Re: Renaming root to homer?
On Fri, May 30, 2008 at 7:38 AM, Brian [EMAIL PROTECTED] wrote: Sorry, forgot to send this to the mailing list as well: Not recommended. Instead edit your sshd_config file and change the option PermitRootLogin to no. Christian Zachariasen Isnt this the Freebsd default anyway, that root cannot login remotely anyway, unlike that penguin OS? SSH in remotely as a non root user that is in the wheel group and then su to root. Brian ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] I think you're right, I was just assuming that he had the setting set to Yes since he wanted to rename root to homer in order to stop these attacks. Christian Zachariasen ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Need to build a new mail server
I like Qmail. It's not overly difficult to configure, and it's extensible. Patrick Baldwin wrote: Hi all, I've got an older Solaris system running Sendmail for my mail server right now. It's about time to replace it, and I'm thinking FreeBSD might be the best choice of OS for the replacement. However, it's been some time since I looked into options for mail servers. I'm interested in both suggestions for hardware and mail servers that would make for the best FreeBSD based mail server. I've only got about two dozen users, though they are all very heavy users of email. I'm using IMAP, and I'd like to continue to do so. Finally, we have quite a few aliases I'd want to port over to a new server. Thanks, ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
disallow remote root / allow remote root by key
Hello, I wonder if it is possible and if so how to go about the following. Server - Remote root login is disallowed but I need to fetch snaphosts produced by rsnapshot and for this I need remote root access. Backup machine on a dynamic IP - connects to server using key-based authentication. Can this machine (and only this machine) log in remotely as root? Is there a better way of handling this? Thanks! -- Zbigniew Szalbot www.lc-words.com ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Delayed cronjobs
Let's say my system has been down for one day. Is it possible to automatically (re)start cronjobs on system startup that should have been run the day before? -- Jos ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
RE: Stumped:: web HTML. Caution, may be OT.
-Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of DAve Sent: Thursday, May 29, 2008 10:31 PM To: FreeBSD Mailing List Subject: Re: Stumped:: web HTML. Caution, may be OT. Ted Mittelstaedt wrote: -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of Gary Kline Sent: Thursday, May 29, 2008 2:51 PM To: Ted Mittelstaedt Cc: FreeBSD Mailing List Subject: Re: Stumped:: web HTML. Caution, may be OT. you probably didn't start with the earlier markup. back then, '93-4, there was BR,P, B, and EM. i wrote a 2.2K-line program to handle hi - ``hi'' and a couple other things. the code has evolved, of course, but still works. Not the case. I use vi myself and I eschew background gifs and such. Web pages that I create are black text on a white back ground interspersed with images when needed. Period. No CSS no frames, no nothing. If the content I put up isn't worth reading then no amount of formatting, font specification, animated images, and so forth is going to get people to look at it, is my feeling. I nearly spit coffee on my keyboard! I agree with you 100%. When we all did HTML with BBedit and Textpad, people like Black, Tog, and Nielsen kept everyone designing websites to best serve the content. Now it is all about the sizzle, but there is rarely a steak. Think about the generation we went to High School with. This is the generation that's signature movies were Risky Business, Fast Times at Ridgemont High, etc. Listening to Prince and Michael Jackson. Who's signature book was Madonna's SEX. These are the people who a decade later were buying SUV's and drinking coffee out of a Folgers can, who voted in George Bush, and who today are upside down on their ARM-financed homes. These are the consumers of the websites on the Internet today. No wonder most of the sites suck. Ted ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: disallow remote root / allow remote root by key
Odhiambo Washington: rsync from the backup machine. Can't you modify the rsnapshot code to make the permissions on the files I don't think I can. :) it creates to be accessible by a special group, and create a user in this group which you can then use to login from the backup machine? Just an idea. Besides, I think the point is that permissions/owners are all preserved so that when you need to restore, you don't have to wonder about changing uid/gid. Thanks! -- Zbigniew Szalbot www.lc-words.com ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: disallow remote root / allow remote root by key
On Friday 30 May 2008, Zbigniew Szalbot wrote: Server - Remote root login is disallowed but I need to fetch snaphosts produced by rsnapshot and for this I need remote root access. Backup machine on a dynamic IP - connects to server using key-based authentication. Can this machine (and only this machine) log in remotely as root? Yes, on the remote server set PermitRootLogin to without-password instead of no in /etc/ssh/sshd_config and append your your public key from the remote machine into /root/.ssh/authorized_keys. -- Mike Clarke ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: disallow remote root / allow remote root by key
Zbigniew Szalbot wrote: Hello, I wonder if it is possible and if so how to go about the following. Server - Remote root login is disallowed but I need to fetch snaphosts produced by rsnapshot and for this I need remote root access. Backup machine on a dynamic IP - connects to server using key-based As user, I guess? authentication. Can this machine (and only this machine) log in remotely Check sshd_config(5) for PermitRootLogin without-password keyword (I hope I understood you correctly). as root? Is there a better way of handling this? Thanks! HTH, Yuri ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Delayed cronjobs
On Friday 30 May 2008 11:19:10 Jos Chrispijn wrote: Let's say my system has been down for one day. Is it possible to automatically (re)start cronjobs on system startup that should have been run the day before? -- Jos ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] Hello Jos, you might want to have a look at anacron(8). From its man page: Anacron can be used to execute commands periodically, with a frequency specified in days. Unlike cron(8), it does not assume that the machine is running continuously. Hence, it can be used on machines that aren't running 24 hours a day, to control daily, weekly, and monthly jobs that are usually controlled by cron. I hope that helps. michael ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Delayed cronjobs [SOLVED]
Hi Michael, Thanks for sharing, just what I needed! -- Jos Michael Rudolph wrote: you might want to have a look at anacron(8). ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
i386 jail on amd64 7-stable
Hi all, I've managed to get the i386 jail to start by nullfs mounts of /libexec and /usr/lib32 as per the instructions here [http://unix.derkeiler.com/Mailing-Lists/FreeBSD/questions/2008-03/msg02216.html] (It wouldnt start before, complaining about missing libs even though I had done a full make world/installworld/distribution into the jaildir.) However this means that I'm now missing libkrb5.so.9 and possibly others which means I cant use the base sshd (and probably more.) Is there something basic I have missed or is this not expected to work? Thanks, Vince ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: i386 jail on amd64 7-stable
Vince Hoffman wrote: Hi all, I've managed to get the i386 jail to start by nullfs mounts of /libexec and /usr/lib32 as per the instructions here [http://unix.derkeiler.com/Mailing-Lists/FreeBSD/questions/2008-03/msg02216.html] (It wouldnt start before, complaining about missing libs even though I had done a full make world/installworld/distribution into the jaildir.) However this means that I'm now missing libkrb5.so.9 and possibly others which means I cant use the base sshd (and probably more.) Is there something basic I have missed or is this not expected to work? Sorry to reply to myself but... I was being a muppet. rather than the nullfs mounts, I just needed to cd $jaildir/libexec ln -s ld-elf.so.1 ld-elf32.so.1 and now it works :) teach me to rely on random mailing list posts and not just thinking it though. ;) Vince Thanks, Vince ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: disallow remote root / allow remote root by key
Hello, Mike Clarke: On Friday 30 May 2008, Zbigniew Szalbot wrote: Server - Remote root login is disallowed but I need to fetch snaphosts produced by rsnapshot and for this I need remote root access. Backup machine on a dynamic IP - connects to server using key-based authentication. Can this machine (and only this machine) log in remotely as root? Yes, on the remote server set PermitRootLogin to without-password instead of no in /etc/ssh/sshd_config and append your your public key from the remote machine into /root/.ssh/authorized_keys. Thank you for this advice! Each time I am surprised how flexible this system is and how helpful its users are! Regards, -- Zbigniew Szalbot www.lc-words.com ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Asus eee (was Re: G4 Quicksilver as Web Server?)
El día Tuesday, May 27, 2008 a las 04:16:44PM +0200, Matthias Apitz escribió: El día Friday, May 23, 2008 a las 01:18:06PM +0300, Manolis Kiagias escribió: Yes, I am already planning to upgrade :) At this time, it is not available in Greece (though I have spotted a few on ebay). Even more important than the 20Gb SSD is the 9 inch display with a resolution of 1024x600. 800x480 is really small for anything more other than taking notes. Maybe you know this page, Manolis: http://www.eeeuser.com/2008/05/04/eeeusercom-eeepc-900-in-depth-review/ it has a detailed technical report about all items of which the 900 20GB model is made of; a dealer in CH will get next week the original US version: http://www.stegcomputer.ch/details.asp?prodid=asu-e900-w take care, there is an issue about the battery having only 4400 mAh (because of some fire in an ASUS supplier) while the original model have had a 5800 mAh battery; matthias -- Matthias Apitz Manager Technical Support - OCLC GmbH Gruenwalder Weg 28g - 82041 Oberhaching - Germany t +49-89-61308 351 - f +49-89-61308 399 - m +49-170-4527211 e [EMAIL PROTECTED] - w http://www.oclc.org/ http://www.UnixArea.de/ b http://gurucubano.blogspot.com/ «...una sola vez, que es cuanto basta si se trata de verdades definitivas.» «...only once, which is enough if it has todo with definite truth.» José Saramago, Historia del Cerca de Lisboa ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Asus eee (was Re: G4 Quicksilver as Web Server?)
Matthias Apitz wrote: El día Tuesday, May 27, 2008 a las 04:16:44PM +0200, Matthias Apitz escribió: El día Friday, May 23, 2008 a las 01:18:06PM +0300, Manolis Kiagias escribió: Yes, I am already planning to upgrade :) At this time, it is not available in Greece (though I have spotted a few on ebay). Even more important than the 20Gb SSD is the 9 inch display with a resolution of 1024x600. 800x480 is really small for anything more other than taking notes. Maybe you know this page, Manolis: http://www.eeeuser.com/2008/05/04/eeeusercom-eeepc-900-in-depth-review/ it has a detailed technical report about all items of which the 900 20GB model is made of; Ah, nice! Thanks for the link. It will be a good read. a dealer in CH will get next week the original US version: http://www.stegcomputer.ch/details.asp?prodid=asu-e900-w There are a few sold on ebay. I believe this model will also appear in Greek eshops soon. take care, there is an issue about the battery having only 4400 mAh (because of some fire in an ASUS supplier) while the original model have had a 5800 mAh battery; matthias I will wait then. I prefer to get a model with a larger battery. The one I have now, lasts more or less 2 - 2.30 hours and I believe it has the same 4400mAh battery. The larger screen and SSD will probably make this even less on the 900. Unlike larger laptops, I really like to work the eee on battery only. In fact having to carry only this small laptop instead of all the usual accessories is a big plus to me. On a side note, I am thinking of writing a complete article about installing FreeBSD 7.0 on the eeepc, including customizations and optimizations, different installations methods, with links to download ready-built customized kernels etc. Don't know whether it will have any real audience though ;) Most people run some Linux distro on it or even (gasp) Windows... ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Best solution - mobile wifi hotspot
My dad makes instruments and goes to a lot of festivals. They are typically in the middle of nowhere, without internet. Many vendors still bring notebooks as they provide quick easy access to many things, but there is no internet. For credit cards, many use their cell phones to make the transaction. My dad wants to get a satellite connection (pure sattelite, no phone), and set up something to offer a wireless hotspot. - Some shows will just pay a flat fee, and have the hotspot open. - Some shows won't pay a fee, and so he'll want to charge to recover some of the cost. For the open hotspots, a simple wireless router will do. For the charge hotspots, we'd want something a little more flexible. My first thought was 'FreeBSD can do that!'. The trick is that we will be using battery power most of the time. Low power is the key. I'm thinknig sub-20W max power drain worst case, SUB 10-15W is ideal. With that background info, my questions are: 1) Is building a low power computer based on FreeBSD the right way to go? Or would you all recommend something else? What? 2) Does anyone have experience with the GeodeNX or VIA C7 boards available on NewEgg? Heads ups and pointers? 3) Does anyone have experiences with these and a given wireless adaptor, How good/bad is/was it? Thanks, -Jim Stapleton ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Looking for message queue documentation
I see in the release notes for 7.0 that experimental support for POSIX message queues has been added. Where can I find information on what functions are available and how they differ from the POSIX descriptions? I would like to use them for inter-thread message passing. Thank you, Bob McConnell ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Need to build a new mail server
Foo JH wrote: I like Qmail. It's not overly difficult to configure, and it's extensible. and requires 400 patches to do basic things =( heres some interesting reading about qmail... http://www.dt.e-technik.uni-dortmund.de/~ma/qmail-bugs.html ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Growfs and GConcat
All, I am running 7.0-Release and am trying to add an additional disk to a gconcat and expand the ufs onto it. The concat works fine but when I run growfs I get an error We are not growing. A couple of things about the setup: 1) 16-hotswap SAS drive bays only 8 contain drives. So figuring this out will help with future expansions 2) Both consumers are geli encrypted. This is not an option. We are a financial institution and encryption of data is required. This setup did work in simulations and expanded with growfs fine. 3) Both consumers run on independent RAID 10 arrays 4) Existing consumer is a slice on the first array. New consumer is the whole disks. Both are not equal size but I thought gconcat does not care. Results: # gconcat stop data1 # gconcat label data1 /dev/mfid0s3.eli /dev/mfid1.eli # growfs /dev/concat/data1 growfs: we are not growing (59231653-16315060) Any ideas? Thanks, David Wassman, MCP Net+ IT Network Administrator Davis, Monk Company (800) 344-5034 (352) 372-6300 (352) 375-1583 FAX The information contained in this electronic message is legally privileged and confidential under applicable law, and is intended only for the use of the individual or entity named above. If you are not the intended recipient, you are hereby notified that any dissemination, copying or disclosure of this communication is strictly prohibited. If you have received this communication in error, please notify Davis, Monk Company (352) 372-6300 and delete this communication immediately without reading it, making any copies of it or distributing it. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Stumped:: web HTML. Caution, may be OT.
On 5/29/08, Gary Kline [EMAIL PROTECTED] wrote: On Thu, May 29, 2008 at 06:14:26PM -0400, Bob Johnson wrote: On 5/29/08, Gary Kline [EMAIL PROTECTED] wrote: Several weeks ago a friend asked why my www.thought.org page was so hard to read. She said that part of my text was black [...] I'd be much obliged for any help here. Konqueror says that the comment that reads !-- click on Graphic to goto jottings.thought.org --! [...] (also, this may explain why sometimes my comments bombbed during testing. i thought ! .. ! was *legal*. *mumble::censored*) Yeah, that's a common error. It would make sense, and I have no clue why comment tags aren't symmetric in HTML. But the bizzare thing is that early in the days of web browsers, rather than just accept that as legal so broken code would render correctly, the browser authors decided to fix the problem by accepting end-of-line as a comment terminator, which very distinctly violates the standard. So there are a lot of web pages out there that won't render correctly on standards-compliant browsers. I suspect that using an editor that _correctly_ highlights HTML code would solve most of your problems. To me, a content management system only makes sense for a site that is either large, or has multiple authors. If you update your site frequently, a WYSIWYG HTML editor would be helpful and should have a very small learning curve. I think others have already suggested a few. I took a brief look at your site, and it appears that right now you are pretty much using it as a blog. If the format works for you, a site like http://www.tumblr.com/help might be easier than maintaining your own. The nice thing about tumblr is that you don't have to install anything on your own system to use it. - Bob ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: ipnat
Uses pf instead but I know the following works: ### /etc/pf.conf ### nat on dc0 from fxp0:network to any - (dc0) ### /etc/rc.conf ### pf_enable=YES After editing the files, run '/etc/rc.d/pf start' ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Renaming root to homer?
Gilles [EMAIL PROTECTED] wrote: With all those scripts trying to connect to SSHd as root, I was wondering if it'd be OK to rename this account to eg. homer, to act as a first line of defense? Are there unknown consequences to doing something like that? Peope have already pointed out that it is a bad idea to allow remote root logins, so I won't repeat that. :-) But to answer your question: Renaming the root account will probably break quite a log of things, for example install scripts which often contain command like chown root bin/whatever, or start/stop scripts for daemon processes that match for certain commands run by root, and so on. So better don't do that. Many programs expect that there is an account called root with UID 0. Otherwise they will malfunction. If not, is it done by just editing /etc/password with vi, or is there a better way? No, editing /etc/passwd directly doesn't work. Instead, you should use the vipw(8) tool, which does several things: - It locks the master.passwd file so nobody else can edit it at the same time. - It opens the master.passwd file with vi (or a different editor if you have the environment variable EDITOR set). - Afterwards it checks the master.passwd file for correct syntax and consistency, to prevent accidental breakage. - It generates the passwd file (for compatibility only) and the pwd.db and spwd.db database files. - Finally the lock is released. Alternatively you can use the pw(8) command line tool to edit, add or delete accounts and groups. Please see the manual page for details. Best regards Oliver -- Oliver Fromme, secnetix GmbH Co. KG, Marktplatz 29, 85567 Grafing b. M. Handelsregister: Registergericht Muenchen, HRA 74606, Geschäftsfuehrung: secnetix Verwaltungsgesellsch. mbH, Handelsregister: Registergericht Mün- chen, HRB 125758, Geschäftsführer: Maik Bachmann, Olaf Erb, Ralf Gebhart FreeBSD-Dienstleistungen, -Produkte und mehr: http://www.secnetix.de/bsd C++ is over-complicated nonsense. And Bjorn Shoestrap's book a danger to public health. I tried reading it once, I was in recovery for months. -- Cliff Sarginson ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Renaming root to homer?
Peope have already pointed out that it is a bad idea to allow remote root logins, so I won't repeat that. :-) i like bad ideas :) except the worst idea - dumb generalization. But to answer your question: Renaming the root account will probably break quite a log of things, for example make 2 roots, root and homer in /etc/master.passwd just remember to type passwd root or passwd homer. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Need to build a new mail server
Patrick Baldwin wrote: Hi all, I've got an older Solaris system running Sendmail for my mail server right now. It's about time to replace it, and I'm thinking FreeBSD might be the best choice of OS for the replacement. However, it's been some time since I looked into options for mail servers. I'm interested in both suggestions for hardware and mail servers that would make for the best FreeBSD based mail server. I've only got about two dozen users, though they are all very heavy users of email. I'm using IMAP, and I'd like to continue to do so. Finally, we have quite a few aliases I'd want to port over to a new server. I also recommend dovecot. I'm using it for several years without a problem, and it was quite simple to setup. I'm using it with sendmail, though (not postfix), because I've been using sendmail for almost 20 years and haven't had a reason to switch. If you're already familiar with sendmail on Solaris, then I recommend you continue using sendmail on FreeBSD (it's the default MTA that comes with the base system). Having said that, Postfix _is_ a very good MTA, I'm using it at work. If you're willing to switch and invest a little bit of time learning something new, then Postfix is certainly a good choice. It's quite easy to install Postfix from the ports collection. Best regards Oliver -- Oliver Fromme, secnetix GmbH Co. KG, Marktplatz 29, 85567 Grafing b. M. Handelsregister: Registergericht Muenchen, HRA 74606, Geschäftsfuehrung: secnetix Verwaltungsgesellsch. mbH, Handelsregister: Registergericht Mün- chen, HRB 125758, Geschäftsführer: Maik Bachmann, Olaf Erb, Ralf Gebhart FreeBSD-Dienstleistungen, -Produkte und mehr: http://www.secnetix.de/bsd C++: an octopus made by nailing extra legs onto a dog -- Steve Taylor, 1998 ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Renaming root to homer?
On Fri, May 30, 2008 at 5:03 PM, Wojciech Puchar [EMAIL PROTECTED] wrote: Peope have already pointed out that it is a bad idea to allow remote root logins, so I won't repeat that. :-) i like bad ideas :) except the worst idea - dumb generalization. But to answer your question: Renaming the root account will probably break quite a log of things, for example make 2 roots, root and homer in /etc/master.passwd just remember to type passwd root or passwd homer. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] How would that help with his problem? Christian Zachariasen ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Renaming root to homer?
To unsubscribe, send any mail to [EMAIL PROTECTED] How would that help with his problem? Christian Zachariasen all programs will work ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Renaming root to homer?
2008/5/30 Wojciech Puchar [EMAIL PROTECTED]: Peope have already pointed out that it is a bad idea to allow remote root logins, so I won't repeat that. :-) i like bad ideas :) except the worst idea - dumb generalization. But to answer your question: Renaming the root account will probably break quite a log of things, for example make 2 roots, root and homer in /etc/master.passwd Won't work. sshd does not only check the username, but the UserID, too... That's what I expect from a security aware software anyway. A method to deal with this issue could be to install sudo and to define username ALL=(root):NOPASSWD:/path/to/shell Then you could do alias su=/usr/local/bin/sudo -u root /path/to/shell Needless to say that as soon as the user account is compromised, the root account is out of your control, too. just remember to type passwd root or passwd homer. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Renaming root to homer?
On 5/29/08, Gilles [EMAIL PROTECTED] wrote: Hello With all those scripts trying to connect to SSHd as root, I was wondering if it'd be OK to rename this account to eg. homer, to act as a first line of defense? I doubt it. Are there unknown consequences to doing something like that? Probably, but if we knew what they were, they wouldn't be unknown. If not, is it done by just editing /etc/password with vi, or is there a better way? Use vipw. That invokes vi (or your default editor if that's not vi) to edit the account database (which isn't actually /etc/passwd), and when you exit from vi, it runs the scripts necessary to update all the right things. Lots of peeps have already pointed out the downside of this, but if you really think it's what you want to do, probably the best way to do it is to create a second admin account named homer or whatever. In /etc/passwd, the toor account is an example of this (it is disabled by default). They both have UID 0 and are effectively the same account, just accessed by different names and passwords. Then change the root password to be invalid, so the attackers can hack away all day and have no chance of guessing the root password. You do that by putting a * in the password field (the second field) while you are in vipw. I (along with many others) think you should find a solution that doesn't require remote admin logins, but while you do the reading necessary for that, this at least seems to quickly accomplish your goal. - Bob ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Need to build a new mail server
Postfix rules, Dovecot or cyrus, though dovecot seems more managable my take running an ISP based mail system Postfix Definately Qmail, its ok, in most cases scenerios Exim - No way and Dovecot or Cyrus for imaps/imap On Fri, May 30, 2008 at 10:05 PM, Oliver Fromme [EMAIL PROTECTED] wrote: Patrick Baldwin wrote: Hi all, I've got an older Solaris system running Sendmail for my mail server right now. It's about time to replace it, and I'm thinking FreeBSD might be the best choice of OS for the replacement. However, it's been some time since I looked into options for mail servers. I'm interested in both suggestions for hardware and mail servers that would make for the best FreeBSD based mail server. I've only got about two dozen users, though they are all very heavy users of email. I'm using IMAP, and I'd like to continue to do so. Finally, we have quite a few aliases I'd want to port over to a new server. I also recommend dovecot. I'm using it for several years without a problem, and it was quite simple to setup. I'm using it with sendmail, though (not postfix), because I've been using sendmail for almost 20 years and haven't had a reason to switch. If you're already familiar with sendmail on Solaris, then I recommend you continue using sendmail on FreeBSD (it's the default MTA that comes with the base system). Having said that, Postfix _is_ a very good MTA, I'm using it at work. If you're willing to switch and invest a little bit of time learning something new, then Postfix is certainly a good choice. It's quite easy to install Postfix from the ports collection. Best regards Oliver -- Oliver Fromme, secnetix GmbH Co. KG, Marktplatz 29, 85567 Grafing b. M. Handelsregister: Registergericht Muenchen, HRA 74606, Geschäftsfuehrung: secnetix Verwaltungsgesellsch. mbH, Handelsregister: Registergericht Mün- chen, HRB 125758, Geschäftsführer: Maik Bachmann, Olaf Erb, Ralf Gebhart FreeBSD-Dienstleistungen, -Produkte und mehr: http://www.secnetix.de/bsd C++: an octopus made by nailing extra legs onto a dog -- Steve Taylor, 1998 ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Need to build a new mail server
Eric Zimmerman wrote: Foo JH wrote: I like Qmail. It's not overly difficult to configure, and it's extensible. and requires 400 patches to do basic things =( List them, not 100, not 399, all 400 please. Keep in mind that when your download x.x.x release of a software package you are downloading a patched source code. Sendmail has been patched many times, Postfix is patched, Exim is patched. qmail just requires you apply your own patches. Patching is not a bad thing, shrinkwrap mail admins applying patches that they do not understand is a bad thing. heres some interesting reading about qmail... http://www.dt.e-technik.uni-dortmund.de/~ma/qmail-bugs.html That so much time and effort is spent telling everyone how bad qmail is still amazes me. It is one of the best performing and most extensible MTAs I have ever used. It is not however, suitable for those who choose not to understand how mail works. Point and clickers should stay with Postfix, also a very capable MTA. DAve -- In 50 years, our descendants will look back on the early years of the internet, and much like we now look back on men with rockets on their back and feathers glued to their arms, marvel that we had the intelligence to wipe the drool from our chins. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Stumped:: web HTML. Caution, may be OT.
On Fri, May 30, 2008 at 10:52:31AM -0400, Bob Johnson wrote: I suspect that using an editor that _correctly_ highlights HTML code would solve most of your problems. Yes, that is why I suggested tidy in addition to the other online validators. If one's editor tool doesn't help, tidy is close at hand. Can standardize the coding format. Can help fix errors. Can point out errors. To me, a content management system only makes sense for a site that is either large, or has multiple authors. If you update your site frequently, a WYSIWYG HTML editor would be helpful and should have a very small learning curve. I think others have already suggested a few. I really don't like the output of the WYSIWYG HTML editors I've seen. A real text editor with HTML syntax parser for assistance is probably best for anyone willing to read HTML. I think CVS or Subversion /usr/ports/devel/subversion is among the best content management systems available. -- David Kelly N4HHE, [EMAIL PROTECTED] Whom computers would destroy, they must first drive mad. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Need to build a new mail server
On Thu, 29 May 2008 14:50:56 -0400 N.J. Thomas [EMAIL PROTECTED] wrote: * Patrick Baldwin [EMAIL PROTECTED] [2008-05-29 13:35:27-0400]: I'm interested in both suggestions for hardware and mail servers that would make for the best FreeBSD based mail server. A third vote for Postfix + Dovecot here. Using Postfix and Cyrus-IMAP here, both on small Soekris-based SOHO-Routers with a few users (5 to 20 per office), as well as on a few big corporate networks with approx. 6000+ users each, and many virtual domains. Postfix has proved both dead-easy to configure and able to withstand many waves of serious DDoS attacks by rate-limiting itself. Its anti-spam features, if used right, are also quite effective. I've used sendmail extensively in the past, and that was not bad either, though a little tough to configure for edge cases. -cpghost. -- Cordula's Web. http://www.cordula.ws/ ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Renaming root to homer?
On Fri, May 30, 2008 at 05:03:06PM +0200, Wojciech Puchar wrote: Peope have already pointed out that it is a bad idea to allow remote root logins, so I won't repeat that. :-) i like bad ideas :) except the worst idea - dumb generalization. But to answer your question: Renaming the root account will probably break quite a log of things, for example make 2 roots, root and homer in /etc/master.passwd just remember to type passwd root or passwd homer. Yes, you can make an alternately named root (such as toor is just that) with its own login directory and .cshrc, window manager, etc But is still bad to log in directly as any of these roots from a remote location. As has been mentioned, you should ssh in to a non-root account and then su to the root. You can su to the alternate root and then not give the main root a password if you like. jerry ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Delayed cronjobs
On Fri, May 30, 2008 at 11:19:10AM +0200, Jos Chrispijn wrote: Let's say my system has been down for one day. Is it possible to automatically (re)start cronjobs on system startup that should have been run the day before? You can write the sccript that your cronjob starts so that it keeps track of when it was last run and then either have cron run it often or add it to /usr/local/etc/rc.d to be run at startup. Then if the script was run sufficiently recently, just exit - maybe with an appropriate message/error code. jerry -- Jos ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Need to build a new mail server
As a sysadmin at a medium mailhosting ISP (~15,000 email customers, averaging about 5 email addresses per customer,) we use a load balanced cluster of Dovecot and exim servers with mysql backend. Theres no way we could use qmail, it just doesnt have the flexibility even with 1/2 a dozen patches. That said I do like postfix I've used it before for smtp relay servers and its performed like a champ. Vince Outback Dingo wrote: Postfix rules, Dovecot or cyrus, though dovecot seems more managable my take running an ISP based mail system Postfix Definately Qmail, its ok, in most cases scenerios Exim - No way and Dovecot or Cyrus for imaps/imap On Fri, May 30, 2008 at 10:05 PM, Oliver Fromme [EMAIL PROTECTED] wrote: Patrick Baldwin wrote: Hi all, I've got an older Solaris system running Sendmail for my mail server right now. It's about time to replace it, and I'm thinking FreeBSD might be the best choice of OS for the replacement. However, it's been some time since I looked into options for mail servers. I'm interested in both suggestions for hardware and mail servers that would make for the best FreeBSD based mail server. I've only got about two dozen users, though they are all very heavy users of email. I'm using IMAP, and I'd like to continue to do so. Finally, we have quite a few aliases I'd want to port over to a new server. I also recommend dovecot. I'm using it for several years without a problem, and it was quite simple to setup. I'm using it with sendmail, though (not postfix), because I've been using sendmail for almost 20 years and haven't had a reason to switch. If you're already familiar with sendmail on Solaris, then I recommend you continue using sendmail on FreeBSD (it's the default MTA that comes with the base system). Having said that, Postfix _is_ a very good MTA, I'm using it at work. If you're willing to switch and invest a little bit of time learning something new, then Postfix is certainly a good choice. It's quite easy to install Postfix from the ports collection. Best regards Oliver -- Oliver Fromme, secnetix GmbH Co. KG, Marktplatz 29, 85567 Grafing b. M. Handelsregister: Registergericht Muenchen, HRA 74606, Geschäftsfuehrung: secnetix Verwaltungsgesellsch. mbH, Handelsregister: Registergericht Mün- chen, HRB 125758, Geschäftsführer: Maik Bachmann, Olaf Erb, Ralf Gebhart FreeBSD-Dienstleistungen, -Produkte und mehr: http://www.secnetix.de/bsd C++: an octopus made by nailing extra legs onto a dog -- Steve Taylor, 1998 ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Delayed cronjobs
Hi Jerry, Jerry McAllister wrote: You can write the sccript that your cronjob starts so that it keeps track of when it was last run and then either have cron run it often or add it to /usr/local/etc/rc.d to be run at startup. That would be a good option as well; I didn't think of that. thanks for sharing, Jos ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
How to get best results from FreeBSD-questions
How to get the best results from FreeBSD questions. === Last update $Date: 2005/08/10 02:21:44 $ This is a regular posting to the FreeBSD questions mailing list. If you got it in answer to a message you sent, it means that the sender thinks that at least one of the following things was wrong with your message: - You left out a subject line, or the subject line was not appropriate. - You formatted it in such a way that it was difficult to read. - You asked more than one unrelated question in one message. - You sent out a message with an incorrect date, time or time zone. - You sent out the same message more than once. - You sent an 'unsubscribe' message to FreeBSD-questions. If you have done any of these things, there is a good chance that you will get more than one copy of this message from different people. Read on, and your next message will be more successful. This document is also available on the web at http://www.lemis.com/questions.html. = Contents: I:Introduction II: How to unsubscribe from FreeBSD-questions III: Should I ask -questions or -hackers? IV: How to submit a question to FreeBSD-questions V:How to answer a question to FreeBSD-questions I: Introduction === This is a regular posting aimed to help both those seeking advice from FreeBSD-questions (the newcomers), and also those who answer the questions (the hackers). Note that the term hacker has nothing to do with breaking into other people's computers. The correct term for the latter activity is cracker, but the popular press hasn't found out yet. The FreeBSD hackers disapprove strongly of cracking security, and have nothing to do with it. In the past, there has been some friction which stems from the different viewpoints of the two groups. The newcomers accused the hackers of being arrogant, stuck-up, and unhelpful, while the hackers accused the newcomers of being stupid, unable to read plain English, and expecting everything to be handed to them on a silver platter. Of course, there's an element of truth in both these claims, but for the most part these viewpoints come from a sense of frustration. In this document, I'd like to do something to relieve this frustration and help everybody get better results from FreeBSD-questions. In the following section, I recommend how to submit a question; after that, we'll look at how to answer one. II: How to unsubscribe from FreeBSD-questions == When you subscribed to FreeBSD-questions, you got a welcome message from [EMAIL PROTECTED] In this message, amongst other things, it told you how to unsubscribe. Here's a typical message: Welcome to the freebsd-questions@freebsd.org mailing list! If you ever want to unsubscribe or change your options (eg, switch to or from digest mode, change your password, etc.), visit your subscription page at: http://lists.freebsd.org/mailman/options/freebsd-questions/[EMAIL PROTECTED] (obviously, substitute your mail address for [EMAIL PROTECTED]). You can also make such adjustments via email by sending a message to: [EMAIL PROTECTED] with the word 'help' in the subject or body (don't include the quotes), and you will get back a message with instructions. You must know your password to change your options (including changing the password, itself) or to unsubscribe. Normally, Mailman will remind you of your freebsd.org mailing list passwords once every month, although you can disable this if you prefer. This reminder will also include instructions on how to unsubscribe or change your account options. There is also a button on your options page that will email your current password to you. Here's the general information for the list you've subscribed to, in case you don't already have it: FREEBSD-QUESTIONS User questions This is the mailing list for questions about FreeBSD. You should not send how to questions to the technical lists unless you consider the question to be pretty technical. Normally, unsubscribing is even simpler than the message suggests: you don't need to specify your mail ID unless it is different from the one which you specified when you subscribed. If Majordomo replies and tells you (incorrectly) that you're not on the list, this may mean one of two things: 1. You have changed your mail ID since you subscribed. That's where keeping the original message from majordomo comes in handy. For example, the sample message above shows my mail ID as [EMAIL PROTECTED] Since then, I have changed it to [EMAIL PROTECTED] If I were to try to remove [EMAIL PROTECTED] from the list, it would fail: I would have to specify the name with which I joined. 2. You're subscribed to a mailing list which is subscribed to
The Complete FreeBSD: errata and addenda
The trouble with books is that you can't update them the way you can a web page or any other online documentation. The result is that most leading edge computer books are out of date almost before they are printed. Unfortunately, The Complete FreeBSD, published by O'Reilly, is no exception. Inevitably, a number of bugs and changes have surfaced. The Complete FreeBSD has been through a total of five editions, including its predecessor Installing and Running FreeBSD. Two of these have been reprinted with corrections. I maintain a series of errata pages. Start at http://www.lemis.com/errata-4.html to find out how to get the errata information. Note also that the book has now been released for free download in PDF form. Instead of downloading the changed pages, you may prefer to download the entire book. See http://www.lemis.com/grog/Documentation/CFBSD/ for more information. Have you found a problem with the book, or maybe something confusing? Please let me know: I'm no longer constantly updating it, but I may be able to help Greg ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Renaming root to homer?
Wojciech Puchar [EMAIL PROTECTED] wrote: Peope have already pointed out that it is a bad idea to allow remote root logins, so I won't repeat that. :-) i like bad ideas :) except the worst idea - dumb generalization. If you disagree, please explain why. Otherwise your comment is pointless. But to answer your question: Renaming the root account will probably break quite a log of things, for example make 2 roots, root and homer in /etc/master.passwd Yes, that would work. You just have to make sure to disable password logins for root (i.e. *). Another idea would be to move sshd from the default port to a non-standard port, e.g. 222 or whatever. Typically ssh brute force attacks target port 22 only. This will also clear your logs from useless break-in attempts. Note that both suggestions (creating a homer user and using a different port) are _not_ security measures per-se, but rather security by obscurity. You still have to use good passwords, or ssh keys. Another approach is to enable ssh connections only from certain source addresses or networks, using IPFW or PF. Of course that's only possible if you know in advance from which addresses you will need to be able to connect. Best regards Oliver -- Oliver Fromme, secnetix GmbH Co. KG, Marktplatz 29, 85567 Grafing b. M. Handelsregister: Registergericht Muenchen, HRA 74606, Geschäftsfuehrung: secnetix Verwaltungsgesellsch. mbH, Handelsregister: Registergericht Mün- chen, HRB 125758, Geschäftsführer: Maik Bachmann, Olaf Erb, Ralf Gebhart FreeBSD-Dienstleistungen, -Produkte und mehr: http://www.secnetix.de/bsd cat man du : where Unix geeks go when they die ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Best solution - mobile wifi hotspot
Jim Stapleton wrote: My dad makes instruments and goes to a lot of festivals. They are typically in the middle of nowhere, without internet. Many vendors still bring notebooks as they provide quick easy access to many things, but there is no internet. For credit cards, many use their cell phones to make the transaction. My dad wants to get a satellite connection (pure sattelite, no phone), and set up something to offer a wireless hotspot. - Some shows will just pay a flat fee, and have the hotspot open. - Some shows won't pay a fee, and so he'll want to charge to recover some of the cost. For the open hotspots, a simple wireless router will do. For the charge hotspots, we'd want something a little more flexible. My first thought was 'FreeBSD can do that!'. The trick is that we will be using battery power most of the time. Low power is the key. I'm thinknig sub-20W max power drain worst case, SUB 10-15W is ideal. With that background info, my questions are: 1) Is building a low power computer based on FreeBSD the right way to go? Or would you all recommend something else? What? 2) Does anyone have experience with the GeodeNX or VIA C7 boards available on NewEgg? Heads ups and pointers? 3) Does anyone have experiences with these and a given wireless adaptor, How good/bad is/was it? Thanks, -Jim Stapleton ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] This particular wheel has already been invented several ways :) http://psand.net/ https://en.wiki.aktivix.org/SquatTelecoms To keep power down you probably want to opt for a dedicated wireless router box not a computer (unless you are also saving bandwidth with squid etc). And to generate electricity use wind or solar. Chris ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Need to build a new mail server
On May 30, 2008, at 10:39 AM, DAve wrote: That so much time and effort is spent telling everyone how bad qmail is still amazes me. Is it still the case that qmail does not reject mail during SMTP transaction, but instead will do an accept and then later bounce? If this is still true, then I don't care if qmail turns out to be a great way to manage your mail server. It is a terrible network citizen. Anyway, here are my personal prejudices about MTAs: Sendmail: There was a time when I would set things up for clients with sendmail because if I got hit by a bus, there were more people around with sendmail skills then exim skills. Also there was a time when only sendmail did milters. (And of course there was a time when there was only sendmail). But my feeling about sendmail has always been that it was designed backwards in that things that should have been hard coded (parsing 822 addresses) were done in the configuration file and things that should have been configurable (throttling intervals) were hard coded. For someone with a simple set-up using FreeBSD, sendmail may be the best choice still because it is already there. Likewise for someone who wants to have their MTA to factor numbers or solve the towers of hanoi, sendmail is for them. exim: If I were setting up a large complicated installation for say an ISP or a mail hosting system, exim is what I would use. I've heard people say that they didn't understand the configuration file, but I don't see what the problem is. It is straight forward and direct. You just need to remember that in some sections of the configuration file, the order of directives matter. exim also has this built-in procmail replacement (exim filters) in its mail delivery. Of course, sieve has largely replaced the need for this. postfix: This would be my first recommendation to someone starting from the beginning for most sites. If there is no legacy need for sendmail, and we are not talking about very large and complex arrangements requiring exim, then postfix solid, reasonably flexible, easy to set up and probably now has a user base to rival sendmail. I have never managed a qmail, Lotus Notes or MS Exchange system. But my MTAs have had to interact with them. I feel that they should never be allowed to face the Internet. They are just too loose in their interpretations of standards and conventions. -j ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Need to build a new mail server
On Friday 30 May 2008 18:09:48 Jeffrey Goldberg wrote: exim: If I were setting up a large complicated installation for say an ISP or a mail hosting system, exim is what I would use. I've heard people say that they didn't understand the configuration file, but I don't see what the problem is. It is straight forward and direct. You just need to remember that in some sections of the configuration file, the order of directives matter. exim also has this built-in procmail replacement (exim filters) in its mail delivery. Of course, sieve has largely replaced the need for this. I have not used Exim with *BSD's but I used it with Debian at one time and it was easy to set up. More recently, the configuration became complicated, at least with Debian. So I stuck with Postfix. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Renaming root to homer?
On Friday 30 May 2008, Oliver Fromme wrote: Another idea would be to move sshd from the default port to a non-standard port, e.g. 222 or whatever. Typically ssh brute force attacks target port 22 only. This will also clear your logs from useless break-in attempts. /usr/ports/security/denyhosts is quite good for permanently blocking access from IP's that make suspicious ssh probes. It reduces garbage in the logs too because after a remote address gets blocked future probes from it get rejected before they even get as far as being logged. -- Mike Clarke ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Stumped:: web HTML. Caution, may be OT.
On Fri, May 30, 2008 at 01:31:01AM -0400, DAve wrote: Ted Mittelstaedt wrote: -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of Gary Kline Sent: Thursday, May 29, 2008 2:51 PM To: Ted Mittelstaedt Cc: FreeBSD Mailing List Subject: Re: Stumped:: web HTML. Caution, may be OT. you probably didn't start with the earlier markup. back then, '93-4, there was BR,P, B, and EM. i wrote a 2.2K-line program to handle hi - ``hi'' and a couple other things. the code has evolved, of course, but still works. Not the case. I use vi myself and I eschew background gifs and such. Web pages that I create are black text on a white back ground interspersed with images when needed. Period. No CSS no frames, no nothing. If the content I put up isn't worth reading then no amount of formatting, font specification, animated images, and so forth is going to get people to look at it, is my feeling. I nearly spit coffee on my keyboard! I agree with you 100%. When we all did HTML with BBedit and Textpad, people like Black, Tog, and Nielsen kept everyone designing websites to best serve the content. Now it is all about the sizzle, but there is rarely a steak. DAve You got it, man. At least 80% of the site I happen on--at least that are selling something--have so much kerrapp going on I'd go blind if I stayed there for very long. (I so *enjoy* being able to block ads or stop-movie (gnash), and then find the router or DVD or whatever. And get out!) This is not the kind of page i'M aiming for. --But then, I really don't know what/how I want to revise my www homepage. The reason for the strange display was a bad comment. So at least I've learned something! Now www looks fine from ffox, opera, and Konq. I've forbidden my tweenager from using IE so have to wait for wife. Or see if friends reply who use IE. gary -- In 50 years, our descendants will look back on the early years of the internet, and much like we now look back on men with rockets on their back and feathers glued to their arms, marvel that we had the intelligence to wipe the drool from our chins. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] -- Gary Kline [EMAIL PROTECTED] www.thought.org Public Service Unix http://jottings.thought.org http://transfinite.thought.org ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
www.freebsd.org mirrors and cgi
Hello, i found out that the cgi scripts from the official site (www.freebsd.org) does not work on the mirrors. They are present but the webserver returns the source-code instead of executing them. I tested with the script for searching the ports, I tried several mirrors with the same results. Is this desired behavior? ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: How to get best results from FreeBSD-questions
On Fri, May 30, 2008 at 2:17 PM, [EMAIL PROTECTED] wrote: Message 2: Subject: Problems installing FreeBSD I've just got the FreeBSD 2.1.5 CD-ROM from Walnut Creek, and I'm having a lot of difficulty installing it. I have a 66 MHz 486 with 16 MB of memory and an Adaptec 1540A SCSI board, a 1.2GB Quantum Fireball disk and a Toshiba 3501XA CD-ROM drive. The installation works just fine, but when I try to reboot the system, I get the message Missing Operating System. - ** Wow, this example is getting old! 66Mhz CPU, 16 MB memory? I think I had a computer like this around 15 years ago. I cringe at the thought that anyone is using something like this as their main machine. And FreeBSD 2.1?!? -- Eric Mesa http://www.ericsbinaryworld.com ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Need to build a new mail server
On 5/30/08, DAve [EMAIL PROTECTED] wrote: Eric Zimmerman wrote: Foo JH wrote: I like Qmail. It's not overly difficult to configure, and it's extensible. and requires 400 patches to do basic things =( List them, not 100, not 399, all 400 please. Keep in mind that when your download x.x.x release of a software package you are downloading a patched source code. Sendmail has been patched many times, Postfix is patched, Exim is patched. qmail just requires you apply your own patches. Patching is not a bad thing, shrinkwrap mail admins applying patches that they do not understand is a bad thing. heres some interesting reading about qmail... http://www.dt.e-technik.uni-dortmund.de/~ma/qmail-bugs.html That so much time and effort is spent telling everyone how bad qmail is still amazes me. It is one of the best performing and most extensible MTAs I have ever used. It is not however, suitable for those who choose not to understand how mail works. Point and clickers should stay with Postfix, also a very capable MTA. I agree. No one should use Qmail unless they have read and completely understand every email-related RFC and have at least two years of experience running a commercial mail server. Amateurs shouldn't even consider it. Please, use anything but Qmail. It sprays backscatter spam all over the internet. - Bob ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Need to build a new mail server
Bob Johnson wrote: On 5/30/08, DAve [EMAIL PROTECTED] wrote: Eric Zimmerman wrote: Foo JH wrote: I like Qmail. It's not overly difficult to configure, and it's extensible. and requires 400 patches to do basic things =( List them, not 100, not 399, all 400 please. Keep in mind that when your download x.x.x release of a software package you are downloading a patched source code. Sendmail has been patched many times, Postfix is patched, Exim is patched. qmail just requires you apply your own patches. Patching is not a bad thing, shrinkwrap mail admins applying patches that they do not understand is a bad thing. heres some interesting reading about qmail... http://www.dt.e-technik.uni-dortmund.de/~ma/qmail-bugs.html That so much time and effort is spent telling everyone how bad qmail is still amazes me. It is one of the best performing and most extensible MTAs I have ever used. It is not however, suitable for those who choose not to understand how mail works. Point and clickers should stay with Postfix, also a very capable MTA. I agree. No one should use Qmail unless they have read and completely understand every email-related RFC and have at least two years of experience running a commercial mail server. Amateurs shouldn't even consider it. Please, use anything but Qmail. It sprays backscatter spam all over the internet. - Bob ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] I'd personally vouch for Qmail myself. Having been an administrator now for mail servers in general for nearly 15 years, with experience with most notable mailers, Qmail by far lends itself to be the most highly configurable mailer assuming you know what you want ahead of time. Most experienced sysadmins, once they know what they want, can apply those patches to qmail with ease and roll out additional Qmail installations with a single package. Very easy indeed. However, in an attempt to remain as unbiased as possible (too late I realize) and just to reiterate, Qmail even though I believe it is a wonderful piece of software, you definately need to know what you are doing. Postfix, exim, etc., take a lot of guess work away from the administrator by making assumptions that qmail doesn't make. Some claim that this makes these packages better. For this reason, especially if you aren't familiar with any mailer, I would suggest something other than Qmail. Bob, as for 'backscaatter spam' (assuming I understood you), that's rubbish: http://www.interazioni.it/opensource/chkusr/ (as an example) Cheers! ~Paul ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Vmware debugging
I have question regarding remote debugging a freebsd guest OS (running on vmware). Is to possible to debug such a machine by a non FreeBSD OS using a gdb version that was compiled with target=i386-pc-bsd ? Or must i use two virtual machines, both of them running FreeBSD ? Thanks Oren ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Need to build a new mail server
I'd personally vouch for Qmail myself. So would I, for my environment. Having been an administrator now for mail servers in general for nearly 15 years, with experience with most notable mailers, Qmail by far lends itself to be the most highly configurable mailer assuming you know what you want ahead of time. Agreed. Most experienced sysadmins, once they know what they want, can apply those patches to qmail with ease and roll out additional Qmail installations with a single package. Very easy indeed. Yep. Bob, as for 'backscaatter spam' (assuming I understood you), that's rubbish: http://www.interazioni.it/opensource/chkusr/ (as an example) ...which works very well. Steve ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
RE: Need to build a new mail server
-Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Paul Procacci Sent: Friday, May 30, 2008 9:21 PM To: Bob Johnson Cc: DAve; freebsd-questions@freebsd.org Subject: Re: Need to build a new mail server Bob Johnson wrote: On 5/30/08, DAve [EMAIL PROTECTED] wrote: Eric Zimmerman wrote: Foo JH wrote: I like Qmail. It's not overly difficult to configure, and it's extensible. and requires 400 patches to do basic things =( ~Paul http://shearer.org/MTA_Comparison Which MTA you will chose is only your choice. I will vote for Postfix. Best Regards, Catalin Miclaus Network/Security ISP-Data Starcomms Ltd. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Need to build a new mail server
Catalin Miclaus wrote: -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Paul Procacci Sent: Friday, May 30, 2008 9:21 PM To: Bob Johnson Cc: DAve; freebsd-questions@freebsd.org Subject: Re: Need to build a new mail server Bob Johnson wrote: On 5/30/08, DAve [EMAIL PROTECTED] wrote: Eric Zimmerman wrote: Foo JH wrote: I like Qmail. It's not overly difficult to configure, and it's extensible. and requires 400 patches to do basic things =( ~Paul http://shearer.org/MTA_Comparison Which MTA you will chose is only your choice. I will vote for Postfix. Best Regards, Catalin Miclaus Network/Security ISP-Data Starcomms Ltd. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] I must say, that's a pretty good article. Cheers for sharing it even if it is a tad outdated, it mostly sums everything up quite nicely. ~Paul ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Stumped:: web HTML. Caution, may be OT.
On Friday 30 May 2008 12:04:16 pm Gary Kline wrote: On Fri, May 30, 2008 at 01:31:01AM -0400, DAve wrote: Ted Mittelstaedt wrote: -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of Gary Kline I nearly spit coffee on my keyboard! I agree with you 100%. When we all did HTML with BBedit and Textpad, people like Black, Tog, and Nielsen kept everyone designing websites to best serve the content. Now it is all about the sizzle, but there is rarely a steak. DAve You got it, man. At least 80% of the site I happen on--at least that are selling something--have so much kerrapp going on I'd go blind if I stayed there for very long. (I so *enjoy* being able to block ads or stop-movie (gnash), and then find the router or DVD or whatever. And get out!) I hate the over use of flash and etc. I sometimes think that is similar to putting a pdf file on a website instead of using txt. It bypasses some of the quirks and you see what they want you to see. This is not the kind of page i'M aiming for. --But then, I really don't know what/how I want to revise my www homepage. I use Adobe's GoLive but they killed it for Dreamweaver. If it had been a modest upgrade price, I would have upgraded but I didn't. The reason for the strange display was a bad comment. So at least I've learned something! Now www looks fine from ffox, opera, and Konq. I've forbidden my tweenager from using IE so have to wait for wife. Or see if friends reply who use IE. I have IE 7, Firefox, Seamonkey, and Safari on my main XP machine. I can't see any obvious difference. I also can't see any obvious difference between Firefox and Konqueror on FreeBSD and the XP browsers. FWIW, IE seems to complain on many of the sites I visit. It has a little comment on the status bar to the effect of completed but with errors. I didn't see it on your site. Kent ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Stumped:: web HTML. Caution, may be OT.
On Thu, May 29, 2008 at 07:39:02PM -0700, Gary Kline wrote: On Thu, May 29, 2008 at 11:05:36PM +0100, Frank Shute wrote: On Thu, May 29, 2008 at 01:05:22PM -0700, Gary Kline wrote: [[ ... ]] /* * strange:: the way that mutt queues [ and orders ] its replies and threads is * different from kmail. I only use a GUI when there is a URL embedded, but * it must be down-queue. */ Use textproc/urlview with mutt Firefox. Frank, can you do me a favor and mail your ~/.urlview, please? I installed this program a few years ago, but it only worked with lynx. I just found the url_handler.sh script so now have a clue but if your ~/.urlview points to firefox you'll save me some typing. --Also [going further OT], I like Konsole even better than xterm.-- I'll post it here for the benefit of others: $ cat ~/.urlview COMMAND /usr/local/bin/firefox %s I've also got: macro index \cb |urlview\n # simulate the old browse-url function in my muttrc, so ctl-b gives me the list of the urls in the email. I would *rather* use vi and HTML-by-hand. And produce very simple, readable, uncluttered pages. I don't use many graphics, e.g., I use the strength of HTML, php, blah ** 3. Since you're a do it by hand person, I'll give you the benefit of my experiences doing my pages that way. My site is on a similar scale to yours and I've just kept it simple except where I've used server-side (PHP/Perl) and Javascript. Sounds like what I've done, more/less. My index file in www/data is PHP. php keeps getting closer to C, c; I've written a few things in php. 1. Use Firefox to develop with and install the webdeveloper plug-in: https://addons.mozilla.org/en-US/firefox/addon/60 Use vim not vi, since you get syntax highlighting with vim/gvim. Mm, I'm familiar with vim; like it all right, but lost my ~/.vimrc file (and my backup). NP in this case. vim does a solid job of highlighting. I'll mail you mine. Add x11/rgb to your system and: $ showrgb | less will show you the websafe colours. Plug in the numbers to your stylesheet to get your preferred colours. You can view the colours with e.g: $ xterm -bg steelblue Or: http://www.w3schools.com/tags/ref_colornames.asp Have the rgb app; when I began building my jottings pages I knew the colors would set the philosophic/meditative mood, so in early '02 I ripped off the light blue from the philosophy pages at Lampeter. Then used various color wheels to choose the other colors. This is about the outer limits of my design capabilities, :-) I use Gimp for any graphics. Impressive. Anything at the level of The GIMP is beyond me. Hey, my knowledge of Gimp is strictly limited but they've got some tutorials on the Gimp homesite. 2. Choose a standard that you are going to code to and validate against. I use XHTML1.0 Transitional and CSS. Things are going more XML than HTML and transitional is less restrictive than strict. Here is where it may be best to take this offlist. I'm guessing that XHTML is extended-HTML. Yes/no? = 10 years ago I created some short stories andor essays using the Sytle Sheets. But as you point out, XML is prob'ly the future of markup and I know next to nothing about it. For example, given firstNameJohn/firstName, *where/what* defines the tag? Since the WWW bunch has given XML the nod, it is both the present and future of a lot of the web. ---So, are there any books for Beginners you recommend? You or anyone else onlist who has waded thru this plea! No books, I learnt all mine online. 3. Have a look at w3c schools site to learn your chosen language: http://www.w3schools.com/ There are various tutorials and references there. Best site on the 'net! hMMM:-) Maybe I should've read ahead . 4. Steal a simple page that validates: http://www.shute.org.uk/miscellany.html and use it as a template to hack on. Steal the style sheet too. Validate your webpage as you go along with the w3c validator. Should I just google for the validator? At any rate, thanks much for the two URL's above. The more I can learn on my own (without bothering anyone else), the better. I think there's a link to it on the w3c schools site I gave you. If not, it's in the source of the page above. If you click on the valid XHTML in that page, it will validate that page. 5. A few tips: Use div's for layout, not tables. i cannot // hhaven't made sense of DIV since I first saw it. *This* may be where I've confused IE and Konq and it might be the easiest
Looking for gurus willing to help write Freebsd tutorials
Hi everyone. I was wondering if anybody here might be interested in writing and donating a few Freebsd tutorials or articles to Raiden's Realm to help us boost the number of Freebsd related articles on the site. A lot of what we have is Linux oriented right now because most of the people there are Linux oriented. I'm one of the few who's Freebsd oriented. And since my goal is to help people learn both Linux and Freebsd, I'm looking for people willing to help out by writing long or short tutorials on doing a variety of simple and complex tasks in Freebsd. The site is completely non-profit and is very new user oriented. I've even written a number of tutorials over the past couple of years focusing on several things involving Freebsd, from setting up a firewall, a workstation, and a file and mail server, to exploring the heart of Freebsd in order to help draw new users into our world. But my knowledge only goes so far, and I've seen that you guys really have a lot of great knowledge and information to share and if possible, I'd love to see a few of you share that knowledge through articles and tutorials on my site. My simple goal is to help people, and to promote Freebsd (well, and Linux too. hehe) as much as I can to new users. If anyone's willing to help, please let me know, or just shoot me something whenever you get the time. I'm not trying to beg or anything, but rather I'm trying to encourage others here to help new users through the web. Not everyone will know about this mailing list, or want to sign up to it. There's a lot of lurkers out there these days, and if you have a good tutorial or article posted on a website, it'll improve the chances of them hearing and learning about Freebsd. Thanks for taking the time to read this. And if you can help out, I'd appreciate it. Also, I'm not advertising the site. Just asking for some help. Since open source is about sharing, it only stands to reason that some sharing can and should be done as well on the web. :) Steven Lake Owner/Technical Writer Raiden's Realm www.raiden.net Bringing Linux and BSD to the World ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Looking for gurus willing to help write Freebsd tutorials
Steve Lake [EMAIL PROTECTED] wrote: Hi everyone. I was wondering if anybody here might be interested in writing and donating a few Freebsd tutorials or articles to Raiden's Realm to help us boost the number of Freebsd related articles on the site. A lot of what we have is Linux oriented right now because most of the people there are Linux oriented. I'm one of the few who's Freebsd oriented. And since my goal is to help people learn both Linux and Freebsd, I'm looking for people willing to help out by writing long or short tutorials on doing a variety of simple and complex tasks in Freebsd. These type of tutorials already exist on the FreeBSD web site. There is a Handbook which contains links to various articles. Also, there is a section designed specifically for the newbies to which your site caters: http://www.freebsd.org/projects/newbies.html [...] -- Sahil Tandon [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Looking for gurus willing to help write Freebsd tutorials
Thanks for taking the time to read this. And if you can help out, I'd appreciate it. Also, I'm not advertising the site. Just asking for some help. Since open source is about sharing, it only stands to reason that some sharing can and should be done as well on the web. :) The majority of people on this list help immensely. Most of the work and documentation regarding FreeBSD that has been produced by anyone reading this list can be found publicly by your best friend... http://google.ca ...or, for those inclined: http://google.com/bsd Good luck with your site ;) Steve ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Stumped:: web HTML. Caution, may be OT.
On Thu, May 29, 2008 at 10:07:56PM -0700, Ted Mittelstaedt wrote: -Original Message- From: Gary Kline [mailto:[EMAIL PROTECTED] Sent: Thursday, May 29, 2008 3:14 PM To: Ted Mittelstaedt Cc: Kevin Downey; FreeBSD Mailing List Subject: Re: Stumped:: web HTML. Caution, may be OT. Chill down a bit, okay? first, (as the OP), i did not know thaat there was *this** great a disparity in thee rendering between classes of browsers. i used to stick pretty close to the w3.org (or whatever it was). i didn't think the difference extended to how the TABLE stuff was parsed. Gary, the problem is that the majority of people out there use IE, most IE7, but still a lot of IE6, and a few deihards IE5. Then there are the older versions of Safari on the Mac - there's still a lot of Mac's around that are running 10.2 believe it or not, and those came with MS IE for the Mac which -really- munges some pages. And Safari for Windows - which is a bit different than Safari on the Mac. And then there are all the Unix browsers. There are some test programs that can help. But the validators can tell you your code is right and it still will display differently in some of the browsers. The only way to do it is to do what the pros do - which is have all the different systems available and load their pages in those browsers. I test my pages with IE7, Safari on XP and Firefox on FreeBSD. Fixing problems with IE6 or anything else is too much to expect from amateur pages (which mine are). Telling people my site is fine your browser is fucked, get a better one is the mark of an amateur who is also being extremely presumptive. It's the old do it my way or fuck off You forget that Gary is an amateur. Hence, any complaints can be dealt with they validate, F off and get a better browser. (When he gets round to making them validate :) This is what Microsoft tells people - and most FreeBSDers and Linux people claim they are on the moral high ground because they aren't forcing their stuff down people's throats - that is, until they create a webpage and then they have no problem forcing software down people's throats to see it, I guess I can't see anything wrong with telling people to use better software, you're doing them a favour! It's obviously different if you're writing pages for a commercial site. You should still write pages that validate and there are various hacks you can use with CSS, the DOM and Javscript to make your pages appear OK in older broken browsers...and newer ones with bugs. Ted Regards, -- Frank Contact info: http://www.shute.org.uk/misc/contact.html ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Renaming root to homer?
Has denyhosts been recommended yet, or an sshd port change? Brian ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Stumped:: web HTML. Caution, may be OT.
On Fri, May 30, 2008 at 02:04:51PM -0700, Kent wrote: On Friday 30 May 2008 12:04:16 pm Gary Kline wrote: On Fri, May 30, 2008 at 01:31:01AM -0400, DAve wrote: Ted Mittelstaedt wrote: -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of Gary Kline I nearly spit coffee on my keyboard! I agree with you 100%. When we all did HTML with BBedit and Textpad, people like Black, Tog, and Nielsen kept everyone designing websites to best serve the content. Now it is all about the sizzle, but there is rarely a steak. DAve You got it, man. At least 80% of the site I happen on--at least that are selling something--have so much kerrapp going on I'd go blind if I stayed there for very long. (I so *enjoy* being able to block ads or stop-movie (gnash), and then find the router or DVD or whatever. And get out!) I hate the over use of flash and etc. I sometimes think that is similar to putting a pdf file on a website instead of using txt. It bypasses some of the quirks and you see what they want you to see. This is not the kind of page i'M aiming for. --But then, I really don't know what/how I want to revise my www homepage. I use Adobe's GoLive but they killed it for Dreamweaver. If it had been a modest upgrade price, I would have upgraded but I didn't. The reason for the strange display was a bad comment. So at least I've learned something! Now www looks fine from ffox, opera, and Konq. I've forbidden my tweenager from using IE so have to wait for wife. Or see if friends reply who use IE. I have IE 7, Firefox, Seamonkey, and Safari on my main XP machine. I can't see any obvious difference. I also can't see any obvious difference between Firefox and Konqueror on FreeBSD and the XP browsers. FWIW, IE seems to complain on many of the sites I visit. It has a little comment on the status bar to the effect of completed but with errors. I didn't see it on your site. Thw bad comment I was referring to was a markup comment: !-- this is an HTML comment -- My blunder was !-- this is an HTML comment --! It wiped out a lot of stuff that firefox displayed correctly, possibly talking the EOL as the close-of-comment. ...Sometimes I wonder about myself! gary Kent -- Gary Kline [EMAIL PROTECTED] www.thought.org Public Service Unix http://jottings.thought.org http://transfinite.thought.org ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
ssh - connect to directory outside of /user/home - permission denied
How do you allow ssh to permit connections to a folder outside of the /home folder of the user loggin in to ssh? For example, i want to sync two folders (using unison) on different machines and need to ssh to the remote folder .. but the folder is a shared folder outside of my home folder (i.e. /user/data/pub). ssh [EMAIL PROTECTED] works to get me into the user folder and I can cd to the folder I need to access (and have proper perms there) But, I need to connect to the folder directly to use unison (file/directory synchronization tool). ssh [EMAIL PROTECTED] /usr/data/pub/ gives permission denied errors. I've heard the directory path needs to be relative to the home path but the following does not work either: ssh [EMAIL PROTECTED] ../../../usr/data/pub/ (where the default directory for ssh logins is /usr/home/[username]/.) I've tried formatting variations of the above themes to no avail and suspect there's a setting somewhere to allow what directories ssh connections can be made to, or creating a link in [users] home directory to the public directory. Your help would be appreciated. -- Turner Litigation Services POB 319 Eureka, CA 95502 Tel. (707) 496-9666 ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Need to build a new mail server
On Fri, May 30, 2008 at 04:09:25PM -0400, Bob Johnson wrote: I agree. No one should use Qmail unless they have read and completely understand every email-related RFC and have at least two years of experience running a commercial mail server. Amateurs shouldn't even consider it. I used Qmail for the best part of 10 years as an amateur. It was moderately hard for me to first set up, it required me to read a lot of docs and manpages but no RFCs. I compiled and installed from source. It was still easier than Sendmail back then. It was install and forget. I started with qmail-1.03 and finished with qmail-1.03. I didn't like the FreeBSD port, so when I got my new domain I switched to Postfix. Please, use anything but Qmail. It sprays backscatter spam all over the internet. Nonsense. As a receiver of backscatter on one of my domains running into thousands, I can tell you most of it comes from misconfigured anti-spam systems. More rarely from MTAs of all varieties. As to the original posters question, he should stick to Sendmail on the assumption he already knows it, as it's part of the base system. If he's looking for something else, then Postfix is pretty simple to set up (good docs at it's homesite) and has a good security record. Regards, -- Frank Contact info: http://www.shute.org.uk/misc/contact.html ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: resident memory limit
On Wed, May 21, 2008 at 11:46 AM, Joshua Isom [EMAIL PROTECTED] wrote: On May 21, 2008, at 12:36 PM, Bill Moran wrote: In response to Brad Penoff [EMAIL PROTECTED]: On Wed, May 21, 2008 at 6:09 AM, Bill Moran [EMAIL PROTECTED] wrote: In response to Brad Penoff [EMAIL PROTECTED]: On Tue, May 20, 2008 at 2:39 PM, Brad Penoff [EMAIL PROTECTED] wrote: On Tue, May 20, 2008 at 1:54 PM, Bill Moran [EMAIL PROTECTED] wrote: In response to Brad Penoff [EMAIL PROTECTED]: I have an application that runs on Linux or Mac OS X but seems to have a problem when I run on FreeBSD (6.3 or 7). The issue is the memory footprint for the application (osubw_sctpclien below) is quite large; on Linux it can be as much as 950 MB in resident memory, according to top. However, on FreeBSD I start to get ENOMEM always around the time my resident memory size is about 200 MB. I read a few posts and have seen people fixing their problems by adjusting kern.maxdsiz in /boot/loader.conf and/or by adding a swap file. I've tried both and for my application, it still seems to be limited to 200 MB resident memory regardless of maxdsize and swap file setting. I wrote a toy application (malloctest below) that calls malloc in a while(1) and breaks once it gets ENOMEM (doing another while(1) so it doesn't exit); this application's memory size in top always matches the kern.maxdsiz setting, however it has a very low resident memory number, according to top. Have a look at /etc/login.conf and the associated man pages. BTW, we've seen the exact behavior on FreeBSD 7 as well (6.3 was reported here). We've tried on different hardware as well, and keep getting haunted by this resident memory limit that we don't know how to set. Any idea why, in the data I originally reported, I can allocate kern.maxdsiz + swap (see SIZE from top output) for malloc(1 MB) in a while loop, yet the top value for RES is always really low? How come, in contrast, my application starts to report ENOMEM when SIZE is 203 MB and RES is 201 MB? This is why I titled the thread asking about an unknown (to me ;-) limit for resident memory... It's called memory overcommit. If the OS thinks it _might_ be able to get you the memory, it will allow it. You only actually use the memory when you start putting data in it (hence the difference between SIZE and RES) Add a statement to fill up the malloc()ed memory with some sort of data in your loop, and you'll see different behaviour. As to what's limiting your application, I'm not sure. What does the output of 'ulimit -a' say? Thanks again for your time. With the default loader.conf, my limit -a output is: Resource limits (current): cputime infinity secs filesize infinity kB datasize 524288 kB stacksize 65536 kB coredumpsize infinity kB memoryuseinfinity kB memorylocked infinity kB maxprocesses 5547 openfiles 11095 sbsize infinity bytes vmemoryuse infinity kB My application starts getting ENOMEM when I have 201 MB of resident memory. When I change my loader.conf to match the 2 GB of physical memory that I have: kern.maxdsiz=2147483648 kern.maxssiz=2147483648 kern.dfldsiz=2147483648 ...and reboot, then my limit -a output is: Resource limits (current): cputime infinity secs filesize infinity kB datasize 2097152 kB stacksize 2097152 kB coredumpsize infinity kB memoryuseinfinity kB memorylocked infinity kB maxprocesses 5547 openfiles 11095 sbsize infinity bytes vmemoryuse infinity kB However, the application still seems to max out at 201 MB of resident memory. People suggest to fix my login.conf but the memory related fields are set to unlimited... Any ideas where this 201 MB limit of resident memory comes from? That's pretty strange. If I had to guess, I would guess that there is no 201M limit, but that you're hitting some other limit that just happens to predictably occur at 201M with that program. I'm kind of grasping at straws here, so hopefully I won't lead you on a wild goose chase, but I would look next at putting some debugging in /etc/malloc.conf and seeing if you get any useful information from it (see the malloc man page). From there, possibly a ktrace of the process. Hopefully you have source code for the program and can compile it with debugging and run it under gdb. -- Bill Moran http://www.potentialtech.com ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] I'm still playing around with malloc.conf and ktrace, searching for answers (I'll report if I find any) but in the meantime, I'll try to answer your questions... Here's a question I haven't
climm 0.6.2
Hi, i have so troubles with climm icq client. I've got some errors on startup, here they are: Opening v8 connection to login.icq.com:5190 for 492618933... Opening scripting FIFO at /home/scriper/.climm/scripting... ok. Redirect to server 64.12.24.60:5190... Unknown family requested: 37 #Unknown type 32: ICQ-MDIR 0 1. and all users on contact list are shown as offline. -- Regards, Nickolay D. Hodyunya. mailto: [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Redirect email account in freebsd
ALL Hi, I dont know if its right to post my problem here.. How would you redirect an email account? Lets put it in this way, we have an existing account namely [EMAIL PROTECTED] ,[EMAIL PROTECTED] and [EMAIL PROTECTED] what i want is when someone send and email to account1 only (no cc: or bcc: from sender) , account3 can also receive the message being sent to account1? is it possible? I'm using the Thunderbird. I hope someone answers my question, i would really appreciate it. Thanks. FREEBSD Rocks... ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Looking for gurus willing to help write Freebsd tutorials
On Fri, May 30, 2008 at 07:08:20PM -0400, Steve Lake wrote: Hi everyone. I was wondering if anybody here might be interested in writing and donating a few Freebsd tutorials or articles to Raiden's Realm to help us boost the number of Freebsd related articles on the site. A lot of what we have is Linux oriented right now because most of the people there are Linux oriented. I'm one of the few who's Freebsd oriented. And since my goal is to help people learn both Linux and Freebsd, I'm looking for people willing to help out by writing long or short tutorials on doing a variety of simple and complex tasks in Freebsd. The site is completely non-profit and is very new user oriented. I've even written a number of tutorials over the past couple of years focusing on several things involving Freebsd, from setting up a firewall, a workstation, and a file and mail server, to exploring the heart of Freebsd in order to help draw new users into our world. But my knowledge only goes so far, and I've seen that you guys really have a lot of great knowledge and information to share and if possible, I'd love to see a few of you share that knowledge through articles and tutorials on my site. My simple goal is to help people, and to promote Freebsd (well, and Linux too. hehe) as much as I can to new users. If anyone's willing to help, please let me know, or just shoot me something whenever you get the time. I'm not trying to beg or anything, but rather I'm trying to encourage others here to help new users through the web. Not everyone will know about this mailing list, or want to sign up to it. There's a lot of lurkers out there these days, and if you have a good tutorial or article posted on a website, it'll improve the chances of them hearing and learning about Freebsd. Thanks for taking the time to read this. And if you can help out, I'd appreciate it. Also, I'm not advertising the site. Just asking for some help. Since open source is about sharing, it only stands to reason that some sharing can and should be done as well on the web. :) Hi Steve, Several years back I was lead-writer on the AnswerMan help column. It was directed mostly at new users of the BSD's and aimed primarily at FreeBSD. We published several tutorial-like Q's and A's bi-monthly. Were heading into our 7th year before the column fell apart. Long-story-short, all the contributors gave permission to re-use the contents, so feel free to google up the stuff and use what you deem usable. cheers, gary kline Steven Lake Owner/Technical Writer Raiden's Realm www.raiden.net Bringing Linux and BSD to the World ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] -- Gary Kline [EMAIL PROTECTED] www.thought.org Public Service Unix http://jottings.thought.org http://transfinite.thought.org ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Redirect email account in freebsd
Ruel Luchavez wrote: ALL Hi, I dont know if its right to post my problem here.. Yes. How would you redirect an email account? Lets put it in this way, we have an existing account namely [EMAIL PROTECTED] ,[EMAIL PROTECTED] and [EMAIL PROTECTED] what i want is when someone send and email to account1 only (no cc: or bcc: from sender) , account3 can also receive the message being sent to account1? is it possible? If you're using sendmail (the default mail server in FreeBSD), probably the easiest way is to edit /etc/mail/aliases and put the following line in the file: account1: \account1, account3 and then run the newaliases command. While this will not send account3 two copies of e-mail that the sender sent to both account1 and account3, it will not check that account1 is the only recipient. If you need to strictly check that there are no cc: or bcc: recipients, I suspect you will have to install something more sophisticated, such as procmail from ports. I'm using the Thunderbird. Or, you could set up rules in Thunderbird to do the forwarding from there. Of course, this means that mail gets forwarded only when account1 checks for mail. --Jon Radel smime.p7s Description: S/MIME Cryptographic Signature
7.0 upgrade compile error
I am trying to upgrade from 6.3 to 7.0. With latest source, buildworld dies with: ... /usr/src/gnu/lib/libgcc/../../../contrib/gcc/unwind-dw2.c: In function 'uw_install_context_1': /usr/src/gnu/lib/libgcc/../../../contrib/gcc/unwind-dw2.c:1472: warning: incompatible implicit declaration of built-in function 'abort' /usr/src/gnu/lib/libgcc/../../../contrib/gcc/unwind-dw2.c:1480: warning: incompatible implicit declaration of built-in function 'memcpy' /usr/src/gnu/lib/libgcc/../../../contrib/gcc/unwind-dw2.c:1486: warning: incompatible implicit declaration of built-in function 'memcpy' /usr/src/gnu/lib/libgcc/../../../contrib/gcc/unwind-dw2.c:1490: warning: incompatible implicit declaration of built-in function 'memcpy' In file included from /usr/src/gnu/lib/libgcc/../../../contrib/gcc/unwind-dw2.c:1518: /usr/src/gnu/lib/libgcc/../../../contrib/gcc/unwind.inc: In function '_Unwind_RaiseException_Phase2': /usr/src/gnu/lib/libgcc/../../../contrib/gcc/unwind.inc:75: warning: incompatible implicit declaration of built-in function 'abort' /usr/src/gnu/lib/libgcc/../../../contrib/gcc/unwind.inc: In function '_Unwind_Resume': /usr/src/gnu/lib/libgcc/../../../contrib/gcc/unwind.inc:238: warning: incompatible implicit declaration of built-in function 'abort' /usr/src/gnu/lib/libgcc/../../../contrib/gcc/unwind.inc: In function '_Unwind_Resume_or_Rethrow': /usr/src/gnu/lib/libgcc/../../../contrib/gcc/unwind.inc:263: warning: incompatible implicit declaration of built-in function 'abort' *** Error code 1 Stop in /usr/src/gnu/lib/libgcc. *** Error code 1 I am not sure what to do about this! Any suggestions? TIA, Casey ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Need to build a new mail server
On Fri, 30 May 2008 11:39:03 -0400, DAve [EMAIL PROTECTED] wrote: Eric Zimmerman wrote: heres some interesting reading about qmail... http://www.dt.e-technik.uni-dortmund.de/~ma/qmail-bugs.html That so much time and effort is spent telling everyone how bad qmail is still amazes me. It is one of the best performing and most extensible MTAs I have ever used. It is not however, suitable for those who choose not to understand how mail works. Point and clickers should stay with Postfix, also a very capable MTA. This freebsd-questions thread is approaching a low signal/noise ratio very very fast. MTAs are a hotly debated subject, and they tend to spark the flames of a religious war *very* fast. Can we _please_ try to steer this discussion back on track, and actually _help_ the original poster, instead of showing that in a dick size war we can definitely 'win' by our elite administrator skillz? Please? ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Looking for gurus willing to help write Freebsd tutorials
Raiden's Realm is a community tech site dedicated to helping people learn about Linux, BSD, and open source software. - WHO WE ARE, www.raiden.net. If you are honest for your site's objective, appreciate if could drop the penguin from the site's logo without a delay. It clearly shows your bias. Regards Unga ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Stumped:: web HTML. Caution, may be OT.
On Fri, May 30, 2008 at 09:49:50PM +0100, Frank Shute wrote: On Thu, May 29, 2008 at 07:39:02PM -0700, Gary Kline wrote: Questions on validation 4. Steal a simple page that validates: http://www.shute.org.uk/miscellany.html and use it as a template to hack on. Steal the style sheet too. Validate your webpage as you go along with the w3c validator. When I typed in www.thought.org/x.html AFTER having fixed the ! comment errors --, there were still 30 faults. The one that really got me was TITLE because that one looked 100$ correct. I deleted the META tags; no difference. (( x.html == index.php )). I left the doctype on auto and the validator.w3.org couldn't parse my -//w3c//dtd html 4.0 transitional//en markup. The err: the Document Type (-//w3c//dtd html 4.0 transitional//en) is not in the validator's catalog The index.php and index.html are identical except for the php entry. Any guesses why things like this blowup:: !doctype html public -//w3c//dtd html 4.0 transitional//en HTML HEAD TITLEThought Unlimited: www.thought.org/TITLE /HEAD 5. A few tips: Use div's for layout, not tables. i cannot // hhaven't made sense of DIV since I first saw it. *This* may be where I've confused IE and Konq and it might be the easiest way to create the layout that firefox gives me. div essentially gives you a box which after setting properties like font size, background color, margins, position etc. with your stylesheet you can place on your page and then fill with graphics, text etc. And using the CSS, am I right?? I began using the style sheets 10, 10+ years ago. Given that familiarity, it wouldn't be that much of a jump to go back to that mode. ( Besides, TABLE's can be a serious PITA:) I used the website's tidy tool so I saw what I had to do in order to transition. I'll need to study the DIV stuff. The important thing is that late this afternoon I learned that this stuff is rendered even under IE ... Have a look at the source and style sheet of my contact page (at the bottom of this mail) to see how you can use them quite simply. [[ ... ]] I didn't understand you could hardwire a textsize; maybe I've done it inadvertently ... Yeah, you can: font-size: 16px Use something like (in your style sheet): font: italic 120% sans-serif; where the 120% sets the size of the font relative to the browsers setting. Say me default font is set to 20px in my browser, then in the former case the font will render at 16px and in the latter case at 22px. I don't know if it's something you did with your pages but it's something you should be aware of. Wel, I set FONT SIZE=3 and elsewhere FONT SIZE=+2 Probably the same, come to think of it. Keep an eye out for pages that look nice and validate. View source then steal chunks of xhtml and css. me thinks it's going to be a busy 2, 3 weeks, :) gary -- Gary Kline [EMAIL PROTECTED] www.thought.org Public Service Unix http://jottings.thought.org http://transfinite.thought.org ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Stumped:: web HTML. Caution, may be OT.
At 2008-05-30T21:28:58-07:00, Gary Kline wrote: Any guesses why things like this blowup:: !doctype html public -//w3c//dtd html 4.0 transitional//en The quoted string above is the so-called Formal Public Identifier (FPI) of the DTD, i.e., the standard, that your HTML page claims to conform to. However, the format of the FPI in your page is wrong. For instance, dtd should be the upper case DTD, and the ISO 639 language code en should be the upper case EN. In addition, the entire FPI is case-sensitive, so Transitional is different from transitional. The recommended FPI for W3C HTML 4.0 Transitional is -//W3C//DTD HTML 4.0 Transitional//EN. So, the above line should read !doctype html public -//W3C//DTD HTML 4.0 Transitional//EN Better still, follow the normal practice of writing doctype and public in upper case, and eliminating unnecessary whitespace, and make it !DOCTYPE html PUBLIC -//W3C//DTD HTML 4.0 Transitional//EN At 2008-05-29T19:39:02-07:00, Gary Kline wrote: I still have unread messages down-queue, but may as well ask if there are any HTML/XML checkers in ports that would help validate my mark. See my message earlier in this thread, where I mentioned textproc/opensp, and how to use it. In fact, the W3C validator is based on OpenSP, see http://validator.w3.org/docs/help.html#how Raghavendra. -- N. Raghavendra [EMAIL PROTECTED] | http://www.retrotexts.net/ Harish-Chandra Research Institute | http://www.mri.ernet.in/ See message headers for contact and OpenPGP information. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]