Saturday October 20th 2007, 2:13 pm
Filed under: Writings
Filed under: Writings
Comments?
After seeing this article on Zaplog I just had to find more clips from The Henry Rollins Show. Here are some youtube video’s featuring Letters from Henry:
Letters from Henry
New AlphaServer
Tuesday October 09th 2007, 2:17 pm
Filed under: Writings
Filed under: Writings
Finally I’ve managed to lay my hands on a Compaq AlphaServer DS10. Although it’s a fairly old & slow system, it’s much more interesting then all the other alpha’s I’ve had (mostly AlphaServers 1000′s). The specifications are as follows: 466MHz EV67 21264 Alpha CPU / 2 GB ram / 2 x 18GB, 1 x 36GB u2w / 2 x 100mbit ethernet, 1 x 1gbit SX fiber.
Since FreeBSD dropped support for alpha since the 6.x releases, OpenBSD just doesn’t want to load the kernel and NetBSD is just, well, just NetBSD I’m running Debian Unstable on there. To my surprise, this actually went pretty wel. It was a big drag to install it, since I was connected through a 9600 baud serial connection and a complete screen refresh while in the installer took approx 1.5 secs. Since almost every step in the installer takes about 5~6 screen refreshes, this was a pretty lengthy operation. And for FSCK sake, Debian crowd, give me back the “use fdisk” setting in the partitioning menu, please ….
Below is a complete boot log of the system after upgrading it to unstable:
CPU 0 booting
Resetting I/O buses...
...waiting for ewa0.0.0.9.0 to start...
...
ewa0: link failed : Using 100BaseTX: full duplex
...waiting for ewb0.0.0.11.0 to start...
...
ewb0: link failed : Using 100BaseTX: full duplex
(boot dka0.0.0.14.0 -flags 2:0)
block 0 of dka0.0.0.14.0 is a valid boot block
reading 172 blocks from dka0.0.0.14.0
bootstrap code read in
base = 200000, image_start = 0, image_bytes = 15800(88064)
initializing HWRPB at 2000
initializing page table at 3ff2a000
initializing machine state
setting affinity to the primary CPU
jumping to bootstrap code
aboot: Linux/Alpha SRM bootloader version 0.9b
aboot: switching to OSF/1 PALcode version 1.92
aboot: booting from device 'SCSI 0 14 0 0 0 0 0'
aboot: valid disklabel found: 7 partitions.
aboot: loading uncompressed vmlinuz-2.6.22-2-alpha-generic...
aboot: loading compressed vmlinuz-2.6.22-2-alpha-generic...
aboot: zero-filling 844938 bytes at 0xfffffc00015fc44e
aboot: loading initrd (7751766 bytes/7570 blocks) at 0xfffffc007f798000
aboot: starting kernel vmlinuz-2.6.22-2-alpha-generic with arguments ro root=/dev/sda3 console=ttyS0
Linux version 2.6.22-2-alpha-generic (Debian 2.6.22-4) (waldi@debian.org) (gcc version 4.1.3 20070812 (prerelease) (Debian 4.1.2-15)) #1 Thu Aug 30 23:15:12 UTC 2007
Booting GENERIC on Tsunami variation Webbrick using machine vector Webbrick from SRM
Major Options: MAGIC_SYSRQ
Command line: ro root=/dev/sda3 console=ttyS0
memcluster 0, usage 1, start 0, end 256
memcluster 1, usage 0, start 256, end 130964
memcluster 2, usage 1, start 130964, end 131072
memcluster 3, usage 0, start 131072, end 262142
memcluster 4, usage 1, start 262142, end 262144
freeing pages 256:2048
freeing pages 2920:130964
freeing pages 131072:262142
reserving pages 2920:2924
Initial ramdisk at: 0xfffffc007f798000 (7751766 bytes)
2048K Bcache detected; load hit latency 20 cycles, load miss latency 90 cycles
Built 1 zonelists. Total pages: 260351
Kernel command line: ro root=/dev/sda3 console=ttyS0
PID hash table entries: 4096 (order: 12, 32768 bytes)
HWRPB cycle frequency bogus. Estimated 462425469 Hz
Using epoch = 2000
Console: colour dummy device 80x25
Dentry cache hash table entries: 262144 (order: 8, 2097152 bytes)
Inode-cache hash table entries: 131072 (order: 7, 1048576 bytes)
Memory: 2060496k/2097136k available (2012k kernel code, 33064k reserved, 3024k data, 296k init)
Security Framework v1.0.0 initialized
Capability LSM initialized
Mount-cache hash table entries: 512
NET: Registered protocol family 16
EISA bus registered
pci: enabling save/restore of SRM state
Linux Plug and Play Support v0.97 (c) Adam Belay
NET: Registered protocol family 8
NET: Registered protocol family 20
NET: Registered protocol family 2
IP route cache hash table entries: 65536 (order: 6, 524288 bytes)
TCP established hash table entries: 262144 (order: 9, 4194304 bytes)
TCP bind hash table entries: 65536 (order: 6, 524288 bytes)
TCP: Hash tables configured (established 262144 bind 65536)
TCP reno registered
checking if image is initramfs... it is
Freeing initrd memory: 7570k freed
VFS: Disk quotas dquot_6.5.1
Dquot-cache hash table entries: 1024 (order 0, 8192 bytes)
io scheduler noop registered
io scheduler anticipatory registered
io scheduler deadline registered
io scheduler cfq registered (default)
Activating ISA DMA hang workarounds.
isapnp: Scanning for PnP cards...
isapnp: No Plug & Play device found
Serial: 8250/16550 driver $Revision: 1.90 $ 4 ports, IRQ sharing enabled
serial8250: ttyS0 at I/O 0x3f8 (irq = 4) is a 16550A
serial8250: ttyS1 at I/O 0x2f8 (irq = 3) is a 16550A
RAMDISK driver initialized: 16 RAM disks of 8192K size 1024 blocksize
serio: i8042 KBD port at 0x60,0x64 irq 1
serio: i8042 AUX port at 0x60,0x64 irq 12
mice: PS/2 mouse device common for all mice
TCP bic registered
NET: Registered protocol family 1
NET: Registered protocol family 17
atkbd.c: keyboard reset failed on isa0060/serio0
Freeing unused kernel memory: 296k freed
Loading, please wait...
atkbd.c: keyboard reset failed on isa0060/serio1
Begin: Loading essential drivers... ...
Done.
Begin: Running /scripts/init-premount ...
Linux Tulip driver version 1.1.15-NAPI (Feb 27, 2007)
tulip0: EEPROM default media type Autosense.
tulip0: Index #0 - Media 10baseT (#0) described by a 21142 Serial PHY (2) block.
tulip0: Index #1 - Media 10baseT-FDX (#4) described by a 21142 Serial PHY (2) block.
tulip0: Index #2 - Media 100baseTx (#3) described by a 21143 SYM PHY (4) block.
tulip0: Index #3 - Media 100baseTx-FDX (#5) described by a 21143 SYM PHY (4) block.
eth0: Digital DS21142/43 Tulip rev 65 at Port 0x8400, 08:00:2B:86:7D:FF, IRQ 29.
tulip1: EEPROM default media type Autosense.
tulip1: Index #0 - Media 10baseT (#0) described by a 21142 Serial PHY (2) block.
tulip1: Index #1 - Media 10baseT-FDX (#4) described by a 21142 Serial PHY (2) block.
tulip1: Index #2 - Media 100baseTx (#3) described by a 21143 SYM PHY (4) block.
tulip1: Index #3 - Media 100baseTx-FDX (#5) described by a 21143 SYM PHY (4) block.
eth1: Digital DS21142/43 Tulip rev 65 at Port 0x8480, 08:00:2B:86:7D:FC, IRQ 30.
Uniform Multi-Platform E-IDE driver Revision: 7.00alpha2
ide: Assuming 33MHz system bus speed for PIO modes; override with idebus=xx
ALI15X3: IDE controller at PCI slot 0000:00:0d.0
ALI15X3: chipset revision 193
ALI15X3: not 100% native mode: will probe irqs later
ide0: BM-DMA at 0x8800-0x8807, BIOS settings: hda:pio, hdb:pio
ide1: BM-DMA at 0x8808-0x880f, BIOS settings: hdc:pio, hdd:pio
SCSI subsystem initialized
hdc: COMPAQ CDR-8435, ATAPI CD/DVD-ROM drive
ide1 at 0x170-0x177,0x376 on irq 15
tg3.c:v3.77 (May 31, 2007)
eth2: Tigon3 [partno(BCM95703SA31U) rev 1002 PHY(5703)] (PCI:33MHz:64-bit) 1000Base-SX Ethernet 00:10:18:00:78:c5
eth2: RXcsums[1] LinkChgREG[0] MIirq[0] ASF[0] WireSpeed[0] TSOcap[1]
eth2: dma_rwctrl[763f0000] dma_mask[64-bit]
sym0: <895> rev 0x2 at pci 0000:00:0e.0 irq 35
sym0: Symbios NVRAM, ID 7, Fast-40, LVD, parity checking
sym0: open drain IRQ line driver, using on-chip SRAM
sym0: using LOAD/STORE-based firmware.
sym0: SCSI BUS has been reset.
scsi0 : sym-2.2.3
hdc: ATAPI 32X CD-ROM drive, 128kB Cache, DMA
Uniform CD-ROM driver Revision: 3.20
Done.
Begin: Mounting root file system... ...
Begin: Running /scripts/local-top ...
Done.
Begin: Waiting for root file system... ...
scsi 0:0:0:0: Direct-Access FUJITSU MAP3367NP 0106 PQ: 0 ANSI: 3
target0:0:0: tagged command queuing enabled, command queue depth 16.
target0:0:0: Beginning Domain Validation
target0:0:0: asynchronous
target0:0:0: wide asynchronous
target0:0:0: FAST-40 WIDE SCSI 80.0 MB/s ST (25 ns, offset 31)
target0:0:0: Domain Validation skipping write tests
target0:0:0: Ending Domain Validation
scsi 0:0:1:0: Direct-Access COMPAQ BB01821AC3 3B05 PQ: 0 ANSI: 2
target0:0:1: tagged command queuing enabled, command queue depth 16.
target0:0:1: Beginning Domain Validation
target0:0:1: asynchronous
target0:0:1: wide asynchronous
target0:0:1: FAST-40 WIDE SCSI 80.0 MB/s ST (25 ns, offset 15)
target0:0:1: Domain Validation skipping write tests
target0:0:1: Ending Domain Validation
scsi 0:0:2:0: Direct-Access COMPAQ BB01821AC3 3B05 PQ: 0 ANSI: 2
target0:0:2: tagged command queuing enabled, command queue depth 16.
target0:0:2: Beginning Domain Validation
target0:0:2: asynchronous
target0:0:2: wide asynchronous
target0:0:2: FAST-40 WIDE SCSI 80.0 MB/s ST (25 ns, offset 15)
target0:0:2: Domain Validation skipping write tests
target0:0:2: Ending Domain Validation
sd 0:0:0:0: [sda] 71775284 512-byte hardware sectors (36749 MB)
sd 0:0:0:0: [sda] Write Protect is off
sd 0:0:0:0: [sda] Write cache: enabled, read cache: enabled, doesn't support DPO or FUA
sd 0:0:0:0: [sda] 71775284 512-byte hardware sectors (36749 MB)
sd 0:0:0:0: [sda] Write Protect is off
sd 0:0:0:0: [sda] Write cache: enabled, read cache: enabled, doesn't support DPO or FUA
sda: sda1 sda2 sda3 sda4 sda5 sda6 sda7
sd 0:0:0:0: [sda] Attached SCSI disk
sd 0:0:1:0: [sdb] 35565080 512-byte hardware sectors (18209 MB)
sd 0:0:1:0: [sdb] Write Protect is off
sd 0:0:1:0: [sdb] Write cache: disabled, read cache: enabled, supports DPO and FUA
sd 0:0:1:0: [sdb] 35565080 512-byte hardware sectors (18209 MB)
sd 0:0:1:0: [sdb] Write Protect is off
sd 0:0:1:0: [sdb] Write cache: disabled, read cache: enabled, supports DPO and FUA
sdb: sdb1
sd 0:0:1:0: [sdb] Attached SCSI disk
sd 0:0:2:0: [sdc] 35565080 512-byte hardware sectors (18209 MB)
sd 0:0:2:0: [sdc] Write Protect is off
sd 0:0:2:0: [sdc] Write cache: disabled, read cache: enabled, supports DPO and FUA
sd 0:0:2:0: [sdc] 35565080 512-byte hardware sectors (18209 MB)
sd 0:0:2:0: [sdc] Write Protect is off
sd 0:0:2:0: [sdc] Write cache: disabled, read cache: enabled, supports DPO and FUA
sdc: sdc1
sd 0:0:2:0: [sdc] Attached SCSI disk
Done.
Begin: Running /scripts/local-premount ...
Done.
kjournald starting. Commit interval 5 seconds
EXT3-fs: mounted filesystem with ordered data mode.
Begin: Running /scripts/local-bottom ...
Done.
Done.
Begin: Running /scripts/init-bottom ...
Done.
Mount failed for selinuxfs on /selinux: No such file or directory
INIT: version 2.86 booting
Starting the hotplug events dispatcher: udevd.
Synthesizing the initial hotplug events...done.
Waiting for /dev to be fully populated...done.
Setting the system clock.
Activating swap...Adding 2441384k swap on /dev/sda4. Priority:-1 extents:1 across:2441384k
done.
Checking root file system...fsck 1.40.2 (12-Jul-2007)
/dev/sda3: cleanEXT3 FS on sda3, , 9816/122112 fiinternal journal
les, 59777/244140 blocks
done.
Setting the system clock.
Cleaning up ifupdown....
Loading kernel modules...loop: module loaded
done.
Loading device-mapper supportdevice-mapper: ioctl: 4.11.0-ioctl (2006-10-12) initialised: dm-devel@redhat.com
.
Loading device-mapper support.
md: bind
md: bind
md: raid1 personality registered for level 1
raid1: raid set md0 active with 2 out of 2 mirrors
Assembling MD array md0...done (started [2/2]).
Generating udev events for MD arrays...done.
Checking file systems...fsck 1.40.2 (12-Jul-2007)
/dev/sda2: clean, 27/245952 files, 57026/499713 blocks
/dev/sda5: clean, 19310/977280 files, 167268/1953124 blocks
/dev/sda6: clean, 2076/244320 files, 97297/488280 blocks
done.
Setting kernel variables...done.
Mounting local filesystems...kjournald starting. Commit interval 5 seconds
EXT3 FS on sda5, internal journal
EXT3-fs: mounted filesystem with ordered data mode.
kjournald starting. Commit interval 5 seconds
EXT3 FS on sda6, internal journal
EXT3-fs: mounted filesystem with ordered data mode.
kjournald starting. Commit interval 5 seconds
EXT3 FS on md0, internal journal
EXT3-fs: mounted filesystem with ordered data mode.
kjournald starting. Commit interval 5 seconds
EXT3 FS on sda7, internal journal
EXT3-fs: mounted filesystem with ordered data mode.
done.
Activating swapfile swap...done.
Setting up networking....
Configuring network interfaces...done.
Starting portmap daemon....
tg3: eth2: Link is up at 1000 Mbps, full duplex.
tg3: eth2: Flow control is on for TX and on for RX.
Starting NFS common utilities: statd.
Waiting for /var/ftp/ebooks...done.
Waiting for /var/ftp/music...done.
Waiting for /var/ftp/pr0n...done.
Waiting for /var/ftp/software...done.
Waiting for /var/ftp/video...done.
Waiting for /var/ftp/upload...done.
NET: Registered protocol family 10
lo: Disabled Privacy Extensions
Setting console screen modes and fonts.
INIT: Entering runlevel: 2
Starting system log daemon....
Starting kernel log daemon....
Starting virtual private network daemon:.
Starting OpenBSD Secure Shell server: sshd.
Starting portmap daemon...Already running..
ndbd(1943): unaligned trap at 000000012025f34c: 00000001203fbe6d 28 1
ndbd(1943): unaligned trap at 000000012025f358: 00000001203fbe6d 2c 2
ndbd(1943): unaligned trap at 000000012025f34c: 00000001203fbe6d 28 1
ndbd(1943): unaligned trap at 000000012025f358: 00000001203fbe6d 2c 2
Starting MySQL database server: mysqld.
Checking for corrupt, not cleanly closed and upgrade needing tables..
Starting OpenLDAP: slapd.
SpamAssassin Mail Filter Daemon: disabled, see /etc/default/spamassassin
Starting MTA: exim4.
Starting NFS common utilities: statd.
Installing knfsd (copyright (C) 1996 okir@monad.swb.de).
Exporting directories for NFS kernel daemon....
Starting NFS kernel daemon: nfsNFSD: Using /var/lib/nfs/v4recovery as the NFSv4 state recovery directory
dNFSD: starting 90-second grace period
mountd.
Starting internet superserver: inetd.
Starting ftp server: Running: /usr/sbin/pure-ftpd -e -u 1000 -C 4 -O clf:/var/log/pure-ftpd/transfer.log -A -d -B
Starting MD monitoring service: mdadm --monitor.
Starting periodic command scheduler: crond.
Starting web server: apache2.
Debian GNU/Linux lenny/sid ds10.r3blog.nl ttyS0
ds10.r3blog.nl login:
Nullmailer and more MTA changes
Friday October 05th 2007, 9:51 am
Filed under: Writings
Filed under: Writings
Yesterday I’ve discovered nullmailer. It’s a very small, local-only MTA that relays to (a set of) smart hosts. Very nice to run on your servers, which normally have a fully fledged MTA installed (Sendmail or Exim) that only relay to your MX records or your smart host(s). Nullmailer has a sendmail-ish interface so it allows for easy replacement of the currently installed MTA (atleast on Free/OpenBSD, which run some form of a mailwrapper).
Secondly, I’ve setup Exim in relay-only mode on my home firewall. This machine acts as a simple backup MX relayer for the domains I run, plus some of them that I’m secondary MX for. Which reminds me, if you want secondary MX services from one of my hosts, drop me a line.
NIC Replaced
Tuesday October 02nd 2007, 2:16 pm
Filed under: Writings
Filed under: Writings
Today I replaced the Via Rhine in my colo machine for a Intel Pro/100. Previously, if someone would download, the maximum transfer rate would be about 8.5MB/s, while stalling every other connection to the system. This resulted in all sorts of timeouts and disconnects, due to this card using way to many interrupts which caused the system to slow down like a snail. With the new card, I managed to do 10.50MB/s, and all my other sessions were still snappy and responsive. All in all, a nice waste of lunch-time 
MTA Config reworked
Monday October 01st 2007, 1:44 pm
Filed under: Writings
Filed under: Writings
I’ve reworked my MTA setup. Right now, it’s based on exim + openldap + spamassassin + clamav + dovecot and has the following features:
- TLS and IPv6
- All filtering done at smtp time through exiscan
- Per user RBL/Virus/Spam checks and flags to turn selective tests on/off
- SPF Sender / Recipient checks
- DomainKeys checks
- Rate Limiting / Delaying / Tarpitting
- Multi level black/whitelisting of servers, senders and recipients
- Lots and lots of header checks
All in all it has become a pretty cool setup. If you want my configuration, drop me a mail 
