Re: IMAP Servers
On 13 Jan 2005, at 00:07, W. Andrew Loe III wrote: I'm sorry, I meant to refer to its implementation of Maildir. Is this the standard format? I had a lot of trouble getting this format to work well with Apple Mail. I'm pretty sure its Mail's issue as thunderbird works perfectly. Eh... I don't think that this is an issue related to Mail.app. It depends on how it is served by the IMAP daemon. But I never experienced any problems when using together Courier-IMAPd, Maildir as the storage backend and Mail.app as the frontend. Regards, Philipp Kern
Re: Suggestions for remote server monitoring
On 5 Jan 2005, at 14:29, John Barton wrote: If you want to monitor resources on a remote system, try cacti. It has great graphing capability using RRD. One of my favorite features is being able to highlight a section of your graph and have it draw a new graph to zoom in on the area of concern. Has anyone got cacti running with Exim mailserver statistics? Regards, Philipp Kern -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: PHP 4.1.2
On 22. Dec 2004, at 23:58 Uhr, Jacob S wrote: You make it sound like the version in Sarge has these security vulnerabilities fixed. Except, it's still 4.3.9 - instead of 4.3.10 which is supposed to fix this problem. 4.3.10 is already in Sarge. (See http://packages.qa.debian.org/php4) Regards, Philipp Kern -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: PHP 4.1.2
On 22. Dec 2004, at 23:12 Uhr, Jason Lim wrote: Little bugfixes and even local exploits... okay... i can understand there is less urgency. But for REMOTELY exploitable vulnerabilities, i think there is a much greater urgency and importance. For serious PHP deployment you would consider an actual version, not the one you could find in stable. I wish we could get an update if they are even _WORKING_ on a PHP update, or if they have just thrown in the towel and said we're not going to patch this. If thats the case, we'll upgrade, but not otherwise. By the way Debian relies on the work of volunteers. You are free to backport the patches to PHP 4.1.x if you find the time. I see the problems of the developers. Security problems are not properly announced, fixes are messed into other patches. By the way I bet there are a lot more flaws in this plain old version which got fixed on the long way to 4.3. In my opinion it is not worth to backport PHP 4.3 to stable as sarge *should* be released as soon as security team support is available. Regards, Philipp Kern -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: blacklists
On Wed, 2004-12-08 at 15:30 +0100, Michelle Konzack wrote: sbl-xbl.spamhaus.org opm.blitzed.org But now I have removed all exept the first two. spamhaus catchs more then 50% of my spams and abuseat around 10%. The rest is done by Blacklists and spamassassin. Spamhaus XBL incorporates e.g. Blitzed OPM and others. That's why the composite blocking list catches so much. But with the size the possiblity of false positives increases. Regards, Philipp Kern -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: blacklists
On Wed, 2004-12-08 at 23:56 +1100, Russell Coker wrote: Yahoo server IP address space should not be in a dialup class. If that happens then notify the person maintaining the dialup-list that you use that they have an inaccuracy. This is incorrect when you look at the headers. Received: from [217.226.195.183] by web60309.mail.yahoo.com via HTTP; Mon, 29 Nov 2004 19:12:36 CET Content-Type: text/plain; charset=iso-8859-1 SpamAssassin looks at all the headers. If this is a good choice or not is debatable. The MTA would only judge by the IP that connects to him which was in fact a Yahoo IP. This IP [217.226.195.183] is a valid dialup out of Germany which Yahoo adds as a trace from where the webmail request came. Regards, Philipp Kern -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: [HELP] courier-authdaemon frustration
On Tue, 2004-11-23 at 17:27, Bob Billson wrote: The customized query maybe the way to go; although it seems to be a bad hack to solve the underlaying problem, no? I am missing something? I used courier-webadmin to set the MySQL authdaemon as the way to go... Then I have this set of queries: MYSQL_SELECT_CLAUSE SELECT CONCAT(localpart, '@', domain), \ ENCRYPT(password), \ password, \ uid, \ gid, \ '/var/mail/vdomains/$(domain)/$(local_part)', \ '', \ quota, \ fullname, \ options \ FROM users \ WHERE localpart = '$(local_part)' \ AND domain = '$(domain)' MYSQL_ENUMERATE_CLAUSE SELECT CONCAT(localpart, '@', domain), \ uid, \ gid, \ '/var/mail/vdomains/$(domain)/$(local_part)', \ '' \ FROM users \ WHERE localpart = '$(local_part)' \ AND domain = '$(domain)' MYSQL_CHPASS_CLAUSE UPDATE users \ SET password='$(newpass)' \ WHERE localpart='$(local_part)' \ AND domain='$(domain)' Although I don't know of the latter that it really works. You get rid of all the other fields except of MySQL session information. You could replace things like ``uid'' and ``gid'' to the integer value used on your system (I used DEFAULT values in the table instead) like common in SQL. There's also the possibility to use CONCAT('/var/mail/vdomains/', domain, '/', localpart) instead of the hackish way I chose. Regards, Philipp Kern signature.asc Description: This is a digitally signed message part
Re: reverse name resolution
On Tue, 2004-11-23 at 18:02, Djalma Fadel Junior wrote: my named.conf.local: zone 0/25.36.247.200.in-addr.arpa { 25 (if this is a direct delegation -- your value otherwise) $TTL 3D $ORIGIN 36.247.200.in-addr.arpa You need your nameserver in your resolv.conf or a proper rDNS delegation by your provider. Regards, Philipp Kern -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: [HELP] courier-authdaemon frustration
On Mon, 2004-11-22 at 21:44, Mark Lijftogt wrote: The authmysqlrc for courier is a real pain.. it took me about 10 try's to get it right. When I started over for the last time, I took the following in account; It isn't. It *is* commented ok, and the easiest thing to do is to put in a customized MySQL query to suit your needs. Regards, Philipp Kern -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Courier traffic accounting
Dear debian-isp list members, are there any ways of traffic accounting related to Courier POP3d and IMAPd? We need this on a per-domain basis. The accounting for incoming/outgoing mail is easy, as our mailserver of choice -- Exim v4 -- logs the message size. When looking through Courier's logs I didn't notice something similar on the close of the connection. I would appreciate any hints; if it gets written down once by anything, I would write a tool to parse/summarise that stuff. Regards, Philipp Kern signature.asc Description: This is a digitally signed message part
Re: Courier traffic accounting
Hi there Martin! On Sat, 2004-11-20 at 17:21, martin f krafft wrote: These are bytes. Be aware that this sort of accounting does not include the respective protocol, or additional TCP, or IP traffic. Oh yes. I ignored them because in the small test session there was only protocol traffic. I usually calculate 112% up to 100Mb and then 108% when more than 100Mb has been transferred. With traffic 1Gb, it becomes negligible. Exactly. Thank you for this information and also for the other replies. Regards, Philipp Kern signature.asc Description: This is a digitally signed message part
Re: [ot] Re: Courier traffic accounting
On Sat, 2004-11-20 at 18:03, Henrique de Moraes Holschuh wrote: Which I suppose is a good reason why we should work towards ASMTP, a 8-bit clean, mandatory endpoint authenticated SMTP (as in no backscatter, something using mandatory header signing). There is the possibility of using the current ASMTP (which is available in ESMTP) with SSL client certifcates, thus you would get signed mails. ;o) Regards, Philipp Kern signature.asc Description: This is a digitally signed message part
Re: [mailinglists] Re: Outlook and Qmail
Hi, i remember that one of our custormers had the same problem. he couldnt connect his outlook to our qmail server, when the message was large. it happens with any MTA and any POP daemon. that's because the problem is not in the message, the MTA or the POP daemon. it's in outlook. no, it wasnt really in outlook, but in the underlying windows mail system. after several debugging sessions they called a windows specialist and he fixed some mysterious broken component in windows. after that, the problem never occoured again... if you like i can ask for the problem around. perhaps someone remembers the exact soloution... regards, philipp -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: [mailinglists] Re: Trusting Backports and unofficial Repositories
Hi Craig, 1) Are you using unofficial repositories on production servers ? no, i run unstable on several dozen production servers without a problem. i find that doing that is an excellent way of both keeping software up-to-date and also keeping several months ahead of the script-kiddies. i upgrade, on average, once or twice a month by first upgrading my workstation (which generally has the same packages as the servers for testing and development) [...] first, thank you for you long and comprehensive answer, but we wont use unstable. we wont do for at least these two points 1) unstable packages are upgraded _very_ often. my workstation is testing, and i upgrade every week. there are always plenty of packages to upgrade. of course a server will not have that much packages installed, but its still way to much. 2) unstable is, as the debian developers put it, unstable. the major point is, that you cannnot chose to have a stable packages of, lets say, gd, but an unstable php. if you install the unstable php with gd support it will ask for the depended gd-version. so many packages will be unstable. i really don't see the point of stable+backports - installing backports defeats the original purpose of running stable, it's like saying i'll have a black coffee..but with a little bit of cream*, so you may as well run unstable. i dont think so. the purpose of debian stable is running a stable system and you still do to a certain point if you run a few backported packages. of course its not a black coffee anymore. if you have a firewall that guards every single port and denies every connection that comes in you might be pretty safe. if you now open port 80 to make the world connect to your webserver you are not that safe as you were before, so now theres some cream in the coffee. but there is also an advantage: people can connect to your webserver. its the same with backports in my opinion: using a stable system has the advantage to be stable. but for a few packages you are in the need for features. whats better now: putting some cream in the coffee or go for pure milk ? Regards, Philipp -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Trusting Backports and unofficial Repositories
Dear All, we are currently running several machines with, of course, debian. as we need stability we are running woody, but we also dislike having old software on our servers: the stable version of php for example is 4.1.2 and php.net has version 4.3.8 for download (marked as stable as well). due to that gap we are using as many debian packages as possible, but compile software like php and others from source, to be up-to-date. but this procedure is very time consuming. looking for a solution i came across apt-get.org and the unofficial repositories and backports they offer. now heres my question: would you trust these archives for you production servers ? i dont think about security and malicious packages opening backports in the first instance. you always have this problem more or less, but about updates when a problem is found in a package. so heres a catalogue: 1) Are you using unofficial repositories on production servers ? 2) Is there a list of trusted unofficial repositories ? 3) What about updates if a problem is found in a package ? In connection with question 2): Can you recommend repositories, which proved quick response to problems ? 4) What about security.debian.org ? If a vuln is found and security.debian.org gives out a fixes version, and i gave security.debian.org and the unofficial repository in my sources.list, what will happen ? I dont think this kind of question has not been discussed before, but i couldnt find anything related searching debian-isp archives. plz point me somewhere, if this has been discussed allready. thank you very much, philipp -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: [mailinglists] dancer's shell
Hi Thomas, i had the same problems with tentakel. i dont know why you get the errors on some machines, but not on others. i fixed it by explicitly setting the variable PATH in roots .bashrc. regars, philipp - Original Message - From: Thomas Kirk [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Thursday, June 17, 2004 12:05 PM Subject: [mailinglists] dancer's shell Hey There listmembers As a burdend debianadministrator ive begun to use dsh to update and install packages on our debianboxes but im experincing some very strange problems. On some machines i will get the following error when trying to install debian packages : xxx: Need to get 0B/879kB of archives. After unpacking 1769kB will be used. xxx: dpkg: `ldconfig' not found on PATH. xxx: dpkg: `start-stop-daemon' not found on PATH. xxx: dpkg: `install-info' not found on PATH. xxx: dpkg: `update-rc.d' not found on PATH. xxx: dpkg: 4 expected program(s) not found on PATH. xxx: NB: root's PATH should usually contain /usr/local/sbin, /usr/sbin and /sbin. xxx: E: Sub-process /usr/bin/dpkg returned an error code (2) Apparently its something about the remote executing of programs and the $PATH variable. I cant really nail this problem since to my knowledge the machines is identically. Can anyone see whats happening? Thanks in advance -- Venlig Hilsen/Kind Regards Thomas Kirk IT-chef ARKENA A/S Mejlgade 27-29, DK-8000 Aarhus C Havnegade 39, DK-1058 København K Telephone Direct: +45 8620 4264 Telephone Office: +45 7023 3456 Telephone Mobile: +45 2612 3237 Office FAX: +45 8620 4270 WWW: http://www.arkena.com -- Oh no, the dead have risen and their voting Republican. -- Lisa Simpson -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED] -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: [mailinglists] dancer's shell
Hi Thomas, i had the same problems with tentakel. i dont know why you get the errors on some machines, but not on others. i fixed it by explicitly setting the variable PATH in roots .bashrc. regars, philipp - Original Message - From: Thomas Kirk [EMAIL PROTECTED] To: debian-isp@lists.debian.org Sent: Thursday, June 17, 2004 12:05 PM Subject: [mailinglists] dancer's shell Hey There listmembers As a burdend debianadministrator ive begun to use dsh to update and install packages on our debianboxes but im experincing some very strange problems. On some machines i will get the following error when trying to install debian packages : xxx: Need to get 0B/879kB of archives. After unpacking 1769kB will be used. xxx: dpkg: `ldconfig' not found on PATH. xxx: dpkg: `start-stop-daemon' not found on PATH. xxx: dpkg: `install-info' not found on PATH. xxx: dpkg: `update-rc.d' not found on PATH. xxx: dpkg: 4 expected program(s) not found on PATH. xxx: NB: root's PATH should usually contain /usr/local/sbin, /usr/sbin and /sbin. xxx: E: Sub-process /usr/bin/dpkg returned an error code (2) Apparently its something about the remote executing of programs and the $PATH variable. I cant really nail this problem since to my knowledge the machines is identically. Can anyone see whats happening? Thanks in advance -- Venlig Hilsen/Kind Regards Thomas Kirk IT-chef ARKENA A/S Mejlgade 27-29, DK-8000 Aarhus C Havnegade 39, DK-1058 København K Telephone Direct: +45 8620 4264 Telephone Office: +45 7023 3456 Telephone Mobile: +45 2612 3237 Office FAX: +45 8620 4270 WWW: http://www.arkena.com -- Oh no, the dead have risen and their voting Republican. -- Lisa Simpson -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: [mailinglists] SSH More Than Port Forwarding
Hi, why not use LVS (Linux Virtual Server) its a kernel-based load balancing system. check their web page: www.linuxvirtualserver.org afaik. be sure to check keepalived, too. its a userspace server managing the LVS system. great software... regars, philipp - Original Message - From: Jody Grafals [EMAIL PROTECTED] To: Debian-ISP [EMAIL PROTECTED] Sent: Saturday, April 17, 2004 3:58 PM Subject: [mailinglists] SSH More Than Port Forwarding I've done some neat things in the past using SSH port forwarding, offering services from my local server on the internet via my public servers. Is there anyway I can forward all the traffic from a single IP on my Public server to my local server? Making a new kind of VPS (Virtual Public server). I have seen some people offer a this service but I can't find any documentation on how to do it. Has anyone done this befor with ssh ? Cheers Jody -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED] -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: [mailinglists] SSH More Than Port Forwarding
Hi, why not use LVS (Linux Virtual Server) its a kernel-based load balancing system. check their web page: www.linuxvirtualserver.org afaik. be sure to check keepalived, too. its a userspace server managing the LVS system. great software... regars, philipp - Original Message - From: Jody Grafals [EMAIL PROTECTED] To: Debian-ISP debian-isp@lists.debian.org Sent: Saturday, April 17, 2004 3:58 PM Subject: [mailinglists] SSH More Than Port Forwarding I've done some neat things in the past using SSH port forwarding, offering services from my local server on the internet via my public servers. Is there anyway I can forward all the traffic from a single IP on my Public server to my local server? Making a new kind of VPS (Virtual Public server). I have seen some people offer a this service but I can't find any documentation on how to do it. Has anyone done this befor with ssh ? Cheers Jody -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: [mailinglists] Re: MySQL - PostgreSQL - DB2 - What?
Hi, we are running several mysql servers and one is extremly busy performing nearly 1k queries per second average. mysql 4.0.18 is very stable, fast and as far as it comes to transactions the table type is important. mysqls myisam table type is not able to do transactions, but from mysql 4.x on innodb is included by default and you can do transactions, row-locking and pretty much other stuff. what is really missing in my view is the ability to do sub-queries (planned for 4.1), stored procedures (planned for 5.0) and a real solution (with native mysql) for clustering mysql dbs (no idea about plans). at the moment you can only do replication with a master (where writes go to) and serveral slaves (where you can read from), but i need a system with the ability to do synchronous replication between two or more masters to have a HA mysql cluster. but this is not offered by postgreSQL either. if you dont need replication then using mysql is a good choice. Best Regards, Philipp PS: concerning mission critical: the next election of the european parliament will be supported by mysql and a java-application. have a look at this article: http://www.heise.de/newsticker/result.xhtml?url=/newsticker/meldung/45001 (german only, sorry) I too have had similar concerns. I always thought of postgresql as the stable database and mysql as the, well, development database or non-mission-critical database. Esp. since mysql didn't handle transactoins (which is why it was faster). Check out some of the articles on phpbuilder.com re: speed tests and things like that of postgres vs mysql. The author did lots of tests and found that mysql did not outperform postgres on some of his tests. I thought that 4.0.1+ was introducing transactions, or at least 4.1 is. We have MySQL on our production sites for clients and have to say it is pretty solid. We have some clients running 20K plus records. There was some issues with 4.0.12-13 though. As far as I know 4.0.17 is solid as a rock so far. -- Thanks!! David Thurman List Only at Web Presence Group Net -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED] -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: [mailinglists] Re: MySQL - PostgreSQL - DB2 - What?
Hi, we are running several mysql servers and one is extremly busy performing nearly 1k queries per second average. mysql 4.0.18 is very stable, fast and as far as it comes to transactions the table type is important. mysqls myisam table type is not able to do transactions, but from mysql 4.x on innodb is included by default and you can do transactions, row-locking and pretty much other stuff. what is really missing in my view is the ability to do sub-queries (planned for 4.1), stored procedures (planned for 5.0) and a real solution (with native mysql) for clustering mysql dbs (no idea about plans). at the moment you can only do replication with a master (where writes go to) and serveral slaves (where you can read from), but i need a system with the ability to do synchronous replication between two or more masters to have a HA mysql cluster. but this is not offered by postgreSQL either. if you dont need replication then using mysql is a good choice. Best Regards, Philipp PS: concerning mission critical: the next election of the european parliament will be supported by mysql and a java-application. have a look at this article: http://www.heise.de/newsticker/result.xhtml?url=/newsticker/meldung/45001 (german only, sorry) I too have had similar concerns. I always thought of postgresql as the stable database and mysql as the, well, development database or non-mission-critical database. Esp. since mysql didn't handle transactoins (which is why it was faster). Check out some of the articles on phpbuilder.com re: speed tests and things like that of postgres vs mysql. The author did lots of tests and found that mysql did not outperform postgres on some of his tests. I thought that 4.0.1+ was introducing transactions, or at least 4.1 is. We have MySQL on our production sites for clients and have to say it is pretty solid. We have some clients running 20K plus records. There was some issues with 4.0.12-13 though. As far as I know 4.0.17 is solid as a rock so far. -- Thanks!! David Thurman List Only at Web Presence Group Net -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: failing all vrrp interfaces.
On Mon, 2002-09-09 13:56:10 -0400, Steve Mickeler [EMAIL PROTECTED] wrote in message [EMAIL PROTECTED]: The issue I'm trying to tackle is dealing with multiple interfaces in vrrpd. I need to make sure that all vrrpd daemons and aliases on the failed server are brought down. One thing I noticed is that if you kill the the vrrpd PID's, the vrrp virtual IP address is still aliased to the server that has its vrrpd processes killed. if you do an ip address ls you can see the virtual IP address bound to the interface. Any idea of how to drop the alias when the vrrpd daemon is killed ? have a look on the ip utility (iproute2 package) AVE! phils... -- PHILIPP SCHMIDT / phils - - + - - [EMAIL PROTECTED] ` - - http://home.pages.de/~phils/ -- ONLINE fuer Berlin BRB? IN-Berlin! ([EMAIL PROTECTED]) -- Lbh unir whfg ivbyngrq gur Qvtvgny Zvyraavhz Pbclevtug Npg ol oernxvat gur cebgrpgvba bs pbclevtugrq zngrevny. Vs lbh ner abg n pvgvmra be erfvqrag bs gur HFN, lbh evfx orvat vzcevfbarq naq uryq jvgubhg onvy sbe hc gb gjb jrrxf hcba ragel gb gur HFN (c) Copyright 2001 by Hartmann Schaffer (signature only) :wq
Re: [sendmail] How avoid the reverse DNS check?
On Thu, 2002-09-05 11:11:33 +0200, Davi Leal [EMAIL PROTECTED] wrote in message [EMAIL PROTECTED]: sendmail 8.12.2-5 When sending mail to the server, there is a 25 second delay before the sent mail is accepted. It is due to the reverse DNS check. How to disable the reverse DNS check?. Any FEATURE, #define, etc. to the sendmail.mc file?. Any option to the sendmail.cf file?. Any idea? define(`confSERVICE_SWITCH_FILE',`/etc/mail/service.switch')dnl and in the file: hosts files AVE! phils... -- PHILIPP SCHMIDT / phils - - + - - [EMAIL PROTECTED] ` - - http://home.pages.de/~phils/ -- ONLINE fuer Berlin BRB? IN-Berlin! ([EMAIL PROTECTED]) -- Lbh unir whfg ivbyngrq gur Qvtvgny Zvyraavhz Pbclevtug Npg ol oernxvat gur cebgrpgvba bs pbclevtugrq zngrevny. Vs lbh ner abg n pvgvmra be erfvqrag bs gur HFN, lbh evfx orvat vzcevfbarq naq uryq jvgubhg onvy sbe hc gb gjb jrrxf hcba ragel gb gur HFN (c) Copyright 2001 by Hartmann Schaffer (signature only) :wq
Re: ISP shopping list
On Tue, 2002-08-27 16:26:51 +0200, Russell Coker [EMAIL PROTECTED] wrote in message [EMAIL PROTECTED]: On Tue, 27 Aug 2002 13:06, Katim S. Touray wrote: I am working on a project to setup a Linux-based, dialup ISP for a small academic institution in The Gambia (West Africa), and would appreciate a shopping list from anyone who has a similar setup. In particular, I would appreciate detailed specification of what hardware and software packages to buy. Of especial help would be specifications Don't buy any software. I'd like to agree - I few freinds an myself run a small non-profit isp completly on free software - a few things, e.g. automatic maintaince and syncronization of services, wachtdogs, etc are self-developed, and lots of packeages needs to be self-compiled to add certen features or to work properly under high load (e.g. sendmail, cyrus, zebra). The only plug-and-play solutions we bought were come small ciscos and ascend routers. It is all stable enough to run 24/7/365 and only maintain it in our leasure time AVE! phils... -- PHILIPP SCHMIDT / phils - - + - - [EMAIL PROTECTED] ` - - http://home.pages.de/~phils/ -- ONLINE fuer Berlin BRB? IN-Berlin! ([EMAIL PROTECTED]) -- Lbh unir whfg ivbyngrq gur Qvtvgny Zvyraavhz Pbclevtug Npg ol oernxvat gur cebgrpgvba bs pbclevtugrq zngrevny. Vs lbh ner abg n pvgvmra be erfvqrag bs gur HFN, lbh evfx orvat vzcevfbarq naq uryq jvgubhg onvy sbe hc gb gjb jrrxf hcba ragel gb gur HFN (c) Copyright 2001 by Hartmann Schaffer (signature only) :wq
Re: mail queue's, ext3 data=journal and sync-mount
On Tue, 2002-08-20 00:42:31 +0200, Russell Coker [EMAIL PROTECTED] wrote in message [EMAIL PROTECTED]: On Mon, 19 Aug 2002 17:17, you wrote: True. Do you know why ext2 sync-mounted is so abysmally slow? I mean, our RAID was barely breaking a sweat, and bonnie++ was barely using 2-3% CPU, and yet, things just wouldn't go any faster, what's the bottleneck? Write back caching is simply a great way of improving performance. If you have a single hard drive then when writing to a file, even if the data is all contiguous (the file is not fragmented) then when writing data for each write the disk will need to spin to the correct location before data can be written, for a 10K rpm drive that'll be an average of 3ms overhead per chunk. Use a larger chunk size for Bonnie++ and performance should improve. Also for a RAID-5 it's even worse. To write to a sector on a RAID-5 you have to do two reads and two writes minimum (or a read from all disks minus two plus two writes) to get the correct parity. For a three disk RAID-5 that's one read and two writes, for a five disk RAID-5 it's two reads and two writes. If you write the entire stripe at once (could be dozens of blocks depending on the RAID setup) then it's little overhead when compared to a non-RAID setup (RAID-5 should perform well for writing big files non-synchronously). Again make the chunk size larger on Bonnie++ and you should see a good performance improvement. You might even discover that the performance of your RAID setup can be measured in synchronous writes per second rather than any other metric. within this discussion, i got the idea to put an external journal for the ext3fs on an raid1-volume the real data on a raid5, hopefully, when writing the journal out to the disk having more data to be written an once - this would be worth a try but i don't have the hardware to try this and bad expirences with software raid5. AVE! phils... -- PHILIPP SCHMIDT / phils - - + - - [EMAIL PROTECTED] ` - - http://home.pages.de/~phils/ -- ONLINE fuer Berlin BRB? IN-Berlin! ([EMAIL PROTECTED]) -- Lbh unir whfg ivbyngrq gur Qvtvgny Zvyraavhz Pbclevtug Npg ol oernxvat gur cebgrpgvba bs pbclevtugrq zngrevny. Vs lbh ner abg n pvgvmra be erfvqrag bs gur HFN, lbh evfx orvat vzcevfbarq naq uryq jvgubhg onvy sbe hc gb gjb jrrxf hcba ragel gb gur HFN (c) Copyright 2001 by Hartmann Schaffer (signature only) :wq
Re: [mailinglists] slow telnet and ftp connections
Hi, the problem is the DNS Lookup. check your DNS Settings, that should solve the problem. regards, Philipp Am 05.03.2002 11:41:19, schrieb [EMAIL PROTECTED]: My System: potato with the security updates. proftpd telnetd My Problem: telnet and ftp (local network) connections to my server from win clients (CUTE FTP, MSIE, Putty ...) are very slow: The Telnet running is not slow when connection is done, so the anoying thing is just the connection. Linux telnet client connect to the server very fast. But Win telnet client also connects to another server out of the network very fast ?! So I don't know which could be the problem? Josep -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED] -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: [mailinglists] Re: Debian GNU/Linux as email DNS server
I suggest DJB's qmail. You can get the Source Tarball at http://cr.yp.to (official) or http://www.qmail.org (unoff). Qmail is the most powerful MTA i ever saw. Various big freemail provider use qmail, like GMX for example and even Microsofts Hotmail Service uses (or is still using) qmail as outgoing mailserver. Regards, Philipp Zitiere Marc Haber [EMAIL PROTECTED]: On Tue, 4 Dec 2001 12:13:27 +0100, Davi Leal [EMAIL PROTECTED] wrote: We are going to use a debian box as email and DNS server. The goal is duplicate the functionality of a host which is using sendmail 8.8, xinetd (pop3) bind. I thought to use: Debian GNU/Linux 2.2r3 (potato): sendmail 8.9.3, postfix, or ... xinetd (pop3: qpopper 2.53 instead of ipopd 4.7c) bind 8.2.3 I would like to recommend not using sendmail and qpopper unless you have a very good valid reason to use these. Try using exim, which is Debian's default MTA, and courier POP/IMAP. Greetings Marc -- -- !! No courtesy copies, please !! - Marc Haber |Questions are the | Mailadresse im Header Karlsruhe, Germany | Beginning of Wisdom | Fon: *49 721 966 32 15 Nordisch by Nature | Lt. Worf, TNG Rightful Heir | Fax: *49 721 966 31 29 -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED] -- Philipp Steinkrüger [EMAIL PROTECTED] Technik Oberberg Online Tel.: 02261 814240 Fax : 02261 814919 http://www.oberberg.net -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: [mailinglists] Re: Debian GNU/Linux as email DNS server
I suggest DJB's qmail. You can get the Source Tarball at http://cr.yp.to (official) or http://www.qmail.org (unoff). Qmail is the most powerful MTA i ever saw. Various big freemail provider use qmail, like GMX for example and even Microsofts Hotmail Service uses (or is still using) qmail as outgoing mailserver. Regards, Philipp Zitiere Marc Haber [EMAIL PROTECTED]: On Tue, 4 Dec 2001 12:13:27 +0100, Davi Leal [EMAIL PROTECTED] wrote: We are going to use a debian box as email and DNS server. The goal is duplicate the functionality of a host which is using sendmail 8.8, xinetd (pop3) bind. I thought to use: Debian GNU/Linux 2.2r3 (potato): sendmail 8.9.3, postfix, or ... xinetd (pop3: qpopper 2.53 instead of ipopd 4.7c) bind 8.2.3 I would like to recommend not using sendmail and qpopper unless you have a very good valid reason to use these. Try using exim, which is Debian's default MTA, and courier POP/IMAP. Greetings Marc -- -- !! No courtesy copies, please !! - Marc Haber |Questions are the | Mailadresse im Header Karlsruhe, Germany | Beginning of Wisdom | Fon: *49 721 966 32 15 Nordisch by Nature | Lt. Worf, TNG Rightful Heir | Fax: *49 721 966 31 29 -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED] -- Philipp Steinkrüger [EMAIL PROTECTED] Technik Oberberg Online Tel.: 02261 814240 Fax : 02261 814919 http://www.oberberg.net
RE: [Exim] Tarpit SPAM trap
We send copies of this spam to [EMAIL PROTECTED] on a daily basis. The only response I have ever had from AOL is from an autoresponder. hmm... From my experience AOL has always been quite cooperative in such cases, though we always called them directly when there was a major spam problem... -philipp