On 1/15/24 15:53, gene heskett wrote:
On 1/15/24 18:15, David Christensen wrote:
On 1/15/24 14:56, gene heskett wrote:
root@coyote:~# for j in /dev/disk/by-id/* ; do printf '%s\t%s\n'
"$(realpath "$j")" "$j" ; done
/dev/sr0 /dev/disk/by-id/ata-ATAPI_iHAS424_B_3524253_327133504865
On 1/15/24 18:41, gene heskett wrote:
On 1/15/24 17:58, gene heskett wrote:
On 1/15/24 14:55, David Wright wrote:
On Mon 15 Jan 2024 at 08:39:37 (-0500), gene heskett wrote:
On 1/14/24 20:19, gene heskett wrote:
On 1/14/24 19:48, David Wright wrote:
On Sun 14 Jan 2024 at 14:48:49 (-0500),
On 1/15/24 18:15, David Christensen wrote:
On 1/15/24 14:56, gene heskett wrote:
root@coyote:~# for j in /dev/disk/by-id/* ; do printf '%s\t%s\n'
"$(realpath "$j")" "$j" ; done
/dev/sr0 /dev/disk/by-id/ata-ATAPI_iHAS424_B_3524253_327133504865
/dev/sdi
On 1/15/24 15:37, gene heskett wrote:
On 1/15/24 16:51, David Christensen wrote:
I think your computer has numerous issues, including storage. Unless
and until you benchmark the Gigastone SSD's in a stripped-down machine
with a reference OS and tool set, I would not blame the Gigastone SSD's.
On 1/15/24 17:58, gene heskett wrote:
On 1/15/24 14:55, David Wright wrote:
On Mon 15 Jan 2024 at 08:39:37 (-0500), gene heskett wrote:
On 1/14/24 20:19, gene heskett wrote:
On 1/14/24 19:48, David Wright wrote:
On Sun 14 Jan 2024 at 14:48:49 (-0500), gene heskett wrote:
On 1/14/24 07:42,
On 1/15/24 16:51, David Christensen wrote:
On 1/15/24 06:45, gene heskett wrote:
On 1/15/24 02:45, David Christensen wrote:
On 1/14/24 11:48, gene heskett wrote:
On 1/14/24 07:42, David Christensen wrote:
... the 2dn seagate 2T drive failure was my amanda vtapes drive, and
bookworm has been
On 1/15/24 14:57, David Wright wrote:
On Sun 14 Jan 2024 at 20:15:16 (-0500), gene heskett wrote:
On 1/14/24 18:57, Felix Miata wrote:
gene heskett composed on 2024-01-14 18:39 (UTC-0500):
Felix Miata wrote:
My point was entirely about suitability of /mnt/ for fstab entries.
And my point is
On 1/15/24 14:56, gene heskett wrote:
root@coyote:~# for j in /dev/disk/by-id/* ; do printf '%s\t%s\n'
"$(realpath "$j")" "$j" ; done
/dev/sr0 /dev/disk/by-id/ata-ATAPI_iHAS424_B_3524253_327133504865
/dev/sdi /dev/disk/by-id/ata-Gigastone_SSD_GST02TBG221146
/dev/sdj1
you build whichever corresponds to
your computer, and use it to help with trouble shooting, backups, etc..
David
On 1/15/24 14:55, David Wright wrote:
On Mon 15 Jan 2024 at 08:39:37 (-0500), gene heskett wrote:
On 1/14/24 20:19, gene heskett wrote:
On 1/14/24 19:48, David Wright wrote:
On Sun 14 Jan 2024 at 14:48:49 (-0500), gene heskett wrote:
On 1/14/24 07:42, David Christensen wrote:
I am
On 1/15/24 13:44, Felix Miata wrote:
gene heskett composed on 2024-01-15 08:39 (UTC-0500):
└─md2 9:20 3G 0 raid10
sdh 8:112 0 1.9T 0 disk
└─sdh18:113 0 1.9T 0 part <<< the one I'm fooling with
sdi 8:128 0 1.9T 0 disk
└─sdi1
On 1/15/24 06:45, gene heskett wrote:
On 1/15/24 02:45, David Christensen wrote:
On 1/14/24 11:48, gene heskett wrote:
On 1/14/24 07:42, David Christensen wrote:
... the 2dn seagate 2T drive failure was my amanda vtapes
drive, and bookworm has been such a headache I not managed to restart it
On Sun 14 Jan 2024 at 20:15:16 (-0500), gene heskett wrote:
> On 1/14/24 18:57, Felix Miata wrote:
> > gene heskett composed on 2024-01-14 18:39 (UTC-0500):
> > > Felix Miata wrote:
> > > > My point was entirely about suitability of /mnt/ for fstab entries.
> > > And my point is that for a one
On Mon 15 Jan 2024 at 08:39:37 (-0500), gene heskett wrote:
> On 1/14/24 20:19, gene heskett wrote:
> > On 1/14/24 19:48, David Wright wrote:
> > > On Sun 14 Jan 2024 at 14:48:49 (-0500), gene heskett wrote:
> > > > On 1/14/24 07:42, David Christensen wrote:
> > >
> > > > > I am confused -- do
gene heskett composed on 2024-01-15 08:39 (UTC-0500):
>└─md2 9:20 3G 0 raid10
> sdh 8:112 0 1.9T 0 disk
> └─sdh18:113 0 1.9T 0 part <<<
> sdi 8:128 0 1.9T 0 disk
> └─sdi18:129 0 1.9T 0 part <<<
> sdj 8:144 0
On 1/15/24 02:45, David Christensen wrote:
and rsync just locked me up for about the 8th time, requiring the reset
button. And that was at a --bwlimit=5m.
rebooted, running test=short on the SSD, looks fine
restarted rsync -av --bwlimit=3m, but its hung on an .local~akonadi
.glass file, two of
On 1/15/24 02:45, David Christensen wrote:
On 1/14/24 11:48, gene heskett wrote:
On 1/14/24 07:42, David Christensen wrote:
Re-ordered for clarity -- David.
And snipped by Gene as I updated
[...]
which aren't atm, the 2dn seagate 2T drive failure was my amanda vtapes
drive, and bookworm has
On 1/14/24 20:19, gene heskett wrote:
On 1/14/24 19:48, David Wright wrote:
On Sun 14 Jan 2024 at 14:48:49 (-0500), gene heskett wrote:
On 1/14/24 07:42, David Christensen wrote:
I am confused -- do you have 4 or 5 Gigastone 2 TB SSD?
5, ordered in 2 separate orders.
> So that one
On 1/14/24 11:48, gene heskett wrote:
On 1/14/24 07:42, David Christensen wrote:
Re-ordered for clarity -- David.
And snipped by Gene as I updated
On 1/12/24 18:42, gene heskett wrote:
I just found an mbox file in my home directory, containing about 90
days worth of undelivered msgs from
On Sun, Jan 14, 2024 at 06:15:13PM -0500, gene heskett wrote:
[...]
> /home/coyotebak would be in the raid, but something in the system
> /backupdisk/ as a mount point would not be in the raid. But I have mount
> points scattered about this system, literaaly all over that just work, since
> when
On Sun, Jan 14, 2024 at 01:37:05PM -0500, Felix Miata wrote:
> tomas composed on 2024-01-14 19:15 (UTC+0100):
[Gene]
> >> > I have not been able to use that last line as a target for rsync
>
> >> That's not unexpected. /mnt/ is intended for /temporary/ or /transient/
> >> mounting,
> >> while
gene heskett composed on 2024-01-14 20:03 (UTC-0500):
> Felix Miata wrote:
>> I'm only suggesting you find a place other than /mnt/ for anything found in
>> /etc/fstab, based upon the definition of /mnt/ in FHS. Conforming your
>> machinery
>> to FHS is not mandatory, just recommended, a good
directories of every machine on the premises. I have a script
in my private bin directory that mounts them all. I get tired of
repeating my user pw while the script is running, but it just works.
When I save a file, I use bash-completion to help write directory
names etc, but I know where I'm going
On 1/14/24 19:48, David Wright wrote:
On Sun 14 Jan 2024 at 14:48:49 (-0500), gene heskett wrote:
On 1/14/24 07:42, David Christensen wrote:
I am confused -- do you have 4 or 5 Gigastone 2 TB SSD?
5, ordered in 2 separate orders.
> So that one could be formatted ext4 and serve as a
On 1/14/24 18:57, Felix Miata wrote:
gene heskett composed on 2024-01-14 18:39 (UTC-0500):
Felix Miata wrote:
AFAIK, nothing I wrote would be expected to have any relationship to transfer
rates. My point was entirely about suitability of /mnt/ for fstab entries.
And my point is that for a
ctories of every machine on the premises. I have a script
> in my private bin directory that mounts them all. I get tired of
> repeating my user pw while the script is running, but it just works.
When I save a file, I use bash-completion to help write directory
names etc, but I know where
On 1/14/24 18:43, Felix Miata wrote:
gene heskett composed on 2024-01-14 18:15 (UTC-0500):
Felix Miata wrote:
...
I have mount
points scattered about this system, literaaly all over that just work,
Fine! It's your stuff.
since when is /mnt some special thing?
Since 1994, 30 years ago
On Sun 14 Jan 2024 at 14:48:49 (-0500), gene heskett wrote:
> On 1/14/24 07:42, David Christensen wrote:
> > I am confused -- do you have 4 or 5 Gigastone 2 TB SSD?
>
> 5, ordered in 2 separate orders.
> >
> > > So that one could be formatted ext4 and serve as a backup of the raid10.
> What I
gene heskett composed on 2024-01-14 18:39 (UTC-0500):
> Felix Miata wrote:
>> AFAIK, nothing I wrote would be expected to have any relationship to transfer
>> rates. My point was entirely about suitability of /mnt/ for fstab entries.
> And my point is that for a one time copy, its was handy. I
gene heskett composed on 2024-01-14 18:15 (UTC-0500):
> Felix Miata wrote:
...
> I have mount
> points scattered about this system, literaaly all over that just work,
Fine! It's your stuff.
> since when is /mnt some special thing?
Since 1994, 30 years ago next month:
...
On 1/14/24 13:37, Felix Miata wrote:
tomas composed on 2024-01-14 19:15 (UTC+0100):
On Sun, Jan 14, 2024 at 12:33:39PM -0500, Felix Miata wrote:
gene heskett composed on 2024-01-14 12:04 (UTC-0500):
# first put it where it is now & reboot
#LABEL=homesde1 /mnt/homesde1 ext4
On 1/14/24 12:34, Felix Miata wrote:
gene heskett composed on 2024-01-14 12:04 (UTC-0500):
# first put it where it is now & reboot
#LABEL=homesde1 /mnt/homesde1 ext4 errors=remount-ro 0 2
...
I have not been able to use that last line as a target for rsync
That's not unexpected. /mnt/ is
On 1/14/24 09:15, Greg Wooledge wrote:
On Sun, Jan 14, 2024 at 11:58:42AM +, Andrew M.A. Cater wrote:
You now have a slow access to one/more of your RAID devices.
Does he, though? I thought we had established some time late last
year that his *symptom* (delayed startup of some
On 1/14/24 07:42, David Christensen wrote:
Re-ordered for clarity -- David.
And snipped by Gene as I updated
On 1/12/24 18:42, gene heskett wrote:
I just found an mbox file in my home directory, containing about 90
days worth of undelivered msgs from smartctl running as root.
Do you know
tomas composed on 2024-01-14 19:15 (UTC+0100):
> On Sun, Jan 14, 2024 at 12:33:39PM -0500, Felix Miata wrote:
>> gene heskett composed on 2024-01-14 12:04 (UTC-0500):
>> > # first put it where it is now & reboot
>> > #LABEL=homesde1 /mnt/homesde1 ext4 errors=remount-ro 0 2
>> ...
>> > I have
On Sun, Jan 14, 2024 at 12:33:39PM -0500, Felix Miata wrote:
> gene heskett composed on 2024-01-14 12:04 (UTC-0500):
>
> > # first put it where it is now & reboot
> > #LABEL=homesde1 /mnt/homesde1 ext4 errors=remount-ro 0 2
> ...
> > I have not been able to use that last line as a target for
gene heskett composed on 2024-01-14 12:04 (UTC-0500):
> # first put it where it is now & reboot
> #LABEL=homesde1 /mnt/homesde1 ext4 errors=remount-ro 0 2
...
> I have not been able to use that last line as a target for rsync
That's not unexpected. /mnt/ is intended for /temporary/ or
On Sun, Jan 14, 2024 at 12:04:58PM -0500, gene heskett wrote:
> On 1/14/24 06:59, Andrew M.A. Cater wrote:
> > Hi Gene,
> >
> > There's a whole series of long threads which loop through several
> > subjects - I can tease out a couple of things.
> >
> > 1.) You have one large deskside machine -
On 1/14/24 06:59, Andrew M.A. Cater wrote:
Hi Gene,
Frankly: Dealing with you over a mailing list can be very frustrating for
others trying to help (and especially for people trying to follow the list
who are reading the lists in the background and facing long, long threads).
You're
Hello,
On Sun, Jan 14, 2024 at 11:37:08AM +0100, Nicolas George wrote:
> Andy Smith (12024-01-13):
> > As usual you have not bothered to show us what you are talking about
> > (the email from smartd)
>
> And that leads you to write a patient and detailed answer, so surely it
> was the best way
On Sun, Jan 14, 2024 at 11:58:42AM +, Andrew M.A. Cater wrote:
> You now have a slow access to one/more of your RAID devices.
Does he, though? I thought we had established some time late last
year that his *symptom* (delayed startup of some applications) had
nothing at all to do with his
orca, disabling it=no reboot=yet another re-install go thru the
>same thing with orca yelling at me for every keystroke entered, till
>someone took pity on me and wrote to unplug the usb stuff which looks
>like a weeping willow tree here, nothing more or less.
Gene, *stop* doing thi
Re-ordered for clarity -- David.
On 1/12/24 18:42, gene heskett wrote:
I just found an mbox file in my home directory, containing about 90 days
worth of undelivered msgs from smartctl running as root.
Do you know how the mbox file got there?
smartctl says my raid10 is dying, ...
Hi Gene,
Frankly: Dealing with you over a mailing list can be very frustrating for
others trying to help (and especially for people trying to follow the list
who are reading the lists in the background and facing long, long threads).
You're not helping explain yourself well because the mails
Hi.
Andy Smith (12024-01-13):
> As usual you have not bothered to show us what you are talking about
> (the email from smartd)
And that leads you to write a patient and detailed answer, so surely it
was the best way to proceed.
Regards,
--
Nicolas George
to try to
help you since you don't listen to advice, won't even type commands
you are asked to, and don't provide relevant information.
I've furnished exactly what you asked for in previous msgs, until you
ask for something that is NOT installed by bookworm and cannot be found
by synaptic
Gene,
On Sat, Jan 13, 2024 at 12:23:28PM -0500, gene heskett wrote:
> Does making a raid erase the drives label field in a gpt partition scheme?
>
> That question ought to have a simple yes or no answer.
I'm forced to conclude that it's a waste of anyone's time to try to
help you
On 1/13/24 10:49, Andy Smith wrote:
Hi Gene,
On Fri, Jan 12, 2024 at 11:57:23PM -0500, gene heskett wrote:
On 1/12/24 21:56, Andy Smith wrote:
No it doesn't; smartctl works on drives, not mdadm arrays. mdadm
arrays are composed of block devices. Therefore any output you get
from smartd refers
On 1/13/24 10:49, Andy Smith wrote:
Hi Gene,
On Fri, Jan 12, 2024 at 11:57:23PM -0500, gene heskett wrote:
On 1/12/24 21:56, Andy Smith wrote:
No it doesn't; smartctl works on drives, not mdadm arrays. mdadm
arrays are composed of block devices. Therefore any output you get
from smartd refers
Hi Gene,
On Fri, Jan 12, 2024 at 11:57:23PM -0500, gene heskett wrote:
> On 1/12/24 21:56, Andy Smith wrote:
> > No it doesn't; smartctl works on drives, not mdadm arrays. mdadm
> > arrays are composed of block devices. Therefore any output you get
> > from smartd refers to a storage drive, not
On Fri, 12 Jan 2024 21:42:54 -0500
gene heskett wrote:
> gene@coyote:~$ sudo smartctl -i -d /dev/md0p1
Gene, you could try reading the fine man page. The -d option takes an
argument, which eats the /dev/md0p1, leaving no device for smartctl to
look at. I have no idea what md0p1 is, but I doubt
be found by smartctl. So I must
be doing something wrong. individually it names /dev/sde1, /dev/sdg1,
and /dev/sdd1. but -h offers no syntax help that works
As usual you have not bothered to show us what you are talking about
(the email from smartd), so we are left to guess. We should
stance generates a help msg saying it needs a
> devicename as final argument, being run as "sudo smartctl -i -d /dev/sde1".
> or as -i -d /dev/md0p1???
Neither. /dev/sde1 is a partition on a block device.
/dev/md0p1 is a partition on an mdadm array. Neither one is
something that s
e1 for instance generates a help msg saying it
> needs a devicename as final argument, being run as "sudo smartctl -i -d
> /dev/sde1". or as -i -d /dev/md0p1???
> Typical: sudo smartctl -i -d /dev/md0p1:
> gene@coyote:~$ sudo smartctl -i -d /dev/md0p1
> smartctl 7.3 20
I just found an mbox file in my home directory, containing about 90 days
worth of undelivered msgs from smartctl running as root.
smartctl says my raid10 is dying, but will not access the drives for
detail. The -d /dev/sde1 for instance generates a help msg saying it
needs a devicename
On 11/01/2024 22:55, Valerio Vanni wrote:
Il 11/01/2024 15:42, Max Nikulin ha scritto:
Likely you have changed file associations for HTML files from KDE
System Settings. Try to move away ~/.config/mimeapps.list or comment
out text/html entry there and Abiword should pop back.
I confirm, it
Il 11/01/2024 15:42, Max Nikulin ha scritto:
On 11/01/2024 20:18, Valerio Vanni wrote:
Now it's working, but I don't understand why.
Now I find this:
On 11/01/2024 20:18, Valerio Vanni wrote:
Now it's working, but I don't understand why.
Now I find this:
Il 11/01/2024 03:33, Max Nikulin ha scritto:
On 11/01/2024 02:44, Valerio Vanni wrote:
After, guide was not showing anymore. Calling it (click on "help" on
Vmware application) began opening Abiword.
In kde control panel -> app -> default, Firefox is set as default
browse
On 11/01/2024 02:44, Valerio Vanni wrote:
After, guide was not showing anymore. Calling it (click on "help" on
Vmware application) began opening Abiword.
In kde control panel -> app -> default, Firefox is set as default browser.
Likely when sorted by name Abiword is before
Il 10/01/2024 22:28, Cindy Sue Causey ha scritto:
On 1/10/24, Valerio Vanni wrote:
The issue began after update from debian 10 to 11. And it persists in 12.
Before, Vmware Workstation help was shown in default browser (it's an
html guide).
After, guide was not showing anymore. Calling
On 1/10/24, Valerio Vanni wrote:
> The issue began after update from debian 10 to 11. And it persists in 12.
>
> Before, Vmware Workstation help was shown in default browser (it's an
> html guide).
> After, guide was not showing anymore. Calling it (click on "help" on
&g
The issue began after update from debian 10 to 11. And it persists in 12.
Before, Vmware Workstation help was shown in default browser (it's an
html guide).
After, guide was not showing anymore. Calling it (click on "help" on
Vmware application) began opening Abiword.
Vmware Works
Finalement le seul fait d'avoir intercalé le gs105e entre la LB6 et le reste
semble résoudre le problème sans passer par les vlan ...
Gaëtan
Le 6 janvier 2024 22:44:59 GMT+01:00, "Gaëtan Perrier"
a écrit :
>Bonjour,
>
>Je fais un gros HS mais je suis sûr qu'il y a des personnes compétentes
Le samedi 06 janvier 2024 à 23:49 +0100, MERLIN Philippe a écrit :
> Le samedi 6 janvier 2024, 23:24:09 CET Jérémy Prego a écrit :
> > Bonjour,
> >
> > j'apporte pas forcément une réponse, mais j'ai des questions
> >
> > Par hasard, quel est le mask réseau configuré que ça soit sur le
> >
Le samedi 6 janvier 2024, 23:24:09 CET Jérémy Prego a écrit :
> Bonjour,
>
> j'apporte pas forcément une réponse, mais j'ai des questions
>
> Par hasard, quel est le mask réseau configuré que ça soit sur le
> 192.168.1.* et / ou le 192.168.200.* ?
>
> Quel périphérique distribue les ip en
Le samedi 06 janvier 2024 à 23:24 +0100, Jérémy Prego a écrit :
> Bonjour,
>
> j'apporte pas forcément une réponse, mais j'ai des questions
>
> Par hasard, quel est le mask réseau configuré que ça soit sur le
> 192.168.1.* et / ou le 192.168.200.* ?
255.255.255.0 pour les deux.
>
> Quel
Bonjour,
j'apporte pas forcément une réponse, mais j'ai des questions
Par hasard, quel est le mask réseau configuré que ça soit sur le
192.168.1.* et / ou le 192.168.200.* ?
Quel périphérique distribue les ip en 192.168.200.* ?
Concernant la perte du réseau quand des vlans
sont configurés,
Bonjour,
Je fais un gros HS mais je suis sûr qu'il y a des personnes compétentes
sur la liste. ;)
Mon problème est le suivant. Chez les parents d'un ami qui a des
chambres d'hôtes on veut couvrir l'ensemble de la maison avec 2
réseaux:
- un réseau pour les proprio avec du Wifi et des périph
On 12/23/23 22:16, Timothy M Butterworth wrote:
On Sat, Dec 23, 2023 at 8:58 PM David Christensen wrote:
I believe Debian includes packages for various intrusion detection
systems. Does anyone have any comments or recommendations?
Debian has SNORT and Suricata. I use Suricata. It works well
On Sat, Dec 23, 2023 at 8:58 PM David Christensen
wrote:
> On 12/23/23 01:29, Tim Woodall wrote:
> > The fact that the OP is not sending a SYN+ACK (according to the
> > tcpdumps that I saw) means that this is already blackholed.[2]
> >
> > There are three options at this point:
> > 1. Ignore it
On 12/23/23 16:15, Dan Ritter wrote:
David Christensen wrote:
Does Debian and/or Linux support SYN cookies?
Yes.
Put
net.ipv4.tcp_syncookies=1
in an appropriate sysctl.d/ file.
To check on current settings:
sysctl -n net.ipv4.tcp_syncookies
It looks like SYN cookies are enabled by
David Christensen wrote:
> Does Debian and/or Linux support SYN cookies?
Yes.
Put
net.ipv4.tcp_syncookies=1
in an appropriate sysctl.d/ file.
To check on current settings:
sysctl -n net.ipv4.tcp_syncookies
Sent from my iPhone
> On Dec 23, 2023, at 4:53 PM, Tim Woodall wrote:
>
> On Sat, 23 Dec 2023, David Christensen wrote:
>> Sending a RST to a falsified IP address would make the sending host into an
>> attacker by proxy. Why do you suggest it?
>>
> Because the OP wants it to stop. And
On Sat, 23 Dec 2023, David Christensen wrote:
Sending a RST to a falsified IP address would make the sending host into an
attacker by proxy. Why do you suggest it?
Because the OP wants it to stop. And the OP is running a server on this
port that is clearly not responding properly or we'd at
On 12/23/23 01:29, Tim Woodall wrote:
The fact that the OP is not sending a SYN+ACK (according to the
tcpdumps that I saw) means that this is already blackholed.[2]
There are three options at this point:
1. Ignore it - my "EVILSYN[1]" blacklist is right at the top of my iptables
rules and drops
into a VPS, create an SSH tunnel
out from the httpd server to the VPS, and close all of the WAN incoming
ports.
If the OP is worried about the bandwidth usage then none of that will
help. The fact that the OP is not sending a SYN+ACK (according to the
tcpdumps that I saw) means that this is already
On 12/21/23 04:00, Alain D D Williams wrote:
My home PC is receiving, for hours at a time, 12-30 kB/s input traffic. This is
unsolicited. I do not know what it is trying to achieve but suspect no good. It
is also eating my broadband allowance.
This does not show up in the Apache log files - the
On 12/21/23 07:45, Tim Woodall wrote:
On Thu, 21 Dec 2023, Alain D D Williams wrote:
My home PC is receiving, for hours at a time, 12-30 kB/s input
traffic. This is
unsolicited. I do not know what it is trying to achieve but suspect no
good. It
is also eating my broadband allowance.
This
Alain D D Williams wrote:
> On Thu, Dec 21, 2023 at 10:11:08AM -0500, Pocket wrote:
>
> > Use a firewall and set it up correctly.
>
> That I have done.
>
> The issue is broadband usage - ie before it hits the firewall.
IIUC you have a residential system with an ISP connection with a
On 21/12/2023 15:11, Pocket wrote:
On 12/21/23 09:58, Alain D D Williams wrote:
[cut]
Use a firewall and set it up correctly.
Assuming a residential environment.
Firewall the router and server(s) as well as all the client machines.
I have nginx, dovecot and exim4 and other daemons running
On 12/21/23 13:04, Alain D D Williams wrote:
On Thu, Dec 21, 2023 at 11:39:40AM -0500, Pocket wrote:
On 12/21/23 10:50, Alain D D Williams wrote:
It is NOT a firewall issue.
If I am correct you don't want any thing from the outside to hit your web
server?
The words "web server" is
On Thu, Dec 21, 2023 at 11:39:40AM -0500, Pocket wrote:
>
> On 12/21/23 10:50, Alain D D Williams wrote:
> > It is NOT a firewall issue.
>
>
> If I am correct you don't want any thing from the outside to hit your web
> server?
The words "web server" is ambiguous. It can mean my machine, ie can
On 12/21/23 10:50, Alain D D Williams wrote:
On Thu, Dec 21, 2023 at 10:31:06AM -0500, Pocket wrote:
All you should be seeing is scans which you can not prevent.
I am looking at incoming packets with tcpdump. This sees packets *before* they
are filtered by iptables.
What are you using for
On Thu, Dec 21, 2023 at 10:51 AM Alain D D Williams wrote:
>
> On Thu, Dec 21, 2023 at 10:31:06AM -0500, Pocket wrote:
> [...]
> > Amazon AWS system. should not be able to hit your http server, unless you
> > want it to.
>
> How do I distinguish between wanted & unwanted connections. The only
On Thu, Dec 21, 2023 at 10:31:06AM -0500, Pocket wrote:
> All you should be seeing is scans which you can not prevent.
I am looking at incoming packets with tcpdump. This sees packets *before* they
are filtered by iptables.
> What are you using for a firewall?
Something hand rolled. Reasonably
On 12/21/23 10:24, Alain D D Williams wrote:
On Thu, Dec 21, 2023 at 10:11:08AM -0500, Pocket wrote:
Use a firewall and set it up correctly.
That I have done.
The issue is broadband usage - ie before it hits the firewall.
All you should be seeing is scans which you can not prevent.
What
On Thu, Dec 21, 2023 at 10:11:08AM -0500, Pocket wrote:
> Use a firewall and set it up correctly.
That I have done.
The issue is broadband usage - ie before it hits the firewall.
> Assuming a residential environment.
>
> Firewall the router and server(s) as well as all the client machines.
>
On 12/21/23 09:58, Alain D D Williams wrote:
On Thu, Dec 21, 2023 at 01:39:53PM +, Andy Smith wrote:
Okay well 30KiB/s is only about 78GiB/month which isn't really a
lot. I think we're both in UK and it's been hard to find a domestic
Internet connection that you'd run a web server on that
On Thu, Dec 21, 2023 at 01:39:53PM +, Andy Smith wrote:
> Okay well 30KiB/s is only about 78GiB/month which isn't really a
> lot. I think we're both in UK and it's been hard to find a domestic
> Internet connection that you'd run a web server on that can't cope
> with 78G/mo. So ignoring it
On Thu, Dec 21, 2023 at 12:44:33PM +, Tim Woodall wrote:
> On Thu, 21 Dec 2023, Alain D D Williams wrote:
[...]
> You can try sending RST. That might make them give up.
And then, there's tarpit [1] . But then I'd make double-sure you aren't
hurting legitimate traffic.
Cheers
[1]
On 2023-12-21, Alain D D Williams wrote:
> Yes: I do run a web server at home, but there is only a little/personal stuff,
> it does not receive much real traffic, I do not want it to. Most of my web
> presence is hosted elsewhere.
If you open a port (80 or something else), not on your server but
Hello,
On Thu, Dec 21, 2023 at 01:10:59PM +, Alain D D Williams wrote:
> Yes: I do run a web server at home, but there is only a little/personal stuff,
> it does not receive much real traffic, I do not want it to. Most of my web
> presence is hosted elsewhere.
Okay well 30KiB/s is only about
On Thu, Dec 21, 2023 at 07:50:42AM -0500, Greg Wooledge wrote:
> If your home Internet service has an "allowance", you probably shouldn't
> run a web server on it.
Yes: I do run a web server at home, but there is only a little/personal stuff,
it does not receive much real traffic, I do not want
On Thu, Dec 21, 2023 at 12:00:55PM +, Alain D D Williams wrote:
> My home PC is receiving, for hours at a time, 12-30 kB/s input traffic. This
> is
> unsolicited. I do not know what it is trying to achieve but suspect no good.
> It
> is also eating my broadband allowance.
> 11:08:56.354303
hat is going on ?
Looks like bots.
>
> • What can I do about it ?
Dropping the entirety of Asia/Africa has helped my logs (though, my ISP
doesn't track usage; and I imagine if they did, it wouldn't actually
HELP anything there, since the traffic already made it to me). If it's
a reputab
On Thu, 21 Dec 2023, Alain D D Williams wrote:
My home PC is receiving, for hours at a time, 12-30 kB/s input traffic. This is
unsolicited. I do not know what it is trying to achieve but suspect no good. It
is also eating my broadband allowance.
This does not show up in the Apache log files -
My home PC is receiving, for hours at a time, 12-30 kB/s input traffic. This is
unsolicited. I do not know what it is trying to achieve but suspect no good. It
is also eating my broadband allowance.
This does not show up in the Apache log files - the TCP connection does not
succeed.
Sometimes
Michael,
You are a star.
I dont know what I did before but I re-installed rsyslog and changed the
PrivateTmp to no
It works now.
I can see /tmp/server.log is now pushing syslog contents
Thank you very much.
On Mon, Nov 13, 2023 at 10:24 AM Michael Biebl wrote:
> Am 13.11.23 um 10:13 schrieb
Am 13.11.23 um 10:13 schrieb Bhasker C V:
I forgot to answer the question on why I am doing this
I am experimenting on a no-log system where there is no writes
what-so-ever to /var/log (except for mails) or systemd journal
(currently kept volatile)
/tmp/ is tmpfs mounted
Attached is the
201 - 300 of 20780 matches
Mail list logo
