From zanchey at ucc.gu.uwa.edu.au Mon Oct 1 12:20:23 2007 From: zanchey at ucc.gu.uwa.edu.au (David Adam) Date: Mon, 1 Oct 2007 12:20:23 +0800 (WST) Subject: [tech] WebCT access now denied from wireless Message-ID: All requests to WebCT from UCC's wireless are now disallowed, and a warning page displayed instead (this is implemented with a DNAT on the firewall and an extra virtual host on Mussel). WebCT does not use SSL to protect its authentication transactions, but uses Pheme passwords, so we were allowing people to transmit their password in the clear. This is a little irresponsible, so we're now redirecting users to a copy of http://mussel.ucc.gu.uwa.edu.au/webct6/ (probably only visible on FREENETS). This is a precursor to a general disclaimer which I'd like to place on the wireless for all users, as many people are not aware of programs like dsniff(1) or driftnet(1). If there are other pages which allow you to submit your Pheme password in the clear, please contact me (off list, duh) and we'll block those too. David Adam UCC Wheel Member zanchey@ From grahame at angrygoats.net Mon Oct 1 12:27:09 2007 From: grahame at angrygoats.net (Grahame Bowland) Date: Mon, 1 Oct 2007 12:27:09 +0800 Subject: [tech] WebCT access now denied from wireless In-Reply-To: References: Message-ID: Anyone using the proxy is also transmitting their password, likely their Pheme password, in the clear. The fact that there is one password that grants access to all student services without a thought-out plan to protect that password is a hard thing for UCC to fix. Is it really worth caring, other than to report the problems to ITS (or possibly higher up?) On 01/10/2007, David Adam wrote: > All requests to WebCT from UCC's wireless are now disallowed, and a > warning page displayed instead (this is implemented with a DNAT on the > firewall and an extra virtual host on Mussel). > > WebCT does not use SSL to protect its authentication transactions, but > uses Pheme passwords, so we were allowing people to transmit their > password in the clear. This is a little irresponsible, so we're now > redirecting users to a copy of http://mussel.ucc.gu.uwa.edu.au/webct6/ > (probably only visible on FREENETS). > > This is a precursor to a general disclaimer which I'd like to place on the > wireless for all users, as many people are not aware of programs like > dsniff(1) or driftnet(1). > > If there are other pages which allow you to submit your Pheme password in > the clear, please contact me (off list, duh) and we'll block those too. > > > David Adam > UCC Wheel Member > zanchey@ > > From adrian at ucc.gu.uwa.edu.au Mon Oct 1 12:52:23 2007 From: adrian at ucc.gu.uwa.edu.au (Adrian Chadd) Date: Mon, 1 Oct 2007 12:52:23 +0800 Subject: [tech] WebCT access now denied from wireless In-Reply-To: References: Message-ID: <20071001045223.GA29841@ucc.gu.uwa.edu.au> On Mon, Oct 01, 2007, Grahame Bowland wrote: > Anyone using the proxy is also transmitting their password, likely > their Pheme password, in the clear. The fact that there is one > password that grants access to all student services without a > thought-out plan to protect that password is a hard thing for UCC to > fix. Is it really worth caring, other than to report the problems to > ITS (or possibly higher up?) They'll claim its UCC's problem. :) (And squid does Digest authentication now. Woo.) Adrian From zanchey at ucc.gu.uwa.edu.au Mon Oct 1 13:18:24 2007 From: zanchey at ucc.gu.uwa.edu.au (David Adam) Date: Mon, 1 Oct 2007 13:18:24 +0800 (WST) Subject: [tech] WebCT access now denied from wireless In-Reply-To: References: Message-ID: On Mon, 1 Oct 2007, Grahame Bowland wrote: > Anyone using the proxy is also transmitting their password, likely > their Pheme password, in the clear. The fact that there is one > password that grants access to all student services without a > thought-out plan to protect that password is a hard thing for UCC to > fix. Is it really worth caring, other than to report the problems to > ITS (or possibly higher up?) I have no statistics to back this up, but I think this is less of an issue. The SNAP configuration pages don't list the proxy (as you don't need it when connected to the SNAP VPN), so I assumed that most people will not be running their wireless laptops with the proxy set up. Perhaps I should run some logging and see just how many people are using the proxy. UCC is never going to be able to totally protect users from password or exposure. At some point, people take their own chances by accessing other people's wireless, but if we can mitigate the big risks then I think we should: WebCT is used regularly over our wireless (I do have evidence for this). David Adam zanchey@ From trs80 at ucc.gu.uwa.edu.au Mon Oct 8 01:04:05 2007 From: trs80 at ucc.gu.uwa.edu.au (James Andrewartha) Date: Mon, 8 Oct 2007 01:04:05 +0800 (WST) Subject: [tech] mermaid and mussel (was [ucc] minutes 2007-10-05) In-Reply-To: References: <1191562634.18260.67.camel@frobisher.madeley.id.au> <20071005062040.GA18442@bridgewayconsulting.com.au> <20071005062821.GA6984@ucc.gu.uwa.edu.au> <603140b60710050405w7a079b1bna104dc78434fd61c@mail.gmail.com> Message-ID: On Sat, 6 Oct 2007, James Andrewartha wrote: > Anyway, I picked up the server tonight and moved mermaid and coolstore on > to it. It took a few tries to get the right hypervisor booting (we wanted > the PAE one) but it was pretty smooth overall. A few niggles - it doesn't > always reboot cleanly, sometimes it hangs in the hypervisor before the > kernel is loaded. Serial (and therefore coke) is broken, it probably just > requires some fiddling of the boot options. User logins are now off, as > mermaid is now a dom0 and coke server only. After an hour of fruitless playing around, Davyd had the idea of disabling setserial, upon which everything worked. I've copied /boot onto the 120GB drive, and am in the process of copying the rest of the filesystem on to the xenmachines VG on the same drive. After that's done the 4GB drive from mermaid can be removed and mussel's drive can be put in, turning mussel into a domU. -- # TRS-80 trs80(a)ucc.gu.uwa.edu.au #/ "Otherwise Bub here will do \ # UCC Wheel Member http://trs80.ucc.asn.au/ #| what squirrels do best | [ "There's nobody getting rich writing ]| -- Collect and hide your | [ software that I know of" -- Bill Gates, 1980 ]\ nuts." -- Acid Reflux #231 / From frenchie at ucc.gu.uwa.edu.au Thu Oct 11 19:47:47 2007 From: frenchie at ucc.gu.uwa.edu.au (James French) Date: Thu, 11 Oct 2007 19:47:47 +0800 Subject: [tech] Arctic dead - possibly IDE controller Message-ID: <560b010710110447u60a07111k174e02e2b5241a90@mail.gmail.com> Hi All, Arctic is unhappy and can't find it's boot volume. My money was originally on it being a dead disk although on further inspection it doesn't seem to want to read boot CDs either so my money would now be on a dead IDE controller. In any case, it still seems to have an otherwise functioning logic board although I haven't had a chance to run more stringent diagnostics on it yet. At this point it's looking very sad. Frenchie -- James French frenchie at frenchie.id.au From tam at graduate.uwa.edu.au Thu Oct 11 22:06:58 2007 From: tam at graduate.uwa.edu.au (Tamara Fehlberg) Date: Thu, 11 Oct 2007 22:06:58 +0800 Subject: [tech] Arctic dead - possibly IDE controller In-Reply-To: <560b010710110447u60a07111k174e02e2b5241a90@mail.gmail.com> References: <560b010710110447u60a07111k174e02e2b5241a90@mail.gmail.com> Message-ID: I'm thinking arctic might be older than April 2004, but if not Apple has a free repair program for that vintage of emac - if the problem is on the logic board at all it's probably covered (I sent one in for intermittent freezing with burst'ed capacitors) http://www.apple.com/au/support/emac/repairextensionprogram/ Anyway, FYI -Tam On 11/10/2007, at 7:47 PM, James French wrote: > Hi All, > > Arctic is unhappy and can't find it's boot volume. My money was > originally on it being a dead disk although on further inspection it > doesn't seem to want to read boot CDs either so my money would now be > on a dead IDE controller. > > In any case, it still seems to have an otherwise functioning logic > board although I haven't had a chance to run more stringent > diagnostics on it yet. At this point it's looking very sad. > > Frenchie > > -- > James French > frenchie at frenchie.id.au > From trs80 at ucc.gu.uwa.edu.au Fri Oct 12 22:20:58 2007 From: trs80 at ucc.gu.uwa.edu.au (James Andrewartha) Date: Fri, 12 Oct 2007 22:20:58 +0800 (WST) Subject: [tech] mermaid and mussel (was [ucc] minutes 2007-10-05) In-Reply-To: References: <1191562634.18260.67.camel@frobisher.madeley.id.au> <20071005062040.GA18442@bridgewayconsulting.com.au> <20071005062821.GA6984@ucc.gu.uwa.edu.au> <603140b60710050405w7a079b1bna104dc78434fd61c@mail.gmail.com> Message-ID: On Mon, 8 Oct 2007, James Andrewartha wrote: > After an hour of fruitless playing around, Davyd had the idea of disabling > setserial, upon which everything worked. I've copied /boot onto the 120GB > drive, and am in the process of copying the rest of the filesystem on to the > xenmachines VG on the same drive. After that's done the 4GB drive from > mermaid can be removed and mussel's drive can be put in, turning mussel into > a domU. Mermaid is now running off the 120GB and I've unplugged the 4GB drive. I propose moving mussel across on Sunday evening, after the cleanup. -- # TRS-80 trs80(a)ucc.gu.uwa.edu.au #/ "Otherwise Bub here will do \ # UCC Wheel Member http://trs80.ucc.asn.au/ #| what squirrels do best | [ "There's nobody getting rich writing ]| -- Collect and hide your | [ software that I know of" -- Bill Gates, 1980 ]\ nuts." -- Acid Reflux #231 / From trs80 at ucc.gu.uwa.edu.au Sun Oct 14 22:47:20 2007 From: trs80 at ucc.gu.uwa.edu.au (James Andrewartha) Date: Sun, 14 Oct 2007 22:47:20 +0800 (WST) Subject: [tech] mermaid and mussel (was [ucc] minutes 2007-10-05) In-Reply-To: References: <1191562634.18260.67.camel@frobisher.madeley.id.au> <20071005062040.GA18442@bridgewayconsulting.com.au> <20071005062821.GA6984@ucc.gu.uwa.edu.au> <603140b60710050405w7a079b1bna104dc78434fd61c@mail.gmail.com> Message-ID: On Fri, 12 Oct 2007, James Andrewartha wrote: > On Mon, 8 Oct 2007, James Andrewartha wrote: > >> After an hour of fruitless playing around, Davyd had the idea of disabling >> setserial, upon which everything worked. I've copied /boot onto the 120GB >> drive, and am in the process of copying the rest of the filesystem on to the >> xenmachines VG on the same drive. After that's done the 4GB drive from >> mermaid can be removed and mussel's drive can be put in, turning mussel into >> a domU. > > Mermaid is now running off the 120GB and I've unplugged the 4GB drive. I > propose moving mussel across on Sunday evening, after the cleanup. The move was fairly painless, the main problem was networking - udev persistent network names, and vlans. I also stuck mussel's gig network card into the new server. Vendserver now runs on mermaid for direct serial port access. Printing is broken until someone works out how to do vlans with xen. -- # TRS-80 trs80(a)ucc.gu.uwa.edu.au #/ "Otherwise Bub here will do \ # UCC Wheel Member http://trs80.ucc.asn.au/ #| what squirrels do best | [ "There's nobody getting rich writing ]| -- Collect and hide your | [ software that I know of" -- Bill Gates, 1980 ]\ nuts." -- Acid Reflux #231 / From Adrian at Diskworld.com.au Mon Oct 15 09:59:37 2007 From: Adrian at Diskworld.com.au (Adrian Woodley) Date: Mon, 15 Oct 2007 09:59:37 +0800 Subject: [tech] mermaid and mussel (was [ucc] minutes 2007-10-05) In-Reply-To: References: <1191562634.18260.67.camel@frobisher.madeley.id.au> <20071005062040.GA18442@bridgewayconsulting.com.au> <20071005062821.GA6984@ucc.gu.uwa.edu.au> <603140b60710050405w7a079b1bna104dc78434fd61c@mail.gmail.com> Message-ID: <4712C989.3030604@Diskworld.com.au> How's the networking setup - bridged interfaces? If so, then the vlans should be run on the local interface of the domU. Alternatively, I guess you could run the vlans on the dom0 and bridge the individual sub-interfaces through to the domUs. Adrian James Andrewartha wrote: > On Fri, 12 Oct 2007, James Andrewartha wrote: > > The move was fairly painless, the main problem was networking - udev > persistent network names, and vlans. I also stuck mussel's gig network > card into the new server. Vendserver now runs on mermaid for direct > serial port access. Printing is broken until someone works out how to do > vlans with xen. > From coxymla at gmail.com Thu Oct 18 13:20:45 2007 From: coxymla at gmail.com (James Cox) Date: Thu, 18 Oct 2007 13:20:45 +0800 Subject: [tech] Remote port forwarding on mussel Message-ID: Would it be possible to get the GatewayPorts sshd option enabled on mussel? I'd like to be able to use remote port forwarding. [RME]~Coxy -------------- next part -------------- An HTML attachment was scrubbed... URL: http://lists.ucc.gu.uwa.edu.au/pipermail/tech/attachments/20071018/da3a2e75/attachment.htm From trs80 at ucc.gu.uwa.edu.au Thu Oct 18 14:55:19 2007 From: trs80 at ucc.gu.uwa.edu.au (James Andrewartha) Date: Thu, 18 Oct 2007 14:55:19 +0800 (WST) Subject: [tech] Remote port forwarding on mussel In-Reply-To: References: Message-ID: On Thu, 18 Oct 2007, James Cox wrote: > Would it be possible to get the GatewayPorts sshd option enabled on mussel? > I'd like to be able to use remote port forwarding. I've set it to clientspecified, so you'll have to get your client to ask for it. Note that any port opened will only be accessible from freenets. -- # TRS-80 trs80(a)ucc.gu.uwa.edu.au #/ "Otherwise Bub here will do \ # UCC Wheel Member http://trs80.ucc.asn.au/ #| what squirrels do best | [ "There's nobody getting rich writing ]| -- Collect and hide your | [ software that I know of" -- Bill Gates, 1980 ]\ nuts." -- Acid Reflux #231 / From coxymla at gmail.com Thu Oct 18 15:31:26 2007 From: coxymla at gmail.com (James Cox) Date: Thu, 18 Oct 2007 15:31:26 +0800 Subject: [tech] Remote port forwarding on mussel In-Reply-To: References: Message-ID: Thanks very much! How hard/easy/impossible would it be to get a box with a bright IP that I could then forward some global ports to mussel with? On 10/18/07, James Andrewartha wrote: > > On Thu, 18 Oct 2007, James Cox wrote: > > > Would it be possible to get the GatewayPorts sshd option enabled on > mussel? > > I'd like to be able to use remote port forwarding. > > I've set it to clientspecified, so you'll have to get your client to ask > for it. Note that any port opened will only be accessible from freenets. > > -- > # TRS-80 trs80(a)ucc.gu.uwa.edu.au #/ "Otherwise Bub here > will do \ > # UCC Wheel Member http://trs80.ucc.asn.au/ #| what squirrels do > best | > [ "There's nobody getting rich writing ]| -- Collect and hide > your | > [ software that I know of" -- Bill Gates, 1980 ]\ nuts." -- Acid Reflux > #231 / > > -------------- next part -------------- An HTML attachment was scrubbed... URL: http://lists.ucc.gu.uwa.edu.au/pipermail/tech/attachments/20071018/cafe1bb2/attachment.htm From trs80 at ucc.gu.uwa.edu.au Thu Oct 18 16:20:23 2007 From: trs80 at ucc.gu.uwa.edu.au (James Andrewartha) Date: Thu, 18 Oct 2007 16:20:23 +0800 (WST) Subject: [tech] Remote port forwarding on mussel In-Reply-To: References: Message-ID: On Thu, 18 Oct 2007, James Cox wrote: > Thanks very much! > How hard/easy/impossible would it be to get a box with a bright IP that I > could then forward some global ports to mussel with? Forwarding ports from bright IPs is fairly easy, what did you want to use them for? -- # TRS-80 trs80(a)ucc.gu.uwa.edu.au #/ "Otherwise Bub here will do \ # UCC Wheel Member http://trs80.ucc.asn.au/ #| what squirrels do best | [ "There's nobody getting rich writing ]| -- Collect and hide your | [ software that I know of" -- Bill Gates, 1980 ]\ nuts." -- Acid Reflux #231 / From coxymla at gmail.com Thu Oct 18 16:26:21 2007 From: coxymla at gmail.com (James Cox) Date: Thu, 18 Oct 2007 16:26:21 +0800 Subject: [tech] Remote port forwarding on mussel In-Reply-To: References: Message-ID: I'd like to be able to get to a machine with a SNAP private IP address from home/wherever. Free-ish shell access to a user box at UCC would be nice too. On 10/18/07, James Andrewartha wrote: > > On Thu, 18 Oct 2007, James Cox wrote: > > > Thanks very much! > > How hard/easy/impossible would it be to get a box with a bright IP that > I > > could then forward some global ports to mussel with? > > Forwarding ports from bright IPs is fairly easy, what did you want to use > them for? > > -- > # TRS-80 trs80(a)ucc.gu.uwa.edu.au #/ "Otherwise Bub here > will do \ > # UCC Wheel Member http://trs80.ucc.asn.au/ #| what squirrels do > best | > [ "There's nobody getting rich writing ]| -- Collect and hide > your | > [ software that I know of" -- Bill Gates, 1980 ]\ nuts." -- Acid Reflux > #231 / > > -------------- next part -------------- An HTML attachment was scrubbed... URL: http://lists.ucc.gu.uwa.edu.au/pipermail/tech/attachments/20071018/b373d70e/attachment.htm From matt at ucc.asn.au Thu Oct 18 18:36:58 2007 From: matt at ucc.asn.au (Matt Johnston) Date: Thu, 18 Oct 2007 18:36:58 +0800 Subject: [tech] Remote port forwarding on mussel In-Reply-To: References: Message-ID: <20071018103658.GI32214@ucc.gu.uwa.edu.au> On Thu, Oct 18, 2007 at 04:26:21PM +0800, James Cox wrote: > I'd like to be able to get to a machine with a SNAP private IP address from > home/wherever. Free-ish shell access to a user box at UCC would be nice too. ssh.ucc should work for the latter already? (it's no longer coke-charged, ssh-old.ucc is still). Matt From adrian at ucc.gu.uwa.edu.au Thu Oct 18 20:03:10 2007 From: adrian at ucc.gu.uwa.edu.au (Adrian Chadd) Date: Thu, 18 Oct 2007 20:03:10 +0800 Subject: [tech] mermaid and mussel (was [ucc] minutes 2007-10-05) In-Reply-To: <4712C989.3030604@Diskworld.com.au> References: <20071005062040.GA18442@bridgewayconsulting.com.au> <20071005062821.GA6984@ucc.gu.uwa.edu.au> <603140b60710050405w7a079b1bna104dc78434fd61c@mail.gmail.com> <4712C989.3030604@Diskworld.com.au> Message-ID: <20071018120309.GA32408@ucc.gu.uwa.edu.au> On Mon, Oct 15, 2007, Adrian Woodley wrote: > How's the networking setup - bridged interfaces? If so, then the vlans > should be run on the local interface of the domU. > > Alternatively, I guess you could run the vlans on the dom0 and bridge > the individual sub-interfaces through to the domUs. Have you made the former work? :) I'm still not sure exactly what you mean too. The latter is what I've started to do on mermaid. Check out /etc/xen/xend-config.sxp and the network-script parameter; /etc/xen/scripts/local-network-bridge and /etc/xen/local-vlan-bridge. then check /etc/xen/mussel's vif parameter. For it to work you'll have to xm shutdown mussel and xm create mussel. Reboot won't pick up the new network interface. Alternatively, you could probably attach the netif via an xm command but I haven't sat down to figure that out. Adrian From coxymla at gmail.com Fri Oct 19 09:45:59 2007 From: coxymla at gmail.com (James Cox) Date: Fri, 19 Oct 2007 09:45:59 +0800 Subject: [tech] Remote port forwarding on mussel In-Reply-To: <20071018103658.GI32214@ucc.gu.uwa.edu.au> References: <20071018103658.GI32214@ucc.gu.uwa.edu.au> Message-ID: Ah, that's handy to know. In that case, I think I have it apart from the world accessible port: remote port forward to mussel and then from mussel forward another remote port on martello's bright interface. Currently it works but only listens on martello's loopback interface, could the "GatewayPorts clientspecified" setting be applied to martello as well? Cheers, ~Coxy On 10/18/07, Matt Johnston wrote: > > On Thu, Oct 18, 2007 at 04:26:21PM +0800, James Cox wrote: > > I'd like to be able to get to a machine with a SNAP private IP address > from > > home/wherever. Free-ish shell access to a user box at UCC would be nice > too. > > ssh.ucc should work for the latter already? (it's no longer > coke-charged, ssh-old.ucc is still). > > Matt > > -------------- next part -------------- An HTML attachment was scrubbed... URL: http://lists.ucc.gu.uwa.edu.au/pipermail/tech/attachments/20071019/a90c3e3b/attachment-0001.htm From coxymla at gmail.com Fri Oct 19 16:03:01 2007 From: coxymla at gmail.com (James Cox) Date: Fri, 19 Oct 2007 16:03:01 +0800 Subject: [tech] Remote port forwarding on mussel In-Reply-To: References: <20071018103658.GI32214@ucc.gu.uwa.edu.au> Message-ID: Dammit, didn't end up working. I poked around a little; is "bright-snat.ucc.asn.au" the machine that actually has an ethernet interface with a bright IP? On 10/19/07, James Cox wrote: > > Ah, that's handy to know. > In that case, I think I have it apart from the world accessible port: > remote port forward to mussel and then from mussel forward another remote > port on martello's bright interface. > Currently it works but only listens on martello's loopback interface, > could the "GatewayPorts clientspecified" setting be applied to martello as > well? > > Cheers, > ~Coxy > > On 10/18/07, Matt Johnston wrote: > > > > On Thu, Oct 18, 2007 at 04:26:21PM +0800, James Cox wrote: > > > I'd like to be able to get to a machine with a SNAP private IP address > > from > > > home/wherever. Free-ish shell access to a user box at UCC would be > > nice too. > > > > ssh.ucc should work for the latter already? (it's no longer > > coke-charged, ssh-old.ucc is still). > > > > Matt > > > > > -------------- next part -------------- An HTML attachment was scrubbed... URL: http://lists.ucc.gu.uwa.edu.au/pipermail/tech/attachments/20071019/0a51d4d2/attachment.htm From trs80 at ucc.gu.uwa.edu.au Fri Oct 19 17:02:36 2007 From: trs80 at ucc.gu.uwa.edu.au (James Andrewartha) Date: Fri, 19 Oct 2007 17:02:36 +0800 (WST) Subject: [tech] Remote port forwarding on mussel In-Reply-To: References: <20071018103658.GI32214@ucc.gu.uwa.edu.au> Message-ID: On Fri, 19 Oct 2007, James Cox wrote: > Dammit, didn't end up working. > I poked around a little; is "bright-snat.ucc.asn.au" the machine that > actually has an ethernet interface with a bright IP? No, it's NATted on madako. -- # TRS-80 trs80(a)ucc.gu.uwa.edu.au #/ "Otherwise Bub here will do \ # UCC Wheel Member http://trs80.ucc.asn.au/ #| what squirrels do best | [ "There's nobody getting rich writing ]| -- Collect and hide your | [ software that I know of" -- Bill Gates, 1980 ]\ nuts." -- Acid Reflux #231 / From grahame at angrygoats.net Wed Oct 24 20:02:37 2007 From: grahame at angrygoats.net (Grahame Bowland) Date: Wed, 24 Oct 2007 20:02:37 +0800 Subject: [tech] ViewMTN Message-ID: Hey Just to let people know, I chucked lighttpd on martello:81 to serve out viewmtn from vhost "realviewmtn.ucc.gu.uwa.edu.au" via proxypass relay from mooneye serving "viewmtn.angrygoats.net". Cheers Grahame From zanchey at ucc.gu.uwa.edu.au Tue Oct 30 15:45:27 2007 From: zanchey at ucc.gu.uwa.edu.au (David Adam) Date: Tue, 30 Oct 2007 15:45:27 +0900 (WST) Subject: [tech] Broken Stuff In-Reply-To: <20071030153413.elv9smq7g1y8kwks@webmail-3.ucs.uwa.edu.au> References: <20071030153413.elv9smq7g1y8kwks@webmail-3.ucs.uwa.edu.au> Message-ID: On Tue, 30 Oct 2007, patons02 at student.uwa.edu.au wrote: > Stuff that is broken: > > -The Snack machine's dispense interface. Yes. [AHC] and [DAG] are investigating this. > -Maroon's MPC interface/host/everything else (or MPD or something) This works again now. NFS on Maroon was broken for several weeks, and MPD refuses to start if /mp3s/playlists does not exist. NFS was mostly fixed by upgrading util-linux on Maroon, although it still doesn't want to mount its /home due to permissions errors. Manbo is reporting that Maroon certainly has permission on the share it needs, so I've no idea what's going on there. David Adam UCC Wheel Member zanchey@