41F for ; Mon, 17 Oct 2005 07:14:23 +0000 (GMT) (envelope-from lists@servingpeace.com) Received: from smtp.servingpeace.com (servingpeace.com [69.55.225.16]) by mx1.FreeBSD.org (Postfix) with ESMTP id 4EFE143D49 for ; Mon, 17 Oct 2005 07:14:23 +0000 (GMT) (envelope-from lists@servingpeace.com) Received: from [10.0.0.30] (adsl-68-125-128-4.dsl.pltn13.pacbell.net [68.125.128.4]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by smtp.servingpeace.com (Postfix) with ESMTP id D969BBA224; Mon, 17 Oct 2005 00:14:22 -0700 (PDT) Message-ID: <43534F4B.1010205@servingpeace.com> Date: Mon, 17 Oct 2005 00:14:19 -0700 From: Sam Nilsson User-Agent: Thunderbird 1.4.1 (Macintosh/20051006) MIME-Version: 1.0 To: Francisco Reyes References: <20051016034401.R92427@zoraida.natserv.net> In-Reply-To: <20051016034401.R92427@zoraida.natserv.net> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Cc: FreeBSD ISP list Subject: Re: Postfix+Courier. Where/How to setup user filters? X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 17 Oct 2005 07:14:23 -0000 Francisco Reyes wrote: > On a courier+postfix setup how do users get to setup filters for mails > to go to specific folders for IMAP? > > At the client level? Yes. > As content filter for IMAP and build an interface for the user to create > whatever configuration files? You can use the Maildrop delivery agent (supplied with courier) instead of postfix's virtual delivery agent. Maildrop has all kinds of delivery options. These and other tricks can be found in the postfix-users list archives. - Sam Nilsson From owner-freebsd-isp@FreeBSD.ORG Mon Oct 17 12:18:11 2005 Return-Path: X-Original-To: freebsd-isp@freebsd.org Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 9051416A41F for ; Mon, 17 Oct 2005 12:18:11 +0000 (GMT) (envelope-from discussion-lists@linnet.org) Received: from orb.pobox.com (orb.pobox.com [207.8.226.5]) by mx1.FreeBSD.org (Postfix) with ESMTP id 3BEBD43D46 for ; Mon, 17 Oct 2005 12:18:11 +0000 (GMT) (envelope-from discussion-lists@linnet.org) Received: from orb (localhost [127.0.0.1]) by orb.pobox.com (Postfix) with ESMTP id 5CDE622CF; Mon, 17 Oct 2005 08:18:34 -0400 (EDT) Received: from mappit.local.linnet.org (212-74-113-67.static.dsl.as9105.com [212.74.113.67]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by orb.sasl.smtp.pobox.com (Postfix) with ESMTP id 2BFEF89; Mon, 17 Oct 2005 08:18:32 -0400 (EDT) Received: from lists by mappit.local.linnet.org with local (Exim 4.54 (FreeBSD)) id 1ERTwN-0000Nx-F8; Mon, 17 Oct 2005 13:18:07 +0100 Date: Mon, 17 Oct 2005 13:18:07 +0100 From: Brian Candler To: "Thomas S. Crum - AAA Web Solution, Inc." Message-ID: <20051017121807.GA1386@uk.tiscali.com> References: <000a01c5d253$2bb2bde0$0601a8c0@wolf> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <000a01c5d253$2bb2bde0$0601a8c0@wolf> User-Agent: Mutt/1.4.2.1i Cc: freebsd-isp@freebsd.org Subject: Re: Loading permanent ARP entries at boot time X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 17 Oct 2005 12:18:11 -0000 On Sun, Oct 16, 2005 at 08:11:50AM -0500, Thomas S. Crum - AAA Web Solution, Inc. wrote: > I am trying to load arp entries from a file at boot time. > > I can add the individual permanent arp entries with: > arp -S hostname ether_addr > > But, when I reboot the system the arp entries are lost. Put your commands in /etc/rc.local From owner-freebsd-isp@FreeBSD.ORG Mon Oct 17 20:33:55 2005 Return-Path: X-Original-To: freebsd-isp@freebsd.org Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id A938E16A41F for ; Mon, 17 Oct 2005 20:33:55 +0000 (GMT) (envelope-from tillman@seekingfire.com) Received: from mail.seekingfire.com (caliban.seekingfire.com [24.72.123.45]) by mx1.FreeBSD.org (Postfix) with ESMTP id CFCBF43D55 for ; Mon, 17 Oct 2005 20:33:54 +0000 (GMT) (envelope-from tillman@seekingfire.com) Received: by mail.seekingfire.com (Postfix, from userid 500) id B656D21D; Mon, 17 Oct 2005 14:33:53 -0600 (CST) Date: Mon, 17 Oct 2005 14:33:53 -0600 From: Tillman Hodgson To: freebsd-isp@freebsd.org Message-ID: <20051017203353.GF33270@seekingfire.com> References: <20051012234337.K63956@zoraida.natserv.net> <57416b300510142221r2c3da329o65d54cb0aa04fc73@mail.gmail.com> <20051015133148.P97899@zoraida.natserv.net> <18f601940510151547ka3573f8v2f0633010ad2874f@mail.gmail.com> <20051016010251.R90770@zoraida.natserv.net> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20051016010251.R90770@zoraida.natserv.net> X-Habeas-SWE-1: winter into spring X-Habeas-SWE-2: brightly anticipated X-Habeas-SWE-3: like Habeas SWE (tm) X-Habeas-SWE-4: Copyright 2002 Habeas (tm) X-Habeas-SWE-5: Sender Warranted Email (SWE) (tm). The sender of this X-Habeas-SWE-6: email in exchange for a license for this Habeas X-Habeas-SWE-7: warrant mark warrants that this is a Habeas Compliant X-Habeas-SWE-8: Message (HCM) and not spam. Please report use of this X-Habeas-SWE-9: mark in spam to . X-GPG-Key-ID: 828AFC7B X-GPG-Fingerprint: 5584 14BA C9EB 1524 0E68 F543 0F0A 7FBC 828A FC7B X-GPG-Key: http://www.seekingfire.com/personal/gpg_key.asc X-Urban-Legend: There is lots of hidden information in headers X-Tillman-rules: yes he does User-Agent: Mutt/1.5.11 Subject: Re: Distributed authentication. Which one? X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 17 Oct 2005 20:33:55 -0000 On Sun, Oct 16, 2005 at 01:04:08AM -0400, Francisco Reyes wrote: > >I would say LDAP, but then I've never used NIS. > > The general comment I am seeing in archives is that it is not commonly > used anymore. It has some interoperability and security issues. They're solvable, IMO. For example, most of the security concerns can be addressed with a combination of transport-mode IPsec and Kerberos and I avoid inter- operability issues by avoiding weird implementations of NIS ;-) -T -- "I once bought a cellphone that had a little sticker on the box that said 'DO NOT EAT PACKAGING MATERIAL'. There went another freebie snack at the office." - A.S.R. quote (Andreas "Buzh" Skau) From owner-freebsd-isp@FreeBSD.ORG Mon Oct 17 22:13:35 2005 Return-Path: X-Original-To: freebsd-isp@freebsd.org Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id E245C16A41F for ; Mon, 17 Oct 2005 22:13:35 +0000 (GMT) (envelope-from freebsd-isp@m.gmane.org) Received: from ciao.gmane.org (main.gmane.org [80.91.229.2]) by mx1.FreeBSD.org (Postfix) with ESMTP id 7268243D46 for ; Mon, 17 Oct 2005 22:13:34 +0000 (GMT) (envelope-from freebsd-isp@m.gmane.org) Received: from root by ciao.gmane.org with local (Exim 4.43) id 1ERdCF-0004oj-Kt for freebsd-isp@freebsd.org; Tue, 18 Oct 2005 00:11:07 +0200 Received: from gray.impulse.net ([207.154.64.174]) by main.gmane.org with esmtp (Gmexim 0.1 (Debian)) id 1AlnuQ-0007hv-00 for ; Tue, 18 Oct 2005 00:11:07 +0200 Received: from ted by gray.impulse.net with local (Gmexim 0.1 (Debian)) id 1AlnuQ-0007hv-00 for ; Tue, 18 Oct 2005 00:11:07 +0200 X-Injected-Via-Gmane: http://gmane.org/ To: freebsd-isp@freebsd.org From: Ted Cabeen Date: Mon, 17 Oct 2005 15:00:07 -0700 Lines: 20 Message-ID: <87br1nerdk.fsf@gray.impulse.net> References: <000a01c5d253$2bb2bde0$0601a8c0@wolf> <20051017121807.GA1386@uk.tiscali.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Complaints-To: usenet@sea.gmane.org X-Gmane-NNTP-Posting-Host: gray.impulse.net User-Agent: Gnus/5.110003 (No Gnus v0.3) XEmacs/21.4.17 (berkeley-unix) Cancel-Lock: sha1:MtHtcjy7Zhjc1HCvEZAaI4LFRjA= Sender: news Subject: Re: Loading permanent ARP entries at boot time X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 17 Oct 2005 22:13:36 -0000 Brian Candler writes: > On Sun, Oct 16, 2005 at 08:11:50AM -0500, Thomas S. Crum - AAA Web Solution, Inc. wrote: >> I am trying to load arp entries from a file at boot time. >> >> I can add the individual permanent arp entries with: >> arp -S hostname ether_addr >> >> But, when I reboot the system the arp entries are lost. > > Put your commands in /etc/rc.local You can also use /etc/ethers, although that might not be exactly what you're looking for. See ethers(5) for more info. -- Ted Cabeen http://www.cabeen.org ted@cabeen.org Check Website or Keyserver for PGP/GPG Key BA0349D2 ted@impulse.net "I have taken all knowledge to be my province." -F. Bacon secabeen@pobox.com "Human kind cannot bear very much reality."-T.S.Eliot secabeen@gmail.com From owner-freebsd-isp@FreeBSD.ORG Tue Oct 18 06:10:30 2005 Return-Path: X-Original-To: freebsd-isp@freebsd.org Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 4AE4F16A41F for ; Tue, 18 Oct 2005 06:10:30 +0000 (GMT) (envelope-from foojian@gmail.com) Received: from zproxy.gmail.com (zproxy.gmail.com [64.233.162.204]) by mx1.FreeBSD.org (Postfix) with ESMTP id DD03143D48 for ; Tue, 18 Oct 2005 06:10:29 +0000 (GMT) (envelope-from foojian@gmail.com) Received: by zproxy.gmail.com with SMTP id 8so951125nzo for ; Mon, 17 Oct 2005 23:10:29 -0700 (PDT) DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=beta; d=gmail.com; h=received:message-id:from:to:subject:date:mime-version:content-type:content-transfer-encoding:x-priority:x-msmail-priority:x-mailer:x-mimeole; b=q9AfXvy9QIpISQjqU5R5DukoLkCVfIehya+vZWpKqj5M7XQWKenRypDnjud79Op5S4InfGXlKGuUdFoHf/1EfrL/9PKAXBLIOxd/lzljB3pX8vARgEOJqc02Xv9C/bShbYEa10jR8tef8bIZSvnzczNwsznTz4uN8a407BRRXWY= Received: by 10.36.3.19 with SMTP id 19mr3468646nzc; Mon, 17 Oct 2005 23:10:29 -0700 (PDT) Received: from hardwood ( [220.175.49.231]) by mx.gmail.com with ESMTP id 15sm2023670nzp.2005.10.17.23.10.24; Mon, 17 Oct 2005 23:10:29 -0700 (PDT) Message-ID: <000501c5d3aa$9fac7df0$5c64a8c0@hardwood> From: "Foojian Lee" To: Date: Tue, 18 Oct 2005 14:10:14 +0800 MIME-Version: 1.0 Content-Type: text/plain; charset="gb2312" Content-Transfer-Encoding: base64 X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.3790.0 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.3790.0 Subject: ss X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 18 Oct 2005 06:10:30 -0000 c3M= From owner-freebsd-isp@FreeBSD.ORG Tue Oct 18 14:37:55 2005 Return-Path: X-Original-To: freebsd-isp@freebsd.org Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 8A48316A41F for ; Tue, 18 Oct 2005 14:37:55 +0000 (GMT) (envelope-from francisco@natserv.net) Received: from zoraida.natserv.net (p65-147.acedsl.com [66.114.65.147]) by mx1.FreeBSD.org (Postfix) with ESMTP id 0D4CE43D48 for ; Tue, 18 Oct 2005 14:37:54 +0000 (GMT) (envelope-from francisco@natserv.net) Received: from localhost (localhost.natserv.net [127.0.0.1]) by zoraida.natserv.net (Postfix) with ESMTP id 0631A7E52; Tue, 18 Oct 2005 10:37:53 -0400 (EDT) Date: Tue, 18 Oct 2005 10:37:53 -0400 (EDT) From: Francisco X-X-Sender: fran@zoraida.natserv.net To: Tillman Hodgson In-Reply-To: <20051017203353.GF33270@seekingfire.com> Message-ID: <20051018103540.K28109@zoraida.natserv.net> References: <20051012234337.K63956@zoraida.natserv.net> <57416b300510142221r2c3da329o65d54cb0aa04fc73@mail.gmail.com> <20051015133148.P97899@zoraida.natserv.net> <18f601940510151547ka3573f8v2f0633010ad2874f@mail.gmail.com> <20051016010251.R90770@zoraida.natserv.net> <20051017203353.GF33270@seekingfire.com> MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII; format=flowed Cc: freebsd-isp@freebsd.org Subject: Re: Distributed authentication. Which one? X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 18 Oct 2005 14:37:55 -0000 On Mon, 17 Oct 2005, Tillman Hodgson wrote: > It has some interoperability and security issues. They're solvable, IMO. Thanks for the feedback. I guess a good test is to ask.. what would you use? :-) > For example, most of the security concerns can be addressed with a > combination of transport-mode IPsec and Kerberos and I avoid inter- > operability issues by avoiding weird implementations of NIS ;-) Sounds like more trouble than it's worth. Right now I am leaning towards Kerberos or LDAP. Need to learn more about them to see their strengths and weaknesses and how it would fit into our existing extructure. From owner-freebsd-isp@FreeBSD.ORG Tue Oct 18 15:09:12 2005 Return-Path: X-Original-To: freebsd-isp@freebsd.org Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id B328916A420 for ; Tue, 18 Oct 2005 15:09:12 +0000 (GMT) (envelope-from tillman@seekingfire.com) Received: from mail.seekingfire.com (caliban.seekingfire.com [24.72.123.45]) by mx1.FreeBSD.org (Postfix) with ESMTP id 2716A43D48 for ; Tue, 18 Oct 2005 15:09:08 +0000 (GMT) (envelope-from tillman@seekingfire.com) Received: by mail.seekingfire.com (Postfix, from userid 500) id 7B9C01A7; Tue, 18 Oct 2005 09:09:06 -0600 (CST) Date: Tue, 18 Oct 2005 09:09:06 -0600 From: Tillman Hodgson To: Francisco Message-ID: <20051018150906.GJ33270@seekingfire.com> References: <20051012234337.K63956@zoraida.natserv.net> <57416b300510142221r2c3da329o65d54cb0aa04fc73@mail.gmail.com> <20051015133148.P97899@zoraida.natserv.net> <18f601940510151547ka3573f8v2f0633010ad2874f@mail.gmail.com> <20051016010251.R90770@zoraida.natserv.net> <20051017203353.GF33270@seekingfire.com> <20051018103540.K28109@zoraida.natserv.net> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20051018103540.K28109@zoraida.natserv.net> X-Habeas-SWE-1: winter into spring X-Habeas-SWE-2: brightly anticipated X-Habeas-SWE-3: like Habeas SWE (tm) X-Habeas-SWE-4: Copyright 2002 Habeas (tm) X-Habeas-SWE-5: Sender Warranted Email (SWE) (tm). The sender of this X-Habeas-SWE-6: email in exchange for a license for this Habeas X-Habeas-SWE-7: warrant mark warrants that this is a Habeas Compliant X-Habeas-SWE-8: Message (HCM) and not spam. Please report use of this X-Habeas-SWE-9: mark in spam to . X-GPG-Key-ID: 828AFC7B X-GPG-Fingerprint: 5584 14BA C9EB 1524 0E68 F543 0F0A 7FBC 828A FC7B X-GPG-Key: http://www.seekingfire.com/personal/gpg_key.asc X-Urban-Legend: There is lots of hidden information in headers X-Tillman-rules: yes he does User-Agent: Mutt/1.5.11 Cc: freebsd-isp@freebsd.org Subject: Re: Distributed authentication. Which one? X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 18 Oct 2005 15:09:12 -0000 On Tue, Oct 18, 2005 at 10:37:53AM -0400, Francisco wrote: > On Mon, 17 Oct 2005, Tillman Hodgson wrote: > > >It has some interoperability and security issues. They're solvable, IMO. > > Thanks for the feedback. > > I guess a good test is to ask.. what would you use? :-) On a meta-network (http://metanetwork.seekingfire.com/wiki.pl) we've used Kerberos with cross-realm trusts in combination with NIS providing the meta information (preferred shell, etc) for "users in common" (non-local). It maps well to multiple administrative domains. On purely local networks where the number of users are low (a few dozen at most), I like using something like cfengine to simply keep all local user databases in sync. I then use Kerberos (preferred) or sudo to break out root-like powers in an auditable way. I'm a fan of IPsec transport mode with the blowfish algorithm and compression turned on -- it's "good enough" security for my needs and can actually /increase/ the effective bandwidth (I've posted the results of a Sun Ultra5 and a few Intel box to FreeBSD mailing lists in the past, ithe archives should have them somewhere). The fact that it makes using traditional RPC services a bit more secure is merely a bonus :-) > >For example, most of the security concerns can be addressed with a > >combination of transport-mode IPsec and Kerberos and I avoid inter- > >operability issues by avoiding weird implementations of NIS ;-) > > Sounds like more trouble than it's worth. You'll likely find that there's similar issues for any cross-platform solution with decent security. I'd use whatever you can best understand, since anything security related that works but isn't well understood can be a source of future problems. If you grok LDAP, then use LDAP :-) > Right now I am leaning towards Kerberos or LDAP. They're differnet things. Kerberos *and* LDAP is a nice combination. Kerberos is for /authentication/, and authentication only. It doesn't handle meta data (like home dir, shell, group information, etc) and it handles authorization only in passing and not in a finely-grained manner (via .k5login, basically). It does authentication exceedingly well and that's what I consider its prime attraction. So when considering Kerberos it generally makes sense to design the user management system to be Kerberos + $somthing_else. The $something_else provides the meta-data, group information and authorization pieces of the puzzle. This isn't as convoluted as it sounds. Take web services for example -- the required meta data is often different than for local users, but the concept of secure authentication remains the same. Think of it as flexibility rather than complexity. > Need to learn more about them to see their strengths and weaknesses and > how it would fit into our existing extructure. I have a very basic (albeit somewhat old) presentation on Kerberos up at http://www.seekingfire.com/documents/presentations/kerberos_presentation/kerberos.pdf, and a collection of useful links at http://www.seekingfire.com/projects/kerberos/. There's a variety of HOWTOs floating around the net on combining Kerberos with local passwd files, NIS, LDAP, and other user database technologies. There's also the O'Reilly book, which is handy but not as comprehensive as I'd like (http://slashdot.org/comments.pl?sid=139450&cid=11672353 has my original comments archived). -T -- "What are the facts, and to how many decimal places? You pilot always into an unknown future; facts are your only clue. Get the facts!" -- Lazarus Long (_Time Enough for Love_, Robert Heinlein) From owner-freebsd-isp@FreeBSD.ORG Wed Oct 19 18:28:27 2005 Return-Path: X-Original-To: freebsd-isp@freebsd.org Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id C6A9E16A41F for ; Wed, 19 Oct 2005 18:28:27 +0000 (GMT) (envelope-from bsam@ns.kfs.ru) Received: from ns.kfs.ru (kfs.kfs.ru [62.183.117.194]) by mx1.FreeBSD.org (Postfix) with ESMTP id 4735243D62 for ; Wed, 19 Oct 2005 18:28:27 +0000 (GMT) (envelope-from bsam@ns.kfs.ru) Received: from bsam by ns.kfs.ru with local (Exim 4.52 (FreeBSD)) id 1ESIfo-000Pay-UJ; Wed, 19 Oct 2005 22:28:24 +0400 To: Aziz Yakubov References: <20051014051017.29350.qmail@web86903.mail.ukl.yahoo.com> From: Boris Samorodov Date: Wed, 19 Oct 2005 22:28:24 +0400 In-Reply-To: <20051014051017.29350.qmail@web86903.mail.ukl.yahoo.com> (Aziz Yakubov's message of "Fri, 14 Oct 2005 07:10:17 +0200 (CEST)") Message-ID: <20417703@serv3.int.kfs.ru> User-Agent: Gnus/5.11 (Gnus v5.11) Emacs/22.0.50 (berkeley-unix) MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Sender: "Boris B. Samorodov" Cc: freebsd-isp@freebsd.org Subject: Re: have a question X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 19 Oct 2005 18:28:27 -0000 On Fri, 14 Oct 2005 07:10:17 +0200 (CEST) Aziz Yakubov wrote: > Good day Dear Ladies & Gentlemen. > Can you explain how to organize billing server for dial-up using FreeRadius. > You can give a chance to http://nibs.net.ua/src/freeradius_nibs/freenibs-0.0.3-bf3_freeradius-1.0.1.tar.bz2 But docs are written in Russian... WBR -- bsam From owner-freebsd-isp@FreeBSD.ORG Thu Oct 20 03:16:26 2005 Return-Path: X-Original-To: freebsd-isp@freebsd.org Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 407D116A41F for ; Thu, 20 Oct 2005 03:16:26 +0000 (GMT) (envelope-from ernie@spooky.eis.net.au) Received: from spooky.eis.net.au (spooky.eis.net.au [203.12.171.2]) by mx1.FreeBSD.org (Postfix) with ESMTP id 83CD743D69 for ; Thu, 20 Oct 2005 03:16:25 +0000 (GMT) (envelope-from ernie@spooky.eis.net.au) Received: (from ernie@localhost) by spooky.eis.net.au (8.13.4/8.12.11) id j9K3GKsE077374 for freebsd-isp@freebsd.org; Thu, 20 Oct 2005 13:16:20 +1000 (EST) (envelope-from ernie) From: User Ernie Message-Id: <200510200316.j9K3GKsE077374@spooky.eis.net.au> To: freebsd-isp@freebsd.org Date: Thu, 20 Oct 2005 13:16:20 +1000 (EST) X-Mailer: ELM [version 2.5 PL6] MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Subject: DSPAM mail gateway setup X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 20 Oct 2005 03:16:26 -0000 Has anyone managed to get DSPAM running with the FreeBSD dual sendmail processes as a scanning, realy gateway for other mail servers? The DSPAM relay.txt documentation only talks about Postfix as an example. I want to use as close to a standard FreeBSD setup as I can without changing to another MTA if possible. I do have DSPAM install as the Mlocal agent for local delivery as a test setup with no problems, just not sure how to make it a gateway box. - Ernie. From owner-freebsd-isp@FreeBSD.ORG Sat Oct 22 09:48:03 2005 Return-Path: X-Original-To: freebsd-isp@freebsd.org Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id BF92316A41F for ; Sat, 22 Oct 2005 09:48:03 +0000 (GMT) (envelope-from unmonitored@newhouse.nl) Received: from dizzy.newhouse.nl (cust.12.87.adsl.cistron.nl [62.216.12.87]) by mx1.FreeBSD.org (Postfix) with ESMTP id 2D83743D4C for ; Sat, 22 Oct 2005 09:48:02 +0000 (GMT) (envelope-from unmonitored@newhouse.nl) Received: from newhouse01 by dizzy.newhouse.nl with local (Exim 4.52) id 1ETFyr-0008UU-N3 for freebsd-isp@freebsd.org; Sat, 22 Oct 2005 11:48:01 +0200 Content-Type: text/plain Content-Disposition: inline Content-Transfer-Encoding: binary MIME-Version: 1.0 X-Mailer: MIME-tools 5.417 (Entity 5.417) From: "New House Software B.V. \(unmonitored account\)" To: freebsd-isp@freebsd.org Message-Id: Date: Sat, 22 Oct 2005 11:48:01 +0200 Subject: Possible virus in your email X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 22 Oct 2005 09:48:03 -0000 We received your email, with the headers as attached below. The message probably contains a virus and therefore cannot be processed. Possibly you are not really the sender of the message: many virusses are known to spread emails from faked sender addresses. If this is the case, please ignore this message. If you actually did send this message and you want it to reach us: please send your message to unprotected221773 @ newhouse.nl , a special address which is not monitored for virusses. Your original message was refused because it contained unsafe attachments (so-called 'executables'). This is an automatically generated message, sent from an unmonitored email address. If you would like to reply, please don't use the 'Reply' button of your email application. Instead, create a new message and send it to unprotected221773 @ newhouse.nl . Regards, New House Software B.V. --------------------------------------------------------------------- Wij ontvingen uw e-mail, met onderstaande headers. Het bericht bevat vermoedelijk een virus en kan daarom niet verwerkt worden. Het is goed mogelijk dat u niet de daadwerkelijke afzender van het bericht was: vele virussen sturen berichten met vervalste afzender-adressen. Indien dit het geval is, kunt u dit bericht negeren en hoeft u verder niets te doen. Als u wel de afzender van het bericht bent en u wilt dat uw e-mail ons bereikt: verstuur het bericht opnieuw naar unprotected221773 @ newhouse.nl ; dit speciale adres wordt niet gecontroleerd op virussen. Uw bericht is geweigerd omdat het onveilige bestanden (zgn. executables) als bijlage bevat. Dit is een automatisch gegenereerd bericht, verstuurd vanaf een ongebruikt e-mail adres. Indien u wilt reageren, gebruik dan niet de 'reply' of 'antwoord' knop van uw e-mail programma, maar verstuur een nieuw bericht naar unprotected221773 @ newhouse.nl . Met vriendelijke groet, New House Software B.V. --------------------------------------------------------------------- Original headers / oorspronkelijk bericht: Return-path: Envelope-to: joost@newhouse.nl Delivery-date: Sat, 22 Oct 2005 11:47:58 +0200 Received: from interfilm.sigmasoft.ro ([193.230.170.178] helo=newhouse.nl) by dizzy.newhouse.nl with esmtp (Exim 4.52) id 1ETFym-0008UL-OF for joost@newhouse.nl; Sat, 22 Oct 2005 11:47:58 +0200 From: freebsd-isp@freebsd.org To: joost@newhouse.nl Subject: Re: Thank you for delivery Date: Sat, 22 Oct 2005 12:48:07 +0300 MIME-Version: 1.0 Content-Type: multipart/mixed; boundary="----=_NextPart_000_0016----=_NextPart_000_0016" X-Priority: 3 X-MSMail-Priority: Normal X-Spam-Checker-Version: SpamAssassin 3.0.4 (2005-06-05) on dizzy.newhouse.nl X-Spam-Level: *** X-Spam-Status: No, score=3.6 required=4.8 tests=BAYES_50,BLANK_LINES_70_80, MIME_BOUND_NEXTPART,MISSING_MIMEOLE,NO_REAL_NAME,PRIORITY_NO_NAME autolearn=no version=3.0.4 From owner-freebsd-isp@FreeBSD.ORG Sat Oct 22 10:46:23 2005 Return-Path: X-Original-To: freebsd-isp@freebsd.org Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 215CE16A41F for ; Sat, 22 Oct 2005 10:46:23 +0000 (GMT) (envelope-from tethys.ocean@gmail.com) Received: from qproxy.gmail.com (qproxy.gmail.com [72.14.204.206]) by mx1.FreeBSD.org (Postfix) with ESMTP id 978F743D46 for ; Sat, 22 Oct 2005 10:46:22 +0000 (GMT) (envelope-from tethys.ocean@gmail.com) Received: by qproxy.gmail.com with SMTP id a39so29826qbd for ; Sat, 22 Oct 2005 03:46:21 -0700 (PDT) DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=beta; d=gmail.com; h=received:message-id:date:from:to:subject:cc:in-reply-to:mime-version:content-type:references; b=smh2ULtHO7p4Xy3sUtA1XINV/wHZiq5uIHy4hBnRovSpemm6bncyYPMHt8uejvUDSQC/oqZh3cyTaTntpcNFeGZWII1ug1XbJvBjwmeujLfXwx8A9nAfBKCU2yQ1MFvWwjZR0z9XO7W5bHw0plGNZVysz9f5b22AIA8VKMpwhlY= Received: by 10.65.137.6 with SMTP id p6mr37873qbn; Sat, 22 Oct 2005 03:39:20 -0700 (PDT) Received: by 10.64.53.1 with HTTP; Sat, 22 Oct 2005 03:39:20 -0700 (PDT) Message-ID: <235b80000510220339m16389a83rb626b8f4158b9c09@mail.gmail.com> Date: Sat, 22 Oct 2005 13:39:20 +0300 From: tethys ocean To: kilop In-Reply-To: <791820560.20050930115849@toya.net.pl> MIME-Version: 1.0 References: <791820560.20050930115849@toya.net.pl> Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable Content-Disposition: inline X-Content-Filtered-By: Mailman/MimeDel 2.1.5 Cc: freebsd-isp@freebsd.org Subject: Re: vqadmin X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 22 Oct 2005 10:46:23 -0000 Hi, I appologize fto late. Since I couldn't solve my problem yet. I am looking for a solution, are you solve? On 9/30/05, kilop wrote: > > Witaj freebsd-isp! > > hi i found your mail on forum > > about vqadmin error > > > like this: > but when *http://www.mydomain.com/cgi-bin/vqadmin/vqadmin.cgi* > > *Authentication Failed Username unknown* > > *vQadmin was unable to determine your username, which > means your webserver is improperly configured to run > with this CGI. For security reasons, this script > will not run without Apache htaccess lists. > > > vqadmin 2.3.6 > > vpopmail 5.4.10* > > > i have the same error .htaccess file is owned by Apache > and directory directive is added to httpd.conf > and i have the same error > > please can you help me with that ?? > i have qmail vpopmail installed > after reading this faq > > http://bsdguides.org/guides/freebsd/mailserver/qmail+vpopmail+qmailadmin.= php > > > please can you help me with that ?? > -- > Pozdrowienia, > kilop > > _______________________________________________ > freebsd-isp@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-isp > To unsubscribe, send any mail to "freebsd-isp-unsubscribe@freebsd.org" > From owner-freebsd-isp@FreeBSD.ORG Sat Oct 22 19:32:49 2005 Return-Path: X-Original-To: freebsd-isp@freebsd.org Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id D07BC16A41F for ; Sat, 22 Oct 2005 19:32:49 +0000 (GMT) (envelope-from reichert@numachi.com) Received: from meisai.numachi.com (meisai.numachi.com [198.175.254.6]) by mx1.FreeBSD.org (Postfix) with SMTP id 3BFF343D45 for ; Sat, 22 Oct 2005 19:32:48 +0000 (GMT) (envelope-from reichert@numachi.com) Received: (qmail 91509 invoked from network); 22 Oct 2005 19:32:45 -0000 Received: from natto.numachi.com (198.175.254.216) by meisai.numachi.com with SMTP; 22 Oct 2005 19:32:45 -0000 Received: (qmail 1502 invoked by uid 1001); 22 Oct 2005 19:32:45 -0000 Date: Sat, 22 Oct 2005 15:32:45 -0400 From: Brian Reichert To: tethys ocean Message-ID: <20051022193245.GV16236@numachi.com> References: <791820560.20050930115849@toya.net.pl> <235b80000510220339m16389a83rb626b8f4158b9c09@mail.gmail.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <235b80000510220339m16389a83rb626b8f4158b9c09@mail.gmail.com> User-Agent: Mutt/1.5.10i Cc: kilop , freebsd-isp@freebsd.org Subject: Re: vqadmin X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 22 Oct 2005 19:32:49 -0000 On Sat, Oct 22, 2005 at 01:39:20PM +0300, tethys ocean wrote: > > i have the same error .htaccess file is owned by Apache > > and directory directive is added to httpd.conf > > and i have the same error Make sure that - you've restarted the Apache server - the directory directive in httpd.conf is doing what you expect; make sure that you're not being tricked by a vhost config, or some other config that being applied instead. That vqadmin error is being seen because the content is being served without having undergone any authentication... -- Brian Reichert 55 Crystal Ave. #286 Daytime number: (603) 434-6842 Derry NH 03038-1725 USA BSD admin/developer at large