Hi Chris,
I think you might be overlooking the value of the 'nice' shell builtin - try:
Indeed.
Thanks.
Regards
Rudi.
Hi Chris,
I think you might be overlooking the value of the 'nice' shell builtin - try:
Indeed.
Thanks.
Regards
Rudi.
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
HI,
Thanks Russell,
I'm pretty sure I have a cron job analysing apache logs which is
consuming too much of the system's resources.
So much is spent on Webalizer and Awstats that the web server stops
answering requests.
CPU time or IO bandwidth?
CPU time is what I meant. Sorry I should be mo
HI,
Thanks Russell,
I'm pretty sure I have a cron job analysing apache logs which is
consuming too much of the system's resources.
So much is spent on Webalizer and Awstats that the web server stops
answering requests.
CPU time or IO bandwidth?
CPU time is what I meant. Sorry I should be
Hi,
OK sorry I found the answer.
Next time I'll try harder before I bother you.
I found out about the `wait` command in Bash scripting.
I'll try something like:
# do webalizer
for i in /var/log/apache/access_tmp/*-access_log; do
site=`echo $i | sed 's/\/var\/log\/apache\/access_tmp\///'`
s
Hi,
Me again ..
I guess what I want to do is have this script execute webalizer
once at a time, waiting until webalizer is finshed before starting
again.
Instead the script fires off many webalizers at once.
Sorry I guess my simple bash skills are not up to scratch.
I'll head over to tldp.org to
Hi,
OK sorry I found the answer.
Next time I'll try harder before I bother you.
I found out about the `wait` command in Bash scripting.
I'll try something like:
# do webalizer
for i in /var/log/apache/access_tmp/*-access_log; do
site=`echo $i | sed 's/\/var\/log\/apache\/access_tmp\///'`
s
Hi,
I'm pretty sure I have a cron job analysing apache logs which is
consuming too much of the system's resources.
So much is spent on Webalizer and Awstats that the web server stops
answering requests.
The output of `uptime` was something like 2.2 before I manually kill the
script and all is OK
Hi,
Me again ..
I guess what I want to do is have this script execute webalizer
once at a time, waiting until webalizer is finshed before starting
again.
Instead the script fires off many webalizers at once.
Sorry I guess my simple bash skills are not up to scratch.
I'll head over to tldp.org to
Hi,
I'm pretty sure I have a cron job analysing apache logs which is
consuming too much of the system's resources.
So much is spent on Webalizer and Awstats that the web server stops
answering requests.
The output of `uptime` was something like 2.2 before I manually kill the
script and all is OK
Hi,
Did you try c) already? Did it work effectively?
No not yet.
Still in research/checking out the options mode.
but c) is not OpenSSH right?
Correct.
Sorry I forgot to mention that is my options list.
I've only skimmed over the lisence so far. It will require
a closer to make a proper assesment.
Hi,
Did you try c) already? Did it work effectively?
No not yet.
Still in research/checking out the options mode.
but c) is not OpenSSH right?
Correct.
Sorry I forgot to mention that is my options list.
I've only skimmed over the lisence so far. It will require
a closer to make a proper assesment.
Hi,
> Our rbash shells don't have access to vi ... or much else! Their
> path is set to "/usr/local/lib/rbash-bin/" and that directory has
> sym-links to a few selected binaries.
>
> Still I don't regard the rbash setup as secure.
Yes but is sound OK for your needs.
In this case I need, or wan
Hi,
Though I'd post something I found on the net about rbash.
I haven't tested it yet.
[quote]
But it's possible to get out from this chroot.
woockie_at_twoflower:~$ cd ..
rbash: cd: restricted
woockie_at_twoflower:~$ vi foo
in vi:
:set shell=/bin/sh
:shell
woockie_at_twoflower:~$ cd ..
woocki
Hi,
> Our rbash shells don't have access to vi ... or much else! Their
> path is set to "/usr/local/lib/rbash-bin/" and that directory has
> sym-links to a few selected binaries.
>
> Still I don't regard the rbash setup as secure.
Yes but is sound OK for your needs.
In this case I need, or wan
Hi Ian,
> We have a set-up that uses "rbash". The client gets "rbash" as a
> login shell and his path is preset to a directory that has a few
> chosen executables in it.
Most interesting.
Sounds like it would do just what I want.
I'm on to it.
> I suspect a determined hacker could get around t
Hi,
Though I'd post something I found on the net about rbash.
I haven't tested it yet.
[quote]
But it's possible to get out from this chroot.
woockie_at_twoflower:~$ cd ..
rbash: cd: restricted
woockie_at_twoflower:~$ vi foo
in vi:
:set shell=/bin/sh
:shell
woockie_at_twoflower:~$ cd ..
woocki
Hi Ian,
> We have a set-up that uses "rbash". The client gets "rbash" as a
> login shell and his path is preset to a directory that has a few
> chosen executables in it.
Most interesting.
Sounds like it would do just what I want.
I'm on to it.
> I suspect a determined hacker could get around t
all.
It would not be possible to come this far on my own without this list's
assistance/advice.
Best regards
Rudi.
Marc Schiffbauer wrote:
* Rudi Starcevic schrieb am 19.10.03 um 04:30 Uhr:
Thanks Marc,
Thanks also to Russel.
I did it with pam_chroot which is really nice
Great
all.
It would not be possible to come this far on my own without this list's
assistance/advice.
Best regards
Rudi.
Marc Schiffbauer wrote:
* Rudi Starcevic schrieb am 19.10.03 um 04:30 Uhr:
Thanks Marc,
Thanks also to Russel.
I did it with pam_chroot which is really nice
Great
Hi Jason,
Let us all know if this works for you, as I (and I think quite a few ppl
that run ISPs) would be interested to know if this actually works or not
For sure.
Will be spending more time on this latter today and will report my
success/failures/questions.
Cheers
Rudi.
--
To UNSUBSCRIBE, e
Thanks Jason,
> Usually you can't... as they have dependency problems.
Well I think it may be OK to just use the 'testing' .deb.
Why ?
Because I just did.
It all installed OK without any error's.
I just downloaded it and dpkg -i it.
I haven't used it yet as I'm still reading the readme
but it ha
Hi,
Just a quick question on libpam-chroot.
This package is not availalbe in 'stable'.
I've only ever used 'stable'.
It should be OK to grab this package from 'testing' and use it hey ?
Thanks again
Regards Rudi.
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe".
Thanks Marc,
Thanks also to Russel.
> I did it with pam_chroot which is really nice
Great - I'll start looking here.
Currently we only really offer FTP access but would like
to include SSH access too.
I know with the right permissions a user account cannot do
any damage but I would just like t
Hi,
Is there anyway to resistict a non-root user's shell account ?
For example once he/she is logged in is there any way to deny, say,
reading the /etc/passwd file ?
Can they be restricted like the way a user can be restricted using FTP ?
I know I could use a tool like Snort to watch whats goi
Hi,
> Idea 1) Write a system which keeps the hosts information (and in
> future - user information) in some kind of a database (file,
> MySQL or LDAP, probably I'll choose MySQL) and generates configuration
> files. Advantages: easy to implement. Disadvantages: limited use.
This is the w
Hi,
You could check out http://www.aktiom.net
Haven't used 'em yet but have plans to very soon.
Cheers
Rudi.
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Martin,
Very good.
More food for thought and consideration.
Thanks
Regards
Rudi.
martin f krafft wrote:
also sprach Dale E Martin <[EMAIL PROTECTED]> [2003.09.04.1447 +0200]:
Has it been covered before on this list? I for one would be
interested in elaboration, if there is som
or me: Sendmail or Postfix.
I think I'm going to sleep on this one.
Again many thanks for your valuable time.
Cheers
Rudi.
> On Thu, 2003-09-04 at 01:43, Rudi Starcevic wrote:
> > Hi,
> >
> > Sorry to bother you all with this repeat question.
> > I
Hi,
so how does exim compare in all of this?
Sorry Jamie - In my case, and my case alone, Exim doesn't compare.
There are many very good MTA's out there.
For me I know Sendmail - ( I compile from source ).
I've heard lots of good things about Qmail to I did consider that one only.
Also every Guru
Hi,
>> Why change something thats
working perfectly ??
Greg .. Yes that's what I was thinking .. -- but that's what they also
said in Nth America 'til the recent blackouts :-(
>> And it has no paralell in security (AGES and AGES better than sendmail)
Alex .. That's what mostly appeals to
Hi,
Sorry to bother you all with this repeat question.
I've have searched around and seen plenty of opinions but I'd like to
ask again and get the latest from this list.
Sendmail or Qmail ? That is my question.
Currently we use Sendmail. It's worked fine, well actually problem free
so better t
Waugh wrote:
On Tue, 2003-08-19 at 09:28, Rudi Starcevic wrote:
Is it bad practise to use X on your Debian ISP/Hosting machines ?
Here I have 4 boxes all without X. I've always been of the
impression
X on servers was not good.
Thanks Jeff,
Yeah I though of X forwarding with SSH but I was under the wrong
impression
I needed an X server on both machines.
Thanks for clearing that up ..
Cheers
Rudi.
Jeff Waugh wrote:
On Tue, 2003-08-19 at 09:28, Rudi Starcevic wrote:
Is it bad practise to use X on your
Hi,
Is it bad practise to use X on your Debian ISP/Hosting machines ?
Here I have 4 boxes all without X. I've always been of the impression
X on servers was not good.
I have one box, a database server - PostgreSQL, which has a cool TCL
monitoring app.
I'm interested in using. This GUI app. monito
Hi,
We have PG and Mysql in production on 2 boxes - no problems.
In fact, please forgive me it's not my fault, we have all this on one
production box :
Postgresql,
Mysql,
Bind,
Sendmail,
Perl,
PHP,
Apache,
Coldfusion and
Java.
Been running smoothly for more than 2 years.
Cheers
Rudi.
Shri Shrikum
Hi,
We have PG and Mysql in production on 2 boxes - no problems.
In fact, please forgive me it's not my fault, we have all this on one
production box :
Postgresql,
Mysql,
Bind,
Sendmail,
Perl,
PHP,
Apache,
Coldfusion and
Java.
Been running smoothly for more than 2 years.
Cheers
Rudi.
Shri Shri
Anand,
Maybe try looking at setting PHP to 'safe mode'
Cheers
Rudi.
Anand Atreya wrote:
Hi,
I have just recently begun using
Debian and am in the process of migrating a FreeBSD 4.4 server over to
it. This server had many different users and allowed them to execute
CGI
Anand,
Maybe try looking at setting PHP to 'safe mode'
Cheers
Rudi.
Anand Atreya wrote:
Hi,
I have just recently begun using
Debian and am in the process of migrating a FreeBSD 4.4 server over to
it. This server had many different users and allowed them to execute
CGI
Excellent ..
Thanks.
Regards
Rudi.
Achim Schmidt wrote:
try this:
lynx --source http://my_url/my.php > /dev/null
- Achim
Am Die, 2003-06-17 um 02.55 schrieb Rudi Starcevic:
Hi,
I'd like to exeute a php script on Apache via a cron job.
All I want to do is execute
Hi,
I'd like to exeute a php script on Apache via a cron job.
All I want to do is execute the file not download it.
So far I've tried wget and lynx without the results I'd like.
Wget downloads the file and the lynx commnad opens up lynx in a terminal.
Any tips ?
Thank you kindly
Best regards
Rudi.
Excellent ..
Thanks.
Regards
Rudi.
Achim Schmidt wrote:
try this:
lynx --source http://my_url/my.php > /dev/null
- Achim
Am Die, 2003-06-17 um 02.55 schrieb Rudi Starcevic:
Hi,
I'd like to exeute a php script on Apache via a cron job.
All I want to do is execute
Hi,
I'd like to exeute a php script on Apache via a cron job.
All I want to do is execute the file not download it.
So far I've tried wget and lynx without the results I'd like.
Wget downloads the file and the lynx commnad opens up lynx in a terminal.
Any tips ?
Thank you kindly
Best regards
Ru
maximum of 8192 file-handles at one
time.
- Achim
Am Mon, 2003-06-02 um 06.56 schrieb Rudi Starcevic:
Hi,
cat /proc/sys/fs/file-max
8192
Is that how I can see what the current max file size is for my system ?
If so is that saying ?
8192 what ?
Thanks
Rudi.
Hi,
cat /proc/sys/fs/file-max
8192
Is that how I can see what the current max file size is for my system ?
If so is that saying ?
8192 what ?
Thanks
Rudi.
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Hi,
I have a file I've created which appears to be too large for my ext2
filesystem.
The file I created is a large text file which is a Postgresql database
backup.
I now know when dumping large databases to pipe the dump command to
something like 'split' so that the resulting output file
is split
maximum of 8192 file-handles at one
time.
- Achim
Am Mon, 2003-06-02 um 06.56 schrieb Rudi Starcevic:
Hi,
cat /proc/sys/fs/file-max
8192
Is that how I can see what the current max file size is for my system ?
If so is that saying ?
8192 what ?
Thanks
Rudi.
Hi,
cat /proc/sys/fs/file-max
8192
Is that how I can see what the current max file size is for my system ?
If so is that saying ?
8192 what ?
Thanks
Rudi.
Hi,
I have a file I've created which appears to be too large for my ext2
filesystem.
The file I created is a large text file which is a Postgresql database
backup.
I now know when dumping large databases to pipe the dump command to
something like 'split' so that the resulting output file
is split i
Hi,
I'm learning about iptables as soon I'll be required to fill this role
at work.
At home I've been learning about firewalling with iptables.
For my home network I have this simple set of rules I'm wondering is OK
or needs improvement.
My LAN is one gateway box and one laptop - pretty simple.
Hi,
I'm learning about iptables as soon I'll be required to fill this role
at work.
At home I've been learning about firewalling with iptables.
For my home network I have this simple set of rules I'm wondering is OK
or needs improvement.
My LAN is one gateway box and one laptop - pretty simple
Hi,
In my apache error log we have alot of request's for i) default.ida and
ii) cmd.exe
In Linux this appears to be pretty much harmless - I think.
It is however annoying and I'm wondering whether or not to do anything
about it.
I think all I can really do is use mod_rewrite to send these reques
Hi,
In my apache error log we have alot of request's for i) default.ida and
ii) cmd.exe
In Linux this appears to be pretty much harmless - I think.
It is however annoying and I'm wondering whether or not to do anything
about it.
I think all I can really do is use mod_rewrite to send these reque
Jeremy,
I tried "apt-cache search thorttle" and got nothing
try throttle instead of thorttle
Cheers
Jeremy Zawodny wrote:
On Fri, Mar 28, 2003 at 01:07:23AM +0100, Peter Holm wrote:
... also missing: mod_throttle... don?t you isp-guys use these
essential modules?
ok, mod_throttle found,
Jeremy,
I tried "apt-cache search thorttle" and got nothing
try throttle instead of thorttle
Cheers
Jeremy Zawodny wrote:
On Fri, Mar 28, 2003 at 01:07:23AM +0100, Peter Holm wrote:
... also missing: mod_throttle... don?t you isp-guys use these
essential modules?
ok, mod_throttle f
Hi Fraser,
For monitoring bandwidth we write scripts which read the logs for apache, ftp and smtp.
The extracted data is then inserted into a postgresql database.
You can then do all sorts of SQL to analyze the data.
As users approach their limits they are emailed to notify them.
If the user's go
ht (C) 1999 Free Software Foundation, Inc.
This is free software; see the source for copying conditions. There is NO
warranty; not even for MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.
Thanks kindly
Best Regards
Rudi.
Jeremy C. Reed wrote:
On Fri, 17 Jan 2003, Rudi Starcevic wrote:
Hi,
After doing a database backup ( postgresql :: pg_dump ) on a database
I'm unable to access the file.
My command is simply 'mv' ::
mv camper.dump20020116 camper_bak/
The error I get is ::
mv: camper.dump20020116: Value too large for defined data type
Strange. It seems to be saying the file
58 matches
Mail list logo