Hy, I'm triing to find a solution to bruteforce attack, mostly on port
22, without moving services on different ports.
I've try something similar to this:
table persist
block in quick from
pass in on $ext_if proto tcp from any to ($ext_if) port ssh \
flags S/SA keep state \
(max
On Mon, 2006-Apr-10 18:45:53 -0700, Pete Slagle wrote:
>When you have very limited physical RAM you need a lot of swap space.
>When you have more than enough RAM you don't need any swap space at all.
>For a given set of applications, as RAM increases you need less swap
>space, not more. And vice
On Tue, 11 Apr 2006 19:28:19 +1000
Peter Jeremy <[EMAIL PROTECTED]> wrote:
> On Mon, 2006-Apr-10 18:45:53 -0700, Pete Slagle wrote:
> >When you have very limited physical RAM you need a lot of swap space.
> >When you have more than enough RAM you don't need any swap space at all.
> >For a given
2006/4/10, Michael Schuh <[EMAIL PROTECTED]>:
> Hello @all,
>
> last weekend i have setted up an new Machine with
> 6.1-Beta4. By Installation i have made an Swappartition
> with the size of 4GB after install in runtime in top
> it sseems to me that the maximum swap-size is
> limitied to 2GB or bet
> You probably can't replace defective hardware so fast that the users
> don't notice. They will probably also notice when a system crash
> garbles the filesystem.
that was the reason why i would make a mirrored system with CARP
and ggated...
>
> Based on your comments of low cost and massiv
On Tuesday 11 April 2006 18:28, Matteo 'egon' Baldi wrote:
> gate# pfctl -f /etc/pf.conf
> /etc/pf.conf:48: illegal timeout name max-src-conn-rate
> pfctl: Syntax error in config file: pf rules not loaded
Your version of FreeBSD is too old and has a version of pf that pre-dates this
feature.
I s
Am Montag, 10. April 2006 11:45 schrieb Jonas Wolz:
> Other applications I tested (xedit, bash) seem to work fine.
I've made some more tests and it seems to me that the "fork following" feature
(-f switch) of truss obviously is buggy.
Even the following simple shell script sometimes (in about a t
Hi,
I've encountered a strange problem while using FreeBSD 6.0 for our local mirror
(mirror.math.uni-bielefeld.de) and thus is providing access via ftp, http,
rsync and cvsup (all local and remote).
The system crashes periodically with a kernel panic (panic: sbdrop).
The uptimes between two cras
Hello Everyone,
I started seeing some ata errors on a server running FreeBSD 5.4-STABLE
that I've never seen before. This probably has something to do with it but
we just upgraded the RAM on the server from 1 GB to 2 GB (DDR 400),
perhaps a cable got slightly loose. I'm pretty certain the hard dri
In the last episode (Apr 11), Jonas Wolz said:
> Am Montag, 10. April 2006 11:45 schrieb Jonas Wolz:
> > Other applications I tested (xedit, bash) seem to work fine.
>
> I've made some more tests and it seems to me that the "fork
> following" feature (-f switch) of truss obviously is buggy. Even t
Am Dienstag, 11. April 2006 17:52 schrieb Dan Nelson:
> In the last episode (Apr 11), Jonas Wolz said:
> > If I call "truss -f sh test.sh" I get errors when execve() is called
> > to start /bin/echo, for example: (56179 is the first /bin/echo
> > (started without error), 56178 is /bin/sh)
>
> I thi
Hello,
I have faced a panic when I use external HDD with USB interface after
disconnect mounted drive:
# uname -a
FreeBSD hius.citrin.ru 6.1-RC FreeBSD 6.1-RC #0: Sun Apr 9 11:51:55 MSD 2006
[EMAIL PROTECTED]:/data/usr/obj/data/usr/src/sys/NK i386
# kgdb -c /var/crash/vmcore.0 kernel.debu
On Tue, Apr 11, 2006 at 10:58:48AM +0200, Matteo 'egon' Baldi wrote:
> Hy, I'm triing to find a solution to bruteforce attack, mostly on port 22,
> without
> moving services on different ports.
try to use
/usr/ports/security/sshit
By.
Dmitriy
___
free
Hello Dmitriy,
Tuesday, April 11, 2006, 7:04:37 PM, you typed the following:
> On Tue, Apr 11, 2006 at 10:58:48AM +0200, Matteo 'egon' Baldi wrote:
>> Hy, I'm triing to find a solution to bruteforce attack, mostly on port 22,
>> without
>> moving services on different ports.
> try to use
> /us
On 4/11/06, Daniel Gerzo <[EMAIL PROTECTED]> wrote:
>
> Hello Dmitriy,
>
> Tuesday, April 11, 2006, 7:04:37 PM, you typed the following:
>
> > On Tue, Apr 11, 2006 at 10:58:48AM +0200, Matteo 'egon' Baldi wrote:
> >> Hy, I'm triing to find a solution to bruteforce attack, mostly on port
> 22, witho
Michael Schuh wrote this message on Tue, Apr 11, 2006 at 12:56 +0200:
> My Problem was that i can't show my configured swapsize
> right...
> Partitionsize for swap was 4GB
> Showing Value was 2GB,
could you post swapinfo -k and disklabel of the appropriate disks?
--
John-Mark Gurney
Jordan Sissel wrote:
On 4/11/06, Daniel Gerzo <[EMAIL PROTECTED]> wrote:
Hello Dmitriy,
Tuesday, April 11, 2006, 7:04:37 PM, you typed the following:
On Tue, Apr 11, 2006 at 10:58:48AM +0200, Matteo 'egon' Baldi wrote:
Hy, I'm triing to find a solution to bruteforce attack, mostly on port
On Tue, 2006-Apr-11 13:15:48 +0200, Michael Schuh wrote:
>> You probably can't replace defective hardware so fast that the users
>> don't notice. They will probably also notice when a system crash
>> garbles the filesystem.
>
>that was the reason why i would make a mirrored system with CARP
>and g
On Tue, Apr 11, 2006 at 10:48:08AM +0930, Daniel O'Connor wrote:
> On Tuesday 11 April 2006 01:47, Kris Kennaway wrote:
> > On Mon, Apr 10, 2006 at 06:13:07PM +0200, Michael Schuh wrote:
> > > Hello @all,
> > >
> > > last weekend i have setted up an new Machine with
> > > 6.1-Beta4. By Installation
On Tue, Apr 11, 2006 at 12:56:30PM +0200, Michael Schuh wrote:
> 2006/4/10, Michael Schuh <[EMAIL PROTECTED]>:
> > Hello @all,
> >
> > last weekend i have setted up an new Machine with
> > 6.1-Beta4. By Installation i have made an Swappartition
> > with the size of 4GB after install in runtime in t
On Tue, Apr 11, 2006 at 08:59:01PM +0400, Anton Yuzhaninov wrote:
> Hello,
>
> I have faced a panic when I use external HDD with USB interface after
> disconnect mounted drive:
Don't do that :( It's a well-known limitation that FreeBSD doesn't
handle devices with mounted filesystems spontaneousl
From 'man tuning' (I think I wrote this, a long time ago):
You should typically size your swap space to approximately 2x main mem-
ory. If you do not have a lot of RAM, though, you will generally want a
lot more swap. It is not recommended that you configure any less than
Zuh, holy delayed reply.. but I figured for at least the sake of
web-search engines I should reply and say that this was indeed the fix.
Thank you.
--
David E. Cross
On Sat, 2006-02-18 at 15:05 -0500, Kris Kennaway wrote:
> On Sat, Feb 18, 2006 at 07:52:02PM +, David E. Cross wrote:
> > I hav
I saw under http://www.freebsd.org/releases/6.1R/todo.html that swap
performance under 6.x is slower then 4.X, and this is listed as "not
done".
I noticed that 6.1 seemed to be a dog, but 6.0 I thought was better. As
a test I installed 6.0 and 6.1 in parallel on my laptop with identical
ports tr
On Mon, Apr 10, 2006 at 04:07:51PM -0400, H. Wade Minter wrote:
> On Mon, 10 Apr 2006, Michael Proto wrote:
>
> >Does /tmp exist and is writable when the system is started? Looking at
> >the test in /etc/rc.d/tmp, it looks like /tmp will be mounted as a mfs
> >if "/bin/mkdir -p /tmp/.diskless" fai
I have a new system which includes a Plextor PX-740a DVD+-R/RW CD-R/RW
drive attached to an Asus A8V-MX motherboard.
When I try to use burncd to burn a cd, it writes all of the data, says
"fixating CD, please wait.." and then reports
burncd: ioctl(CDRIOCFIXATE): Input/output error
Oddly enoug
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On Tue, Apr 11, 2006 at 06:49:02PM -0700, George Hartzell wrote:
>
> I have a new system which includes a Plextor PX-740a DVD+-R/RW CD-R/RW
> drive attached to an Asus A8V-MX motherboard.
>
> When I try to use burncd to burn a cd, it writes all of th
On Thursday, 6 April 2006 18:22, Kent Stewart wrote:
> I cvsuped RELENG_6 and went through the usual motions to make the world,
> kernel and install them. Everything was ok until I rebooted and started
> KDE and the x-session stopped. I could login for other computers and
> xorg was using 97% of th
On Tue, 11 Apr 2006, George Hartzell wrote:
I have a new system which includes a Plextor PX-740a DVD+-R/RW CD-R/RW
drive attached to an Asus A8V-MX motherboard.
When I try to use burncd to burn a cd, it writes all of the data, says
"fixating CD, please wait.." and then reports
burncd: ioctl(C
I have been using pf (on an OpenBSD box) to automatically block
offending IP address using pf and it seems to work well for me.
Basically when an attackers tries to connect x number of times in y
minutes, I have the firewall set up to block the automatically.
Works like a charm.
A
Patrick Tr
I forgot to mention that pf is also available on FreeBSD too.
Adam Stroud wrote:
I have been using pf (on an OpenBSD box) to automatically block
offending IP address using pf and it seems to work well for me.
Basically when an attackers tries to connect x number of times in y
minutes, I have
Thus spake Adam Stroud ([EMAIL PROTECTED]) [11/04/06 23:49]:
: I have been using pf (on an OpenBSD box) to automatically block
: offending IP address using pf and it seems to work well for me.
: Basically when an attackers tries to connect x number of times in y
: minutes, I have the firewall s
On Tue, Apr 11, 2006 at 10:43:32PM +, David E. Cross wrote:
> I saw under http://www.freebsd.org/releases/6.1R/todo.html that swap
> performance under 6.x is slower then 4.X, and this is listed as "not
> done".
>
> I noticed that 6.1 seemed to be a dog, but 6.0 I thought was better. As
> a t
On Saturday 08 April 2006 20:27, Dmitry Morozovsky wrote:
> On Fri, 7 Apr 2006, Stoyan Dimov wrote:
>
> SD> Hi all,
> SD>
> SD> I got a machine with 8GB of RAM and plenty of disk space. I need gvinum
to
> SD> manage big number of file systems but PAE enabled kernel does not
compile
> SD> module
Chris H. wrote:
> Interesting to note (to me anyway) is my SCSI reports fastest on the outside
> whereas my (earlier reported) ATA reports faster in the center (middle).
You get better seek times on average in the center.
Maybe that affected your results?
--
Tuomo
... Nitpicking - not just a h
35 matches
Mail list logo
