Hi! Group
Does anyone use BB (Big Brother) monitoring tool?
I've just installed BB on one of my Server running Linux.
How do I get this to monitor my gateway Router connection?
Any idea ?
Cheers
Jrio
----------------------------------------
Joseph Rio
Assistant Internet System Administrator
Telecom Vanuatu Limited.
Port-Vila
Vanuatu
South West Pacific
********************************************************************************************
"This email message along with any attachments is intended solely for the person
or organization to which it is addressed. It may contain confidential or legally
privileged information. If you have received this email in error, please notify the
sender immediately by return email and delete all copies of the original message and
attachments.
Telecom Vanuatu Limited (TVL) utilizes an anti-virus system and therefore any files sent
via e-mail will have been checked for known viruses. You are however advised to run your
own virus check before opening any attachments received as TVL will not accept any liability
whatsoever once an e-mail and/or any attachment is received. The views expressed herein do
not necessarily reflect the views of TVL who have no responsibility on any actions and/or
omissions of any third party whatsoever."
*********************************************************************************************
I would like to say Faafetai Tele Lava (Thank You very much) to the organisers, sponsors and especially to the instructors Philip, Hervey, Joel and Amante for the great workshop. It is one of the best technical hands-on workshops I have ever been to; and looking forward to the next one.
Also thank you O'Reilly for the books.
Malo lava,
Aniseko Ioane
________________________________
From: pacnog-bounces(a)pacnog.org on behalf of Hervey Allen
Sent: Sun 26/06/2005 11:26
To: pita(a)connect.com.fj
Cc: pacnog(a)pacnog.org
Subject: Re: [pacnog] PacNOG I Workshop Web Site
PITA Manager wrote:
> Hi Hervey,
>
> Congratulations also to you and the hard working instructors (Philip and
> Joel) - the delegates have really commended on the high level of
> expertise and experience from instructors
>
Thank you Fred. And, thank you to all the students for
working so hard.
> You may be back in the Pacific again and try more kava
And, I hope to use my Kava bowl we were given by the class
at home sometime! :-)
Cheers everyone,
- Hervey
--
-------------------------------------------------
Hervey Allen Network Startup Resource Center
hervey(a)nsrc.org GPG Key Fingerprint:
AC08 31CB E453 6C65 2AB3 4EDB CEEB 5A74 C6E5 624F
_______________________________________________
pacnog mailing list
pacnog(a)pacnog.org
http://mailman.apnic.net/mailman/listinfo/pacnog
Hermann Malpus wrote:
> Hi Hervey,
>
> I need to implement the Auto Update access to the sites that list those SPAM emails..
> What do I need to to do to have my server scan and do an auto-update so I can reduce the amount of SPAM I get daily..
>
> Would really appreciate you advise on the subject...
>
Hello Hermann,
Hello Everyone:
I thought this was a very timely question so I asked
Hermann if I could respond to this to the entire list.
If you install SpamAssassin to run with your MTA (in our
case Exim), then by default SpamAssassin will query a set of
Realtime Blackhole Lists, i.e. DNS Blocklists to determine
if an incoming message is spam. You should read this section
of the SpamAssassin documentation to see how you can further
configure this option:
http://wiki.apache.org/spamassassin/DnsBlocklists
You don't need to update anything in this case as
SpamAssassin is querying services that automatically update
themselves. What you should, however, do is run a local,
caching nameserver so that the results from these DNS
requests are cached on your local network. The SpamAssassin
documentation concerning this is here:
http://wiki.apache.org/spamassassin/CachingNameserver
If you wish to use some of the checksum-based systems that
are available:
* pyzor http://pyzor.sourceforge.net/
* dcc: http://www.rhyolite.com/anti-spam/dcc/
* razor: http://razor.sourceforge.net/
then you need to download and install each one. The default
SpamAssassin build and configuration file checks to see if
these are available when you start the spamd (SpamAssassin
Server) service. If any/all are found, then SpamAssassin
will use them. Remember during the workshop we turned these
off during install as they increase overhead on your system.
All three of these systems are automatically updated and you
do not need to do anything other than install the software
that lets SpamAssassin use the services. You can see a
summary of this here:
http://wiki.apache.org/spamassassin/NetworkTests
Generally speaking you'll want to install, maybe, one of
these at a time to see what affect they have on your
mailserver's performance.
If you search this page:
http://spamassassin.apache.org/full/3.0.x/dist/doc/Mail_SpamAssassin_Conf.h…
for "pyzor", "razor", and "dcc" you'll see where and how to
set SpamAssassin support for each item in your SpamAssasin
configuration file. Under FreeBSD this file resides here:
/usr/local/etc/mail/spamassassin
and is called "local.cf"
The configuration file we created in class turned off
everything except the included default SpamAssassin filter
rules. Our file looked like this:
use_dcc 0
use_pyzor 0
use_razor2 0
skip_rbl_checks 1
use_bayes 0
The default SpamAssassin filtering rules are here:
http://wiki.apache.org/spamassassin/SpamAssassinRules
In order to update these you need to update your version of
SpamAssassin. The reality is that the SpamAssassin filtering
rules do not change all that often as creating a good filter
set is complex. See this entry in the SpamAssassin Wiki for
a quick discussion of this:
http://wiki.apache.org/spamassassin/VirusScannerTypeUpdates?highlight=%28up…
Finally, an MTA like Exim also has support for checking
email against DNS Blocklists (RBLs). To see how you do this
read the enabling DNS Blocklists page from the Exim site here:
http://www.exim.org/howto/rbl.html
and, from the Exim manual here's how you would use the
results from using DNS blocklists with your Exim Access
Control Lists to take action:
http://www.exim.org/exim-html-4.20/doc/html/spec_37.html
But, generally speaking, if you are going to run
SpamAssassin, then this is not necessary.
Take a look at our workshop presentation about Handling
Unwanted Email here:
http://ws.edu.isoc.org/workshops/2005/PACNOG-I/day1/mail/SpamTalk.pdf
as you go about implementing any of these solutions. A more
in-depth discussion about using Exim's DNS Blocklist support
and content-filtering can be found here:
http://ws.edu.isoc.org/workshops/2005/PACNOG-I/day1/mail/junkmail-conf.htm
Finally, if you find that your mail server performance
begins to lag as you implement some of these solutions take
a look at the SpamAssasin pages for suggestions on
increasing performance:
http://wiki.apache.org/spamassassin/FasterPerformance
In addition consider your use of Bayesian logic for
detecting spam on your system. This is cpu-intesive. See
these pages for some discussion:
http://wiki.apache.org/spamassassin/BayesInSpamAssassin?highlight=%28bayes%…http://wiki.apache.org/spamassassin/BayesFaq
With all of these checks for spam available you may find
that not all of them are necessary to reach the level of
accuracy you need for your user base. You'll probably need
to do some testing, or pay attention to how things are
working to configure and tune your mailserver appropriately.
It's a lot of information, but I hope it helps. The critical
point here is that if you run SpamAssassin in it's default
configuration it will use Bayesian logic tests, DNS
Blocklists and checksum systems (razor, pyzor, dcc) if
installed. The DNS Blockliss and checksum systems are
udpated at their end automatically - you just communicate
with them via the SpamAssassin service.
Cheers everyone,
- Hervey
PS - We have quite a few people with expertise in this area
on the list. If anyone has additional suggestions, disagrees
with what I've said, or has other tips please speak up.
--
-------------------------------------------------
Hervey Allen Network Startup Resource Center
hervey(a)nsrc.org GPG Key Fingerprint:
AC08 31CB E453 6C65 2AB3 4EDB CEEB 5A74 C6E5 624F
Hi everyone,
And just to follow from Hervey's message, I've updated the PacNOG
website to include the content which Hervey so very kindly put together
on the ws.edu.isoc.org website.
You can find it all at www.pacnog.org/pacnog1 - please let me know if
there are any broken links.
philip
--
I don't know about "the first". I think Rich and co in Niue probably
beat them to that one :-)
http://news.yahoo.com/s/chitribts/tinynationaimstobe1stcyberisland
This tropical island off the east coast of Africa is best-known for its
white-sand beaches, its designer clothing outlets and its spicy
curries.
But tiny Mauritius is about to stake a new claim to fame. By year's
end, or soon afterward, it is expected to become the world's first
nation with coast-to-coast wireless Internet coverage, the first
country to become one big "hot spot."
"If there's anyone who can do it, it's us," said Rizwan Rahim, the head
of ADB Networks, the company installing the wireless radio network
across the 40-mile-long island. "It's a small place, so for a wireless
network it's manageable. For us, it's a test. If it's successful here,
we can island-hop to [mainland] Africa."
Like many African nations, this modest country has struggled
economically as the industries that underlie its economy--particularly
sugar production and textile manufacturing--have run into tough global
competition and declining prices. Looking for alternatives, the
government has settled on a new and ambitious vision: Turning sleepy
Mauritius with its endless sugar cane fields and tourist beaches into a
high-tech computer and telecommunications center.
"It is our vision to transform Mauritius into a cyber-island," said
Deelchand Jeeha, the country's minister of information technology and
telecommunications, in a speech last year. The nation, he said, "is
confident in the potential of [the industry] as an engine of growth
which can generate jobs and wealth creation."
Remote Mauritius is in many respects well-placed to win the high-tech
investment it wants. An undersea broadband fiber-optic cable, completed
three years ago, gives the island fast and reliable phone and Internet
links with the rest of Africa and with Europe, India and Malaysia. Many
of the country's 1.2 million people--a mix of French, Indian, Chinese
and African descendants--are bilingual or trilingual, speaking French,
English and either Chinese or Hindi. The country is democratic,
peaceful and stable.
In Ebene, just south of Port Louis, the capital, the government has
built the first of three planned high-tech parks. It also has stepped
up training programs to turn out tech-savvy workers and has rewritten
its business rules in an effort to create an attractive investment
climate. The changes are aimed at luring call centers, remote data
backup facilities for companies worried about terrorist attacks and,
eventually, software development companies.
`It's the future'
The government's efforts have brought in investment by players like
Microsoft, Oracle, Accenture and India's Infosys Technologies and
created about 2,000 jobs in the past two years.
"It's the future," said Satyam Gutty, a taxi driver in Port Louis whose
daughter just graduated with a university degree in information
technology. "It's a big chance for Mauritius."
That's evident at evening computer courses set up around the country by
the private National Productivity and Competitiveness Council. Even in
rural areas, housewives, businessmen, schoolchildren and agricultural
laborers are getting their first chance to use computers, part of the
government's aim of making its entire society computer-literate.
"It's something extraordinary to see people with rough hands from
manual labor holding the mouse," said Oomme Narod, a senior analyst
with the council. So far, 37,000 people have been trained in computer
basics, she said.
That doesn't mean, however, that Mauritius is suddenly flush with
skilled high-tech workers. Many of those emerging from information
technology training courses are prepared to work as call center
operators--but not software engineers.
Despite the government's effort to provide an inviting investment
climate, regulation also remains a problem. Rahim, who applied for a
license for his wireless Nomad Internet network last December, got
approval only three weeks ago, three months later than expected.
The main problem, he and others say, is that the government holds a
substantial share in Mauritius Telecom, the island's only fixed-line
telephone operator, as well as one of its Internet providers and the
company that controls the submarine fiber-optic cable that provides all
of the country's phone and Internet bandwidth.
Because the government makes so much money from the company and its
cable, it has been reluctant to open the market to competitors that
might reduce Telecom's profits, even though the country's National
Telecommunications Policy, passed in 2004, calls for "positive
discrimination" by regulators in favor of start-up companies facing off
against established firms like Telecom.
Threat from competitors
The government "wants to create a cyber-island but they haven't changed
their regulation and infrastructure enough to create the climate,"
Rahim said. If Mauritius doesn't act quickly, he warned, it may well
see its cyber-island idea stolen by competitor countries.
"There are policy decisions that still need to be taken," agreed Narod,
of the competitiveness council. Right now, "there is improvement, but
at a slow pace."
Still, Mauritius' courts have shown signs of holding the government to
its competitiveness policies, which may ease the way for future
investors.
"If any investor had called me three months ago and asked about
investing, I would have told them to go somewhere else," Rahim said.
Now, he said, "you have to come in with open eyes and an African
mentality of patience, but if you persevere you can get results."
From his office window in Mauritius' new Cybertower--a sleek blue glass
and gray stone tower that is the heart of the country's first high-tech
park--Rahim can point out one of five new radio transmission antennas
his company has installed in the last month perched beside a Hindu
temple on a nearby green mountainside.
The antennas now beam his wireless Internet service over about 60
percent of the island and within range of 70 percent of its population.
Business contracts for the service went on sale two weeks ago; a
residential launch has been delayed only because national elections in
July have eaten up all the advertising space in local media.
By year's end, he said, he hopes to have enough antennas up to cover 90
percent of the mountainous island. Getting to every last corner, he
said, might take a little longer.
"We have so many sugar cane fields," he lamented, tracing the island's
outline on a map.
Hi,
Update on the PacNOG meeting in Fiji...
For those of you who are here at the Tanoa in Nadi, just to let you know
that if you have a laptop with wireless enabled, Internet access is up
and running (and has been since Sunday evening). IPv4 is NATed (as we
used our real address space allocation for the workshop), IPv6 is
provided via 6to4.
Appreciative thanks to Connect Fiji Limited for providing the Internet
connectivity for the meeting.
We are on day two of the workshop now, with Hervey Allen and Joel
Jaeggli leading the class at the moment.
The group photo will be up on the PacNOG website (www.pacnog.org) later
on today. If any of you want the original 3Mbyte copy, please drop me a
private e-mail.
best wishes!
philip
--
