RE: [e-smith-devinfo] Upload Panel

2002-02-15 Thread Trevor Ouellette

Hi Jaime,

I would be very interested looking at your solution.  Do you have a download
location for it?

I appreciate your assistance with this.

Thanks for your help,

Trev.

> -Original Message-
> From: Jaime Nebrera Herrera [mailto:[EMAIL PROTECTED]]
> Sent: Friday, February 15, 2002 5:31 PM
> To: [EMAIL PROTECTED]
> Subject: Re: [e-smith-devinfo] Upload Panel
>
>
>   We have a ready to work solution, just needs to get translated
> to english.
> It would allow you to upload files if you want to.
>
> > I'm working on a panel that allows the user to upload a file to
> the server.
> > Then it will run an event on the uploaded file.  However, there
> is a bug in
> > it and I'm stumped.
>
> --
> Jaime Nebrera - [EMAIL PROTECTED]
>
> --
> Please report bugs to [EMAIL PROTECTED]
> Please mail [EMAIL PROTECTED] (only) to discuss security issues
> Support for registered customers and partners to [EMAIL PROTECTED]
> To unsubscribe, e-mail: [EMAIL PROTECTED]
> For additional commands, e-mail: [EMAIL PROTECTED]
> Archives by mail and
> http://www.mail-archive.com/devinfo%40lists.e-smith.org
>
>


--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org




[e-smith-devinfo] Upload Panel

2002-02-15 Thread Trevor Ouellette

I'm working on a panel that allows the user to upload a file to the server.
Then it will run an event on the uploaded file.  However, there is a bug in
it and I'm stumped.

Would someone please take a look at it?  I think it's 90% there.

The upload file may be tainted, but I don't think it is.

When you have a minute, take a look and get back to me with any comments or
suggestions.

http://www.greencomputer.com/temp/upload

Trev.


--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org




RE: [e-smith-devinfo] PHP and Events

2002-02-14 Thread Trevor Ouellette

In otherwords, if I created an event/action and gave it admin rights, I
could control the system (reboots, shutdowns, update files, etc.) through
that event.

Trev.

> -Original Message-
> From: Darrell May [mailto:[EMAIL PROTECTED]]
> Sent: Thursday, February 14, 2002 6:46 PM
> To: [EMAIL PROTECTED]
> Subject: Re: [e-smith-devinfo] PHP and Events
>
>
>
> Charlie Brady <[EMAIL PROTECTED]> said:
>
> > That won't work for all events and actions. From PHP scripts,
> > "signal-event" will be run as user "admin", belonging to various groups,
>
> > including "root". There's plenty of things that "admin" doesn't have
> > permission to do.
>
> Permit me to rephrase...  capable of launching any event/action that admin
> has rights to launch ;->
>
> Regards,
>
> --
> Darrell May
> DMC Netsourced.com
> http://netsourced.com
> http://myEZserver.com
>
>
> --
> Please report bugs to [EMAIL PROTECTED]
> Please mail [EMAIL PROTECTED] (only) to discuss security issues
> Support for registered customers and partners to [EMAIL PROTECTED]
> To unsubscribe, e-mail: [EMAIL PROTECTED]
> For additional commands, e-mail: [EMAIL PROTECTED]
> Archives by mail and
> http://www.mail-archive.com/devinfo%40lists.e-smith.org
>
>


--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org




RE: [e-smith-devinfo] PHP and Events

2002-02-14 Thread Trevor Ouellette

I recall that discussion now that you mentioned it.  Thanks for the info.

Trev.

> -Original Message-
> From: Charlie Brady [mailto:[EMAIL PROTECTED]]
> Sent: Thursday, February 14, 2002 4:40 PM
> To: Trevor Ouellette
> Cc: [EMAIL PROTECTED]
> Subject: Re: [e-smith-devinfo] PHP and Events

> The short answer is no. PHP scripts are interpreted inside the
> web server,
> so run with the user and group id of the web-server, i.e. www. And 'www'
> doesn't have permission to do anything privileged. The manager
> scripts can
> do privileged things because they are setuid scripts, and run as 'root'.
>
> There was some discussion about running PHP in the admin web server a few
> weeks ago where I discussed some of the security implications.


--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org




[e-smith-devinfo] PHP and Events

2002-02-14 Thread Trevor Ouellette

I've got an interesting question.

Is it possible to have a PHP panel that can trigger an event or action?

What kind of security is involved here?

So, if the event/actions are built, the templates are in place, and the
configuration have their respective variables set up... can PHP trigger the
event and put the whole system in motion?

If anybody has an opinion, I would like to hear it.


Trev.


--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org




RE: [e-smith-devinfo] Installing SG3 (was SG3)

2002-02-13 Thread Trevor Ouellette

Hi Jose,

This is the /etc/e-smith/web/functions/squidguard file that you modified
right?  That's good.

Yes, some new features have been added (log, blacklist location, etc.).

As far as the color goes... I just happen to like the color blue.  It is
nicer to look at then gray and it is just a coincidence that our color
scheme's are both the same.

Send me your /etc/e-smith/web/functions/squidguard file when you have a
chance, Jose.  I will update my installation when I have some time.  It
really is suppose to auto-detect versions and install the correct panel.

Trev.

> -Original Message-
> From: jose velez [mailto:[EMAIL PROTECTED]]
> Sent: Wednesday, February 13, 2002 3:55 PM
> To: Trevor Ouellette; Devinfo@Lists. E-Smith. Org
> Subject: RE: [e-smith-devinfo] Installing SG3 (was SG3)
>
>
>
> I just installed Squidguard3 and it works great.  The only thing
> that does not
> work is the server manager the content filtering will fail. I can
> modified with
> login at the 192.168.1.1/squidguard.
>
> You even change the color to blue to match Mitel screen and added
> new features
>
> Thank You
>
> --
> jose velez
>
>


--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org




RE: [e-smith-devinfo] Installing SG3 (was SG3)

2002-02-13 Thread Trevor Ouellette

Glad to hear that you are up and running.

Trev.


> If I only had half a brain, I would be dangerous!  Wow!
> Sometimes I dont know why they call me an engineer.
> 
> Sheech! The port & IP address is connected to my laptop - not to the test
> server.
> How the heck can I FTP if the test server is NOT connected to the 
> internet!


--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org




RE: [e-smith-devinfo] Upload Panel template for manager (was need help with project)

2002-02-13 Thread Trevor Ouellette

Mr. Sanchez,

Thanks for the quick response.  I know that you are very busy and your time
is very valuable.

   Type of file:.tar.gz or RPM
   Max size of file:< 1024Kb
Location of uploaded file:  /home/e-smith/upload

Placido, I don't even know what the events are going to be.  But leave that
to me... just put a place holder in (put .  All I need is the server-manager
panel.

I know I can do this in PHP, but I don't want to.  I would like it in Perl
as a panel.

All I really need is a skeleton panel (with the upload function ready to
go).  I will add to it as we go.


Thanks again!

Trev.


--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org




RE: [e-smith-devinfo] Installing SG3 (was SG3)

2002-02-13 Thread Trevor Ouellette

Good, it detected your software OS version.  Don't worry about the "File
exists" error messages.  The links already exist.

However, the blacklist download script is having a few issues... that's
interesting.
The script is located at: /usr/local/squidGuard/supdate

Orville, I just ran my supdate (to update blacklists) from the console and
it worked fine.
Try run the script from the command line.  -> /usr/local/squidGuard/supdate

Trev.


> 
> ...
> ...
> Server software version: 5.1.2
> Installing web-panels for version 5.1.2...
> `variables/functions/SME5/squidguard' ->
> `/etc/e-smith/web/functions/squidguard'
>
> ln: `/etc/e-smith/web/panels/manager/cgi-bin/squidguard': File exists
> ln: `/home/e-smith/squidguard/trusted': File exists
> ln: `/home/e-smith/squidguard/untrusted': File exists
> ln: `/var/log/squidGuard.log': File exists
>
> Initialize SquidGuard 3.0 Interface (this may take a while)...
>
> SquidGuard Filter Interface 3.0
> This program may be freely distributed and/or modified.
>
> downloading blacklist...
> http://ftp.ost.eltele.no/pub/www/proxy/squidGuard/contrib/blacklis
> ts.tar.gz
> ftp.ost.eltele.no: Host not found.
> tar (child): *: Cannot open: No such file or directory
> tar (child): Error is not recoverable: exiting now
> tar: Child returned status 2
> tar: Error exit delayed from previous errors
> Installing Blacklist...
> cp: cannot stat `blacklists/*': No such file or directory
>
> Restarting Squid...
> Stopping squid: .[   OK   ]
> Starting squid: [   OK   ]
> Finished.
>
> SquidGuard Interface 3.0 Installation Complete.
> You may reboot your server now.
>
> 
>
> - Original Message -

> To: "Devinfo@Lists. E-Smith. Org" <[EMAIL PROTECTED]>
> Sent: Wednesday, February 13, 2002 11:13 AM
> Subject: RE: [e-smith-devinfo] Installing SG3 (was SG3)
>
>
> > This software comes without warranty.  Use at your own risk.  It should
> work
> > for (4.x and 5.x servers)
> >
> > To install the SquidGuard Panel, you must access the server in console
> mode.
> > This means plugging in a keyboard and mouse into the back of your server
> or
> > you can also use SSH to remotely install the software as well.
> >
> > From the console mode, access the command prompt by holding
> down your ALT
> > key and pressing "F2".
> > Log in as "root"  and type your system password when
> prompted.
> > Enter these commands from the prompt:
> >
> >
> > mkdir /sg3
> >
> > cd /sg3
> >
> > wget
> >
> ftp://ftp.e-smith.com/pub/e-smith/contrib/TrevorOuellette/squidgua
rd30.tar.g
> z
>
> tar -zxf squidguard30.tar.gz
>
> ./install.sh
>
>
> You will now have to reboot your server.  You can do this from the command
> line console by typing in "reboot" and pressing enter.
>
> You will be able to access the interface from your server-manager.
>
> Trev.
>
>
> --
> Please report bugs to [EMAIL PROTECTED]
> Please mail [EMAIL PROTECTED] (only) to discuss security issues
> Support for registered customers and partners to [EMAIL PROTECTED]
> To unsubscribe, e-mail: [EMAIL PROTECTED]
> For additional commands, e-mail: [EMAIL PROTECTED]
> Archives by mail and
http://www.mail-archive.com/devinfo%40lists.e-smith.org
>
>



--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org




RE: [e-smith-devinfo] Installing SG3 (was SG3)

2002-02-13 Thread Trevor Ouellette

Orville,

4.1.2 works perfectly with squidguard.

Someone will have to make it SME5 compatible.  I thought I had it, but if
you want to publish the error messages to the devlist, someone with SME5 can
take a look and make the appropriate changes.

I would be happy to direct or help anyone who is interested in making the
changes.  But I don't have time to install and test every version of SME
that comes out.

Trev.

> -Original Message-
> From: Orville Carter [mailto:[EMAIL PROTECTED]]
> Sent: Wednesday, February 13, 2002 11:46 AM
> To: Trevor Ouellette; Devinfo@Lists. E-Smith. Org
> Subject: Re: [e-smith-devinfo] Installing SG3 (was SG3)
>
>
> - Original Message -

> To: "Devinfo@Lists. E-Smith. Org" <[EMAIL PROTECTED]>
> Sent: Wednesday, February 13, 2002 11:13 AM
> Subject: RE: [e-smith-devinfo] Installing SG3 (was SG3)
>
>
> > This software comes without warranty.  Use at your own risk.  It should
> work
> > for (4.x and 5.x servers)
> >
>
> Tried it on a new installed 5.1.2 - did not work!
>
> a. Cannot access the content Filtering link - Page cannot be found!
> Security
> Password
> Remote access
> Local networks
> Content Filtering
>
> b.   http://192.168.1.2/squidguard
> You are not authorized to view this page
> You might not have permission to view this directory or page using the
> credentials you supplied.
>
> A number of errors occured during installation. Will try to capture all
> meaasges for review.
> I guess its back to the drawing board on this one.
>
> Orville Carter
> NYC
>
>
>
>
>
>
>
>
> --
> Please report bugs to [EMAIL PROTECTED]
> Please mail [EMAIL PROTECTED] (only) to discuss security issues
> Support for registered customers and partners to [EMAIL PROTECTED]
> To unsubscribe, e-mail: [EMAIL PROTECTED]
> For additional commands, e-mail: [EMAIL PROTECTED]
> Archives by mail and
http://www.mail-archive.com/devinfo%40lists.e-smith.org



--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org




[e-smith-devinfo] Need your help on a project

2002-02-13 Thread Trevor Ouellette

Hi,

I have looked at your "Multi user account" rpm and think that it is amazing!
I have a very simple project that I need help with.

I need a panel in the Manager that allows a user to upload a file to the
server.
Then the server will perform an action/event on it.

I can easily do the second part (events/templating/etc.)... but I am having
a lot of problems with creating the upload panel.  I know that you have the
experience with this and I would be very grateful if you or anybody could at
least hash out some sort of upload template for me.

Eg. location of uploaded file?  Max Size?, etc.

The backup/restore panel is too complex for me to work with.

If somebody else can help me, that would be appreciated.  I don't think that
this is too complicated, but I do need a start.

Trev.


--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org




RE: [e-smith-devinfo] SG3 (was directway and squidguard21)

2002-02-13 Thread Trevor Ouellette

You can access it directly.

http://192.168.1.1/squidguard

Can you get in?

Trev.

> -Original Message-
> From: Brandon Friedman [mailto:[EMAIL PROTECTED]]
> Sent: Wednesday, February 13, 2002 9:16 AM
> To: Trevor Ouellette
> Subject: RE: [e-smith-devinfo] SG3 (was directway and squidguard21)
>
>
> Hi Trevor,
>
> I just installed on our SME 5.0 server:
>
>  The page cannot be found
> The page you are looking for might have been removed, had its
> name changed,
> or is temporarily unavailable.
>
> --
> --
> 
>
> Please try the following:
>
> If you typed the page address in the Address bar, make sure that it is
> spelled correctly.
>
> Open the 192.168.42.138:980 home page, and then look for links to the
> information you want.
> Click the  Back button to try another link.
> Click  Search to look for information on the Internet.
>
>
>
> HTTP 404 - File not found
> Internet Explorer
>
>
> Is displayed when I click on content filtering?
>
> >-Original Message-
> >From:
> >Sent: 13 February 2002 17:59
> >To: Brandon Friedman
> >Subject: RE: [e-smith-devinfo] SG3 (was directway and squidguard21)
> >
> >
> >The installation will check for what version of ES you are
> running (4.x or
> >5.x).  It should work fine on 5.x platforms.
> >
> >Trev.
> >
> >> -Original Message-
> >> From: Brandon Friedman [mailto:[EMAIL PROTECTED]]
> >> Sent: Wednesday, February 13, 2002 8:39 AM
> >> To: Trevor Ouellette; [EMAIL PROTECTED]
> >> Subject: RE: [e-smith-devinfo] SG3 (was directway and squidguard21)
> >>
> >>
> >> Hi Trevor
> >>
> >> This works on SME 5.x?
> >>
> >> >-Original Message-
> >> >From:
> >> >Sent: 13 February 2002 17:22
> >> >To: [EMAIL PROTECTED]
> >> >Subject: RE: [e-smith-devinfo] SG3 (was directway and squidguard21)
> >> >
> >> >
> >> >Jose & Brandon,
> >> >
> >> >ftp://ftp.e-smith.com/pub/e-smith/contrib/TrevorOuellette/squidguar
> >> >d30.tar.g
> >> >z
> >> >
> >> >
> >> >Trev.
> >> >
> >> >> -Original Message-
> >> >> From: jose velez [mailto:[EMAIL PROTECTED]]
> >> >> Sent: Wednesday, February 13, 2002 9:06 AM
> >> >> To: [EMAIL PROTECTED]
> >> >> Subject: [e-smith-devinfo] directway and squidguard21
> >> >>
> >> >>
> >> >>
> >> >> Anyone with DirectTV Directway working with Mitel SME server
> >> (is USB) and
> >> >> Squidguard21 from Trebor working on version 5.1.2
> >> >>
> >> >> Thank You
> >> >>
> >> >> --
> >> >> jose velez
> >> >>
> >> >>
> >> >> --
> >> >> Please report bugs to [EMAIL PROTECTED]
> >> >> Please mail [EMAIL PROTECTED] (only) to discuss security issues
> >> >> Support for registered customers and partners to [EMAIL PROTECTED]
> >> >> To unsubscribe, e-mail: [EMAIL PROTECTED]
> >> >> For additional commands, e-mail: [EMAIL PROTECTED]
> >> >> Archives by mail and
> >> >> http://www.mail-archive.com/devinfo%40lists.e-smith.org
> >> >>
> >> >>
> >> >
> >> >
> >> >--
> >> >Please report bugs to [EMAIL PROTECTED]
> >> >Please mail [EMAIL PROTECTED] (only) to discuss security issues
> >> >Support for registered customers and partners to [EMAIL PROTECTED]
> >> >To unsubscribe, e-mail: [EMAIL PROTECTED]
> >> >For additional commands, e-mail: [EMAIL PROTECTED]
> >> >Archives by mail and
> >> >http://www.mail-archive.com/devinfo%40lists.e->smith.org
> >> >
> >> >
> >>
> >>
> >
> >
>
>


--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org




RE: [e-smith-devinfo] Installing SG3 (was SG3)

2002-02-13 Thread Trevor Ouellette

This software comes without warranty.  Use at your own risk.  It should work
for (4.x and 5.x servers)

To install the SquidGuard Panel, you must access the server in console mode.
This means plugging in a keyboard and mouse into the back of your server or
you can also use SSH to remotely install the software as well.

>From the console mode, access the command prompt by holding down your ALT
key and pressing "F2".
Log in as "root"  and type your system password when prompted.
Enter these commands from the prompt:


mkdir /sg3

cd /sg3

wget
ftp://ftp.e-smith.com/pub/e-smith/contrib/TrevorOuellette/squidguard30.tar.g
z

tar -zxf squidguard30.tar.gz

./install.sh


You will now have to reboot your server.  You can do this from the command
line console by typing in "reboot" and pressing enter.

You will be able to access the interface from your server-manager.

Trev.


--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org




RE: [e-smith-devinfo] SG3 (was directway and squidguard21)

2002-02-13 Thread Trevor Ouellette

The installation will check for what version of software you are running
(4.x or 5.x).  It should work fine on 5.x platforms.

Trev.

> -Original Message-
> From: Brandon Friedman [mailto:[EMAIL PROTECTED]]
> Sent: Wednesday, February 13, 2002 8:39 AM
> To: Trevor Ouellette; [EMAIL PROTECTED]
> Subject: RE: [e-smith-devinfo] SG3 (was directway and squidguard21)
>
>
> Hi Trevor
>
> This works on SME 5.x?
>
> >-----Original Message-
> >From: Trevor Ouellette [mailto:[EMAIL PROTECTED]]
> >Sent: 13 February 2002 17:22
> >To: [EMAIL PROTECTED]
> >Subject: RE: [e-smith-devinfo] SG3 (was directway and squidguard21)
> >
> >
> >Jose & Brandon,
> >
> >ftp://ftp.e-smith.com/pub/e-smith/contrib/TrevorOuellette/squidguar
> >d30.tar.g
> >z
> >
> >
> >Trev.
> >
> >> -Original Message-
> >> From: jose velez [mailto:[EMAIL PROTECTED]]
> >> Sent: Wednesday, February 13, 2002 9:06 AM
> >> To: [EMAIL PROTECTED]
> >> Subject: [e-smith-devinfo] directway and squidguard21
> >>
> >>
> >>
> >> Anyone with DirectTV Directway working with Mitel SME server
> (is USB) and
> >> Squidguard21 from Trebor working on version 5.1.2
> >>
> >> Thank You
> >>
> >> --
> >> jose velez
> >>
> >>
> >> --
> >> Please report bugs to [EMAIL PROTECTED]
> >> Please mail [EMAIL PROTECTED] (only) to discuss security issues
> >> Support for registered customers and partners to [EMAIL PROTECTED]
> >> To unsubscribe, e-mail: [EMAIL PROTECTED]
> >> For additional commands, e-mail: [EMAIL PROTECTED]
> >> Archives by mail and
> >> http://www.mail-archive.com/devinfo%40lists.e-smith.org
> >>
> >>
> >
> >
> >--
> >Please report bugs to [EMAIL PROTECTED]
> >Please mail [EMAIL PROTECTED] (only) to discuss security issues
> >Support for registered customers and partners to [EMAIL PROTECTED]
> >To unsubscribe, e-mail: [EMAIL PROTECTED]
> >For additional commands, e-mail: [EMAIL PROTECTED]
> >Archives by mail and
> >http://www.mail-archive.com/devinfo%40lists.e->smith.org
> >
> >
>
>
> --
> Please report bugs to [EMAIL PROTECTED]
> Please mail [EMAIL PROTECTED] (only) to discuss security issues
> Support for registered customers and partners to [EMAIL PROTECTED]
> To unsubscribe, e-mail: [EMAIL PROTECTED]
> For additional commands, e-mail: [EMAIL PROTECTED]
> Archives by mail and
http://www.mail-archive.com/devinfo%40lists.e-smith.org



--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org




RE: [e-smith-devinfo] SG3 (was directway and squidguard21)

2002-02-13 Thread Trevor Ouellette

Jose & Brandon,

ftp://ftp.e-smith.com/pub/e-smith/contrib/TrevorOuellette/squidguard30.tar.g
z


Trev.

> -Original Message-
> From: jose velez [mailto:[EMAIL PROTECTED]]
> Sent: Wednesday, February 13, 2002 9:06 AM
> To: [EMAIL PROTECTED]
> Subject: [e-smith-devinfo] directway and squidguard21
>
>
>
> Anyone with DirectTV Directway working with Mitel SME server (is USB) and
> Squidguard21 from Trebor working on version 5.1.2
>
> Thank You
>
> --
> jose velez
>
>
> --
> Please report bugs to [EMAIL PROTECTED]
> Please mail [EMAIL PROTECTED] (only) to discuss security issues
> Support for registered customers and partners to [EMAIL PROTECTED]
> To unsubscribe, e-mail: [EMAIL PROTECTED]
> For additional commands, e-mail: [EMAIL PROTECTED]
> Archives by mail and
> http://www.mail-archive.com/devinfo%40lists.e-smith.org
>
>


--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org




RE: [e-smith-devinfo] tape drives revisited

2002-02-08 Thread Trevor Ouellette

I would be interested in hearing about big SCSI drives that work as well.
As well as IDE.

Trev.

> -Original Message-
> From: Darrell May [mailto:[EMAIL PROTECTED]]
> Sent: Friday, February 08, 2002 10:55 AM
> To: e-smith-devinfo
> Subject: [e-smith-devinfo] tape drives revisited
>
>
>
> I like to gather info on current model IDE tape drives that are in useage
> and recommended by devinfo members.  There has been a number of new IDE
> drives introduced recently and I'd like to know what everyone has found
> workable and reliable under SME.
>
> Here are a few models I have come across:
>
> Ecrix VXA-1 33/66GB IDE VXA
> Onstream DI30-FAST 15/30GB IDE ADR
> Onstream ADR2.60 30/60GB IDE ADR2
>
> Seagate STT22A 10/20GB IDE TR5
>
> I have always used and recommend the Seagate drive but at 10/20GB it is on
> the smaller side of today's larger IDE HDDs.
>
> So if you've had any experience with any of the above, good or bad, or if
> you have any other IDE drives you'd recommend, please share.  I'm not
> interested in gathering SCSI drive reports as just about all scsi
> drives are
> known to work.
>
> Regards,
>
> --
> Darrell May
> DMC Netsourced.com
> http://netsourced.com
> http://myEZserver.com
>
>
> --
> Please report bugs to [EMAIL PROTECTED]
> Please mail [EMAIL PROTECTED] (only) to discuss security issues
> Support for registered customers and partners to [EMAIL PROTECTED]
> To unsubscribe, e-mail: [EMAIL PROTECTED]
> For additional commands, e-mail: [EMAIL PROTECTED]
> Archives by mail and
http://www.mail-archive.com/devinfo%40lists.e-smith.org



--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org




RE: [e-smith-devinfo] 1:1 NAT - Testers

2002-02-08 Thread Trevor Ouellette

Hi Abe,

I'm not a big fan, when people just drop a link on me, but this link does
answer some of the questions that you have about the ES templating system.
It would give you a good start.

http://www.e-smith.org/bboard/read.php?f=3&i=10558&t=10552

There is no mention of events/actions, though.


Trev.


> -Original Message-
> From: Abe Loveless [mailto:[EMAIL PROTECTED]]
> Sent: Friday, February 08, 2002 7:43 AM
> To: [EMAIL PROTECTED]
> Subject: RE: [e-smith-devinfo] 1:1 NAT - Testers
>
>
>
> > Hi Abe. Welcome to the list :-)
>
> Thanks.
>
> > Instead of a config.txt file you should put your entries in the db
> > configuration file found here:
> >
> > /etc/e-smith/configuration
>
> You mean /home/e-smith/configuration?  I couldn't find the file
> listed above.  Is the appropriate procedure to append entries to
> the bottom?
>
> >
> > As for your masq entries they should be templated and added to:
> >
> > /etc/e-smith/templates-custom/etc/rc.d/init.d/masq/
> >
> > Take a look at Trevor's rpm.  It will point you in the right direction.
>
> Thanks for the input, I'll dive into this over the weekend.
> Also, I hope to add a panel for the server-manager as well.  I've
> copied a couple to use as examples, and looked through the
> directions at http://www.e-smith.org/custom/.
>
> Abe
>
> ---
> Outgoing mail is certified Virus Free.
> Checked by AVG anti-virus system (http://www.grisoft.com).
> Version: 6.0.320 / Virus Database: 179 - Release Date: 1/30/2002
>
>
> --
> Please report bugs to [EMAIL PROTECTED]
> Please mail [EMAIL PROTECTED] (only) to discuss security issues
> Support for registered customers and partners to [EMAIL PROTECTED]
> To unsubscribe, e-mail: [EMAIL PROTECTED]
> For additional commands, e-mail: [EMAIL PROTECTED]
> Archives by mail and
http://www.mail-archive.com/devinfo%40lists.e-smith.org



--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org




RE: [e-smith-devinfo] 1:1 NAT - Testers

2002-02-08 Thread Trevor Ouellette

Hi Darrell,

It's there too, under:

ftp://ftp.e-smith.org/pub/e-smith/contrib/TrevorOuellette/SRPMS/


Trev.

> 
> Take a look at Trevor's rpm.  It will point you in the right direction.
> 
> Trevor, to assist Abe I suggest you might want to post up your source rpm
> as well.
> 
> Regards,
> 
> -- 
> Darrell May


--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org




RE: [e-smith-devinfo] Rescue Partition

2002-02-08 Thread Trevor Ouellette

James,

I about that.  And they use 2.4 kernel in their new gateway server.  I
wonder if they have a problem with PPTP, RealAudio, FTP and IPSec masqs.

Trev.

> -Original Message-
> From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
> James Robertson
> Sent: Friday, February 08, 2002 8:01 AM
> To: Ruwan Jayasinghe
> Cc: Dev Info
> Subject: Re: [e-smith-devinfo] Rescue Partition
>
>
> the Areis server by Celestic has a function like this - 2 diffrent boot
> options, one boots off a diffrent partition and extracts a darball over
> either the system or data partition, restoring it to factory defaults.
>
> The other idea i had was to make the rescue disk a standard ISO9660
> bootable image, burnable by most cd burning software, or a floppy boot
> disk/rom data disk.
>
> James
>
>
> --
> James Robertson
> e-mail: [EMAIL PROTECTED]
> D2P
> Distributed Publishing Protocol
> 3/243 Bridge Road, Richmond 3121
> Victoria, Australia
> Tel: +61 3 9429 3233
> Fax: +61 3 9427 0929
> Web: http://www.d2p.com.au
>
> --
> Please report bugs to [EMAIL PROTECTED]
> Please mail [EMAIL PROTECTED] (only) to discuss security issues
> Support for registered customers and partners to [EMAIL PROTECTED]
> To unsubscribe, e-mail: [EMAIL PROTECTED]
> For additional commands, e-mail: [EMAIL PROTECTED]
> Archives by mail and
http://www.mail-archive.com/devinfo%40lists.e-smith.org



--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org




RE: [e-smith-devinfo] Rescue Partition

2002-02-08 Thread Trevor Ouellette

Hi Darrell,

I don't even have a line of code... :-)

I don't think it's anything urgent.  I've seen the Rescue Partition used
before and it got me thinking...  I've seen this implemented on Windows
laptops.  Just in case Windows gets corrupted, I guess .

Trev.


> -Original Message-
> From: Darrell May [mailto:[EMAIL PROTECTED]]
> Sent: Thursday, February 07, 2002 8:59 PM
> To: Trevor Ouellette; [EMAIL PROTECTED]
> Subject: Re: [e-smith-devinfo] Rescue Partition
>
>
>
> Trevor Ouellette <[EMAIL PROTECTED]> said:
>
> > Does anybody have any use for a Rescue Partition on the hard drive?  It
> > would be used for rescuing the system when the root partition is
> corrupted
> > and fails to boot.
> >
> > It could also be used to revert a system back to "factory" specs.
> >
> > Any thoughts on the idea?
> >
> > Trev.
>
> Sounds attractive.  Got anything working or just planting the seed.
>
> Regards,
>
> --
> Darrell May
> DMC Netsourced.com
> http://netsourced.com
> http://myEZserver.com
>
>


--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org




RE: [e-smith-devinfo] Rescue Partition

2002-02-08 Thread Trevor Ouellette

Les,

Yes, that's a good point.  Keep it off the target drive.

Trev.

> -Original Message-
> From: Les Mikesell [mailto:[EMAIL PROTECTED]]
> Sent: Thursday, February 07, 2002 8:24 PM
> To: Trevor Ouellette; [EMAIL PROTECTED]
> Subject: RE: [e-smith-devinfo] Rescue Partition
> 
> 
> > From: Trevor Ouellette [mailto:[EMAIL PROTECTED]]
> >
> > Does anybody have any use for a Rescue Partition on the hard drive?  It
> > would be used for rescuing the system when the root partition 
> is corrupted
> > and fails to boot.
> >
> > It could also be used to revert a system back to "factory" specs.
> 
> I'd rather have a 'rescue' boot option on the
> CD that works like Mandrake 8.1's, mounting
> the HD partition(s) automatically under the
> ramdisk-based /mnt so you can just 'chroot /mnt'
> and be running more or less normally while
> you repair things.
> 
>   Les
> 
> 

--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org




RE: [e-smith-devinfo] 1:1 NAT - Testers

2002-02-07 Thread Trevor Ouellette

If someone is looking for a starting place, you may want to check out the
External IP Alias Panel that I wrote.

Obviously, it will have to be modified to solve Abe's problem, but I have
made some headway so far.

ftp://ftp.e-smith.org/pub/e-smith/contrib/TrevorOuellette/RPMS/noarch/

Trev.

> -Original Message-
> From: Abe Loveless [mailto:[EMAIL PROTECTED]]
> Sent: Thursday, February 07, 2002 6:44 PM
> To: [EMAIL PROTECTED]
> Subject: [e-smith-devinfo] 1:1 NAT - Testers
>
>
>
> I'm a newbie at Linux development.  I've been watching this list
> for several months, and finally think I may have something to contribute.
>
> I work for a state funded organization that started pushing the
> idea of an SME server to our school districts as an easy to use
> content filter with Trevor Ouelette's squidguard server-manager
> panel.  As the more adventerous districts progressed, they
> started wanting to do more than simple content filtering.
>
> Most recently, I've been getting questions about 1:1 NAT
> functionality... similar to that of Novell's BorderManager.  The
> port-forwarding rpm's didn't quite do what the users wanted.
> Basically, I needed to punch a hole through the firewall and take
> all incoming traffic to a 2nd external IP address and redirect it
> to an internal IP.
>
> I think we're close to getting this ironed out and are looking
> for testers.
>
> HowTo is located at:
> http://www.tech-geeks.org/article.php?story=20020206234827402
> If link is broken for some reason, search for "1_TO_1_NAT"
>
> I'm also looking for feedback: Am I going about this the best way?
>
> Here's how it works:
> 1. Manually edit a config.txt file to include the new external
> IP, the internal IP it should forward to, and the network that
> should have access (1 Subnet or Entire Internet, currently).
>
> 2. Run "install", a shell script that executes a perl script that
> reads config.txt and builds a shell script to execute the various
> "ip" and "ipchains" commands.
>
> 3. Because the "ip" and "ipchains" commands executed by the shell
> script are lost upon reboot (and everytime the routing tables get
> flushed), I also created a symbolic link in
> /etc/rc.d/rc7.d/S99_1_to_1_NAT ->
> /opt/utilities/1_to_1/temp/1_to_1.sh.  This way the script is
> executed near the end of the boot process.
>
> 4. Also added a "reset" script that will re-execute the 1_to_1.sh
> file to restore lost ipchains entries (after a flush of the
> routing tables).  And added an "update" script that will
> regenerate the "1_to_1.sh" file if the user needs to make changes
> to the config.txt file and start over.
>
> I have tested on SMEv5.0 with http traffic to a Win98 internal
> client (http://216.125.202.201 should load a Xitami web page).  I
> currently don't have another spare server to test things like
> mail and other services.
>
> Any other comments/tips welcomed.
>
> Thanks,
> Abe
>
>
> Abe Loveless
> Network Specialist
>
> Area 5 Learning Technology Center
> 200 Clay Street   Edwardsville, IL 62025
> Phone: 618-692-6200 ext.4571  Fax: 618-659-9338
>
> http://www.lth5.k12.il.us
>
> ---
> Outgoing mail is certified Virus Free.
> Checked by AVG anti-virus system (http://www.grisoft.com).
> Version: 6.0.320 / Virus Database: 179 - Release Date: 1/30/2002
>
>
> --
> Please report bugs to [EMAIL PROTECTED]
> Please mail [EMAIL PROTECTED] (only) to discuss security issues
> Support for registered customers and partners to [EMAIL PROTECTED]
> To unsubscribe, e-mail: [EMAIL PROTECTED]
> For additional commands, e-mail: [EMAIL PROTECTED]
> Archives by mail and
http://www.mail-archive.com/devinfo%40lists.e-smith.org



--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org




[e-smith-devinfo] Rescue Partition

2002-02-07 Thread Trevor Ouellette

Does anybody have any use for a Rescue Partition on the hard drive?  It
would be used for rescuing the system when the root partition is corrupted
and fails to boot.

It could also be used to revert a system back to "factory" specs.

Any thoughts on the idea?

Trev.



--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org




RE: [e-smith-devinfo] 3rd External IP development

2002-01-26 Thread Trevor Ouellette

Done... I had to set the Ethernet Driver manually (/sbin/e-smith/db
configuration set EthernetDriver3=), and everything else is set as
well...

The Ethernet Driver is not the issue here.  It was really written for
External aliased IP addresses and not for a 3rd physical network card.  But
I tried to make the code as flexible as I could to support eth2 (for
example).

BTW, Aliased IP's share the same physical ethernet port, but have more than
one IP.

I'm sure it how the routing tables are set up for eth2.

See for yourself.

http://www.greencomputer.com/temp/gc-extip-0.1-1.noarch.rpm
http://www.greencomputer.com/temp/gc-extip-0.1-1.src.rpm

[Charlie, I would like these files added to my ftp directory.]

Trev.


> -Original Message-
> From: Darrell May [mailto:[EMAIL PROTECTED]]
> Sent: Saturday, January 26, 2002 12:14 PM
> To: Trevor Ouellette; [EMAIL PROTECTED]
> Subject: Re: [e-smith-devinfo] 3rd External IP development
>
>
>
> Trevor Ouellette <[EMAIL PROTECTED]> said:
>
> > The Ethernet is visable, loads properly, can be pinged from the inside
> > network, but from the outside, it can't be located.
>
> Trevor, you may wish to define the second external ethernet card
> properties
> in the configuration file and the masq.  Something 'like' this may get you
> started:
>
> /home/e-smith/configuration
>
> EthernetDriver3=
> ExternalIP2=
>
> /etc/e-smith/templates-custom/etc/rc.d/init.d/masq/15Definitions
>
> OUTERIF2=eth2
> OUTERNET2=$(/sbin/e-smith/db configuration get ExternalIP2)
>
> Then for every templated instance of OUTERIF and OUTERNET, in every
> template fragment, you would have to move the fragment into
> templates-custom
> and add similar lines for OUTERIF2 and OUTERNET2.  As an example:
>
> /sbin/ipchains --append input -p TCP -s 0/0 :19 -i $OUTERIF -j denylog
> /sbin/ipchains --append input -p UDP -s 0/0 :19 -i $OUTERIF -j denylog
> /sbin/ipchains --append input -p TCP -s 0/0 :19 -i $OUTERIF2 -j denylog
> /sbin/ipchains --append input -p UDP -s 0/0 :19 -i $OUTERIF2 -j denylog
>
> I'm not sure if it will accept '-i $OUTERIF $OUTERIF2' on the same line in
> some fancy syntax?  It will accept a new line.
>
> This should then open the card up for external access on the
> standard ports
> and services.  Once you are permitted in then you can test if additional
> route entries are needed.
>
> You may wish to become familiar with the remoteaccess-update event.
>
> Let me know if this helps.
>
> Regards,
>
> --
> Darrell May
> DMC Netsourced.com
> http://netsourced.com
> http://myEZserver.com
>
>
> --
> Please report bugs to [EMAIL PROTECTED]
> Please mail [EMAIL PROTECTED] (only) to discuss security issues
> Support for registered customers and partners to [EMAIL PROTECTED]
> To unsubscribe, e-mail: [EMAIL PROTECTED]
> For additional commands, e-mail: [EMAIL PROTECTED]
> Archives by mail and
http://www.mail-archive.com/devinfo%40lists.e-smith.org



--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org




[e-smith-devinfo] 3rd External IP development

2002-01-25 Thread Trevor Ouellette

I've made headway with the External Aliased IP RPM that I'm developing but
now I'm testing it for compatibility with a "real" third ethernet (or
wireless) connection.

Anybody running three interfaces (Ethernet) at the moment?  I would prefer
if you had one local area network connection and two external connections.

I'm having a heck of a time getting the 3rd interface visable to the outside
world (I'm pretty sure its my routes).

The Ethernet is visable, loads properly, can be pinged from the inside
network, but from the outside, it can't be located.


--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org




[e-smith-devinfo] Need some perl help on a line of code

2002-01-24 Thread Trevor Ouellette

This is the original code:

my $listenIP = ($SystemMode eq "serveronly") ? $LocalIP : $ExternalIP;


Here is what I need to do in this template fragment...

If user selected VPN services on the new link, AND Systemmode is gateway
change the $ExternalIP to $ExternalIP2.


All variables are stored in my /home/e-smith/configuration file:

VPNServer2=yes (or no)
ExternalIP2=xx.xx.xxx.223

I think I have to use the "&&" to connect the string together.


Trev.


--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org




RE: [e-smith-devinfo] Multiple Interfaces

2002-01-24 Thread Trevor Ouellette

I made a change to the "Listen port" to the template in /etc/pptpd.conf


That got it!  Sorry for wasting everyone's time... :-)

Trev.

> -Original Message-----
> From: Trevor Ouellette [mailto:[EMAIL PROTECTED]]
> Sent: Thursday, January 24, 2002 1:19 PM
> To: E-Smith Developers Info Mailing List
> Subject: [e-smith-devinfo] Multiple Interfaces
> 
> 
> I'm working on a package that would allow expansion for a 2nd External
> interface or multiple IP's on one external interface.
> 
> Many enterprise-sized company require more than two interfaces for their
> server.
> 
> I'm almost there... I just finished editing the firewall configuration
> (MASQ) to pull the third IP and 3rd Interface from the main configuration
> file.
> 
> Currently I can access the server via xx.xx.xxx.222 (eth1) and on
> xx.xx.xxx.223.
> 
> Working services are:
> 
> SSH, FTP, HTTP Manager/HTTP (through SSH portforward), Mail, etc.
> 
> Services not working:
> 
> VPN (PPTP)
> 
> 
> When connecting via VPN on the 3rd interface (or aliased external), I get
> this message:
> 
> Error 751 - The remote computer refused the VPN connection.  Please try
> again latter.  If the problem persists, check your with your 
> network admin.
> 
> on the standard External IP, it connects fine.
> 
> This tells me that the firewall is GOOD... it hits the server.
> However, the server will not allow it to connect (maybe because 
> of the IP).
> 
> The only file I have found is:
> 
> /etc/ppp/ip-up.local  <- I have modified the template to pull the 3rd IP.
> 
> 
> What am I missing?  What is preventing the server from allowing the VPN
> connection?
> 
> 
> Trev.
> 
> 
> --
> Please report bugs to [EMAIL PROTECTED]
> Please mail [EMAIL PROTECTED] (only) to discuss security issues
> Support for registered customers and partners to [EMAIL PROTECTED]
> To unsubscribe, e-mail: [EMAIL PROTECTED]
> For additional commands, e-mail: [EMAIL PROTECTED]
> Archives by mail and 
http://www.mail-archive.com/devinfo%40lists.e-smith.org



--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org




[e-smith-devinfo] Multiple Interfaces

2002-01-24 Thread Trevor Ouellette

I'm working on a package that would allow expansion for a 2nd External
interface or multiple IP's on one external interface.

Many enterprise-sized company require more than two interfaces for their
server.

I'm almost there... I just finished editing the firewall configuration
(MASQ) to pull the third IP and 3rd Interface from the main configuration
file.

Currently I can access the server via xx.xx.xxx.222 (eth1) and on
xx.xx.xxx.223.

Working services are:

SSH, FTP, HTTP Manager/HTTP (through SSH portforward), Mail, etc.

Services not working:

VPN (PPTP)


When connecting via VPN on the 3rd interface (or aliased external), I get
this message:

Error 751 - The remote computer refused the VPN connection.  Please try
again latter.  If the problem persists, check your with your network admin.

on the standard External IP, it connects fine.

This tells me that the firewall is GOOD... it hits the server.
However, the server will not allow it to connect (maybe because of the IP).

The only file I have found is:

/etc/ppp/ip-up.local  <- I have modified the template to pull the 3rd IP.


What am I missing?  What is preventing the server from allowing the VPN
connection?


Trev.


--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org




RE: [e-smith-devinfo] SquidGuard

2001-11-20 Thread Trevor Ouellette

Hi Filippo,

SquidGuard is stable for 4.1.2, however, it is not ready for SME5.  I really
don't have much time for upgrading it to SME5 in the near future, but I
would be happy to answer any questions if someone else wants to do it.

Trevor.

> -Original Message-
> From: Filippo Carletti [mailto:[EMAIL PROTECTED]]
> Sent: Tuesday, November 20, 2001 10:03 AM
> To: [EMAIL PROTECTED]
> Subject: [e-smith-devinfo] SquidGuard
>
>
> Is squidguard-21.tar.gz from Trevor Ouellette considered stable or is it
> beta and needs some more efforts to be usable ?
> What areas need to be addressed / improved ?
> Trevor, are you still following the list ?
>
> Ciao,
> Filippo
>
>
>
> --
> Please report bugs to [EMAIL PROTECTED]
> Please mail [EMAIL PROTECTED] (only) to discuss security issues
> Support for registered customers and partners to [EMAIL PROTECTED]
> To unsubscribe, e-mail: [EMAIL PROTECTED]
> For additional commands, e-mail: [EMAIL PROTECTED]
> Archives by mail and
> http://www.mail-archive.com/devinfo%40lists.e-smith.org
>
>


--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org




RE: [e-smith-devinfo] Re: Comments in generated config

2001-10-10 Thread Trevor Ouellette

I like the comments and I think it's a good idea to include them in the
output files.

Just a quick question.  What difference will it make to the server whether
or not comments are included?  With the speed and power of today's
computers, are we talking about a huge loss in speed due to extra code?

Or does it have nothing to do with processing the output files?  If you are
worried about people editing the files directly, then including the comments
helps them find the templates easier (and understand the SME system
better)... instead of "grepping" themselves in circles.

Just my 2cents.

Trev.

> -Original Message-
> From: Gordon Rowell [mailto:[EMAIL PROTECTED]]
> Sent: Wednesday, October 10, 2001 9:19 PM
> To: Darrell May
> Cc: e-smith-devinfo
> Subject: Re: [e-smith-devinfo] Re: Comments in generated config
>
>
> On Thu, Oct 11, 2001 at 02:11:31AM -, Darrell May
> <[EMAIL PROTECTED]> wrote:
> >
> > phm1a <[EMAIL PROTECTED]> said:
> >
> > > Hmmm.  Smart.  Simple.  Effective.  Sensible.
> > > Gotta be something wrong with it somewhere...
> > > ;>)
> >
> > Yup, just found it.  The Mitel gang doesn't agree :(
> >
> > Sorry for being nasty but I just had to ;->
>
> I think it was a bit unnecessary :-(
>
> There are lots of things we could put in, and you were saying it should
> be a standard. Charlie and I disagreed for various reasons. That's what
> discussion is about...isn't it?
>
> We strongly support proper documentation of the template fragments
> themselves, but want to keep the output files as small and clean as
> possible.
>
> Gordon
> --
>   Gordon Rowell[EMAIL PROTECTED]
>   VP Engineering
>   Network Server Solutions Group   http://www.e-smith.com
>   Mitel Networks Corporation   http://www.mitel.com
>
>
> --
> Please report bugs to [EMAIL PROTECTED]
> Please mail [EMAIL PROTECTED] (only) to discuss security issues
> Support for registered customers and partners to [EMAIL PROTECTED]
> To unsubscribe, e-mail: [EMAIL PROTECTED]
> For additional commands, e-mail: [EMAIL PROTECTED]
> Archives by mail and
> http://www.mail-archive.com/devinfo%40lists.e-smith.org
>
>


--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org




RE: [e-smith-devinfo] Wireless Options

2001-10-03 Thread Trevor Ouellette

Thanks Dan,

Well, I just got off the phone with technical support at Lucent/Agere.  We
confirmed that it is the Avaya/Lucent PCI adapter, so it should work.

I wonder if Gordon had to do anything to make his PCI bridge adapter work?
Or if he just plugged it in.

I'm going to keep looking around.  I wish I had ISA slots... :-)

Trev.

> -Original Message-
> From: Dan York [mailto:[EMAIL PROTECTED]]
> Sent: Wednesday, October 03, 2001 9:41 AM
> To: Trevor Ouellette
> Cc: E-Smith Developers Info Mailing List
> Subject: Re: [e-smith-devinfo] Wireless Options
>
>
> Trevor,
>
> > Thanks for the links.  Right now, I'm just trying to get the
> PCI Adapter to
> > be recognized (before working with the PCMCIA Card).
>
> Ahh, yes... the PCI Adapter.  I could not get it to work with my
> system and
> wound up returning it and getting the ISA adapter instead.
> Gordon did some
> subsequent research and found out that apparently the
> Avaya/Lucent PCI adapter
> will only work on systems that have *ONLY* PCI slots.  If there
> are any ISA
> slots in your system, the PCI adapter will not work.  (Or would not at the
> time Gordon did his research 6 or so months ago.)
>
> FYI, there was nothing I had to do to configure the ISA adapter.
> Just plugged
> it in and then plugged a PCMCIA card into it.  I was concerned that I was
> going to have to configure isapnp or some other Linux tool... but others
> have told me that it just basically works as a bridge to the
> PCMCIA card...
> I didn't have to do anything other than just plug it in.
>
> > If you are interested, I can write a howto for 4.1.2 and additional
> > instructions for SME5.
>
> That would be great. I had great intentions of writing up the work I did,
> but just have never found the time to do so.
>
> > If you can think of anything else (tips, tricks or notes),
> please send it my
> > way so that I can include them as well.
>
> I will. At some point *soon*, I want to get it working again at my
> house... I just haven't had the time to do so.
>
> Regards,
> Dan
>
> --
> Dan York, Director of Training[EMAIL PROTECTED]
> Ph: +1-613-751-4401 Cell: +1-613-263-4312 Fax: +1-613-564-7739
> Mitel Network Corporation Network Server Solutions Group
> 150 Metcalfe St., Suite 1500, Ottawa,ON K2P 1P1 Canada
> http://www.e-smith.com/http://www.mitel.com/
>
> --
> Please report bugs to [EMAIL PROTECTED]
> Please mail [EMAIL PROTECTED] (only) to discuss security issues
> Support for registered customers and partners to [EMAIL PROTECTED]
> To unsubscribe, e-mail: [EMAIL PROTECTED]
> For additional commands, e-mail: [EMAIL PROTECTED]
> Archives by mail and
> http://www.mail-archive.com/devinfo%40lists.e-smith.org
>
>


--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org




RE: [e-smith-devinfo] Wireless Options

2001-10-03 Thread Trevor Ouellette

Hi Dan,

Thanks for the links.  Right now, I'm just trying to get the PCI Adapter to
be recognized (before working with the PCMCIA Card).

If you are interested, I can write a howto for 4.1.2 and additional
instructions for SME5.

If you can think of anything else (tips, tricks or notes), please send it my
way so that I can include them as well.

Thanks!

Trev.

> -Original Message-
> From: Dan York [mailto:[EMAIL PROTECTED]]
> Sent: Wednesday, October 03, 2001 8:29 AM
> To: Trevor Ouellette
> Cc: E-Smith Developers Info Mailing List
> Subject: Re: [e-smith-devinfo] Wireless Options
>
>
> Trevor,
>
> > I am going to be putting a wiressless how-to together.  Does
> anybody have
> > any experience/information with using the Lucent WaveLan (Orinoco) Gold
> > cards that they could contribute.
>
> Both Gordon and I have successfully installed and set up the Orinoco Gold
> cards on our home e-smith 4.1.2 boxes (Gordon in Australia, I in Ottawa).
> I have now upgraded my home system to SME Server V5, but in doing so my
> drivers no longer work... it is most likely just an issue of the change
> to the 2.2.19 kernel.  I have not yet had the time to figure it out.
>
> I wrote up a bit about it here a few months ago:
>
>   http://www.mail-archive.com/devinfo@lists.e-smith.org/msg03754.html
>
> And Gordon gave some other details in a different thread:
>
>   http://www.mail-archive.com/devinfo@lists.e-smith.org/msg05196.html
>
> Regards,
> Dan
>
> --
> Dan York, Director of Training[EMAIL PROTECTED]
> Ph: +1-613-751-4401 Cell: +1-613-263-4312 Fax: +1-613-564-7739
> Mitel Network Corporation Network Server Solutions Group
> 150 Metcalfe St., Suite 1500, Ottawa,ON K2P 1P1 Canada
> http://www.e-smith.com/http://www.mitel.com/
>
> --
> Please report bugs to [EMAIL PROTECTED]
> Please mail [EMAIL PROTECTED] (only) to discuss security issues
> Support for registered customers and partners to [EMAIL PROTECTED]
> To unsubscribe, e-mail: [EMAIL PROTECTED]
> For additional commands, e-mail: [EMAIL PROTECTED]
> Archives by mail and
> http://www.mail-archive.com/devinfo%40lists.e-smith.org
>
>


--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org




[e-smith-devinfo] Wireless Options

2001-10-02 Thread Trevor Ouellette

I am going to be putting a wiressless how-to together.  Does anybody have
any experience/information with using the Lucent WaveLan (Orinoco) Gold
cards that they could contribute.

Thanks,

Trev.


--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org




[e-smith-devinfo] Defrag Utilities

2001-09-27 Thread Trevor Ouellette

Are there any defrag utilities for ESSG/RedHat 7?  Does fragmentation even
occur on ext2 systems, or is this unnecessary.

I can put something together, if anyone is interested.  Once every couple
months it automatically does a defragmentation on the drive.

Just an idea.  If anyone else is interested, let me know!

Thanks,

Trev.


--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org




RE: [e-smith-devinfo] SquidGuard Interface Ver2.1 is Available

2001-09-25 Thread Trevor Ouellette

Hi Darrell,

Thanks for the feedback.  I haven't had a chance to look at SME5 yet. :-)

I will be doing testing on SME5 with SquidGuard next week.

Trev.

> -Original Message-
> From: Darrell May [mailto:[EMAIL PROTECTED]]
> Sent: Tuesday, September 25, 2001 4:11 PM
> To: Trevor Ouellette; E-Smith Developers Info Mailing List
> Subject: Re: [e-smith-devinfo] SquidGuard Interface Ver2.1 is Available
> 
> 
> 
> Trevor Ouellette <[EMAIL PROTECTED]> said:
> 
> > Hi All,
> > 
> > Version 2.1 of the SquidGuard Interface is complete and ready for
> > download.
> 
> Hi Trevor.  Not reporting any problem :)  Just wondering if you have 
> tried this on SME5 yet or just 4.1.2?
> 
> Regards,
> 
> -- 
> Darrell May
> DMC NETSOURCED.COM
> http://netsourced.com
> http://myEZserver.com
> 
> 
> 

--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org




[e-smith-devinfo] SquidGuard Interface Ver2.1 is Available

2001-09-25 Thread Trevor Ouellette

Hi All,

Version 2.1 of the SquidGuard Interface is complete and ready for download.
This addresses the "proxy" issues in the new blacklist.

Note: You do not have to "uninstall" the old version of squidguard.  Just
follow these easy steps.


- Using a keyboard/monitor or via SSH, log in as root.  Alt-F2 changes to a
log in screen.
- mkdir /squidguard21
- cd /squidguard21
- wget -nv http://www.greencomputer.com/squidguard-21.tar
- tar -xf squidguard-21.tar
- ./create-squidguard


You can delete the /squidguard21 directory (rm -Rf /squidguard21) if you
wish.

Known bugs:

Unfortunately, there is a bug in the squidguard implementation that aborts
squidguard whenever settings in the console (not the manager)are changed.

There is a workaround:

--> log in as root and enter:
/usr/local/squidGuard/setacls


If anyone is having problems, I will do my very best to help you.  You may
post directly to me, unless you feel that your question may be relevant to
the development list.  I will always take time out of my busy day to help
you solve your squidguard problems.

Trev.


--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org




[e-smith-devinfo] SquidGuard Broken?

2001-09-25 Thread Trevor Ouellette

I have received a ton of e-mail from clients that use my squidguard
interface on their ES 4.1.2/Mitel SME5 boxes.  It appears that Pal updated
the blacklist to include a new entry called proxy.  The blacklist is not in
my control and I have no way of knowing what entries will be added and
deleted.

These changes will have to be reflected in my squidguard interface software.
(ACLS).  There will be a patch released today. See the log below:

2001-09-25 11:01:16 [1584] (squidGuard): ACL destination proxy is
> not defined in
> configfile /usr/local/squidGuard/squidGuard.conf

pass proxy trusted !aggressive !drugs !gambling !hacking !porn !
> untrusted

The proxy was not defined.


BTW, thanks to all for the complements on the squidguard software.  I didn't
realize that so many people and schools are using it for their content
filtering needs!  I'm just glad I could contribute back to the community.


Trev.


--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org




[e-smith-devinfo] cgi.pm missing?

2001-09-25 Thread Trevor Ouellette

Has anybody seen this error before.  I get it in the left hand side of the
screen in the manager (4.1.2).  There was a poweroutage and power was lost
to the computer the day before.

Software error:
Can't locate esmith/cgi.pm in @INC (@INC contains:
/usr/lib/perl5/5.6.0/i386-linux /usr/lib/perl5/5.6.0
/usr/lib/perl5/site_perl/5.6.0/i386-linux /usr/lib/perl5/site_perl/5.6.0
/usr/lib/perl5/site_perl) at
/etc/e-smith/web/panels/manager/common/navigation line 32.

For help, please send mail to the webmaster (admin@ mycompany . cxm ),
giving this error message and the time and date of the error. Content-type:
text/html

Software error:
[Tue Sep 25 10:35:26 2001] cgi.pm: Can't locate esmith/cgi.pm in @INC (@INC
contains: /usr/lib/perl5/5.6.0/i386-linux /usr/lib/perl5/5.6.0
/usr/lib/perl5/site_perl/5.6.0/i386-linux /usr/lib/perl5/site_perl/5.6.0
/usr/lib/perl5/site_perl) at
/etc/e-smith/web/panels/manager/common/navigation line 32. BEGIN
failed--compilation aborted at
/etc/e-smith/web/panels/manager/common/navigation line 32.

For help, please send mail to the webmaster (admin@ mycompany.cxm ), giving
this error message and the time and date of the error.


Thanks!

Trev.


--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org




[e-smith-devinfo] RE: Uninstall Squidguard

2001-09-25 Thread Trevor Ouellette

Jose,

Unfortunatly, there is a bug in the squidguard implementation that aborts
squidguard whenever settings in the console (not the manager) are changed.

There is a workaround for when you go through the admin console and
squidguard stops updating --> log in as root and enter:

/usr/local/squidGuard/setacls

I am going to be working with a group of school technology people who are
going to put together some e-smith 4.1.2/Mitel SME computers to do content
filtering (and comply with the federal CIPA) in school districts in
Illinois.  They reported that they were using regular computers running
e-smith 4.1.2 and using my squidguard interface with success.  However, SME5
breaks the interface.  I should have a squidguard update out soon!

Trev

> -Original Message-
> From: Darrell May [mailto:[EMAIL PROTECTED]]
> Sent: Monday, September 24, 2001 6:10 PM
> To: [EMAIL PROTECTED]
> Cc: Trevor Ouellette
> Subject: Re: Uninstall Squidguard
>
>
>
> jose velez <[EMAIL PROTECTED]> said:
>
> > I Installed Squidguard2 from GreenComputer following their instruction.
> > It has stop working.  I would like to uninstall it and install it again
> >
> > Can you help me with this
> >
> > Velez
>
> Certainly.  But first, have you asked Trevor at GreenComputer for his
> thoughts.  Maybe he has an answer or an updated release.
>
> Trevor any ideas?  Would you mind sending me your latest release of
> Squidguard so I can take a moment and figure this out.
>
> Regards,
>
> --
> Darrell May
> DMC NETSOURCED.COM
> http://netsourced.com
> http://myEZserver.com
>
>


--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org




RE: [e-smith-devinfo] Shutdown problems

2001-09-24 Thread Trevor Ouellette

Check in your BIOS to disable USB.  Try a different system board.  That
should do it.

Trev.

> -Original Message-
> From: Bas Konings [mailto:[EMAIL PROTECTED]]
> Sent: Monday, September 24, 2001 3:13 PM
> To: [EMAIL PROTECTED]
> Subject: [e-smith-devinfo] Shutdown problems
>
>
>
> I'm having a problem with shutdown, if I shutdown the system when its
> almost time for the PC to shutdown power (its an ATX system) I get an
> error filing the monitor, looks like a memory dump to me.  After that I
> press CTRL-ALT-DEL and the system reboots, by turning of power at this
> time the system doesn't have any damage.
>
> I've had these problems from the first time I installed e-smith (ver
> 4.1.2), SME 5 doesn't solve it.
>
> I've tried various things, the error even occurs on a freshly installed
> system that is NOT configured.
> I also changed the hardware a couple of times (even the powersuply to
> AT, the main board supports AT and ATX).
> Only things I didn't change is Main board, CPU and Harddrive.
>
> Any one have an id how to solve my problem?
> Its not really important, just irritates me.
>
>
> Could it be the onboard USB?
>
> How can i disable the USB device, at startup USB is started (USB-UHCI)
> But I don't want that, I don't need it.
>
> Greetz,
>
> Bas Konings
>
>
> --
> Please report bugs to [EMAIL PROTECTED]
> Please mail [EMAIL PROTECTED] (only) to discuss security issues
> Support for registered customers and partners to [EMAIL PROTECTED]
> To unsubscribe, e-mail: [EMAIL PROTECTED]
> For additional commands, e-mail: [EMAIL PROTECTED]
> Archives by mail and
> http://www.mail-archive.com/devinfo%40lists.e-smith.org
>
>


--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org




RE: [e-smith-devinfo] RAID 1

2001-09-14 Thread Trevor Ouellette

I will try it out this weekend.

Trev.

> -Original Message-
> From: Darrell May [mailto:[EMAIL PROTECTED]]
> Sent: Thursday, September 13, 2001 6:30 PM
> To: [EMAIL PROTECTED]; [EMAIL PROTECTED]
> Subject: Re: [e-smith-devinfo] RAID 1
>
>
>
> [EMAIL PROTECTED] said:
>
> > In case of a drive failure in e-smith software raid 1 what would be the
> > procedure to restore the system back to normal.  Anybody has a How to?
>
> Found this document:
>
> http://www.linuxdoc.org/HOWTO/Software-RAID-HOWTO.html
>
> Which states in Chapter 6:
> --
> - Power down the system
> - Replace the failed disk
> - Power up the system once again.
> - Use raidhotadd /dev/mdX /dev/sdX to re-insert the disk in the array
>
> Have coffee while you watch the automatic reconstruction running and
> that's it.
> --
>
> I believe /proc/mdstat may show the activity.  I've not tried this
> myself.  If anyone has a test system, using software RAID ready to go,
> how about giving this a try and reporting back your results :)
>
> Regards,
>
> --
> Darrell May
> DMC NETSOURCED.COM
> http://netsourced.com
>
> --
> Please report bugs to [EMAIL PROTECTED]
> Please mail [EMAIL PROTECTED] (only) to discuss security issues
> Support for registered customers and partners to [EMAIL PROTECTED]
> To unsubscribe, e-mail: [EMAIL PROTECTED]
> For additional commands, e-mail: [EMAIL PROTECTED]
> Archives by mail and
http://www.mail-archive.com/devinfo%40lists.e-smith.org



--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org




RE: [e-smith-devinfo] E-Smith + 2.4 + XFS = aXon

2001-09-10 Thread Trevor Ouellette

Squidguard for 4.1.2 is available freely to YOUR customers... updated
vacation-how-to was published for the benefit of YOUR customers... what else
do you want from me, Gordon?

I try to help other people on the devlist as best as I can.  I'm not the
best programmer but I do my best.  That's my contribution.  Sorry if it's
not enough for you guys at Mitel.  :-(

Trev.


> -Original Message-
> From: Gordon Rowell [mailto:[EMAIL PROTECTED]]
> Sent: Monday, September 10, 2001 11:03 PM
> To: Trevor Ouellette
> Cc: [EMAIL PROTECTED]
> Subject: Re: [e-smith-devinfo] E-Smith + 2.4 + XFS = aXon
>
>
> On Mon, Sep 10, 2001 at 09:05:13PM -0600, Trevor Ouellette
> <[EMAIL PROTECTED]> wrote:
> > Agreed.  There has been a lot of development in E-Smith and forking was
> > bound to happen eventually.
>
> We are certainly looking forward to the public release of the source
> code for your server.
>
> Thanks,
>
> Gordon
> --
>   Gordon Rowell[EMAIL PROTECTED]
>   VP Engineering
>   Network Server Solutions Group   http://www.e-smith.com
>   Mitel Networks Corporation   http://www.mitel.com
>
>


--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org




RE: [e-smith-devinfo] E-Smith + 2.4 + XFS = aXon

2001-09-10 Thread Trevor Ouellette

Agreed.  There has been a lot of development in E-Smith and forking was
bound to happen eventually.

Trev.

> -Original Message-
> From: Darrell May [mailto:[EMAIL PROTECTED]]
> Sent: Monday, September 10, 2001 6:33 PM
> To: Barrett Gay; [EMAIL PROTECTED]
> Subject: Re: [e-smith-devinfo] E-Smith + 2.4 + XFS = aXon
>
>
>
> I believe some healthy open-source competition will benefit everyone.  As
> a member of the development community I think I can make room to offer my
> support to both Mitel and aXon.
>
> I applaud the bold move the team behind aXon has taken and wish aXon
> Linux all the best!
>
> Regards,
>
> --
> Darrell May
> DMC NETSOURCED.COM
> http://netsourced.com
>
>
>
> --
> Please report bugs to [EMAIL PROTECTED]
> Please mail [EMAIL PROTECTED] (only) to discuss security issues
> Support for registered customers and partners to [EMAIL PROTECTED]
> To unsubscribe, e-mail: [EMAIL PROTECTED]
> For additional commands, e-mail: [EMAIL PROTECTED]
> Archives by mail and
> http://www.mail-archive.com/devinfo%40lists.e-smith.org
>
>


--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org




RE: [e-smith-devinfo] e-smith-userpanel / e-smith-vacation

2001-09-04 Thread Trevor Ouellette

I guess my vacation how-to is obsolete.   Good show Daniel, I will be
trying your new RPM out this week!

Trev.

> -Original Message-
> From: Daniel van Raay [mailto:[EMAIL PROTECTED]]
> Sent: Tuesday, September 04, 2001 8:04 PM
> To: Trevor Ouellette
> Cc: [EMAIL PROTECTED]
> Subject: RE: [e-smith-devinfo] e-smith-userpanel / e-smith-vacation
>
>
> On 4 Sep 2001, Trevor Ouellette wrote:
>
> > Hey that's great Daniel.  I was just wondering if vacation works with
> > virtual domains?
>
> Yes it should.  I've included the -j switch in the call to the vacation
> auto reply program so it will respond to messages that aren't
> addressed directly to you.  This means that it will respond to
> messages that arrive in your inbox via aliases or any virtual domain.
>
> > Any ideas where I could find that information?
>
> You just have :-)
>
> Cheers,
> Daniel van Raay
>
>


--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org




RE: [e-smith-devinfo] E-smith monitor suggestions

2001-09-04 Thread Trevor Ouellette

Maybe we could start with software RAID status monitoring?  It's pretty well
WORKING or NOT_WORKING status.

Trev.

> -Original Message-
> From: Smith, Jeffery S (Scott) [mailto:[EMAIL PROTECTED]]
> Sent: Tuesday, September 04, 2001 12:06 PM
> To: 'Jeff Martin'; [EMAIL PROTECTED]
> Subject: RE: [e-smith-devinfo] E-smith monitor suggestions
>
>
> > -Original Message-
> > From: Jeff Martin [mailto:[EMAIL PROTECTED]]
> > Sent: Tuesday, September 04, 2001 1:38 PM
> > Subject: Re: [e-smith-devinfo] E-smith monitor suggestions
> >
> >
> > Not sure if it's possible but it would be nice to have some
> > kind of alert
> > sent via email if problems were found.
>
>
> Sending the email is the easy part. The problem with this type of thing is
> defining what exactly a "problem" is. For example, on systems with very
> small drives, free space below 20% is a problem. For others it is not a
> problem until you hit 5%. Other folks prefer to set those levels as actual
> free space rather than percentages. And so on. Then there is the issue of
> "warning" vs "alert" messages, or "code yellow" vs "code red" problems, or
> other severity mapping schemes. There is even the issue of what
> to call them
> -- Warning/Alert, Code Green/Yellow/Red, Level 1/2/3, Low/Med/High, etc.
>
> These issues can be solved by allowing user specified trigger
> levels for one
> or multiple severity levels, plus the appropriate labeling and message
> content, etc. But then you have the problem of maintaining the
> configuration
> for the alert system. Sometimes the configuration management for an
> application can be a larger task than the application itself!
>
> I'm not saying it can't be done or wouldn't be valuable if it were done --
> I'm only cautioning that the number of options are many and depending upon
> how many are pursued the task may not be simple at all.
>
> Scott
>
> --
> Please report bugs to [EMAIL PROTECTED]
> Please mail [EMAIL PROTECTED] (only) to discuss security issues
> Support for registered customers and partners to [EMAIL PROTECTED]
> To unsubscribe, e-mail: [EMAIL PROTECTED]
> For additional commands, e-mail: [EMAIL PROTECTED]
> Archives by mail and
http://www.mail-archive.com/devinfo%40lists.e-smith.org



--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org




RE: [e-smith-devinfo] DHCP Server Problem??

2001-09-04 Thread Trevor Ouellette

Thanks for all the suggestions.  I just got a private email from
E-Smith/Mitel about DHCP. And I feel that the devlist is NOT the place for
posting my DHCP server problems.

Apologies all around.

Trev.

> -Original Message-
> From: Smith, Jeffery S (Scott) [mailto:[EMAIL PROTECTED]]
> Sent: Tuesday, September 04, 2001 11:09 AM
> To: '[EMAIL PROTECTED]'; E-Smith Devinfo
> Subject: RE: [e-smith-devinfo] DHCP Server Problem??
>
>
> > -Original Message-
> > From: Darrell May [mailto:[EMAIL PROTECTED]]
> > Sent: Tuesday, September 04, 2001 12:45 PM
> > Subject: RE: [e-smith-devinfo] DHCP Server Problem??
> >
> >
> [snip]
> > e-smith 4.12 uses:
> >
> > Server = dhcp-2.0-12.i386.rpm
> > Client = dhcpcd-1.3.18pl8-6.i386.rpm
> >
> [snip]
> >
> > I see the latest release available for both client/server is
> > 3.0rc12.
> > After appropriate testing in a non-production environment to
> > make sure it
> > works with e-smith, maybe an upgrade is in order?
>
> This, along with an update to bind-9.x, would also solve my DHCP/DNS issue
> of the client-hostname from DHCP not being registered with DNS. I know
> e-smith are looking at djbdns for future releases, but as bind9
> is supposed
> to be a drop-in replacement for bind8, maybe it is worth looking
> at updating
> both.
>
> Scott
>
> --
> Please report bugs to [EMAIL PROTECTED]
> Please mail [EMAIL PROTECTED] (only) to discuss security issues
> Support for registered customers and partners to [EMAIL PROTECTED]
> To unsubscribe, e-mail: [EMAIL PROTECTED]
> For additional commands, e-mail: [EMAIL PROTECTED]
> Archives by mail and
> http://www.mail-archive.com/devinfo%40lists.e-smith.org
>
>


--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org




RE: [e-smith-devinfo] DHCP Server Problem??

2001-09-04 Thread Trevor Ouellette

Yes, I really would like to know what's going on... I'm replacing the server
to see if anything changes.

Trev.

> -Original Message-
> From: Darrell May [mailto:[EMAIL PROTECTED]]
> Sent: Tuesday, September 04, 2001 10:45 AM
> To: Trevor Ouellette; E-Smith Devinfo
> Subject: RE: [e-smith-devinfo] DHCP Server Problem??
>
>
>
> Trevor Ouellette <[EMAIL PROTECTED]> said:
>
> > What files are required to reinstall the DHCP server?
>
> e-smith 4.12 uses:
>
> Server = dhcp-2.0-12.i386.rpm
> Client = dhcpcd-1.3.18pl8-6.i386.rpm
>
> > Is this recommended?
>
> Don't know?  Would be nice to solve why it is failing for you.
>
> I see the latest release available for both client/server is 3.0rc12.
> After appropriate testing in a non-production environment to make sure it
> works with e-smith, maybe an upgrade is in order?
>
> --
> Darrell May
> DMC NETSOURCED.COM
> http://netsourced.com
>
>
>


--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org




RE: [e-smith-devinfo] DHCP Server Problem??

2001-09-04 Thread Trevor Ouellette

Sorry to re-hash this everyone, but we just lost another workstation (that
makes 3 so far).  They just can't get an IP address from the DHCP server.

What files are required to reinstall the DHCP server?  Is this recommended?

Trev.

> -Original Message-
> From: John Powell [mailto:[EMAIL PROTECTED]]
> Sent: Thursday, August 30, 2001 10:14 AM
> To: Trevor Ouellette; Graeme Robinson; John Powell
> Cc: E-Smith Devinfo
> Subject: RE: [e-smith-devinfo] DHCP Server Problem??
>
>
>
> > So, could the problem be with the DHCPD server?  DHCP was working for a
> > few months without any problems, now it stops recognizing "NEW" machines
> > introduced to the system.
>
> I doubt it, but would rule nothing out.  Going by your logs, the
> client is
> the one "dropping the ball".  To make it clearer, the normal init
> sequence
> looks like this:
>
> C: DHCPDISCOVER (client asking for IP)
> S: DHCPOFFER (server dishing out an IP)
> C: DHCPREQUEST (client accepting the offerred IP)
> S: DHCPACK (server finalizing the process)
>
> >From your logs, the process gets through to the OFFER, which means it
> "recognizes" the client and is offering an IP.  The client is not
> accepting
> it for some reason, not even NAKing it, which suggests either the client
> doesn't see the response, or is choking on it for some reason.
> It does not
> sound like a server problem.  Even if the server is offering up junk, the
> client should NAK it.
>
> > For one client computer... it worked the day before, the next
> day (poof),
> > no IP address designation... strange.
>
> That is, indeed, strange.  Is it possible to get a sniffer like trace of
> this in action?  Ethereal is a fine choice, or any other product with a
> decent decoded output.
>
> You might also want to check out www.isc.com (makers of the DHCP
> server in
> e-smith) or a google search and see if they have some hints on known
> problems with Wintel clients.  I don't know of any (ISC's server is
> generally solid as a rock).
>
> JP
>
>


--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org




RE: [e-smith-devinfo] e-smith-userpanel / e-smith-vacation

2001-09-04 Thread Trevor Ouellette

Hey that's great Daniel.  I was just wondering if vacation works with
virtual domains?

Any ideas where I could find that information?

Trev.

> -Original Message-
> From: Daniel van Raay [mailto:[EMAIL PROTECTED]]
> Sent: Tuesday, September 04, 2001 1:19 AM
> To: [EMAIL PROTECTED]
> Subject: [e-smith-devinfo] e-smith-userpanel / e-smith-vacation
>
>
> Hi devinfo-ers,
>
> I've written an e-smith module that I hope will save some time for
> some of the sysadmins out there.  This RPM...
>
> ftp://ftp.e-smith.org/pub/e-smith/contrib/DanielvanRaay/RPMS/noarc
h/e-smith-userpanel-0.1-1.noarch.rpm

...allows users to authenticate with their own username and
password at http://servername/e-smith-user/ and change their own
email forwarding.

If you also install these two...

ftp://ftp.e-smith.org/pub/e-smith/contrib/DanielvanRaay/RPMS/noarch/e-smith-
vacation-0.2-1.noarch.rpm
(now updated to work on e-smith 4.1.x)
and
ftp://ftp.e-smith.org/pub/e-smith/contrib/DanielvanRaay/RPMS/noarch/e-smith-
userpanel-vacation-0.1-1.noarch.rpm

...users will also be able to set their own vacation messages from
the same location.

Again, any comments are welcomed.

Daniel van Raay


--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org



--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org




RE: [e-smith-devinfo] DHCP Server Problem??

2001-08-30 Thread Trevor Ouellette

http://www.isc.org/ml-archives/dhcp-server/1999/07/msg00412.html
http://www.isc.org/ml-archives/dhcp-server/1999/07/msg00422.html

This is from the isc.org list and they are having a similar problem.

-Original Message-
From: John Powell [mailto:[EMAIL PROTECTED]]
Sent: Thursday, August 30, 2001 10:14 AM
To: Trevor Ouellette; Graeme Robinson; John Powell
Cc: E-Smith Devinfo
Subject: RE: [e-smith-devinfo] DHCP Server Problem??



> So, could the problem be with the DHCPD server?  DHCP was working for a
> few months without any problems, now it stops recognizing "NEW" machines
> introduced to the system.

I doubt it, but would rule nothing out.  Going by your logs, the client is
the one "dropping the ball".  To make it clearer, the normal init sequence
looks like this:

C: DHCPDISCOVER (client asking for IP)
S: DHCPOFFER (server dishing out an IP)
C: DHCPREQUEST (client accepting the offerred IP)
S: DHCPACK (server finalizing the process)

>From your logs, the process gets through to the OFFER, which means it
"recognizes" the client and is offering an IP.  The client is not accepting
it for some reason, not even NAKing it, which suggests either the client
doesn't see the response, or is choking on it for some reason.  It does not
sound like a server problem.  Even if the server is offering up junk, the
client should NAK it.

> For one client computer... it worked the day before, the next day (poof),
> no IP address designation... strange.

That is, indeed, strange.  Is it possible to get a sniffer like trace of
this in action?  Ethereal is a fine choice, or any other product with a
decent decoded output.

You might also want to check out www.isc.com (makers of the DHCP server in
e-smith) or a google search and see if they have some hints on known
problems with Wintel clients.  I don't know of any (ISC's server is
generally solid as a rock).

JP


--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org



--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org




RE: [e-smith-devinfo] DHCP Server Problem??

2001-08-30 Thread Trevor Ouellette

Thanks Darrell,

Regarding your question,

1. The Windows 98 machine had a DHCP address and was working perfectly for a
month.  The next day, it's not resolving DHCP.  It can communicate fine on
the network with one other machine, so it's not physical.

2. The Windows ME machine just had it's hard drive replaced due to a
crash... guess what, no DHCP IP address.  That's why I'm starting to
wonder...

I will give your suggestions a try today, Darrell.

Trev.

-Original Message-
From: Darrell May [mailto:[EMAIL PROTECTED]]
Sent: Thursday, August 30, 2001 9:22 AM
To: Trevor Ouellette; E-Smith Devinfo
Subject: RE: [e-smith-devinfo] DHCP Server Problem??



Trevor Ouellette <[EMAIL PROTECTED]> said:

> Just for the record, one is a Windows ME system and the other is a
> Windows 98 computer.
>
> Trev.

Hi Trevor, I have one question to ask.  Did these two workstations ever
have a manually set IP address in operation?  If they did then my guess
is there are some lingering registry entries that are screwing things up
for you.


--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org




RE: [e-smith-devinfo] DHCP Server Problem??

2001-08-30 Thread Trevor Ouellette

Just for the record, one is a Windows ME system and the other is a Windows
98 computer.

Trev.

-Original Message-
From: John Powell [mailto:[EMAIL PROTECTED]]
Sent: Thursday, August 30, 2001 2:01 AM
To: Trevor Ouellette; E-Smith Devinfo
Subject: Re: [e-smith-devinfo] DHCP Server Problem??


Trevor,

Is there something different about the 2 new machines (not a common OS,
etc.)?

I can tell you this, the "broken" clients are not "seeing" the responses
from the server.  the DHCPOFFER is the server responding, the client is
supposed to accept the offer (and generate a DHCPREQUEST) or reject the
offer (DHCPNAK), but obviously is not.

The issue is likely to be with how the DHCPOFFER is addressed.  Some
servers broadcast the DHCPOFFER, some unicast it to the mac address of the
requester.  I believe the ISC server is a bit unique and broadcasts it (may
be the other way around, I would need to sniff a connection to figure that
out).  I would need to read the RFC for the specifics, but I believe a
client is supposed to accept either method, and it is likely your problem
is your clients on the 2 broken machines are not accepting the method ISC



--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org




RE: [e-smith-devinfo] DHCP Server Problem??

2001-08-30 Thread Trevor Ouellette

Hi Graeme,

So, could the problem be with the DHCPD server?  DHCP was working for a few
months without any problems, now it stops recognizing "NEW" machines
introduced to the system.

The reason I'm bringing this up here, is to just see if this is isolated or
if there may be a real issue to look at.

For one client computer... it worked the day before, the next day (poof), no
IP address designation... strange.

Trev.

-Original Message-
From: Graeme Robinson [mailto:[EMAIL PROTECTED]]
Sent: Thursday, August 30, 2001 3:33 AM
To: John Powell; Trevor Ouellette; E-Smith Devinfo
Subject: Re: [e-smith-devinfo] DHCP Server Problem??

doesn't seem wishy washy to me John.  I've experienced similar problems
with some ageing powermacs on a 4.1.2 network.




--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org




RE: [e-smith-devinfo] DHCP Server Problem??

2001-08-30 Thread Trevor Ouellette

Hi John,

Your answer was not wishy-washy at all.  Thanks for your input.

One client was a computer brought in from another office.  The other client
computer is an older computer that just had it's hard drive replaced...
that's when it couldn't get an IP address.

I've double and triplechecked the settings and I just can't figure it out.

We have even tried different cables (from a known-good workstation cable).
Does anyone know how to uninstall and reinstall the DHCPD component?  I've
upgraded the server, to no avail.

Thanks,

Trev.

-Original Message-
From: John Powell [mailto:[EMAIL PROTECTED]]
Sent: Thursday, August 30, 2001 2:01 AM
To: Trevor Ouellette; E-Smith Devinfo
Subject: Re: [e-smith-devinfo] DHCP Server Problem??


Trevor,

Is there something different about the 2 new machines (not a common OS,
etc.)?

I can tell you this, the "broken" clients are not "seeing" the responses
from the server.  the DHCPOFFER is the server responding, the client is
supposed to accept the offer (and generate a DHCPREQUEST) or reject the
offer (DHCPNAK), but obviously is not.

The issue is likely to be with how the DHCPOFFER is addressed.  Some
servers broadcast the DHCPOFFER, some unicast it to the mac address of the
requester.  I believe the ISC server is a bit unique and broadcasts it (may
be the other way around, I would need to sniff a connection to figure that
out).  I would need to read the RFC for the specifics, but I believe a
client is supposed to accept either method, and it is likely your problem
is your clients on the 2 broken machines are not accepting the method ISC
uses.

The simplest fix, of course, is to assign static IPs.  The more complex is
to see if there is updated DHCP software for your client.

Sorry for the wishy-washy answer, but I am 99% sure your issue lies in this
area (broadcast vs. unicast of the DHCPOFFER) and this might help you get
pointed in the right direction.

Hope this helps,

JP

--On Wednesday, August 29, 2001 7:48 PM -0600 Trevor Ouellette
<[EMAIL PROTECTED]> wrote:

> I have a problem with 2 computers that have been introduced to the LAN.
> The ES server does not provide them with an IP address.  It's not a
> physical network problem (they can see each other and was tested with
> working network cable, etc.).
>
> Here's the strange part... they request an IP address, but never receive
> one from the ES server.  It even shows up in the logs.
>
> When I cd /etc/dhcpcd, I get a blinking dhcpc file.  Is this normal?
> Could the DHCP Daemon have something to do with the problem?  If you
> would like more logs, printouts, etc. please just ask...
>
> When I do a /etc/rc.d/init.d/dhcpd restart I get:
>
> /etc/rc.d/init.d/dhcpd restart
> Shutting down dhcpd:   [   OK   ]
> Starting dhcpd: SIOCADDRT: File exists
>[   OK   ]
>
> Below is a SNIP from my log on a server that updates properly:
>
> Aug 29 13:36:59 normal dhcpd: DHCPDISCOVER from 00:00:b4:be:ee:c6 via eth0
> Aug 29 13:37:00 normal dhcpd: DHCPOFFER on 192.168.1.65 to
> 00:00:b4:be:ee:c6 via eth0
> Aug 29 13:37:00 normal dhcpd: DHCPREQUEST for 192.168.1.65 from
> 00:00:b4:be:ee:c6 via eth0
> Aug 29 13:37:00 normal dhcpd: DHCPACK on 192.168.1.65 to 00:00:b4:be:ee:c6
> via eth0
>
>
>
> This is from the server that isn't providing proper DHCP IP addresses:
>
> Aug 29 19:32:34 broken dhcpd: DHCPDISCOVER from 00:40:d0:0a:ee:11 via eth0
> Aug 29 19:32:35 broken dhcpd: DHCPOFFER on 192.168.1.104 to
> 00:40:d0:0a:ee:11
> via eth0
> Aug 29 19:32:40 broken dhcpd: DHCPDISCOVER from 00:40:d0:0a:ee:11 via eth0
> Aug 29 19:32:40 broken dhcpd: DHCPOFFER on 192.168.1.104 to
> 00:40:d0:0a:ee:11
> via eth0
> Aug 29 19:32:46 broken dhcpd: DHCPDISCOVER from 00:40:d0:0a:ee:11 via eth0
> Aug 29 19:32:46 broken dhcpd: DHCPOFFER on 192.168.1.104 to
> 00:40:d0:0a:ee:11
> via eth0
> Aug 29 19:32:52 broken dhcpd: DHCPDISCOVER from 00:40:d0:0a:ee:11 via eth0
> Aug 29 19:32:52 broken dhcpd: DHCPOFFER on 192.168.1.104 to
> 00:40:d0:0a:ee:11
> via eth0
>
> Notice how they never get the DHCPREQUEST and DHCPACK for the addresses?
>
> Trev.
>
>
> --
> Please report bugs to [EMAIL PROTECTED]
> Please mail [EMAIL PROTECTED] (only) to discuss security issues
> Support for registered customers and partners to [EMAIL PROTECTED]
> To unsubscribe, e-mail: [EMAIL PROTECTED]
> For additional commands, e-mail: [EMAIL PROTECTED]
> Archives by mail and
> http://www.mail-archive.com/devinfo%40lists.e-smith.org
>
>






--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org




[e-smith-devinfo] DHCP Server Problem??

2001-08-29 Thread Trevor Ouellette

I have a problem with 2 computers that have been introduced to the LAN.  The
ES server does not provide them with an IP address.  It's not a physical
network problem (they can see each other and was tested with working network
cable, etc.).

Here's the strange part... they request an IP address, but never receive one
from the ES server.  It even shows up in the logs.

When I cd /etc/dhcpcd, I get a blinking dhcpc file.  Is this normal?  Could
the DHCP Daemon have something to do with the problem?  If you would like
more logs, printouts, etc. please just ask...

When I do a /etc/rc.d/init.d/dhcpd restart I get:

/etc/rc.d/init.d/dhcpd restart
Shutting down dhcpd:   [   OK   ]
Starting dhcpd: SIOCADDRT: File exists
   [   OK   ]

Below is a SNIP from my log on a server that updates properly:

Aug 29 13:36:59 normal dhcpd: DHCPDISCOVER from 00:00:b4:be:ee:c6 via eth0
Aug 29 13:37:00 normal dhcpd: DHCPOFFER on 192.168.1.65 to 00:00:b4:be:ee:c6
via eth0
Aug 29 13:37:00 normal dhcpd: DHCPREQUEST for 192.168.1.65 from
00:00:b4:be:ee:c6 via eth0
Aug 29 13:37:00 normal dhcpd: DHCPACK on 192.168.1.65 to 00:00:b4:be:ee:c6
via eth0



This is from the server that isn't providing proper DHCP IP addresses:

Aug 29 19:32:34 broken dhcpd: DHCPDISCOVER from 00:40:d0:0a:ee:11 via eth0
Aug 29 19:32:35 broken dhcpd: DHCPOFFER on 192.168.1.104 to
00:40:d0:0a:ee:11
via eth0
Aug 29 19:32:40 broken dhcpd: DHCPDISCOVER from 00:40:d0:0a:ee:11 via eth0
Aug 29 19:32:40 broken dhcpd: DHCPOFFER on 192.168.1.104 to
00:40:d0:0a:ee:11
via eth0
Aug 29 19:32:46 broken dhcpd: DHCPDISCOVER from 00:40:d0:0a:ee:11 via eth0
Aug 29 19:32:46 broken dhcpd: DHCPOFFER on 192.168.1.104 to
00:40:d0:0a:ee:11
via eth0
Aug 29 19:32:52 broken dhcpd: DHCPDISCOVER from 00:40:d0:0a:ee:11 via eth0
Aug 29 19:32:52 broken dhcpd: DHCPOFFER on 192.168.1.104 to
00:40:d0:0a:ee:11
via eth0

Notice how they never get the DHCPREQUEST and DHCPACK for the addresses?

Trev.


--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org




RE: [e-smith-devinfo] Bandwidth Throttling

2001-08-28 Thread Trevor Ouellette

Justin,

Here is a bandwidth mod that you can use with Apache.  Does anyone know if
it is included with the current Apache.

http://www.snert.com/Software/Throttle/
http://rpmfind.udoj.org/redhat/7.0/updates/i386/apache-1.3.14-3.i386.html

Trev.

-Original Message-
From: Justin Funke [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, August 28, 2001 9:34 AM
To: '[EMAIL PROTECTED]'
Subject: [e-smith-devinfo] Bandwidth Throttling


Has anyone seen a package or can conceive of a way to throttle bandwidth in
a hosting scenario using the Virtual domain as the argument?

ie.

primary domain - 20%
virutaldomain1 - 10%
virtualdomain2 - 5%

etc.

Thanks,

Justin



--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org



--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org




RE: [e-smith-devinfo] MyPHPNuke Errors

2001-08-24 Thread Trevor Ouellette

I got it.  If you look closer at Line 85 in the php script, removing that
information from the "footers" fixes the problem (from the Preferences in
MyPHPNuke)

Trev.

-Original Message-----
From: Trevor Ouellette [mailto:[EMAIL PROTECTED]]
Sent: Friday, August 24, 2001 1:32 PM
To: E-Smith Developers Info Mailing List
Subject: [e-smith-devinfo] MyPHPNuke Errors




[ERROR MESSAGE]
Parse error: parse error in
/opt/groupware/myphpnuke/html/admin/original/config.php on line 85
Unable to select database

[BEFORE]
-rwxr-x---1 www  www 12980 Aug 24  2001 config.php
-rwxr-x---1 www  www 0 Aug 24  2001 index.html
-rwxr-x---1 www  www   227 Aug 24  2001 item.php
-rwxr-x---1 www  www 57072 Aug 24  2001 main.php
-rwxr-x---1 www  www  1261 Aug 24  2001 phpnuke.gif
-rwxr-x---1 www  www  4155 Aug 24  2001 phpnuke.jpg
-rwxr-x---1 www  www  5252 Aug 24  2001 tools.php


[AFTER]
-rwxr-x---1 www  www 12967 Aug 24 09:28 config.php
-rwxr-x---1 www  www 0 Aug 24  2001 index.html
-rwxr-x---1 www  www   227 Aug 24  2001 item.php
-rwxr-x---1 www  www 57072 Aug 24  2001 main.php
-rwxr-x---1 www  www  1261 Aug 24  2001 phpnuke.gif
-rwxr-x---1 www  www  4155 Aug 24  2001 phpnuke.jpg
-rwxr-x---1 www  www  5252 Aug 24  2001 tools.php


--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org



--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org




[e-smith-devinfo] MyPHPNuke Errors

2001-08-24 Thread Trevor Ouellette



[ERROR MESSAGE]
Parse error: parse error in
/opt/groupware/myphpnuke/html/admin/original/config.php on line 85
Unable to select database

[BEFORE]
-rwxr-x---1 www  www 12980 Aug 24  2001 config.php
-rwxr-x---1 www  www 0 Aug 24  2001 index.html
-rwxr-x---1 www  www   227 Aug 24  2001 item.php
-rwxr-x---1 www  www 57072 Aug 24  2001 main.php
-rwxr-x---1 www  www  1261 Aug 24  2001 phpnuke.gif
-rwxr-x---1 www  www  4155 Aug 24  2001 phpnuke.jpg
-rwxr-x---1 www  www  5252 Aug 24  2001 tools.php


[AFTER]
-rwxr-x---1 www  www 12967 Aug 24 09:28 config.php
-rwxr-x---1 www  www 0 Aug 24  2001 index.html
-rwxr-x---1 www  www   227 Aug 24  2001 item.php
-rwxr-x---1 www  www 57072 Aug 24  2001 main.php
-rwxr-x---1 www  www  1261 Aug 24  2001 phpnuke.gif
-rwxr-x---1 www  www  4155 Aug 24  2001 phpnuke.jpg
-rwxr-x---1 www  www  5252 Aug 24  2001 tools.php


--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org




RE: [e-smith-devinfo] [DRAFT] myphpnuke rpm config error messages

2001-08-24 Thread Trevor Ouellette

webmail still works though, so it's myphpnuke.

reinstalling fixes the problem.  It happens when I try and save this page:

http://192.168.1.1/mpn/admin.php?op=Configure

After that I get the error message.  And when I try accessing myPHPNuke home
page I get this error:

"Unable to select database"


Trev.

-Original Message-----
From: Trevor Ouellette [mailto:[EMAIL PROTECTED]]
Sent: Friday, August 24, 2001 12:48 PM
To: [EMAIL PROTECTED]; e-smith-devinfo
Subject: RE: [e-smith-devinfo] [DRAFT] myphpnuke rpm ready for download


My SQL totally shutdown... I'm going to uninstall/reinstall the rpm and see
if that works...

really, I didn't do anything to kill it :-)

Trev.

-Original Message-----
From: Trevor Ouellette [mailto:[EMAIL PROTECTED]]
Sent: Friday, August 24, 2001 12:18 PM
To: [EMAIL PROTECTED]; e-smith-devinfo
Subject: RE: [e-smith-devinfo] [DRAFT] myphpnuke rpm ready for download


I'm getting a permissions error.  We might have to set a few permissions in
the RPM.

When I click save to update my configuration this is the message I get:

Parse error: parse error in
/opt/groupware/myphpnuke/html/admin/original/config.php on line 85
Unable to select database


It doesn't look serious.

Trev.
ps. Didn't mean to post with my gc support account last time.


-Original Message-
From: Darrell May [mailto:[EMAIL PROTECTED]]
Sent: Friday, August 24, 2001 11:57 AM
To: e-smith-devinfo
Subject: Re: [e-smith-devinfo] [DRAFT] myphpnuke rpm ready for download



Darrell May <[EMAIL PROTECTED]> said:

> Install with:
>
> rpm -ivh e-smith-gw-myphpnuke-1.8.7-1.noarch.rpm

Typo :(  You may notice the install should be:

rpm -ivh e-smith-gw-myphpnuke-1.8.7-0.noarch.rpm

--
Darrell May
DMC NETSOURCED.COM
http://netsourced.com



--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org



--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org



--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org



--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org




RE: [e-smith-devinfo] [DRAFT] myphpnuke rpm ready for download

2001-08-24 Thread Trevor Ouellette

My SQL totally shutdown... I'm going to uninstall/reinstall the rpm and see
if that works...

really, I didn't do anything to kill it :-)

Trev.

-Original Message-----
From: Trevor Ouellette [mailto:[EMAIL PROTECTED]]
Sent: Friday, August 24, 2001 12:18 PM
To: [EMAIL PROTECTED]; e-smith-devinfo
Subject: RE: [e-smith-devinfo] [DRAFT] myphpnuke rpm ready for download


I'm getting a permissions error.  We might have to set a few permissions in
the RPM.

When I click save to update my configuration this is the message I get:

Parse error: parse error in
/opt/groupware/myphpnuke/html/admin/original/config.php on line 85
Unable to select database


It doesn't look serious.

Trev.
ps. Didn't mean to post with my gc support account last time.


-Original Message-
From: Darrell May [mailto:[EMAIL PROTECTED]]
Sent: Friday, August 24, 2001 11:57 AM
To: e-smith-devinfo
Subject: Re: [e-smith-devinfo] [DRAFT] myphpnuke rpm ready for download



Darrell May <[EMAIL PROTECTED]> said:

> Install with:
>
> rpm -ivh e-smith-gw-myphpnuke-1.8.7-1.noarch.rpm

Typo :(  You may notice the install should be:

rpm -ivh e-smith-gw-myphpnuke-1.8.7-0.noarch.rpm

--
Darrell May
DMC NETSOURCED.COM
http://netsourced.com



--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org



--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org



--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org




RE: [e-smith-devinfo] [DRAFT] myphpnuke rpm ready for download

2001-08-24 Thread Trevor Ouellette

I'm getting a permissions error.  We might have to set a few permissions in
the RPM.

When I click save to update my configuration this is the message I get:

Parse error: parse error in
/opt/groupware/myphpnuke/html/admin/original/config.php on line 85
Unable to select database


It doesn't look serious.

Trev.
ps. Didn't mean to post with my gc support account last time.


-Original Message-
From: Darrell May [mailto:[EMAIL PROTECTED]]
Sent: Friday, August 24, 2001 11:57 AM
To: e-smith-devinfo
Subject: Re: [e-smith-devinfo] [DRAFT] myphpnuke rpm ready for download



Darrell May <[EMAIL PROTECTED]> said:

> Install with:
>
> rpm -ivh e-smith-gw-myphpnuke-1.8.7-1.noarch.rpm

Typo :(  You may notice the install should be:

rpm -ivh e-smith-gw-myphpnuke-1.8.7-0.noarch.rpm

--
Darrell May
DMC NETSOURCED.COM
http://netsourced.com



--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org



--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org




RE: Re[2]: [e-smith-devinfo] alias directories(was SquidGuard 2 Development)

2001-08-23 Thread Trevor Ouellette

That's pretty slick... :-)

Trev.

-Original Message-
From: Darrell May [mailto:[EMAIL PROTECTED]]
Sent: Thursday, August 23, 2001 6:09 PM
To: Trevor Ouellette; E-Smith Developers Info Mailing List
Subject: RE: Re[2]: [e-smith-devinfo] alias directories(was SquidGuard 2
Development)



Trevor Ouellette <[EMAIL PROTECTED]> said:

> Nevermind,  I assume that if you just take the lines out it will work
> more securely.
> 
> Trev.

Here's another phpsysinfo template fragment example.  Application is 
installed in /opt/administration/phpsysinfo.  Access by entering:

https://yourdomain.com/phpsysinfo

Note this forces SSL and requires the admin login/password:

# Administration: phpsysinfo
Alias /phpsysinfo /opt/administration/phpsysinfo

RequireSSL on
Options -Indexes
AllowOverride None
order deny,allow
deny from all
allow from all
AuthName "phpSysInfo"
AuthType Basic
AuthExternal pwauth
require user admin
Satisfy all
AddType application/x-httpd-php .php .php3
php_flag  magic_quotes_gpc  on
php_flag  track_varson


If you want multiple user security, including both internal and external 
users, follow this HowTo:

http://netsourced.com/servers/docs/website-access-security-howto.html

Regards,

-- 
Darrell May
DMC NETSOURCED.COM
http://netsourced.com




--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org




RE: Re[2]: [e-smith-devinfo] alias directories(was SquidGuard 2 Development)

2001-08-23 Thread Trevor Ouellette

Nevermind,  I assume that if you just take the lines out it will work more
securely.

Trev.

-Original Message-
From: Trevor Ouellette [mailto:[EMAIL PROTECTED]]
Sent: Thursday, August 23, 2001 4:48 PM
To: Charlie Brady; Bertrand CHERRIER
Cc: E-Smith Developers Info Mailing List
Subject: RE: Re[2]: [e-smith-devinfo] SquidGuard 2 Development


Any suggestions how to fix or make them more secure, Charlie?


-Original Message-
From: Charlie Brady [mailto:[EMAIL PROTECTED]]
Sent: Thursday, August 23, 2001 4:45 PM
To: Bertrand CHERRIER
Cc: E-Smith Developers Info Mailing List
Subject: Re[2]: [e-smith-devinfo] SquidGuard 2 Development



On Fri, 24 Aug 2001, Bertrand CHERRIER wrote:

> 
> AddType application/x-httpd-php .php .php3 .phtml
> AddType application/x-httpd-php-source .phps

I doubt that you want to have your source code viewable, in case there are
security holes, or secret passwords, or whatever, in the code.

> Options Indexes

You almost certainly don't want indexes.

> Options +Includes

And you probably don't want/need includes.

> AllowOverride None
> order deny,allow
> deny from all
> allow from 127.0.0.1 10.0.0.0/255.255.255.0
> 

--

Charlie Brady [EMAIL PROTECTED]
Lead Product Developer
Network Server Solutions Grouphttp://www.e-smith.com/
Mitel Networks Corporationhttp://www.mitel.com/
Phone: +1 (613) 368 4376 or 564 8000  Fax: +1 (613) 564 7739



--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org



--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org



--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org




RE: Re[2]: [e-smith-devinfo] SquidGuard 2 Development

2001-08-23 Thread Trevor Ouellette

Any suggestions how to fix or make them more secure, Charlie?


-Original Message-
From: Charlie Brady [mailto:[EMAIL PROTECTED]]
Sent: Thursday, August 23, 2001 4:45 PM
To: Bertrand CHERRIER
Cc: E-Smith Developers Info Mailing List
Subject: Re[2]: [e-smith-devinfo] SquidGuard 2 Development



On Fri, 24 Aug 2001, Bertrand CHERRIER wrote:

> 
> AddType application/x-httpd-php .php .php3 .phtml
> AddType application/x-httpd-php-source .phps

I doubt that you want to have your source code viewable, in case there are
security holes, or secret passwords, or whatever, in the code.

> Options Indexes

You almost certainly don't want indexes.

> Options +Includes

And you probably don't want/need includes.

> AllowOverride None
> order deny,allow
> deny from all
> allow from 127.0.0.1 10.0.0.0/255.255.255.0
> 

--

Charlie Brady [EMAIL PROTECTED]
Lead Product Developer
Network Server Solutions Grouphttp://www.e-smith.com/
Mitel Networks Corporationhttp://www.mitel.com/
Phone: +1 (613) 368 4376 or 564 8000  Fax: +1 (613) 564 7739



--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org



--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org




RE: Re[2]: [e-smith-devinfo] SquidGuard 2 Development

2001-08-23 Thread Trevor Ouellette

Bertrand,

That's pretty straight-forward.  Thanks for the template and I'll let you
know how I make out!

Trev.

-Original Message-
From: Bertrand CHERRIER [mailto:[EMAIL PROTECTED]]
Sent: Thursday, August 23, 2001 3:57 PM
To: E-Smith Developers Info Mailing List
Subject: Re[2]: [e-smith-devinfo] SquidGuard 2 Development


Bonjour Trevor Ouellette,

This is the kind of template I use when I don't want a directory
(ibay) to be used ... exemple is for phpSysinfo (I'll be building a
RPM soon :)

#---
#   PHP SYSINFO
#---

  Alias   /sysinfo /usr/local/phpSysinfo/


AddType application/x-httpd-php .php .php3 .phtml
AddType application/x-httpd-php-source .phps
Options Indexes
Options +Includes
AllowOverride None
order deny,allow
deny from all
allow from 127.0.0.1 10.0.0.0/255.255.255.0


#--

The file itself is located here :
/etc/e-smith/template-custom/etc/httpd/conf/httpd.conf/93phpSysinfo

I stock my web files in usr/local (this came from netsaints rpm :)
after this you just have to expand template and that's it !
It's much safer than modifying directly the httpd.conf as e-smith
restores it after an improper shut down and wipe out all the
modifications, but by using the templates the pb doesn't occur.

vendredi 24 août 2001, 07:45:58, vous avez écrit:

TO> Darrell, have you used directory alias's yourself?  Is it as simple at
TO> inserting a few templates into the httpd.conf directory
(custom-templates of
TO> course)?

TO> Trev.

TO> -Original Message-
TO> From: Darrell May [mailto:[EMAIL PROTECTED]]
TO> Sent: Thursday, August 23, 2001 2:39 PM
TO> To: Trevor Ouellette; [EMAIL PROTECTED]; Allen Rapini; E-Smith
TO> Developers Info Mailing List
TO> Subject: RE: [e-smith-devinfo] SquidGuard 2 Development



TO> Trevor Ouellette <[EMAIL PROTECTED]> said:

>> But you can still reach it by doing a \\servername\ibay right?  It just
>> becomes like the netlogon directory.  Plus, netatalk is still running.

TO> Correct.  Again, if these ibays in question are not used for file
TO> sharing, then again it is better not to use ibays.  Use a directory
alias
TO> in httpd.conf.

TO> --
TO> Darrell May
TO> DMC NETSOURCED.COM
TO> http://netsourced.com

--
Cordialement,
 Bertrand
 [EMAIL PROTECTED]
 http://www.linux-nc.org
 Linux, il y a moins bien, mais c'est plus cher !


--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org



--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org




[e-smith-devinfo] RE: Squid Guard 2 Development

2001-08-23 Thread Trevor Ouellette

Hi Marco,

You bet it does.  Below are the instructions.  You can delete /squidguard
and /squidguard2 after the installation is complete.

Trev.

> - Log in as ROOT/PASSWORD
>
> - mkdir /squidguard2
>
> - cd /squidguard2
>
> - wget -nv http://www.greencomputer.com/squidguard-2.tar
>
> - tar -xf squidguard-2.tar
>
> - ./create-squidguard
>
> Rebooting is optional 
>
>
> FIXES:
>
> Downloads the latest blacklist (Pal from squidguard removed all the bogus
> entries like Netscape and AOL from the blacklist).  The blacklist is now
> called blacklist.tar.gz~
>
> There is a workaround for when you go through the admin console and
> squidguard stops updating --> log in as root and enter
> "/usr/local/squidGuard/setacls".
>
> Remember to password protect your ibay.  This protects your internal
> network.  If anyone knows how to do this from the commandline (shell
> please), let me know and I can implement it.  Or do it yourself and send
me
> a copy. (it's in the create-squidguard script).
>

-Original Message-
From: Marco Ranieri [mailto:[EMAIL PROTECTED]]
Sent: Thursday, August 23, 2001 3:39 PM
To: Trevor Ouellette
Subject: Squid Guard 2 Development


I noticed that you mentioned the release of Squid Guard release 2 . Does it
fix the problem where it stopped updating the blacklist file?

Where can I download it to try for my e-smith box? Thanks.



Marco Ranieri



--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org




RE: [e-smith-devinfo] SquidGuard 2 Development

2001-08-23 Thread Trevor Ouellette

Thanks Charlie,

That's right, imp and webmail is a good example.  I will start work on using
the alias directory.

Trev.

-Original Message-
From: Charlie Brady [mailto:[EMAIL PROTECTED]]
Sent: Thursday, August 23, 2001 3:21 PM
To: Trevor Ouellette
Cc: E-Smith Developers Info Mailing List
Subject: RE: [e-smith-devinfo] SquidGuard 2 Development

I'd suggest that you start by looking at the way that the e-smith-imp RPM
integrates /webmail into the website without using an i-bay.

You'll find detailed instructions on making and modifying e-smith RPMs on
the e-smith.org web site.

--

Charlie Brady [EMAIL PROTECTED]
Lead Product Developer
Network Server Solutions Grouphttp://www.e-smith.com/
Mitel Networks Corporationhttp://www.mitel.com/
Phone: +1 (613) 368 4376 or 564 8000  Fax: +1 (613) 564 7739




--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org




RE: [e-smith-devinfo] SquidGuard 2 Development

2001-08-23 Thread Trevor Ouellette

Darrell, have you used directory alias's yourself?  Is it as simple at
inserting a few templates into the httpd.conf directory (custom-templates of
course)?

Trev.

-Original Message-
From: Darrell May [mailto:[EMAIL PROTECTED]]
Sent: Thursday, August 23, 2001 2:39 PM
To: Trevor Ouellette; [EMAIL PROTECTED]; Allen Rapini; E-Smith
Developers Info Mailing List
Subject: RE: [e-smith-devinfo] SquidGuard 2 Development



Trevor Ouellette <[EMAIL PROTECTED]> said:

> But you can still reach it by doing a \\servername\ibay right?  It just
> becomes like the netlogon directory.  Plus, netatalk is still running.

Correct.  Again, if these ibays in question are not used for file
sharing, then again it is better not to use ibays.  Use a directory alias
in httpd.conf.

--
Darrell May
DMC NETSOURCED.COM
http://netsourced.com



--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org



--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org




RE: [e-smith-devinfo] SquidGuard 2 Development

2001-08-23 Thread Trevor Ouellette

But you can still reach it by doing a \\servername\ibay right?  It just
becomes like the netlogon directory.  Plus, netatalk is still running.

Trev.

-Original Message-
From: Darrell May [mailto:[EMAIL PROTECTED]]
Sent: Thursday, August 23, 2001 2:28 PM
To: Allen Rapini; E-Smith Developers Info Mailing List
Subject: RE: [e-smith-devinfo] SquidGuard 2 Development


It is actually just a matter of editing /etc/samba.conf and
setting 'browseable = no', via the e-smith way of course by diving into
the templates and creating/editing a templates-custom fragment.



--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org




RE: [e-smith-devinfo] SquidGuard 2 Development

2001-08-23 Thread Trevor Ouellette

Hi Darrell,

All programs APPEAR to operate properly (checking the logs).  In fact,
squid's transproxy and squidguard both continue to load and work properly.
It's something in the setacls file in /usr/local/squidGuard.  Maybe
permissions... that sounds right.

Do you have any more information about using an alias directory instead of
an ibay.  That sounds pretty good.  That way, internal clients won't see the
/squidguard directory in Samba.  In fact, I don't even want anyone to see
the ibay in Samba.

Good thinking... I'll keep looking around!

Trev.


-Original Message-
From: Darrell May [mailto:[EMAIL PROTECTED]]
Sent: Thursday, August 23, 2001 1:57 PM
To: Trevor Ouellette; E-Smith Developers Info Mailing List
Subject: Re: [e-smith-devinfo] SquidGuard 2 Development

What part stops working?

Anyhow, probably due to the fact the admin console runs as user admin and
your PHP page would be set www.

> 2. I need to know how to set a password on an ibay from the
> commandline.

I see you got the answer for this already, however, I would recommend you
not use an ibay to host your application.  I agree e-smith makes it
easier for websites to be run from ibays but it has been posted before
that ibays really are intended for file sharing and simple web sites
only.  Not for hosting applications where advanced httpd.conf
configuration is needed.  (Just to counterdict myself, Dan Brown has a
HowTo for adding some advanced ibay properties but limited to one line
entry I believe)

But in any event, to really have the freedom to go beyond the current
ibay or advanced ibay settings, it may be better to host your squidguard
implementation from an alias directory.

This would also make it simpler to build the final product into an rpm.

Just my thoughts,

--
Darrell May
DMC NETSOURCED.COM
http://netsourced.com


--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org




RE: [e-smith-devinfo] SquidGuard 2 Development

2001-08-23 Thread Trevor Ouellette


Hi Keith!

I haven't heard from you in a while.  I appreciate the code... :-)  In fact,
the code below is what you sent me last time.

Here is my script so far.  Currently the ibay doesn't prompt the user for a
password when accessed directly at http://192.168.1.1/squidguard



/sbin/e-smith/db accounts set squidguard ibay Group admin UserAccess
wr-admin-rd-group PublicAccess local CgiBin enabled PasswordSet no Name
squidguard Gid 5101 Uid 5101

# create the account on the system
/sbin/e-smith/signal-event ibay-create squidguard

# hack to use the setibay function from command line
perl -e 'use esmith::util;' -e
'esmith::util::setIbayPassword("squidguard","pass");'

# Notify manager that password is set
/sbin/e-smith/db accounts setprop squidguard PasswordSet yes



-Original Message-
From: Keith Woody [mailto:[EMAIL PROTECTED]]
Sent: Thursday, August 23, 2001 1:35 PM
To: Trevor Ouellette
Cc: [EMAIL PROTECTED]
Subject: Re: [e-smith-devinfo] SquidGuard 2 Development


Trev,
i dunno about the first one, but...
----- Original Message -
From: "Trevor Ouellette" <[EMAIL PROTECTED]>
To: "E-Smith Developers Info Mailing List" <[EMAIL PROTECTED]>
Sent: Thursday, August 23, 2001 12:01 PM
Subject: [e-smith-devinfo] SquidGuard 2 Development



> 2. I need to know how to set a password on an ibay from the commandline.
I
> am going to put it in my shell script --> you will have to log in with an
> account and password for additional security.

## to set the password
#
perl -e 'use esmith::util;' -e 'esmith::util::setIbayPassword ('',
'');'

##to show that its been set
#
/sbin/e-smith/db accounts setprop  PasswordSet yes

Regards,
-Keith



--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org




[e-smith-devinfo] SquidGuard 2 Development

2001-08-23 Thread Trevor Ouellette

I've still got two questions that I can't figure out.  Any experienced
developer should be able to nail this down for me.  If you request more
information I can post the script on the list.

If there is any security issues, please bring them to my attention.

1. When you go through the admin console squidguard stops working.  The only
workaround that I know of is to exec "/usr/local/squidGuard/setacls"

2. I need to know how to set a password on an ibay from the commandline.  I
am going to put it in my shell script --> you will have to log in with an
account and password for additional security.

Thanks!

Trev.




--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org




RE: [e-smith-devinfo] SquidGuard 2

2001-08-23 Thread Trevor Ouellette

Hi Brandon,

You do not have to uninstall the 1st version.

1. Simple follow the instructions for installing version 2.
2. You can now delete the /squidguard and /squidguard2 installation
directories.

That's it!  If you have any other questions or concerns, please let me know
and I will do my best to help you through it.

Trev.

-Original Message-
From: Brandon Friedman [mailto:[EMAIL PROTECTED]]
Sent: Thursday, August 23, 2001 5:39 AM
To: Trevor Ouellette
Subject: Re: [e-smith-devinfo] SquidGuard 2



Hi Trevor

I have the first release installed.

Must I uninstall first??

if so how?


Trevor Ouellette <[EMAIL PROTECTED]> said:

> I'm trying to fix all the problems that were plauging the squidguard
> interface.  If anyone cares, here's how to download/install it.  I've had
a
> lot of inexperienced people asking about content filtering, so I want to
> make this easy for them.  I know it's unconventional (PHP & scripts),
please
> bear with me.
>
> - Log in as ROOT/PASSWORD
>
> - mkdir /squidguard2
>
> - cd /squidguard2
>
> - wget -nv http://www.greencomputer.com/squidguard-2.tar
>
> - tar -xf squidguard-2.tar
>
> - ./create-squidguard
>
> Rebooting is optional 
>
>
> FIXES:
>
> Downloads the latest blacklist (Pal from squidguard removed all the bogus
> entries like Netscape and AOL from the blacklist).  The blacklist is now
> called blacklist.tar.gz~
>
> There is a workaround for when you go through the admin console and
> squidguard stops updating --> log in as root and enter
> "/usr/local/squidGuard/setacls".
>
> Remember to password protect your ibay.  This protects your internal
> network.  If anyone knows how to do this from the commandline (shell
> please), let me know and I can implement it.  Or do it yourself and send
me
> a copy. (it's in the create-squidguard script).
>
>
> --
> Please report bugs to [EMAIL PROTECTED]
> Please mail [EMAIL PROTECTED] (only) to discuss security issues
> Support for registered customers and partners to [EMAIL PROTECTED]
> To unsubscribe, e-mail: [EMAIL PROTECTED]
> For additional commands, e-mail: [EMAIL PROTECTED]
> Archives by mail and
http://www.mail-archive.com/devinfo%40lists.e-smith.org
>
>

--
Regards
Brandon Friedman
Product Manager

Tech-Knowledgy Advantage
Ph:  +27 (011) 486-0626
Fax: +27 (011) 486-0629
Cell: +27 (083) 408-7840
E: [EMAIL PROTECTED]
www.techknowledgy.co.za
PO Box 1909, Houghton, 2041 South Africa
No. 1 Mowbray Road, Greenside, Johannesburg, South Africa
e-smith Authorised Partners




--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org




RE: [e-smith-devinfo] SME Server V5 questions

2001-08-22 Thread Trevor Ouellette

What IPSEC VPN implementation are you guys using?  Is it a freeswan
implementation or is it licensed/purchased technology?

If you don't want to say, I understand.  I was just wondering whether the
FreeS/WAN is a cheaper alternative, if we could somehow work it into the
manager...  might take some time though.

Did you (e-smith team) try work with the FreeS/WAN at all, trying to tie it
into the ServiceLink?


Thanks for you time,
Trev.

"the" IPSEC VPN ServiceLink Service can't, but *an* IPSEC VPN can.
Simply (ha!) install FreeS/WAN and all its attendant bits and pieces and
do the key exchange via sneakernet and ... well, whatever.  You can do
it.  I can do it.  Anyone who's an experienced Linux person can do it.
But for those who *aren't* experienced Linux people, we provide them
with a foolproof way of managing their VPN via ServiceLink.


--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org




RE: [e-smith-devinfo] GPL issues

2001-08-22 Thread Trevor Ouellette

That's how I see it as well.  You don't have to have an FTP site dedicated
to the source code, just as long as you make the source available when
someone asks you for it.  It is their responsibility to contact you for the
source.  However, there is a responsibility on the author's part to make
sure that they recieve a copy of the GPL (in a manual or in the software),
as well as contact information so that they can obtain source from you.

You can even charge for duplication costs of a CD containing the source
code.  Mailing or shipping costs are also ok.

Just my 2 cents... :-)

Trev.

Even if that is the correct interpretation, this does not mean that just
because someone finds my GPL code and says "Gee, I'd like to have the source
for this" that the source must be readily and publically available. It only
means that IF they want it, and IF they bother to ask, that I MUST provide
it to them (and AT A REASONABLE COST to cover my expenses, if I so choose.)
Just because they ask does not obligate me to provide it to them FREE OF
CHARGE.


--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org




RE: [e-smith-devinfo] SquidGuard 2

2001-08-22 Thread Trevor Ouellette

Hi Jeff,

To be honest with you, if you just want to uninstall squidguard 1 so that
you can use squidguard 2, you don't have to... just run the script and it
will update the system to ver 2.

If you want to get rid of it perm... that's on my agenda... but simply
removing the ibay, uninstalling the transproxy rpm SHOULD do it.

Don't worry, I'm working on an uninstall proggy this week.

Trev.

-Original Message-
From: Jeff [mailto:[EMAIL PROTECTED]]
Sent: Wednesday, August 22, 2001 2:19 PM
To: Trevor Ouellette
Subject: RE: [e-smith-devinfo] SquidGuard 2


How does one remove squidgard 1 (from your earlier example)

-Original Message-
From: Trevor Ouellette [mailto:[EMAIL PROTECTED]]
Sent: Wednesday, August 22, 2001 2:05 PM
To: e-smith-devinfo
Subject: [e-smith-devinfo] SquidGuard 2


I'm trying to fix all the problems that were plauging the squidguard
interface.  If anyone cares, here's how to download/install it.  I've had
a
lot of inexperienced people asking about content filtering, so I want to
make this easy for them.  I know it's unconventional (PHP & scripts),
please
bear with me.

- Log in as ROOT/PASSWORD

- mkdir /squidguard2

- cd /squidguard2

- wget -nv http://www.greencomputer.com/squidguard-2.tar

- tar -xf squidguard-2.tar

- ./create-squidguard

Rebooting is optional 


FIXES:

Downloads the latest blacklist (Pal from squidguard removed all the bogus
entries like Netscape and AOL from the blacklist).  The blacklist is now
called blacklist.tar.gz~

There is a workaround for when you go through the admin console and
squidguard stops updating --> log in as root and enter
"/usr/local/squidGuard/setacls".

Remember to password protect your ibay.  This protects your internal
network.  If anyone knows how to do this from the commandline (shell
please), let me know and I can implement it.  Or do it yourself and send
me
a copy. (it's in the create-squidguard script).


--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and
http://www.mail-archive.com/devinfo%40lists.e-smith.org



--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org




[e-smith-devinfo] SquidGuard interface 2nd release

2001-08-22 Thread Trevor Ouellette

[This may be a double post -- I haven't received my first post yet]

I'm trying to fix all the problems that were plaguing the SquidGuard
interface.  If anyone cares, here's how to download/install it.  I've had a
lot of inexperienced people asking about content filtering, so I want to
make this easy for them.  I know it's unconventional (PHP & scripts), please
bear with me.

- Log in as ROOT/PASSWORD

- mkdir /squidguard2

- cd /squidguard2

- wget -nv http://www.greencomputer.com/squidguard-2.tar

- tar -xf squidguard-2.tar

- ./create-squidguard

Rebooting is optional 


FIXES:

Downloads the latest blacklist (Pal from squidguard removed all the bogus
entries like Netscape and AOL from the blacklist).  The blacklist is now
called blacklist.tar.gz~

There is a workaround for when you go through the admin console and
squidguard stops updating --> log in as root and enter
"/usr/local/squidGuard/setacls".

Remember to password protect your ibay.  This protects your internal
network.  If anyone knows how to do this from the commandline (shell
please), let me know and I can implement it.  Or do it yourself and send me
a copy. (it's in the create-squidguard script).


--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org




[e-smith-devinfo] SquidGuard 2

2001-08-22 Thread Trevor Ouellette

I'm trying to fix all the problems that were plauging the squidguard
interface.  If anyone cares, here's how to download/install it.  I've had a
lot of inexperienced people asking about content filtering, so I want to
make this easy for them.  I know it's unconventional (PHP & scripts), please
bear with me.

- Log in as ROOT/PASSWORD

- mkdir /squidguard2

- cd /squidguard2

- wget -nv http://www.greencomputer.com/squidguard-2.tar

- tar -xf squidguard-2.tar

- ./create-squidguard

Rebooting is optional 


FIXES:

Downloads the latest blacklist (Pal from squidguard removed all the bogus
entries like Netscape and AOL from the blacklist).  The blacklist is now
called blacklist.tar.gz~

There is a workaround for when you go through the admin console and
squidguard stops updating --> log in as root and enter
"/usr/local/squidGuard/setacls".

Remember to password protect your ibay.  This protects your internal
network.  If anyone knows how to do this from the commandline (shell
please), let me know and I can implement it.  Or do it yourself and send me
a copy. (it's in the create-squidguard script).


--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org




RE: [e-smith-devinfo] Compatibility for the new SME Server V5

2001-08-22 Thread Trevor Ouellette

Is V5 based on 4.1.2 with the new services bundled and will 4.1.x contribs
be compatible with V5?

Thanks,
Trev.

-Original Message-
From: Peter Hollandare [mailto:[EMAIL PROTECTED]]
Sent: Wednesday, August 22, 2001 10:55 AM
To: e-smith devinfo
Subject: [e-smith-devinfo] New SME Server V5




I really hope it uses the new kernel 2.4.x - else im not even bothering to
download/install.

Cheers Peter


--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org



--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org




RE: [e-smith-devinfo] SME Server V5 with ServiceLink announced

2001-08-22 Thread Trevor Ouellette

I hope that you are wrong about this Ken...  can anybody confirm?

>Mitel is stuck with most of the ES linux package as GPL.  But everything 
>else from now on is going to become propietary (you know with patents, 
>trademarks, lawyers, etc).


--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org




RE: [e-smith-devinfo] Signal-Events (was Named server not responding)

2001-08-20 Thread Trevor Ouellette

What is the difference between signal-event console-save and post-upgrade?

Why would I use one over the other?

Trev.

-Original Message-
From: Charlie Brady [mailto:[EMAIL PROTECTED]]
Sent: Monday, August 20, 2001 10:16 AM
To: Justin Funke
Cc: '[EMAIL PROTECTED]'
Subject: Re: [e-smith-devinfo] Named server not responding



On Mon, 20 Aug 2001, Justin Funke wrote:

> Has anyone else seen this. It happened amongst my flurry of upgrades this
> weekend. Now I cannot resolve any DNS names.

After any package upgrades, unless you know specific less disruptive
command, you should always do:

/sbin/e-smith/signal-event post-upgrade
/sbin/e-smith/signal-event reboot

Those commands will configure all services, then start them all in the
correct sequence (after the reboot).

Charlie Brady [EMAIL PROTECTED]
Lead Product Developer
Network Server Solutions Grouphttp://www.e-smith.com/
Mitel Networks Corporationhttp://www.mitel.com/
Phone: +1 (613) 368 4376 or 564 8000  Fax: +1 (613) 564 7739



--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org



--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org




[e-smith-devinfo] SquidGuard issues

2001-08-17 Thread Trevor Ouellette

I just wanted to update everyone on a few things about the squidguard
manager situation.

1. Squidguard.org is working on fixing the blacklist.tar.gz.  I'm trying to
stay in contact with them as we speak.

2. The squidguard manager script will have to be re-installed if the ES
console is updated.   This is a bug that I'm tracking down.  It's pretty
simple to workaround for now.

3. Put a password on the ibay in order to prevent LAN users from accessing
the interface.

Trev.



--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org




[e-smith-devinfo] Cron error messages. What's going on?

2001-08-17 Thread Trevor Ouellette

I'm getting this message once a week:

From: xxx
To: xxx
Subject:Cron  run-parts /etc/cron.weekly

/etc/cron.weekly/makewhatis.cron:

zcat: stdout: Broken pipe
zcat: stdout: Broken pipe
zcat: stdout: Broken pipe
zcat: stdout: Broken pipe
zcat: stdout: Broken pipe
zcat: stdout: Broken pipe


What is going on?  It was fine for a month and then out of the blue, this
started.

Trev.


--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org




[e-smith-devinfo] blacklist for SquidGuard

2001-08-14 Thread Trevor Ouellette

ftp://ftp.univ-tlse1.fr/pub/reseau/cache/squidguard_contrib/

This link looks like it contains the latest blacklist.tar.gz, but I'm still
trying to confirm with Lars Erik Haland from SquidGuard where the blacklist
disappeared.



--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org




RE: [e-smith-devinfo] squidguard for essg reports

2001-08-14 Thread Trevor Ouellette

I've got the same result.  I will post a fix after I get the new location
from squidguard.org.

Has anyone looked into a commercial solution (working it into es)?

Trev.

-Original Message-
From: Johan Blignaut [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, August 14, 2001 5:43 AM
To: Trevor Ouellette
Subject: Re: [e-smith-devinfo] squidguard for essg reports


Hello Trevor

I installed squidguard. It could not find blacklists/*
I reinstalled as you suggested to Bertrand, same result - no blacklist/*
ftp to ftp.ost.eltele.no ..  no blacklist/*

I have only been going today - so I cannot comment on unblocked state. It
works
perfectly at this time. Thank you very much for a very necessary and very
nice
program.

Johan


Trevor Ouellette wrote:

> All,
>
> Has anybody else installed/used the squidguard.tar that I put together?
> Bertrand seems to be having problems with it after about a week?
>
> I'm suspecting the crons.weekly script isn't doing it's job properly... or
> maybe the new blacklist.tar.gz file has changed enough that my download
> script is having issues.
>
> Anyway... if anybody could report back to me that would be great.
>
> Trev.
>
> --
> Please report bugs to [EMAIL PROTECTED]
> Please mail [EMAIL PROTECTED] (only) to discuss security issues
> Support for registered customers and partners to [EMAIL PROTECTED]
> To unsubscribe, e-mail: [EMAIL PROTECTED]
> For additional commands, e-mail: [EMAIL PROTECTED]
> Archives by mail and
http://www.mail-archive.com/devinfo%40lists.e-smith.org




--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org




RE: [e-smith-devinfo] squidguard for essg reports

2001-08-08 Thread Trevor Ouellette

Is probably the squidguard blacklist file.  Even "www.networksolutions.com"
was blocked.

I bet some joker added aol to the blacklist because they thought it might be
funny.  What a bunch of jerks!
I found it in /db/porn/domains --> "aol.com"

BTW, how often do you get a new internal IP address via DHCP?  I've had the
same one now for a couple months.

Trev.

-Original Message-
From: David Brustad [mailto:[EMAIL PROTECTED]]
Sent: Wednesday, August 08, 2001 1:44 PM
To: Trevor Ouellette
Subject: Re: [e-smith-devinfo] squidguard for essg reports


Trevor,

I installed your package and it is exactly what I needed. It seems a
little strange though, because lately (4 or 5 days after installation)
it filters lots of normal stuff from the normal users. I could not
load www.aol.com for some reason. I added my IP to the unfiltered list
and all was well, but that does not work for dhcp when I get a new ip.
Any ideas?

Thanks,
David Brustad
[EMAIL PROTECTED]




--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org




RE: [e-smith-devinfo] squidguard for essg reports

2001-08-08 Thread Trevor Ouellette

There is an e-mail address at [EMAIL PROTECTED]

You can try send them an email (nicely worded of course :-) and they will
add it to the robot exemption list.

You can add the incorrectly banned site to your trusted domains files in the
squidguard manager interface.  The sites added via the interface have more
authority than the blacklist and will take precedent.

Trev.

-Original Message-
From: David Brustad [mailto:[EMAIL PROTECTED]]
Sent: Wednesday, August 08, 2001 1:44 PM
To: Trevor Ouellette
Subject: Re: [e-smith-devinfo] squidguard for essg reports


Trevor,

I installed your package and it is exactly what I needed. It seems a
little strange though, because lately (4 or 5 days after installation)
it filters lots of normal stuff from the normal users. I could not
load www.aol.com for some reason. I added my IP to the unfiltered list
and all was well, but that does not work for dhcp when I get a new ip.
Any ideas?

Thanks,
David Brustad
[EMAIL PROTECTED]




--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org




[e-smith-devinfo] transproxy and logging

2001-08-08 Thread Trevor Ouellette

Charlie,

By default transproxy doesn't log to /var/log/squid/access.log.  Any ideas?
Do I have to modify anything in the squid.conf?  Enable logging, etc.  I'm
sure it's something really simple.


Thanks,

Trev.


--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org




RE: [e-smith-devinfo] Release "1" of squidguard for ESSG

2001-08-07 Thread Trevor Ouellette

Hi Bertrand,

Run this command.  It will force a blacklist update:

/usr/local/squidGuard/supdate

Are you still unblocked?

Redownload the gc-guard prg:

> mkdir /squidguard
> cd /squidguard
> wget -nv http://www.greencomputer.com/gc-guard-1.tar
> tar -xf gc-guard-1.tar
> ./create-squidguard


Good luck,

Trev.

-Original Message-
From: Bertrand CHERRIER [mailto:[EMAIL PROTECTED]]
Sent: Monday, August 06, 2001 10:56 PM
To: DEVELOPMENT info
Subject: Re: [e-smith-devinfo] Release "1" of squidguard for ESSG


Bonjour Trevor Ouellette,

Got a problem here, it was working perfectly, BUT, as it was a test
machine I shut it down for the night, and today while wanting to show
it to a friend, I could easily surf on porn sites :(
squidGuard is running ... but if it wasn't I would have been the same
I change a policy from the admin page to have it restarted ... same
thing ! got any idea ???

mercredi 1 août 2001, 16:26:04, vous avez écrit:

TO> How to Install the gc-guard system -- Any beta testers??

TO> Log in as root to your ESSG server.

TO> mkdir /squidguard
TO> cd /squidguard
TO> wget -nv http://www.greencomputer.com/gc-guard-1.tar
TO> tar -xf gc-guard-1.tar
TO> ./create-squidguard

TO> That's it!  The settings can be found under Security, Content Filtering.
TO> There is link to a help at the bottom of that page.

TO> It updates it's blacklist once a week, administrators can update/remove
TO> domains, expressions and URL's from a GUI in the manager, admins can
also
TO> allow specific IP's to have Full access to the Internet instead of the
TO> default filtered access.

TO> Give it a go... 

TO> Thanks to Darrell May, JL (for the sudo stuff), and of course Lorenzo!
I
TO> hope I didn't forget anybody!

TO> Trev.


TO> --
TO> Please report bugs to [EMAIL PROTECTED]
TO> Please mail [EMAIL PROTECTED] (only) to discuss security issues
TO> Support for registered customers and partners to [EMAIL PROTECTED]
TO> To unsubscribe, e-mail: [EMAIL PROTECTED]
TO> For additional commands, e-mail: [EMAIL PROTECTED]
TO> Archives by mail and
http://www.mail-archive.com/devinfo%40lists.e-smith.org



--
Cordialement,
 Bertrand
 [EMAIL PROTECTED]
 http://www.linux-nc.org
 Linux, il y a moins bien, mais c'est plus cher !


--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org



--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org




RE: [e-smith-devinfo] squidguard for essg reports

2001-08-07 Thread Trevor Ouellette

Thanks everyone,

And my squidguard stuff is working on my test box too.  I'll keep my eye on
this.

Trev.

-Original Message-
From: Timothy Pugh [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, August 07, 2001 12:41 PM
To: [EMAIL PROTECTED]
Subject: Re: [e-smith-devinfo] squidguard for essg reports


In message <[EMAIL PROTECTED]>,
Trevor Ouellette <[EMAIL PROTECTED]> writes
>All,
>
>Has anybody else installed/used the squidguard.tar that I put together?
>Bertrand seems to be having problems with it after about a week?
>
>I'm suspecting the crons.weekly script isn't doing it's job properly... or
>maybe the new blacklist.tar.gz file has changed enough that my download
>script is having issues.
>
>Anyway... if anybody could report back to me that would be great.
>
>Trev.
>
>
>--
>Please report bugs to [EMAIL PROTECTED]
>Please mail [EMAIL PROTECTED] (only) to discuss security issues
>Support for registered customers and partners to [EMAIL PROTECTED]
>To unsubscribe, e-mail: [EMAIL PROTECTED]
>For additional commands, e-mail: [EMAIL PROTECTED]
>Archives by mail and
http://www.mail-archive.com/devinfo%40lists.e-smith.org
>
>
I have had your script running.

I cant say that I have seen any problems will check when I am in the
office
--
© Timothy Pugh



--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org



--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org




RE: [e-smith-devinfo] FrontPage and CodeRed?

2001-08-07 Thread Trevor Ouellette

Thanks for clearing things up regarding ES & FP extensions, Jelmer... we
have enough hype about the code red worm.  We don't need anymore... :-)


Trev.

-Original Message-
From: Jelmer Kuperus [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, August 07, 2001 11:40 AM
To: Charlie Brady; [EMAIL PROTECTED]
Subject: RE: [e-smith-devinfo] FrontPage and CodeRed?


yeah and if you foward my mail to 10 people in your adressbook nokia will
give you a FREE CELLPHONE!! :)

ok sorry bout that

But seriously e-smith is positively absolutely not at risc , the reason for
this is that code red uses a known buffer overflow in iis.


The vulnerability lies within the code that allows a Web server to interact
with Microsoft Indexing Service functionality. The vulnerable Indexing
Service ISAPI filter is installed by default on all versions of IIS. The
problem lies in the fact that the .ida (Indexing Service) ISAPI filter does
not perform proper "bounds checking" on user inputted buffers and therefore
is susceptible to a buffer overflow attack


Isapi filters arent inalled with fpe
And even if it where

it will only exploit Windows 2000 web servers because it overwrites EIP with
a jmp that is only correct under Windows 2000.

since i imagine most of you arent familiar with pc assembly in lamens terms
this means , basicly code red interups the normal processing of the
webserver in order to execute its own code , it as uses one of windows own
functions for that. Under NT4.0 etc... the location for that function is
different so, the process will simply crash instead of allowing the worm to
infect the system and
spread.





-Original Message-
From: Charlie Brady [mailto:[EMAIL PROTECTED]]
Sent: dinsdag 7 augustus 2001 19:06
To: [EMAIL PROTECTED]
Subject: [e-smith-devinfo] FrontPage and CodeRed?



On Mon, 6 Aug 2001, somebody posted to the members mailing list of Sage-au
(www.sage-au.org.au):

> Umm, if you loaded Frontpage and the web extensions onto your home PC
guess
> what, you're running a cut-down version of IIS - and its just as
susceptible to
> CodeRed and variants as are the full blown IIS boxes. I'm still wondering
why
> no-one has mentioned this little fact yet.

I have no other information to confirm or deny this rumour, however, I
thought it prudent to pass it on.

[It shouldn't take long for someone to work out whether there is a CGI
called default.ida.]

--

  Charlie Brady [EMAIL PROTECTED]
  http://www.e-smith.org (development)  http://www.e-smith.com (corporate)
  Phone: +1 (613) 368 4376 or 564 8000  Fax: +1 (613) 564 7739
  e-smith, inc. 1500-150 Metcalfe St, Ottawa, ON K2P 1P1 Canada



--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org


--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org



--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org




RE: [e-smith-devinfo] Frontpage 2000 extentions

2001-08-07 Thread Trevor Ouellette

Charlie,

Where did you see that FP extensions can allow Code Red?  Cobalt's line of
servers resist the code red (i&ii) worm and they include FP extensions.

Maybe better firewalling could protect the FP extentions?  Only allow
internal access, etc.

Just a thought... because I couldn't find anything about Code Red and
FP/Linux.

Trev.


>It's great that you are doing it, since a lot of people want FrontPage.
>But it does look pretty horrible when one takes a look :-)

>Charlie

  >Charlie Brady [EMAIL PROTECTED]
  >http://www.e-smith.org (development)  http://www.e-smith.com (corporate)
  >Phone: +1 (613) 368 4376 or 564 8000  Fax: +1 (613) 564 7739
  >e-smith, inc. 1500-150 Metcalfe St, Ottawa, ON K2P 1P1 Canada




--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org




[e-smith-devinfo] squidguard for essg reports

2001-08-07 Thread Trevor Ouellette

All,

Has anybody else installed/used the squidguard.tar that I put together?
Bertrand seems to be having problems with it after about a week?

I'm suspecting the crons.weekly script isn't doing it's job properly... or
maybe the new blacklist.tar.gz file has changed enough that my download
script is having issues.

Anyway... if anybody could report back to me that would be great.

Trev.


--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org




RE: [e-smith-devinfo] startmail through webinterface?

2001-08-07 Thread Trevor Ouellette

Just to let you all know... sudo could potentially open up security risks...
I have done everything I could to reduce these risks when I used it...
(internal access only... limiting what command the user can run, etc.).

When using sudo, never allow external Internet access to it and always limit
what specific commands can be run.  It's a very powerful command.

the sudo file is in /etc/sudoers

Trev.

-Original Message-
From: Darrell May [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, August 07, 2001 9:40 AM
To: Michael Doerner; e-smith Devinfo
Subject: Re: [e-smith-devinfo] startmail through webinterface?



Michael Doerner <[EMAIL PROTECTED]> said:

> The whole file is stored as an .shtml file.
>
> I need something similar where the command to execute is just
> '/etc/startmail' as far as I understand.
>
> Unfortuantely I am not a web programmer so I don't know which problems
> to expect but the one that I see must be the permissions. Anybody here
> who can help with that?

Hi Michael.  You might want to look into using 'sudo' as mentioned
recently on list for Trevor's squidguard implementation.  Start with 'man
sudo' or a Google search for online sudo help resources.

--
Darrell May
DMC NETSOURCED.COM
http://netsourced.com



--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org



--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org




RE: [e-smith-devinfo] Release "1" of squidguard for ESSG

2001-08-07 Thread Trevor Ouellette

Hi Bertrand,

Did you put allow your IP addresses to be in the "Full Internet Access"
section?  Make sure that your IP List is empty.

In root prompt... try this:

/etc/rc.d/init.d/squid restart
cat /var/log/squidguard.log (and look for a successful start of squidguard)
cat /var/log/messages

Also check if you have anything in your /usr/local/squidGuard/db folders...

If I think of anything to try I will contact you asap.

Trev.

-Original Message-
From: Bertrand CHERRIER [mailto:[EMAIL PROTECTED]]
Sent: Monday, August 06, 2001 10:56 PM
To: DEVELOPMENT info
Subject: Re: [e-smith-devinfo] Release "1" of squidguard for ESSG


Bonjour Trevor Ouellette,

Got a problem here, it was working perfectly, BUT, as it was a test
machine I shut it down for the night, and today while wanting to show
it to a friend, I could easily surf on porn sites :(
squidGuard is running ... but if it wasn't I would have been the same
I change a policy from the admin page to have it restarted ... same
thing ! got any idea ???

mercredi 1 août 2001, 16:26:04, vous avez écrit:

TO> How to Install the gc-guard system -- Any beta testers??

TO> Log in as root to your ESSG server.

TO> mkdir /squidguard
TO> cd /squidguard
TO> wget -nv http://www.greencomputer.com/gc-guard-1.tar
TO> tar -xf gc-guard-1.tar
TO> ./create-squidguard

TO> That's it!  The settings can be found under Security, Content Filtering.
TO> There is link to a help at the bottom of that page.

TO> It updates it's blacklist once a week, administrators can update/remove
TO> domains, expressions and URL's from a GUI in the manager, admins can
also
TO> allow specific IP's to have Full access to the Internet instead of the
TO> default filtered access.

TO> Give it a go... 

TO> Thanks to Darrell May, JL (for the sudo stuff), and of course Lorenzo!
I
TO> hope I didn't forget anybody!

TO> Trev.


TO> --
TO> Please report bugs to [EMAIL PROTECTED]
TO> Please mail [EMAIL PROTECTED] (only) to discuss security issues
TO> Support for registered customers and partners to [EMAIL PROTECTED]
TO> To unsubscribe, e-mail: [EMAIL PROTECTED]
TO> For additional commands, e-mail: [EMAIL PROTECTED]
TO> Archives by mail and
http://www.mail-archive.com/devinfo%40lists.e-smith.org



--
Cordialement,
 Bertrand
 [EMAIL PROTECTED]
 http://www.linux-nc.org
 Linux, il y a moins bien, mais c'est plus cher !


--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org



--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org




RE: [e-smith-devinfo] Errors while updating, help!!

2001-08-07 Thread Trevor Ouellette

Yes.  I got them to install by putting them in the same directory and using:

rpm -Uvh e-smi*

That did the trick.

-Original Message-
From: Dan Brown [mailto:[EMAIL PROTECTED]]
Sent: Monday, August 06, 2001 9:44 PM
To: Rob Adams
Cc: e-smith Devinfo
Subject: Re: [e-smith-devinfo] Errors while updating, help!!


Quoting Rob Adams <[EMAIL PROTECTED]>:

> [root@e-smith i386]# rpm -Uvh apache-1.3.19-5.i386.rpm
> error: failed dependencies:
> apache = 1.3.14-3 is needed by mod_ssl-2.7.1-3
> [root@e-smith i386]# rpm -Uvh mod_ssl-2.8.1-5.i386.rpm
> error: failed dependencies:
> apache = 1.3.19-5 is needed by mod_ssl-2.8.1-5

These two packages are interdependent.  To install them without using
--nodeps, you'll need to specify them both at the same time: rpm -Uvh
apache-1.3.19-5.i386.rpm mod_ssl-2.8.1...





--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org




RE: [e-smith-devinfo] Frontpage 2000 extentions

2001-08-07 Thread Trevor Ouellette

Hi Wayne,

I agree with Charlie.  I knew about some of the holes that get exposed when
FP is installed, but I didn't realized that my linux box could be exposed to
worms like Code Red (I&II), etc.

Just a quick question though... Whistle's Interjet and Sun Cobalt's Qube3
both include FP extentions on their units, has anybody heard about FP
extention security breaches on their products?

It appears that the Qube3 is not affected by the Code Red worm... so I
wonder what their developers know that we don't... :-)

Anyway,  let's just leave it at that.  Wayne, please do send me the RPM's...
I would still like to take a look at them (and verify that code red affects
FP Ext.).

Thanks,

Trev.

-Original Message-
From: Wayne Bollinger [mailto:[EMAIL PROTECTED]]
Sent: Monday, August 06, 2001 6:20 PM
To: [EMAIL PROTECTED]
Subject: Re: [e-smith-devinfo] Frontpage 2000 extentions


Trevor, after seeing this note from Charlie I feel like sending you an
Apache rpm setup to work with FP 2000 extensions would be like sending
out a mail bomb...  :)

Have you considered using FrontPage with an e-smith server without
installing the extensions?  You can set the compatibility options in FP
so it will work with an "extension free" Unix box.  For more info check
out:

  http://www.georgetown.edu/uis/web/software/frontpage/index.html

Perhaps this approach would give you everything you're looking for, and
it can also produce pages that are more browser-neutral.

Let me know if you still want the email bomb.

-Wayne

Charlie Brady wrote:
>
> On Mon, 6 Aug 2001, Trevor Ouellette wrote:
>
> > New Feature Support on Windows and Unix
> >
> > Listed below are the new features in the FrontPage 2002 client that
require
> > the FrontPage 2002 Server Extensions.
> > ...
>
> Perhaps they might add:
>
> - CodeRed worm compatibility
>
> I've recently seen a post on another mailing list which suggests that
> FrontPage extensions for *nix amount to a cut down IIS, which is just as
> susceptible to CodeRed as IIS is. Sounds like something you should check
> before going much further.
>
>   Charlie Brady [EMAIL PROTECTED]
>   http://www.e-smith.org (development)  http://www.e-smith.com (corporate)
>   Phone: +1 (613) 368 4376 or 564 8000  Fax: +1 (613) 564 7739
>   e-smith, inc. 1500-150 Metcalfe St, Ottawa, ON K2P 1P1 Canada

--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org



--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org




RE: [e-smith-devinfo] Frontpage 2000 extentions

2001-08-06 Thread Trevor Ouellette

Charlie,

Is is just me or is the mitel.com site down today?  How is work going over
there?

Thanks for the heads up on FP.

Trev.


-Original Message-
From: Charlie Brady [mailto:[EMAIL PROTECTED]]
Sent: Monday, August 06, 2001 4:19 PM
To: Trevor Ouellette
Cc: ed sharpe; Wayne Bollinger; [EMAIL PROTECTED]
Subject: RE: [e-smith-devinfo] Frontpage 2000 extentions



On Mon, 6 Aug 2001, Trevor Ouellette wrote:

> New Feature Support on Windows and Unix
>
> Listed below are the new features in the FrontPage 2002 client that
require
> the FrontPage 2002 Server Extensions. In addition to new features, the
> server extensions have also been optimized to improve performance for web
> authoring and web administration.
>
> File Upload
>
> Custom Link Bars
>
> Shared Border Background Properties
>
> Usage Analysis Reports
>
> Top Ten List Web Component
>
> Customizable User Roles
>
> HTML Web Administration

Perhaps they might add:

- CodeRed worm compatibility

I've recently seen a post on another mailing list which suggests that
FrontPage extensions for *nix amount to a cut down IIS, which is just as
susceptible to CodeRed as IIS is. Sounds like something you should check
before going much further.

  Charlie Brady [EMAIL PROTECTED]
  http://www.e-smith.org (development)  http://www.e-smith.com (corporate)
  Phone: +1 (613) 368 4376 or 564 8000  Fax: +1 (613) 564 7739
  e-smith, inc. 1500-150 Metcalfe St, Ottawa, ON K2P 1P1 Canada




--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org




RE: [e-smith-devinfo] Frontpage 2000 extentions

2001-08-06 Thread Trevor Ouellette

New Feature Support on Windows and Unix

Listed below are the new features in the FrontPage 2002 client that require
the FrontPage 2002 Server Extensions. In addition to new features, the
server extensions have also been optimized to improve performance for web
authoring and web administration.

File Upload

Custom Link Bars

Shared Border Background Properties

Usage Analysis Reports

Top Ten List Web Component

Customizable User Roles

HTML Web Administration



-Original Message-
From: ed sharpe [mailto:[EMAIL PROTECTED]]
Sent: Monday, August 06, 2001 2:22 PM
To: Trevor Ouellette; Wayne Bollinger; [EMAIL PROTECTED]
Subject: Re: [e-smith-devinfo] Frontpage 2000 extentions


what is added for fp 2002?
ed sharpe
- Original Message -
From: "Trevor Ouellette" <[EMAIL PROTECTED]>
To: "Wayne Bollinger" <[EMAIL PROTECTED]>; <[EMAIL PROTECTED]>
Sent: Monday, August 06, 2001 1:15 PM
Subject: RE: [e-smith-devinfo] Frontpage 2000 extentions


> Hi Wayne,
>
> Thanks for the compliments on the squidguard stuff.  Would it be possible
to
> have you send me your src rpms for FP?
>
> If you have any notes, or misc links/docs that would really help.  I
really
> haven't made any headway with FP 2002 yet... but hopefully I will get it
> going.
>
> Basically, I just want FP2002 extentions running on the Primary Ibay.  No
> need for virtual domains to have the extentions loaded.  And if I have to
> access the manager via a different port... so be it.
>
> Thanks, Wayne!
>
> Trev.
>
> -Original Message-
> From: Wayne Bollinger [mailto:[EMAIL PROTECTED]]
> Sent: Wednesday, August 01, 2001 2:01 PM
> To: [EMAIL PROTECTED]
> Subject: Re: [e-smith-devinfo] Frontpage 2000 extentions
>
>
> Months ago I took the RH 7.0 Apache 1.3.14 src rpm and got the FP2000
> extensions working on 4.1; I referred to the "improved mod_frontpage"
> instructions at:
>
>   http://home.edo.uni-dortmund.de/~chripo/
>
> It works fine if you configure ES/Apache/FP to use only the primary
> ibay; things get very messy with multiple virtual domains/ibays.
>
> Disclaimer:  I never deployed this on a production server due to the
> security concerns, and certainly don't recommend that anyone else do
> so.
>
> If you want to use my src rpm(s) as a starting point I can clean things
> up and send you a copy.  I appreciate all your work on squidgard.
>
> -Wayne Bollinger
>
> Trevor Ouellette wrote:
> >
> > Anyone install FP2000 extentions on ES?  Any problems (besides the
horific
> > security issues)?
> >
> > FP2000 is my next project... so if anyone has done any work on FP
> > extentions, please forward your stuff my way.
> >
> > Trev.
>
> --
> Please report bugs to [EMAIL PROTECTED]
> Please mail [EMAIL PROTECTED] (only) to discuss security issues
> Support for registered customers and partners to [EMAIL PROTECTED]
> To unsubscribe, e-mail: [EMAIL PROTECTED]
> For additional commands, e-mail: [EMAIL PROTECTED]
> Archives by mail and
http://www.mail-archive.com/devinfo%40lists.e-smith.org
>
>
>
> --
> Please report bugs to [EMAIL PROTECTED]
> Please mail [EMAIL PROTECTED] (only) to discuss security issues
> Support for registered customers and partners to [EMAIL PROTECTED]
> To unsubscribe, e-mail: [EMAIL PROTECTED]
> For additional commands, e-mail: [EMAIL PROTECTED]
> Archives by mail and
http://www.mail-archive.com/devinfo%40lists.e-smith.org
>
>



--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org




RE: [e-smith-devinfo] Frontpage 2000 extentions

2001-08-06 Thread Trevor Ouellette

Hi Jeff,

Do you have any more/detailed documentation regarding your installations?
If you have any files or templates that you changed... would it be possible
for me to take a look at them?

Thanks,

Trev.

-Original Message-
From: Jeff [mailto:[EMAIL PROTECTED]]
Sent: Wednesday, August 01, 2001 7:11 PM
To: [EMAIL PROTECTED]
Subject: RE: [e-smith-devinfo] Frontpage 2000 extentions


If you grab a binary of http://httpd.apache.org/dist/httpd/binaries/linux/
and install it (it has an install script and puts it in /usr/local/apache)
set the httpd.conf for this 'new' server to another port, example 8080 and
install frontpage extensions to this server. (I have both the 2000 and 2002
working this way) then you can connect to http://www.domain.com:8080 via
frontpage client, and this doesnt brake or interefere with e-smith at all.
Works great for me with over 70 domains hosted with frontpage.



-Original Message-
From: Wayne Bollinger [mailto:[EMAIL PROTECTED]]
Sent: Wednesday, August 01, 2001 3:01 PM
To: [EMAIL PROTECTED]
Subject: Re: [e-smith-devinfo] Frontpage 2000 extentions


Months ago I took the RH 7.0 Apache 1.3.14 src rpm and got the FP2000
extensions working on 4.1; I referred to the "improved mod_frontpage"
instructions at:

  http://home.edo.uni-dortmund.de/~chripo/

It works fine if you configure ES/Apache/FP to use only the primary
ibay; things get very messy with multiple virtual domains/ibays.

Disclaimer:  I never deployed this on a production server due to the
security concerns, and certainly don't recommend that anyone else do
so.

If you want to use my src rpm(s) as a starting point I can clean things
up and send you a copy.  I appreciate all your work on squidgard.

-Wayne Bollinger

Trevor Ouellette wrote:
>
> Anyone install FP2000 extentions on ES?  Any problems (besides the horific
> security issues)?
>
> FP2000 is my next project... so if anyone has done any work on FP
> extentions, please forward your stuff my way.
>
> Trev.

--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org


--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org



--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org




  1   2   >