I am about to move our 2 servers, and add a third, to a new colo.
On each of the three servers there will be two NICs.
1 NIC on each box is to be dedicated to the internet.
1 1 NIC in each box is to be dedicated to local. (192.168.0.1-3).
Can I plug all three NIC s into one switch (the
This may be better posted to the Apache list, but that has been filling up with
windows implementations as of late...
Have recently been inundated with requests for ASP on our FreeBSD/Apache servers
(probably because the Win2K solutions are incredibly unreliable/vulnerability
prone).
What is the
I figured it was jail(8) or a suped up, customized jail. So where is
everyone getting this exact same set of documentation?
http://support.securesites.com/support/virtual/freebsd/
http://www.2kweb.net/support/virtual/freebsd/
http://iasweb.com/support/docs/virtual/freebsd.html
On Fri, Jul 18, 2003 at 09:41:56AM -0400, Dave [Hawk-Systems] typed:
This may be better posted to the Apache list, but that has been
filling up with
windows implementations as of late...
Have recently been inundated with requests for ASP on our
FreeBSD/Apache servers
(probably because
Supposedly this product will work natively on FreeBSD.
http://www.halcyonsoft.com/products.asp?s=1
will check it out
I belive Chili!Soft ASP has been bought out by Sun and renamed Sun ONE, so
you may want to look into that product. It runs on Linux so it might work
with FreeBSD.
Previous
received the following from a logcheck;
Unusual System Events
=-=-=-=-=-=-=-=-=-=-=
Jul 24 23:11:50 web1 /kernel: le: table is full
Jul 24 23:11:50 web1 /kernel: file: table is full
Jul 24 23:14:00 web1 /kernel: le: table is full
Jul 24 23:14:00 web1 /kernel: file: table is full
Jul 24 23:14:00
for reasons best left unsaid, we need to pull in a file full of partial
commands, and run them via a shell script on occasion, removing each command as
we run it. Have managed to hack togetherthe following shell script, but and
stumped on something simple because of my lack of shell knowledge;
and
http://tldp.org/LDP/lpg/node15.html for some info on these.
Not really what I was thinking of, but may be a much more eloquent solution than
an occasional cron run. Will definately check it out, thanks.
Dave
- Original Message -
From: Dave [Hawk-Systems] [EMAIL PROTECTED]
Subject: shell
For multiple reasons I am moving away from doing everything in perl/php for
server based tasks. Made sense at the time to do everything in the language we
used for the web as well, but am finding I do less web work and more server
admin work as time progreses, and there are some significant hits
Installed XFree86 using ports method:
# cd /usr/ports/x11/XFree86-4
# make install clean
now trying to run 'XFree86-configure' so i can configure it - but i
can not locate the program anywhere!
locate XFree86-configure
or
which XFree86-configure
might be a good place to start
On a larger
was experimenting with snort to try and track down the source of some hack
attempts (which were futile but annoying). Before settling on the various flags
that I indeed wanted to use, there were a number of failed snort starts, stops,
etc... don't remember the specifics now as this was some time
have several FreeBSD servers around all with varrying installs, 4.3 with a
number of patches, up to a 4.7 that is relatively new.
Some maintenance on the servers that requires root is run from a master server
which connects to run the command(s) via SSH. The public key for
[EMAIL PROTECTED] has
Further test, which I missed earlier for some unknown reason, was to create an
ssh key for a non-root user, copy to the target server, and try a key
authenticated login with the non-root user... worked perfectly.
As such, the problem does not appear to be with the ssh key login, but with the
Since there have already been a couple of questions on this I thought I'd
see if anyone could shed some light on something I've noticed since I
started running chkrootkit. It runs every 15 minutes (overkill? Nah.) in
quiet mode to cut down on noise in the logs, and sporadically I get these
we have a 0 length file, but a 4k db
is there a way to reverse the db to get the original data (or close to)
thanks
Dave
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to
have looked at a couple of the ports for log rotation and such, but none seem to
come close to the simplicity and complexity of what I am looking for.
have user directories and log files in each directory... each user requests to
have 1 day ro 30 days of logs made available for them to download
we have 4 servers running, each sends daily and security run output email each
day around 3am. Recently one of them stopped sending these messages. In
looking at the periodic.conf and associated directories, I don't see any
problems or changes that I am aware of. There are no enrties in cron
On Fri, Jul 04, 2003 at 08:48:24AM -0400, Dave [Hawk-Systems] wrote:
we have 4 servers running, each sends daily and security run output
email each
day around 3am. Recently one of them stopped sending these messages. In
looking at the periodic.conf and associated directories, I don't see any
On Sun, Jul 06, 2003 at 02:37:36PM -0400, Dave [Hawk-Systems] wrote:
I received an answer to this before and it was that FreeBSD isn't
vulnerable to
this type of attack, but the log entries persist in varrying degrees of
reoccurance.
This is a FAQ. It's an attempt to exploit an old Linux
I found the following a day on our Mailserver (* chtoorkit) What means that?
/usr/ports/security/chkrootkit
does a batch of scans and comparisons to see if a root kit has been installed on
your system.
If you are using it, just a warning, that if you have a busy web server, you may
get false
ran into the file size limitation of 2GB when doing a L0 dump of the /usr
partition.
Is there a workaround to the 2GB limit... can you reliably pipe dump to split
or something then reverse the process with restore later?
Working with what will be approximately a 6GB L0 dump so over 3x the size
ran into the file size limitation of 2GB when doing a L0 dump of the /usr
partition.
Hmm. I think the trick is to not be aware that there *is* a 2GB limit!
Could be it there... using 4.3 stable with security patches and
selected port upgrades only...
I didn't think there was any change
postfix on freebsd is apparently more efficient than qmail, though.
no comment on that (lest we revive deep rooted animosity between the two
camps)...
If you are looking at the qmail solution, check out the following. Provides a
complete package from a multiple domain mail solution... great
little perplexed here...
Looking at two servers...
Server One
- has .qmail-root alias directing mail to [EMAIL PROTECTED]
- this is also the somedomain.com server we are retrieving mail from
- we get daily, weekly, monthly and security output from this server
in
In looking at the periodic files, it appears to simply call sendmail for all
mailings. Why would the security output being sent through sendmail be any
different?
The security script is mailed separately.
Look at /etc/periodic/daily/450.status-security.
I did see that and understand that.
Without dumping to perl or another external language, would like to accomplish
the following;
prior to making changes in a file, backup incrementially the current file to
create a record of changes ans versions. For example.
we are about to make changes to file.conf and would like to make a
From: Doug Poland
Jack L. Stone said:
At 11:19 AM 2.10.2003 -0500, Dave [Hawk-Systems] wrote:
Without dumping to perl or another external language, would like
to accomplish the following;
clip
#cp /path/to/file.conf /path/to/file.conf.20030210
I almost want to say this could be done
Been browsing for a bit (knowing I will get some rtfm responses from this) but
havnt come across a solid answer for this. Most solutions involve NAT or some
other non-routable ip block type of solution.
Have the following (192.168.100.0/24 used in place of routable addresses)
- Internet
Following showed up in our morning security mailer
Unusual System Events
=-=-=-=-=-=-=-=-=-=-=
Mar 19 06:01:00 web1 /kernel: pid 62342 (httpd), uid 65534: exited on signal 11
Mar 19 06:01:00 web1 /kernel: pid 62343 (httpd), uid 65534: exited on signal 11
Mar 19 06:01:00 web1 /kernel: pid 62344
Had a situation with a user trying to gain access to an htaccess protected
directory.
[Sun Feb 23 06:31:00 2003] [error] [client 208.10.47.119] user cobras not found:
/members/members.htm
[Sun Feb 23 06:31:00 2003] [error] [client 208.10.47.119] user loredana not
found: /members/members.htm
[Sun
no takers on this?
-Original Message-
clip
Subject: apache exiting signal 11, high request period
Following showed up in our morning security mailer
Unusual System Events
=-=-=-=-=-=-=-=-=-=-=
Mar 19 06:01:00 web1 /kernel: pid 62342 (httpd), uid 65534: exited on signal 11
Mar 19
31 matches
Mail list logo
