--
--
Jason Fesler <[EMAIL PROTECTED]> http://gigo.com/resume.html
"Those who give up essential liberties for temporary safety
deserve neither liberty nor safety." - Benjamin Franklin
--
--
Jason Fesler <[EMAIL PROTECTED]> http://gigo.com/resume.html
"Those who give up essential liberties for temporary safety
deserve neither liberty nor safety." - Benjamin Franklin
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL
On Fri, Jan 11, 2002 at 03:47:27PM +0100, martin f krafft wrote:
[ martin didn't write this, chris wagner did ]
> > Come on... there are only 4 ip numbers in a /30!!! The only
> > conceivable use for a /30 is as a point-to-point. /29 maybe for cable
> > modem LANs...
/30s are also used when a
On Fri, Jan 11, 2002 at 11:52:15AM +0100, Christian Kurz wrote:
> On 10/01/02, Nathan E Norman wrote:
> > On Fri, Jan 11, 2002 at 01:29:08AM +0100, martin f krafft wrote:
> > > first, the IP is taken and reverse-resolved to a domain name. then the
> > > domain name is resolved to an IP. if that IP
Seems I'm really to stupid to find my piece of information by
myself, but: First things first.
I'm switching to doing mail-handling with LDAP in order to get rid
of the 'dead' users in my passwd. Configuring EXIM with LDAP should
just work fine. Enter the users in LDAP under some domain-branches,
On Fri, Jan 11, 2002 at 03:47:27PM +0100, martin f krafft wrote:
[ martin didn't write this, chris wagner did ]
> > Come on... there are only 4 ip numbers in a /30!!! The only
> > conceivable use for a /30 is as a point-to-point. /29 maybe for cable
> > modem LANs...
/30s are also used when a
On Fri, Jan 11, 2002 at 11:52:15AM +0100, Christian Kurz wrote:
> On 10/01/02, Nathan E Norman wrote:
> > On Fri, Jan 11, 2002 at 01:29:08AM +0100, martin f krafft wrote:
> > > first, the IP is taken and reverse-resolved to a domain name. then the
> > > domain name is resolved to an IP. if that IP
also sprach Jacob Elder <[EMAIL PROTECTED]> [2002.01.11.1933 +0100]:
> > however, this being an extra administrative burden, and me currently in
> > the process of moving to another registrar, i started questioning the
> > point of the additional two. assume the main server as well as it's mail
> >
Seems I'm really to stupid to find my piece of information by
myself, but: First things first.
I'm switching to doing mail-handling with LDAP in order to get rid
of the 'dead' users in my passwd. Configuring EXIM with LDAP should
just work fine. Enter the users in LDAP under some domain-branches,
also sprach David Bishop <[EMAIL PROTECTED]> [2002.01.11.1550 +0100]:
> > you can configure iptables to return ICMP type 3 "port unreachable"
> > packets, just like the OS would, using the REJECT target. that's what
> > you want to do. to get your desired effect.
>
> I'll look into that, thanks.
On Fri, 11 Jan 2002 15:15:42 -0500
Peter Billson <[EMAIL PROTECTED]> wrote:
>
> H... HP has a install help guide for Debian available at
> http://netserver.hp.com/support/manuals.asp?pid=lpr
>
> Is that of any help to you?
>
> Pete
> --
Not really ! But thanks !
The "installing debian" li
> I suspect the same problem !
> So I write 3 floppies with resue.bin root.bin and drivers-1.bin from the
> debian 2.2r5 "compact flavor" of kernel. The kernel is 2.2.19. The boot
> works, the dboostrap start, but when I want to read the drivers from the
> third floppy the message is that this flop
also sprach Jacob Elder <[EMAIL PROTECTED]> [2002.01.11.1933 +0100]:
> > however, this being an extra administrative burden, and me currently in
> > the process of moving to another registrar, i started questioning the
> > point of the additional two. assume the main server as well as it's mail
>
Stability of the Web in general. A domain should resolve regardless if
it is reachable.
Pete
--
http://www.elbnet.com
ELB Internet Services, Inc.
Web Design, Computer Consulting, Internet Hosting
> i guess negative TTL, but is there
> another reason? after all, what use is it to me to be able t
also sprach David Bishop <[EMAIL PROTECTED]> [2002.01.11.1550 +0100]:
> > you can configure iptables to return ICMP type 3 "port unreachable"
> > packets, just like the OS would, using the REJECT target. that's what
> > you want to do. to get your desired effect.
>
> I'll look into that, thanks.
also sprach Jason Lim <[EMAIL PROTECTED]> [2002.01.11.2007 +0100]:
> For our high-end plans and other dedicated hosting solutions, we spread
> out the DNS data across more servers... the point being to make DNS
> resolution more reliable.
the two primary DNS i mentioned are already in different co
In fact, right now for our low cost webhosting (not our high end plans) we
do DNS, mail, www, and ftp on the same servers as the accounts are on.
That is, one server handles all services for that account. As you said,
what is the point of domains resolving and such if the server itself is
down and
On Fri, 11 Jan 2002 15:15:42 -0500
Peter Billson <[EMAIL PROTECTED]> wrote:
>
> H... HP has a install help guide for Debian available at
> http://netserver.hp.com/support/manuals.asp?pid=lpr
>
> Is that of any help to you?
>
> Pete
> --
Not really ! But thanks !
The "installing debian" l
On Fri, 11 Jan 2002 08:32:30 -0500
Peter Billson <[EMAIL PROTECTED]> wrote:
> Adrian,
> I've not played with a HP with megaraid but I can point you to a
> Dell/Redhat specific site that may get you started
> http://domsch.com/linux/ - see the megaraid section.
>
> The basic problem is that yo
On Fri, Jan 11, 2002 at 07:29:51PM +0100, martin f krafft wrote:
> however, this being an extra administrative burden, and me currently in
> the process of moving to another registrar, i started questioning the
> point of the additional two. assume the main server as well as it's mail
> backup (the
a general question: so i have this server handling some domains as
primary DNS, as well as being their web- and mailserver. another domain
does slaving and secondary MX, but because i don't want load-balancing
on DNS RR basis for webservices, and because HTTP can't deal with
secondary servers, webp
> I suspect the same problem !
> So I write 3 floppies with resue.bin root.bin and drivers-1.bin from the
> debian 2.2r5 "compact flavor" of kernel. The kernel is 2.2.19. The boot
> works, the dboostrap start, but when I want to read the drivers from the
> third floppy the message is that this flo
Stability of the Web in general. A domain should resolve regardless if
it is reachable.
Pete
--
http://www.elbnet.com
ELB Internet Services, Inc.
Web Design, Computer Consulting, Internet Hosting
> i guess negative TTL, but is there
> another reason? after all, what use is it to me to be able
On Fri, 11 Jan 2002 18:13, Anders Gjære wrote:
> The machine is running 2.2 kernel
>
> I don't think zebra is supported on 2.4.x kernels
What problem does it have with 2.4.x?
> # Side note, the RealTek and StarTech NICs at a local store
> # were being bought
> # at $14, and resold for $50. The 3
also sprach Jason Lim <[EMAIL PROTECTED]> [2002.01.11.2007 +0100]:
> For our high-end plans and other dedicated hosting solutions, we spread
> out the DNS data across more servers... the point being to make DNS
> resolution more reliable.
the two primary DNS i mentioned are already in different c
In fact, right now for our low cost webhosting (not our high end plans) we
do DNS, mail, www, and ftp on the same servers as the accounts are on.
That is, one server handles all services for that account. As you said,
what is the point of domains resolving and such if the server itself is
down and
The machine is running 2.2 kernel
I don't think zebra is supported on 2.4.x kernels
I don't know what type of nic there is, but ill will check it out
Thank you
-anders
# -Original Message-
# From: Damian Gerow [mailto:[EMAIL PROTECTED]
# Sent: 11. januar 2002 17:31
# To: Anders Gjære
#
On Fri, 11 Jan 2002 08:32:30 -0500
Peter Billson <[EMAIL PROTECTED]> wrote:
> Adrian,
> I've not played with a HP with megaraid but I can point you to a
> Dell/Redhat specific site that may get you started
> http://domsch.com/linux/ - see the megaraid section.
>
> The basic problem is that y
On Fri, Jan 11, 2002 at 07:29:51PM +0100, martin f krafft wrote:
> however, this being an extra administrative burden, and me currently in
> the process of moving to another registrar, i started questioning the
> point of the additional two. assume the main server as well as it's mail
> backup (th
a general question: so i have this server handling some domains as
primary DNS, as well as being their web- and mailserver. another domain
does slaving and secondary MX, but because i don't want load-balancing
on DNS RR basis for webservices, and because HTTP can't deal with
secondary servers, web
Does anyone have any information regarding whether
there is a utility to convert MS IAS radius logs to Cistron log format? If there
is no tool, is there a utility similar to radiusreport that will analyze IAS
radius log files?
On Fri, 11 Jan 2002 18:13, Anders Gjære wrote:
> The machine is running 2.2 kernel
>
> I don't think zebra is supported on 2.4.x kernels
What problem does it have with 2.4.x?
> # Side note, the RealTek and StarTech NICs at a local store
> # were being bought
> # at $14, and resold for $50. The
The machine is running 2.2 kernel
I don't think zebra is supported on 2.4.x kernels
I don't know what type of nic there is, but ill will check it out
Thank you
-anders
# -Original Message-
# From: Damian Gerow [mailto:[EMAIL PROTECTED]]
# Sent: 11. januar 2002 17:31
# To: Anders Gjære
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On Thursday 10 January 2002 04:14 pm, martin f krafft wrote:
> also sprach David Bishop <[EMAIL PROTECTED]> [2002.01.10.1634 +0100]:
> > I'm running a server that's hot to the net, and running some insecure
> > services (by necessity), like nfs. Of co
also sprach Christian Kurz <[EMAIL PROTECTED]> [2002.01.11.1152 +0100]:
> Pardon? Would you please cite that paragraph of the RfCs that states
> that "every PTR entry should resolve to a _unique_ name"? The last time
> I read in the RfC and in another book about DNS both didn't mention
> that. And
also sprach Chris Wagner <[EMAIL PROTECTED]> [2002.01.11.0616 +0100]:
> >okay, why libwrap then?
>
> Once the network is compromised, it makes no difference what's on the box.
> If done properly, the compromised network is indistinguishable from the
> uncompromised network. That box is totally on
Does anyone have any information regarding whether
there is a utility to convert MS IAS radius logs to Cistron log format? If there
is no tool, is there a utility similar to radiusreport that will analyze IAS
radius log files?
Adrian,
I've not played with a HP with megaraid but I can point you to a
Dell/Redhat specific site that may get you started
http://domsch.com/linux/ - see the megaraid section.
The basic problem is that you need the correct driver for your card to
get the install to work and the older kernels
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On Thursday 10 January 2002 04:14 pm, martin f krafft wrote:
> also sprach David Bishop <[EMAIL PROTECTED]> [2002.01.10.1634 +0100]:
> > I'm running a server that's hot to the net, and running some insecure
> > services (by necessity), like nfs. Of c
also sprach Christian Kurz <[EMAIL PROTECTED]> [2002.01.11.1152 +0100]:
> Pardon? Would you please cite that paragraph of the RfCs that states
> that "every PTR entry should resolve to a _unique_ name"? The last time
> I read in the RfC and in another book about DNS both didn't mention
> that. And
also sprach Chris Wagner <[EMAIL PROTECTED]> [2002.01.11.0616 +0100]:
> >okay, why libwrap then?
>
> Once the network is compromised, it makes no difference what's on the box.
> If done properly, the compromised network is indistinguishable from the
> uncompromised network. That box is totally o
I am trying to install Debian potato onto Netserver LC
2000r machine from HP.
With kernel 2.2.18pre21 (potato 2.2r3) the kernel
hangs with last message :
scsi2: Found a MegaRAID controller
With kernel 2.2.19 the kernel boots, but no hardrives
are detected.
Does anyone found this situation ?
Plea
On Fri, 11 Jan 2002 00:14, martin f krafft wrote:
> however, DENYing has the advantage of *severly* slowing any portscan,
> and because obscurity is not a security measure[1] and REJECT not being
> any safer then DENY, you are really not gaining anything...
Another point is that you may not want t
On Fri, 11 Jan 2002 10:39, Anders Gjære wrote:
> I have a router running BGP / Zebra, and it seems like the maximum
> throughput is 25Mbit/s
>
> BGP and Zebra using 100% cpu together, and alternating on witch using
> most.
Presumably you mean that the bgpd and the zebra process use 100% CPU.
When
Adrian,
I've not played with a HP with megaraid but I can point you to a
Dell/Redhat specific site that may get you started
http://domsch.com/linux/ - see the megaraid section.
The basic problem is that you need the correct driver for your card to
get the install to work and the older kernels
On 10/01/02, Nathan E Norman wrote:
> On Fri, Jan 11, 2002 at 01:29:08AM +0100, martin f krafft wrote:
> > first, the IP is taken and reverse-resolved to a domain name. then the
> > domain name is resolved to an IP. if that IP doesn't match, it'll DENY.
> > now if 1.2.3.4 were to point to mail.mad
On Fri, 11 Jan 2002 10:39:01 +0100, =?iso-8859-1?Q?Anders_Gj=E6re?= writes:
>I have a router running BGP / Zebra, and it seems like the maximum
>throughput is 25Mbit/s
>
>BGP and Zebra using 100% cpu together, and alternating on witch using
>most.
>
>The machine is a pII 233 with 196mb ram.
>
>Wha
I am trying to install Debian potato onto Netserver LC
2000r machine from HP.
With kernel 2.2.18pre21 (potato 2.2r3) the kernel
hangs with last message :
scsi2: Found a MegaRAID controller
With kernel 2.2.19 the kernel boots, but no hardrives
are detected.
Does anyone found this situation ?
Ple
On Fri, Jan 11, 2002 at 12:18:13AM +0100, martin f krafft wrote:
> [greg: please wrap your lines at 76 characters...]
>
> also sprach Greg Hunt <[EMAIL PROTECTED]> [2002.01.10.1850 +0100]:
> > The reason it reports it as filtered is if someone tries to
> > connect to a port on which you're not run
On Fri, 11 Jan 2002 00:14, martin f krafft wrote:
> however, DENYing has the advantage of *severly* slowing any portscan,
> and because obscurity is not a security measure[1] and REJECT not being
> any safer then DENY, you are really not gaining anything...
Another point is that you may not want
On Fri, 11 Jan 2002 10:39, Anders Gjære wrote:
> I have a router running BGP / Zebra, and it seems like the maximum
> throughput is 25Mbit/s
>
> BGP and Zebra using 100% cpu together, and alternating on witch using
> most.
Presumably you mean that the bgpd and the zebra process use 100% CPU.
Whe
I have a router running BGP / Zebra, and it seems like the maximum
throughput is 25Mbit/s
BGP and Zebra using 100% cpu together, and alternating on witch using
most.
The machine is a pII 233 with 196mb ram.
What hardware/config-changes do i need to be able to route 100Mbit/s?
Mvh
Anders Gjære
On 10/01/02, Nathan E Norman wrote:
> On Fri, Jan 11, 2002 at 01:29:08AM +0100, martin f krafft wrote:
> > first, the IP is taken and reverse-resolved to a domain name. then the
> > domain name is resolved to an IP. if that IP doesn't match, it'll DENY.
> > now if 1.2.3.4 were to point to mail.ma
On Fri, 11 Jan 2002 10:39:01 +0100, =?iso-8859-1?Q?Anders_Gj=E6re?= writes:
>I have a router running BGP / Zebra, and it seems like the maximum
>throughput is 25Mbit/s
>
>BGP and Zebra using 100% cpu together, and alternating on witch using
>most.
>
>The machine is a pII 233 with 196mb ram.
>
>Wh
On Fri, Jan 11, 2002 at 12:18:13AM +0100, martin f krafft wrote:
> [greg: please wrap your lines at 76 characters...]
>
> also sprach Greg Hunt <[EMAIL PROTECTED]> [2002.01.10.1850 +0100]:
> > The reason it reports it as filtered is if someone tries to
> > connect to a port on which you're not ru
I have a router running BGP / Zebra, and it seems like the maximum
throughput is 25Mbit/s
BGP and Zebra using 100% cpu together, and alternating on witch using
most.
The machine is a pII 233 with 196mb ram.
What hardware/config-changes do i need to be able to route 100Mbit/s?
Mvh
Anders Gjære
56 matches
Mail list logo
