From owner-freebsd-isp@FreeBSD.ORG Wed Aug 4 03:31:54 2004 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id AB7DC16A4D0 for ; Wed, 4 Aug 2004 03:31:54 +0000 (GMT) Received: from richard2.pil.net (richard2.pil.net [208.8.16.11]) by mx1.FreeBSD.org (Postfix) with SMTP id 2F74143D5C for ; Wed, 4 Aug 2004 03:31:53 +0000 (GMT) (envelope-from up@3.am) Received: (qmail 53972 invoked by uid 1825); 4 Aug 2004 03:31:52 -0000 Received: from localhost (sendmail-bs@127.0.0.1) by localhost with SMTP; 4 Aug 2004 03:31:52 -0000 Date: Tue, 3 Aug 2004 23:31:52 -0400 (EDT) From: up@3.am X-X-Sender: up@richard2.pil.net To: FreeBSD ISP List , , Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Subject: SCSI errors with Adaptec 2200S RAID X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 04 Aug 2004 03:31:54 -0000 Please cc replies directly to me, as I am not subscribed to the lists. With some help from here, I was able to get this RAID card to see our external DLT (QUANTUM 4000) SCSI tape drive by installing the aacp (pass through) driver in addition to the aac driver. camcontrol now works, as do basic mt commands and amcheck (amanda check). However, (amanda) dumps either hang, fail completely or fail after transfering very little data. On the console, I see: (sa0:aacp1:0:4:0): READ(06). CDB8 0 0 0 20 0 0 (sa0:aacp1:0:4:0): NO SENSE ILI (length mismatch): -24576 csi:0,0,0,1 At this point the device is completely unresponsive, and the only way to get the system to see it again is to reboot the whole server. I tried ordering a 3 ft cable, thinking I was pushing my luck with the 6 ft (I've had this problem with SCSI cables in the past), but the problem persists. The same drive (which has an active terminator) has been working fine for years on a different box using an Intel L440GX+ MB's on-board SCSI port. Once again, any helpful replies are greatly appreciated! James Smallacombe PlantageNet, Inc. CEO and Janitor up@3.am http://3.am ========================================================================= From owner-freebsd-isp@FreeBSD.ORG Wed Aug 4 15:52:21 2004 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 00F2A16A4CE for ; Wed, 4 Aug 2004 15:52:21 +0000 (GMT) Received: from vineyard.net (k1.vineyard.net [204.17.195.90]) by mx1.FreeBSD.org (Postfix) with ESMTP id C690743D2F for ; Wed, 4 Aug 2004 15:52:20 +0000 (GMT) (envelope-from ericx_lists@vineyard.net) Received: from localhost (loopback [127.0.0.1]) by vineyard.net (Postfix) with ESMTP id E8C7391644; Wed, 4 Aug 2004 11:49:59 -0400 (EDT) Received: from vineyard.net ([127.0.0.1]) by localhost (king1.vineyard.net [127.0.0.1]) (amavisd-new, port 10024) with LMTP id 72128-01-95; Wed, 4 Aug 2004 11:49:59 -0400 (EDT) Received: from vineyard.net (cheesenip.vineyard.net [204.17.195.113]) by vineyard.net (Postfix) with ESMTP id B33499163E; Wed, 4 Aug 2004 11:49:59 -0400 (EDT) Message-ID: <411105A7.9060902@vineyard.net> Date: Wed, 04 Aug 2004 11:49:59 -0400 From: "Eric W. Bates" User-Agent: Mozilla Thunderbird 0.5 (X11/20040208) X-Accept-Language: en-us, en MIME-Version: 1.0 To: up@3.am References: In-Reply-To: Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit X-Virus-Scanned: by AMaViS-king1 at Vineyard.NET cc: freebsd-isp@freebsd.org Subject: Re: SCSI errors with Adaptec 2200S RAID X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 04 Aug 2004 15:52:21 -0000 I can't address the cause of the problem; but I have had good luck using camcontrol reset when my tape device wedges. This is less disruptive than a reboot. Use: camcontrol devlist -v To get a list of your busses and such if you can't remember the ID of the drive in question (I'm too lazy to walk over to the rack...). up@3.am wrote: > Please cc replies directly to me, as I am not subscribed to the lists. > > With some help from here, I was able to get this RAID card to see our > external DLT (QUANTUM 4000) SCSI tape drive by installing the aacp (pass > through) driver in addition to the aac driver. camcontrol now works, as > do basic mt commands and amcheck (amanda check). > > However, (amanda) dumps either hang, fail completely or fail after > transfering very little data. On the console, I see: > > (sa0:aacp1:0:4:0): READ(06). CDB8 0 0 0 20 0 0 > (sa0:aacp1:0:4:0): NO SENSE ILI (length mismatch): -24576 csi:0,0,0,1 > > At this point the device is completely unresponsive, and the only way to > get the system to see it again is to reboot the whole server. I tried > ordering a 3 ft cable, thinking I was pushing my luck with the 6 ft (I've > had this problem with SCSI cables in the past), but the problem persists. > > The same drive (which has an active terminator) has been working fine for > years on a different box using an Intel L440GX+ MB's on-board SCSI port. > > Once again, any helpful replies are greatly appreciated! > > James Smallacombe PlantageNet, Inc. CEO and Janitor > up@3.am http://3.am > ========================================================================= > > _______________________________________________ > freebsd-isp@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-isp > To unsubscribe, send any mail to "freebsd-isp-unsubscribe@freebsd.org" From owner-freebsd-isp@FreeBSD.ORG Thu Aug 5 06:20:46 2004 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 5EEB916A4CE for ; Thu, 5 Aug 2004 06:20:46 +0000 (GMT) Received: from smtp4.wlink.com.np (smtp4.wlink.com.np [202.79.32.87]) by mx1.FreeBSD.org (Postfix) with SMTP id A281743D1F for ; Thu, 5 Aug 2004 06:20:42 +0000 (GMT) (envelope-from bikrant_ml@wlink.com.np) Received: (qmail 15301 invoked from network); 5 Aug 2004 06:20:31 -0000 Received: from unknown (HELO qmail-scanner.wlink.com.np) (202.79.32.74) by 0 with SMTP; 5 Aug 2004 06:20:31 -0000 Received: (qmail 47689 invoked by uid 1008); 5 Aug 2004 06:20:31 -0000 Received: from bikrant_ml@wlink.com.np by qmail-scanner.wlink.com.np by uid 1002 with qmail-scanner-1.20 (clamscan: 0.60. Clear:RC:1(202.79.32.78):. Processed in 0.055139 secs); 05 Aug 2004 06:20:31 -0000 Received: from smtp3.wlink.com.np (202.79.32.78) by qmail-scanner.wlink.com.np with SMTP; 5 Aug 2004 06:20:31 -0000 Received: (qmail 22226 invoked by uid 514); 5 Aug 2004 06:20:30 -0000 Received: from [202.79.36.168] (HELO bikrant.org.np) by smtp3.wlink.com.np (qmail-smtpd) with SMTP; 05 Aug 2004 06:20:30 -0000 (Thu, 05 Aug 2004 12:05:30 +0545) From: Bikrant Neupane To: freebsd-questions@freebsd.org Date: Thu, 5 Aug 2004 12:05:27 +0545 User-Agent: KMail/1.6.1 MIME-Version: 1.0 Content-Disposition: inline Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit Message-Id: <200408051205.27257.bikrant_ml@wlink.com.np> X-Spam-Check-By: smtp3.wlink.com.np Spam: No ; -4.9 / 5.0 X-Spam-Status: No, hits=-4.9 required=5.0 cc: freebsd-isp@freebsd.org Subject: Change/Ignore TOS value X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 05 Aug 2004 06:20:46 -0000 Hi, I would like my freebsd system to ignore the IP TOS value (whatever it is set to). Or is there any way to set the TOS value to some preferred value?? thanks bikrant From owner-freebsd-isp@FreeBSD.ORG Thu Aug 5 12:36:04 2004 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id C8ACE16A4CE for ; Thu, 5 Aug 2004 12:36:04 +0000 (GMT) Received: from mail.act.co.za (mail.act.co.za [196.15.213.131]) by mx1.FreeBSD.org (Postfix) with ESMTP id D9A7643D31 for ; Thu, 5 Aug 2004 12:35:59 +0000 (GMT) (envelope-from spidey@act.co.za) Received: from localhost.act.co.za ([127.0.0.1] helo=localhost) by mail.act.co.za with esmtp (Exim 4.24; FreeBSD 5.0) id 1BshYp-0003Ha-NN for freebsd-isp@freebsd.org; Thu, 05 Aug 2004 14:41:31 +0200 Received: from mail.act.co.za ([127.0.0.1]) by localhost (mail.act.co.za [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 12529-03 for ; Thu, 5 Aug 2004 14:41:24 +0200 (SAST) Received: from [10.0.1.11] (helo=SPIDEY) by mail.act.co.za with esmtp (Exim 4.24; FreeBSD 5.0) id 1BshYi-0003H0-8Z for freebsd-isp@freebsd.org; Thu, 05 Aug 2004 14:41:24 +0200 From: "Spidey Knepscheld" To: Date: Thu, 5 Aug 2004 14:35:38 +0200 Organization: ACT Computers Message-ID: <001b01c47ae8$b8f127f0$0b01000a@SPIDEY> MIME-Version: 1.0 X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook, Build 10.0.2627 Importance: Normal X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2800.1441 X-Virus-Scanned: by amavisd-new at act.co.za Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit X-Content-Filtered-By: Mailman/MimeDel 2.1.1 Subject: Open a user for FTP Access X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list Reply-To: spidey@act.co.za List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 05 Aug 2004 12:36:04 -0000 Hi Guys This is another stupid question from me but I would like to know how do I give a guy access to his web directory for updates of his www. I know how to open users but not how to give that user access to ftp to his directory. Thank you Spidey From owner-freebsd-isp@FreeBSD.ORG Thu Aug 5 12:56:13 2004 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 757B616A4CF for ; Thu, 5 Aug 2004 12:56:13 +0000 (GMT) Received: from fwall.in.markiza.sk (fwall.in.markiza.sk [62.168.76.18]) by mx1.FreeBSD.org (Postfix) with ESMTP id 633F843D5C for ; Thu, 5 Aug 2004 12:56:12 +0000 (GMT) (envelope-from corwin@aeternal.net) Received: from localhost (localhost.markiza.sk [127.0.0.1]) by fwall.in.markiza.sk (Postfix) with ESMTP id 7158A22F8A; Thu, 5 Aug 2004 14:56:12 +0200 (CEST) Received: from fwall.in.markiza.sk ([127.0.0.1]) by localhost (fwall.in.markiza.sk [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 91064-04; Thu, 5 Aug 2004 14:56:08 +0200 (CEST) Received: from pleiades.aeternal.net (pleiades.in.markiza.sk [192.168.13.7]) by fwall.in.markiza.sk (Postfix) with ESMTP id B3C0A22F9A; Thu, 5 Aug 2004 14:56:08 +0200 (CEST) Received: by pleiades.aeternal.net (Postfix, from userid 502) id 4F6F91701E; Thu, 5 Aug 2004 14:56:29 +0200 (CEST) Date: Thu, 5 Aug 2004 14:56:29 +0200 From: Martin Hudec To: Spidey Knepscheld Message-ID: <20040805125629.GR1112@pleiades.aeternal.net> References: <001b01c47ae8$b8f127f0$0b01000a@SPIDEY> Mime-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="3XZQkxCYp0f/VEFS" Content-Disposition: inline In-Reply-To: <001b01c47ae8$b8f127f0$0b01000a@SPIDEY> X-Copyright: (C) 2004 Martin Hudec X-Operating-System: FreeBSD pleiades.aeternal.net 5.2.1-RELEASE-p9 i386 X-PGP-Key: http://www.aeternal.net/corwin_aeternal.asc User-Agent: Mutt/1.5.6i X-Virus-Scanned: by amavisd-new at web.markiza.sk cc: freebsd-isp@freebsd.org Subject: Re: Open a user for FTP Access X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list Reply-To: Martin Hudec List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 05 Aug 2004 12:56:13 -0000 --3XZQkxCYp0f/VEFS Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Thu, Aug 05, 2004 at 02:35:38PM +0200 or thereabouts, Spidey Knepscheld = wrote: > =20 > This is another stupid question from me but I would like to know how do > I give a guy access to his web directory for updates of his www. I know > how to open users but not how to give that user access to ftp to his > directory. > =20 Stupid questions are only those which we are never about to ask. You want to give a user access only to his www directory so that he will not be able to see anything else (other www dirs etc.) just one with his site? Well you can consider using ProFTPD and chroot that user=20 to his directory. ProFTPD can be found at: /usr/ports/ftp/proftpd Maybe you would like to use mysql to store user data in database, then you should go for: /usr/ports/ftp/proftpd-mysql For sure there are many alternatives out there. Cheers, Martin --=20 Martin Hudec | corwin at aeternal.net | corwin at web.markiza.sk http://www.aeternal.net | cell +421 907 303 393 --3XZQkxCYp0f/VEFS Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.4 (FreeBSD) iD8DBQFBEi59ZYEZIv+rgggRAuJiAJ0eRHZKYxdIqPYjujZAaoPqNhheWQCgkUmy KgJ/8djO/nD3P+mR4udxh48= =u/KW -----END PGP SIGNATURE----- --3XZQkxCYp0f/VEFS-- From owner-freebsd-isp@FreeBSD.ORG Thu Aug 5 13:29:04 2004 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id F26C016A4CE; Thu, 5 Aug 2004 13:29:03 +0000 (GMT) Received: from thoth.sbs.de (thoth.sbs.de [192.35.17.2]) by mx1.FreeBSD.org (Postfix) with ESMTP id 30D3743D6A; Thu, 5 Aug 2004 13:29:03 +0000 (GMT) (envelope-from andre.albsmeier@siemens.com) Received: from mail1.siemens.de (mail1.siemens.de [139.23.33.14]) by thoth.sbs.de (8.12.6/8.12.6) with ESMTP id i75DT0so023133; Thu, 5 Aug 2004 15:29:00 +0200 Received: from mars.cert.siemens.com (ust.mchp.siemens.de [139.23.201.17]) by mail1.siemens.de (8.12.6/8.12.6) with ESMTP id i75DSwxA028762; Thu, 5 Aug 2004 15:28:58 +0200 Received: from curry.mchp.siemens.de (curry.mchp.siemens.de [139.25.42.7]) mail/cert.mc.pre,v 1.61 2004/06/20 16:46:46 mailadm Exp $) with ESMTP id i75DSwlU002531; Thu, 5 Aug 2004 15:28:58 +0200 (CEST) Received: (from localhost) by curry.mchp.siemens.de (8.12.11/8.12.11) id i75DSwPc024548; Date: Thu, 5 Aug 2004 15:28:57 +0200 From: Andre Albsmeier To: up@3.am Message-ID: <20040805132857.GA3314@curry.mchp.siemens.de> References: Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: X-Echelon: FBI, Satellite, Spy, SEMTEX, interception X-Advice: Drop that crappy M$-Outlook, I'm tired of your viruses! User-Agent: Mutt/1.5.4i cc: FreeBSD ISP List cc: freebsd-scsi@freebsd.org cc: freebsd-questions@freebsd.org Subject: Re: SCSI errors with Adaptec 2200S RAID X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 05 Aug 2004 13:29:04 -0000 On Tue, 03-Aug-2004 at 23:31:52 -0400, up@3.am wrote: > > Please cc replies directly to me, as I am not subscribed to the lists. > > With some help from here, I was able to get this RAID card to see our > external DLT (QUANTUM 4000) SCSI tape drive by installing the aacp (pass > through) driver in addition to the aac driver. camcontrol now works, as > do basic mt commands and amcheck (amanda check). > > However, (amanda) dumps either hang, fail completely or fail after > transfering very little data. On the console, I see: > > (sa0:aacp1:0:4:0): READ(06). CDB8 0 0 0 20 0 0 > (sa0:aacp1:0:4:0): NO SENSE ILI (length mismatch): -24576 csi:0,0,0,1 > > At this point the device is completely unresponsive, and the only way to > get the system to see it again is to reboot the whole server. I tried > ordering a 3 ft cable, thinking I was pushing my luck with the 6 ft (I've > had this problem with SCSI cables in the past), but the problem persists. > > The same drive (which has an active terminator) has been working fine for > years on a different box using an Intel L440GX+ MB's on-board SCSI port. > > Once again, any helpful replies are greatly appreciated! Are you sure you are running a recent fw on your DLT4k? My DLTs used to behave badly with early fw revisions. Check out http://www.quantum.com/am/service_support/downloads/software/dlt4000.htm You can upgrade it by tape or use my software for updating the fw of SCSI devices on FreeBSD. -Andre > > James Smallacombe PlantageNet, Inc. CEO and Janitor > up@3.am http://3.am > ========================================================================= > > _______________________________________________ > freebsd-isp@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-isp > To unsubscribe, send any mail to "freebsd-isp-unsubscribe@freebsd.org" -- "Regression testing? What's that? If it compiles, it is good, if it boots up, it is perfect." - Linus Torvalds From owner-freebsd-isp@FreeBSD.ORG Thu Aug 5 14:42:12 2004 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 06BC816A4CE for ; Thu, 5 Aug 2004 14:42:12 +0000 (GMT) Received: from wjv.com (fl-65-40-24-38.sta.sprint-hsd.net [65.40.24.38]) by mx1.FreeBSD.org (Postfix) with ESMTP id 7D15643D46 for ; Thu, 5 Aug 2004 14:42:11 +0000 (GMT) (envelope-from bv@bilver.wjv.com) Received: from bilver.wjv.com (localhost.wjv.com [127.0.0.1]) by wjv.com (8.12.11/8.12.11) with ESMTP id i75Eg1wB022439 for ; Thu, 5 Aug 2004 10:42:01 -0400 (EDT) (envelope-from bv@bilver.wjv.com) Received: (from bv@localhost) by bilver.wjv.com (8.12.11/8.12.11/Submit) id i75Eg0aq022438 for freebsd-isp@freebsd.org; Thu, 5 Aug 2004 10:42:00 -0400 (EDT) (envelope-from bv) Date: Thu, 5 Aug 2004 10:42:00 -0400 From: Bill Vermillion To: freebsd-isp@freebsd.org Message-ID: <20040805144200.GF21884@wjv.com> References: <001b01c47ae8$b8f127f0$0b01000a@SPIDEY> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <001b01c47ae8$b8f127f0$0b01000a@SPIDEY> Organization: W.J.Vermillion / Orlando - Winter Park ReplyTo: bv@wjv.com User-Agent: Mutt/1.5.6i Subject: Re: Open a user for FTP Access X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list Reply-To: bv@wjv.com List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 05 Aug 2004 14:42:12 -0000 Throwing caution to the wind and speaking without thinking about what was being said on Thu, Aug 05, 2004 at 14:35 , Spidey Knepscheld blurted this: > Hi Guys > This is another stupid question from me but I would like to know > how do I give a guy access to his web directory for updates of > his www. I know how to open users but not how to give that user > access to ftp to his directory. I do this for all the the web accounts. I make their home directory the top directory of their domain. /usr/local/www/data/ and then I put their login name in /etc/ftpchroot. This way when they ftp they are their own tree and can go nowhere else. With 1 or 2 exceptions there are no shell accounts on the server, and the only thing the domain users can do is to ftp in/out of their domain. Bill -- Bill Vermillion - bv @ wjv . com From owner-freebsd-isp@FreeBSD.ORG Thu Aug 5 14:43:29 2004 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 8A69116A4CE for ; Thu, 5 Aug 2004 14:43:29 +0000 (GMT) Received: from extra.rwsystems.net (209-102-209-187.ipv4.intur.net [209.102.209.187]) by mx1.FreeBSD.org (Postfix) with ESMTP id 90A2043D31 for ; Thu, 5 Aug 2004 14:43:26 +0000 (GMT) (envelope-from jwyatt@RWSystems.net) Received: from extra.rwsystems.net (localhost.rwsystems.net [127.0.0.1]) by extra.rwsystems.net (8.12.10/8.12.10) with ESMTP id i75EiaOq014707; Thu, 5 Aug 2004 09:44:37 -0500 (CDT) (envelope-from jwyatt@RWSystems.net) Received: from localhost (jwyatt@localhost)i75EiZ3u014704; Thu, 5 Aug 2004 09:44:35 -0500 (CDT) (envelope-from jwyatt@RWSystems.net) X-Authentication-Warning: extra.rwsystems.net: jwyatt owned process doing -bs Date: Thu, 5 Aug 2004 09:44:35 -0500 (CDT) From: James Wyatt To: Spidey Knepscheld In-Reply-To: <20040805090613.R2281@extra.rwsystems.net> Message-ID: <20040805094258.O2281@extra.rwsystems.net> References: <001b01c47ae8$b8f127f0$0b01000a@SPIDEY> <20040805090613.R2281@extra.rwsystems.net> MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII; format=flowed cc: freebsd-isp@freebsd.org Subject: Re: Open a user for FTP Access X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 05 Aug 2004 14:43:29 -0000 On Thu, 5 Aug 2004, Spidey Knepscheld wrote: > Hi Guys > > This is another stupid question from me but I would like to know how do > I give a guy access to his web directory for updates of his www. I know > how to open users but not how to give that user access to ftp to his > directory. [ ... ] Not a stupid question, but I'll bet we get a stupid answer somewhere... semi-private joke - will answer or discuss by direct email if needed.) >From your description, you don't need many users. If you do, then you should look at either using the PAM support in FreeBSD to offload FTP users to an SQL or LDAP table or at FTP servers that support SQL or LDAP directly. The FreeBSD FTP server does this well. So do some others. It sounds like you don't completely trust your web user either. (^_^) An FTP server that supports "chrooting" lets your user see *just* their directory and "lower". They can't see anything "above" it to look for security holes or put files in places you don't want. The FreeBSD FTP server supports chrooting easily - you can either put the user in the /etc/ftpchroot file or put them in a group in that file. I would also configure the web server not to run scripts in the user directories. Otherwise they can upload a script that gets around the security added with chroot. Apache does this well too. fwiw: Your description also implies you have a low usage, so having ftpd start using inetd.conf is fine. If you have lots of FTP connects, you should run ftpd as a separate daemon. You might look at "man ftpd" to see what options are available. You might add the h, ll, t, flags to the inetd.conf entry. It will print less banner, log more user actions, add a 15 minute idle delay. The FreeBSD folks have put a lot of work into the FTP server and it shows. I use others on other servers, but usually leave the FreeBSD FTP server intact. With PAM, chroot, and other features, it rocks! There is nothing I see in your requirements that drives you to build, install, configure, and support another FTP server and track an entire extra set of security advisories. You are already in very good hands. From owner-freebsd-isp@FreeBSD.ORG Thu Aug 5 16:58:15 2004 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 916A616A4CE; Thu, 5 Aug 2004 16:58:15 +0000 (GMT) Received: from pooker.samsco.org (pooker.samsco.org [168.103.85.57]) by mx1.FreeBSD.org (Postfix) with ESMTP id 2CC9643D1D; Thu, 5 Aug 2004 16:58:15 +0000 (GMT) (envelope-from scottl@freebsd.org) Received: from [192.168.0.12] (g4.samsco.home [192.168.0.12]) (authenticated bits=0) by pooker.samsco.org (8.12.11/8.12.10) with ESMTP id i75GvIiS007175; Thu, 5 Aug 2004 10:57:20 -0600 (MDT) (envelope-from scottl@freebsd.org) Message-ID: <411266D9.7040808@freebsd.org> Date: Thu, 05 Aug 2004 10:56:57 -0600 From: Scott Long User-Agent: Mozilla/5.0 (Macintosh; U; PPC Mac OS X Mach-O; en-US; rv:1.7) Gecko/20040514 X-Accept-Language: en-us, en MIME-Version: 1.0 To: Andre Albsmeier References: <20040805132857.GA3314@curry.mchp.siemens.de> In-Reply-To: <20040805132857.GA3314@curry.mchp.siemens.de> Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit X-Spam-Status: No, hits=0.0 required=3.8 tests=none autolearn=no version=2.63 X-Spam-Checker-Version: SpamAssassin 2.63 (2004-01-11) on pooker.samsco.org cc: FreeBSD ISP List cc: freebsd-scsi@freebsd.org cc: freebsd-questions@freebsd.org cc: up@3.am Subject: Re: SCSI errors with Adaptec 2200S RAID X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 05 Aug 2004 16:58:15 -0000 Andre Albsmeier wrote: > On Tue, 03-Aug-2004 at 23:31:52 -0400, up@3.am wrote: > >>Please cc replies directly to me, as I am not subscribed to the lists. >> >>With some help from here, I was able to get this RAID card to see our >>external DLT (QUANTUM 4000) SCSI tape drive by installing the aacp (pass >>through) driver in addition to the aac driver. camcontrol now works, as >>do basic mt commands and amcheck (amanda check). >> >>However, (amanda) dumps either hang, fail completely or fail after >>transfering very little data. On the console, I see: >> >>(sa0:aacp1:0:4:0): READ(06). CDB8 0 0 0 20 0 0 >>(sa0:aacp1:0:4:0): NO SENSE ILI (length mismatch): -24576 csi:0,0,0,1 >> >>At this point the device is completely unresponsive, and the only way to >>get the system to see it again is to reboot the whole server. I tried >>ordering a 3 ft cable, thinking I was pushing my luck with the 6 ft (I've >>had this problem with SCSI cables in the past), but the problem persists. >> >>The same drive (which has an active terminator) has been working fine for >>years on a different box using an Intel L440GX+ MB's on-board SCSI port. >> >>Once again, any helpful replies are greatly appreciated! > > > Are you sure you are running a recent fw on your DLT4k? My DLTs > used to behave badly with early fw revisions. Check out > > http://www.quantum.com/am/service_support/downloads/software/dlt4000.htm > > You can upgrade it by tape or use my software for updating the fw of > SCSI devices on FreeBSD. > > -Andre > This sounds like excellent advice. Note that the error messages that you are seeing are coming from the Adaptec firmware, not FreeBSD or the aac driver. Also, the aacp device and backing firmware support are really just hacks that exist to allow cdroms to be booted and drives to be flashed with new firmware. I've never heard of anyone running a tape drive in this fashion, so it will be quite interesting to see if newer firmware helps. Scott From owner-freebsd-isp@FreeBSD.ORG Fri Aug 6 03:53:58 2004 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id CF19A16A4CE for ; Fri, 6 Aug 2004 03:53:58 +0000 (GMT) Received: from store.map713.com (rrcs-se-24-73-139-163.biz.rr.com [24.73.139.163]) by mx1.FreeBSD.org (Postfix) with ESMTP id 3A56243D1D for ; Fri, 6 Aug 2004 03:53:58 +0000 (GMT) (envelope-from aaron@store.map713.com) Received: from store.map713.com (aaron@localhost.dialetikunisex.com [127.0.0.1]) by store.map713.com (8.12.11/8.12.11) with SMTP id i763u4qJ029208 for ; Thu, 5 Aug 2004 23:56:04 -0400 (EDT) Message-Id: <200408060356.i763u4qJ029208@store.map713.com> Date: Thu, 5 Aug 2004 23:56:04 -0400 To: isp@freebsd.org Content-Transfer-Encoding: quoted-printable From: aaron@store.map713.com MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" X-Content-Filtered-By: Mailman/MimeDel 2.1.1 Subject: .:. dialetik server configurations .:. X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 06 Aug 2004 03:53:58 -0000 [1][store.ma=] References 1. 3D"http://store.map713.com/catalog"