y now, recursively destroying
information in or about system files tends to be a bad idea. As is, as
a general rule, using chown as a privileged user just so that you can
edit a file such as this as an unprivileged user.
--Jon Radel
[EMAIL PROTECTED]
smime.p7s
Description: S/MIME Cryptographic Signature
, however, that in the future you constrain your e-mail to
freebsd-questions to either questions or answers to them, so as to not
inflame our more excitable representatives once we hire a new, much
reduced, batch of them.
Thanks.
--Jon Radel
Who will now resign in shame
___
x27;). This
group requirement may be changed by modifying the ``pam_group'' section
of /etc/pam.d/su. See pam_group(8) for details on how to modify this
setting.
which may well be why the OP keeps stressing that his unprivileged user
is not in the wheel group. ;-)
--Jon Radel
[EMAIL PROTECTED]
smime.p7s
Description: S/MIME Cryptographic Signature
gt; Ithaca, NY
Locally, probably nowhere. But try
www.staples.com
where there's currently one type of paper available by the ream or case.
Of course, it costs more and then you'll need to get A4 binders,
slightly longer file folders, a new file cabinet,
It's not easy switching.
--Jon Radel
smime.p7s
Description: S/MIME Cryptographic Signature
es by brute force, so these
days many servers don't give you a hint unless you actually send some
mail. Some don't even give you a hint then, simply black holing the
mail if the address is incorrect.
--
--Jon Radel
j...@radel.com
smime.p7s
Description: S/MIME Cryptographic Signature
ust can't get general purpose disks that small anymoreI'd think
that assuming everyone had at least 10 GB disks at this point would be
reasonable.
I'm all for increased defaults.
--
--Jon Radel
j...@radel.com
smime.p7s
Description: S/MIME Cryptographic Signature
oing to have to tell us what you mean by "hook up my
machines to the machine running the ntp server."
--
--Jon Radel
j...@radel.com
smime.p7s
Description: S/MIME Cryptographic Signature
verything to do with starting off almost 10 minutes off
and a config file that says to never make a step correction larger than
1 second and to panic if you see an offset of over 1 second.
--
--Jon Radel
j...@radel.com
smime.p7s
Description: S/MIME Cryptographic Signature
epting time data
from the Windows server at least on some level.
--
--Jon Radel
j...@radel.com
smime.p7s
Description: S/MIME Cryptographic Signature
used, and really not that
confusing once you pay attention. (My apologies to anyone else who
discussed this earlier; I found it difficult to read every message in
this thread.)
BTW, it's hard for me, personally, to take seriously anyone who quotes
in full, with no trimming, somethin
ot;/etc/rc.d/sshd keygen". In all cases that I know of, it's just the
ssh-keygen program being run on your behalf.
--
--Jon Radel
j...@radel.com
smime.p7s
Description: S/MIME Cryptographic Signature
ght.org.
thought.org.38400 IN NS ns1.localhostservices.net.
thought.org.38400 IN NS ns2.secondary.com.
thought.org.38400 IN NS a.ns.celestial.com.
Fix your DNS!
--Jon Radel
___
freebsd-questions
the MAC address
information as well if things appear to be really odd.
--
--Jon Radel
j...@radel.com
smime.p7s
Description: S/MIME Cryptographic Signature
ur nameserver
is up and running.
What happens if you restart just your mailserver at this time?
If that doesn't resolve the matter, give us some details about where
your nameserver and mailserver live, and give us the contents of
/etc/resolv.conf on the mailserver, and tell us for which e-
registrar and in NS records in your dns zone.
With those two steps, dns as a whole will become a bit more resilient
for you.
--Jon Radel
j...@radel.com
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-qu
related patches you're missing.
--
--Jon Radel
j...@radel.com
smime.p7s
Description: S/MIME Cryptographic Signature
assuming he
doesn't just wave his hands and tell you plug your phone in "here" and
go away.
--
--Jon Radel
j...@radel.com
smime.p7s
Description: S/MIME Cryptographic Signature
-addr.arpa. 259200 IN NS ns0.0.111.66.in-addr.arpa.
0.111.66.in-addr.arpa. 259200 IN NS ns1.0.111.66.in-addr.arpa.
;; Received 107 bytes from 66.111.0.253#53(ns1.identry.com) in 17 ms
The PTR record looks reasonable, but those NS records...well. ;-)
--Jon Radel
smime.p7s
Description: S/MIME Cryptographic Signature
If not, you'll have real
trouble reading anything off of your disks. With software RAID, you at
least stand a decent chance of recovering everything from nothing more
than the (N-1) hard disks, a FreeBSD CD-ROM, and the components to build
a new server around them.
--Jon Radel
smime.p7s
Description: S/MIME Cryptographic Signature
dresses but can't afford to shut
everything down long enough to change everything all at once.
There are others.
--Jon Radel
smime.p7s
Description: S/MIME Cryptographic Signature
me of your directory
is so embarrassing that you can't share it. By sanitizing such things,
rather than reporting exactly what you typed and exactly what the
response is, you seriously risk editing out clues. If you already knew
what was important as a clue, you probably wouldn't need to ask the
question.
--Jon Radel
smime.p7s
Description: S/MIME Cryptographic Signature
s that
supplied with pf. See ftp-proxy(8) or
http://www.openbsd.org/faq/pf/ftp.html
--Jon Radel
smime.p7s
Description: S/MIME Cryptographic Signature
name & password while the other users getting to that
> folder/directory.
Assuming you're using Samba for this, you'll need to read up on
authentication in Samba and then figure out which of several options are
configured on your system. It is not [necessarily] sufficient to add a
F
ome of us are convinced that we further
reduce our risk from scanning by turning off password access and forcing
the use of keys.
--Jon Radel
smime.p7s
Description: S/MIME Cryptographic Signature
;m the guy who takes the time to put on his seatbelt each and
every time he starts the car, despite never, not once, having to
actually use it in 3 decades of driving.
> Firewalls are too often crutches for people that don't want to learn
> how to properly maintain a host.
Now t
s with FreeBSD.
>>
>> This works:
>>
>> AllowUsers [EMAIL PROTECTED] [EMAIL PROTECTED] [EMAIL PROTECTED] [EMAIL
>> PROTECTED]
>>
> man hosts.allow
Now that would really confuse things. We're not talking tcp wrappers
here, or at least we weren't.
man sshd_config
--Jon Radel
smime.p7s
Description: S/MIME Cryptographic Signature
r, as is usually the case, unless you do some benchmarks on *your*
computer, it's hard to say more than "the first couple GB of RAM you add
will probably make your workstation run faster."
--Jon Radel
smime.p7s
Description: S/MIME Cryptographic Signature
Jon Radel wrote:
> herbert langhans wrote:
>> Hi Daemons,
>> recently I had to add some more RAM on a workstation. Was 512MB before and
>> is 2GB now, the reason was to give some graphic apps more space.
>>
>> But to my surprise the workstation ran faster--but
/MySQL/etc. are well supported under. You may well do better to
find a "Use Apache to build a web site" or "(language of your choice)
with (database of your choice)" book that suits your development
philosophy.
--Jon Radel
smime.p7s
Description: S/MIME Cryptographic Signature
at any time with
very little loss of already transferred bytes, you may find it more
resilient in your situation.
--Jon Radel
smime.p7s
Description: S/MIME Cryptographic Signature
Use ssh-agent
right and you can make things even easier for yourself.
>
> having to log through 2 accounts doesn't increase security. actually
> increases mess.
The only mess I can think of is all that logging that forces a bit of
accountability onto all the admins who know the roo
ssage or misconfiguration.
Did you configure apache at all after you installed it? If so, what did
you do?
--Jon Radel
smime.p7s
Description: S/MIME Cryptographic Signature
atch
one, this will give you the MAC address of the source of the traffic. I
would hope that this would help narrow it down.
Meanwhile, I'll see if I can replicate this when I'm paying a bit more
attention. :-)
--Jon Radel
smime.p7s
Description: S/MIME Cryptographic Signature
Jon Radel wrote:
Christer Solskogen wrote:
Derek Ragona wrote:
I would do a traceroute from all your hosts there. When you do keep
an eye out for the arp error message. This should help find the host
causing these errors and then look at that systems configuration.
Also do you have more
sonally I doubt this is anything serious to
worry about, but as I have no real evidence for that feeling You
may, however, find http://en.wikipedia.org/wiki/0.0.0.0 at least mildly
interesting.
--Jon Radel
smime.p7s
Description: S/MIME Cryptographic Signature
other than in hobbyist's private networks and things built with
volunteer labor, there are generally labor costs. Rummaging in the junk
pile can get pretty expensive if you have to pay somebody to do it....
--Jon Radel
smime.p7s
Description: S/MIME Cryptographic Signature
ts, I suspect you will have to install something more
sophisticated, such as procmail from ports.
I'm using the Thunderbird.
Or, you could set up rules in Thunderbird to do the forwarding from
there. Of course, this means that mail gets forwarded only when
account1 checks for mail.
-
ion on this and related topics.
My suggestion would be to let both sides auto-detect if they're both
capable of gigabit ethernet.
--Jon Radel
smime.p7s
Description: S/MIME Cryptographic Signature
I'm a touch confused,
however, by your phrasing that as if you're rebutting something I wrote.)
--Jon Radel
smime.p7s
Description: S/MIME Cryptographic Signature
ion (look to the network stuff) and the e-mail server giving you
an error response rejecting your attempt to transfer mail or just
quietly loosing the mail (look to the e-mail servers).
--
--Jon Radel
j...@radel.com
!
BTW, pfctl is the program for controlling the firewall. The actual
firewall is generally referred to as pf.
So if you just turn PF off for a bit, does e-mail suddenly flow?
--
--Jon Radel
j...@radel.com
P speakers
that you expect to get e-mail from on a regular basis, even if you do
throttling of SMTP connections in general. Much less messy....
--
--Jon Radel
j...@radel.com
as to what's in pf.conf, I could offer only the
vaguest guesses based in part on my judged competence of the author of
your pf.conf. Since your pf.conf appears to have possibly destroyed
your e-mail infrastructure, the preliminary assessment is a bit shaky.
--
--Jon Radel
j...@radel.com
self, sent us all just a few minutes ago.
--
--Jon Radel
j...@radel.com
nding test data between a single source
and single destination address pair are you?
--
--Jon Radel
j...@radel.com
speed to that of one interface. The transmit algorithm
attempts to use as much information as it can to distinguish different
traffic flows and balance across the available interfaces."
Has use of Gig ethernet been considered?
--
--Jon Radel
j...@radel.com
Serial, Refresh, Retry, Expire, Neg. cache TTL
extraneous garbage
Etc. You're pretty close and it should work fine after you clean up
your syntax a bit.
--Jon Radel
j...@radel.com
in-addr.arpa.
Judging from the complaint about RR type 'Serial' you've still got
uncommented-out garbage floating around.
Fix all that and it'll get better. Better yet, compare what you've got
against what's in the documentation and think a bit about what it *means*.
The question, of course, is how did you manage to completely break this
since the last go around, where I believe you had the NS records working?
--Jon Radel
j...@radel.com
professional to set it up for you.
-or-
2) Contract with a knowledgable operator to host your zones on *their*
servers.
or
3) Find a fellow student locally who has figured it out and is willing
to look over your files with you until you get it.
--Jon Radel
j...@radel.com
ongly suspect you could
negotiate an exception to that
--
--Jon Radel
j...@radel.com
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "freebsd-question
. And
why did you change
> zone "1.168.192.in-addr.arpa" { type master; file
> >> "/etc/named/master/summitnjhome-reverse.db"
> >> };
>
to
zone "192.in-addr.arpa" { type master; file
"master/summitjnhome-reverse.db"; };
when your PTR lines only give the last octet? Where do you expect the
"168.1" to come from?
--Jon Radel
j...@radel.com
reverse zone; give or take how you connect to the rest of the DNS.
What messages about zones loading did you get when you restarted bind?
Where there any crabby comments in the log file about not loading
master/summitnjhome-reverse.db due to error(s)? Was that file mentioned
at all?
--Jon Radel
com.
41 PTR virtcent19.summitnjhome.com.
--
--Jon Radel
j...@radel.com
ave happy, productive lives doing something useful.
But, no, you had to move up the heat death of the universe by 3 seconds.
--
--Jon Radel
j...@radel.com
ion. They
will also provide all servers and allow use of their dashboard for
maintaining records as a different option.
Don't top-post in this neighborhood, please.
--
--Jon Radel
j...@radel.com
g:8080/
grab a torrent file using HTTP and use a BitTorrent client to get what
you need. Unless, of course, your local firewall/network/ISP/etc blocks
BitTorrent also.
--Jon Radel
j...@radel.com
___
freebsd-questions@freebsd.org mailing list
http://li
iguration choice, a
user that screws up big time, or a "back door" to the data, than a
successful "technical" attack against TSL or SSH.
--Jon Radel
j...@radel.com
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org
s email, the first time it got caught by
SpamAssassin. Maybe because a link in my signature.
We got both on the list.
--Jon Radel
j...@radel.com
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
T
etimes the shell
simply refuses to do it.
This no doubt the wrong place for simple questions like these so someone PLEASE
tell me where better to go. Thank you.
Remember that for the really basic stuff, Unix is Unix is Linux, so any
tutorial you find with a google search or two would a
ting confused as to what it meant for Linux
to be "free?"
BTW, I believe this discussion belongs over in the discussion list, as
it has nothing to do with FreeBSD, so I will sin no more after this.
--Jon Radel
j...@radel.com
___
freebsd-questio
il thinks the e-mail came
from and where it thinks it sent it.
Or you could start by telling us HOW you detected this problem.
--Jon Radel
j...@radel.com
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freeb
r and said, "Wait,
we've been assuming the switch works, what if it isn't."
BTW, Gary, Linksys=Cisco is pretty much just a marketing thing and not a
technology thing.
--Jon Radel
___
freebsd-questions@freebsd.org mailing list
ying for patents, registering copyrights, etc., etc., etc. work vary
from country to country, sometimes rather wildly.
--Jon Radel
j...@radel.com
Adding terribly to the noise, once and only once
___
freebsd-questions@freebsd.org mailing list
http
duplicate no less.
Next time please:
1) tell us what you actually mean by "will not reach"
2) keep in mind that some mailing lists greylist incoming mail
In other words, be specific and patient.
--Jon Radel
j...@radel.com
___
freebsd
comes in on NIC A, add an entry to the
state table indicating that any reply packets should physically go out
NIC A and should be passed to the next hop at adress $gw_a.
WARNING: I use PF primarily on OpenBSD so sometimes get caught out on
the subtle differences to the FreeBSD ve
g:
Yes, if you've got a single network and are renumbering it. As I
understand it, the OP has 2 networks, which is an entirely different
matter.
--Jon Radel
j...@radel.com
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mail
network.
I would suspect that he has stateful firewalls and/or anti-spoofing
rules upstream from him that keep him from replying to everything out a
single interface. If it weren't for that, I suspect we wouldn't be
having this discussion.
--Jon Radel
j...@radel.com
__
On 6/21/11 6:41 AM, Damien Fleuriot wrote:
On 6/21/11 2:32 AM, Jerome Herman wrote:
On 21/06/2011 00:13, Jon Radel wrote:
So depending on the client route, packets from a given IP address can
land on either interface. Actually two clients nated behind the same
public address might end up
ny case should probably be to do some packet sniffing to
confirm that packets from the outside world to the new address actually
get to you in the first place. Or have you confirmed this from DNS logs
or something else?
--Jon Radel
j...@radel.com
_
sh to tell
you, which they completely loose track of by they time they send you a
nice sanitized statement way up top..... ;-)
--Jon Radel
j...@radel.com
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freeb
g and what you think the results mean.
To recap: Cut and paste what's actually happening, not your summary of same.
--
--Jon Radel
j...@radel.com
On 9/16/11 1:37 PM, David Demelier wrote:
For me, I have tested a lot of client mails and I was always able to
write text under the last message. And even microsoft outlook.
Though your current client does appear to keep you from trimming.
--
--Jon Radel
j...@radel.com
" and pay cash every time you surf the web.
--Jon Radel
j...@radel.com
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"
the file from
scratch...
What am I missing here?
Have you tried with all firewalling on the machine turned off?
[My apologies if this has been covered earlier in the thread and I
missed it.]
--Jon Radel
j...@radel.com
___
freebsd-questi
g said that I'm ready for somebody to remind me of some
obscure attack that uses ICMP for more than information gathering. :-)
--Jon Radel
j...@radel.com
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/fr
reful out there.
--Jon Radel
j...@radel.com
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"
oing visibility that
others have reported. Basically, you don't exist a third of the time.
You need to make sure that all the nameservers you list with your
registrar are actually admitting to your existence and are getting
up-to-date data. I recall having this conversation with you be
ufficient information to write a driver is available to any
FreeBSD programmer with permission to use it to write an open source driver.
--
--Jon Radel
j...@radel.com
d the id_rsa file lives on your laptop, all nicely secured
with a passphrase in case somebody steals your laptop.
--Jon Radel
j...@radel.com
;t think
things are completely broken. Actually they're less broken than Gary's
DNS frequently is; it gets discussed on a regular basis for a reason.
So is the last octet of ns1.thought.org's address 209 or 210? ;-)
--
--Jon Radel
j...@radel.com
Consistency is the hobgoblin of little minds.
= 3139940352 (2994 MB)
is a stick bad perhaps?
Start by reading
http://www.FreeBSD.org/doc/en_US.ISO8859-1/books/faq/compatibility-memory.html
If that doesn't cover it, come back here and include a little
information about the version of FreeBSD and the hardware you're using.
--
--J
ported by DNSCog appear to be bogus. They've got
some bugs related to cases where a nameserver has a name in the domain
in question. (And also some bugs related to nameservers which are
reachable by both ipv4 and ipv6, but that doesn't apply to you.)
--
--Jon Radel
j...@radel.com
the FreeBSD mailing list: lie. From: address that of somebody you
discussed that topic with on the mailing list: lie. Date:: lie. All
lies with one goal, to get you to click through on a URL that is *not*
(another lie, get it?) in your self-interest to visit.
--
--Jon Radel
j...@radel.com
, but also send it to another
command for processing.
Think T, not Y, and then type
man tee
which I suspect does exactly what you want.
--
--Jon Radel
j...@radel.com
uch as for off-site backup,
and you trust the physical security for the computer a lot more than you
trust the courier and/or storage site
Of course, I would agree that that's probably not what the OP has in
mind. :-)
--
--Jon Radel
j...@radel.com
specific question which I
can't discern.
--
--Jon Radel
j...@radel.com
ying to start both of them. Do you have named files in both
/etc/rc.d and /usr/local/etc/rc.d?
--
--Jon Radel
j...@radel.com
arlgates.net/nanae/rulesofspam.shtmld>
I would, except all I keep getting are:
404 - Not Found
error messages.
Remove the spurious "d" from the end of the URL.
--
--Jon Radel
j...@radel.com
___
freebsd-questions@freebsd.org mailing list
h
Do you get an error message? Does
it hang? What?
--
--Jon Radel
j...@radel.com
smime.p7s
Description: S/MIME Cryptographic Signature
ratum is going to be one higher than the stratum
of the server you're synchronized against, and you rather have to go out
of your way to override that.
--
--Jon Radel
j...@radel.com
smime.p7s
Description: S/MIME Cryptographic Signature
ing us how he had plugged
a monitor into the server, so we're several degrees removed from reality
by this point.
--
--Jon Radel
j...@radel.com
smime.p7s
Description: S/MIME Cryptographic Signature
this applies in a couple countries where they have
rather draconian laws about selling software that supports any
type of encryption? It's a big world out there, with many
interesting laws.
--
--Jon Radel
j...@radel.com
On 2/27/10 1:31 PM, Programmer In Training wrote:
On 02/27/10 12:22, Jon Radel wrote:
On 2/27/10 2:58 AM, Matthew Seaman wrote:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 27/02/2010 24:50:54, Citra Cool wrote:
can i selling free bsd for my profit??
is it legal??
In a word, yes
mezone/
>
See also the distinction between %t and %T at
http://wiki.squid-cache.org/Features/CustomErrors
--
--Jon Radel
j...@radel.com
e kept up to date with your SSL libraries. :-)
--Jon Radel
j...@radel.com
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"
7.0 server.
Unless they've moved things around since 7.0, you probably want to make
sure that you've not messed with the ifconfig_lo0 line in
/etc/defaults/rc.conf.
My apologies if that config stuff has changed in the latest; I don't
have access to the latest right now.
--
--Jon Radel
j...@radel.com
d), so trying to figure out why
they make sense based solely on what Linux does can be futile. ;-)
--
--Jon Radel
j...@radel.com
On 4/2/10 11:49 AM, David Allen wrote:
On 4/2/10, Jon Radel wrote:
On 4/2/10 8:33 AM, David Allen wrote:
Secondly, it seems the cause of the OP's problem was a delay associated
with an IDENT query. Specificially
confTO_IDENT Timeout.ident [5s] The timeout waiting
eling in your stomach when you realize you've just partitioned
the wrong drive much less ugly. :-)
--Jon Radel
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail t
douche fag fucktard ignoramus dumbo dimwit dope dodo
blockhead doofus dumbbell dunderhead tool nitwit dullard foolish fat
annoying
Which must be why the X for Dummies series of books sells so well in the
U.S., eh?
--Jon Radel
___
freebsd-questions
1 - 100 of 149 matches
Mail list logo
