Re: LDAP and email
On Thu, Oct 24, 2002 at 09:44:16PM -0400, [EMAIL PROTECTED] wrote: Has anyone LDAPized their email system, along with /etc/aliases? If so, can you give me a pointer how you did that? Definitely yes. Now I'm planing do it for the second time. Big hint is http://ispman.org. All I'm using are: openldap, postfix, cyrus-imapd, cyrus-pop3d. You can also look for somethink like readme-ldap in postfix doc directory. I'm thinking of more automation of administrative work, and future expanding this scheme to dns, dhcp, workstation description, and workers description. There are packages for some of these tasks, but I'm looking for my own way. Use the source Luke, use the source. -- Radek Hnilica Radek at Hnilica dot CZ === No matter how far down the wrong road you've gone, turn back. Turkish proverb -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: LDAP and email
On Thu, Oct 24, 2002 at 09:44:16PM -0400, [EMAIL PROTECTED] wrote: Has anyone LDAPized their email system, along with /etc/aliases? If so, can you give me a pointer how you did that? Definitely yes. Now I'm planing do it for the second time. Big hint is http://ispman.org. All I'm using are: openldap, postfix, cyrus-imapd, cyrus-pop3d. You can also look for somethink like readme-ldap in postfix doc directory. I'm thinking of more automation of administrative work, and future expanding this scheme to dns, dhcp, workstation description, and workers description. There are packages for some of these tasks, but I'm looking for my own way. Use the source Luke, use the source. -- Radek Hnilica Radek at Hnilica dot CZ === No matter how far down the wrong road you've gone, turn back. Turkish proverb
Re: [BAD] the whole server down with a red-alert-like attack
On Fri, Jan 25, 2002 at 10:28:56AM +1100, Russell Coker wrote: IMHO something that runs every minute should not be in cron, even something that runs every 5 minutes possibly shouldn't be in cron. :) s/should not/must not/ if I do't want problems Yeah, I made a painful experience myself. A shell script that does the following should do: #!/bin/sh while /bin/true ; do /usr/local/bin/something sleep 60 done The problem with this code is that the cycle is slightly greater then 60 seconds. This desynchronize the script very early. As I remember I quick hack my problem with test if a previous run was done. If not, I simply skip this one. So if the script takes hardly any time to run then it runs every minute. If it takes a lot of resources then it'll run only one copy at a time, and have a 1 minute break between runs (time for other programs to get some CPU time etc). What would be handy would be to have a program that did all this, so I could do: /usr/bin/runevery 60seconds /usr/local/bin/something To get the same result as the above shell script. or as I wrote above, something like: #!/bin/sh if previous instance is stil running; then report time presure exit fi do some usefula data gathering and/or processing Then for even more protection it could have options to monitor and/or limit CPU usage and log to syslog. Does this sound good? If I get a dozen people sending me private email stating that they want to use such a program then I'll write it and add it to my logtools package. hmm. doesn't such program exist yet? Main usage for such a program/tool is (from my point of view) data gathering on routers. Someting like an ipac tool does. But sometimes man needs to made its own data gathering scripts. Yes, there are many tools for such a case, but I always love small simple nice handmade scripts. Sorry for my english. I'm not sure with some words like desynchronize. -- Radek Hnilica Radek at Hnilica dot CZ === No matter how far down the wrong road you've gone, turn back. Turkish proverb -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: [BAD] the whole server down with a red-alert-like attack
On Fri, Jan 25, 2002 at 08:17:31AM -0500, Peter Billson wrote: IMHO something that runs every minute should not be in cron, even something that runs every 5 minutes possibly shouldn't be in cron. Could you tell me why that is so? I often run things from cron that run every 5 mins and have never run into a problem... but then again I often do stupid things repeatedly! :-) Better saying: You can do whatever you want, but think before to not shoot yourself. As I wrote or not: - I ran my script too often - The machine was old 486 - unfortunately conditons has changed due this, the script was runing ten times slowly. And the nighmare was born :) -- Radek Hnilica Radek at Hnilica dot CZ === No matter how far down the wrong road you've gone, turn back. Turkish proverb -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: woody and ip masq options
On Wed, Nov 14, 2001 at 12:59:52AM +0100, Florian Friesdorf wrote: On Tue, Nov 13, 2001 at 05:51:09PM -0600, Gregory Wood wrote: Hello all, I've been working through 'woody', /etc/init.d/networking and /etc/network/options but I'm missing how to set my options so that I activate ip masq. I could type in the command manually or just add it to the script but that just gets around the issue. Someone point me to the right HOW-TO file. Have a look at the ipmasq package. I think it will do exactly what you want. If it helps you, I give you a snippet from my /etc/network/interfaces file # Connected to internal web network iface eth1 inet static address 192.168.1.10 netmask 255.255.255.0 network 192.168.1.0 broadcast 192.168.1.255 # Zakaz forwardovani mimo explicitne uvedene forwardovaci pravidla nize pre-up ipchains -P forward DENY # Maskarada pro webovaci site v Breclavi a Praze pre-up ipchains -A forward -s 192.168.1.0/24 -d 0/0 -j MASQ post-down ipchains -D forward -s 192.168.1.0/24 -d 0/0 -j MASQ ... -- Radek Hnilica Radek at Hnilica dot CZ === No matter how far down the wrong road you've gone, turn back. Turkish proverb -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: woody and ip masq options
On Wed, Nov 14, 2001 at 12:59:52AM +0100, Florian Friesdorf wrote: On Tue, Nov 13, 2001 at 05:51:09PM -0600, Gregory Wood wrote: Hello all, I've been working through 'woody', /etc/init.d/networking and /etc/network/options but I'm missing how to set my options so that I activate ip masq. I could type in the command manually or just add it to the script but that just gets around the issue. Someone point me to the right HOW-TO file. Have a look at the ipmasq package. I think it will do exactly what you want. If it helps you, I give you a snippet from my /etc/network/interfaces file # Connected to internal web network iface eth1 inet static address 192.168.1.10 netmask 255.255.255.0 network 192.168.1.0 broadcast 192.168.1.255 # Zakaz forwardovani mimo explicitne uvedene forwardovaci pravidla nize pre-up ipchains -P forward DENY # Maskarada pro webovaci site v Breclavi a Praze pre-up ipchains -A forward -s 192.168.1.0/24 -d 0/0 -j MASQ post-down ipchains -D forward -s 192.168.1.0/24 -d 0/0 -j MASQ ... -- Radek Hnilica Radek at Hnilica dot CZ === No matter how far down the wrong road you've gone, turn back. Turkish proverb
Re: How to BOOT from IOMEGA IDE ZIP250 drive?
On Thu, Oct 04, 2001 at 03:07:39PM +0200, Russell Coker wrote: On Thu, 4 Oct 2001 09:30, [EMAIL PROTECTED] wrote: I need to boot from zip disk and also mount it as a root. I have one diskete partitioned and with Debian Potato installed on it. In my workstation I am able to boot from it but not in PowerEdge350 router. The zip drive is connected on second IDE controller as a master. (/dev/hdc) zip diskette is formated with partition table and one partition /dev/hdc1. The router doesn't have floppy drive and also the diskette controller is disabled in BIOS. Try using the bios= option in /etc/lilo.conf. If you install a lilo boot block on /dev/hda then bios=0x80 will be the default. If you are to install on a hard drive that the BIOS thinks is the first master IDE disk but which LILO considers to not be the first disk then bios=0x80 will rectify the problem. For your situation I don't know what value to use, try starting as 0x80 and going up sequentially and see what happens. When I try use bios=0x80 or 0x81 and have the /dev/hda disabled/enabled in bios then LILO ends with L 01 01 01 01 unly combination 0x80 with /dev/hda enabled ends with LI and machine begins beeping. As I know, the ZIP is during boot process bios device 0 (floppy). As I wrote in previous mail, ZIP250 is as /dev/hdc and there is also /dev/hda in the computer there. Also note that there is no one setting for bios= that will boot both machines. So if you want to be able to boot both machines from the same ZIP I know that, I doesn't need boot with one zip both computers. I just want to create boot zip for that router. Alternatively you could use Grub, it may work better than LILO for your situation. Can Grub boot from ZIP drive? -- Radek Hnilica Radek at Hnilica dot CZ === No matter how far down the wrong road you've gone, turn back. Turkish proverb -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]