From thomas@hidden Wed Jun 3 15:31:25 2009 From: thomas@hidden (Thomas Horsten) Date: Wed Jun 3 15:31:36 2009 Subject: Anyone have a spare oldish motherboard (SocketA or similar) with several PCI slots? Message-ID: <5d932cdc0906030631y15008192ofc65a154cccc4d73@mail.gmail.com> Hi, and sorry for the off topic. I have a Linux server running as a MythTV backend with 4 PCI tuner cards. It's an Asus A7N8X Motherboard with an Athlon 3000 processor. Unfortunately it has become unstable and I think it's the motherboard itself since I tried with different RAM. Most new budget motherboards only have 1 or 2 "old fashioned" PCI slots and it would be a waste to spend lots of money on something that really doesn't need very much CPU power.. In the name of recycling, I thought I'd ask if any of you have a spare motherboard with at least 4 PCI slots, that you don't use anymore and would be willing to part with for a reasonable price. If it's not a Socket A but it has a working CPU (~1.5GHz or more) that would also work. If so I'd be happy to pick it up ASAP! Thanks, Thomas From thomas@hidden Wed Jun 3 15:44:33 2009 From: thomas@hidden (Thomas Horsten) Date: Wed Jun 3 15:44:45 2009 Subject: Website (again) In-Reply-To: References: <49DB2C1F.1060104@studio24.net> <49DB267E.3000401@jul17pri.co.uk> <20090407140401.GC2797@weber> <49DB5EEB.8000408@studio24.net> <20090424170237.GA3558@weber> <20090510214340.GA12744@weber> Message-ID: <5d932cdc0906030644r5776aab5pdeb12eb197cf7a77@mail.gmail.com> 2009/5/10 Wawrzyniec Niewodnicza?ski : > Hi, > > [...] >> Here is a very simple n-step plan to achieving this goal: >> >> 1. Find someone who can change the content on http://www.cam-lug.org.uk/ > [...] > > Hmmmm, I guess that is a ''tiny' problem ;) Not really as it's all on my server. I can update the site and/or add accounts for whoever needs to do it but I don't always read the CLUG list so if there's anything I need to do please email me directly! Cheers Thomas From thomas@hidden Wed Jun 3 16:52:02 2009 From: thomas@hidden (Thomas Horsten) Date: Wed Jun 3 16:52:11 2009 Subject: broken mailing list manager for clug In-Reply-To: <49F418B5.3070306@mansfield.co.uk> References: <49F418B5.3070306@mansfield.co.uk> Message-ID: <5d932cdc0906030752w19789bb4w8ee985ce3e8ac0d6@mail.gmail.com> 2009/4/26 Paul M : > > I got another "you've been disabled" message, so I clicked on the link > as per the message, and it looks like mailman is STILL b0rked! I > definitely didn't receive this message on Friday, so I presume that when > mailman barfs it can't send out the reminders, and then by the time they > get there they are pointless. > > |Bad confirmation string > |Invalid confirmation string: 12d8e39c16d3ba1e43de68491c6e6a82e2ab04aa. I know there are issues with the confirmation strings with Excessive Bounces. Apparently it is a known but rare bug in that version of Mailman (it doesn't affect other confirmation strings e.g. in the subscription requests). I will try to get around to upgrading the Mailman ASAP. Until then, please log in to the web interface on the list using your Mailman password, if this Excessive Bounces problem happens. One reason for the excessive bounces, as I found out when investigating Paul's problem a few weeks ago, is that some people's mail servers bounce the mails that you send to the list yourself when it tries to send a copy back to you (because it doesn't accept the mailing list server as a valid sender for emails *from* you). You can resolve this by disabling the option "Receive your own posts to the list?" from the Mailman control panel. Of course if you don't understand why your mails are being bounced, please forward the disconnect notification and I can find out from the server logs. Cheers Thomas From thomas at horsten.com Wed Jun 3 17:51:09 2009 From: thomas at horsten.com (Thomas Horsten) Date: Wed, 3 Jun 2009 16:51:09 +0100 Subject: Test new Mailman version Message-ID: <5d932cdc0906030851o4df5677fn31b1c157e5d54e1d@mail.gmail.com> Hi Just testing the list after upgrading Mailman. If this works, it should fix the issue with the confirmation links in the "excessive bounce" messages. Cheers Thomas From clug at gasops.co.uk Thu Jun 4 17:42:37 2009 From: clug at gasops.co.uk (Longman) Date: Thu, 04 Jun 2009 16:42:37 +0100 Subject: IMAP, large emails and slow connection Message-ID: <4A27EB6D.6070402@gasops.co.uk> Is using IMAP over a 2 MBit circuit a viable option if some of the emails are 20MB in size (due to ridiculous Excel attachments) or will there be some client side caching which means the email only need be downloaded the first time it's opened? From paul+clug at mansfield.co.uk Thu Jun 4 18:14:26 2009 From: paul+clug at mansfield.co.uk (Paul M) Date: Thu, 04 Jun 2009 17:14:26 +0100 Subject: IMAP, large emails and slow connection In-Reply-To: <4A27EB6D.6070402@gasops.co.uk> References: <4A27EB6D.6070402@gasops.co.uk> Message-ID: <4A27F2E2.4030101@mansfield.co.uk> Longman wrote: > Is using IMAP over a 2 MBit circuit a viable option if some of the > emails are 20MB in size (due to ridiculous Excel attachments) or will > there be some client side caching which means the email only need be > downloaded the first time it's opened? can't you set client to download headers only, and/or not download attachments, and/or limit the size downloaded for each message? From colinj at mx5.org.uk Thu Jun 4 19:35:04 2009 From: colinj at mx5.org.uk (Colin Johnston) Date: Thu, 4 Jun 2009 18:35:04 +0100 Subject: IMAP, large emails and slow connection In-Reply-To: <4A27EB6D.6070402@gasops.co.uk> References: <4A27EB6D.6070402@gasops.co.uk> Message-ID: pop3 works fine for 2mb connected mail servers Colin On 4 Jun 2009, at 16:42, Longman wrote: > > Is using IMAP over a 2 MBit circuit a viable option if some of the > emails are 20MB in size (due to ridiculous Excel attachments) or will > there be some client side caching which means the email only need be > downloaded the first time it's opened? > _______________________________________________ > CLUG mailing list > clug at cambridge-lug.org > Website: http://www.cambridge-lug.org > From clug at gasops.co.uk Wed Jun 10 18:28:48 2009 From: clug at gasops.co.uk (Longman) Date: Wed, 10 Jun 2009 17:28:48 +0100 Subject: Avoiding having a www A REC with BIND9 Message-ID: <4A2FDF40.8070003@gasops.co.uk> If you wish to have a domain resolve to the A rec IP of your www host (and your www host just be a CNAME of this), how would you accomplish this in BIND? The record can't go in the Zone file for your domain, as only the hosts/subdomains go in this file? So where does it go? It seems to me that it would go at the REGISTRAR level, for they are the people that provide the 'glue records' for the nameserver addresses of the domains their servers refer you to, but a bit of googling hasn't really found much. From ohanzee at gmail.com Wed Jun 10 23:01:54 2009 From: ohanzee at gmail.com (Ravi Joganathan) Date: Wed, 10 Jun 2009 22:01:54 +0100 Subject: Domain name registrars Message-ID: I am looking for recommendations for decent domain registrar, to transfer my domain. I am looking for registrars who doesn't have too many restrictive conditions, such as outwards transfer fees. Thanks Ravi -- Has the Large Hadron Collider destroyed the world yet? http://hasthelargehadroncolliderdestroyedtheworldyet.com From clug at minimal.cx Wed Jun 10 23:11:35 2009 From: clug at minimal.cx (Ian Spray) Date: Wed, 10 Jun 2009 22:11:35 +0100 Subject: Domain name registrars In-Reply-To: References: Message-ID: On 10 Jun 2009, at 22:01, Ravi Joganathan wrote: > I am looking for recommendations for decent domain registrar, to > transfer my domain. I am looking for registrars who doesn't have too > many restrictive conditions, such as outwards transfer fees. > I am very happy with 123-reg for my UK names, and whilst the UI is rather, well, quirky, I've had no problems with a .org at Joker. If it wasn't for the fact that I always forget until just after I'd paid my renewal fee I'd have moved my .org over to 123-reg by now, as I really like the control over DNS and email that 123 gives me. http://www.123-reg.co.uk/ http://joker.com/ HTH, -- Ian Spray GPG Fingerprint: D170 35A3 C858 6E85 9B5B 1557 4CD5 6F6F E176 2D0A From clug at minimal.cx Wed Jun 10 23:20:43 2009 From: clug at minimal.cx (Ian Spray) Date: Wed, 10 Jun 2009 22:20:43 +0100 Subject: Avoiding having a www A REC with BIND9 Message-ID: > If you wish to have a domain resolve to the A rec IP of your www host > (and your www host just be a CNAME of this), how would you accomplish > this in BIND? The record can't go in the Zone file for your domain, as > only the hosts/subdomains go in this file? So where does it go? It > seems to me that it would go at the REGISTRAR level, for they are the > people that provide the 'glue records' for the nameserver addresses of > the domains their servers refer you to, but a bit of googling hasn't > really found much. Hi Longman, I'm not 100% sure I see your problem, as I think I'm doing what you want to do already with my domain name and it's just fine: ; <<>> DiG 9.3.4-P1 <<>> www.minimal.cx A ;; global options: printcmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 22192 ;; flags: qr rd ra; QUERY: 1, ANSWER: 2, AUTHORITY: 0, ADDITIONAL: 0 ;; QUESTION SECTION: ;www.minimal.cx. IN A ;; ANSWER SECTION: www.minimal.cx. 3600 IN CNAME mail.minimal.cx. mail.minimal.cx. 3600 IN A 217.155.68.52 ;; Query time: 1456 msec ;; SERVER: 208.67.222.222#53(208.67.222.222) ;; WHEN: Wed Jun 10 16:18:14 2009 ;; MSG SIZE rcvd: 67 SMTP RDNS is much more strict than HTTP, so I have my IP map back to my name server with an A record, then have a CNAME for my www on the same public IP. Is this what you mean ? If so I can post fragments of my BIND config, but if not, could you describe what you're not allowed to do ? HTH, -- Ian Spray GPG Fingerprint: D170 35A3 C858 6E85 9B5B 1557 4CD5 6F6F E176 2D0A From tehpeh at gmx.net Wed Jun 10 23:31:07 2009 From: tehpeh at gmx.net (Thomas Pircher) Date: Wed, 10 Jun 2009 22:31:07 +0100 Subject: Domain name registrars In-Reply-To: References: Message-ID: <200906102231.07914.tehpeh@gmx.net> On Wednesday 10 June 2009 22:11:35 Ian Spray wrote: > I am very happy with 123-reg for my UK names, and whilst the UI is > rather, well, quirky, I agree. 123-reg is OK, if you don't want to do 'fancy' settings in DNS. The interface lets you set A, CNAME and TXT records freely, as well as MX. Nothing more. In fact, I miss AAAA records for example, and they told me they "do not have any fixed dates as to when AAAA records will be supported". Their support is not extremely fast, but helpful. Hope this helps, Thomas From jt at camalyn.org Wed Jun 10 23:30:53 2009 From: jt at camalyn.org (jt) Date: Wed, 10 Jun 2009 22:30:53 +0100 Subject: JOB: C++ Specialist Programmer in London close to Kings X Message-ID: <4A30260D.2030607@camalyn.org> JOB: C++ specialist programmer in London close to Kings Cross. Hello, I am looking to recruit a permanent C++ specialist programmer that has previous experience writing mathematical or numerical programs in a Linux environment. You should also have experience of at least 1 scripting language too. This is a job that will pay around ?40,000 -- ?50,000 pa with benefits. As an incentive I will also pay you ?500 - should you commence employment with this employer via my representative. Please contact me using james at camalyn.org to learn more. Thanks, James . . . . . . James Tobin Camalyn +44 (0) 7952 145 127 - mobile to learn more about Camalyn please visit http://www.camalyn.org From dom at latter.org Thu Jun 11 00:41:57 2009 From: dom at latter.org (Dom Latter) Date: Thu, 11 Jun 2009 00:41:57 +0200 Subject: Domain name registrars In-Reply-To: <200906102231.07914.tehpeh@gmx.net> References: <200906102231.07914.tehpeh@gmx.net> Message-ID: <4A3036B5.3010006@latter.org> Thomas Pircher wrote: > On Wednesday 10 June 2009 22:11:35 Ian Spray wrote: >> I am very happy with 123-reg for my UK names, and whilst the UI is >> rather, well, quirky, > > I agree. I don't. 123 is now part of GX, i.e. the infamous webfusion. A lot of developers have had a lot of problems in the last couple of years with 123. IIRC they still stick their nameservers behind the same router, for example. daily.co.uk has been recommended, by someone whose opinion I trust. From jt at camalyn.org Thu Jun 11 01:30:40 2009 From: jt at camalyn.org (jt) Date: Thu, 11 Jun 2009 00:30:40 +0100 Subject: Domain name registrars In-Reply-To: References: Message-ID: <4A304220.3040003@camalyn.org> Ravi Joganathan wrote: > I am looking for recommendations for decent domain registrar, to > transfer my domain. I am looking for registrars who doesn't have too > many restrictive conditions, such as outwards transfer fees. enom are pretty good, or you could try one of their resellers which is www.regme.net good luck, J :) From joe.czucha at studio24.net Thu Jun 11 10:29:22 2009 From: joe.czucha at studio24.net (Joe Czucha) Date: Thu, 11 Jun 2009 09:29:22 +0100 Subject: Domain name registrars Message-ID: <4A30C062.7060905@studio24.net> I manage my domains through 123-reg but then I have a VPS at Slicehost (a fully-owned but much cheaper subsidiary of the legendary Rackspace) so I create the DNS zones on their name servers and then just use the 123-reg control to point the domains at that. It allows much greater control and extra functionality than 123-reg, such as the ability to create the zone file BEFORE you change the name server of the domain so that the DNS is already in place when it propagates and down time is minimized. Joe "I like my domains like I like my women... reliable, cheap to run and preferably without WebFusion stamped all over them." From marcus at quintic.co.uk Thu Jun 11 10:41:20 2009 From: marcus at quintic.co.uk (Marcus Williams) Date: Thu, 11 Jun 2009 09:41:20 +0100 Subject: Domain name registrars In-Reply-To: References: Message-ID: <4A30C330.7070208@quintic.co.uk> Ravi Joganathan wrote: > I am looking for recommendations for decent domain registrar, to > transfer my domain. I am looking for registrars who doesn't have too > many restrictive conditions, such as outwards transfer fees. I use Gandi for all of my registrations (and their virtual server stuff). I've never had any problems with them. The only thing I would say is if its a .co.uk domain their renewal is a bit scary (all other tld's get renewed the same day, .co.uk's dont get processed by nominet until the day of renewal which is a bit disturbing). Marcus From clug at gasops.co.uk Thu Jun 11 11:08:51 2009 From: clug at gasops.co.uk (Longman) Date: Thu, 11 Jun 2009 10:08:51 +0100 Subject: Avoiding having a www A REC with BIND9 In-Reply-To: References: Message-ID: <4A30C9A3.6000303@gasops.co.uk> * Ian Spray wrote: > Hi Longman, > I'm not 100% sure I see your problem, as I think I'm doing what you > want to do already with my domain name and it's just fine: > ;www.minimal.cx. IN A (Snip) This part answers my question thanks. I need the dot on the end to provide the FQDN rather than for a relative domain within the context of the Zone (which is what you get without the dot). From clug at gasops.co.uk Thu Jun 11 12:50:03 2009 From: clug at gasops.co.uk (Longman) Date: Thu, 11 Jun 2009 11:50:03 +0100 Subject: Exim and backup relays Message-ID: <4A30E15B.9060802@gasops.co.uk> Ever since setting up a backup MX for my domain (via relay domains) I've started receiving lots of Frozen Message emails for Frozen Emails in the queue on this backup MX. It looks like spammers are using the the backup MX to send email to non-existant recipients (computer generated nonsense in most cases), but of course they're accepted because their all to accounts within my domain that I've told it to relay for. What is the correct way to try and combat this? Is there a way to get the backup relay to contact the primary relay to get a list of valid email accounts thereby junking nonsense recipients, or some other method to put paid to this? Currently I have 9468 Frozen Messages! From clug at minimal.cx Thu Jun 11 13:24:35 2009 From: clug at minimal.cx (Ian Spray) Date: Thu, 11 Jun 2009 12:24:35 +0100 Subject: Exim and backup relays In-Reply-To: <4A30E15B.9060802@gasops.co.uk> References: <4A30E15B.9060802@gasops.co.uk> Message-ID: <20090611112435.GB1146@minimal.cx> On Thu, Jun 11, 2009 at 11:50:03AM +0100, Longman wrote: > > Ever since setting up a backup MX for my domain (via relay domains) I've > started receiving lots of Frozen Message emails for Frozen Emails in the > queue on this backup MX. It looks like spammers are using the the backup > MX to send email to non-existant recipients (computer generated nonsense > in most cases), but of course they're accepted because their all to > accounts within my domain that I've told it to relay for. What is the > correct way to try and combat this? Is there a way to get the backup > relay to contact the primary relay to get a list of valid email accounts > thereby junking nonsense recipients, or some other method to put paid to > this? Currently I have 9468 Frozen Messages! > Yup - this is a common problem. One very quick fix (which works for all systems and not just exim) is a bogus last MX record. The spammers do tend to start at the lowest numbered MX and work up, so this cuts things down a little, but isn't a full solution: $ dig mx minimal.cx ; <<>> DiG 9.3.4-P1 <<>> mx minimal.cx ;; global options: printcmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 35948 ;; flags: qr rd ra; QUERY: 1, ANSWER: 4, AUTHORITY: 13, ADDITIONAL: 5 ;; QUESTION SECTION: ;minimal.cx. IN MX ;; ANSWER SECTION: minimal.cx. 3600 IN MX 10 mail.minimal.cx. minimal.cx. 3600 IN MX 20 mail.minimal.org.uk. minimal.cx. 3600 IN MX 30 mx01.gratisdns.de. minimal.cx. 3600 IN MX 100 bogus.spam.trap. Can you spot the fake entry ? ;) The other, exim specific thing is to get your backup MX to test during SMTP receive with the primary to see if the destination address is valid and cache the results. Your system then rejects during the SMTP receive phase if either the lookup or the cache indicates a failure, and nothing hits your queue. Put this in your acl_smtp:rcpt: deny domains = +relay_to_domains recipients = ${if exists{/etc/exim/local_rcpt_callout}\ {/etc/exim/local_rcpt_callout}\ {}} !verify = recipient/callout=2m,defer_ok and then put a list of domains into the file specified that you want to do this receive time check on in /etc/exim/local_rcpt_callout, eg: domainname.co.uk otherdomain.org another.eu This allows you to choose a subset of your relay domains to do this with - if you don't care and want to do the callout checking on all entries in the relay_to_domains then just remote the recipients line above. I chose to only cache the results of the callout heck for 2 minutes as the domains I backup MX for are nothing to do with me and I don't want to annoy the admins by bouncing fresh accounts. If you know how often the other domains have new addresses then do bump up that timeout to reduce the traffic betwene you and the real MX receiver ever further. Note that if the primary MX is down and fails to answer then email will queue up normally (including all spam !), but that's a small price to pay for not having to maintain many lists of valid acounts. HTH, -- Ian Spray GPG Fingerprint: D170 35A3 C858 6E85 9B5B 1557 4CD5 6F6F E176 2D0A From clug at gasops.co.uk Thu Jun 11 15:30:52 2009 From: clug at gasops.co.uk (Longman) Date: Thu, 11 Jun 2009 14:30:52 +0100 Subject: Exim and backup relays In-Reply-To: <20090611112435.GB1146@minimal.cx> References: <4A30E15B.9060802@gasops.co.uk> <20090611112435.GB1146@minimal.cx> Message-ID: <4A31070C.40403@gasops.co.uk> * Ian Spray wrote: > Yup - this is a common problem. One very quick fix (which works for all > systems and not just exim) is a bogus last MX record. The spammers do > tend to start at the lowest numbered MX and work up, so this cuts things > down a little, but isn't a full solution: Highest numbered ? i.e. Lowest priority. > The other, exim specific thing is to get your backup MX to test during (snip userful comments about exim). There is also receiver_verify, ignore_errmsg_errors, ignore_errmsg_errors_after, and timeout_frozen_after to look at. I use CHECK_RCPT_VERIFY_SENDER = 'true' but doesn't seem to do much. Will try out some of your suggestions, thanks :-) From clug at minimal.cx Thu Jun 11 16:23:19 2009 From: clug at minimal.cx (Ian Spray) Date: Thu, 11 Jun 2009 15:23:19 +0100 Subject: Exim and backup relays In-Reply-To: <4A31070C.40403@gasops.co.uk> References: <4A30E15B.9060802@gasops.co.uk> <20090611112435.GB1146@minimal.cx> <4A31070C.40403@gasops.co.uk> Message-ID: <20090611142319.GD1146@minimal.cx> On Thu, Jun 11, 2009 at 02:30:52PM +0100, Longman wrote: > * Ian Spray wrote: > > Yup - this is a common problem. One very quick fix (which works for all > > systems and not just exim) is a bogus last MX record. The spammers do > > tend to start at the lowest numbered MX and work up, so this cuts things > > down a little, but isn't a full solution: > > Highest numbered ? i.e. Lowest priority. > Ahem. Yes: you're correct, and I was thinking faster than I was typing... They start with the lowest priority (in general) as there's normally less checking there. Quite what metric of success they have to say that it was delivered when it sat in a queue for 14 days and then got thrown away I don't know. Maybe they get paid by number of non-bounce sends per spam run ? Heh - Spammers have Managers ;) > > The other, exim specific thing is to get your backup MX to test during > (snip userful comments about exim). > > There is also receiver_verify, ignore_errmsg_errors, > ignore_errmsg_errors_after, and timeout_frozen_after to look at. I use > CHECK_RCPT_VERIFY_SENDER = 'true' but doesn't seem to do much. Will try > out some of your suggestions, thanks :-) > Oh you're welcome to those too ! I've discovered from experience that frozen messages (caused by an attempt at delivery that was actively refused) are 99.9% junk, so have a very low tolerance for that on my server. Technically it could be a server mis-configuration and some email could be lost if the problems are then fixed, but I'm only running this for myself and have not had any problems so far. timeout_frozen_after = 2d ignore_bounce_errors_after = 1d I would say that the verify_sender option worked wonders a couple years of ago but that it's use is now of limited success: it appears that spambot syntax is improving. I've certainly not refused valid email through the use of it, so in my book that means leave it enabled ! I also have two sets of retry counters: one for a domain I am being backup MX for, and one for everything else. Note that I try much more agressively to redelivery email to the backup MX (every 15m for 24h) so that small outages/reconfigures don't hold up their email too much. begin retry abackupmx.com * F,24h,15m; F,7d,2h; F,14d,6h * * F,2h,15m; G,16h,1h,1.5; F,14d,6h I also have a couple of other countermeasures that I've not seen publicly discussed, so have refrained from doing so myself as they're rather effective and I don't want them to stop working from having my config end up in Google. I'll email those to you privately, and will happily share those ideas with another list members who want them (they are exim specific in implementation, but not concept). Possibly overly paranoid to think that spambot writers read my postings, but then again I currently reject far more junk than I accept and want to keep it like that ! HTH, -- Ian Spray GPG Fingerprint: D170 35A3 C858 6E85 9B5B 1557 4CD5 6F6F E176 2D0A From clug at gasops.co.uk Thu Jun 11 17:47:18 2009 From: clug at gasops.co.uk (Longman) Date: Thu, 11 Jun 2009 16:47:18 +0100 Subject: Exim and backup relays In-Reply-To: <20090611112435.GB1146@minimal.cx> References: <4A30E15B.9060802@gasops.co.uk> <20090611112435.GB1146@minimal.cx> Message-ID: <4A312706.2050905@gasops.co.uk> * Ian Spray wrote: > hits your queue. Put this in your acl_smtp:rcpt: I think this is 30_exim4-config_check_rcpt on my Debian system? From clug at gasops.co.uk Thu Jun 11 17:51:22 2009 From: clug at gasops.co.uk (Longman) Date: Thu, 11 Jun 2009 16:51:22 +0100 Subject: Exim and backup relays In-Reply-To: <20090611112435.GB1146@minimal.cx> References: <4A30E15B.9060802@gasops.co.uk> <20090611112435.GB1146@minimal.cx> Message-ID: <4A3127FA.7060709@gasops.co.uk> * Ian Spray wrote: > hits your queue. Put this in your acl_smtp:rcpt: acl_smtp_rcpt ? In 02_exim4-config_options ? Not too sure how consistent the filenames are between distributions.. From clug at gasops.co.uk Thu Jun 11 17:59:10 2009 From: clug at gasops.co.uk (Longman) Date: Thu, 11 Jun 2009 16:59:10 +0100 Subject: Exim and backup relays In-Reply-To: <20090611112435.GB1146@minimal.cx> References: <4A30E15B.9060802@gasops.co.uk> <20090611112435.GB1146@minimal.cx> Message-ID: <4A3129CE.20402@gasops.co.uk> Aha... bingo.. In 30_exim4-config_check_rcpt on my Debian system I have : # Verify recipients listed in local_rcpt_callout with a callout. # This is especially handy for forwarding MX hosts (secondary MX or # mail hubs) of domains that receive a lot of spam to non-existent # addresses. The only way to check local parts for remote relay # domains is to use a callout (add /callout), but please read the # documentation about callouts before doing this. deny !acl = acl_whitelist_local_deny recipients = ${if exists{CONFDIR/local_rcpt_callout}\ {CONFDIR/local_rcpt_callout}\ {}} !verify = recipient/callout So it looks like it's already here but probably not working because there is nothing in local_rcpt_callout.. From clug at minimal.cx Thu Jun 11 18:13:01 2009 From: clug at minimal.cx (Ian Spray) Date: Thu, 11 Jun 2009 17:13:01 +0100 Subject: Exim and backup relays In-Reply-To: <4A3129CE.20402@gasops.co.uk> References: <4A30E15B.9060802@gasops.co.uk> <20090611112435.GB1146@minimal.cx> <4A3129CE.20402@gasops.co.uk> Message-ID: <20090611161301.GH1146@minimal.cx> On Thu, Jun 11, 2009 at 04:59:10PM +0100, Longman wrote: > > Aha... bingo.. > Excellent. > So it looks like it's already here but probably not working because > there is nothing in local_rcpt_callout.. > Glad you found it as I don't have a Debian system so couldn't tell you where it is :( In a statement that will cause collective gasps of horror, I've just never managed to get to grips with the Debianisation of configs that they do, and so have avoided it as much as possible. TTFN, -- Ian Spray GPG Fingerprint: D170 35A3 C858 6E85 9B5B 1557 4CD5 6F6F E176 2D0A From clug at gasops.co.uk Thu Jun 11 18:14:02 2009 From: clug at gasops.co.uk (Longman) Date: Thu, 11 Jun 2009 17:14:02 +0100 Subject: Exim and backup relays In-Reply-To: <20090611161301.GH1146@minimal.cx> References: <4A30E15B.9060802@gasops.co.uk> <20090611112435.GB1146@minimal.cx> <4A3129CE.20402@gasops.co.uk> <20090611161301.GH1146@minimal.cx> Message-ID: <4A312D4A.9060509@gasops.co.uk> * Ian Spray wrote: > On Thu, Jun 11, 2009 at 04:59:10PM +0100, Longman wrote: >> Aha... bingo.. >> > Excellent. > >> So it looks like it's already here but probably not working because >> there is nothing in local_rcpt_callout.. >> > Glad you found it as I don't have a Debian system so couldn't tell you > where it is :( In a statement that will cause collective gasps of > horror, I've just never managed to get to grips with the Debianisation > of configs that they do, and so have avoided it as much as possible. I added domains to local_rcpt_callout though they don't seem to be honoured, despite a restart. I tried sending a file using telnet from a remote system to one of my backup MX and typed a nonsense email recipient but it still accepted delivery and didn't perform a callout. nothing in /var/log/mainlog of use either. Arghh! Will play some more tomorrow. :-) From clug at minimal.cx Thu Jun 11 18:28:41 2009 From: clug at minimal.cx (Ian Spray) Date: Thu, 11 Jun 2009 17:28:41 +0100 Subject: Exim and backup relays In-Reply-To: <4A312D4A.9060509@gasops.co.uk> References: <4A30E15B.9060802@gasops.co.uk> <20090611112435.GB1146@minimal.cx> <4A3129CE.20402@gasops.co.uk> <20090611161301.GH1146@minimal.cx> <4A312D4A.9060509@gasops.co.uk> Message-ID: <20090611162841.GA13145@minimal.cx> On Thu, Jun 11, 2009 at 05:14:02PM +0100, Longman wrote: > > I added domains to local_rcpt_callout though they don't seem to be > honoured, despite a restart. I tried sending a file using telnet from a > remote system to one of my backup MX and typed a nonsense email > recipient but it still accepted delivery and didn't perform a callout. > nothing in /var/log/mainlog of use either. Arghh! Will play some more > tomorrow. :-) > Hmm, that sucks. Is there something more Debian related that you need to do other than populate that file ? Is there a config entry with a y/n option that needs to be set and then a config script run before HUPing exim ? It's fairly obvious when it does kick in as you get lines like this in your log file: 2009-06-11 12:06:54 H=(JQYFJONXI) [124.43.49.42] F= rejected RCPT : Previous (cached) callout verification failure I can understand leaving it for now: a quick Google doesn't help much and it does feel more like a local setup issue than an exim one. Feel free to email me directly if you want to share unobfuscated configs, etc. TTFN, -- Ian Spray GPG Fingerprint: D170 35A3 C858 6E85 9B5B 1557 4CD5 6F6F E176 2D0A From dom at latter.org Fri Jun 12 17:06:31 2009 From: dom at latter.org (Dom Latter) Date: Fri, 12 Jun 2009 17:06:31 +0200 Subject: VirtualBox Message-ID: <4A326EF7.7010905@latter.org> Anybody use it for virtual servers? I'm a bit stuck with the networking configuration. From clug at minimal.cx Fri Jun 12 17:14:17 2009 From: clug at minimal.cx (Ian Spray) Date: Fri, 12 Jun 2009 16:14:17 +0100 Subject: VirtualBox In-Reply-To: <4A326EF7.7010905@latter.org> References: <4A326EF7.7010905@latter.org> Message-ID: <20090612151417.GI10809@minimal.cx> On Fri, Jun 12, 2009 at 05:06:31PM +0200, Dom Latter wrote: > Anybody use it for virtual servers? > I have, although not for paying customers. > I'm a bit stuck with the networking configuration. > The biggest choice is do you want it NATed behind the IP of the host that you're running Virtualbox on, or directly on the LAN as if another physical machine had been plugged in. What sort of network issues do you have ? TTFN, -- Ian Spray GPG Fingerprint: D170 35A3 C858 6E85 9B5B 1557 4CD5 6F6F E176 2D0A From dom at latter.org Fri Jun 12 17:26:35 2009 From: dom at latter.org (Dom Latter) Date: Fri, 12 Jun 2009 17:26:35 +0200 Subject: VirtualBox In-Reply-To: <20090612151417.GI10809@minimal.cx> References: <4A326EF7.7010905@latter.org> <20090612151417.GI10809@minimal.cx> Message-ID: <4A3273AB.6080002@latter.org> Ian Spray wrote: > The biggest choice is do you want it NATed behind the IP of the host > that you're running Virtualbox on, or directly on the LAN as if another > physical machine had been plugged in. > > What sort of network issues do you have ? NATed worked fine, but I want to run web and mail servers on it, so I think I need "bridged". Directly on the LAN, as it were. NAT'ed is okay for "client" machines but in order to forward port 80 and the like to the hsot OS, you need to be running as root, and I don't want to do that. Here's a post I made to the vb forums: ==== start ====================================================== I have a headless remote CentOS 5.3 (AMD64) webserver on which I have installed ./VirtualBox-2.2.4-47978-Linux_amd64.run with the aim of having a second separate (virtual) webserver on its own IP address. The server is remote so I'm doing everything from the command line. I have created a VM running Debian 5.0.1 (32 bit). Using default NAT networking the Debian VM can communicate with the world. On the host OS I have two IP addresses, let's say 12.34.56.78 and 12.34.56.79 as eth0 and eth0:1. I want to bind the second IP address to the VM. In order to run Apache on the VM I believe I need to change to bridged networking. If I try this: VBoxManage modifyvm "Debian501" --nic1 bridged --bridgeadapter1 eth0:1 then I get an error message when I try to start the VM: "Failed to open/create the internal network 'HostInterfaceNetworking-eth0:1' (VERR_INTNET_FLT_IF_NOT_FOUND)." With this: VBoxManage modifyvm "Debian501" --nic1 bridged --bridgeadapter1 eth0 the VM boots, but there is no sign of any networking on the VM. "ifconfig eth0" on the VM doesn't have an IP address. On the guest, /etc/network/interfaces contains "iface eth0 inet dhcp". I've also tried a static IP using the values obtained when I was running it as a NATed machine. In any case I don't see how this would work - I want to bind the host's eth0:1 to my VM, not the main interface. But all the guides say "select the interface you want and it just works". "lsmod" on the host shows "vboxnetflt" as installed. I have read the manual, the FAQ, and many many pages and I can't see how to get this working. Most posts refer to old versions of VB where you had to configure TAPs and so on, and more recent posts tend to refer to the GUI, not the command line. ==== end ====================================================== NB that previous versions of VB required all sorts of malarkey, which is now automagically taken care of by a "net filter". What I don't get is what IP address the host OS is supposed to end up with, and where it gets it from. Any pointers? There is a possible fallback, using NAT. Get the hardware router that the physical server is behind to forward port 80 requests to, say port 1080, and then on the host machine forward port 1080 to port 80 on the guest OS (or indeed change apache's default ports, but I'd rather change as little as possible). From clug at minimal.cx Fri Jun 12 17:48:04 2009 From: clug at minimal.cx (Ian Spray) Date: Fri, 12 Jun 2009 16:48:04 +0100 Subject: VirtualBox In-Reply-To: <4A3273AB.6080002@latter.org> References: <4A326EF7.7010905@latter.org> <20090612151417.GI10809@minimal.cx> <4A3273AB.6080002@latter.org> Message-ID: <20090612154804.GK10809@minimal.cx> On Fri, Jun 12, 2009 at 05:26:35PM +0200, Dom Latter wrote: > > NATed worked fine, but I want to run web and mail servers on it, so > I think I need "bridged". Directly on the LAN, as it were. > Yup - most of my work is done in bridged mode. > What I don't get is what IP address the host OS is supposed to end up > with, and where it gets it from. > > Any pointers? > I've never tried to specify an aliased interface in bridge mode: I set up the VM as a bridge, choose an Intel Pro network card (they work best for the O/S I try to run) and let it go. The VB system will create whatever it needs on the host without me asking it to, and then as the VM image starts up it requests a DHCP address like any other system on my LAN. I would suggest you unalias eth0 (so loose eth0:1 on the host) first, set VB up for bridge, boot the VM image and then either do a DHCP in the VM, or set up the static IP inside the VM just as if you'd installed the system on a new machine. You shouldn't need to do anything at all on the host. > [snip NAT fallback] > If it involved NAT and port bouncing, I'll stick my fingers in my ears and shout "lalalala". The last time I had to fall back o something like this, Virtualisation wasn't around, so hopefully this can be avoided. You are just using plain old IPv4 here, aren't you ? There are caveats in the VB manual about wifi cards and non-IPv4 stuff. HTH, -- Ian Spray GPG Fingerprint: D170 35A3 C858 6E85 9B5B 1557 4CD5 6F6F E176 2D0A From dom at latter.org Fri Jun 12 18:27:37 2009 From: dom at latter.org (Dom Latter) Date: Fri, 12 Jun 2009 18:27:37 +0200 Subject: VirtualBox In-Reply-To: <20090612154804.GK10809@minimal.cx> References: <4A326EF7.7010905@latter.org> <20090612151417.GI10809@minimal.cx> <4A3273AB.6080002@latter.org> <20090612154804.GK10809@minimal.cx> Message-ID: <4A3281F9.9000402@latter.org> Ian Spray wrote: > I've never tried to specify an aliased interface in bridge mode: I set > up the VM as a bridge, choose an Intel Pro network card (they work best > for the O/S I try to run) and let it go. The VB system will create > whatever it needs on the host without me asking it to, and then as the > VM image starts up it requests a DHCP address like any other system on > my LAN. I've read the manual about eleventeen times and about eleventeen hundred forum posts and this is the first time someone's said *how* it works, not just "it works". > I would suggest you unalias eth0 (so loose eth0:1 on the host) first, > set VB up for bridge, boot the VM image and then either do a DHCP in the > VM, or set up the static IP inside the VM just as if you'd installed the > system on a new machine. You shouldn't need to do anything at all on > the host. Right. I believe I've tried all this. I certainly gave up with the aliased eth0:1 a while back. I'll try again, now I have a clearer picture of things. You really wouldn't believe how your short post here has made such a huge difference! I may try a different virtual network card (and why not?). Later I hope to be able to try a 64 bit guest OS. > If it involved NAT and port bouncing, I'll stick my fingers in my ears > and shout "lalalala". The last time I had to fall back o something like > this, Virtualisation wasn't around, so hopefully this can be avoided. Yes. But it may have to happen that way. > You are just using plain old IPv4 here, aren't you ? There are caveats > in the VB manual about wifi cards and non-IPv4 stuff. Certainly not wifi - this is data centre stuff. And it's all IPv4. (Hey, I thought we all moved to IPv6 in about 2001, didn't we?) thanks again. From dom at latter.org Fri Jun 12 18:39:45 2009 From: dom at latter.org (Dom Latter) Date: Fri, 12 Jun 2009 18:39:45 +0200 Subject: VirtualBox In-Reply-To: <20090612154804.GK10809@minimal.cx> References: <4A326EF7.7010905@latter.org> <20090612151417.GI10809@minimal.cx> <4A3273AB.6080002@latter.org> <20090612154804.GK10809@minimal.cx> Message-ID: <4A3284D1.3000205@latter.org> Ian Spray wrote: > for the O/S I try to run) and let it go. The VB system will create > whatever it needs on the host without me asking it to, and then as the > VM image starts up it requests a DHCP address like any other system on > my LAN. So does a new interface appear in "ifconfig -a"??? From clug at minimal.cx Fri Jun 12 18:50:26 2009 From: clug at minimal.cx (Ian Spray) Date: Fri, 12 Jun 2009 17:50:26 +0100 Subject: VirtualBox In-Reply-To: <4A3284D1.3000205@latter.org> References: <4A326EF7.7010905@latter.org> <20090612151417.GI10809@minimal.cx> <4A3273AB.6080002@latter.org> <20090612154804.GK10809@minimal.cx> <4A3284D1.3000205@latter.org> Message-ID: <20090612165026.GL10809@minimal.cx> On Fri, Jun 12, 2009 at 06:39:45PM +0200, Dom Latter wrote: > > So does a new interface appear in "ifconfig -a"??? > Inside the VM ? Yes, it should. If you look at the output of the dmesg after booting and logging into your VM then you should see the type of network card you selected in the VB config scroll past at some point. If you have no interfaces, do check that the card type chosen in the VB network selection screen (I use the GUI for this bit) matches a supported driver in the O/S you want to run in the VM. That's the main reason I choose the Intel Pro emulation, not because I think I can get Gigabit performance via a VM ;) HTH, -- Ian Spray GPG Fingerprint: D170 35A3 C858 6E85 9B5B 1557 4CD5 6F6F E176 2D0A From dom at latter.org Fri Jun 12 19:00:47 2009 From: dom at latter.org (Dom Latter) Date: Fri, 12 Jun 2009 19:00:47 +0200 Subject: VirtualBox In-Reply-To: <20090612165026.GL10809@minimal.cx> References: <4A326EF7.7010905@latter.org> <20090612151417.GI10809@minimal.cx> <4A3273AB.6080002@latter.org> <20090612154804.GK10809@minimal.cx> <4A3284D1.3000205@latter.org> <20090612165026.GL10809@minimal.cx> Message-ID: <4A3289BF.8060407@latter.org> Ian Spray wrote: > On Fri, Jun 12, 2009 at 06:39:45PM +0200, Dom Latter wrote: >> So does a new interface appear in "ifconfig -a"??? >> > Inside the VM ? Yes, it should. If you look at the output of the dmesg > after booting and logging into your VM then you should see the type of > network card you selected in the VB config scroll past at some point. > > If you have no interfaces, do check that the card type chosen in the VB > network selection screen (I use the GUI for this bit) matches a > supported driver in the O/S you want to run in the VM. That's the main > reason I choose the Intel Pro emulation, not because I think I can get > Gigabit performance via a VM ;) Good points. The virtual card should work, as it does in NAT mode. But could be worth trying a different one. And if I make it bridged but attach it to the vboxnet0 interface (which is meant for internal only, or something) it also manages to pick up an address from DHCP. From dom at latter.org Fri Jun 12 20:08:01 2009 From: dom at latter.org (Dom Latter) Date: Fri, 12 Jun 2009 20:08:01 +0200 Subject: VirtualBox In-Reply-To: <4A3289BF.8060407@latter.org> References: <4A326EF7.7010905@latter.org> <20090612151417.GI10809@minimal.cx> <4A3273AB.6080002@latter.org> <20090612154804.GK10809@minimal.cx> <4A3284D1.3000205@latter.org> <20090612165026.GL10809@minimal.cx> <4A3289BF.8060407@latter.org> Message-ID: <4A329981.40900@latter.org> Works now. I'm pretty sure I tried this combination earlier - attached to eth0, static IP in /etc/network/interfaces - but before I was able to try it again we'd scheduled a reboot to do some BIOS changes. And now it works. Somebody else reports "restarting" as a fix: http://forums.virtualbox.org/viewtopic.php?f=7&t=18632 From araujo.thiago.souza at gmail.com Sat Jun 13 00:05:32 2009 From: araujo.thiago.souza at gmail.com (Araujo, Thiago S.) Date: Fri, 12 Jun 2009 19:05:32 -0300 Subject: MBR crash Message-ID: <815b493b0906121505o1262463arbc5dcf92b683b04a@mail.gmail.com> Hello to you all, I work with 2 laptops, one with the old and good linux and other with winVista, for profissionals reasons I have to work with both simultaneosly. Yesterday I saw a link "compiz for windows vista" and tried to install it on my winvista notebook. An openSuSE installation poped up with graphics elements only... I clicked to proceed without think and... Nothing happenned. At least till I re-started. Then Grub was there (it shouldnt be... I was using only winVista on that notebook), incapable to boot both windows or openSUSE. I tried to recover using the recover dvd, and with command line with the command fix Mbr and chkdsk. Nothing. Dell support couldnt help me and the same with microsoft. So, how it is not a matter of windows but a matter of MBR recover. I thought someone around here could help me... I am quite sure the problem beyond Grub, there is no way to pass the command to winvista, I believe this joke crashed the Bcdsect ... system of Win boot.. I recovered data using the command "force" to mount the HD with a Linux live cd, but... there are some digital certificates I would not like to loose.... Thank you in advance, Araujo -- Thiago S. Araujo Facebook: http://www.facebook.com/profile.php?id=677281884 Twitter: http://twitter.com/prof_Araujo -------------- next part -------------- An HTML attachment was scrubbed... URL: http://lists.infowares.com/archive/clug/attachments/20090612/d9e6eb03/attachment-0001.html From wawrzek at gmail.com Sat Jun 13 00:11:42 2009 From: wawrzek at gmail.com (=?ISO-8859-2?Q?Wawrzyniec_Niewodnicza=F1ski?=) Date: Fri, 12 Jun 2009 23:11:42 +0100 Subject: MBR crash In-Reply-To: <815b493b0906121505o1262463arbc5dcf92b683b04a@mail.gmail.com> References: <815b493b0906121505o1262463arbc5dcf92b683b04a@mail.gmail.com> Message-ID: Hi, Have you tried to use LIVE CD to check if the Win partion is fine? Wawrzek -- Wawrzyniec Niewodnicza?ski vel Wawrzek Larry or LarryN Linux User #177124 E-MAIL: wawrzek at gmail.com PhD in Quantum Chemistry WWW: http://wawrzek.name MSc in Molecular Engineering JID: larryn at chrome.pl From araujo.thiago.souza at gmail.com Sat Jun 13 17:15:49 2009 From: araujo.thiago.souza at gmail.com (Araujo, Thiago S.) Date: Sat, 13 Jun 2009 12:15:49 -0300 Subject: MBR crash In-Reply-To: References: <815b493b0906121505o1262463arbc5dcf92b683b04a@mail.gmail.com> Message-ID: <815b493b0906130815x387f41e9m67c3d86e29d6ca37@mail.gmail.com> Wawrzyniec, yes, I did, the partition is ok. But the WinVista boot system is more complicated, and surely not better than Xp/2000/ 9x ... They should make a KISS version of windows! I certainlly would buy one. Thanks anyway! Ara?jo. On 6/12/09, Wawrzyniec Niewodnicza?ski wrote: > > Hi, > > Have you tried to use LIVE CD to check if the Win partion is fine? > > Wawrzek > > -- > Wawrzyniec Niewodnicza?ski vel Wawrzek Larry or LarryN > Linux User #177124 E-MAIL: wawrzek at gmail.com > PhD in Quantum Chemistry WWW: http://wawrzek.name > MSc in Molecular Engineering JID: larryn at chrome.pl > -- Ara?jo __________________________ Thiago S. Ara?jo Twitter: http://twitter.com/prof_Araujo Facebook: http://www.facebook.com/profile.php?id=677281884 -------------- next part -------------- An HTML attachment was scrubbed... URL: http://lists.infowares.com/archive/clug/attachments/20090613/84ce7ebd/attachment.htm From araujo.thiago.souza at gmail.com Sat Jun 13 17:17:07 2009 From: araujo.thiago.souza at gmail.com (Araujo, Thiago S.) Date: Sat, 13 Jun 2009 12:17:07 -0300 Subject: MBR In-Reply-To: <6aedacb50906130736g533fe3f6hd55eb49ca3850f64@mail.gmail.com> References: <6aedacb50906130736g533fe3f6hd55eb49ca3850f64@mail.gmail.com> Message-ID: <815b493b0906130817v479a35bey5d1d8697ea5ec70@mail.gmail.com> Ashley, yes, I've tried the fdisk/mbr. Didnt worked. And I'm trying to burn a winvista download from internet, because the original factory DVD does not offer the update possibility, all the other possibilities will take over the HD. I keep here thinking why to not allow update in the dvd... But ... none of my DVDs are good to record :( (there is no floppy) Thinking positively at least I'm healthy Thanks anyway!! Araujo. On 6/13/09, Ashley Roberts wrote: Hey, I cant seem to post on the CLUG. have you tried a bootdisk and ran, "fdisk /mbr" If this fails, use another windows box to create a boot disk, edit the boot.ini to reflect location of your windows install and try booting using the floppy. Ash Araujo -- Thiago S. Araujo Facebook: http://www.facebook.com/profile.php?id=677281884 Twitter: http://twitter.com/prof_Araujo -- -------------- next part -------------- An HTML attachment was scrubbed... URL: http://lists.infowares.com/archive/clug/attachments/20090613/66f0d686/attachment.htm From paul+clug at mansfield.co.uk Mon Jun 15 00:06:10 2009 From: paul+clug at mansfield.co.uk (Paul M) Date: Sun, 14 Jun 2009 23:06:10 +0100 Subject: Exim and backup relays In-Reply-To: <4A30E15B.9060802@gasops.co.uk> References: <4A30E15B.9060802@gasops.co.uk> Message-ID: <4A357452.1080909@mansfield.co.uk> Longman wrote: > Ever since setting up a backup MX for my domain (via relay domains) I've > started receiving lots of Frozen Message emails for Frozen Emails in the > queue on this backup MX. It looks like spammers are using the the backup what I've done in the past is to generate a list of valid recipients from our zimbra mail server and push the file out to the backup MX so that it always knows what's valid we now use postini for A/V and A/S and there's an autoprovision feature, as well as a call-out-verification, but TBH we just manually provision new valid recips in postini control panel as we don't make many changes; when we upgrade to zimbra latest I'll probably invest more time. From paul+clug at mansfield.co.uk Mon Jun 15 00:09:36 2009 From: paul+clug at mansfield.co.uk (Paul M) Date: Sun, 14 Jun 2009 23:09:36 +0100 Subject: Avoiding having a www A REC with BIND9 In-Reply-To: <4A2FDF40.8070003@gasops.co.uk> References: <4A2FDF40.8070003@gasops.co.uk> Message-ID: <4A357520.3010502@mansfield.co.uk> Longman wrote: > If you wish to have a domain resolve to the A rec IP of your www host > (and your www host just be a CNAME of this), how would you accomplish > this in BIND? The record can't go in the Zone file for your domain, as > only the hosts/subdomains go in this file? So where does it go? It > seems to me that it would go at the REGISTRAR level, for they are the > people that provide the 'glue records' for the nameserver addresses of > the domains their servers refer you to, but a bit of googling hasn't > really found much. wouldn't this work? @ IN A 1.2.3.4 www IN CNAME mydomain.com. you definitely don't want to break your DNS by doing this: @ IN CNAME www.mydomain.com. From magnus at therning.org Tue Jun 16 11:59:49 2009 From: magnus at therning.org (Magnus Therning) Date: Tue, 16 Jun 2009 10:59:49 +0100 Subject: Working on Xen in Cambridge? Message-ID: Since I've seen a few job postings on here before I thought I'd try it myself :-) Citrix' Cambridge office (now in a brand new building in the science park) is looking for people to work on Xen, especially XenClient (take a look at the Xen Wiki for some info, a good place to start is http://wiki.xensource.com/xenwiki/General_Project_Information ). These are the positions we are looking to fill with the desired skills: Hypervisor Testing - Python, scripting - Previous experience in Q&A. - Work on XenRT (that's the name of our homegrown test framework). Engineer - Functional programming experience, ocaml would be a plus. - Linux/Unix background. Javascript/C# GUI - C#, .net - Javascript, web programming. - GUI experience. - Functional language knowledge would be an enormous plus. Doc - Technical doc writer - Linux/Unix background. Windows kernel driver - Work on pv driver - USB, Wireless driver experience - Unix/Linux knowledge Let me know if you want to find out more, or want me to pass on a CV. /M -- Magnus Therning (OpenPGP: 0xAB4DFBA4) magnus?therning?org Jabber: magnus?therning?org http://therning.org/magnus identi.ca|twitter: magthe From dom at latter.org Mon Jun 22 17:40:00 2009 From: dom at latter.org (Dom Latter) Date: Mon, 22 Jun 2009 17:40:00 +0200 Subject: Postfix permissions. Message-ID: <4A3FA5D0.8000607@latter.org> Got a broken postfix. I get this error in mail.log: Jun 22 17:21:08 hostname postfix/virtual[2377]: warning: maildir access problem for UID/GID=5000/5000: create maildir file /var/mail/vhosts/domain.com/dom.latter/tmp/1245687668.P2377.hostname: Permission denied (hostname and domain name changed). hostname:/var/mail/vhosts/domain.com/dom.latter# ls -l total 12 drwxr-sr-x 2 vmail vmail 4096 2009-06-22 17:02 cur drwxr-sr-x 2 vmail vmail 4096 2009-06-22 17:02 new drwxr-sr-x 2 vmail vmail 4096 2009-06-22 17:02 tmp in /etc/passwd vmail:x:5000:5000:::/bin/false in /etc/group vmail:x:5000: Thing is I have a working postfix on another machine and the setup is (almost) identical (in fact I'm using my setup notes from the other machine as I go along). Any ideas? From dom at latter.org Mon Jun 22 19:24:01 2009 From: dom at latter.org (Dom Latter) Date: Mon, 22 Jun 2009 19:24:01 +0200 Subject: Postfix permissions. In-Reply-To: <4A3FA5D0.8000607@latter.org> References: <4A3FA5D0.8000607@latter.org> Message-ID: <4A3FBE31.2030107@latter.org> Dom Latter wrote: > Got a broken postfix. I get this error in mail.log: > > (hostname and domain name changed). And if I hadn't done that someone would have spotted the problem. It's one of those stupid stupid stupid stupid stupid stupid thing.uk.com domains. My brain keeps transposing it, when creating config files, directories, etc., into uk.thing.com. I should've charged them a hundred quid extra for the "technical difficulties involved in .uk.com domains". From jt at camalyn.org Wed Jun 24 20:25:01 2009 From: jt at camalyn.org (jt) Date: Wed, 24 Jun 2009 19:25:01 +0100 Subject: JOB: Helpdesk/ Customer Services Manager, London Message-ID: <4A426F7D.9030300@camalyn.org> hello, I am looking to recruit someone who is technically competent with good knowledge of VOIP, SIP, Wi-Fi, DSL and preferably MySQL Querying for a role with a mobile technology company that will encompass managing a customer services/ helpdesk team (currently staffed at 20). Your team will be responsible for managing customer queries via e-mail, web and at times telephone. You will also be responsible for recruitment, training, mentoring, monitoring, creating helpdesk policy, acting as a senior user and team leader in development and test programs. This job will be based in London and will pay circa ?45k-?50k + benefits. Please e-mail me using james at camalyn.org to learn more. All the best, James // James Tobin // Camalyn // +44 (0) 7952 145 127 james at camalyn.org From wawrzek at gmail.com Sat Jun 27 23:56:51 2009 From: wawrzek at gmail.com (=?ISO-8859-2?Q?Wawrzyniec_Niewodnicza=F1ski?=) Date: Sat, 27 Jun 2009 22:56:51 +0100 Subject: GreaseMonkey Message-ID: Hi, Do you have any expirence with GreaseMonky? I would like to write a script which set background of all texarea and input element to black and foreground to white. Any suggestion? Wawrzek -- Wawrzyniec Niewodnicza?ski vel Wawrzek Larry or LarryN Linux User #177124 E-MAIL: wawrzek at gmail.com PhD in Quantum Chemistry WWW: http://wawrzek.name MSc in Molecular Engineering JID: larryn at chrome.pl From marcus at quintic.co.uk Mon Jun 29 10:31:52 2009 From: marcus at quintic.co.uk (Marcus Williams) Date: Mon, 29 Jun 2009 09:31:52 +0100 Subject: GreaseMonkey In-Reply-To: <4A487BB9.1090603@cad-schroer.co.uk> References: <4A487BB9.1090603@cad-schroer.co.uk> Message-ID: <4A487BF8.8040507@quintic.co.uk> Wawrzyniec Niewodnicza?ski wrote: > Do you have any expirence with GreaseMonky? I would like to write a > script which set background of all texarea and input element to black > and foreground to white. Any suggestion? Yes - unless anyone else is interested, contact me offlist and I can send you some pointers (and a template script). Your best bet is to use jquery in greasemonkey as it makes stuff like this a whole heap easier. Marcus From pg_clug at clug.for.sabi.co.UK Mon Jun 29 15:20:01 2009 From: pg_clug at clug.for.sabi.co.UK (Peter Grandi) Date: Mon, 29 Jun 2009 14:20:01 +0100 Subject: GreaseMonkey In-Reply-To: References: Message-ID: <19016.49025.906861.854527@tree.ty.sabi.co.UK> > [ ... ] script which set background of all texarea and input > element to black and foreground to white. Any suggestion? It may be more appro[riate to use CSS overrides ('userChrome.css'). From marcus at quintic.co.uk Mon Jun 29 15:26:44 2009 From: marcus at quintic.co.uk (Marcus Williams) Date: Mon, 29 Jun 2009 14:26:44 +0100 Subject: GreaseMonkey In-Reply-To: <19016.49025.906861.854527@tree.ty.sabi.co.UK> References: <19016.49025.906861.854527@tree.ty.sabi.co.UK> Message-ID: <4A48C114.7010708@quintic.co.uk> Peter Grandi wrote: >> [ ... ] script which set background of all texarea and input >> element to black and foreground to white. Any suggestion? > > It may be more appro[riate to use CSS overrides ('userChrome.css'). My bugbear with userChrome is you cant target certain sites with it (unless they include a css signature [1]) and I'm not sure if you have to restart the browser to get it included. Greasemonkey (and its css equivalent Stylish [2]) get around this. Marcus [1] http://archivist.incutio.com/viewlist/css-discuss/13291 [2] https://addons.mozilla.org/en-US/firefox/addon/2108 From clug at gasops.co.uk Mon Jun 29 16:04:10 2009 From: clug at gasops.co.uk (Longman) Date: Mon, 29 Jun 2009 15:04:10 +0100 Subject: GreaseMonkey In-Reply-To: <4A48C114.7010708@quintic.co.uk> References: <19016.49025.906861.854527@tree.ty.sabi.co.UK> <4A48C114.7010708@quintic.co.uk> Message-ID: <4A48C9DA.2020704@gasops.co.uk> * Marcus Williams wrote: > Peter Grandi wrote: >>> [ ... ] script which set background of all texarea and input >>> element to black and foreground to white. Any suggestion? >> It may be more appro[riate to use CSS overrides ('userChrome.css'). > > My bugbear with userChrome is you cant target certain sites with it > (unless they include a css signature [1]) and I'm not sure if you have > to restart the browser to get it included. Greasemonkey (and its css > equivalent Stylish [2]) get around this. > Well I manage to target a specific site using the following. I disable the 'Upgrade your account' button since the upgrade actually puts you on worse interest onto an account that charges a monthly fee. Each time I see the 'Upgrade' button it peeves me somewhat, so I make it ghost: @-moz-document domain(lloydstsb.co.uk) { a[title="Upgrade your account"] {display: none} /* table>tbody>tr>td>table>tbody>tr>td {display: none} */ .bannerTable {display: none;} #myoffers {display: none;} /* this is a CSS 3.0 thing not supported by firefox tbody:nth-child(5) {display: none;} though can leave it here until it is then we can uncomment it*/ /* offers are usually in a different colour to alternate the shades of the grid */ .prodDetail[bgcolor="#eeeeee"] {display: none;} .prodDetailNoRB[bgcolor="#eeeeee"] {display: none;} } From marcus at quintic.co.uk Mon Jun 29 16:07:55 2009 From: marcus at quintic.co.uk (Marcus Williams) Date: Mon, 29 Jun 2009 15:07:55 +0100 Subject: GreaseMonkey In-Reply-To: <4A48C9DA.2020704@gasops.co.uk> References: <19016.49025.906861.854527@tree.ty.sabi.co.UK> <4A48C114.7010708@quintic.co.uk> <4A48C9DA.2020704@gasops.co.uk> Message-ID: <4A48CABB.601@quintic.co.uk> Longman wrote: > Well I manage to target a specific site using the following. I disable > the 'Upgrade your account' button since the upgrade actually puts you on > worse interest onto an account that charges a monthly fee. Each time I > see the 'Upgrade' button it peeves me somewhat, so I make it ghost: > > @-moz-document domain(lloydstsb.co.uk) ooooh nice - didnt know about that one :) Mind you, I'll still stick with my addons as I can do more with greasemonkey. Definitely one to remember though! Thanks Marcus From clug at gasops.co.uk Mon Jun 29 16:15:36 2009 From: clug at gasops.co.uk (Longman) Date: Mon, 29 Jun 2009 15:15:36 +0100 Subject: GreaseMonkey In-Reply-To: <4A48CABB.601@quintic.co.uk> References: <19016.49025.906861.854527@tree.ty.sabi.co.UK> <4A48C114.7010708@quintic.co.uk> <4A48C9DA.2020704@gasops.co.uk> <4A48CABB.601@quintic.co.uk> Message-ID: <4A48CC88.4010001@gasops.co.uk> * Marcus Williams wrote: > Longman wrote: >> Well I manage to target a specific site using the following. I disable >> the 'Upgrade your account' button since the upgrade actually puts you on >> worse interest onto an account that charges a monthly fee. Each time I >> see the 'Upgrade' button it peeves me somewhat, so I make it ghost: >> >> @-moz-document domain(lloydstsb.co.uk) > > ooooh nice - didnt know about that one :) Mind you, I'll still stick > with my addons as I can do more with greasemonkey. Definitely one to > remember though! I also get rid of adverts from Google and such like with the userChrome (just a one liner). Lots of really nice things you can do with it. I have GreaseMonkey but have never got round to playing with other people's scripts or writing my own. From thomas at horsten.com Wed Jun 3 15:31:25 2009 From: thomas at horsten.com (Thomas Horsten) Date: Wed, 3 Jun 2009 14:31:25 +0100 Subject: Anyone have a spare oldish motherboard (SocketA or similar) with several PCI slots? Message-ID: <5d932cdc0906030631y15008192ofc65a154cccc4d73@mail.gmail.com> Hi, and sorry for the off topic. I have a Linux server running as a MythTV backend with 4 PCI tuner cards. It's an Asus A7N8X Motherboard with an Athlon 3000 processor. Unfortunately it has become unstable and I think it's the motherboard itself since I tried with different RAM. Most new budget motherboards only have 1 or 2 "old fashioned" PCI slots and it would be a waste to spend lots of money on something that really doesn't need very much CPU power.. In the name of recycling, I thought I'd ask if any of you have a spare motherboard with at least 4 PCI slots, that you don't use anymore and would be willing to part with for a reasonable price. If it's not a Socket A but it has a working CPU (~1.5GHz or more) that would also work. If so I'd be happy to pick it up ASAP! Thanks, Thomas From thomas at horsten.com Wed Jun 3 15:44:33 2009 From: thomas at horsten.com (Thomas Horsten) Date: Wed, 3 Jun 2009 14:44:33 +0100 Subject: Website (again) In-Reply-To: References: <49DB2C1F.1060104@studio24.net> <49DB267E.3000401@jul17pri.co.uk> <20090407140401.GC2797@weber> <49DB5EEB.8000408@studio24.net> <20090424170237.GA3558@weber> <20090510214340.GA12744@weber> Message-ID: <5d932cdc0906030644r5776aab5pdeb12eb197cf7a77@mail.gmail.com> 2009/5/10 Wawrzyniec Niewodnicza?ski : > Hi, > > [...] >> Here is a very simple n-step plan to achieving this goal: >> >> 1. Find someone who can change the content on http://www.cam-lug.org.uk/ > [...] > > Hmmmm, I guess that is a ''tiny' problem ;) Not really as it's all on my server. I can update the site and/or add accounts for whoever needs to do it but I don't always read the CLUG list so if there's anything I need to do please email me directly! Cheers Thomas From thomas at horsten.com Wed Jun 3 16:52:02 2009 From: thomas at horsten.com (Thomas Horsten) Date: Wed, 3 Jun 2009 15:52:02 +0100 Subject: broken mailing list manager for clug In-Reply-To: <49F418B5.3070306@mansfield.co.uk> References: <49F418B5.3070306@mansfield.co.uk> Message-ID: <5d932cdc0906030752w19789bb4w8ee985ce3e8ac0d6@mail.gmail.com> 2009/4/26 Paul M : > > I got another "you've been disabled" message, so I clicked on the link > as per the message, and it looks like mailman is STILL b0rked! I > definitely didn't receive this message on Friday, so I presume that when > mailman barfs it can't send out the reminders, and then by the time they > get there they are pointless. > > |Bad confirmation string > |Invalid confirmation string: 12d8e39c16d3ba1e43de68491c6e6a82e2ab04aa. I know there are issues with the confirmation strings with Excessive Bounces. Apparently it is a known but rare bug in that version of Mailman (it doesn't affect other confirmation strings e.g. in the subscription requests). I will try to get around to upgrading the Mailman ASAP. Until then, please log in to the web interface on the list using your Mailman password, if this Excessive Bounces problem happens. One reason for the excessive bounces, as I found out when investigating Paul's problem a few weeks ago, is that some people's mail servers bounce the mails that you send to the list yourself when it tries to send a copy back to you (because it doesn't accept the mailing list server as a valid sender for emails *from* you). You can resolve this by disabling the option "Receive your own posts to the list?" from the Mailman control panel. Of course if you don't understand why your mails are being bounced, please forward the disconnect notification and I can find out from the server logs. Cheers Thomas From thomas at horsten.com Wed Jun 3 17:51:09 2009 From: thomas at horsten.com (Thomas Horsten) Date: Wed, 3 Jun 2009 16:51:09 +0100 Subject: Test new Mailman version Message-ID: <5d932cdc0906030851o4df5677fn31b1c157e5d54e1d@mail.gmail.com> Hi Just testing the list after upgrading Mailman. If this works, it should fix the issue with the confirmation links in the "excessive bounce" messages. Cheers Thomas From clug at gasops.co.uk Thu Jun 4 17:42:37 2009 From: clug at gasops.co.uk (Longman) Date: Thu, 04 Jun 2009 16:42:37 +0100 Subject: IMAP, large emails and slow connection Message-ID: <4A27EB6D.6070402@gasops.co.uk> Is using IMAP over a 2 MBit circuit a viable option if some of the emails are 20MB in size (due to ridiculous Excel attachments) or will there be some client side caching which means the email only need be downloaded the first time it's opened? From paul+clug at mansfield.co.uk Thu Jun 4 18:14:26 2009 From: paul+clug at mansfield.co.uk (Paul M) Date: Thu, 04 Jun 2009 17:14:26 +0100 Subject: IMAP, large emails and slow connection In-Reply-To: <4A27EB6D.6070402@gasops.co.uk> References: <4A27EB6D.6070402@gasops.co.uk> Message-ID: <4A27F2E2.4030101@mansfield.co.uk> Longman wrote: > Is using IMAP over a 2 MBit circuit a viable option if some of the > emails are 20MB in size (due to ridiculous Excel attachments) or will > there be some client side caching which means the email only need be > downloaded the first time it's opened? can't you set client to download headers only, and/or not download attachments, and/or limit the size downloaded for each message? From colinj at mx5.org.uk Thu Jun 4 19:35:04 2009 From: colinj at mx5.org.uk (Colin Johnston) Date: Thu, 4 Jun 2009 18:35:04 +0100 Subject: IMAP, large emails and slow connection In-Reply-To: <4A27EB6D.6070402@gasops.co.uk> References: <4A27EB6D.6070402@gasops.co.uk> Message-ID: pop3 works fine for 2mb connected mail servers Colin On 4 Jun 2009, at 16:42, Longman wrote: > > Is using IMAP over a 2 MBit circuit a viable option if some of the > emails are 20MB in size (due to ridiculous Excel attachments) or will > there be some client side caching which means the email only need be > downloaded the first time it's opened? > _______________________________________________ > CLUG mailing list > clug at cambridge-lug.org > Website: http://www.cambridge-lug.org > From clug at gasops.co.uk Wed Jun 10 18:28:48 2009 From: clug at gasops.co.uk (Longman) Date: Wed, 10 Jun 2009 17:28:48 +0100 Subject: Avoiding having a www A REC with BIND9 Message-ID: <4A2FDF40.8070003@gasops.co.uk> If you wish to have a domain resolve to the A rec IP of your www host (and your www host just be a CNAME of this), how would you accomplish this in BIND? The record can't go in the Zone file for your domain, as only the hosts/subdomains go in this file? So where does it go? It seems to me that it would go at the REGISTRAR level, for they are the people that provide the 'glue records' for the nameserver addresses of the domains their servers refer you to, but a bit of googling hasn't really found much. From ohanzee at gmail.com Wed Jun 10 23:01:54 2009 From: ohanzee at gmail.com (Ravi Joganathan) Date: Wed, 10 Jun 2009 22:01:54 +0100 Subject: Domain name registrars Message-ID: I am looking for recommendations for decent domain registrar, to transfer my domain. I am looking for registrars who doesn't have too many restrictive conditions, such as outwards transfer fees. Thanks Ravi -- Has the Large Hadron Collider destroyed the world yet? http://hasthelargehadroncolliderdestroyedtheworldyet.com From clug at minimal.cx Wed Jun 10 23:11:35 2009 From: clug at minimal.cx (Ian Spray) Date: Wed, 10 Jun 2009 22:11:35 +0100 Subject: Domain name registrars In-Reply-To: References: Message-ID: On 10 Jun 2009, at 22:01, Ravi Joganathan wrote: > I am looking for recommendations for decent domain registrar, to > transfer my domain. I am looking for registrars who doesn't have too > many restrictive conditions, such as outwards transfer fees. > I am very happy with 123-reg for my UK names, and whilst the UI is rather, well, quirky, I've had no problems with a .org at Joker. If it wasn't for the fact that I always forget until just after I'd paid my renewal fee I'd have moved my .org over to 123-reg by now, as I really like the control over DNS and email that 123 gives me. http://www.123-reg.co.uk/ http://joker.com/ HTH, -- Ian Spray GPG Fingerprint: D170 35A3 C858 6E85 9B5B 1557 4CD5 6F6F E176 2D0A From clug at minimal.cx Wed Jun 10 23:20:43 2009 From: clug at minimal.cx (Ian Spray) Date: Wed, 10 Jun 2009 22:20:43 +0100 Subject: Avoiding having a www A REC with BIND9 Message-ID: > If you wish to have a domain resolve to the A rec IP of your www host > (and your www host just be a CNAME of this), how would you accomplish > this in BIND? The record can't go in the Zone file for your domain, as > only the hosts/subdomains go in this file? So where does it go? It > seems to me that it would go at the REGISTRAR level, for they are the > people that provide the 'glue records' for the nameserver addresses of > the domains their servers refer you to, but a bit of googling hasn't > really found much. Hi Longman, I'm not 100% sure I see your problem, as I think I'm doing what you want to do already with my domain name and it's just fine: ; <<>> DiG 9.3.4-P1 <<>> www.minimal.cx A ;; global options: printcmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 22192 ;; flags: qr rd ra; QUERY: 1, ANSWER: 2, AUTHORITY: 0, ADDITIONAL: 0 ;; QUESTION SECTION: ;www.minimal.cx. IN A ;; ANSWER SECTION: www.minimal.cx. 3600 IN CNAME mail.minimal.cx. mail.minimal.cx. 3600 IN A 217.155.68.52 ;; Query time: 1456 msec ;; SERVER: 208.67.222.222#53(208.67.222.222) ;; WHEN: Wed Jun 10 16:18:14 2009 ;; MSG SIZE rcvd: 67 SMTP RDNS is much more strict than HTTP, so I have my IP map back to my name server with an A record, then have a CNAME for my www on the same public IP. Is this what you mean ? If so I can post fragments of my BIND config, but if not, could you describe what you're not allowed to do ? HTH, -- Ian Spray GPG Fingerprint: D170 35A3 C858 6E85 9B5B 1557 4CD5 6F6F E176 2D0A From tehpeh at gmx.net Wed Jun 10 23:31:07 2009 From: tehpeh at gmx.net (Thomas Pircher) Date: Wed, 10 Jun 2009 22:31:07 +0100 Subject: Domain name registrars In-Reply-To: References: Message-ID: <200906102231.07914.tehpeh@gmx.net> On Wednesday 10 June 2009 22:11:35 Ian Spray wrote: > I am very happy with 123-reg for my UK names, and whilst the UI is > rather, well, quirky, I agree. 123-reg is OK, if you don't want to do 'fancy' settings in DNS. The interface lets you set A, CNAME and TXT records freely, as well as MX. Nothing more. In fact, I miss AAAA records for example, and they told me they "do not have any fixed dates as to when AAAA records will be supported". Their support is not extremely fast, but helpful. Hope this helps, Thomas From jt at camalyn.org Wed Jun 10 23:30:53 2009 From: jt at camalyn.org (jt) Date: Wed, 10 Jun 2009 22:30:53 +0100 Subject: JOB: C++ Specialist Programmer in London close to Kings X Message-ID: <4A30260D.2030607@camalyn.org> JOB: C++ specialist programmer in London close to Kings Cross. Hello, I am looking to recruit a permanent C++ specialist programmer that has previous experience writing mathematical or numerical programs in a Linux environment. You should also have experience of at least 1 scripting language too. This is a job that will pay around ?40,000 -- ?50,000 pa with benefits. As an incentive I will also pay you ?500 - should you commence employment with this employer via my representative. Please contact me using james at camalyn.org to learn more. Thanks, James . . . . . . James Tobin Camalyn +44 (0) 7952 145 127 - mobile to learn more about Camalyn please visit http://www.camalyn.org From dom at latter.org Thu Jun 11 00:41:57 2009 From: dom at latter.org (Dom Latter) Date: Thu, 11 Jun 2009 00:41:57 +0200 Subject: Domain name registrars In-Reply-To: <200906102231.07914.tehpeh@gmx.net> References: <200906102231.07914.tehpeh@gmx.net> Message-ID: <4A3036B5.3010006@latter.org> Thomas Pircher wrote: > On Wednesday 10 June 2009 22:11:35 Ian Spray wrote: >> I am very happy with 123-reg for my UK names, and whilst the UI is >> rather, well, quirky, > > I agree. I don't. 123 is now part of GX, i.e. the infamous webfusion. A lot of developers have had a lot of problems in the last couple of years with 123. IIRC they still stick their nameservers behind the same router, for example. daily.co.uk has been recommended, by someone whose opinion I trust. From jt at camalyn.org Thu Jun 11 01:30:40 2009 From: jt at camalyn.org (jt) Date: Thu, 11 Jun 2009 00:30:40 +0100 Subject: Domain name registrars In-Reply-To: References: Message-ID: <4A304220.3040003@camalyn.org> Ravi Joganathan wrote: > I am looking for recommendations for decent domain registrar, to > transfer my domain. I am looking for registrars who doesn't have too > many restrictive conditions, such as outwards transfer fees. enom are pretty good, or you could try one of their resellers which is www.regme.net good luck, J :) From joe.czucha at studio24.net Thu Jun 11 10:29:22 2009 From: joe.czucha at studio24.net (Joe Czucha) Date: Thu, 11 Jun 2009 09:29:22 +0100 Subject: Domain name registrars Message-ID: <4A30C062.7060905@studio24.net> I manage my domains through 123-reg but then I have a VPS at Slicehost (a fully-owned but much cheaper subsidiary of the legendary Rackspace) so I create the DNS zones on their name servers and then just use the 123-reg control to point the domains at that. It allows much greater control and extra functionality than 123-reg, such as the ability to create the zone file BEFORE you change the name server of the domain so that the DNS is already in place when it propagates and down time is minimized. Joe "I like my domains like I like my women... reliable, cheap to run and preferably without WebFusion stamped all over them." From marcus at quintic.co.uk Thu Jun 11 10:41:20 2009 From: marcus at quintic.co.uk (Marcus Williams) Date: Thu, 11 Jun 2009 09:41:20 +0100 Subject: Domain name registrars In-Reply-To: References: Message-ID: <4A30C330.7070208@quintic.co.uk> Ravi Joganathan wrote: > I am looking for recommendations for decent domain registrar, to > transfer my domain. I am looking for registrars who doesn't have too > many restrictive conditions, such as outwards transfer fees. I use Gandi for all of my registrations (and their virtual server stuff). I've never had any problems with them. The only thing I would say is if its a .co.uk domain their renewal is a bit scary (all other tld's get renewed the same day, .co.uk's dont get processed by nominet until the day of renewal which is a bit disturbing). Marcus From clug at gasops.co.uk Thu Jun 11 11:08:51 2009 From: clug at gasops.co.uk (Longman) Date: Thu, 11 Jun 2009 10:08:51 +0100 Subject: Avoiding having a www A REC with BIND9 In-Reply-To: References: Message-ID: <4A30C9A3.6000303@gasops.co.uk> * Ian Spray wrote: > Hi Longman, > I'm not 100% sure I see your problem, as I think I'm doing what you > want to do already with my domain name and it's just fine: > ;www.minimal.cx. IN A (Snip) This part answers my question thanks. I need the dot on the end to provide the FQDN rather than for a relative domain within the context of the Zone (which is what you get without the dot). From clug at gasops.co.uk Thu Jun 11 12:50:03 2009 From: clug at gasops.co.uk (Longman) Date: Thu, 11 Jun 2009 11:50:03 +0100 Subject: Exim and backup relays Message-ID: <4A30E15B.9060802@gasops.co.uk> Ever since setting up a backup MX for my domain (via relay domains) I've started receiving lots of Frozen Message emails for Frozen Emails in the queue on this backup MX. It looks like spammers are using the the backup MX to send email to non-existant recipients (computer generated nonsense in most cases), but of course they're accepted because their all to accounts within my domain that I've told it to relay for. What is the correct way to try and combat this? Is there a way to get the backup relay to contact the primary relay to get a list of valid email accounts thereby junking nonsense recipients, or some other method to put paid to this? Currently I have 9468 Frozen Messages! From clug at minimal.cx Thu Jun 11 13:24:35 2009 From: clug at minimal.cx (Ian Spray) Date: Thu, 11 Jun 2009 12:24:35 +0100 Subject: Exim and backup relays In-Reply-To: <4A30E15B.9060802@gasops.co.uk> References: <4A30E15B.9060802@gasops.co.uk> Message-ID: <20090611112435.GB1146@minimal.cx> On Thu, Jun 11, 2009 at 11:50:03AM +0100, Longman wrote: > > Ever since setting up a backup MX for my domain (via relay domains) I've > started receiving lots of Frozen Message emails for Frozen Emails in the > queue on this backup MX. It looks like spammers are using the the backup > MX to send email to non-existant recipients (computer generated nonsense > in most cases), but of course they're accepted because their all to > accounts within my domain that I've told it to relay for. What is the > correct way to try and combat this? Is there a way to get the backup > relay to contact the primary relay to get a list of valid email accounts > thereby junking nonsense recipients, or some other method to put paid to > this? Currently I have 9468 Frozen Messages! > Yup - this is a common problem. One very quick fix (which works for all systems and not just exim) is a bogus last MX record. The spammers do tend to start at the lowest numbered MX and work up, so this cuts things down a little, but isn't a full solution: $ dig mx minimal.cx ; <<>> DiG 9.3.4-P1 <<>> mx minimal.cx ;; global options: printcmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 35948 ;; flags: qr rd ra; QUERY: 1, ANSWER: 4, AUTHORITY: 13, ADDITIONAL: 5 ;; QUESTION SECTION: ;minimal.cx. IN MX ;; ANSWER SECTION: minimal.cx. 3600 IN MX 10 mail.minimal.cx. minimal.cx. 3600 IN MX 20 mail.minimal.org.uk. minimal.cx. 3600 IN MX 30 mx01.gratisdns.de. minimal.cx. 3600 IN MX 100 bogus.spam.trap. Can you spot the fake entry ? ;) The other, exim specific thing is to get your backup MX to test during SMTP receive with the primary to see if the destination address is valid and cache the results. Your system then rejects during the SMTP receive phase if either the lookup or the cache indicates a failure, and nothing hits your queue. Put this in your acl_smtp:rcpt: deny domains = +relay_to_domains recipients = ${if exists{/etc/exim/local_rcpt_callout}\ {/etc/exim/local_rcpt_callout}\ {}} !verify = recipient/callout=2m,defer_ok and then put a list of domains into the file specified that you want to do this receive time check on in /etc/exim/local_rcpt_callout, eg: domainname.co.uk otherdomain.org another.eu This allows you to choose a subset of your relay domains to do this with - if you don't care and want to do the callout checking on all entries in the relay_to_domains then just remote the recipients line above. I chose to only cache the results of the callout heck for 2 minutes as the domains I backup MX for are nothing to do with me and I don't want to annoy the admins by bouncing fresh accounts. If you know how often the other domains have new addresses then do bump up that timeout to reduce the traffic betwene you and the real MX receiver ever further. Note that if the primary MX is down and fails to answer then email will queue up normally (including all spam !), but that's a small price to pay for not having to maintain many lists of valid acounts. HTH, -- Ian Spray GPG Fingerprint: D170 35A3 C858 6E85 9B5B 1557 4CD5 6F6F E176 2D0A From clug at gasops.co.uk Thu Jun 11 15:30:52 2009 From: clug at gasops.co.uk (Longman) Date: Thu, 11 Jun 2009 14:30:52 +0100 Subject: Exim and backup relays In-Reply-To: <20090611112435.GB1146@minimal.cx> References: <4A30E15B.9060802@gasops.co.uk> <20090611112435.GB1146@minimal.cx> Message-ID: <4A31070C.40403@gasops.co.uk> * Ian Spray wrote: > Yup - this is a common problem. One very quick fix (which works for all > systems and not just exim) is a bogus last MX record. The spammers do > tend to start at the lowest numbered MX and work up, so this cuts things > down a little, but isn't a full solution: Highest numbered ? i.e. Lowest priority. > The other, exim specific thing is to get your backup MX to test during (snip userful comments about exim). There is also receiver_verify, ignore_errmsg_errors, ignore_errmsg_errors_after, and timeout_frozen_after to look at. I use CHECK_RCPT_VERIFY_SENDER = 'true' but doesn't seem to do much. Will try out some of your suggestions, thanks :-) From clug at minimal.cx Thu Jun 11 16:23:19 2009 From: clug at minimal.cx (Ian Spray) Date: Thu, 11 Jun 2009 15:23:19 +0100 Subject: Exim and backup relays In-Reply-To: <4A31070C.40403@gasops.co.uk> References: <4A30E15B.9060802@gasops.co.uk> <20090611112435.GB1146@minimal.cx> <4A31070C.40403@gasops.co.uk> Message-ID: <20090611142319.GD1146@minimal.cx> On Thu, Jun 11, 2009 at 02:30:52PM +0100, Longman wrote: > * Ian Spray wrote: > > Yup - this is a common problem. One very quick fix (which works for all > > systems and not just exim) is a bogus last MX record. The spammers do > > tend to start at the lowest numbered MX and work up, so this cuts things > > down a little, but isn't a full solution: > > Highest numbered ? i.e. Lowest priority. > Ahem. Yes: you're correct, and I was thinking faster than I was typing... They start with the lowest priority (in general) as there's normally less checking there. Quite what metric of success they have to say that it was delivered when it sat in a queue for 14 days and then got thrown away I don't know. Maybe they get paid by number of non-bounce sends per spam run ? Heh - Spammers have Managers ;) > > The other, exim specific thing is to get your backup MX to test during > (snip userful comments about exim). > > There is also receiver_verify, ignore_errmsg_errors, > ignore_errmsg_errors_after, and timeout_frozen_after to look at. I use > CHECK_RCPT_VERIFY_SENDER = 'true' but doesn't seem to do much. Will try > out some of your suggestions, thanks :-) > Oh you're welcome to those too ! I've discovered from experience that frozen messages (caused by an attempt at delivery that was actively refused) are 99.9% junk, so have a very low tolerance for that on my server. Technically it could be a server mis-configuration and some email could be lost if the problems are then fixed, but I'm only running this for myself and have not had any problems so far. timeout_frozen_after = 2d ignore_bounce_errors_after = 1d I would say that the verify_sender option worked wonders a couple years of ago but that it's use is now of limited success: it appears that spambot syntax is improving. I've certainly not refused valid email through the use of it, so in my book that means leave it enabled ! I also have two sets of retry counters: one for a domain I am being backup MX for, and one for everything else. Note that I try much more agressively to redelivery email to the backup MX (every 15m for 24h) so that small outages/reconfigures don't hold up their email too much. begin retry abackupmx.com * F,24h,15m; F,7d,2h; F,14d,6h * * F,2h,15m; G,16h,1h,1.5; F,14d,6h I also have a couple of other countermeasures that I've not seen publicly discussed, so have refrained from doing so myself as they're rather effective and I don't want them to stop working from having my config end up in Google. I'll email those to you privately, and will happily share those ideas with another list members who want them (they are exim specific in implementation, but not concept). Possibly overly paranoid to think that spambot writers read my postings, but then again I currently reject far more junk than I accept and want to keep it like that ! HTH, -- Ian Spray GPG Fingerprint: D170 35A3 C858 6E85 9B5B 1557 4CD5 6F6F E176 2D0A From clug at gasops.co.uk Thu Jun 11 17:47:18 2009 From: clug at gasops.co.uk (Longman) Date: Thu, 11 Jun 2009 16:47:18 +0100 Subject: Exim and backup relays In-Reply-To: <20090611112435.GB1146@minimal.cx> References: <4A30E15B.9060802@gasops.co.uk> <20090611112435.GB1146@minimal.cx> Message-ID: <4A312706.2050905@gasops.co.uk> * Ian Spray wrote: > hits your queue. Put this in your acl_smtp:rcpt: I think this is 30_exim4-config_check_rcpt on my Debian system? From clug at gasops.co.uk Thu Jun 11 17:51:22 2009 From: clug at gasops.co.uk (Longman) Date: Thu, 11 Jun 2009 16:51:22 +0100 Subject: Exim and backup relays In-Reply-To: <20090611112435.GB1146@minimal.cx> References: <4A30E15B.9060802@gasops.co.uk> <20090611112435.GB1146@minimal.cx> Message-ID: <4A3127FA.7060709@gasops.co.uk> * Ian Spray wrote: > hits your queue. Put this in your acl_smtp:rcpt: acl_smtp_rcpt ? In 02_exim4-config_options ? Not too sure how consistent the filenames are between distributions.. From clug at gasops.co.uk Thu Jun 11 17:59:10 2009 From: clug at gasops.co.uk (Longman) Date: Thu, 11 Jun 2009 16:59:10 +0100 Subject: Exim and backup relays In-Reply-To: <20090611112435.GB1146@minimal.cx> References: <4A30E15B.9060802@gasops.co.uk> <20090611112435.GB1146@minimal.cx> Message-ID: <4A3129CE.20402@gasops.co.uk> Aha... bingo.. In 30_exim4-config_check_rcpt on my Debian system I have : # Verify recipients listed in local_rcpt_callout with a callout. # This is especially handy for forwarding MX hosts (secondary MX or # mail hubs) of domains that receive a lot of spam to non-existent # addresses. The only way to check local parts for remote relay # domains is to use a callout (add /callout), but please read the # documentation about callouts before doing this. deny !acl = acl_whitelist_local_deny recipients = ${if exists{CONFDIR/local_rcpt_callout}\ {CONFDIR/local_rcpt_callout}\ {}} !verify = recipient/callout So it looks like it's already here but probably not working because there is nothing in local_rcpt_callout.. From clug at minimal.cx Thu Jun 11 18:13:01 2009 From: clug at minimal.cx (Ian Spray) Date: Thu, 11 Jun 2009 17:13:01 +0100 Subject: Exim and backup relays In-Reply-To: <4A3129CE.20402@gasops.co.uk> References: <4A30E15B.9060802@gasops.co.uk> <20090611112435.GB1146@minimal.cx> <4A3129CE.20402@gasops.co.uk> Message-ID: <20090611161301.GH1146@minimal.cx> On Thu, Jun 11, 2009 at 04:59:10PM +0100, Longman wrote: > > Aha... bingo.. > Excellent. > So it looks like it's already here but probably not working because > there is nothing in local_rcpt_callout.. > Glad you found it as I don't have a Debian system so couldn't tell you where it is :( In a statement that will cause collective gasps of horror, I've just never managed to get to grips with the Debianisation of configs that they do, and so have avoided it as much as possible. TTFN, -- Ian Spray GPG Fingerprint: D170 35A3 C858 6E85 9B5B 1557 4CD5 6F6F E176 2D0A From clug at gasops.co.uk Thu Jun 11 18:14:02 2009 From: clug at gasops.co.uk (Longman) Date: Thu, 11 Jun 2009 17:14:02 +0100 Subject: Exim and backup relays In-Reply-To: <20090611161301.GH1146@minimal.cx> References: <4A30E15B.9060802@gasops.co.uk> <20090611112435.GB1146@minimal.cx> <4A3129CE.20402@gasops.co.uk> <20090611161301.GH1146@minimal.cx> Message-ID: <4A312D4A.9060509@gasops.co.uk> * Ian Spray wrote: > On Thu, Jun 11, 2009 at 04:59:10PM +0100, Longman wrote: >> Aha... bingo.. >> > Excellent. > >> So it looks like it's already here but probably not working because >> there is nothing in local_rcpt_callout.. >> > Glad you found it as I don't have a Debian system so couldn't tell you > where it is :( In a statement that will cause collective gasps of > horror, I've just never managed to get to grips with the Debianisation > of configs that they do, and so have avoided it as much as possible. I added domains to local_rcpt_callout though they don't seem to be honoured, despite a restart. I tried sending a file using telnet from a remote system to one of my backup MX and typed a nonsense email recipient but it still accepted delivery and didn't perform a callout. nothing in /var/log/mainlog of use either. Arghh! Will play some more tomorrow. :-) From clug at minimal.cx Thu Jun 11 18:28:41 2009 From: clug at minimal.cx (Ian Spray) Date: Thu, 11 Jun 2009 17:28:41 +0100 Subject: Exim and backup relays In-Reply-To: <4A312D4A.9060509@gasops.co.uk> References: <4A30E15B.9060802@gasops.co.uk> <20090611112435.GB1146@minimal.cx> <4A3129CE.20402@gasops.co.uk> <20090611161301.GH1146@minimal.cx> <4A312D4A.9060509@gasops.co.uk> Message-ID: <20090611162841.GA13145@minimal.cx> On Thu, Jun 11, 2009 at 05:14:02PM +0100, Longman wrote: > > I added domains to local_rcpt_callout though they don't seem to be > honoured, despite a restart. I tried sending a file using telnet from a > remote system to one of my backup MX and typed a nonsense email > recipient but it still accepted delivery and didn't perform a callout. > nothing in /var/log/mainlog of use either. Arghh! Will play some more > tomorrow. :-) > Hmm, that sucks. Is there something more Debian related that you need to do other than populate that file ? Is there a config entry with a y/n option that needs to be set and then a config script run before HUPing exim ? It's fairly obvious when it does kick in as you get lines like this in your log file: 2009-06-11 12:06:54 H=(JQYFJONXI) [124.43.49.42] F= rejected RCPT : Previous (cached) callout verification failure I can understand leaving it for now: a quick Google doesn't help much and it does feel more like a local setup issue than an exim one. Feel free to email me directly if you want to share unobfuscated configs, etc. TTFN, -- Ian Spray GPG Fingerprint: D170 35A3 C858 6E85 9B5B 1557 4CD5 6F6F E176 2D0A From dom at latter.org Fri Jun 12 17:06:31 2009 From: dom at latter.org (Dom Latter) Date: Fri, 12 Jun 2009 17:06:31 +0200 Subject: VirtualBox Message-ID: <4A326EF7.7010905@latter.org> Anybody use it for virtual servers? I'm a bit stuck with the networking configuration. From clug at minimal.cx Fri Jun 12 17:14:17 2009 From: clug at minimal.cx (Ian Spray) Date: Fri, 12 Jun 2009 16:14:17 +0100 Subject: VirtualBox In-Reply-To: <4A326EF7.7010905@latter.org> References: <4A326EF7.7010905@latter.org> Message-ID: <20090612151417.GI10809@minimal.cx> On Fri, Jun 12, 2009 at 05:06:31PM +0200, Dom Latter wrote: > Anybody use it for virtual servers? > I have, although not for paying customers. > I'm a bit stuck with the networking configuration. > The biggest choice is do you want it NATed behind the IP of the host that you're running Virtualbox on, or directly on the LAN as if another physical machine had been plugged in. What sort of network issues do you have ? TTFN, -- Ian Spray GPG Fingerprint: D170 35A3 C858 6E85 9B5B 1557 4CD5 6F6F E176 2D0A From dom at latter.org Fri Jun 12 17:26:35 2009 From: dom at latter.org (Dom Latter) Date: Fri, 12 Jun 2009 17:26:35 +0200 Subject: VirtualBox In-Reply-To: <20090612151417.GI10809@minimal.cx> References: <4A326EF7.7010905@latter.org> <20090612151417.GI10809@minimal.cx> Message-ID: <4A3273AB.6080002@latter.org> Ian Spray wrote: > The biggest choice is do you want it NATed behind the IP of the host > that you're running Virtualbox on, or directly on the LAN as if another > physical machine had been plugged in. > > What sort of network issues do you have ? NATed worked fine, but I want to run web and mail servers on it, so I think I need "bridged". Directly on the LAN, as it were. NAT'ed is okay for "client" machines but in order to forward port 80 and the like to the hsot OS, you need to be running as root, and I don't want to do that. Here's a post I made to the vb forums: ==== start ====================================================== I have a headless remote CentOS 5.3 (AMD64) webserver on which I have installed ./VirtualBox-2.2.4-47978-Linux_amd64.run with the aim of having a second separate (virtual) webserver on its own IP address. The server is remote so I'm doing everything from the command line. I have created a VM running Debian 5.0.1 (32 bit). Using default NAT networking the Debian VM can communicate with the world. On the host OS I have two IP addresses, let's say 12.34.56.78 and 12.34.56.79 as eth0 and eth0:1. I want to bind the second IP address to the VM. In order to run Apache on the VM I believe I need to change to bridged networking. If I try this: VBoxManage modifyvm "Debian501" --nic1 bridged --bridgeadapter1 eth0:1 then I get an error message when I try to start the VM: "Failed to open/create the internal network 'HostInterfaceNetworking-eth0:1' (VERR_INTNET_FLT_IF_NOT_FOUND)." With this: VBoxManage modifyvm "Debian501" --nic1 bridged --bridgeadapter1 eth0 the VM boots, but there is no sign of any networking on the VM. "ifconfig eth0" on the VM doesn't have an IP address. On the guest, /etc/network/interfaces contains "iface eth0 inet dhcp". I've also tried a static IP using the values obtained when I was running it as a NATed machine. In any case I don't see how this would work - I want to bind the host's eth0:1 to my VM, not the main interface. But all the guides say "select the interface you want and it just works". "lsmod" on the host shows "vboxnetflt" as installed. I have read the manual, the FAQ, and many many pages and I can't see how to get this working. Most posts refer to old versions of VB where you had to configure TAPs and so on, and more recent posts tend to refer to the GUI, not the command line. ==== end ====================================================== NB that previous versions of VB required all sorts of malarkey, which is now automagically taken care of by a "net filter". What I don't get is what IP address the host OS is supposed to end up with, and where it gets it from. Any pointers? There is a possible fallback, using NAT. Get the hardware router that the physical server is behind to forward port 80 requests to, say port 1080, and then on the host machine forward port 1080 to port 80 on the guest OS (or indeed change apache's default ports, but I'd rather change as little as possible). From clug at minimal.cx Fri Jun 12 17:48:04 2009 From: clug at minimal.cx (Ian Spray) Date: Fri, 12 Jun 2009 16:48:04 +0100 Subject: VirtualBox In-Reply-To: <4A3273AB.6080002@latter.org> References: <4A326EF7.7010905@latter.org> <20090612151417.GI10809@minimal.cx> <4A3273AB.6080002@latter.org> Message-ID: <20090612154804.GK10809@minimal.cx> On Fri, Jun 12, 2009 at 05:26:35PM +0200, Dom Latter wrote: > > NATed worked fine, but I want to run web and mail servers on it, so > I think I need "bridged". Directly on the LAN, as it were. > Yup - most of my work is done in bridged mode. > What I don't get is what IP address the host OS is supposed to end up > with, and where it gets it from. > > Any pointers? > I've never tried to specify an aliased interface in bridge mode: I set up the VM as a bridge, choose an Intel Pro network card (they work best for the O/S I try to run) and let it go. The VB system will create whatever it needs on the host without me asking it to, and then as the VM image starts up it requests a DHCP address like any other system on my LAN. I would suggest you unalias eth0 (so loose eth0:1 on the host) first, set VB up for bridge, boot the VM image and then either do a DHCP in the VM, or set up the static IP inside the VM just as if you'd installed the system on a new machine. You shouldn't need to do anything at all on the host. > [snip NAT fallback] > If it involved NAT and port bouncing, I'll stick my fingers in my ears and shout "lalalala". The last time I had to fall back o something like this, Virtualisation wasn't around, so hopefully this can be avoided. You are just using plain old IPv4 here, aren't you ? There are caveats in the VB manual about wifi cards and non-IPv4 stuff. HTH, -- Ian Spray GPG Fingerprint: D170 35A3 C858 6E85 9B5B 1557 4CD5 6F6F E176 2D0A From dom at latter.org Fri Jun 12 18:27:37 2009 From: dom at latter.org (Dom Latter) Date: Fri, 12 Jun 2009 18:27:37 +0200 Subject: VirtualBox In-Reply-To: <20090612154804.GK10809@minimal.cx> References: <4A326EF7.7010905@latter.org> <20090612151417.GI10809@minimal.cx> <4A3273AB.6080002@latter.org> <20090612154804.GK10809@minimal.cx> Message-ID: <4A3281F9.9000402@latter.org> Ian Spray wrote: > I've never tried to specify an aliased interface in bridge mode: I set > up the VM as a bridge, choose an Intel Pro network card (they work best > for the O/S I try to run) and let it go. The VB system will create > whatever it needs on the host without me asking it to, and then as the > VM image starts up it requests a DHCP address like any other system on > my LAN. I've read the manual about eleventeen times and about eleventeen hundred forum posts and this is the first time someone's said *how* it works, not just "it works". > I would suggest you unalias eth0 (so loose eth0:1 on the host) first, > set VB up for bridge, boot the VM image and then either do a DHCP in the > VM, or set up the static IP inside the VM just as if you'd installed the > system on a new machine. You shouldn't need to do anything at all on > the host. Right. I believe I've tried all this. I certainly gave up with the aliased eth0:1 a while back. I'll try again, now I have a clearer picture of things. You really wouldn't believe how your short post here has made such a huge difference! I may try a different virtual network card (and why not?). Later I hope to be able to try a 64 bit guest OS. > If it involved NAT and port bouncing, I'll stick my fingers in my ears > and shout "lalalala". The last time I had to fall back o something like > this, Virtualisation wasn't around, so hopefully this can be avoided. Yes. But it may have to happen that way. > You are just using plain old IPv4 here, aren't you ? There are caveats > in the VB manual about wifi cards and non-IPv4 stuff. Certainly not wifi - this is data centre stuff. And it's all IPv4. (Hey, I thought we all moved to IPv6 in about 2001, didn't we?) thanks again. From dom at latter.org Fri Jun 12 18:39:45 2009 From: dom at latter.org (Dom Latter) Date: Fri, 12 Jun 2009 18:39:45 +0200 Subject: VirtualBox In-Reply-To: <20090612154804.GK10809@minimal.cx> References: <4A326EF7.7010905@latter.org> <20090612151417.GI10809@minimal.cx> <4A3273AB.6080002@latter.org> <20090612154804.GK10809@minimal.cx> Message-ID: <4A3284D1.3000205@latter.org> Ian Spray wrote: > for the O/S I try to run) and let it go. The VB system will create > whatever it needs on the host without me asking it to, and then as the > VM image starts up it requests a DHCP address like any other system on > my LAN. So does a new interface appear in "ifconfig -a"??? From clug at minimal.cx Fri Jun 12 18:50:26 2009 From: clug at minimal.cx (Ian Spray) Date: Fri, 12 Jun 2009 17:50:26 +0100 Subject: VirtualBox In-Reply-To: <4A3284D1.3000205@latter.org> References: <4A326EF7.7010905@latter.org> <20090612151417.GI10809@minimal.cx> <4A3273AB.6080002@latter.org> <20090612154804.GK10809@minimal.cx> <4A3284D1.3000205@latter.org> Message-ID: <20090612165026.GL10809@minimal.cx> On Fri, Jun 12, 2009 at 06:39:45PM +0200, Dom Latter wrote: > > So does a new interface appear in "ifconfig -a"??? > Inside the VM ? Yes, it should. If you look at the output of the dmesg after booting and logging into your VM then you should see the type of network card you selected in the VB config scroll past at some point. If you have no interfaces, do check that the card type chosen in the VB network selection screen (I use the GUI for this bit) matches a supported driver in the O/S you want to run in the VM. That's the main reason I choose the Intel Pro emulation, not because I think I can get Gigabit performance via a VM ;) HTH, -- Ian Spray GPG Fingerprint: D170 35A3 C858 6E85 9B5B 1557 4CD5 6F6F E176 2D0A From dom at latter.org Fri Jun 12 19:00:47 2009 From: dom at latter.org (Dom Latter) Date: Fri, 12 Jun 2009 19:00:47 +0200 Subject: VirtualBox In-Reply-To: <20090612165026.GL10809@minimal.cx> References: <4A326EF7.7010905@latter.org> <20090612151417.GI10809@minimal.cx> <4A3273AB.6080002@latter.org> <20090612154804.GK10809@minimal.cx> <4A3284D1.3000205@latter.org> <20090612165026.GL10809@minimal.cx> Message-ID: <4A3289BF.8060407@latter.org> Ian Spray wrote: > On Fri, Jun 12, 2009 at 06:39:45PM +0200, Dom Latter wrote: >> So does a new interface appear in "ifconfig -a"??? >> > Inside the VM ? Yes, it should. If you look at the output of the dmesg > after booting and logging into your VM then you should see the type of > network card you selected in the VB config scroll past at some point. > > If you have no interfaces, do check that the card type chosen in the VB > network selection screen (I use the GUI for this bit) matches a > supported driver in the O/S you want to run in the VM. That's the main > reason I choose the Intel Pro emulation, not because I think I can get > Gigabit performance via a VM ;) Good points. The virtual card should work, as it does in NAT mode. But could be worth trying a different one. And if I make it bridged but attach it to the vboxnet0 interface (which is meant for internal only, or something) it also manages to pick up an address from DHCP. From dom at latter.org Fri Jun 12 20:08:01 2009 From: dom at latter.org (Dom Latter) Date: Fri, 12 Jun 2009 20:08:01 +0200 Subject: VirtualBox In-Reply-To: <4A3289BF.8060407@latter.org> References: <4A326EF7.7010905@latter.org> <20090612151417.GI10809@minimal.cx> <4A3273AB.6080002@latter.org> <20090612154804.GK10809@minimal.cx> <4A3284D1.3000205@latter.org> <20090612165026.GL10809@minimal.cx> <4A3289BF.8060407@latter.org> Message-ID: <4A329981.40900@latter.org> Works now. I'm pretty sure I tried this combination earlier - attached to eth0, static IP in /etc/network/interfaces - but before I was able to try it again we'd scheduled a reboot to do some BIOS changes. And now it works. Somebody else reports "restarting" as a fix: http://forums.virtualbox.org/viewtopic.php?f=7&t=18632 From araujo.thiago.souza at gmail.com Sat Jun 13 00:05:32 2009 From: araujo.thiago.souza at gmail.com (Araujo, Thiago S.) Date: Fri, 12 Jun 2009 19:05:32 -0300 Subject: MBR crash Message-ID: <815b493b0906121505o1262463arbc5dcf92b683b04a@mail.gmail.com> Hello to you all, I work with 2 laptops, one with the old and good linux and other with winVista, for profissionals reasons I have to work with both simultaneosly. Yesterday I saw a link "compiz for windows vista" and tried to install it on my winvista notebook. An openSuSE installation poped up with graphics elements only... I clicked to proceed without think and... Nothing happenned. At least till I re-started. Then Grub was there (it shouldnt be... I was using only winVista on that notebook), incapable to boot both windows or openSUSE. I tried to recover using the recover dvd, and with command line with the command fix Mbr and chkdsk. Nothing. Dell support couldnt help me and the same with microsoft. So, how it is not a matter of windows but a matter of MBR recover. I thought someone around here could help me... I am quite sure the problem beyond Grub, there is no way to pass the command to winvista, I believe this joke crashed the Bcdsect ... system of Win boot.. I recovered data using the command "force" to mount the HD with a Linux live cd, but... there are some digital certificates I would not like to loose.... Thank you in advance, Araujo -- Thiago S. Araujo Facebook: http://www.facebook.com/profile.php?id=677281884 Twitter: http://twitter.com/prof_Araujo -------------- next part -------------- An HTML attachment was scrubbed... URL: http://lists.infowares.com/archive/clug/attachments/20090612/d9e6eb03/attachment.htm From wawrzek at gmail.com Sat Jun 13 00:11:42 2009 From: wawrzek at gmail.com (=?ISO-8859-2?Q?Wawrzyniec_Niewodnicza=F1ski?=) Date: Fri, 12 Jun 2009 23:11:42 +0100 Subject: MBR crash In-Reply-To: <815b493b0906121505o1262463arbc5dcf92b683b04a@mail.gmail.com> References: <815b493b0906121505o1262463arbc5dcf92b683b04a@mail.gmail.com> Message-ID: Hi, Have you tried to use LIVE CD to check if the Win partion is fine? Wawrzek -- Wawrzyniec Niewodnicza?ski vel Wawrzek Larry or LarryN Linux User #177124 E-MAIL: wawrzek at gmail.com PhD in Quantum Chemistry WWW: http://wawrzek.name MSc in Molecular Engineering JID: larryn at chrome.pl From araujo.thiago.souza at gmail.com Sat Jun 13 17:15:49 2009 From: araujo.thiago.souza at gmail.com (Araujo, Thiago S.) Date: Sat, 13 Jun 2009 12:15:49 -0300 Subject: MBR crash In-Reply-To: References: <815b493b0906121505o1262463arbc5dcf92b683b04a@mail.gmail.com> Message-ID: <815b493b0906130815x387f41e9m67c3d86e29d6ca37@mail.gmail.com> Wawrzyniec, yes, I did, the partition is ok. But the WinVista boot system is more complicated, and surely not better than Xp/2000/ 9x ... They should make a KISS version of windows! I certainlly would buy one. Thanks anyway! Ara?jo. On 6/12/09, Wawrzyniec Niewodnicza?ski wrote: > > Hi, > > Have you tried to use LIVE CD to check if the Win partion is fine? > > Wawrzek > > -- > Wawrzyniec Niewodnicza?ski vel Wawrzek Larry or LarryN > Linux User #177124 E-MAIL: wawrzek at gmail.com > PhD in Quantum Chemistry WWW: http://wawrzek.name > MSc in Molecular Engineering JID: larryn at chrome.pl > -- Ara?jo __________________________ Thiago S. Ara?jo Twitter: http://twitter.com/prof_Araujo Facebook: http://www.facebook.com/profile.php?id=677281884 -------------- next part -------------- An HTML attachment was scrubbed... URL: http://lists.infowares.com/archive/clug/attachments/20090613/84ce7ebd/attachment-0001.htm From araujo.thiago.souza at gmail.com Sat Jun 13 17:17:07 2009 From: araujo.thiago.souza at gmail.com (Araujo, Thiago S.) Date: Sat, 13 Jun 2009 12:17:07 -0300 Subject: MBR In-Reply-To: <6aedacb50906130736g533fe3f6hd55eb49ca3850f64@mail.gmail.com> References: <6aedacb50906130736g533fe3f6hd55eb49ca3850f64@mail.gmail.com> Message-ID: <815b493b0906130817v479a35bey5d1d8697ea5ec70@mail.gmail.com> Ashley, yes, I've tried the fdisk/mbr. Didnt worked. And I'm trying to burn a winvista download from internet, because the original factory DVD does not offer the update possibility, all the other possibilities will take over the HD. I keep here thinking why to not allow update in the dvd... But ... none of my DVDs are good to record :( (there is no floppy) Thinking positively at least I'm healthy Thanks anyway!! Araujo. On 6/13/09, Ashley Roberts wrote: Hey, I cant seem to post on the CLUG. have you tried a bootdisk and ran, "fdisk /mbr" If this fails, use another windows box to create a boot disk, edit the boot.ini to reflect location of your windows install and try booting using the floppy. Ash Araujo -- Thiago S. Araujo Facebook: http://www.facebook.com/profile.php?id=677281884 Twitter: http://twitter.com/prof_Araujo -- -------------- next part -------------- An HTML attachment was scrubbed... URL: http://lists.infowares.com/archive/clug/attachments/20090613/66f0d686/attachment-0002.htm From paul+clug at mansfield.co.uk Mon Jun 15 00:06:10 2009 From: paul+clug at mansfield.co.uk (Paul M) Date: Sun, 14 Jun 2009 23:06:10 +0100 Subject: Exim and backup relays In-Reply-To: <4A30E15B.9060802@gasops.co.uk> References: <4A30E15B.9060802@gasops.co.uk> Message-ID: <4A357452.1080909@mansfield.co.uk> Longman wrote: > Ever since setting up a backup MX for my domain (via relay domains) I've > started receiving lots of Frozen Message emails for Frozen Emails in the > queue on this backup MX. It looks like spammers are using the the backup what I've done in the past is to generate a list of valid recipients from our zimbra mail server and push the file out to the backup MX so that it always knows what's valid we now use postini for A/V and A/S and there's an autoprovision feature, as well as a call-out-verification, but TBH we just manually provision new valid recips in postini control panel as we don't make many changes; when we upgrade to zimbra latest I'll probably invest more time. From paul+clug at mansfield.co.uk Mon Jun 15 00:09:36 2009 From: paul+clug at mansfield.co.uk (Paul M) Date: Sun, 14 Jun 2009 23:09:36 +0100 Subject: Avoiding having a www A REC with BIND9 In-Reply-To: <4A2FDF40.8070003@gasops.co.uk> References: <4A2FDF40.8070003@gasops.co.uk> Message-ID: <4A357520.3010502@mansfield.co.uk> Longman wrote: > If you wish to have a domain resolve to the A rec IP of your www host > (and your www host just be a CNAME of this), how would you accomplish > this in BIND? The record can't go in the Zone file for your domain, as > only the hosts/subdomains go in this file? So where does it go? It > seems to me that it would go at the REGISTRAR level, for they are the > people that provide the 'glue records' for the nameserver addresses of > the domains their servers refer you to, but a bit of googling hasn't > really found much. wouldn't this work? @ IN A 1.2.3.4 www IN CNAME mydomain.com. you definitely don't want to break your DNS by doing this: @ IN CNAME www.mydomain.com. From magnus at therning.org Tue Jun 16 11:59:49 2009 From: magnus at therning.org (Magnus Therning) Date: Tue, 16 Jun 2009 10:59:49 +0100 Subject: Working on Xen in Cambridge? Message-ID: Since I've seen a few job postings on here before I thought I'd try it myself :-) Citrix' Cambridge office (now in a brand new building in the science park) is looking for people to work on Xen, especially XenClient (take a look at the Xen Wiki for some info, a good place to start is http://wiki.xensource.com/xenwiki/General_Project_Information ). These are the positions we are looking to fill with the desired skills: Hypervisor Testing - Python, scripting - Previous experience in Q&A. - Work on XenRT (that's the name of our homegrown test framework). Engineer - Functional programming experience, ocaml would be a plus. - Linux/Unix background. Javascript/C# GUI - C#, .net - Javascript, web programming. - GUI experience. - Functional language knowledge would be an enormous plus. Doc - Technical doc writer - Linux/Unix background. Windows kernel driver - Work on pv driver - USB, Wireless driver experience - Unix/Linux knowledge Let me know if you want to find out more, or want me to pass on a CV. /M -- Magnus Therning (OpenPGP: 0xAB4DFBA4) magnus?therning?org Jabber: magnus?therning?org http://therning.org/magnus identi.ca|twitter: magthe From dom at latter.org Mon Jun 22 17:40:00 2009 From: dom at latter.org (Dom Latter) Date: Mon, 22 Jun 2009 17:40:00 +0200 Subject: Postfix permissions. Message-ID: <4A3FA5D0.8000607@latter.org> Got a broken postfix. I get this error in mail.log: Jun 22 17:21:08 hostname postfix/virtual[2377]: warning: maildir access problem for UID/GID=5000/5000: create maildir file /var/mail/vhosts/domain.com/dom.latter/tmp/1245687668.P2377.hostname: Permission denied (hostname and domain name changed). hostname:/var/mail/vhosts/domain.com/dom.latter# ls -l total 12 drwxr-sr-x 2 vmail vmail 4096 2009-06-22 17:02 cur drwxr-sr-x 2 vmail vmail 4096 2009-06-22 17:02 new drwxr-sr-x 2 vmail vmail 4096 2009-06-22 17:02 tmp in /etc/passwd vmail:x:5000:5000:::/bin/false in /etc/group vmail:x:5000: Thing is I have a working postfix on another machine and the setup is (almost) identical (in fact I'm using my setup notes from the other machine as I go along). Any ideas? From dom at latter.org Mon Jun 22 19:24:01 2009 From: dom at latter.org (Dom Latter) Date: Mon, 22 Jun 2009 19:24:01 +0200 Subject: Postfix permissions. In-Reply-To: <4A3FA5D0.8000607@latter.org> References: <4A3FA5D0.8000607@latter.org> Message-ID: <4A3FBE31.2030107@latter.org> Dom Latter wrote: > Got a broken postfix. I get this error in mail.log: > > (hostname and domain name changed). And if I hadn't done that someone would have spotted the problem. It's one of those stupid stupid stupid stupid stupid stupid thing.uk.com domains. My brain keeps transposing it, when creating config files, directories, etc., into uk.thing.com. I should've charged them a hundred quid extra for the "technical difficulties involved in .uk.com domains". From jt at camalyn.org Wed Jun 24 20:25:01 2009 From: jt at camalyn.org (jt) Date: Wed, 24 Jun 2009 19:25:01 +0100 Subject: JOB: Helpdesk/ Customer Services Manager, London Message-ID: <4A426F7D.9030300@camalyn.org> hello, I am looking to recruit someone who is technically competent with good knowledge of VOIP, SIP, Wi-Fi, DSL and preferably MySQL Querying for a role with a mobile technology company that will encompass managing a customer services/ helpdesk team (currently staffed at 20). Your team will be responsible for managing customer queries via e-mail, web and at times telephone. You will also be responsible for recruitment, training, mentoring, monitoring, creating helpdesk policy, acting as a senior user and team leader in development and test programs. This job will be based in London and will pay circa ?45k-?50k + benefits. Please e-mail me using james at camalyn.org to learn more. All the best, James // James Tobin // Camalyn // +44 (0) 7952 145 127 james at camalyn.org From wawrzek at gmail.com Sat Jun 27 23:56:51 2009 From: wawrzek at gmail.com (=?ISO-8859-2?Q?Wawrzyniec_Niewodnicza=F1ski?=) Date: Sat, 27 Jun 2009 22:56:51 +0100 Subject: GreaseMonkey Message-ID: Hi, Do you have any expirence with GreaseMonky? I would like to write a script which set background of all texarea and input element to black and foreground to white. Any suggestion? Wawrzek -- Wawrzyniec Niewodnicza?ski vel Wawrzek Larry or LarryN Linux User #177124 E-MAIL: wawrzek at gmail.com PhD in Quantum Chemistry WWW: http://wawrzek.name MSc in Molecular Engineering JID: larryn at chrome.pl From marcus at quintic.co.uk Mon Jun 29 10:31:52 2009 From: marcus at quintic.co.uk (Marcus Williams) Date: Mon, 29 Jun 2009 09:31:52 +0100 Subject: GreaseMonkey In-Reply-To: <4A487BB9.1090603@cad-schroer.co.uk> References: <4A487BB9.1090603@cad-schroer.co.uk> Message-ID: <4A487BF8.8040507@quintic.co.uk> Wawrzyniec Niewodnicza?ski wrote: > Do you have any expirence with GreaseMonky? I would like to write a > script which set background of all texarea and input element to black > and foreground to white. Any suggestion? Yes - unless anyone else is interested, contact me offlist and I can send you some pointers (and a template script). Your best bet is to use jquery in greasemonkey as it makes stuff like this a whole heap easier. Marcus From pg_clug at clug.for.sabi.co.UK Mon Jun 29 15:20:01 2009 From: pg_clug at clug.for.sabi.co.UK (Peter Grandi) Date: Mon, 29 Jun 2009 14:20:01 +0100 Subject: GreaseMonkey In-Reply-To: References: Message-ID: <19016.49025.906861.854527@tree.ty.sabi.co.UK> > [ ... ] script which set background of all texarea and input > element to black and foreground to white. Any suggestion? It may be more appro[riate to use CSS overrides ('userChrome.css'). From marcus at quintic.co.uk Mon Jun 29 15:26:44 2009 From: marcus at quintic.co.uk (Marcus Williams) Date: Mon, 29 Jun 2009 14:26:44 +0100 Subject: GreaseMonkey In-Reply-To: <19016.49025.906861.854527@tree.ty.sabi.co.UK> References: <19016.49025.906861.854527@tree.ty.sabi.co.UK> Message-ID: <4A48C114.7010708@quintic.co.uk> Peter Grandi wrote: >> [ ... ] script which set background of all texarea and input >> element to black and foreground to white. Any suggestion? > > It may be more appro[riate to use CSS overrides ('userChrome.css'). My bugbear with userChrome is you cant target certain sites with it (unless they include a css signature [1]) and I'm not sure if you have to restart the browser to get it included. Greasemonkey (and its css equivalent Stylish [2]) get around this. Marcus [1] http://archivist.incutio.com/viewlist/css-discuss/13291 [2] https://addons.mozilla.org/en-US/firefox/addon/2108 From clug at gasops.co.uk Mon Jun 29 16:04:10 2009 From: clug at gasops.co.uk (Longman) Date: Mon, 29 Jun 2009 15:04:10 +0100 Subject: GreaseMonkey In-Reply-To: <4A48C114.7010708@quintic.co.uk> References: <19016.49025.906861.854527@tree.ty.sabi.co.UK> <4A48C114.7010708@quintic.co.uk> Message-ID: <4A48C9DA.2020704@gasops.co.uk> * Marcus Williams wrote: > Peter Grandi wrote: >>> [ ... ] script which set background of all texarea and input >>> element to black and foreground to white. Any suggestion? >> It may be more appro[riate to use CSS overrides ('userChrome.css'). > > My bugbear with userChrome is you cant target certain sites with it > (unless they include a css signature [1]) and I'm not sure if you have > to restart the browser to get it included. Greasemonkey (and its css > equivalent Stylish [2]) get around this. > Well I manage to target a specific site using the following. I disable the 'Upgrade your account' button since the upgrade actually puts you on worse interest onto an account that charges a monthly fee. Each time I see the 'Upgrade' button it peeves me somewhat, so I make it ghost: @-moz-document domain(lloydstsb.co.uk) { a[title="Upgrade your account"] {display: none} /* table>tbody>tr>td>table>tbody>tr>td {display: none} */ .bannerTable {display: none;} #myoffers {display: none;} /* this is a CSS 3.0 thing not supported by firefox tbody:nth-child(5) {display: none;} though can leave it here until it is then we can uncomment it*/ /* offers are usually in a different colour to alternate the shades of the grid */ .prodDetail[bgcolor="#eeeeee"] {display: none;} .prodDetailNoRB[bgcolor="#eeeeee"] {display: none;} } From marcus at quintic.co.uk Mon Jun 29 16:07:55 2009 From: marcus at quintic.co.uk (Marcus Williams) Date: Mon, 29 Jun 2009 15:07:55 +0100 Subject: GreaseMonkey In-Reply-To: <4A48C9DA.2020704@gasops.co.uk> References: <19016.49025.906861.854527@tree.ty.sabi.co.UK> <4A48C114.7010708@quintic.co.uk> <4A48C9DA.2020704@gasops.co.uk> Message-ID: <4A48CABB.601@quintic.co.uk> Longman wrote: > Well I manage to target a specific site using the following. I disable > the 'Upgrade your account' button since the upgrade actually puts you on > worse interest onto an account that charges a monthly fee. Each time I > see the 'Upgrade' button it peeves me somewhat, so I make it ghost: > > @-moz-document domain(lloydstsb.co.uk) ooooh nice - didnt know about that one :) Mind you, I'll still stick with my addons as I can do more with greasemonkey. Definitely one to remember though! Thanks Marcus From clug at gasops.co.uk Mon Jun 29 16:15:36 2009 From: clug at gasops.co.uk (Longman) Date: Mon, 29 Jun 2009 15:15:36 +0100 Subject: GreaseMonkey In-Reply-To: <4A48CABB.601@quintic.co.uk> References: <19016.49025.906861.854527@tree.ty.sabi.co.UK> <4A48C114.7010708@quintic.co.uk> <4A48C9DA.2020704@gasops.co.uk> <4A48CABB.601@quintic.co.uk> Message-ID: <4A48CC88.4010001@gasops.co.uk> * Marcus Williams wrote: > Longman wrote: >> Well I manage to target a specific site using the following. I disable >> the 'Upgrade your account' button since the upgrade actually puts you on >> worse interest onto an account that charges a monthly fee. Each time I >> see the 'Upgrade' button it peeves me somewhat, so I make it ghost: >> >> @-moz-document domain(lloydstsb.co.uk) > > ooooh nice - didnt know about that one :) Mind you, I'll still stick > with my addons as I can do more with greasemonkey. Definitely one to > remember though! I also get rid of adverts from Google and such like with the userChrome (just a one liner). Lots of really nice things you can do with it. I have GreaseMonkey but have never got round to playing with other people's scripts or writing my own. From thomas at horsten.com Wed Jun 3 15:31:25 2009 From: thomas at horsten.com (Thomas Horsten) Date: Wed, 3 Jun 2009 14:31:25 +0100 Subject: Anyone have a spare oldish motherboard (SocketA or similar) with several PCI slots? Message-ID: <5d932cdc0906030631y15008192ofc65a154cccc4d73@mail.gmail.com> Hi, and sorry for the off topic. I have a Linux server running as a MythTV backend with 4 PCI tuner cards. It's an Asus A7N8X Motherboard with an Athlon 3000 processor. Unfortunately it has become unstable and I think it's the motherboard itself since I tried with different RAM. Most new budget motherboards only have 1 or 2 "old fashioned" PCI slots and it would be a waste to spend lots of money on something that really doesn't need very much CPU power.. In the name of recycling, I thought I'd ask if any of you have a spare motherboard with at least 4 PCI slots, that you don't use anymore and would be willing to part with for a reasonable price. If it's not a Socket A but it has a working CPU (~1.5GHz or more) that would also work. If so I'd be happy to pick it up ASAP! Thanks, Thomas From thomas at horsten.com Wed Jun 3 15:44:33 2009 From: thomas at horsten.com (Thomas Horsten) Date: Wed, 3 Jun 2009 14:44:33 +0100 Subject: Website (again) In-Reply-To: References: <49DB2C1F.1060104@studio24.net> <49DB267E.3000401@jul17pri.co.uk> <20090407140401.GC2797@weber> <49DB5EEB.8000408@studio24.net> <20090424170237.GA3558@weber> <20090510214340.GA12744@weber> Message-ID: <5d932cdc0906030644r5776aab5pdeb12eb197cf7a77@mail.gmail.com> 2009/5/10 Wawrzyniec Niewodnicza?ski : > Hi, > > [...] >> Here is a very simple n-step plan to achieving this goal: >> >> 1. Find someone who can change the content on http://www.cam-lug.org.uk/ > [...] > > Hmmmm, I guess that is a ''tiny' problem ;) Not really as it's all on my server. I can update the site and/or add accounts for whoever needs to do it but I don't always read the CLUG list so if there's anything I need to do please email me directly! Cheers Thomas From thomas at horsten.com Wed Jun 3 16:52:02 2009 From: thomas at horsten.com (Thomas Horsten) Date: Wed, 3 Jun 2009 15:52:02 +0100 Subject: broken mailing list manager for clug In-Reply-To: <49F418B5.3070306@mansfield.co.uk> References: <49F418B5.3070306@mansfield.co.uk> Message-ID: <5d932cdc0906030752w19789bb4w8ee985ce3e8ac0d6@mail.gmail.com> 2009/4/26 Paul M : > > I got another "you've been disabled" message, so I clicked on the link > as per the message, and it looks like mailman is STILL b0rked! I > definitely didn't receive this message on Friday, so I presume that when > mailman barfs it can't send out the reminders, and then by the time they > get there they are pointless. > > |Bad confirmation string > |Invalid confirmation string: 12d8e39c16d3ba1e43de68491c6e6a82e2ab04aa. I know there are issues with the confirmation strings with Excessive Bounces. Apparently it is a known but rare bug in that version of Mailman (it doesn't affect other confirmation strings e.g. in the subscription requests). I will try to get around to upgrading the Mailman ASAP. Until then, please log in to the web interface on the list using your Mailman password, if this Excessive Bounces problem happens. One reason for the excessive bounces, as I found out when investigating Paul's problem a few weeks ago, is that some people's mail servers bounce the mails that you send to the list yourself when it tries to send a copy back to you (because it doesn't accept the mailing list server as a valid sender for emails *from* you). You can resolve this by disabling the option "Receive your own posts to the list?" from the Mailman control panel. Of course if you don't understand why your mails are being bounced, please forward the disconnect notification and I can find out from the server logs. Cheers Thomas From thomas at horsten.com Wed Jun 3 17:51:09 2009 From: thomas at horsten.com (Thomas Horsten) Date: Wed, 3 Jun 2009 16:51:09 +0100 Subject: Test new Mailman version Message-ID: <5d932cdc0906030851o4df5677fn31b1c157e5d54e1d@mail.gmail.com> Hi Just testing the list after upgrading Mailman. If this works, it should fix the issue with the confirmation links in the "excessive bounce" messages. Cheers Thomas From clug at gasops.co.uk Thu Jun 4 17:42:37 2009 From: clug at gasops.co.uk (Longman) Date: Thu, 04 Jun 2009 16:42:37 +0100 Subject: IMAP, large emails and slow connection Message-ID: <4A27EB6D.6070402@gasops.co.uk> Is using IMAP over a 2 MBit circuit a viable option if some of the emails are 20MB in size (due to ridiculous Excel attachments) or will there be some client side caching which means the email only need be downloaded the first time it's opened? From paul+clug at mansfield.co.uk Thu Jun 4 18:14:26 2009 From: paul+clug at mansfield.co.uk (Paul M) Date: Thu, 04 Jun 2009 17:14:26 +0100 Subject: IMAP, large emails and slow connection In-Reply-To: <4A27EB6D.6070402@gasops.co.uk> References: <4A27EB6D.6070402@gasops.co.uk> Message-ID: <4A27F2E2.4030101@mansfield.co.uk> Longman wrote: > Is using IMAP over a 2 MBit circuit a viable option if some of the > emails are 20MB in size (due to ridiculous Excel attachments) or will > there be some client side caching which means the email only need be > downloaded the first time it's opened? can't you set client to download headers only, and/or not download attachments, and/or limit the size downloaded for each message? From colinj at mx5.org.uk Thu Jun 4 19:35:04 2009 From: colinj at mx5.org.uk (Colin Johnston) Date: Thu, 4 Jun 2009 18:35:04 +0100 Subject: IMAP, large emails and slow connection In-Reply-To: <4A27EB6D.6070402@gasops.co.uk> References: <4A27EB6D.6070402@gasops.co.uk> Message-ID: pop3 works fine for 2mb connected mail servers Colin On 4 Jun 2009, at 16:42, Longman wrote: > > Is using IMAP over a 2 MBit circuit a viable option if some of the > emails are 20MB in size (due to ridiculous Excel attachments) or will > there be some client side caching which means the email only need be > downloaded the first time it's opened? > _______________________________________________ > CLUG mailing list > clug at cambridge-lug.org > Website: http://www.cambridge-lug.org > From clug at gasops.co.uk Wed Jun 10 18:28:48 2009 From: clug at gasops.co.uk (Longman) Date: Wed, 10 Jun 2009 17:28:48 +0100 Subject: Avoiding having a www A REC with BIND9 Message-ID: <4A2FDF40.8070003@gasops.co.uk> If you wish to have a domain resolve to the A rec IP of your www host (and your www host just be a CNAME of this), how would you accomplish this in BIND? The record can't go in the Zone file for your domain, as only the hosts/subdomains go in this file? So where does it go? It seems to me that it would go at the REGISTRAR level, for they are the people that provide the 'glue records' for the nameserver addresses of the domains their servers refer you to, but a bit of googling hasn't really found much. From ohanzee at gmail.com Wed Jun 10 23:01:54 2009 From: ohanzee at gmail.com (Ravi Joganathan) Date: Wed, 10 Jun 2009 22:01:54 +0100 Subject: Domain name registrars Message-ID: I am looking for recommendations for decent domain registrar, to transfer my domain. I am looking for registrars who doesn't have too many restrictive conditions, such as outwards transfer fees. Thanks Ravi -- Has the Large Hadron Collider destroyed the world yet? http://hasthelargehadroncolliderdestroyedtheworldyet.com From clug at minimal.cx Wed Jun 10 23:11:35 2009 From: clug at minimal.cx (Ian Spray) Date: Wed, 10 Jun 2009 22:11:35 +0100 Subject: Domain name registrars In-Reply-To: References: Message-ID: On 10 Jun 2009, at 22:01, Ravi Joganathan wrote: > I am looking for recommendations for decent domain registrar, to > transfer my domain. I am looking for registrars who doesn't have too > many restrictive conditions, such as outwards transfer fees. > I am very happy with 123-reg for my UK names, and whilst the UI is rather, well, quirky, I've had no problems with a .org at Joker. If it wasn't for the fact that I always forget until just after I'd paid my renewal fee I'd have moved my .org over to 123-reg by now, as I really like the control over DNS and email that 123 gives me. http://www.123-reg.co.uk/ http://joker.com/ HTH, -- Ian Spray GPG Fingerprint: D170 35A3 C858 6E85 9B5B 1557 4CD5 6F6F E176 2D0A From clug at minimal.cx Wed Jun 10 23:20:43 2009 From: clug at minimal.cx (Ian Spray) Date: Wed, 10 Jun 2009 22:20:43 +0100 Subject: Avoiding having a www A REC with BIND9 Message-ID: > If you wish to have a domain resolve to the A rec IP of your www host > (and your www host just be a CNAME of this), how would you accomplish > this in BIND? The record can't go in the Zone file for your domain, as > only the hosts/subdomains go in this file? So where does it go? It > seems to me that it would go at the REGISTRAR level, for they are the > people that provide the 'glue records' for the nameserver addresses of > the domains their servers refer you to, but a bit of googling hasn't > really found much. Hi Longman, I'm not 100% sure I see your problem, as I think I'm doing what you want to do already with my domain name and it's just fine: ; <<>> DiG 9.3.4-P1 <<>> www.minimal.cx A ;; global options: printcmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 22192 ;; flags: qr rd ra; QUERY: 1, ANSWER: 2, AUTHORITY: 0, ADDITIONAL: 0 ;; QUESTION SECTION: ;www.minimal.cx. IN A ;; ANSWER SECTION: www.minimal.cx. 3600 IN CNAME mail.minimal.cx. mail.minimal.cx. 3600 IN A 217.155.68.52 ;; Query time: 1456 msec ;; SERVER: 208.67.222.222#53(208.67.222.222) ;; WHEN: Wed Jun 10 16:18:14 2009 ;; MSG SIZE rcvd: 67 SMTP RDNS is much more strict than HTTP, so I have my IP map back to my name server with an A record, then have a CNAME for my www on the same public IP. Is this what you mean ? If so I can post fragments of my BIND config, but if not, could you describe what you're not allowed to do ? HTH, -- Ian Spray GPG Fingerprint: D170 35A3 C858 6E85 9B5B 1557 4CD5 6F6F E176 2D0A From tehpeh at gmx.net Wed Jun 10 23:31:07 2009 From: tehpeh at gmx.net (Thomas Pircher) Date: Wed, 10 Jun 2009 22:31:07 +0100 Subject: Domain name registrars In-Reply-To: References: Message-ID: <200906102231.07914.tehpeh@gmx.net> On Wednesday 10 June 2009 22:11:35 Ian Spray wrote: > I am very happy with 123-reg for my UK names, and whilst the UI is > rather, well, quirky, I agree. 123-reg is OK, if you don't want to do 'fancy' settings in DNS. The interface lets you set A, CNAME and TXT records freely, as well as MX. Nothing more. In fact, I miss AAAA records for example, and they told me they "do not have any fixed dates as to when AAAA records will be supported". Their support is not extremely fast, but helpful. Hope this helps, Thomas From jt at camalyn.org Wed Jun 10 23:30:53 2009 From: jt at camalyn.org (jt) Date: Wed, 10 Jun 2009 22:30:53 +0100 Subject: JOB: C++ Specialist Programmer in London close to Kings X Message-ID: <4A30260D.2030607@camalyn.org> JOB: C++ specialist programmer in London close to Kings Cross. Hello, I am looking to recruit a permanent C++ specialist programmer that has previous experience writing mathematical or numerical programs in a Linux environment. You should also have experience of at least 1 scripting language too. This is a job that will pay around ?40,000 -- ?50,000 pa with benefits. As an incentive I will also pay you ?500 - should you commence employment with this employer via my representative. Please contact me using james at camalyn.org to learn more. Thanks, James . . . . . . James Tobin Camalyn +44 (0) 7952 145 127 - mobile to learn more about Camalyn please visit http://www.camalyn.org From dom at latter.org Thu Jun 11 00:41:57 2009 From: dom at latter.org (Dom Latter) Date: Thu, 11 Jun 2009 00:41:57 +0200 Subject: Domain name registrars In-Reply-To: <200906102231.07914.tehpeh@gmx.net> References: <200906102231.07914.tehpeh@gmx.net> Message-ID: <4A3036B5.3010006@latter.org> Thomas Pircher wrote: > On Wednesday 10 June 2009 22:11:35 Ian Spray wrote: >> I am very happy with 123-reg for my UK names, and whilst the UI is >> rather, well, quirky, > > I agree. I don't. 123 is now part of GX, i.e. the infamous webfusion. A lot of developers have had a lot of problems in the last couple of years with 123. IIRC they still stick their nameservers behind the same router, for example. daily.co.uk has been recommended, by someone whose opinion I trust. From jt at camalyn.org Thu Jun 11 01:30:40 2009 From: jt at camalyn.org (jt) Date: Thu, 11 Jun 2009 00:30:40 +0100 Subject: Domain name registrars In-Reply-To: References: Message-ID: <4A304220.3040003@camalyn.org> Ravi Joganathan wrote: > I am looking for recommendations for decent domain registrar, to > transfer my domain. I am looking for registrars who doesn't have too > many restrictive conditions, such as outwards transfer fees. enom are pretty good, or you could try one of their resellers which is www.regme.net good luck, J :) From joe.czucha at studio24.net Thu Jun 11 10:29:22 2009 From: joe.czucha at studio24.net (Joe Czucha) Date: Thu, 11 Jun 2009 09:29:22 +0100 Subject: Domain name registrars Message-ID: <4A30C062.7060905@studio24.net> I manage my domains through 123-reg but then I have a VPS at Slicehost (a fully-owned but much cheaper subsidiary of the legendary Rackspace) so I create the DNS zones on their name servers and then just use the 123-reg control to point the domains at that. It allows much greater control and extra functionality than 123-reg, such as the ability to create the zone file BEFORE you change the name server of the domain so that the DNS is already in place when it propagates and down time is minimized. Joe "I like my domains like I like my women... reliable, cheap to run and preferably without WebFusion stamped all over them." From marcus at quintic.co.uk Thu Jun 11 10:41:20 2009 From: marcus at quintic.co.uk (Marcus Williams) Date: Thu, 11 Jun 2009 09:41:20 +0100 Subject: Domain name registrars In-Reply-To: References: Message-ID: <4A30C330.7070208@quintic.co.uk> Ravi Joganathan wrote: > I am looking for recommendations for decent domain registrar, to > transfer my domain. I am looking for registrars who doesn't have too > many restrictive conditions, such as outwards transfer fees. I use Gandi for all of my registrations (and their virtual server stuff). I've never had any problems with them. The only thing I would say is if its a .co.uk domain their renewal is a bit scary (all other tld's get renewed the same day, .co.uk's dont get processed by nominet until the day of renewal which is a bit disturbing). Marcus From clug at gasops.co.uk Thu Jun 11 11:08:51 2009 From: clug at gasops.co.uk (Longman) Date: Thu, 11 Jun 2009 10:08:51 +0100 Subject: Avoiding having a www A REC with BIND9 In-Reply-To: References: Message-ID: <4A30C9A3.6000303@gasops.co.uk> * Ian Spray wrote: > Hi Longman, > I'm not 100% sure I see your problem, as I think I'm doing what you > want to do already with my domain name and it's just fine: > ;www.minimal.cx. IN A (Snip) This part answers my question thanks. I need the dot on the end to provide the FQDN rather than for a relative domain within the context of the Zone (which is what you get without the dot). From clug at gasops.co.uk Thu Jun 11 12:50:03 2009 From: clug at gasops.co.uk (Longman) Date: Thu, 11 Jun 2009 11:50:03 +0100 Subject: Exim and backup relays Message-ID: <4A30E15B.9060802@gasops.co.uk> Ever since setting up a backup MX for my domain (via relay domains) I've started receiving lots of Frozen Message emails for Frozen Emails in the queue on this backup MX. It looks like spammers are using the the backup MX to send email to non-existant recipients (computer generated nonsense in most cases), but of course they're accepted because their all to accounts within my domain that I've told it to relay for. What is the correct way to try and combat this? Is there a way to get the backup relay to contact the primary relay to get a list of valid email accounts thereby junking nonsense recipients, or some other method to put paid to this? Currently I have 9468 Frozen Messages! From clug at minimal.cx Thu Jun 11 13:24:35 2009 From: clug at minimal.cx (Ian Spray) Date: Thu, 11 Jun 2009 12:24:35 +0100 Subject: Exim and backup relays In-Reply-To: <4A30E15B.9060802@gasops.co.uk> References: <4A30E15B.9060802@gasops.co.uk> Message-ID: <20090611112435.GB1146@minimal.cx> On Thu, Jun 11, 2009 at 11:50:03AM +0100, Longman wrote: > > Ever since setting up a backup MX for my domain (via relay domains) I've > started receiving lots of Frozen Message emails for Frozen Emails in the > queue on this backup MX. It looks like spammers are using the the backup > MX to send email to non-existant recipients (computer generated nonsense > in most cases), but of course they're accepted because their all to > accounts within my domain that I've told it to relay for. What is the > correct way to try and combat this? Is there a way to get the backup > relay to contact the primary relay to get a list of valid email accounts > thereby junking nonsense recipients, or some other method to put paid to > this? Currently I have 9468 Frozen Messages! > Yup - this is a common problem. One very quick fix (which works for all systems and not just exim) is a bogus last MX record. The spammers do tend to start at the lowest numbered MX and work up, so this cuts things down a little, but isn't a full solution: $ dig mx minimal.cx ; <<>> DiG 9.3.4-P1 <<>> mx minimal.cx ;; global options: printcmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 35948 ;; flags: qr rd ra; QUERY: 1, ANSWER: 4, AUTHORITY: 13, ADDITIONAL: 5 ;; QUESTION SECTION: ;minimal.cx. IN MX ;; ANSWER SECTION: minimal.cx. 3600 IN MX 10 mail.minimal.cx. minimal.cx. 3600 IN MX 20 mail.minimal.org.uk. minimal.cx. 3600 IN MX 30 mx01.gratisdns.de. minimal.cx. 3600 IN MX 100 bogus.spam.trap. Can you spot the fake entry ? ;) The other, exim specific thing is to get your backup MX to test during SMTP receive with the primary to see if the destination address is valid and cache the results. Your system then rejects during the SMTP receive phase if either the lookup or the cache indicates a failure, and nothing hits your queue. Put this in your acl_smtp:rcpt: deny domains = +relay_to_domains recipients = ${if exists{/etc/exim/local_rcpt_callout}\ {/etc/exim/local_rcpt_callout}\ {}} !verify = recipient/callout=2m,defer_ok and then put a list of domains into the file specified that you want to do this receive time check on in /etc/exim/local_rcpt_callout, eg: domainname.co.uk otherdomain.org another.eu This allows you to choose a subset of your relay domains to do this with - if you don't care and want to do the callout checking on all entries in the relay_to_domains then just remote the recipients line above. I chose to only cache the results of the callout heck for 2 minutes as the domains I backup MX for are nothing to do with me and I don't want to annoy the admins by bouncing fresh accounts. If you know how often the other domains have new addresses then do bump up that timeout to reduce the traffic betwene you and the real MX receiver ever further. Note that if the primary MX is down and fails to answer then email will queue up normally (including all spam !), but that's a small price to pay for not having to maintain many lists of valid acounts. HTH, -- Ian Spray GPG Fingerprint: D170 35A3 C858 6E85 9B5B 1557 4CD5 6F6F E176 2D0A From clug at gasops.co.uk Thu Jun 11 15:30:52 2009 From: clug at gasops.co.uk (Longman) Date: Thu, 11 Jun 2009 14:30:52 +0100 Subject: Exim and backup relays In-Reply-To: <20090611112435.GB1146@minimal.cx> References: <4A30E15B.9060802@gasops.co.uk> <20090611112435.GB1146@minimal.cx> Message-ID: <4A31070C.40403@gasops.co.uk> * Ian Spray wrote: > Yup - this is a common problem. One very quick fix (which works for all > systems and not just exim) is a bogus last MX record. The spammers do > tend to start at the lowest numbered MX and work up, so this cuts things > down a little, but isn't a full solution: Highest numbered ? i.e. Lowest priority. > The other, exim specific thing is to get your backup MX to test during (snip userful comments about exim). There is also receiver_verify, ignore_errmsg_errors, ignore_errmsg_errors_after, and timeout_frozen_after to look at. I use CHECK_RCPT_VERIFY_SENDER = 'true' but doesn't seem to do much. Will try out some of your suggestions, thanks :-) From clug at minimal.cx Thu Jun 11 16:23:19 2009 From: clug at minimal.cx (Ian Spray) Date: Thu, 11 Jun 2009 15:23:19 +0100 Subject: Exim and backup relays In-Reply-To: <4A31070C.40403@gasops.co.uk> References: <4A30E15B.9060802@gasops.co.uk> <20090611112435.GB1146@minimal.cx> <4A31070C.40403@gasops.co.uk> Message-ID: <20090611142319.GD1146@minimal.cx> On Thu, Jun 11, 2009 at 02:30:52PM +0100, Longman wrote: > * Ian Spray wrote: > > Yup - this is a common problem. One very quick fix (which works for all > > systems and not just exim) is a bogus last MX record. The spammers do > > tend to start at the lowest numbered MX and work up, so this cuts things > > down a little, but isn't a full solution: > > Highest numbered ? i.e. Lowest priority. > Ahem. Yes: you're correct, and I was thinking faster than I was typing... They start with the lowest priority (in general) as there's normally less checking there. Quite what metric of success they have to say that it was delivered when it sat in a queue for 14 days and then got thrown away I don't know. Maybe they get paid by number of non-bounce sends per spam run ? Heh - Spammers have Managers ;) > > The other, exim specific thing is to get your backup MX to test during > (snip userful comments about exim). > > There is also receiver_verify, ignore_errmsg_errors, > ignore_errmsg_errors_after, and timeout_frozen_after to look at. I use > CHECK_RCPT_VERIFY_SENDER = 'true' but doesn't seem to do much. Will try > out some of your suggestions, thanks :-) > Oh you're welcome to those too ! I've discovered from experience that frozen messages (caused by an attempt at delivery that was actively refused) are 99.9% junk, so have a very low tolerance for that on my server. Technically it could be a server mis-configuration and some email could be lost if the problems are then fixed, but I'm only running this for myself and have not had any problems so far. timeout_frozen_after = 2d ignore_bounce_errors_after = 1d I would say that the verify_sender option worked wonders a couple years of ago but that it's use is now of limited success: it appears that spambot syntax is improving. I've certainly not refused valid email through the use of it, so in my book that means leave it enabled ! I also have two sets of retry counters: one for a domain I am being backup MX for, and one for everything else. Note that I try much more agressively to redelivery email to the backup MX (every 15m for 24h) so that small outages/reconfigures don't hold up their email too much. begin retry abackupmx.com * F,24h,15m; F,7d,2h; F,14d,6h * * F,2h,15m; G,16h,1h,1.5; F,14d,6h I also have a couple of other countermeasures that I've not seen publicly discussed, so have refrained from doing so myself as they're rather effective and I don't want them to stop working from having my config end up in Google. I'll email those to you privately, and will happily share those ideas with another list members who want them (they are exim specific in implementation, but not concept). Possibly overly paranoid to think that spambot writers read my postings, but then again I currently reject far more junk than I accept and want to keep it like that ! HTH, -- Ian Spray GPG Fingerprint: D170 35A3 C858 6E85 9B5B 1557 4CD5 6F6F E176 2D0A From clug at gasops.co.uk Thu Jun 11 17:47:18 2009 From: clug at gasops.co.uk (Longman) Date: Thu, 11 Jun 2009 16:47:18 +0100 Subject: Exim and backup relays In-Reply-To: <20090611112435.GB1146@minimal.cx> References: <4A30E15B.9060802@gasops.co.uk> <20090611112435.GB1146@minimal.cx> Message-ID: <4A312706.2050905@gasops.co.uk> * Ian Spray wrote: > hits your queue. Put this in your acl_smtp:rcpt: I think this is 30_exim4-config_check_rcpt on my Debian system? From clug at gasops.co.uk Thu Jun 11 17:51:22 2009 From: clug at gasops.co.uk (Longman) Date: Thu, 11 Jun 2009 16:51:22 +0100 Subject: Exim and backup relays In-Reply-To: <20090611112435.GB1146@minimal.cx> References: <4A30E15B.9060802@gasops.co.uk> <20090611112435.GB1146@minimal.cx> Message-ID: <4A3127FA.7060709@gasops.co.uk> * Ian Spray wrote: > hits your queue. Put this in your acl_smtp:rcpt: acl_smtp_rcpt ? In 02_exim4-config_options ? Not too sure how consistent the filenames are between distributions.. From clug at gasops.co.uk Thu Jun 11 17:59:10 2009 From: clug at gasops.co.uk (Longman) Date: Thu, 11 Jun 2009 16:59:10 +0100 Subject: Exim and backup relays In-Reply-To: <20090611112435.GB1146@minimal.cx> References: <4A30E15B.9060802@gasops.co.uk> <20090611112435.GB1146@minimal.cx> Message-ID: <4A3129CE.20402@gasops.co.uk> Aha... bingo.. In 30_exim4-config_check_rcpt on my Debian system I have : # Verify recipients listed in local_rcpt_callout with a callout. # This is especially handy for forwarding MX hosts (secondary MX or # mail hubs) of domains that receive a lot of spam to non-existent # addresses. The only way to check local parts for remote relay # domains is to use a callout (add /callout), but please read the # documentation about callouts before doing this. deny !acl = acl_whitelist_local_deny recipients = ${if exists{CONFDIR/local_rcpt_callout}\ {CONFDIR/local_rcpt_callout}\ {}} !verify = recipient/callout So it looks like it's already here but probably not working because there is nothing in local_rcpt_callout.. From clug at minimal.cx Thu Jun 11 18:13:01 2009 From: clug at minimal.cx (Ian Spray) Date: Thu, 11 Jun 2009 17:13:01 +0100 Subject: Exim and backup relays In-Reply-To: <4A3129CE.20402@gasops.co.uk> References: <4A30E15B.9060802@gasops.co.uk> <20090611112435.GB1146@minimal.cx> <4A3129CE.20402@gasops.co.uk> Message-ID: <20090611161301.GH1146@minimal.cx> On Thu, Jun 11, 2009 at 04:59:10PM +0100, Longman wrote: > > Aha... bingo.. > Excellent. > So it looks like it's already here but probably not working because > there is nothing in local_rcpt_callout.. > Glad you found it as I don't have a Debian system so couldn't tell you where it is :( In a statement that will cause collective gasps of horror, I've just never managed to get to grips with the Debianisation of configs that they do, and so have avoided it as much as possible. TTFN, -- Ian Spray GPG Fingerprint: D170 35A3 C858 6E85 9B5B 1557 4CD5 6F6F E176 2D0A From clug at gasops.co.uk Thu Jun 11 18:14:02 2009 From: clug at gasops.co.uk (Longman) Date: Thu, 11 Jun 2009 17:14:02 +0100 Subject: Exim and backup relays In-Reply-To: <20090611161301.GH1146@minimal.cx> References: <4A30E15B.9060802@gasops.co.uk> <20090611112435.GB1146@minimal.cx> <4A3129CE.20402@gasops.co.uk> <20090611161301.GH1146@minimal.cx> Message-ID: <4A312D4A.9060509@gasops.co.uk> * Ian Spray wrote: > On Thu, Jun 11, 2009 at 04:59:10PM +0100, Longman wrote: >> Aha... bingo.. >> > Excellent. > >> So it looks like it's already here but probably not working because >> there is nothing in local_rcpt_callout.. >> > Glad you found it as I don't have a Debian system so couldn't tell you > where it is :( In a statement that will cause collective gasps of > horror, I've just never managed to get to grips with the Debianisation > of configs that they do, and so have avoided it as much as possible. I added domains to local_rcpt_callout though they don't seem to be honoured, despite a restart. I tried sending a file using telnet from a remote system to one of my backup MX and typed a nonsense email recipient but it still accepted delivery and didn't perform a callout. nothing in /var/log/mainlog of use either. Arghh! Will play some more tomorrow. :-) From clug at minimal.cx Thu Jun 11 18:28:41 2009 From: clug at minimal.cx (Ian Spray) Date: Thu, 11 Jun 2009 17:28:41 +0100 Subject: Exim and backup relays In-Reply-To: <4A312D4A.9060509@gasops.co.uk> References: <4A30E15B.9060802@gasops.co.uk> <20090611112435.GB1146@minimal.cx> <4A3129CE.20402@gasops.co.uk> <20090611161301.GH1146@minimal.cx> <4A312D4A.9060509@gasops.co.uk> Message-ID: <20090611162841.GA13145@minimal.cx> On Thu, Jun 11, 2009 at 05:14:02PM +0100, Longman wrote: > > I added domains to local_rcpt_callout though they don't seem to be > honoured, despite a restart. I tried sending a file using telnet from a > remote system to one of my backup MX and typed a nonsense email > recipient but it still accepted delivery and didn't perform a callout. > nothing in /var/log/mainlog of use either. Arghh! Will play some more > tomorrow. :-) > Hmm, that sucks. Is there something more Debian related that you need to do other than populate that file ? Is there a config entry with a y/n option that needs to be set and then a config script run before HUPing exim ? It's fairly obvious when it does kick in as you get lines like this in your log file: 2009-06-11 12:06:54 H=(JQYFJONXI) [124.43.49.42] F= rejected RCPT : Previous (cached) callout verification failure I can understand leaving it for now: a quick Google doesn't help much and it does feel more like a local setup issue than an exim one. Feel free to email me directly if you want to share unobfuscated configs, etc. TTFN, -- Ian Spray GPG Fingerprint: D170 35A3 C858 6E85 9B5B 1557 4CD5 6F6F E176 2D0A From dom at latter.org Fri Jun 12 17:06:31 2009 From: dom at latter.org (Dom Latter) Date: Fri, 12 Jun 2009 17:06:31 +0200 Subject: VirtualBox Message-ID: <4A326EF7.7010905@latter.org> Anybody use it for virtual servers? I'm a bit stuck with the networking configuration. From clug at minimal.cx Fri Jun 12 17:14:17 2009 From: clug at minimal.cx (Ian Spray) Date: Fri, 12 Jun 2009 16:14:17 +0100 Subject: VirtualBox In-Reply-To: <4A326EF7.7010905@latter.org> References: <4A326EF7.7010905@latter.org> Message-ID: <20090612151417.GI10809@minimal.cx> On Fri, Jun 12, 2009 at 05:06:31PM +0200, Dom Latter wrote: > Anybody use it for virtual servers? > I have, although not for paying customers. > I'm a bit stuck with the networking configuration. > The biggest choice is do you want it NATed behind the IP of the host that you're running Virtualbox on, or directly on the LAN as if another physical machine had been plugged in. What sort of network issues do you have ? TTFN, -- Ian Spray GPG Fingerprint: D170 35A3 C858 6E85 9B5B 1557 4CD5 6F6F E176 2D0A From dom at latter.org Fri Jun 12 17:26:35 2009 From: dom at latter.org (Dom Latter) Date: Fri, 12 Jun 2009 17:26:35 +0200 Subject: VirtualBox In-Reply-To: <20090612151417.GI10809@minimal.cx> References: <4A326EF7.7010905@latter.org> <20090612151417.GI10809@minimal.cx> Message-ID: <4A3273AB.6080002@latter.org> Ian Spray wrote: > The biggest choice is do you want it NATed behind the IP of the host > that you're running Virtualbox on, or directly on the LAN as if another > physical machine had been plugged in. > > What sort of network issues do you have ? NATed worked fine, but I want to run web and mail servers on it, so I think I need "bridged". Directly on the LAN, as it were. NAT'ed is okay for "client" machines but in order to forward port 80 and the like to the hsot OS, you need to be running as root, and I don't want to do that. Here's a post I made to the vb forums: ==== start ====================================================== I have a headless remote CentOS 5.3 (AMD64) webserver on which I have installed ./VirtualBox-2.2.4-47978-Linux_amd64.run with the aim of having a second separate (virtual) webserver on its own IP address. The server is remote so I'm doing everything from the command line. I have created a VM running Debian 5.0.1 (32 bit). Using default NAT networking the Debian VM can communicate with the world. On the host OS I have two IP addresses, let's say 12.34.56.78 and 12.34.56.79 as eth0 and eth0:1. I want to bind the second IP address to the VM. In order to run Apache on the VM I believe I need to change to bridged networking. If I try this: VBoxManage modifyvm "Debian501" --nic1 bridged --bridgeadapter1 eth0:1 then I get an error message when I try to start the VM: "Failed to open/create the internal network 'HostInterfaceNetworking-eth0:1' (VERR_INTNET_FLT_IF_NOT_FOUND)." With this: VBoxManage modifyvm "Debian501" --nic1 bridged --bridgeadapter1 eth0 the VM boots, but there is no sign of any networking on the VM. "ifconfig eth0" on the VM doesn't have an IP address. On the guest, /etc/network/interfaces contains "iface eth0 inet dhcp". I've also tried a static IP using the values obtained when I was running it as a NATed machine. In any case I don't see how this would work - I want to bind the host's eth0:1 to my VM, not the main interface. But all the guides say "select the interface you want and it just works". "lsmod" on the host shows "vboxnetflt" as installed. I have read the manual, the FAQ, and many many pages and I can't see how to get this working. Most posts refer to old versions of VB where you had to configure TAPs and so on, and more recent posts tend to refer to the GUI, not the command line. ==== end ====================================================== NB that previous versions of VB required all sorts of malarkey, which is now automagically taken care of by a "net filter". What I don't get is what IP address the host OS is supposed to end up with, and where it gets it from. Any pointers? There is a possible fallback, using NAT. Get the hardware router that the physical server is behind to forward port 80 requests to, say port 1080, and then on the host machine forward port 1080 to port 80 on the guest OS (or indeed change apache's default ports, but I'd rather change as little as possible). From clug at minimal.cx Fri Jun 12 17:48:04 2009 From: clug at minimal.cx (Ian Spray) Date: Fri, 12 Jun 2009 16:48:04 +0100 Subject: VirtualBox In-Reply-To: <4A3273AB.6080002@latter.org> References: <4A326EF7.7010905@latter.org> <20090612151417.GI10809@minimal.cx> <4A3273AB.6080002@latter.org> Message-ID: <20090612154804.GK10809@minimal.cx> On Fri, Jun 12, 2009 at 05:26:35PM +0200, Dom Latter wrote: > > NATed worked fine, but I want to run web and mail servers on it, so > I think I need "bridged". Directly on the LAN, as it were. > Yup - most of my work is done in bridged mode. > What I don't get is what IP address the host OS is supposed to end up > with, and where it gets it from. > > Any pointers? > I've never tried to specify an aliased interface in bridge mode: I set up the VM as a bridge, choose an Intel Pro network card (they work best for the O/S I try to run) and let it go. The VB system will create whatever it needs on the host without me asking it to, and then as the VM image starts up it requests a DHCP address like any other system on my LAN. I would suggest you unalias eth0 (so loose eth0:1 on the host) first, set VB up for bridge, boot the VM image and then either do a DHCP in the VM, or set up the static IP inside the VM just as if you'd installed the system on a new machine. You shouldn't need to do anything at all on the host. > [snip NAT fallback] > If it involved NAT and port bouncing, I'll stick my fingers in my ears and shout "lalalala". The last time I had to fall back o something like this, Virtualisation wasn't around, so hopefully this can be avoided. You are just using plain old IPv4 here, aren't you ? There are caveats in the VB manual about wifi cards and non-IPv4 stuff. HTH, -- Ian Spray GPG Fingerprint: D170 35A3 C858 6E85 9B5B 1557 4CD5 6F6F E176 2D0A From dom at latter.org Fri Jun 12 18:27:37 2009 From: dom at latter.org (Dom Latter) Date: Fri, 12 Jun 2009 18:27:37 +0200 Subject: VirtualBox In-Reply-To: <20090612154804.GK10809@minimal.cx> References: <4A326EF7.7010905@latter.org> <20090612151417.GI10809@minimal.cx> <4A3273AB.6080002@latter.org> <20090612154804.GK10809@minimal.cx> Message-ID: <4A3281F9.9000402@latter.org> Ian Spray wrote: > I've never tried to specify an aliased interface in bridge mode: I set > up the VM as a bridge, choose an Intel Pro network card (they work best > for the O/S I try to run) and let it go. The VB system will create > whatever it needs on the host without me asking it to, and then as the > VM image starts up it requests a DHCP address like any other system on > my LAN. I've read the manual about eleventeen times and about eleventeen hundred forum posts and this is the first time someone's said *how* it works, not just "it works". > I would suggest you unalias eth0 (so loose eth0:1 on the host) first, > set VB up for bridge, boot the VM image and then either do a DHCP in the > VM, or set up the static IP inside the VM just as if you'd installed the > system on a new machine. You shouldn't need to do anything at all on > the host. Right. I believe I've tried all this. I certainly gave up with the aliased eth0:1 a while back. I'll try again, now I have a clearer picture of things. You really wouldn't believe how your short post here has made such a huge difference! I may try a different virtual network card (and why not?). Later I hope to be able to try a 64 bit guest OS. > If it involved NAT and port bouncing, I'll stick my fingers in my ears > and shout "lalalala". The last time I had to fall back o something like > this, Virtualisation wasn't around, so hopefully this can be avoided. Yes. But it may have to happen that way. > You are just using plain old IPv4 here, aren't you ? There are caveats > in the VB manual about wifi cards and non-IPv4 stuff. Certainly not wifi - this is data centre stuff. And it's all IPv4. (Hey, I thought we all moved to IPv6 in about 2001, didn't we?) thanks again. From dom at latter.org Fri Jun 12 18:39:45 2009 From: dom at latter.org (Dom Latter) Date: Fri, 12 Jun 2009 18:39:45 +0200 Subject: VirtualBox In-Reply-To: <20090612154804.GK10809@minimal.cx> References: <4A326EF7.7010905@latter.org> <20090612151417.GI10809@minimal.cx> <4A3273AB.6080002@latter.org> <20090612154804.GK10809@minimal.cx> Message-ID: <4A3284D1.3000205@latter.org> Ian Spray wrote: > for the O/S I try to run) and let it go. The VB system will create > whatever it needs on the host without me asking it to, and then as the > VM image starts up it requests a DHCP address like any other system on > my LAN. So does a new interface appear in "ifconfig -a"??? From clug at minimal.cx Fri Jun 12 18:50:26 2009 From: clug at minimal.cx (Ian Spray) Date: Fri, 12 Jun 2009 17:50:26 +0100 Subject: VirtualBox In-Reply-To: <4A3284D1.3000205@latter.org> References: <4A326EF7.7010905@latter.org> <20090612151417.GI10809@minimal.cx> <4A3273AB.6080002@latter.org> <20090612154804.GK10809@minimal.cx> <4A3284D1.3000205@latter.org> Message-ID: <20090612165026.GL10809@minimal.cx> On Fri, Jun 12, 2009 at 06:39:45PM +0200, Dom Latter wrote: > > So does a new interface appear in "ifconfig -a"??? > Inside the VM ? Yes, it should. If you look at the output of the dmesg after booting and logging into your VM then you should see the type of network card you selected in the VB config scroll past at some point. If you have no interfaces, do check that the card type chosen in the VB network selection screen (I use the GUI for this bit) matches a supported driver in the O/S you want to run in the VM. That's the main reason I choose the Intel Pro emulation, not because I think I can get Gigabit performance via a VM ;) HTH, -- Ian Spray GPG Fingerprint: D170 35A3 C858 6E85 9B5B 1557 4CD5 6F6F E176 2D0A From dom at latter.org Fri Jun 12 19:00:47 2009 From: dom at latter.org (Dom Latter) Date: Fri, 12 Jun 2009 19:00:47 +0200 Subject: VirtualBox In-Reply-To: <20090612165026.GL10809@minimal.cx> References: <4A326EF7.7010905@latter.org> <20090612151417.GI10809@minimal.cx> <4A3273AB.6080002@latter.org> <20090612154804.GK10809@minimal.cx> <4A3284D1.3000205@latter.org> <20090612165026.GL10809@minimal.cx> Message-ID: <4A3289BF.8060407@latter.org> Ian Spray wrote: > On Fri, Jun 12, 2009 at 06:39:45PM +0200, Dom Latter wrote: >> So does a new interface appear in "ifconfig -a"??? >> > Inside the VM ? Yes, it should. If you look at the output of the dmesg > after booting and logging into your VM then you should see the type of > network card you selected in the VB config scroll past at some point. > > If you have no interfaces, do check that the card type chosen in the VB > network selection screen (I use the GUI for this bit) matches a > supported driver in the O/S you want to run in the VM. That's the main > reason I choose the Intel Pro emulation, not because I think I can get > Gigabit performance via a VM ;) Good points. The virtual card should work, as it does in NAT mode. But could be worth trying a different one. And if I make it bridged but attach it to the vboxnet0 interface (which is meant for internal only, or something) it also manages to pick up an address from DHCP. From dom at latter.org Fri Jun 12 20:08:01 2009 From: dom at latter.org (Dom Latter) Date: Fri, 12 Jun 2009 20:08:01 +0200 Subject: VirtualBox In-Reply-To: <4A3289BF.8060407@latter.org> References: <4A326EF7.7010905@latter.org> <20090612151417.GI10809@minimal.cx> <4A3273AB.6080002@latter.org> <20090612154804.GK10809@minimal.cx> <4A3284D1.3000205@latter.org> <20090612165026.GL10809@minimal.cx> <4A3289BF.8060407@latter.org> Message-ID: <4A329981.40900@latter.org> Works now. I'm pretty sure I tried this combination earlier - attached to eth0, static IP in /etc/network/interfaces - but before I was able to try it again we'd scheduled a reboot to do some BIOS changes. And now it works. Somebody else reports "restarting" as a fix: http://forums.virtualbox.org/viewtopic.php?f=7&t=18632 From araujo.thiago.souza at gmail.com Sat Jun 13 00:05:32 2009 From: araujo.thiago.souza at gmail.com (Araujo, Thiago S.) Date: Fri, 12 Jun 2009 19:05:32 -0300 Subject: MBR crash Message-ID: <815b493b0906121505o1262463arbc5dcf92b683b04a@mail.gmail.com> Hello to you all, I work with 2 laptops, one with the old and good linux and other with winVista, for profissionals reasons I have to work with both simultaneosly. Yesterday I saw a link "compiz for windows vista" and tried to install it on my winvista notebook. An openSuSE installation poped up with graphics elements only... I clicked to proceed without think and... Nothing happenned. At least till I re-started. Then Grub was there (it shouldnt be... I was using only winVista on that notebook), incapable to boot both windows or openSUSE. I tried to recover using the recover dvd, and with command line with the command fix Mbr and chkdsk. Nothing. Dell support couldnt help me and the same with microsoft. So, how it is not a matter of windows but a matter of MBR recover. I thought someone around here could help me... I am quite sure the problem beyond Grub, there is no way to pass the command to winvista, I believe this joke crashed the Bcdsect ... system of Win boot.. I recovered data using the command "force" to mount the HD with a Linux live cd, but... there are some digital certificates I would not like to loose.... Thank you in advance, Araujo -- Thiago S. Araujo Facebook: http://www.facebook.com/profile.php?id=677281884 Twitter: http://twitter.com/prof_Araujo -------------- next part -------------- An HTML attachment was scrubbed... URL: http://lists.infowares.com/archive/clug/attachments/20090612/d9e6eb03/attachment-0001.htm From wawrzek at gmail.com Sat Jun 13 00:11:42 2009 From: wawrzek at gmail.com (=?ISO-8859-2?Q?Wawrzyniec_Niewodnicza=F1ski?=) Date: Fri, 12 Jun 2009 23:11:42 +0100 Subject: MBR crash In-Reply-To: <815b493b0906121505o1262463arbc5dcf92b683b04a@mail.gmail.com> References: <815b493b0906121505o1262463arbc5dcf92b683b04a@mail.gmail.com> Message-ID: Hi, Have you tried to use LIVE CD to check if the Win partion is fine? Wawrzek -- Wawrzyniec Niewodnicza?ski vel Wawrzek Larry or LarryN Linux User #177124 E-MAIL: wawrzek at gmail.com PhD in Quantum Chemistry WWW: http://wawrzek.name MSc in Molecular Engineering JID: larryn at chrome.pl From araujo.thiago.souza at gmail.com Sat Jun 13 17:15:49 2009 From: araujo.thiago.souza at gmail.com (Araujo, Thiago S.) Date: Sat, 13 Jun 2009 12:15:49 -0300 Subject: MBR crash In-Reply-To: References: <815b493b0906121505o1262463arbc5dcf92b683b04a@mail.gmail.com> Message-ID: <815b493b0906130815x387f41e9m67c3d86e29d6ca37@mail.gmail.com> Wawrzyniec, yes, I did, the partition is ok. But the WinVista boot system is more complicated, and surely not better than Xp/2000/ 9x ... They should make a KISS version of windows! I certainlly would buy one. Thanks anyway! Ara?jo. On 6/12/09, Wawrzyniec Niewodnicza?ski wrote: > > Hi, > > Have you tried to use LIVE CD to check if the Win partion is fine? > > Wawrzek > > -- > Wawrzyniec Niewodnicza?ski vel Wawrzek Larry or LarryN > Linux User #177124 E-MAIL: wawrzek at gmail.com > PhD in Quantum Chemistry WWW: http://wawrzek.name > MSc in Molecular Engineering JID: larryn at chrome.pl > -- Ara?jo __________________________ Thiago S. Ara?jo Twitter: http://twitter.com/prof_Araujo Facebook: http://www.facebook.com/profile.php?id=677281884 -------------- next part -------------- An HTML attachment was scrubbed... URL: http://lists.infowares.com/archive/clug/attachments/20090613/84ce7ebd/attachment-0002.htm From araujo.thiago.souza at gmail.com Sat Jun 13 17:17:07 2009 From: araujo.thiago.souza at gmail.com (Araujo, Thiago S.) Date: Sat, 13 Jun 2009 12:17:07 -0300 Subject: MBR In-Reply-To: <6aedacb50906130736g533fe3f6hd55eb49ca3850f64@mail.gmail.com> References: <6aedacb50906130736g533fe3f6hd55eb49ca3850f64@mail.gmail.com> Message-ID: <815b493b0906130817v479a35bey5d1d8697ea5ec70@mail.gmail.com> Ashley, yes, I've tried the fdisk/mbr. Didnt worked. And I'm trying to burn a winvista download from internet, because the original factory DVD does not offer the update possibility, all the other possibilities will take over the HD. I keep here thinking why to not allow update in the dvd... But ... none of my DVDs are good to record :( (there is no floppy) Thinking positively at least I'm healthy Thanks anyway!! Araujo. On 6/13/09, Ashley Roberts wrote: Hey, I cant seem to post on the CLUG. have you tried a bootdisk and ran, "fdisk /mbr" If this fails, use another windows box to create a boot disk, edit the boot.ini to reflect location of your windows install and try booting using the floppy. Ash Araujo -- Thiago S. Araujo Facebook: http://www.facebook.com/profile.php?id=677281884 Twitter: http://twitter.com/prof_Araujo -- -------------- next part -------------- An HTML attachment was scrubbed... URL: http://lists.infowares.com/archive/clug/attachments/20090613/66f0d686/attachment-0003.htm From paul+clug at mansfield.co.uk Mon Jun 15 00:06:10 2009 From: paul+clug at mansfield.co.uk (Paul M) Date: Sun, 14 Jun 2009 23:06:10 +0100 Subject: Exim and backup relays In-Reply-To: <4A30E15B.9060802@gasops.co.uk> References: <4A30E15B.9060802@gasops.co.uk> Message-ID: <4A357452.1080909@mansfield.co.uk> Longman wrote: > Ever since setting up a backup MX for my domain (via relay domains) I've > started receiving lots of Frozen Message emails for Frozen Emails in the > queue on this backup MX. It looks like spammers are using the the backup what I've done in the past is to generate a list of valid recipients from our zimbra mail server and push the file out to the backup MX so that it always knows what's valid we now use postini for A/V and A/S and there's an autoprovision feature, as well as a call-out-verification, but TBH we just manually provision new valid recips in postini control panel as we don't make many changes; when we upgrade to zimbra latest I'll probably invest more time. From paul+clug at mansfield.co.uk Mon Jun 15 00:09:36 2009 From: paul+clug at mansfield.co.uk (Paul M) Date: Sun, 14 Jun 2009 23:09:36 +0100 Subject: Avoiding having a www A REC with BIND9 In-Reply-To: <4A2FDF40.8070003@gasops.co.uk> References: <4A2FDF40.8070003@gasops.co.uk> Message-ID: <4A357520.3010502@mansfield.co.uk> Longman wrote: > If you wish to have a domain resolve to the A rec IP of your www host > (and your www host just be a CNAME of this), how would you accomplish > this in BIND? The record can't go in the Zone file for your domain, as > only the hosts/subdomains go in this file? So where does it go? It > seems to me that it would go at the REGISTRAR level, for they are the > people that provide the 'glue records' for the nameserver addresses of > the domains their servers refer you to, but a bit of googling hasn't > really found much. wouldn't this work? @ IN A 1.2.3.4 www IN CNAME mydomain.com. you definitely don't want to break your DNS by doing this: @ IN CNAME www.mydomain.com. From magnus at therning.org Tue Jun 16 11:59:49 2009 From: magnus at therning.org (Magnus Therning) Date: Tue, 16 Jun 2009 10:59:49 +0100 Subject: Working on Xen in Cambridge? Message-ID: Since I've seen a few job postings on here before I thought I'd try it myself :-) Citrix' Cambridge office (now in a brand new building in the science park) is looking for people to work on Xen, especially XenClient (take a look at the Xen Wiki for some info, a good place to start is http://wiki.xensource.com/xenwiki/General_Project_Information ). These are the positions we are looking to fill with the desired skills: Hypervisor Testing - Python, scripting - Previous experience in Q&A. - Work on XenRT (that's the name of our homegrown test framework). Engineer - Functional programming experience, ocaml would be a plus. - Linux/Unix background. Javascript/C# GUI - C#, .net - Javascript, web programming. - GUI experience. - Functional language knowledge would be an enormous plus. Doc - Technical doc writer - Linux/Unix background. Windows kernel driver - Work on pv driver - USB, Wireless driver experience - Unix/Linux knowledge Let me know if you want to find out more, or want me to pass on a CV. /M -- Magnus Therning (OpenPGP: 0xAB4DFBA4) magnus?therning?org Jabber: magnus?therning?org http://therning.org/magnus identi.ca|twitter: magthe From dom at latter.org Mon Jun 22 17:40:00 2009 From: dom at latter.org (Dom Latter) Date: Mon, 22 Jun 2009 17:40:00 +0200 Subject: Postfix permissions. Message-ID: <4A3FA5D0.8000607@latter.org> Got a broken postfix. I get this error in mail.log: Jun 22 17:21:08 hostname postfix/virtual[2377]: warning: maildir access problem for UID/GID=5000/5000: create maildir file /var/mail/vhosts/domain.com/dom.latter/tmp/1245687668.P2377.hostname: Permission denied (hostname and domain name changed). hostname:/var/mail/vhosts/domain.com/dom.latter# ls -l total 12 drwxr-sr-x 2 vmail vmail 4096 2009-06-22 17:02 cur drwxr-sr-x 2 vmail vmail 4096 2009-06-22 17:02 new drwxr-sr-x 2 vmail vmail 4096 2009-06-22 17:02 tmp in /etc/passwd vmail:x:5000:5000:::/bin/false in /etc/group vmail:x:5000: Thing is I have a working postfix on another machine and the setup is (almost) identical (in fact I'm using my setup notes from the other machine as I go along). Any ideas? From dom at latter.org Mon Jun 22 19:24:01 2009 From: dom at latter.org (Dom Latter) Date: Mon, 22 Jun 2009 19:24:01 +0200 Subject: Postfix permissions. In-Reply-To: <4A3FA5D0.8000607@latter.org> References: <4A3FA5D0.8000607@latter.org> Message-ID: <4A3FBE31.2030107@latter.org> Dom Latter wrote: > Got a broken postfix. I get this error in mail.log: > > (hostname and domain name changed). And if I hadn't done that someone would have spotted the problem. It's one of those stupid stupid stupid stupid stupid stupid thing.uk.com domains. My brain keeps transposing it, when creating config files, directories, etc., into uk.thing.com. I should've charged them a hundred quid extra for the "technical difficulties involved in .uk.com domains". From jt at camalyn.org Wed Jun 24 20:25:01 2009 From: jt at camalyn.org (jt) Date: Wed, 24 Jun 2009 19:25:01 +0100 Subject: JOB: Helpdesk/ Customer Services Manager, London Message-ID: <4A426F7D.9030300@camalyn.org> hello, I am looking to recruit someone who is technically competent with good knowledge of VOIP, SIP, Wi-Fi, DSL and preferably MySQL Querying for a role with a mobile technology company that will encompass managing a customer services/ helpdesk team (currently staffed at 20). Your team will be responsible for managing customer queries via e-mail, web and at times telephone. You will also be responsible for recruitment, training, mentoring, monitoring, creating helpdesk policy, acting as a senior user and team leader in development and test programs. This job will be based in London and will pay circa ?45k-?50k + benefits. Please e-mail me using james at camalyn.org to learn more. All the best, James // James Tobin // Camalyn // +44 (0) 7952 145 127 james at camalyn.org From wawrzek at gmail.com Sat Jun 27 23:56:51 2009 From: wawrzek at gmail.com (=?ISO-8859-2?Q?Wawrzyniec_Niewodnicza=F1ski?=) Date: Sat, 27 Jun 2009 22:56:51 +0100 Subject: GreaseMonkey Message-ID: Hi, Do you have any expirence with GreaseMonky? I would like to write a script which set background of all texarea and input element to black and foreground to white. Any suggestion? Wawrzek -- Wawrzyniec Niewodnicza?ski vel Wawrzek Larry or LarryN Linux User #177124 E-MAIL: wawrzek at gmail.com PhD in Quantum Chemistry WWW: http://wawrzek.name MSc in Molecular Engineering JID: larryn at chrome.pl From marcus at quintic.co.uk Mon Jun 29 10:31:52 2009 From: marcus at quintic.co.uk (Marcus Williams) Date: Mon, 29 Jun 2009 09:31:52 +0100 Subject: GreaseMonkey In-Reply-To: <4A487BB9.1090603@cad-schroer.co.uk> References: <4A487BB9.1090603@cad-schroer.co.uk> Message-ID: <4A487BF8.8040507@quintic.co.uk> Wawrzyniec Niewodnicza?ski wrote: > Do you have any expirence with GreaseMonky? I would like to write a > script which set background of all texarea and input element to black > and foreground to white. Any suggestion? Yes - unless anyone else is interested, contact me offlist and I can send you some pointers (and a template script). Your best bet is to use jquery in greasemonkey as it makes stuff like this a whole heap easier. Marcus From pg_clug at clug.for.sabi.co.UK Mon Jun 29 15:20:01 2009 From: pg_clug at clug.for.sabi.co.UK (Peter Grandi) Date: Mon, 29 Jun 2009 14:20:01 +0100 Subject: GreaseMonkey In-Reply-To: References: Message-ID: <19016.49025.906861.854527@tree.ty.sabi.co.UK> > [ ... ] script which set background of all texarea and input > element to black and foreground to white. Any suggestion? It may be more appro[riate to use CSS overrides ('userChrome.css'). From marcus at quintic.co.uk Mon Jun 29 15:26:44 2009 From: marcus at quintic.co.uk (Marcus Williams) Date: Mon, 29 Jun 2009 14:26:44 +0100 Subject: GreaseMonkey In-Reply-To: <19016.49025.906861.854527@tree.ty.sabi.co.UK> References: <19016.49025.906861.854527@tree.ty.sabi.co.UK> Message-ID: <4A48C114.7010708@quintic.co.uk> Peter Grandi wrote: >> [ ... ] script which set background of all texarea and input >> element to black and foreground to white. Any suggestion? > > It may be more appro[riate to use CSS overrides ('userChrome.css'). My bugbear with userChrome is you cant target certain sites with it (unless they include a css signature [1]) and I'm not sure if you have to restart the browser to get it included. Greasemonkey (and its css equivalent Stylish [2]) get around this. Marcus [1] http://archivist.incutio.com/viewlist/css-discuss/13291 [2] https://addons.mozilla.org/en-US/firefox/addon/2108 From clug at gasops.co.uk Mon Jun 29 16:04:10 2009 From: clug at gasops.co.uk (Longman) Date: Mon, 29 Jun 2009 15:04:10 +0100 Subject: GreaseMonkey In-Reply-To: <4A48C114.7010708@quintic.co.uk> References: <19016.49025.906861.854527@tree.ty.sabi.co.UK> <4A48C114.7010708@quintic.co.uk> Message-ID: <4A48C9DA.2020704@gasops.co.uk> * Marcus Williams wrote: > Peter Grandi wrote: >>> [ ... ] script which set background of all texarea and input >>> element to black and foreground to white. Any suggestion? >> It may be more appro[riate to use CSS overrides ('userChrome.css'). > > My bugbear with userChrome is you cant target certain sites with it > (unless they include a css signature [1]) and I'm not sure if you have > to restart the browser to get it included. Greasemonkey (and its css > equivalent Stylish [2]) get around this. > Well I manage to target a specific site using the following. I disable the 'Upgrade your account' button since the upgrade actually puts you on worse interest onto an account that charges a monthly fee. Each time I see the 'Upgrade' button it peeves me somewhat, so I make it ghost: @-moz-document domain(lloydstsb.co.uk) { a[title="Upgrade your account"] {display: none} /* table>tbody>tr>td>table>tbody>tr>td {display: none} */ .bannerTable {display: none;} #myoffers {display: none;} /* this is a CSS 3.0 thing not supported by firefox tbody:nth-child(5) {display: none;} though can leave it here until it is then we can uncomment it*/ /* offers are usually in a different colour to alternate the shades of the grid */ .prodDetail[bgcolor="#eeeeee"] {display: none;} .prodDetailNoRB[bgcolor="#eeeeee"] {display: none;} } From marcus at quintic.co.uk Mon Jun 29 16:07:55 2009 From: marcus at quintic.co.uk (Marcus Williams) Date: Mon, 29 Jun 2009 15:07:55 +0100 Subject: GreaseMonkey In-Reply-To: <4A48C9DA.2020704@gasops.co.uk> References: <19016.49025.906861.854527@tree.ty.sabi.co.UK> <4A48C114.7010708@quintic.co.uk> <4A48C9DA.2020704@gasops.co.uk> Message-ID: <4A48CABB.601@quintic.co.uk> Longman wrote: > Well I manage to target a specific site using the following. I disable > the 'Upgrade your account' button since the upgrade actually puts you on > worse interest onto an account that charges a monthly fee. Each time I > see the 'Upgrade' button it peeves me somewhat, so I make it ghost: > > @-moz-document domain(lloydstsb.co.uk) ooooh nice - didnt know about that one :) Mind you, I'll still stick with my addons as I can do more with greasemonkey. Definitely one to remember though! Thanks Marcus From clug at gasops.co.uk Mon Jun 29 16:15:36 2009 From: clug at gasops.co.uk (Longman) Date: Mon, 29 Jun 2009 15:15:36 +0100 Subject: GreaseMonkey In-Reply-To: <4A48CABB.601@quintic.co.uk> References: <19016.49025.906861.854527@tree.ty.sabi.co.UK> <4A48C114.7010708@quintic.co.uk> <4A48C9DA.2020704@gasops.co.uk> <4A48CABB.601@quintic.co.uk> Message-ID: <4A48CC88.4010001@gasops.co.uk> * Marcus Williams wrote: > Longman wrote: >> Well I manage to target a specific site using the following. I disable >> the 'Upgrade your account' button since the upgrade actually puts you on >> worse interest onto an account that charges a monthly fee. Each time I >> see the 'Upgrade' button it peeves me somewhat, so I make it ghost: >> >> @-moz-document domain(lloydstsb.co.uk) > > ooooh nice - didnt know about that one :) Mind you, I'll still stick > with my addons as I can do more with greasemonkey. Definitely one to > remember though! I also get rid of adverts from Google and such like with the userChrome (just a one liner). Lots of really nice things you can do with it. I have GreaseMonkey but have never got round to playing with other people's scripts or writing my own.