Yea it is ! Intermapper rules!
Curently I am using mrtg/netsaint/perl. At my previous job we used intermapper. It's on 'my list of things to setup'. If you admin a network, get intermapper.
Over the last weekend I setup a test VPN using the same exact hardware you have. Cisco has a lot of documentation on seting up VPNs with there products. But almost all is IOS -to- IOS or PIX -to- PIX , there is only _one_ example document that shows how to setup a IOS -to- PIX VPN. But like another poster stated, The first time is a bear, after that it is easy. So, your vendor might not know how to do a IOS -to- PIX VPN, only PIX -to- PIX. That is why they state that you must have a PIX.
And on cisco equipment in general, I have cisco routers, switches, firewalls, and localdirectors. They all rock! All my servers are linux, all the network hardware is cisco. It is a hard combination to beat.
--
Christopher McCrory
"The guy that keeps the servers running"
chrismcc@localhost.pricegrabber.com
http://www.pricegrabber.com
"Linux: Because rebooting is for adding new hardware"
There is also good news for those with a smaller number of domains.
views
this allows one daemon on one server to present different data to different groups depending on where the request comes from.
if request is from internal reply with www=192.168.1.1
if request is from external reply with www=63.1.1.1
the config file would look something like this
view "internal" {
match-clients { localhost; localnets; 192.168.0.0/24; };
recursion yes;
zone "." { type hint; file "root.cache"; };
zone "0.0.127.in-addr.arpa" { type master; file "named.local"; };
zone "pricegrabber.com" { type master; file "db.pricegrabber.com.internal"; };
};
view "external" {
match-clients { any; };
zone "pricegrabber.com" { type master; file "db.pricegrabber.com.external"; };
};
This is _very_ cool! If you run two name servers(master and slave), before you would actually have to run four servers. two for 'internal users' and two for 'the world'.
Christopher McCrory
"The guy that keeps the servers running"
chrismcc@pricegrabber.com
http://www.pricegrabber.com
PriceGrabber.com - The Smart Place to Start Your Shopping
"Linux: Because rebooting is for adding new hardware"
Hello... The mirror finished (thanks nikhil). This is on a OC12 line. very fast! http://www.netus.com/wedding Congrats hemos! Christopher McCrory Lead Bithead, Netus Inc. chrismcc@netus.com admin@netus.com "Good morning, doctors. I have taken the liberty of removing Windows 95 from my hard drive." --Arthur C. Clake, on what he imagines HAL's first words to be
Dear Tech Support: Recently I upgraded from Boyfriend 5.0 to Husband 1.0 and noticed that the new program began making unexpected changes to the accounting software, severely limiting access to wardrobe, flower and jewelry applications that operated flawlessly under Boyfriend 5.0. No mention of this phenomenon was included in the product brochure. In addition, Husband 1.0 uninstalls many other valuable programs such as DinnerDancing 7.5, CruiseShip 2.3, and OperaNight 6.1 and installs new, undesirable programs such as PokerNight 1.3, SaturdayFootball 5.0, Golf 2.4 and ClutterEverywhere 4.5. Conversation 8.0 no longer runs, and invariably crashes the system. Under no circumstances will it run DiaperChanging 14.1or HouseCleaning 2.6. I've tried running Nagging 5.3 to fix Husband 1.0, but this all purpose utility is of only limited effectiveness. Can you help, please!! Sincerely, XXX Dear XXX: This is a very common problem women complain about, but it is mostly due to a primary misconception. Many people upgrade from Boyfriend 5.0 to Husband 1.0 with no idea that Boyfriend 5.0 is merely an ENTERTAINMENT package. However, Husband 1.0 is an OPERATING SYSTEM and was designed by its creator to run as few applications as possible. Further, you cannot purge Husband 1.0 and return to Boyfriend 5.0, because Husband 1.0 is not designed to do this. Hidden operating files within your system would cause Boyfriend 5.0 to emulate Husband 1.0, so nothing is gained. It is impossible to uninstall, delete, or purge the program files from the system, once installed. Any new program files can only be installed once per year, as Husband 1.0 has severely limited memory. Error messages are common, and a normal part of Husband 1.0. In desperation to play some of their "old time" favorite applications, or to get new applications to work, some women have tried to install Boyfriend 6.0, or Husband 2.0. However, these women end up with more problems than encountered with Husband 1.0. Look in your manual under "Warnings: Divorce/Child Support." You will notice that this program runs very poorly, and comes bundled with HeartBreak 1.3. I recommend you keep Husband 1.0, and just learn the quirks of this strange and illogical system. Having Husband 1.0 installed myself, I might also suggest you read the entire section regarding General Partnership Faults [GPFs]. This is a wonderful feature of Husband 1.0, secretly installed by the parent company as an integral part of the operating system. Husband 1.0 must assume ALL responsibility for ALL faults and problems, regardless of root cause. To activate this great feature enter the command "C:\ I THOUGHT YOU LOVED ME". Sometimes Tears 6.2 must be run simultaneously while entering the command. Husband 1.0 should then run the applications Apologize 12.3 and Flowers/Chocolates 7.8. TECH TIP! Avoid excessive use of this feature. Overuse can create additional and more serious GPFs, and ultimately YOU may have to give a C:\ I APOLOGIZE command before the system will return to normal operations. Overuse can also cause Husband 1.0 to default to GrumpySilence 2.5, or worse yet, to Beer 6.0. Beer 6.0 is a very bad program that causes Husband 1.0 to create FatBelly files and SnoringLoudly wave files that are very hard to delete. Save yourself some trouble by following this tech tip! Just remember! The system will run smoothly, and take the blame for all GPFs, but because of this fine feature it can only intermittently run all the applications Boyfriend 5.0 ran. Husband 1.0 is a great program, but it does have limited memory and cannot learn new applications quickly. Consider buying additional software to improve performance. I personally recommend HotFood 3.0, Lingerie 5.3 and Patience 10.1.> Used in conjunction, these utilities can really help keep Husband 1.0 running smoothly. After several years of use, Husband 1.0 will become familiar and you will find many valuable embedded features such as FixBrokenThings 2.1, Snuggling 4.2 and BestFriend 7.6. A final word of caution! Do NOT, under any circumstances, install MotherInLaw 1.0. This is not a supported application, and will cause selective shutdown of the operating system. Husband 1.0 will run only Fishing 9.4 and Hunting 5.2 until MotherInLaw 1.0 is uninstalled. I hope these notes have helped. Thank you for choosing to install Husband 1.0 and we here at Tech Support wish you the best of luck in coming years. We trust you will learn to fully enjoy this product!
Re:The importance (or lack thereof) of uptime
on
Linux Kernel 2.2.14
·
· Score: 3
The kernel is so out of date that any random script kiddie can grab an exploit or buffer overflow from bugtraq and root the system, obviously not a Good Thing if your computer is running any sort of critical task.
I think you missed something important. remote and local exploits come from userland programs. bind, pop3d, etc. The kernel might have DOS problems, but AKAIK there are no remote root exploits for the linux kernel itself.
Every time RHAT drops to 70% of its highest value they announce a release. No... I have been using RH since 4.1. They have a release about every 6 months. This is from before stock was ever mentioned.
my small team of five has set up 10 exchange servers
My team of ME Runs 10 servers alone.
and it took about three days.
I can set one up in about 30 minutes.
The busiest server handles about one e-mail related (SMTP or POP) transaction every second using sendmail and the default RH pop daemon. An edit here and an edit there and inetd can now handle 160 connections per 60 seconds. ( I sometimes peak at 55 to 65 pop connections per minute). Works here great! A quickie bash script on you can add as many users as you want with passwords in a few minutes.
Did I mention I do this alone? (and run the web/DNS/etc).
For large numbers of users you need a robust OS with a lot of disk space and ram. From my experience the limiting factors are disk I/O ( get fast SCSI in a raid) and RAM, not the processor(s). To make authintication faster use NIS (hashed) or a SQL batabase so lookups are sorted in some way first instead of a flat/etc/{password,shadow} lookup. Good luck with the PHBs:)
Christopher McCrory Lead Bithead, Netus Inc. chrismcc@netus.com admin@netus.com
"Linux: Because rebooting is for adding new hardware"
I am looking to upgrade from a diamond S3 w/ a voodoo1 to something with dual monitors and some sort of Voodoo2/3 card{,s}. 2D performance is more inportant but running Q3 comes in second. Could someone recomend an online hardware vendor that knows linux well? I remember seeing a URL to a couple of vendors that had "running linux" type icons on their web sites.
TIA
Christopher McCrory Lead Bithead, Netus Inc. chrismcc@netus.com admin@netus.com
"Linux: Because rebooting is for adding new hardware" "Linux: Because Dilbert's mom uses it"
Slashdot Mirror
Extreme Programming Installed
pricegrabber.com
Extreme Programming Explained
pricegrabber.com
Extreme Programing
pricegrabber.com
Disclamer: I work @ pricegrabber
* Intermapper - Only for Macs, but it's awsome.
Yea it is ! Intermapper rules!
Curently I am using mrtg/netsaint/perl. At my previous job we used intermapper. It's on 'my list of things to setup'. If you admin a network, get intermapper.
Hello...
Over the last weekend I setup a test VPN using the same exact hardware you have. Cisco has a lot of documentation on seting up VPNs with there products. But almost all is IOS -to- IOS or PIX -to- PIX , there is only _one_ example document that shows how to setup a IOS -to- PIX VPN. But like another poster stated, The first time is a bear, after that it is easy. So, your vendor might not know how to do a IOS -to- PIX VPN, only PIX -to- PIX. That is why they state that you must have a PIX.
And on cisco equipment in general, I have cisco routers, switches, firewalls, and localdirectors. They all rock! All my servers are linux, all the network hardware is cisco. It is a hard combination to beat.
--
Christopher McCrory
"The guy that keeps the servers running"
chrismcc@localhost.pricegrabber.com
http://www.pricegrabber.com
"Linux: Because rebooting is for adding new hardware"
Interconnections
Disclaimer: I work there...
Hello...
/usr/local/games/quake2=/quake2 quake.rpm
rpm --relocate
There is also good news for those with a smaller number of domains.
views
this allows one daemon on one server to present different data to different groups depending on where the request comes from.
if request is from internal reply with www=192.168.1.1
if request is from external reply with www=63.1.1.1
the config file would look something like this
view "internal" {
match-clients { localhost; localnets; 192.168.0.0/24; };
recursion yes;
zone "." { type hint; file "root.cache"; };
zone "0.0.127.in-addr.arpa" { type master; file "named.local"; };
zone "pricegrabber.com" { type master; file "db.pricegrabber.com.internal"; };
};
view "external" {
match-clients { any; };
zone "pricegrabber.com" { type master; file "db.pricegrabber.com.external"; };
};
This is _very_ cool! If you run two name servers(master and slave), before you would actually have to run four servers. two for 'internal users' and two for 'the world'.
Christopher McCrory
"The guy that keeps the servers running"
chrismcc@pricegrabber.com
http://www.pricegrabber.com
PriceGrabber.com - The Smart Place to Start Your Shopping
"Linux: Because rebooting is for adding new hardware"
Hello... The mirror finished (thanks nikhil). This is on a OC12 line. very fast! http://www.netus.com/wedding Congrats hemos! Christopher McCrory Lead Bithead, Netus Inc. chrismcc@netus.com admin@netus.com "Good morning, doctors. I have taken the liberty of removing Windows 95 from my hard drive." --Arthur C. Clake, on what he imagines HAL's first words to be
Hello... OC12 line http://www.netus.com/hemos
Oops, maybe they should passwd protect this ?
www.claudiaschiffer.com/stats
Christopher McCrory
Lead Bithead, Netus Inc.
chrismcc@netus.com
admin@netus.com
Dear Tech Support: Recently I upgraded from Boyfriend 5.0 to Husband 1.0 and noticed that the new program began making unexpected changes to the accounting software, severely limiting access to wardrobe, flower and jewelry applications that operated flawlessly under Boyfriend 5.0. No mention of this phenomenon was included in the product brochure. In addition, Husband 1.0 uninstalls many other valuable programs such as DinnerDancing 7.5, CruiseShip 2.3, and OperaNight 6.1 and installs new, undesirable programs such as PokerNight 1.3, SaturdayFootball 5.0, Golf 2.4 and ClutterEverywhere 4.5. Conversation 8.0 no longer runs, and invariably crashes the system. Under no circumstances will it run DiaperChanging 14.1or HouseCleaning 2.6. I've tried running Nagging 5.3 to fix Husband 1.0, but this all purpose utility is of only limited effectiveness. Can you help, please!! Sincerely, XXX Dear XXX: This is a very common problem women complain about, but it is mostly due to a primary misconception. Many people upgrade from Boyfriend 5.0 to Husband 1.0 with no idea that Boyfriend 5.0 is merely an ENTERTAINMENT package. However, Husband 1.0 is an OPERATING SYSTEM and was designed by its creator to run as few applications as possible. Further, you cannot purge Husband 1.0 and return to Boyfriend 5.0, because Husband 1.0 is not designed to do this. Hidden operating files within your system would cause Boyfriend 5.0 to emulate Husband 1.0, so nothing is gained. It is impossible to uninstall, delete, or purge the program files from the system, once installed. Any new program files can only be installed once per year, as Husband 1.0 has severely limited memory. Error messages are common, and a normal part of Husband 1.0. In desperation to play some of their "old time" favorite applications, or to get new applications to work, some women have tried to install Boyfriend 6.0, or Husband 2.0. However, these women end up with more problems than encountered with Husband 1.0. Look in your manual under "Warnings: Divorce/Child Support." You will notice that this program runs very poorly, and comes bundled with HeartBreak 1.3. I recommend you keep Husband 1.0, and just learn the quirks of this strange and illogical system. Having Husband 1.0 installed myself, I might also suggest you read the entire section regarding General Partnership Faults [GPFs]. This is a wonderful feature of Husband 1.0, secretly installed by the parent company as an integral part of the operating system. Husband 1.0 must assume ALL responsibility for ALL faults and problems, regardless of root cause. To activate this great feature enter the command "C:\ I THOUGHT YOU LOVED ME". Sometimes Tears 6.2 must be run simultaneously while entering the command. Husband 1.0 should then run the applications Apologize 12.3 and Flowers/Chocolates 7.8. TECH TIP! Avoid excessive use of this feature. Overuse can create additional and more serious GPFs, and ultimately YOU may have to give a C:\ I APOLOGIZE command before the system will return to normal operations. Overuse can also cause Husband 1.0 to default to GrumpySilence 2.5, or worse yet, to Beer 6.0. Beer 6.0 is a very bad program that causes Husband 1.0 to create FatBelly files and SnoringLoudly wave files that are very hard to delete. Save yourself some trouble by following this tech tip! Just remember! The system will run smoothly, and take the blame for all GPFs, but because of this fine feature it can only intermittently run all the applications Boyfriend 5.0 ran. Husband 1.0 is a great program, but it does have limited memory and cannot learn new applications quickly. Consider buying additional software to improve performance. I personally recommend HotFood 3.0, Lingerie 5.3 and Patience 10.1.> Used in conjunction, these utilities can really help keep Husband 1.0 running smoothly. After several years of use, Husband 1.0 will become familiar and you will find many valuable embedded features such as FixBrokenThings 2.1, Snuggling 4.2 and BestFriend 7.6. A final word of caution! Do NOT, under any circumstances, install MotherInLaw 1.0. This is not a supported application, and will cause selective shutdown of the operating system. Husband 1.0 will run only Fishing 9.4 and Hunting 5.2 until MotherInLaw 1.0 is uninstalled. I hope these notes have helped. Thank you for choosing to install Husband 1.0 and we here at Tech Support wish you the best of luck in coming years. We trust you will learn to fully enjoy this product!
The kernel is so out of date that any random script kiddie can grab an exploit or buffer overflow from bugtraq and root the system, obviously not a Good Thing if your computer is running any sort of critical task.
I think you missed something important. remote and local exploits come from userland programs. bind, pop3d, etc. The kernel might have DOS problems, but AKAIK there are no remote root exploits for the linux kernel itself.
Hello...
l /official/UTDemo-Linux-x86-348.tar.gz
Working link
ftp://ftp.cdrom.com/pub/planetquake/planetunrea
But, what we really want to know...
Can she type with one hand?
Every time RHAT drops to 70% of its highest value they announce a release. No... I have been using RH since 4.1. They have a release about every 6 months. This is from before stock was ever mentioned.
Hello...
/etc/{password,shadow} lookup. Good luck with the PHBs :)
my small team of five has set up 10 exchange servers
My team of ME Runs 10 servers alone.
and it took about three days.
I can set one up in about 30 minutes.
The busiest server handles about one e-mail related (SMTP or POP) transaction every second using sendmail and the default RH pop daemon. An edit here and an edit there and inetd can now handle 160 connections per 60 seconds. ( I sometimes peak at 55 to 65 pop connections per minute). Works here great! A quickie bash script on you can add as many users as you want with passwords in a few minutes.
Did I mention I do this alone? (and run the web/DNS/etc).
For large numbers of users you need a robust OS with a lot of disk space and ram. From my experience the limiting factors are disk I/O ( get fast SCSI in a raid) and RAM, not the processor(s). To make authintication faster use NIS (hashed) or a SQL batabase so lookups are sorted in some way first instead of a flat
Christopher McCrory
Lead Bithead, Netus Inc.
chrismcc@netus.com
admin@netus.com
"Linux: Because rebooting is for adding new hardware"
b) To use RSA (required for SSL) for
commercial usage you need to license it from
RSA Data Security Inc. - which is worth $100.
I talked to RSA about a licence. The price starts about $50,000.00 and goes up from there. What you are buying is the RSA LICENCE (and support).
Christopher McCrory
Lead Bithead, Netus Inc.
chrismcc@netus.com
admin@netus.com
"Linux: Because rebooting is for adding new hardware"
Along the same lines...
I am looking to upgrade from a diamond S3 w/ a voodoo1 to something with dual monitors and some sort of Voodoo2/3 card{,s}. 2D performance is more inportant but running Q3 comes in second. Could someone recomend an online hardware vendor that knows linux well? I remember seeing a URL to a couple of vendors that had "running linux" type icons on their web sites.
TIA
Christopher McCrory
Lead Bithead, Netus Inc.
chrismcc@netus.com
admin@netus.com
"Linux: Because rebooting is for adding new hardware"
"Linux: Because Dilbert's mom uses it"