From max at neuropunks.org Mon Feb 1 22:31:45 2010 From: max at neuropunks.org (Max Gribov) Date: Mon, 01 Feb 2010 22:31:45 -0500 Subject: [nycbug-talk] [Fwd: [ANNOUNCE] 2ndQuadrant US Launch Celebration - Friday 2/12 in NYC] Message-ID: <4B679CA1.7060703@neuropunks.org> Saw this in my inbox from postgresql announce list, apologies if you've already seen it -------------- next part -------------- An embedded message was scrubbed... From: Greg Smith Subject: [ANNOUNCE] 2ndQuadrant US Launch Celebration - Friday 2/12 in NYC Date: Mon, 01 Feb 2010 16:57:04 -0500 Size: 4488 URL: From max at neuropunks.org Tue Feb 2 09:49:21 2010 From: max at neuropunks.org (Max Gribov) Date: Tue, 02 Feb 2010 09:49:21 -0500 Subject: [nycbug-talk] tcpdump filtering Message-ID: <4B683B71.7050003@neuropunks.org> found this article while looking for how to filter out only rst packets, some very cool tcpdump recipes http://acs.lbl.gov/~jason/tcpdump_advanced_filters.txt From george at ceetonetechnology.com Tue Feb 2 10:14:53 2010 From: george at ceetonetechnology.com (George Rosamond) Date: Tue, 02 Feb 2010 10:14:53 -0500 Subject: [nycbug-talk] tcpdump filtering In-Reply-To: <4B683B71.7050003@neuropunks.org> References: <4B683B71.7050003@neuropunks.org> Message-ID: <4B68416D.9080103@ceetonetechnology.com> Max Gribov wrote: > found this article while looking for how to filter out only rst packets, > some very cool tcpdump recipes > http://acs.lbl.gov/~jason/tcpdump_advanced_filters.txt Cool stuff on a few levels. tcpdump is like nmap and so many other tools in that the majority of people have their three or four commands, and rarely go beyond. It could make a cool meeting topic. . the recipe approach to tcpdump, nmap, or other tools. . . g From bonsaime at gmail.com Tue Feb 2 21:01:37 2010 From: bonsaime at gmail.com (Jesse Callaway) Date: Tue, 2 Feb 2010 21:01:37 -0500 Subject: [nycbug-talk] tcpdump filtering In-Reply-To: <4B68416D.9080103@ceetonetechnology.com> References: <4B683B71.7050003@neuropunks.org> <4B68416D.9080103@ceetonetechnology.com> Message-ID: On Tue, Feb 2, 2010 at 10:14 AM, George Rosamond wrote: > Max Gribov wrote: >> >> found this article while looking for how to filter out only rst packets, >> some very cool tcpdump recipes >> http://acs.lbl.gov/~jason/tcpdump_advanced_filters.txt > > Cool stuff on a few levels. > > tcpdump is like nmap and so many other tools in that the majority of people > have their three or four commands, and rarely go beyond. > > It could make a cool meeting topic. . the recipe approach to tcpdump, nmap, > or other tools. . . > > g > _______________________________________________ > talk mailing list > talk at lists.nycbug.org > http://lists.nycbug.org/mailman/listinfo/talk > Those bit-level filters are really cool... Would have never thought of that, in fact I didn't even know you could despite having read the man pages (i thought) at least 3 times. Really like the traceroute packet match, so simple, yet so cunning! While we're on the topic of "fun stuff", I fell into this today... nowhere near as techie as the header filters. something | awk ' /pattern/ { system("/bin/x args stuff" $3) }' which is kinda nicer than the if [ something | `grep pattern` ];then tempstring=`something | sed......;fi -jesse From nikolai at fetissov.org Wed Feb 3 22:20:33 2010 From: nikolai at fetissov.org (nikolai) Date: Wed, 3 Feb 2010 22:20:33 -0500 Subject: [nycbug-talk] February 2010 meeting audio Message-ID: Folks, Recording of Aidan Cully's SoC presentation is online at http://www.fetissov.org/public/nycbug/nycbug-02-03-10.mp3 Cheers, -- Nikolai From skreuzer at exit2shell.com Wed Feb 10 11:58:30 2010 From: skreuzer at exit2shell.com (Steven Kreuzer) Date: Wed, 10 Feb 2010 11:58:30 -0500 Subject: [nycbug-talk] OT: Google Plans Ultra High-Speed Residential Networks Message-ID: <80703324-537E-4DD4-B264-FD66BF29C3C2@exit2shell.com> Google is planning to roll out a 1Gb/sec Fiber-Optic broadband network to more than 50,000 homes. Would you be willing to send all your traffic through Google in exchange for an internet connection more than 100 times faster than what most Americans have access to today? http://googleblog.blogspot.com/2010/02/think-big-with-gig-our-experimental.html -- Steven Kreuzer http://www.exit2shell.com/~skreuzer From nikolai at fetissov.org Wed Feb 10 12:14:03 2010 From: nikolai at fetissov.org (nikolai) Date: Wed, 10 Feb 2010 12:14:03 -0500 Subject: [nycbug-talk] OT: Google Plans Ultra High-Speed Residential Networks In-Reply-To: <80703324-537E-4DD4-B264-FD66BF29C3C2@exit2shell.com> References: <80703324-537E-4DD4-B264-FD66BF29C3C2@exit2shell.com> Message-ID: > Google is planning to roll out a 1Gb/sec Fiber-Optic broadband network to > more than 50,000 homes. > > Would you be willing to send all your traffic through Google in exchange > for an internet connection How is that different from sending all your traffic through ATT, or Comcast, or Verizon? Are you saying you expect Google do more snooping into your packets then others do? -- Nikolai From ahpook at verizon.net Wed Feb 10 12:38:06 2010 From: ahpook at verizon.net (Ah Pook) Date: Wed, 10 Feb 2010 12:38:06 -0500 Subject: [nycbug-talk] OT: Google Plans Ultra High-Speed Residential Networks In-Reply-To: References: <80703324-537E-4DD4-B264-FD66BF29C3C2@exit2shell.com> Message-ID: <201002101238.07061.ahpook@verizon.net> On Wednesday 10 February 2010, nikolai wrote: > > Google is planning to roll out a 1Gb/sec Fiber-Optic broadband > > network to more than 50,000 homes. > > > > Would you be willing to send all your traffic through Google in > > exchange for an internet connection > > How is that different from sending all your traffic through ATT, or > Comcast, or Verizon? > Are you saying you expect Google do more snooping into your packets > then others do? I'd expect that, yeah. They certainly have a lot more to gain (financially) from knowing everything you look at. From skreuzer at exit2shell.com Wed Feb 10 12:42:32 2010 From: skreuzer at exit2shell.com (Steven Kreuzer) Date: Wed, 10 Feb 2010 12:42:32 -0500 Subject: [nycbug-talk] OT: Google Plans Ultra High-Speed Residential Networks In-Reply-To: References: <80703324-537E-4DD4-B264-FD66BF29C3C2@exit2shell.com> Message-ID: On Feb 10, 2010, at 12:14 PM, nikolai wrote: >> Google is planning to roll out a 1Gb/sec Fiber-Optic broadband network to >> more than 50,000 homes. >> >> Would you be willing to send all your traffic through Google in exchange >> for an internet connection > > How is that different from sending all your traffic through ATT, or > Comcast, or Verizon? > Are you saying you expect Google do more snooping into your packets then > others do? I absolutely think Google is going to be taking a closer look at your traffic then other providers simply because has much more to gain from performing detailed analysis of what you do online. Knowing that you play World of Warcraft and spend 3 hours a day on digg would be a pretty reliable way to place you into bucket a, which are more likely to click on these ads. Thats just one financial reason google would want to take a closer look at what you are doing. Now I am going to put on my conspiracy hat and remind you that Google recently partnered up with the NSA to help secure its network. Imagine if 50,000 homes also became part of the Google network. -- Steven Kreuzer http://www.exit2shell.com/~skreuzer From mikel.king at olivent.com Wed Feb 10 13:17:25 2010 From: mikel.king at olivent.com (mikel king) Date: Wed, 10 Feb 2010 13:17:25 -0500 Subject: [nycbug-talk] OT: Google Plans Ultra High-Speed Residential Networks In-Reply-To: References: <80703324-537E-4DD4-B264-FD66BF29C3C2@exit2shell.com>

Message-ID: <6B969D92-1C34-4404-97FD-7F9A0CC79A28@olivent.com> On Feb 10, 2010, at 12:42 PM, Steven Kreuzer wrote: > > On Feb 10, 2010, at 12:14 PM, nikolai wrote: > >>> Google is planning to roll out a 1Gb/sec Fiber-Optic broadband >>> network to >>> more than 50,000 homes. >>> >>> Would you be willing to send all your traffic through Google in >>> exchange >>> for an internet connection >> >> How is that different from sending all your traffic through ATT, or >> Comcast, or Verizon? >> Are you saying you expect Google do more snooping into your packets >> then >> others do? > > I absolutely think Google is going to be taking a closer look at > your traffic then other > providers simply because has much more to gain from performing > detailed analysis > of what you do online. > > Knowing that you play World of Warcraft and spend 3 hours a day on > digg would be > a pretty reliable way to place you into bucket a, which are more > likely to click on these > ads. > > Thats just one financial reason google would want to take a closer > look at what you > are doing. Now I am going to put on my conspiracy hat and remind you > that Google > recently partnered up with the NSA to help secure its network. > Imagine if 50,000 > homes also became part of the Google network. And we all know how easy it is fishing in a bucket... especially for the T-800 series... ;-) From george at ceetonetechnology.com Wed Feb 10 13:43:14 2010 From: george at ceetonetechnology.com (George Rosamond) Date: Wed, 10 Feb 2010 13:43:14 -0500 Subject: [nycbug-talk] OT: Google Plans Ultra High-Speed Residential Networks In-Reply-To: <6B969D92-1C34-4404-97FD-7F9A0CC79A28@olivent.com> References: <80703324-537E-4DD4-B264-FD66BF29C3C2@exit2shell.com>

<6B969D92-1C34-4404-97FD-7F9A0CC79A28@olivent.com> Message-ID: <4B72FE42.6070103@ceetonetechnology.com> mikel king wrote: > > On Feb 10, 2010, at 12:42 PM, Steven Kreuzer wrote: > >> >> On Feb 10, 2010, at 12:14 PM, nikolai wrote: >> >>>> Google is planning to roll out a 1Gb/sec Fiber-Optic broadband >>>> network to >>>> more than 50,000 homes. >>>> >>>> Would you be willing to send all your traffic through Google in >>>> exchange >>>> for an internet connection >>> >>> How is that different from sending all your traffic through ATT, or >>> Comcast, or Verizon? >>> Are you saying you expect Google do more snooping into your packets then >>> others do? >> >> I absolutely think Google is going to be taking a closer look at your >> traffic then other >> providers simply because has much more to gain from performing >> detailed analysis >> of what you do online. >> >> Knowing that you play World of Warcraft and spend 3 hours a day on >> digg would be >> a pretty reliable way to place you into bucket a, which are more >> likely to click on these >> ads. >> >> Thats just one financial reason google would want to take a closer >> look at what you >> are doing. Now I am going to put on my conspiracy hat and remind you >> that Google >> recently partnered up with the NSA to help secure its network. Imagine >> if 50,000 >> homes also became part of the Google network. > > > And we all know how easy it is fishing in a bucket... especially for the > T-800 series... ;-) Without doubt, the Google point about inadequate residential data infrastructure is valid. . . The US is in the second tier, IMHO, of countries with internet access in the world. How many US colos would close if we all had the standard .jp access at home? :) There are two questions really, though. . . would *you* use it?. . . and would most people use it? I think a layer of people would avoid it. . . the same people using Tor, i2p, JAP, web proxies, etc. You are at least dealing with the ISP as your privacy adversary with those technologies. Would most people avoid it that package from Google? Unlikely. And of course Google isn't the only one doing screwy things. . . Look at these links: http://www.washingtonpost.com/wp-dyn/content/article/2008/04/03/AR2008040304052.html http://www.wired.com/threatlevel/2008/09/isps-will-all-s/ While the big OSPs like Google and ISPs highlight the particular dissident in China that they don't tie the noose for, it's the larger marketing analysis which is disturbing in a bigger sense, and frequently downplayed. It's all the more reason for everyone to run their own Tor bridges at home. . . and have that bridge published for others to use. http://www.torproject.org/bridges George From ahpook at verizon.net Wed Feb 10 13:58:17 2010 From: ahpook at verizon.net (Ah Pook) Date: Wed, 10 Feb 2010 13:58:17 -0500 Subject: [nycbug-talk] =?iso-8859-1?q?OT=3A_Google_Plans_Ultra_High-Speed?= =?iso-8859-1?q?=09Residential_Networks?= In-Reply-To: <4B72FE42.6070103@ceetonetechnology.com> References: <80703324-537E-4DD4-B264-FD66BF29C3C2@exit2shell.com> <6B969D92-1C34-4404-97FD-7F9A0CC79A28@olivent.com> <4B72FE42.6070103@ceetonetechnology.com> Message-ID: <201002101358.17763.ahpook@verizon.net> On Wednesday 10 February 2010, George Rosamond wrote: > There are two questions really, though. . . would *you* use it?. . . > and would most people use it? > > I think a layer of people would avoid it. . . the same people using > Tor, i2p, JAP, web proxies, etc. I tend to fall in that group, and I'd order it in a heartbeat. It would take two seconds to set up local rules to choose a connection based on destination/protocol/whatever, right? Then you can just have a whitelist of stuff you don't care if Goog sees. Or go the Tor route, of course. :) If anything, it's another level of competition. If they're even remotely close to VZ/CV in price, things are going to shake up. (Many) New Yorkers probably don't know how spoiled they are to have cable and fiber duking it out here. Lots of the country is still hanging out in 1998, speed-wise. Not like Google's first test market is going to be Bismarck or anything, but still... From skreuzer at exit2shell.com Wed Feb 10 16:12:09 2010 From: skreuzer at exit2shell.com (Steven Kreuzer) Date: Wed, 10 Feb 2010 16:12:09 -0500 Subject: [nycbug-talk] OT: Google Plans Ultra High-Speed Residential Networks In-Reply-To: <4B72FE42.6070103@ceetonetechnology.com> References: <80703324-537E-4DD4-B264-FD66BF29C3C2@exit2shell.com>

<6B969D92-1C34-4404-97FD-7F9A0CC79A28@olivent.com> <4B72FE42.6070103@ceetonetechnology.com> Message-ID: On Feb 10, 2010, at 1:43 PM, George Rosamond wrote: > mikel king wrote: >> On Feb 10, 2010, at 12:42 PM, Steven Kreuzer wrote: >>> >>> On Feb 10, 2010, at 12:14 PM, nikolai wrote: >>> >>>>> Google is planning to roll out a 1Gb/sec Fiber-Optic broadband network to >>>>> more than 50,000 homes. >>>>> >>>>> Would you be willing to send all your traffic through Google in exchange >>>>> for an internet connection >>>> >>>> How is that different from sending all your traffic through ATT, or >>>> Comcast, or Verizon? >>>> Are you saying you expect Google do more snooping into your packets then >>>> others do? >>> >>> I absolutely think Google is going to be taking a closer look at your traffic then other >>> providers simply because has much more to gain from performing detailed analysis >>> of what you do online. >>> >>> Knowing that you play World of Warcraft and spend 3 hours a day on digg would be >>> a pretty reliable way to place you into bucket a, which are more likely to click on these >>> ads. >>> >>> Thats just one financial reason google would want to take a closer look at what you >>> are doing. Now I am going to put on my conspiracy hat and remind you that Google >>> recently partnered up with the NSA to help secure its network. Imagine if 50,000 >>> homes also became part of the Google network. >> And we all know how easy it is fishing in a bucket... especially for the T-800 series... ;-) > > Without doubt, the Google point about inadequate residential data infrastructure is valid. . . The US is in the second tier, IMHO, of countries with internet access in the world. > > How many US colos would close if we all had the standard .jp access at home? :) I have a feeling this is basically a bluff similar to what Google did when the FCC auctioned off the 700 MHz band. The main reason they decided to do this is simply to put some pressure on the other providers to start making the necessary upgrades. I am sure Google is sitting on plenty of products or at least ideas for products that they can't roll out because they would require much better pipes on the end user side. They say that they are going to roll out a broadband network and then let all the other providers scramble to upgrade their network and then Google decides to back out of this. In the end, they would get the results that they were looking for without having to spend a ton of money However, if they did go through with this, it could be for several reasons. I could be much cheaper for them to keep traffic to google products like youtube and maps within their network rather then have to have peering agreements or buy bandwidth from other providers. This could also be a response to all the major ISPs lobbying for filtering and tiering. Anything that creates competition in this market is a good thing, and while Google's intentions might be good how long after they light up their lines does someone say well, we have this data, lets see if we can do something with it. -- Steven Kreuzer http://www.exit2shell.com/~skreuzer From jpb at sixshooter.v6.thrupoint.net Wed Feb 10 18:06:49 2010 From: jpb at sixshooter.v6.thrupoint.net (Jim B.) Date: Wed, 10 Feb 2010 18:06:49 -0500 Subject: [nycbug-talk] OT: Google Plans Ultra High-Speed Residential Networks In-Reply-To: References: <80703324-537E-4DD4-B264-FD66BF29C3C2@exit2shell.com>

<6B969D92-1C34-4404-97FD-7F9A0CC79A28@olivent.com> <4B72FE42.6070103@ceetonetechnology.com> Message-ID: <20100210230649.GB28613@sixshooter.v6.thrupoint.net> * Steven Kreuzer [2010-02-10 16:18]: > > On Feb 10, 2010, at 1:43 PM, George Rosamond wrote: > > > mikel king wrote: > >> On Feb 10, 2010, at 12:42 PM, Steven Kreuzer wrote: > >>> > >>> On Feb 10, 2010, at 12:14 PM, nikolai wrote: > >>> > >>>>> Google is planning to roll out a 1Gb/sec Fiber-Optic broadband network to > >>>>> more than 50,000 homes. > >>>>> > >>>>> Would you be willing to send all your traffic through Google in exchange > >>>>> for an internet connection > >>>> > >>>> How is that different from sending all your traffic through ATT, or > >>>> Comcast, or Verizon? > >>>> Are you saying you expect Google do more snooping into your packets then > >>>> others do? > >>> > >>> I absolutely think Google is going to be taking a closer look at your traffic then other > >>> providers simply because has much more to gain from performing detailed analysis > >>> of what you do online. > >>> > >>> Knowing that you play World of Warcraft and spend 3 hours a day on digg would be > >>> a pretty reliable way to place you into bucket a, which are more likely to click on these > >>> ads. > >>> > >>> Thats just one financial reason google would want to take a closer look at what you > >>> are doing. Now I am going to put on my conspiracy hat and remind you that Google > >>> recently partnered up with the NSA to help secure its network. Imagine if 50,000 > >>> homes also became part of the Google network. > >> And we all know how easy it is fishing in a bucket... especially for the T-800 series... ;-) > > > > Without doubt, the Google point about inadequate residential data infrastructure is valid. . . The US is in the second tier, IMHO, of countries with internet access in the world. > > > > How many US colos would close if we all had the standard .jp access at home? :) > > I have a feeling this is basically a bluff similar to what Google did when the FCC auctioned off the 700 MHz band. > The main reason they decided to do this is simply to put some pressure on the other providers to start making the necessary upgrades. > I am sure Google is sitting on plenty of products or at least ideas for products that they can't roll out because they would require much better pipes on the end user side. ISTR hearing some years ago that Goog bought *a lot* of dark fiber from the Tier-1s (and whoever did the digging). Perhaps they are now testing what would amount to a 'last-mile' service, i.e. "How much does it cost to actually install and run the last mile?" If so, a big problem I see is rights-of-way. This will mean that they will have to negotiate space on a lot of poles and ducts to get it into your house. That's a lot of lawyering. Have they hired a bunch of temp lawyers lately? - Jim B. From mcevoy.pat at gmail.com Thu Feb 11 00:26:37 2010 From: mcevoy.pat at gmail.com (Pat McEvoy) Date: Thu, 11 Feb 2010 00:26:37 -0500 Subject: [nycbug-talk] bsdtv.org Message-ID: <35ef74971002102126v6c2f7630m9a1465c9d2254407@mail.gmail.com> Hello, We are starting a new project to help spread the news about the good work done by the volunteers and contributors to both NYCBUG and the BSD community at large. This project is called bsdtv.org. (Don't bother checking just yet, we are still under construction.) It will focus on many facets of the BSD community including basic HowTo videos, the BSD certification process, talks and tips. We plan to cover Cons, give props to committers, and lend a helping hand to the newbies. Our goal is to be a regular BSD video podcast. We want you: - If you have recorded a talk that you would like to release on a BSD-centric website - If you have any footage of previous Cons - If you would like to contribute either time, hardware, or cash to our cause - To please check us out when we get up and running. We look forward to adding to the many voices of the BSD community and hope we serve you well. Signed: Patrick McEvoy Jim Brown -------------- next part -------------- An HTML attachment was scrubbed... URL: From mark.saad at ymail.com Thu Feb 11 13:18:46 2010 From: mark.saad at ymail.com (Mark Saad) Date: Thu, 11 Feb 2010 18:18:46 +0000 Subject: [nycbug-talk] Reboot into single user mode remotely Message-ID: <1488312754-1265912308-cardhu_decombobulator_blackberry.rim.net-468382766-@bda244.bisx.prod.on.blackberry> Hello talk, I have a good question, how would you reboot a remote server into single usermode and make it run a script , and the bring it back up . The issue I have is I need to run tunefs on a few servers that I don't have console access on . I want to make it as hands off as I can , I don't want to ssh into 50 servers , if I don't have to . The filesystmes are / and /var so I can't unmount them on the running box and do what I need to . FreeBSD's tunefs will not let you turn softupdates and volume lables on on a filesystem that was previously mounted r/w . That's it in a nut shell , I don't want to reinvent the wheel if I don't need to and I would like to do this all while I sleep ;) . Mark Saad | mark.saad at ymail.com From pete at nomadlogic.org Thu Feb 11 13:40:13 2010 From: pete at nomadlogic.org (Pete Wright) Date: Thu, 11 Feb 2010 18:40:13 +0000 Subject: [nycbug-talk] Reboot into single user mode remotely In-Reply-To: <1488312754-1265912308-cardhu_decombobulator_blackberry.rim.net-468382766-@bda244.bisx.prod.on.blackberry> References: <1488312754-1265912308-cardhu_decombobulator_blackberry.rim.net-468382766-@bda244.bisx.prod.on.blackberry> Message-ID: <20100211184010.GA61659@pv.nomadlogic.org> On Thu, Feb 11, 2010 at 06:18:46PM +0000, Mark Saad wrote: > Hello talk, > I have a good question, how would you reboot a remote server into single usermode and make it run a script , and the bring it back up . The issue I have is I need to run tunefs on a few servers that I don't have console access on . I want to make it as hands off as I can , I don't want to ssh into 50 servers , if I don't have to . The filesystmes are / and /var so I can't unmount them on the running box and do what I need to . FreeBSD's tunefs will not let you turn softupdates and volume lables on on a filesystem that was previously mounted r/w . > > That's it in a nut shell , I don't want to reinvent the wheel if I don't need to and I would like to do this all while I sleep ;) . > first thought that comes to mind is writing a rc script that'll do this for you on reboot. i reckon if it's placed early enough in your boot order it'll be able to enable softupdates. maybe you could have a local patch to /etc/rc.d/fsck? -p From mark.saad at ymail.com Thu Feb 11 13:01:09 2010 From: mark.saad at ymail.com (Mark Saad) Date: Thu, 11 Feb 2010 18:01:09 +0000 Subject: [nycbug-talk] Reboot into single user mode remotely Message-ID: <1488312754-1265912278-cardhu_decombobulator_blackberry.rim.net-549804672-@bda244.bisx.prod.on.blackberry> Hello talk, I have a good question, how would you reboot a remote server into single usermode and make it run a script , and the bring it back up . The issue I have is I need to run tunefs on a few servers that I don't have console access on . I want to make it as hands off as I can , I don't want to ssh into 50 servers , if I don't have to . The filesystmes are / and /var so I can't unmount them on the running box and do what I need to . FreeBSD's tunefs will not let you turn softupdates and volume lables on on a filesystem that was previously mounted r/w . That's it in a nut shell , I don't want to reinvent the wheel if I don't need to and I would like to do this all while I sleep ;) . Mark Saad | mark.saad at ymail.com From mark.saad at ymail.com Thu Feb 11 13:14:31 2010 From: mark.saad at ymail.com (Mark Saad) Date: Thu, 11 Feb 2010 18:14:31 +0000 Subject: [nycbug-talk] Reboot into single user mode remotely Message-ID: <1488312754-1265912305-cardhu_decombobulator_blackberry.rim.net-1733040883-@bda244.bisx.prod.on.blackberry> Hello talk, I have a good question, how would you reboot a remote server into single usermode and make it run a script , and the bring it back up . The issue I have is I need to run tunefs on a few servers that I don't have console access on . I want to make it as hands off as I can , I don't want to ssh into 50 servers , if I don't have to . The filesystmes are / and /var so I can't unmount them on the running box and do what I need to . FreeBSD's tunefs will not let you turn softupdates and volume lables on on a filesystem that was previously mounted r/w . That's it in a nut shell , I don't want to reinvent the wheel if I don't need to and I would like to do this all while I sleep ;) . Mark Saad | mark.saad at ymail.com From brian.gupta at gmail.com Fri Feb 12 21:10:21 2010 From: brian.gupta at gmail.com (Brian Gupta) Date: Fri, 12 Feb 2010 21:10:21 -0500 Subject: [nycbug-talk] Fwd: [nylug-announce] NYLUG Presents: 2/17 @ 6:30PM Luke Kanies on The Future of Puppet - What a Model-Driven Infrastructure Means to You In-Reply-To: <20100212072923.7EF62E5C63@nylug.org> References: <20100212072923.7EF62E5C63@nylug.org> Message-ID: <5b5090781002121810n33cfaf55yf08f604dc99f8138@mail.gmail.com> This is the author of puppet, in what is AFAIK his first public preso on puppet in the NYC area. He's going to be discussing the "Future" of puppet. Register at http://rsvp.nylug.org/ - Brian Gupta New York City user groups calendar: http://nyc.brandorr.com/ ---------- Forwarded message ---------- From: NYLUG Announcements Date: Fri, Feb 12, 2010 at 2:29 AM Subject: [nylug-announce] NYLUG Presents: 2/17 @ 6:30PM Luke Kanies on The Future of Puppet - What a Model-Driven Infrastructure Means to You To: NYLUG Announcements Wednesday, February 17, 2010 6:30 PM - 8:00 PM IBM 590 Madison Ave, 12th Floor corner of 57th Street *** RSVP Closes at 4:30 PM the day of the meeting (sharp!) *** Please RSVP for EVERY meeting at this time. Register at http://rsvp.nylug.org/ Check in with photo ID at the lobby for badge. Luke Kanies - on - The Future of Puppet - What a Model-Driven Infrastructure Means to You Please join us on February 17th, 2010 for a special guest, Luke Kaines, the founder of the Puppet Project. This talk will have a general focus on the future of Puppet, and will particularly delve into how Puppet's model of the world will be used to drive new tools and capabilities. While Puppet is obviously about configuring your infrastructure, the fact that it uses declarative models rather than merely relying on chunks of opaque code is critical to both how we got here and where we go in the future. This year will be the year of data for Puppet. For example, its most recent major release provided the means to address a host's compiled configuration as a separate, manageable entity, meaning it can be stored, controlled, and validated at will. The next full release will have granular event reporting, with correspondingly greater ability to correlate configurations to the resulting changes. Each successive release thereafter will further expose the data that lies at the heart of a Puppet infrastructure. This talk will discuss some of the kinds of data we'll be bringing to the forefront of your Puppet infrastructure, along with how you can take advantage of it and how it will change your view of the world. More Information: * Puppet http://reductivelabs.com/products/puppet/ * Reductive Labs http://github.com/reductivelabs * Puppet Wiki http://reductivelabs.com/trac/puppet/wiki * Puppet Users Discussion http://groups.google.com/group/puppet-users * Puppet Developers Discussion http://groups.google.com/group/puppet-dev * Puppet NYC User Group http://groups.google.com/group/puppet-nyc About Luke Kanies: Luke is the founder and CEO of Reductive Labs and the founder of the Puppet project. Previously, he was a consultant, open source contributor, and article author. He has focused on tool development since 2001, developing and publishing multiple simple sysadmin tools and contributing to established products like Cfengine. He has presented on Puppet and other tools around the world, including at OSCON, LISA, Linux.Conf.au, and FOSS.in. Meeting Location: Please note that this meeting will be held at IBM, 590 Madison Ave, 12th floor, corner of 57th Street, and not at Google. This is the building with the IBM logo on the front of the building. Map: http://nylug.org/mapofibm Swag (Give Away): During/after the meeting... unusually terrific swag may be given away. Stammtisch: After the meeting ... You may wish to join up with other NYLUGgers for drinks and pub food. This month we'll be over at TGI Friday's (677 Lexington and 56th Street, Second floor, Northeast corner), but we are also evaluating other options for the future and welcome your suggestions. http://nylug.org/tgifridays Python Workshops/Hacking Society: This is a group of people that wants to learn about Python and other things, and hack on code. Sometimes they go out to eat afterward. The workshops meet every other Tuesday, at the NY Public Library, Hudson Park Branch. 66 Leroy St. NY NY from 6:00 PM - 8:00 PM Next meetings are February 16, and March 9. See the calendar at: http://nylug.org/pythoncalendar Please see our home page at http://www.nylug.org for the HTMLized version of this announcement, our archives, and a lot of other good stuff. ______________________________________________________________________ Hire expert Linux talent by posting jobs here :: http://jobs.nylug.org nylug-announce mailing list nylug-announce at nylug.org http://nylug.org/mailman/listinfo/nylug-announce -------------- next part -------------- An HTML attachment was scrubbed... URL: From matt at atopia.net Tue Feb 16 17:56:50 2010 From: matt at atopia.net (Matt Juszczak) Date: Tue, 16 Feb 2010 17:56:50 -0500 (EST) Subject: [nycbug-talk] Email Gateway for /etc/aliases? Message-ID: Hi all, Does anyone have a script or internal FreeBSD tool, etc. that can tie into /etc/aliases nicely (postfix)? Perhaps something that parses the headers into key -> value pairs and the message into a variable? I figured something like this would be fairly common... Thanks, Matt From matt at atopia.net Tue Feb 16 17:57:23 2010 From: matt at atopia.net (Matt Juszczak) Date: Tue, 16 Feb 2010 17:57:23 -0500 (EST) Subject: [nycbug-talk] Email Gateway for /etc/aliases? In-Reply-To: References: Message-ID: I know. VPI called me today to ask how the kids were doing. On Tue, 16 Feb 2010, Matt Juszczak wrote: > Hi all, > > Does anyone have a script or internal FreeBSD tool, etc. that can tie into > /etc/aliases nicely (postfix)? Perhaps something that parses the headers > into key -> value pairs and the message into a variable? > > I figured something like this would be fairly common... > > Thanks, > > Matt > _______________________________________________ > talk mailing list > talk at lists.nycbug.org > http://lists.nycbug.org/mailman/listinfo/talk > From matt at atopia.net Tue Feb 16 18:04:56 2010 From: matt at atopia.net (Matt Juszczak) Date: Tue, 16 Feb 2010 18:04:56 -0500 (EST) Subject: [nycbug-talk] Email Gateway for /etc/aliases? In-Reply-To: References: Message-ID: (Hi all, this reply was NOT supposed to go to this list - my apologies) On Tue, 16 Feb 2010, Matt Juszczak wrote: > I know. > > VPI called me today to ask how the kids were doing. > > On Tue, 16 Feb 2010, Matt Juszczak wrote: > >> Hi all, >> >> Does anyone have a script or internal FreeBSD tool, etc. that can tie into >> /etc/aliases nicely (postfix)? Perhaps something that parses the headers >> into key -> value pairs and the message into a variable? >> >> I figured something like this would be fairly common... >> >> Thanks, >> >> Matt >> _______________________________________________ >> talk mailing list >> talk at lists.nycbug.org >> http://lists.nycbug.org/mailman/listinfo/talk >> > From bonsaime at gmail.com Wed Feb 17 00:33:14 2010 From: bonsaime at gmail.com (Jesse Callaway) Date: Wed, 17 Feb 2010 00:33:14 -0500 Subject: [nycbug-talk] Email Gateway for /etc/aliases? In-Reply-To: References: Message-ID: I think you can set up the alias as a pipe in the familiar syntax root: "| /usr/stuff/to/do.pl" Exim hates your family when you do this, but you can make it out alive. Postfix and sendmail are more amenable. They just do what they're told. The formail program can help parse stuff out possibly, but maybe not. -jesse On Tue, Feb 16, 2010 at 5:56 PM, Matt Juszczak wrote: > Hi all, > > Does anyone have a script or internal FreeBSD tool, etc. that can tie into > /etc/aliases nicely (postfix)? ?Perhaps something that parses the headers > into key -> value pairs and the message into a variable? > > I figured something like this would be fairly common... > > Thanks, > > Matt > _______________________________________________ > talk mailing list > talk at lists.nycbug.org > http://lists.nycbug.org/mailman/listinfo/talk > From matt at atopia.net Wed Feb 17 00:54:15 2010 From: matt at atopia.net (matt at atopia.net) Date: Wed, 17 Feb 2010 05:54:15 +0000 Subject: [nycbug-talk] Email Gateway for /etc/aliases? Message-ID: <244770596-1266386056-cardhu_decombobulator_blackberry.rim.net-823575885-@bda188.bisx.prod.on.blackberry> Hi Jesse, Thanks for the reply. I have the pipe syntax down. What I was more looking for is a script to parse the message that comes into the pipe. Ill check out formail ------Original Message------ From: Jesse Callaway To: Matt Juszczak Cc: NYCBUG Subject: Re: [nycbug-talk] Email Gateway for /etc/aliases? Sent: Feb 17, 2010 00:33 I think you can set up the alias as a pipe in the familiar syntax root: "| /usr/stuff/to/do.pl" Exim hates your family when you do this, but you can make it out alive. Postfix and sendmail are more amenable. They just do what they're told. The formail program can help parse stuff out possibly, but maybe not. -jesse On Tue, Feb 16, 2010 at 5:56 PM, Matt Juszczak wrote: > Hi all, > > Does anyone have a script or internal FreeBSD tool, etc. that can tie into > /etc/aliases nicely (postfix)? ?Perhaps something that parses the headers > into key -> value pairs and the message into a variable? > > I figured something like this would be fairly common... > > Thanks, > > Matt >_______________________________________________ > talk mailing list > talk at lists.nycbug.org > http://lists.nycbug.org/mailman/listinfo/talk > From skreuzer at exit2shell.com Wed Feb 17 08:37:36 2010 From: skreuzer at exit2shell.com (Steven Kreuzer) Date: Wed, 17 Feb 2010 08:37:36 -0500 Subject: [nycbug-talk] Email Gateway for /etc/aliases? In-Reply-To: References: Message-ID: <1D318B74-B241-4FF5-8783-B701E6D3AFE1@exit2shell.com> On Feb 16, 2010, at 5:56 PM, Matt Juszczak wrote: > Hi all, > > Does anyone have a script or internal FreeBSD tool, etc. that can tie into /etc/aliases nicely (postfix)? Perhaps something that parses the headers into key -> value pairs and the message into a variable? > > I figured something like this would be fairly common... Maybe the Email::Simple::Headers perl module is what you are looking for? http://search.cpan.org/~rjbs/Email-Simple-Headers-1.02/lib/Email/Simple/Headers.pm -- Steven Kreuzer http://www.exit2shell.com/~skreuzer From skreuzer at exit2shell.com Fri Feb 19 10:39:27 2010 From: skreuzer at exit2shell.com (Steven Kreuzer) Date: Fri, 19 Feb 2010 10:39:27 -0500 Subject: [nycbug-talk] Highly Available Storage (HAST) committed to HEAD Message-ID: http://svn.freebsd.org/viewvc/base?view=revision&revision=204076 In case you didn't see the original thread on talk about this: HAST allows to transparently store data on two physically separated machines connected over the TCP/IP network. Those two machines together will be called a cluster and each machine is one cluster node. HAST works in Primary-Secondary (Master-Backup, Master-Slave) configuration, which means that only one of the cluster nodes can be active at any given time. Active node will be called Primary node. This is the node that will be able to handle I/O requests to HAST-managed devices. Currently HAST is limited to two cluster nodes in total. (from http://wiki.freebsd.org/HAST) -- Steven Kreuzer http://www.exit2shell.com/~skreuzer From matt at atopia.net Fri Feb 19 15:07:21 2010 From: matt at atopia.net (Matt Juszczak) Date: Fri, 19 Feb 2010 15:07:21 -0500 (EST) Subject: [nycbug-talk] upgrading custom packages on freebsd Message-ID: Hi all, When I first setup the environment I'm working on, I built custom packages. I had a build server, and would do "make package", and then install those packages across all the boxes. I'm at a point now where I want to upgrade most packages, as it's been a while. The way I'm thinking of doing it is: - `portupgrade -a` on the build server - make package in each port - remove old packages on the old boxes and upgrade to new ones, unless there's an easy way to tell portupgrade to "upgrade all packages using /usr/ports/packages/All". Is there? Thanks for anyone's advice! -Matt From drulavigne at sympatico.ca Fri Feb 19 16:05:43 2010 From: drulavigne at sympatico.ca (Dru Lavigne) Date: Fri, 19 Feb 2010 21:05:43 +0000 Subject: [nycbug-talk] Highly Available Storage (HAST) committed to HEAD In-Reply-To: References: Message-ID: > In case you didn't see the original thread on talk about this: > > HAST allows to transparently store data on two physically separated machines connected over the TCP/IP network. Those two machines together will be called a cluster and each machine is one cluster node. HAST works in Primary-Secondary (Master-Backup, Master-Slave) configuration, which means that only one of the cluster nodes can be active at any given time. Active node will be called Primary node. This is the node that will be able to handle I/O requests to HAST-managed devices. Currently HAST is limited to two cluster nodes in total. (from http://wiki.freebsd.org/HAST) And here's what Pawel has to say about it: http://freebsdfoundation.blogspot.com/2010/02/hast-project-is-complete.html If you think HAST is cool, drop a note to pjd at . Cheers, Dru -------------- next part -------------- An HTML attachment was scrubbed... URL: From matt at atopia.net Fri Feb 19 16:36:42 2010 From: matt at atopia.net (Matt Juszczak) Date: Fri, 19 Feb 2010 16:36:42 -0500 (EST) Subject: [nycbug-talk] OT: Puppet Client -> Server Versions Message-ID: Hi all, I know many of you are puppeteers. Just wondering ... can a puppet-0.25.4 client successfully talk to a puppet-0.24.8 server? I would like to upgrade my webservers to the latest client version and save the server upgrade until another day. Thanks! -Matt From matt at atopia.net Fri Feb 19 16:42:39 2010 From: matt at atopia.net (Matt Juszczak) Date: Fri, 19 Feb 2010 16:42:39 -0500 (EST) Subject: [nycbug-talk] OT: Puppet Client -> Server Versions In-Reply-To: References: Message-ID: For what it's worth, I did read a lot before I posted. I read this from reductionlabs.com, however it doesn't specify is 0.24.x servers are compatible with 0.25.x clients, only the other way around. "There are substantial changes in Puppet 0.25.0 and more changes to come in the future. Most of the changes in 0.25.0 are internal refactoring rather than behavioural. The 0.25.0 release should be fully backwards compatible behaviourally with the 0.24.x branch. This means a 0.25.0 master will be able to manage 0.24.x clients. You will need, however, to upgrade both your master and your clients to take advantage of all the new features and the substantial gains in performance offered by 0.25.0." On Fri, 19 Feb 2010, Matt Juszczak wrote: > Hi all, > > I know many of you are puppeteers. Just wondering ... can a puppet-0.25.4 > client successfully talk to a puppet-0.24.8 server? I would like to upgrade > my webservers to the latest client version and save the server upgrade until > another day. > > Thanks! > > -Matt > _______________________________________________ > talk mailing list > talk at lists.nycbug.org > http://lists.nycbug.org/mailman/listinfo/talk > From drulavigne at sympatico.ca Thu Feb 25 10:43:34 2010 From: drulavigne at sympatico.ca (Dru Lavigne) Date: Thu, 25 Feb 2010 15:43:34 +0000 Subject: [nycbug-talk] April issue on Hosting BSD In-Reply-To: <70FDD80E71EC47AFA238B01CAEF0980D@sk731007> References: <4B7129BD.7040206@software.com.pl> , <4B72B4FB.3090000@software.com.pl> <4B72BA56.9070403@software.com.pl>, <70FDD80E71EC47AFA238B01CAEF0980D@sk731007> Message-ID: The editorial theme for the April issue of BSD Mag is Hosting BSD. If you're interested in a submission, contact the new editor, Olga Kartseva (olga.kartseva at software.com.pl). Cheers, Dru -------------- next part -------------- An HTML attachment was scrubbed... URL: