headers
Michael Johnson | 1 Mar 2007 02:08
Favicon

Re: Installing Rules du jour on Mac OS X server with CGP

Well that worked fine up until Step 6 - Create the Rules Du Jour  
configuration file at /etc/rulesdujour/config

nano /etc/rulesdujour/config

tcsh: nano: Command not found.

Can I create a text file and just paste the config info into it? (as  
listed below)

SA_DIR="/etc/mail/spamassassin"
MAIL_ADDRESS=" administrator <at> example.com This e-mail address is being  
protected from spam bots, you need JavaScript enabled to view it "
SA_RESTART="killall -HUP spamd"
TRUSTED_RULESETS="SARE_ADULT SARE_BAYES_POISON_NXM SARE_BML  
SARE_BML_PRE25X SARE_CODING SARE_FRAUD SARE_FRAUD_PRE25X SARE_HEADER  
SARE_OEM SARE_RANDOM SARE_SPECIFIC SARE_SPOOF SARE_EVILNUMBERS  
SARE_GENLSUBJ SARE_HIGHRISK SARE_HTML SARE_OBFU SARE_REDIRECT  
SARE_SPAMCOP_TOP200 SARE_STOCKS SARE_UNSUB SARE_URI SARE_WHITELIST"

Also, the mail address listed in this is administrator <at> example.com -  
I assume this needs to be changed to a valid address on our server, yes?

Finally we are running CGPSA. How does this affect the config?

Thanks again
Michael

> I just installed it a couple of days ago, using the simple
> instructions found here:
(Continue reading)

Permalink | Reply | 1 comment |
headers
Dave Pooser | 1 Mar 2007 03:18

Re: Installing Rules du jour on Mac OS X server with CGP

> Well that worked fine up until Step 6 - Create the Rules Du Jour
> configuration file at /etc/rulesdujour/config
> 
> nano /etc/rulesdujour/config
> 
> tcsh: nano: Command not found.

Use pico with the -w flag:

pico -w /etc/rulesdujour/config

In 10.4 pico is symlinked to nano, in 10.3 it's an easy-to-use standalone
text editor.
--

-- 
Dave Pooser
Cat-Herder-in-Chief
Pooserville.com

#############################################################
This message is sent to you because you are subscribed to
  the mailing list <CGatePro <at> mail.stalker.com>.
To unsubscribe, E-mail to: <CGatePro-off <at> mail.stalker.com>
To switch to the DIGEST mode, E-mail to <CGatePro-digest <at> mail.stalker.com>
To switch to the INDEX mode, E-mail to <CGatePro-index <at> mail.stalker.com>
Send administrative queries to  <CGatePro-request <at> mail.stalker.com>
Permalink | Reply | 0 comments |
headers
Karl Zander | 1 Mar 2007 04:03
Favicon

Re: POP3 TLS Expired in January

On Tue, 27 Feb 2007 12:35:44 -0800

> This is the one that's expired:
> 
> RSA Data Security, Inc.	02AD667E4E45FE5E576F3C98195EDDC0 
> 	08-Nov-94	 07-Jan-10

I looked at this again.  The expire date is 7-Jan-2010, 
not 10-Jan-2007.  So the cert looks fine.

--Karl

#############################################################
This message is sent to you because you are subscribed to
  the mailing list <CGatePro <at> mail.stalker.com>.
To unsubscribe, E-mail to: <CGatePro-off <at> mail.stalker.com>
To switch to the DIGEST mode, E-mail to <CGatePro-digest <at> mail.stalker.com>
To switch to the INDEX mode, E-mail to <CGatePro-index <at> mail.stalker.com>
Send administrative queries to  <CGatePro-request <at> mail.stalker.com>
Permalink | Reply | 1 comment |
headers
Jesse Proudman | 1 Mar 2007 04:05

Re: POP3 TLS Expired in January

On Feb 28, 2007, at 7:03 PM, Karl Zander wrote:

>> This is the one that's expired:
>> RSA Data Security, Inc.	02AD667E4E45FE5E576F3C98195EDDC0 	08- 
>> Nov-94	 07-Jan-10
>
>
> I looked at this again.  The expire date is 7-Jan-2010, not 10- 
> Jan-2007.  So the cert looks fine.

I guess I'm a blind idiot.  :)  Good find.

Thanks

--

Jesse Proudman,  Blue Box Group, LLC

#############################################################
This message is sent to you because you are subscribed to
  the mailing list <CGatePro <at> mail.stalker.com>.
To unsubscribe, E-mail to: <CGatePro-off <at> mail.stalker.com>
To switch to the DIGEST mode, E-mail to <CGatePro-digest <at> mail.stalker.com>
To switch to the INDEX mode, E-mail to <CGatePro-index <at> mail.stalker.com>
Send administrative queries to  <CGatePro-request <at> mail.stalker.com>
Permalink | Reply | 0 comments |
headers
Shaun Gamble | 1 Mar 2007 05:00
Picon
Favicon

Re: New Admin Interface

Aaron wrote:
> I'll have to chime in as well... In one sense it's better, but in many ways
> worse.
>
> I too often get annoyed that menu items aren't a single-click away like they
> used to be in the old interface.  Expanding the old "Monitors" interface and
> then the "logs" was always there, a single click from wherever I was... That
> was nice.  I spend a lot of my interface time in the logs. :-P
>
> I guess with practice it's easier to at least know where things are and not
> get too confused, but I miss the way the old interface had tabs on the side
> that were always visible no matter where else you were, and I think in
> general it was a little clearer.
>
> I suppose it's one of those things that's entirely subjective though... Some
> folks who probably never used the old interface must love the new one...I
> guess... 
>
>   

Hmmm, I have to chime in here. I actually prefer the new interface for 
admin. But, it did take a lot of getting used to. And I still get myself 
a little confused sometimes trying to remember where things are, but I 
had the some problem with the last admin screen.

>> -----Original Message-----
>> From: CommuniGate Pro Discussions 
>> [mailto:CGatePro <at> mail.stalker.com] On Behalf Of William Pratt
>> Sent: Wednesday, February 28, 2007 1:00 PM
>> To: CommuniGate Pro Discussions
(Continue reading)

Permalink | Reply | 2 comments |
headers
Jeff Wark | 1 Mar 2007 14:54
Favicon

Re: New Admin Interface

I like the look of the new interface better, but navigation has lost a bit.  Oh well.

On Thu, 01 Mar 2007 05:50:08 -0800
  John Rudd <jrudd <at> ucsc.edu> wrote:
>> Shaun Gamble wrote:
>> 
>>> Hmmm, I have to chime in here. I actually prefer the new interface for 
>>> admin. But, it did take a lot of getting used to. And I still get myself 
>>> a little confused sometimes trying to remember where things are, but I 
>>> had the some problem with the last admin screen.
>>> 
>> 
>> I agree.  I like the new interface better.
>> 
>> #############################################################
>> This message is sent to you because you are subscribed to
>>  the mailing list <CGatePro <at> mail.stalker.com>.
>> To unsubscribe, E-mail to: <CGatePro-off <at> mail.stalker.com>
>> To switch to the DIGEST mode, E-mail to <CGatePro-digest <at> mail.stalker.com>
>> To switch to the INDEX mode, E-mail to <CGatePro-index <at> mail.stalker.com>
>> Send administrative queries to  <CGatePro-request <at> mail.stalker.com>

Jeff Wark
TBayTel Internet

#############################################################
This message is sent to you because you are subscribed to
  the mailing list <CGatePro <at> mail.stalker.com>.
To unsubscribe, E-mail to: <CGatePro-off <at> mail.stalker.com>
To switch to the DIGEST mode, E-mail to <CGatePro-digest <at> mail.stalker.com>
(Continue reading)

Permalink | Reply | 0 comments |
headers
Jim Steil | 1 Mar 2007 15:27
Favicon

Communigate as centralized address book

Hi:

I'm wondering if anyone has some cookbook docs on setting up CommuniGate
as a centralized address book.  I've read through the Directory
documentation in the manual, but didn't see a good explanation of where
to get started.  

Do I need to configure an LDAP server in CommuniGate?  I want to get it
setup so that my mail users can access the account list in CommuniGate
when getting email addresses to send emails to.

	-Jim

#############################################################
This message is sent to you because you are subscribed to
  the mailing list <CGatePro <at> mail.stalker.com>.
To unsubscribe, E-mail to: <CGatePro-off <at> mail.stalker.com>
To switch to the DIGEST mode, E-mail to <CGatePro-digest <at> mail.stalker.com>
To switch to the INDEX mode, E-mail to <CGatePro-index <at> mail.stalker.com>
Send administrative queries to  <CGatePro-request <at> mail.stalker.com>
Permalink | Reply | 0 comments |
headers
netins systems | 1 Mar 2007 15:27
Picon

VERY high load averages on backend servers

For some reason, we are currently seeing VERY high load averages on our backend servers which spike between 20 and 70 during the day.
For example, currently:
uptime:
10:52am  up 1 day(s), 14:59,  4 users,  load average: 22.86, 20.82, 19.84

We have not seen this behavior in the past where load has traditionally been in the 3 to 5 neighborhood.

The only recent changes made to the server were Solaris 8 recommended patches which included DST patches.
We've run getdata.sh and sent the results to Stalker support for analysis but nobody seems to know what to do at the moment.

The load in general seems to be high on the active cluster, and relatively normal on the other one and we are running Dynamic Clusters.
We have noticed very high mutex threads as evidenced by "lockstat sleep 5" which is revealing quite a few mutually exclusive locks:
48804  41%  41% 1.00        3 0x300153a49f0          lwp_mutex_wakeup+0x11c
46349  39%  80% 1.00        4 0x300153a49f0          lwp_mutex_lock+0x494
17809  15%  95% 1.00        4 0x300153a49f0          lwp_mutex_lock+0x194

We have been seeing intermittent memory errors but they have been going on for quite some time and seem to be more symptomatic as opposed to problematic.

From /var/adm/messages:
Feb 27 12:03:27 cgpb3 SUNW,UltraSPARC-II: [ID 432725 kern.info] [AFT0] errID 0x0000350a.ed450860 Corrected Memory Error on
 U1301 is Intermittent
Feb 27 12:03:27 cgpb3 SUNW,UltraSPARC-II: [ID 223325 kern.info ] [AFT0] errID 0x0000350a.ed450860 ECC Data Bit 41 was in er
ror and corrected
Feb 27 12:17:15 cgpb3 rbldnsd[239]: [ID 469128 daemon.info] ip4tset:RBL/rbldns- list.dsbl.org: 20070227 180341: cnt=1171338
6
Feb 27 12:17:15 cgpb3 rbldnsd[239]: [ID 845830 daemon.info] zones reloaded, time 135.54e/27.94u sec
Feb 27 12:22:03 cgpb3 SUNW,UltraSPARC-II: [ID 131560 kern.info] [AFT0] Corrected Memory Error detected by CPU1, errID 0x00
00360e.da1d6041

I've opened a case with Sun regarding the memory issues.

However, any other ideas or suggestions would be much appreciated as the situation is nearing critical.

Thanks very much in advance.


Permalink | Reply | 1003 comments |
headers
John Rudd | 1 Mar 2007 14:50
Favicon

Re: New Admin Interface

Shaun Gamble wrote:

> Hmmm, I have to chime in here. I actually prefer the new interface for 
> admin. But, it did take a lot of getting used to. And I still get myself 
> a little confused sometimes trying to remember where things are, but I 
> had the some problem with the last admin screen.
> 

I agree.  I like the new interface better.

#############################################################
This message is sent to you because you are subscribed to
  the mailing list <CGatePro <at> mail.stalker.com>.
To unsubscribe, E-mail to: <CGatePro-off <at> mail.stalker.com>
To switch to the DIGEST mode, E-mail to <CGatePro-digest <at> mail.stalker.com>
To switch to the INDEX mode, E-mail to <CGatePro-index <at> mail.stalker.com>
Send administrative queries to  <CGatePro-request <at> mail.stalker.com>
Permalink | Reply | 1 comment |
headers
Bret Miller | 1 Mar 2007 15:50
Favicon

Re: 5.1.7

> So pronto is looking better. 
> 
> - don't seem to be able to search domain contacts
> - XIMSS for external auth don't work
> - msi installer found :
> 
> ftp://ftp.stalker.com/pub/client/CGatePro-MAPI-Intel-1.2.7.zip
> ftp://ftp.stalker.com/pub/client/CGatePro-MAPI-Intel-1.2.7.msi.zip
> 
> whats the difference?
> 
> As for external auth, Bret says, "In order for what you want 
> to work, you'd need to modify authLDAP.pl to implement the 
> SASL authentication method."
> 
> How do you do this exactly?  Pronto is kind of worthless to 
> me without that right now. Agree with bret this should be 
> native to CGP

I can answer that, actually. SASL authentication involves getting a
"test data" and a "hashed test data", taking the "test data" and
applying the known private key to hash it and then comparing the result.
The problem is that with external authentication methods, the password
isn't known, so you have no way to hash the test data and compare the
result to what the client provided.

In other words, clear text login is the only supported method when you
can't retrieve the password programmatically. So, if Pronto would
support clear text login, that would work, but it doesn't.

The semi-solution to this is to provide a place where the user can
"clear text login", maybe an SSL web page to "synchronize password". The
user would enter the password there, which would be transmitted via SSL
(thus securely, but still clear text as far as the program sees). The
external authenticator can then successfully test the password. At this
point, if the login is successful, something needs to set the CGPro
password for that account to the correct password. Then, assuming CGPro
passwords are either stored plain text or A-Crypt, the user will be able
to use clients like Pronto that insist on secure login methods.

I can fix authLDAP.pl to do that. It's trivial. But authLDAP takes
immesurably longer than the OS integration here. I don't know why-- it
just does. So, I'd rather use OS integration. But I can't modify the OS
integration to set the CGPro password if authentication is successful.
So that's the option I really want added.

Most of our users that this affects use the MAPI connector, which I
think uses clear text authentication, so this addition would essentially
solve the problem here because the first time OS integration was invoked
when Outlook used a password that didn't match CGPro's, it would
immediately sync the password to match and Pronto would work from then
on.

HTH,
Bret

#############################################################
This message is sent to you because you are subscribed to
  the mailing list <CGatePro <at> mail.stalker.com>.
To unsubscribe, E-mail to: <CGatePro-off <at> mail.stalker.com>
To switch to the DIGEST mode, E-mail to <CGatePro-digest <at> mail.stalker.com>
To switch to the INDEX mode, E-mail to <CGatePro-index <at> mail.stalker.com>
Send administrative queries to  <CGatePro-request <at> mail.stalker.com>
Permalink | Reply | 0 comments |

Gmane