terça-feira, 26 de janeiro de 2010
encantado com o pfSense
instalei o pfSense aqui acho que lá por novembro/09 e vinha usando só como gateway/firewall, serviço executado exemplarmente. Contudo, embora eu tivesse o squid ativado no meu desquitópi, resolvi experimentar com o squid no pfSense.
fui lá em system/packages e mandei baixar o squid3, embora (segundo êles) não seja estável, é beta, etc, etc.
bem.. tudo funcionado muito bem (não ativei, por desnecessário, o "transparente"), apontei meu navegador pra êle e.. vamos em frente.
continuei fuçando, aumentei o cache para 2G, a quantidade de ram para 100M (services/proxy/cache management) e ficou realmente muito bom, um avião.
mas foi aí mesmo que tive uma surpresa.. em "traffic management" eu ativei o item "Throttle multimedia files" e fui experimentar ;)
caramba, gente.. o link aqui está entre o ridículo e o inexistente: 100k virtua. Até hoje, se eu quisesse ouvir rádio via internet eu ficava ouvindo aquêle "picadinho" de áudio, maior coisa horrível.
pois bem, acabou-se. O rádio aqui, agora, funciona beleza mesmo (shoutcast). Estou ouvindo radio como nunca :D
ZFS no FreeBSD (revisado)
Instalação do ZFS no FreeBSD
ZFS quick start guide
Instalando exclusivamente ZFS no FreeBSD
Instalando exclusivamente, mas usando gpart e GPT
instalação em apple (mas deve servir para os demais)
instalação, conforme wiki.freebsd.org
mais um (do wiki) usando GPT e mirroring
problemas de segurança:
Atenção usuários de ZFS...
---------- Forwarded message ----------
From: Pawel Jakub Dawidek
Date: Tue, Nov 10, 2009 at 8:45 PM
Subject: HEADS UP: Important bug fix in ZFS replay code!
To: freebsd-current@freebsd.org
Cc: freebsd-fs@freebsd.org
Hi.
There was important bug in ZFS replay code. If there were setattr logs
(not related to permission change) in ZIL during unclean shutdown, one
can end up with files that have mode set to 07777.
This is very dangerous, especially if you have untrusted local users, as
this will set setuid bit on such files. Note that FreeBSD will remove
setuid bits when someone will try to modify the file, but it is still
dangerous.
You can locaAtenção usuários de ZFS...
---------- Forwarded message ----------
From: Pawel Jakub Dawidek
Date: Tue, Nov 10, 2009 at 8:45 PM
Subject: HEADS UP: Important bug fix in ZFS replay code!
To: freebsd-current@freebsd.org
Cc: freebsd-fs@freebsd.org
Hi.
There was important bug in ZFS replay code. If there were setattr logs
(not related to permission change) in ZIL during unclean shutdown, one
can end up with files that have mode set to 07777.
This is very dangerous, especially if you have untrusted local users, as
this will set setuid bit on such files. Note that FreeBSD will remove
setuid bits when someone will try to modify the file, but it is still
dangerous.
You can locate such files with the following command:
# find / -perm -7777 -print0 | xargs -0 ls -ld
You can locate and fix such files with the following command:
# find / -perm -7777 -print0 | xargs -0 chmod a-s,o-w,-tte such files with the following command:
# find / -perm -7777 -print0 | xargs -0 ls -ld
You can locate and fix such files with the following command:
# find / -perm -7777 -print0 | xargs -0 chmod a-s,o-w,-t
ZFS quick start guide
Instalando exclusivamente ZFS no FreeBSD
Instalando exclusivamente, mas usando gpart e GPT
instalação em apple (mas deve servir para os demais)
instalação, conforme wiki.freebsd.org
mais um (do wiki) usando GPT e mirroring
problemas de segurança:
Atenção usuários de ZFS...
---------- Forwarded message ----------
From: Pawel Jakub Dawidek
Date: Tue, Nov 10, 2009 at 8:45 PM
Subject: HEADS UP: Important bug fix in ZFS replay code!
To: freebsd-current@freebsd.org
Cc: freebsd-fs@freebsd.org
Hi.
There was important bug in ZFS replay code. If there were setattr logs
(not related to permission change) in ZIL during unclean shutdown, one
can end up with files that have mode set to 07777.
This is very dangerous, especially if you have untrusted local users, as
this will set setuid bit on such files. Note that FreeBSD will remove
setuid bits when someone will try to modify the file, but it is still
dangerous.
You can locaAtenção usuários de ZFS...
---------- Forwarded message ----------
From: Pawel Jakub Dawidek
Date: Tue, Nov 10, 2009 at 8:45 PM
Subject: HEADS UP: Important bug fix in ZFS replay code!
To: freebsd-current@freebsd.org
Cc: freebsd-fs@freebsd.org
Hi.
There was important bug in ZFS replay code. If there were setattr logs
(not related to permission change) in ZIL during unclean shutdown, one
can end up with files that have mode set to 07777.
This is very dangerous, especially if you have untrusted local users, as
this will set setuid bit on such files. Note that FreeBSD will remove
setuid bits when someone will try to modify the file, but it is still
dangerous.
You can locate such files with the following command:
# find / -perm -7777 -print0 | xargs -0 ls -ld
You can locate and fix such files with the following command:
# find / -perm -7777 -print0 | xargs -0 chmod a-s,o-w,-tte such files with the following command:
# find / -perm -7777 -print0 | xargs -0 ls -ld
You can locate and fix such files with the following command:
# find / -perm -7777 -print0 | xargs -0 chmod a-s,o-w,-t
Assinar:
Postagens (Atom)