Re: SOLVED: Snow in my Server
From: Glen Barber glen.j.bar...@gmail.com Sent: Monday, 2008, December 22 12:09 On Mon, Dec 22, 2008 at 2:58 PM, Gary Hartl gha...@gmail.com wrote: Well to all who responded to my emails I thank you...I plus I'm sure everyone else enjoyed the responses and to those who might have considered that I really had a problem...well well I got nothing... Surely you recognize my last email was sent in humor. :) Surely you know that is why it was taken seriously, don't you? Merry Christmas, Happy Chanukah, Kwanza, or whatever it is you enjoy / celebrate this holiday season, and if you're one of those types that doesn't celebrate anything this time of year...well...enjoy yourself. What he said. Enjoy! -- Glen Barber {^_^} ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Snow in my Server
But then you have to add in the flood-control port. {^_^} - Original Message - From: lysergius2001 lysergius2...@gmail.com Sent: Monday, 2008, December 22 08:23 Hmm, I'm surprised that no one suggested that you build and install the snow-melt port? On Mon, Dec 22, 2008 at 4:01 PM, Brian A. Seklecki bsekle...@collaborativefusion.com wrote: On Fri, 2008-12-19 at 22:46 +0300, Jeff Laine wrote: Just mv teh snowflakes to /dev/null ^_- $ sudo pkill -9 xsnow ~BAS -- Brian A. Seklecki bsekle...@collaborativefusion.com Collaborative Fusion, Inc. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Spamassassin very slow
That says you are driving spamd into swapping. The two canonical reasons for SpamAssassin to be really slow are dead BL sites or overrunning memory and going into heavy swapping. You made a change to reduce the amount of swapping. Hence you probably have too many children at any one time. Modify your minimum and maximum number of children. For best results you MAY want only one child per processor you can spare from other work. Regardless, use top to see when you go into swapping with the spamd load. When you do, back off the number of children running at any given time. Check rule sets you are using with RDJ. Some of them require incredible amounts of memory to run. I run enough rules to pull down about 60 megabytes of memory. There are some rule sets that can go over 100 megabytes on the SARE site (SpamAssassin Rules Emporium). 40 children at 100 megabytes each could use a lot of machine. {^_-} You might consider investigating the spamassassin users list at apache.org. You can find it via the SpamAssassin home page, http://www.spamassassin.org/ {^_^} Joanne - Original Message - From: lyd mc [EMAIL PROTECTED] Sent: Tuesday, 2008, July 22 23:31 Hi James, I remove spamc on .procmailrc and I can see lots of improvements! Thanx, alyd --- On Wed, 7/23/08, James Tanis [EMAIL PROTECTED] wrote: From: James Tanis [EMAIL PROTECTED] To: [EMAIL PROTECTED] lyd mc [EMAIL PROTECTED] wrote: What causes spamassassin to slow? Here is my config: snippet from sendmail.mc .. cut .. I have .procmailrc in every home directory of my mail users and it goes like this: So if I'm understanding you correctly.. your calling spamc from a sendmail milter *and* .procmailrc. That's pretty redundant and would definately slow you down. Choose one based on your needs. I also have RulesDuJour installed and spammassassin --lint does complain about it. Extra rules can slow you down regardless of syntax, but most computers created this decade can handle RulesDuJour fine. Personally I think your main problem is that your effectively spam checking every message twice. The spamassassin queues most likely get filled followed by sendmail having to wait and queue up the slack. -- James Tanis Technical Coordinator Monsignor Donovan Catholic High School e: [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: dealing with a failing drive
From: David Newman [EMAIL PROTECTED] -BEGIN PGP SIGNED MESSAGE- On 11/12/07 8:14 AM, Jerry McAllister wrote: An update: After doing what you suggest (leaving in the good disk, adding a new disk, RAID rebuilding) I still got soft write errors -- with *either one* of the disks I tried. Then I tried putting both disks in an identical server and they came up fine, no read or write errors. Ergo, the bad RAID controller is bad and the disks may be OK. Probably not. Generally, if the RAID controller is bad, you will see errors all over and not it just one place, tho I suppose it is possible. Check and see what it reports as error locations and see if they move around any. Jerry, thanks for your response. After 36 hours of running the same disks in a different, identical machine there hasn't been a single read or write error. I'm hardly a storage expert but from the evidence I have I'm inclined to believe the root cause was a bad RAID controller and not failed disks. I'm aware of CLI tools to monitor 3Ware SATA RAID controllers. Anyone know if there are similar tools for HP/Compaq SCSI RAID controllers? Bad cable? Iffy power supply? Examine each step the data and power take for possible hitches. You might even have an overheated and weakened power connector on a drive. If it's not making solid contact it can give you headaches. {^_^} ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: dealing with a failing drive
From: Jerry McAllister [EMAIL PROTECTED] Sent: Monday, November 12, 2007 12:53 On Mon, Nov 12, 2007 at 09:26:38AM -0800, David Newman wrote: On 11/12/07 8:14 AM, Jerry McAllister wrote: An update: After doing what you suggest (leaving in the good disk, adding a new disk, RAID rebuilding) I still got soft write errors -- with *either one* of the disks I tried. Then I tried putting both disks in an identical server and they came up fine, no read or write errors. Ergo, the bad RAID controller is bad and the disks may be OK. Probably not. Generally, if the RAID controller is bad, you will see errors all over and not it just one place, tho I suppose it is possible. Check and see what it reports as error locations and see if they move around any. Jerry, thanks for your response. After 36 hours of running the same disks in a different, identical machine there hasn't been a single read or write error. I'm hardly a storage expert but from the evidence I have I'm inclined to believe the root cause was a bad RAID controller and not failed disks. That is not much proof. The different machine would probably be accessing the disks in a different way, either slightly different positioning or using different space. Also, 36 hours is not really much time. Dn, I have had a Promise controller that was bad. I kept getting errors at one specific location on two disks out of three on a RAID 5. The system continued to operate. When I finally spent the time to nail it down to the controller I found the Promise people more than anxious to get the beast for a postmortem. It had been bad for me from day one. It would take about a week to a month for the problem to appear. After the 6th disk showing the problem at the same block number the coin dropped in my sometimes overly slow mind. {^_-}Joanne ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Bizzare routing table entry.
From: Josh Carroll [EMAIL PROTECTED] root# route delete 00xc0a80132 [1] 37343 route: writing to routing socket: No such process delete net 0: not in table 0xc0a80132: Command not found. [1] + Exit 1route delete 0 root# route delete 00xc0a80132 [1] 37343 route: writing to routing socket: No such process delete net 0: not in table 0xc0a80132: Command not found. [1] + Exit 1route delete 0 I've no idea whether that is a valid route or not, but the reason you're getting that funkiness is that the shell is eating the and thinks you are sending the route process to the background. Try: route delete '00xc0a80132' There goes 192.168.1.50. {^_-}Joanne ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: WOW! {Or Holy whatever}
From: Gary Kline [EMAIL PROTECTED] On Wed, May 09, 2007 at 07:18:52PM -0500, Eric Crist wrote: On May 9, 2007, at 6:09 PMMay 9, 2007, Gary Kline wrote: On Wed, May 09, 2007 at 03:09:09PM -0700, Gary Kline wrote: I asked somebody directly, but I may as well ask the entire list. I'm looking for a video-card. The more recent mobo's (like the i815) have them builtin. My 750MHz machine uses the SRAM for its v-RAM. My old Kayaks came with Matrox Millennium 8MB video card that give me Plenty of resolution under xorg. I just did a web search and find an AGP card for seriously cheap with 256MB of memory. It's an eVGA e-GeForce FX5500 Whatever! I'm no gamer (but just-might-wanna play some auto racing games). All I care about is a) that the card fits by KVM plug with a three-row pinout, and of course, b), that FBSD has a driver for this card. All of my computers have this 3-row male pin, so need a 3-row female jack/socket. Ok, I found the type of connnector or jack or socket I need. It is an HD15 15 pin high denisity D-SUB female connector with sockets 1 to 5 on the first row, 6 thru 10, 2nd, 11 to 15 on the bottom. This on http://pinouts.ru. VGA. I'll google aroubd further, but still would be much obliged for input from anybody ... . gary Gary, Most cards that might come with DVI output instead of the standard VGA output usually include at least one DVI-VGA adapter, an additional one could be purchased at most computer retailers or your local Radio Shack. HTH It does help, thanks, Eric. I may have missed the cord adaptor that was stuck in the box. Need help to open/check. Meanwhile, I need to look at the specs for this Dell 8200 to see what kind of card is in there. What's there is a jack with two rows of sockets. I'm guessing this is the standard Dell DVI connector, yes, no, other? :-) It is not a cord adapter. It is a solid piece not much bigger than the connector on the end of a VGA cord. Also, in your opinion, since I'm not a gamer and just want to display at extreme most 1600x1200, do I need anything seriously upscale? I've seen and skipped past lots of questions about lots of drivers. So let's say that I went totally ape and bought some AGP card with 256M of memory:: do we have a driveer for those kinds of very high end cards? VGA should work fine as long as your cables are short (10' - 15' maximum total length) and the KVM is suitable for your scan rate and scan settings. thanks again, gary PS: Does anybody know of a website that 'splains VGA, SVGA, EVGA, and all the rest? I've been seriously guilty of being lazy; I'm fessing up! can you spell http://wikipedia.org ? {^_^} ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Time Synchronizing Between Two Servers
From: Chuck Swiger [EMAIL PROTECTED] On May 4, 2007, at 9:10 AM, RW wrote: On Thu, 03 May 2007 11:07:34 -0400 Chuck Swiger [EMAIL PROTECTED] wrote: Sun SPARC machines have good HW clocks, and also some of the newer Macs also seem to have consistently low values in ntp.drift and handle timekeeping well. Does that matter? A good question-- the answer seems to be that it depends. The RTC time is almost immediately overridden by ntpdate. The drift is a systematic error that ntpd allows for. I would have thought that the only significant issue, is whether the system loses timer interrupts under load. There are limits to how rapidly ntpd will slew the clock via adjtime (); the smaller the intrinsic drift of the HW clock, the sooner any adjustment (beyond the initial stepping at system boot via ntpdate) will complete. This only matters to stratum-2 and higher systems-- anything with a primary reference clock (GPS/WWV/ACTS/etc) is going to sync to that and ignore the local HW clock entirely. On good operating systems, that is to say ones in which the NTP code can get in and slightly alter the HZ clock timing, it implements a phase locked loop with a lot of filtering on the data returned in the NTP polls. So the concept of good oscillator is a little different from what you might presume. It basically means one that is stable with time and with temperature variations seen as installed. Wide temperature excursions (in this context that could be as little as 10 degrees C) can cause errors. The loop tries to adapt. But time setting might fall back on frequent correction to be satisfactory. Most PCs have floor sweepings for their crystal oscillators. Those with good AT cut crystals are, more or less coincidentally, working at a temperature that is fairly benign for temperature variations. The frequency error versus temperature curve for the AT cut crystal is an S curve. It starts negative at low frequencies (maybe -25 to -50 ppm). It runs up to a peak, still at relatively low temperature, of about +25 to +50ppm. Then it runs back down to the -25 to -50ppm range at around 40 to 50 degrees C depending on the precise angles at which the crystal blank was cut. Then it swings back upwards again. The basic error of (only) -25 to -50 ppm can be tweaked out with software pretty easily. (In the bad old days trimming the capacitance across the crystal served the same purpose. And when a precise quartz standard is needed this technique still prevails in various forms.) So basically if you either get lucky or the motherboard was built with a quality (but uncompensated) quartz oscillator you may get relatively good performance over machine room temperatures. It might be as good as a small number of parts per million. About 11 ppm is a second a day for reference. As long as NTP can get in and modify the division ratio, ideally on a tick per tick basis, it can compensate out time variances to the point that you remain remarkably accurate even after a day of being disconnected from the network. The second major problem is aging. Oscillators change frequency with age. Precisely how they change depends on the care with which they are made, the evacuation or leakage of the crystal can, whether the crystal is well baked out, and how long it has been turned on. Once the oscillator has been on for a few days NTP can get a decent estimate of the long term aging characteristics of the oscillator and compensate for it as well. This is probably why server class motherboards have their good reputation. The oscillators are still probably floor sweepings or perhaps slightly better quality premium floor sweepings. But if they are on 24/7 their aging characteristics pretty much settle down and become predictable. As long as it is predictable NTP can correct for it. (FWIW the oscillators on the old block II GPS satellites were intended to include one Cs standard (as an experiment) and three Rb standards. Rb standards are not primary standards. But their phase noise qualities are superior to Cs. Cs is a primary standard. But they do show some variance. (The military decided they did not want enemies to be able to easily plonk a cruise missile down Jimmy Carter's toity in the White House. So they implemented a means to deny accuracy to the enemy. They corrupted the clock frequencies. I built the frequency synthesizer which did this and made comments back up the chain that this is also a prime way to ensure maximum GPS constellation accuracy. When you have a synthesizer capable of correcting an oscillator to parts per ten to the thirteenth accuracy you can move the correction up or down to get it to about 2-4 parts per 10^13th. Then you can move up and down one count to cause the average over time to be something into the ten to the fifteenth range if the oscillator's accuracy over that interval is good enough. The comments I heard come back down the chain amounted to yum yum. (This is essentially what NTP does at tens to
Re: Time Synchronizing Between Two Servers
From: [EMAIL PROTECTED] On 07/05/07, Chuck Swiger [EMAIL PROTECTED] wrote: On May 4, 2007, at 9:10 AM, RW wrote: On Thu, 03 May 2007 11:07:34 -0400 Chuck Swiger [EMAIL PROTECTED] wrote: Sun SPARC machines have good HW clocks, and also some of the newer Macs also seem to have consistently low values in ntp.drift and handle timekeeping well. Does that matter? A good question-- the answer seems to be that it depends. A low value in ntp.drift is inconsequential compared to a constant or near constant value, which many motherboards do not support. The RTC time is almost immediately overridden by ntpdate. The drift is a systematic error that ntpd allows for. I would have thought that the only significant issue, is whether the system loses timer interrupts under load. There are limits to how rapidly ntpd will slew the clock via adjtime (); the smaller the intrinsic drift of the HW clock, the sooner any adjustment (beyond the initial stepping at system boot via ntpdate) will complete. This only matters to stratum-2 and higher systems-- anything with a primary reference clock (GPS/WWV/ACTS/etc) is going to sync to that and ignore the local HW clock entirely. If you really need that ultimate precision, by all means ntpd - ntpd on the LAN is probably the Right Thing, in conjunction with close temperature control. For most uses (keeping two or more given machines within 10ms or so on the same LAN) timed with one machine synced to the outside world via ntpd is simpler at the very least. If you have a 10ms tolerance you fall out of range rather quickly with rather small errors. 1.1ppm over 2.4 hours is about 10ms. And that is the range of variance that you can expect with temperature changes. That is why NTP has a locked loop. It can sense the temperature changes over the polling interval and compensate. Note that typical motherboard oscillators are specified as plus or minus 100 ppm. AT cut crystals pretty much used to be 50 ppm devices until the mass market PC crystals appeared. A reasonably good AT cut crystal should show a plus to minus 25 ppm variance over -20 C to +70 C or there abouts. And if the manufacturer felt good the day yours was made it will show a turnover temperature about that of the inside of your case. But with the really cheap crystals floating around - don't bet on it. Machine rooms have more constant temperatures as a rule. That translates to better stability. And the machines are on 24/7. That translates to MUCH better stability. (Crystals age VERY rapidly for the first few hours after turn on. This has to do with particulates and even air molecules settling on the quartz surface when they are not oscillating.) {^_^}Joanne ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Time Synchronizing Between Two Servers
From: Jeffrey Goldberg [EMAIL PROTECTED] On May 7, 2007, at 5:02 PM, RW wrote: If the time error is zeroed by ntpdate, and there's a drift-file, I don't see that the actual drift value makes much difference. I suspect that any quartz clock is overkill. As someone already mentioned, drift data doesn't really solve the problem if the amount of drift varies (often with temperature, and sometimes dramatically with sleep). The clock on my wife's G5 iMac seems to be erratic, but I haven't (and won't) bother to investigate further. If her system is up to 2 seconds off for a bit after waking from sleep, so be it. (If I ever start using kerberos around the house, I will have to address that.) If a machine is up for months, ntpdate may have been run in the distant past, so you can still a fair amount of error. ntpd is really a very light weight thing. When things are ticking over nicely, it may make just one query every few hours and still keep very good time. Also, if you have a server facing the Internet, you may wish to run a public NTP service on it and contribute it to pool.ntp.org, see http://www.pool.ntp.org/join.html for info. Real NTP goes up to 1024 seconds between polls in my experience. (And it NEVER jam sets when it is working correctly. Of course, with MS crap this is not necessarily true.) {^_^} Joanne ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Anti Spam
I'd also add to your remarks, Martin, that the list has people who serve as few as one person to one fellow who is mostly quiet these days who quite literally worked on a setup handling over a million addresses. Martin is one of the stalwarts on the group. (I've mostly been quiet for the last several months due to lack of time.) Martin's advice is well worth the reading. {^_^} Joanne - Original Message - From: Martin Hepworth [EMAIL PROTECTED] Grant I'd look at your SA setup, make sure you're running v 3.1.8 abd have saupdate-ed recently. Also make sure you're running the URI-RBLs, dcc and razor2. Third party rules from www.rulesemporium.com are a must are as is the the imageinfo plugin. You could always ask on the spamassassin users list for advice on tuning you setup and get some of the spam you get analysed by those of us running well tuned SA setups so you know which extra rulesets will help. Go on as on the SA users list, we're a friendly bunch and will help you with your problem. -- Martin On 4/20/07, Grant Peel [EMAIL PROTECTED] wrote: Hi all, I am posting this question here because I know there are alot of ISPs using FreeBSD (including me) and am hoping to get feedback, either directly to me or to the list. We are wrestling (as I am sure many are), with spam. Up until now we have been employing Spamassassin locally and using some 3rd party Anti-Spam servervices that are getting less and less reliable as the weeks go by. We are considering two hardware solutions, Easyantispam and Barracuda. Barracuda is very expensive, so the most likely candidate is Easyantispam. Does anyone out there have thought on either or both of these? Usability? Reliability? Total Cost of ownership? Integration issues? Any thoughts will be appreciated, -Grant ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Anti Spam
From: Grant Peel [EMAIL PROTECTED] Hi all, I am posting this question here because I know there are alot of ISPs using FreeBSD (including me) and am hoping to get feedback, either directly to me or to the list. We are wrestling (as I am sure many are), with spam. Up until now we have been employing Spamassassin locally and using some 3rd party Anti-Spam servervices that are getting less and less reliable as the weeks go by. We are considering two hardware solutions, Easyantispam and Barracuda. Barracuda is very expensive, so the most likely candidate is Easyantispam. Does anyone out there have thought on either or both of these? Usability? Reliability? Total Cost of ownership? Integration issues? Any thoughts will be appreciated, -Grant For what it is worth I have not heard any good words about Barracuda on the SA mailing list. I have encountered a considerable number of people who agree with Barracuda's detractors. One of the good tools for SpamAssassin is the new FuzzyOCR plugin - IF you can spare the CPU cycles. Per user Bayes filtering and rules will always work better chiefly because of the goose/gander problem - one person's spam is often another person's ham. Greylisting is a great tool for ISPs as long as you use a tool that learns which addresses are real and which are not. In this regard carefully chosen block lists can also be a great help. When applied, either in SA or in the MTA, use a scoring system with the block lists so that one agressive list will not suddenly irritate customers with lost important messages. {^_^}Joanne ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: What is this mean by this term
From: Bill Moran [EMAIL PROTECTED] Dak Ghatikachalam [EMAIL PROTECTED] wrote: I am confused 2 posters have told me that I am top posting , What do we mean by top-posting http://en.wikipedia.org/wiki/Top_posting And those who are pedantic and whiney about it are pathetic twits. {^_-} ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: question on smtp AUTH
From: John Levine [EMAIL PROTECTED] I am wondering about the possibility of someone using a working login and password to send spam through my server. So here is my question; That's depressingly common. Look for abandoned or unused accounts like guest/guest. [EMAIL PROTECTED] - that causes me to wonder if you have a hacked web server php script that is doing the sending. {^_^}Joanne ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: How to choose an UPS?
apcupsd rules. Adam is quite responsive (if he's not traveling) with fixes. USB works for most cases. {^_^}Joanne - Original Message - From: Derek Ragona [EMAIL PROTECTED] If you are going to interface it with the FreeBSD for automatic shutdown, etc. Look at the port for nut in /usr/ports/sysutils. This supports only serial port models in the stable version but supports USB in the experimental version. I use the stable version and have bought Belkin's that have both USB and serial ports on their units for monitoring. This is in their line for UPS-networking. These are pretty good priced too. -Derek At 01:44 AM 11/28/2006, [EMAIL PROTECTED] wrote: I am going to buy an UPS. What should I know and take into account to choose a proper one? Elisej Babenko ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] -- This message has been scanned for viruses and dangerous content by MailScanner, and is believed to be clean. MailScanner thanks transtec Computers for their support. -- This message has been scanned for viruses and dangerous content by MailScanner, and is believed to be clean. MailScanner thanks transtec Computers for their support. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: APC SMART-UPS 750 VA
From: Mark [EMAIL PROTECTED] From: Lowell Gilbert Sounds like it might be the same one I'm using quite happily for my machines at home: [from dmesg:] ugen0: APC Back-UPS ES 750 FW:819.z2.D USB FW:z2, rev 1.10/1.06, addr 2 Hmm, first snare. My new cable, 940-0024D, is not listed in the latest stable apcupsd; only 940-0024C. Will it be a problem if I just set it to 940-0024C? Or perhaps just UPSCABLE smart? Please feel free to visit the apcupsd user's group and ask the question. Adam or somebody else usually answers fairly quickly. mailto:[EMAIL PROTECTED] You might want one of the newer builds. {^_^}Joanne ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Fetchmail: Error message in maillog
From: Gerard Seibert [EMAIL PROTECTED] stuff Not that this is any particular help but is there some special reason you want to run the mail through postfix rather than simply use a tool like procmail straight from fetchmail for your deliveries? That is what I do. This is the magic. I run it as each of two individual users. defaults mda /usr/bin/procmail -d me me is really the user name for the user running the instance of fetchmail. Loren and I use different fetchmail modes. {^_^} ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: imap DON'T DELETE THIS MESSAGE question
From: Mark [EMAIL PROTECTED] From: [EMAIL PROTECTED] I am using imap-uw and so I am familiar with the DON'T DELETE THIS MESSAGE email which stays on the server. I find this annoying, so my question is whether -all- imap servers in the ports have this message that appears. If not, maybe I'll install another. Otherwise I will learn to live with it. Are you also aware you can compile at least qpopper with --enable-uw-kludge in the CONFIGURE_ARGS? That way you can use POP3 and IMAP together without mutual interference. I did that with only the UW code for years until I switched to dovecot. Dovecot has its own little peculiarity that upsets the dumb old mail program, at least over on that GPLed OS. I live with dovecot these days because it is simple and more or less dumb to use for my specific needs. YMMV, of course. {^_^} Joanne ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: sendmail + spamassassin
From: dick hoogendijk [EMAIL PROTECTED] What is the best way to integrate spamassasin with sendmail? MIMEDefang? Best is horridly subjective. I use procmail here with considerable success. However, what works for me is not necessarily ideal for you. Maybe a better description of the intended use would help. {^_^} Joanne, who is getting scared - I almost understand procmail syntax. That must mean I am going insane. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: [OT] spam on freebsd-question@
From: Bill Campbell [EMAIL PROTECTED] On Wed, Sep 20, 2006, Adam Martin wrote: On 2006 Sep 20 , at 08:28, Pietro Cerutti wrote: Hi List, recently (last few days) a lot of spam has begun to arrive on this list could anyone concerned ([EMAIL PROTECTED], ...) check/upgrade the filters? Incidentally I'm subscribed to about a dozen other FreeBSD mailing lists. It's probably not the right place to report this, but these past few days a lot of spam has hit the other lists too. So, I'll tack on a request for them to check the filters on the other lists too. FWIW, the spam that has hit the lists has also failed to trigger my somewhat draconian spamassassin checks as well. What is the spam format? So far I've not noticed any obvious spam on the list. I don't, however, read every message. (I have a rather draconian and well trained SpamAssassin here.) If the spam is image spam with random text there is a way to deal with it in development. It's called FuzzyOCR. And it can be found on the SA wiki under plugins, I believe. {^_^} Joanne ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: spamassassin
From: justins [EMAIL PROTECTED] I`ve installed spamassassin rules on my sentmailserver and i am trying to filter my mail in order to pick out some spam. The spamd process is running only it doesn`t add anything to my mail heather so procmail can`t forward it to the caughtspam folder. How do i start spamassassin in order to filter my incomming mail. Anyone. You want spamd running as a daemon. Then you want lines like this in your procmailrc :0 * 50 * !^List-Id: .*(spamassassin\.apache.\org) | /usr/bin/spamc -t 150 -u $LOGNAME The third line is my personal filter to prevent spamassassin triggering on the SpamAssassin list. Any spam there is FOOD for the anti-spam rules folks. {^_-} This will add markups, probably the default markups. http://www.spamassassin.org/ is a starting source for information. The Wiki link points to the (admittedly pathetic) online documentation. This also has a link to the users mailing list. You're certainly welcome there. http://www.rulesemporium.com/ is a nice place to get pre-canned sets of effective rules to supplement the stock rules. Other help is found with man spamassassin, etc. Also check out man or perldoc for Mail::SpamAssassin::Conf for configuration help. {^_^} ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Origin of hard drive parameters
From: Ian Graeme Hilt [EMAIL PROTECTED] May I point out that I was not interested in CHS alone. My focus was the origin of the hard drives parameters i.e. geometry, which is the subject of discussion. From this discussion and other sources I have learned that CHS, as you say, is arbitrary when referring to modern drives. To be specific, drives adhering to ATA/ATAPI Specification 6 and later. ATA/ATAPI Spec. 5 and earlier used CHS mode for representing hard drive capacity. The reason I am interested in this topic is partially because of my idle curiosity. I'm the type of person interested in the challenge of answering questions. The questions, How does the BIOS automatically detect correct values for hard disks? and, Where is this information stored? have been stuck in my head for at least 6 months. No amount of searching the web provided me with satisfactory results. I tried a few tests of my own, all of which failed to answer my questions. So, I decided to appeal to the FreeBSD-questions mailing list. Mainly because I have found useful answers to other questions here. The other part of my reason is that one of my coworkers thought this information was stored on the platters of the hard drive. I thought differently but I could not _prove_ it. Good reason. And the information is indeed stored on the platters of the hard disks in a place you cannot read directly. It is easier for me to refer to SCSI than to ATA. With SCSI the operating code for the disk is stored on the disk. What comes up at first is enough SCSI to say I'm a disk; and, I'm not ready. When you issue ReadCapacity, Mode Sense, and Inquiry commands you are accessing data stored on the same reserved sectors as the disk's operating code. Special diagnositic commands allow the operating code to be modified. The Mode Select command allows you to reconfigure the disk's geometry. This takes effect after you next low level format the drive if you have no other intervening commands. This allows you to alter the spare blocks and cylinders on the disk as well as configure most other operating parameters. These are stored where operating systems normally cannot see them with normal read/write commands. So your coworker is correct, it is stored on the drive and barring nvram on the drive it is stored on the actual platters. As for storing it - read block zero of the disk. Be DAMN careful not to WRITE to block zero. And if you DO write to block zero at about the time I quit doing such low level stuff and moved to other things there were several SCSI hard disk manufacturers using code that had a defect such that if you wrote more than one disk block starting at block 0 the whole disk was toast until you did a fresh low level format on it. One sincerely hopes THAT defect is gone these days.) {O.O} Joanne Reading through ATA/ATAPI -7 has helped me rephrase my questions into one: When the command READ NATIVE MAX ADDRESS is issued to the device, from where is this information returned? It may be cached somewhere for quick returns. There are tools for tuning disk performance for both ATA and SCSI disks that can alter the operating parameters. Some options read OS cached values. Others dig down and issue the 'standard' query commands and read the actual values off the disk. The disk is the final arbiter, in modern terms. When doing the configuration utility that became arguably the most popular one for the Amiga I ran across some small number of hard disks that returned off by 1 values for size. (Micropolis was one offender at one time.) And I also ran across drives delivered with only the first few megabytes formatted. So I built into the configuration utility an actual search for the last readable block. I used the lesser of that value and the value the drive declared to Read Capacity commands. At least the formats it generated were safe. (I think it was either Maxtor or CDC/Seagate that had the partially formatted drives escape from their factory.) I hope this answers questions enough so that the next question is more obvious. (And in retrospect - the drive is the only thing that knows the precise formatting parameters. So it is quite logical that the original source for the size data is the drive itself. This is not always, in my experience, a constant for all revisions of the same model of drive.) {^_^} Joanne ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Newbie Experience
From: Alex de Kruijff [EMAIL PROTECTED] On Sun, Sep 10, 2006 at 11:42:19PM +0200, Andreas Davour wrote: Too bad you felt it was that horrific. In my experience FreeBSD is sometimes a bit harder than modern Linux distros to install, but are much nicer to maintain and use. I found leaning linux was much harder because there wore no mailing list compaired to the ones FreeBSD has. A: Because it fouls the order in which people normally read text. Q: Why is top-posting such a bad thing? A: Top-posting. Q: What is the most annoying thing on usenet and in e-mail? Top-posting! You must HATE blogs. {^_-} ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Origin of hard drive parameters
From: Ian Graeme Hilt [EMAIL PROTECTED] On Monday 11 September 2006 2:42 am, jdow wrote: From: Ian Graeme Hilt [EMAIL PROTECTED] May I point out that I was not interested in CHS alone. My focus was the origin of the hard drives parameters i.e. geometry, which is the subject of discussion. From this discussion and other sources I have learned that CHS, as you say, is arbitrary when referring to modern drives. To be specific, drives adhering to ATA/ATAPI Specification 6 and later. ATA/ATAPI Spec. 5 and earlier used CHS mode for representing hard drive capacity. The reason I am interested in this topic is partially because of my idle curiosity. I'm the type of person interested in the challenge of answering questions. The questions, How does the BIOS automatically detect correct values for hard disks? and, Where is this information stored? have been stuck in my head for at least 6 months. No amount of searching the web provided me with satisfactory results. I tried a few tests of my own, all of which failed to answer my questions. So, I decided to appeal to the FreeBSD-questions mailing list. Mainly because I have found useful answers to other questions here. The other part of my reason is that one of my coworkers thought this information was stored on the platters of the hard drive. I thought differently but I could not _prove_ it. Good reason. And the information is indeed stored on the platters of the hard disks in a place you cannot read directly. How do you know this is true? A friend of mine, who goes or went by the ID scsi, worked at Micropolis then Hitachi then Maxtor then Seagate. I watched her put the operating code on the disks. I also have written and used a MODE SELECT/MODE SENSE utility that allowed me to alter the drive's formatting. I KNOW that data was not downloaded to the drive by the OS. cough I had adequate source for the Amiga OS by that time to know. {^_-} The OS knew how to read the data it needed off the drive. And so did the RDPrepX utility I wrote. If it was not stored on the drive NOT in one of the active user sectors then it was PFM that the drive worked at all. (I still have a fondness for the Amiga Rigid Disk Blocks format. If I can fix the BSD machine's Chinese Capacitor Syndrom and get it back on line I plan to make sure BSD has the ability to at least read the Amiga RDBs. The filesystem is another ballgame, though. That may already be covered. But most people get the RDB parsing wrong one way or another, particularly for 2k physical block size magneto-optical stoage.) It is easier for me to refer to SCSI than to ATA. With SCSI the operating code for the disk is stored on the disk. What comes up at first is enough SCSI to say I'm a disk; and, I'm not ready. When you issue ReadCapacity, Mode Sense, and Inquiry commands you are accessing data stored on the same reserved sectors as the disk's operating code. Special diagnositic commands allow the operating code to be modified. The Mode Select command allows you to reconfigure the disk's geometry. This takes effect after you next low level format the drive if you have no other intervening commands. This allows you to alter the spare blocks and cylinders on the disk as well as configure most other operating parameters. These are stored where operating systems normally cannot see them with normal read/write commands. So your coworker is correct, it is stored on the drive Actually, he was arguing this information was stored on the platters of the hard drive. I was arguing it could be stored in a chip on the hard drive which I'm thinking of as the CMOS for a motherboard. I can verify that the drives at the time I was working on them did not have nvram on the drives. And you cannot store it on the motherboard and still have the disks portable, which simple experiments can prove. The earliest drives were VERY parts deficient. As they progressed the companies got smart and figured We have this EXCELLENT non-volatile storage quite handy to us so we'll store the firmware with the parameters on the platters and simply start counting block zero after this data space. It works. I was astonished, twice (once at the cleverness and second at my stupidity for not thinking of it before hand), when scsi told me about it. Gayle really digs disk drive internals. Erm, and by accident I latched on to a copy of the Micropolis code for one of the last disks they made. It's in there. And I've NEVER shared it. 'T would not be right to do that. and barring nvram on the drive it is stored on the actual platters. This is exactly my point. There is cause for reasonable doubt that it isn't stored on the platters. See my Duh reaction above. Why spend MORE money for nvram when there is a nice rotating non-volatile store quite handy. It can bootstrap nicely several ways. 1) Read parameters so it knows when to step heads from block zero or zero and one. Then load the operating firmware, switch to it, and run
Re: Origin of hard drive parameters
From: stheg olloydson [EMAIL PROTECTED] On 9 Sep 2006 14:54:09 - ihilt wrote: On Wednesday 06 September 2006 7:54 pm, jdow wrote: Ok. Maybe the better question is: in either case, C/H/S or LBA mode, where are these parameters stored? They flat out are not stored anywhere. There is a standard algorithm published by the VESA people, I believe, that provides the data for all SCSI drives and modern IDE/ATA/SATA drives. Do you know the name of this standard or where I can get it? Ian Graeme Hilt Actually, the stardard is created by the T13 Technical Committee of the InterNational Committee for Information Technology Standards (INCITS), formerly the Accredited Standards Committee X3, Information Technology. Its standards are published by ANSI. The one you are looking for is ANSI INCITS 397-2005 AT Attachment - 7 with Packet Interface. You can download a pdf from techstreet.com for $30.00US. Just search for 397-2005. You can also get a free copy of a working draft of a standard withdrawn in 2002, X3.298-1996, from t13.org. While the information you are looking is unlikely to have changed between 1996 and 2005, you are in a better position to weigh the benefit to your project of saving $30.00US versus using possibly horribly wrong information. (It is a _working draft_ from 1996, after all.) It's probably cheaper to read the code for the GNU BIOS project or for things like fdisk. It should be present in both places. {^_-} ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Origin of hard drive parameters
From: stheg olloydson [EMAIL PROTECTED] On 9 Sep 2006 14:54:09 - ihilt wrote: On Wednesday 06 September 2006 7:54 pm, jdow wrote: Ok. Maybe the better question is: in either case, C/H/S or LBA mode, where are these parameters stored? They flat out are not stored anywhere. There is a standard algorithm published by the VESA people, I believe, that provides the data for all SCSI drives and modern IDE/ATA/SATA drives. Do you know the name of this standard or where I can get it? Ian Graeme Hilt Actually, the stardard is created by the T13 Technical Committee And my idle curiosity would like to know why Ian is interested in such an antiquated topic? There is a size limit beyond which CHS simply does not work. The setting of CHS is in practice utterly arbitrary. For (many/most?) USB ram disk plugins the T13 standard does not apply due to internal ram layout. And so forth. (Certainly on the Amiga this CHS nonsense made no practical difference except on floppy disks or ST-506 based disk drives. And in playing with recovering a blown block zero on an Windows machine (more than once) I learned that CHS is utterly arbitrary on Windows. It is arbitrary with USB ram disk modulo the ram disk's internal layout and spares setup. And since large disks for which CHS runs out of size abound I imagine there is not a place in the 'n'x world where CHS matters. So I am suspecting historical curiosity if anything else. As for storing it - read block zero of the disk. Be DAMN careful not to WRITE to block zero. And if you DO write to block zero at about the time I quit doing such low level stuff and moved to other things there were several SCSI hard disk manufacturers using code that had a defect such that if you wrote more than one disk block starting at block 0 the whole disk was toast until you did a fresh low level format on it. One sincerely hopes THAT defect is gone these days.) {O.O} Joanne ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Efficacy vs. friendliness [Was: How to fix init - /etc/ttys?]
From: Pete Slagle [EMAIL PROTECTED] Gary Kline wrote: SOAPBOX Anyway, this is to the entire list: A week or so ago I loaned my 5.3 set to a non-geek friend who had occasionally been using RH. He brought the box of discs back and said it was too hard to install; that RH had a much easier installation process. True. So I gave him my old Ubuntu boot disk. He's happy with it. ---I realize how much smaller the FBSD hacker base is Still, having a GUI-ish intro makes sense in gaining new converts. I'm still here because this Berkeley distro really *is* solid. One fatal trap in 11 years I can handle. SOAPBOX It's a test. If your friend thinks FreeBSD is difficult to install, then he is probably better served by something else. There are many choices. All is well. The idea that FreeBSD should be altered to better compete in a popularity contest for new users comes up regularly on this list, but that idea is suspect. Many FreeBSD users see it as a feature, an advantage, that no GUI-ish-ness impedes access to the O/S. Which is not to say that the GUI-ish stuff isn't available, but the beauty is that it isn't in the way when you don't need or want it. Changing FreeBSD to be more friendly to new users would inevitably make it less appealing to the experienced users who value concision, efficiency, and direct control (who comprise it primary user base) and thus is to be resisted. FedoraCore 5 certainly is easier to install. However, (due to a need for some sleep and food in there somewhere), the install and initial update is still churning along almost 20 hours after it started. Even on a DSL line a gigabyte of update takes quite awhile to install. And this is before I install any of the custom configuration needed to make it perform its particularly needed job. I noticed that FreeBSD 5.x was somewhat quicker than that to get up, running, and up to date. But it does require some intelligence to use it and bend your mind around the slight differences. It looks so similar at first glance there's little clue that you're learning a different language. Of course there are the desktop BSD forks from FreeBSD that the fellow could consider. {^_^} Joanne ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Origin of hard drive parameters
From: Chuck Swiger [EMAIL PROTECTED] On Sep 6, 2006, at 1:06 PM, Hilt, Ian wrote: The hard disk has an on-board controller which answers the ATA IDENTIFY DEVICE command with the hard drive parameters used by the BIOS, assuming that the BIOS is operating in the legacy C/H/S mode rather than the newer LBA mode which uses absolute block numbers. Ok. Maybe the better question is: in either case, C/H/S or LBA mode, where are these parameters stored? At one time, probably on an EEPROM within the hard drive; nowadays, probably nowhere-- the drive controller computes some numbers dynamically depending on whether the C/H/S versus LBA mode jumper is set, or whether the BIOS makes the extended Int13H call to do LBA mode (or whatever the exact mechanism there is) They flat out are not stored anywhere. There is a standard algorithm published by the VESA people, I believe, that provides the data for all SCSI drives and modern IDE/ATA/SATA drives. Inside the drives only one number is normally of interest to the computer operating system, the total number of available blocks on the drive per its current formatting. Spare blocks and cylinders, variable numbers of blocks per track, and various oddball formattings that at LEAST go back as far as the old 20 meg Miniscribe SCSI drives make any CHS that a drive could deliver meaningless. (That old Miniscribe had spares at the end of a cylinder that were to be applied anywhere within the cylinder. Thus there was no constant blocks per track within a cylinder. It had spare tracks scattered around the drive so that you could recover if a whole track was scratched. And so forth. I struggled for some (wasted) time trying to find an optimal CHS geometry I could feed the operating system (Amiga at the time) to speed up disk accesses. That old thing was impervious to optimization. Ever since I've strongly advised people to ignore CHS entirely unless they have a real live ESDI or ST-506 drive in their possession. I suppose it might matter for IDE drives nearly that old. But anything likely to be alive today has CHS as a pure fiction that is not all that particularly useful even at the filesystem optimization levels.) {^_^} Joanne ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: freebsd-specific postfix antispam howto
From: Dave [EMAIL PROTECTED] Hello, Does anyone have any information on this? I've googled and have found a lot of information for Linux and even an OpenBSD howto, but i am looking for something freebsd-specific, preferably fbsd6. I'm having issues getting all the services, amavisd-new configured/starting up properly and would like to read someone's all-integrated freebsd-specific solution if any, to get an idea as to what i'm doing wrong? 1) It would be entertaining if not helpful to know WHAT it is not doing right as you see right. 2) There is a world of help on the spamassassin-users list - if the problem is SpamAssassin and not amavisd-new. (Admittedly I am biased against that thing based on the number of problems it seems to spawn due to people not understanding its behavior.) Those seem like a good starter question and observation. The SA Users list is mailto:[EMAIL PROTECTED] Also visit the wiki at http://www.spamassassin.org {^_^} ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Time zone isn't displaying right one with 'tzsetup'
From: Robert Gabaree [EMAIL PROTECTED] Hi, I tried to update my new server to the new time zone by running 'tzsetup' and selecting Eastern. However, instead of showing 11:45, it shows 6:45 - 5 hours later. I even tried to do a 'cp /usr/share/ zoneinfo/EST5EDT /etc/localtime but it didn't help. What can I do to fix it? What time does your BIOS say? And did you tell Linux which time zone the BIOS thinks it is in? There is a UTC=true or UTC=false line in /etc/sysconfig/clock you might investigate. {^_^} ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Superuser, newwannaBe
The username you want is root. Give it the root password you entered during install after giving it that username and the login prompt will exhibit magical properties. {^_-} Joanne's feeling silly tonight. Maybe it's bed time. - Original Message - From: jonathoncadena [EMAIL PROTECTED] Well, I can't figure out how to log in as superuser to configure. New instructions to the process can be located. I did create a password- no user name was requested. new system install also indicates Bind address already in use Please help me. Sincerely, Jonathon Pentium 3 596 MgH Bsd i 386 version 6.1 ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Spoofers, Spammers Other Bad Guys
Well, you can do it with firewall rules. You can do it in the MTA. I'm sure there are other ways to do it as well. This might be a useful tool for doing this without blocking some of the good guys in that part of the world, like Oz and NZ. http://ftp.apnic.net/stats/apnic/delegated-apnic-latest {o.o} Joanne. - Original Message - From: beno [EMAIL PROTECTED] Greg, I meant give me an example of the below. I don't know how the confusion occurred on the other LOL! TIA, beno Greg Hennessy wrote: Killing incoming 25/tcp from cidr blocks assigned to various parts of APNIC and other registries. Much easier and far less hassle than blocking individual addresses. Could you give an example of this? TIA. beno ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: 17 or 19
Please excuse me for being picky here. Contrast ratio is not nearly as important as color tracking if color fidelity is important to the user. I'd look for good reviews on the two Somebody who is spending all her time in Eclipse developing non-graphics software a higher contrast ratio might reduce fatigue. But if the person is using graphics a lot and visual fidelity is important I'd recommend finding a site on the web that reviews monitors for their various colorimitry factors. (And a gamer might want to check for reviews that are gamer related.) {^_^} Joanne From: Derek Ragona [EMAIL PROTECTED] You need to compare more than just the resolution. Differences in LCD's are digital vs analog, some do both. Digital is preferred if your video will support it. The contrast ratio: 300:1, 500:1, 600:1, 1000:1, etc. More is better in contrast. Last is the update speed in ms. You want faster update speeds when given a choice. The update speed effects how crisp the image is when changing, say viewing a video of gaming, but even in regular refreshing of the screen. -Derek At 04:58 PM 8/2/2006, dick hoogendijk wrote: Two LCD screens. Both have the same resolution (1280x1024) The 19 is $100 more expensive as the 17 What would to your opinions be the right thing to do. Go for the 17 or the larger (but probably a little less crystal sharp) 19 one. I'm not that rich. Probably my doubts are rooted in this;-) Thanks for any advice. -- dick -- http://nagual.nl/ -- PGP/GnuPG key: F86289CE ++ Running FreeBSD 6.1 +++ The Power to Serve ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] -- This message has been scanned for viruses and dangerous content by MailScanner, and is believed to be clean. MailScanner thanks transtec Computers for their support. -- This message has been scanned for viruses and dangerous content by MailScanner, and is believed to be clean. MailScanner thanks transtec Computers for their support. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: spamfilter
Precisely how is this different from the basic SpamAssassin capabilities either via MySQL or via user accounts? I use per user BAYES filtering and per user rules and scores on the machine here. {^_^} Joanne - Original Message - From: User Freebsd [EMAIL PROTECTED] If you want a truly user-friendly spam/virus solution, check out: http://www.renaissoft.com/maia/ I have this backing 200 VPS, including postgresql.org itself, and its literally a dream, as it allows *each user* to individually tailor their settings ... On Wed, 2 Aug 2006, Olivier Nicole wrote: 1) spamd (part of SpamAssassin) is written in perl. This is fine for a workstation, not so much for a high-volume mail server. SpamAssassin itself is written in Perl... But it can be run on a remote server, it does not have to be on the machine running sendmail. 2) installing spamass-milter requires rebuilding sendmail. (I have no idea about other MTAs.) This usually sounds more frightening than it is, but can still lead to complications. I think stock sendmail is installed with milter, so it is only a matter aof configuration, not of compiling. Olivier ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: SATA Cables Suck!
From: Nikolas Britton [EMAIL PROTECTED] The number one problem I've had with SATA RAIDs has been the cables! 4 times I've lost arrays because the cables came loose or some other stupid problem with the cables. I need a vendor that has high quality latching SATA-II cables. Also... what can we do with the old cables to fix them... super glue them on?... Here's a question... Are all SATA cables rated for SATA-II? I've never seen a definitive answer to this question and newegg.com does not sells SATA-II cables... Also does the spec call for shielded cables? frustrated, need a place to unload thanks. First google hit SATA-II cable specification: http://www.satacable.com/ Second google site hit http://www.tigerdirect.com/applications/SearchTools/item-details.asp?EdpNo=2076134CatId=84 I've done business with Tiger Direct. They were prompt for delivery. Searching for things on their site was annoying, though. Adding site:newegg to the search gives: http://www.newegg.com/Product/Product.asp?Item=N82E16812207001 and http://www.newegg.com/Product/Product.asp?Item=N82E16812162003 First has a right angle connector. You were saying? {^_^} ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: another newbie
From: Andrew Pantyukhin [EMAIL PROTECTED] On 7/2/06, Isaac Friedman [EMAIL PROTECTED] wrote: I am new to UNIX but know the basics of getting around, writing simple shell scripts, etc. Is there any way to use a short perl program as a shell script? sat64% cat __END__ ./script.pl #!/usr/local/bin/perl -w print Hello world!\n; __END__ sat64% chmod a+x ./script.pl sat64% ./script.pl Gee, Andrew, you didn't need to obfuscate it that way. At least edit out your command prompts before posting it. Isaac, what he meant is to create a file named script.pl containing the two lines: ===8--- snip #!/usr/local/bin/perl -w print Hello world!\n; ===8--- snip Then change its file mode to allow it to execute with the command: chmod a+x ./script.pl Finally execute the command by typing: ./script.pl The ./ part of the chmod command is not strictly needed. But it is needed when executing the command from your home directory or most other directories. Your current directory is not implicitly on the search path for executable files on most well setup 'ix systems. {^_^} Joanne ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: HDD Geometry Issues
From: Sean M. [EMAIL PROTECTED] My HDD is an ST340810A 3.31. The BIOS gives its stats as: Cylinder: 19158 Head:16 Precomp: 0 Landing Zone: 19157 Sector: 255 I found the official doc at http://www.seagate.com/support/disc/specs/ata/st340810a.html although I'm not too sure how to interpret it. When I go to allocate disk space during install, it says that a geometry of 77545/16/63 is incorrect and uses instead 4865/255/63. Even when I reset the geometry to 19158/16/255, it says that's wrong too. If I use the entire disk with 'A', I see: Offset Size(ST) End Name PType Desc Subtype 06362 --- 12 unused 0 63 78156162 78156224 ad0s1 8 freebsd165 78156225 9135 78165359 --- 12 unused 0 In real terms modern operating systems don't give a moldy Fig Newton about the CHS specifications of the drive. They simply multiply the numbers out and use absolute block numbers, instead. I do note that the 4865/255/63 geometry is smaller than the BIOS geometry by a little. The 77545/16/63 is 720 blocks bigger than the BIOS geometry. Draw your own conclusions. Now, the question is Precisely how many BLOCKS are there on the disk? If FreeBSD insists on something smaller based on its own CSH algorithm I'd be wondering why. In the bad old days of ST-506 drives this was meaningful. The CHS values could be manipulated to speed up disks on machines using these drives. But even the old Commodore 6502 based machines and old Apple machines showed that there was no good reason for the number of blocks per head per 360 degrees of the surface needs to be constant. The ONLY thing that seems to be stuck in the old CSH model are floppy disks for DOS type PCs. Hard disks use varying numbers of blocks per track to increase capacity by keeping the bit density roughly constant. CDs and DVDs carry this one more step and use a spiral track. With such variable track density disks no single CSH value is particularly good for optimizing seeks. You must know the disk structure in detail to work those optimizations. So it's easier to simply think in terms of blocks and work from there. All that said, if the BIOS total block count is not incredibly wrong (landing zone WITHIN the recording area of the disk?) I'd wonder why the FreeBSD tool would not accept its numbers. If the final numbers you gave are real then all three sets of values should work. In any case the total size lost from the largest to the smallest of those CSH figures is a mere (by today's standards) 4677120 bytes, oddly that's precisely what the figures you show. The Seagate site shows the size is consonant with the 77545/16/63 number. BUT note this from right at the bottom of the Seagate page you cite: Seagate reserves the right to change, without notice, product offerings or specifications. (04/10/2001) They may have made a change. I wonder if there is a utility that will return the actual capacity that the drive reports to the OS. {^_^} Joanne (Did SCSI drivers for the Amiga for quite a few years and watched the development of these techniques take place.) ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: /bin/cat: Permission denied
From: Viktoras Veitas [EMAIL PROTECTED] Hello. I suddenly cannot run cat command as /bin/cat file appears to be without execute permissions (all other files in /bin directory are with them) and I get /bin/cat: Permission denied error. I had a misfortune to chmod 555 /bin/cat, then my machine panicked (when trying to run cat) and was not able to boot until I changed the /bin/cat permissions back to read-only. Anyway the system running again but I cannot install almost any port that uses cat in ./configure script. I am running FreeBSD 5.4-RELEASE-p16 on Intel(R) Pentium(R) 4 CPU 3.00GHz (2992.52-MHz 686-class CPU), with two 200GB SATA disks and RAID1 geom mirror. Output of dmesg is attached as file. Question#1: How can I get rid of this problem and repair my cat file to be able to install new ports again? Question#2: Why did this happen? I mean everything worked fine for a year or more until I decided to use hylafax on my machine and found that it cannot do documet conversion. Maybe some kind soul you trust will send you a copy of the 5.4 cat command. I'd suspect you redirected something to /bin/cat by mistake. {^_^} Joanne ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: i wish to buy your site
From: Jerry McAllister [EMAIL PROTECTED] On Sun, June 4, 2006 11:54, Richard Collyer wrote: bill hunt wrote: dear webmaster. My name is Bill Hunt and I'm interested in purchsing your site. the price is nagotiable and I'm willing to pay as much as we can agree on. please let me know if it's ok by you and we'll start nagotiating. yours, Bill Wow. Microsoft in a if you can't beat 'em buy 'em. From Bill himselfbe scared...very scared! ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] No, guys. All of *you* who responded to this mail failed to realize that this is a spam message, and that it is most probably just an alternative scam to the nigerian stuff. No. They all realized it. That is why the responses were so silly - such as the one included above.No-one took it seriously. Of course it does serve to verify Email addresses for anyone who responds which is what the spammer wants. jerry Jerry, if I ran a spam trap you can bet I'd have used that address to reply. I'd also arrange to sound rather naive, foolish, and upset while doing so. Of course, I could get a little dig in that people from Ann Arbor would not be carrying on the way you are about it. But I'll be nice and not post anything. Flames aren't worth it. (Of course, on a Fedora group I might do differently.) {^_-}Univ Mich 1967 1968. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: release 6.1
From: Erik Trulsson [EMAIL PROTECTED] On Wed, May 31, 2006 at 03:49:42PM +0300, mehmet gogebakan wrote: i would like to install 6.1-RELEASE to my computer , configuration is: 128 MB SDRAM LG cdrom 52x 8 MB Grafic card 40 gb hd p3 800 mhz processor azza motherboard could you please tell me whether this configuration is suitable, if not tell me the minimum configuration it should be.. Running 6.1 on that should not be any problem. In fact you could take a computer with only half the RAM of the above, half the disk space, and half the CPU speed, and still not have a problem running FreeBSD 6.1. I would suppose you could run it in an even smaller machine if you had the patience. (After all you CAN run gasp Windows XP on a 100MHz machine with 32 megs of ram if you are REALLY REALLY patient.) The above machine might benefit from additional ram if he intends to do mail filtering on the machine. Tools like SpamAssassin eat ram for lunch and leave very little for dinner. {^_-} Joanne ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Disk Geometry Errors.
From: Jerry McAllister [EMAIL PROTECTED] One thing that comes to mind, as I read below, is that it appears you setup the drives for RAID 1. Then you transplanted to them to a RAID 5 controller. Of course the partition data will be wrong. The hidden blocks the two RAID controllers use are probably different and the method of storage for RAID 5 is quite different from that used by RAID 1. (Worse yet, you may have managed to hose the drives so that any data on them is gone.) {^_^} Joanne - Original Message - From: Lisandro Grullon [EMAIL PROTECTED] Hi Kevin and thanks for repplyng, sysinstall does not crach at all, the problem is that the information is not retain by the label. I keep getting that contact Disk Geometry error when I try fdisk into the volume/drive. Any ideas what is happening. let me know what other information you may need to assist me further. I didn't follow all of this thread, so I may be missing something, but check the FAQs and the list archives. Geometry error messages and apparent (but not actual) mismatched have been discussed many times. Nowdays disk geometry as used by the OS is generally virtual and does not exactly reflect the actual physical geometry. In other words, from the point of view of how you use it, unless you are creating special driver code, the geometry is fiction and, as long as it works, take what the OS says and ignore any messages from fdisk. Now, if it is truly failing, you have non-fictional problems. That is the lecture I was getting ready to deliver when I noticed RAID 5 and RAID 1 with different controllers. RAID 5 and RAID 1 are not compatible. And there is a good chance that two different breeds of RAID firmware would store meta data for disk format differently. {^_-} (Heck, I have seen two Promise cards that store it differently or seemed to.) On 5/24/06, Kevin Kinsey [EMAIL PROTECTED] wrote: Lisandro Grullon wrote: Good Morning, Last night I was trying installing a new Areca controller 1120 8 ports using a 5 bay (300GB seagate) drives Raid 5. The main OS is install using the SATA controller in RAID 1 configuration of the mother board, the addition of last night was a separate controller I install.The install when good and I installed my modules in the kernel, now my problem is when I try to partition the volume using fdisk/label with system install it is giving me nasty disk geometry incorrect error, can anyone tell me what is this all about? Thank you. We'd probably need some more information. Does sysinstall crash? Does the fdisk information get written to disk anyway? The label? KDK -- Zero Mostel: That's it baby! When you got it, flaunt it! Flaunt it! -- Mel Brooks, The Producers -- Lisandro Grullon New York City College of Technology Division of Continuing Education Director of Network Operations Lisandro Office:1718-552-1178 Lisandro E-mail: [EMAIL PROTECTED] The only reason for time is so that everything doesn't happen at once.. Albert Einstein ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Disk Geometry Errors.
Usually you have to set RAID configurations in the SATA card's BIOS. Once its BIOS thinks you have a RAID configuration you have a chance of proceeding. (Note that the AGP drivers for that motherboard MAY have problems. The W-s drivers certainly did when we got one here to setup. I finally tracked down the problem and it's been a wonderful card ever since. We have an LSILogic SATA card in it. And that had to be setup in the BIOS to make it happy. The problem was with AMD supplied AGP drivers.) {^_^} - Original Message - From: Lisandro Grullon [EMAIL PROTECTED] The current setup I got in the machine is using 2 SATA (200GB each) with the raid controller that is build into the motherboard (tyan S2885). I wanted to add additional space and I got a Areca 1120 which could hold another 8 sata drives. I only have a 5 bay enclosure so I went ahead and I orderd 5 (300GB) drives. I configure the controller to use Raid 5 with 4 drives and keep 1 as spare in case of a failure. The problem that is bothering me is that the OS works great with the RAID 1 configuration. When I boot into FBSD it all goes ok and I loging and everything , but when I try configuring the RAID 5 disk set using sysinstall fdisk I get the disk geometry error right after selecting the disk set. I am not sure, but is there a way to find out the disk geometry that the controller bios is assuming is the correct one. If there is a way to find that information our, I can just use the G option in fdisk and input the correct disk geometry myself. What aproach is the best one to take in my case. Thank you. Lisandro On 5/25/06, Lisandro Grullon [EMAIL PROTECTED] wrote: Is interesting, this is what reca repply back to me. I think areca should add some sort of utility in the controller to find out the disk geometry information in the fly and stop blamming FBSD. Dear Sir, This is Kevin Wang from Areca Technology, Tech-Support Team. regarding your problem, it looks like a FreeBSD bug, here is a discussion i found in google : http://www.linuxquestions.org/questions/showthread.php?t=429394 Best Regards, Kevin Wang Areca Technology Tech-support Division Tel : 886-2-87974060 Ext. 223 Fax : 886-2-87975970 Http://www.areca.com.tw http://www.areca.com.tw/ Ftp://ftp.areca.com.tw ftp://ftp.areca.com.tw/ On 5/24/06, Lisandro Grullon [EMAIL PROTECTED] wrote: Hi Kevin and thanks for repplyng, sysinstall does not crach at all, the problem is that the information is not retain by the label. I keep getting that contact Disk Geometry error when I try fdisk into the volume/drive. Any ideas what is happening. let me know what other information you may need to assist me further. On 5/24/06, Kevin Kinsey [EMAIL PROTECTED] wrote: Lisandro Grullon wrote: Good Morning, Last night I was trying installing a new Areca controller 1120 8 ports using a 5 bay (300GB seagate) drives Raid 5. The main OS is install using the SATA controller in RAID 1 configuration of the mother board, the addition of last night was a separate controller I install.The install when good and I installed my modules in the kernel, now my problem is when I try to partition the volume using fdisk/label with system install it is giving me nasty disk geometry incorrect error, can anyone tell me what is this all about? Thank you. We'd probably need some more information. Does sysinstall crash? Does the fdisk information get written to disk anyway? The label? KDK -- Zero Mostel: That's it baby! When you got it, flaunt it! Flaunt it! -- Mel Brooks, The Producers -- Lisandro Grullon New York City College of Technology Division of Continuing Education Director of Network Operations Lisandro Office:1718-552-1178 Lisandro E-mail: [EMAIL PROTECTED] The only reason for time is so that everything doesn't happen at once.. Albert Einstein -- Lisandro Grullon New York City College of Technology Division of Continuing Education Director of Network Operations Lisandro Office:1718-552-1178 Lisandro E-mail: [EMAIL PROTECTED] The only reason for time is so that everything doesn't happen at once.. Albert Einstein -- Lisandro Grullon New York City College of Technology Division of Continuing Education Director of Network Operations Lisandro Office:1718-552-1178 Lisandro E-mail: [EMAIL PROTECTED] The only reason for time is so that everything doesn't happen at once.. Albert Einstein ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Disk Geometry Errors.
One thing that comes to mind, as I read below, is that it appears you setup the drives for RAID 1. Then you transplanted to them to a RAID 5 controller. Of course the partition data will be wrong. The hidden blocks the two RAID controllers use are probably different and the method of storage for RAID 5 is quite different from that used by RAID 1. (Worse yet, you may have managed to hose the drives so that any data on them is gone.) {^_^} Joanne - Original Message - From: Lisandro Grullon [EMAIL PROTECTED] Hi Kevin and thanks for repplyng, sysinstall does not crach at all, the problem is that the information is not retain by the label. I keep getting that contact Disk Geometry error when I try fdisk into the volume/drive. Any ideas what is happening. let me know what other information you may need to assist me further. On 5/24/06, Kevin Kinsey [EMAIL PROTECTED] wrote: Lisandro Grullon wrote: Good Morning, Last night I was trying installing a new Areca controller 1120 8 ports using a 5 bay (300GB seagate) drives Raid 5. The main OS is install using the SATA controller in RAID 1 configuration of the mother board, the addition of last night was a separate controller I install.The install when good and I installed my modules in the kernel, now my problem is when I try to partition the volume using fdisk/label with system install it is giving me nasty disk geometry incorrect error, can anyone tell me what is this all about? Thank you. We'd probably need some more information. Does sysinstall crash? Does the fdisk information get written to disk anyway? The label? KDK -- Zero Mostel: That's it baby! When you got it, flaunt it! Flaunt it! -- Mel Brooks, The Producers -- Lisandro Grullon New York City College of Technology Division of Continuing Education Director of Network Operations Lisandro Office:1718-552-1178 Lisandro E-mail: [EMAIL PROTECTED] The only reason for time is so that everything doesn't happen at once.. Albert Einstein ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Zero Copy, FreeBSD and Linus Torvalds opinion
From: Scott Long [EMAIL PROTECTED] Iantcho Vassilev wrote: Hello guys, in bsdnews.com i found this link http://kerneltrap.org/node/6506 and particulary this: I claim that Mach people (and apparently FreeBSD) are incompetent idiots. Playing games with VM is bad. memory copies are _also_ bad, but quite frankly, memory copies often have _less_ downside than VM games, and bigger caches will only continue to drive that point home. What do you think about it? I claim that Linus is an attention whore. How about that? Whether or not he is makes no difference. The context of that statement involves somebody asking why Linux does not have Zero Copy when BSD does. It seems, correctly or not, he believes the Mach people DO use Zero Copy still and given the question (and apparently FreeBSD) fit the answer. It's been observed here that Linus got it wrong about FreeBSD using Zero Copy even though it is (apparently from this discussion) still available. But then, it's not worth his time to actually track what FreeBSD is doing. He's concentrating on Linux, which makes sense. I'd not expect the equivalent FreeBSD people to be up on all the nuances of Linux, either. So rather than trying to make a huge flame war about this how about you just drop it. It makes no difference to the world here if Linus IS an attention whore or not. He's not HERE and he's not DEMANDING attention from anyone here. So let's just drop it rather than be drips about it. {^_^} Joanne ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Antivirus to scan files before going onto a Windows machine:clamav?
From: John Nielsen [EMAIL PROTECTED] On Saturday 29 April 2006 09:06, Jim Stapleton wrote: Anyone have experience with ClamAV? Good, Bad, Ugly? Should I use something else, or is the only good alternative pay/expensive (such as avast)? Am I better at leaving the antivirus stuff to the Windows machine (which has McAfee Enterprise)? I use ClamAV to scan all incoming e-mail on my mailserver with very good results. I haven't ever used it as a file-scanner but I imagine it would serve adequately. I frequently use AVG antivirus as well. Their free edition is free to download and use at home on a single computer. See http://free.grisoft.com for more info. The non-free versions are more reasonably priced and (IMO) in some ways superior to the other Windows AV products I've used, most notably in ease-of-use and staying up-to-date. I have enabled the Earthlink AV blocker. I run SpamAssassin here with the ClamAV plugin. Then I run F-Secure on the main machine and Norton on the second machine. I figure defense in depth is a fairly good thing. {^_^} Joanne ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Antivirus to scan files before going onto a Windows machine:clamav?
From: Gerard Seibert [EMAIL PROTECTED] Jim Stapleton wrote: Anyone have experience with ClamAV? Good, Bad, Ugly? Should I use something else, or is the only good alternative pay/expensive (such as avast)? Am I better at leaving the antivirus stuff to the Windows machine (which has McAfee Enterprise)? Background: System lags occasionally, and has crashed a few times, and is getting disk errors (both HDs, one IDE, one SATA started this at the same time). I suspect the motherboard, but can't be certain, could be Mem or PSU. Could also be virus. So, I want to scan my backed up files while reinstalling Windows on the other machine, before letting them go back home to play. Thanks -Jim Personally, I use ZoneAlarm Suite on my WinXP machines. I have several networked together with my FreeBSD machine. On several occasions, ZoneAlarm has caught a virus that ClamAV missed during mail scanning. I am not sure why though. From what I could gather, the ClamAV signatures had not caught up to the new virus. I reload the Clamav signatures every 4 hours. The ZoneAlarm signatures are done once a day, however. Different tools have different update cycles, different crews working on them, and your machine has different automatic updates for the various AV tools. That's why I like my defense in depth. So far nothing has triggered the final F-Secure stage. But that's mainly for the web browsing viruses anyway. The first line of defense is Earthlink's virus blocker. So far it appears that ClamAV, the second line of defense, has mostly caught scam rather than virus problems. I suppose the SpamAssassin I run is another half a level of defense. It's not really an AV tool. But an awful lot of malware emails look like spam so they trigger the SpamAssassin stage for many people. I figure it's almost time to get to the Trend site and run their free online scan to get a solid fourth opinion about the sanctity of my machine here. Color me paranoid if you wish; but, they ARE out to get me - but it's nothing personal. They'll be happy to get you, too. {^_-} Joanne ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Simluating a satellite connection using dummynet?
From: Kevin Kinsey [EMAIL PROTECTED] Dan Busarow wrote: On Apr 22, 2006, at 9:40 PM, Philip Hallstrom wrote: Hi all - Odd question for you. I have the opportunity to work from home, but it would require using a sat internet connection (no cable or dsl anywhere close). I've been reading up on it and best I can tell I'm looking at 1000ms round trips... at *best*. Most of what I do I can do on servers at home, but there will be the occasional ssh, etc. I recently setup ipfw/dummynet with a pipe and a 750ms delay both in and out and it wasn't as bad as I thought it would be -- at least for ssh/text. Reminds me of my days on a 9600 baud modem. heh. I'm curious though whether this is a realistic test. Thoughts? Any of you use satellite? How do you find it? I had StarBand for about two years. 1000ms RTT are the best you will see. pushing 2000ms is more like it. While it is possible to work via an SSH session it will try your patience. It is doable, and it allowed me to move out to the country, but that's about it. I now have a terrestrial radio link into the nearest town, 15 miles away, and it's beautiful. My wife's employer had a Hughes connection for something over a year. Generally speaking, they weren't impressed. Their operation is a small insurance office, and they needed quick https service to the home office in Iowa, for a web app that seems to take a pretty quick pipe to operate well. I never ran a sniffer, but it seemed as if their OS (Microsoft) had some trouble with this setup, particularly with https traffic. You'd wait a good long time (few seconds), then get a big burst of data ... if you weren't cluttering things up with retries. Since this HTTPS traffic was his business, he decided it was more important to keep his employees happy, so he later decided to devote a portion of his disposable income to a local outfit that provides a T1 instead. TCP/IP being as it is, it's likely that MSFT QoS was dropping the packet sizes to help deal with the congestion ;-), but I was never sure. I'd concur that 1000 ms was a pretty normal RTT for ICMP, and it could, and often did go higher, a la 2500+. Much like Dan, I use an 11Mbps LOS radio connection to the water tower about 4 miles away. Nice, except I really need to raise my receiver so I can maintain good QoS when the foilage gets going I think grog@ has satellite service in AUS. You might see if you can turn up anything on his site. Kevin Kinsey Four round trips of as much as 25,000 miles is a bit more than half a second. The typically employed interleaving/deinterleaving and error correction coding means you can easily add another half a second to the path. (Of course, for something like the data mode operation on Inmarsat-M, which is 2400bps max, it was pretty bad. As part of testing the implementation I ran an interesting test. Satellite from Torrance to the Atlantic sat to Goonhilly England (the only ground station that was useable for the testing) back to LAX by unknown path thence tymnet to a service in Mass to connect to the Internet and then connect back to itself via TCP/IP was a LONG SLOW interactive session. Then I made a 1 megabyte file transfer. It worked. It was signed off. And quite a few units presold with data mode option suddenly grew the implementation, one of the first units to have it. Then I entered burnout Anyway - by the time that was all connected turn around varied from 2.5 to 5 seconds on typed characters.) {o.o} Joanne ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Proper Method of Time Sync?
From: RW [EMAIL PROTECTED] On Friday 14 April 2006 16:53, Dan Nelson wrote: ntpd takes a while to sync up and by default won't adjust the clock if it's more than 1000 seconds off, so it's a good idea to enable ntpdate as well. What bothers me about that is that ntpdate uses a single server to determine the time. I can't recall the reference, but I recently read a horror story where someone synched off a timeserver that had been set to 2038 for testing purposes. Feed it several server names and try it. Use the -q option so it will not attempt to modify time and the -v option to see what it does in more detail. {^_^} ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Award BIOS Upgrade Fees - Slightly Offtopic
What motherboard manufacturer? I think it is time to boycott that one. {^_^} - Original Message - From: Thompson, Jimi [EMAIL PROTECTED] I just encountered what I consider to be a totally outrageous problem. I've got a system with a BIOS issue. The motherboard maker has decided to use Award's BIOS and they want a minimum of $39.95 to email me the BIOS update that I need to fix the system. I thought I post here, even though it's a bit off topic to see if any of you have encountered anything similar and to see what you've done to resolve the issue. The system in question is loaded with FreeBSD. TIA, Jimi Thompson, CISSP ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: sshd BREAKIN ?
From: Tang Ho Yim [EMAIL PROTECTED] I got a error messages from /var/log/auth.log which is about sshd.. .sshd : reverse mapping checking getaddrinfo for core-01.148.rdcw.com failed - POSSIBLE BREAKIN ATTEMPT ! all my sshd_config is default setting except I have change to PasswordAuthentication NO , PermitEmptyPasswords NO , and ChallengeResponseAuthentication NO Is that I am being hack ? last command show who is login before but it seem ok What should I do ? Somebody is trying; and, that somebody is failing. You need something akin to DenyHosts (which works on tcpwrappers) or one of the other BSD compatible tools of a roughly similar sort. I'd suggest wandering through the list archive. In the last month or two we've been over this before, repeatedly. {^_^} ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: List Etiquette Question - Thank yous
From: Patrick Bowen [EMAIL PROTECTED] On Fri, 24 Mar 2006 12:05:35 -0800, Oliver Iberien [EMAIL PROTECTED] said: I have never been on a list from which I have received as much help as this one, which raises a question for me. I would like to thank the people who post questions to my answers, such as the fellow below, but don't want to spam people's inboxes and/or the with thank-you notes that may be archived for all time. Do people generally expect a note of thanks? Oliver Oliver: I think it's generally expected that you reply to their help with something like Bummer, that didn't work. or That fixed my problem! Thanks so much!! I don't know, however, whether thank you's should be privately or to the list. I usually say my thanks on the list. I guess I feel that public help should receive public praise. Patrick Patrick, if a person replies to the help that worked with a (SOLVED) header addition the solution is archived. It is in a relatively easy to find form. So it benefits all. (And a sysadmin who expects thanks is a fool. A sysadmin who does not appreciate thanks or objects to another getting a thank you message, is not a fit human being to live. And indeed he is not living a full life. He's in a half life of grouch, which will lead to an early grave.) Note that Thank you is about all the pay anybody here gets for offering solutions. Those two words feed the soul. Accept the food and cherish it. {^_-} Joanne ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: AND COBOL
From: Kris Kennaway [EMAIL PROTECTED] Give the poor guy a break; he's a COBOL programmer, so he's used to thinking and typing in all-caps :-) And just think, both COBOL and AOL end in OL. I wonder if there is a relationship? Exit stage left FAST--{O,o} ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: SpamAssassin and country-specific blocking
From: Dave [EMAIL PROTECTED] Hello, I just installed the latest SpamAssassin port and noticed it had country-specific spam filtering as well as spf and ssl support. Does anyone have a howto on getting all this going with an mta in a production environment? I'm not looking for anything like a manual, but practical experiences. Thanks. Dave. mailto:[EMAIL PROTECTED] That list is quite handy for solving SPF problems if you have any. (It should work outa the box.) It can also help you setup the trusted_network concept. It's not quite what you might think it is. It simply means that this network is one I trust not to falsify header information. Usually SA can figure this out for itself. But if you see ALL_TRUSTED as a spam rule that got listed for all or most messages then it needs to be setup. The ssl support is something I've not looked at. (I am still running a tweaked 3.04 brought up to 3.05 for bug fixes. I have some special debugging crammed into my spamassassin install.) Interesting places to look for ideas is the /usr/share/spamassassin (in Linux speak - my install's on linux for now) for the common rules. You can search for score for scores and look at the rules to get some idea of what's going on with them. The users's list, though, is generally the best help. Folks with LARGE ISPs are there as well as my ISP For Two setup. {^_^} ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: sendmail autoresponder
From: Giorgos Keramidas [EMAIL PROTECTED] On 2006-02-17 09:29, Ted Mittelstaedt [EMAIL PROTECTED] wrote: You do NOT want to setup an autoresponder like vacation! The FEATURE method that Giorgos explained is the correct way to do it. If your not using sendmail and your MTA cannot issue an error in this fashion, you do not want to mess around with this. What happens with autoresponders is that spammers inadvertantly trigger them. As a result the autoresponses get sent to thousands of victims who had their names forged to the spammers message. Some of those victim addresses are spamtrap addesses. Oh, crap! I hadn't thought of that. Good thinking there Ted :) There is no inadvertantly about it. If spammers find an open relay or an open bounce they exploit it. And you get blacklisted. {o.o} Joanne ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: How to tell if IPF is running?
Ack, it looks like it would limp through doing the simple job wanted. The good news is that I can make it work. The bad news is that it's apparently so much simpler with the Linux iptables facilities. I can see I have a bunch of reading to do before setting up to replace the firewall machine. Thanks. I like your tutorial. That will get me up with it faster. {^_^}Joanne - Original Message - From: Peter N. M. Hansteen [EMAIL PROTECTED] jdow [EMAIL PROTECTED] writes: Which tool would be able to do this sort of thing best and how might it have been done. PF has most of the bits you need built in, see eg http://www.bgnett.no/~peter/pf/en/bruteforce.html (part of a PF tutorial). For weeding out old table entries, you might want to look at the expiretable utility (http://expiretable.fnord.se/). ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: How to tell if IPF is running?
From: Erik Norgaard [EMAIL PROTECTED] Nce writeup. I do have one question at the bottom. I used IPF on FBSD until there was some bug in IPF for 5.x some version that forced me to switch after an upgrade. The bug has been fixed since but I have found no reason to go back. There are two things I miss from IPF: a) proper accounting: You can't count traffic correctly with stateful filtering on pf, pf will count when a rule is matched but once a state is established packets for that state are not matched and hence not counted. b) an active and inactive ruleset: To load a new ruleset you'll have to flush everything. You can check syntax of rules before loading and pf loads all or nothing, so if there is a syntax error in your ruleset it won't be loaded. BUT: You may make syntactically correct changes that yet contain errors: Just say you wrote: block in all from 10.0.0.0/2 but meant block in all from 10.0.0.0/24 In IPF I always used: # ipf -s sleep 60 ipf -s to give me 60 seconds to verify that I didn't lock myself out. Now, that is compensated by in PF you can flush and reload the rules only, keeping existing states, so the connection you use for maintenance is not torn down. The pros for PF are some features to prevent DDoS against servers behind your firewall, and advanced queuing features and CARP. The use of macros and tables makes it easier to maintain rules, but the lack of groups means you have to be more careful structuring your ruleset: Rules are read top down _always_ in IPF I really liked groups, even though I always kept rules together. It just made it more explicit that rules went the same place. PF uses some clever skip ahead to gain the speed that proper use of groups give in IPF, and tests have shown that pf is faster than IPF in particular when rulesets grow large. but you need to be careful writing rules: IPF sample: block in quick from 10.0.0.0/24 to any head 10 pass in quick from 10.0.0.0/24 to 192.168.0.0/24 group 10 PF sample: block in from 10.0.0.0/24 to any pass in quick from 10.0.0.0/24 to 192.168.0.0/24 block in quick from 10.0.0.0/24 to any The thing is that in the first line of the IPF sample, a default action is made for that group. packets matching the head rule but no rules in the group will take that action. In PF you'll have to include that extra rule in the end to get the same behavior. So, in short, ipf is really simple and comparatively easy to work with, the lack of macros means you generally have to write more but this also makes it more explicit what happens as packets traverse the ruleset. pf has some really nice features in particular in more complex setups. The use of macros means that you can create compact rulesets that can easily be adopted to other systems or setups. Use what you feel most comfortable with. OK, I am coming from a Linux iptables world. I have a nicely working firewall in that realm including the following nice little tidbit that allows me to be anywhere in the world and ssh into the machine while making ssh dictionary attacks really expensive. ===8--- $IPTABLES -A INPUT -p tcp --syn --dport 22 -m recent --name sshattack --set $IPTABLES -A INPUT -p tcp --dport 22 --syn -m recent --name sshattack \ --rcheck --seconds 120 --hitcount 3 -j LOG --log-prefix 'SSH REJECT: ' $IPTABLES -A INPUT -p tcp --dport 22 --syn -m recent --name sshattack \ --rcheck --seconds 120 --hitcount 3 -j REJECT --reject-with tcp-reset ===8--- The trap allows up to three tries within a 120 second period before blocking the IP address responsible until the tries within the last 120 seconds is below 3. I've found that attacks will start. Then they will simply spend an hour or two generating log entries for the rejects. (I then add the net block for the source to another rule that blocks it entirely for ssh.) I have similar blocks on pop3s and imaps. Which tool would be able to do this sort of thing best and how might it have been done. {^_^} Joanne, getting tired of the Linux perpetual beta test. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Spamcop listed - need help to diagnose why
From: Ted Mittelstaedt [EMAIL PROTECTED] -Original Message- From: [EMAIL PROTECTED] Spam I sort through. With SpamAssassin scoring it's easy to find the low scores and concentrate on them. But somebody arrogant enough to spam me with a challenge for a message to a mailing list ends up on my procmail /dev/null rules. (I use fetchmail to grab mail and procmail to feed it to /var/spool/mail/name with stops along the way for SpamAssassin, ClamAv, and some random cleverness.) Unfortunately, jdow, since your using this setup, the spammer has already successfully delivered the mail to you. The fact that you delete the spam before reading makes no difference - the spammer doesen't know that and thinks they have successfully delivered it. No they have not. They've managed to get it onto my machine, transiently. It never got delivered to ME, the organic unit here at this email address. I do vet spam. The items redirected to /dev/null are items I do not want to bother with while vetting real spam. Denying the spam before it's even accepted into the server is a much better way. Unfortunately, a content filter means you have to If you can make fetchmail do that you're pretty clever, kemo sabe. {^_^} ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Spamcop listed - need help to diagnose why
From: Ted Mittelstaedt [EMAIL PROTECTED] -Original Message- From: [EMAIL PROTECTED] Unfortunately, jdow, since your using this setup, the spammer has already successfully delivered the mail to you. The fact that you delete the spam before reading makes no difference - the spammer doesen't know that and thinks they have successfully delivered it. No they have not. They've managed to get it onto my machine, transiently. It never got delivered to ME, the organic unit here at this email address. I know that and your arguing out of your hat - simply pulling statements out of context. You know perfectly well that the to you in the sentence was to your machine, the paragraph context told you that. Unfortunately in the spam game, it only matters if the spammer thinks they didn't successfully deliver it to you. And that only happens if the machine delivering the spam gets an error when trying to deliver it, since the spammer isn't using legitimate senders addresses and cannot get feedback any other way. Sonny, you define it your way and I'll define it mine. The object is to not bug the user with spam. The secondary object is to keep the machine load for spam as low as possible. You have a priority inversion there. I've never been a fan of post-filters for this reason. For some kinds of filtering - like content filtering for example - that is the only way you can do it. But I think it the height of strangeness when SA checks blacklists and such to assign scores. If they really cared about spamfiltering, they would use the IP blacklists in the way they are intended - to block access completely to the spammer, not even let them connect to the server at all. The mail that SA is assigning scores on based on an IP blacklist shouldn't even be in the SA filter to begin with. People do that and discover they have blocked paying customers and the like. If you are going to raw block on black lists at least setup a scoring system that has some wide testing behind it. Denying the spam before it's even accepted into the server is a much better way. Unfortunately, a content filter means you have to If you can make fetchmail do that you're pretty clever, kemo sabe. No, but I can replace the Rube Goldberg fetchmail arraingement your using with a real mailserver that is on the Internet all the time and can make use of blacklist servers and such. And yes, I'm just as good at making smart-alecky comments as you are. Probably better at it, actually. Do you want to knock it off and go back to the technical merits discussion now? ;-) I happen to put a priority on other things. Good enough is good enough. If I were to get into serious tinkering it would be with software defined radios rather than the mail system when it's working perfectly well for the needs here at this site. Of course, YMMV. {^_^} ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Spamcop listed - need help to diagnose why
From: Danial Thom [EMAIL PROTECTED] --- Ted Mittelstaedt [EMAIL PROTECTED] -Original Message- From: [EMAIL PROTECTED] Unfortunately, jdow, since your using this setup, the spammer has already successfully delivered the mail to you. The fact that you delete the spam before reading makes no difference - the spammer doesen't know that and thinks they have successfully delivered it. No they have not. They've managed to get it onto my machine, transiently. It never got delivered to ME, the organic unit here at this email address. I know that and your arguing out of your hat - simply pulling statements out of context. You know perfectly well that the to you in the sentence was to your machine, the paragraph context told you that. Unfortunately in the spam game, it only matters if the spammer thinks they didn't successfully deliver it to you. And that only happens if the machine delivering the spam gets an error when trying to deliver it, since the spammer isn't using legitimate senders addresses and cannot get feedback any other way. I've never been a fan of post-filters for this reason. For some kinds of filtering - like content filtering for example - that is the only way you can do it. But I think it the height of strangeness when SA checks blacklists and such to assign scores. If they really cared about spamfiltering, they would use the IP blacklists in the way they are intended - to block access completely to the spammer, not even let them connect to the server at all. The mail that SA is assigning scores on based on an IP blacklist shouldn't even be in the SA filter to begin with. Denying the spam before it's even accepted into the server is a much better way. Unfortunately, a content filter means you have to If you can make fetchmail do that you're pretty clever, kemo sabe. No, but I can replace the Rube Goldberg fetchmail arraingement your using with a real mailserver that is on the Internet all the time and can make use of blacklist servers and such. And yes, I'm just as good at making smart-alecky comments as you are. Probably better at it, actually. Do you want to knock it off and go back to the technical merits discussion now? ;-) YIKES. This is what happens when you put pimply-faced kids in charge of important things like mail. The carpet bomb MECCA in order to kill a few terrorists approach to computing. Its frightening. Yeah, maybe he'll manage to survive long enough to acquire some wisdom such as sometimes comes with age. (And without that gained wisdom getting old must be unbearable.) {^_-} ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Spamcop listed - need help to diagnose why
From: David Banning [EMAIL PROTECTED] Thanks for the response, Robert. I know tmda and such services anger some people. I also find other people who ask me how they can get such a service, only because spam is so difficult to block. I guess it depends on how important email is to you. I would never ask a question on this board and expect people to confirm, but in business I find it helpful. I compare it to the benefit vs hassle of voice mail; some who must leave messages hate it, but I find both voice mail and tmda services actuals stops certain types of calls or email that I do not -want-. I simply place tmda challenge addresses into my /dev/null list and never see the problem again. I treat it like spam. And I consider it to be spam. So pfft I make it gone. {^_^}Joanne ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Spamcop listed - need help to diagnose why
From: Danial Thom [EMAIL PROTECTED] --- jdow [EMAIL PROTECTED] wrote: From: David Banning [EMAIL PROTECTED] Thanks for the response, Robert. I know tmda and such services anger some people. I also find other people who ask me how they can get such a service, only because spam is so difficult to block. I guess it depends on how important email is to you. I would never ask a question on this board and expect people to confirm, but in business I find it helpful. I compare it to the benefit vs hassle of voice mail; some who must leave messages hate it, but I find both voice mail and tmda services actuals stops certain types of calls or email that I do not -want-. I simply place tmda challenge addresses into my /dev/null list and never see the problem again. I treat it like spam. And I consider it to be spam. So pfft I make it gone. {^_^}Joanne I'm of the opposite thinking. I'd rather sort through a bunch of spam everyday rather than miss 1 important message. If I miss 1 inquiry it could cost me 1000s of dollars. Spam is an annoyance, nothing more. There is no sense cutting off your nose to spite your face. People with challenge systems crack me up. They wonder why they don't get their receipts when they order things, or why they miss important automated correspondence about their orders. Spam I sort through. With SpamAssassin scoring it's easy to find the low scores and concentrate on them. But somebody arrogant enough to spam me with a challenge for a message to a mailing list ends up on my procmail /dev/null rules. (I use fetchmail to grab mail and procmail to feed it to /var/spool/mail/name with stops along the way for SpamAssassin, ClamAv, and some random cleverness.) {^_^}Challenges are as bad as the spam they try to prevent. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
[OT] age Re: Slices
From: Giorgos Keramidas [EMAIL PROTECTED] Another thing for your information: I'm almost 56 years and for me it is fun to learn. Great to hear that. A lot of people give up on learning new things much much earlier. I suspect you'll find that the BSD and Linux lists will have more people of any age who enjoy learning. (I am stuck earning income on a NT related machines. And even those developer lists are graying. I do admit to being one of the extreme cases. Even 56 years old is young enough he might have had me as a babysitter.) {^_-} Joanne - if I give up learning shoot me. I'm already dead; and, my corpse is running around loose. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: 5.4 vs. 6.0
From: dick hoogendijk [EMAIL PROTECTED] On 10 Dec Nicklas B. Westerlund wrote: Sasa Stupar wrote: Can someone tell me in plain words what will I gain if I upgrade my server from 5.4 to 6.0? Better sleep during nights. ;-) 6.x is the future :) I realize this is neither the L-word OS or the W-word OS. But the general industry trend is that newer versions are less reliable and stable. Are there some REAL advantages of which he should be aware or is it all puff and vapor? {^_-} {o.o} ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: hardening FreeBSD for Spamassassin
From: Vahric MUHTARYAN [EMAIL PROTECTED] Hi Everybody , I think too many people know too many appliance choosing freebsd for OS, also they are hardening FreeBSD and specialize for they works . Anybody know or Did this like hardening on FreeBSD for getting better performans, I'm using FreeBSD closer 2 year I didn't see any problem about performans but is there any hint for hardening FreeBSD , I know some tuning paramters have but I talking about different thing . You know spam programs CPU intersive , I searched on google and I saw many hardening title but their point is security not performans . I think you are referring to tuning rather than hardening. A rough interpretation of hardening with respect to speed would mean making the machine work more. That would make it run slower. {^_-} If you mean tuning to get more performance out of SpamAssassin I'd need to get some basics handled first. What version of SpamAssassin are you running? How are you using it? (Are you using spamc/spamd? Are you using one of the milters that daemonizes spamassassin itself without using spamc and spamd?) If you are using spamc and spamd what are the parameters you use for each and what tool calls spamc? (I use procmail on that other 'x OS at the moment, for example.) Are you using per user preferences, rules, and Bayes or are you using system wide via SQL? And so forth. If you are using spamc/spamd then tuning is direct via the commands to spamd as you daemonize it. For this the spamassassin user's mailing list is quite helpful. It is the user's list at spamassassin.apache.org. If you are using some other tool or milter you might need to deal with that tool's support groups for the best help. If you have DNS tests available make sure these tests are not blocked and are not timing out. spamassassin -t -D testfile with some handy email test file can give an informative readout in this regard. Be aware that spamassassin can use a lot of memory. And it is a bit of a resource hog if you run a lot of the SpamAssassin Rules Emporium rule sets. (Search for SARE or the full name. Their rule sets are VERY useful.) Of course, you get into a tradeoff situation between resource usage and the quality of the spam detection. I'm silly enough to run about 40 or so rule sets with per user rules, per user Bayes, and all that, a pretty much worst case setup on a 2 GHz Athlon with 1 gigabyte of memory. It takes about 3.4 clock seconds to run a single test using spamc/spamd. Using spamassassin itself adds the overhead of starting perl and all that. This takes about 5.3 seconds total. Since the machine is otherwise very lightly loaded this is no big deal for about 1300 emails processed per day on about 6 user accounts. And to wrap up this rather long message I'll note that very often the easiest SpamAssassin tuneup for speed involves adding more memory. If SpamAssassin finds itself swapping for any reason it gets REALLY slow. And I do note I am not quite running stock out of the box SpamAssassin. I do not use automatic anything with it. Loren and I have carefully trained SpamAssassin manually and get excellent results. And since Loren is one of the SARE ninjas he needed some special tweaks inside SA that really should not affect its performance except out at the fifth decimal place. I mention this in the interests of truth in advertising as it were. So if you are not stuck within AmavisD or something like that the SA user's list may be a big help. Otherwise speak with the AmavisD folks. And do make sure you have plenty of ram and reasonable expectations for your particular machine speeds. SA needs memory and CPU cycles. {^_^} Joanne ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: hardening FreeBSD for Spamassassin
You are going to have to trim numbers of messages before you get to SpamAssassin, I am afraid. Is this number after any greylisting you may have operational? If not then do look into greylisting. It is a very powerful technique to prefilter your incoming email at the connection level. If the address is recognize the email is received immediately. If it is not recognized the email is temporarily failed. Currently spammers do not retry in such cases. So at least for now this will be a very effective tool to trim down the number of messages your SpamAssassin install has to filter. You will have to trim the number of rule sets you use to a bare minimum. They do take time to run. If I extrapolate my system's usage and configuration to a 4 processor 3GHz level machine I am still about an order of magnitude shy of your requirements as I am currently configured. So the level of rules trimming would be daunting indeed. (But at least I have not missed a genuine spam detection in two weeks now. And I've only had about 5 very spammy looking kernel mailing list type messages that false alarmed. It is hard to deal with filtering lists that just look like spam and do not filter incoming messages. {^_-}) As for trimming FreeBSD to a minimum the usual litanies exist, do not start any services you do not need. One BIG hog in this regard, obviously, is X11. If it is not absolutely needed don't start it. You should not even have it on the system. Only you know if nfs is required in your setup or not, of course. So you must make the assessment of is this needed for yourself. With four gigabytes of ram and (only) four processors you're probably not memory limited on a CPU intensive operation. So kernel trimming is probably not going to be a high benefit process, at a guess. Oh yes, one thing you DO want to run is your own DNS server implementation of the SURBL lists. That volume of email quite justifies requesting Jeff allow you to download his database to your machine periodically. That will GREATLY speed up the DNS tests, of course. You might check this out at http://www.surl.org/. Jeff's a good fellow with a STRONG no collateral damage ethic. Go for greylisting first then Jeff's database downloads. {^_^} - Original Message - From: Vahric MUHTARYAN [EMAIL PROTECTED] Thanks Joanne , Exactly I red Spamassassin FAQ and they said that 20-30 MB memory must for each child process also iowait and CPU is really important but mailn purpose is RAM, you are right ... And sorry I heared but I did not use exactly spamc spamd , also I will care about your words and advise about mailing list , but my questions is not fully How fast can I run SA , my question is get out something from FreeBSD which is not need for only SA run on system, I mean optimizing system for only special works , maybe more little kernel , maybe it looks like freebsd from screch (I think wrong word )...or maybe How can I optimize and have more small and faster running FreeBSD OS ... And I want to handle 130,000 mail/hour with using 2 or 4 P4 server with raid1 and 2 or 4 gb ram . Thanks again :) Vahric ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: hardening FreeBSD for Spamassassin
From: Alex Zbyslaw [EMAIL PROTECTED] jdow wrote: http://www.surl.org/. You mean http://www.surbl.org/ The other URL works but isn't very useful :-) I did indeed mess up and leave out the b. Mea culpa. {^_^} ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]