Re: Waiting for BIND security announcement

2007-07-31 Thread A.G. Russell IV 
if you will look at /usr/src/contrib/bind9/version

your contents will look something like this:

# This file must follow /bin/sh rules.  It is imported directly via
# configure.
#
MAJORVER=9
MINORVER=3
PATCHVER=3
RELEASETYPE=
RELEASEVER=

Meaning mine, which was updated a few minutes ago, is still at bind 9.3.3 

A.G.

On Thu, Jul 26, 2007 at 10:48:10AM +0200, Zbigniew Szalbot wrote:
 
 Hello,
 
 On Thu, 26 Jul 2007 11:36:27 +0300, Abdullah Ibn Hamad Al-Marri
 [EMAIL PROTECTED] wrote:
  On 7/25/07, Doug Barton [EMAIL PROTECTED] wrote:
  
  RELENG_6 was updated shortly after the release of 9.3.4. I'll be
  updating RELENG_[56] with the new 9.3.4-P1 version after I'm done
  regression testing it, which should be some time tonight. Same for
  updating HEAD with 9.4.1-P1.
 
  The ports for bind9 and bind94 are already updated, so those with
  urgent needs can use that route to upgrade immediately.
 
 
  hope this helps,
 
  Doug
 
  --
 
  This .signature sanitized for your protection
 
  
  Thank you Doug for the hard work, I have updated my 3 boxes which runs
  BIND 9 }:)
 
 I am running FreeBSD 6.2-RELEASE-p6 and BIND 9.3.3 (not from ports but
 installed with the system. At least when I do pgk_info -Ix bind I am told
 there is no such package installed). Where can I find information on BIND
 upgrade? I tried freebsd-update but it did not think I needed any updates
 :)
 
 Thank you in advance!
 
 -- 
 Zbigniew Szalbot
 
 ___
 freebsd-questions@freebsd.org mailing list
 http://lists.freebsd.org/mailman/listinfo/freebsd-questions
 To unsubscribe, send any mail to [EMAIL PROTECTED]

-- 
___
A.G. Russell IV  KC5KFDThe Knife Company   e-mail:  [EMAIL PROTECTED]
Phone 479-631-0055 FAX 479-631-8734
Old Klingon Saying --  'oH  majQa' yIn je bang, Qo' bang
---
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: Can't log in a root from anywhere but the console screen.

2006-09-28 Thread A.G. Russell IV 
On Thu, Sep 28, 2006 at 07:22:23AM -0500, Dustin Coates wrote:
 -Original Message-
 
 From: Erik Norgaard [mailto:[EMAIL PROTECTED] 
 Sent: 28 September 2006 09:42
 To: Jim Borland
 Cc: freebsd-questions@FreeBSD.org
 Subject: Re: Can't log in a root from anywhere but the console screen.
 
 Jim Borland wrote:
  I want to use a PC to telnet to the freeBSD server and login as root 
  but it won't let me! Can you help? I can login as a normal user just 
  not as root, I can't key in su to get in as superuser either.
 
 1) Don't use telnet, use ssh, for security.
 2) Are you in the wheel group?
 
 Erik suggested I use ssh, I've never used ssh before and when I do it
 says the connection has been refused. 
 The root user is in the wheel group, I have a user called jim which
 is in a group called group he is able to login using telnet.
 
 
 
 The best thing to do is to add the user jim to the wheel group, then you
 should be able to login as him over ssh, then su to superuser, and do
 virtually everything root can do. It is considered a security risk to allow
 root access to ssh. But it's your server. So if you want root to be able to
 login despite my warning.  Edit /etc/ssh/sshd_config and find
 #PermitRootLogin no, remove the hash, and change the no to yes

First, sshd is not running, that is why the connection has been refused
messages is being seen.  put sshd_enable=yes in /etc/rc.conf.

Look at /etc/defaults/rc.conf, it is your friend, and any daemon that you 
want to run, must have xyz_enable=yes in the /etc/rc.conf, if it conforms
to the current FreeBSD mores.

Also, as suggested above, add jim to the wheel group, this will allow you
to su to root.

Take a look at the 
http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/
google and the above document, will answer a lot of your questions.

I Can't say in strong enough terms, how Bad and idea it is to have root
allowed for ssh, or even worse, to use telnet, especially over the Internet.

Good luck, FreeBSD is how we've run our servers for years, and have been solid
work horses.

A.G.
-- 
___
A.G. Russell IV  KC5KFDThe Knife Company   e-mail:  [EMAIL PROTECTED]
Phone 479-631-0055 FAX 479-631-8734
Old Klingon Saying --  'oH  majQa' yIn je bang, Qo' bang
---
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]