Hey Michael,
On 3/29/2013 6:51 PM, Michael Stauber wrote:
> Here is a really quick and dirty Perl-Script that can suspend/unsuspend
> Vsites:
>
> It doesn't do much error checking, but gets the job done.
>
> Command line usage would be:
>
> Suspend of www.testing.com:
> ./vsitesuspend.pl 1 www.te
Hi all,
Here is a news article on the progress of the "modern theme" for
BlueOnyx project:
http://www.blueonyx.it/index.php?mact=News,cntnt01,detail,0&cntnt01articleid=157&cntnt01origid=15&cntnt01pagelimit=4&cntnt01returnid=54
It's slowly coming together.
--
With best regards
Michael Stauber
Is this the dns spamming. I have hundreds of email addresses with this ip
being blocked.
I'm feel inadequate with security configurations today.
Warning: Blocking 198.50.140.115
Mar 29 15:48:47 www kernel: IN=eth0 OUT=
MAC=00:13:72:9a:1d:1e:94:cc:b9:26:1b:6d:08:00 SRC=198.50.140.115
DST=96.1
Hi all,
Here is a news article on the progress of the "modern theme" for
BlueOnyx project:
http://www.blueonyx.it/index.php?mact=News,cntnt01,detail,0&cntnt01articleid=157&cntnt01origid=15&cntnt01pagelimit=4&cntnt01returnid=54
It's slowly coming together.
--
With best regards
Michael Stauber
Hi Marcello,
> I need to make automatic vhost suspension for customers who does not
> pay bills after the expiration date of the domain.
>
> My idea was to build up a small MySQL DB which stores information about
> domains hosted by my BO server and through PHP scripts, CRON and shell
> commands
Just got this.
-- Forwarded message --
Date: Fri, 29 Mar 2013 16:23:46 -0400
From: US-CERT Alerts
To: technical-ale...@us-cert.gov
Subject: US-CERT Alert TA13-088A: DNS Amplification Attacks
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
National Cyber Awareness System
TA13-088A
On Fri, 29 Mar 2013, Colin Jack wrote:
> Can I tighten it up? We have 50+ DNS connections from the same IP at the
> same time. I would like to limit this to say 2 ;0)
Last year, a newly installed BX box was hit within a day of powering it up
for configuration and site setups. It was, unfortunate
Why not disable recursion? Do you need to offer full public DNS to the world?
(And not just for the Authoritative domains you control?)
Sent from my iPhone
On Mar 29, 2013, at 5:13 PM, Colin Jack wrote:
> Hi Michael,
>
> On 19 Mar 2013, at 01:05, Michael Stauber wrote:
>
>> Hi Will,
>>
>
Shouldn't this be the other way around?
> [ ] Allow Recursion (All below greyed out unless checked)
>
> [ ] Cache lookups
>
>Recursion allowed for (greyed unless recursion selected)
>these Hosts/netorks:
> ---
>
On 3/29/2013 1:31 PM, Marcello Torchio wrote:
Hi everybody,
I go back to a topic discussed and started by me.
I need to make automatic vhost suspension for customers who does not
pay bills after the expiration date of the domain.
My idea was to build up a small MySQL DB which stores informat
I found the three iptables commands worked when I switched it to UDP:
/sbin/iptables -A INPUT -i eth0 -p udp -m udp --dport 53 -m state --state
NEW -m recent --set --name DNS --rsource
/sbin/iptables -A INPUT -i eth0 -p udp -m udp --dport 53 -m state --state
NEW -m recent --update --seconds 60
Hi Michael,
On 19 Mar 2013, at 01:05, Michael Stauber wrote:
> Hi Will,
>
> Check this article on DNS related attacks:
>
> http://www.topology.org/linux/iptables_dns_flood.html
>
> I've had a few clients who were hit by the ANY? queries a lot, so we
> modified the APF firewall (part of the So
Hi everybody,
I go back to a topic discussed and started by me.
I need to make automatic vhost suspension for customers who does not pay
bills after the expiration date of the domain.
My idea was to build up a small MySQL DB which stores information about
domains hosted by my BO server and throu
On Fri, 29 Mar 2013, Michael Stauber wrote:
> The other idea about separating cache and recursion and
> pre-populating "locahost" and "localnet" also makes sense. I haven't yet
> wrapped my mind fully around it and will need to check the Bind
> documentation again.
If it comports with BIND how bi
Hi Michael,
>
> Yeah, that's probably a good idea. I'll look into it see what can be
> done. The other idea about separating cache and recursion and
> pre-populating "locahost" and "localnet" also makes sense. I haven't yet
> wrapped my mind fully around it and will need to check the Bind
> docum
Michael,
Thank you that seem to have worked just fine.
No errors or issues.
RC
___
Blueonyx mailing list
Blueonyx@mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx
Hi RC,
> Got these errors when yum attempted update on both Aventurine Servers
>
> Error: Package: libcurl-7.19.7-35.el6.x86_64 (sl)
> Requires: libssh2(x86-64) >= 1.4.2
> Installed: libssh2-1.2.7-1.el6.x86_64
> (@anaconda-Aventurin{e}-201209032350.x86_64/6)
>
Has anyone else have this error?
Got these errors when yum attempted update on both Aventurine Servers
Error: Package: libcurl-7.19.7-35.el6.x86_64 (sl)
Requires: libssh2(x86-64) >= 1.4.2
Installed: libssh2-1.2.7-1.el6.x86_64
(@anaconda-Aventurin{e}-201209032350.x86_64/6
Thanks Jason. I found your post already, but I can't boot an old kernel.
That was my biggest problem. ;-)
Lars
Original Message processed by davidĀ®
[BlueOnyx:12644] Re: Urgent Hyper-V problem - please help :-) (29-Mrz-2013
18:07)
From: bluequa...@ozin.com
To (2):'BlueOnyx General Mailin
Answering my own post. ;-)
It's an irqbalance problem as before, but I used an uncommon solution. ;-)
I changed the number of virtual processors from 2 to 1 and everything is fine.
In order to avoid further problems with this constellation, I will leave the
number of cpus unchanged.
Nice eas
Kernel 5.9 and 6.4 (2.6.32-358) has proper built in support for Hyper-V
All you need to do is:
Boot into the old kernel
Remove the old Hyper-V components as follows:
Execute the following steps in the bash shell.
1. First, execute:
rpm -qa | grep microsoft
Example:
On a RHEL 5.8 sy
Hello,
I did a yum update on a customers server and after that there is no network
connection.
I read all the issues with hyper-v and sometime ago Michael noticed a problem
with irqbalancing on this server. But this time "service irqbalancing stop" did
not change anything.
All solutions po
Hi Colin,
> Also - the 'cache lookups' is on by default!
> Maybe this should be changed on the ISO and VPS templates?
Yeah, that's probably a good idea. I'll look into it see what can be
done. The other idea about separating cache and recursion and
pre-populating "locahost" and "localnet" also m
Ill second that idea. For the good of the Internet now that theses attacks are
a daily occurrence now. I'd chalk it up to being a good neighbor/netizen.
Windows is the same way. I ended up as a participant in that attack because I
forgot to flip that switch. :(. Thank god for bandwidth monitor
Nope still the same error
Error: Package: libcurl-7.19.7-35.el6.x86_64 (sl)
Requires: libssh2(x86-64) >= 1.4.2
Installed: libssh2-1.2.7-1.el6.x86_64
(@anaconda-Aventurin{e}-201209032350.x86_64/6)
libssh2(x86-64) = 1.2.7-1.el6
You could try using --skip-bro
On 29/03/2013 13:01, Richard Barker wrote:
> Not using downloaded repomd.xml because it is older than what we have:
> Current : Wed Mar 27 15:29:28 2013
> Downloaded: Wed Mar 27 15:26:50 2013
The repomd.xml date issue is caused by Scientific Linux 6.4 shipping
last night. In their ann
Also - the 'cache lookups' is on by default!
Maybe this should be changed on the ISO and VPS templates?
On 20 Mar 2013, at 21:47, Michael Stauber wrote:
> Hi George,
>
>> You may have been a unwitting part of this:
>>
>> http://blog.cloudflare.com/the-ddos-that-knocked-spamhaus-offline-and-h
yea I was just reading about that here:
http://thehackernews.com/2013/03/worlds-biggest-ddos-attack-that-almost.html -
stupid kids.
On Mar 29, 2013, at 6:08 AM, Colin Jack wrote:
> Thank you ...
>
> Colin
>
>> You may have been a unwitting part of this:
>>
>> http://blog.cloudflare.com/t
Thank you ...
Colin
> You may have been a unwitting part of this:
>
> http://blog.cloudflare.com/the-ddos-that-knocked-spamhaus-offline-and-ho
>
> In Blue Quartz/Blue Onyx, under Network Service/DNS/Advanced, there's
> a checkbox labeled "Cache Record Lookups". This sounds like it might be a
On 3/28/2013 8:39 AM, George F. Nemeyer wrote:
> It's good time to keep an eye on your networks for unusual traffic.
Yeah, no kidding. We took a look at the end of last week after noticing
that our outbound peer traffic was around 150Mbps more than what it
typically hovers at. Traffic of cou
Got these errors when yum attempted update on both Aventurine Servers
Error: Package: libcurl-7.19.7-35.el6.x86_64 (sl)
Requires: libssh2(x86-64) >= 1.4.2
Installed: libssh2-1.2.7-1.el6.x86_64
(@anaconda-Aventurin{e}-201209032350.x86_64/6)
libssh2(x86-64) =
Not using downloaded repomd.xml because it is older than what we have:
Current : Wed Mar 27 15:29:28 2013
Downloaded: Wed Mar 27 15:26:50 2013
Error: Package: libcurl-7.19.7-35.el6.x86_64 (sl)
Requires: libssh2(x86-64) >= 1.4.2
Installed: libssh2-1.2.7-1.el6.x86_64
32 matches
Mail list logo