I've attempted to upgrade both newton and the AGS routers to the latest IOS they can support.
I ran into problems with newton because it only has 8MB of flash, and IOS 12 requires 16MB. I'll have to see if I can scrounge up another 8MB when I get back.
The AGS refused to boot from flash memory, and only booted from ROM. After poking around the comp.dcom.sys.cisco newsgroup, I figured out that a jumper has to be set in the front-panel in order to enable booting from flash. I'll see if that works when I get back too. The jumper is 0x100, and needs to be moved from 0x101 to 0x102. The jumper is supposedly in a box accessible directly from the front-panel.
The basic procedure for upgrading looks like this:
# copy tftp flash
# reload
You might also have to execute commands like this:
# conf t
# boot system flash [filename]
I've upgraded PHP on quark and quarkprime.
The procedure I used was this
# portupgrade -ri --yes -f php4
which upgrades php4 and everything that depends on it.
I've upgraded Apache on quark and quarkprime to 1.3.33, and also enabled suExec support.
Getting suExec working was as simple as setting the minimum UID and GID to run the scripts as, and setting the proper web user.
I've been looking at Yahoo's DomainKey email authentication protocol. It involves using having mail gateways sign messages with a private key, and distribute public keys via DNS so clients can authenticate their origin.
The specific implementation I'm looking at is the Sendmail milter, DK-Milter. I'm running into some compilation problems on quarkprime, but I think I should be able to overcome those. Anyone interested can take a look on quarkprime in /usr/local/src/dk-milter-0.2.4.
I've gotten FreeBSD 5.3-RELEASE running on admin. I'll start doing LDAP testing over break.
Present: CharlieP, Dan, Skylar
- Backup - Split / /usr [Skylar]
- Equipment List [Dan, Skylar]
- Optical scroll mice (Dell)
- +512 MB memory per machine
- 1 year warranty extension (may be cheaper as 2 year extension)
- external scsi cabinet
- 1 with cables, 1 w/o cables
- 4 IP terminals
- FreeBSD 5 migration on admin cluster + LDAP
The FreeBSD Security team reported today a vulernability with the procfs filesystem. This affects both 4-RELEASE and 5-RELEASE. I have successfully patched quarkprime and backup, and quark awaits a good time to reboot to get it patched.