From owner-freebsd-isp Sun May 25 00:56:11 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id AAA13915 for isp-outgoing; Sun, 25 May 1997 00:56:11 -0700 (PDT) Received: from silvia.HIP.Berkeley.EDU (ala-ca9-14.ix.netcom.com [207.93.143.78]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id AAA13880; Sun, 25 May 1997 00:56:04 -0700 (PDT) Received: (from asami@localhost) by silvia.HIP.Berkeley.EDU (8.8.5/8.6.9) id AAA11668; Sun, 25 May 1997 00:55:50 -0700 (PDT) Date: Sun, 25 May 1997 00:55:50 -0700 (PDT) Message-Id: <199705250755.AAA11668@silvia.HIP.Berkeley.EDU> To: albast@magigimmix.xs4all.nl CC: Questions@FreeBSD.org, SCSI@FreeBSD.org, ISP@FreeBSD.org, jh@Twiddle.COM In-reply-to: <199705242342.BAA20385@smtp1.xs4all.nl> (albast@magigimmix.xs4all.nl) Subject: Re: Some advice needed From: asami@FreeBSD.org (Satoshi Asami) Sender: owner-isp@FreeBSD.org X-Loop: FreeBSD.org Precedence: bulk * I have a question regarding some server setup; * I'm planning to use the Adaptec AHA-3940UW PCI adapter in combination * with two Quantum AtlasII QM34550ALSW 4.5 GB UW SCSI-3 harddisks. 3940UW and Atlas-II is a great combination. Just one thing you need to be careful, make sure you get the LXY4 firmware of the AII. You won't be able to find firmware upgrades if you gut LXQ1 or LXY1 (the only firmware upgrades found on ftp.quantum.com are for narrow AIIs). If you get LXQ1 like me, expect data losses and other unpleasant consequences under heavy load. (I called Quantum tech support, they said they'll let a technician call me but they never did....) Satoshi From owner-freebsd-isp Sun May 25 10:41:43 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id KAA00442 for isp-outgoing; Sun, 25 May 1997 10:41:43 -0700 (PDT) Received: from nero.in-design.com (root@nero.in-design.com [204.157.146.146]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id KAA00437 for ; Sun, 25 May 1997 10:41:38 -0700 (PDT) Received: from localhost (archive@localhost) by nero.in-design.com (8.8.5/8.8.5) with SMTP id NAA14842; Sun, 25 May 1997 13:41:31 -0400 (EDT) Date: Sun, 25 May 1997 13:41:31 -0400 (EDT) From: Intuitive Design Archive To: dennis cc: Jack Wenger , freebsd-isp@FreeBSD.ORG Subject: Re: Clients per Bandwidth In-Reply-To: <3.0.32.19970524123241.00c97470@etinc.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk On Sat, 24 May 1997, dennis wrote: > At 01:46 PM 5/24/97 +1000, Daniel O'Callaghan wrote: > > > > > >On Fri, 23 May 1997, Jack Wenger wrote: > > > >> I'm trying to figure out how many virtual domains to put on a 128 ISDN > >> connected box. I've got a P133 w/ 64Mb ram, and a good fast SCSI subsystem. > >> So, is there a decent way to figure out when I need to move up the > bandwidth > >> ladder? > >> In other words, I wanna know how many concurrent requests I can handle. We > >> DON'T have anyone dialing in, just hosting web sites. > > > >You can work it out yourself. Average request is 10-15 kbytes. > >128k ISDN can handle 60 MB/hour at 100%. To stay within the comfort range > >say 30 MB/hour, or 2-3000 requests/hour. > > > >It really is pretty basic mathematics, and you should also play around > >with the figures to work out how much each average request costs you to > >deliver in bandwidth terms. > > > >You should consider selling some *inbound* services (not a lot, but some) > >or else you will be only half utilising your paid-for capacity. > > Its basically a crapshoot (as you only need 1 "killer" site to trash the > whole > equation). A bandwidth manager can help eliminate this possibility and > also allow you to sell chunks of bandwidth and price your services > accordingly. what is a good bandwidth manager. If you don't have access to the router, or line...? Intuitive Design Archive http://www.in-design.com archive@in-design.com From owner-freebsd-isp Sun May 25 16:38:46 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id QAA15207 for isp-outgoing; Sun, 25 May 1997 16:38:46 -0700 (PDT) Received: from etinc.com (et-gw-fr1.etinc.com [204.141.244.98]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id QAA15198 for ; Sun, 25 May 1997 16:38:42 -0700 (PDT) Received: from dbws.etinc.com (dbws.etinc.com [204.141.95.130]) by etinc.com (8.8.3/8.6.9) with SMTP id TAA25447; Sun, 25 May 1997 19:49:44 -0400 (EDT) Message-Id: <3.0.32.19970525193717.006b5e6c@etinc.com> X-Sender: dennis@etinc.com X-Mailer: Windows Eudora Pro Version 3.0 (32) Date: Sun, 25 May 1997 19:37:19 -0400 To: Intuitive Design Archive From: Dennis Subject: Re: Clients per Bandwidth Cc: Jack Wenger , freebsd-isp@FreeBSD.ORG Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk At 01:41 PM 5/25/97 -0400, Intuitive Design Archive wrote: >On Sat, 24 May 1997, dennis wrote: > >> At 01:46 PM 5/24/97 +1000, Daniel O'Callaghan wrote: >> > >> > >> >On Fri, 23 May 1997, Jack Wenger wrote: >> > >> >> I'm trying to figure out how many virtual domains to put on a 128 ISDN >> >> connected box. I've got a P133 w/ 64Mb ram, and a good fast SCSI subsystem. >> >> So, is there a decent way to figure out when I need to move up the >> bandwidth >> >> ladder? >> >> In other words, I wanna know how many concurrent requests I can handle. We >> >> DON'T have anyone dialing in, just hosting web sites. >> > >> >You can work it out yourself. Average request is 10-15 kbytes. >> >128k ISDN can handle 60 MB/hour at 100%. To stay within the comfort range >> >say 30 MB/hour, or 2-3000 requests/hour. >> > >> >It really is pretty basic mathematics, and you should also play around >> >with the figures to work out how much each average request costs you to >> >deliver in bandwidth terms. >> > >> >You should consider selling some *inbound* services (not a lot, but some) >> >or else you will be only half utilising your paid-for capacity. >> >> Its basically a crapshoot (as you only need 1 "killer" site to trash the >> whole >> equation). A bandwidth manager can help eliminate this possibility and >> also allow you to sell chunks of bandwidth and price your services >> accordingly. > > what is a good bandwidth manager. If you don't have access to the >router, or line...? You put the bwmgr inbetween the router and your hosts to be managed. Dennis > > > Intuitive Design Archive > http://www.in-design.com > archive@in-design.com > > > ---------------------------------------------------------------------------- -------- Emerging Technologies, Inc. http://www.etinc.com 56kbs to T1/E1 Adapters for 'BSD and LINUX 4 Port PCI Adapter, 1 or 2 port ISA Adapter ET/BWMGR Bandwidth Allocation Bandwidth Allocation/Limiting Routers From owner-freebsd-isp Sun May 25 20:56:25 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id UAA25433 for isp-outgoing; Sun, 25 May 1997 20:56:25 -0700 (PDT) Received: from r74h25.res.gatech.edu (ken@r74h25.res.gatech.edu [128.61.74.25]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id UAA25419; Sun, 25 May 1997 20:56:17 -0700 (PDT) Received: (from ken@localhost) by r74h25.res.gatech.edu (8.8.5/8.8.5) id XAA28280; Sun, 25 May 1997 23:56:03 -0400 (EDT) From: "Kenneth D. Merry" Message-Id: <199705260356.XAA28280@r74h25.res.gatech.edu> Subject: Re: Some advice needed In-Reply-To: <199705250755.AAA11668@silvia.HIP.Berkeley.EDU> from Satoshi Asami at "May 25, 97 00:55:50 am" To: asami@FreeBSD.ORG (Satoshi Asami) Date: Sun, 25 May 1997 23:56:03 -0400 (EDT) Cc: albast@magigimmix.xs4all.nl, Questions@FreeBSD.ORG, SCSI@FreeBSD.ORG, ISP@FreeBSD.ORG, jh@Twiddle.COM X-Mailer: ELM [version 2.4ME+ PL25 (25)] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk Satoshi Asami wrote: > * I have a question regarding some server setup; > * I'm planning to use the Adaptec AHA-3940UW PCI adapter in combination > * with two Quantum AtlasII QM34550ALSW 4.5 GB UW SCSI-3 harddisks. > 3940UW and Atlas-II is a great combination. Just one thing you need to > be careful, make sure you get the LXY4 firmware of the AII. You > won't be able to find firmware upgrades if you gut LXQ1 or LXY1 (the > only firmware upgrades found on ftp.quantum.com are for narrow AIIs). > If you get LXQ1 like me, expect data losses and other unpleasant > consequences under heavy load. Really? I loaded the LXY4 firmware upgrade on my ultra-wide 4G Atlas II, and it's working fine. (I believe I used Dagnlxy4.fup) I started out with LXQ1 firmware. old dmesg: (ahc0:0:0): "QUANTUM XP34550W LXQ1" type 0 fixed SCSI 2 sd0(ahc0:0:0): Direct-Access 4341MB (8890760 512 byte sectors) new dmesg: sd0 at scbus0 target 0 lun 0 sd0: type 0 fixed SCSI 2 sd0: Direct-Access 4341MB (8890760 512 byte sectors) Ken -- Kenneth Merry ken@r74h25.res.gatech.edu Disclaimer: I don't speak for GTRI, GT, or Elvis. From owner-freebsd-isp Mon May 26 10:04:11 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id KAA29442 for isp-outgoing; Mon, 26 May 1997 10:04:11 -0700 (PDT) Received: from msn2.globaldialog.com (root@smtp.globaldialog.com [156.46.122.10]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id KAA29434 for ; Mon, 26 May 1997 10:04:08 -0700 (PDT) Received: from br02 ([156.46.248.99]) by msn2.globaldialog.com (8.8.3/8.6.12) with SMTP id MAA29605 for ; Mon, 26 May 1997 12:04:06 -0500 (CDT) Date: Mon, 26 May 1997 12:04:06 -0500 (CDT) Message-Id: <199705261704.MAA29605@msn2.globaldialog.com> X-Sender: jwenger@globaldialog.com X-EUDORA-DEMO: NOT FOR RESALE - 90 DAY DEMONSTRATION COPY X-Mailer: Windows Eudora Pro Version 2.1.2 Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii" To: FreeBSD ISP list From: Jack Wenger Subject: Archive 1250s Tape Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk Does anyone know about Archive 2150s tape drives? I'm trying to configure one to work on a FBSD 2.2.1 box with an Adaptec 1522a SCSI card (floppie support OFF). I can't figure out how to determine the I/O address, IRQ, and DRQ of the tape device. HELP!!!! I've got to get data off of this beast by Tuesday morning! ARRGGGHHH... The only way I can think of to do this is a continuous reboot, change I/O, finish boot, and pray. There's got to be a better way! Thanx... ~~~~~~~~~~~~~~~~~~~~~'-**-'~~~~~~~~~~~~~~~~~~~~~~~ Jack Wenger, Owner Bent Reality Graphics info@bentreality.com http://www.bentreality.com 1-888-701-1026 608-233-8571 ~~~~~~~~~~~~~~~~~~~~~'-**-'~~~~~~~~~~~~~~~~~~~~~~~ From owner-freebsd-isp Mon May 26 10:57:11 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id KAA02079 for isp-outgoing; Mon, 26 May 1997 10:57:11 -0700 (PDT) Received: from h2o.journey.net (h2o.journey.net [207.227.162.60]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id KAA02073 for ; Mon, 26 May 1997 10:57:05 -0700 (PDT) Received: from localhost (listuser@localhost) by h2o.journey.net (8.8.5/8.8.5) with SMTP id NAA22228 for ; Mon, 26 May 1997 13:57:04 -0400 (EDT) Date: Mon, 26 May 1997 13:57:03 -0400 (EDT) From: listuser To: freebsd-isp@freebsd.org Subject: Out Do a Webcube! Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk I am looking to build and sell a box similar to that of pacific internet. However I plan on basing my system around the much more secure and stable OS of FreeBSD. I am curious if a system like this would be of use to anyone on this list. I am also looking for people that want to help build the system. --Matthew S. Bailey mbailey@journey.net From owner-freebsd-isp Mon May 26 11:12:09 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id LAA02817 for isp-outgoing; Mon, 26 May 1997 11:12:09 -0700 (PDT) Received: from devsys.jaguNET.com (devsys.jaguNET.com [206.156.208.6]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id LAA02812 for ; Mon, 26 May 1997 11:12:07 -0700 (PDT) Received: (from jim@localhost) by devsys.jaguNET.com (8.8.5/jag-2.4) id OAA07293; Mon, 26 May 1997 14:11:51 -0400 (EDT) From: Jim Jagielski Message-Id: <199705261811.OAA07293@devsys.jaguNET.com> Subject: Re: Archive 1250s Tape To: info@bentreality.com (Jack Wenger) Date: Mon, 26 May 1997 14:11:50 -0400 (EDT) Cc: freebsd-isp@FreeBSD.ORG Reply-To: jim@jaguNET.com In-Reply-To: <199705261704.MAA29605@msn2.globaldialog.com> from "Jack Wenger" at May 26, 97 12:04:06 pm X-Mailer: ELM [version 2.4 PL25] Content-Type: text Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk Jack Wenger wrote: > > Does anyone know about Archive 2150s tape drives? I'm trying to configure > one to work on a FBSD 2.2.1 box with an Adaptec 1522a SCSI card (floppie > support OFF). I can't figure out how to determine the I/O address, IRQ, and > DRQ of the tape device. > HELP!!!! I've got to get data off of this beast by Tuesday morning! > ARRGGGHHH... The only way I can think of to do this is a continuous reboot, > change I/O, finish boot, and pray. There's got to be a better way! > Thanx... > It's the Adaptec card you need the i/o, irg, etc.. settings for, not the Archive unit. The 1522B uses 0x340 (although some of these units only allow 0x140) with an IRQ of 11: controller aic0 at isa? port 0x140 bio irq 11 vector aicintr To access the tape drive, FreeBSD will automagically map whatever it's SCSI id is so that /dev/rst0 points correctly. -- ==================================================================== Jim Jagielski | jaguNET Access Services jim@jaguNET.com | http://www.jaguNET.com/ "Not the Craw... the CRAW!" From owner-freebsd-isp Mon May 26 11:57:32 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id LAA05049 for isp-outgoing; Mon, 26 May 1997 11:57:32 -0700 (PDT) Received: from superior.mooseriver.com (ppp010-sm2.sirius.com [205.134.231.10]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id LAA05040 for ; Mon, 26 May 1997 11:57:27 -0700 (PDT) Received: (from jgrosch@localhost) by superior.mooseriver.com (8.8.5/8.8.5) id LAA03534; Mon, 26 May 1997 11:57:12 -0700 (PDT) From: Josef Grosch Message-Id: <199705261857.LAA03534@superior.mooseriver.com> Subject: Re: Out Do a Webcube! In-Reply-To: from listuser at "May 26, 97 01:57:03 pm" To: listuser@h2o.journey.net (listuser) Date: Mon, 26 May 1997 11:57:11 -0700 (PDT) Cc: freebsd-isp@freebsd.org Reply-To: jgrosch@superior.mooseriver.com X-Mailer: ELM [version 2.4ME+ PL31 (25)] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk listuser said: > >I am looking to build and sell a box similar to that of pacific internet. >However I plan on basing my system around the much more secure and stable >OS of FreeBSD. > >I am curious if a system like this would be of use to anyone on this list. >I am also looking for people that want to help build the system. > There are a number of companys doing the same as Pacific Internet. Whistle and FreeGate both have a product based on FreeBSD. I have been told that there are several other companys who will also be bring a simular product to market very soon now. Josef -- Josef Grosch | Another day closer to a | FreeBSD 2.2.1 jgrosch@MooseRiver.com | Micro$oft free world | UNIX for the masses From owner-freebsd-isp Mon May 26 12:00:14 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id MAA05202 for isp-outgoing; Mon, 26 May 1997 12:00:14 -0700 (PDT) Received: from msn2.globaldialog.com (root@smtp.globaldialog.com [156.46.122.10]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id MAA05194 for ; Mon, 26 May 1997 12:00:11 -0700 (PDT) Received: from br02 ([156.46.248.99]) by msn2.globaldialog.com (8.8.3/8.6.12) with SMTP id OAA01790 for ; Mon, 26 May 1997 14:00:10 -0500 (CDT) Date: Mon, 26 May 1997 14:00:10 -0500 (CDT) Message-Id: <199705261900.OAA01790@msn2.globaldialog.com> X-Sender: jwenger@globaldialog.com X-EUDORA-DEMO: NOT FOR RESALE - 90 DAY DEMONSTRATION COPY X-Mailer: Windows Eudora Pro Version 2.1.2 Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii" To: FreeBSD ISP list From: Jack Wenger Subject: Re: Archive 1250s Tape Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk Many thanx to all who answered! Especially Blaine, in Denver!! I got the tape to work and it's untarring the data as I type. God, I LOVE this list! Later! ~~~~~~~~~~~~~~~~~~~~~'-**-'~~~~~~~~~~~~~~~~~~~~~~~ Jack Wenger, Owner Bent Reality Graphics info@bentreality.com http://www.bentreality.com 1-888-701-1026 608-233-8571 ~~~~~~~~~~~~~~~~~~~~~'-**-'~~~~~~~~~~~~~~~~~~~~~~~ From owner-freebsd-isp Mon May 26 12:48:26 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id MAA07498 for isp-outgoing; Mon, 26 May 1997 12:48:26 -0700 (PDT) Received: from uhf.wdc.net (uhf.4d.net [207.137.157.140]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id MAA07493 for ; Mon, 26 May 1997 12:48:21 -0700 (PDT) Received: from localhost (bad@localhost) by uhf.wdc.net (8.8.5/8.6.12) with SMTP id PAA00343 for ; Mon, 26 May 1997 15:48:37 -0400 (EDT) Date: Mon, 26 May 1997 15:48:36 -0400 (EDT) From: Bernie Doehner To: freebsd-isp@freebsd.org Subject: floppy tape drive Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk Hi: I am a very small non-profit ISP and it's come clear to me I need to spend a few (very few) $$ on a tape drive. My server doesn't have SCSI, so this leaves me with very few options. Any recommendations on floppy based tape drives? Thanks. Bernie From owner-freebsd-isp Mon May 26 13:12:46 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id NAA08757 for isp-outgoing; Mon, 26 May 1997 13:12:46 -0700 (PDT) Received: from smtp1.ts.kiev.ua (viking.ts.kiev.ua [193.124.229.195]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id NAA08751 for ; Mon, 26 May 1997 13:12:41 -0700 (PDT) Received: from aviion.ts.kiev.ua by smtp1.ts.kiev.ua with SMTP id XAA09817; (8.8.3/zah/2.1) Mon, 26 May 1997 23:11:38 +0300 (EET DST) Received: from nbki.ipri.kiev.ua by aviion.ts.kiev.ua with ESMTP id UAA14984; (8.6.11/zah/2.1) Mon, 26 May 1997 20:37:24 GMT Received: from cki.ipri.kiev.ua by nbki.ipri.kiev.ua with ESMTP id VAA01343; (8.6.9/zah/1.1) Mon, 26 May 1997 21:18:35 +0100 Received: from 194.44.146.14 (mac.ipri.kiev.ua [194.44.146.14]) by cki.ipri.kiev.ua (8.7.6/8.7.3) with SMTP id VAA00907; Mon, 26 May 1997 21:37:16 +0300 (EET DST) Message-ID: <3389CA87.68DB@cki.ipri.kiev.ua> Date: Mon, 26 May 1997 20:37:56 +0300 From: Ruslan Shevchenko Reply-To: rssh@cki.ipri.kiev.ua Organization: IPRI X-Mailer: Mozilla 3.01Gold (Macintosh; I; 68K) MIME-Version: 1.0 To: listuser CC: freebsd-isp@FreeBSD.ORG Subject: Re: Out Do a Webcube! References: Content-Type: text/plain; charset=koi8-r Content-Transfer-Encoding: 7bit Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk listuser wrote: > > I am looking to build and sell a box similar to that of pacific internet. > However I plan on basing my system around the much more secure and stable > OS of FreeBSD. > > I am curious if a system like this would be of use to anyone on this list. > I am also looking for people that want to help build the system. > I think about this idea, so, i'm interesting to help > --Matthew S. Bailey > mbailey@journey.net From owner-freebsd-isp Mon May 26 14:19:13 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id OAA11463 for isp-outgoing; Mon, 26 May 1997 14:19:13 -0700 (PDT) Received: from fps.biblos.unal.edu.co ([168.176.37.11]) by hub.freebsd.org (8.8.5/8.8.5) with SMTP id OAA11428 for ; Mon, 26 May 1997 14:18:05 -0700 (PDT) Received: from localhost by fps.biblos.unal.edu.co (AIX 4.1/UCB 5.64/4.03) id AA33486; Mon, 26 May 1997 16:17:04 -0500 Date: Mon, 26 May 1997 16:17:04 -0500 (EST) From: "Pedro F. Giffuni" Reply-To: "Pedro F. Giffuni" To: Bernie Doehner Cc: freebsd-isp@FreeBSD.ORG Subject: Re: floppy tape drive In-Reply-To: Message-Id: Mime-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk On Mon, 26 May 1997, Bernie Doehner wrote: > Hi: > > My server doesn't have SCSI, so this leaves me with very few options. Any > recommendations on floppy based tape drives? > My box isn't SCSI either. FWIW, I have a wangtek SCSI tape drive, it came with an adapter card for ISA, and it works fine. Just go on and ask for a tape drive and see that it works on a non-SCSI box; internal drives are cheaper. Also avoid parallel port drives (I haven't heard of any of those working in FreeBSD). hope that helps, Pedro. > Thanks. > > Bernie > > > From owner-freebsd-isp Mon May 26 14:22:21 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id OAA11612 for isp-outgoing; Mon, 26 May 1997 14:22:21 -0700 (PDT) Received: from fps.biblos.unal.edu.co ([168.176.37.11]) by hub.freebsd.org (8.8.5/8.8.5) with SMTP id OAA11605 for ; Mon, 26 May 1997 14:22:01 -0700 (PDT) Received: from localhost by fps.biblos.unal.edu.co (AIX 4.1/UCB 5.64/4.03) id AA18348; Mon, 26 May 1997 16:12:18 -0500 Date: Mon, 26 May 1997 16:12:18 -0500 (EST) From: "Pedro F. Giffuni" To: Ruslan Shevchenko Cc: listuser , freebsd-isp@FreeBSD.ORG Subject: Re: Out Do a Webcube! In-Reply-To: <3389CA87.68DB@cki.ipri.kiev.ua> Message-Id: Mime-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk On Mon, 26 May 1997, Ruslan Shevchenko wrote: > listuser wrote: > > I am also looking for people that want to help build the system. > > > > I think about this idea, so, i'm interesting to help > I have been thinking ofbuilding a box like this for some time. Take a look in the hardware recommendations in www.bsdi.com, they are very useful. Pedro. > > --Matthew S. Bailey > > mbailey@journey.net > From owner-freebsd-isp Mon May 26 14:55:43 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id OAA13473 for isp-outgoing; Mon, 26 May 1997 14:55:43 -0700 (PDT) Received: from time.cdrom.com (root@time.cdrom.com [204.216.27.226]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id OAA13468 for ; Mon, 26 May 1997 14:55:40 -0700 (PDT) Received: from time.cdrom.com (jkh@localhost [127.0.0.1]) by time.cdrom.com (8.8.5/8.6.9) with ESMTP id OAA22350; Mon, 26 May 1997 14:55:38 -0700 (PDT) To: jgrosch@superior.mooseriver.com cc: listuser@h2o.journey.net (listuser), freebsd-isp@FreeBSD.ORG Subject: Re: Out Do a Webcube! In-reply-to: Your message of "Mon, 26 May 1997 11:57:11 PDT." <199705261857.LAA03534@superior.mooseriver.com> Date: Mon, 26 May 1997 14:55:38 -0700 Message-ID: <22346.864683738@time.cdrom.com> From: "Jordan K. Hubbard" Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk > There are a number of companys doing the same as Pacific Internet. Whistle > and FreeGate both have a product based on FreeBSD. I have been told that But according to Pacific Internet's online docs, the WebCube is based on Linux, not FreeBSD. Reference http://www.pacnet.com/pacnet/iwlabs.htm and look for the WebCube entry. Jordan From owner-freebsd-isp Mon May 26 20:14:11 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id UAA23520 for isp-outgoing; Mon, 26 May 1997 20:14:11 -0700 (PDT) Received: from tetrahome.tetranet.net (root@tetranet.net [206.42.249.11]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id UAA23515 for ; Mon, 26 May 1997 20:14:09 -0700 (PDT) Received: from [206.42.249.183] (STL-link-183.tetranet.net [206.42.249.183]) by tetrahome.tetranet.net (8.8.5/8.6.9) with ESMTP id WAA22998 for ; Mon, 26 May 1997 22:20:36 -0500 (CDT) Message-Id: Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Date: Mon, 26 May 1997 22:05:37 -0500 To: freebsd-isp@FreeBSD.ORG From: Mark Murdock Subject: Kernel Configs Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk Would anyone running their FreeBSD machine as an internet gateway be willing to send me their kernel configuration so that I may look over it? I have configured mine, but am unsure that I have taken everything into consideration, such as maxusers, pseudo-devices, etc. I would like some samples for comparison. Thank you, Mark Murdock fee@tetranet.net From owner-freebsd-isp Mon May 26 21:16:34 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id VAA25126 for isp-outgoing; Mon, 26 May 1997 21:16:34 -0700 (PDT) Received: from panda.hilink.com.au (panda.hilink.com.au [203.2.144.5]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id VAA25113 for ; Mon, 26 May 1997 21:16:21 -0700 (PDT) Received: (from danny@localhost) by panda.hilink.com.au (8.8.5/8.8.5) id OAA25276; Tue, 27 May 1997 14:15:01 +1000 (EST) Date: Tue, 27 May 1997 14:14:59 +1000 (EST) From: "Daniel O'Callaghan" To: Mark Murdock cc: freebsd-isp@FreeBSD.ORG Subject: Re: Kernel Configs In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk On Mon, 26 May 1997, Mark Murdock wrote: > Would anyone running their FreeBSD machine as an internet gateway be willing > to send me their kernel configuration so that I may look over it? I have > configured mine, but am unsure that I have taken everything into consideration, > such as maxusers, pseudo-devices, etc. I would like some samples for > comparison. It all depends on what sort of internet gateway you mean. If you mean a dialup terminal server, that's different from an ethernet<->sync router. Tell us what you are after and you'll get more informative feedback. Danny From owner-freebsd-isp Tue May 27 01:30:45 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id BAA03192 for isp-outgoing; Tue, 27 May 1997 01:30:45 -0700 (PDT) Received: from albert.osu.cz (albert.osu.cz [193.84.224.12]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id BAA03187 for ; Tue, 27 May 1997 01:30:42 -0700 (PDT) Received: from localhost (belkovic@localhost) by albert.osu.cz (8.8.5/8.6.12) with SMTP id KAA00416 for ; Tue, 27 May 1997 10:33:49 +0200 (MET DST) Date: Tue, 27 May 1997 10:33:49 +0200 (MET DST) From: Josef Belkovics To: freebsd-isp@FreeBSD.ORG Subject: Re: Kernel Configs In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk On Tue, 27 May 1997, Daniel O'Callaghan wrote: > > On Mon, 26 May 1997, Mark Murdock wrote: > > > Would anyone running their FreeBSD machine as an internet gateway be willing > > to send me their kernel configuration so that I may look over it? I have > > configured mine, but am unsure that I have taken everything into consideration, > > such as maxusers, pseudo-devices, etc. I would like some samples for > > comparison. > > It all depends on what sort of internet gateway you mean. If you mean a > dialup terminal server, that's different from an ethernet<->sync router. > > Tell us what you are after and you'll get more informative feedback. My campus is connected to internet via microwave (?) line. So I don't use in attachment config async/sync ports/cards. With gated I haven't any problem with forwarding of packets. Daily I have 5,000,000 packets on this machine (albert.osu.cz, P5, 66MHz); at least 60% are from stupid novell. I think, that fbsd 2.2.1 has two serious bugs: nfs (?), ipx (forwarding) on net with other frames than only 802_II and, maybe, vm in case of large (> 10Mb) files. Attachment config is "common" for 5 machines (386, 486, P5). ########################################################################### machine "i386" cpu "I586_CPU" ident "JPB" maxusers 10 config kernel root on sd0 options DDB #Kernel debugger options DDB_UNATTENDED #Recover from a panic #ptions DIAGNOSTIC #Extra sanity checking #ptions MATH_EMULATE #Support for x87 emulation options "COMPAT_43" #Compatible with BSD 4.3 options FFS #Berkeley Fast Filesystem options PROCFS #Process filesystem options "NSWAPDEV=1" #Allow this many swap-devices options QUOTA #Enable disk quotas options FAILSAFE #Functionality over speed options "EISA_SLOTS=12" #12 EISA slots are probed options "SCSI_DELAY=5" #Waiting for devices to settle #ptions "SCSI_2_DEF" #Ask a device to run as SCSI-II if can #ptions AHC_TAGENABLE #To enable tagged queueing #ptions AHC_SCBPAGING_ENABLE #To enable SCB paging #ptions AHC_ALLOW_MEMIO #To enable memory mapped i/o options UCONSOLE #Allow users to grab the console options "MAXCONS=4" #Number of virtual consoles options INET #InterNETworking #ptions GATEWAY #InterNETwork gateway #ptions MROUTING #Multicast routing #ptions IPX #IPX/SPX #ptions IPXPRINTFS=0 #IPX/SPX debugging #ptions IPX_ERRPRINTFS=0 #IPX/SPX -"- options "AUTO_EOI_1" #Automatic EOI for the master 8259A options "AUTO_EOI_2" #Automatic EOI for the slave 8259A #ptions DUMMY_NOPS #Disables extra delays for some bus opsoptions "MAXCONS=5" #Number of virtual consoles options SYSVSHM #Enable for share memory options SYSVSEM #Enable for semaphores options SYSVMSG #Enable for messaging controller isa0 controller eisa0 controller pci0 device sc0 at isa? port "IO_KBD" tty irq 1 vector scintr #evice sio1 at isa? port "IO_COM2" tty irq 3 vector siointr #evice sio0 at isa? port "IO_COM1" tty irq 4 vector siointr #evice mse0 at isa? port 0x23c tty irq 5 vector mseintr controller fdc0 at isa? port "IO_FD1" bio irq 6 drq 2 vector fdintr disk fd0 at fdc0 drive 0 #evice lpt0 at isa? port? tty irq 7 vector lptintr device ep0 at isa? port 0x300 net irq 7 vector epintr #evice ep0 at isa? port 0x300 net irq 10 vector epintr device ep1 at isa? port 0x310 net irq 10 vector epintr device ep2 at isa? port 0x320 net irq 11 vector epintr device ep3 at isa? port 0x330 net irq 12 vector epintr device npx0 at isa? port "IO_NPX" irq 13 vector npxintr #ontroller wdc0 at isa? port "IO_WD1" bio irq 14 vector wdintr #isk wd0 at wdc0 drive 0 #ontroller ahc0 at isa? bio irq ? vector ahcintr controller ahc0 controller scbus0 #evice cd0 device sd0 #ontroller scbus0 at ahc0 bus0 #ontroller scbus1 at ahc0 bus1 #evice cd0 at scbus1 target 0 #isk sd0 at scbus0 target 0 #isk sd1 at scbus0 target 1 pseudo-device loop #Network loopback pseudo-device ether #Generic ethernet pseudo-device gzip #Exec gzipped a.out's pseudo-device log #Kernel syslog interface #seudo-device vn #Vnode driver (turns file into device) #seudo-device sl 1 #Serial line ip #seudo-device ppp 1 #Point-to-point protocol #seudo-device tun 1 #Tunel driver (user process ppp) pseudo-device pty 16 #Pseudo ttys pseudo-device bpfilter 4 #Berkeley packet filter ############################################################################# Josef Belkovics, Ostrava University From owner-freebsd-isp Tue May 27 10:49:17 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id KAA24759 for isp-outgoing; Tue, 27 May 1997 10:49:17 -0700 (PDT) Received: from mirage.nlink.com.br (mirage.nlink.com.br [200.238.120.3]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id KAA24343 for ; Tue, 27 May 1997 10:43:38 -0700 (PDT) Received: from mirage.nlink.com.br (mirage.nlink.com.br [200.238.120.3]) by mirage.nlink.com.br (8.8.5/8.8.5) with SMTP id OAA22765 for ; Tue, 27 May 1997 14:41:51 -0300 (EST) Date: Tue, 27 May 1997 14:41:51 -0300 (EST) From: Paulo Fragoso To: freebsd-isp@freebsd.org Subject: Cyclades PCI & FBSD2.1.7 Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk Hi, I have installing a Cyclom-Y 32 ports PCI in my FreeBSD-2.1.7 box. I apply patch from cyclades' site for FBSD-2.1.6. It's works fine but I have had some "silo overflow". My system is one Pentium 100Mhz whith 32MBytes + PCI VGA Cirrus Logic (1MB) + NE2000 ISA. Are there any memory shared conflict in this case? My system halt and in this moment is showed random colors on the monitor. Can someone help me? Thanks Advice, Paulo Fragoso. From owner-freebsd-isp Tue May 27 22:37:17 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id WAA25677 for isp-outgoing; Tue, 27 May 1997 22:37:17 -0700 (PDT) Received: from tetrahome.tetranet.net (root@tetranet.net [206.42.249.11]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id WAA25672 for ; Tue, 27 May 1997 22:37:15 -0700 (PDT) Received: from [206.42.249.177] (STL-link-177.tetranet.net [206.42.249.177]) by tetrahome.tetranet.net (8.8.5/8.6.9) with ESMTP id AAA04141 for ; Wed, 28 May 1997 00:43:43 -0500 (CDT) Message-Id: Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Date: Wed, 28 May 1997 00:28:41 -0500 To: freebsd-isp@FreeBSD.ORG From: Mark Murdock Subject: Kernel Configs (take 2) Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk This is in regards to my earlier post requesting kernel config information. I'll ask the same question but be a bit more specific this time. I am using a 166 mhz AMD K5 machine running freebsd 2.2.1 (soon to be 2.2-stable) with 32M ram. The machine has two NIC cards. One goes to an ascend pipeline 50, the other plugs into a hub of a 50-node Novell 4.1 network. I plan to provide the Novell network Internet access by proxying and using the freebsd machine as the default gateway. The Internet is connected via a 128kbps ISDN to the ascend router. My questions are as follows: 1) Are there any kernel configurations out there operating under similar conditions that I can compare with my own? 2) Am I better off configuring the ascend pipeline as a router or a bridge? Since it will only be receiving defaultroute IP from the freebsd gateway and will simply be forwarding those packets on to the ISP's router, do I really need the overhead of routing, or will bridging be more efficient? 3) Will user-ppp (tun0) allow me to set up a dial-up connection so that the freebsd machine can be called remotely and establish a ppp link, or will I need to use pppd (ppp0)? 4) Is it possible (feasible) for me to set up the modem as a throughput "supercharger" of sorts? In other words, after a certain throughput is reached, can I have the modem establish a dial-up ppp to the provider and provide another 28.8k on demand? I realize there are lots of questions here, but I would really appreciate any input I could get on this. Any similar experiences or links to information that pertains would be beneficial. Thank you very much, Mark Murdock fee@tetranet.net From owner-freebsd-isp Wed May 28 03:27:16 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id DAA05116 for isp-outgoing; Wed, 28 May 1997 03:27:16 -0700 (PDT) Received: from labinfo.iet.unipi.it (labinfo.iet.unipi.it [131.114.9.5]) by hub.freebsd.org (8.8.5/8.8.5) with SMTP id DAA05092; Wed, 28 May 1997 03:27:09 -0700 (PDT) Received: from localhost (luigi@localhost) by labinfo.iet.unipi.it (8.6.5/8.6.5) id LAA16895; Wed, 28 May 1997 11:51:16 +0200 From: Luigi Rizzo Message-Id: <199705280951.LAA16895@labinfo.iet.unipi.it> Subject: a routing problem... To: isp@freebsd.org Date: Wed, 28 May 1997 11:51:16 +0200 (MET DST) X-Mailer: ELM [version 2.4 PL23] Content-Type: text Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk Hi, I would like to place a router on a /24 net as follows: X.Y.Z.0/24 X.Y.Z.208/28 --+---.....---+------+- -+----+-----+ | | | | | | H1 ..... H3 +--[router]----+ H4 H5 the router (a FreeBSD machine) has 2 interfaces configured as follows: ed2: X.Y.Z.26 netmask 0xffffff00 on the /24 side de0: X.Y.Z.218 netmask 0xfffffff0 on the /28 side I would like the router to do proxyarp on the /24 side for machines on the /28 side. ppp has a simple way to allow this, but I haven't found a suitable solution now. Any idea ? Thanks Luigi -----------------------------+-------------------------------------- Luigi Rizzo | Dip. di Ingegneria dell'Informazione email: luigi@iet.unipi.it | Universita' di Pisa tel: +39-50-568533 | via Diotisalvi 2, 56126 PISA (Italy) fax: +39-50-568522 | http://www.iet.unipi.it/~luigi/ _____________________________|______________________________________ From owner-freebsd-isp Wed May 28 04:17:40 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id EAA06709 for isp-outgoing; Wed, 28 May 1997 04:17:40 -0700 (PDT) Received: from dot.ishiboo.com (user15246@dot.ishiboo.com [208.128.22.10]) by hub.freebsd.org (8.8.5/8.8.5) with SMTP id EAA06704 for ; Wed, 28 May 1997 04:17:38 -0700 (PDT) From: kneel@dot.ishiboo.com Received: (qmail-queue invoked by uid 520); 28 May 1997 11:17:35 -0000 Message-ID: <19970528111735.15242.qmail@dot.ishiboo.com> Subject: Re: a routing problem... To: luigi@labinfo.iet.unipi.it (Luigi Rizzo) Date: Wed, 28 May 1997 05:17:35 -0600 (MDT) Cc: isp@FreeBSD.ORG In-Reply-To: <199705280951.LAA16895@labinfo.iet.unipi.it> from "Luigi Rizzo" at May 28, 97 11:51:16 am X-Mailer: ELM [version 2.4 PL24 ME8a] Content-Type: text Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk > Hi, > > I would like to place a router on a /24 net as follows: > > X.Y.Z.0/24 X.Y.Z.208/28 > > --+---.....---+------+- -+----+-----+ > | | | | | | > H1 ..... H3 +--[router]----+ H4 H5 > > the router (a FreeBSD machine) has 2 interfaces configured as > follows: > > ed2: X.Y.Z.26 netmask 0xffffff00 on the /24 side > de0: X.Y.Z.218 netmask 0xfffffff0 on the /28 side > > I would like the router to do proxyarp on the /24 side for machines on > the /28 side. ppp has a simple way to allow this, but I haven't found a > suitable solution now. Any idea ? > > Thanks > Luigi > -----------------------------+-------------------------------------- > Luigi Rizzo | Dip. di Ingegneria dell'Informazione > email: luigi@iet.unipi.it | Universita' di Pisa > tel: +39-50-568533 | via Diotisalvi 2, 56126 PISA (Italy) > fax: +39-50-568522 | http://www.iet.unipi.it/~luigi/ > _____________________________|______________________________________ > How about: arp -s H4 auto pub arp -s H5 auto pub or arp -f file where file: H4 auto pub H5 auto pub -- Neal Fachan kneel@ishiboo.com From owner-freebsd-isp Wed May 28 04:52:46 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id EAA07952 for isp-outgoing; Wed, 28 May 1997 04:52:46 -0700 (PDT) Received: from labinfo.iet.unipi.it (labinfo.iet.unipi.it [131.114.9.5]) by hub.freebsd.org (8.8.5/8.8.5) with SMTP id EAA07945 for ; Wed, 28 May 1997 04:52:40 -0700 (PDT) Received: from localhost (luigi@localhost) by labinfo.iet.unipi.it (8.6.5/8.6.5) id NAA17023; Wed, 28 May 1997 13:15:31 +0200 From: Luigi Rizzo Message-Id: <199705281115.NAA17023@labinfo.iet.unipi.it> Subject: Re: a routing problem... To: kneel@dot.ishiboo.com Date: Wed, 28 May 1997 13:15:30 +0200 (MET DST) Cc: isp@FreeBSD.ORG In-Reply-To: <19970528111735.15242.qmail@dot.ishiboo.com> from "kneel@dot.ishiboo.com" at May 28, 97 05:17:16 am X-Mailer: ELM [version 2.4 PL23] Content-Type: text Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk > > Hi, > > > > I would like to place a router on a /24 net as follows: > > > > X.Y.Z.0/24 X.Y.Z.208/28 > > > > --+---.....---+------+- -+----+-----+ > > | | | | | | > > H1 ..... H3 +--[router]----+ H4 H5 > > > > ed2: X.Y.Z.26 netmask 0xffffff00 on the /24 side > > de0: X.Y.Z.218 netmask 0xfffffff0 on the /28 side > > > > I would like the router to do proxyarp on the /24 side for machines on > > the /28 side. ppp has a simple way to allow this, but I haven't found a > > suitable solution now. Any idea ? > How about: > > arp -s H4 auto pub > arp -s H5 auto pub not sure it can work because: 1) the netmasks for the two interfaces are overlapping, and am not sure which one is used for the "auto" address; 2) the arp table would be used for both interfaces (I think), so the router would be unable to communicate with the machines on the /24 side. I think a real proxyarp thing is needed. Cheers Luigi -----------------------------+-------------------------------------- Luigi Rizzo | Dip. di Ingegneria dell'Informazione email: luigi@iet.unipi.it | Universita' di Pisa tel: +39-50-568533 | via Diotisalvi 2, 56126 PISA (Italy) fax: +39-50-568522 | http://www.iet.unipi.it/~luigi/ _____________________________|______________________________________ From owner-freebsd-isp Wed May 28 07:28:58 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id HAA13188 for isp-outgoing; Wed, 28 May 1997 07:28:58 -0700 (PDT) Received: from labinfo.iet.unipi.it (labinfo.iet.unipi.it [131.114.9.5]) by hub.freebsd.org (8.8.5/8.8.5) with SMTP id HAA13163; Wed, 28 May 1997 07:28:37 -0700 (PDT) Received: from localhost (luigi@localhost) by labinfo.iet.unipi.it (8.6.5/8.6.5) id PAA17230; Wed, 28 May 1997 15:54:00 +0200 From: Luigi Rizzo Message-Id: <199705281354.PAA17230@labinfo.iet.unipi.it> Subject: arp proxyall (was: Re: A routing problem...) To: joerg_wunsch@uriah.heep.sax.de Date: Wed, 28 May 1997 15:54:00 +0200 (MET DST) Cc: isp@freebsd.org, hackers@freebsd.org In-Reply-To: <19970528152722.QY65337@uriah.heep.sax.de> from "J Wunsch" at May 28, 97 03:27:03 pm X-Mailer: ELM [version 2.4 PL23] Content-Type: text Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk > As Luigi Rizzo wrote: > > ed2: X.Y.Z.26 netmask 0xffffff00 on the /24 side > > de0: X.Y.Z.218 netmask 0xfffffff0 on the /28 side > > > > I would like the router to do proxyarp on the /24 side for machines on > > the /28 side. ppp has a simple way to allow this, but I haven't found a > > suitable solution now. Any idea ? > > I have no idea what `arpproxyall' does. However, if all else fails, Thanks for the hint. It turns out that sysctl -w net.link.ether.inet.proxyall=1 does exactly what I need. Cheers Luigi -----------------------------+-------------------------------------- Luigi Rizzo | Dip. di Ingegneria dell'Informazione email: luigi@iet.unipi.it | Universita' di Pisa tel: +39-50-568533 | via Diotisalvi 2, 56126 PISA (Italy) fax: +39-50-568522 | http://www.iet.unipi.it/~luigi/ _____________________________|______________________________________ From owner-freebsd-isp Wed May 28 14:29:17 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id OAA04153 for isp-outgoing; Wed, 28 May 1997 14:29:17 -0700 (PDT) Received: from vader.cs.berkeley.edu (vader.CS.Berkeley.EDU [128.32.38.234]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id OAA04112; Wed, 28 May 1997 14:29:08 -0700 (PDT) Received: (from asami@localhost) by vader.cs.berkeley.edu (8.8.5/8.7.3) id OAA06506; Wed, 28 May 1997 14:28:48 -0700 (PDT) Date: Wed, 28 May 1997 14:28:48 -0700 (PDT) Message-Id: <199705282128.OAA06506@vader.cs.berkeley.edu> To: ken@r74h25.res.gatech.edu CC: albast@magigimmix.xs4all.nl, Questions@FreeBSD.ORG, SCSI@FreeBSD.ORG, ISP@FreeBSD.ORG, jh@Twiddle.COM In-reply-to: <199705260356.XAA28280@r74h25.res.gatech.edu> (ken@r74h25.res.gatech.edu) Subject: Re: Some advice needed From: asami@vader.cs.berkeley.edu (Satoshi Asami) Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk * Really? I loaded the LXY4 firmware upgrade on my ultra-wide * 4G Atlas II, and it's working fine. (I believe I used Dagnlxy4.fup) * * I started out with LXQ1 firmware. Thanks to all those replied. I finally summoned my courage and downloaded the firmware to my wide AII. It warned me that the type doesn't match but it is working fine (even says "34550W" like Ken's) since then with a 2940UW. Satoshi From owner-freebsd-isp Wed May 28 15:13:28 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id PAA06576 for isp-outgoing; Wed, 28 May 1997 15:13:28 -0700 (PDT) Received: from dab.iit.uni-miskolc.hu (dab.iit.uni-miskolc.hu [193.6.4.1]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id PAA06560 for ; Wed, 28 May 1997 15:13:22 -0700 (PDT) Received: (from rutz@localhost) by dab.iit.uni-miskolc.hu (8.7.6/8.7.3) id AAA27914; Thu, 29 May 1997 00:12:29 GMT Date: Thu, 29 May 1997 00:12:28 +0000 () From: Antal Rutz To: isp@freebsd.org Subject: SUP port Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk Hi! Does anyone have a usable port of sup for other platforms ( IRIX )? I don't want to sup to an nfs-mounted dir... --rutz From owner-freebsd-isp Wed May 28 15:13:38 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id PAA06607 for isp-outgoing; Wed, 28 May 1997 15:13:38 -0700 (PDT) Received: from dab.iit.uni-miskolc.hu (dab.iit.uni-miskolc.hu [193.6.4.1]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id PAA06575 for ; Wed, 28 May 1997 15:13:27 -0700 (PDT) Received: (from rutz@localhost) by dab.iit.uni-miskolc.hu (8.7.6/8.7.3) id AAA27923; Thu, 29 May 1997 00:12:56 GMT Date: Thu, 29 May 1997 00:12:54 +0000 () From: Antal Rutz To: isp@freebsd.org Subject: packages-2.2 and packages-2.2.2 Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk Are there any differences between packages-2.2 and packages-2.2.2 on ftp.cdrom.com:/pub/FreeBSD ? --rutz From owner-freebsd-isp Thu May 29 03:07:58 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id DAA05499 for isp-outgoing; Thu, 29 May 1997 03:07:58 -0700 (PDT) Received: from mail.warp.co.uk (mail.warp.co.uk [194.207.68.5]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id DAA05480; Thu, 29 May 1997 03:07:33 -0700 (PDT) Received: from localhost (tony@localhost) by mail.warp.co.uk (8.8.5/8.8.5) with SMTP id LAA29101; Thu, 29 May 1997 11:08:16 +0100 (BST) Date: Thu, 29 May 1997 11:08:16 +0100 (BST) From: Anthony Barlow To: freebsd-isp@freebsd.org cc: freebsd-questions@freebsd.org Subject: Taylor UUCP & INN Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk Hi All I've been running UUCP sucessfully for the last 3 years on Linux. Recently our Linux Server died and we took this opertunity to upgrade to FBSD 2.2.1R. News s/w was INN (last version) & Taylor UUCP We're running Taylor UUCP and the latest version of inn. UUCP mail works fine, sending news works fine, incomming uucp news fails with an e-mail message being sent to me A UUCP execution request failed: rnews The request was made by crocks!rnews The following file have been saved: [cut] There is nothing else in the logs. Any ideas? Regards, Anthony From owner-freebsd-isp Thu May 29 03:49:50 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id DAA06720 for isp-outgoing; Thu, 29 May 1997 03:49:50 -0700 (PDT) Received: from lab321.ru (anonymous1.omsk.net.ru [194.226.32.34]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id DAA06689; Thu, 29 May 1997 03:48:38 -0700 (PDT) Received: from localhost (localhost.l321.omsk.net.ru [127.0.0.1]) by lab321.ru (8.8.5-MVC-230497/8.8.5) with SMTP id RAA14684; Thu, 29 May 1997 17:47:19 +0700 (OSD) Date: Thu, 29 May 1997 17:47:19 +0700 (OSD) From: Eugeny Kuzakov To: Anthony Barlow cc: freebsd-isp@FreeBSD.ORG, freebsd-questions@FreeBSD.ORG Subject: Re: Taylor UUCP & INN In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk On Thu, 29 May 1997, Anthony Barlow wrote: > We're running Taylor UUCP and the latest version of inn. UUCP mail works > fine, sending news works fine, incomming uucp news fails with an e-mail > message being sent to me > > A UUCP execution request failed: > rnews > The request was made by > crocks!rnews > The following file have been saved: > [cut] > > There is nothing else in the logs. Any ideas? Correct path to rnews ? Rights ? Check rnews path in policy.h of Taylor. Best wishes, Eugeny Kuzakov Laboratory 321 ( Omsk, Russia ) kev@lab321.ru From owner-freebsd-isp Thu May 29 04:36:04 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id EAA08391 for isp-outgoing; Thu, 29 May 1997 04:36:04 -0700 (PDT) Received: from mail.fasts.com (qmailr@server.fasts.com [199.125.215.66]) by hub.freebsd.org (8.8.5/8.8.5) with SMTP id EAA08385 for ; Thu, 29 May 1997 04:36:00 -0700 (PDT) Message-Id: <199705291136.EAA08385@hub.freebsd.org> Received: (qmail 1288 invoked from network); 29 May 1997 13:34:15 -0000 Received: from unknown (HELO cabby.fasts.com) (unknown) by unknown with SMTP; 29 May 1997 13:34:15 -0000 From: "Victor Rotanov" To: Subject: Active Server Pages Date: Thu, 29 May 1997 14:30:48 +0400 X-MSMail-Priority: Normal X-Priority: 3 X-Mailer: Microsoft Internet Mail 4.70.1161 MIME-Version: 1.0 Content-Type: text/plain; charset=KOI8-R Content-Transfer-Encoding: 7bit Sender: owner-isp@FreeBSD.org X-Loop: FreeBSD.org Precedence: bulk Hello. Is there any WWW server software that supports ASP? Are there any alternatives to ASP? Thanks, bye. vitjok From owner-freebsd-isp Thu May 29 05:45:42 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id FAA10835 for isp-outgoing; Thu, 29 May 1997 05:45:42 -0700 (PDT) Received: from buffnet4.buffnet.net (buffnet4.buffnet.net [205.246.19.13]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id FAA10812; Thu, 29 May 1997 05:45:37 -0700 (PDT) Received: from buffnet11.buffnet.net (shovey@buffnet11.buffnet.net [205.246.19.55]) by buffnet4.buffnet.net (8.7.5/8.7.3) with SMTP id IAA08144; Thu, 29 May 1997 08:45:38 -0400 (EDT) Date: Thu, 29 May 1997 08:45:36 -0400 (EDT) From: Steve To: Anthony Barlow cc: freebsd-isp@FreeBSD.ORG, freebsd-questions@FreeBSD.ORG Subject: Re: Taylor UUCP & INN In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk I dont think rnews comes with freebsd - you need to take it from your INN distribution and put it in a location uucp expects to find it. On Thu, 29 May 1997, Anthony Barlow wrote: > Hi All > > I've been running UUCP sucessfully for the last 3 years on Linux. Recently > our Linux Server died and we took this opertunity to upgrade to FBSD > 2.2.1R. News s/w was INN (last version) & Taylor UUCP > > We're running Taylor UUCP and the latest version of inn. UUCP mail works > fine, sending news works fine, incomming uucp news fails with an e-mail > message being sent to me > > A UUCP execution request failed: > rnews > The request was made by > crocks!rnews > The following file have been saved: > [cut] > > There is nothing else in the logs. Any ideas? > > Regards, > Anthony > > From owner-freebsd-isp Thu May 29 06:18:16 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id GAA12242 for isp-outgoing; Thu, 29 May 1997 06:18:16 -0700 (PDT) Received: from mirage.nlink.com.br (mirage.nlink.com.br [200.238.120.3]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id GAA12233; Thu, 29 May 1997 06:17:43 -0700 (PDT) Received: from mirage.nlink.com.br (mirage.nlink.com.br [200.238.120.3]) by mirage.nlink.com.br (8.8.5/8.8.5) with SMTP id KAA09971; Thu, 29 May 1997 10:16:04 -0300 (EST) Date: Thu, 29 May 1997 10:16:04 -0300 (EST) From: Paulo Fragoso To: hackers@freebsd.org cc: isp@freebsd.org Subject: Cyclades PCI Strange Behavior Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk We have here the following configuration: a Pentium 133 with Intel i430vx Motherboard 32MB RAM. 1.2GB IDE HardDrive a Trident PCI Video Card A cyclades PCI Cy32 card mapped to high memory 32 dial-in modems Some strange things are happening here. We are getting a lot of silo overflows that get more frequently when we start using the computer ( very frequent when we compile the kernel ). If we start an upload to the computer, we have very much silo overflows than in a download. After about 1 day with the system running it JUST RESETS without any message in the screen if we SWITCH ONE OF THE MODEMS OFF AND ON AGAIN ( Just after we turn if on ). Is this a cyclades PCI Card design error? Is there any solution to the problem? Is it a driver problem? Or do i have a problematic card? I have a cyclades Cyclom16Y ISA running since FreeBSD2.1.0 with no silo overflows in more than one year. Luiz From owner-freebsd-isp Thu May 29 06:58:41 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id GAA14129 for isp-outgoing; Thu, 29 May 1997 06:58:41 -0700 (PDT) Received: from rkntws40casa ([207.137.172.32]) by hub.freebsd.org (8.8.5/8.8.5) with SMTP id GAA14098; Thu, 29 May 1997 06:58:31 -0700 (PDT) Message-Id: <3.0.1.32.19970529064849.00975d20@ccsales.com> X-Sender: randyk@ccsales.com X-Mailer: Windows Eudora Pro Version 3.0.1 (32) Date: Thu, 29 May 1997 06:48:49 -0700 To: Paulo Fragoso , hackers@FreeBSD.ORG From: "Randy A. Katz" Subject: Re: Cyclades PCI Strange Behavior Cc: isp@FreeBSD.ORG In-Reply-To: Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk Where I have not had much experience with the Cyclades I can tell you I've had woes with *some* VX motherboards. Rip it out and put an HX in its place and all your woes "might" just go away...I don't know why. Thanx, At 10:16 AM 5/29/97 -0300, Paulo Fragoso wrote: >We have here the following configuration: > >a Pentium 133 with Intel i430vx Motherboard >32MB RAM. >1.2GB IDE HardDrive >a Trident PCI Video Card >A cyclades PCI Cy32 card mapped to high memory >32 dial-in modems > >Some strange things are happening here. > >We are getting a lot of silo overflows that get more frequently when we >start using the computer ( very frequent when we compile the kernel ). >If we start an upload to the computer, we have very much silo overflows >than in a download. > >After about 1 day with the system running it JUST RESETS without any >message in the screen if we SWITCH ONE OF THE MODEMS OFF AND ON AGAIN ( >Just after we turn if on ). > >Is this a cyclades PCI Card design error? Is there any solution to the >problem? Is it a driver problem? Or do i have a problematic card? > >I have a cyclades Cyclom16Y ISA running since FreeBSD2.1.0 with no silo >overflows in more than one year. > >Luiz > > Thanx, ----------------------------------------------------------------- Randy A. Katz - Virtualis Systems Administrator EMAIL --> mailto:rkatz@virtualisys.com ----------------------------------------------------------------- SUPPORT --> http://www.virtualisys.com/support VR AREA --> http://www.virtualisys.com/vrarea VR FAQ --> http://www.virtualisys.com/faq.html SALES GUIDE --> http://www.virtualisys.com/guides/sales SUPPLY STORE --> http://www.virtualisys.com/supplystore VR BULLETIN BOARD --> http://www.virtualisys.com/vrarea/vr_board ----------------------------------------------------------------- From owner-freebsd-isp Thu May 29 09:27:35 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id JAA24239 for isp-outgoing; Thu, 29 May 1997 09:27:35 -0700 (PDT) Received: from dream.future.net (root@future.net [204.130.134.1]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id JAA24220 for ; Thu, 29 May 1997 09:27:11 -0700 (PDT) Received: from dream.future.net (tomthai@future.net [204.130.134.1]) by dream.future.net (8.8.5-r-beta/8.6.10) with SMTP id LAA11444 for ; Thu, 29 May 1997 11:27:27 -0500 (CDT) Date: Thu, 29 May 1997 11:27:27 -0500 (CDT) From: "Tom T. Thai" To: freebsd-isp@FreeBSD.ORG Subject: nntp Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk My upstream provider is having some problems with his news service. Can someone on this list provide me a feed? .............. .................................... Thomas T. Thai Infomedia Interactive Communications tom@iic.net TEL 612.376.9090 * FAX 612.376.9087 From owner-freebsd-isp Thu May 29 11:17:48 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id LAA29509 for isp-outgoing; Thu, 29 May 1997 11:17:48 -0700 (PDT) Received: from godzilla.zeta.org.au (godzilla.zeta.org.au [203.2.228.19]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id LAA29502; Thu, 29 May 1997 11:17:44 -0700 (PDT) Received: (from bde@localhost) by godzilla.zeta.org.au (8.8.5/8.6.9) id EAA24203; Fri, 30 May 1997 04:14:28 +1000 Date: Fri, 30 May 1997 04:14:28 +1000 From: Bruce Evans Message-Id: <199705291814.EAA24203@godzilla.zeta.org.au> To: hackers@FreeBSD.ORG, paulo@nlink.com.br Subject: Re: Cyclades PCI Strange Behavior Cc: isp@FreeBSD.ORG Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk >a Pentium 133 with Intel i430vx Motherboard >32MB RAM. >1.2GB IDE HardDrive >a Trident PCI Video Card >A cyclades PCI Cy32 card mapped to high memory >32 dial-in modems >We are getting a lot of silo overflows that get more frequently when we >start using the computer ( very frequent when we compile the kernel ). >If we start an upload to the computer, we have very much silo overflows >than in a download. Silo overflows are probably normal for the PCI version of the driver. It uses a normal low-priority interrupt handler which can be delayed for several msec by other interrupt handlers. At 115200 bps, there is about 1 silo overflow for ever msec of delay. Delays of 3-5 msec are normal for updating the keyboard LEDs. Delays of 0.1-1 msec are normal for IDE drives and PIO ethernet cards. Delays accumulate. >After about 1 day with the system running it JUST RESETS without any >message in the screen if we SWITCH ONE OF THE MODEMS OFF AND ON AGAIN ( >Just after we turn if on ). This is probably unrelated. There is a software bug that causes the timeout table to fill up under certain overloads, but this normally causes panics with a message. Bruce From owner-freebsd-isp Thu May 29 12:08:20 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id MAA02951 for isp-outgoing; Thu, 29 May 1997 12:08:20 -0700 (PDT) Received: from DNS.Lamb.net (root@DNS.Lamb.net [207.90.181.1]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id MAA02945 for ; Thu, 29 May 1997 12:08:16 -0700 (PDT) Received: from Gatekeeper.Lamb.net (ulf@gatekeeper.Lamb.net [207.90.181.2]) by DNS.Lamb.net (8.8.5/8.8.5) with ESMTP id MAA01038 for ; Thu, 29 May 1997 12:08:20 -0700 (PDT) Received: (from ulf@localhost) by Gatekeeper.Lamb.net (8.8.5/8.7.6) id MAA09192 for isp@freebsd.org; Thu, 29 May 1997 12:08:08 -0700 (PDT) From: Ulf Zimmermann Message-Id: <199705291908.MAA09192@Gatekeeper.Lamb.net> Subject: Anyone has an interest for..... To: isp@freebsd.org Date: Thu, 29 May 1997 12:08:08 -0700 (PDT) X-Mailer: ELM [version 2.4ME+ PL31 (25)] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk ... a Descend Max 4002 with Hybrid and ISDN software installed (no modems) ? I am trying to concentrate on Frame Relay/Leased lines only, that means I have no use for the 4002 anymore. The unit is about 6 months old. Ulf. -------------------------------------------------------------------------- Ulf Zimmermann, 1525 Pacific Ave., Alameda, CA-94501, #: 510-769-2936 Alameda Networks, Inc. | http://www.Alameda.net | Fax#: 510-521-5073 From owner-freebsd-isp Thu May 29 13:21:00 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id NAA06917 for isp-outgoing; Thu, 29 May 1997 13:21:00 -0700 (PDT) Received: from ravel.n2.net (root@ravel.n2.net [207.113.132.20]) by hub.freebsd.org (8.8.5/8.8.5) with SMTP id NAA06912 for ; Thu, 29 May 1997 13:20:58 -0700 (PDT) Received: (from fpm@localhost) by ravel.n2.net (8.6.12/8.6.12) id NAA05250; Thu, 29 May 1997 13:21:17 -0700 From: Frank MacLachlan Message-Id: <199705292021.NAA05250@ravel.n2.net> Subject: INN-1.5.1: overchan falls behind To: freebsd-isp@freebsd.org Date: Thu, 29 May 1997 13:21:17 -0700 (PDT) Cc: fpm@n2.net X-Mailer: ELM [version 2.4 PL24] Content-Type: text Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk Since upgrading to a news server running FreeBSD 2.2-STABLE and inn-1.5.1, I've been seeing messages such as: May 27 03:27:24 jsbach innd: overview!:20:proc:15712 wakeup May 27 03:27:24 jsbach innd: overview!:20:proc:15712 cant write Resource temporarily unavailable May 27 03:27:24 jsbach innd: overview!:20:proc:15712 blocked sleeping 120 The problem seems to begin soon after expireover runs, but can persist after expireover finishes. Throttling the server doesn't help - the problem persists even if the system is totally quiescent. Eventually the data gets tossed: May 27 03:33:33 jsbach innd: overview!:20:proc:15712 cant flush count 99777 Resource temporarily unavailable May 27 03:33:33 jsbach innd: overview! spooling 99777 bytes May 27 03:33:33 jsbach innd: DEBUG ERROR SITEspool trashed:20 overview!:15 May 27 03:33:33 jsbach innd: overview! closed The box I'm using has an AMD K5-PR133 w/ 128MB of RAM. The overview files are on a separate 2 gig Seagate Hawk disk drive which is mounted noatime. I tried increasing resource limits (open files and processes) both in the kernel and for the news user w/o success. INN-1.5.1 is standard except for security patch 05. Does anyone have a solution or any insights? -- Frank MacLachlan (fpm@n2.net) N2 Networking, San Diego, CA From owner-freebsd-isp Thu May 29 14:04:34 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id OAA09262 for isp-outgoing; Thu, 29 May 1997 14:04:34 -0700 (PDT) Received: from wopr.inetu.net (wopr.inetu.net [207.18.13.3]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id OAA09256 for ; Thu, 29 May 1997 14:04:30 -0700 (PDT) Received: from localhost (dev@localhost) by wopr.inetu.net (8.8.5/8.8.5) with SMTP id RAA05920 for ; Thu, 29 May 1997 17:09:42 -0400 (EDT) Date: Thu, 29 May 1997 17:09:42 -0400 (EDT) From: Dev Chanchani To: freebsd-isp@freebsd.org Subject: SpamSucks! Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk I have put up a site at http://www.SpamSucks.com. Please take a look mail anything useful to help out. Any ideas or materials anyone has would be apprecaited. Thanks, Dev From owner-freebsd-isp Thu May 29 14:21:02 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id OAA10209 for isp-outgoing; Thu, 29 May 1997 14:21:02 -0700 (PDT) Received: from mirage.nlink.com.br (mirage.nlink.com.br [200.238.120.3]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id OAA10178; Thu, 29 May 1997 14:20:46 -0700 (PDT) Received: (from luiz@localhost) by mirage.nlink.com.br (8.8.5/8.8.5) id SAA04071; Thu, 29 May 1997 18:17:13 -0300 (EST) Date: Thu, 29 May 1997 18:17:12 -0300 (EST) From: Luiz de Barros To: Bruce Evans cc: hackers@FreeBSD.ORG, paulo@nlink.com.br, isp@FreeBSD.ORG Subject: Re: Cyclades PCI Strange Behavior In-Reply-To: <199705291814.EAA24203@godzilla.zeta.org.au> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk Hi All, The setup below is working 100% OK with no Silo Overflows with an Old Cyclades Cyclom ISA HOST ADAPTER controlling 32 ports (Same Serial Modules, computer, MB, modems, cables, etc ). Do cyclades Guys and FreeBSD Team have plans of fixing this problem soon? I think many people have had this problem... Luiz de Barros Nlink ISP. On Fri, 30 May 1997, Bruce Evans wrote: > >a Pentium 133 with Intel i430vx Motherboard > >32MB RAM. > >1.2GB IDE HardDrive > >a Trident PCI Video Card > >A cyclades PCI Cy32 card mapped to high memory > >32 dial-in modems > > >We are getting a lot of silo overflows that get more frequently when we > >start using the computer ( very frequent when we compile the kernel ). > >If we start an upload to the computer, we have very much silo overflows > >than in a download. > > Silo overflows are probably normal for the PCI version of the driver. > It uses a normal low-priority interrupt handler which can be delayed > for several msec by other interrupt handlers. At 115200 bps, there is > about 1 silo overflow for ever msec of delay. Delays of 3-5 msec are > normal for updating the keyboard LEDs. Delays of 0.1-1 msec are normal > for IDE drives and PIO ethernet cards. Delays accumulate. > > >After about 1 day with the system running it JUST RESETS without any > >message in the screen if we SWITCH ONE OF THE MODEMS OFF AND ON AGAIN ( > >Just after we turn if on ). > > This is probably unrelated. There is a software bug that causes the > timeout table to fill up under certain overloads, but this normally > causes panics with a message. > > Bruce > From owner-freebsd-isp Thu May 29 19:58:25 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id TAA24637 for isp-outgoing; Thu, 29 May 1997 19:58:25 -0700 (PDT) Received: from mail.webspan.net (root@mail.webspan.net [206.154.70.7]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id TAA24631 for ; Thu, 29 May 1997 19:58:22 -0700 (PDT) Received: from orion.webspan.net (orion.webspan.net [206.154.70.5]) by mail.webspan.net (8.8.5/8.8.5) with ESMTP id WAA15498; Thu, 29 May 1997 22:58:14 -0400 (EDT) Received: from orion.webspan.net (localhost [127.0.0.1]) by orion.webspan.net (WEBSPN/970116) with ESMTP id WAA22595; Thu, 29 May 1997 22:58:14 -0400 (EDT) To: Frank MacLachlan cc: freebsd-isp@FreeBSD.ORG From: "Gary Palmer" Subject: Re: INN-1.5.1: overchan falls behind In-reply-to: Your message of "Thu, 29 May 1997 13:21:17 PDT." <199705292021.NAA05250@ravel.n2.net> Date: Thu, 29 May 1997 22:58:13 -0400 Message-ID: <22593.864961093@orion.webspan.net> Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk Frank MacLachlan wrote in message ID <199705292021.NAA05250@ravel.n2.net>: > Since upgrading to a news server running FreeBSD 2.2-STABLE and > inn-1.5.1, I've been seeing messages such as: > > May 27 03:27:24 jsbach innd: overview!:20:proc:15712 wakeup > May 27 03:27:24 jsbach innd: overview!:20:proc:15712 cant write Resource > temporarily unavailable > May 27 03:27:24 jsbach innd: overview!:20:proc:15712 blocked sleeping 120 > > The problem seems to begin soon after expireover runs, but can persist > after expireover finishes. Throttling the server doesn't help - the > problem persists even if the system is totally quiescent. Eventually > the data gets tossed: Try leaving the system unthrottled and instead do a: ctlinnd flush overchan! (or ctlinnd flush overchan\! to avoid shell expansion) If that recovers it, you may benefit from a small change I made to overchan (basically increasing the buffer size). There seems, however, to be a more serious i/o contention issue :-/ Gary -- Gary Palmer FreeBSD Core Team Member FreeBSD: Turning PC's into workstations. See http://www.FreeBSD.ORG/ for info From owner-freebsd-isp Thu May 29 20:11:52 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id UAA25128 for isp-outgoing; Thu, 29 May 1997 20:11:52 -0700 (PDT) Received: from bob.tri-lakes.net ([207.3.81.6]) by hub.freebsd.org (8.8.5/8.8.5) with SMTP id UAA25121 for ; Thu, 29 May 1997 20:11:48 -0700 (PDT) Received: from [207.3.81.149] by bob.tri-lakes.net (NTMail 3.02.13) with ESMTP id wa198766 for ; Thu, 29 May 1997 22:12:06 -0500 Message-ID: <338E4593.41C67EA6@tri-lakes.net> Date: Thu, 29 May 1997 22:12:19 -0500 From: Chris Dillon X-Mailer: Mozilla 3.01Gold (X11; I; FreeBSD 2.2-RELEASE i386) MIME-Version: 1.0 To: Bernie Doehner CC: freebsd-isp@freebsd.org Subject: Re: floppy tape drive References: Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk Bernie Doehner wrote: > > Hi: > > I am a very small non-profit ISP and it's come clear to me I need to spend > a few (very few) $$ on a tape drive. > > My server doesn't have SCSI, so this leaves me with very few options. Any > recommendations on floppy based tape drives? I have a Colorado Jumbo 350 which is recognised and i can send commands to, move the tape, view tape dirs, etc, but apparently can't write successfully with the DC2120XL (350MB) tapes (error when it reaches end of a track, apparently not expecting such a length of tape). I haven't tried yet with the plain DC2120 (250MB) tapes, but i have a feeling they would work fine. (BTW, anyone know if 'ft' actually supports the DC2120XL or even the new DC2120EX tapes?) Chris Dillon From owner-freebsd-isp Fri May 30 02:13:00 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id CAA07536 for isp-outgoing; Fri, 30 May 1997 02:13:00 -0700 (PDT) Received: from mail.warp.co.uk (mail.warp.co.uk [194.207.68.5]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id CAA07517; Fri, 30 May 1997 02:12:54 -0700 (PDT) Received: from localhost (tony@localhost) by mail.warp.co.uk (8.8.5/8.8.5) with SMTP id KAA08522; Fri, 30 May 1997 10:13:18 +0100 (BST) Date: Fri, 30 May 1997 10:13:18 +0100 (BST) From: Anthony Barlow To: Eugeny Kuzakov cc: freebsd-isp@FreeBSD.ORG, freebsd-questions@FreeBSD.ORG Subject: Re: Taylor UUCP & INN In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk On Thu, 29 May 1997, Eugeny Kuzakov wrote: > On Thu, 29 May 1997, Anthony Barlow wrote: > > > We're running Taylor UUCP and the latest version of inn. UUCP mail works > > fine, sending news works fine, incomming uucp news fails with an e-mail > > message being sent to me > > > > A UUCP execution request failed: > > rnews > > The request was made by > > crocks!rnews > > The following file have been saved: > > [cut] > > > > There is nothing else in the logs. Any ideas? > Correct path to rnews ? Rights ? > Check rnews path in policy.h of Taylor. Yes. I've also put in the sys file, global section command-path /usr/local/bin /usr/bin /bin commands rmail rnews Looking through the uucpLog I can see uuxqt crocks news ERROR: Execution Exit status 1 Regards, Anthony From owner-freebsd-isp Fri May 30 02:20:44 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id CAA07811 for isp-outgoing; Fri, 30 May 1997 02:20:44 -0700 (PDT) Received: from lab321.ru (anonymous1.omsk.net.ru [194.226.32.34]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id CAA07790; Fri, 30 May 1997 02:20:30 -0700 (PDT) Received: from localhost (localhost.l321.omsk.net.ru [127.0.0.1]) by lab321.ru (8.8.5-MVC-230497/8.8.5) with SMTP id QAA15309; Fri, 30 May 1997 16:21:04 +0700 (OSD) Date: Fri, 30 May 1997 16:21:03 +0700 (OSD) From: Eugeny Kuzakov To: Anthony Barlow cc: freebsd-isp@FreeBSD.ORG, freebsd-questions@FreeBSD.ORG Subject: Re: Taylor UUCP & INN In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk On Fri, 30 May 1997, Anthony Barlow wrote: > > > On Thu, 29 May 1997, Eugeny Kuzakov wrote: > > > > There is nothing else in the logs. Any ideas? > > Correct path to rnews ? Rights ? ^^^^^^^^ Imho, in inn 1.5.1 rights on rnews by default rwxrxr-- ^^ uuxqt runs rnews as user "uucp". > Yes. I've also put in the sys file, global section > > command-path /usr/local/bin /usr/bin /bin > commands rmail rnews > > Looking through the uucpLog I can see > > uuxqt crocks news ERROR: Execution Exit status 1 > > Regards, > Anthony > > Best wishes, Eugeny Kuzakov Laboratory 321 ( Omsk, Russia ) kev@lab321.ru From owner-freebsd-isp Fri May 30 02:54:53 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id CAA08855 for isp-outgoing; Fri, 30 May 1997 02:54:53 -0700 (PDT) Received: from lab321.ru (anonymous1.omsk.net.ru [194.226.32.34]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id CAA08826; Fri, 30 May 1997 02:54:28 -0700 (PDT) Received: from localhost (localhost.l321.omsk.net.ru [127.0.0.1]) by lab321.ru (8.8.5-MVC-230497/8.8.5) with SMTP id QAA17280; Fri, 30 May 1997 16:55:02 +0700 (OSD) Date: Fri, 30 May 1997 16:55:02 +0700 (OSD) From: Eugeny Kuzakov To: Anthony Barlow cc: freebsd-isp@FreeBSD.ORG, freebsd-questions@FreeBSD.ORG Subject: Re: Taylor UUCP & INN In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk On Fri, 30 May 1997, Anthony Barlow wrote: Also you may check news logs to search error messages. Best wishes, Eugeny Kuzakov Laboratory 321 ( Omsk, Russia ) kev@lab321.ru From owner-freebsd-isp Fri May 30 04:14:49 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id EAA11268 for isp-outgoing; Fri, 30 May 1997 04:14:49 -0700 (PDT) Received: from guardian.fortress.org (fortress.org [198.168.253.52]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id EAA11253; Fri, 30 May 1997 04:14:44 -0700 (PDT) Received: from localhost (andrew@localhost) by guardian.fortress.org (8.8.5/8.6.12) with SMTP id HAA23586; Fri, 30 May 1997 07:13:49 -0400 (EDT) Date: Fri, 30 May 1997 07:13:49 -0400 (EDT) From: Andrew Webster Reply-To: andrew@pubnix.net To: Eugeny Kuzakov cc: Anthony Barlow , freebsd-isp@FreeBSD.ORG, freebsd-questions@FreeBSD.ORG Subject: Re: Taylor UUCP & INN In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk On Fri, 30 May 1997, Eugeny Kuzakov wrote: > On Fri, 30 May 1997, Anthony Barlow wrote: > > On Thu, 29 May 1997, Eugeny Kuzakov wrote: > > > > > > There is nothing else in the logs. Any ideas? > > > Correct path to rnews ? Rights ? > ^^^^^^^^ > Imho, in inn 1.5.1 rights on rnews by default rwxrxr-- > ^^ I am running a similar setup with UUCP news feeds. My rnews program has r-sr-x--- news uucp permissions. Also make sure that your permissions on the news spool are correct. You can use inncheck to root out make permission/config problems. Regards, Andrew Webster andrew@pubnix.net Key fingerprint = CF E8 16 B8 A6 DB E3 C9 83 E7 96 24 25 58 15 6E PubNIX Montreal Connected to the world Branche au monde P.O. Box 147 Cote Saint Luc, Quebec H4V 2Y3 tel 514.990.5911 http://www.pubnix.net fax 514.990.9443 From owner-freebsd-isp Fri May 30 07:07:54 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id HAA17037 for isp-outgoing; Fri, 30 May 1997 07:07:54 -0700 (PDT) Received: from mirage.nlink.com.br (mirage.nlink.com.br [200.238.120.3]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id HAA16950 for ; Fri, 30 May 1997 07:05:36 -0700 (PDT) Received: (from luiz@localhost) by mirage.nlink.com.br (8.8.5/8.8.5) id LAA20686; Fri, 30 May 1997 11:03:03 -0300 (EST) Date: Fri, 30 May 1997 11:03:02 -0300 (EST) From: Luiz de Barros To: isp@freebsd.org Subject: PPP and getty Auto Sensing PPP. Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk Hi ALL, I have FreeBSD 2.2.1-RELEASE with getty auto-sensing PPP but am not being able to recognize users that logon using PAP. What would be the command line i should call throght gettytab? Luiz From owner-freebsd-isp Fri May 30 08:47:23 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id IAA21693 for isp-outgoing; Fri, 30 May 1997 08:47:23 -0700 (PDT) Received: from netcomsv.netcom.com (uucp3.netcom.com [163.179.3.3]) by hub.freebsd.org (8.8.5/8.8.5) with SMTP id IAA21687 for ; Fri, 30 May 1997 08:47:20 -0700 (PDT) Received: from svr.UUCP by netcomsv.netcom.com with UUCP (8.6.12/SMI-4.1) id IAA21929; Fri, 30 May 1997 08:27:49 -0700 Received: from tabdp.tabfs.com by svr.tabfs.com id aa17119; 30 May 97 8:27 PDT Message-Id: <3.0.32.19970530082730.0069df94@svr.tabfs.com> X-Sender: dphillip@svr.tabfs.com X-Mailer: Windows Eudora Pro Version 3.0 (32) Date: Fri, 30 May 1997 08:27:32 -0700 To: freebsd-isp@freebsd.org From: Dale Phillips Subject: Re: Dialin PPP Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk At 12:20 PM 5/3/97 -0500, you wrote: Take a look at the setups for win95 at http://www.facetcorp.com/ they have a smb (samba like) server for all sorts of flavors of unix. I agree the hard part is the win95 stuff. Check which protocols you are using. >This is what works for me. On the server, I use the normal getty and >create a ppp user like: > >Puser:*:1000:1000:PPP User:/tmp:/usr/local/libexec/ppp-login > >The ppp-login script looks like this: > >#!/bin/sh >/usr/bin/mesg n >stty -tostop >exec /usr/sbin/pppd proxyarp 192.168.1.1:192.168.1.2 > >The client dials in using a script that looks like this: > >#!/bin/sh >/usr/sbin/pppd connect '/usr/bin/chat -v ABORT BUSY "" \ > \\d\\dAT\\sE0\\sQ0 OK \\dATS7=60\\sS38=40 OK \ > \\dATDT3262964 CONNECT "" ogin: Puser word: Ppasswd' \ > /dev/cuaa1 115200 crtscts \ > modem lock debug netmask 255.255.255.0 \ > noipdefault defaultroute :192.168.1.1 >exit 0 > >I have all my modems set up to be absolutely quiet -- no echo no >reporting. Also set up for hardware flow control and reset on carrier >loss. > >There an infinite variety of ways in the login script to do IP >assignment -- or create one ppp-login.x script for each port. I know >nothing of Win95 and intend keeping it that way, but I assume the >"dial up networking" includes a script mechanism. I would suggest >using it. Use the terminal for debugging. If you can login normally >and get a bunch of garbage with braces in it, your server is working >fine. > >-- Jay > >On Fri, 2 May 1997, Gary D. Margiotta wrote: > >->Hello, >-> >->I am sorry if I am wasting your time with this, since it is probably some >->stupid little file I missed, but I don't know who else to ask, and was >->referred here. >-> >->I recently purchased a Cyclades 8Yo multiport serial card, and am trying >->to set up a terminal server with FreeBSD using mgetty. I have compiled >->the new kernel for the Cyclades card, made the device nodes and have been >->successful in getting mgetty compiled and running. I am at the point now >->that if I dial in with a modem under Win95, with a direct connection to >->the machine (hyperterminal or even a terminal window using dial-up >->networking), I can get a prompt and login with no problem. When I dial in >->using dial-up networking, I bring up a terminal window to see how far I >->get. It connects, negotiates, and goes through the normal login >->procedure, and when I choose to have it start the ppp session, it does the >->usual verifying username and password and minimizes as if I had acheived a >->clean connect. When I go to do something, such as even pinging the >->machine I am dialing into, I get no response...everything just dies right >->there. >-> >->We have been trying everything we could read and get our hands on, but the >->documentation on mgetty isn't too clear (or we just aren't interpreting it >->correctly). I am not sure which files need to be added to and/or modified >->anymore. I was also using as a guideline a page from an ISP in N.Y. who >->has the same set up, all working correctly under LINUX. I wrote him, and >->he said I wouldn't have to do anything special, stating that it should run >->fine without any extra modification (other than the usual differences in >->directory and file names) under BSD. >-> >->I have been trying to replicate the 'Working as a PPP server' part of the >->handbook with the /etc/ppp/options file, but I really am not too straight >->on the way to assign IP Addresses (right now I just want one to work, I am >->not worried about assigning multiple dynamic IP's yet). Mgetty should be >->calling pppd automatically, and it seems to, but there is just something >->wrong or missing with the config files and there are so many of them that >->we don't know what exactly controls what (we have ideas, but it is hard to >->narrow things down when there are several files which may or may not have >->an affect). >-> >->The machine is a 386-DX/33 with 16 Mb of RAM, running FreeBSD >->2.2.1-Release, mgetty+sendfax 1.0.0, and pppd 2.2.0. I have a Cyclades >->8Yo 8-port multiport card. The modem I am using on the sending end is a >->USR Sportster 33.6, and the modem on the receiving end is a Boca 28.8, >->soon to be replaced with said USR 33.6. >-> >->This is most likely a stupid problem, but it is so frustrating when you >->know that it partly works... >-> >->Thanks. >-> >->-Gary Margiotta >->TBE Internet Services >->http://www.tbe.net >-> >-> > > ---dp-------------------------------------------- Dale Phillips Dyslexics of America UNTIE! dphillip@tabfs.com From owner-freebsd-isp Fri May 30 09:59:56 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id JAA25638 for isp-outgoing; Fri, 30 May 1997 09:59:56 -0700 (PDT) Received: from mail.cyberview.net (vkhare@mail.cyberview.net [204.254.254.12]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id JAA25632 for ; Fri, 30 May 1997 09:59:54 -0700 (PDT) Received: from localhost (vkhare@localhost) by mail.cyberview.net (8.8.5/8.7.3) with SMTP id MAA11496; Fri, 30 May 1997 12:05:13 -0400 Date: Fri, 30 May 1997 12:05:13 -0400 (EDT) From: Vikram Khare To: Jack Wenger cc: freebsd-isp@FreeBSD.ORG Subject: Re: Clients per Bandwidth In-Reply-To: <199705240308.WAA22120@msn2.globaldialog.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk On Fri, 23 May 1997, Jack Wenger wrote: > I'm trying to figure out how many virtual domains to put on a 128 ISDN > connected box. I've got a P133 w/ 64Mb ram, and a good fast SCSI subsystem. > So, is there a decent way to figure out when I need to move up the bandwidth > ladder? Purchase an ISDN router that is SNMP manageable and run something like MRTG or Ian Lee's (yes, the man who wrote tin) Router Stats to figure out how much bandwidth you're using. You'll need some simple gnu graphic utilities which you may already have installed. > In other words, I wanna know how many concurrent requests I can handle. We > DON'T have anyone dialing in, just hosting web sites. There's a site in Baton Rouge called 'www.explorebr.com'. They run off a 128k ISDN link to PSI and they'll gross $1 million this year. Makes you sick doesn't it? -- Vikram Khare vkhare@cyberview.net http://www.cyberview.net From owner-freebsd-isp Fri May 30 10:41:07 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id KAA27806 for isp-outgoing; Fri, 30 May 1997 10:41:07 -0700 (PDT) Received: from axe.cablenet.net (axe.cablenet.net [194.154.36.65]) by hub.freebsd.org (8.8.5/8.8.5) with SMTP id KAA27800 for ; Fri, 30 May 1997 10:41:00 -0700 (PDT) Received: from axe (localhost [127.0.0.1]) by axe.cablenet.net (8.6.9/8.6.9) with SMTP id SAA26792 for ; Fri, 30 May 1997 18:38:13 +0100 Message-ID: <338F1084.4A7B7C1D@cablenet.net> Date: Fri, 30 May 1997 18:38:12 +0100 From: Damian Hamill Organization: CableNet Ltd X-Mailer: Mozilla 3.0 (X11; I; SunOS 4.1.4 sun4m) MIME-Version: 1.0 To: freebsd-isp@freebsd.org Subject: ultimate freebsd server Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk I didn't really want to come here and trouble you guys with yet another "check out my spec" message but as I'm now putting together a shopping list to build some heavy duty Freebsd servers I didn't want to make a mistake and order 3 of the wrong thing. We are just about to upgrade our service in a big way and I won't get a second chance at this. So instead of a "check out my spec" can I ask you guys for the specs (i.e. make and models) for what you would build from scratch for a heavy duty server to run FreeBSD 2.2.2. Application areas are News feeder & reader servers, Web & FTP servers and proxy cache servers. We aren't exactly loaded with cash but performance and reliability (especially reliability) are going to be much more important than price. I hope you can help. Email me privately if you wish (it might avoid a "this ones better than that one" - flame fest). regards damian -- * Damian Hamill M.D. damian@cablenet.net * CableNet & The Landscape Channel * http://www.cablenet.net/ http://www.landscapetv.com/ From owner-freebsd-isp Fri May 30 13:30:36 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id NAA06395 for isp-outgoing; Fri, 30 May 1997 13:30:36 -0700 (PDT) Received: from wlk.com (news.wlk.com [192.86.83.250]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id NAA06385 for ; Fri, 30 May 1997 13:30:31 -0700 (PDT) Received: from SMTPdaemon by wlk.com (smail3.2) with SMTPL id m0wXYJY-0009t5C; Fri, 30 May 1997 15:30:20 -0500 (CDT) Received: from critter.dk.tfs.com (localhost [127.0.0.1]) by critter.dk.tfs.com (8.8.5/8.8.5) with ESMTP id WAA01060 for ; Fri, 30 May 1997 22:26:35 +0200 (CEST) To: isp@freebsd.org Subject: stopping mailspam without tears... From: Poul-Henning Kamp Date: Fri, 30 May 1997 22:26:34 +0200 Message-ID: <1057.865023994@critter.dk.tfs.com> Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk A local ISP here had the problem that they were being used as a relay for various mail-spammers. Here is a summary of the solution I am implementing. The reason I think it is interesting is that it doesn't involve sendmail.cf :-) Life is too short for sendmail.cf. If anybody has the time to work on this to make it a suitable option in /etc/sysconfig for freebsd... nudge, nudge, wink, wink! Poul-Henning Cookbook: --------- Make a directory /var/spool/mqueue_in, set owner, group & modes right. Start sendmail with -bd -O QueueDirectory=/var/spool/mqueue_in -O DeliveryMode=q this makes sendmail store all incomming mail in your new directory instead of delivering it. Start another sendmail with -q5m or similar. Now write a small script in a language of your choice, which looks at the qf* and df* files in /var/spool/mqueue_in and if you like the contents, you move them to /var/spool/mqueue for delivery. The format of the qf* files are descibed in Appendix B in src/usr.sbin/sendmail/doc/op/op.me TADA! Yes, I know all the drawbacks of this scheme, but I can make checks this way that none of the sendmail patches I have seen yet allows me to do. You can check all recipients all header lines and envelope information, and you even have access to the message itself, at the same time! Emails from spammers will just be /dev/nulled. I include my (Tcl!) script here for all to work from #!/usr/bin/tclsh # # ---------------------------------------------------------------------------- # "THE BEER-WARE LICENSE" (Revision 42): # wrote this file. As long as you retain this notice you # can do whatever you want with this stuff. If we meet some day, and you think # this stuff is worth it, you can buy me a beer in return. Poul-Henning Kamp # ---------------------------------------------------------------------------- # # $Id$ # set spool_in /var/spool/mqueue_in set spool_out /var/spool/mqueue set spool_spam /var/tmp/spam set spool_problem /var/spool/mqueue_problem ################# proc Process {id qf df} { global spool_in spool_out spool_spam spool_problem set f [open $qf] if {![file size $qf]} { if {[file mtime $qf] + 600 < [clock seconds]} { puts "$id Stale zero size queue file" MoveTo $id $spool_problem } return } set rcount 0 set triggers 0 while {[gets $f a] >= 0} { # We can risk seing anything in these, so be carefull if {[regexp {^HSubject: } "$a"]} continue if {[regexp {^HX} "$a"]} continue # Count recipients if {[regexp {^R} "$a"]} {incr rcount} # Look for telltale signs if {[regexp {^HReceived.*000\.000\.000\.000} "$a"]} {incr triggers} if {[regexp {@savetrees\.com} "$a"]} {incr triggers} if {[regexp {@fun\.com} "$a"]} {incr triggers} if {[regexp {@public\.com} "$a"]} {incr triggers} if {[regexp {@mary-world\.com} "$a"]} {incr triggers} if {[regexp {Received: from "Cyber-Bomber"} "$a"]} {incr triggers} if {[regexp {Received: .*sallynet\.com} "$a"]} {incr triggers} if {[regexp {Received: .*marynet\.com} "$a"]} {incr triggers} if {[regexp {earthlink\.net} "$a"]} {incr triggers} } close $f puts "$id $rcount $triggers" if {$rcount > 10 && $trigger} {MoveTo $id $spool_spam} MoveTo $id $spool_out } ################# proc MoveTo {id where} { global spool_in puts "moving $id to $where" exec sh -c "mv $spool_in/??$id $where" } ################# while 1 { set list [glob -nocomplain $spool_in/qf*] if {![llength $list]} { exec sleep 30 } else { foreach i $list { puts "doing $i" regsub "$spool_in/qf(.*)" $i {\1} b if {[file exists $spool_in/tf$b]} continue if {![file exists $spool_in/qf$b]} continue if {![file exists $spool_in/df$b]} continue set error [catch "Process $b $spool_in/qf$b $spool_in/df$b" ret] if {$error} { puts "ERROR ON ID $b MOVED TO PROBLEM" puts "$error" puts "$ret" MoveTo $b $spool_problem } } exec sleep 10 } } -- Poul-Henning Kamp | phk@FreeBSD.ORG FreeBSD Core-team. http://www.freebsd.org/~phk | phk@login.dknet.dk Private mailbox. whois: [PHK] | phk@tfs.com TRW Financial Systems, Inc. Future will arrive by its own means, progress not so. From owner-freebsd-isp Fri May 30 14:29:47 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id OAA09453 for isp-outgoing; Fri, 30 May 1997 14:29:47 -0700 (PDT) Received: from neisse.europa.com ([206.163.12.40]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id OAA09448 for ; Fri, 30 May 1997 14:29:45 -0700 (PDT) Received: from neisse.europa.com (localhost [127.0.0.1]) by neisse.europa.com (8.8.5/8.8.5) with SMTP id OAA06165; Fri, 30 May 1997 14:29:21 -0700 (PDT) Message-ID: <338F46B1.2781E494@comsys.com> Date: Fri, 30 May 1997 14:29:21 -0700 From: Alex Huppenthal X-Mailer: Mozilla 3.01Gold (X11; I; FreeBSD 2.2.2-RELEASE i386) MIME-Version: 1.0 To: Poul-Henning Kamp CC: isp@FreeBSD.ORG Subject: Re: stopping mailspam without tears... References: <1057.865023994@critter.dk.tfs.com> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk Anti-SPAM Wish list: How about forwarding your spam to a mail parser on your server that sets the appropriate filters in sendmail and always nukes email from that address? Better still add an email address/parser that sends an anti-spam message to the source of the SPAM, Postmaster, and administrator for that domain. -Alex Poul-Henning Kamp wrote: > > A local ISP here had the problem that they were being used as a > relay for various mail-spammers. > > Here is a summary of the solution I am implementing. > > The reason I think it is interesting is that it doesn't involve > sendmail.cf :-) > > Life is too short for sendmail.cf. > > If anybody has the time to work on this to make it a suitable > option in /etc/sysconfig for freebsd... nudge, nudge, wink, wink! > > Poul-Henning > > Cookbook: > --------- > > Make a directory /var/spool/mqueue_in, set owner, group & modes right. > > Start sendmail with > > -bd -O QueueDirectory=/var/spool/mqueue_in -O DeliveryMode=q > > this makes sendmail store all incomming mail in your new directory > instead of delivering it. > > Start another sendmail with > -q5m > or similar. > > Now write a small script in a language of your choice, which looks > at the qf* and df* files in /var/spool/mqueue_in and if you like the > contents, you move them to /var/spool/mqueue for delivery. > > The format of the qf* files are descibed in Appendix B in > src/usr.sbin/sendmail/doc/op/op.me > > TADA! > > Yes, I know all the drawbacks of this scheme, but I can make checks > this way that none of the sendmail patches I have seen yet allows > me to do. > > You can check all recipients all header lines and envelope information, > and you even have access to the message itself, at the same time! > > Emails from spammers will just be /dev/nulled. > > I include my (Tcl!) script here for all to work from > > #!/usr/bin/tclsh > # > # ---------------------------------------------------------------------------- > # "THE BEER-WARE LICENSE" (Revision 42): > # wrote this file. As long as you retain this notice you > # can do whatever you want with this stuff. If we meet some day, and you think > # this stuff is worth it, you can buy me a beer in return. Poul-Henning Kamp > # ---------------------------------------------------------------------------- > # > # $Id$ > # > > set spool_in /var/spool/mqueue_in > set spool_out /var/spool/mqueue > set spool_spam /var/tmp/spam > set spool_problem /var/spool/mqueue_problem > > ################# > > proc Process {id qf df} { > global spool_in spool_out spool_spam spool_problem > set f [open $qf] > > if {![file size $qf]} { > if {[file mtime $qf] + 600 < [clock seconds]} { > puts "$id Stale zero size queue file" > MoveTo $id $spool_problem > } > return > } > set rcount 0 > set triggers 0 > while {[gets $f a] >= 0} { > # We can risk seing anything in these, so be carefull > if {[regexp {^HSubject: } "$a"]} continue > if {[regexp {^HX} "$a"]} continue > > # Count recipients > if {[regexp {^R} "$a"]} {incr rcount} > > # Look for telltale signs > if {[regexp {^HReceived.*000\.000\.000\.000} "$a"]} {incr triggers} > if {[regexp {@savetrees\.com} "$a"]} {incr triggers} > if {[regexp {@fun\.com} "$a"]} {incr triggers} > if {[regexp {@public\.com} "$a"]} {incr triggers} > if {[regexp {@mary-world\.com} "$a"]} {incr triggers} > if {[regexp {Received: from "Cyber-Bomber"} "$a"]} {incr triggers} > if {[regexp {Received: .*sallynet\.com} "$a"]} {incr triggers} > if {[regexp {Received: .*marynet\.com} "$a"]} {incr triggers} > if {[regexp {earthlink\.net} "$a"]} {incr triggers} > > } > close $f > puts "$id $rcount $triggers" > if {$rcount > 10 && $trigger} {MoveTo $id $spool_spam} > MoveTo $id $spool_out > } > > ################# > > proc MoveTo {id where} { > global spool_in > puts "moving $id to $where" > exec sh -c "mv $spool_in/??$id $where" > } > > ################# > > while 1 { > set list [glob -nocomplain $spool_in/qf*] > if {![llength $list]} { > exec sleep 30 > } else { > foreach i $list { > puts "doing $i" > regsub "$spool_in/qf(.*)" $i {\1} b > if {[file exists $spool_in/tf$b]} continue > if {![file exists $spool_in/qf$b]} continue > if {![file exists $spool_in/df$b]} continue > set error [catch "Process $b $spool_in/qf$b $spool_in/df$b" ret] > if {$error} { > puts "ERROR ON ID $b MOVED TO PROBLEM" > puts "$error" > puts "$ret" > MoveTo $b $spool_problem > } > } > exec sleep 10 > } > } > > -- > Poul-Henning Kamp | phk@FreeBSD.ORG FreeBSD Core-team. > http://www.freebsd.org/~phk | phk@login.dknet.dk Private mailbox. > whois: [PHK] | phk@tfs.com TRW Financial Systems, Inc. > Future will arrive by its own means, progress not so. From owner-freebsd-isp Fri May 30 14:32:38 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id OAA09649 for isp-outgoing; Fri, 30 May 1997 14:32:38 -0700 (PDT) Received: from unagi.cybernothing.org (unagi.cybernothing.org [207.96.1.32]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id OAA09637 for ; Fri, 30 May 1997 14:32:30 -0700 (PDT) Received: (from jdfalk@localhost) by unagi.cybernothing.org (8.8.5/8.8.5/JDF-9705.06) id RAA26930; Fri, 30 May 1997 17:31:51 -0400 (EDT) Message-ID: <19970530173150.45564@cybernothing.org> Date: Fri, 30 May 1997 17:31:50 -0400 From: "J.D. Falk" To: Poul-Henning Kamp Cc: isp@FreeBSD.ORG Subject: Re: stopping mailspam without tears... References: <1057.865023994@critter.dk.tfs.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 0.74 In-Reply-To: <1057.865023994@critter.dk.tfs.com> [9705.30] X-Editor: nvi X-Comment: Stop e-mail spam for good! http://www.cauce.org/ Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk That's a cool idea, but it still involves your accepting the mail (takes up bandwidth, CPU) and storing it (disk.) Of course, I'm crazy enough to play with sendmail.cf. *grin* Rumour has it that Eric Allman is planning to include some anti-spam hacks in the next distribution; for those who are impatient, most of 'em are already available at various sites linked from http://spam.abuse.net/. If you're big on filtering, a combination of your idea, the various check_* hacks, TCP wrappers or other firewalling, and user-level Procmail should cut out a lot of spam; the reason I suggest a combination is because no one filtering method gets everything, and your script is perfect as a last-ditch effort for anything that somehow got through. (Quick off-topic plug: the best way to stop spam is to stop it at the source. http://www.cauce.org/ for more info. I'd rather not get into a discussion of that here, though, 'cause I'm already on lots of spam-related mailing lists.) ---------========== J.D. Falk =========--------- | "There's something quite primeval about | | squeezing half a dead goat until it bleats." | | -- Howard "MadDog" Dickins | ----========== http://www.cybernothing.org/jdfalk/home.html ==========---- From owner-freebsd-isp Fri May 30 14:40:33 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id OAA09945 for isp-outgoing; Fri, 30 May 1997 14:40:33 -0700 (PDT) Received: from wlk.com (news.wlk.com [192.86.83.250]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id OAA09937 for ; Fri, 30 May 1997 14:40:30 -0700 (PDT) Received: from SMTPdaemon by wlk.com (smail3.2) with SMTPL id m0wXZPJ-0009rFC; Fri, 30 May 1997 16:40:21 -0500 (CDT) Received: from critter.dk.tfs.com (localhost [127.0.0.1]) by critter.dk.tfs.com (8.8.5/8.8.5) with ESMTP id XAA01369; Fri, 30 May 1997 23:35:52 +0200 (CEST) To: Alex Huppenthal cc: Poul-Henning Kamp , isp@FreeBSD.ORG From: Poul-Henning Kamp Subject: Re: stopping mailspam without tears... In-reply-to: Your message of "Fri, 30 May 1997 14:29:21 PDT." <338F46B1.2781E494@comsys.com> Date: Fri, 30 May 1997 23:35:52 +0200 Message-ID: <1367.865028152@critter.dk.tfs.com> Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk Well, go for it :-) Poul-Henning In message <338F46B1.2781E494@comsys.com>, Alex Huppenthal writes: >Anti-SPAM Wish list: > >How about forwarding your spam to a mail parser on your server that >sets the appropriate filters in sendmail and always nukes email from >that address? >Better still add an email address/parser that sends an anti-spam message >to the >source of the SPAM, Postmaster, and administrator for that domain. > > -Alex -- Poul-Henning Kamp | phk@FreeBSD.ORG FreeBSD Core-team. http://www.freebsd.org/~phk | phk@login.dknet.dk Private mailbox. whois: [PHK] | phk@tfs.com TRW Financial Systems, Inc. Power and ignorance is a disgusting cocktail. From owner-freebsd-isp Fri May 30 14:42:21 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id OAA10047 for isp-outgoing; Fri, 30 May 1997 14:42:21 -0700 (PDT) Received: from agora.rdrop.com (root@agora.rdrop.com [199.2.210.241]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id OAA10038 for ; Fri, 30 May 1997 14:42:17 -0700 (PDT) Received: (from batie@localhost) by agora.rdrop.com (8.8.5/8.8.5) id OAA10244; Fri, 30 May 1997 14:42:13 -0700 (PDT) From: Alan Batie Message-Id: <199705302142.OAA10244@agora.rdrop.com> Subject: Re: stopping mailspam without tears... To: phk@dk.tfs.com (Poul-Henning Kamp) Date: Fri, 30 May 1997 14:42:13 -0700 (PDT) Cc: isp@FreeBSD.ORG In-Reply-To: <1057.865023994@critter.dk.tfs.com> from "Poul-Henning Kamp" at May 30, 97 10:26:34 pm X-Mailer: ELM [version 2.4 PL24 ME8a] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk > The reason I think it is interesting is that it doesn't involve > sendmail.cf :-) While this is a laudable attribute, my sendmail.cf is rejecting between 20,000 and 40,000 messages a day, and I'm just small potatoes --- a relative unknown. While tcl could probably handle that load ok, I wonder about a real mail system doing orders of magnitude more... -- Alan Batie ______ It's not my fault! It's some guy batie@agora.rdrop.com \ / named "General Protection"! +1 503 452-0960 \ / --Ratbert PGP FP: DE 3C 29 17 C0 49 \/ 7A 27 40 A5 3C 37 4A DA 52 B9 It is my policy to avoid purchase of any products from companies which use unrequested email advertisements or telephone solicitation. From owner-freebsd-isp Fri May 30 15:16:00 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id PAA11687 for isp-outgoing; Fri, 30 May 1997 15:16:00 -0700 (PDT) Received: from agora.rdrop.com (root@agora.rdrop.com [199.2.210.241]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id PAA11667 for ; Fri, 30 May 1997 15:15:54 -0700 (PDT) Received: (from batie@localhost) by agora.rdrop.com (8.8.5/8.8.5) id PAA12753; Fri, 30 May 1997 15:15:46 -0700 (PDT) From: Alan Batie Message-Id: <199705302215.PAA12753@agora.rdrop.com> Subject: Re: stopping mailspam without tears... To: jdfalk@cybernothing.org (J.D. Falk) Date: Fri, 30 May 1997 15:15:46 -0700 (PDT) Cc: phk@dk.tfs.com, isp@FreeBSD.ORG In-Reply-To: <19970530173150.45564@cybernothing.org> from "J.D. Falk" at May 30, 97 05:31:50 pm X-Mailer: ELM [version 2.4 PL24 ME8a] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk > Rumour has it that Eric Allman is planning to include some > anti-spam hacks in the next distribution; for those who are > impatient, most of 'em are already available at various > sites linked from http://spam.abuse.net/. I'm using those and my sendmail is happily rejecting 20-40K messages/day; not all by any means, but it stops me from being a relay and also stops a lot of the worst scam junk (they tend to use invalid domains, which the filters check for). -- Alan Batie ______ It's not my fault! It's some guy batie@agora.rdrop.com \ / named "General Protection"! +1 503 452-0960 \ / --Ratbert PGP FP: DE 3C 29 17 C0 49 \/ 7A 27 40 A5 3C 37 4A DA 52 B9 It is my policy to avoid purchase of any products from companies which use unrequested email advertisements or telephone solicitation. From owner-freebsd-isp Fri May 30 15:39:22 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id PAA13099 for isp-outgoing; Fri, 30 May 1997 15:39:22 -0700 (PDT) Received: from ns1.theonlynet.com (olympus.intermountain.com [206.29.203.1]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id PAA13094 for ; Fri, 30 May 1997 15:39:19 -0700 (PDT) Received: (from rricci@localhost) by ns1.theonlynet.com (8.8.5/8.7.3) id QAA04863; Fri, 30 May 1997 16:39:10 -0600 (MDT) Date: Fri, 30 May 1997 16:39:10 -0600 (MDT) From: "Robert P. Ricci" To: freebsd-isp@freebsd.org Subject: Authenticating dial-ins Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk We've got two FreeBSD machines, and would like to use one as a terminal server and the other as mail/web/ftp sever (right now, everything's on the terminal server.) What would be the best way to keep identical password files on both machines, or use the web server's password file to authenticate users on the terminal server? The terminal server uses a cyclades card. Right now, we use mgetty to answer the modems, which then fires up pppd. We're also able to nfs mount between the two machines. Robert Ricci rricci@theonlynet.com From owner-freebsd-isp Fri May 30 16:16:16 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id QAA14641 for isp-outgoing; Fri, 30 May 1997 16:16:16 -0700 (PDT) Received: from panda.hilink.com.au (panda.hilink.com.au [203.8.15.25]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id QAA14625 for ; Fri, 30 May 1997 16:16:12 -0700 (PDT) Received: (from danny@localhost) by panda.hilink.com.au (8.8.5/8.8.5) id JAA18974; Sat, 31 May 1997 09:13:56 +1000 (EST) Date: Sat, 31 May 1997 09:13:55 +1000 (EST) From: "Daniel O'Callaghan" To: Luiz de Barros cc: isp@FreeBSD.ORG Subject: Re: PPP and getty Auto Sensing PPP. In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk On Fri, 30 May 1997, Luiz de Barros wrote: > I have FreeBSD 2.2.1-RELEASE with getty auto-sensing PPP but am not being > able to recognize users that logon using PAP. > > What would be the command line i should call throght gettytab? It's all in my kit ftp://ftp.hilink.com.au/pub/FreeBSD/pppkit.tgz You want something like: pppd auth login +pap .... Danny /* Daniel O'Callaghan */ /* HiLink Internet danny@hilink.com.au */ /* FreeBSD - works hard, plays hard... danny@freebsd.org */ From owner-freebsd-isp Fri May 30 16:32:11 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id QAA15484 for isp-outgoing; Fri, 30 May 1997 16:32:11 -0700 (PDT) Received: from panda.hilink.com.au (panda.hilink.com.au [203.8.15.25]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id QAA15476 for ; Fri, 30 May 1997 16:32:06 -0700 (PDT) Received: (from danny@localhost) by panda.hilink.com.au (8.8.5/8.8.5) id JAA19052; Sat, 31 May 1997 09:31:44 +1000 (EST) Date: Sat, 31 May 1997 09:31:43 +1000 (EST) From: "Daniel O'Callaghan" To: "Robert P. Ricci" cc: freebsd-isp@FreeBSD.ORG Subject: Re: Authenticating dial-ins In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk On Fri, 30 May 1997, Robert P. Ricci wrote: > We've got two FreeBSD machines, and would like to use one as a terminal > server and the other as mail/web/ftp sever (right now, everything's on > the terminal server.) What would be the best way to keep identical > password files on both machines, or use the web server's password file to > authenticate users on the terminal server? The terminal server uses a > cyclades card. Right now, we use mgetty to answer the modems, which then > fires up pppd. We're also able to nfs mount between the two machines. Right now, your best hope is probably NIS. Adam David and I are vaguely working towards getting radius client support into pppd. You could contact and ask him how he did his radius login stuff. I think he replaced login with radlogin. Getting radiusd to read your local password file is not easy, though - it has a separate password/attributes file. /* Daniel O'Callaghan */ /* HiLink Internet danny@hilink.com.au */ /* FreeBSD - works hard, plays hard... danny@freebsd.org */ From owner-freebsd-isp Fri May 30 16:35:16 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id QAA15582 for isp-outgoing; Fri, 30 May 1997 16:35:16 -0700 (PDT) Received: from dream.future.net (future.net [204.130.134.1]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id QAA15574 for ; Fri, 30 May 1997 16:35:06 -0700 (PDT) Received: from dream.future.net (tomthai@future.net [204.130.134.1]) by dream.future.net (8.8.5-r-beta/8.6.10) with SMTP id SAA10202; Fri, 30 May 1997 18:33:24 -0500 (CDT) Date: Fri, 30 May 1997 18:33:23 -0500 (CDT) From: "Tom T. Thai" To: "Robert P. Ricci" cc: freebsd-isp@FreeBSD.ORG Subject: Re: Authenticating dial-ins In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk On Fri, 30 May 1997, Robert P. Ricci wrote: > We've got two FreeBSD machines, and would like to use one as a terminal > server and the other as mail/web/ftp sever (right now, everything's on > the terminal server.) What would be the best way to keep identical > password files on both machines, or use the web server's password file to > authenticate users on the terminal server? The terminal server uses a > cyclades card. Right now, we use mgetty to answer the modems, which then > fires up pppd. We're also able to nfs mount between the two machines. have you considered using radius? > > Robert Ricci > rricci@theonlynet.com > .............. .................................... Thomas T. Thai Infomedia Interactive Communications tom@iic.net TEL 612.376.9090 * FAX 612.376.9087 From owner-freebsd-isp Fri May 30 17:18:51 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id RAA17956 for isp-outgoing; Fri, 30 May 1997 17:18:51 -0700 (PDT) Received: from buffnet4.buffnet.net (buffnet4.buffnet.net [205.246.19.13]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id RAA17951 for ; Fri, 30 May 1997 17:18:45 -0700 (PDT) Received: from buffnet9.buffnet.net (buffnet9.buffnet.net [205.246.19.19]) by buffnet4.buffnet.net (8.7.5/8.7.3) with SMTP id UAA22945; Fri, 30 May 1997 20:19:00 -0400 (EDT) Received: from buffnet11.buffnet.net(205.246.19.55) by buffnet9.buffnet.net via smap (V2.0) id xma000547; Fri, 30 May 97 20:17:17 -0400 Date: Fri, 30 May 1997 20:18:29 -0400 (EDT) From: Steve To: "J.D. Falk" cc: Poul-Henning Kamp , isp@FreeBSD.ORG Subject: Re: stopping mailspam without tears... In-Reply-To: <19970530173150.45564@cybernothing.org> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk I just used smap with the security patches that issue an SMTP 554 error as soon as the from site is identified as a spam only site. On Fri, 30 May 1997, J.D. Falk wrote: > That's a cool idea, but it still involves your accepting the > mail (takes up bandwidth, CPU) and storing it (disk.) > > Of course, I'm crazy enough to play with sendmail.cf. *grin* > Rumour has it that Eric Allman is planning to include some > anti-spam hacks in the next distribution; for those who are > impatient, most of 'em are already available at various > sites linked from http://spam.abuse.net/. > > If you're big on filtering, a combination of your idea, the > various check_* hacks, TCP wrappers or other firewalling, > and user-level Procmail should cut out a lot of spam; the > reason I suggest a combination is because no one filtering > method gets everything, and your script is perfect as a > last-ditch effort for anything that somehow got through. > > (Quick off-topic plug: the best way to stop spam is to stop > it at the source. http://www.cauce.org/ for more info. I'd > rather not get into a discussion of that here, though, 'cause > I'm already on lots of spam-related mailing lists.) > > ---------========== J.D. Falk =========--------- > | "There's something quite primeval about | > | squeezing half a dead goat until it bleats." | > | -- Howard "MadDog" Dickins | > ----========== http://www.cybernothing.org/jdfalk/home.html ==========---- > From owner-freebsd-isp Fri May 30 17:35:49 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id RAA18876 for isp-outgoing; Fri, 30 May 1997 17:35:49 -0700 (PDT) Received: from ns1.cioe.com (ns1.cioe.com [204.120.165.37]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id RAA18870 for ; Fri, 30 May 1997 17:35:46 -0700 (PDT) Received: (from root@localhost) by ns1.cioe.com (8.8.5/8.8.5) id TAA25045 for freebsd-isp@freebsd.org; Fri, 30 May 1997 19:36:32 -0500 (EST) Date: Fri, 30 May 1997 19:36:32 -0500 (EST) From: Steve Ames Message-Id: <199705310036.TAA25045@ns1.cioe.com> To: freebsd-isp@freebsd.org Subject: sendmail: stop mail forwarding Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk We recently (maybe 30 minutes ago) had someone forward a LOT of mail through our server... most of it seemed to be destined for every user on aol.com starting with the letter a. What's the Q&D patch to sendmail.cf to stop people from being able to forward mail through? Can that be restricted by domain? (ie only people from my domain can forward mail).... -Steve From owner-freebsd-isp Fri May 30 19:10:09 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id TAA22005 for isp-outgoing; Fri, 30 May 1997 19:10:09 -0700 (PDT) Received: from agora.rdrop.com (root@agora.rdrop.com [199.2.210.241]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id TAA22000 for ; Fri, 30 May 1997 19:10:06 -0700 (PDT) Received: (from batie@localhost) by agora.rdrop.com (8.8.5/8.8.5) id TAA00624; Fri, 30 May 1997 19:09:54 -0700 (PDT) From: Alan Batie Message-Id: <199705310209.TAA00624@agora.rdrop.com> Subject: Re: sendmail: stop mail forwarding To: steve@ns1.cioe.com (Steve Ames) Date: Fri, 30 May 1997 19:09:53 -0700 (PDT) Cc: freebsd-isp@FreeBSD.ORG In-Reply-To: <199705310036.TAA25045@ns1.cioe.com> from "Steve Ames" at May 30, 97 07:36:32 pm X-Mailer: ELM [version 2.4 PL24 ME8a] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk > What's the Q&D patch to sendmail.cf to stop people from being able to > forward mail through? Can that be restricted by domain? This is based on www.sendmail.org's filter, and excerpted from my .mc file: LOCAL_CONFIG # database of known spammers Kspammers hash /etc/spammers # relays file has key value where "value" == OK, eg: # racsys.rt.rain.com OK # slip-d0.rdrop.com OK # racsys is a system I MX for # slip-d0 is one of the dialup ports --- allows them to send outgoing mail # If either sending host or destination is not in relays, it's rejected Krelays hash /etc/relays LOCAL_RULESETS Scheck_rcpt # # This ruleset has two parts: first, check recipient, next check sender # if the recipient didn't pass muster # # Check Recipient # # This rule checks for %hack addresses, eg user%ahost.domain@myhost.domain # It either returns "OK" (the matching value in the database) or "CONTINUE" # meaning the recipient didn't match, try checking the sender # we can't just return because of the way the database lookups work R< $+ % $+ @ $=w > $: $(relays $2 $: CONTINUE $) # normal user@myhost.domain addresses; if match, return OK R< $+ @ $=w > $@ OK # user@myrelays.domain addresses ok R< $+ @ $+ > $: $(relays $2 $: CONTINUE $) # If one of the database lookups passed, then return OK now ROK $@ OK # Check Sender # # This kindof a dummy rule that just returns the name of the # connecting host R$* $: $(dequote "" $&{client_name} $) # If they're us, return OK R$=w $@ OK # The following rule causes all addresses to pass in address test mode # otherwise they always fail R$@ $@ OK # Look up the sender to see if they're one of our relays R$* $: $(relays $&{client_name} $: FAIL $) # If not, they've failed all the tests - bounce them RFAIL $#error $: "550 Relaying Denied" # If they haven't failed, they must be OK R$* $@ OK # # This one is pretty much straight out of www.sendmail.org # it checks to see that the sender is using a valid domain name # then checks to see if they're a known spammer; I don't actually # use that yet, as most are one-offs and not worth the effort. # The domain check gets rid of 99% of the scam stuff, as most of # the real businesses use real domains. # LOCAL_RULESETS Scheck_mail # check for valid domain name (incompatible with DeliveryMode=defer) R$* $: $>3 $1 make domain canonical R $* < @ $+ . > $: tag resolved names R $* < @ $+ > $#error $: 451 Domain must resolve # check relay against spammers database R$* $: $(spammers $&{client_name} $: OK $) ROK $@ OK R$+ $#error $: 551 $1 -- Alan Batie ______ It's not my fault! It's some guy batie@agora.rdrop.com \ / named "General Protection"! +1 503 452-0960 \ / --Ratbert PGP FP: DE 3C 29 17 C0 49 \/ 7A 27 40 A5 3C 37 4A DA 52 B9 It is my policy to avoid purchase of any products from companies which use unrequested email advertisements or telephone solicitation. From owner-freebsd-isp Fri May 30 19:29:43 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id TAA22917 for isp-outgoing; Fri, 30 May 1997 19:29:43 -0700 (PDT) Received: from cedb.dpcsys.com (ns2.BEACH.net [209.25.4.3]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id TAA22912 for ; Fri, 30 May 1997 19:29:41 -0700 (PDT) Received: from localhost (dan@localhost) by cedb.dpcsys.com (8.8.5/8.8.2) with SMTP id CAA00270; Sat, 31 May 1997 02:29:28 GMT Date: Fri, 30 May 1997 19:29:27 -0700 (PDT) From: Dan Busarow To: Steve Ames cc: freebsd-isp@FreeBSD.ORG Subject: Re: sendmail: stop mail forwarding In-Reply-To: <199705310036.TAA25045@ns1.cioe.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk On Fri, 30 May 1997, Steve Ames wrote: > We recently (maybe 30 minutes ago) had someone forward a LOT of mail > through our server... most of it seemed to be destined for every user > on aol.com starting with the letter a. > > What's the Q&D patch to sendmail.cf to stop people from being able to > forward mail through? Can that be restricted by domain? (ie only people > from my domain can forward mail).... Q+D would start with the following and stop after the LocalIP test by changing the SpamIP rule to R$* $| $* $#error $@ 5.7.1 $: 571 Access denied $1 Anything that didn't pass the LocalIP test would be denied. Using the full set takes a little work on your part but will reduce the number of pissed customers. These are basically the rules from http://www.informatik.uni-kiel.de/%7Eca/email/check.html Remember to use s between rule parts, they are present in this mail but cut and paste will remove them. Dan -- Dan Busarow 714 443 4172 DPC Systems / Beach.Net dan@dpcsys.com Dana Point, California 83 09 EF 59 E0 11 89 B4 8D 09 DB FD E1 DD 0C 82 ======== sendmail.cf anti-relay rules ======================================== These rulesets are designed to prevent use of your machines to relay mail for un-authorized sites, usually spammers. You can install these anywhere in your .cf, I have ours following ruleset 98. An explanation of how they works follows: ------------------------------------------------------------------ F{JunkMail} /etc/sendmail.junkmail F{MxHosts} /etc/sendmail.mxhosts F{LocalIP} /etc/sendmail.localip F{SpamIP} /etc/sendmail.spamip Scheck_mail # Bounce junk mail R<$={JunkMail}> $#error $@ 5.7.1 $: "Access denied" R$={JunkMail} $#error $@ 5.7.1 $: "Access denied" R$* $: $>3 $1 R$* < @ $* $={JunkMail} > $* $#error $@ 5.7.1 $: "Access denied" R$* < @ $* $={JunkMail} . > $* $#error $@ 5.7.1 $: "Access denied" Scheck_rcpt R$+ $: $(dequote "" $&{client_addr} $) $| $1 R0 $| $* $@ ok no client addr: directly invoked R$={LocalIP}$* $| $* $@ ok from here R$={SpamIP}$* $| $* $#error $@ 5.7.1 $: 571 Access denied $1 # not local, not known spammer. check rcpt R$* $| $* $: $>3 $2 # remove local part, maybe repeatedly R$*<@$=w.>$* $>3 $1 $3 R$*<@$*$={MxHosts}.>$* $>3 $1 $4 # still something left? R$*<@$+>$* $#error $@ 5.7.1 $: 571 no relay --------------------------------------------------------------------- F{JunkMail} /etc/sendmail.junkmail This is a flat text file containing the domain names of known spammers, one per line. You can also have entries for abusive individuals at otherwise friendly sites. i.e. cyberpromo.com quantcom.com ImaSpammer@aol.com F{MxHosts} /etc/sendmail.mxhosts This is a text file containing the domain names that we do provide MX services for. Domains in your class Cw do not need to be included here. i.e. goodguy.com myfriend.com F{LocalIP} /etc/sendmail.localip A list of IP address *prefixes* and complete IP addresses that you consider local. i.e. 127.0.0.1 209.25.4 209.25.5 209.25.6.139 209.25.6.140 F{SpamIP} /etc/sendmail.spamip A list of IP address prefixes and/or addresses of known spammers 205.199.212 206.27.86.210 207.124.161.50 The rules: Scheck_mail This rule is run when the client issues the MAIL command to sendmail, MAIL From: dan@dpcsys.com R<$={JunkMail}> $#error $@ 5.7.1 $: "Access denied" R$={JunkMail} $#error $@ 5.7.1 $: "Access denied" Check for complete addresses and reject if found (ImaSpammer@aol.com) R$* $: $>3 $1 Renormalize the address R$* < @ $* $={JunkMail} > $* $#error $@ 5.7.1 $: "Access denied" R$* < @ $* $={JunkMail} . > $* $#error $@ 5.7.1 $: "Access denied" Check for mail from domains of know spammers. Note that machine.cyberpromo.com, machine.subdomain.cyberpromo.com and cyberpromo.com will all be caught. Scheck_rcpt This rule is run when the client issues a RCPT command to sendmail, RCPT To: victime@target.domain R$+ $: $(dequote "" $&{client_addr} $) $| $1 Get the IP address of the sender and put it on the left side of the "$|", the recipient goes on the right side. R0 $| $* $@ ok no client addr: directly invoked If there is no IP address associated with the sender they are local R$={LocalIP}$* $| $* $@ ok from here If the IP address matches an entry in LocalIP they are local R$={SpamIP}$* $| $* $#error $@ 5.7.1 $: 571 Access denied $1 If the IP address matches an entry in SpamIP reject the mail # not local, not known spammer. check rcpt R$* $| $* $: $>3 $2 Send the recipient address ($2) through ruleset 3 to get a "normal" address to examine. # remove local part, maybe repeatedly R$*<@$=w.>$* $>3 $1 $3 This rule will repeatedly remove references to members of Cw (your own domain and sometimes virtual domains) R$*<@$*$={MxHosts}.>$* $>3 $1 $4 This rule will repeatedly remove references to hosts that you allow to use your system as a relay (people you MX for, we put virtual domains and UUCP connected customers here) # still something left? R$*<@$+>$* $#error $@ 5.7.1 $: 571 no relay Stripping Cw and MxHosts should have left us with something like "joe@" for legitimate mail. If there is anything left on the right hand side of the "@" this was a relay attempt. NB: The address rewriting done within these rules is *not* propogated back through other rules. The only thing sendmail looks for from these rules is an error return. From owner-freebsd-isp Fri May 30 21:37:14 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id VAA05352 for isp-outgoing; Fri, 30 May 1997 21:37:14 -0700 (PDT) Received: from air.infinetgroup.com (air.infinetgroup.com [207.23.43.2]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id VAA05342; Fri, 30 May 1997 21:37:10 -0700 (PDT) Received: from localhost (lenc@localhost) by air.infinetgroup.com (8.8.5/8.8.4) with SMTP id VAA07898; Fri, 30 May 1997 21:36:24 -0700 (PDT) Date: Fri, 30 May 1997 21:36:24 -0700 (PDT) From: Leonard Chua To: freebsd-hackers@freebsd.org cc: freebsd-isp@freebsd.org Subject: BIND security Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk Hi, sorry 'bout the bandwidth use, but thought this might be important. Any1 know if freeBSD 2.2 is affected? -----BEGIN PGP SIGNED MESSAGE----- ###### ## ## ###### ## ### ## ## ###### ## # ## ## ## ## ### ## ###### . ## ## . ######. Secure Networks Inc. AND CORE Seguridad de la Informacion Security Advisory April 22, 1997 BIND Vulnerabilities and Solutions Problem Description ~~~~~~~~~~~~~~~~~~~ This advisory contains descriptions and solutions for two vulnerabilities present in current BIND distributions. These vulnerabilities are actively being exploited on the Internet. I. The usage of predictable IDs in queries and recursed queries allows for remote cache corruption. This allows malicious users to alter domain name server caches to change the addresses and hostnames of hosts on the internet. II. A failure to check whether hostname lengths exceed MAXHOSTNAMELEN in size. This results in potential buffer overflows in programs which expect the BIND resolver to only return a maximum hostname length of MAXHOSTNAMELEN. Problem I. The usage of predictable ID's ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Problem I. - Impact ~~~~~~~~~~~~~~~~~~~ Remote root users can poison BIND and Microsoft Windows NT name server caches by forging UDP packets. We should note that unlike other well documented attacks, in this instance it is NOT necessary for the attacker to take over a DNS server or sniff the target network. Problem I. - Technical Details ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ This particular cache corruption attack requires that the target nameserver be configured to allow recursion. Recursion allows a nameserver to handle requests for zones or domains which it does not serve. When receiving a query for a zone or domain which is not served by the name server, the name server will transmit a query to a nameserver which serves the desired domain. Once a response is received from the second nameserver, the first nameserver sends the response back to the requesting party. The following attack is outlined in the paper "Addressing weaknesses in the Domain Name System Protocol" by Christopher Schuba and Eugene Spafford [6]. To the extent of our knowledge, this problem has not been previously addressed. The paper also assumes that the attacker has super-user access to a primary nameserver, here we demonstrate that this is not necessary nor are source routed packets required. Using the recursion feature, one can poison the cache on a name server with the following procedure: Problem I. - The Players ~~~~~~~~~~~~~~~~~~~~~~~~ . HOST.ATTACKER.COM is the attacking host. . DNS.ATTACKER.COM is ATTACKER.COM's nameserver, we presume that this is the only name server for ATTACKER.COM to simplify the description. . DNS.TARGET.COM is the target nameserver which runs BIND. What we will attempt to do is add an A (address) resource record on DNS.TARGET.COM that will resolve WWW.SPOOFED.COM to 127.0.0.1. We are sure that WWW.SPOOFED.COM is not cached in DNS.TARGET.COM's DNS cache. . DNS.SPOOFED.COM is the nameserver for SPOOFED.COM's domain. We have determined this before the attack begins. Once again we just presume its the only one in order to simplify this description. Problem I. - The Attack ~~~~~~~~~~~~~~~~~~~~~~~ A. First a query is sent to DNS.TARGET.COM asking for the address of UNKNOWN.ATTACKER.COM. Our query has the recursion desired bit set, meaning that if the nameserver we are querying has recursion enabled, it will query another nameserver with our query (assuming it does not have the information cached). B. DNS.TARGET.COM will first determine who serves the ATTACKER.COM domain, then it will build a query packet and send it to DNS.ATTACKER.COM. C. We sniff DNS.ATTACKER.COM's local network and retrieve the query packet sent by DNS.TARGET.COM to DNS.ATTACKER.COM. We can then determine the query ID (qid0) used by DNS.TARGET.COM. Chances are that the next queries generated by DNS.TARGET.COM will have query IDs that will fall in the range [qid0,qid0+N] where N is dependent on the amount of queries DNS.TARGET.COM is generating in the period of time on which the attack takes place. N is usually <= 10 for most cases. D. Once we have determined what the next query ID generated will be, we send a query to DNS.TARGET.COM asking for WWW.SPOOFED.COM's address. E. Then we start sending spoofed DNS replies from DNS.SPOOFED.COM, telling DNS.TARGET.COM that WWW.SPOOFED.COM is '127.0.0.1'. F. If we guessed the query ID used by DNS.TARGET.COM in its recursed query and our response is received first, our response will be taken as valid and the address will be cached. Subsequent responses will be discarded as duplicates. We can always send many (N*M) spoofed packets with different IDs in the range (qid0,qid0+N] so we will be sure that at least one of them will hit DNS.TARGET.COM and have the 'right' ID. M is a factor dependent of the amount of UDP packets we expect to lose on their way to DNS.TARGET.COM. Problem I. - The Result ~~~~~~~~~~~~~~~~~~~~~~~ If the attack succeeded, any query to DNS.TARGET.COM asking for WWW.SPOOFED.COM's address, will get 127.0.0.1 as a response. Thus, any user on TARGET.COM's domain will connect to 127.0.0.1 if they try to contact WWW.SPOOFED.COM. The usage of 127.0.0.1 in this description is of course for instructional purposes, any IP address can be used, in particular an attacker could use its own IP address (BADGUY.COM's IP) so all connections to 'host' will go to 'BADGUY'. The attacker can then 'impersonate' WWW.SPOOFED.COM. Given this attack, it is easy to visualize the effects of impersonating a high traffic FTP distribution site. This attack can also be used to intercept email traffic, and bypass address based authentication methods, including TCP wrappers and firewalls. Problem I. - Notes ~~~~~~~~~~~~~~~~~~ This attack depends on a few things to succeed: 1. The attacker has complete control of DNS.ATTACKER.COM's network, he can both spoof and sniff DNS packets there. In particular, he can sniff DNS packets sent to DNS.ATTACKER.COM. 2. Spoofed DNS responses sent from the attacker to DNS.TARGET.COM must be received before the legit response from DNS.SPOOFED.COM. This is very easy to achieve. In testing we have not yet encountered a situation where we could not get our packets to the nameserver first. 3. The name server on DNS.TARGET.COM supports recursion and caches responses. This is common practice. It should be noted that most nameservers allow recursion (unless specifically denied by configuration options). Root name servers, however, do not allow recursion. If DNS.TARGET.COM caches negative responses as well (NCACHE), a denial of service attack can be performed, in this case, spoofed responses sent by the attacker will tell DNS.TARGET.COM that WWW.SPOOFED.COM does not exist (and be authorative on this). The existence of several nameservers for the domains does not alter the basic outline of this attack. The attacker would only need to send DNS responses with source addresses of each of SPOOFED.COM's nameservers. (N*M*I responses, where I is the number of nameservers). Problem I. - Systems Affected ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ - - All systems using BIND as their domain name server with recursion enabled. - - Windows NT (server) version 3.51 & 4.0 DNS server. Microsoft has been notified and has acknowledged this is a serious problem. No information on a fix is availible. Problem II. Hostname length checking ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Problem II. - Impact ~~~~~~~~~~~~~~~~~~~~ BIND allows passing of hostnames larger than MAXHOSTNAMELEN in size to programs. As many programs utilize buffers of size MAXHOSTNAMELEN and copy the results from a query into these buffers, an overflow can occur. This can allow an attacker to execute arbitrary commands on a remote server in a worst case scenario. Problem II. - Systems Affected ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ All systems running BIND. Fix Information ~~~~~~~~~~~~~~~ Obtain BIND version 4.9.5-P1. BIND is availible from ftp.isc.org in the directory /isc/bind/src. Patches to solve both problem I and problem II are included at the end of this advisory. Once BIND has been obtained, follow the following procedure: i. First remove the patches from this text. This can be performed by removing all text in between the "CUT HERE" lines, and saving it to a text file (i.e. /tmp/diffs.txt). ii. Perform the following operations to apply the patches: % gzip -d bind.tar.gz % mkdir bind % cd bind % tar -xvf ../bind.tar % patch < /tmp/diffs.txt iii. Rebuild BIND Attributions ~~~~~~~~~~~~ Ivan Arce Emiliano Kargieman The OpenBSD Project Who found a good solution to problem, developed a solution and performed various tests to ensure its correctness. Individuals involved in this effort were: Theo de Raadt Niels Provos Todd Miller Allen Briggs Further attributions: AUSCERT David Sacerdote Oliver Friedrichs Alfred Huger Additional Information: ~~~~~~~~~~~~~~~~~~~~~~~ [1] Vixie P. , "DNS and BIND security issues". This was originally published in the proceedings of the 5th USENIX Security Symposium and its included in the BIND distribution under the doc/misc directory. [2] Kumar A., Postel J., Neuman C., Danzig P. , Miller S. "RFC1536: Common DNS implementation errors and suggested fixes" Refer to problem 2 for a description of other weaknesses previously found in the recursion scheme. [3] Lottor, M., "RFC1033: Domain administrators operations guide" [4] Mockapetris, P., "RFC1034: Domain names - Concepts and facilities" [5] Mockapetris, P., "RFC1035: Domain Names - Implementation and specification" [6] Schuba Christopher and Spafford Eugene, "Adressing weaknesses in the Domain Name System Protocol", COAST Laboratory, Department of Computer Science, Purdue University. Comments and questions regarding this advisory can be sent to: Ivan Arce Emiliano Kargieman For more information about CORE S.A. contact: core@secnet.com Or visit: http://www.secnet.com/core Encrypted mail can also be sent to encrypted with the following PGP key: Type Bits/KeyID Date User ID pub 1024/9E55000D 1997/01/13 Secure Networks Inc. Secure Networks - -----BEGIN PGP PUBLIC KEY BLOCK----- Version: 2.6.3ia mQCNAzLaFzIAAAEEAKsVzPR7Y6oFN5VPE/Rp6Sm82oE0y6Mkuof8QzERV6taihn5 uySb31UeNJ4l6Ud9alOPT/0YdeOO9on6eD1iU8qumFxzO3TLm8nTAdZehQSAQfoa rWmpwj7KpXN/3n+VyBWvhpBdKxe08SQN4ZjvV5HXy4YIrE5bTbgIhFKeVQANAAUR tCVTZWN1cmUgTmV0d29ya3MgSW5jLiA8c25pQHNlY25ldC5jb20+iQCVAwUQM1yd EB/bLKAOe7p9AQFptAQAiYpaZCpSmGgr05E698Z3t5r5BPAKUEtgvF53AvZUQLxz ZsYsVU5l5De0qKWJOQ/9LiDyWu1lvKhlTphbLy2RatWD4kO3oQL9v3TpSXm2WQhU uIzyZvj7S5ENodNnKn+gCDIvbou6OMot+7dRbWWgN2oabbru4CSlOxbG++yaTz+J AJUDBRAzTefbtOXez5VgyLkBAd0bA/43eGEgvPOFK+HHWCPpkSWCwtrtDU/dxOVz 9erHnT/CRxeojCI+50f71Qe+kvx9Q1odz2Jl/fLxhnPQdbPnpWblIbu4F8H+Syrj HTilDrl1DWa/nUNgK8sb27SMviELczP1a8gwA1eo5SUCG5TWLLTAzjWOgTxod2Ha OwseUHmqVIkAlQMFEDNOVsr/d6Iw8NVIbQEBxM0D/14XRfgSLwszgJcVbslMHm/B fF6tHoWYojzQle3opOuMYHNN8GsMZRkc1qQ8QuNA9Aj5+qDqEontGjV5IvhBu1fY FM77AhagskaFCZxwqV64Qrk328WDO89NGSd+RuovVNruDdn20TxNCEVuPTHjI0UA 8H+E6FW9jexg6RTHhPXYtCVTZWN1cmUgTmV0d29ya3MgPHNlY3VyaXR5QHNlY25l dC5jb20+iQCVAwUQMtqTKB/bLKAOe7p9AQFw5wQAgUwqJ+ZqfEy/lO1srU3nzxLA X0uHGHrMptRy/LFo8swD6G1TtWExUc3Yv/6g2/YK09b5WmplEJ+Q09maQIw+RU/s cIY+EsPauqIq4JTGh/Nm0Z4UDl2Y1x4GNtm0YqezxUPS0P0A3LHVLJ3Uo5og0G8O gPNrfbVz5ieT14OSCWCJAJUDBRAy2hd2/3eiMPDVSG0BAVNhBACfupfAcNhhnQaq aI03DOOiZSRjvql1xw4V+pPhM+IksdSK3YNUZVJJtANacgDhBT+jAPRaYbBWI3A5 ZMdcSNM8aTG0LWMLIOiOYEm6Lgd3idRBFN0Js08eyITl8mhZ33mDe4I0KQri9UiV ZcPYTbb9CWM6Hv2cMbt6S6kLnFziqIkAlQMFEDLaF0+4CIRSnlUADQEBCLoEAJwt UofDgvyZ4nCDx1KKAPkkXBRaPMWBp46xeTVcxaYiloZfwHfpk1h2mEJAxmAsvizl OtIppHl4isUxcGi/E2mLCLMvis22/IQP/9obPahPvgNaMLVtZljO1Nv3QFEkNciL FEUTNJHR1ko7ibCxkBs4cOpirFuvTMDvWnNaXAf8 =DchE - -----END PGP PUBLIC KEY BLOCK----- Copyright Notice ~~~~~~~~~~~~~~~~ The contents of this advisory are Copyright (C) 1997 Secure Networks Inc and CORE Seguridad de la Informacion S.A., and may be distributed freely provided that no fee is charged for distribution, and that proper credit is given. You can find Secure Networks papers at ftp://ftp.secnet.com/pub/papers and advisories at ftp://ftp.secnet.com/advisories You can browse our web site at http://www.secnet.com You can subscribe to our security advisory mailing list by sending mail to majordomo@secnet.com with the line "subscribe sni-advisories" Patches ~~~~~~~ --- CUT HERE --- diff -cNr ../bind-4.9.5-P1-rel/contrib/host/host.c ./contrib/host/host.c *** ../bind-4.9.5-P1-rel/contrib/host/host.c Sat Oct 12 16:24:42 1996 - --- ./contrib/host/host.c Wed Apr 9 15:27:05 1997 *************** *** 537,543 **** _res.retrans = DEF_RETRANS; /* timeout in secs between retries */ /* initialize packet id */ ! _res.id = getpid() & 0x7fff; /* save new defaults */ new_res = _res; - --- 537,543 ---- _res.retrans = DEF_RETRANS; /* timeout in secs between retries */ /* initialize packet id */ ! _res.id = res_randomid(); /* save new defaults */ new_res = _res; diff -cNr ../bind-4.9.5-P1-rel/named/ns_main.c ./named/ns_main.c *** ../bind-4.9.5-P1-rel/named/ns_main.c Tue Nov 26 03:11:23 1996 - --- ./named/ns_main.c Wed Apr 9 00:24:14 1997 *************** *** 1658,1668 **** } /* ! * These are here in case we ever want to get more clever, like perhaps ! * using a bitmap to keep track of outstanding queries and a random ! * allocation scheme to make it a little harder to predict them. Note ! * that the resolver will need the same protection so the cleverness ! * should be put there rather than here; this is just an interface layer. */ void - --- 1658,1668 ---- } /* ! * This just an interface layer to the random number generator ! * used in the resolver. ! * A special random number generator is used to create non predictable ! * and non repeating ids over a long period. It also avoids reuse ! * by switching between two distinct number cycles. */ void *************** *** 1674,1683 **** u_int16_t nsid_next() { ! if (nsid_state == 65535) ! nsid_state = 0; ! else ! nsid_state++; return (nsid_state); } - --- 1674,1680 ---- u_int16_t nsid_next() { ! nsid_state = res_randomid(); return (nsid_state); } diff -cNr ../bind-4.9.5-P1-rel/res/Makefile ./res/Makefile *** ../bind-4.9.5-P1-rel/res/Makefile Thu Aug 8 16:49:48 1996 - --- ./res/Makefile Wed Apr 9 00:32:13 1997 *************** *** 77,89 **** res_comp.c res_init.c res_mkquery.c res_query.c res_send.c \ getnetbyaddr.c getnetbyname.c getnetent.c getnetnamadr.c \ gethnamaddr.c sethostent.c nsap_addr.c hostnamelen.c inet_addr.c \ ! inet_ntop.c inet_neta.c inet_pton.c inet_net_ntop.c inet_net_pton.c OBJS= base64.o herror.o res_debug.o res_data.o \ res_comp.o res_init.o res_mkquery.o res_query.o res_send.o \ getnetbyaddr.o getnetbyname.o getnetent.o getnetnamadr.o \ gethnamaddr.o sethostent.o nsap_addr.o hostnamelen.o inet_addr.o \ ! inet_ntop.o inet_neta.o inet_pton.o inet_net_ntop.o inet_net_pton.o all: libresolv.a - --- 77,91 ---- res_comp.c res_init.c res_mkquery.c res_query.c res_send.c \ getnetbyaddr.c getnetbyname.c getnetent.c getnetnamadr.c \ gethnamaddr.c sethostent.c nsap_addr.c hostnamelen.c inet_addr.c \ ! inet_ntop.c inet_neta.c inet_pton.c inet_net_ntop.c inet_net_pton.c \ ! res_random.c OBJS= base64.o herror.o res_debug.o res_data.o \ res_comp.o res_init.o res_mkquery.o res_query.o res_send.o \ getnetbyaddr.o getnetbyname.o getnetent.o getnetnamadr.o \ gethnamaddr.o sethostent.o nsap_addr.o hostnamelen.o inet_addr.o \ ! inet_ntop.o inet_neta.o inet_pton.o inet_net_ntop.o inet_net_pton.o \ ! res_random.o all: libresolv.a diff -cNr ../bind-4.9.5-P1-rel/res/res_comp.c ./res/res_comp.c *** ../bind-4.9.5-P1-rel/res/res_comp.c Mon Dec 2 02:17:22 1996 - --- ./res/res_comp.c Fri Apr 18 18:45:02 1997 *************** *** 98,103 **** - --- 98,105 ---- dn = exp_dn; cp = comp_dn; + if (length > MAXHOSTNAMELEN-1) + length = MAXHOSTNAMELEN-1; eom = exp_dn + length; /* * fetch next label in domain name diff -cNr ../bind-4.9.5-P1-rel/res/res_init.c ./res/res_init.c *** ../bind-4.9.5-P1-rel/res/res_init.c Sat Sep 28 00:51:07 1996 - --- ./res/res_init.c Wed Apr 9 00:33:30 1997 *************** *** 197,209 **** if (!(_res.options & RES_INIT)) _res.options = RES_DEFAULT; - - /* - - * This one used to initialize implicitly to zero, so unless the app - - * has set it to something in particular, we can randomize it now. - - */ - - if (!_res.id) - - _res.id = res_randomid(); - - #ifdef USELOOPBACK _res.nsaddr.sin_addr = inet_makeaddr(IN_LOOPBACKNET, 1); #else - --- 197,202 ---- *************** *** 644,655 **** return(0); /* if not using DNS configuration from NetInfo */ } #endif /* NeXT */ - - - - u_int - - res_randomid() - - { - - struct timeval now; - - - - gettimeofday(&now, NULL); - - return (0xffff & (now.tv_sec ^ now.tv_usec ^ getpid())); - - } - --- 637,639 ---- diff -cNr ../bind-4.9.5-P1-rel/res/res_mkquery.c ./res/res_mkquery.c *** ../bind-4.9.5-P1-rel/res/res_mkquery.c Sat Sep 28 00:37:58 1996 - --- ./res/res_mkquery.c Wed Apr 9 00:31:30 1997 *************** *** 107,118 **** #endif /* * Initialize header fields. */ if ((buf == NULL) || (buflen < HFIXEDSZ)) return (-1); bzero(buf, HFIXEDSZ); hp = (HEADER *) buf; ! hp->id = htons(++_res.id); hp->opcode = op; hp->rd = (_res.options & RES_RECURSE) != 0; hp->rcode = NOERROR; - --- 107,123 ---- #endif /* * Initialize header fields. + * + * A special random number generator is used to create non predictable + * and non repeating ids over a long period. It also avoids reuse + * by switching between two distinct number cycles. */ + if ((buf == NULL) || (buflen < HFIXEDSZ)) return (-1); bzero(buf, HFIXEDSZ); hp = (HEADER *) buf; ! hp->id = htons(_res.id=res_randomid()); hp->opcode = op; hp->rd = (_res.options & RES_RECURSE) != 0; hp->rcode = NOERROR; diff -cNr ../bind-4.9.5-P1-rel/res/res_random.c ./res/res_random.c *** ../bind-4.9.5-P1-rel/res/res_random.c Wed Dec 31 17:00:00 1969 - --- ./res/res_random.c Tue Apr 22 02:31:25 1997 *************** *** 0 **** - --- 1,262 ---- + /* $OpenBSD: res_random.c,v 1.3 1997/04/19 10:07:01 provos Exp $ */ + + /* + * Copyright 1997 Niels Provos + * All rights reserved. + * + * Theo de Raadt came up with the idea of using + * such a mathematical system to generate more random (yet non-repeating) + * ids to solve the resolver/named problem. But Niels designed the + * actual system based on the constraints. + * + * Redistribution and use in source and binary forms, with or without + * modification, are permitted provided that the following conditions + * are met: + * 1. Redistributions of source code must retain the above copyright + * notice, this list of conditions and the following disclaimer. + * 2. Redistributions in binary form must reproduce the above copyright + * notice, this list of conditions and the following disclaimer in the + * documentation and/or other materials provided with the distribution. + * 3. All advertising materials mentioning features or use of this software + * must display the following acknowledgement: + * This product includes software developed by Niels Provos. + * 4. The name of the author may not be used to endorse or promote products + * derived from this software without specific prior written permission. + * + * THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR + * IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES + * OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. + * IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT, + * INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT + * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, + * DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY + * THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT + * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF + * THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. + */ + + /* + * seed = random 15bit + * n = prime, g0 = generator to n, + * j = random so that gcd(j,n-1) == 1 + * g = g0^j mod n will be a generator again. + * + * X[0] = random seed. + * X[n] = a*X[n-1]+b mod m is a Linear Congruential Generator + * with a = 7^(even random) mod m, + * b = random with gcd(b,m) == 1 + * m = 31104 and a maximal period of m-1. + * + * The transaction id is determined by: + * id[n] = seed xor (g^X[n] mod n) + * + * Effectivly the id is restricted to the lower 15 bits, thus + * yielding two different cycles by toggling the msb on and off. + * This avoids reuse issues caused by reseeding. + * + * The 16 bit space is very small and brute force attempts are + * entirly feasible, we skip a random number of transaction ids + * so that an attacker will not get sequential ids. + */ + + #include + #include + #include + #include + + #if defined(BSD) && (BSD >= 199103) + # include + # include + # include + #else + # include "../conf/portability.h" + #endif + + #define RU_OUT 180 /* Time after wich will be reseeded */ + #define RU_MAX 30000 /* Uniq cycle, avoid blackjack prediction */ + #define RU_GEN 2 /* Starting generator */ + #define RU_N 32749 /* RU_N-1 = 2*2*3*2729 */ + #define RU_AGEN 7 /* determine ru_a as RU_AGEN^(2*rand) */ + #define RU_M 31104 /* RU_M = 2^7*3^5 - don't change */ + + #define PFAC_N 3 + const static u_int16_t pfacts[PFAC_N] = { + 2, + 3, + 2729 + }; + + static u_int16_t ru_x; + static u_int16_t ru_seed; + static u_int16_t ru_a, ru_b; + static u_int16_t ru_g; + static u_int16_t ru_counter = 0; + static u_int16_t ru_msb = 0; + static long ru_reseed; + static u_int32_t tmp; /* Storage for unused random */ + static struct timeval tv; + + static u_int32_t pmod __P((u_int32_t, u_int32_t, u_int32_t)); + static void res_initid __P((void)); + + #ifndef __OpenBSD__ + /* + * No solid source of strong random in the system. Sigh. Fake it. + */ + u_long + arc4random() + { + static char state[256]; + char *savestate; + char *setstate(); + static unsigned seed; + static int count; + u_long datum; + + if (++count == 129837 || seed == 0) { + struct timeval tv; + + count = 0; + gettimeofday(&tv, NULL); + seed = getpid() ^ tv.tv_sec ^ tv.tv_usec; + initstate(seed, state, sizeof state); + } + savestate = setstate(state); + datum = random(); + setstate(savestate); + return (datum); + } + + #endif + + /* + * Do a fast modular exponation, returned value will be in the range + * of 0 - (mod-1) + */ + + static u_int32_t + pmod(gen, exp, mod) + u_int32_t gen, exp, mod; + { + u_int32_t s, t, u; + + s = 1; + t = gen; + u = exp; + + while (u) { + if (u & 1) + s = (s*t) % mod; + u >>= 1; + t = (t*t) % mod; + } + return (s); + } + + /* + * Initalizes the seed and chooses a suitable generator. Also toggles + * the msb flag. The msb flag is used to generate two distinct + * cycles of random numbers and thus avoiding reuse of ids. + * + * This function is called from res_randomid() when needed, an + * application does not have to worry about it. + */ + static void + res_initid() + { + u_int16_t j, i; + int noprime = 1; + + tmp = arc4random(); + ru_x = (tmp & 0xFFFF) % RU_M; + + /* 15 bits of random seed */ + ru_seed = (tmp >> 16) & 0x7FFF; + + tmp = arc4random(); + + /* Determine the LCG we use */ + ru_b = (tmp & 0xfffe) | 1; + ru_a = pmod(RU_AGEN, (tmp >> 16) & 0xfffe, RU_M); + while (ru_b % 3 == 0) + ru_b += 2; + + tmp = arc4random(); + j = tmp % RU_N; + tmp = tmp >> 16; + + /* + * Do a fast gcd(j,RU_N-1), so we can find a j with + * gcd(j, RU_N-1) == 1, giving a new generator for + * RU_GEN^j mod RU_N + */ + + while (noprime) { + for (i=0; i=PFAC_N) + noprime = 0; + else + j = (j+1) % RU_N; + } + + ru_g = pmod(RU_GEN,j,RU_N); + ru_counter = 0; + + gettimeofday(&tv, NULL); + ru_reseed = tv.tv_sec + RU_OUT; + ru_msb = ru_msb == 0x8000 ? 0 : 0x8000; + } + + u_int + res_randomid() + { + int i, n; + + gettimeofday(&tv, NULL); + if (ru_counter >= RU_MAX || tv.tv_sec > ru_reseed) + res_initid(); + + if (!tmp) + tmp = arc4random(); + + /* Skip a random number of ids */ + n = tmp & 0x2f; tmp = tmp >> 6; + if (ru_counter + n >= RU_MAX) + res_initid(); + + for (i=0; i<=n; i++) + /* Linear Congruential Generator */ + ru_x = (ru_a*ru_x + ru_b) % RU_M; + + ru_counter += i; + + return (ru_seed ^ pmod(ru_g,ru_x,RU_N)) | ru_msb; + } + + #if 0 + void + main(int argc, char **argv) + { + int i, n; + u_int16_t wert; + + res_initid(); + + printf("Generator: %d\n", ru_g); + printf("Seed: %d\n", ru_seed); + printf("Reseed at %ld\n", ru_reseed); + printf("Ru_X: %d\n", ru_x); + printf("Ru_A: %d\n", ru_a); + printf("Ru_B: %d\n", ru_b); + + n = atoi(argv[1]); + for (i=0;i Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id WAA08918 for isp-outgoing; Fri, 30 May 1997 22:57:38 -0700 (PDT) Received: from DNS.Lamb.net (root@DNS.Lamb.net [207.90.181.1]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id WAA08911 for ; Fri, 30 May 1997 22:57:35 -0700 (PDT) Received: from Gatekeeper.Lamb.net (ulf@gatekeeper.Lamb.net [207.90.181.2]) by DNS.Lamb.net (8.8.5/8.8.5) with ESMTP id WAA05902; Fri, 30 May 1997 22:57:40 -0700 (PDT) Received: (from ulf@localhost) by Gatekeeper.Lamb.net (8.8.5/8.7.6) id WAA03131; Fri, 30 May 1997 22:57:30 -0700 (PDT) From: Ulf Zimmermann Message-Id: <199705310557.WAA03131@Gatekeeper.Lamb.net> Subject: Re: sendmail: stop mail forwarding In-Reply-To: <199705310036.TAA25045@ns1.cioe.com> from Steve Ames at "May 30, 97 07:36:32 pm" To: steve@ns1.cioe.com (Steve Ames) Date: Fri, 30 May 1997 22:57:30 -0700 (PDT) Cc: freebsd-isp@FreeBSD.ORG X-Mailer: ELM [version 2.4ME+ PL31 (25)] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk Was it coming from a pub-ip.psi.net dialup customer ? We had the same for letter c. :( > > We recently (maybe 30 minutes ago) had someone forward a LOT of mail > through our server... most of it seemed to be destined for every user > on aol.com starting with the letter a. > > What's the Q&D patch to sendmail.cf to stop people from being able to > forward mail through? Can that be restricted by domain? (ie only people > from my domain can forward mail).... > > -Steve > Ulf. -------------------------------------------------------------------------- Ulf Zimmermann, 1525 Pacific Ave., Alameda, CA-94501, #: 510-769-2936 Alameda Networks, Inc. | http://www.Alameda.net | Fax#: 510-521-5073 From owner-freebsd-isp Fri May 30 23:15:28 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id XAA09409 for isp-outgoing; Fri, 30 May 1997 23:15:28 -0700 (PDT) Received: from orion.denverweb.net (root@sdn-ts-003coauroP06.dialsprint.net [206.133.160.57]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id XAA09404 for ; Fri, 30 May 1997 23:15:23 -0700 (PDT) Received: from orion (blaine@localhost [127.0.0.1]) by orion.denverweb.net (8.7.5/8.7.3) with SMTP id AAA06873; Sat, 31 May 1997 00:37:09 -0600 Message-ID: <338FC714.5F083F24@denverweb.net> Date: Sat, 31 May 1997 00:37:08 -0600 From: Blaine Minazzi Organization: What, me organized? X-Mailer: Mozilla 3.01 (X11; I; Linux 2.0.27 i586) MIME-Version: 1.0 To: Steve Ames CC: freebsd-isp@FreeBSD.ORG Subject: Re: sendmail: stop mail forwarding References: <199705310036.TAA25045@ns1.cioe.com> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk Steve Ames wrote: > > We recently (maybe 30 minutes ago) had someone forward a LOT of mail > through our server... most of it seemed to be destined for every user > on aol.com starting with the letter a. > > What's the Q&D patch to sendmail.cf to stop people from being able to > forward mail through? Can that be restricted by domain? (ie only people > from my domain can forward mail).... > > -Steve Several other options... A:send them a bill for several thousand dollars for use of your sevices. When they don't pay, put a ding on their credit report. B: Depending on the state you are in, it may be a crime. ( it is in colorado. ) See if you can press charges. Any other creative ideas out there? From owner-freebsd-isp Fri May 30 23:59:57 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id XAA10816 for isp-outgoing; Fri, 30 May 1997 23:59:57 -0700 (PDT) Received: from DNS.Lamb.net (root@DNS.Lamb.net [207.90.181.1]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id XAA10811 for ; Fri, 30 May 1997 23:59:54 -0700 (PDT) Received: from Gatekeeper.Lamb.net (ulf@gatekeeper.Lamb.net [207.90.181.2]) by DNS.Lamb.net (8.8.5/8.8.5) with ESMTP id AAA06067; Sat, 31 May 1997 00:00:02 -0700 (PDT) Received: (from ulf@localhost) by Gatekeeper.Lamb.net (8.8.5/8.7.6) id XAA04013; Fri, 30 May 1997 23:59:52 -0700 (PDT) From: Ulf Zimmermann Message-Id: <199705310659.XAA04013@Gatekeeper.Lamb.net> Subject: Re: sendmail: stop mail forwarding In-Reply-To: from Daniel Jacobs at "May 30, 97 11:15:41 pm" To: danielj@wizard.com Date: Fri, 30 May 1997 23:59:51 -0700 (PDT) Cc: ulf@Gatekeeper.Alameda.net, freebsd-isp@freebsd.org X-Mailer: ELM [version 2.4ME+ PL31 (25)] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk Mine came from Detroit. None of my emails and calls to PSI showed any effects. The person tried it on a friday, I saw that and stopped it very fast. 1 week later on sunday he tried it in a larger style. I told all the people, who wrote back, complaining about it, to complain at PSI. Most thanked me for that pointer. The bad thing about that spam, it was spam for spam: --- SPAM --- SPAM --- SPAM --- SPAM --- We believe that bulk e-mail is envorimental better then regular US postal mail because we don't cut down trees nor fill land fills with junk mail paper but it should be done with good tast and allowed by all ISP's No law should ever be pased regulating the internet Most new internet users find bulk mail sent to them interesting and sometimes useful Bulk e-mail makes the internet more real to the average person and busness No single person or ISP owns or should owne and/or control the internet --- SPAM --- SPAM --- SPAM --- SPAM --- > Was yours from a washington DC dial-up? We got hit pretty hard last week > before I added anti-relay stuff, and I spent over 2 hours on the phone > long-distance arguing with PSI people until one of them promised to deal > with it. If it's the same guy, PSI has an issue to deal with. > > On Fri, 30 May 1997, Ulf Zimmermann wrote: > > > Was it coming from a pub-ip.psi.net dialup customer ? We had the same > > for letter c. :( > > > > > > > > We recently (maybe 30 minutes ago) had someone forward a LOT of mail > > > through our server... most of it seemed to be destined for every user > > > on aol.com starting with the letter a. > > > > > > What's the Q&D patch to sendmail.cf to stop people from being able to > > > forward mail through? Can that be restricted by domain? (ie only people > > > from my domain can forward mail).... > > > > > > -Steve > > > > > > > Ulf. > > > > -------------------------------------------------------------------------- > > Ulf Zimmermann, 1525 Pacific Ave., Alameda, CA-94501, #: 510-769-2936 > > Alameda Networks, Inc. | http://www.Alameda.net | Fax#: 510-521-5073 > > > > Daniel Jacobs | @wizard.com - Las Vegas Providers of Internet Services > (702) 871-4461 | http://www.wizard.com/ | danielj@wizard.com > "In art and dream, may you proceed with abandon. > In life, may you proceed with balance and stealth." - Patti Smith > > > Ulf. -------------------------------------------------------------------------- Ulf Zimmermann, 1525 Pacific Ave., Alameda, CA-94501, #: 510-769-2936 Alameda Networks, Inc. | http://www.Alameda.net | Fax#: 510-521-5073 From owner-freebsd-isp Sat May 31 00:26:55 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id AAA11628 for isp-outgoing; Sat, 31 May 1997 00:26:55 -0700 (PDT) Received: from wlk.com (news.wlk.com [192.86.83.250]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id AAA11623 for ; Sat, 31 May 1997 00:26:53 -0700 (PDT) Received: from SMTPdaemon by wlk.com (smail3.2) with SMTPL id m0wXiYe-0009rNC; Sat, 31 May 1997 02:26:36 -0500 (CDT) Received: from critter.dk.tfs.com (localhost [127.0.0.1]) by critter.dk.tfs.com (8.8.5/8.8.5) with ESMTP id JAA04431; Sat, 31 May 1997 09:23:25 +0200 (CEST) To: Steve cc: "J.D. Falk" , isp@FreeBSD.ORG From: Poul-Henning Kamp Subject: Re: stopping mailspam without tears... In-reply-to: Your message of "Fri, 30 May 1997 20:18:29 EDT." Date: Sat, 31 May 1997 09:23:25 +0200 Message-ID: <4429.865063405@critter.dk.tfs.com> Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk In message , Ste ve writes: > >I just used smap with the security patches that issue an SMTP 554 error as >soon as the from site is identified as a spam only site. This I belive is not a good solution. They will just move on to the next sucker mail-relay on their list. I accept the email and fail to deliver it. That is more efficient, they think they have sent it, and nobody gets bothered by it. -- Poul-Henning Kamp | phk@FreeBSD.ORG FreeBSD Core-team. http://www.freebsd.org/~phk | phk@login.dknet.dk Private mailbox. whois: [PHK] | phk@tfs.com TRW Financial Systems, Inc. Power and ignorance is a disgusting cocktail. From owner-freebsd-isp Sat May 31 02:29:25 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id CAA15421 for isp-outgoing; Sat, 31 May 1997 02:29:25 -0700 (PDT) Received: from labinfo.iet.unipi.it (labinfo.iet.unipi.it [131.114.9.5]) by hub.freebsd.org (8.8.5/8.8.5) with SMTP id CAA15416 for ; Sat, 31 May 1997 02:29:19 -0700 (PDT) Received: from localhost (luigi@localhost) by labinfo.iet.unipi.it (8.6.5/8.6.5) id KAA21835; Sat, 31 May 1997 10:54:43 +0200 From: Luigi Rizzo Message-Id: <199705310854.KAA21835@labinfo.iet.unipi.it> Subject: Re: stopping mailspam without tears... To: phk@dk.tfs.com (Poul-Henning Kamp) Date: Sat, 31 May 1997 10:54:43 +0200 (MET DST) Cc: shovey@buffnet.net, jdfalk@cybernothing.org, isp@FreeBSD.ORG In-Reply-To: <4429.865063405@critter.dk.tfs.com> from "Poul-Henning Kamp" at May 31, 97 09:23:06 am X-Mailer: ELM [version 2.4 PL23] Content-Type: text Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk > >I just used smap with the security patches that issue an SMTP 554 error as > >soon as the from site is identified as a spam only site. > > This I belive is not a good solution. They will just move on to the > next sucker mail-relay on their list. > > I accept the email and fail to deliver it. That is more efficient, > they think they have sent it, and nobody gets bothered by it. so you are spending your resources (incoming bw, temporary storage) for doing a service to the community. This is very nice of you, it's just that some people aren't so nice or simply cannot afford it. Cheers Luigi -----------------------------+-------------------------------------- Luigi Rizzo | Dip. di Ingegneria dell'Informazione email: luigi@iet.unipi.it | Universita' di Pisa tel: +39-50-568533 | via Diotisalvi 2, 56126 PISA (Italy) fax: +39-50-568522 | http://www.iet.unipi.it/~luigi/ _____________________________|______________________________________ From owner-freebsd-isp Sat May 31 02:50:07 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id CAA16238 for isp-outgoing; Sat, 31 May 1997 02:50:07 -0700 (PDT) Received: from lix.intercom.es (root@lix.intercom.es [194.179.21.2]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id CAA16226 for ; Sat, 31 May 1997 02:50:02 -0700 (PDT) Received: from lix.intercom.es.intercom.es (ppp76.intercom.es [194.179.21.151]) by lix.intercom.es (8.7.3/8.6.12) with SMTP id LAA09430; Sat, 31 May 1997 11:53:51 +0100 Message-ID: <338FF33C.740F@plug.intercom.es> Date: Sat, 31 May 1997 11:45:32 +0200 From: Albert Garcia Pujadas Organization: Plug.Intercom X-Mailer: Mozilla 3.01 (Win95; I) MIME-Version: 1.0 To: freebsd-isp@FreeBSD.ORG Subject: (no subject) Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk unsuscribe From owner-freebsd-isp Sat May 31 03:07:27 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id DAA16828 for isp-outgoing; Sat, 31 May 1997 03:07:27 -0700 (PDT) Received: from buffnet4.buffnet.net (buffnet4.buffnet.net [205.246.19.13]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id DAA16823 for ; Sat, 31 May 1997 03:07:24 -0700 (PDT) Received: from buffnet9.buffnet.net (buffnet9.buffnet.net [205.246.19.19]) by buffnet4.buffnet.net (8.7.5/8.7.3) with SMTP id GAA28124; Sat, 31 May 1997 06:07:46 -0400 (EDT) Received: from buffnet11.buffnet.net(205.246.19.55) by buffnet9.buffnet.net via smap (V2.0) id xma002780; Sat, 31 May 97 06:06:03 -0400 Date: Sat, 31 May 1997 06:07:16 -0400 (EDT) From: Steve To: Steve Ames cc: freebsd-isp@FreeBSD.ORG Subject: Re: sendmail: stop mail forwarding In-Reply-To: <199705310036.TAA25045@ns1.cioe.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk I went with smapd - there are other security features to it than just stopping a relay. See http://www.tis.com On Fri, 30 May 1997, Steve Ames wrote: > > We recently (maybe 30 minutes ago) had someone forward a LOT of mail > through our server... most of it seemed to be destined for every user > on aol.com starting with the letter a. > > What's the Q&D patch to sendmail.cf to stop people from being able to > forward mail through? Can that be restricted by domain? (ie only people > from my domain can forward mail).... > > -Steve > From owner-freebsd-isp Sat May 31 03:26:27 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id DAA17376 for isp-outgoing; Sat, 31 May 1997 03:26:27 -0700 (PDT) Received: from wlk.com (news.wlk.com [192.86.83.250]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id DAA17371 for ; Sat, 31 May 1997 03:26:25 -0700 (PDT) Received: from SMTPdaemon by wlk.com (smail3.2) with SMTPL id m0wXlMT-0009s8C; Sat, 31 May 1997 05:26:13 -0500 (CDT) Received: from critter.dk.tfs.com (localhost [127.0.0.1]) by critter.dk.tfs.com (8.8.5/8.8.5) with ESMTP id MAA04775; Sat, 31 May 1997 12:22:50 +0200 (CEST) To: Luigi Rizzo cc: phk@dk.tfs.com (Poul-Henning Kamp), shovey@buffnet.net, jdfalk@cybernothing.org, isp@FreeBSD.ORG From: Poul-Henning Kamp Subject: Re: stopping mailspam without tears... In-reply-to: Your message of "Sat, 31 May 1997 10:54:43 +0200." <199705310854.KAA21835@labinfo.iet.unipi.it> Date: Sat, 31 May 1997 12:22:50 +0200 Message-ID: <4773.865074170@critter.dk.tfs.com> Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk In message <199705310854.KAA21835@labinfo.iet.unipi.it>, Luigi Rizzo writes: >> >I just used smap with the security patches that issue an SMTP 554 error as >> >soon as the from site is identified as a spam only site. >> >> This I belive is not a good solution. They will just move on to the >> next sucker mail-relay on their list. >> >> I accept the email and fail to deliver it. That is more efficient, >> they think they have sent it, and nobody gets bothered by it. > >so you are spending your resources (incoming bw, temporary storage) for >doing a service to the community. This is very nice of you, it's just >that some people aren't so nice or simply cannot afford it. Well, it's cheap compared to many other things :-) We caught 670 receipients just this night... And this is only for two of our machines so far... -- Poul-Henning Kamp | phk@FreeBSD.ORG FreeBSD Core-team. http://www.freebsd.org/~phk | phk@login.dknet.dk Private mailbox. whois: [PHK] | phk@tfs.com TRW Financial Systems, Inc. Power and ignorance is a disgusting cocktail. From owner-freebsd-isp Sat May 31 04:11:54 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id EAA20211 for isp-outgoing; Sat, 31 May 1997 04:11:54 -0700 (PDT) Received: from wlk.com (news.wlk.com [192.86.83.250]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id EAA20206 for ; Sat, 31 May 1997 04:11:50 -0700 (PDT) Received: from SMTPdaemon by wlk.com (smail3.2) with SMTPL id m0wXm4R-0009s6C; Sat, 31 May 1997 06:11:39 -0500 (CDT) Received: from critter.dk.tfs.com (localhost [127.0.0.1]) by critter.dk.tfs.com (8.8.5/8.8.5) with ESMTP id NAA04861; Sat, 31 May 1997 13:08:30 +0200 (CEST) To: Poul-Henning Kamp cc: Luigi Rizzo , shovey@buffnet.net, jdfalk@cybernothing.org, isp@FreeBSD.ORG From: Poul-Henning Kamp Subject: Re: stopping mailspam without tears... In-reply-to: Your message of "Sat, 31 May 1997 12:22:50 +0200." <4773.865074170@critter.dk.tfs.com> Date: Sat, 31 May 1997 13:08:30 +0200 Message-ID: <4859.865076910@critter.dk.tfs.com> Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk >We caught 670 receipients just this night... And this is only for two >of our machines so far... Update, my report script only report queue files ending in zero, (for debugging the script). The real number is: 7169 -- Poul-Henning Kamp | phk@FreeBSD.ORG FreeBSD Core-team. http://www.freebsd.org/~phk | phk@login.dknet.dk Private mailbox. whois: [PHK] | phk@tfs.com TRW Financial Systems, Inc. Power and ignorance is a disgusting cocktail. From owner-freebsd-isp Sat May 31 11:51:51 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id LAA03631 for isp-outgoing; Sat, 31 May 1997 11:51:51 -0700 (PDT) Received: from h2o.journey.net (h2o.journey.net [207.227.162.60]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id LAA03626 for ; Sat, 31 May 1997 11:51:49 -0700 (PDT) Received: from localhost (listuser@localhost) by h2o.journey.net (8.8.5/8.8.5) with SMTP id OAA00881; Sat, 31 May 1997 14:51:48 -0400 (EDT) Date: Sat, 31 May 1997 14:51:48 -0400 (EDT) From: listuser To: Ulf Zimmermann cc: isp@FreeBSD.ORG Subject: Re: Anyone has an interest for..... In-Reply-To: <199705291908.MAA09192@Gatekeeper.Lamb.net> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk I assume you mean Ascend Max 4002? I am interested in the animal.. Let me know what you want for it.. On Thu, 29 May 1997, Ulf Zimmermann wrote: > ... a Descend Max 4002 with Hybrid and ISDN software installed (no modems) ? > > I am trying to concentrate on Frame Relay/Leased lines only, that means > I have no use for the 4002 anymore. The unit is about 6 months old. > > > Ulf. > > -------------------------------------------------------------------------- > Ulf Zimmermann, 1525 Pacific Ave., Alameda, CA-94501, #: 510-769-2936 > Alameda Networks, Inc. | http://www.Alameda.net | Fax#: 510-521-5073 > From owner-freebsd-isp Sat May 31 11:53:27 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id LAA03744 for isp-outgoing; Sat, 31 May 1997 11:53:27 -0700 (PDT) Received: from h2o.journey.net (h2o.journey.net [207.227.162.60]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id LAA03739 for ; Sat, 31 May 1997 11:53:25 -0700 (PDT) Received: from localhost (listuser@localhost) by h2o.journey.net (8.8.5/8.8.5) with SMTP id OAA00903; Sat, 31 May 1997 14:53:25 -0400 (EDT) Date: Sat, 31 May 1997 14:53:25 -0400 (EDT) From: listuser To: "Tom T. Thai" cc: freebsd-isp@FreeBSD.ORG Subject: Re: nntp In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk If you have not found anyone yet let me know.. On Thu, 29 May 1997, Tom T. Thai wrote: > My upstream provider is having some problems with his news service. Can > someone on this list provide me a feed? > > > .............. .................................... > Thomas T. Thai Infomedia Interactive Communications > tom@iic.net TEL 612.376.9090 * FAX 612.376.9087 > > > From owner-freebsd-isp Sat May 31 13:07:40 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id NAA10052 for isp-outgoing; Sat, 31 May 1997 13:07:40 -0700 (PDT) Received: from DNS.Lamb.net (root@DNS.Lamb.net [207.90.181.1]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id NAA10047 for ; Sat, 31 May 1997 13:07:38 -0700 (PDT) Received: from Gatekeeper.Lamb.net (ulf@gatekeeper.Lamb.net [207.90.181.2]) by DNS.Lamb.net (8.8.5/8.8.5) with ESMTP id NAA08682; Sat, 31 May 1997 13:07:46 -0700 (PDT) Received: (from ulf@localhost) by Gatekeeper.Lamb.net (8.8.5/8.7.6) id NAA14658; Sat, 31 May 1997 13:07:34 -0700 (PDT) From: Ulf Zimmermann Message-Id: <199705312007.NAA14658@Gatekeeper.Lamb.net> Subject: Re: Anyone has an interest for..... In-Reply-To: from listuser at "May 31, 97 02:51:48 pm" To: listuser@h2o.journey.net (listuser) Date: Sat, 31 May 1997 13:07:34 -0700 (PDT) Cc: ulf@Gatekeeper.Alameda.net, isp@FreeBSD.ORG X-Mailer: ELM [version 2.4ME+ PL31 (25)] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk I paid $9450 (plus tax) for it. Max 4002, ISDN software and Hybrid Access software, no modems. Unit is about a half year old. Make an offer. > I assume you mean Ascend Max 4002? > > I am interested in the animal.. > > Let me know what you want for it.. > > > On Thu, 29 May 1997, Ulf Zimmermann wrote: > > > ... a Descend Max 4002 with Hybrid and ISDN software installed (no modems) ? > > > > I am trying to concentrate on Frame Relay/Leased lines only, that means > > I have no use for the 4002 anymore. The unit is about 6 months old. > > > > > > Ulf. > > > > -------------------------------------------------------------------------- > > Ulf Zimmermann, 1525 Pacific Ave., Alameda, CA-94501, #: 510-769-2936 > > Alameda Networks, Inc. | http://www.Alameda.net | Fax#: 510-521-5073 > > > > Ulf. -------------------------------------------------------------------------- Ulf Zimmermann, 1525 Pacific Ave., Alameda, CA-94501, #: 510-769-2936 Alameda Networks, Inc. | http://www.Alameda.net | Fax#: 510-521-5073 From owner-freebsd-isp Sat May 31 15:10:11 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id PAA18150 for isp-outgoing; Sat, 31 May 1997 15:10:11 -0700 (PDT) Received: from mail.webspan.net (root@mail.webspan.net [206.154.70.7]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id PAA18142 for ; Sat, 31 May 1997 15:10:09 -0700 (PDT) Received: from orion.webspan.net (orion.webspan.net [206.154.70.5]) by mail.webspan.net (8.8.5/8.8.5) with ESMTP id SAA12615; Sat, 31 May 1997 18:10:02 -0400 (EDT) Received: from orion.webspan.net (localhost [127.0.0.1]) by orion.webspan.net (WEBSPN/970116) with ESMTP id SAA08573; Sat, 31 May 1997 18:10:01 -0400 (EDT) To: Poul-Henning Kamp cc: Steve , "J.D. Falk" , isp@FreeBSD.ORG From: "Gary Palmer" Subject: Re: stopping mailspam without tears... In-reply-to: Your message of "Sat, 31 May 1997 09:23:25 +0200." <4429.865063405@critter.dk.tfs.com> Date: Sat, 31 May 1997 18:10:01 -0400 Message-ID: <8571.865116601@orion.webspan.net> Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk Poul-Henning Kamp wrote in message ID <4429.865063405@critter.dk.tfs.com>: > In message , S > te > ve writes: > > > >I just used smap with the security patches that issue an SMTP 554 error as > >soon as the from site is identified as a spam only site. > This I belive is not a good solution. They will just move on to the > next sucker mail-relay on their list. Especially when (if you read the license for FWTK closely) you cannot use any component of the FWTK in a situation where the company generates revenue. I think people would be hard pressed, at an ISP, to say their mail servers don't generate revenue for the company. It is one reason why I refuse to touch the TIS FWTK port these days, even to update it. I'm less than impressed with their license. Gary -- Gary Palmer FreeBSD Core Team Member FreeBSD: Turning PC's into workstations. See http://www.FreeBSD.ORG/ for info From owner-freebsd-isp Sat May 31 19:29:03 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id TAA00382 for isp-outgoing; Sat, 31 May 1997 19:29:03 -0700 (PDT) Received: from obiwan.psinet.net.au (obiwan.psinet.net.au [203.19.28.59]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id TAA00377 for ; Sat, 31 May 1997 19:28:59 -0700 (PDT) Received: from localhost (adrian@localhost) by obiwan.psinet.net.au (8.8.5/8.8.5) with SMTP id KAA07596; Sun, 1 Jun 1997 10:10:42 +0800 (WST) Date: Sun, 1 Jun 1997 10:10:42 +0800 (WST) From: Adrian Chadd To: Poul-Henning Kamp cc: isp@FreeBSD.ORG Subject: Re: stopping mailspam without tears... In-Reply-To: <4773.865074170@critter.dk.tfs.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk > >so you are spending your resources (incoming bw, temporary storage) for > >doing a service to the community. This is very nice of you, it's just > >that some people aren't so nice or simply cannot afford it. > > Well, it's cheap compared to many other things :-) > > We caught 670 receipients just this night... And this is only for two > of our machines so far... That isn't a solution for everyone you know. :-) I like the idea of accepting / killing the email, that is what I did for a long time with procmail. Thing is, it might be good in places where you aren't volume charged an arm and a leg for traffic. How many mb of traffic would you have saved by plain rejecting the email rather than accepting / /dev/null'ing it? Now .. times the number of mb by 19c :) Usefully big ISPs in Australia PAY for that crap. :-) Adrian From owner-freebsd-isp Sat May 31 20:33:05 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id UAA02769 for isp-outgoing; Sat, 31 May 1997 20:33:05 -0700 (PDT) Received: from bob.tri-lakes.net ([207.3.81.6]) by hub.freebsd.org (8.8.5/8.8.5) with SMTP id UAA02762 for ; Sat, 31 May 1997 20:33:03 -0700 (PDT) Received: from [207.3.81.149] by bob.tri-lakes.net (NTMail 3.02.13) with ESMTP id sa200166 for ; Sat, 31 May 1997 22:33:09 -0500 Message-ID: <3390ED9B.41C67EA6@tri-lakes.net> Date: Sat, 31 May 1997 22:33:47 -0500 From: Chris Dillon X-Mailer: Mozilla 3.01Gold (X11; I; FreeBSD 2.2-RELEASE i386) MIME-Version: 1.0 To: freebsd-isp@freebsd.org Subject: Yet another spammer to add to the big-ol' blacklist... Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk The message was about some bull about becoming a MCI phone card distributor.. anyway, heres the message header. ====== CUT ====== Received: from [207.120.43.133] by bob.tri-lakes.net (NTMail 3.02.13) with ESMTP id cdillon for ; Sat, 31 May 1997 01:54:47 -0500 Received: from localhost (mcicard@localhost) by internetmedia.com (8.7.5/8.7.3) with SMTP id CAA00348; Sat, 31 May 1997 02:55:36 -0400 (EDT) Date: Sat, 31 May 1997 02:55:36 -0400 (EDT) From: MCI Card Carrier Received: by ns.internetmedia.com (bulk_mailer v1.5); Fri, 30 May 1997 21:00:00 -0400 To: mcicard@internetmedia.com Reply-to: mcicard@internetmedia.com Subject: FREE MCI PHONE CARD! MAKE MONEY WITH MCI Message-ID: X-Mozilla-Status: 0001 ====== END CUT ====== I DEFINATELY didn't solicit this.. :) Hope what I pasted is what you all need. Thanks, Chris Dillon