Portupgrade fails to upgrade after using portsnap
Hi all, For a long time I've been using cvsup and portupgrade to update the ports tree once a week; this has worked well for years now. Recently though I changed to using portsnap to update the ports tree, still using portupgrade once a week to update the ports. I followed the method outlined in the handbook more or less for upgrading using portsnap, essentially running a cronjob: portsnap cron portsnap update portupgrade -arRF pkg_version -v -I -l to grab and extract the latest port snapshot, fetch any newer port distfiles/tarballs and then report by mail what ports are out of date. This worked well for a few weeks up until Feb 25th - since then not a single out of date port has been reported and 'portupgrade -arR' fails to upgrade anything. I thought this might have been to do with the recent ports freeze, though checking now I see that only went on from the start of March... I've changed back to use cvsup and the old method - basically 'cvsup -g -L2 supfile cd /usr/ports make fetchindex portsdb -u' - but still no joy. I was convinced it was the ports db files that were out of synch and thought this might do the trick to fix the problem, but unfortunately no - if I view the resulting INDEX file from this procedure I can see there are ports out of date as well, it's just 'portupgrade -arR' etc refuses to find any updates. Questions then: What could the problem be? For future reference what is the best way to purge the ports system of out of date db files and regenerate them all so 'portupgrade -arRi' will work? Cheers. -- Jez Hancock ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Portupgrade fails to upgrade after using portsnap
Hi Donald, Thanks for the replies. On 3/18/06, Donald J. O'Neill [EMAIL PROTECTED] wrote: On Saturday 18 March 2006 08:06, Jez Hancock wrote: Hi all, For a long time I've been using cvsup and portupgrade to update the ports tree once a week; this has worked well for years now. Recently though I changed to using portsnap to update the ports tree, still using portupgrade once a week to update the ports. I followed the method outlined in the handbook more or less for upgrading using portsnap, essentially running a cronjob: portsnap cron portsnap update portupgrade -arRF pkg_version -v -I -l to grab and extract the latest port snapshot, fetch any newer port distfiles/tarballs and then report by mail what ports are out of date. This worked well for a few weeks up until Feb 25th - since then not a single out of date port has been reported and 'portupgrade -arR' fails to upgrade anything. I thought this might have been to do with the recent ports freeze, though checking now I see that only went on from the start of March... I've changed back to use cvsup and the old method - basically 'cvsup -g -L2 supfile cd /usr/ports make fetchindex portsdb -u' - but still no joy. I was convinced it was the ports db files that were out of synch and thought this might do the trick to fix the problem, but unfortunately no - if I view the resulting INDEX file from this procedure I can see there are ports out of date as well, it's just 'portupgrade -arR' etc refuses to find any updates. Questions then: What could the problem be? For future reference what is the best way to purge the ports system of out of date db files and regenerate them all so 'portupgrade -arRi' will work? Cheers. -- Jez Hancock ___ Jez, I think my first response was a little unkind and I apologize for that. The way I see it, your cronjob succeeded in doing what you set it to do. It just didn't do what you wanted. First, portsnap requires fetch to get the files it needs, 'portsnap upgrade' doesn't do that. You need to run 'portsnap fetch upgrade' or 'portsnap fetch' ' portsnap upgrade'. Had you done that, it probably would have worked and you would have gotten something from the portupgrade portion of your cronjob. As it was, there was nothing new for portupgrade to work with and report. Ok, I think you posted that before I clarified things in my last post :) By the by anyway... the issue I have is that when I run pkg_version or portversion I'm told there are a dozen or so ports need upgrading. However when I run portupgrade, portupgrade finds no ports to upgrade. Very frustrating. The general gist is in the following typescript/commandline output: [14:43:05] [EMAIL PROTECTED] /usr/ports# portversion -vl bash-3.1.10 needs updating (port has 3.1.10_1) mtr-nox11-0.69_2 needs updating (port has 0.69_3) mutt-devel-1.5.11_1 needs updating (port has 1.5.11_2) mysql-server-4.0.26_1 needs updating (port has 4.0.26_2) netpbm-10.26.25 needs updating (port has 10.26.26) nmap-4.01 needs updating (port has 4.01_1) p5-Archive-Tar-1.28 needs updating (port has 1.29) p5-Mail-Tools-1.73needs updating (port has 1.74) p5-XML-RSS-1.05_1 needs updating (port has 1.10) tiff-3.8.0_1 needs updating (port has 3.8.1) vim-6.4.6 needs updating (port has 6.4.6_1) w3m-0.5.1_4 needs updating (port has 0.5.1_5) [14:43:10] [EMAIL PROTECTED] /usr/ports# portupgrade -arRi --- Session started at: Sat, 18 Mar 2006 14:43:16 + -snip- ** No need to upgrade 'bash-3.1.10' (= bash-3.1.10). (specify -f to force) -snip- ** No need to upgrade 'mtr-nox11-0.69_2' (= mtr-nox11-0.69_2). (specify -f to force) -snip- ** No need to upgrade 'mutt-devel-1.5.11_1' (= mutt-devel-1.5.11_1). (specify -f to force) etc etc This is all the result after running 'cd /usr/ports make fetchindex' to get the latest ports INDEX db then running 'portsdb -u' to update /var/db/pkg/pkgdb.db. Any ideas why portversion says various ports are out of date but portupgrade doesn't want to update them? Is there any db that portupgrade would use to determine out of date ports other than /var/db/pkg/pkgdb.db? Thanks again. -- Jez Hancock - System Administrator / PHP Developer http://munk.nu/ http://freebsd.munk.nu/ - A FreeBSD Diary http://ipfwstats.sf.net/- ipfw peruser traffic logging ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Portupgrade fails to upgrade after using portsnap
On 3/18/06, Duane Whitty [EMAIL PROTECTED] wrote: Donald J. O'Neill wrote: On Saturday 18 March 2006 12:06, Jez Hancock wrote: Hi Donald, Thanks for the replies. On 3/18/06, Donald J. O'Neill [EMAIL PROTECTED] wrote: On Saturday 18 March 2006 08:06, Jez Hancock wrote: Hi all, For a long time I've been using cvsup and portupgrade to update the ports tree once a week; this has worked well for years now. Recently though I changed to using portsnap to update the ports tree, still using portupgrade once a week to update the ports. I followed the method outlined in the handbook more or less for upgrading using portsnap, essentially running a cronjob: portsnap cron portsnap update portupgrade -arRF pkg_version -v -I -l to grab and extract the latest port snapshot, fetch any newer port distfiles/tarballs and then report by mail what ports are out of date. This worked well for a few weeks up until Feb 25th - since then not a single out of date port has been reported and 'portupgrade -arR' fails to upgrade anything. I thought this might have been to do with the recent ports freeze, though checking now I see that only went on from the start of March... I've changed back to use cvsup and the old method - basically 'cvsup -g -L2 supfile cd /usr/ports make fetchindex portsdb -u' - but still no joy. I was convinced it was the ports db files that were out of synch and thought this might do the trick to fix the problem, but unfortunately no - if I view the resulting INDEX file from this procedure I can see there are ports out of date as well, it's just 'portupgrade -arR' etc refuses to find any updates. Questions then: What could the problem be? For future reference what is the best way to purge the ports system of out of date db files and regenerate them all so 'portupgrade -arRi' will work? Cheers. -- Jez Hancock ___ Jez, I think my first response was a little unkind and I apologize for that. The way I see it, your cronjob succeeded in doing what you set it to do. It just didn't do what you wanted. First, portsnap requires fetch to get the files it needs, 'portsnap upgrade' doesn't do that. You need to run 'portsnap fetch upgrade' or 'portsnap fetch' ' portsnap upgrade'. Had you done that, it probably would have worked and you would have gotten something from the portupgrade portion of your cronjob. As it was, there was nothing new for portupgrade to work with and report. Ok, I think you posted that before I clarified things in my last post :) By the by anyway... the issue I have is that when I run pkg_version or portversion I'm told there are a dozen or so ports need upgrading. However when I run portupgrade, portupgrade finds no ports to upgrade. Very frustrating. The general gist is in the following typescript/commandline output: [14:43:05] [EMAIL PROTECTED] /usr/ports# portversion -vl bash-3.1.10 needs updating (port has 3.1.10_1) mtr-nox11-0.69_2 needs updating (port has 0.69_3) mutt-devel-1.5.11_1 needs updating (port has 1.5.11_2) mysql-server-4.0.26_1 needs updating (port has 4.0.26_2) netpbm-10.26.25 needs updating (port has 10.26.26) nmap-4.01 needs updating (port has 4.01_1) p5-Archive-Tar-1.28 needs updating (port has 1.29) p5-Mail-Tools-1.73needs updating (port has 1.74) p5-XML-RSS-1.05_1 needs updating (port has 1.10) tiff-3.8.0_1 needs updating (port has 3.8.1) vim-6.4.6 needs updating (port has 6.4.6_1) w3m-0.5.1_4 needs updating (port has 0.5.1_5) [14:43:10] [EMAIL PROTECTED] /usr/ports# portupgrade -arRi --- Session started at: Sat, 18 Mar 2006 14:43:16 + -snip- ** No need to upgrade 'bash-3.1.10' (= bash-3.1.10). (specify -f to force) -snip- ** No need to upgrade 'mtr-nox11-0.69_2' (= mtr-nox11-0.69_2). (specify -f to force) -snip- ** No need to upgrade 'mutt-devel-1.5.11_1' (= mutt-devel-1.5.11_1). (specify -f to force) etc etc This is all the result after running 'cd /usr/ports make fetchindex' to get the latest ports INDEX db then running 'portsdb -u' to update /var/db/pkg/pkgdb.db. Any ideas why portversion says various ports are out of date but portupgrade doesn't want to update them? Is there any db that portupgrade would use to determine out of date ports other than /var/db/pkg/pkgdb.db? Thanks again. -- Jez Hancock - System Administrator / PHP Developer http://munk.nu/ http://freebsd.munk.nu/ - A FreeBSD Diary http://ipfwstats.sf.net/- ipfw peruser traffic logging ___ Jez, I have no clue. If portversion is saying there is a port in need of upgrade
Re: per-user ftp traffic accounting ... possible ?
On 3/6/06, Ensel Sharon [EMAIL PROTECTED] wrote: I am using the standard, stock FreeBSD ftpd, running out of inetd. Is there any way to keep track of how much ftp traffic is generated by each individual user ? You could use ipfw to count the traffic to/from each user - something like this will count traffic for the user foo: ipfw add count all from any to any uid foo See my sig for a hack that implements this. -- Jez Hancock - System Administrator / PHP Developer http://ipfwstats.sf.net/- ipfw peruser traffic logging ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Blacklisting IPs
On Mon, 10 Jan 2005 12:23:04 -0500, Louis LeBlanc [EMAIL PROTECTED] wrote: On 01/10/05 12:20 AM, artware sat at the `puter and typed: Hello again, My 5.3R system has only been up a little over a week, and I've already had a few breakin attempts -- they show up as Illegal user tests in the /var/log/auth.log... It looks like they're trying common login names (probably with the login name used as passwd). It takes them hours to try a dozen names, but I'd rather not have any traffic from these folks. Is there any way to blacklist IPs at the system level, or do I have to hack something together for each daemon? The best defense is a good firewall, good passwords, and restriction of user ids that may login remotely. I started blocking the addresses that attacked but the frequency of the attacks made it impractical to add every attacking address to the firewall ruleset. I came to the conclusion that as long as the items you mention above are in place - especially good passwords - and the attacks aren't saturating the connection, then there's little to worry about - perhaps on a par with portscanning. Another fairly simple option though is to just change the port that sshd listens on since the attacks presume that sshd is listening on port 22. Not always practical though if you have lots of users. -- Jez Hancock - System Administrator / PHP Developer http://munk.nu/ http://freebsd.munk.nu/ - A FreeBSD Diary http://ipfwstats.sf.net/- ipfw peruser traffic logging ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: traffic counting
On Tue, Jan 04, 2005 at 03:43:55PM +0500, Alexandr Lookoshkoff wrote: How to make such thing as traffic counting? There is a gateway (with NAT) and a local network. Every month i must send a report how many traffic get everybody. What tool can help me with it? There's a hack I use that's detailed here: http://ipfwstats.sf.net/ essentially a shell rc script runs at boot time to create an ipfw 'count' rule for each user on the server. The counts are then collected via cron at the end of each day and dropped into a mysql db. The db can then be queried by a php script from a web server to display statistics to the end user/admin/etc. Fairly simple but worked for me at the time. -- Jez Hancock - System Administrator / PHP Developer http://munk.nu/ http://jez.hancock-family.com/ - Another FreeBSD Diary http://ipfwstats.sf.net/- ipfw peruser traffic logging ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
make broken in ports when DATE environment variable set
I've just gone to run the weekly 'portupgrade -ari' and found that the make process is failing anywhere in /usr/ports. An example of the output is: [8:28:01] [EMAIL PROTECTED] /usr/ports# portupgrade vim --- Upgrading 'vim-6.3.16' to 'vim-6.3.45' (editors/vim) --- Building '/usr/ports/editors/vim' with make flags: -DNO_GUI === Cleaning for libiconv-1.9.2_1 === Cleaning for libtool-1.5.10 === Cleaning for vim-6.3.45 20041211: not found *** Error code 127 Stop in /usr/ports/editors/vim. Manually changing to /usr/ports/editors/vim and issuing a 'make clean make' command fails with the same error message as above. Anyway with some digging about I found this entry in /usr/ports/CHANGES: 20041209: AUTHOR: [EMAIL PROTECTED] The following changes were committed: * Define new macros: DATE, FMT, MKTEMP, OBJDUMP, and use command macro SORT. By coincidence I have a DATE variable set in my shell rc file and it appears to be this that is stopping the make process in the ports tree. Issuing 'unsetenv DATE' prior to running 'make' in the ports tree actually fixes the problem. My question then is whether this is something that is known or whether I should send a problem report or what? I've had a quick search for PRs relating to the problem but couldn't see anything. I can live with having to run 'unsetenv DATE' any time I need to modify the ports, but perhaps there are wider consequences of this problem? Cheers. -- Jez Hancock - System Administrator / PHP Developer http://munk.nu/ http://freebsd.munk.nu/ - A FreeBSD Diary http://ipfwstats.sf.net/- ipfw peruser traffic logging ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: showing which path a user program runs from?
On Mon, 13 Sep 2004 22:37:33 -0400, robg [EMAIL PROTECTED] wrote: hi, say im the user 'rob' and i have the same program in two seperate folders in my /home dir and run both.. if i run ps it shows me im running both, but how can i find out which location folder is running which program shown in ps Try using the -w option to the ps commandline more than once: ps auxww that should give you a complete listing that includes the full commandline. See the manpage for more info on ps: -w Use 132 columns to display information, instead of the default which is your window size. If the -w option is specified more than once, ps will use as many columns as necessary without regard for your window size. -- Jez Hancock - System Administrator / PHP Developer http://munk.nu/ http://jez.hancock-family.com/ - Another FreeBSD Diary http://ipfwstats.sf.net/- ipfw peruser traffic logging ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Mail from a shell script?
On Mon, 13 Sep 2004 11:31:55 -0600 (MDT), Ryan Sommers [EMAIL PROTECTED] wrote: First problem I ran into. I'm attempting to send the mail via `which mail`. I first was going to attempt to concatenate the message via message=${message}$'\n'other line However, this strips the newlines out of the variable (both sh and bash). I then tried using the string redirection in bash/sh and same thing happened. I believe this happens because the default input field separator (the environment variable $IFS) is set to space by default and so newlines are just 'squashed'. Effectively all newlines are stripped out. As a test you can try this: -snip- #!/bin/sh message=Hi! This is a test. Another line. Last line. # OFS=$IFS # IFS= echo $message # IFS=$OFS -snip- If you run the script once with the commented lines, you should see the same problem you've encountered already. Newlines are replaced with spaces. However if you then remove the comments so that the $IFS variable is unset before echoing the message (first saving the original value to $OFS) and run it, the script should display the lines as intended, newlines intact. Finally the last commented line resets $IFS to it's original value - script execution can be messed up later if you don't do this. My next thought was to open an fd through which to pipe output since the shells support it. However, it seems they only support opening a file for read/write, not a pipe. So, my ultimate question is, is there any way to send an email from a shell script without creating a wrapper script that pipes the output of one script into the mail program. Ie script1 contains only script2 | mail recip. You can always try this as well to find scripts that contain the kind of code you want to emulate: file /usr/local/bin/* | grep Bourne | cut -f1 -d: | xargs grep mail which gives you a list of bourne shell scripts residing in /usr/local/bin that contain reference to the string 'mail' - those scripts that might contain mailer code. Running this now I remember checking out the 'flea' script before for an example before - another is the freebsd problem report script - send-pr. I think those scripts cat the message content out to a temporary file first and then pipe that file back to the sendmail command - or some variation on that theme. -- Jez Hancock - System Administrator / PHP Developer http://munk.nu/ http://jez.hancock-family.com/ - Another FreeBSD Diary http://ipfwstats.sf.net/- ipfw peruser traffic logging ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Bittorrent not in ports?
On Fri, Jun 18, 2004 at 06:38:23PM -0700, Julian M. Mason wrote: ...is bittorrent really not in ports? my usual # cd /usr/ports ; make search name=bittorrent and # whereis bittorrent turned up nothing; nor did a wandering around /usr/ports/net. Do I have to actually go and get something myself? gasp As others have mentioned the location of the bittorrent port I'll skip that bit - just a note though to say check out the portsearch perl script which is useful for finding ports: /usr/ports/Tools/scripts/portsearch -i bittorrent turns up plenty to go on. -- Jez Hancock - System Administrator / PHP Developer http://munk.nu/ http://jez.hancock-family.com/ - Another FreeBSD Diary http://ipfwstats.sf.net/- ipfw peruser traffic logging ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Apache2 and UserDir in FreeBSD
On Wed, Jun 16, 2004 at 03:16:50PM -0400, Duane Winner wrote: Does anybody know why this is happening: I have found that with apache2, installed via portinstall on both 4.9 and 5.x, the UserDir is enabled even if it is commented out in httpd.conf! It is on by default in the stock httpd.conf that installs with apache2. If I comment it out and restart, I have found that users can still create public_html directories in their home directories, and publish content. I found this odd as well on apache13 a while ago. UserDir is enabled by default for apache13 and will only be 'disabled' if you set it disabled explicitly in httpd.conf: UserDir disabled Otherwise, ~/public_html Otherwise the httpd will serve up requests for: http://example.com/~user/ from: ~user/public_html on the local file system. Why is this happening? I presume it happens because apache is built with defaults set so that UserDir is enabled by default. If you don't want UserDir enabled, probably the easiest thing to do is just disable it as above. Good luck. -- Jez Hancock - System Administrator / PHP Developer http://munk.nu/ http://jez.hancock-family.com/ - Another FreeBSD Diary http://ipfwstats.sf.net/- ipfw peruser traffic logging ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Apache2 and UserDir in FreeBSD
On Thu, Jun 17, 2004 at 07:04:07AM +0100, Jez Hancock wrote: On Wed, Jun 16, 2004 at 03:16:50PM -0400, Duane Winner wrote: Does anybody know why this is happening: I have found that with apache2, installed via portinstall on both 4.9 and 5.x, the UserDir is enabled even if it is commented out in httpd.conf! It is on by default in the stock httpd.conf that installs with apache2. If I comment it out and restart, I have found that users can still create public_html directories in their home directories, and publish content. I found this odd as well on apache13 a while ago. UserDir is enabled by default for apache13 and will only be 'disabled' if you set it disabled explicitly in httpd.conf: ... on rereading my post I realize I forgot to say that the details in my post also apply to apache 2.x as well as 1.3.x - that's to say that by default apache 2.x has UserDir enabled by default on FreeBSD. Turn it off using 'UserDir disabled' in httpd.conf. -- Jez Hancock - System Administrator / PHP Developer http://munk.nu/ http://jez.hancock-family.com/ - Another FreeBSD Diary http://ipfwstats.sf.net/- ipfw peruser traffic logging ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Logging the message body from an MTA
On Thu, Jun 17, 2004 at 11:22:44PM +, Lonnie Santella wrote: I need to log the message body of incoming and outgoing messages on my FreeBSD 5.2.1 Release server. I'm running Exim right now, but I really don't have a preference of MTA. The main thing is I need to facilitate the logging of message bodies. I don't want to flood you with too many details, but we want to archive messages (including message body) to a MySQL database, so that we can quickly run queries and review messages from months/years ago - no matter who's mailbox it ended up in. To accomplish this, we need to first log the message body somehow... anyhow... then commit the logs to the MySQL database. I'd settle for learning how to do the first step. I've read through Exim docs and Sendmail docs, as well as various newsgroups - plenty of info on logging various data - but nothing on message bodies. I posted a message to the Exim news group - but no luck there. I'm not set on Exim - I just want to log message bodies. Any help or a push in the right direction would be GREATLY appreciated. If it helps, there's a reply on the exim-users list about archiving all email passing through the mta 'unseen'. I'll paste the relevant parts, for the whole thread you might want to check out the MARC mailing list archives - you should be able to find the thread by searching on the subject line or one of the other identifying headers. As for the rest of your problem, no doubt it's been done before of course, the hard part is finding out how :P The exim list is worth checking out if you decide to go down that route, the people on that list are very knowledgeable and it has probably been done before. Here is the mail in question re archiving messages anyway: From [EMAIL PROTECTED] Wed Apr 14 17:41:01 2004 To: [EMAIL PROTECTED] Subject: RE: [Exim] Archive Email In-Reply-To: [EMAIL PROTECTED] Message-ID: [EMAIL PROTECTED] References: [EMAIL PROTECTED] List-Help: mailto:[EMAIL PROTECTED] List-Post: mailto:[EMAIL PROTECTED] List-Subscribe: http://www.exim.org/mailman/listinfo/exim-users, mailto:[EMAIL PROTECTED] List-Id: A user list for the exim MTA exim-users.exim.org List-Archive: http://www.exim.org/pipermail/exim-users/ Date: Wed, 14 Apr 2004 16:34:59 + (GMT) Add a router, before the routers that would normally deal with incoming mail for the domain(s) in question. archiver: driver = redirect verify = false expn = false domains = ${lookup{$domain}lsearch{/etc/exim/mailarch}{$domain}fail} data = ${lookup{$domain}lsearch{/etc/exim/mailarch}} file_transport = address_file pipe_transport = address_pipe unseen = true repeat_use = false Add lines in /etc/exim/mailarch (any other name could be used instead) for the domains in question: domain1: [EMAIL PROTECTED], [EMAIL PROTECTED] domain2: /home/customer/mail/domain2 domain3: |procmail -m /etc/procmailrcs/domain3-arch -aw On Tue, 13 Apr 2004, fxpbackup.com wrote: Could you give me more specifics on that? I really haven't done anything with exim beyond setting up mailscanner / clamAV and fixing some cPanel induced bugs. http://www.FXPBackup.com Encrypted Backup Hosting Dedicated Servers -Original Message- From: A. Wik [mailto:[EMAIL PROTECTED] Sent: Tuesday, April 13, 2004 8:46 PM To: [EMAIL PROTECTED] Subject: Re: [Exim] Archive Email On Tue, 13 Apr 2004 [EMAIL PROTECTED] wrote: I need to find a simple way to either forward a copy of all emails for a domain to a specific account or to actually copy the message files themselves within the server to a storage area for ongoing archiving. More and more businesses are requesting this for legal purposes and I have yet to find a way to do it in Exim itself. I do something like that using the unseen = true router option for for keeping archives of some mailing lists I run. -aw -- Jez Hancock - System Administrator / PHP Developer http://munk.nu/ http://jez.hancock-family.com/ - Another FreeBSD Diary http://ipfwstats.sf.net/- ipfw peruser traffic logging ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: microuptime() went backwards
On Fri, Apr 23, 2004 at 09:04:56AM +0300, hugle wrote: SOmetimes I see such messages in dmesg. perl# dmesg uptime() went backwards (1574174.333073 - 1573478.944788) what they mean? and what causes them to appear ? is it good or bad?? :) I'd always presumed these messages occured on my machine because the ntpd (network time protocol daemon) had adjusted the system clock. I can't actually tell you for sure since the messages aren't logged by syslog here so there's no easy way of comparing the times to see if they correspond to the ntpd adjustments. Check to see if you have ntpd running - if so that's probably the reason for the messages. -- Jez Hancock - System Administrator / PHP Developer http://munk.nu/ http://jez.hancock-family.com/ - Another FreeBSD Diary http://ipfwstats.sf.net/- ipfw peruser traffic logging ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: make search name/key broken with ports directory moved
On Sun, Apr 04, 2004 at 03:27:14PM -0500, Adam Fabian wrote: Since I moved my ports directory, I *think*, make search name and make search key don't do anything. I stuck my ports directory under /home since /usr was getting a bit tight. I set PORTSDIR=/home/usr/ports in make.conf, which is where my ports tree is. Now, make search name and make search key don't do anything. No error messages, no output whatsoever, exit code of 0. As another poster noted, a symbolic link from /usr/ports to the new location should work fine. I shifted mine into my home directory after running out of space on /usr: mv /usr/ports /home/munk ln -s /home/munk/ports /usr/ports Aside from that though, check out the portsearch utility - it has a lot to offer over 'make search' - it's located here: /usr/ports/Tools/scripts/portsearch ^^ or whereever you've put your ports now :P Good luck. -- Jez Hancock - System Administrator / PHP Developer http://munk.nu/ http://jez.hancock-family.com/ - Another FreeBSD Diary http://ipfwstats.sf.net/- ipfw peruser traffic logging ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: dmesg bootup-info removed/overwritten by syslogd ?
On Mon, Apr 05, 2004 at 01:15:29PM +0900, Rob wrote: I wanted to see my original bootup messages again. So I typed dmesg, but all I got were 'arplookup' lines. I'm puzzled, where the bootup messages have gone? Overwritten by kernel debug messages. There have been a number of similar questions for a while, the gist is that when the dmesg buffer gets filled up, it starts to overwrite itself. This affects the daily periodic output and makes it look munged. I don't think any solution has ever been offered up - I'd certainly be interested in it :P I have two files in /var/log: dmesg.today and dmesg.yesterday Both files are completely filled with this line: arplookup 147.46.50.254 failed: host is not on local network How can I see the original bootup messages from the kernel? One way is to cat the output from bootup dmesg into a file at boot time - in /etc/rc.local put this: dmesg /var/log/dmesg.boot if you wanted to get fancy you could use the date(1) command to timestamp the files ala: dmesg /var/log/dmesg.boot.`date +%Y%m%d` Do I have to reboot for that :( ? Yup. Good luck. -- Jez Hancock - System Administrator / PHP Developer http://munk.nu/ http://jez.hancock-family.com/ - Another FreeBSD Diary http://ipfwstats.sf.net/- ipfw peruser traffic logging ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: dmesg bootup-info removed/overwritten by syslogd ?
On Mon, Apr 05, 2004 at 07:14:28AM +0200, Remko Lodder wrote: Rob wrote: How can I see the original bootup messages from the kernel? Do I have to reboot for that :( ? You can, but you can also have a look at /var/run/dmesg.boot Saves some time, and saves downtime :-) Mmm getting deja vu here... ignore my method above :P -- Jez Hancock - System Administrator / PHP Developer http://munk.nu/ http://jez.hancock-family.com/ - Another FreeBSD Diary http://ipfwstats.sf.net/- ipfw peruser traffic logging ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Sample server for Cyrus SASL
On Fri, Mar 26, 2004 at 07:38:42AM -0500, WebTent Support wrote: I have Cyrus SASL 2.1.18 installed from ports on 5.2.1. Does it place the source somewhere? How can I test with the sample-server and sample-client? If you issue: cd /usr/ports/security/cyrus-sasl2 make extract cd work/cyrus-sasl-2.1.18/utils you can find some utilities for testing there. -- Jez Hancock - System Administrator / PHP Developer http://munk.nu/ http://jez.hancock-family.com/ - Another FreeBSD Diary http://ipfwstats.sf.net/- ipfw peruser traffic logging ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: newsyslog and apache
On Mon, Mar 22, 2004 at 03:06:22AM -0800, Noah wrote: apache complains of being out of memory during a graceful restart when newsyslog is sending a series of SIGUSR1 signal to it. Any clues on this? This looks familiar from the apache-httpd-users list :P I'm not sure about your specific problem, but have you considered using cronolog instead of depending on newsyslog to rotate your logs daily? In the ports: /usr/ports/sysutils/cronolog On the web: http://cronlog.org/ -- Jez Hancock - System Administrator / PHP Developer http://munk.nu/ http://jez.hancock-family.com/ - Another FreeBSD Diary http://ipfwstats.sf.net/- ipfw peruser traffic logging ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Root posting
On Mon, Mar 22, 2004 at 03:47:56PM +0100, Henrik W Lund wrote: The ongoing debate about top posting vs. bottom/random posting has sparked a somewhat related question in me: what about root posting (e.g. posting to the root of the list, instead of in the relevant thread)? Please please *please* don't lets have lots of examples of how and why this is a bad thing ala greg lehey's posts above g For someone like me, who is on digest (and not planning to go off it soon. The digests clutter my mailbox enough as it is), it is often a matter og being reluctant to post to an ongoing thread, knowing that my email will fall out of the thread context. I noticed someone top-posting a while ago to this list whilst including the complete digest mail below his/her top-post - 70k or so(?). I don't see why you can't just strip out the part of the digest that's relevant to you and reply to it in-line, adding a suitable subject. It's been a while since I subscribed to a digest list, but I wouldn't be surprised if mutt actually lets you reply _only_ to an individual mail in a digest mail, allowing you to maintain threading. Depends how the digest is formatted I suppose. -- Jez Hancock - System Administrator / PHP Developer http://munk.nu/ http://jez.hancock-family.com/ - Another FreeBSD Diary http://ipfwstats.sf.net/- ipfw peruser traffic logging ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: freebsd, php and gd libary
On Sat, Mar 20, 2004 at 10:24:28AM +0100, thomas may wrote: i installed mod_php4 from ports tree with gd options, but it starts automatically a xfree86 installation what i don?t need on my webserver. So i tried to install gd-2.0.22 manually. But i get the following error after make install snip Try something like: cd /usr/ports/graphics/gd make clean make -DWITHOUT_X11 install -- Jez Hancock - System Administrator / PHP Developer http://munk.nu/ http://jez.hancock-family.com/ - Another FreeBSD Diary http://ipfwstats.sf.net/- ipfw peruser traffic logging ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: problem with su
On Sat, Mar 20, 2004 at 07:41:53PM +0200, Eric Yellin wrote: When I su -m and login as root, all I get in the prompt is a % sign. My normal user shell is tcsh and the prompt looks like this: [EMAIL PROTECTED]/home/eric(29): but this is not kept when I su -m. How can I change this? Have you tried copying ~eric/.cshrc to ~root/.cshrc? -- Jez Hancock - System Administrator / PHP Developer http://munk.nu/ http://jez.hancock-family.com/ - Another FreeBSD Diary http://ipfwstats.sf.net/- ipfw peruser traffic logging ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Su to Root
On Sat, Mar 20, 2004 at 12:37:37PM -0500, Kevin Coles wrote: I am using freebsd 5.2, which I have installed recently. I cannot seem to su to root while using my normal account. All I get is a message saying Sorry. Can anyone help? Try resetting the root password perhaps? See here: http://www.freebsd.org/doc/en_US.ISO8859-1/books/faq/admin.html#FORGOT-ROOT-PW -- Jez Hancock - System Administrator / PHP Developer http://munk.nu/ http://jez.hancock-family.com/ - Another FreeBSD Diary http://ipfwstats.sf.net/- ipfw peruser traffic logging ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: problem with su
On Sat, Mar 20, 2004 at 06:46:53PM -, Edmund Craske wrote: This isn't right, when using the -m flag su uses your current environment, keeping your shell, prompt etc the same as in your own account. All I can think of is that it executes something when it opens the new shell which changes it, which shouldn't be root's cshrc. Perhaps some shell script conditional gubbins around the prompt statement in the user's cshrc? Mmm you're right - personally I do: su - to su from my normal to root user and I have ~root/.cshrc symlinked to ~user/.cshrc (ditto for most other dotrc files :P). Works for me. -- Jez Hancock - System Administrator / PHP Developer http://munk.nu/ http://jez.hancock-family.com/ - Another FreeBSD Diary http://ipfwstats.sf.net/- ipfw peruser traffic logging ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: freebsd, php and gd libary
On Sat, Mar 20, 2004 at 08:40:53PM +0100, thomas may wrote: Thanx for your answer. I have installed the mod_php4 port, and need gd library support. So if i try the following, i get errors, in the options dialog i enabled gd support. Uninstall the mod_php4 port: cd /usr/ports/www/mod_php4 make deinstall deinstall and clean up the GD port: cd /usr/ports/www/graphics/gd make deinstall make clean install the GD port without x11: make -DWITHOUT_X11 install and then finally go back and reinstall mod_php4: cd /usr/ports/www/mod_php4 make install Note however: neptun# make FORCE_PKG_REGISTER= -DWITHOUT_X11 install === Building for mod_php4-4.3.4_7,1 snip This is an old version of mod_php4 - you probably want to cvsup your ports tree before doing anything else. -- Jez Hancock - System Administrator / PHP Developer http://munk.nu/ http://jez.hancock-family.com/ - Another FreeBSD Diary http://ipfwstats.sf.net/- ipfw peruser traffic logging ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Su to Root
On Sat, Mar 20, 2004 at 07:42:17PM +0100, Remko Lodder wrote: Jez Hancock wrote: On Sat, Mar 20, 2004 at 12:37:37PM -0500, Kevin Coles wrote: I am using freebsd 5.2, which I have installed recently. I cannot seem to su to root while using my normal account. All I get is a message saying Sorry. Can anyone help? Try resetting the root password perhaps? See here: http://www.freebsd.org/doc/en_US.ISO8859-1/books/faq/admin.html#FORGOT-ROOT-PW Don't even think about that yet.. Read the reply from Matthew Seaman and mine first, if you can't become root after that, you might start considering it... Well my thinking was that the user must already in the wheel group otherwise the error would have been: su: you are not in the correct group (wheel) to su root. and not: Sorry Maybe I was jumping to conclusions though :P -- Jez Hancock - System Administrator / PHP Developer http://munk.nu/ http://jez.hancock-family.com/ - Another FreeBSD Diary http://ipfwstats.sf.net/- ipfw peruser traffic logging ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Spam? FreeBSD Install Guide Official Launch News release (fwd)
On Thu, Mar 18, 2004 at 07:02:55PM +, Rus Foster wrote: Anyone else recieve this Spam? Yes. Abuse reports filed.. Ditto. -- Jez Hancock - System Administrator / PHP Developer http://munk.nu/ http://jez.hancock-family.com/ - Another FreeBSD Diary http://ipfwstats.sf.net/- ipfw peruser traffic logging ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: FreeBsd and SCO
On Sat, Mar 06, 2004 at 11:06:32PM +, Raymond Wiegand wrote: I have a question for you ? I purchased FreeBSD from COMP USA and was wondering that seeing that SCO is going after Linux Users will they be going after BSD user next or is BSD not at all based on their kernal or what every they claim is theirs property. See here: http://www.lemis.com/grog/sco.html especially: http://www.lemis.com/grog/sco.html#BSD -- Jez Hancock - System Administrator / PHP Developer http://munk.nu/ http://jez.hancock-family.com/ - Another FreeBSD Diary http://ipfwstats.sf.net/- ipfw peruser traffic logging ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Monitoring bandwidth usage by user
On Wed, Mar 03, 2004 at 04:38:12PM -0800, Roop Nanuwa wrote: Is there any way to get live (or even just logged) monitoring of bandwidth usage by user instead of just an aggregate amount for the entire machine/interface? See the last link in my sig below: -- Jez Hancock - System Administrator / PHP Developer http://munk.nu/ http://jez.hancock-family.com/ - Another FreeBSD Diary http://ipfwstats.sf.net/- ipfw peruser traffic logging ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: production box: 4.9, 5.1, 5.2+ ???
On Tue, Mar 02, 2004 at 04:40:00PM -0800, lee slaughter wrote: thanks for any clarification i can get on: 1. which is best production version As already highlighted, 4.x is touted as being production quality. However there are no doubt plenty of users on this forum that use 5.x in production environments who would testify that 5.x is of production quality. 2. what is best essential upkeep mechanism (not so much for apps but for bug fixes in OS and security fixes/patches on essential stuff like OpenSsh) The best thing to do is to cvsup your source to the latest RELEASE branch of whichever version you decide to stick with (say 4.9), then make build|installworld to bring it up to the very latest in terms of security and other essential fixes. From this point you can then afford to ONLY apply essential security patches which are released to the freebsd-announce mailing list (make sure you're subscribed to it:P) See the handbook for more info: http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/cutting-edge.html - essential reading for what you want to do - especially: http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/current-stable.html - which covers the subtleties between the different branches, current and stable - annoyingly RELEASE isn't mentioned on that page, not sure why - it's mentioned in the cvs-tags link below though. http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/cvsup.html - about using cvsup to keep up to date - lengthy but good http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/cvs-tags.html - about cvs tags, which you need to know about when cvsup'ing Also see the cvsup supfile examples in: /usr/src/share/examples/cvsup/ these give you a good overview of how to structure your cvsup supfile, although this is also covered in the 3rd link above. -- Jez Hancock - System Administrator / PHP Developer http://munk.nu/ http://jez.hancock-family.com/ - Another FreeBSD Diary http://ipfwstats.sf.net/- ipfw peruser traffic logging ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: how to extract winzip files?
On Mon, Feb 23, 2004 at 09:55:24AM +0100, Martin Vana wrote: Is there a way, I can uncompress zip files made under win? Unzip from ports collection probably can't do that: End-of-central-directory signature not found. Either this file is not a zipfile, or it constitutes one disk of a multi-part archive. In the latter case the central directory and zipfile comment will be found on the last disk(s) of this archive. and I'm sure this is not multipart archive or broken file. If this was a zip file created by WinXP itself I seem to remember having trouble unzipping such files with unzip. I resorted to using winzip or winrar or some such to create archives - which then extract fine using unzip. -- Jez Hancock - System Administrator / PHP Developer http://munk.nu/ http://jez.hancock-family.com/ - Another FreeBSD Diary http://ipfwstats.sf.net/- ipfw peruser traffic logging ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: How to start single user mode or safe mode
On Mon, Feb 23, 2004 at 10:49:53PM +0800, Stephen Liu wrote: Accidentally I made a mistake # ee /etc/rc.conf . hostname=localhost and could not start the PC At booting .. Enter full pathname of shell or RETURN for /bin/sh: Hit ENTER # ee (could not work) I rebooted the PC. At booting, selecting [3] or [4] could not boot to 'safe mode' nor 'single user mode' Firstly it would help if you could tell us why you were originally dropped to single user mode - ie the messages prior to 'Enter full pathname of shell...'. To boot into single user mode at startup: - hit any key APART FROM ENTER when the system counts down from 10. This will take you to the boot prompt. - type 'boot -s' to boot into single user mode After booting into single user mode, to be able to write any changes /etc to disk you need to change the status of the / partition from read only to read/write mode. To do this execute: /sbin/mount -u / Note you should use the full path because /sbin may not be in your PATH for one reason or another. Now you can move on to fix any problems with /etc/rc.conf. If you really want to use ee(1) then you'll need to first mount the partition containing /usr/sbin since ee(1) resides there and if the partition containing /usr/sbin isn't mounted you won't be able to use ee(1). If /usr has it's own dedicated partition you'd do: mount /usr generally. Finally you should be able to do: /usr/sbin/ee /etc/rc.conf again using the full path to ee(1). This is one of the reasons I forced myself to learn ed(1)/vi(1) - it's the one editor that's generally available no matter what when you boot a system in single user mode. -- Jez Hancock - System Administrator / PHP Developer http://munk.nu/ http://jez.hancock-family.com/ - Another FreeBSD Diary http://ipfwstats.sf.net/- ipfw peruser traffic logging ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: OT: Longest uptime
On Sat, Feb 21, 2004 at 11:49:22PM -0400, Marc G. Fournier wrote: Doesn't (or didn't?) Linux have a 'feature' that allowed ppl to save their uptimes through a reboot? So, for instance, if it was a schedualed reboot, uptime still showed one continuous uptime? I'd imagine that this would be saved through upgrades as well ... There's a similar module for fbsd here: http://garage.freebsd.pl although the site appears to be down at this moment. -- Jez Hancock - System Administrator / PHP Developer http://munk.nu/ http://jez.hancock-family.com/ - Another FreeBSD Diary http://ipfwstats.sf.net/- ipfw peruser traffic logging ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: OT: Longest uptime
On Sun, Feb 22, 2004 at 12:28:40PM -0600, Tillman Hodgson wrote: On Sun, Feb 22, 2004 at 06:18:18PM +, Jez Hancock wrote: On Sat, Feb 21, 2004 at 11:49:22PM -0400, Marc G. Fournier wrote: Doesn't (or didn't?) Linux have a 'feature' that allowed ppl to save their uptimes through a reboot? So, for instance, if it was a schedualed reboot, uptime still showed one continuous uptime? I'd imagine that this would be saved through upgrades as well ... There's a similar module for fbsd here: http://garage.freebsd.pl although the site appears to be down at this moment. The irony is delicious ;-) LOL :P Actually that site had a module for modifying your uptime I think it was rather than saving your old uptime. -- Jez Hancock - System Administrator / PHP Developer http://munk.nu/ http://jez.hancock-family.com/ - Another FreeBSD Diary http://ipfwstats.sf.net/- ipfw peruser traffic logging ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: log files
On Fri, Feb 20, 2004 at 09:29:08AM -0800, Derek Burns / Bend-Pak wrote: How can I find the path to my log files? I am on a windows xp client and I need to find the path to the log files on my freebsd 4.7 web server. We are both on the same network. The logfile path for apache is configured in the httpd.conf - /usr/local/etc/apache/httpd.conf by default. You could check there. The default httpd-access|error logfiles are placed in /var/log/httpd-access|error.log for apache, although if you're running a vhost your custom logfile might be placed somewhere else. In short - ask the admin of the httpd server. :P -- Jez Hancock - System Administrator / PHP Developer http://munk.nu/ http://jez.hancock-family.com/ - Another FreeBSD Diary http://ipfwstats.sf.net/- ipfw peruser traffic logging ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Source IP confusion
On Tue, Feb 17, 2004 at 02:05:38PM +, Wayne Pascoe wrote: The problem I'm having is forcing that application to use its alias for outbound connections. Even though the local_interfaces in exim is set to 192.168.1.3, when it connects to a machine to deliver mail, that connection comes from 192.168.1.2 . Have a look at section 13.7 of the exim spec - 13.7 Delivering to a remote host: 13.7 Delivering to a remote host | | Delivery to a remote host is handled by the smtp transport. By default, it | allows the system's TCP/IP functions to choose which interface to use (if | there is more than one) when connecting to a remote host. However, the | interface option can be set to specify which interface is used. See the | description of the smtp transport in chapter 30 for more details. | Section 30 details the use of the 'interface' option to specify which network interface should be used when delivering mail in your exim smtp transport: interface Type: string list*Default: unset This option specifies which interface to bind to when making an outgoing SMTP call. The variables $host and $host_address refer to the host to which a connection is about to be made during the expansion of the string. Forced expansion failure, or an empty string result causes the option to be ignored. Otherwise, after expansion, the string must be a colon- separated list of IP addresses, for example: interface = ; 192.168.123.123 ; 3ffe::836f::fe86:a061 The first interface of the correct type (IPv4 or IPv6) is used for the outgoing connection. If none of them are the correct type, the option is ignored. If interface is not set, or is ignored, the system's IP functions choose which interface to use if the host has more than one. Given this if you add: interface = 192.168.0.3 to your smtp transport perhaps this will solve the problem. I'm not too sure about named, but presumably there is something similar. Good luck. -- Jez Hancock - System Administrator / PHP Developer http://munk.nu/ http://jez.hancock-family.com/ - Another FreeBSD Diary http://ipfwstats.sf.net/- ipfw peruser traffic logging ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: background process limit?
On Sat, Feb 14, 2004 at 08:11:59PM +0100, Hugo (6s-gaming.com) wrote: Is there a way to limit background processes ? I need to separate these from foreground processes, but can't find a way to. Any ideas? You can restrict the maximum number of processes a UID is allowed to run concurrently by configuring login.conf(5). Some more info might be useful. What exactly are you trying to achieve? What do you mean by 'limit' and 'separate' in the above? You don't qualify those verbs in the above :P -- Jez Hancock - System Administrator / PHP Developer http://munk.nu/ http://jez.hancock-family.com/ - Another FreeBSD Diary http://ipfwstats.sf.net/- ipfw peruser traffic logging ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: continued IPFW issues... (actually a lack of ability on my part)
On Sat, Feb 14, 2004 at 03:27:35PM -0600, Eric F Crist wrote: I'm still having some sort of issues with ipfw rules on my server. I've got a cgi based irc client installed, and I can't connect. Also, it seems as if my DNS server isn't able to send queries out. An ipfw show displays the following for me: 00050 54632 4640473 allow ip from me to any 00100 0 0 allow ip from any to any via lo0 00200 0 0 deny ip from any to 127.0.0.0/8 00300 0 0 deny ip from 127.0.0.0/8 to any 00400 4027 351563 allow ip from 63.228.14.240/29 to me 00500 2 80 allow ip from any to me dst-port 22 00600 2 80 allow ip from any to me dst-port 21 00700 388 25405 allow ip from any to me dst-port 25 00800584944 allow ip from any to me dst-port 80 00900 2 80 allow ip from any to me dst-port 443 01000 2 80 allow ip from any to me dst-port 110 01100544247 allow ip from any to me dst-port 53 01200 2 80 allow ip from any to me dst-port 6667 01300 2 80 allow ip from any to me dst-port 6668 01400 4 160 deny ip from not 63.228.14.240/29 to me dst-port 8080 65535 46432 7224466 deny ip from any to any Where is all that denied traffic coming from on the final rule? You are only allowing traffic in and not out - as Matthew Seaman mentioned in the last post in your previous thread, you should use 'keep-state' to keep track of the connections made to you. See the examples he provided in that thread. From the manpage for ipfw: check-state Checks the packet against the dynamic ruleset. If a match is found, execute the action associated with the rule which gener- ated this dynamic rule, otherwise move to the next rule. Check-state rules do not have a body. If no check-state rule is found, the dynamic ruleset is checked at the first keep-state or limit rule. ... keep-state Upon a match, the firewall will create a dynamic rule, whose default behaviour is to match bidirectional traffic between source and destination IP/port using the same protocol. The rule has a limited lifetime (controlled by a set of sysctl(8) vari- ables), and the lifetime is refreshed every time a matching packet is found. When a connection is made to port 80 from an external host, with the 'keep-state' flag set on your rule for port 80 data transfer will be allowed in both directions to/from the external host to/from you on port 80 for a limited period. The check-state rule effectively 'shortcuts' the rest of the rules in the ruleset if a match is made for the external host for the given action (inbound connections to port 80 in this case). You'd need to do the same for each of the other ports you want to allow free connections to/from. -- Jez Hancock - System Administrator / PHP Developer http://munk.nu/ http://jez.hancock-family.com/ - Another FreeBSD Diary http://ipfwstats.sf.net/- ipfw peruser traffic logging ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: continued IPFW issues... (actually a lack of ability on my part)
On Sat, Feb 14, 2004 at 05:59:14PM -0600, Eric F Crist wrote: On Sat, Feb 14, 2004 at 03:27:35PM -0600, Eric F Crist wrote: I'm still having some sort of issues with ipfw rules on my server. I've got a cgi based irc client installed, and I can't connect. Also, it seems as if my DNS server isn't able to send queries out. An ipfw show displays the following for me: 00050 54632 4640473 allow ip from me to any 00100 0 0 allow ip from any to any via lo0 00200 0 0 deny ip from any to 127.0.0.0/8 00300 0 0 deny ip from 127.0.0.0/8 to any 00400 4027 351563 allow ip from 63.228.14.240/29 to me 00500 2 80 allow ip from any to me dst-port 22 00600 2 80 allow ip from any to me dst-port 21 00700 388 25405 allow ip from any to me dst-port 25 00800584944 allow ip from any to me dst-port 80 00900 2 80 allow ip from any to me dst-port 443 01000 2 80 allow ip from any to me dst-port 110 01100544247 allow ip from any to me dst-port 53 01200 2 80 allow ip from any to me dst-port 6667 01300 2 80 allow ip from any to me dst-port 6668 01400 4 160 deny ip from not 63.228.14.240/29 to me dst-port 8080 65535 46432 7224466 deny ip from any to any Where is all that denied traffic coming from on the final rule? You are only allowing traffic in and not out - as Matthew Seaman mentioned in the last post in your previous thread, you should use 'keep-state' to keep track of the connections made to you. See the examples he provided in that thread. From the manpage for ipfw: check-state Checks the packet against the dynamic ruleset. If a match is found, execute the action associated with the rule which gener- ated this dynamic rule, otherwise move to the next rule. Check-state rules do not have a body. If no check-state rule is found, the dynamic ruleset is checked at the first keep-state or limit rule. ... keep-state Upon a match, the firewall will create a dynamic rule, whose default behaviour is to match bidirectional traffic between source and destination IP/port using the same protocol. The rule has a limited lifetime (controlled by a set of sysctl(8) vari- ables), and the lifetime is refreshed every time a matching packet is found. When a connection is made to port 80 from an external host, with the 'keep-state' flag set on your rule for port 80 data transfer will be allowed in both directions to/from the external host to/from you on port 80 for a limited period. The check-state rule effectively 'shortcuts' the rest of the rules in the ruleset if a match is made for the external host for the given action (inbound connections to port 80 in this case). You'd need to do the same for each of the other ports you want to allow free connections to/from. Wouldn't my first rule: ipfw allow ip from me to any have fixed this problem? Sorry I missed that rule :( How about adding a log keyword to that last deny rule temporarily just to see what exactly is being denied? -- Jez Hancock - System Administrator / PHP Developer http://munk.nu/ http://jez.hancock-family.com/ - Another FreeBSD Diary http://ipfwstats.sf.net/- ipfw peruser traffic logging ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: colors in vim.....how?
On Fri, Feb 13, 2004 at 05:57:02PM +, manish gautam wrote: how can i add colors to my vim editor. Add 'syn on' on a single line in your ~/.vimrc file and make sure your TERM environment variable is set to 'xterm-color'. -- Jez Hancock - System Administrator / PHP Developer http://munk.nu/ http://jez.hancock-family.com/ - Another FreeBSD Diary http://ipfwstats.sf.net/- ipfw peruser traffic logging ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Ordering FreeBSD on CD's
On Thu, Feb 12, 2004 at 05:11:04PM +0300, sat wrote: Hello freebsd-questions, I'd like to receive FreeBSD 5.2.1 and ports collection(WITH distfiles) via post on CD's. I want to know how many disks it will be, and how much does it cost? Have a look at the list of FreeBSD snailmail vendors: http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/mirrors.html#MIRRORS-CDROM particularly check out the sites of the vendors to see what information they have regarding your queries. -- Jez Hancock - System Administrator / PHP Developer http://munk.nu/ http://jez.hancock-family.com/ - Another FreeBSD Diary http://ipfwstats.sf.net/- ipfw peruser traffic logging ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Problem with someone port scanning me
On Thu, Feb 12, 2004 at 11:12:53AM -0500, Dragoncrest wrote: For the past couple of days I've had someone on our lan port scanning my box. Not sure what's up with that, but I'm curious if there's a way to log what IP address this is coming from. I don't have IPFW enabled yet as I haven't had the time to configure it at this point as it's currently behind the company firewall on our T3. Is there a way to log where it's coming from? Or is that already being logged somewhere? As a temporary measure you could always enable 'log_in_vain' via sysctl: sysctl net.inet.tcp.log_in_vain=1 sysctl net.inet.udp.log_in_vain=1 adding: log_in_vain=YES to /etc/rc.conf if you want this functionality to be enabled at boot time. This configures the freebsd kernel to log any connection attempts made via udp or tcp to ports that are not open (ie log connection attempts made in vain). You'd then want to make sure syslogd is configured to log the info to a file: kernel.debug/var/log/kern_debug.log although this will probably dump a lot of other stuff to /var/log/kern_debug.log as well - see syslog(8) and syslog(5) for more info on configuring syslog - or google for: sysctl log_in_vain syslog.conf :P Note also importantly - log_in_vain is a _very_ poor substitute for a firewall for logging this kind of info. HTH -- Jez Hancock - System Administrator / PHP Developer http://munk.nu/ http://jez.hancock-family.com/ - Another FreeBSD Diary http://ipfwstats.sf.net/- ipfw peruser traffic logging ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: CVSup question, which tag for 4.9-RELEASE?
On Thu, Feb 12, 2004 at 11:57:59AM -0500, Bob Collins wrote: I am running a few boxes(n) on 4.9-RELEASE and am wondering about updating the ports and source. Using CVSup, should I tag src with RELENG_4, or RELENG_4_9? And what if any are the differences, that are not already noted in the handbook? Up to this point, I have not updated the system since install See: http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/cvs-tags.html to quote: RELENG_4 The line of development for FreeBSD-4.X, also known as FreeBSD-STABLE. RELENG_4_9 The release branch for FreeBSD-4.9, used only for security advisories and other critical fixes. I think I have a rather good grasp of the topic, but there is a little confusion on my part. I am thinking if I read correctly, using RELENG_4 will update to the latest in the 4.x branch and I'll be at 4.9-Current, no? And RELENG_4_9 will be only updates to the 4.9 branch? No to the first question, yes to the second :P HTH -- Jez Hancock - System Administrator / PHP Developer http://munk.nu/ http://jez.hancock-family.com/ - Another FreeBSD Diary http://ipfwstats.sf.net/- ipfw peruser traffic logging ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Cvsup
On Thu, Feb 12, 2004 at 11:08:30AM -0600, Joe Stuart wrote: I'm running freebsd 4.8 and trying to use cvsup to update my ports tree. My supfile contains. *default tag=RELENG_4_8 *default host=cvsup9.freebsd.org *default prefix=/usr *default release=cvs delete use-rel-suffix compress ports-all But when I run it it deleted about %90 of my ports. Any help is appreciated. You need to change the tag line to read: *default tag=. Your best bet is to use the sample supfile here: /usr/share/examples/cvsup/ports-supfile which has lots of useful comments in it. HTH. -- Jez Hancock - System Administrator / PHP Developer http://munk.nu/ http://jez.hancock-family.com/ - Another FreeBSD Diary http://ipfwstats.sf.net/- ipfw peruser traffic logging ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: /tmp full (newbie)
On Thu, Feb 12, 2004 at 08:26:24PM +0100, gaf wrote: Today I tried to install a new browser and I got the information that my filesystem is full. When I tried to start KDE I got the message that /tmp is full. I would really apprecite some help. What to do?? Can I give you some other info and if so what and how??? Yes please - paste the output from df and mount. -- Jez Hancock - System Administrator / PHP Developer http://munk.nu/ http://jez.hancock-family.com/ - Another FreeBSD Diary http://ipfwstats.sf.net/- ipfw peruser traffic logging ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: /tmp full (newbie)
On Thu, Feb 12, 2004 at 08:57:31PM +0100, gaf wrote: Jez Hancock wrote: On Thu, Feb 12, 2004 at 08:26:24PM +0100, gaf wrote: Today I tried to install a new browser and I got the information that my filesystem is full. When I tried to start KDE I got the message that /tmp is full. I would really apprecite some help. What to do?? Can I give you some other info and if so what and how??? Yes please - paste the output from df and mount. df -h gave: Filesystem sizeused avail capacity mounted on /dev/ad1s1a 3,9G 3,8G -234,3M 106% / devfs 1,0K 1,0K 0B 100% /dev /dev/ad1s1d 37G 22M 34G 0% /home It might be best if you reinstalled the OS from scratch and ensure you assign the disk space more practically. Presently you have a massive proportion of your disk space assigned to /home and only a small proportion assigned to / - you can get away with a /home partition of only 1Gb, but a tiny / partition will make using the OS difficult. A more suitable fs layout might be: Filesystem SizeMounted on /dev/ad1s1a 500MB / /dev/ad1s1e 500MB /tmp /dev/ad1s1f 10-20GB /usr with the remaining space going to /var and /home. You don't have to create separate partitions for each mount point, but it speeds things up a little and saves disk space being filled up and causing a denial of service... Better bet if you don't feel confident with partitioning might be to let the installer choose the partition sizes for you initially - select 'a' in the fdisk screen (iirc) and the installer automatically selects the partition sizes it thinks are best given the size of the hdd. At the end of the day the best way to learn is to install, reinstall, reinstall and reinstall again :P As always read, reread, etc the handbook section on partitioning: http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/install-steps.html Good luck! -- Jez Hancock - System Administrator / PHP Developer http://munk.nu/ http://jez.hancock-family.com/ - Another FreeBSD Diary http://ipfwstats.sf.net/- ipfw peruser traffic logging ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: /tmp full (newbie)
On Thu, Feb 12, 2004 at 09:44:27PM +0100, gaf wrote: Thank you for answering. I?d hoped not to reinstall but. Partitioning is no problem, I?ve installed all versions from 4.8 to5.2 on my old computer just for training and trying. The problem with the current scheme is you have only 4Gb or so for everything apart from /home - I don't have KDE / X installed, but I'm fairly sure KDE on it's own would eat up 3-4Gb of space without too much problem. If you reinstalled I'd say assign 20Gb to /usr if you're going to use KDE. Another alternative might be to get rid of KDE and try something more economic - like blackbox or wm - although if you're not too comfortable with the shell those might not be the best for you. -- Jez Hancock - System Administrator / PHP Developer http://munk.nu/ http://jez.hancock-family.com/ - Another FreeBSD Diary http://ipfwstats.sf.net/- ipfw peruser traffic logging ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Newbie Upgrading 4.8 - 5.2, filesystem full
On Wed, Feb 11, 2004 at 08:16:30AM +1100, richard wrote: Migrating data will be problematic as there's lot of user cr*p and custom built web apps from generations of cowboy programmers, plus about 300 users and a couple of dozen virtual domains. As I'm really only after a stable implementation of a USB external drive (for backup) am I better off trying an upgrade from 4.8 to 4.9? Sounds like you're in a very similar situation to me :P In answer to the question, I would have thought so. If you're just interested in trying out 5.x for the heck of it (there isn't a specific reason for upgrading), you're probably better of installing it on a dev box perhaps - if that's possible. I'm amazed you have that many users but haven't managed to fill up /var yet with it being so small! -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Lowell Gilbert Sent: Wednesday, 11 February 2004 1:38 AM To: Jez Hancock Cc: Richard Beyer; [EMAIL PROTECTED] Subject: Re: Newbie Upgrading 4.8 - 5.2, filesystem full Jez Hancock [EMAIL PROTECTED] writes: On Tue, Feb 10, 2004 at 08:10:05PM +1100, Richard Beyer wrote: Thanks Jez, Here's my df -h FilesystemSize Used Avail Capacity Mounted on /dev/ad0s1a 126M 106M 9.4M92%/ /dev/ad0s1f 252M 9.6M 222M 4%/tmp /dev/ad0s1g72G 2.7G64G 4%/usr /dev/ad0s1e 252M51M 181M22%/var procfs4.0K 4.0K 0B 100%/proc It's an 80Gig HDD and I was using the sysinstall | upgrade | all | include ports Seems odd that so much space is taken up by / - perhaps under 5.x more space is required? I really do need to install 5.x at some point ... :P Yes, more space is used in the root filesystem for 5.x. [For several different reasons...] Can you not do a backup of your data and start over with a fresh install of 5.2? You have stacks of room on the hdd spare, so presumably doing this wouldn't be too problematic. That's definitely the way to go if possible; there are a number of advantagious new features that will be difficult to take advantage of otherwise. -- Jez Hancock - System Administrator / PHP Developer http://munk.nu/ http://jez.hancock-family.com/ - Another FreeBSD Diary http://ipfwstats.sf.net/- ipfw peruser traffic logging ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Newbie Upgrading 4.8 - 5.2, filesystem full
On Tue, Feb 10, 2004 at 12:36:27PM +1100, Richard Beyer wrote: I tried doing an upgrade from 4.8 to 5.2, and part way through I got a filesystem full error (about 3 in a row actually) as each partion filled up. (No panic - doing it off a mirror). My question is - obviously the CDROM sysinstall isn't going to work for me - what now? Get a bigger hard drive? :P More details might help - how big is the disk drive you're installing to? How big are the partitions created in the install process? What type of installation are you attempting - full/minimal/etc ? The minimal installation takes up very little room - around 3-400MB iirc which should be small enough to fit on any hdd manufactured in the last 5 years or so. -- Jez Hancock - System Administrator / PHP Developer http://munk.nu/ http://jez.hancock-family.com/ - Another FreeBSD Diary http://ipfwstats.sf.net/- ipfw peruser traffic logging ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Newbie Upgrading 4.8 - 5.2, filesystem full
Hi Richard, On Tue, Feb 10, 2004 at 08:10:05PM +1100, Richard Beyer wrote: Thanks Jez, Here's my df -h FilesystemSize Used Avail Capacity Mounted on /dev/ad0s1a 126M 106M 9.4M92%/ /dev/ad0s1f 252M 9.6M 222M 4%/tmp /dev/ad0s1g72G 2.7G64G 4%/usr /dev/ad0s1e 252M51M 181M22%/var procfs4.0K 4.0K 0B 100%/proc It's an 80Gig HDD and I was using the sysinstall | upgrade | all | include ports Seems odd that so much space is taken up by / - perhaps under 5.x more space is required? I really do need to install 5.x at some point ... :P Is there no chance you can perform a standard install from scratch? I had contemplated moving from 4.8 to 5.x, but am seriously putting it off because I imagine *upgrading* from 4.x to 5.x isn't too straight-forward - perhaps others could shed light on whether it's recommended to attempt it or not? Can you not do a backup of your data and start over with a fresh install of 5.2? You have stacks of room on the hdd spare, so presumably doing this wouldn't be too problematic. Cheers, Richard On Tue, 10 Feb 2004, Jez Hancock wrote: On Tue, Feb 10, 2004 at 12:36:27PM +1100, Richard Beyer wrote: I tried doing an upgrade from 4.8 to 5.2, and part way through I got a filesystem full error (about 3 in a row actually) as each partion filled up. (No panic - doing it off a mirror). My question is - obviously the CDROM sysinstall isn't going to work for me - what now? Get a bigger hard drive? :P More details might help - how big is the disk drive you're installing to? How big are the partitions created in the install process? What type of installation are you attempting - full/minimal/etc ? The minimal installation takes up very little room - around 3-400MB iirc which should be small enough to fit on any hdd manufactured in the last 5 years or so. -- Jez Hancock - System Administrator / PHP Developer http://munk.nu/ http://jez.hancock-family.com/ - Another FreeBSD Diary http://ipfwstats.sf.net/- ipfw peruser traffic logging -- Jez Hancock - System Administrator / PHP Developer http://munk.nu/ http://jez.hancock-family.com/ - Another FreeBSD Diary http://ipfwstats.sf.net/- ipfw peruser traffic logging ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Shell script containing passwords.
On Tue, Feb 10, 2004 at 04:06:37PM +, Lewis Thompson wrote: On Tue, Feb 10, 2004 at 03:56:08PM +, Peter Risdon wrote: snip Not that I know of, but have you considered compiling apache with suexec? Assuming your other users have seperate logins, this might work. You can have apache execute scripts as the appropriate user, not www. That way, a 700 permission should prevent other users from reading your scripts. I read some stuff about this. I got the impression it required using PHP as a CGI, instead of mod_php. Am I wrong in thinking this? The overhead of using PHP as CGI is a little too high because the server is already pretty stretched... Have a look at /usr/ports/www/suphp - be warned though, last time I looked at it the checks it uses to ensure UID 0 scripts aren't executed did not work correctly on FreeBSD. One slightly more complicated option is to rearrange your user/group permissions on a server-wide basis - there's a detailed description in this post: http://lists.freebsd.org/pipermail/freebsd-questions/2003-August/014731.html HTH -- Jez Hancock - System Administrator / PHP Developer http://munk.nu/ http://jez.hancock-family.com/ - Another FreeBSD Diary http://ipfwstats.sf.net/- ipfw peruser traffic logging ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: mysql40 and FBSD 4.9
On Mon, Feb 09, 2004 at 12:54:06PM +0100, Stefan Moro wrote: I'm trying to setup mysql40. I installed it from the ports via the mysql40-server port. The installation went just fine. Afetr the installation I was trying to set the mysql root-users password with mysqladmin -u root password 'new-password' This sound correct. when i tried that I got the following message: mysqladmin: connect to server at 'localhost' failed error: 'Access denied for user: '[EMAIL PROTECTED]' (Using password: NO)' Have you tried actually connecting to mysql without a password? IIRC when mysql is first installed (been a while now :P), the initial root password is blank. Try just typing 'mysql' - if you get to the 'mysql' prompt successfully then no password has been set. I'm thinking though that if you're getting that error then a password must have been set somehow... If you really can't figure out how to get in there's a guide to resetting the root mysql password here: http://www.mysql.com/doc/en/Resetting_permissions.html Good luck :P -- Jez Hancock - System Administrator / PHP Developer http://munk.nu/ http://jez.hancock-family.com/ - Another FreeBSD Diary http://ipfwstats.sf.net/- ipfw peruser traffic logging ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: termcap problem
On Sun, Feb 08, 2004 at 10:35:59PM -0500, Vince Sabio wrote: I have a relatively new installation of FreeBSD v5.1, and the machine has just been staged at my co-lo site. So far, everything works well, except for a minor vi problem: I cannot navigate using the arrow keys. I can navigate using control keys, but not via the arrow keys. I'm now accessing the server over ssh via a terminal window on a Mac laptop running OS X (a new distant relative of FreeBSD, FWIW). I access lots of machines this way, including a Solaris machine, a couple of Linux boxen, and at least one other FreeBSD machine (not mine), and I don't have this problem on any of them. I assume it's a termcap problem, but I don't know how to fix it. Any ideas? Have you tried setting the TERM env variable to 'xterm' or 'xterm-color' in your .cshrc file (or the rc file for the shell you use)? -- Jez Hancock - System Administrator / PHP Developer http://munk.nu/ http://jez.hancock-family.com/ - Another FreeBSD Diary http://ipfwstats.sf.net/- ipfw peruser traffic logging ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Procmail recipe not working with mutt
On Thu, Feb 05, 2004 at 06:33:32PM -0600, Bryan Cassidy wrote: Pretty much all my mailing list filters work but the FreeBSD Security Advisory one goes into =Default for some reason. All mail from my dad which is Bob_Cassidy, goes into =Default as well as mail from Richard and Jim. They all go into =Default instead of their correct folder. I just can't figure it out. Maybe someone could help me out here. Try moving this rule to the very bottom of the list and make sure it stays there - I think this rule matches everything, so if a message makes it to this rule it will automatically match which isn't what you want: :0: * .* Default Put these above the default rule: :0: * ^From:[EMAIL PROTECTED] Bob_Cassidy :0: * ^From:[EMAIL PROTECTED] Jim Bonsey :0: * ^From:[EMAIL PROTECTED] FreshPorts_Watch :0: * ^TO:[EMAIL PROTECTED] WKU_Linux :0: * TO_:[EMAIL PROTECTED] FreeBSD_Security_Notifications :0: * ^FROM:[EMAIL PROTECTED] Richard HTH. -- Jez Hancock - System Administrator / PHP Developer http://munk.nu/ http://jez.hancock-family.com/ - Another FreeBSD Diary http://ipfwstats.sf.net/- ipfw peruser traffic logging ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: newbie:/usr/ports/distfiles
On Fri, Feb 06, 2004 at 05:21:22PM -0500, Jeff Elkins wrote: I'm up to about 700Mb of files in /usr/ports/distfiles. Other than insurance in case of a re-install, is there a good reason to keep them around? No, you can safely delete anything in /usr/ports/distfiles or remove and recreate the directory. It just means that if you decide to reinstall a port for some reason, the source tarball will be downloaded again to /usr/ports/distfiles - as you know anyway by the sounds of it. :P -- Jez Hancock - System Administrator / PHP Developer http://munk.nu/ http://jez.hancock-family.com/ - Another FreeBSD Diary http://ipfwstats.sf.net/- ipfw peruser traffic logging ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Removing Ports
On Mon, Feb 02, 2004 at 05:12:04AM -0800, Rishi Chopra wrote: My understanding is that 'make deinstall' only removes the port from the ports database - is there any way to actually remove all of the files associated with a particular port? See the ports(7) manpage. 'make deinstall' effectively 'uninstalls' the application and all associated files and dirs, but only if those files/dirs haven't changed since the application was first installed. To make sure you clean out the port's working directory (where the port is built etc), as well as uninstalling the application - add the 'clean' target to the make command: make clean deinstall -- Jez Hancock - System Administrator / PHP Developer http://munk.nu/ http://jez.hancock-family.com/ - Another FreeBSD Diary http://ipfwstats.sf.net/- ipfw peruser traffic logging ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: PHP4 with GD build problem.
On Fri, Jan 30, 2004 at 06:28:02PM -0800, Derrick MacPherson wrote: Freebsd 4.7, ports up to date. When I compile php4 with GD, I get this error: ext/gd/libgd/gdkanji.lo: In function `do_convert': ext/gd/libgd/gdkanji.lo(.text+0x57b): undefined reference to `iconv_open' ext/gd/libgd/gdkanji.lo(.text+0x5c8): undefined reference to `iconv' ext/gd/libgd/gdkanji.lo(.text+0x5f9): undefined reference to `iconv_close' *** Error code 1 Stop in /usr/ports/lang/php4/work/php-4.3.4. It compiles fine without GD. Any ideas what's wrong, and how to fix? Try installing GD on it's own first - uninstalling first if it's already installed. If that doesn't work it's probably worth checking to see if someone else has submitted a PR for this problem here: http://www.freebsd.org/cgi/query-pr-summary.cgi Perhaps submit your own PR report if you're sure it's a bug - you'd probably want to try reproducing the error on a different machine first though. Good luck :P -- Jez Hancock - System Administrator / PHP Developer http://munk.nu/ http://jez.hancock-family.com/ - Another FreeBSD Diary http://ipfwstats.sf.net/- ipfw peruser traffic logging ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: about logo
On Thu, Jan 29, 2004 at 10:56:05PM -0800, Bubble Gum wrote: I just want to ask (i'm sorry if it's a silly question),why freebsd logo use devil character? You might find the following link interesting: http://www.mckusick.com/beastie/index.html :P There was also a funny post on the list that started a flamewar back last year, something along the lines of 'why does freebsd support the devil?'. That post is here: http://marc.theaimsgroup.com/?l=freebsd-questionsm=105041991726712w=2 Enjoy! -- Jez Hancock - System Administrator / PHP Developer http://munk.nu/ http://jez.hancock-family.com/ - Another FreeBSD Diary http://ipfwstats.sf.net/- ipfw peruser traffic logging ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: OT: sed problem
On Sun, Feb 01, 2004 at 01:38:44AM +, Daniela wrote: I was wondering how I can do the following with sed (or another program): 1. Output only the text from the start of the line to the first pipe character 2. Output only the text between the last and the previous pipe character Or, split the line at the pipe characters and assign the parts to different shell variables. #!/bin/sh test=one|two|three set `echo $test | sed -e 's/\|/ /g'` # $1=one, $2=two, $3=three: echo $@ -- Jez Hancock - System Administrator / PHP Developer http://munk.nu/ http://jez.hancock-family.com/ - Another FreeBSD Diary http://ipfwstats.sf.net/- ipfw peruser traffic logging ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: showing total/free memory
On Fri, Jan 30, 2004 at 08:11:26AM +1100, Rowdy wrote: Chris Pressey wrote: Well, I'm not sure if it works on 5.x, but you could try /usr/ports/sysutils/muse Should be easier to parse than the other options. -Chris You could always output the results of dmesg at boot-time to a file - adding something like this: dmesg /var/log/dmesg.boot to /usr/local/etc/rc.local. -- Jez Hancock - System Administrator / PHP Developer http://munk.nu/ http://jez.hancock-family.com/ - Another FreeBSD Diary http://ipfwstats.sf.net/- ipfw peruser traffic logging ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: snoop (Sun styly) for bsd ?
On Thu, Jan 29, 2004 at 07:31:16PM +, Julian Holley wrote: Hi all - does anyone know about the program 'snoop' (Sun microsystems fame) available for BSD - basically all I want is a click or beep on network activity out of my machine - I'm not after a bulky analaysis program - just somat simple to run in the back ground ? - any ideas much appreciated, Julian. As mentioned, tcpdump(1) is the closest to solaris snoop on FreeBSD. Another useful tool - not too bulky - is trafshow which can be found in ports: /usr/ports/net/trafshow Good luck :P -- Jez Hancock - System Administrator / PHP Developer http://munk.nu/ http://jez.hancock-family.com/ - Another FreeBSD Diary http://ipfwstats.sf.net/- ipfw peruser traffic logging ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: RSS/RDF feed reader
On Thu, Jan 29, 2004 at 03:39:40PM -0500, Jonathan Arnold wrote: Michael L. Hostbaek wrote: What are people using as a RSS/RDF feed reader on FreeBSD ? I tried out Krss but I am not too happy with it, I like to know if there are some alternatives.. This was asked long ago (I'm slowly working my way through my -questions backlog!) and I'd like to suggest Bloglines, a web based RSS reader that works incredibly well: http://www.bloglines.com/ I've been meaning to find server-side aggregator as well - just had a quick look with portsearch and found a few results for 'aggregator'. Can't vouch for any of them as [EMAIL PROTECTED] yet to try them out, but some sound interesting (particularly the php based one for my needs:P). What was this Krss like out of interest? The results for the portsearch are below anyway: [21:33:18] [EMAIL PROTECTED] /home/munk# portsearch -i aggregator Port: raggle-0.2.4 Path: /usr/ports/net/raggle Info: A console RSS aggregator written in Ruby Maint: [EMAIL PROTECTED] Index: net B-deps: ruby-1.6.8.2003.10.15 ruby-shim-ruby18-1.8.1.p3 R-deps: ruby-1.6.8.2003.10.15 ruby-ncurses-0.8 ruby-shim-ruby18-1.8.1.p3 Port: straw-0.21.1_2 Path: /usr/ports/net/straw Info: A GNOME 2 desktop weblog aggregator written in Python Maint: [EMAIL PROTECTED] Index: net gnome B-deps: XFree86-fontEncodings-4.3.0 XFree86-fontScalable-4.3.0 XFree86- libraries-4.3.0_6 Xft-2.1.2 atk-1.4.1_1 expat-1.95.6_1 fontconfig- 2.2.90_3 freetype2-2.1.5_1 gettext-0.12.1 glib-2.2.3 gmake-3.80_1 gtk- 2.2.4_1 imake-4.3.0_2 jpeg-6b_1 libglade2-2.0.1_1 libiconv-1.9.1_3 libxml2-2.6.4 pango-1.2.5 pkgconfig-0.15.0 png-1.2.5_3 python-2.3.3 tiff-3.6.1 R-deps: ORBit2-2.8.3 XFree86-fontEncodings-4.3.0 XFree86-fontScalable-4.3.0 XFree86-libraries-4.3.0_6 Xft-2.1.2 atk-1.4.1_1 db41-4.1.25_1 docbook- sk-4.1.2_1 docbook-xml-4.2_1 docbook-xsl-1.63.0 eel2-2.4.1 esound- 0.2.32_1 expat-1.95.6_1 fontconfig-2.2.90_3 freetype2-2.1.5_1 gail- 1.4.1 gconf2-2.4.0.1 gettext-0.12.1 glib-2.2.3 gnome-icon-theme-1.0.9 gnomedesktop-2.4.1.1_1 gnomehier-1.0_11 gnomemimedata-2.4.1 gnomepanel-2.4.1 gnomevfs2-2.4.1_1 gtk-2.2.4_1 gtk-engines2-2.2.0 gtkglarea-1.99.0_2 imake-4.3.0_2 intltool-0.28_1 jpeg-6b_1 libIDL- 0.8.2 libart_lgpl2-2.3.16 libaudiofile-0.2.5 libbonobo-2.4.3 libbonoboui-2.4.3 libglade2-2.0.1_1 libgnome-2.4.0_3 libgnomecanvas- 2.4.0 libgnomeprint-2.4.2 libgnomeprintui-2.4.2 libgnomeui-2.4.0.1_1 libgnugetopt-1.2 libgsf-1.8.2 libgtkhtml-2.4.1_1 libiconv-1.9.1_3 librsvg2-2.4.0_1 libwnck-2.4.0.1 libxml2-2.6.4 libxslt-1.1.2_2 libzvt- 2.0.1_6 linc-1.0.3 nautilus2-2.4.1 p5-XML-Parser-2.34 pango-1.2.5 pkgconfig-0.15.0 png-1.2.5_3 popt-1.6.4_1 py-gnome-2.0.0 py23-bsddb- 2.3.3_1 py23-gtk-2.0.0 py23-mx-base-2.0.4 py23-numeric-23.1 py23- orbit-2.0.0 py23-xml-0.8.3 python-2.3.3 scrollkeeper-0.3.14,1 sdocbook-xml-4.1.2.5_1 startup-notification-0.5_1 tiff-3.6.1 xmlcatmgr-2.0.a1 Port: rawdog-1.8 Path: /usr/ports/news/rawdog Info: A simple RSS aggregator Maint: [EMAIL PROTECTED] Index: news python B-deps: python-2.3.3 R-deps: python-2.3.3 Port: rnews-0.63 Path: /usr/ports/www/rnews Info: A server-side rss aggregator written in php with mysql Maint: [EMAIL PROTECTED] Index: www B-deps: mysql-client-4.0.17 R-deps: apache-1.3.29_1 expat-1.95.6_1 mod_php4-4.3.4_4,1 mysql-client-4.0.17 Number of matching ports = 4 -- Jez Hancock - System Administrator / PHP Developer http://munk.nu/ http://jez.hancock-family.com/ - Another FreeBSD Diary http://ipfwstats.sf.net/- ipfw peruser traffic logging ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: showing total/free memory
On Fri, Jan 30, 2004 at 08:40:16AM +1100, Rowdy wrote: Jez Hancock wrote: You could always output the results of dmesg at boot-time to a file - adding something like this: dmesg /var/log/dmesg.boot to /usr/local/etc/rc.local. Don't need to ... a default FreeBSD 5.1 installation already writes it to /var/run/dmesg.boot :-) Not too well apparently :grin: Just a suggestion :P -- Jez Hancock - System Administrator / PHP Developer http://munk.nu/ http://jez.hancock-family.com/ - Another FreeBSD Diary http://ipfwstats.sf.net/- ipfw peruser traffic logging ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Vim startup time much longer than expected
On Thu, Jan 22, 2004 at 11:43:46AM -0600, Tillman Hodgson wrote: Howdy folks, I NFS export my home directory from a 4-STABLE box. In this home directory are my .vimrc file and a couple of vim plugins that I use. When I launch vim (which I use with mutt) from a workstation running RedHat 7.3 it loads and is ready for input virtually instantly. When I launch vim from the server itself (local disk!) it takes several seconds before it's ready for input. As the config files are identical, I can't think of what else might be causing the difference. Perhaps compile options for the vim port (I use -WITHOUT_X on the FreeBSD server end)? I had this problem before and iirc found it was due to the size of my vim history setting. Given what you say below though, perhaps this isn't your problem here. It does seem, though I haven't attempted to profile or trace the process, that it's hanging much longer while displaying this in the status line: Pattern not found: ^ -- .* That's the result of my quoted .sig dumper for email replies (and thus isn't called when I'm composing a new mail): EMAIL Make VIM use shorter lines for emails au BufNewFile,BufRead .letter,mutt*,nn.*,snd.* set tw=72 Delete quoted .sig's au BufRead /tmp/mutt-* normal :g/^ -- .*/,/^$/-1d I don't understand why that would be faster on the workstation (which is half the box CPU-wise and NFS'ed) than the server. Perhaps the FreeBSD port of vim (6.2 rather than 6.1 on the client) incorporates a deliberate delay for warnings like that? Perhaps you could add a 'shortmess' line to the .vimrc file to inhibit those messages? -- Jez Hancock - System Administrator / PHP Developer http://munk.nu/ http://jez.hancock-family.com/ - Another FreeBSD Diary http://ipfwstats.sf.net/- ipfw peruser traffic logging ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: IPFW and IP Statistics.
On Sat, Jan 17, 2004 at 12:46:12PM -0500, Grant Peel wrote: Hello, I am currently using ipfm (IP FLow Meter) as a way of measuring bandwidth per IP. I am not too happy with it as it has some major limitations. Is there a way to configure IPFW in FreeBSD so that all it does is monitor bandwidth per IP and writes simple stats to seperate files? I am interested to hear other solutions (short of buying a router!). This is 'another' solution which logs and displays bandwidth consuption on a per-user basis using ipfw: http://ipfwstats.sf.net/ You should however be able to make ipfw log traffic on a per-ip basis using rules such as: add 100 count ip from any to 1.2.3.4 add 101 count ip from 1.2.3.4 to any ... etc and then at the end of each day run a script via cron to pipe the traffic usage for each ip to a file or database. I have a feeling there's also a few ports that do per-ip bandwidth logging, iplog and ipfm are two that I know of, looking in /usr/ports/net there appear to be others - ipacctd for example. It might be worth using the portsearch tool to search for more - it's in /usr/ports/Tools/scripts/portsearch - something like this: portsearch -p /usr/ports/net -i bandwidth|traffic or just have a look through the ports in /usr/ports/net :P -- Jez Hancock - System Administrator / PHP Developer http://munk.nu/ http://jez.hancock-family.com/ - Another FreeBSD Diary http://ipfwstats.sf.net/- ipfw peruser traffic logging ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Cannot switch back to virtual terminal w/ nvidia drivers
On Thu, Jan 15, 2004 at 01:00:25PM -0700, Adam Olsen wrote: Daniela, Ok - Everything works perfectly in X. When I switch to the VT, I get a mode out of range error. I can switch back to X just fine. Just the VT has this problem. How are you 'switching to the VT' exactly? -- Jez Hancock - System Administrator / PHP Developer http://munk.nu/ http://jez.hancock-family.com/ - Another FreeBSD Diary http://ipfwstats.sf.net/- ipfw peruser traffic logging ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: -HUP 1 command
On Tue, Jan 13, 2004 at 08:53:44PM -0500, fbsd_user wrote: After making changes to syslog.conf and newsyslog.conf what is the command to enable the changes. Is it Kill -HUP 1 Note that process with PID 1 is usually the init process - sending a HUP signal to it will produce undesirable effects similar to restarting the whole server. Have a go and see what happens if it's not a production server :P -- Jez Hancock - System Administrator / PHP Developer http://munk.nu/ http://jez.hancock-family.com/ - personal weblog http://ipfwstats.sf.net/- ipfw peruser traffic logging ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: I need to resend messages from dead.letters
On Mon, Jan 12, 2004 at 07:23:20PM -0800, Doug Hardie wrote: There was a problem last night with my mail server and a bunch of mail went into the dead.letters mailbox rather than being sent. I have that mailbox and need a way to send all of those messages. I split them out into individual files, but there are just too many to send by hand. Is there a way to cause them all to be resent? Look at the -f option to the mail command - see the manpage for mail(1) for more info. -- Jez Hancock - System Administrator / PHP Developer http://munk.nu/ http://jez.hancock-family.com/ - personal weblog http://ipfwstats.sf.net/- ipfw peruser traffic logging ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Other ways than quotas to limit mail files size ??
name (even though maildir_tag puts it there) because maildir MUAs sometimes add other information onto the ends of message file names. quota_warn_message Type: string* Default: see below See below for the use of this option. If it is not set when quota_warn_threshold is set, it defaults to quota_warn_message = \ To: [EMAIL PROTECTED] Subject: Your mailbox\n\n\ This message is automatically created \ by mail delivery software.\n\n\ The size of your mailbox has exceeded \ a warning threshold that is\n\ set by the system administrator.\n quota_warn_thresholdType: string* Default: 0 This option is expanded in the same way as quota (see above). If the resulting value is greater than zero, and delivery of the message causes the size of the file or total space in the directory tree to cross the given threshold, a warning message is sent. If quota is also set, the threshold may be specified as a percentage of it by following the value with a percent sign. For example: quota = 10M quota_warn_threshold = 75% If quota is not set, a setting of quota_warn_threshold that ends with a percent sign is ignored. The warning message itself is specified by the quota_warn_message option, and it must start with a To: header line containing the recipient(s). A Subject: line should also normally be supplied. The quota option does not have to be set in order to use this option; they are independent of one another except when the threshold is specified as a percentage. -- Jez Hancock - System Administrator / PHP Developer http://munk.nu/ http://jez.hancock-family.com/ - personal weblog http://ipfwstats.sf.net/- ipfw peruser traffic logging ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: tail tip to Fortune?
On Sun, Jan 11, 2004 at 12:01:22AM -0600, Andrew L. Gould wrote: On Saturday 10 January 2004 07:39 pm, Andrew L. Gould wrote: On Fri, 9 Jan 2004, Dan Nelson wrote: In the last episode (Jan 09), Dru said: I remember coming across a trick (which I can't find now) which allowed you to page all of a file, except for the first 10 lines. I think it used a combo of head and tail to achieve this. I can't just use tail as the length of the file varies whereas the amount I don't want to see doesn't. tail +11 myfile Could we get this one into the Fortune tips that appear at user login? Andrew Gould Please disregard -- I figured out how to add my own fortune file. FWIW you can do something like this: fortune -m tail freebsd-tips to display all tips in the freebsd-tips fortune file that contain 'tail'. As it turns out there is this tip: To see the last 10 lines of a long file, use tail filename. To see the first 10 lines, use head filename. -- Dru [EMAIL PROTECTED] which is almost what you're asking about :P -- Jez Hancock - System Administrator / PHP Developer http://munk.nu/ http://jez.hancock-family.com/ - personal weblog http://ipfwstats.sf.net/- ipfw peruser traffic logging ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Syslogd sending messages to two files
On Fri, Jan 09, 2004 at 01:54:13PM +, Francisco Reyes wrote: Recently I setup a Soekris machine with M0n0wall and redirected the log files to a freebsd server. In /etc/syslogd I have: !ipmon *.* /var/log/mono.log Try adding local0.none to the line for /var/log/messages in /etc/syslog.conf - remember to send a HUP signal to syslogd after the changes are made :P ie: *.notice;kern.debug;mail.crit;news.err;local0.none /var/log/messages ... !ipmon *.* /var/log/ipmon.log which works to just log ipmon messages to /var/log/ipmon.log and not /var/log/messages. -- Jez Hancock - System Administrator / PHP Developer http://munk.nu/ http://jez.hancock-family.com/ - personal weblog http://ipfwstats.sf.net/- ipfw peruser traffic logging ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Size of /var worries me
On Wed, Jan 07, 2004 at 01:38:35AM -0800, Dino Vliet wrote: Hi there, I've installed freebsd 4.9 and am currently busy with installing third party apps through the ports collection. What worries me however is the size of my /var directory. You might consider symlinking /var to /usr/var perhaps - unless you have any other spare space that you can allocate to the /var fs - 67MB is quite small, especially if you intend to use any databases at any point in time. The best way to go about symlinking /var to somewhere else is to go into single user mode at boot time (or kill all processes that use anything under /var), move /var to /usr/var and then symlink /var to /usr/var. This isn't really the best solution in terms of performance (although you wouldn't notice on a low load system), but unless you have extra free disk space you can allocate to /var or are prepared to reinstall - allocating more space to /var in the installation - then the symlinking option is viable. I also had to get rid of a pkg.db file in the /var/db/pkg directory because it took a lot of space. As a note, the pkg.db file is quite important - port installations register themselves in the /var/db/pkg/pkg.db database and this is used to check on dependencies etc, a little bit like the windows registry is used (only a little!). Generally deleting files from under /var isn't the best solution :P q1) Do I have to worry about my /vardirectory Yes, FreeBSD uses the /var filesystem to log things to (/var/log), to keep check on the state of daemons (/var/state, /var/run), to lock files (/var/lock) and numerous other things. Not to mention that databases are by default installed into /var/db/mysql for example in the case of mysql. Generally the /var filesystem is very important for the day-to-day running of a FreeBSD system. q2) How can I get rid of files I don't need (like XFree86.0.log..) As mentioned above it's generally not a good idea to delete files from /var/ on an ad-hoc basis. A better plan: organize a logfile rotation policy so that old logfiles are rotated out of /var/log into a backup location which has enough space. See the manpage on newsyslog for info on this. configure daemons so that they only log what is absolutely necessary for your needs. -- Jez Hancock - System Administrator / PHP Developer http://munk.nu/ http://jez.hancock-family.com/ - personal weblog http://ipfwstats.sf.net/- ipfw peruser traffic logging ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: .bin executable
On Wed, Jan 07, 2004 at 11:03:22AM +, gffds fsdff wrote: How would I go about executing hlds_l_1120_full.bin (STEAM) in order to extract it. I have also tried non-steam hlds_l_3110_full.bin with no success, however due to STEAM taking impact on modifications I must now use STEAM. From the commandline: sh hlds_l_1120_full.bin Alternatively you could make the file executable: chmod +x hlds_l_1120_full.bin and then run it: ./hlds_l_1120_full.bin although this depends on the shebang line (first line in the .bin file) being set correctly to reflect the interpreter to use to execute the file. IIRC that .bin file for hlds is just a shar archive (shell executable archive). -- Jez Hancock - System Administrator / PHP Developer http://munk.nu/ http://jez.hancock-family.com/ - personal weblog http://ipfwstats.sf.net/- ipfw peruser traffic logging ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Question on port usage
On Wed, Jan 07, 2004 at 09:13:24AM -0800, Jason Williams wrote: I was reading through 'Absolute BSD' last night and was reading up on the section on port's. I was unaware that with ports, you can actually edit the makefile to add certain options at installation time. Sorta like ./configure when you install programs from source correct? Pretty much - the port maintainer has to decide which of the configure options he wants to allow the port user/admin to turn on/off and then add code to the Makefile for the port to handle the case that certain make environment variables are set. See below... I have been working with cyrus-imapd as im going to roll out a mail server here pretty soon. Looking at the make file, I see this: .if defined(WITH_BDB_VER) USE_BDB_VER=${WITH_BDB_VER} .else USE_BDB_VER=3 .endif .if ${USE_BDB_VER} == 41 LIB_DEPENDS+= db41.1:${PORTSDIR}/databases/db41 .elif ${USE_BDB_VER} == 4 LIB_DEPENDS+= db4.0:${PORTSDIR}/databases/db4 .elif ${USE_BDB_VER} == 3 LIB_DEPENDS+= db3.3:${PORTSDIR}/databases/db3 .else BROKEN= WITH_BDB_VER must be 3, 4 or 41 .endif CONFIGURE_ARGS+=--with-bdb-incdir=${LOCALBASE}/include/db${USE_BDB_VER} \ --with-bdb=db${USE_BDB_VER} .if defined(WITH_SKIPLIST) WITH_SKIPLIST_MBOX= YES WITH_SKIPLIST_SEEN= YES .endif .if defined(WITH_SKIPLIST_MBOX) CONFIGURE_ARGS+=--with-mboxlist-db=skiplist .endif .if defined(WITH_SKIPLIST_SEEN) CONFIGURE_ARGS+=--with-seen-db=skiplist .endif .if defined(WITH_MURDER) With what is listed above, you can actually specify what and how you want the software built? For instance: make WITH_BDB_VER=41 WITH_SKIPLIST=YES WITH_MURDER install clean Would setup cyrus-imapd with Berkeley db41, with_skiplist and with murder correct? Or not? Almost - you would do: make -DWITH_BDB_VER=41 -DWITH_SKIPLIST=YES -DWITH_MURDER install clean Lastly, since there are quite a few options that you can use to compile with most programs, is it possible to specify them somehow at the command line when installing through the ports tree? Generally you can only set options as in the above example - that's to say the port maintainer decides which options are going to be overridable by the end user (ie the user that's installing the port). In most cases this is sufficient though, most of the ports contain enough options most users will ever need - you would probably only ever need additional options at the point you need to tweak an application to perform better - at which point you're probably ready to modify the FreeBSD Makefiles yourself anyway! :P If you search through your Makefile for 'if defined', you usually get an idea of the options that you're allowed to set - as you can see in the Makefile snippet you pasted above the options you can set include WITH_SKIPLIST, WITH_SKIPLIST_MBOX, WITH_SKIPLIST_SEEN and so on. Sometimes some ports can be a real pain to remember how you last configured them - which is where it can be useful to use the portupgrade tool (in /usr/ports/sysutils/portupgrade). With portupgrade you can upgrade ports easily when new versions are released and by setting options in /usr/local/etc/pkgtools.conf you can let portupgrade know what make options you want used with your ports when you upgrade. There's an article/guide I wrote about portupgrade here: http://jez.hancock-family.com/archives/15_Portupgrade_and_usrlocaletcpkgtoolsconf.html For more info check out the man pages for ports, which contains lots of useful info on what 'targets' the make command takes (ie the 'clean' and 'install' in 'make clean install' are both 'targets' to the make command). Of course there's also the freebsd handbook section about the ports tree. Also useful reading is the 'bleeding edge' section of the handbook regarding cvsup, again detailed in the handbook. Also the freebsd-questions list is full of questions about ports and setting options for make. A searchable archive is here: http://freebsd.rambler.ru/ There's loads of info there about FreeBSD ports :P -- Jez Hancock - System Administrator / PHP Developer http://munk.nu/ http://jez.hancock-family.com/ - personal weblog http://ipfwstats.sf.net/- ipfw peruser traffic logging ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: DNS resources or toaster
On Mon, Jan 05, 2004 at 04:30:41PM -0500, Marius Kirschner wrote: I have the task to set up a two DNS servers for my company, and while I have administered their DNS servers using BIND for a number of years I have never set them up from scratch. I have 2 boxes where FreeBSD 5.1 will be installed, and, to be honest, I'm not sure whether to use BIND or DJBDNS of which I've heard much good. Obviously either one will do the job.I guess it's just a matter of preferences..but I'm very tempted to go with DJBDNS this time. Anyway, anybody know of a good web page/site with some how-to for FreeBSD and DJBDNS? Thanks, This one could be right up your street: http://matt.simerson.net/computing/dns/djbdns-freebsd.shtml I've also just published a set of notes for a real-world djbdns install on freebsd I did a while ago - the link to it is on my blog here: http://jez.hancock-family.com/archives/35_DJBDNS_Real_World_Example_On_FreeBSD.html HTH. -- Jez Hancock - System Administrator / PHP Developer http://munk.nu/ http://jez.hancock-family.com/ - personal weblog http://ipfwstats.sf.net/- ipfw peruser traffic logging ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: starting daemons at server start
On Sun, Jan 04, 2004 at 11:21:56AM -0800, Micke P wrote: Right! Ok, it's definitely not inetd that I need. I'm thinking primarily of starting apache and a dynamic ip updater automatically at startup. Have a look for one of the dyndns update applications in the ports tree (look in /usr/ports/dns/ especially - from experience ddclient worked well for me:P). After you install install the one you want, the port installation should place a script in /usr/local/etc/rc.d that will start the application when the machine boots. Note however that for scripts in /usr/local/etc/rc.d to run at boot time, they must: - be executable (ie have the executable bit set - use chmod to do this) - end in .sh (a lot of the time port installations will install scripts into /usr/local/etc/rc.d with the extension .sh.sample - you need to rename it to end in .sh before it will run on boot) For more info on all of the above read up on the section on ports in the freebsd handbook and the man pages for rc, ports, mv and chmod. Good luck :P -- Jez Hancock - System Administrator / PHP Developer http://munk.nu/ http://jez.hancock-family.com/ - personal weblog http://ipfwstats.sf.net/- ipfw peruser traffic logging ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: setting login.conf doesn't limit my users
On Sun, Dec 28, 2003 at 12:32:20PM -0500, Lowell Gilbert wrote: Jez Hancock [EMAIL PROTECTED] writes: To the OP - it may help if you paste in the contents of your login caps file /etc/login.conf or detail exactly what it is you're trying to cap/restrict. Indeed. There are some limits that aren't implemented, but if the users can change a limit, that's not what's happening here. Of course, users can always *lower* their limits, and they can raise their soft limits up to a maximum of the hard limit (that's what the distinction is for). This is it eh - there are some limits that can't be set - I remember having to use 'idled' from the ports to monitor the idle times of users and if they get to 1hr of idle time, auto-log them out as it were via idled (the login.conf setting to do this didn't work!!!). There are a few others but I forget what they are now (password expiry perhaps is one?). :P -- Jez Hancock - System Administrator / PHP Developer http://munk.nu/ http://jez.hancock-family.com/ - personal weblog http://ipfwstats.sf.net/- ipfw peruser traffic logging ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: The best Anti spam - Anti virus email solution
On Sun, Dec 28, 2003 at 09:31:36AM -0500, Brent Bailey wrote: Hello, Im looking for you thoughts and opinions on Anti -Spam and Anti virus solutions for email servers. Im getting ready to implement a email server solution for an ISP. Im very use to sendmail as ive been able to compile sendmail to do rbl checks and use access.db and procmail filtering and spamassassin and it seems to work pretty good..although there does seem to be a small amount of false positives I suppose this is going to happen to some extent. So im looking to this mailing list to get your opinions and thoughts on this. Im more than open to the idea of useing something other than sendmail :-) You may have more joy asking on freebsd-isp if this is indeed for an ISP setup. I've heard that clamd(?) is supposed to be good for virus scanning on the OSS side or sophos for a paid solution, although how these scale for ISP performance I don't know. You already mentioned spamassassin which I think is fairly standard, but again I don't know how it would scale for large numbers of users. Also you'd have to consider your privacy policy and whether you want to completely drop all mail very likely to be spam or whether you just want to rewrite the 'subject:' header to indicate that the mail might be spam. As an ISP user I'm not sure I'd like my ISP to just delete emails automaticaly on my behalf (even though as a mail server admin I do know that dropping mails that have an SA score of over say 30 are very very unlikely to contain spam). Again this is something to think about in your privacy policy I suppose. -- Jez Hancock - System Administrator / PHP Developer http://munk.nu/ http://jez.hancock-family.com/ - personal weblog http://ipfwstats.sf.net/- ipfw peruser traffic logging ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Mutt + E-Mail count
On Sun, Dec 28, 2003 at 03:46:27PM -0600, Bryan Cassidy wrote: Is there anyway when viewing your folders inside of Mutt to view the amount of e-mails instead of the size of the total e-mails? Try asing on the mutt-users list - I'm not sure you can do what you want though if I understand you correctly. If you do find out let me know though! :P -- Jez Hancock - System Administrator / PHP Developer http://munk.nu/ http://jez.hancock-family.com/ - personal weblog http://ipfwstats.sf.net/- ipfw peruser traffic logging ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: need learning direction suggestions on using editors
On Sat, Dec 27, 2003 at 01:56:24AM -0500, parv wrote: in message [EMAIL PROTECTED], wrote Jez Hancock thusly... On Thu, Dec 25, 2003 at 04:48:11PM +0800, Zhang Weiwu wrote: (something about increasing vi knowledge moving to vim or emacs) The major benefits of vi over vim are multiple buffers and the concept ^^^ ^^^ of windows. Surely Zhang meant that vim has major benefits over (n)vi, not the other way around, given the vim's virtues being extolled. Right Zhang? Slip of the fingers - you *know* what I meant!!! :P :P -- Jez Hancock - System Administrator / PHP Developer http://munk.nu/ http://jez.hancock-family.com/ - personal weblog http://ipfwstats.sf.net/- ipfw peruser traffic logging ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: need description of IPFILTER sysctl's
On Sat, Dec 27, 2003 at 09:11:36AM -0500, fbsd_user wrote: Here is the list of ipfilter sysctl's in FreeBSD. Looking for documentation on their meanings. Googling for some of the values might be the only option. There are a lot of sysctl flags that are quite obscure and only known seemingly to the coders that wrote the source code for the OS. This URL: http://people.freebsd.org/~adrian/sysctl.descriptions is ok for a few flags, but unfortunately doesn't list the ipf flags. You could also try grepping for the flags in /usr/src and seeing if there are any hints there. -- Jez Hancock - System Administrator / PHP Developer http://munk.nu/ http://jez.hancock-family.com/ - personal weblog http://ipfwstats.sf.net/- ipfw peruser traffic logging ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: setting login.conf doesn't limit my users
On Sat, Dec 27, 2003 at 10:36:17AM -0500, Lowell Gilbert wrote: Alexander [EMAIL PROTECTED] writes: after setting a new login classes in login.conf the users still don't get limited and worse - they can change the limits by themselves ! How do I restrict that ? I'm using FreeBSD 4.9-STABLE. Most of the users are using bash. They are in the login class that should put them the limits and I ran cap_mkdb /etc/login.conf after adding the new class. The users login via sshd. P.S. The FBSD handbook and the login.conf manpage doesn't help much. They only say that I should put the limits I want in login.conf and everything should be done. Do I miss something ? Well, for one thing sshd(8) doesn't use login(1) by default, so login.conf won't affect it at all. You can change that in login.conf(5), but doing so may have other consequences (I haven't had enough coffee today to remember what they could be; maybe checking mailing list archives would help). I don't think this is true - whether or not login is called is dependent on the shell set for each user - I may be wrong though :P. All I *do* know is that I use sshd to login regularly and the login capabilities I set in /etc/login.conf do take effect ok. To the OP - it may help if you paste in the contents of your login caps file /etc/login.conf or detail exactly what it is you're trying to cap/restrict. -- Jez Hancock - System Administrator / PHP Developer http://munk.nu/ http://jez.hancock-family.com/ - personal weblog http://ipfwstats.sf.net/- ipfw peruser traffic logging ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: need learning direction suggestions on using editors
... :exe :goto and delete it: :exe :delete finally set file type to 'man': :exe :set filetype=man endfun Map the K key to the ReadMan function: map K :call ReadMan()CR -snip- -- Jez Hancock - System Administrator / PHP Developer http://munk.nu/ http://jez.hancock-family.com/ - personal weblog http://ipfwstats.sf.net/- ipfw peruser traffic logging ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Upgrading perl modules
On Tue, Dec 23, 2003 at 07:42:53AM +0700, Roger Merritt wrote: At 08:48 PM 12/22/03, you wrote: $ portupgrade p5-\* However, when I try the command now I just get an error message. Can anyone tell me the proper command? #portupgrade p5-* (as root) That gives me: [EMAIL PROTECTED]:~]# portupgrade p5-* portupgrade: No match. You need to execute the command in the package db directory, /var/db/pkg. [3:42:50] [EMAIL PROTECTED] /var/db/pkg# portupgrade p5-* If you still get the errors you list below perhaps try reinstalling portupgrade. [EMAIL PROTECTED]:~]# portupgrade 'p5-*' /usr/local/lib/ruby/site_ruby/1.6/pkgdb.rb:310:in `deorigin': failed to convert nil into String (PkgDB::DBError) from /usr/local/lib/ruby/site_ruby/1.6/pkgdb.rb:903:in `tsort_build' from /usr/local/lib/ruby/site_ruby/1.6/pkgdb.rb:902:in `each' from /usr/local/lib/ruby/site_ruby/1.6/pkgdb.rb:902:in `tsort_build' from /usr/local/lib/ruby/site_ruby/1.6/pkgdb.rb:894:in `each' from /usr/local/lib/ruby/site_ruby/1.6/pkgdb.rb:894:in `tsort_build' from /usr/local/lib/ruby/site_ruby/1.6/pkgdb.rb:916:in `sort_build' from /usr/local/lib/ruby/site_ruby/1.6/pkgdb.rb:920:in `sort_build!' from /usr/local/sbin/portupgrade:674:in `main' from /usr/local/sbin/portupgrade:207:in `initialize' from /usr/local/sbin/portupgrade:207:in `new' from /usr/local/sbin/portupgrade:207:in `main' from /usr/local/sbin/portupgrade:1846 -- Jez Hancock - System Administrator / PHP Developer http://munk.nu/ http://jez.hancock-family.com/ - personal weblog http://ipfwstats.sf.net/- ipfw peruser traffic logging ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: doc on make command
On Mon, Dec 22, 2003 at 04:30:12PM -0500, fbsd_user wrote: I am looking for documentation on the make command that is used to install ports. The man page says there is an tutorial, but does not say where it's at or how to get to it. make search= make install clean make all-depends-list make index make fetch-recursive and the list go on and on. In addition to what's already been said, have a look at the comments in the following file which detail which targets you can pass to the make command: /usr/ports/Mk/bsd.port.mk (search for 'Default targets'). -- Jez Hancock - System Administrator / PHP Developer http://munk.nu/ http://jez.hancock-family.com/ - personal weblog http://ipfwstats.sf.net/- ipfw peruser traffic logging ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: DNS || sendmail? (or both?)
On Sun, Dec 21, 2003 at 12:49:00PM -0800, Gary Kline wrote: Anybody know what magic incantations are necessary to make my mail server aware of my internal hosts?? If this is a DNS matter, I didn't catch it in DNS AND BIND (4th ed). Try adding all the hosts you accept mail for to your local-host-names file - usually /etc/mail/local-host-names by default - check the line starting 'Fw-o' in /etc/mail/sendmail.cf. MX records should also be setup for each domain you want to accept mail for. Perhaps paste the DNS entries for the domains you're having trouble with if you still can't get it to work. -- Jez Hancock - System Administrator / PHP Developer http://munk.nu/ http://jez.hancock-family.com/ - personal weblog http://ipfwstats.sf.net/- ipfw peruser traffic logging ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Problems setting up Identd
On Thu, Dec 18, 2003 at 09:43:20PM -0600, Mike Loiterman wrote: Further, none of the identd servers (pidentd, oidentd) seem to have a man page. oidentd port does install a decent man page - perhaps you forgot to rehash? -snip- oidentd(8) oidentd(8) NAME oidentd - TCP/IP IDENT protocol server SYNOPSIS oidentd [options] [ -dehiImoqSv ] [ -a host ] [ -c charset ] [ -C config file ] [ -f port ] [ -p port ] [ -P host ] [ -o or --other=[OS string] ] [ -t or --timeout=seconds ] [ -g or --group=group|GID ] [ -l or --limit=number] [ -r or --reply=string ] [ -u or --user=username|UID ] DESCRIPTION oidentd is a server that implements the TCP/IP standard IDENT user identification protocol as specified in the RFC 1413 document. oidentd operates by looking up specific TCP connections and returning the user name of the process owning the connection. -snip- -- Jez Hancock - System Administrator / PHP Developer http://munk.nu/ http://jez.hancock-family.com/ - personal weblog http://ipfwstats.sf.net/- ipfw peruser traffic logging ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Sending email via PHP mail command in jail
On Tue, Dec 16, 2003 at 02:05:04PM -0700, Brent Wiese wrote: Just in case anyone was following this thread, esmtp in the ports works beautifully. Has that sorted you out then? I was thinking you could make use of the php.ini setting: sendmail_path to set the sendmail_path on a per-user / vhost basis in your httpd.conf file: virtualhost ip:port servername domain.com ... other directives php_admin_value sendmail_path sendmail -f [EMAIL PROTECTED] /virtualhost For this to work in Exim - sorry don't know about postfix - you'd need to add the user the httpd was running as (www) as a 'trusted_user' in the Exim config - no doubt this would be the same in postfix. -- Jez Hancock - System Administrator / PHP Developer http://munk.nu/ http://jez.hancock-family.com/ - personal weblog http://ipfwstats.sf.net/- ipfw peruser traffic logging ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: MySQL 4.0.16 + PHP 4.3.4
On Mon, Dec 15, 2003 at 01:38:21PM -0800, Chris wrote: You know, it never occured to me that there were individual Apache modules in the ports. Thanks Josh! Doesn't look like it would help in this case, though, as the mod_php port is for Apache 1.3, and I need 2.0. I believe you can force the mod_php4 port to install for apache2 using 'WITH_APACHE2'. Having said this though last time I looked the mod_php4 port automatically detects what version of apache you're running so you don't even need to use WITH_APACHE2. Here it is - in /usr/ports/lang/php4/Makefile (which the mod_php4 make process uses): .if exists(${LOCALBASE}/include/apache2/apr.h) WITH_APACHE2= yes .endif -- Jez Hancock - System Administrator / PHP Developer http://munk.nu/ http://jez.hancock-family.com/ - personal weblog http://ipfwstats.sf.net/- ipfw peruser traffic logging ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Where do I put options to ports make directives?
On Sun, Dec 14, 2003 at 09:28:55AM -0500, stan wrote: I'm rebuilding a machine that suffred a root disk crash. I can't seem to find the place to put the optiosn I pass to various port's make install comands (as defines), so they will be reused, when I use portupgrade to keep them up to date. Where is thsi file? /usr/local/etc/pkgtools.conf The manpage for pkgtools.conf(1) has some info on it and as it goes I added something to my blog about it yesterday: http://jez.hancock-family.com/archives/15_Portupgrade_and_usrlocaletcpkgtoolsconf.html HTH. -- Jez Hancock - System Administrator / PHP Developer http://munk.nu/ http://jez.hancock-family.com/ ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: How to list all packages in a given category?
On Sun, Dec 14, 2003 at 03:27:47PM -0800, Chris Pressey wrote: Apologies in advance if this is a stupid question, but I couldn't find anything relevant in the man pages or with Google: mail list archives are a good bet too (MARC for example) :P How can I list all the packages I have installed in a certain category? pkg_info -ao will list all packages including the origin path of the port (the part of the ports tree it was originally installed from), so as a hack you could do something like: pkg_info -ao | grep -B 3 net to list all packages in the 'net' category. With a bit of scripting you could even make it a bit more readable. the -O option is close but a bit awkward: [23:40:45] [EMAIL PROTECTED] /root# pkg_info -O databases/mysql323-client The following installed package(s) has databases/mysql323-client origin: mysql-client-3.23.58 unfortunately it doesn't let you do '-O databases' alone. -- Jez Hancock - System Administrator / PHP Developer http://munk.nu/ http://jez.hancock-family.com/ ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: login.conf changes not being effected
On Sat, Dec 13, 2003 at 12:50:55PM -0500, Phil Murphy wrote: I've been trying to test out some features in /etc/login.conf. I created a user test, in a login class kids. I edited /etc/login.conf to include: kids:\ :daytime=10:\ :tc=default: I ran cap_mkdb /etc/login.conf, and tried logging in as test. I assumed that the user would be logged off in 10 seconds, but this did not happen. I added: :sessiontime=10: and reran cap_mkdb. Still no effect. I reran cap_mkdb -v /etc/login.conf and received a confirmation message. I have read, and reread the manpages, googled, searched freebsd.org, bsdforums.org, etc., and have found that others are experiencing the same problem. I have not found any solution yet. Is there something I am missing? My goal is to be able to restrict login times and duration. login caps for duration didn't work as advertised last time I checked, idled from the ports can help with this. -- Jez Hancock - System Administrator / PHP Developer http://munk.nu/ http://jez.hancock-family.com/ ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Changing Default Router?
On Sat, Dec 13, 2003 at 06:41:16PM -0500, Dragoncrest wrote: HI all. How do I change the default router (aka gateway) in freebsd without rebooting? I know I can change the IP, subnet mask, and broadcast address through ifconfig, but I couldn't find in there where I could change the default router. Anyone know? Thanks. I believe you can issue: route add default ip The code in /etc/rc.network is a little obfuscated :P -- Jez Hancock - System Administrator / PHP Developer http://munk.nu/ http://jez.hancock-family.com/ ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
sed from a shell script - invalid command code
I'm trying to get the following Bourne shell script to output a list of all users on the server with the exception of those listed in the $ignore_users variable: -snip- #!/bin/sh sed=/usr/bin/sed passwd_file=/etc/passwd ignore_users=root|toor|daemon|operator|bin|tty|kmem|games|news|man|smmsp|bind|uucp|xten|pop|nobody|mysql|www|sshd|ftp|cyrus cmd=$sed -E -e '/^(#|$ignore_users)/d' -e 's/:.*//' $passwd_file users=`cmd` echo $users -snip- However when I run this code it returns: sed: 1: '/^(#|root|toor|daemon| ...: invalid command code ' How can I get this code to work? If I echo out the contents of $cmd it looks as it should do: /usr/bin/sed -E -e '/^(#|root|toor|daemon|operator|bin|tty|kmem|games|news|man|smmsp|bind|uucp|xten|pop|nobody|mysql|www|sshd|ftp|cyrus)/d' -e 's/:.*//' /etc/passwd and if I execute that command I get the desired result - I'm just having trouble getting the results of the command into a variable. TIA -- Jez Hancock - System Administrator / PHP Developer http://munk.nu/ http://jez.hancock-family.com/ ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: sed from a shell script - invalid command code
On Wed, Dec 10, 2003 at 02:40:58PM +, Jez Hancock wrote: I'm trying to get the following Bourne shell script to output a list of all users on the server with the exception of those listed in the $ignore_users variable: -snip- #!/bin/sh sed=/usr/bin/sed passwd_file=/etc/passwd ignore_users=root|toor|daemon|operator|bin|tty|kmem|games|news|man|smmsp|bind|uucp|xten|pop|nobody|mysql|www|sshd|ftp|cyrus cmd=$sed -E -e '/^(#|$ignore_users)/d' -e 's/:.*//' $passwd_file users=`cmd` echo $users -snip- Solved - solution was: #!/bin/sh sed=/usr/bin/sed passwd_file=/etc/passwd ignore_users=root|toor|daemon|operator|bin|tty|kmem|games|news|man|smmsp|bind|uucp|xten|pop|nobody|mysql|www|sshd|ftp|cyrus users=`$sed -E -e '/^(#|$ignore_users)/d' -e 's/:.*//' $passwd_file` echo $users -- Jez Hancock - System Administrator / PHP Developer http://munk.nu/ http://jez.hancock-family.com/ ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: user timer/alarm
On Mon, Dec 08, 2003 at 10:17:48PM -0700, Troy wrote: Hello, I found a command a few days ago that would allow a user to type in the command + time in minutes then it would allow a person to continue to work, when the time was up it would let you know and that was it. Can someone please refresh my memory as to what that command might've been? csh built-in 'sched' command perhaps?: sched -n (+) The first form prints the scheduled-event list. The sched shell variable may be set to define the format in which the scheduled-event list is printed. The second form adds command to the scheduled-event list. For example, sched 11:00 echo It\'s eleven o\'clock. see the manpage for tcsh(1) for more details if so. -- Jez Hancock - System Administrator / PHP Developer http://munk.nu/ ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: IPACCT
On Tue, Dec 09, 2003 at 04:20:46PM -0800, Doloonkhuch wrote: I want to control users per ip accounting. Now I using FreeBSD 5.0 and IPFW2. How I enable IPACCT and how configure. Just configure your ipfw rules to count traffic for each user on your system. I'll include my custom ipfw startup script which I load before everything else with the name: /usr/local/etc/rc.d/.000.ipfw.sh note the CHANGE ME lines though - also note that I DON'T use ipfw for blocking traffic, instead opting to use ipfilter for that. If you do use ipfw for blocking then you could modify this script to do that as well. Here's the script: #!/bin/sh # script to add ipfw counter rules for users # in /etc/passwd # path to ipfw: fw=/sbin/ipfw sed=/usr/bin/sed passwd_file=/etc/passwd # CHANGE THIS: ip=1.2.3.4 # allowall rule: allow_all=`echo $fw -q add 65000 allow all from any to any` # flush cmd: flush=`echo $fw -f -q flush` # $users a list of all users in pw db, one per line: # CHANGE THIS - THESE ARE THE USERS YOU *DON'T* WANT TO # LOG TRAFFIC FOR: users=`$sed -E -e '/^(#|root|toor|daemon|operator|bin|tty|kmem|\ games|news|man|smmsp|bind|uucp|xten|pop|nobody|mysql|sonictown|\ test|www|sshd|ftp|cpimps|administrator|eggshell|cyrus|analog)/d' \ -e 's/:.*//' $passwd_file` startfw () { # Flush the current rules: $flush # for each user, create a rule: for user in `echo $users` do $fw add 1 count all from any to $ip uid $user $fw add 2 count all from $ip to any uid $user $fw add 3 count all from any to any uid $user done # add counters for all traffic: $fw add 4 count all from any to $ip $fw add 5 count all from $ip to any $fw add 6 count all from any to any # add counters for dns and http: # $fw add 7 count all from any to $ip 53 # $fw add 8 count all from any to $ip 80 # make sure we allow all: $allow_all # no restriction on our block: $fw add 10 pipe 10 ip from any to 213.152.51.194/29 $fw pipe 10 config bw 9Mbyte/s $fw add 11 pipe 11 ip from 213.152.51.194/29 to any $fw pipe 11 config bw 9Mbyte/s # add a bandwidth restriction on http: $fw add 20 pipe 20 tcp from any 80 to any out $fw pipe 20 config bw 25KByte/s # add a bandwidth restriction on ftp: # $fw add 12 pipe 2 tcp from any to any 20 in # $fw pipe 2 config bw 20Kbit/s # and zero all rules: $fw zero echo ipfw accounting rules added... } case $1 in stop) $flush $allow_all $fw -q zero echo ipfw accounting rules flushed... ;; start) startfw echo ipfw accounting rules loaded... ;; *) echo Usage: `basename $0` { start | stop } ;; esac Best regards Doloonkhuch.A ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] -- Jez Hancock - System Administrator / PHP Developer http://munk.nu/ ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: php4-cli install with mod_php4
On Mon, Dec 08, 2003 at 12:37:32PM -0600, Redmond Militante wrote: i'd like to run a php file as a cron job on my apache box. in order to do this, i'm trying to install /usr/ports/lang/php4-cli. I seem to remember reading on the list that if you run make in /usr/ports/lang/php4 without explicitly asking for either mod_php4 or php4-cli/cgi, then by default it will install php4-cli and mod_php4 IF it finds you have apache installed. Worth trying out perhaps. -- Jez Hancock - System Administrator / PHP Developer http://munk.nu/ ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Console resolution
On Mon, Dec 08, 2003 at 09:35:57PM +0100, Aleksander Rozman - Andy wrote: Problem is that this notebok Toshiba, has *very* ugly system font. On RedHat I solved this problem, by giving higher resolution to text mode (which I what I would like to do here). I am wondering if this is also possible on freebsd. I use text mode a lot, so this is quite important, I use Xwindows only if I must... You can try playing with the various /etc/rc.conf settings to tweak console display. I have this in mine: keymap=uk.cp850 keyrate=fast font8x8=swiss-8x8 allscreens_flags=80x50 This is ok for me here in the UK - you might have to play around with different fonts if you use a different keymap. The screen flags setting just changes the display to 80x50 instead of the default 80x25. Note you can test those settings out from the console using kbdcontrol. -- Jez Hancock - System Administrator / PHP Developer http://munk.nu/ ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Console resolution
On Mon, Dec 08, 2003 at 09:10:13PM +, Jez Hancock wrote: Note you can test those settings out from the console using kbdcontrol. My bad - that should be 'vidcontrol' of course as someone else pointed out! -- Jez Hancock - System Administrator / PHP Developer http://munk.nu/ ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]