- NZNOG - lists.nznog.org

Xen for network services (aka web/mail/dns etc) - OT?
by Simon 02 Dec '05

02 Dec '05

Hi There, I have been discussing the utilisation of Xen in a production environment on a couple of other lists (nzlug, debian-isp etc), but wondering if anyone from this list is using it in new zealand for serving of network services? Please let me know if this is OT. Would like to hear your experiences if so. Simon

6 6

Re: [nznog] [Fwd: Re: Bizarre spam]
by Nic Wise 01 Dec '05

01 Dec '05

I'd go with zombie's :) the . Then new line new line thing means that the rest of whatever your script does is ignored by the SMTP server, and the big long number might be either a "key" to get the target of an attack (eg, HTTP to this server, present this key, get details back) or something, or the IP / DNS name / something else of it, maybe base64'ed or encrypted somehow. I could see a virus/trojan/etc sitting there, polling a pop3 account, looking for emails with those words in the subject, and some form of payload, then it pings up and goes and does something. Maybe the attacked script was used as a "trigger"?? Damn it's time for a beer. N > -----Original Message----- > From: Justin Cook [mailto:justin(a)skull.co.nz] > Sent: Friday, 2 December 2005 3:01 p.m. > To: nznog(a)list.waikato.ac.nz > Subject: [nznog] [Fwd: Re: Bizarre spam] > > It was, and it's already dealt with. Just looking for the > reason behind it. Adrian is probably on the mark when he > calls it a DoS. > > James Clark wrote: > > > > > Sounds like PHP injection, assume it's PHP. If not ignore me. > > > > These articles explain the cause and fixes in more depth: > > > > http://securephp.damonkohler.com/index.php/Email_Injection > > http://www.nyphp.org/phundamentals/email_header_injection.php > > > > > > Justin Cook wrote: > > > >> I've got a question for the appropriate higher minds. > >> > >> I fixed one of my clients self-built contact forms after I had an > >> inkling that someone was injecting headers into it to use it as a > >> relay. Turns out I was right, but it's beyond me what > they're trying > >> to accomplish: > >> > >> Content-Type: text/plain; charset="us-ascii" > >> MIME-Version: 1.0 > >> Content-Transfer-Encoding: 7bit > >> Subject: which a rising moon now threw from the scattered clouds > >> bcc: charleslegbe(a)aol.com > >> > >> 648a4d46b041327ac30fe4f27a9b72ee > >> . > >> > >> > >> Tons and tons of that just that. What possible use could > this garbage > >> be? Is someone trying to blackhole their domain? > >> > >> Cheers > >> Justin > >> > >> _______________________________________________ > >> NZNOG mailing list > >> NZNOG(a)list.waikato.ac.nz > >> http://list.waikato.ac.nz/mailman/listinfo/nznog > > > > > > > > > > _______________________________________________ > NZNOG mailing list > NZNOG(a)list.waikato.ac.nz > http://list.waikato.ac.nz/mailman/listinfo/nznog >

1 0

Notification of NZRR Database changes
by NZRR Database Notifications 01 Dec '05

01 Dec '05

Dear Colleague, This is to notify you that some object(s) in NZRR database which you either maintain or are listed as to-be-notified have been added, deleted or changed. These objects are used to configure the various NZIX route servers (http://nzix.net/) so you can expect the relevant servers to be reloaded in the near future. The reloading of the servers is staggered over a period of time so that if you are peering with both servers at an exchange, you can maintain at least one BGP session at all times and consequently a full set of routes. --- PREVIOUS OBJECT: route-set: AS9560:RS-ROUTES:AS17435 descr: advertised to AS9560 by WorldxChange Communications - AS17435 members: 202.182.192.0/19^19-29, 58.28.0.0/16^16-29 admin-c: RPA1-NZRR tech-c: RPA1-NZRR notify: rpsl-admin(a)nzix.net notify: nznog(a)list.waikato.ac.nz notify: gsmith(a)wxc.co.nz mnt-by: MAINT-NZRR-NZ changed: rpsl-admin(a)nzix.net 20050308 source: NZRR REPLACED BY: route-set: AS9560:RS-ROUTES:AS17435 descr: advertised to AS9560 by WorldxChange Communications LTD - AS17435 members: 58.28.0.0/16^16-29, 202.182.192.0/19^19-29 admin-c: RPA1-NZRR tech-c: RPA1-NZRR notify: rpsl-admin(a)nzix.net notify: nznog(a)list.waikato.ac.nz notify: noc(a)wxnz.net mnt-by: MAINT-NZRR-NZ changed: rpsl-admin(a)nzix.net 20051202 source: NZRR

1 0

Bizarre spam
by Justin Cook 01 Dec '05

01 Dec '05

I've got a question for the appropriate higher minds. I fixed one of my clients self-built contact forms after I had an inkling that someone was injecting headers into it to use it as a relay. Turns out I was right, but it's beyond me what they're trying to accomplish: Content-Type: text/plain; charset="us-ascii" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit Subject: which a rising moon now threw from the scattered clouds bcc: charleslegbe(a)aol.com 648a4d46b041327ac30fe4f27a9b72ee . Tons and tons of that just that. What possible use could this garbage be? Is someone trying to blackhole their domain? Cheers Justin

2 1

[Fwd: Re: Bizarre spam]
by Justin Cook 01 Dec '05

01 Dec '05

It was, and it's already dealt with. Just looking for the reason behind it. Adrian is probably on the mark when he calls it a DoS. James Clark wrote: > > Sounds like PHP injection, assume it's PHP. If not ignore me. > > These articles explain the cause and fixes in more depth: > > http://securephp.damonkohler.com/index.php/Email_Injection > http://www.nyphp.org/phundamentals/email_header_injection.php > > > Justin Cook wrote: > >> I've got a question for the appropriate higher minds. >> >> I fixed one of my clients self-built contact forms after I had an >> inkling that someone was injecting headers into it to use it as a >> relay. Turns out I was right, but it's beyond me what they're trying >> to accomplish: >> >> Content-Type: text/plain; charset="us-ascii" >> MIME-Version: 1.0 >> Content-Transfer-Encoding: 7bit >> Subject: which a rising moon now threw from the scattered clouds >> bcc: charleslegbe(a)aol.com >> >> 648a4d46b041327ac30fe4f27a9b72ee >> . >> >> >> Tons and tons of that just that. What possible use could this garbage >> be? Is someone trying to blackhole their domain? >> >> Cheers >> Justin >> >> _______________________________________________ >> NZNOG mailing list >> NZNOG(a)list.waikato.ac.nz >> http://list.waikato.ac.nz/mailman/listinfo/nznog > > >

2 1

Notification of NZRR Database changes
by NZRR Database Notifications 01 Dec '05

01 Dec '05

Dear Colleague, This is to notify you that some object(s) in NZRR database which you either maintain or are listed as to-be-notified have been added, deleted or changed. These objects are used to configure the various NZIX route servers (http://nzix.net/) so you can expect the relevant servers to be reloaded in the near future. The reloading of the servers is staggered over a period of time so that if you are peering with both servers at an exchange, you can maintain at least one BGP session at all times and consequently a full set of routes. --- OBJECT BELOW CREATED: route-set: AS9560:RS-ROUTES:AS18119 descr: Route set advertised to AS9560 by Linux Net - AS18119 members: 202.46.160.0/20^20-29, 202.126.80.0/21^21-29, 202.21.136.0/23^23-29, 202.61.2.0/23^23-29, 192.107.113.0/24^24-29, 202.36.44.0/24^24-29, 202.37.136.0/24^24-29, 202.49.144.0/24^24-29, 202.49.249.0/24^24-29 admin-c: RPA1-NZRR tech-c: RPA1-NZRR notify: rpsl-admin(a)nzix.net notify: nznog(a)list.waikato.ac.nz notify: lincoln(a)linuxnet.co.nz mnt-by: MAINT-NZRR-NZ changed: rpsl-admin(a)nzix.net 20051202 source: NZRR

1 0

Re: [nznog] Bizarre spam]
by Justin Cook 01 Dec '05

01 Dec '05

I think they're going to 30 or 40 different AOL addresses. Just trashed about 800 of them so I can't really go back and check for sure. They're being sent from a lot of different IP addresses, some of them in the same range but not always. Probably zombies. Seems like a lot of work to go to for fuck all. Kitto, Adrian - Axon AKL wrote: >Does it all BCC the same mailbox? > >Could be an old fashion dos on the mailbox... (seen it before) > >Cheers > >Adrian > > >-----Original Message----- >From: Justin Cook [mailto:justin(a)skull.co.nz] > >Sent: Friday, 2 December 2005 2:54 p.m. >To: nznog(a)list.waikato.ac.nz >Subject: [nznog] Bizarre spam > >I've got a question for the appropriate higher minds. > >I fixed one of my clients self-built contact forms after I had an > >inkling that someone was injecting headers into it to use it as a relay. > >Turns out I was right, but it's beyond me what they're trying to >accomplish: > >Content-Type: text/plain; charset="us-ascii" >MIME-Version: 1.0 >Content-Transfer-Encoding: 7bit >Subject: which a rising moon now threw from the scattered clouds >bcc: charleslegbe(a)aol.com > >648a4d46b041327ac30fe4f27a9b72ee >. > > >Tons and tons of that just that. What possible use could this garbage > >be? Is someone trying to blackhole their domain? > >Cheers >Justin > >_______________________________________________ >NZNOG mailing list >NZNOG(a)list.waikato.ac.nz >http://list.waikato.ac.nz/mailman/listinfo/nznog > >-- >The information contained in this e-mail message is intended only for the >use of the person or entity to whom it is addressed and may contain >information that is CONFIDENTIAL and may be exempt from disclosure under >applicable laws. > >If you read this message and are not the addressee you are notified that >use, dissemination, distribution, or reproduction of this message is >prohibited. If you have received this message in error, please notify us >immediately and delete the original message. You should scan this message >and any attached files for viruses. > >Axon accepts no liability for any loss caused either directly or >indirectly by a virus arising from the use of this message or any >attached file. > > >

1 0

JSR.COM Prefix List Update (and peering request)
by John S Russell 01 Dec '05

01 Dec '05

Hiya all (and sundry), For those of you who peer with jsr.com, here's a prefix update. It's a massive update, since I am DOUBLING the amount of advertised prefixes[1], like woah. New list can be found here: http://jsr.com/prefix For those of you who are not currently peering with jsr.com, please consider doing so. jsr.com is a very very tiny boutique and exclusive as hell co-location service. It's run by geeks, for geeks, generally to service geek whims and projects. There's a fair wack of content on there, including: - The personal mail and web servers for various notable NZ geeks! - [Unable to state due to NDA compliance!] - Up-To-Date Debian Mirrors! - [Unable to state due to a personal promise!] - [Unable to state for fear of reprisal!] If you'd like to set up a direct peering session via APE, please contact jsr(a)jsr.com to arrange it (TelstraClear staff, I'm looking forward to hearing from you!). Sadly we do not yet have a WIX presence, but this is in our roadmap for future growth.[2] If you'd like to discuss co-location in our Sky Tower facility, please also contact jsr(a)jsr.com and have a list of reasons why you're geeky enough or your project is cool enough to merit the allocation of our sweet, precious, incandescent with awesomeness[3], rack units on L48. Cheers, JSR [1] To two. [2] Mind you, so is "Evolve into energy beings, rule universe from on high." [3] Incandescence may actually be caused by thermal dissipation from servers. YMMV.

1 0

Remote server booting
by Simon 01 Dec '05

01 Dec '05

Hi There, Im wondering if anyone has used or is using a good solution to remote boot (from complete power down) servers and equiptment? This i have done in the past by having the bios on the server set to reboot after power fail and that takes care of the rest along with good load UPS's and backup power. But what if you acually had to shut down a server for some reason out-there (backup power fails)? Regards, Simon

19 23

Re: [nznog] Remote server booting
by murphy 01 Dec '05

01 Dec '05

If you are using HP machines (other mobs may have a similar setup) you can take advantage of iLO - Integrated Lights Out. It is a 2nd or 3rd network card in the machine that acts as a management interface. It can be accessed by telnet, ssh, or web (hopefully your core network is still up) and provides access to virtual power buttons, mounting ISO's remotely for full system rebuilds, etc. I spec it in standard with all my server purchases. In scenarios where you are co-locating then this is a must. Providing the network is up and the power cable is plugged into the server (whether the server be physically on or off) then you have full control over its behaviour. Worth a look into. On 12/1/05, nznog-request(a)list.waikato.ac.nz <nznog-request(a)list.waikato.ac.nz> wrote: > Send NZNOG mailing list submissions to > nznog(a)list.waikato.ac.nz > > To subscribe or unsubscribe via the World Wide Web, visit > http://list.waikato.ac.nz/mailman/listinfo/nznog > or, via email, send a message with subject or body 'help' to > nznog-request(a)list.waikato.ac.nz > > You can reach the person managing the list at > nznog-owner(a)list.waikato.ac.nz > > When replying, please edit your Subject line so it is more specific > than "Re: Contents of NZNOG digest..." > > > Today's Topics: > > 1. Re: Remote server booting (Regan Murphy) > 2. Re: Remote server booting (Erin Salmon - Unleash Computers Ltd) > 3. NZ Online Security Day (Matthew Poole) > 4. Re: NZ Online Security Day (Juha Saarinen) > 5. Re: Remote server booting (Drew Broadley) > 6. Re: Remote server booting (Joe Abley) > 7. Re: Remote server booting (Gordon Smith) > 8. Re: Remote server booting (Simon Lyall) > 9. Re: Remote server booting (Daniel Lawson) > 10. Re: Remote server booting (Barry Murphy) > 11. Re: Remote server booting (Jeremy Strachan) > 12. Re: Remote server booting (Simon) > 13. Re: Remote server booting (Tony Wicks) > 14. Re: NZ Online Security Day (Steven Heath) > 15. Re: Remote server booting (Nathan Ward) > 16. Re: NZ Online Security Day (Erin Salmon - Unleash Computers Ltd) > 17. Re: NZ Online Security Day (neil gardner) > 18. Re: NZ Online Security Day (Mark Foster) > 19. Xen for network services (aka web/mail/dns etc) - OT? (Simon) > 20. Re: Xen for network services (aka web/mail/dns etc) - OT? > (Erin Salmon - Unleash Computers Ltd) > 21. Re: Xen for network services (aka web/mail/dns etc) - OT? > (Richard Patterson) > 22. Re: Xen for network services (aka web/mail/dns etc) - OT? > (Andrew Thompson) > 23. Re: Xen for network services (aka web/mail/dns etc) - OT? > (Richard Patterson) > 24. Re: Xen for network services (aka web/mail/dns etc) - OT? (Martin) > > > > ---------- Forwarded message ---------- > From: "Regan Murphy" <regan.murphy(a)oasystems.co.nz> > To: "James Clark" <jamesc(a)bofh.co.nz>, <criggie(a)criggie.dyndns.org> > Date: Wed, 30 Nov 2005 12:08:02 +1300 > Subject: Re: [nznog] Remote server booting > > We no longer carry this range of product, and I beleive that the > > manufacturers have discontinued some of the range There website has > > gone but you can try to call them on 0800smitch > > Black Box used to have a local website and produce a Catalog, not sure > if they still do in NZ. They carry a range of remote power units, have > a browse - I'm sure there is something suitable there: > > http://www.blackbox.com/Catalog/Category.aspx?cid=183,1324,1327 > > > -- > Regan > > > > > > ---------- Forwarded message ---------- > From: "Erin Salmon - Unleash Computers Ltd" <erin(a)unleash.co.nz> > To: "Regan Murphy" <regan.murphy(a)oasystems.co.nz>, "James Clark" <jamesc(a)bofh.co.nz>, <criggie(a)criggie.dyndns.org> > Date: Wed, 30 Nov 2005 12:21:09 +1300 > Subject: Re: [nznog] Remote server booting > Black Box does still sell in NZ, but I'm not sure if they have a local > office here or just bring stuff over as required. sales(a)blackbox.com.au. > > Their stuff is good, but on the whole very expensive. > > VMWare, Xen, UML etc all offer remote "power cycling" of hosted domains, but > of course, if the root domain goes down you're still stuck. Needless to say > the other advantages of virtualisation make it pretty attractive. > > Cheers, > > Erin Salmon > Managing Director > Unleash Computers Ltd > Unleash Networks Ltd > Mobile: 021 877 913 > Landline: 03 365 1273 > > -----Original Message----- > From: Regan Murphy [mailto:regan.murphy(a)oasystems.co.nz] > Sent: 30 November 2005 12:08 p.m. > To: James Clark; criggie(a)criggie.dyndns.org > Cc: nznog(a)list.waikato.ac.nz > Subject: Re: [nznog] Remote server booting > > > We no longer carry this range of product, and I beleive that the > > manufacturers have discontinued some of the range There website has > > gone but you can try to call them on 0800smitch > > Black Box used to have a local website and produce a Catalog, not sure > if they still do in NZ. They carry a range of remote power units, have > a browse - I'm sure there is something suitable there: > > http://www.blackbox.com/Catalog/Category.aspx?cid=183,1324,1327 > > > -- > Regan > > _______________________________________________ > NZNOG mailing list > NZNOG(a)list.waikato.ac.nz > http://list.waikato.ac.nz/mailman/listinfo/nznog > > > > > > ---------- Forwarded message ---------- > From: Matthew Poole <matt(a)p00le.net> > To: nznog(a)list.waikato.ac.nz > Date: Wed, 30 Nov 2005 12:38:20 +1300 (NZDT) > Subject: [nznog] NZ Online Security Day > > Is apparently today. One of my co-workers discovered this when he logged > into the WestpacTrust online banking site. > Anyone else heard of this? It was obviously very well publicised, seeing > as a whole company of geeks hadn't heard of it. > > -- > Matthew Poole > "Don't use force. Get a bigger hammer." > > > > > > ---------- Forwarded message ---------- > From: Juha Saarinen <juha(a)saarinen.org> > To: Matthew Poole <matt(a)p00le.net> > Date: Wed, 30 Nov 2005 12:52:12 +1300 > Subject: Re: [nznog] NZ Online Security Day > Matthew Poole wrote: > > Is apparently today. One of my co-workers discovered this when he logged > > into the WestpacTrust online banking site. > > Anyone else heard of this? It was obviously very well publicised, seeing > > as a whole company of geeks hadn't heard of it. > > It's a silly stunt that is best ignored. I don't think geeks are > interested in downloading Hector the Virus Vect... err, Protector, in > order to celebrate Online Security Day. > > -- > Juha > > > > > > ---------- Forwarded message ---------- > From: Drew Broadley <drew(a)corrupt.co.nz> > To: criggie(a)criggie.dyndns.org > Date: Wed, 30 Nov 2005 13:57:56 +1300 > Subject: Re: [nznog] Remote server booting > criggie(a)criggie.dyndns.org wrote: > >>>Im wondering if anyone has used or is using a good solution to remote > >>>boot (from complete power down) servers and equiptment? > > > > > > > > Theres a box called a smitch, which you can remotely turn on or off using > > a SMS message. They're quite pricy at around $300 NZ, but you could put > > one in a place thats otherwise hard to get to... someone's roof-space for > > example. > > > > http://www.cellpower.co.nz/Smitch%20switch.htm <-- out of stock > > http://www.smitch.co.nz/ <-- goes to domainz > > > > They do need a basic lesson in "how to market a product" though :/ > > For a cheaper option, http://ito.client.topshelfmedia.co.nz/Home > > - Drew > > > > > > ---------- Forwarded message ---------- > From: Joe Abley <jabley(a)isc.org> > To: Simon <greminn(a)gmail.com> > Date: Tue, 29 Nov 2005 20:02:06 -0500 > Subject: Re: [nznog] Remote server booting > > On 28-Nov-2005, at 22:44, Simon wrote: > > > Im wondering if anyone has used or is using a good solution to remote > > boot (from complete power down) servers and equiptment? > > If you'd also like a proper serial console (and your server's bios > doesn't already provide you with one) you could do worse than <http:// > www.realweasel.com/>. It's probably hugely expensive if all you want > is a remote power cycle capability though. > > > Joe > > > > > > ---------- Forwarded message ---------- > From: "Gordon Smith" <gsmith(a)wxc.co.nz> > To: <NZNOG(a)list.waikato.ac.nz> > Date: Wed, 30 Nov 2005 14:04:31 +1300 > Subject: Re: [nznog] Remote server booting > These guys also do good solutions: > > http://www.cyclades.com/ > > > > > > ---------- Forwarded message ---------- > From: Simon Lyall <simon(a)darkmere.gen.nz> > To: nznog <NZNOG(a)list.waikato.ac.nz> > Date: Wed, 30 Nov 2005 14:18:49 +1300 (NZDT) > Subject: Re: [nznog] Remote server booting > On Wed, 30 Nov 2005, Gordon Smith wrote: > > These guys also do good solutions: > > > > http://www.cyclades.com/ > > <plug> > > If anyone is going to Linux Conf in Dunedin in January then we are having > a talk by John Bordin from Cyclades on this area at the Sysadmin Miniconf, > See http://sysadmin.miniconf.org/presentations.html (3rd one down) > > The rest of the programme is being finalized and should be published in a > couple of days. > </plug> > > -- > Simon J. Lyall | Very Busy | Web: http://www.darkmere.gen.nz/ > "To stay awake all night adds a day to your life" - Stilgar | eMT. > > > > > > ---------- Forwarded message ---------- > From: Daniel Lawson <daniel(a)wand.net.nz> > To: Joe Abley <jabley(a)isc.org>, NZNOG(a)list.waikato.ac.nz > Date: Wed, 30 Nov 2005 14:33:39 +1300 > Subject: Re: [nznog] Remote server booting > > > > > >>Im wondering if anyone has used or is using a good solution to remote > >>boot (from complete power down) servers and equiptment? > >> > >> > > > >If you'd also like a proper serial console (and your server's bios > >doesn't already provide you with one) you could do worse than <http:// > >www.realweasel.com/>. It's probably hugely expensive if all you want > >is a remote power cycle capability though. > > > > > > I recently picked up a second hand Compaq RILOE card on trademe for > about $70 (there's still a few there). Provides local console > redirection via http, keyboard/mouse intercept, remote power control > (with a custom powercable that fits in between the physical power button > and the psu), etc. These models are a bit old now, but the modern > equivalents (such as the realweasel) look good, and I'd consider them > well worth the money. > > -- > Daniel Lawson > WAND Group, Computer Science Department > University of Waikato > email: daniel(a)wand.net.nz phone: +64 7 838 4136 > > > > > > ---------- Forwarded message ---------- > From: Barry Murphy <barry(a)unix.co.nz> > To: Daniel Lawson <daniel(a)wand.net.nz>, Joe Abley <jabley(a)isc.org>, NZNOG(a)list.waikato.ac.nz > Date: Wed, 30 Nov 2005 15:18:29 +1300 > Subject: Re: [nznog] Remote server booting > Hmmm, so basically an IP-KVM ? Does it have a network port or does it share > the systems; do you assign an IP to it and it gives a web based console? > > I'm wondering if i can put this into a system, attach it to a KVM on site > and control up to 8 pc's; though it doesnt appear to have a video output. > > Seems pretty interesting, I may get one to play with. > > Regards > Barry > > > ----- Original Message ----- > From: "Daniel Lawson" <daniel(a)wand.net.nz> > To: "Joe Abley" <jabley(a)isc.org>; <NZNOG(a)list.waikato.ac.nz> > Sent: Wednesday, November 30, 2005 2:33 PM > Subject: Re: [nznog] Remote server booting > > > > > > > > > > >>Im wondering if anyone has used or is using a good solution to remote > > >>boot (from complete power down) servers and equiptment? > > >> > > >> > > > > > >If you'd also like a proper serial console (and your server's bios > > >doesn't already provide you with one) you could do worse than <http:// > > >www.realweasel.com/>. It's probably hugely expensive if all you want > > >is a remote power cycle capability though. > > > > > > > > > > I recently picked up a second hand Compaq RILOE card on trademe for > > about $70 (there's still a few there). Provides local console > > redirection via http, keyboard/mouse intercept, remote power control > > (with a custom powercable that fits in between the physical power button > > and the psu), etc. These models are a bit old now, but the modern > > equivalents (such as the realweasel) look good, and I'd consider them > > well worth the money. > > > > -- > > Daniel Lawson > > WAND Group, Computer Science Department > > University of Waikato > > email: daniel(a)wand.net.nz phone: +64 7 838 4136 > > > > _______________________________________________ > > NZNOG mailing list > > NZNOG(a)list.waikato.ac.nz > > http://list.waikato.ac.nz/mailman/listinfo/nznog > > > > > > > > ---------- Forwarded message ---------- > From: "Jeremy Strachan" <JeremyS(a)cclnz.co.nz> > To: "Barry Murphy" <barry(a)unix.co.nz>, "Daniel Lawson" <daniel(a)wand.net.nz>, "Joe Abley" <jabley(a)isc.org>, <NZNOG(a)list.waikato.ac.nz> > Date: Wed, 30 Nov 2005 15:26:03 +1300 > Subject: Re: [nznog] Remote server booting > > Adderlink. > > We use two (Ak/Wn) attached to our 16 port KVM's to provide IP access to > the consoles. > > The box has one network port and runs a commercial version of VNC, which > behaves better than free VNC. > > Attach it to a UPS, and you can have access to your consoles with power > on or off. > > > Jeremy > > > -----Original Message----- > From: Barry Murphy [mailto:barry(a)unix.co.nz] > Sent: Wednesday, 30 November 2005 3:18 p.m. > To: Daniel Lawson; Joe Abley; NZNOG(a)list.waikato.ac.nz > Subject: Re: [nznog] Remote server booting > > Hmmm, so basically an IP-KVM ? Does it have a network port or does it > share the systems; do you assign an IP to it and it gives a web based > console? > > I'm wondering if i can put this into a system, attach it to a KVM on > site and control up to 8 pc's; though it doesnt appear to have a video > output. > > Seems pretty interesting, I may get one to play with. > > Regards > Barry > > > > > > ---------- Forwarded message ---------- > From: Simon <greminn(a)gmail.com> > To: NZNOG(a)list.waikato.ac.nz > Date: Wed, 30 Nov 2005 15:31:34 +1300 > Subject: Re: [nznog] Remote server booting > Same here: > > http://www.rextron.com/products/kips01.htm > > Works great, connects to a 8 port KVM switch. It even runs linux, so > you can ssh to it. > > On 11/30/05, Jeremy Strachan <JeremyS(a)cclnz.co.nz> wrote: > > > > Adderlink. > > > > We use two (Ak/Wn) attached to our 16 port KVM's to provide IP access to > > the consoles. > > > > The box has one network port and runs a commercial version of VNC, which > > behaves better than free VNC. > > > > Attach it to a UPS, and you can have access to your consoles with power > > on or off. > > > > > > Jeremy > > > > > > -----Original Message----- > > From: Barry Murphy [mailto:barry(a)unix.co.nz] > > Sent: Wednesday, 30 November 2005 3:18 p.m. > > To: Daniel Lawson; Joe Abley; NZNOG(a)list.waikato.ac.nz > > Subject: Re: [nznog] Remote server booting > > > > Hmmm, so basically an IP-KVM ? Does it have a network port or does it > > share the systems; do you assign an IP to it and it gives a web based > > console? > > > > I'm wondering if i can put this into a system, attach it to a KVM on > > site and control up to 8 pc's; though it doesnt appear to have a video > > output. > > > > Seems pretty interesting, I may get one to play with. > > > > Regards > > Barry > > > > _______________________________________________ > > NZNOG mailing list > > NZNOG(a)list.waikato.ac.nz > > http://list.waikato.ac.nz/mailman/listinfo/nznog > > > > > > > > ---------- Forwarded message ---------- > From: Tony Wicks <tony(a)prophecy.net.nz> > To: Barry Murphy <barry(a)unix.co.nz> > Date: Wed, 30 Nov 2005 15:37:04 +1300 > Subject: Re: [nznog] Remote server booting > Yes, Cyclades does KVM over IP (for example, you can RDP to the KVM) and > also a power strip that lets you power cycle each outlet on demand (as > well as serial console of course). If you need any info drop me a line > (can source them if you like.) > > > > Barry Murphy wrote: > > Hmmm, so basically an IP-KVM ? Does it have a network port or does it share > > the systems; do you assign an IP to it and it gives a web based console? > > > > I'm wondering if i can put this into a system, attach it to a KVM on site > > and control up to 8 pc's; though it doesnt appear to have a video output. > > > > Seems pretty interesting, I may get one to play with. > > > > Regards > > Barry > > > > > > ---------- Forwarded message ---------- > From: Steven Heath <sheath(a)paradise.net.nz> > To: Juha Saarinen <juha(a)saarinen.org> > Date: Wed, 30 Nov 2005 15:39:16 +1300 (NZDT) > Subject: Re: [nznog] NZ Online Security Day > Quoting Juha Saarinen <juha(a)saarinen.org>: > > > Matthew Poole wrote: > > > Is apparently today. One of my co-workers discovered this when he > > logged > > > into the WestpacTrust online banking site. > > > Anyone else heard of this? It was obviously very well publicised, > > seeing > > > as a whole company of geeks hadn't heard of it. > > > > It's a silly stunt that is best ignored. I don't think geeks are > > interested in downloading Hector the Virus Vect... err, Protector, in > > order to celebrate Online Security Day. > > The Net Nanny, err, Net Safe people did a press release about it 2 days ago. > Lots of lead time and all that. Seems they proposed the idea about six months > ago but no one cared... > > http://www.netsafe.org.nz/isgnews/text_generation_release.aspx > > I think I will just stick to Bonzi Buddy. > > > Steven Heath > .nz news & views > +64 21 706 067 > www.nznews.org.nz > > "America is the only nation in history which has gone directly from barbarism > to degeneration without the usual interval of civilization." > > Georges Clemenceau > > > > > > ---------- Forwarded message ---------- > From: "Nathan Ward" <nznog(a)daork.net> > To: nznog(a)list.waikato.ac.nz > Date: Wed, 30 Nov 2005 15:57:23 +1300 (NZDT) > Subject: Re: [nznog] Remote server booting > > Im wondering if anyone has used or is using a good solution to remote > > boot (from complete power down) servers and equiptment? > > > > This i have done in the past by having the bios on the server set to > > reboot after power fail and that takes care of the rest along with > > good load UPS's and backup power. But what if you acually had to shut > > down a server for some reason out-there (backup power fails)? > > Most of the replies to this ignored his last sentence. > Many (most?) of the BIOSes/motherboards I have seen can either be in > "Power off" or "Last state" when power is reconnected. Few have a "Power > on" option. > > If he shuts down a server, the hardware will power down, and when he power > cycles with his remote power strip, the box stays in "Power off" or the > "Last state" which is.. off. > > If one looses power at a site, the servers reliant on the failed power > rail should shut themselves down before the UPS runs out, in order to > prevent filesystem corruption, which can prolong an outage. > > I see the only real solutions to this being some flavour of lights out > card, or of course, monkeys with cellphones. > > -- > Nathan Ward > > > > > > ---------- Forwarded message ---------- > From: "Erin Salmon - Unleash Computers Ltd" <erin(a)unleash.co.nz> > To: "Steven Heath" <sheath(a)paradise.net.nz>, "Juha Saarinen" <juha(a)saarinen.org> > Date: Wed, 30 Nov 2005 16:34:13 +1300 > Subject: Re: [nznog] NZ Online Security Day > It is incredibly easy to underestimate the volumes of stupid people out > there. You'll notice that most govt department website have things like: > > Name: > Eg. John Smith > > On their contact forms... They don't do that for no reason. > > A bit of education (even if it is pathetically light-weight) can't be a bad > thing. > > Just my $0.02. > > Erin Salmon > Managing Director > Unleash Computers Ltd > Unleash Networks Ltd > Mobile: 021 877 913 > Landline: 03 365 1273 > > -----Original Message----- > From: Steven Heath [mailto:sheath(a)paradise.net.nz] > Sent: 30 November 2005 3:39 p.m. > To: Juha Saarinen > Cc: nznog(a)list.waikato.ac.nz > Subject: Re: [nznog] NZ Online Security Day > > Quoting Juha Saarinen <juha(a)saarinen.org>: > > > Matthew Poole wrote: > > > Is apparently today. One of my co-workers discovered this when he > > logged > > > into the WestpacTrust online banking site. > > > Anyone else heard of this? It was obviously very well publicised, > > seeing > > > as a whole company of geeks hadn't heard of it. > > > > It's a silly stunt that is best ignored. I don't think geeks are > > interested in downloading Hector the Virus Vect... err, Protector, in > > order to celebrate Online Security Day. > > The Net Nanny, err, Net Safe people did a press release about it 2 days ago. > Lots of lead time and all that. Seems they proposed the idea about six > months > ago but no one cared... > > http://www.netsafe.org.nz/isgnews/text_generation_release.aspx > > I think I will just stick to Bonzi Buddy. > > > Steven Heath > .nz news & views > +64 21 706 067 > www.nznews.org.nz > > "America is the only nation in history which has gone directly from > barbarism > to degeneration without the usual interval of civilization." > > Georges Clemenceau > > _______________________________________________ > NZNOG mailing list > NZNOG(a)list.waikato.ac.nz > http://list.waikato.ac.nz/mailman/listinfo/nznog > > > > > > ---------- Forwarded message ---------- > From: "neil gardner" <neil.gardner(a)alliedtelesyn.co.nz> > To: <sheath(a)paradise.net.nz>,<juha(a)saarinen.org>, <erin(a)unleash.co.nz> > Date: Wed, 30 Nov 2005 16:40:02 +1300 > Subject: Re: [nznog] NZ Online Security Day > Hmmmm. That reminds me of some sort of saying... Something about a little knowledge being a dangerous thing... > > Aha - Here we go: > > "A little learning is a dangerous thing; drink deep, or taste not the Pierian spring: there shallow draughts intoxicate the brain, and drinking largely sobers us again. Alexander Pope (1688-1744) - An Essay on Criticism." > > http://en.wikipedia.org/wiki/Alexander_Pope > > And on balance I'd agree - letting someone think they're safer if they take the most lightweight precautions probably isn't a good idea. > > Cheers - N > > > > Neil Gardner > Product Manager > Allied Telesyn Research Ltd > New Zealand > +64 3 339-9509 (ph) > +64 3 339-3001 (fax) > > >>> "Erin Salmon - Unleash Computers Ltd" <erin(a)unleash.co.nz> 30/11/2005 4:34 p.m. >>> > It is incredibly easy to underestimate the volumes of stupid people out > there. You'll notice that most govt department website have things like: > > Name: > Eg. John Smith > > On their contact forms... They don't do that for no reason. > > A bit of education (even if it is pathetically light-weight) can't be a bad > thing. > > Just my $0.02. > > Erin Salmon > Managing Director > Unleash Computers Ltd > Unleash Networks Ltd > Mobile: 021 877 913 > Landline: 03 365 1273 > > -----Original Message----- > From: Steven Heath [mailto:sheath(a)paradise.net.nz] > Sent: 30 November 2005 3:39 p.m. > To: Juha Saarinen > Cc: nznog(a)list.waikato.ac.nz > Subject: Re: [nznog] NZ Online Security Day > > Quoting Juha Saarinen <juha(a)saarinen.org>: > > > Matthew Poole wrote: > > > Is apparently today. One of my co-workers discovered this when he > > logged > > > into the WestpacTrust online banking site. > > > Anyone else heard of this? It was obviously very well publicised, > > seeing > > > as a whole company of geeks hadn't heard of it. > > > > It's a silly stunt that is best ignored. I don't think geeks are > > interested in downloading Hector the Virus Vect... err, Protector, in > > order to celebrate Online Security Day. > > The Net Nanny, err, Net Safe people did a press release about it 2 days ago. > Lots of lead time and all that. Seems they proposed the idea about six > months > ago but no one cared... > > http://www.netsafe.org.nz/isgnews/text_generation_release.aspx > > I think I will just stick to Bonzi Buddy. > > > Steven Heath > .nz news & views > +64 21 706 067 > www.nznews.org.nz > > "America is the only nation in history which has gone directly from > barbarism > to degeneration without the usual interval of civilization." > > Georges Clemenceau > > _______________________________________________ > NZNOG mailing list > NZNOG(a)list.waikato.ac.nz > http://list.waikato.ac.nz/mailman/listinfo/nznog > > _______________________________________________ > NZNOG mailing list > NZNOG(a)list.waikato.ac.nz > http://list.waikato.ac.nz/mailman/listinfo/nznog > > NOTICE: This message contains privileged and confidential > information intended only for the use of the addressee > named above. If you are not the intended recipient of > this message you are hereby notified that you must not > disseminate, copy or take any action in reliance on it. > If you have received this message in error please > notify Allied Telesyn Research Ltd immediately. > Any views expressed in this message are those of the > individual sender, except where the sender has the > authority to issue and specifically states them to > be the views of Allied Telesyn Research. > > > > > > ---------- Forwarded message ---------- > From: "Mark Foster" <blakjak(a)blakjak.net> > To: nznog(a)list.waikato.ac.nz > Date: Wed, 30 Nov 2005 16:55:44 +1300 (NZDT) > Subject: Re: [nznog] NZ Online Security Day > (large CC list removed...) > > > Hmmmm. That reminds me of some sort of saying... Something about a little > > knowledge being a dangerous thing... > > > > Aha - Here we go: > > > > "A little learning is a dangerous thing; drink deep, or taste not the > > Pierian spring: there shallow draughts intoxicate the brain, and drinking > > largely sobers us again. Alexander Pope (1688-1744) - An Essay on > > Criticism." > > > > http://en.wikipedia.org/wiki/Alexander_Pope > > > > And on balance I'd agree - letting someone think they're safer if they > > take the most lightweight precautions probably isn't a good idea. > > > > Cheers - N > > > > > > *snip* > > You beat me to the punch Neil. > The problem with 'a little knowledge' is you end up with a rash of 'Help! > I'm being DoS'd by (insert IP of your ISP's DNS Servers here)!!! BAN > THEM!' > > Aka the little bit of knowledge is 'knowing you need a firewall to be > safe' and the better bit of knowledge is 'knowing the difference betweem > an attack, and innocent / important internet traffic'. Or at least how to > find out the difference! > > But yeah, given the lack of PR that "Online Security Day" received in the > IT Community it can hardly be given any sort of credibility... you think > buy in from a few major IT outfits and ISPs would be kinda useful? > > Almost as press-worthy as Microsofts announcement re Maori language > support in Windows XP? (When its been available to varying degrees within > alternative OS's for quite some time..)[1] > > Mark. > > [1] I give credit to the fact they've finished it and packaged it. As I > understand it most of the Maori Language work for Linux is in an > incomplete state.... then again when you're throwing thousands of dollars > at a project you can expect to have an edge on small open-source efforts I > guess! > > > > > > > > ---------- Forwarded message ---------- > From: Simon <greminn(a)gmail.com> > To: NZNOG(a)list.waikato.ac.nz > Date: Wed, 30 Nov 2005 16:56:58 +1300 > Subject: [nznog] Xen for network services (aka web/mail/dns etc) - OT? > Hi There, > > I have been discussing the utilisation of Xen in a production > environment on a couple of other lists (nzlug, debian-isp etc), but > wondering if anyone from this list is using it in new zealand for > serving of network services? Please let me know if this is OT. > > Would like to hear your experiences if so. > > Simon > > > > > > ---------- Forwarded message ---------- > From: "Erin Salmon - Unleash Computers Ltd" <erin(a)unleash.co.nz> > To: <nznog(a)list.waikato.ac.nz> > Date: Wed, 30 Nov 2005 17:04:17 +1300 > Subject: Re: [nznog] Xen for network services (aka web/mail/dns etc) - OT? > Hi, > > We're using it extensively. We're offering it as a product to customers, > running DNS, qmail, apache, and a number of custom apps on it. The stable > releases are rock solidly reliable, and the development efforts behind it > are giving it new features all the time. At the moment with stable releases > you're limited to running a domain on a single CPU, which is a bit of a > pain, but the next release is going to include virtual processors, so > multiple "real" processors can be sent instructions from one master virtual > processor to which domains are assigned. > > Cheers, > > Erin Salmon > Managing Director > Unleash Computers Ltd > Unleash Networks Ltd > Mobile: 021 877 913 > Landline: 03 365 1273 > > -----Original Message----- > From: Simon [mailto:greminn(a)gmail.com] > Sent: 30 November 2005 4:57 p.m. > To: NZNOG(a)list.waikato.ac.nz > Subject: [nznog] Xen for network services (aka web/mail/dns etc) - OT? > > Hi There, > > I have been discussing the utilisation of Xen in a production > environment on a couple of other lists (nzlug, debian-isp etc), but > wondering if anyone from this list is using it in new zealand for > serving of network services? Please let me know if this is OT. > > Would like to hear your experiences if so. > > Simon > > _______________________________________________ > NZNOG mailing list > NZNOG(a)list.waikato.ac.nz > http://list.waikato.ac.nz/mailman/listinfo/nznog > > > > > > ---------- Forwarded message ---------- > From: Richard Patterson <richard(a)helix.net.nz> > To: Simon <greminn(a)gmail.com> > Date: Wed, 30 Nov 2005 16:55:23 +1300 > Subject: Re: [nznog] Xen for network services (aka web/mail/dns etc) - OT? > Simon wrote: > > >Hi There, > > > >I have been discussing the utilisation of Xen in a production > >environment on a couple of other lists (nzlug, debian-isp etc), but > >wondering if anyone from this list is using it in new zealand for > >serving of network services? Please let me know if this is OT. > > > >Would like to hear your experiences if so. > > > >Simon > > > > > > I've deployed a Xen machine together with linux vservers inside the > virtual Xen domains (don't ask) > > Running exim4/apache/samba/ldap and maybe some other things. > Has been in production for several months now without any issues. > > > -Richard > > > > > > ---------- Forwarded message ---------- > From: Andrew Thompson <andy(a)fud.org.nz> > To: Richard Patterson <richard(a)helix.net.nz> > Date: Wed, 30 Nov 2005 17:48:03 +1300 > Subject: Re: [nznog] Xen for network services (aka web/mail/dns etc) - OT? > On Wed, Nov 30, 2005 at 04:55:23PM +1300, Richard Patterson wrote: > > Simon wrote: > > > > >Hi There, > > > > > >I have been discussing the utilisation of Xen in a production > > >environment on a couple of other lists (nzlug, debian-isp etc), but > > >wondering if anyone from this list is using it in new zealand for > > >serving of network services? Please let me know if this is OT. > > > > > >Would like to hear your experiences if so. > > > > > >Simon > > > > > > > > > > I've deployed a Xen machine together with linux vservers inside the > > virtual Xen domains (don't ask) > > > > Running exim4/apache/samba/ldap and maybe some other things. > > Has been in production for several months now without any issues. > > Can I ask why you would choose this over using something like FreeBSD > jails which provide seperation with no overhead? > > > Andrew > > > > > > ---------- Forwarded message ---------- > From: Richard Patterson <richard(a)helix.net.nz> > To: Andrew Thompson <andy(a)fud.org.nz>, NZNOG(a)list.waikato.ac.nz > Date: Wed, 30 Nov 2005 17:54:55 +1300 > Subject: Re: [nznog] Xen for network services (aka web/mail/dns etc) - OT? > Andrew Thompson wrote: > > >On Wed, Nov 30, 2005 at 04:55:23PM +1300, Richard Patterson wrote: > > > > > >>I've deployed a Xen machine together with linux vservers inside the > >>virtual Xen domains (don't ask) > >> > >>Running exim4/apache/samba/ldap and maybe some other things. > >>Has been in production for several months now without any issues. > >> > >> > > > >Can I ask why you would choose this over using something like FreeBSD > >jails which provide seperation with no overhead? > > > > > >Andrew > > > > > > > Customer wanted Xen > > > -Richard > > > > > > ---------- Forwarded message ---------- > From: marty(a)supine.com (Martin) > To: NZNOG(a)list.waikato.ac.nz > Date: Wed, 30 Nov 2005 16:23:24 +1100 > Subject: Re: [nznog] Xen for network services (aka web/mail/dns etc) - OT? > $quoted_author = "Andrew Thompson" ; > > > > Can I ask why you would choose this over using something like FreeBSD > > jails which provide seperation with no overhead? > > raw IP sockets for one... > > cheers > marty > > -- > <shortigo> I can't find my enlightenment configuration files > <BedMan> look in ~/.enlightenment > <shortigo> I don't seem to have one > <hazard> 'the path to enlightment is hard to find' > > http://www.bash.org/?238734 > > > > > _______________________________________________ > NZNOG mailing list > NZNOG(a)list.waikato.ac.nz > http://list.waikato.ac.nz/mailman/listinfo/nznog > > >

1 0