Re: Recommended way to setup an encrypted tunnel (a VPN)
On Wed, Jul 11, 2001 at 11:52:24AM -0500, Jeremy Gaddis [EMAIL PROTECTED] wrote a message of 42 lines which said: I said that IPSec was probably the best way because it's a standard protocol, with companies such as Microsoft and Cisco supporting it Well, to set up a tunnel, standardization is not really important, since you typically control both ends. And GRE is standard, too (but it does not provide encryption). -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: a few newbie problems
Everytime I try to apt-get install xxx I get this error: Kris, If you are still having troubles, it is possible that your list of sites that apt uses to grab packages is not correct and that is why it can't find some of the dependencies. If you are still having trouble, could you post your /etc/apt/sources.list so we can take a look? Pete -- http://www.elbnet.com ELB Internet Services, Inc. Web Design, Computer Consulting, Internet Hosting -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: FW: openSSH
On Mon, 30 Jul 2001 00:49, [EMAIL PROTECTED] wrote: My story: apt-cache show libssl09 gave: Version: 0.9.4-5 I think that there is a back-port of SSL 0.9.5 to potato... But OpenSSH openssh-2.9p2 claims to need openssl 0.9.5a and up. What happens when you try to compile it? -- http://www.coker.com.au/bonnie++/ Bonnie++ hard drive benchmark http://www.coker.com.au/postal/ Postal SMTP/POP benchmark http://www.coker.com.au/projects.html Projects I am working on http://www.coker.com.au/~russell/ My home page -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: Re[2]: LDAP + quotas
On Sat, 28 Jul 2001 23:35, Sami Haahtinen wrote: On Sat, Jul 28, 2001 at 03:43:47AM +0200, Russell Coker wrote: Thanks for the reply. This system could work. But I think the real solution would be to devise a way to have system quotas read directly from LDAP. Oh well. C'est la vie. No way! You want the kernel to issue something that results in an LDAP read on every file access? something like NSS for quota lookups would be nice, and to have a caching daemon (like nscd) to store the data for later lookups. nscd is only ever called by user-land code such as login, su, ls, etc. Quota is handled by the kernel. Having the kernel call back to an application for this isn't what you want. What happens if/when that application needs to create a file? -- http://www.coker.com.au/bonnie++/ Bonnie++ hard drive benchmark http://www.coker.com.au/postal/ Postal SMTP/POP benchmark http://www.coker.com.au/projects.html Projects I am working on http://www.coker.com.au/~russell/ My home page -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: need advise: productive HDD is down
On Mon, 30 Jul 2001 16:16, Dmitry Litovchenko wrote: When connected it to another Debian (of course :) machine, fdisk says all partitions are ok, this 3G, this 1G etc. but mount refuses to mount any of damaged partitions. Are there any hardware errors being reported? fsck (e2fsck) refuses to fix anything telling different things on different partitions, Cannot mount FAT due to some blah blah blah or superblock is damaged try to run e2fsck -b 8193 blah blah blah which is also failed (I mean e2fsck -b 8193). debugfs is one program that may be able to help. Also trying the -b8193 option may help too... Are there any tools to explore and optionally restore damaged ext2fs as we have clients mail and some sites there? Please advise some package names to look at. If you are prepared to pay a few thousand US then contact me off-list for details of a professional data recovery company that will login to your machine over the net to recover the data (this saves the postage delay). -- http://www.coker.com.au/bonnie++/ Bonnie++ hard drive benchmark http://www.coker.com.au/postal/ Postal SMTP/POP benchmark http://www.coker.com.au/projects.html Projects I am working on http://www.coker.com.au/~russell/ My home page -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: need advise: productive HDD is down
On Tue, 31 Jul 2001, Russell Coker wrote: On Mon, 30 Jul 2001 16:16, Dmitry Litovchenko wrote: fsck (e2fsck) refuses to fix anything telling different things on different partitions, Cannot mount FAT due to some blah blah blah or superblock is damaged try to run e2fsck -b 8193 blah blah blah which is also failed (I mean e2fsck -b 8193). debugfs is one program that may be able to help. Also trying the -b8193 option may help too... Some time ago I managed to destroy my /home (ran mkswap on it). e2fsck also failed on it and suggested to do a -b 8193 which also failed. After reading the manpage I found out that since a few years the position of the backup superblocks depend on the blocksize. For filesystems with 1k blocksizes, a backup superblock can be found at block 8193; for filesystems with 2k blocksizes, at block 16384; and for 4k blocksizes, at block 32768. Maybe using -b 32768 will help ?? -- Tot ziens, Bart-Jan -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: q ad ftp- w/o system-accounts
Hmm, I don´t want to cope with LDAP and/or MySQL just for a bunch of ftp-accounts (~ 30). Flat berkeley-db-files are much more appealing for such small numbers (they´re definitely not supposed to grow, not on this box, it´s just that I´m much more security-aware since it was hacked not long ago). I agree. 30 accounts is not much. Now to say that it's not enough for you to deploy a scalable (and very secure) solution that would solve your problem(s), I disagree. I wrote a doc explaining how to install MySQL step by step. If you keep your installation current and up-to-date, you should be ok when it comes to security. I basically suggest you give it a shot. After all, it does solve your problem. Haim. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
editing exim
Hello, Thank you all who answered my previous problem. The webmin that was installed was for TESTING and someone really nice helped me remove it. So nowI can install okay. Next situation: What exactly needs to be edited on exim? What do I need to change? Thanks Kris __ Do You Yahoo!? Make international calls for as low as $.04/minute with Yahoo! Messenger http://phonecard.yahoo.com/ -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: editing exim
What exactly needs to be edited on exim? What do I need to change? Kris, The basic Debian install should have gotten you to - or at least close to - the point of a working MTA but there are quite a few tweaks you can do. I'd suggest taking a look through the docs at www.exim.org and asking more specific questions if you run into a problem. (Less polite people may say RTFM! :-) Pete -- http://www.elbnet.com ELB Internet Services, Inc. Web Design, Computer Consulting, Internet Hosting -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: Re[2]: LDAP + quotas
On Tue, Jul 31, 2001 at 02:52:55PM +0200, Russell Coker wrote: something like NSS for quota lookups would be nice, and to have a caching daemon (like nscd) to store the data for later lookups. nscd is only ever called by user-land code such as login, su, ls, etc. Quota is handled by the kernel. Having the kernel call back to an application for this isn't what you want. What happens if/when that application needs to create a file? what i ment was something alike, a daemon that would monitor the activity in quota related system calls and update the quota file by itself.. i was not completely serious about the solution but it would be a nice idea, i know that quotas can not rely on any daemon as such, but a helper daemon would 'help' in many cases. Sami -- - Sami Haahtinen - -[ Is it still a bug, if we have learned to live with it? ]- - 2209 3C53 D0FB 041C F7B1 F908 A9B6 F730 B83D 761C - -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
LDAP + quotas
To compare to a database concept, if the LDAP daemon had `triggers' and could execute code that made quotactl(2) calls on the relavent filesystems, on the relavent machines, when the quota values in the LDAP database changed that would be effective. To determine current usage the LDAP daemon would also have to use quotactl(2) to query the VFS though, unless current usage simply was not provided as part of your LDAP schema. - jsw -Original Message- From: Sami Haahtinen [mailto:[EMAIL PROTECTED]] Sent: Tuesday, July 31, 2001 3:10 PM To: [EMAIL PROTECTED] Subject: Re: Re[2]: LDAP + quotas On Tue, Jul 31, 2001 at 02:52:55PM +0200, Russell Coker wrote: something like NSS for quota lookups would be nice, and to have a caching daemon (like nscd) to store the data for later lookups. nscd is only ever called by user-land code such as login, su, ls, etc. Quota is handled by the kernel. Having the kernel call back to an application for this isn't what you want. What happens if/when that application needs to create a file? what i ment was something alike, a daemon that would monitor the activity in quota related system calls and update the quota file by itself.. i was not completely serious about the solution but it would be a nice idea, i know that quotas can not rely on any daemon as such, but a helper daemon would 'help' in many cases. Sami -- - Sami Haahtinen - -[ Is it still a bug, if we have learned to live with it? ]- - 2209 3C53 D0FB 041C F7B1 F908 A9B6 F730 B83D 761C - -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED] -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: editing exim
Kris Blackwood [EMAIL PROTECTED] wrote: What exactly needs to be edited on exim? Along with the advice of the others, check the exim FAQ and mail list archives which are also on www.exim.org. If you get stuck on some point in exim, check their archives. If you're still stuck, ask on their list. bob -- bob billsonemail: [EMAIL PROTECTED]ham: kc2wz Linux geek /) Níl aon tinteán mar do thinteán féin.beekeeper -8|||} --Dorothy\) -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Reasons why sending with Exim can be slow?
What are they? Above apply only while sending from local network. It's not a hosts, problem and I don't run it from inetd. No other service has similar problems. I even reinstalled exim again. It's not fault on OS's on local computer(unless it affects only port 25) as I have 98/2000 on same computer, and both of them have same problem with mail. All networking otherwise works perfectly from LAN to email server. Exim.conf is same as before, I even recopied from backups my old one to be sure. I'm bit puzzled. Antti My PGP public key: http://linux.tola.org/~chicken/antti_pgp.txt -- Sex, rags and rock'n roll! -- -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: Reasons why sending with Exim can be slow?
On Wed, Aug 01, 2001 at 12:40:21AM +0300, Antti Tolamo wrote: What are they? Above apply only while sending from local network. It's not a hosts, problem and I don't run it from inetd. No other service has similar problems. I even reinstalled exim again. It's not fault on OS's on local computer(unless it affects only port 25) as I have 98/2000 on same computer, and both of them have same problem with mail. All networking otherwise works perfectly from LAN to email server. Exim.conf is same as before, I even recopied from backups my old one to be sure. In 90% of such situations the problem was DNS (or lack of it). 1) Enable maximum logging in debugging where possible (exim, bind, ...). 2) Play with `host' and `dig' utilities to check whether DNS and reverse-DNS records for all hosts are present. 3) Try to telnet manually to port 25 and send some mail. Notice when the delay occurs. 4) Read logs. 5) Goto 1) :) Wanted -- +-+ | Sekcja Obslugi Informatycznej Biblioteki Glownej !!! !!! .!! + | Uniwersytet Gdanski !!! !!! !!! | + tel. (058) 5509436 !!! !!! !!! `!! | `!!' `!!' | +-+ -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Poorly Sized Partitions
A while back, we had a mail server crash and when hurrying to rebuild the server, the tech who did the work did not size the /home and /var partitions adequately. We essentially need to swap the space which those partitions occupy. Is there any proper way of doing this with the ext2 file systems being used on this server? -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: scripting lynx
On Wed, Aug 01, 2001 at 12:17:20AM +0200, Russell Coker wrote: I want to script lynx to post data to a web site and save the results. I am using the --post_data option but have been unable to find documentation on the format of data expected on standard input. I have been trying the following: Hour=0_6 Day=2001-08-01 Getlist=List --- Where I want to simulate a click on the button named Getlist and put the quoted values in the Hour and Day variables. try without the quotes: cat __EOF__ | lynx -dump -post_data ... Hour=0_6 Day=2001-08-01 Getlist=List __EOF__ alternatively, use POST from libwww-perl (LWP). cat __EOF__ | POST -s -d $URL Hour=0_6 Day=2001-08-01 Getlist=List __EOF__ or use the LWP modules to make yourself a web-bot. craig -- craig sanders [EMAIL PROTECTED] Fabricati Diem, PVNC. -- motto of the Ankh-Morpork City Watch -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: Poorly Sized Partitions
Assuming you have a tape drive, and you can take the machine offline, use dump/restore. In case you have no tape drive on the net, but a spare partition, you can dump to that. The problem I see is taking the the partitions offline while you copy them. Gene Grimm wrote: A while back, we had a mail server crash and when hurrying to rebuild the server, the tech who did the work did not size the /home and /var partitions adequately. We essentially need to swap the space which those partitions occupy. Is there any proper way of doing this with the ext2 file systems being used on this server? -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED] -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: exim and relaying
Is there a way to permit relaying some hosts only if the From: line is local? I mean, relay *.edu.uy only if From: *@fcien.edu.uy. Do you mean to accept the mail regardless of where it *actually* comes from as long as the From line *says* that it comes from edu.uy? That would be bad. Pete -- http://www.elbnet.com ELB Internet Services, Inc. Web Design, Computer Consulting, Internet Hosting -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: Reasons why sending with Exim can be slow?
On Wed, Aug 01, 2001 at 12:40:21AM +0300, Antti Tolamo wrote: All networking otherwise works perfectly from LAN to email server. Exim.conf is same as before, I even recopied from backups my old one to be sure. Almost sounds like exim is trying to verify hostnames and IPs. Is this what you want to happen. If so, came the machine properly reach a name server? bob -- bob billsonemail: [EMAIL PROTECTED] ham: kc2wz [EMAIL PROTECTED] Linux geek /) Níl aon tinteán mar do thinteán féin. beekeeper -8|||} --Dorothy \) -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: Reasons why sending with Exim can be slow?
At 04:58 1.8.2001, you wrote: On Wed, Aug 01, 2001 at 12:40:21AM +0300, Antti Tolamo wrote: All networking otherwise works perfectly from LAN to email server. Exim.conf is same as before, I even recopied from backups my old one to be sure. Almost sounds like exim is trying to verify hostnames and IPs. Is this what you want to happen. If so, came the machine properly reach a name server? bob Yes it can. And like I said, all other networking(like web browsing) works perfectly and mail sending works flawessly from server. Curiously, I went to sleep and during night the whole problem disappereaded! I rebooted windows computer before I started to ask about problem, tried two diffren OS's, looked all settings linux server and just got perpexled. Has this something to do with conjuction of stars ??? But this is not first time similar has happened. By year of experience of stable potato, it seems that about once a year networking connections mysteriously start to crawl and then revert back to normal after a while. This time problem wasn't big. Last time all traffic started to crawl big time. I have suspicion it has something to do with potato networking. First thought would be to find problems in Windows. But somehow I've had some minor problems with from potato elsewhere too. I atleast remember having some curious problems with potato network interface that conneects to internet(I use masq). Potato really stable to use, but I've got impression that sometimes it has some curious, minor problems with networking that go away after a while(or then I just have lot of problematic hardware). Or is it normal with servers? Antti My PGP public key: http://linux.tola.org/~chicken/antti_pgp.txt -- Sex, rags and rock'n roll! -- -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: exim and relaying
At 04:58 1.8.2001, you wrote: On Tue, Jul 31, 2001 at 09:15:01PM -0400, Peter Billson wrote: Is there a way to permit relaying some hosts only if the From: line is local? I mean, relay *.edu.uy only if From: *@fcien.edu.uy. Do you mean to accept the mail regardless of where it *actually* comes from as long as the From line *says* that it comes from edu.uy? That would be bad. Nope. Relay .edu.uy domain only if the sender claims to be any [EMAIL PROTECTED] It is a mix of Sendmail's relay_local_from .AND. relay_hosts = .edu.uy -- Carlos Barros. Have you looked at http://www.exim.org/exim-html-3.20/doc/html/spec.html a sender_address_relay option? If understood correclty, if you combine that hosts_accept_relay_, doesn't it drive the same thing? Antti Antti My PGP public key: http://linux.tola.org/~chicken/antti_pgp.txt -- Sex, rags and rock'n roll! -- -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]