Re: ip aliasing and second default gw in /etc/network/interfaces
On Wed, Sep 03, 2003 at 01:23:58AM -0700, Peter Nome wrote: > I'm hoping some smart soul can help me with this. After experimenting > a bit, I discovered that I could add a second ip address by issuing > > ifconfig eth0:1 192.168.1.92 up So far so good.. > Once that's in pace, I found I could add a second default gatway by > issuing > > route add default gw 192.168.1.1 Wrong, the problem with linux routing tables is that linux is capable of having only one default gateway, so your idea would never work, you would need to poll the connection and change the gateway if the other route goes down.. > I realize this question sounds silly, since I should just put it in > interfaces in the same way I put the primary address and gateway, like > this: > > iface eth0:1 inet static >address 192.168.1.71 >gateway 192.168.1.1 netmask 255.255.255.0 Again, this would not work, but you are also missing the netmask. > But it doesn't do the trick -- this is disregarded. If I enter it as > above from bash, it always works. > > I've also tried things like > > ip route add 192.168.1.0/24 dev eth0 via 192.168.1.1 what you are doing here is that you are telling linux that the network 192.168.1.0/24 resides behind 192.168.1.1 which is not what you want to do. what you are looking for is: ip route add 0.0.0.0/0 dev eth0 via 192.168.1.1 The above should work if your netmask is correctly set. Try if that helps, Sami -- -< Sami Haahtinen >- -[ Notify immediately if you do not receive this message ]- -< 2209 3C53 D0FB 041C F7B1 F908 A9B6 F730 B83D 761C >- -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Apache log analyzer
On Mon, Aug 04, 2003 at 10:17:40AM -0700, Wade Richards wrote: > On Mon, 04 Aug 2003 13:00:33 +0300, Sami Haahtinen writes: > >awstats > > It does the best job of these three, it collects just about every bit > > of data that i can think of (and more) but the way it's packaged makes > > it unusable on a default debian installation (you need to either > > compromise on security or tweak apache configuration files) > > Can you please elaborate on the problems with awstats and security? I > didn't see any open bug reports for awstats in the BTS. The way awstats needs to be set up on a debian box causes this.. (there are no known exploits, but i'm paranoid..;) as README.Debian says, you have 2 ways of setting up awstats, _manually_ setting the script owner to adm or fixing up the apache provided logrotate script to create files that are readable by the script. This is not something i consider reasonable.. I like awstats, but i try to avoid manual tweaks on files that get overwritten (/usr/*) or might get other changes (apache logrotate script) Regards, Sami -- -< Sami Haahtinen >- -[ Notify immediately if you do not receive this message ]- -< 2209 3C53 D0FB 041C F7B1 F908 A9B6 F730 B83D 761C >- -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Apache log analyzer
On Mon, Aug 04, 2003 at 04:04:19PM +0200, Marcin Sochacki wrote: > On Mon, Aug 04, 2003 at 08:33:53AM -0500, Steve Suehring wrote: > > On Mon, Aug 04, 2003 at 01:00:33PM +0300, Sami Haahtinen wrote: > > > analog > > > The only one that doesn't have packaging or application bugs, but then > > > again, it lacks behind on features. > > > > Can you elaborate on the features that analog is missing? > > I'm not the original poster, but AFAIK Analog lacks an important feature > i.e. incremental processing. This is one of the features missing (the most important one) > Replying to Sami: I think you've underestimated Webalizer's abilities. > Sure, it's a bit old and the development seems to have stopped, > but nevertheless it's a good program. I have no problems with Ignore > statements. I really don't understand your point about indexes -- > can you elaborate on that? the index page fog example broke at some point, i've been lazy and i haven't worked though the actual bug on it. (it's not the only reason why i'm not satisfied with webalizer though) > Also, there is a very nice project based on Webalizer, which you didn't > mention in your original post, namely Modlogan. I have fine-tuned my > Webalizer setup for quite a long time now, so I'm unwilling to switch > to another program, but if I had to choose, I would go for Modlogan. Ooh, very nice.. This looks a bit more like it. Now, lets see of this behaves better with my virtualhosts. Thanks, Sami -- -< Sami Haahtinen >- -[ Notify immediately if you do not receive this message ]- -< 2209 3C53 D0FB 041C F7B1 F908 A9B6 F730 B83D 761C >- -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Apache log analyzer
It seems that there are many analyzers out there and most of them do a
good job, but there doesn't appear to be any that do a good job without
bugging too much (either due to packaging or the application itself)
Does anyone know if there exists a good analyzer that can be simply
installed and applied. So far i've checked the following:
analog
The only one that doesn't have packaging or application bugs, but then
again, it lacks behind on features.
webalizer
It works, but somehow it appears to ignore my ignore clauses and fails
to properly create indexes (this might be due to me, or something
else)
awstats
It does the best job of these three, it collects just about every bit
of data that i can think of (and more) but the way it's packaged makes
it unusable on a default debian installation (you need to either
compromise on security or tweak apache configuration files)
What i'm basicly looking for is awstats on steroids, hassle free and
good looking log analyzer. I know i'm asking a lot, but this is what
most people want (thus, i want it too ;)
Any ideas where to go, or should i just pick up the axe and start
hacking.
Regards, Sami
--
-< Sami Haahtinen >-
-[ Notify immediately if you do not receive this message ]-
-< 2209 3C53 D0FB 041C F7B1 F908 A9B6 F730 B83D 761C >-
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: FPSE2002+pam_ldap+nsswitch=Segmentation fault
On Wed, Apr 02, 2003 at 08:46:42AM +1000, Donovan Baarda wrote: > There is a wiki document on configuring ldap-authentication here; > > http://wiki.debian.net/LdapAuthentication Ahh, finally something i can replace the old howto with! Regards, Sami -- -< Sami Haahtinen >- -[ Notify immediately if you do not receive this message ]- -< 2209 3C53 D0FB 041C F7B1 F908 A9B6 F730 B83D 761C >- pgp8Vyp1VxomV.pgp Description: PGP signature
Re: FPSE2002+pam_ldap+nsswitch=Segmentation fault
On Wed, Apr 02, 2003 at 08:46:42AM +1000, Donovan Baarda wrote: > There is a wiki document on configuring ldap-authentication here; > > http://wiki.debian.net/LdapAuthentication Ahh, finally something i can replace the old howto with! Regards, Sami -- -< Sami Haahtinen >- -[ Notify immediately if you do not receive this message ]- -< 2209 3C53 D0FB 041C F7B1 F908 A9B6 F730 B83D 761C >- pgp0.pgp Description: PGP signature
Re: FPSE2002+pam_ldap+nsswitch=Segmentation fault
On Mon, Mar 31, 2003 at 11:17:58AM +0100, mimo wrote: > thanks, I wouldn't have thought of that. I tested with ldd -v and it's > saying: > [EMAIL PROTECTED]:/usr/local/frontpage/version5.0/bin# ldd -v owsadm.exe > not a dynamic executable > > This is from the fp50.tar.gz I downloaded from rtctc (?). > > Any other ideas? Hmm.. what module does it add to your apache configuration? (i would guess it adds something, atleast i think it did a few years back when i last tried it..) also, doesn't the debian package come with it's own module, why not use it? hmm.. and one more thing.. try running the owsadm.exe through file to see the real file type. -- Sami -- -< Sami Haahtinen >- -[ Notify immediately if you do not receive this message ]- -< 2209 3C53 D0FB 041C F7B1 F908 A9B6 F730 B83D 761C >- pgpPO2pbR8zys.pgp Description: PGP signature
Re: FPSE2002+pam_ldap+nsswitch=Segmentation fault
On Mon, Mar 31, 2003 at 11:17:58AM +0100, mimo wrote: > thanks, I wouldn't have thought of that. I tested with ldd -v and it's > saying: > [EMAIL PROTECTED]:/usr/local/frontpage/version5.0/bin# ldd -v owsadm.exe > not a dynamic executable > > This is from the fp50.tar.gz I downloaded from rtctc (?). > > Any other ideas? Hmm.. what module does it add to your apache configuration? (i would guess it adds something, atleast i think it did a few years back when i last tried it..) also, doesn't the debian package come with it's own module, why not use it? hmm.. and one more thing.. try running the owsadm.exe through file to see the real file type. -- Sami -- -< Sami Haahtinen >- -[ Notify immediately if you do not receive this message ]- -< 2209 3C53 D0FB 041C F7B1 F908 A9B6 F730 B83D 761C >- pgp0.pgp Description: PGP signature
Re: FPSE2002+pam_ldap+nsswitch=Segmentation fault
On Mon, Mar 31, 2003 at 05:48:44PM +0100, mimo wrote: > I am trying to set up FP2002SE on > debian (unstable) > Apache 1.3.27 > mod-frontpage-mirfak-1.6.2 > libldap2_2.0.23,libpam-ldap-140 (self build to allow TLS) > > fptest is a ldap user, fptest is a unix group > > /usr/local/frontpage/version5.0/bin/owsadm.exe -o install -u fpadm -pw > secret -xuser nobody -xgroup fptest -s /etc/apache/virthosts.conf -p 80 > -m > > is what I need I think. But it produces a segementation fault: > > Starting install, port: 80. > > Created: unknown > Version: 5.0.2.2623 > ...Snip... > Segmentation fault > > I have tried to locate the error and done an strace. Here are the few > final lines: > > ...Snip Snap... > --- SIGSEGV (Segmentation fault) @ 0 (0) --- > +++ killed by SIGSEGV +++ to me this looks like you installed the frontpage extensions provided by thrid party anyway, and there is somekind of library conflict with those two (i would guess that the ones provided by the third party are for libc5 or something alike) and that causes the crash For starters, check your apache configuration the location where the module is loaded from, this will verify which version of the module you are running. Also, please note that i don't use these extensions at all, so i am of no use to debug this all.. but that was the impression i got from the mail. Regards, Sami For starters, check your apache configuration the location where the module is loaded from, this will verify which version of the module you are running. Also, please note that i don't use these extensions at all, so i am of no use to debug this all.. but that was the impression i got from the mail. Regards, Sami -- -< Sami Haahtinen >- -[ Notify immediately if you do not receive this message ]- -< 2209 3C53 D0FB 041C F7B1 F908 A9B6 F730 B83D 761C >- pgp034puZXSn3.pgp Description: PGP signature
Re: FPSE2002+pam_ldap+nsswitch=Segmentation fault
On Mon, Mar 31, 2003 at 05:48:44PM +0100, mimo wrote: > I am trying to set up FP2002SE on > debian (unstable) > Apache 1.3.27 > mod-frontpage-mirfak-1.6.2 > libldap2_2.0.23,libpam-ldap-140 (self build to allow TLS) > > fptest is a ldap user, fptest is a unix group > > /usr/local/frontpage/version5.0/bin/owsadm.exe -o install -u fpadm -pw > secret -xuser nobody -xgroup fptest -s /etc/apache/virthosts.conf -p 80 > -m > > is what I need I think. But it produces a segementation fault: > > Starting install, port: 80. > > Created: unknown > Version: 5.0.2.2623 > ...Snip... > Segmentation fault > > I have tried to locate the error and done an strace. Here are the few > final lines: > > ...Snip Snap... > --- SIGSEGV (Segmentation fault) @ 0 (0) --- > +++ killed by SIGSEGV +++ to me this looks like you installed the frontpage extensions provided by thrid party anyway, and there is somekind of library conflict with those two (i would guess that the ones provided by the third party are for libc5 or something alike) and that causes the crash For starters, check your apache configuration the location where the module is loaded from, this will verify which version of the module you are running. Also, please note that i don't use these extensions at all, so i am of no use to debug this all.. but that was the impression i got from the mail. Regards, Sami For starters, check your apache configuration the location where the module is loaded from, this will verify which version of the module you are running. Also, please note that i don't use these extensions at all, so i am of no use to debug this all.. but that was the impression i got from the mail. Regards, Sami -- -< Sami Haahtinen >- -[ Notify immediately if you do not receive this message ]- -< 2209 3C53 D0FB 041C F7B1 F908 A9B6 F730 B83D 761C >- pgp0.pgp Description: PGP signature
Quota and LDAP, again.
I remember discussion about storing quota information in LDAP, i've actually found some good solutions for the LDAP Schema from google archives. I remember few suggestions, one which involved a nscd like daemon to cache quota information fetched from a database. So far there hasn't been any solutions that, atleast not that i've heard, were put to use. I'm have to implement some sort of solution in the near future, and i'm looking for experiences on how (or if) this has been done in other systems. I also came up with a new solution for the problem today, i saw someone planning on writing a pam_quota, and it might be a viable solution for this issue too, extending pam_ldap to modify the quota while logging in (if it has changed ofcourse) or to create a pam_quota_ldap module for standalone usage. Any ideas? Regards, Sami Haahtinen -- -< Sami Haahtinen >- -[ Notify immediately if you do not receive this message ]- -< 2209 3C53 D0FB 041C F7B1 F908 A9B6 F730 B83D 761C >- msg08070/pgp0.pgp Description: PGP signature
Re: Disconnected IMAP, possible?
On Fri, Feb 14, 2003 at 11:30:37AM -0500, Fraser Campbell wrote:
> Are there email clients in Windows that will support disconnected IMAP
> operation?
Mozilla atleast supports this, just mark the folders to be downloaded,
and tell mozilla to go offline.
Regards, Sami Haahtinen
--
-< Sami Haahtinen >-
-[ Notify immediately if you do not receive this message ]-
-< 2209 3C53 D0FB 041C F7B1 F908 A9B6 F730 B83D 761C >-
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Easy trouble ticket system?
On Tue, Feb 11, 2003 at 11:39:36PM +0100, Thomas Lamy wrote: > can anybody recommend a simple (to set up and maintain) TTS for ISP use? > We want to > - auto-assign ticket ids to incoming support requests (by mail or web form) > - assign tickets to individuals or groups > - have a simple ticket report system (where customers can look up the state > of their ticket) > > I looked into phpgroupware (didn't like it for many reasons) and > request-tracker (failed dependencies in stable/testing, and seems too > bloated). Go with request tracker, although, it is not the easiest thing to set up (i guarantee your head will be spinning once you start =), but it is the best one there is. Not too long ago we had a quest for a TTS, and we went through open source and commercial products and even though there was pretty good other products out there, request tracker took the lead. Mostly because the features that were in the commercial products and were missing in RT, were not worth paying several hunreds of dollards.. only viable competition on open source side was OTRS (otrs.org), but it was looked harder to use (from a non techie point of view) and it had a confusing UI (still, i'm not saying RT can't be confusing =) Go with RT my son. =) -- Sami -- -< Sami Haahtinen >- -[ Notify immediately if you do not receive this message ]- -< 2209 3C53 D0FB 041C F7B1 F908 A9B6 F730 B83D 761C >- -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: sasl support
On Mon, Dec 23, 2002 at 09:27:08AM +0200, Serkan Hamarat wrote: > Hi, > I'm preparing to use postfix (snaphot release). > When I want to install tls (also sasl) support, > I got an error messages from package management: Didn't the sasl support get merged into the main postfix package, atleast that's what i use (not the snapshot though, i think.. it's christmas and i'm too lazy to check =) on one of our servers which uses sasl authentication with postfix. Sami -- -< Sami Haahtinen >- -[ Notify immediately if you do not receive this message ]- -< 2209 3C53 D0FB 041C F7B1 F908 A9B6 F730 B83D 761C >- -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Postfix + SASL Authentication failed
On Thu, Nov 07, 2002 at 05:58:53PM +0100, Davi Leal wrote: > If I remove the /etc/sasldb file I get the below line in the > /var/log/auth.log file, though I have pw_check pam in the > /usr/lib/sasl/smtpd.conf file. > Nov 7 18:18:43 excalibur postfix/smtpd[391]: unable to open Berkeley > db /etc/sasldb: No such file or directory > > If I copy or link the /usr/lib/sasl/smtpd.conf file to > /etc/postfix/sasl/smtpd.conf file I get: > Nov 7 18:18:48 excalibur PAM_unix[391]: authentication failure; > (uid=101) -> hello for smtp service This actually broke my postfix installation in the past.. it took me a while to track down that the location of the sasl configuration had changed to /etc/postfix/sasl. > It fails too, but it is used the mechanism specified, that is to say, PAM. > Anyway, any idea what I have to do to get Postfix + SASL + PAM or shadow > working?. I do not want to use sasldb due to I don't know all the client > passwords. have you configured PAM properly? also, if you are using the passwd and shadow files you should have a copy lurking about where postfix can reach them.. (remember postfix runs chrooted) Sami -- -< Sami Haahtinen >- -[ Notify immediately if you do not receive this message ]- -< 2209 3C53 D0FB 041C F7B1 F908 A9B6 F730 B83D 761C >-
Re: Postfix + SASL Authentication failed
On Thu, Nov 07, 2002 at 05:58:53PM +0100, Davi Leal wrote: > If I remove the /etc/sasldb file I get the below line in the > /var/log/auth.log file, though I have pw_check pam in the > /usr/lib/sasl/smtpd.conf file. > Nov 7 18:18:43 excalibur postfix/smtpd[391]: unable to open Berkeley > db /etc/sasldb: No such file or directory > > If I copy or link the /usr/lib/sasl/smtpd.conf file to > /etc/postfix/sasl/smtpd.conf file I get: > Nov 7 18:18:48 excalibur PAM_unix[391]: authentication failure; > (uid=101) -> hello for smtp service This actually broke my postfix installation in the past.. it took me a while to track down that the location of the sasl configuration had changed to /etc/postfix/sasl. > It fails too, but it is used the mechanism specified, that is to say, PAM. > Anyway, any idea what I have to do to get Postfix + SASL + PAM or shadow > working?. I do not want to use sasldb due to I don't know all the client > passwords. have you configured PAM properly? also, if you are using the passwd and shadow files you should have a copy lurking about where postfix can reach them.. (remember postfix runs chrooted) Sami -- -< Sami Haahtinen >- -[ Notify immediately if you do not receive this message ]- -< 2209 3C53 D0FB 041C F7B1 F908 A9B6 F730 B83D 761C >- -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Problem with ssh
On Thu, Jun 27, 2002 at 09:25:52PM +0700, [EMAIL PROTECTED] wrote: > I have a problem with my ssh, when i try to connect to our server using > ssh have an error like this : > > ssh -l [EMAIL PROTECTED] > 2f65 7463 2f73 7368 > Disconnecting: Bad packet length 795178083. > > What's Wrong with my server or my ssh client. And how to solve them. to me, it looks like you are trying to log in as myuser to server xxx.xxx.xxx.xxx, but as far as the command says, you are tying to log in as [EMAIL PROTECTED] to nowhere, atleast the ssh in woody does not even try to connect, maybe it is different with your version of ssh. try either: ssh [EMAIL PROTECTED] or: ssh -l myusername xxx.xxx.xxx.xxx it might be something else, or it might be this.. Sami -- -< Sami Haahtinen >- -[ Notify immediately if you do not receive this message ]- -< 2209 3C53 D0FB 041C F7B1 F908 A9B6 F730 B83D 761C >- -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Problem with ssh
On Thu, Jun 27, 2002 at 09:25:52PM +0700, [EMAIL PROTECTED] wrote: > I have a problem with my ssh, when i try to connect to our server using > ssh have an error like this : > > ssh -l [EMAIL PROTECTED] > 2f65 7463 2f73 7368 > Disconnecting: Bad packet length 795178083. > > What's Wrong with my server or my ssh client. And how to solve them. to me, it looks like you are trying to log in as myuser to server xxx.xxx.xxx.xxx, but as far as the command says, you are tying to log in as [EMAIL PROTECTED] to nowhere, atleast the ssh in woody does not even try to connect, maybe it is different with your version of ssh. try either: ssh [EMAIL PROTECTED] or: ssh -l myusername xxx.xxx.xxx.xxx it might be something else, or it might be this.. Sami -- -< Sami Haahtinen >- -[ Notify immediately if you do not receive this message ]- -< 2209 3C53 D0FB 041C F7B1 F908 A9B6 F730 B83D 761C >- -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Purging old e-mail
On Thu, Jun 27, 2002 at 01:43:49PM +1000, Andrew Tait wrote: > Quick question. Quick answer. > Does anyone know any easy way to delete e-mail (maildir format) that is more > that two years old? (ie, be checking the contents of the e-mail, NOT the > last time the file was modified). use archivemail, it can delete by age or date, or just move them away from your mailbox. http://archivemail.sf.net or just apt-get install archivemail Sami -- -< Sami Haahtinen >- -[ Notify immediately if you do not receive this message ]- -< 2209 3C53 D0FB 041C F7B1 F908 A9B6 F730 B83D 761C >- -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Purging old e-mail
On Thu, Jun 27, 2002 at 01:43:49PM +1000, Andrew Tait wrote: > Quick question. Quick answer. > Does anyone know any easy way to delete e-mail (maildir format) that is more > that two years old? (ie, be checking the contents of the e-mail, NOT the > last time the file was modified). use archivemail, it can delete by age or date, or just move them away from your mailbox. http://archivemail.sf.net or just apt-get install archivemail Sami -- -< Sami Haahtinen >- -[ Notify immediately if you do not receive this message ]- -< 2209 3C53 D0FB 041C F7B1 F908 A9B6 F730 B83D 761C >- -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Postfix Mail Delivery Abberation
On Tue, Jun 25, 2002 at 09:29:10AM -0400, Gene Grimm wrote: > Has anyone ever had problems with Postfix mailbox delivery combining two > messages into one? The specific cases typically involves spam and other > garbage mail where the next message is read as part of the garbage message > (see below). If so, can anyone suggest how to correct the problem so we > won't lose track of important messages. I presume this also affects our > clients mail as well. are you sure it's not your spam filter? if the problem seems to affect only spam messages, it would look like a local configuration error with spam filters.. i also checked through my mails, and didn't notice anything like that (not even in my junkmail mailbox) Sami -- -< Sami Haahtinen >- -[ Notify immediately if you do not receive this message ]- -< 2209 3C53 D0FB 041C F7B1 F908 A9B6 F730 B83D 761C >- -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Postfix Mail Delivery Abberation
On Tue, Jun 25, 2002 at 09:29:10AM -0400, Gene Grimm wrote: > Has anyone ever had problems with Postfix mailbox delivery combining two > messages into one? The specific cases typically involves spam and other > garbage mail where the next message is read as part of the garbage message > (see below). If so, can anyone suggest how to correct the problem so we > won't lose track of important messages. I presume this also affects our > clients mail as well. are you sure it's not your spam filter? if the problem seems to affect only spam messages, it would look like a local configuration error with spam filters.. i also checked through my mails, and didn't notice anything like that (not even in my junkmail mailbox) Sami -- -< Sami Haahtinen >- -[ Notify immediately if you do not receive this message ]- -< 2209 3C53 D0FB 041C F7B1 F908 A9B6 F730 B83D 761C >- -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: kernel quota control with LDAP
On Tue, Jun 04, 2002 at 07:29:49PM -0400, Thedore Knab wrote: > I want to use kernel level quotas with LDAP to simplify adminstration > of my mailserver. > > Can this be done ? No. LDAP would be way too slow for quota queries.. even if someone would come up with a caching daemon, it would still slow down file operations quite a bit. > My account looks like this in LDAP: > > dn: uid=tknab2,ou=mailaccounts,dc=mycoll,dc=edu > ... > mailMessageStore: /var/imap/mycoll/tknab2/Maildir > mailQuota: 2S, 2C > mailbox: tknab2/Maildir/ well, i've been thinking about putting my quotas to LDAP too, i've just been too lazy to write up a small daemon that would grab all the quota entries from the ldap and apply them to the local filesystem.. ofcourse with a few thousand entries it will be a slow process and using modifiedtime (or whatever the name of the attribute was) to determine which entries have been modified since the last update. this way it would be quite simple to keep the quotas in the LDAP database and still utilize the fast local quota store.. Think about it.. Sami -- -< Sami Haahtinen >- -[ Is it still a bug, if we have learned to live with it? ]- -< 2209 3C53 D0FB 041C F7B1 F908 A9B6 F730 B83D 761C >- -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: kernel quota control with LDAP
On Tue, Jun 04, 2002 at 07:29:49PM -0400, Thedore Knab wrote: > I want to use kernel level quotas with LDAP to simplify adminstration > of my mailserver. > > Can this be done ? No. LDAP would be way too slow for quota queries.. even if someone would come up with a caching daemon, it would still slow down file operations quite a bit. > My account looks like this in LDAP: > > dn: uid=tknab2,ou=mailaccounts,dc=mycoll,dc=edu > ... > mailMessageStore: /var/imap/mycoll/tknab2/Maildir > mailQuota: 2S, 2C > mailbox: tknab2/Maildir/ well, i've been thinking about putting my quotas to LDAP too, i've just been too lazy to write up a small daemon that would grab all the quota entries from the ldap and apply them to the local filesystem.. ofcourse with a few thousand entries it will be a slow process and using modifiedtime (or whatever the name of the attribute was) to determine which entries have been modified since the last update. this way it would be quite simple to keep the quotas in the LDAP database and still utilize the fast local quota store.. Think about it.. Sami -- -< Sami Haahtinen >- -[ Is it still a bug, if we have learned to live with it? ]- -< 2209 3C53 D0FB 041C F7B1 F908 A9B6 F730 B83D 761C >- -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: pam_ldap filter option
On Wed, May 15, 2002 at 02:14:44PM +0200, jogi hofmueller wrote: > when trying to implement the filter option with pam_ldap (e.g. for ssh) i > get an illegal option error. i am wondering if the filter patch is still > in the module or if the announcement in the changelog.Debian.gz is already > effetive quote: "(...) i'm planning on dropping the patch (...)". if the > later is the case: please point me to some documentation on how to > implement multiple configuration-files to achieve a more precise granting > of services base on special attibutes. The patch is still there, and it's not going anywhere, just yet. the correct syntax would be (off the top of my head =) auth sufficient pam_ldap.so filter=(foo=bar) i haven't been using the filter patch myself in a while, so it could have been corrupted with the previous updates. Sami -- -< Sami Haahtinen >- -[ Is it still a bug, if we have learned to live with it? ]- -< 2209 3C53 D0FB 041C F7B1 F908 A9B6 F730 B83D 761C >- -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: php4 + gd + jpeg
On Mon, Feb 18, 2002 at 01:15:23PM -0300, AMD wrote:
> How to this? I'm installed with apt-get install php4-gd but not accept JPGE
> files.
Did you try using php4-gd2?
i was forced to move to it to fix a problem that resembled this one.
Sami
--
-< Sami Haahtinen >-
-[ Is it still a bug, if we have learned to live with it? ]-
-< 2209 3C53 D0FB 041C F7B1 F908 A9B6 F730 B83D 761C >-
Re: php4 + gd + jpeg
On Mon, Feb 18, 2002 at 01:15:23PM -0300, AMD wrote:
> How to this? I'm installed with apt-get install php4-gd but not accept JPGE
> files.
Did you try using php4-gd2?
i was forced to move to it to fix a problem that resembled this one.
Sami
--
-< Sami Haahtinen >-
-[ Is it still a bug, if we have learned to live with it? ]-
-< 2209 3C53 D0FB 041C F7B1 F908 A9B6 F730 B83D 761C >-
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Re[2]: LDAP + quotas
On Tue, Jul 31, 2001 at 02:52:55PM +0200, Russell Coker wrote: > > something like NSS for quota lookups would be nice, and to have a > > caching daemon (like nscd) to store the data for later lookups. > > nscd is only ever called by user-land code such as login, su, ls, etc. Quota > is handled by the kernel. Having the kernel call back to an application for > this isn't what you want. What happens if/when that application needs to > create a file? what i ment was something alike, a daemon that would monitor the activity in quota related system calls and update the quota file by itself.. i was not completely serious about the solution but it would be a nice idea, i know that quotas can not rely on any daemon as such, but a helper daemon would 'help' in many cases. Sami -- -< Sami Haahtinen >- -[ Is it still a bug, if we have learned to live with it? ]- -< 2209 3C53 D0FB 041C F7B1 F908 A9B6 F730 B83D 761C >- -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Re[2]: LDAP + quotas
On Sat, Jul 28, 2001 at 03:43:47AM +0200, Russell Coker wrote:
> > Thanks for the reply. This system could work. But I think the real
> > solution would be to devise a way to have system quotas read directly from
> > LDAP. Oh well. C'est la vie.
>
> No way! You want the kernel to issue something that results in an LDAP read
> on every file access?
something like NSS for quota lookups would be nice, and to have a
caching daemon (like nscd) to store the data for later lookups.
although it HAS TO HAVE an option to create a standard quota file on the
fly..
Sami
--
-< Sami Haahtinen >-
-[ Is it still a bug, if we have learned to live with it? ]-
-< 2209 3C53 D0FB 041C F7B1 F908 A9B6 F730 B83D 761C >-
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: users bypassing shaper limitation
On Sat, Jun 30, 2001 at 12:07:28PM +0100, Karl E. Jorgensen wrote: > On Sat, Jun 30, 2001 at 06:23:19AM +0200, Maurice Verhagen wrote: > > This first that pops into mind is use DHCP and give a IP-lease to the > > machines in your local network based on the NIC's Mac address. I > > guess the only way out for the "bad guys" is to swap the NICs from another > > machine to get the same effect as changing the IPs now. > > Nope. DHCP does not prevent people from changing their IP > addresses, it merely makes it marginally more difficult. > Besides, the bad guys may choose not to use DHCP - this is > entirely up to the config on the client machines. but if you make dynamic firewall rules based on the leases file, blocking all outside traffic, it would be efficient enough. Sami -- -< Sami Haahtinen >- -[ Is it still a bug, if we have learned to live with it? ]- -< 2209 3C53 D0FB 041C F7B1 F908 A9B6 F730 B83D 761C >-
Re: users bypassing shaper limitation
On Sat, Jun 30, 2001 at 12:07:28PM +0100, Karl E. Jorgensen wrote: > On Sat, Jun 30, 2001 at 06:23:19AM +0200, Maurice Verhagen wrote: > > This first that pops into mind is use DHCP and give a IP-lease to the > > machines in your local network based on the NIC's Mac address. I > > guess the only way out for the "bad guys" is to swap the NICs from another > > machine to get the same effect as changing the IPs now. > > Nope. DHCP does not prevent people from changing their IP > addresses, it merely makes it marginally more difficult. > Besides, the bad guys may choose not to use DHCP - this is > entirely up to the config on the client machines. but if you make dynamic firewall rules based on the leases file, blocking all outside traffic, it would be efficient enough. Sami -- -< Sami Haahtinen >- -[ Is it still a bug, if we have learned to live with it? ]- -< 2209 3C53 D0FB 041C F7B1 F908 A9B6 F730 B83D 761C >- -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: postfix question
On Mon, May 28, 2001 at 05:29:36PM +0200, Russell Coker wrote:
> I have postfix running on an end-node. I want to send mail from the machine
> by running "mail user" and have it go to [EMAIL PROTECTED] (which is hosted
> on
> another machine). However I want mail directly addressed to
> [EMAIL PROTECTED] to be delivered locally.
>
> This should be simple but seems very difficult (I've just spent an hour
> tweaking postfix config options without success).
hmm.. i don't see the problem here...
use:
myhostname = Foo.Bar.com
myorigin = Bar.com
ofcourse you need to tweak mydestination, not to include $mydomain something
like this:
mydestination = $myhostname, localhost.$mydomain
-- Sami
--
-< Sami Haahtinen >-
-< 2209 3C53 D0FB 041C F7B1 F908 A9B6 F730 B83D 761C >-
Re: putty (Xfree terminal, talk)
On Mon, May 28, 2001 at 04:40:04PM +0200, Mark Janssen wrote: > On Mon, May 28, 2001 at 04:34:03PM +0200, Marcel Hicking wrote: > > "talk user" works fine for us, at least it has been > > working fine 10 minutes ago ;-) > > Make sure talk is configured correctly in /etc/inetd.conf > > If a user has turned his messages off (mesg n) or they are off by > default, and he hasn't turned them on, this will not work... > Write will always work since it ignores the message setting. not true, write uses the same method that talk use to inform about an incoming talk session. write will fail if the user has used mesg to disable writing to current tty. --Snip-- (%:~)- mesg is n (%:~)- ls -laF /dev/pts/4 crw--w1 ressuressu136, 4 May 29 00:08 /dev/pts/4 (%:~)- mesg y (%:~)- ls -laF /dev/pts/4 crw--w--w-1 ressuressu136, 4 May 29 00:08 /dev/pts/4 --Snap-- as you can see.. mesg has nothing to do with messaging, it just removes other users write permissions to your current tty. Sami -- -< Sami Haahtinen >- -< 2209 3C53 D0FB 041C F7B1 F908 A9B6 F730 B83D 761C >-
Re: putty (Xfree terminal, talk)
On Mon, May 28, 2001 at 04:40:04PM +0200, Mark Janssen wrote: > On Mon, May 28, 2001 at 04:34:03PM +0200, Marcel Hicking wrote: > > "talk user" works fine for us, at least it has been > > working fine 10 minutes ago ;-) > > Make sure talk is configured correctly in /etc/inetd.conf > > If a user has turned his messages off (mesg n) or they are off by > default, and he hasn't turned them on, this will not work... > Write will always work since it ignores the message setting. not true, write uses the same method that talk use to inform about an incoming talk session. write will fail if the user has used mesg to disable writing to current tty. --Snip-- (%:~)- mesg is n (%:~)- ls -laF /dev/pts/4 crw--w1 ressuressu136, 4 May 29 00:08 /dev/pts/4 (%:~)- mesg y (%:~)- ls -laF /dev/pts/4 crw--w--w-1 ressuressu136, 4 May 29 00:08 /dev/pts/4 --Snap-- as you can see.. mesg has nothing to do with messaging, it just removes other users write permissions to your current tty. Sami -- -< Sami Haahtinen >- -< 2209 3C53 D0FB 041C F7B1 F908 A9B6 F730 B83D 761C >- -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: An LDAP authentication howto for Debian?
On Sun, Apr 29, 2001 at 04:52:54AM -0700, Simon Tennant wrote:
> I wrote a howto about 6 months back. It was tricky setting up but I think
> I cover most of the potential disaster areas in my howto.
>
> http://www.imaginator.com/~simon/ldap/
>
> S.
i recommend you add description about Objectclass: ShadowAccount there too..
it tells nss_ldap not to pull the passwords with 'getent passwd'
Sami
--
-< Sami Haahtinen >-
-< 2209 3C53 D0FB 041C F7B1 F908 A9B6 F730 B83D 761C >-
Re: An LDAP authentication howto for Debian?
On Sun, Apr 29, 2001 at 04:52:54AM -0700, Simon Tennant wrote:
> I wrote a howto about 6 months back. It was tricky setting up but I think
> I cover most of the potential disaster areas in my howto.
>
> http://www.imaginator.com/~simon/ldap/
>
> S.
i recommend you add description about Objectclass: ShadowAccount there too..
it tells nss_ldap not to pull the passwords with 'getent passwd'
Sami
--
-< Sami Haahtinen >-
-< 2209 3C53 D0FB 041C F7B1 F908 A9B6 F730 B83D 761C >-
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: An LDAP authentication howto for Debian?
On Sun, Apr 29, 2001 at 12:34:02PM +1000, Jeff Waugh wrote: > > > > Out of curiousity, has anyone come across a sort of > > "LDAP authentication howto for Debian?" > > The LDP has a perfectly good set of documents already; there's no need to > duplicate the good work already done by them. i have been thinking about collecting these into a package which would ease the installation if the first machine.. the biggest case imho is understanding LDAP, LDIF and the permissions in the database.. then it's just a matter of adding the correct objectclass and filling in the blanks.. -- -< Sami Haahtinen >- -< 2209 3C53 D0FB 041C F7B1 F908 A9B6 F730 B83D 761C >- pgpYFde5QXIfl.pgp Description: PGP signature
Re: An LDAP authentication howto for Debian?
On Sun, Apr 29, 2001 at 12:34:02PM +1000, Jeff Waugh wrote: > > > > Out of curiousity, has anyone come across a sort of > > "LDAP authentication howto for Debian?" > > The LDP has a perfectly good set of documents already; there's no need to > duplicate the good work already done by them. i have been thinking about collecting these into a package which would ease the installation if the first machine.. the biggest case imho is understanding LDAP, LDIF and the permissions in the database.. then it's just a matter of adding the correct objectclass and filling in the blanks.. -- -< Sami Haahtinen >- -< 2209 3C53 D0FB 041C F7B1 F908 A9B6 F730 B83D 761C >- PGP signature
Re: schema for NSS LDAP with not all accounts active
On Sat, Mar 31, 2001 at 10:53:17PM +0200, Piotr Roszatycki wrote: > > > Nice, but AFAIR the `service' attribute isn't standard. Did you use a > > > special objectClass? > > > > the filter is self defined, and the service filter was just an example, you > > are allowed to filter it with anything you like. > > There are any standard or RFC? At least I can use Microsoft schema ;-) i don't know about standard but there is a schema for one. (i don't remember if it supported services directly but it could be implemented) the schema comes with directory manager (i can't remember the URL for it now check d-d archives) the schema was named trustAccount or something like that.. or, you could use a filter like this: filter=(uid=*-pop) and add another uid for the account (uid: account-pop) this is ofcourse haxory but if you want (or are forced) to follow schemas this could be one solution.. ofcourse this filter=... has not been implemented yet, it's still a patch waiting to be compiled on my machine =) -- -< Sami Haahtinen >- -< 2209 3C53 D0FB 041C F7B1 F908 A9B6 F730 B83D 761C >-
Re: schema for NSS LDAP with not all accounts active
On Sat, Mar 31, 2001 at 10:24:17PM +0200, Piotr Roszatycki wrote: > > i'm currently implementing filter attribute for pam_ldap, which would allow > > you to add a custom filter for your pam module (filter=(service=telnet) > > would be quite effective.. > > Nice, but AFAIR the `service' attribute isn't standard. Did you use a special > objectClass? the filter is self defined, and the service filter was just an example, you are allowed to filter it with anything you like. > > > 1. Can I have a multiple `uid' attributes in one LDAP record? > > yes you can. the schema allows multiple uids, how it works is another thing > > It works pretty well. My users can login to FTP server with system uid (i.e. > `user8367') and easly to remeber uid (i.e. [EMAIL PROTECTED]'). this is good to know.. i only knew that you can define multiple uids, i never tried if they work =) > > > http://ldapnstools.sourceforge.net > > is this something like the MigrationTools from PADL? > > Not exactly, because it converts only user database and provides a > replacement for standard tools from shadow package (useradd, chsh, passwd, > etc.) ahh.. this is something that is needed.. -- -< Sami Haahtinen >- -< 2209 3C53 D0FB 041C F7B1 F908 A9B6 F730 B83D 761C >-
Re: schema for NSS LDAP with not all accounts active
On Sat, Mar 31, 2001 at 10:53:17PM +0200, Piotr Roszatycki wrote: > > > Nice, but AFAIR the `service' attribute isn't standard. Did you use a > > > special objectClass? > > > > the filter is self defined, and the service filter was just an example, you > > are allowed to filter it with anything you like. > > There are any standard or RFC? At least I can use Microsoft schema ;-) i don't know about standard but there is a schema for one. (i don't remember if it supported services directly but it could be implemented) the schema comes with directory manager (i can't remember the URL for it now check d-d archives) the schema was named trustAccount or something like that.. or, you could use a filter like this: filter=(uid=*-pop) and add another uid for the account (uid: account-pop) this is ofcourse haxory but if you want (or are forced) to follow schemas this could be one solution.. ofcourse this filter=... has not been implemented yet, it's still a patch waiting to be compiled on my machine =) -- -< Sami Haahtinen >- -< 2209 3C53 D0FB 041C F7B1 F908 A9B6 F730 B83D 761C >- -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: schema for NSS LDAP with not all accounts active
On Sat, Mar 31, 2001 at 10:24:17PM +0200, Piotr Roszatycki wrote: > > i'm currently implementing filter attribute for pam_ldap, which would allow > > you to add a custom filter for your pam module (filter=(service=telnet) > > would be quite effective.. > > Nice, but AFAIR the `service' attribute isn't standard. Did you use a special > objectClass? the filter is self defined, and the service filter was just an example, you are allowed to filter it with anything you like. > > > 1. Can I have a multiple `uid' attributes in one LDAP record? > > yes you can. the schema allows multiple uids, how it works is another thing > > It works pretty well. My users can login to FTP server with system uid (i.e. > `user8367') and easly to remeber uid (i.e. `[EMAIL PROTECTED]'). this is good to know.. i only knew that you can define multiple uids, i never tried if they work =) > > > http://ldapnstools.sourceforge.net > > is this something like the MigrationTools from PADL? > > Not exactly, because it converts only user database and provides a > replacement for standard tools from shadow package (useradd, chsh, passwd, > etc.) ahh.. this is something that is needed.. -- -< Sami Haahtinen >- -< 2209 3C53 D0FB 041C F7B1 F908 A9B6 F730 B83D 761C >- -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: schema for NSS LDAP with not all accounts active
On Fri, Mar 30, 2001 at 08:20:23PM -0500, Richard A Nelson wrote: > > > i'm currently implementing filter attribute for pam_ldap, which would > > > allow you to add a custom filter for your pam module > > > (filter=(service=telnet) would be quite effective.. > > > > Nice. > > Indeed even though i slipped in a typo, it's a good thing you like it.. =) > > Or would it be better to have an attribute for each service like > > filter=(telnet=yes)? > > No... It looks like Sami is doing a real LDAP filter... *VERY* powerful - > gives you all the flexibility you'll likely need true, as LDAP allows you to define multiple services, it's more useful if you use entry like --Snip-- dn: uid=someone,ou=somewhere,o=somecompany,c=FI uid: someone objectclass: alltheusualones service: ftp service: imap service: pop --Snap-- this way it's more extendable, i'm sure that nobody wants to write a schema that includes every possible service. -- -< Sami Haahtinen >- -< 2209 3C53 D0FB 041C F7B1 F908 A9B6 F730 B83D 761C >- | 'If you haven't backed up your files recently, you might| | want to back them up before installing Windows 98' | | -- finnish windows 98 SE installation | pgpZsamJQAx6p.pgp Description: PGP signature
Re: schema for NSS LDAP with not all accounts active
On Fri, Mar 30, 2001 at 08:20:23PM -0500, Richard A Nelson wrote: > > > i'm currently implementing filter attribute for pam_ldap, which would > > > allow you to add a custom filter for your pam module > > > (filter=(service=telnet) would be quite effective.. > > > > Nice. > > Indeed even though i slipped in a typo, it's a good thing you like it.. =) > > Or would it be better to have an attribute for each service like > > filter=(telnet=yes)? > > No... It looks like Sami is doing a real LDAP filter... *VERY* powerful - > gives you all the flexibility you'll likely need true, as LDAP allows you to define multiple services, it's more useful if you use entry like --Snip-- dn: uid=someone,ou=somewhere,o=somecompany,c=FI uid: someone objectclass: alltheusualones service: ftp service: imap service: pop --Snap-- this way it's more extendable, i'm sure that nobody wants to write a schema that includes every possible service. -- -< Sami Haahtinen >- -< 2209 3C53 D0FB 041C F7B1 F908 A9B6 F730 B83D 761C >- | 'If you haven't backed up your files recently, you might| | want to back them up before installing Windows 98' | | -- finnish windows 98 SE installation | PGP signature
Re: schema for NSS LDAP with not all accounts active
On Fri, Mar 30, 2001 at 08:47:18PM +0200, Piotr Roszatycki wrote: > > Well, at least that's an solution. However I don't like it too much, to > > have a whole bunch of config files lying around. If I find the time > > (imagine the if written in real big letters), I will try to implement this > > in pam_ldap, where it belongs (IMHO). > > > > Anyway, thanks for this solution, I will incorporate this in my existing > > configuration as well i'm currently implementing filter attribute for pam_ldap, which would allow you to add a custom filter for your pam module (filter=(service=telnet) would be quite effective.. > Ha, I have the same problem already. My questions: > 1. Can I have a multiple `uid' attributes in one LDAP record? yes you can. the schema allows multiple uids, how it works is another thing =) > 2. Which attribute describes the services available for user? there is none at the moment. > BTW, I started a small project on SourceForge, > http://ldapnstools.sourceforge.net > > It could be interesting for anyone who want easly migrate from /etc/passwd > to LDAP. is this something like the MigrationTools from PADL? -- -< Sami Haahtinen >- -< 2209 3C53 D0FB 041C F7B1 F908 A9B6 F730 B83D 761C >- pgpoH4Sp3Zxab.pgp Description: PGP signature
Re: schema for NSS LDAP with not all accounts active
On Fri, Mar 30, 2001 at 08:47:18PM +0200, Piotr Roszatycki wrote: > > Well, at least that's an solution. However I don't like it too much, to > > have a whole bunch of config files lying around. If I find the time > > (imagine the if written in real big letters), I will try to implement this > > in pam_ldap, where it belongs (IMHO). > > > > Anyway, thanks for this solution, I will incorporate this in my existing > > configuration as well i'm currently implementing filter attribute for pam_ldap, which would allow you to add a custom filter for your pam module (filter=(service=telnet) would be quite effective.. > Ha, I have the same problem already. My questions: > 1. Can I have a multiple `uid' attributes in one LDAP record? yes you can. the schema allows multiple uids, how it works is another thing =) > 2. Which attribute describes the services available for user? there is none at the moment. > BTW, I started a small project on SourceForge, > http://ldapnstools.sourceforge.net > > It could be interesting for anyone who want easly migrate from /etc/passwd > to LDAP. is this something like the MigrationTools from PADL? -- -< Sami Haahtinen >- -< 2209 3C53 D0FB 041C F7B1 F908 A9B6 F730 B83D 761C >- PGP signature
Re: chroot -- success!
would you be willing to write some document on this? to share it with the rest of us... On Wed, Dec 27, 2000 at 04:29:38PM +, Martin WHEELER wrote: > 3 brandies, 6 coffees, one extra helping of Christmas thud-pud ... and voila > ... done it! > > Err ... it helps to read the pam documentation. > > [login and passwd entries in /etc/pam.d should match, for password] NOTE: > this almost certainly nullifies the advantages given by pam; but if that's > what the punter wants, who am I to quibble? -- every nerd knows how to enjoy the little things of life, like: rm -rf windows -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Video Server....??
On Wed, Jul 26, 2000 at 09:24:18AM +0800, Donald Szeto wrote: > Hi! > > Our school uses fiber optic backbones with Fast Ethernet segments and the > Video Support Team had optimized the clips for better streaming without > consuming much bandwidth. > Sometimes, students do not need to play the video themselves, they can watch > the movie from the projector :). what kind of server do you use for streaming, and is it available somewhere.. i need to build a system to stream a picture from the tv (yes, it's legal =) and my boss wanted sound too.. i've been trying to look at solutions like this.. but nothing proved good enough... (oh, and he is not willing to pay loads of money for this.. =( ) Regards, Sami haahtinen
Re: Video Server....??
On Wed, Jul 26, 2000 at 09:24:18AM +0800, Donald Szeto wrote: > Hi! > > Our school uses fiber optic backbones with Fast Ethernet segments and the Video >Support Team had optimized the clips for better streaming without consuming much >bandwidth. > Sometimes, students do not need to play the video themselves, they can watch the >movie from the projector :). what kind of server do you use for streaming, and is it available somewhere.. i need to build a system to stream a picture from the tv (yes, it's legal =) and my boss wanted sound too.. i've been trying to look at solutions like this.. but nothing proved good enough... (oh, and he is not willing to pay loads of money for this.. =( ) Regards, Sami haahtinen -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: webmail (2)
_How_ does it support https? i'm running the imp from potato, via https... On Thu, Jul 20, 2000 at 11:50:52AM +0200, Emilis wrote: > Hi all > Some words about webmail horde/imp > I'm try to use imp debian package from potato > (imp_2.2.0-3.potato.1.deb) And i have a problems with IE 5.x chache. > Better way is to use > "dists/unstable/main/binary-i386/web/imp_2.2.0-5.deb" > It works perfectly, and supports https. > Good luck.
Re: webmail (2)
_How_ does it support https? i'm running the imp from potato, via https... On Thu, Jul 20, 2000 at 11:50:52AM +0200, Emilis wrote: > Hi all > Some words about webmail horde/imp > I'm try to use imp debian package from potato > (imp_2.2.0-3.potato.1.deb) And i have a problems with IE 5.x chache. > Better way is to use > "dists/unstable/main/binary-i386/web/imp_2.2.0-5.deb" > It works perfectly, and supports https. > Good luck. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: List managers
On Wed, Jul 05, 2000 at 10:47:43AM +0200, Javier Castillo wrote: > Hi there, > > I see that majordomo is non-free :(( , > > which list manager do you recommend me?, easy to admin, fast, and of > course, gnu :)) Sympa is a good choice, i use it for our lists, it's easy on the users and the maintainer...
Re: List managers
On Wed, Jul 05, 2000 at 10:47:43AM +0200, Javier Castillo wrote: > Hi there, > > I see that majordomo is non-free :(( , > > which list manager do you recommend me?, easy to admin, fast, and of > course, gnu :)) Sympa is a good choice, i use it for our lists, it's easy on the users and the maintainer... -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Configuring ISP Support Using 'pppconfig'
with the following commands you should be able to diagnose the most common problems ifconfig ppp0 Check if your interface is set up correctly route check where the 'default' route goes, most likely it should point to ppp0 (if it takes too long add -n) ping your_isp if you don't know any names for your isp that reply to ping.. use the P-t-P address from ifconfig those should make it a bit clearer where the problem is... if there isn't any default route you should add it.. (or make ppp add it) by 'route add default dev ppp0' or add defaultroute to /etc/ppp/options i hope this solves your problems... On Sat, May 06, 2000 at 07:18:18PM +0100, Daniel Burrows wrote: > I am trying to configure dial-up access using 'pppconfig'. I manage to > connect to my ISP and it seems to authenticate but when I open Mozilla or > any other net program it won't run properly. I think it might be to do with > something like the fact that my ISP has dynamic IP allocation and DNS > servers. My ISP is 'Cable & Wireless ' in the United Kingdom. Any help would > be appreciated. -- get a life, get the second one free...
