Displaying 20 results from an estimated 1000 matches similar to: "how can i log everything?"
2005 Aug 21
1
Security warning with sshd
In my recent security email, I got the following errors:
cantona.dnswatchdog.com login failures:
Aug 20 02:37:19 cantona sshd[9444]: fatal: Write failed: Operation not permitted
Aug 20 04:30:42 cantona sshd[16142]: fatal: Write failed: Operation
not permitted
Aug 20 21:21:51 cantona sshd[45716]: fatal: Write failed: Operation
not permitted
So three questions: What is it? Should I be worried?
2004 Sep 17
8
can I write such an action?
hi,
i create rule such action.AllowPostGrey:
-----------------------------------------------
######################################################################################
#TARGET SOURCE DEST PROTO DEST SOURCE
RATE USER/
# PORT PORT(S)
LIMIT GROUP
ACCEPT $A_IP $PORTAL_IP tcp 10023
ACCEPT
2004 Aug 08
1
using ULOG
hi,
if i would like to use ulog (in order to split netfilter messages from
other kernel messages), than i have to set all loglevel to ULOG? and
then is there any way to define diferent loglevel for eg. maclist?
thanks in advance.
yours.
ps. it''s a bit confusing that all loglevel parameter name is LOG_LEVEL
except BLACKLIST_LOGLEVEL:-(
--
Levente
2004 Aug 06
9
how to define a dozens of interface as one zone
hi,
we use openvpn as for our vpn endpoints and we''ve got about 70-80 vpn
connections which means we have tun0 - tun80 interface. i''d like to
define one zone for all of our vpn connections how can I do that?
actualy our local zone is 192.168.0.0/17 (not 16) and all of the vpn''s
are in 192.168.128.0/17. our should i define somehow the local zone as
192.168.0.0/16? but in
2006 Dec 07
1
a few more notes
hi,
while all files is owned by nsd user and nsd run as nsd the nsd.db is
still owned by root user (because the compiler run as root and create
this file as root, ok i know just it'd be better if this file is owned
by nsd too).
another strange thing is that on the slave nsd i've got such messages:
-----------------------------------------
zonec: reading zone "lfarkas.org".
2004 Oct 06
4
SNAT is less expensive than MASQ
hi,
in the masq file''s documentation, there is a sentence:
"If you have a static IP on that interface, listing it here makes
processing of output packets a little less expensive for the firewall."
this realy means that SNAT to the primary address is less expensive than
a MASQ rules in the netfilter? is this documented anywhere in
iptables/netfilter?
thanks.
--
Levente
2008 Jun 25
2
[Fwd: Re: [CentOS-announce] Release for CentOS-5.2 i386 and x86_64]
may here someone can answer me...
-------- Original Message --------
Subject: Re: [CentOS-announce] Release for CentOS-5.2 i386 and x86_64
Date: Tue, 24 Jun 2008 18:31:20 +0200
From: Farkas Levente <lfarkas at lfarkas.org>
To: The CentOS developers mailing list. <centos-devel at centos.org>
References: <4860E6EB.5000906 at centos.org>
Karanbir Singh wrote:
>
> We are
2007 Jun 13
4
network raid file system/server
hi,
we've a few 10-20 server in a lan each has 4-8 hdd. we'd like to create
one big file server on these server hard disks and we'd like to create
it in a redundant way ie:
- if one (or more) of the hdd or server fails the whole filesystem still
usable and consistent.
- any server in this farm can see the same storage/filesystem.
it's someting a big network raid5-6... storage where
2015 Aug 07
4
6.7
On 08/07/2015 01:04 PM, Johnny Hughes wrote:
> 6.7 is there most places ... since we have more than 500 external
> mirrors (right now 593) not all of them are updated. (looks like
> 4% still are not completely updated)
what about the src.rpms? it seems http://vault.centos.org/6.7/os/ and
http://vault.centos.org/6.7/cr/Source/ is empty and while
2014 Aug 03
4
don't use centos 7 as a developer workstation
Hi,
May be it's not clear to everyone.. so this's just a quick notice to
everyone.
Don't use CentOS 7 as a developer workstation since currently there is
not included any developer IDE. As eclipse was pulled out from the main
distro and put into Red Hat Developer Toolset (which is imho a good idea
not to use a 7 years old IDE). But Red Hat Developer Toolset is still
not supported on
2006 Dec 10
5
which is the vaild a format?
hi,
after i test nsd i find the following. if i use this in a zone file:
$ORIGIN example.com.
CNAME www
www CNAME x
x A 1.2.3.4
then it's excepted by nsd what's more give the proper result. if the
slave is nsd than there is no problem, while if the slave is bind i've
got the following error:
2005 Jun 03
3
The Kolab Storage Format, supported?
hi,
is dovecot are support all required feature for kolab imap server? the
requirements can be found here:
http://www.kolab.org/doc/kolabformat-2.0rc3-html/index.html
ie. can i replace cyrus-imap with dovecot in a kolab server?
thanks in advance.
yours.
--
Levente "Si vis pacem para bellum!"
2003 May 15
3
ssl still not working
hi,
I'm just download the latest cvs and try to use imaps. in mozilla I've
got the following message window:
-----------------------------
mail.int.bppiac.hu received a message with incorrect Message
Authentication Code. If the error occurs frequently, contact the website
administrator.
-----------------------------
and there is only one OK button:-)
and this happens always. what can be
2004 Aug 10
11
who gives access? was: why ADD_DNAT_ALIASES missing?
hi,
there was some email problems and i repeat my question too fast, but
this is the second part of my questions.
- only the rules and policy files give access right? ie. rules in the
FORWARD chain of the filter table in iptables ?
- is a line in masq file automaticaly add an accept rule too? eg. in
msaq file
eth0 <internal ip>
allow connection from <internal ip> (local zona) to the
2011 Jan 28
2
liebertgxt2 patch for 2.6.0
hi,
it seems our latest liebertgxt2 patch still missing from the just
released 2.6.0. i'm attached the patch to the 2.6.0. this patch:
- add the possibility to properly shutdown the ups,
- can be used through usb-serial adapter cable too.
could you apply it to the source.
regards.
--
Levente "Si vis pacem para bellum!"
-------------- next part
2004 Jan 13
3
dovecot and evolution
hi,
in evo when I open my mailbox INBOX is in the middle of my foder list.
it seems evo sort folders alphanumericaly and eg Drafts is before
INBOX. is there any way to put the inbox as the first folder? it very
annoying:-(
ps. anyway what is the status of the new indexing code and the thread
view bug?
thanks.
--
Levente "Si vis pacem para bellum!"
2005 May 12
12
New Article at Shorewall.net
This article describes how to implement "Port Knocking" in Shorewall.
http://shorewall.net/PortKnocking.html
-Tom
--
Tom Eastep \ Nothing is foolproof to a sufficiently talented fool
Shoreline, \ http://shorewall.net
Washington USA \ teastep@shorewall.net
PGP Public Key \ https://lists.shorewall.net/teastep.pgp.key
2003 May 28
2
the most serius problems [part 1]
hi,
I try to collect out most serious problem with dovecot. so I write a
series of mails:-)
the first on is the load.
has anybody else use dovecot in a real enviromnt with at least hundreds
of users and at least 50 concurrent user at the same time?
it seems to me no one else just me.
the weekend I move the whole mail system to a quad P4 with 1Gb ram and
this server do nothing just imap.
2003 May 21
1
still problem with load
hi,
we've got (and getting more) serious problem with load. I'm just
calculate that ther is about 300 mailbox with 20Gb mails. and the whole
system is _very_ slow and just getting slower and slower. it's a fast
lan every client has 100Mb connection to the server with gigabit crad
and gigabit switches. when I push the delete button in a mail I usualy
have to wait 10,20 or 30
2004 Aug 10
6
why ADD_DNAT_ALIASES missing?
hi,
is there any reason why there is no such thing as ADD_DNAT_ALIASES in
shorewall.conf or in rules (or am i just missed it)? i think about it
like in masq file if the masquaraded outgoing interface is different
from the default firewall intyerface than i can use ip:<digit> where the
digit is the alias number. since dnat is in the rules it can be used
from there. eg: if would like to dnat