Dan and I got the color laserjet in Recompute working. Despite the red dot, we just plugged it in, and it started trying to get an IP address over DHCP. I added an entry for it, giving it the address 159.28.230.103. It is setup as lp5/colorlp, and is sitting on the floor of the admin office. Other than some black lines on the bottom of the page, it works, color and all.
For the printcap, I just copied one of the hp4mplus entries, changed the driver name to hp5m, and added color to the capabilities. This works on both quark and the ACLs.
I've upgraded these packages on quark due to security problems:
1. MySQL
2. ImageMagick
3. curl
4. enscript
5. awstats
6. emacs
7. Mailman
8. xemacs
9. python
10. sudo
11. perl
12. pdflib
13. tiff
14. unarj
15. zip
16. a2ps
17. xpdf
18. Postgres
19. Squirrelmail
The following packages weren't upgraded, but need to be:
1. wget, because of HTTP URL handling problems. It can't be removed, though, because MailScanner depends on it.
Perl was a PITA, per usual.
I've upgraded MySQL from 4.0.10 to 4.0.24 in response to multiple remote privilege escalations. I took a database dump beforehand, using the command:
# mysqldump --all-databases --password > /usr/backup/mysql.dump
I didn't need it, but it's not a bad idea to dump a database before an upgrade.
I've ugpraded quark's sendmail to 8.13.3 to fix some rare errors with STARTTLS. This was a straight upgrade from ports, mail/sendmail-sasl.
I've upgraded GAIM on the ACL development image from 1.1.0 to 1.2.0. I'll upgrade the production image once I test out the development image.
A recent discussion on the SAGE mailing list pointed to milter-greylist as a quick and effective solution to spam. I've installed this for testing purposes on quark, and will monitor to see what kind of results we get.
The idea behind milter-greylist is simple. While most legit email comes from servers with queuing capabilities, most spam comes from botnets that have no queuing capabilities. The receiving MX returns a 4xx temporary error for some period of time---15 minutes to an hour being typical---before performing delivery. Legitimate servers will retry, where spam servers won't.
In response to an increase in spam, I've upgraded some elements in our spam checking software.
1. I upgraded SpamAssassin from 3.0.1 to 3.0.2 to get the latest spam definitions. This went without a hitch.
2. I upgraded MailScanner from 4.3.4 to 4.3.9. I had to comment out the "Log IFrames" option in MailScanner.conf because that was removed in the newer release.
3. I upgraded spamass-milter from 0.2.0 to 0.3.0.
4. I upgraded ClamAV from 0.75 to 0.83.
5. I enabled Pyzor and DCC checks with SpamAssassin.
Present: Dan, Skylar
* Run up-to-date Nessus against CS network from a machine outside the CS network. (Skylar, Dan)
* Figure out what' up with Maple update. (Dan)
* Get quarkprime up to speed. (Skylar, Dan?)
* Work on LDAP authentication. (Skylar)
* Get budget from TomS (CharlieP)
* Work on admin cluster over break. (Aybars)
I installed portaudit on quark, which also involved upgrading the pkg_install port. We have a significant number of vulernabilities that need to be fixed.