From owner-freebsd-isp@FreeBSD.ORG Mon Oct 23 13:11:01 2006 Return-Path: X-Original-To: freebsd-isp@freebsd.org Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 7032616A407 for ; Mon, 23 Oct 2006 13:11:01 +0000 (UTC) (envelope-from bob@buckhorn.net) Received: from whitehall.lin-tech.net (whitehall.lin-tech.net [66.118.35.201]) by mx1.FreeBSD.org (Postfix) with ESMTP id 3162E43D45 for ; Mon, 23 Oct 2006 13:11:01 +0000 (GMT) (envelope-from bob@buckhorn.net) Received: from mail.buckhorn.net (mail.buckhorn.net [66.118.63.40]) by whitehall.lin-tech.net (Postfix) with ESMTP id 70CF54ADEC for ; Mon, 23 Oct 2006 08:11:01 -0500 (CDT) Received: from [10.0.1.10] [72.54.60.194] by mail.buckhorn.net with ESMTP (SMTPD32-8.15) id AF4E381B00BA; Mon, 23 Oct 2006 08:10:38 -0500 Message-ID: <453CBFB4.3070007@buckhorn.net> Date: Mon, 23 Oct 2006 08:12:20 -0500 From: Bob Martin User-Agent: Thunderbird 1.5.0.5 (Windows/20060719) MIME-Version: 1.0 To: freebsd-isp@freebsd.org Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit X-Virus-Scanned: amavisd-new at spamcontrol Subject: Apache22 with MPM worker on FBSD6.x X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 23 Oct 2006 13:11:01 -0000 Is anyone running Apache2x with mpm worker on 6.x in a production environment? Comments? Observations? Many thanks in advance! Bob Martin From owner-freebsd-isp@FreeBSD.ORG Mon Oct 23 14:20:23 2006 Return-Path: X-Original-To: freebsd-isp@freebsd.org Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 1CD9116A403 for ; Mon, 23 Oct 2006 14:20:23 +0000 (UTC) (envelope-from marco.goncalves@waynext.com) Received: from ns1.waynext.com (ns1.waynext.com [81.92.195.82]) by mx1.FreeBSD.org (Postfix) with ESMTP id 41E0E43D46 for ; Mon, 23 Oct 2006 14:20:21 +0000 (GMT) (envelope-from marco.goncalves@waynext.com) Received: (qmail 59766 invoked by uid 1008); 23 Oct 2006 14:27:34 -0000 Received: from a81-84-242-139.cpe.netcabo.pt (HELO marco) (marco.goncalves@waynext.com@81.84.242.139) by ns1.waynext.com with SMTP; 23 Oct 2006 15:27:34 +0100 Message-ID: <006201c6f6b0$952cdc60$3000a8c0@marco> From: =?iso-8859-1?Q?Marco_Gon=E7alves?= To: References: <453CBFB4.3070007@buckhorn.net> Date: Mon, 23 Oct 2006 15:36:09 +0100 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2800.1807 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2800.1807 X-Antivirus: avast! (VPS 0643-0, 22-10-2006), Outbound message X-Antivirus-Status: Clean Subject: Re: Apache22 with MPM worker on FBSD6.x X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 23 Oct 2006 14:20:23 -0000 Hello, I have this setup, with eaccelerator and PHP4. No problem, at all. Very good performance. Eacelerator needed a litle tweak to compile. Regards, Marco ----- Original Message ----- From: "Bob Martin" To: Sent: Monday, October 23, 2006 2:12 PM Subject: Apache22 with MPM worker on FBSD6.x > Is anyone running Apache2x with mpm worker on 6.x in a production > environment? Comments? Observations? > > Many thanks in advance! > > Bob Martin > _______________________________________________ > freebsd-isp@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-isp > To unsubscribe, send any mail to "freebsd-isp-unsubscribe@freebsd.org" > From owner-freebsd-isp@FreeBSD.ORG Mon Oct 23 14:57:42 2006 Return-Path: X-Original-To: freebsd-isp@freebsd.org Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 6FACF16A40F for ; Mon, 23 Oct 2006 14:57:42 +0000 (UTC) (envelope-from SRS0+byki+34+drkshdw.org=scorpio@ewol.com) Received: from mail.ewol.com (mail.ewol.com [66.209.36.130]) by mx1.FreeBSD.org (Postfix) with ESMTP id E4BC543D46 for ; Mon, 23 Oct 2006 14:57:41 +0000 (GMT) (envelope-from SRS0+byki+34+drkshdw.org=scorpio@ewol.com) Received: from WRKSTN210.drkshdw.org (unverified [192.168.199.170]) by ewol.com ([66.209.36.130] EWOL Mail Server version 3.7a16) with ESMTP id 52110174 for ; Mon, 23 Oct 2006 10:57:42 -0400 Message-Id: <7.0.1.0.0.20061023105413.019810f0@ewol.com> X-Mailer: QUALCOMM Windows Eudora Version 7.0.1.0 Date: Mon, 23 Oct 2006 10:57:35 -0400 To: freebsd-isp@freebsd.org From: Jeff Palmer Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii"; format=flowed X-Server: High Performance Mail Server - http://surgemail.com r=-500886232 X-Mailman-Approved-At: Mon, 23 Oct 2006 16:30:14 +0000 Subject: dspam + postfix spam gateway X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 23 Oct 2006 14:57:42 -0000 Hello, I've been scouring google searches, mailing list archives, and other assorted avenues I can think of. Has anyone here setup a FreeBSD box with postfix, clamav, and dspam as a frontend to your normal smtp cluster? I'm entertaining the possibility, and have done some testing, but can't seem to get quarantines, and retraining to work properly (quarantines in the WebUI) Mostly, I was just curious if anyone has done it, and can provide pointers, or a "guide" of sorts as to how you got it working. Thanks in advance, Jeff From owner-freebsd-isp@FreeBSD.ORG Mon Oct 23 18:23:06 2006 Return-Path: X-Original-To: freebsd-isp@freebsd.org Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 0C8CF16A49E for ; Mon, 23 Oct 2006 18:23:06 +0000 (UTC) (envelope-from bob@buckhorn.net) Received: from whitehall.lin-tech.net (whitehall.lin-tech.net [66.118.35.201]) by mx1.FreeBSD.org (Postfix) with ESMTP id B21D943D66 for ; Mon, 23 Oct 2006 18:22:59 +0000 (GMT) (envelope-from bob@buckhorn.net) Received: from mail.buckhorn.net (mail.buckhorn.net [66.118.63.40]) by whitehall.lin-tech.net (Postfix) with ESMTP id 21D184AE11 for ; Mon, 23 Oct 2006 13:23:01 -0500 (CDT) Received: from [10.0.1.18] [72.54.60.194] by mail.buckhorn.net with ESMTP (SMTPD32-8.15) id A86A7E1B00A4; Mon, 23 Oct 2006 13:22:34 -0500 Message-ID: <453D08DF.8050405@buckhorn.net> Date: Mon, 23 Oct 2006 13:24:31 -0500 From: Bob Martin User-Agent: Thunderbird 1.5.0.5 (Windows/20060719) MIME-Version: 1.0 CC: freebsd-isp@freebsd.org References: <7.0.1.0.0.20061023105413.019810f0@ewol.com> In-Reply-To: <7.0.1.0.0.20061023105413.019810f0@ewol.com> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit X-Virus-Scanned: amavisd-new at spamcontrol Subject: Re: dspam + postfix spam gateway X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 23 Oct 2006 18:23:06 -0000 I've never done it with dspam, at least alone, but you should be able to find tons of info on mail gateways with postfix + amavisd running clamav and spamassassin & dspam. The set up above will handle very large volumes of email. Also, you don't want to rely solely on Bayesian filters for spam control. The spammers figured out how to get by that ages ago. Bob Martin Jeff Palmer wrote: > Hello, > > > I've been scouring google searches, mailing list archives, and other > assorted avenues I can think of. > > Has anyone here setup a FreeBSD box with postfix, clamav, and dspam as a > frontend to your normal smtp cluster? > I'm entertaining the possibility, and have done some testing, but > can't seem to get quarantines, and retraining to work properly > (quarantines in the WebUI) > > Mostly, I was just curious if anyone has done it, and can provide > pointers, or a "guide" of sorts as to how you got it working. > > Thanks in advance, > > Jeff > > _______________________________________________ > freebsd-isp@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-isp > To unsubscribe, send any mail to "freebsd-isp-unsubscribe@freebsd.org" From owner-freebsd-isp@FreeBSD.ORG Tue Oct 24 00:09:49 2006 Return-Path: X-Original-To: freebsd-isp@freebsd.org Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 95AAD16A415 for ; Tue, 24 Oct 2006 00:09:49 +0000 (UTC) (envelope-from ee@uncanny.net) Received: from smtp.uncanny.net (smtp.uncanny.net [64.81.245.44]) by mx1.FreeBSD.org (Postfix) with ESMTP id 78F1243DD0 for ; Tue, 24 Oct 2006 00:08:14 +0000 (GMT) (envelope-from ee@uncanny.net) Received: from sandbox.uncanny.net (sandbox.uncanny.net [192.168.49.254]) by smtp.uncanny.net (Postfix) with ESMTP id 6B1752ED for ; Mon, 23 Oct 2006 17:08:05 -0700 (PDT) Received: by sandbox.uncanny.net (Postfix, from userid 1000) id 71E338BF; Mon, 23 Oct 2006 17:08:05 -0700 (PDT) Date: Mon, 23 Oct 2006 17:08:05 -0700 From: Edward Elhauge To: freebsd-isp@freebsd.org Message-ID: <20061024000805.GA12810@uncanny.net> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Subject: Internet Link Detective Audit X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: ee@uncanny.net List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 24 Oct 2006 00:09:49 -0000 I'm hoping someone on this list can steer me in the right direction towards figuring out what is going on with my internet link. (Or rather the tools to figure it out on my own). I had a call from my ISP claiming that they saw unusual network activity (high usage). At first we though it was simply my New peering but a few weeks later they claimed up to 7GB on port 5560 (iMesh). Since I block port 5560 incoming I have to figure it must be from the inside. I'm puzzled because as far as I can tell from my Postfix and Inn logs I'm using only 100 MB per do or so. With about 15 machines on our buildings network, it might be a bit difficult to figure out what is going on just by inspection (also some of the clients are Mac, Windows XP and Ubuntu). What I'd like is a tool running on FreeBSD that will sort IP traffic coming across my Internet interface by: SRC IP, PROTOCOL and PORT DEST IP, PROTOCOL and PORT then give me total KBs passed in that interval. I currently have one FreeBSD machine devoted to Gateway Router and NAT. It runs ipfilter (ipf). From reading the list over the years I know about tools that do things like this but don't know of one that does this exactly. I set up ifstat, but it doesn't sort the traffic by src, dest, port, etc, just a total KB/s in/out. I know that one can use dummynet, or ALTQ to do bandwith shaping, but I'd rather find out where all the traffic is going rather than just restricting it. Perhaps snort would do what I want, but before I spent the time setting it up I wanted to make sure that I could easily get a count of Kb/s flowing across the interface, since my main interest isn't intrusion detection, but really something more like a traffic audit. Any pointers for how to instrument this are greatly appreciated. -- Edward Elhauge "The life which is unexamined is not worth living." -- Plato From owner-freebsd-isp@FreeBSD.ORG Tue Oct 24 00:53:06 2006 Return-Path: X-Original-To: freebsd-isp@freebsd.org Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 1667E16A403 for ; Tue, 24 Oct 2006 00:53:06 +0000 (UTC) (envelope-from fbsd-isp@mawer.org) Received: from mail-ihug.icp-qv1-irony2.iinet.net.au (ihug-mail.icp-qv1-irony2.iinet.net.au [203.59.1.196]) by mx1.FreeBSD.org (Postfix) with ESMTP id 1BAB943D49 for ; Tue, 24 Oct 2006 00:53:04 +0000 (GMT) (envelope-from fbsd-isp@mawer.org) Received: from 203-206-173-235.perm.iinet.net.au (HELO [127.0.0.1]) ([203.206.173.235]) by mail-ihug.icp-qv1-irony2.iinet.net.au with ESMTP; 24 Oct 2006 08:32:08 +0800 X-IronPort-Anti-Spam-Filtered: true X-IronPort-Anti-Spam-Result: AgAAAAMBPUXLzq3r/2dsb2JhbAAN X-IronPort-AV: i="4.09,344,1157299200"; d="scan'208"; a="693280930:sNHT5874270568" Message-ID: <453D5EBE.1050306@mawer.org> Date: Tue, 24 Oct 2006 10:30:54 +1000 From: Antony Mawer User-Agent: Thunderbird 1.5.0.7 (Windows/20060909) MIME-Version: 1.0 To: ee@uncanny.net References: <20061024000805.GA12810@uncanny.net> In-Reply-To: <20061024000805.GA12810@uncanny.net> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Cc: freebsd-isp@freebsd.org Subject: Re: Internet Link Detective Audit X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 24 Oct 2006 00:53:06 -0000 On 24/10/2006 10:08 AM, Edward Elhauge wrote: > I'm hoping someone on this list can steer me in the right direction > towards figuring out what is going on with my internet link. (Or rather > the tools to figure it out on my own). > ... > > What I'd like is a tool running on FreeBSD that will sort IP traffic > coming across my Internet interface by: > SRC IP, PROTOCOL and PORT > DEST IP, PROTOCOL and PORT > then give me total KBs passed in that interval. I was recently in a similar situation and went looking for a similar tool, and came across "darkstat" in the ports collection: http://www.freshports.org/net-mgmt/darkstat While I did find it a bit rough around the edges in terms of some of its data display, it gave me a way to monitor and visualise my traffic flows and identify the large offenders... In my case it turned out an OS X machine was set to automatically download system updates, but because no one had applied them yet, it was re-downloading them every day... :-) Hope it helps! -- Antony From owner-freebsd-isp@FreeBSD.ORG Tue Oct 24 01:09:27 2006 Return-Path: X-Original-To: freebsd-isp@freebsd.org Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id D410716A47B for ; Tue, 24 Oct 2006 01:09:27 +0000 (UTC) (envelope-from bob@buckhorn.net) Received: from whitehall.lin-tech.net (whitehall.lin-tech.net [66.118.35.201]) by mx1.FreeBSD.org (Postfix) with ESMTP id 16DFC43D5C for ; Tue, 24 Oct 2006 01:09:26 +0000 (GMT) (envelope-from bob@buckhorn.net) Received: from mail.buckhorn.net (mail.buckhorn.net [66.118.63.40]) by whitehall.lin-tech.net (Postfix) with ESMTP id D994C4AE00 for ; Mon, 23 Oct 2006 20:09:31 -0500 (CDT) Received: from [72.26.9.234] [72.26.9.234] by mail.buckhorn.net with ESMTP (SMTPD32-8.15) id A7AE136500AC; Mon, 23 Oct 2006 20:09:02 -0500 Message-ID: <453D67C6.4050402@buckhorn.net> Date: Mon, 23 Oct 2006 20:09:26 -0500 From: Bob Martin User-Agent: Mozilla/5.0 (X11; U; FreeBSD i386; en-US; rv:1.7.12) Gecko/20051108 X-Accept-Language: en-us, en MIME-Version: 1.0 To: freebsd-isp@freebsd.org References: <20061024000805.GA12810@uncanny.net> <453D5EBE.1050306@mawer.org> In-Reply-To: <453D5EBE.1050306@mawer.org> Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit X-Virus-Scanned: amavisd-new at spamcontrol Subject: Re: Internet Link Detective Audit X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 24 Oct 2006 01:09:27 -0000 There is also the old and venerable ntop, in the ports. Bob Martin Antony Mawer wrote: > On 24/10/2006 10:08 AM, Edward Elhauge wrote: > >> I'm hoping someone on this list can steer me in the right direction >> towards figuring out what is going on with my internet link. (Or rather >> the tools to figure it out on my own). >> > ... > >> >> What I'd like is a tool running on FreeBSD that will sort IP traffic >> coming across my Internet interface by: >> SRC IP, PROTOCOL and PORT >> DEST IP, PROTOCOL and PORT >> then give me total KBs passed in that interval. > > > I was recently in a similar situation and went looking for a similar > tool, and came across "darkstat" in the ports collection: > > http://www.freshports.org/net-mgmt/darkstat > > While I did find it a bit rough around the edges in terms of some of its > data display, it gave me a way to monitor and visualise my traffic flows > and identify the large offenders... > > In my case it turned out an OS X machine was set to automatically > download system updates, but because no one had applied them yet, it was > re-downloading them every day... :-) > > Hope it helps! > > -- Antony > > _______________________________________________ > freebsd-isp@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-isp > To unsubscribe, send any mail to "freebsd-isp-unsubscribe@freebsd.org" From owner-freebsd-isp@FreeBSD.ORG Tue Oct 24 08:11:44 2006 Return-Path: X-Original-To: freebsd-isp@freebsd.org Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 8B2D116A403 for ; Tue, 24 Oct 2006 08:11:44 +0000 (UTC) (envelope-from itetcu@FreeBSD.org) Received: from it.buh.tecnik93.com (it.buh.tecnik93.com [81.196.204.98]) by mx1.FreeBSD.org (Postfix) with ESMTP id CFD1443D58 for ; Tue, 24 Oct 2006 08:11:43 +0000 (GMT) (envelope-from itetcu@FreeBSD.org) Received: from it.buh.tecnik93.com (localhost [127.0.0.1]) by it.buh.tecnik93.com (Postfix) with ESMTP id 911811711A; Tue, 24 Oct 2006 11:11:42 +0300 (EEST) Date: Tue, 24 Oct 2006 11:11:41 +0300 From: Ion-Mihai "IOnut" Tetcu To: Bob Martin Message-ID: <20061024111141.49c32c32@it.buh.tecnik93.com> In-Reply-To: <453D08DF.8050405@buckhorn.net> References: <7.0.1.0.0.20061023105413.019810f0@ewol.com> <453D08DF.8050405@buckhorn.net> X-Mailer: Sylpheed-Claws 2.5.2 (GTK+ 2.8.20; i386-portbld-freebsd6.2) Mime-Version: 1.0 Content-Type: multipart/signed; boundary=Sig_q9GBWWXFCfMm_Z07umKEm7x; protocol="application/pgp-signature"; micalg=PGP-SHA1 Cc: freebsd-isp@freebsd.org, Jeff Palmer Subject: Re: dspam + postfix spam gateway X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 24 Oct 2006 08:11:44 -0000 --Sig_q9GBWWXFCfMm_Z07umKEm7x Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: quoted-printable [ please keep original recipients when replying ] On Mon, 23 Oct 2006 13:24:31 -0500 Bob Martin wrote: > I've never done it with dspam, at least alone, but you should be able > to find tons of info on mail gateways with postfix + amavisd running > clamav and spamassassin & dspam. Which is not likely to help him, because of his dspam specific problems. (AFAIR "quarantine" is handled by amavis in all the examples I saw). > The set up above will handle very large volumes of email. >=20 > Also, you don't want to rely solely on Bayesian filters for spam=20 > control. The spammers figured out how to get by that ages ago. I strongly disagree in case of a trained dspam instalation. Jeff, send me the details of you dspam installation and I'll try to help when I get home tonight. --=20 IOnut - Un^d^dregistered ;) FreeBSD "user" "Intellectual Property" is nowhere near as valuable as "Intellect" Without facts, the decision cannot be made logically. You must rely on your human intuition. -- Spock, "Assignment: Earth", stardate unknown --Sig_q9GBWWXFCfMm_Z07umKEm7x Content-Type: application/pgp-signature; name=signature.asc Content-Disposition: attachment; filename=signature.asc -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.5 (FreeBSD) iD8DBQFFPcq9BX6fi0k6KXsRAlcBAJ9Qbwe1Pw3v1mQpLQ3YvZJaGyQeRQCgugOr XFN10zr/TWbzmvmXXD+XWlM= =82E+ -----END PGP SIGNATURE----- --Sig_q9GBWWXFCfMm_Z07umKEm7x-- From owner-freebsd-isp@FreeBSD.ORG Tue Oct 24 17:08:07 2006 Return-Path: X-Original-To: isp@freebsd.org Delivered-To: freebsd-isp@FreeBSD.ORG Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 5518A16A589 for ; Tue, 24 Oct 2006 17:08:07 +0000 (UTC) (envelope-from mike@coloradosurf.com) Received: from cluster1.bresnan.net (cluster1.bresnan.net [69.145.248.57]) by mx1.FreeBSD.org (Postfix) with ESMTP id 00BA643D49 for ; Tue, 24 Oct 2006 17:08:04 +0000 (GMT) (envelope-from mike@coloradosurf.com) Received: from [72.174.194.94] (HELO pigskin.com) by fe-3.cluster1.bresnan.net (CommuniGate Pro SMTP 5.0.11) with ESMTPS id 309348183 for isp@freebsd.org; Tue, 24 Oct 2006 11:06:16 -0600 Received: from coloradosurf.com (localhost.coloradosurf.com [127.0.0.1]) by pigskin.com (8.13.6/8.13.6) with ESMTP id k9OH82OI032714 for ; Tue, 24 Oct 2006 11:08:02 -0600 (MDT) (envelope-from mike@coloradosurf.com) Received: (from mike@localhost) by coloradosurf.com (8.13.6/8.13.6/Submit) id k9OH81qE032713 for isp@freebsd.org; Tue, 24 Oct 2006 11:08:01 -0600 (MDT) (envelope-from mike) Date: Tue, 24 Oct 2006 11:08:01 -0600 From: mike To: isp@freebsd.org Message-ID: <20061024170801.GA32638@coloradosurf.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.4.2.2i X-Spam-Score: -1.442 () ALL_TRUSTED,SPF_HELO_PASS,SPF_PASS X-Scanned-By: MIMEDefang 2.57 on 172.16.2.1 Cc: Subject: mimedefang/spamassassin/dcc X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 24 Oct 2006 17:08:07 -0000 I am running mimedefang-2.57 w/ p5-Mail-SpamAssassin-3.1.6 on 6.1-RELEASE-p10 (w/ dcc-dccd-1.3.42). I cannot get spamassassin to use DCC. It makes me very sad. I have : use_dcc 1 dcc_timeout 30 dcc_path /usr/local/bin/dccproc in my /usr/local/etc/mimedefang/sa-mimedefang.cf I have: $SALocalTestsOnly = 0; in my /usr/local/etc/mimedefang/mimedefang-filter I have verified there is no firewall issue by running dccproc from the command line in verbose mode (and verified the output file had the appropriate X-DCC header). SideNote: My custom warning ( $GeneralWarning ) in the /usr/local/etc/mimedefang/mimedefang-filter file is not being used. Has anyone else seen (and fixed) this? I thought I eliminated all of the bonehead stuff. ??? TIA!! mike From owner-freebsd-isp@FreeBSD.ORG Tue Oct 24 19:53:56 2006 Return-Path: X-Original-To: isp@freebsd.org Delivered-To: freebsd-isp@FreeBSD.ORG Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 62F9516A492 for ; Tue, 24 Oct 2006 19:53:56 +0000 (UTC) (envelope-from eh@netuse.de) Received: from mail0.netuse.de (mailout0.netuse.de [195.244.244.26]) by mx1.FreeBSD.org (Postfix) with ESMTP id 9BABA43D55 for ; Tue, 24 Oct 2006 19:53:53 +0000 (GMT) (envelope-from eh@netuse.de) Received: from netuse.de (boss [192.168.254.12]) by mail0.netuse.de (8.12.11/8.12.10) with ESMTP id k9OJriZj025876 (version=TLSv1/SSLv3 cipher=EDH-RSA-DES-CBC3-SHA bits=168 verify=OK); Tue, 24 Oct 2006 21:53:45 +0200 (CEST) Received: from raysrv3.intern.netuse.de (raysrv3 [192.168.254.69]) by netuse.de (8.12.10/8.12.10) with ESMTP id k9OJrh15023350; Tue, 24 Oct 2006 21:53:43 +0200 (MEST) Received: from raysrv3.intern.netuse.de (localhost [127.0.0.1]) by raysrv3.intern.netuse.de (8.13.6+Sun/8.13.6) with ESMTP id k9OJrhOY029533; Tue, 24 Oct 2006 21:53:43 +0200 (MEST) Received: (from eh@localhost) by raysrv3.intern.netuse.de (8.13.6+Sun/8.13.6/Submit) id k9OJrh0h029532; Tue, 24 Oct 2006 21:53:43 +0200 (MEST) Date: Tue, 24 Oct 2006 21:53:43 +0200 From: Edda Hochstrate To: mike Message-ID: <20061024195343.GA29404@raysrv3.netuse.de> References: <20061024170801.GA32638@coloradosurf.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20061024170801.GA32638@coloradosurf.com> User-Agent: Mutt/1.4.2.1i X-AntiVirus: checked by AntiVir Milter 1.0.6; AVE 7.2.0.32; VDF 6.36.0.177 X-AntiVirus: checked by AntiVir Milter 1.0.6; AVE 7.2.0.32; VDF 6.36.0.177 X-Greylist: Sender IP whitelisted,not delayed by milter-greylist-2.0 (mail0.netuse.de [195.244.244.5]); Tue, 24 Oct 2006 21:53:45 +0200 (CEST) Cc: isp@freebsd.org Subject: Re: mimedefang/spamassassin/dcc X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 24 Oct 2006 19:53:56 -0000 On Tue, Oct 24, 2006 at 11:08:01AM -0600, mike wrote: > I am running mimedefang-2.57 w/ p5-Mail-SpamAssassin-3.1.6 on > 6.1-RELEASE-p10 (w/ dcc-dccd-1.3.42). I cannot get spamassassin > to use DCC. It makes me very sad. > > I have : > use_dcc 1 > dcc_timeout 30 > dcc_path /usr/local/bin/dccproc > > > I have verified there is no firewall issue by running dccproc > from the command line in verbose mode (and verified the > output file had the appropriate X-DCC header). just to determine what's your problem, spamassassin or mimedefang have you tried spamassassin in debug mode? /usr/bin/spamassassin -t -D < /usr/share/doc/spamassassin/examples/sample-spam.txt the debug lines for dcc should look like this with your configuration: --- [...] debug: DCCifd is not available: no r/w dccifd socket found. debug: executable for dccproc was found at /usr/local/bin/dccproc debug: DCC is available: /usr/local/bin/dccproc debug: entering helper-app run mode debug: setuid: helper proc 28365: ruid=0 euid=0 debug: DCC: got response: X-DCC-EATSERVER-Metrics: host1 1166; Body=203 Fuz1=203 Fuz2=203 debug: leaving helper-app run mode [...] --- Edda From owner-freebsd-isp@FreeBSD.ORG Tue Oct 24 21:54:23 2006 Return-Path: X-Original-To: isp@freebsd.org Delivered-To: freebsd-isp@FreeBSD.ORG Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id A2F1B16A412 for ; Tue, 24 Oct 2006 21:54:23 +0000 (UTC) (envelope-from mike@coloradosurf.com) Received: from cluster1.bresnan.net (cluster1.bresnan.net [69.145.248.57]) by mx1.FreeBSD.org (Postfix) with ESMTP id 4AAE843D49 for ; Tue, 24 Oct 2006 21:54:23 +0000 (GMT) (envelope-from mike@coloradosurf.com) Received: from [72.174.194.94] (HELO pigskin.com) by fe-4.cluster1.bresnan.net (CommuniGate Pro SMTP 5.0.11) with ESMTPS id 52565384; Tue, 24 Oct 2006 15:52:31 -0600 Received: from coloradosurf.com (localhost.coloradosurf.com [127.0.0.1]) by pigskin.com (8.13.6/8.13.6) with ESMTP id k9OLsMg2033701; Tue, 24 Oct 2006 15:54:23 -0600 (MDT) (envelope-from mike@coloradosurf.com) Received: (from mike@localhost) by coloradosurf.com (8.13.6/8.13.6/Submit) id k9OLsMOp033700; Tue, 24 Oct 2006 15:54:22 -0600 (MDT) (envelope-from mike) Date: Tue, 24 Oct 2006 15:54:22 -0600 From: mike To: Edda Hochstrate Message-ID: <20061024215422.GA33681@coloradosurf.com> References: <20061024170801.GA32638@coloradosurf.com> <20061024195343.GA29404@raysrv3.netuse.de> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20061024195343.GA29404@raysrv3.netuse.de> User-Agent: Mutt/1.4.2.2i X-Spam-Score: -1.442 () ALL_TRUSTED,SPF_HELO_PASS,SPF_PASS X-Scanned-By: MIMEDefang 2.57 on 172.16.2.1 Cc: isp@freebsd.org Subject: Re: mimedefang/spamassassin/dcc X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 24 Oct 2006 21:54:23 -0000 Doh! yes (sorry, should have included that too): [91430] dbg: dcc: dccifd is not available: no r/w dccifd socket found [91430] dbg: util: executable for dccproc was found at /usr/local/bin/dccproc [91430] dbg: dcc: dccproc is available: /usr/local/bin/dccproc [91430] dbg: info: entering helper-app run mode [91430] dbg: dcc: opening pipe: /usr/local/bin/dccproc -H -x 0 -a 209.61.157.241 < /tmp/.spamassassin9143057HGBttmp [91433] dbg: util: setuid: ruid=0 euid=0 [91430] dbg: dcc: got response: X-DCC-wuwien-Metrics: my.mailserver.com 1290; Body=2 Fuz1=2 Fuz2=2 thx, mike On Tue, Oct 24, 2006 at 09:53:43PM +0200, Edda Hochstrate wrote: > Date: Tue, 24 Oct 2006 21:53:43 +0200 > From: Edda Hochstrate > To: mike > Cc: isp@freebsd.org > Subject: Re: mimedefang/spamassassin/dcc > > On Tue, Oct 24, 2006 at 11:08:01AM -0600, mike wrote: > > I am running mimedefang-2.57 w/ p5-Mail-SpamAssassin-3.1.6 on > > 6.1-RELEASE-p10 (w/ dcc-dccd-1.3.42). I cannot get spamassassin > > to use DCC. It makes me very sad. > > > > I have : > > use_dcc 1 > > dcc_timeout 30 > > dcc_path /usr/local/bin/dccproc > > > > > > I have verified there is no firewall issue by running dccproc > > from the command line in verbose mode (and verified the > > output file had the appropriate X-DCC header). > > just to determine what's your problem, spamassassin or mimedefang > have you tried spamassassin in debug mode? > > /usr/bin/spamassassin -t -D < /usr/share/doc/spamassassin/examples/sample-spam.txt > > the debug lines for dcc should look like this with your configuration: > > --- > [...] > debug: DCCifd is not available: no r/w dccifd socket found. > debug: executable for dccproc was found at /usr/local/bin/dccproc > debug: DCC is available: /usr/local/bin/dccproc > debug: entering helper-app run mode > debug: setuid: helper proc 28365: ruid=0 euid=0 > debug: DCC: got response: X-DCC-EATSERVER-Metrics: host1 1166; Body=203 Fuz1=203 Fuz2=203 > debug: leaving helper-app run mode > [...] > --- > > Edda > _______________________________________________ > freebsd-isp@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-isp > To unsubscribe, send any mail to "freebsd-isp-unsubscribe@freebsd.org" From owner-freebsd-isp@FreeBSD.ORG Tue Oct 24 22:27:19 2006 Return-Path: X-Original-To: isp@freebsd.org Delivered-To: freebsd-isp@FreeBSD.ORG Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id A4C9316A403 for ; Tue, 24 Oct 2006 22:27:19 +0000 (UTC) (envelope-from eh@netuse.de) Received: from mail0.netuse.de (mailout0.netuse.de [195.244.244.26]) by mx1.FreeBSD.org (Postfix) with ESMTP id 20BDB43D45 for ; Tue, 24 Oct 2006 22:27:18 +0000 (GMT) (envelope-from eh@netuse.de) Received: from netuse.de (boss [192.168.254.12]) by mail0.netuse.de (8.12.11/8.12.10) with ESMTP id k9OMRB9Q027435 (version=TLSv1/SSLv3 cipher=EDH-RSA-DES-CBC3-SHA bits=168 verify=OK); Wed, 25 Oct 2006 00:27:11 +0200 (CEST) Received: from raysrv3.intern.netuse.de (raysrv3 [192.168.254.69]) by netuse.de (8.12.10/8.12.10) with ESMTP id k9OMRA15026251; Wed, 25 Oct 2006 00:27:10 +0200 (MEST) Received: from raysrv3.intern.netuse.de (localhost [127.0.0.1]) by raysrv3.intern.netuse.de (8.13.6+Sun/8.13.6) with ESMTP id k9OMRA6L007778; Wed, 25 Oct 2006 00:27:10 +0200 (MEST) Received: (from eh@localhost) by raysrv3.intern.netuse.de (8.13.6+Sun/8.13.6/Submit) id k9OMR9TM007777; Wed, 25 Oct 2006 00:27:09 +0200 (MEST) Date: Wed, 25 Oct 2006 00:27:09 +0200 From: Edda Hochstrate To: mike Message-ID: <20061024222709.GA4939@raysrv3.netuse.de> References: <20061024170801.GA32638@coloradosurf.com> <20061024195343.GA29404@raysrv3.netuse.de> <20061024215422.GA33681@coloradosurf.com> Mime-Version: 1.0 Content-Type: text/plain; charset=iso-8859-1 Content-Disposition: inline Content-Transfer-Encoding: 8bit In-Reply-To: <20061024215422.GA33681@coloradosurf.com> User-Agent: Mutt/1.4.2.1i X-AntiVirus: checked by AntiVir Milter 1.0.6; AVE 7.2.0.32; VDF 6.36.0.177 X-AntiVirus: checked by AntiVir Milter 1.0.6; AVE 7.2.0.32; VDF 6.36.0.177 X-Greylist: Sender IP whitelisted,not delayed by milter-greylist-2.0 (mail0.netuse.de [195.244.244.5]); Wed, 25 Oct 2006 00:27:11 +0200 (CEST) Cc: isp@freebsd.org Subject: Re: mimedefang/spamassassin/dcc X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 24 Oct 2006 22:27:19 -0000 On Tue, Oct 24, 2006 at 03:54:22PM -0600, mike wrote: > Doh! yes (sorry, should have included that too): > > [91430] dbg: dcc: dccifd is not available: no r/w dccifd socket found > [91430] dbg: util: executable for dccproc was found at /usr/local/bin/dccproc > [91430] dbg: dcc: dccproc is available: /usr/local/bin/dccproc > [91430] dbg: info: entering helper-app run mode > [91430] dbg: dcc: opening pipe: /usr/local/bin/dccproc -H -x 0 -a 209.61.157.241 < /tmp/.spamassassin9143057HGBttmp > [91433] dbg: util: setuid: ruid=0 euid=0 > [91430] dbg: dcc: got response: X-DCC-wuwien-Metrics: my.mailserver.com 1290; Body=2 Fuz1=2 Fuz2=2 ok, so everything seems to work. Maybe I missed something but why do you think that dcc is not working? Do you have an add_header for it in your /usr/local/etc/mimedefang/sa-mimedefang.cf ? add_header all DCC _DCCR_ Edda > > > > thx, > > mike > > > > On Tue, Oct 24, 2006 at 09:53:43PM +0200, Edda Hochstrate wrote: > > Date: Tue, 24 Oct 2006 21:53:43 +0200 > > From: Edda Hochstrate > > To: mike > > Cc: isp@freebsd.org > > Subject: Re: mimedefang/spamassassin/dcc > > > > On Tue, Oct 24, 2006 at 11:08:01AM -0600, mike wrote: > > > I am running mimedefang-2.57 w/ p5-Mail-SpamAssassin-3.1.6 on > > > 6.1-RELEASE-p10 (w/ dcc-dccd-1.3.42). I cannot get spamassassin > > > to use DCC. It makes me very sad. > > > > > > I have : > > > use_dcc 1 > > > dcc_timeout 30 > > > dcc_path /usr/local/bin/dccproc > > > > > > > > > I have verified there is no firewall issue by running dccproc > > > from the command line in verbose mode (and verified the > > > output file had the appropriate X-DCC header). > > > > just to determine what's your problem, spamassassin or mimedefang > > have you tried spamassassin in debug mode? > > > > /usr/bin/spamassassin -t -D < /usr/share/doc/spamassassin/examples/sample-spam.txt > > > > the debug lines for dcc should look like this with your configuration: > > > > --- > > [...] > > debug: DCCifd is not available: no r/w dccifd socket found. > > debug: executable for dccproc was found at /usr/local/bin/dccproc > > debug: DCC is available: /usr/local/bin/dccproc > > debug: entering helper-app run mode > > debug: setuid: helper proc 28365: ruid=0 euid=0 > > debug: DCC: got response: X-DCC-EATSERVER-Metrics: host1 1166; Body=203 Fuz1=203 Fuz2=203 > > debug: leaving helper-app run mode > > [...] > > --- > > > > Edda > > _______________________________________________ > > freebsd-isp@freebsd.org mailing list > > http://lists.freebsd.org/mailman/listinfo/freebsd-isp > > To unsubscribe, send any mail to "freebsd-isp-unsubscribe@freebsd.org" > _______________________________________________ > freebsd-isp@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-isp > To unsubscribe, send any mail to "freebsd-isp-unsubscribe@freebsd.org" -- Edda Hochstrate NetUSE AG Dr.-Hell-Straße, D-24107 Kiel Fon: +49 431 2390 400 -- Fax: +49 431 2390 499 From owner-freebsd-isp@FreeBSD.ORG Wed Oct 25 13:27:02 2006 Return-Path: X-Original-To: isp@freebsd.org Delivered-To: freebsd-isp@FreeBSD.ORG Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id BC0C616A403 for ; Wed, 25 Oct 2006 13:27:02 +0000 (UTC) (envelope-from mike@coloradosurf.com) Received: from cluster1.bresnan.net (cluster1.bresnan.net [69.145.248.57]) by mx1.FreeBSD.org (Postfix) with ESMTP id 31A0A43D49 for ; Wed, 25 Oct 2006 13:27:02 +0000 (GMT) (envelope-from mike@coloradosurf.com) Received: from [72.174.194.94] (HELO pigskin.com) by fe-2.cluster1.bresnan.net (CommuniGate Pro SMTP 5.0.11) with ESMTPS id 419810876; Wed, 25 Oct 2006 07:27:35 -0600 Received: from coloradosurf.com (localhost.coloradosurf.com [127.0.0.1]) by pigskin.com (8.13.6/8.13.6) with ESMTP id k9PDR5NG037277; Wed, 25 Oct 2006 07:27:05 -0600 (MDT) (envelope-from mike@coloradosurf.com) Received: (from mike@localhost) by coloradosurf.com (8.13.6/8.13.6/Submit) id k9PDR4pj037276; Wed, 25 Oct 2006 07:27:04 -0600 (MDT) (envelope-from mike) Date: Wed, 25 Oct 2006 07:27:04 -0600 From: mike To: Edda Hochstrate Message-ID: <20061025132704.GA37236@coloradosurf.com> References: <20061024170801.GA32638@coloradosurf.com> <20061024195343.GA29404@raysrv3.netuse.de> <20061024215422.GA33681@coloradosurf.com> <20061024222709.GA4939@raysrv3.netuse.de> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20061024222709.GA4939@raysrv3.netuse.de> User-Agent: Mutt/1.4.2.2i X-Spam-Score: -1.442 () ALL_TRUSTED,SPF_HELO_PASS,SPF_PASS X-Scanned-By: MIMEDefang 2.57 on 172.16.2.1 Cc: isp@freebsd.org Subject: Re: mimedefang/spamassassin/dcc X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 25 Oct 2006 13:27:02 -0000 The reason I didn't think it was working is because I never saw it in my logs that DCC was being scored. When I used procmail/spamass/ dcc, I would see DCC hits on practically everything (deemed spam). I added "add_header all DCC _DCCR_" to my sa-mimedefang.cf and now I'm seeing the hits. It also significantly dropped our incoming spam (as if that really did change things). While it doesn't make sense (to me), I'll still take it. thx!!!!!!!! mike On Wed, Oct 25, 2006 at 12:27:09AM +0200, Edda Hochstrate wrote: > Date: Wed, 25 Oct 2006 00:27:09 +0200 > From: Edda Hochstrate > To: mike > Cc: isp@freebsd.org > Subject: Re: mimedefang/spamassassin/dcc > > On Tue, Oct 24, 2006 at 03:54:22PM -0600, mike wrote: > > Doh! yes (sorry, should have included that too): > > > > [91430] dbg: dcc: dccifd is not available: no r/w dccifd socket found > > [91430] dbg: util: executable for dccproc was found at /usr/local/bin/dccproc > > [91430] dbg: dcc: dccproc is available: /usr/local/bin/dccproc > > [91430] dbg: info: entering helper-app run mode > > [91430] dbg: dcc: opening pipe: /usr/local/bin/dccproc -H -x 0 -a 209.61.157.241 < /tmp/.spamassassin9143057HGBttmp > > [91433] dbg: util: setuid: ruid=0 euid=0 > > [91430] dbg: dcc: got response: X-DCC-wuwien-Metrics: my.mailserver.com 1290; Body=2 Fuz1=2 Fuz2=2 > > ok, so everything seems to work. > Maybe I missed something but why do you think that dcc is not working? > Do you have an add_header for it in your /usr/local/etc/mimedefang/sa-mimedefang.cf ? > add_header all DCC _DCCR_ > > Edda > > > > > > > > > > thx, > > > > mike > > > > > > > > On Tue, Oct 24, 2006 at 09:53:43PM +0200, Edda Hochstrate wrote: > > > Date: Tue, 24 Oct 2006 21:53:43 +0200 > > > From: Edda Hochstrate > > > To: mike > > > Cc: isp@freebsd.org > > > Subject: Re: mimedefang/spamassassin/dcc > > > > > > On Tue, Oct 24, 2006 at 11:08:01AM -0600, mike wrote: > > > > I am running mimedefang-2.57 w/ p5-Mail-SpamAssassin-3.1.6 on > > > > 6.1-RELEASE-p10 (w/ dcc-dccd-1.3.42). I cannot get spamassassin > > > > to use DCC. It makes me very sad. > > > > > > > > I have : > > > > use_dcc 1 > > > > dcc_timeout 30 > > > > dcc_path /usr/local/bin/dccproc > > > > > > > > > > > > I have verified there is no firewall issue by running dccproc > > > > from the command line in verbose mode (and verified the > > > > output file had the appropriate X-DCC header). > > > > > > just to determine what's your problem, spamassassin or mimedefang > > > have you tried spamassassin in debug mode? > > > > > > /usr/bin/spamassassin -t -D < /usr/share/doc/spamassassin/examples/sample-spam.txt > > > > > > the debug lines for dcc should look like this with your configuration: > > > > > > --- > > > [...] > > > debug: DCCifd is not available: no r/w dccifd socket found. > > > debug: executable for dccproc was found at /usr/local/bin/dccproc > > > debug: DCC is available: /usr/local/bin/dccproc > > > debug: entering helper-app run mode > > > debug: setuid: helper proc 28365: ruid=0 euid=0 > > > debug: DCC: got response: X-DCC-EATSERVER-Metrics: host1 1166; Body=203 Fuz1=203 Fuz2=203 > > > debug: leaving helper-app run mode > > > [...] > > > --- > > > > > > Edda > > > _______________________________________________ > > > freebsd-isp@freebsd.org mailing list > > > http://lists.freebsd.org/mailman/listinfo/freebsd-isp > > > To unsubscribe, send any mail to "freebsd-isp-unsubscribe@freebsd.org" > > _______________________________________________ > > freebsd-isp@freebsd.org mailing list > > http://lists.freebsd.org/mailman/listinfo/freebsd-isp > > To unsubscribe, send any mail to "freebsd-isp-unsubscribe@freebsd.org" > > -- > Edda Hochstrate > NetUSE AG > Dr.-Hell-Stra?e, D-24107 Kiel > Fon: +49 431 2390 400 -- Fax: +49 431 2390 499 > _______________________________________________ > freebsd-isp@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-isp > To unsubscribe, send any mail to "freebsd-isp-unsubscribe@freebsd.org" From owner-freebsd-isp@FreeBSD.ORG Wed Oct 25 16:08:02 2006 Return-Path: X-Original-To: freebsd-isp@freebsd.org Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 3AE2B16A403 for ; Wed, 25 Oct 2006 16:08:02 +0000 (UTC) (envelope-from wash@wananchi.com) Received: from ns2.wananchi.com (ns2.wananchi.com [62.8.64.4]) by mx1.FreeBSD.org (Postfix) with ESMTP id 55CB143D5A for ; Wed, 25 Oct 2006 16:08:00 +0000 (GMT) (envelope-from wash@wananchi.com) Received: from wash by ns2.wananchi.com with local (Exim 4.63 #0 (FreeBSD 4.11-STABLE)) id 1GclIL-000BGo-VF by authid for ; Wed, 25 Oct 2006 19:07:58 +0300 Date: Wed, 25 Oct 2006 19:07:57 +0300 From: Odhiambo Washington To: freebsd-isp@freebsd.org Message-ID: <20061025160757.GH72956@ns2.wananchi.com> Mail-Followup-To: Odhiambo Washington , freebsd-isp@freebsd.org MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline X-Disclaimer: Any views expressed in this message, where not explicitly attributed otherwise, are mine alone!. X-Mailer: Mutt 1.5.13 (2006-08-11) X-Designation: Systems Administrator, Wananchi Online Ltd. X-Location: Nairobi, KE, East Africa. User-Agent: Mutt/1.5.13 (2006-08-11) Subject: Managing multiple DNS Servers X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 25 Oct 2006 16:08:02 -0000 Hello Gang, I have spent the last three days looking into "efficient" ways to manage multiple DNS server. My preferred ones are Open Source, to begin with! There is not so much information out there, or maybe my keywords were simply fake. I have three NSes, 1 master and 2 slaves and manually managing them is not a good idea - not efficient so far. I believe this list has all the information (and maybe tools) that I need. Basically, I have looked at a couple DB based solutions and narrowed down on Sauron and mysqlBind (http://openisp.net/mysqlBind/). 1. Sauron doesn't seem quite intuitive when it comes to dealing with "split views" in Bind (although I hear rumors it could work). I am still looking at it. 2. mysqlBind (1.94) - I have not managed to compile this on my 5.5-STABLE. I'd appreciate help from anyone who has succeeded with compiling... It's obvious that I am not the only one running more than 1 Name Server. There are those of you who run over 5, or even clusters of NSes. Would you please share ideas on methods you have used to manage your name servers. So far, whenever I delete a zone on the master, I have to go to the slaves and delete the zone. I wish I could avoid such steps. I know I could make some complicated scripts to do this, but I am sure such wheels are already rolling somewhere... no need to reinvent. -Wash http://www.netmeister.org/news/learn2quote.html DISCLAIMER: See http://www.wananchi.com/bms/terms.php -- +======================================================================+ |\ _,,,---,,_ | Odhiambo Washington Zzz /,`.-'`' -. ;-;;,_ | Wananchi Online Ltd. www.wananchi.com |,4- ) )-,_. ,\ ( `'-'| Tel: +254 20 313985-9 +254 20 313922 '---''(_/--' `-'\_) | GSM: +254 722 743223 +254 733 744121 +======================================================================+ While you don't greatly need the outside world, it's still very reassuring to know that it's still there. From owner-freebsd-isp@FreeBSD.ORG Wed Oct 25 16:34:02 2006 Return-Path: X-Original-To: freebsd-isp@freebsd.org Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 40C1516A407 for ; Wed, 25 Oct 2006 16:34:02 +0000 (UTC) (envelope-from marco.goncalves@waynext.com) Received: from ns1.waynext.com (ns1.waynext.com [81.92.195.82]) by mx1.FreeBSD.org (Postfix) with ESMTP id 7B3ED43D45 for ; Wed, 25 Oct 2006 16:34:01 +0000 (GMT) (envelope-from marco.goncalves@waynext.com) Received: (qmail 36610 invoked by uid 1008); 25 Oct 2006 16:41:19 -0000 Received: from a81-84-242-139.cpe.netcabo.pt (HELO marco) (marco.goncalves@waynext.com@81.84.242.139) by ns1.waynext.com with SMTP; 25 Oct 2006 17:41:19 +0100 Message-ID: <1ef201c6f855$95f30c40$3000a8c0@marco> From: =?iso-8859-1?Q?Marco_Gon=E7alves?= To: References: <20061025160757.GH72956@ns2.wananchi.com> Date: Wed, 25 Oct 2006 17:49:49 +0100 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2800.1807 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2800.1807 X-Antivirus: avast! (VPS 0643-3, 25-10-2006), Outbound message X-Antivirus-Status: Clean Subject: Re: Managing multiple DNS Servers X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 25 Oct 2006 16:34:02 -0000 Hi, We are using tinydns with vegadns control panel. No problems so far. Handles well quite a load. Checkout http://cr.yp.to/djbdns.html http://www.djbdnsrocks.org/ http://www.vegadns.org/ Cheers, Marco ----- Original Message ----- From: "Odhiambo Washington" To: Sent: Wednesday, October 25, 2006 5:07 PM Subject: Managing multiple DNS Servers > > Hello Gang, > > I have spent the last three days looking into "efficient" ways to manage > multiple DNS server. My preferred ones are Open Source, to begin with! > > There is not so much information out there, or maybe my keywords were > simply fake. > > I have three NSes, 1 master and 2 slaves and manually managing them is > not a good idea - not efficient so far. > > I believe this list has all the information (and maybe tools) that I > need. > > Basically, I have looked at a couple DB based solutions and narrowed > down on Sauron and mysqlBind (http://openisp.net/mysqlBind/). > > 1. Sauron doesn't seem quite intuitive when it comes to dealing with > "split views" in Bind (although I hear rumors it could work). I am > still looking at it. > 2. mysqlBind (1.94) - I have not managed to compile this on my > 5.5-STABLE. I'd appreciate help from anyone who has succeeded with > compiling... > > It's obvious that I am not the only one running more than 1 Name > Server. There are those of you who run over 5, or even clusters of > NSes. > > Would you please share ideas on methods you have used to manage your > name servers. So far, whenever I delete a zone on the master, I have to > go to the slaves and delete the zone. I wish I could avoid such steps. > > I know I could make some complicated scripts to do this, but I am sure > such wheels are already rolling somewhere... no need to reinvent. > > > > > -Wash > > http://www.netmeister.org/news/learn2quote.html > > DISCLAIMER: See http://www.wananchi.com/bms/terms.php > > -- > +======================================================================+ > |\ _,,,---,,_ | Odhiambo Washington > Zzz /,`.-'`' -. ;-;;,_ | Wananchi Online Ltd. www.wananchi.com > |,4- ) )-,_. ,\ ( `'-'| Tel: +254 20 313985-9 +254 20 313922 > '---''(_/--' `-'\_) | GSM: +254 722 743223 +254 733 744121 > +======================================================================+ > > While you don't greatly need the outside world, it's still very > reassuring to know that it's still there. > _______________________________________________ > freebsd-isp@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-isp > To unsubscribe, send any mail to "freebsd-isp-unsubscribe@freebsd.org" > From owner-freebsd-isp@FreeBSD.ORG Wed Oct 25 16:36:58 2006 Return-Path: X-Original-To: freebsd-isp@freebsd.org Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id C92BD16A416 for ; Wed, 25 Oct 2006 16:36:58 +0000 (UTC) (envelope-from eculp@bafirst.com) Received: from zod.pns.networktel.net (zod.pns.networktel.net [209.159.47.6]) by mx1.FreeBSD.org (Postfix) with ESMTP id 6A65943D58 for ; Wed, 25 Oct 2006 16:36:58 +0000 (GMT) (envelope-from eculp@bafirst.com) Received: from bafirst.com (72-12-2-214.wan.networktel.net [72.12.2.214]) by zod.pns.networktel.net (8.13.6/8.12.11) with ESMTP id k9PGaqxu039061 for ; Wed, 25 Oct 2006 16:36:57 GMT (envelope-from eculp@bafirst.com) Received: from localhost (localhost [127.0.0.1]) (uid 80) by bafirst.com with local; Wed, 25 Oct 2006 11:36:52 -0500 id 00095C0E.453F92A4.0000730D Received: from dsl-189-141-51-178.prod-infinitum.com.mx (dsl-189-141-51-178.prod-infinitum.com.mx [189.141.51.178]) by correo.bafirst.com (Horde MIME library) with HTTP; Wed, 25 Oct 2006 11:36:51 -0500 Message-ID: <20061025113651.94ja7h9sgcco8skg@correo.bafirst.com> X-Priority: 3 (Normal) Date: Wed, 25 Oct 2006 11:36:51 -0500 From: "eculp@bafirst.com" To: freebsd-isp@freebsd.org References: <20061025160757.GH72956@ns2.wananchi.com> In-Reply-To: <20061025160757.GH72956@ns2.wananchi.com> MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1; DelSp="Yes"; format="flowed" Content-Disposition: inline Content-Transfer-Encoding: quoted-printable User-Agent: Internet Messaging Program (IMP) H3 (4.2-cvs) Subject: Re: Managing multiple DNS Servers X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 25 Oct 2006 16:36:59 -0000 Quoting Odhiambo Washington : > > Hello Gang, > > I have spent the last three days looking into "efficient" ways to manage > multiple DNS server. My preferred ones are Open Source, to begin with! > > There is not so much information out there, or maybe my keywords were > simply fake. > > I have three NSes, 1 master and 2 slaves and manually managing them is > not a good idea - not efficient so far. > > I believe this list has all the information (and maybe tools) that I > need. > > Basically, I have looked at a couple DB based solutions and narrowed > down on Sauron and mysqlBind (http://openisp.net/mysqlBind/). > > 1. Sauron doesn't seem quite intuitive when it comes to dealing with > "split views" in Bind (although I hear rumors it could work). I am > still looking at it. > 2. mysqlBind (1.94) - I have not managed to compile this on my > 5.5-STABLE. I'd appreciate help from anyone who has succeeded with > compiling... > > It's obvious that I am not the only one running more than 1 Name > Server. There are those of you who run over 5, or even clusters of > NSes. > > Would you please share ideas on methods you have used to manage your > name servers. So far, whenever I delete a zone on the master, I have to > go to the slaves and delete the zone. I wish I could avoid such steps. > > I know I could make some complicated scripts to do this, but I am sure > such wheels are already rolling somewhere... no need to reinvent. > Odhiambo, I=B4m afraid that I don=B4t have an answer just more questions. I=B4ve been= =20 looking at the same but wanting to use ldap. There is even an =20 /usr/ports/net/ldap2dns port . Ldap would seem to be better suited to =20 dns than mysql (a lot more reads than writes). Could someone who is =20 using ldap2dns add some comments and if you use it with bind or djbdns =20 in addition to mysql backend options. It looks like there is an new version with some preformance comments =20 at http://projects.alkaloid.net/ and a web admin tool now integrated =20 in the horde framework. (info from the same page.) that could make it =20 more attractive. Thanks, ed > > > > -Wash > > http://www.netmeister.org/news/learn2quote.html > > DISCLAIMER: See http://www.wananchi.com/bms/terms.php > > -- > +=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D= =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D= =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D+ > |\ _,,,---,,_ | Odhiambo Washington > Zzz /,`.-'`' -. ;-;;,_ | Wananchi Online Ltd. www.wananchi.com > |,4- ) )-,_. ,\ ( `'-'| Tel: +254 20 313985-9 +254 20 313922 > '---''(_/--' `-'\_) | GSM: +254 722 743223 +254 733 744121 > +=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D= =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D= =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D+ > > While you don't greatly need the outside world, it's still very > reassuring to know that it's still there. > _______________________________________________ > freebsd-isp@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-isp > To unsubscribe, send any mail to "freebsd-isp-unsubscribe@freebsd.org" > From owner-freebsd-isp@FreeBSD.ORG Wed Oct 25 16:47:15 2006 Return-Path: X-Original-To: freebsd-isp@freebsd.org Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 38E2C16A492 for ; Wed, 25 Oct 2006 16:47:15 +0000 (UTC) (envelope-from jsimola@gmail.com) Received: from ug-out-1314.google.com (ug-out-1314.google.com [66.249.92.173]) by mx1.FreeBSD.org (Postfix) with ESMTP id C8E2F43D66 for ; Wed, 25 Oct 2006 16:47:10 +0000 (GMT) (envelope-from jsimola@gmail.com) Received: by ug-out-1314.google.com with SMTP id m2so129308uge for ; Wed, 25 Oct 2006 09:47:10 -0700 (PDT) DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=beta; d=gmail.com; h=received:message-id:date:from:to:subject:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; b=Tya5qx1kRTotItyWJXya76zGLDtriJvp+qcoj6e0+avmvhuRL5SmCBg4FnPOhoj0Gkp6PJTG7wrZko/GkFHAvZqezSLJ0UBZOSJKYPFRT3G8gGwg+l6F00UZJTlxcYZVT9fYc/S75EqS0N+nOaJQEnlV5IfTYR4Vw6Ixz78qyUk= Received: by 10.78.94.37 with SMTP id r37mr61099hub; Wed, 25 Oct 2006 09:47:09 -0700 (PDT) Received: by 10.78.153.10 with HTTP; Wed, 25 Oct 2006 09:47:09 -0700 (PDT) Message-ID: <8eea04080610250947j38285f7ct5630751baf28b41d@mail.gmail.com> Date: Wed, 25 Oct 2006 09:47:09 -0700 From: "Jon Simola" To: "Odhiambo Washington" , freebsd-isp@freebsd.org In-Reply-To: <20061025160757.GH72956@ns2.wananchi.com> MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Content-Disposition: inline References: <20061025160757.GH72956@ns2.wananchi.com> Cc: Subject: Re: Managing multiple DNS Servers X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 25 Oct 2006 16:47:15 -0000 On 10/25/06, Odhiambo Washington wrote: > Would you please share ideas on methods you have used to manage your > name servers. So far, whenever I delete a zone on the master, I have to > go to the slaves and delete the zone. I wish I could avoid such steps. I run djbdns for a few hundred domains. Works much better for me than BIND ever did, and it's very easy to script. The migration was not trivial, but much easier than the continual BIND problems that I seemed to encounter. See http://lifewithdjbdns.org/ and djb's site at http://cr.yp.to/djbdns.html Updating slaves is as simple as scp'ing the compiled file to them, and because all the servers use the same source file for serving queries, there is none of the often amusing zone transfer problems that BIND seems to have a penchant for. -- Jon From owner-freebsd-isp@FreeBSD.ORG Thu Oct 26 18:46:29 2006 Return-Path: X-Original-To: freebsd-isp@freebsd.org Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 03F0F16A4D8 for ; Thu, 26 Oct 2006 18:46:29 +0000 (UTC) (envelope-from fgildred@mac.com) Received: from smtpout.mac.com (smtpout.mac.com [17.250.248.186]) by mx1.FreeBSD.org (Postfix) with ESMTP id 628EA43D88 for ; Thu, 26 Oct 2006 18:46:17 +0000 (GMT) (envelope-from fgildred@mac.com) Received: from mac.com (smtpin04-en2 [10.13.10.149]) by smtpout.mac.com (Xserve/8.12.11/smtpout16/MantshX 4.0) with ESMTP id k9QIjZ3N015062 for ; Thu, 26 Oct 2006 11:45:35 -0700 (PDT) Received: from [192.168.16.30] (host-69-48-17-53.spr.choiceone.net [69.48.17.53]) (authenticated bits=0) by mac.com (Xserve/smtpin04/MantshX 4.0) with ESMTP id k9QIjWbi004304 for ; Thu, 26 Oct 2006 11:45:34 -0700 (PDT) Mime-Version: 1.0 (Apple Message framework v752.3) In-Reply-To: <20061025160757.GH72956@ns2.wananchi.com> References: <20061025160757.GH72956@ns2.wananchi.com> Content-Type: text/plain; charset=US-ASCII; delsp=yes; format=flowed Message-Id: Content-Transfer-Encoding: 7bit From: Fred Gildred Date: Thu, 26 Oct 2006 14:45:28 -0400 To: freebsd-isp@freebsd.org X-Mailer: Apple Mail (2.752.3) X-Brightmail-Tracker: AAAAAA== X-Brightmail-scanned: yes Subject: Re: Managing multiple DNS Servers X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 26 Oct 2006 18:46:29 -0000 Have a look at NicTool tool: http://www.nictool.com/ Cheers, Fred On Oct 25, 2006, at 12:07 PM, Odhiambo Washington wrote: > > Hello Gang, > > I have spent the last three days looking into "efficient" ways to > manage > multiple DNS server. My preferred ones are Open Source, to begin with! > > There is not so much information out there, or maybe my keywords were > simply fake. > > I have three NSes, 1 master and 2 slaves and manually managing them is > not a good idea - not efficient so far. > > I believe this list has all the information (and maybe tools) that I > need. > > Basically, I have looked at a couple DB based solutions and narrowed > down on Sauron and mysqlBind (http://openisp.net/mysqlBind/). > > 1. Sauron doesn't seem quite intuitive when it comes to dealing with > "split views" in Bind (although I hear rumors it could work). I am > still looking at it. > 2. mysqlBind (1.94) - I have not managed to compile this on my > 5.5-STABLE. I'd appreciate help from anyone who has succeeded with > compiling... > > It's obvious that I am not the only one running more than 1 Name > Server. There are those of you who run over 5, or even clusters of > NSes. > > Would you please share ideas on methods you have used to manage your > name servers. So far, whenever I delete a zone on the master, I > have to > go to the slaves and delete the zone. I wish I could avoid such steps. > > I know I could make some complicated scripts to do this, but I am sure > such wheels are already rolling somewhere... no need to reinvent. > > > > > -Wash > > http://www.netmeister.org/news/learn2quote.html > > DISCLAIMER: See http://www.wananchi.com/bms/terms.php > > -- > +===================================================================== > =+ > |\ _,,,---,,_ | Odhiambo Washington > > Zzz /,`.-'`' -. ;-;;,_ | Wananchi Online Ltd. www.wananchi.com > |,4- ) )-,_. ,\ ( `'-'| Tel: +254 20 313985-9 +254 20 313922 > '---''(_/--' `-'\_) | GSM: +254 722 743223 +254 733 744121 > +===================================================================== > =+ > > While you don't greatly need the outside world, it's still very > reassuring to know that it's still there. > _______________________________________________ > freebsd-isp@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-isp > To unsubscribe, send any mail to "freebsd-isp-unsubscribe@freebsd.org"