to hear this, but:
vixie-cron is problematic in the extreme. I have endless hassle with it's
weird behaviours.
Use a different cron daemon.
Strange. I've never had a problem with it and Gentoo though I use Gentoo
primarily as a server.
kashani
ig.
Also make sure that you allow mynetworks before requiring authentication
like this example below. If you don't, your mail server will try to
authenticate access from localhost.
smtpd_recipient_restrictions =
permit_mynetworks
permit_sasl_authenticated
kashani
good idea to
turn bin logs off because there are cases when it's easier to recover
data or fix tables if you have current logs.
kashani
localhost for webmail to interact with it, but you should have far less
problems. And less change of sniffers pulling user/pass from wireless
connections in cafes.
kashani
On 6/20/2010 5:06 PM, deface wrote:
Try fail2ban
How about reading the whole thread before posting a one liner?
kashani
I'd say
you're not going to notice much speed unless you're very CPU bound.
kashani
t versions of it on board and it's not a hardware chip
anymore, but, compared to most other intelligent platforms, PC BIOS is
pretty braindead.
For the record only Sun servers have ever made me utter, "Let me get
this straight. I have to update the firware on the POWER SUPPLY too?!?"
E6500s circa '99.
kashani
On 6/23/2010 1:56 PM, Stefan G. Weichinger wrote:
Am 23.06.2010 04:27, schrieb kashani:
I updated from a Q6600 to an i7 860 recently. Not amazing speed
wise, but I can run 8 threads and use more than 8GB of RAM. The RAM was
the big thing for me. If you're planning to do a lot with VM
ad after Mysql only if it exists in the current runlevel. As
other people have said, there isn't any problem to solve here.
kashani
the hell of it, never use mbox over NFS.
The locking will kill you on a busy system.
kashani
r-imap which might affect
the overall speed. The update from 0.1.9 to 0.1.10 doesn't look like it
would account for the increased speed.
kashani
there any easy way to do this or do I have to
track it down the Modeule-Build dependency tree which looks to be the
culprit.
kashani
Paul Hartman wrote:
On Fri, Sep 18, 2009 at 5:40 PM, kashani wrote:
kash...@www01 ~ $ emerge -pvt bugzilla
These are the packages that would be merged, in reverse order:
Calculating dependencies... done!
emerge: there are no ebuilds to satisfy "~dev-lang/perl-5.10.1".
(dependency r
-Generic
dev-perl/DateTime-TimeZone
dev-perl/Data-ObjectDriver
dev-perl/File-Flock
dev-perl/TheSchwartz
perl-core/Module-Build
perl-core/Test-Harness
virtual/perl-Module-Build
virtual/perl-Test-Harness
And now I've got a fancy new bugzilla.
kashani
Torsten Veller wrote:
* kashani :
3. Doctored up portage.mask to mask the errant virtuals
=virtual/perl-Digest-SHA-5.47
=virtual/perl-Test-Harness-3.17
Thought grumpy thoughts at developers who let packages into ~x86
with completely broken deps. Hard mask that crap next time.
There are no
Squid which is your most powerful and flexible option, ngnix,
lighttpd, or Varnish.
There are some security concerns with this type of setup, ie running
daemons open to the public on your firewall, reverse proxies need to be
locked down, hard to do IP based restrictions on the webserver, etc.
kashani
retty fast but it appears they are a
little hard to find nowadays. In matter of importance: size, price,
speed. Newegg is great but will consider others as well.
Thanks for any pointers. Open to ideas.
SATA PCI card should be < $20. I'd then go with a SATA II drive.
kashani
James wrote:
So the best I can do is forward all traffic( 80, 443, etc) for the
group of websites to a proxy behind the firewall, then use software
such as what kashani suggested (proxypass, Squid, ngnix,
lighttpd, or Varnish) and parse the traffic with some form of
vhosts implementation on a
Dale wrote:
kashani wrote:
Dale wrote:
Hi,
I recently got DSL and youtube is growing on me. LOL I been trying to
find a really good hard drive that is around 400 to 500Gb and pretty
fast. It has to be a IDE drive, you know, the big wide cables. I don't
have SATA on this rig.
I h
east newer computer time?
kashani
your
Yep, it's been studied and even has a a fun name.
http://en.wikipedia.org/wiki/Bathtub_curve
kashani
his
could be an ultramonkey question just trying my luck on the gentoo forum
first.
Regards,
Ninus
I think the issue is that Ultramonkey hasn't updated any software since
2005. And what their calling source looks like a skeleton config for a
meta package that'll work only in Debian.
kashani
Mike Williams wrote:
On Monday 28 September 2009 04:41:08 Nick Khamis wrote:
So no Ultramonkey 3 on Gentoo? Anyone?
Looks to me like Ultramonkey is just some documentation, and as kashani said,
some skeleton configs for Debian. I do not see any actual "ultramonkey
software" or eve
to add larger jets to your proprocessor as well?
kashani, moto geeks unite!
ptop which has much weaker specs.
Now that it's working how do you like the screen, size, etc? That's one
of the laptops I've been considering.
kashani
owing Florian's post you'd see that he's
running a VPS which is probably a heavily patched 2.6.18. At least my
VPS is like that. Come on, don't you read everyone's post?
Yeah BIOS can effect it, the kernel not so much. Not sure about an
openvz style VPS.
kashani
opping the
unencrypted protocols. Usually keeps people from banging on the servers
and much safer if you use the occasional unsecured wireless network.
kashani
this for a road warrior setup.
Use Openvpn. Way simpler, has a client for all the major OSs, and most
importantly isn't based on annoying ipsec. You can use Openvpn between
servers as well to setup tunnels.
kashani
from all
So for each vhost I have to define a directory and give it the access I
want. Here's the config for one of my vhosts.
[EMAIL PROTECTED] kashani $ more /etc/apache/conf/vhosts/badapple.net.conf
# $Header:
/home/cvsroot/gentoo-x86/net-www/apache/files/conf/Vhosts.conf,v 1.
tions
are of course more then welcome.
TIA Patrick
mod_rewrite is part of Apache by default at least in my Apache1
installation. Can't imagine it's changed in Apache2. Try
grep rewrite /etc/apache2/conf/apache.conf
and you'll likely see it.
kashani
--
gentoo-user@gentoo.org mailing list
ou may have had.
kashani
--
gentoo-user@gentoo.org mailing list
A. Khattri wrote:
On Mon, 16 May 2005, kashani wrote:
completing them any faster than the old server. However load remains a
steady 0.10-0.20 whether there are 300 threads or 500. This appears to
be the main benefit of the new threading. Better scalabilty and more
efficient use of resources in a
offered a live
CD, numerous times, by the same people. It finally stopped when I said:
"Thanks for the Ubuntu disk, but I use Gentoo."
kashani
--
gentoo-user@gentoo.org mailing list
like it or not. While not as
professional sounding, 1-2k users testing a package and bitching if
something goes wrong on the forums it is at least as accurate as any
real Q&A team I have dealt with.
kashani
--
gentoo-user@gentoo.org mailing list
ey were talking about.
I also assumed it was going to be more like my 2621 group, which is
2600 except it's held at a bar to keep the script kiddies out. That
group is mostly security or admin people with hobbyists being the minority.
kashani
--
gentoo-user@gentoo.org mailing list
Joe
"Auto-negotiation usually doesn't." --kashani
That said things tend to be better than they were five years ago, but
you still run into a number of cases where the popular wisdom is true.
If you're dead set on having it work everytime you should look into hard
setting yo
is necessary to add the xinetd to the
runlevel or ???
At minimum you'll need to edit /etc/xinetd.conf and remove the localhost
only line. Then start xinetd. And finally add it to the default run
level so that it starts on boot.
kashani
--
gentoo-user@gentoo.org mailing list
rtage?
mkdir /var/log/portage
echo "PORT_LOGDIR=/var/log/portage" >> /etc/make.conf
kashani
--
gentoo-user@gentoo.org mailing list
nit.d/serial in *... ]
dragonfly ~ #
qpkg didn't seem to go backward from a file name.
What other program can I run to discover that?
qpkg seems to work okay for me.
laxlxns02 ~ # qpkg -f /etc/init.d/serial
sys-apps/baselayout *
kashani
--
gentoo-user@gentoo.org mailing list
written and readable doc. It'll help a number
of users. Nice job.
kashani
--
gentoo-user@gentoo.org mailing list
rums.gentoo.org/viewtopic-t-282209.html
http://forums.gentoo.org/viewtopic-t-225581.html
http://forums.gentoo.org/viewtopic-t-206368.html
http://forums.gentoo.org/viewtopic-t-150044.html
kashani
--
gentoo-user@gentoo.org mailing list
Stroller wrote:
On 20 Dec 2007, at 07:26, kashani wrote:
I used Redhat, Fedora, and Gentoo on 2550, 1650, 2650, 1750, 1850,
and 2850 PowerEdge servers ...
Blimey! You obviously know your stuff. So how do you find Gentoo
measures up to Redhat / Fedora on these machines?
Never had an
ted at it would have been at
least consistent on my wife's & son's machines, or so I think.
Strange problem.
What's the exact URL you have set for your homepage? I'll be able to
track down which team to poke if I have that.
kashani, works at Yahoo.
--
[EMAIL PROTECTED] mailing list
ients (Thunderbird, mail(mac)) chokes when I try
to send a mail.
What error does your MUA return and what are the errors that Postfix
logs from the same transaction? I'm betting this is a SASL problem and
not a TLS problem.
kashani
--
gentoo-user@lists.gentoo.org mailing list
back to PC2 so when traffic bound for it
comes it, it'll know what to do with it.
route add -net 192.168.2.0 netmask 255.255.255.0 gw 192.168.1.23
kashani
--
gentoo-user@lists.gentoo.org mailing list
PC1.
ping router 1 from PC2 and vice versa. That'll make sure that PC1 is
forwarding packets correctly.
If both of these are fine, it's possible the router1 is not NATing
192.168.2.0/24 addresses.
kashani
--
gentoo-user@lists.gentoo.org mailing list
dresses it doesn't want to.
Adding that subnet to the NAT list will, but that is outside the routing
table or it would have already worked.
kashani
--
gentoo-user@lists.gentoo.org mailing list
James wrote:
I only ask because Sun just paid
a billion dollars for MySQL
http://www.infoworld.com/article/08/01/16/sun-mysql_1.html
How is it that Open Source is for sale?
GPL?
Dual license.
--
gentoo-user@lists.gentoo.org mailing list
OSX, Linux, BSD, etc.
kashani
--
gentoo-user@lists.gentoo.org mailing list
ng a customer prefix for
databases. Some thing like acme_drupal, sears_drupal, etc which will
make it much simpler to remember what db is for what.
You'll need to work out your release system. I'm not sure what tools
drupal offers if any. Have you looked through their
ot apply retroactively so you'll need to dump and
reimport any db you'd like to take advantage of it.
kashani
--
gentoo-user@lists.gentoo.org mailing list
right? My
host must be filtering the ports?
It's fairly standard practice on large mostly residential user ISPs to
filter outgoing port 25 traffic to any IP, but the local SMTP servers.
This stops a fair amount of spam, but can make troubleshooting complicated.
kashani
--
gentoo-user@l
e the mailman user to
point to the right homedir, make sure your lists are in the right place,
etc.
kashani
--
gentoo-user@lists.gentoo.org mailing list
er.cf uncomment the following lines and then restart
Postfix. It should just work if you already have TLS setup.
smtps inet n - n - - smtpd
-o smtpd_tls_wrappermode=yes
kashani
--
gentoo-user@lists.gentoo.org mailing list
tls_session_cache_timeout = 3600s
tls_random_source = dev:/dev/urandom
Additionally check to see what port Postfix is listening on. It's on
port 465 on my server and you'll need to set your mail client to SSL
rather than TLS.
kashani
--
gentoo-user@lists.gentoo.org mailing list
ut = 3600s
tls_random_source = dev:/dev/urandom
How does that look?
Where is your mynetwork statement. You need to have at least 127.0.0.1
in it or locally generated emails won't be able to relay.
kashani
--
gentoo-user@lists.gentoo.org mailing list
can start looking at why you can't authenticate.
I'm going to guess that you haven't bothered to setup smtp
authentication via sasl yet.
kashani
--
gentoo-user@lists.gentoo.org mailing list
mpletely spell out is NAT. You MUST NAT
on each interface or you'll have all sorts of routing fun that does not
work.
kashani
--
gentoo-user@lists.gentoo.org mailing list
x27;d use tcpdump to make sure.
kashani
--
gentoo-user@lists.gentoo.org mailing list
Could that same kind soul please repost the info? And if possible the
same for AMD?
cat /proc/cpuinfo and look for lm, which stands for long mode, under the
flags. I'm pretty sure that works for Intel and AMD.
kashani
--
gentoo-user@lists.gentoo.org mailing list
ou've got Exim set to
deny IP addresses that do not resolve.
kashani
--
gentoo-user@lists.gentoo.org mailing list
mysql script to point to the new config file.
A chroot would be just a waste of space, since you can use the same
binary for multiple instances.
About the only reason to run multiple instances is testing different
versions hence the chroot.
kashani
--
gentoo-user@lists.gentoo.org mailing list
Daniel da Veiga wrote:
On Thu, Apr 3, 2008 at 6:18 PM, kashani <[EMAIL PROTECTED]> wrote:
Daniel da Veiga wrote:
I don't understand why use a chroot to simply run another instance of
MySQL. Is there any good reason?
All you gotta do is create a new configuration file that
ord Authentication (SPA) or Windows Integrated Login. You don't
need it and your imap server won't support it without jumping through
some hoops. As long as you're using imap over SSL there is no reason for
it.
kashani
--
gentoo-user@lists.gentoo.org mailing list
lus why copy around a lot of 1GB
log files when you rsync. If you have the option to shut your master
down, it's a nice short cut to avoid looking up the log position when
you dump and what not. Also rsync is much faster than doing a
master-dump mysqldump in most cases which makes for less production
downtime.
kashani
--
gentoo-user@lists.gentoo.org mailing list
and bane upon our fair Internet.
kashani
--
gentoo-user@lists.gentoo.org mailing list
ical order. Comments will also help you remember
why you did stuff so when you jump to the next major version you can
glance over package.use and see if anything jumps out at you. It all
makes it easier to read and manage as your /etc/portage/* files gets
more complicated.
kashani
--
g
etting what you want before emerging. This
way you know your changes will remain the next time you run emerge uD
world or update mplayer on its own.
kashani
--
gentoo-user@lists.gentoo.org mailing list
E,INSERT,SELECT,UPDATE PRIVILEGES ON your_db.* TO
'your_user'@'localhost';
GRANT CREATE,DELETE,INSERT,SELECT,UPDATE PRIVILEGES ON your_db.* TO
'your_user'@'192.168.2.%';
and so on.
kashani
--
gentoo-user@lists.gentoo.org mailing list
6103058
The Adaptec card looks reasonable though one of the comments indicates
that someone had issues doing RAID5 via Linux with it which seems
strange. You can always test and return if it doesn't work out.
kashani
--
gentoo-user@lists.gentoo.org mailing list
e up arrow is not commands
stored by MySQl, but commands stored by your shell. It's complex to explain,
so bear with me:
I don't know about complicated.
cd
more .mysql_history
Works just like .bash_history
kashani
. I buy a lot of motorcycle parts and tools.
Almost every site that isn't online only is as bad as this site or worse.
kashani
st
fix the docs in a tenth of the time it takes to even figure out where to
get the Gentoo docs in order to edit them. Hell someone can wiki -> xml
the thing and create official releases every couple of months while the
wiki docs continue on as unstable releases.
kashani
ogon-bn-agg.txt and set it to alert you
if the md5sum changes.
kashani
ailarchive/forum.php?thread_name=4404A628.1010301%40shorewall.net&forum_name=shorewall-users
I can't think of anything other than firewall rules that include their
own bogon filter because they do go out of date within a year or two.
kashani
are you looking for? Not a lot to go on here.
kashani
ifficult. It's easy to say
code-1.3.2 is on production. It's hard to say code-1.3.2 and
stored-procs-1.1.1 are on production when the push process is different,
the teams are different, etc. You *can* manage it, but given a choice it
buys you very little and I never meet a DBA that didn't like to tweak
things directly. Hell I've meet far too many that needed to taught how
to checkin code.
kashani
ctually using the db which is nice.
kashani
ain.cf. IIRC this will work if you added the
optional mysql-transport table.
virtual_mailbox_domains = proxy:mysql:/etc/postfix/mysql-transport.cf
I also recommend ditching the Gentoo How-to and using PostfixAdmin which
is light years better in schema and administration.
kashani
plugging it in requires next to no work.
In almost all cases I can think of your RAID1 system will continue to
keep running with the lost of a single disk. Also RAID1 acts like RAID0
when you're reading from it so there is a performance increase on reads.
kashani
disparity in speed would cause.
kashani
on a database that isn't very busy, but don't get in
the habit of doing it that way.
kashani
Momesso Andrea wrote:
On Wed, Dec 17, 2008 at 01:03:46PM -0800, kashani wrote:
I like LVM snapshotting for databases, but that takes some planning and
you have to stop the database. However your mysqlbackup are actually very
unsafe because I know for certain that Mediawiki uses Innodb tables
Mick wrote:
On Wednesday 17 December 2008, kashani wrote:
Momesso Andrea wrote:
So there is no way if I want to keep the databases runnung?
If your database isn't terribly busy I'd setup a second Mysql instance
on the same machines and make it a slave of your primary. Then
our
system. Leave most of the rest alone for the most part unless you're
pretty sure you know what it is. As you get a bit more comfortable and
have a history of working kernels you can experiment more.
kashani
probably more useful than swapping the underlying language your webmail
client in implemented in unless your system is completely starved for RAM.
kashani
updates of Perl modules that your actual site depends on which
may or may not break the site. Now you've got two applications to QA
when you update any Perl module that is a dependency of both.
kashani
haven't been able to find any docs or post of how to proceed.
kashani
check to make sure mysql is only listening to localhost? It
doesn't show up with nmap.
- Grant
sudo netstat -ptln
It' also works without sudo, but then you don't see the process
associated with the open TCP port.
kashani
grade. removal in 30 days.
sys-apps/baselayout-vserver
If I comment that out, I can at least keep working on the system until I
figure out which way to proceed.
kashani
Peter Alfredsen wrote:
On Mon, 19 Jan 2009 10:28:05 -0800
kashani wrote:
I've been putting off the openrc upgrade on my vserver
account for some time and think it's finally come around to bite me.
Our vserver team had this to say about it on -dev a few days ago.
- - ba
uild the
OS with conservative CFLAGs and swap the drive back when done. I've
rarely had issues with this.
kashani
ly give you a heads up when an update isn't quite right.
kashani
.
Do you use a regular gentoo kernel, hardened setup, or what packages to
keep the mail server tightly secure?
I generally found that keeping Webapps and users off you mail server was
good enough security. Also when building most of this stuff years ago
the hardened kernels were a bit painful. Probably much easier now.
kashani
domain='%s'
I'm not sure what how-to you've been using, but I'd look at a few others
to see some of the other options available. The one you're using seems
to be pretty far out of date. While not wrong in any way it isn't taking
full advantage of the last seven years of updates in Postfix.
kashani
o a NTPL glibc which practically doubled
Mysql performance in our environment. Not instruction based, but most
other distros required waiting an additional six months for a release to
get this.
kashani
ally a system that has
exactly what you expect to be installed and how. Whether this is a GUI,
ncurses based, whatever is besides the point. An installer project
builds a set of tools that eventually can be used to install hundreds of
machines in a uniform way and that is damn useful.
kashani
got a clue what I am doing wrong?
Did you install all the compat packages it requires? I would use this
site as a base for installing all the packages you will need on Gentoo.
http://www.puschitz.com/InstallingOracle10g.shtml
kashani
ng you need at
http://www.shorewall.net/Documentation_Index.html which is going to far
better than trying to cobble everything together yourself.
kashani
ll the
dirt/dust/lint blown out that you can.
HTH-
James
9 out of 10 times compressed air fixes this. I just impressed my cousin
last month with this $2.99 fix when he was looking for a much more
expensive and involved fix.
kashani
--
[EMAIL PROTECTED] mailing list
1 - 100 of 508 matches
Mail list logo
