Re: Hard Drive Issues
Tom Judge wrote: Richard McIntyre wrote: I'm having a similar problem, Oct 13 03:01:31 tco1 kernel: ad2: FAILURE - READ_DMA status=51READY,DSC,ERROR error=40UNCORRECTABLE LBA=181778119 Oct 13 07:11:15 tco1 kernel: ad2: FAILURE - READ_DMA status=51READY,DSC,ERROR error=40UNCORRECTABLE LBA=181778119 I'm assuming that particular sector on the drive is dying, I have backed everything up on the drive, can anyone give me more information, should the drive simply be replaced or is it possible that this is simply a TOC error and could be corrected by newfs to the drive? I'm guessing it will need to be replaced, output of smartctl is below Thanks ~Richard Error 7742 occurred at disk power-on lifetime: 16036 hours (668 days + 4 hours) When the command that caused the error occurred, the device was active or idle. After command completion occurred, registers were: ER ST SC SN CL CH DH -- -- -- -- -- -- -- 40 51 04 c7 b6 d5 ea Error: UNC 4 sectors at LBA = 0x0ad5b6c7 = 181778119 etc Looks like you disk is on its way out, from the look of the above errors, I would try dd'ing the disk onto a new disk the running an fsck to make sure everything is ok. I wouldnt hold out much hope for recovering the data on that sector though. Tom J All, I've put a new disk into the system, The current disk is 200 GB, the new disk is 250 GB. If I run the command: dd if=/dev/ad2 of=/dev/ad3 conv=noerror Will this copy the (changing the appropriate device names of course) the disk as a whole? Will I lose the 50 GB difference? Is there another way? (like the dump, tar, or just plain copy command?) The drive is two partitions, one 100GB and the remainder on the other partition. The files contained are backups of my virtual hosted sites and the apache directories (including the apache/bin files). Any suggestions? I've read a good deal of forums online but they seem to be contradicting. 1/2 say I will loose the remainder of the drive space, 1/2 say that dd is not the best way to go. (there is roughly 35 GB of data actually on the device). FreeBSD tco1.thecompanyonline.com 5.3-RELEASE FreeBSD 5.3-RELEASE #0: Mon May 2 22:32:50 EDT 2005 [EMAIL PROTECTED]:/usr/src/sys/i386/compile/TCO1.2005.05.02.001 i386 Thank you for the help! ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Hard Drive Issues
David Kelly wrote: On Thu, Oct 12, 2006 at 06:54:53PM +0100, Spiros Papadopoulos wrote: Since as you say everything is working, maybe it is a good idea to take a look and run the fsck command at least it may give you some more information, which you can post in order to get better answers That too, but first I'd start with sysutils/smartmontools and see what the drive and its built-in log says. I'm having a similar problem, Oct 13 03:01:31 tco1 kernel: ad2: FAILURE - READ_DMA status=51READY,DSC,ERROR error=40UNCORRECTABLE LBA=181778119 Oct 13 07:11:15 tco1 kernel: ad2: FAILURE - READ_DMA status=51READY,DSC,ERROR error=40UNCORRECTABLE LBA=181778119 I'm assuming that particular sector on the drive is dying, I have backed everything up on the drive, can anyone give me more information, should the drive simply be replaced or is it possible that this is simply a TOC error and could be corrected by newfs to the drive? I'm guessing it will need to be replaced, output of smartctl is below Thanks ~Richard uname -a FreeBSD 5.3-RELEASE FreeBSD 5.3-RELEASE #0: Mon May 2 22:32:50 EDT 2005 [EMAIL PROTECTED]:/usr/src/sys/i386/compile/TCO1.2005.05.02.001 i386 My output of smartmontools is: smartctl -a -s on /dev/ad2 smartctl version 5.36 [i386-portbld-freebsd5.3] Copyright (C) 2002-6 Bruce Allen Home page is http://smartmontools.sourceforge.net/ === START OF INFORMATION SECTION === Model Family: Seagate Barracuda 7200.7 and 7200.7 Plus family Device Model: ST3200822A Serial Number:5LJ0LW2T Firmware Version: 3.01 User Capacity:200,049,647,616 bytes Device is:In smartctl database [for details use: -P show] ATA Version is: 6 ATA Standard is: ATA/ATAPI-6 T13 1410D revision 2 Local Time is:Fri Oct 13 14:56:23 2006 EDT SMART support is: Available - device has SMART capability. SMART support is: Disabled === START OF ENABLE/DISABLE COMMANDS SECTION === SMART Enabled. === START OF READ SMART DATA SECTION === SMART overall-health self-assessment test result: PASSED General SMART Values: Offline data collection status: (0x82) Offline data collection activity was completed without error. Auto Offline Data Collection: Enabled. Self-test execution status: ( 0) The previous self-test routine completed without error or no self-test has ever been run. Total time to complete Offline data collection: ( 430) seconds. Offline data collection capabilities:(0x5b) SMART execute Offline immediate. Auto Offline data collection on/off support. Suspend Offline collection upon new command. Offline surface scan supported. Self-test supported. No Conveyance Self-test supported. Selective Self-test supported. SMART capabilities:(0x0003) Saves SMART data before entering power-saving mode. Supports SMART auto save timer. Error logging capability:(0x01) Error logging supported. No General Purpose Logging support. Short self-test routine recommended polling time:( 1) minutes. Extended self-test routine recommended polling time:( 111) minutes. SMART Attributes Data Structure revision number: 10 Vendor Specific SMART Attributes with Thresholds: ID# ATTRIBUTE_NAME FLAG VALUE WORST THRESH TYPE UPDATED WHEN_FAILED RAW_VALUE 1 Raw_Read_Error_Rate 0x000f 051 048 006Pre-fail Always - 22488920 3 Spin_Up_Time0x0003 097 097 000Pre-fail Always - 0 4 Start_Stop_Count0x0032 100 100 020Old_age Always - 21 5 Reallocated_Sector_Ct 0x0033 100 100 036Pre-fail Always - 1 7 Seek_Error_Rate 0x000f 084 060 030Pre-fail Always - 328020832 9 Power_On_Hours 0x0032 082 082 000Old_age Always - 16043 10 Spin_Retry_Count0x0013 100 100 097Pre-fail Always - 0 12 Power_Cycle_Count 0x0032 100 100 020Old_age Always - 22 194 Temperature_Celsius 0x0022 030 040 000Old_age Always - 30 195 Hardware_ECC_Recovered 0x001a 051 048 000Old_age Always - 22488920 197 Current_Pending_Sector 0x0012 100 100 000Old_age Always - 1 198 Offline_Uncorrectable 0x0010 100 100 000Old_age Offline - 1 199 UDMA_CRC_Error_Count
[Fwd: mlock: not setgid mail]
Anyone ? ---BeginMessage--- All, I have searched several places and everything I have seen reports that the only thing I need to do is chown /usr/local/libexec/mlock to root:mail but it currently is... take a look: May 24 12:54:59 tco1 /usr/local/libexec/mlock[29327]: (64) not setgid mail May 24 12:57:08 tco1 /usr/local/libexec/mlock[29382]: (64) not setgid mail May 24 12:57:08 tco1 /usr/local/libexec/mlock[29384]: (64) not setgid mail May 24 13:03:33 tco1 /usr/local/libexec/mlock[30399]: (64) not setgid mail May 24 13:04:23 tco1 /usr/local/libexec/mlock[30401]: (64) not setgid mail May 24 13:04:32 tco1 /usr/local/libexec/mlock[30403]: (64) not setgid mail tco1# ls -ail /usr/local/libexec/ total 4104 1626383 drwxr-xr-x 6 root wheel 512 May 24 13:00 . 1625088 drwxr-xr-x 16 root wheel 512 May 6 13:36 .. 1746408 drwxr-xr-x 2 root wheel 512 May 3 22:35 autoconf259 1746417 drwxr-xr-x 2 root wheel 512 May 3 22:35 automake19 1627965 -r-xr-xr-x 1 root wheel63624 May 24 13:00 imapd 1627966 -r-xr-xr-x 1 root wheel14568 May 24 13:00 ipop2d 1627967 -r-xr-xr-x 1 root wheel22344 May 24 13:00 ipop3d 1672841 drwxr-xr-x 2 root wheel 512 May 3 00:22 libtool13 1626599 drwxr-xr-x 2 root wheel 512 May 2 23:43 libtool15 1627968 -rwx--s--x 1 root mail 5808 May 24 13:00 mlock 1628238 -r-xr-xr-x 1 root wheel 4050712 May 5 17:08 mysqld I'm quite perplexed as to what to do about this, I also read a suggestion to rebuild the /usr/ports/mail/imap-uw so I did, but that has not assisted any. Any suggestions would be GREATLY appreciated. FYI: I'm currently using sendmail - imap-uw w/SSL - spamassassin - clamav Thanks again, Richard tco1# uname -a FreeBSD tco1.thecompanyonline.com 5.3-RELEASE FreeBSD 5.3-RELEASE #0: Mon May 2 22:32:50 EDT 2005 [EMAIL PROTECTED]:/usr/src/sys/i386/compile/TCO1.2005.05.02.001 i386 ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ---End Message--- ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
mlock: not setgid mail
All, I have searched several places and everything I have seen reports that the only thing I need to do is chown /usr/local/libexec/mlock to root:mail but it currently is... take a look: May 24 12:54:59 tco1 /usr/local/libexec/mlock[29327]: (64) not setgid mail May 24 12:57:08 tco1 /usr/local/libexec/mlock[29382]: (64) not setgid mail May 24 12:57:08 tco1 /usr/local/libexec/mlock[29384]: (64) not setgid mail May 24 13:03:33 tco1 /usr/local/libexec/mlock[30399]: (64) not setgid mail May 24 13:04:23 tco1 /usr/local/libexec/mlock[30401]: (64) not setgid mail May 24 13:04:32 tco1 /usr/local/libexec/mlock[30403]: (64) not setgid mail tco1# ls -ail /usr/local/libexec/ total 4104 1626383 drwxr-xr-x 6 root wheel 512 May 24 13:00 . 1625088 drwxr-xr-x 16 root wheel 512 May 6 13:36 .. 1746408 drwxr-xr-x 2 root wheel 512 May 3 22:35 autoconf259 1746417 drwxr-xr-x 2 root wheel 512 May 3 22:35 automake19 1627965 -r-xr-xr-x 1 root wheel63624 May 24 13:00 imapd 1627966 -r-xr-xr-x 1 root wheel14568 May 24 13:00 ipop2d 1627967 -r-xr-xr-x 1 root wheel22344 May 24 13:00 ipop3d 1672841 drwxr-xr-x 2 root wheel 512 May 3 00:22 libtool13 1626599 drwxr-xr-x 2 root wheel 512 May 2 23:43 libtool15 1627968 -rwx--s--x 1 root mail 5808 May 24 13:00 mlock 1628238 -r-xr-xr-x 1 root wheel 4050712 May 5 17:08 mysqld I'm quite perplexed as to what to do about this, I also read a suggestion to rebuild the /usr/ports/mail/imap-uw so I did, but that has not assisted any. Any suggestions would be GREATLY appreciated. FYI: I'm currently using sendmail - imap-uw w/SSL - spamassassin - clamav Thanks again, Richard tco1# uname -a FreeBSD tco1.thecompanyonline.com 5.3-RELEASE FreeBSD 5.3-RELEASE #0: Mon May 2 22:32:50 EDT 2005 [EMAIL PROTECTED]:/usr/src/sys/i386/compile/TCO1.2005.05.02.001 i386 ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Sendmail with sasl2 build fails. *FIX*
Richard Mcintyre wrote: All, I've checked the mailing lists and it appears that this has been a problem for other people in the past, but I can't seem to fix the issue I'm having. I have installed cyrus-sasl2-saslauthd from ports. I then added the following to /etc/make.conf: # SASL (cyrus-sasl v2) sendmail build flags... SENDMAIL_CFLAGS+= -I/usr/local/include -DSASL=2 SENDMAIL_LDFLAGS+= -L/usr/local/lib SENDMAIL_LDADD+= -lsasl2 # Adding to enable alternate port (smtps) for sendmail... SENDMAIL_CFLAGS+= -D_FFR_SMTP_SSL Then, I attempted to rebuild sendmail, I have tried both of the following steps... First I tried: # cd /usr/src/usr.sbin/sendmail # make clean # make depend # make # make install When that failed I tried: # cd /usr/src/lib/libsm # make obj # make depend # make # cd /usr/src/lib/libsmutil # make obj # make depend # make # cd /usr/src/usr.sbin/sendmail # make obj # make depend # make # make install Finally when that failed I tried: # cd /usr/src/lib/libsm # make clean # cd /usr/src/lib/libsmutil # make clean # cd /usr/src/usr.sbin/sendmail # make clean # cd /usr/src/lib/libsm # make obj # make depend # make # cd /usr/src/lib/libsmutil # make obj # make depend # make # cd /usr/src/usr.sbin/sendmail # make obj # make depend # make # make install All return the same problem at the make on /usr/src/usr.sbin/sendmail... SNIP cc -O -pipe -I/usr/src/usr.sbin/sendmail/../../contrib/sendmail/src -I/usr/src/usr.sbin/sendmail/../../contrib/sendmail/include -I. -DNEWDB -DNIS -DTCPWRAPPERS -DMAP_REGEX -DDNSMAP -DNETINET6 -DSTARTTLS -D_FFR_TLS_1 -I/usr/local/include -DSASL=2 -D_FFR_SMTP_SSL -c /usr/src/usr.sbin/sendmail/../../contrib/sendmail/src/version.c make: don't know how to make /usr/src/usr.sbin/sendmail/../../lib/libsmutil/libsmutil.a. Stop /SNIP Can anyone help out? Thanks in advance... ~REM tco1# uname -a FreeBSD tco1.iaminsane.net 5.3-RELEASE FreeBSD 5.3-RELEASE #0: Mon May 2 22:32:50 EDT 2005 [EMAIL PROTECTED]:/usr/src/sys/i386/compile/TCO1.2005.05.02.001 i386 ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] I followed some advice I found on the [EMAIL PROTECTED] email list and after cvsup'ing my src I ran a 'make buildworld' in /usr/src. After the make buildworld finished I cd'd to /usr/src/usr.sbin/sendmail/ and did a make install and it installed just fine. ~REM ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Sendmail with sasl2 build fails.
All, I've checked the mailing lists and it appears that this has been a problem for other people in the past, but I can't seem to fix the issue I'm having. I have installed cyrus-sasl2-saslauthd from ports. I then added the following to /etc/make.conf: # SASL (cyrus-sasl v2) sendmail build flags... SENDMAIL_CFLAGS+= -I/usr/local/include -DSASL=2 SENDMAIL_LDFLAGS+= -L/usr/local/lib SENDMAIL_LDADD+= -lsasl2 # Adding to enable alternate port (smtps) for sendmail... SENDMAIL_CFLAGS+= -D_FFR_SMTP_SSL Then, I attempted to rebuild sendmail, I have tried both of the following steps... First I tried: # cd /usr/src/usr.sbin/sendmail # make clean # make depend # make # make install When that failed I tried: # cd /usr/src/lib/libsm # make obj # make depend # make # cd /usr/src/lib/libsmutil # make obj # make depend # make # cd /usr/src/usr.sbin/sendmail # make obj # make depend # make # make install Finally when that failed I tried: # cd /usr/src/lib/libsm # make clean # cd /usr/src/lib/libsmutil # make clean # cd /usr/src/usr.sbin/sendmail # make clean # cd /usr/src/lib/libsm # make obj # make depend # make # cd /usr/src/lib/libsmutil # make obj # make depend # make # cd /usr/src/usr.sbin/sendmail # make obj # make depend # make # make install All return the same problem at the make on /usr/src/usr.sbin/sendmail... SNIP cc -O -pipe -I/usr/src/usr.sbin/sendmail/../../contrib/sendmail/src -I/usr/src/usr.sbin/sendmail/../../contrib/sendmail/include -I. -DNEWDB -DNIS -DTCPWRAPPERS -DMAP_REGEX -DDNSMAP -DNETINET6 -DSTARTTLS -D_FFR_TLS_1 -I/usr/local/include -DSASL=2 -D_FFR_SMTP_SSL -c /usr/src/usr.sbin/sendmail/../../contrib/sendmail/src/version.c make: don't know how to make /usr/src/usr.sbin/sendmail/../../lib/libsmutil/libsmutil.a. Stop /SNIP Can anyone help out? Thanks in advance... ~REM tco1# uname -a FreeBSD tco1.iaminsane.net 5.3-RELEASE FreeBSD 5.3-RELEASE #0: Mon May 2 22:32:50 EDT 2005 [EMAIL PROTECTED]:/usr/src/sys/i386/compile/TCO1.2005.05.02.001 i386 ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Sendmail with sasl2 build fails.
Andy W. Clements wrote: On Tue, 2005-05-03 at 19:10 -0400, Richard Mcintyre wrote: I have installed cyrus-sasl2-saslauthd from ports. I then added the following to /etc/make.conf: # SASL (cyrus-sasl v2) sendmail build flags... SENDMAIL_CFLAGS+= -I/usr/local/include -DSASL=2 SENDMAIL_LDFLAGS+= -L/usr/local/lib SENDMAIL_LDADD+= -lsasl2 # Adding to enable alternate port (smtps) for sendmail... SENDMAIL_CFLAGS+= -D_FFR_SMTP_SSL I just went through this same process, however my flags are different than yours: SENDMAIL_CFLAGS=-I/usr/local/include/sasl -DSASL SENDMAIL_LDFLAGS=-L/usr/local/lib SENDMAIL_LDADD=-lsasl2 But I don't think that is what is causing the error belowcontinue: All return the same problem at the make on /usr/src/usr.sbin/sendmail... SNIP cc -O -pipe -I/usr/src/usr.sbin/sendmail/../../contrib/sendmail/src -I/usr/src/usr.sbin/sendmail/../../contrib/sendmail/include -I. -DNEWDB -DNIS -DTCPWRAPPERS -DMAP_REGEX -DDNSMAP -DNETINET6 -DSTARTTLS -D_FFR_TLS_1 -I/usr/local/include -DSASL=2 -D_FFR_SMTP_SSL -c /usr/src/usr.sbin/sendmail/../../contrib/sendmail/src/version.c make: don't know how to make /usr/src/usr.sbin/sendmail/../../lib/libsmutil/libsmutil.a. Stop /SNIP Can anyone help out? Thanks in advance... ~REM I have read somewhere that your source needs to be prestine in order for the compile to work correctly. I pulled the source directly from cvsup just before attempting this manuver and it worked out all right. When did you last retrieve the source? I did it on the same build as you: zeppo:awc# uname -a FreeBSD zeppo.candhsoftware.com 5.3-RELEASE FreeBSD 5.3-RELEASE #0: Fri Nov 5 04:19:18 UTC 2004 [EMAIL PROTECTED]:/usr/obj/usr/src/sys/GENERIC i386 Does the make at the end of libsmutil show the libsmutil.a file being created? --Andy Actually I have just installed (using diskettes over the network) last night. I am sure that doesn't mean that the src that was downloaded is 100% up todate. I am running a cvsup on src now, hopefully that will correct my problem. PS - Yes the libsmutil.a file was created when running the make in libsmutil. Thanks, ~Richard McIntyre ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Sendmail with sasl2 build fails.
Richard Mcintyre wrote: Andy W. Clements wrote: On Tue, 2005-05-03 at 19:10 -0400, Richard Mcintyre wrote: I have installed cyrus-sasl2-saslauthd from ports. I then added the following to /etc/make.conf: # SASL (cyrus-sasl v2) sendmail build flags... SENDMAIL_CFLAGS+= -I/usr/local/include -DSASL=2 SENDMAIL_LDFLAGS+= -L/usr/local/lib SENDMAIL_LDADD+= -lsasl2 # Adding to enable alternate port (smtps) for sendmail... SENDMAIL_CFLAGS+= -D_FFR_SMTP_SSL I just went through this same process, however my flags are different than yours: SENDMAIL_CFLAGS=-I/usr/local/include/sasl -DSASL SENDMAIL_LDFLAGS=-L/usr/local/lib SENDMAIL_LDADD=-lsasl2 But I don't think that is what is causing the error belowcontinue: All return the same problem at the make on /usr/src/usr.sbin/sendmail... SNIP cc -O -pipe -I/usr/src/usr.sbin/sendmail/../../contrib/sendmail/src -I/usr/src/usr.sbin/sendmail/../../contrib/sendmail/include -I. -DNEWDB -DNIS -DTCPWRAPPERS -DMAP_REGEX -DDNSMAP -DNETINET6 -DSTARTTLS -D_FFR_TLS_1 -I/usr/local/include -DSASL=2 -D_FFR_SMTP_SSL -c /usr/src/usr.sbin/sendmail/../../contrib/sendmail/src/version.c make: don't know how to make /usr/src/usr.sbin/sendmail/../../lib/libsmutil/libsmutil.a. Stop /SNIP Can anyone help out? Thanks in advance... ~REM I have read somewhere that your source needs to be prestine in order for the compile to work correctly. I pulled the source directly from cvsup just before attempting this manuver and it worked out all right. When did you last retrieve the source? I did it on the same build as you: zeppo:awc# uname -a FreeBSD zeppo.candhsoftware.com 5.3-RELEASE FreeBSD 5.3-RELEASE #0: Fri Nov 5 04:19:18 UTC 2004 [EMAIL PROTECTED]:/usr/obj/usr/src/sys/GENERIC i386 Does the make at the end of libsmutil show the libsmutil.a file being created? --Andy Actually I have just installed (using diskettes over the network) last night. I am sure that doesn't mean that the src that was downloaded is 100% up todate. I am running a cvsup on src now, hopefully that will correct my problem. PS - Yes the libsmutil.a file was created when running the make in libsmutil. Thanks, ~Richard McIntyre Okay, I ran a cvsup for src-all and did the same thing and it still fails with the same error... make: don't know how to make /usr/src/usr.sbin/sendmail/../../lib/libsmutil/libsmutil.a. Stop Any other suggesttions? Thanks in advance... ~REM ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
SSL Certificate question.
All, I'm usually just a lurker on this list but I ran into a small problem. I recently found out that the SSL certificate I created for my sendmail server has expired. I need to update it. I was following along with the suggestions at http://veldt.com/2003/08/smtp-auth-ssl-with-sendmail-freebsd/ but I ran into a problem, I was hoping I could just generate a new certificate with the following commands: next, youll need to generate certificates for sendmail to use. mkdir /etc/mail/certs cd /etc/mail/certs mktemp /tmp/openssl.X1 mktemp /tmp/openssl.X2 PEM1='/tmp/openssl.X1' PEM2='/tmp/openssl.X2' openssl req -newkey rsa:1024 -keyout $PEM1 \ -nodes -x509 -days 365 -out $PEM2 cat $PEM1 sendmail.pem echo sendmail.pem cat $PEM2 sendmail.pem cp $PEM2 ca-bundle.crt rm $PEM1 $PEM2 chmod 400 sendmail.pem chmod 400 ca-bundle.crt I ran into some problems around PEM1='/tmp'openssl.X1' for some reason FreeBSD is now seeing this as a command, and is responding PEM1=/tmp/openssl.X1: Command not found. I am certain that these are the commands I ran the first time (04/12/2004) to create the certificates, why aren't they working now? Thanks for your help... tco2# uname -a FreeBSD tco2.iaminsane.net 5.2.1-RELEASE FreeBSD 5.2.1-RELEASE #0: Fri Apr 23 07:02:47 EDT 2004 [EMAIL PROTECTED]:/usr/src/sys/i386/compile/REM_0.0.3 i386 ~REM ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: SSL Certificate question.
Okay, so I'm a bit slow on the uptake but I figured out that the PEM1 and PEM2 commands are supposed to be preceeded by set in my shell. I have now generated the new certificate, but how do I get sendmail to recognize it? I have even built sendmail from the src on my local machine. for some reason it's still utilizing the old openssl certificate that I generated over a year ago (even though the actual file was removed before I ran the commands below. Your help is appreciated. ~REM Richard Mcintyre wrote: All, I'm usually just a lurker on this list but I ran into a small problem. I recently found out that the SSL certificate I created for my sendmail server has expired. I need to update it. I was following along with the suggestions at http://veldt.com/2003/08/smtp-auth-ssl-with-sendmail-freebsd/ but I ran into a problem, I was hoping I could just generate a new certificate with the following commands: next, youll need to generate certificates for sendmail to use. mkdir /etc/mail/certs cd /etc/mail/certs mktemp /tmp/openssl.X1 mktemp /tmp/openssl.X2 PEM1='/tmp/openssl.X1' PEM2='/tmp/openssl.X2' openssl req -newkey rsa:1024 -keyout $PEM1 \ -nodes -x509 -days 365 -out $PEM2 cat $PEM1 sendmail.pem echo sendmail.pem cat $PEM2 sendmail.pem cp $PEM2 ca-bundle.crt rm $PEM1 $PEM2 chmod 400 sendmail.pem chmod 400 ca-bundle.crt I ran into some problems around PEM1='/tmp'openssl.X1' for some reason FreeBSD is now seeing this as a command, and is responding PEM1=/tmp/openssl.X1: Command not found. I am certain that these are the commands I ran the first time (04/12/2004) to create the certificates, why aren't they working now? Thanks for your help... tco2# uname -a FreeBSD tco2.iaminsane.net 5.2.1-RELEASE FreeBSD 5.2.1-RELEASE #0: Fri Apr 23 07:02:47 EDT 2004 [EMAIL PROTECTED]:/usr/src/sys/i386/compile/REM_0.0.3 i386 ~REM ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Problems with Cron not deleting log files
All, I am having a problem. Back in December I installed FreeBSD5.3 onto a server and have just recently found some new time to 'play' with the settings etc. I think I know what happened but I'm not sure how to fix it. I currently have a 'large number' of auth.log.x and cron.xx files under /var/log. When I first installed I remember reading some advice on 'securing' FreeBSD a little and ran the following commands: # echo root /var/cron/allow echo root /var/at/at.allow # chmod o= /etc/crontab chmod o= /usr/bin/crontab chmod o= /usr/bin/at chmod o= /usr/bin/atq chmod o= /usr/bin/atrm chmod o= /usr/bin/batch chmod o= /etc/fstab chmod o= /etc/ftpusers chmod o= /etc/group chmod o= /etc/hosts chmod o= /etc/hosts.allow chmod o= /etc/hosts.equiv chmod o= /etc/hosts.lpd chmod o= /etc/inetd.conf chmod o= /etc/login.access chmod o= /etc/login.conf chmod o= /etc/newsyslog.conf chmod o= /etc/rc.conf chmod o= /etc/ssh/sshd_config chmod o= /etc/sysctl.conf chmod o= /etc/syslog.conf chmod o= /etc/ttys chmod o= /var/log chflags sappnd /var/log chflags sappnd /var/log/* chmod o= /usr/bin/users chmod o= /usr/bin/w chmod o= /usr/bin/who chmod o= /usr/bin/lastcomm chmod o= /usr/sbin/jls chmod o= /usr/bin/last chmod o= /usr/sbin/lastlogin chmod ugo= /usr/bin/rlogin chmod ugo= /usr/bin/rsh I believe that for some reason the Cron daemon was unable to copy the files properly when it was trying to turn them over. Now when I try to remove the files I get an error. Below is a small sample... Thanks in advance for your help. ~REM # rm cron.zzuL4BB rm: cron.zzuL4BB: Operation not permitted FreeBSD tco1.iaminsane.net 5.3-RELEASE FreeBSD 5.3-RELEASE #0: Fri Nov 5 04:19:18 UTC 2004 [EMAIL PROTECTED]:/usr/obj/usr/src/sys/GENERIC i386 -rwxr- 1 root wheel 75 Jan 12 02:00 auth.log.zzcek12 -rwxr- 1 root wheel 76 Feb 17 23:00 auth.log.zzhTnRK -rwxr- 1 root wheel 76 Feb 13 02:00 auth.log.zziSwsY -rwxr- 1 root wheel 76 Feb 19 01:00 auth.log.zzkW0uv -rwxr- 1 root wheel 76 Feb 11 08:00 auth.log.zzkwJcT -rwxr- 1 root wheel 76 Jan 4 13:00 auth.log.zzkzLR4 -rwxr- 1 root wheel 76 Jan 15 03:00 auth.log.zzpMZnk -rwxr- 1 root wheel 76 Feb 26 01:00 auth.log.zzqHHQF -rwxr- 1 root wheel 75 Jan 10 05:00 auth.log.zzsUDaP -rwxr- 1 root wheel 76 Jan 5 01:00 auth.log.zzyMumT -rwxr- 1 root wheel 76 Jan 7 02:00 auth.log.zzzLgvw -rw--- 1 root wheel3464472 Mar 8 17:15 cron -rwxr- 1 root wheel 919147 Dec 29 18:00 cron.0 -rwxr- 1 root wheel 76 Dec 9 14:00 cron.z01GcNu -rwxr- 1 root wheel 76 Dec 18 20:00 cron.z0smBRG -rwxr- 1 root wheel 76 Dec 28 03:00 cron.z1POYdD -rwxr- 1 root wheel 76 Dec 16 17:00 cron.zvh7LvG -rwxr- 1 root wheel 76 Dec 19 10:00 cron.zvmZm3L -rwxr- 1 root wheel 76 Dec 27 19:00 cron.zvnEACt -rwxr- 1 root wheel 76 Dec 23 22:00 cron.zw9E9HU -rwxr- 1 root wheel 76 Dec 21 09:00 cron.zwJmzq5 -rwxr- 1 root wheel 76 Dec 18 13:00 cron.zwTOEch -rwxr- 1 root wheel 76 Dec 8 16:00 cron.zwn8Fgs -rwxr- 1 root wheel 76 Dec 16 00:00 cron.zzSAEOg -rwxr- 1 root wheel 76 Mar 8 16:54 cron.zzuL4BB -rw--- 1 root wheel 68 Mar 8 14:28 debug.log -rwxr- 1 root wheel 5944 Dec 6 03:01 dmesg.today -rw-r--r-- 1 root wheel 28028 Dec 5 21:51 lastlog -rw-r--r-- 1 root wheel 0 Nov 4 20:27 lpd-errs -rw-r- 1 root wheel2018303 Mar 8 14:29 maillog -rwxr- 1 root wheel 6479 Dec 8 00:00 maillog.0 -rwxr- 1 root wheel 59 Dec 7 00:00 maillog.z4Bh3Oh -rwxr- 1 root wheel 59 Dec 6 00:00 maillog.zFWlD9W -rwxr- 1 root wheel 59 Dec 8 00:00 maillog.zcjrODo -rw-r--r-- 1 root wheel 46520 Mar 8 17:19 messages -rwxr- 1 root wheel192 Dec 6 03:01 mount.today -rwxr- 1 root wheel 0 Mar 8 14:24 newfile -rw-r- 1 root network0 Nov 4 20:27 ppp.log -rw--- 1 root wheel 0 Nov 4 20:27 security -rw-r- 1 root wheel 0 Nov 4 20:27 sendmail.st -rwxr- 1 root wheel 0 Dec 5 22:00 sendmail.st.0 -rwxr- 1 root wheel 0 Dec 5 22:00 sendmail.st.zJ24IkB -rwxr- 1 root wheel 3721 Dec 6 03:01 setuid.today -rw-r- 1 root network0 Nov 4 20:27 slip.log -rw--- 1 root wheel310 Feb 11 17:19 userlog drwxr- 2 root bin 512 Mar 8 13:57 webmin -rw-r--r-- 1 root wheel 3168 Mar 8 15:34 wtmp -rw--- 1 root wheel 0 Nov 4 20:27 xferlog ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to
Re: Problems with Cron not deleting log files
Jonathan Chen wrote: On Tue, Mar 08, 2005 at 05:22:08PM -0500, Richard Mcintyre wrote: All, I am having a problem. Back in December I installed FreeBSD5.3 onto a server and have just recently found some new time to 'play' with the settings etc. I think I know what happened but I'm not sure how to fix it. I currently have a 'large number' of auth.log.x and cron.xx files under /var/log. Use newsyslog(8) and /etc/newsyslog.conf to manage your log files instead of your home-grown non-working method. Thank you very much for your sarcastic comment, however, you must have read that far then stopped. The problem is not with the number of extra log files, the problem is that I cannot delete them. AT ALL. As far as 'my home-grown non-working method' of managing my log files, it doesn't exist. In that I had not modified any of the initial settings of /etc/newsyslog.conf or any other conf files. the only commands I ran on the system were the long string of chmod commands I listed. Thanks again, ~REM ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
