Re: Trusting Backports and unofficial Repositories
Dear Philipp, On Sun, 18 Jul 2004 13:20:50 +0200 "Philipp" <[EMAIL PROTECTED]> wrote: > 1) Are you using unofficial repositories on production servers ? I'm using PHP from dotdeb.org. It provides PHP 4.3.8 and PHP 5.00 for woody. The guy who do that work for a french isp, so I think it's "safe" I havn't any problem with these packages, I'm using it for a year now. -8< deb http://packages.dotdeb.org ./ -8< > 4) What about security.debian.org ? If a vuln is found and > security.debian.org gives > out a fixes version, and i gave security.debian.org and the unofficial > repository in my > sources.list, what will happen ? As the version in unofficial package will be higher, you will stay with it. You can force this mechanism with apt-pinning, aptitude or with holding package. Package in woody, and from security.debian.org are always patch for security hole. So I think an old PHP 4.1 from woody is as secure as the last from dotdeb. Using unofficial is to get more "new" features. Hommelix -- Hommelix 12 Me 201 aka Jerome Vandenabeele -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Postfix/mysql - too many connections
On Sat, 18 Sep 2004 14:29:28 +0200 Robert Hensel <[EMAIL PROTECTED]> wrote: > Hello, Hi Robert, > Recently I started noticing some database connection problems. I soon > discovered that postfix was the problem(I have a postfix-mysql setup). > I have max_connections set at 100, and postfix seems to want more at > some times. However, i'm a little confused, because i don't have an > large amount of mail running through it. I see a lot of forbidden > relays from one particular domain, like 30 relays_denied per minute > now and then, and the "mysql-problems" seem to correspond with this. > But i've seem much more mail coming through and never seen this. You can use the proxymap on postfix, that will reduce postfix usage of mysql. On mysql side, you need to use index, and make the simpliest possible query, so that mysql can handle more query at the same time. Greetings Jerome Vandenabeele -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: phpBB vulnerability exploited
Hi Fraser, On Mon, 13 Dec 2004 07:53:38 -0500 Fraser Campbell <[EMAIL PROTECTED]> wrote: > In my case I doubt it since much of postfix lives there. It might be > possible in certain cases though I'm not sure. Maybe you could make 2 partitions: /var mounted noexec and /var/spool/postfix mounted exec Greetings Jerome Vandenabeele -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
