From alastair at ucc.gu.uwa.edu.au Thu May 4 21:39:25 2006 From: alastair at ucc.gu.uwa.edu.au (Alastair Irvine) Date: Thu, 4 May 2006 21:39:25 +0800 (WST) Subject: [tech] Apache docroot on mussel Message-ID: <20060504133925.01AEFBD2C@betelgeuse.warpspace.net> Hello. Would someone please be able to run the following,to allow people to try out PHP access to MySQL: mussel# mkdir /var/www/users mussel# chmod 1755 /var/www/users (I noticed that on mussel, user HTTP directories are not enabled: this is possibly a good thing.) From trs80 at ucc.gu.uwa.edu.au Thu May 4 21:52:26 2006 From: trs80 at ucc.gu.uwa.edu.au (James Andrewartha) Date: Thu, 4 May 2006 21:52:26 +0800 (WST) Subject: [tech] Apache docroot on mussel In-Reply-To: <20060504133925.01AEFBD2C@betelgeuse.warpspace.net> References: <20060504133925.01AEFBD2C@betelgeuse.warpspace.net> Message-ID: On Thu, 4 May 2006, Alastair Irvine wrote: > Hello. Would someone please be able to run the following,to allow people to try out PHP access to MySQL: > mussel# mkdir /var/www/users > mussel# chmod 1755 /var/www/users What's stopping you from using mermaid? Mussel's MySQL server is available from all the machines. > (I noticed that on mussel, user HTTP directories are not enabled: this is possibly a good thing.) They are enabled on martello, but this is neither here nor there, since they're only accessible from freenets anyway. -- # TRS-80 trs80(a)ucc.gu.uwa.edu.au #/ "Otherwise Bub here will do \ # UCC Wheel Member http://trs80.ucc.asn.au/ #| what squirrels do best | [ "There's nobody getting rich writing ]| -- Collect and hide your | [ software that I know of" -- Bill Gates, 1980 ]\ nuts." -- Acid Reflux #231 / From frenchie at ucc.gu.uwa.edu.au Fri May 5 13:47:50 2006 From: frenchie at ucc.gu.uwa.edu.au (James French) Date: Fri, 5 May 2006 13:47:50 +0800 Subject: [tech] New Ram for Velvet Message-ID: <20060505054750.GA9618@ucc.gu.uwa.edu.au> Hi All, The new ram for Velvet has been installed and (quickly) memtested. All looks good and happy. Frenchie From davyd at madeley.id.au Sat May 6 17:07:52 2006 From: davyd at madeley.id.au (Davyd Madeley) Date: Sat, 06 May 2006 17:07:52 +0800 Subject: [tech] Referrer Checking for Hotlinking Message-ID: <1146906472.12932.6.camel@floyd.madeley.id.au> As an idea to try and cut down our traffic bill some more (or web backtraffic is ~1/11th of our outbound traffic) I knocked up a script to analyse our referrers to look for hotlinking. This script is ~davyd/src/ucc/log-parse.py The output of this analysis for the last month or so is at: http://davyd.ucc.asn.au/ucc-test/ucc-referrers.txt (warning 2MB) The first half is ordered by referrer (to look for chronic hotlinkers), the second half is ordered by request (to look for popular items). From what I've seen of the log, things aren't incredibly bad. Obviously there is no blanket solution for dealing with hotlinking, the best we can hope for is to identify chronic problems (eg. randoms linking to images from the UCC on myspace) and do image substitution. Perhaps offer something standard people can add to their .htaccess files that references a "why hotlinking is bad" page, and an explanation to help them fix it (I've always assumed that most hotlinking is out of naivity rather than being malicious). --d From loki at ucc.asn.au Sat May 6 18:55:23 2006 From: loki at ucc.asn.au (loki) Date: Sat, 6 May 2006 18:55:23 +0800 Subject: [tech] Referrer Checking for Hotlinking In-Reply-To: <1146906472.12932.6.camel@floyd.madeley.id.au> References: <1146906472.12932.6.camel@floyd.madeley.id.au> Message-ID: <20060506105523.GA3352@localhost> On Sat, May 06, 2006 at 05:07:52PM +0800, Davyd Madeley wrote: >As an idea to try and cut down our traffic bill some more (or web >backtraffic is ~1/11th of our outbound traffic) I knocked up a script to >analyse our referrers to look for hotlinking. Could you have a default .htaccess with something like the attached? -------------- next part -------------- order allow,deny deny from all RewriteEngine on RewriteCond %{HTTP_REFERER} !^$ RewriteCond %{HTTP_REFERER} !^http://loki.ucc.asn.au(/)?.*$ [NC] RewriteCond %{HTTP_REFERER} !^http://(www\.)?ucc.asn.au/~loki(/)?.*$ [NC] RewriteRule \.(gif|jpe?g|png|css|tpl|bmp|wmv|mpg|avi)$ [F,L,NC] -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 191 bytes Desc: Digital signature Url : http://lists.ucc.gu.uwa.edu.au/pipermail/tech/attachments/20060506/cbaca01f/attachment.pgp From cameron at ucc.asn.au Sat May 6 19:14:47 2006 From: cameron at ucc.asn.au (Cameron Patrick) Date: Sat, 6 May 2006 19:14:47 +0800 Subject: [tech] Referrer Checking for Hotlinking In-Reply-To: <20060506105523.GA3352@localhost> References: <1146906472.12932.6.camel@floyd.madeley.id.au> <20060506105523.GA3352@localhost> Message-ID: <20060506111447.GI17951@zeno.patrick.wattle.id.au> loki wrote: > On Sat, May 06, 2006 at 05:07:52PM +0800, Davyd Madeley wrote: > >As an idea to try and cut down our traffic bill some more (or web > >backtraffic is ~1/11th of our outbound traffic) I knocked up a script to > >analyse our referrers to look for hotlinking. > > Could you have a default .htaccess with something like the attached? I regularly "hotlink" images from my UCC web space in my blog (hosted on a different domain), and wouldn't like to see the ability to do that vanish. That said, if members were warned about it well beforehand, and could override it where necessary, it's not a bad policy. Cameron From loki at ucc.asn.au Sat May 6 19:27:31 2006 From: loki at ucc.asn.au (loki) Date: Sat, 6 May 2006 19:27:31 +0800 Subject: [tech] Referrer Checking for Hotlinking In-Reply-To: <20060506111447.GI17951@zeno.patrick.wattle.id.au> References: <1146906472.12932.6.camel@floyd.madeley.id.au> <20060506105523.GA3352@localhost> <20060506111447.GI17951@zeno.patrick.wattle.id.au> Message-ID: <20060506112731.GA4797@localhost> On Sat, May 06, 2006 at 07:14:47PM +0800, Cameron Patrick wrote: >I regularly "hotlink" images from my UCC web space in my blog (hosted on >a different domain), and wouldn't like to see the ability to do that >vanish. I was only refering to each ~/public-html folder having it's own (generated on user add) .htaccess which would have the offered defaults. After that users can alter it as much they like i.e. adding blog addresses to those allowed >That said, if members were warned about it well beforehand, and could >override it where necessary, it's not a bad policy. However, this would not replace davyd's script which could keep an eye on those that may abuse. my 2c -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 191 bytes Desc: Digital signature Url : http://lists.ucc.gu.uwa.edu.au/pipermail/tech/attachments/20060506/f4eff5f1/attachment.pgp From davyd at madeley.id.au Sat May 6 20:54:31 2006 From: davyd at madeley.id.au (Davyd Madeley) Date: Sat, 06 May 2006 20:54:31 +0800 Subject: [tech] Referrer Checking for Hotlinking In-Reply-To: <20060506111447.GI17951@zeno.patrick.wattle.id.au> References: <1146906472.12932.6.camel@floyd.madeley.id.au> <20060506105523.GA3352@localhost> <20060506111447.GI17951@zeno.patrick.wattle.id.au> Message-ID: <1146920072.9754.74.camel@frobisher.madeley.id.au> On Sat, 2006-05-06 at 19:14 +0800, Cameron Patrick wrote: > loki wrote: > > > On Sat, May 06, 2006 at 05:07:52PM +0800, Davyd Madeley wrote: > > >As an idea to try and cut down our traffic bill some more (or web > > >backtraffic is ~1/11th of our outbound traffic) I knocked up a script to > > >analyse our referrers to look for hotlinking. > > > > Could you have a default .htaccess with something like the attached? > > I regularly "hotlink" images from my UCC web space in my blog (hosted on > a different domain), and wouldn't like to see the ability to do that > vanish. Indeed, being able to link to images from your blog &c. is today one of the main uses of your UCC webspace. This pushes out a heap of traffic thanks to the planets, but not a considerable amount. The biggest hotlinkers would seem to be Myspace users, but this wouldn't seem to be an incredible amount. One of the biggest downloads is that damned Java deb of mine, which would cost us about 70MB of backtraffic. I might replace it with a 302 redirect that redirects to my blog post about how to generate the .deb for yourself. > That said, if members were warned about it well beforehand, and could > override it where necessary, it's not a bad policy. I was simply thinking that we document a method for people to prevent hotlinking and have a method to get in touch with people who seem to be getting hotlinked if it's getting expensive. In summary: I certainly don't want to drop the ability to "hotlink", but I would like to get an idea of how much traffic we're pushing out and how much of it is related to hotlinking. --d -- Davyd Madeley http://www.davyd.id.au/ 08B0 341A 0B9B 08BB 2118 C060 2EDD BB4F 5191 6CDA From zanchey at ucc.gu.uwa.edu.au Sun May 7 02:05:58 2006 From: zanchey at ucc.gu.uwa.edu.au (David Adam) Date: Sun, 7 May 2006 02:05:58 +0800 (WST) Subject: [tech] Virus scanning on Windows machines Message-ID: Following on from [AHC]'s initial efforts, I've installed F-Prot Anti-Virus on all Wheel-controlled Windows machines in the clubroom. They're licensed under the UWA site license, and updates are provided by the same. I've also instituted periodic scans of user files using ClamAV, which should provide a useful second line of defense against file-based malware. Any suggestions on hardening the Windows machines against other malware, preferably in a hands-off fashion (inasmuch as is ever possible with this sort of thing), are gratefully received. David Adam UCC Wheel Member zanchey@ From adrian at ucc.gu.uwa.edu.au Thu May 11 12:06:53 2006 From: adrian at ucc.gu.uwa.edu.au (Adrian Chadd) Date: Thu, 11 May 2006 12:06:53 +0800 Subject: [tech] mermaid interface errors Message-ID: <20060511040653.GF243793@morwong.ucc.gu.uwa.edu.au> Yo, There's errors on Mermaid's eth0 interface which will affect how fast people can do web transfers from UCC webspace. Mermaid seems to be plugged into the accelar; would someone with accelar-fu and some spare time fiddle the interface to make duplex happy? Alternatively, what is needed to remove the accelar from active duty? Just a replacement cisco switch? Adrian From matt at ucc.asn.au Thu May 11 12:11:39 2006 From: matt at ucc.asn.au (Matt Johnston) Date: Thu, 11 May 2006 12:11:39 +0800 Subject: [tech] mermaid interface errors In-Reply-To: <20060511040653.GF243793@morwong.ucc.gu.uwa.edu.au> References: <20060511040653.GF243793@morwong.ucc.gu.uwa.edu.au> Message-ID: <20060511041139.GB1409@ucc.gu.uwa.edu.au> On Thu, May 11, 2006 at 12:06:53PM +0800, Adrian Chadd wrote: > > Yo, > > There's errors on Mermaid's eth0 interface which will affect > how fast people can do web transfers from UCC webspace. > Mermaid seems to be plugged into the accelar; would someone > with accelar-fu and some spare time fiddle the interface to make > duplex happy? > > Alternatively, what is needed to remove the accelar from active > duty? Just a replacement cisco switch? Pretty sure there's enough free ports in other stuff to just move things out of it, since there's the gigE switch and the other cisco. Certainly a spare port for mermaid. Matt From adrian at ucc.gu.uwa.edu.au Thu May 11 12:28:57 2006 From: adrian at ucc.gu.uwa.edu.au (Adrian Chadd) Date: Thu, 11 May 2006 12:28:57 +0800 Subject: [tech] mermaid interface errors In-Reply-To: <20060511041139.GB1409@ucc.gu.uwa.edu.au> References: <20060511040653.GF243793@morwong.ucc.gu.uwa.edu.au> <20060511041139.GB1409@ucc.gu.uwa.edu.au> Message-ID: <20060511042857.GG243793@morwong.ucc.gu.uwa.edu.au> On Thu, May 11, 2006, Matt Johnston wrote: > On Thu, May 11, 2006 at 12:06:53PM +0800, Adrian Chadd wrote: > Pretty sure there's enough free ports in other stuff to just > move things out of it, since there's the gigE switch and the > other cisco. Certainly a spare port for mermaid. I'll move it to another spare port then; someone please feel free to do so if I haven't done it soon. I don't have keys to the machine room and it ain't open atm. adrian From adrian at ucc.gu.uwa.edu.au Thu May 11 12:41:37 2006 From: adrian at ucc.gu.uwa.edu.au (Adrian Chadd) Date: Thu, 11 May 2006 12:41:37 +0800 Subject: [tech] mermaid interface errors In-Reply-To: <20060511042857.GG243793@morwong.ucc.gu.uwa.edu.au> References: <20060511040653.GF243793@morwong.ucc.gu.uwa.edu.au> <20060511041139.GB1409@ucc.gu.uwa.edu.au> <20060511042857.GG243793@morwong.ucc.gu.uwa.edu.au> Message-ID: <20060511044137.GH243793@morwong.ucc.gu.uwa.edu.au> i've done this; its now plugged into the Alloy. Adrian On Thu, May 11, 2006, Adrian Chadd wrote: > On Thu, May 11, 2006, Matt Johnston wrote: > > On Thu, May 11, 2006 at 12:06:53PM +0800, Adrian Chadd wrote: > > > Pretty sure there's enough free ports in other stuff to just > > move things out of it, since there's the gigE switch and the > > other cisco. Certainly a spare port for mermaid. > > I'll move it to another spare port then; someone please feel > free to do so if I haven't done it soon. I don't have keys > to the machine room and it ain't open atm. > > > > adrian From trs80 at ucc.gu.uwa.edu.au Sun May 21 00:54:01 2006 From: trs80 at ucc.gu.uwa.edu.au (James Andrewartha) Date: Sun, 21 May 2006 00:54:01 +0800 (WST) Subject: [tech] Stuff done in UCC today Message-ID: There was a bunch of productive stuff achieved in UCC today: The safe was installed on the wall under the window, bolted to both the wall, and the table (through some sun disk cases). Some images (large): http://davyd.ucc.asn.au/images/IMG_0028.JPG http://davyd.ucc.asn.au/images/IMG_0025.JPG http://davyd.ucc.asn.au/images/IMG_0024.JPG Computer Angels donated a rackmount case containing a BT878 capture card with 18 inputs on the back. We installed a p2 350 in it, which is now available as medusa, but only accepts wheel and committee logins. No luck with a driver as yet, but it's being poked. Adrian installed a second fan at the back of melanopus, which will hopefully help with its heat issues. It's been moved to under the desk, as otherwise it would block the safe. And with melanopus up, I could (cross)compile the driver for the random es1370 pci sound card that's now in velvet, so it has working sound again. Thanks to [AHC], [MTL], [JCF], [MSH], [PXY], [ZAR] and anyone else I forgot. -- # TRS-80 trs80(a)ucc.gu.uwa.edu.au #/ "Otherwise Bub here will do \ # UCC Wheel Member http://trs80.ucc.asn.au/ #| what squirrels do best | [ "There's nobody getting rich writing ]| -- Collect and hide your | [ software that I know of" -- Bill Gates, 1980 ]\ nuts." -- Acid Reflux #231 / From nick at ucc.gu.uwa.edu.au Wed May 31 11:20:02 2006 From: nick at ucc.gu.uwa.edu.au (Nick Bannon) Date: Wed, 31 May 2006 11:20:02 +0800 Subject: [tech] [wheel] Cokelog In-Reply-To: References: Message-ID: <20060531032001.GB9658@ucc.gu.uwa.edu.au> On Mon, May 08, 2006 at 01:39:38PM +0800, Rhys Bevilaqua wrote: > somebody messed up the permissions on the cokelog, also sometime before > 1:38pm monday can somebody check that there are no multiple dispenses > for me since the coke machine was erroring when i tried to dispense a > coke zero. That should fix it - this year's cokelogs are now readable from /home/other/coke/cokelog again. Sorry about the delay - here were your two? dispenses: May 8 12:27:23 mermaid : success - add -86 cents to rhys [null c0ke] by rhys [balance 623] May 8 13:32:34 mermaid : success - add -86 cents to rhys [null c0ke] by rhys [balance 537] Both mussel and mermaid had been writing to that file, which has caused some corruption of that copy of the logs. mermaid is the dispense server, it does the writing of the logfile; it will now also listen to logs from mussel. (which required a "-r" parameter in mussel:/etc/init.d/sysklogd and a syslog entry in mermaid:/etc/init.d/ucc-fw ) mussel is not the (drink) dispense server, however it's handling the snack machine, and talks to the dispense server to deduct cokecredit. /etc/cron.weekly/sysklogd on a Debian machine will automagically try to rotate all the log files, but you can edit it to prevent that. The changes will be preserved as you upgrade, like any other conffile To confuse matters, mermaid has logrotate installed as well, that lets you rotate things more cleverly, i.e. "don't rotate the cokelog unless it hits 100M". Nick. -- Nick Bannon | "I made this letter longer than usual because nick-sig at rcpt.to | I lack the time to make it shorter." - Pascal From shmookey at shmookey.net Wed May 31 11:48:45 2006 From: shmookey at shmookey.net (Luke Williams) Date: Wed, 31 May 2006 11:48:45 +0800 Subject: [tech] [wheel] Cokelog In-Reply-To: <20060531032001.GB9658@ucc.gu.uwa.edu.au> References: <20060531032001.GB9658@ucc.gu.uwa.edu.au> Message-ID: May I ask why this was forwarded to me? I was poking around at how the system worked a few days ago, but I'm pretty sure I didn't (and indeed couldn't) write or execute anything. --luke On 5/31/06, Nick Bannon wrote: > On Mon, May 08, 2006 at 01:39:38PM +0800, Rhys Bevilaqua wrote: > > somebody messed up the permissions on the cokelog, also sometime before > > 1:38pm monday can somebody check that there are no multiple dispenses > > for me since the coke machine was erroring when i tried to dispense a > > coke zero. > > That should fix it - this year's cokelogs are now readable from > /home/other/coke/cokelog again. > > Sorry about the delay - here were your two? dispenses: > May 8 12:27:23 mermaid : success - add -86 cents to rhys [null c0ke] by rhys [balance 623] > May 8 13:32:34 mermaid : success - add -86 cents to rhys [null c0ke] by rhys [balance 537] > > Both mussel and mermaid had been writing to that file, which has caused > some corruption of that copy of the logs. mermaid is the dispense server, > it does the writing of the logfile; it will now also listen to logs from > mussel. (which required a "-r" parameter in mussel:/etc/init.d/sysklogd > and a syslog entry in mermaid:/etc/init.d/ucc-fw ) > > mussel is not the (drink) dispense server, however it's handling the > snack machine, and talks to the dispense server to deduct cokecredit. > > /etc/cron.weekly/sysklogd on a Debian machine will automagically try to > rotate all the log files, but you can edit it to prevent that. The > changes will be preserved as you upgrade, like any other conffile > > To confuse matters, mermaid has logrotate installed as well, that lets > you rotate things more cleverly, i.e. "don't rotate the cokelog unless > it hits 100M". > > Nick. > > -- > Nick Bannon | "I made this letter longer than usual because > nick-sig at rcpt.to | I lack the time to make it shorter." - Pascal > > From nick at ucc.gu.uwa.edu.au Wed May 31 11:54:43 2006 From: nick at ucc.gu.uwa.edu.au (Nick Bannon) Date: Wed, 31 May 2006 11:54:43 +0800 Subject: [tech] [wheel] Cokelog In-Reply-To: References: <20060531032001.GB9658@ucc.gu.uwa.edu.au> Message-ID: <20060531035443.GG7784@ucc.gu.uwa.edu.au> On Wed, May 31, 2006 at 11:48:45AM +0800, Luke Williams wrote: > May I ask why this was forwarded to me? I was poking around at how the > system worked a few days ago, but I'm pretty sure I didn't (and indeed > couldn't) write or execute anything. Just an update for the network diagram, if you're interested. (in particular - that mermaid is the dispense server) (perhaps you're already subscribed to tech at ucc already in any case?) Nick. -- Nick Bannon | "I made this letter longer than usual because nick-sig at rcpt.to | I lack the time to make it shorter." - Pascal From matt at ucc.asn.au Wed May 31 11:58:51 2006 From: matt at ucc.asn.au (Matt Johnston) Date: Wed, 31 May 2006 11:58:51 +0800 Subject: [tech] [wheel] Cokelog In-Reply-To: References: <20060531032001.GB9658@ucc.gu.uwa.edu.au> Message-ID: <20060531035722.GZ868@ucc.gu.uwa.edu.au> On Wed, May 31, 2006 at 11:48:45AM +0800, Luke Williams wrote: > May I ask why this was forwarded to me? I was poking around at how the > system worked a few days ago, but I'm pretty sure I didn't (and indeed > couldn't) write or execute anything. CCed to tech :) Matt From shmookey at shmookey.net Wed May 31 12:01:51 2006 From: shmookey at shmookey.net (Luke Williams) Date: Wed, 31 May 2006 12:01:51 +0800 Subject: [tech] [wheel] Cokelog In-Reply-To: <20060531035443.GG7784@ucc.gu.uwa.edu.au> References: <20060531032001.GB9658@ucc.gu.uwa.edu.au> <20060531035443.GG7784@ucc.gu.uwa.edu.au> Message-ID: Ah, thanks. For some reason I defaulted to "they're telling me because it's my fault the logs got corrupted." :P On 5/31/06, Nick Bannon wrote: > On Wed, May 31, 2006 at 11:48:45AM +0800, Luke Williams wrote: > > May I ask why this was forwarded to me? I was poking around at how the > > system worked a few days ago, but I'm pretty sure I didn't (and indeed > > couldn't) write or execute anything. > > Just an update for the network diagram, if you're interested. (in > particular - that mermaid is the dispense server) > > (perhaps you're already subscribed to tech at ucc already in any case?) > > Nick. > > -- > Nick Bannon | "I made this letter longer than usual because > nick-sig at rcpt.to | I lack the time to make it shorter." - Pascal > >