by R.I. Pienaar | May 3, 2009 | Code
Previously I wrote about RPMs I built to GeoIP enable Bind using the original patches at http://www.caraytech.com/geodns/.
I have now refreshed this for the latest CentOS 5.3, the details of the patch, install instructions etc has not changed, read the previous article I wrote for the details, the new RPMs are below:
NOTE: When you install these RPMs you won’t see a /etc/named.conf being created and a few other odd things, these are bugs that exist in the CentOS provided RPMs, they do the same.
bind-9.3.4-10.P1geodns.el5.i386.rpm
bind-chroot-9.3.4-10.P1geodns.el5.i386.rpm
bind-devel-9.3.4-10.P1geodns.el5.i386.rpm
bind-libbind-devel-9.3.4-10.P1geodns.el5.i386.rpm
bind-libs-9.3.4-10.P1geodns.el5.i386.rpm
bind-utils-9.3.4-10.P1geodns.el5.i386.rpm
bind-sdb-9.3.4-10.P1geodns.el5.i386.rpm
caching-nameserver-9.3.4-10.P1geodns.el5.i386.rpm
bind-9.3.4-10.P1geodns.el5.x86_64.rpm
bind-chroot-9.3.4-10.P1geodns.el5.x86_64.rpm
bind-libbind-devel-9.3.4-10.P1geodns.el5.x86_64.rpm
bind-devel-9.3.4-10.P1geodns.el5.x86_64.rpm
bind-libs-9.3.4-10.P1geodns.el5.x86_64.rpm
bind-sdb-9.3.4-10.P1geodns.el5.x86_64.rpm
bind-utils-9.3.4-10.P1geodns.el5.x86_64.rpm
caching-nameserver-9.3.4-10.P1geodns.el5.x86_64.rpm
bind-9.3.4-10.P1geodns.el5.src.rpm
bind.spec-diff
by R.I. Pienaar | Apr 4, 2009 | Front Page
CentOS 5.3 was released on the 1st of April, I’ve since updated a whole lot of my machines to this version and been very happy.
There are a few gotchas, mostly well covered in the release notes, the only other odd thing I found was that /etc/snmp/snmpd.options has now moved to /etc/sysconfig/snmpd.options ditto for snmptrapd.options. It’s a bit of a weird change, while it makes the SNMPD config a bit more like the rest of the RedHat system, it still is different, you’d think based on all the other files in /etc/sysconfig that this one would have been called /etc/sysconfig/snmpd rather than have the .options bit tacked on.
Other changes that I noticed is that Xen is behaving a lot better now on suspends, if I reboot a dom0 and then bring it back up the domU’s resume where they were and unlike the past the clocks do not go all over the place, in fact I’ve even seen SSH sessions stay up between reboots. Though SNMP still sometimes stop working after resume.
The general overall look of the distribution is much better, the artwork has been redone through out and now forms a nice cohesive look and feel through out.
While investigating the cause of the /etc/snmp/snmpd.options file mysteriously going missing I once again had the miss fortune of having to deal with #centos on freenode. It really is one of the most hostile channels I’ve come across in the opensource world, people are just outright arseholes, every one including the project leaders.
Immediately assuming you have no clue, don’t know what you’re talking about and generally just treating everyone like shit who dare suggest something is broken with the usual ‘works for me’ ‘read the docs’ or ‘its in the release notes’ or ‘looking at the source will not help’ style responses to every question. When as it turns out every one of those remarks were just plain wrong. No it didn’t work for them, their files also got moved by the installer. No it was not in the docs or release notes. No looking at the source would have helped a lot more than they did because I would have then been able to see for myself that the post install of the RPM moves the files etc. It took literally over a hour to get even one of them to actually make the effort to be helpful compared to about 2 minutes it would have taken if the SRPMs were available at release time.
I think they’re really doing the project a big disservice by not sorting out the irc channel in fact they actively defend and even promote the hostility shown there, in contrast to the puppet irc channel for instance it really is a barbaric bit of the 3rd world.
by R.I. Pienaar | Apr 2, 2009 | Uncategorized
I was quite excited about the new UK edition Wired. I’m not anymore.
I got my first exposure to the Wired while in school in South Africa, I think the ones we got were months behind the time and stupidly expensive, but hey we had no internet so it all seemed awesomely futuristic and ahead of its time.
The thing though that always stuck in my mind about the US edition Wired were the ads, I can clearly remember ads for Harleys, or weird american Fugly cars, even from the editions I read back in school, the ads were of products we never saw in South Africa, they were kewl, done in a style unlike anything we saw there and all just seemed so, idylic.
Fast forward a few decades, I still buy the US Wired now and then, and I still only remember the ads? Few months ago I bought one, I can clearly remember the ads for Dexter and Californication, but can’t really say much about the magazine content otherwise, eventhough I read it end to end and felt interested, even drawn to it at the time. I recall something about malware peddlers? who knows.
Why is that from a magazine that costs 6 pounds I don’t remember anything of substance other than the ads? It’s because they were different from what I see on the tube, in the cinema, on the tv, on the billboards, they were off far-off kewlness.
Enter Wired UK. The editorial content is still pretty shoddy, the signal to noise ratio is still shockingly poor for a ยฃ3.90 magazine literally filled to the brim with ads, except, now they’re the same shitty ads I see on the Tube, Train, Cinema and TV.
I read the whole thing, a day on I remember some vague predictions – one prediction sticks to mind, male birth control only around 2021? I dont think so – but mostly I remember how the ads pissed me off as instead of interesting, they’re just dominating and a reminder that I paid too much for something whose main purpose clearly is to sell ads.
I’d pay ยฃ12/month for a Wired UK without the ads, someone need to develop Tivo for paper.
by R.I. Pienaar | Apr 1, 2009 | Usefull Things
Today while giving my stats a quick glance I noticed a big jump in mail, can’t say if its Conflicker related, but the graph below speaks for itself:
The bots are very clever and very close to real mail servers, they retry emails like they should, they don’t use bad HELO strings, their address lists seems better than most – they aren’t doing a lot of dictionary attacks etc.
But they still seem to not synchronize their SMTP too well, and they do pump out a lot of mail, I see about 100+ attempts from the same IP in batches meaning they fall foul of a lot of my statistical rate limiting etc.
I suspect after today there will be a lot of unhappy people who relied on greylisting for their defenses.
by R.I. Pienaar | Mar 23, 2009 | Usefull Things
We all know not to use the default mysql config, right?
Well I accidentally left a machine to defaults, then tried to load a massive dump file into it, a month later I finally killed the process loading the data. I gave up on it ages ago but it got to the point where it was some curiosity to see just how long it will take.
As you can see from above, it was pretty dismal, slowly creeping up over time – the big jump in the beginning is when I scp’d the data onto the machine. So after killing it I had another look at the config and noticed it was the default distributed one, tuned it to better use the memory for innodb buffers and got the result below.
That’s just short of 2 days to load the data, still pretty crap, but so much better at the same time.
