tech addict

I've finally gotten motivated enough to switch over to apache 2.2. Unfortunately the ebuild for apache 2.2 is currently masked due to problems with some modules (mod_auth_mysql and mod_fastcgi). I don't use mod_auth_mysql, so that posed me no problem, but I have trac setup with fastcgi. I did a little research regarding mod_fastcgi's problems, which some people have already resolved on their own. Fastcgi is currently unmaintained so those patches or any sort of real fix (the problem stems from the removal of deprecated apis) aren't being added to the main tree. I used a patch and created my own ebuild, both of which I've added to the bugzilla ticket for the problem.
After installing, I had to revise my vhost setup due to some change in the vhost handling. Apparently *.hasno.info will cause issues if you have trac.hasno.info and wiki.hasno.info defined as ServerAliases. I've switch over to using mod_rewrite for all of my *.hasno.info web routing.

Earlier this evening I resolved to finally hunt down the source of some thundirbird timeouts. The mail client would periodically timeout when getting mail. It would do this from the local network. Now my mailbox is in no way small. The mailing lists I subscribe to see to that. My mailserver is using reiserfs and maildir, so I was pretty sure it wasn't a filesystem related issue. In addition, the server is running on a set of hardware raid5 drives which rules out a disk speed issue.

While watching the mail logfile, I noticed the following error: imapd-ssl: FAMPending: timeout which led me to the enhanced idle support found in courier-imapd. When there isn't any activity at the mail client, it will enter an idle state and be sent mail reciept notifications. It's supposed to be much better than polling. After looking at the famd stuff, I came upon gamin. Gamin is a replacement for fam, that does not provide the full fam featureset or run as a system-wide daemon. Both of those changes are positive, fam was designed to handle more cases than I need or want. As far as the lack of a system-wide daemon goes, its a security plus. Gamin spawns a daemon as the calling user (its implemented as a library). After unmerging famd and installing gamin, imap interaction is much peppier.

A good while back I asked if anyone knew how to have a machine respond properly over two interfaces. We'll after some actually looking (read: using google for a bit) I found out how. As a note this assumes your using linux, I have no idea how one would accomplish this using fbsd, obsd, or solaris.

Compile in Advanced routing and enable some of the sub options as your feel. If you want to route based on content/iptables rules, I suggest enabling iptables and enabling the route based on mark stuff.

Once the kernel is all set, install iproute2. Use the ip addr command to add another ip (if you don't have one in mind already). Then, edit /etc/iproute2/rt_tables and add a table to the list for your second gateway (i used cable). Once you've done that run ip rule add from <src ip here> table cable. Then run ip route add default via <other gateway here> table cable. Once that is all set your should be able to route to that machine from both gateways. The iptables rule integration is another blog entry. Suffice it to say that if you want your torrents using one pipe and your ftp traffic another, it is indeed possible.

As a side note, I am currently quite annoyed with valve, over what seems to be hlds' inability to listen on multiple ip addresses. I have assigned two addresses on different subnets to a box and can only hit one. The other can be hit if hlds is explicitly told to listen on that ip. Very frustrating when your trying to split the bandwidth over multiple pipes.

I've come into a Seagate Scorpion96 DDS-3 autoloader, which would probably work just fine under windows using backupexec. Thats the kicker though, as I've removed all windows servers from my apartment in a consolidation effort After a little research I found bacula, which seems to cover all of my needs (and gentoo has an ebuild for). As this was my first time with a tape library/changer, I was initially oblivious to the lun probing requirement. The library itself is addressed with a single scsi id, but is actually made up of different components. In the case of the seagate we have the tape drive itself at lun 1 and the changing mechanism at lun

SCSI Media Changer driver v0.25 ch0: type #1 (mt): 0x0+1 [medium transport] ch0: type #2 (st): 0x2+4 [storage] ch0: type #3 (ie): 0x0+0 [import/export]

I've noticed that the changer driver attempts to INITIALIZE ELEMENT STATUS it will eventually timeout (3600 seconds later), which doesn't really work for me, so switched to using ch as a module and passing "init=0".

So far the bacula setup has gone well, tonight will be the first full backup. I will report my results. My only grip with bacula so far is the lack of a web ui, which I may take the time to write if bacula works well enough. On the stats side, turbo fredriksson has taken the time to write some cacti stuff for bacula.

As a note to people who attempt to implement a home backup system, mtx(1) and mt(1) are you're best friends.

<update>Apparently bacula does indeed have a web ui (bacula-web).</update>

The majority of the servers in my closet are running intel processors (mostly P3's). Apparently intel publishes microcode updates for its processors, which should supposedly improve the processor's performance and/or reliability. I have no idea if it does improve anything at this point as Intel does not provide a changelog for the microcode. Gentoo has an ebuild for the linux microcode utility which you can setup to auto-upgrade you're processor at boot. Microcode changes do not survive power-down, so they must be re-applied at boot.

Sep 21 18:00:26 sakuya kernel: microcode: CPU1 updated from revision 0x0 to 0x7, date = 05052000 Sep 21 18:00:26 sakuya kernel: microcode: CPU0 updated from revision 0xc to 0x13, date = 02062001

As you can see, there were quite a few revisions between my released P3 800's and the published intel microcode. I'll update this in a few weeks with my findings.