<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<HTML><HEAD>
<META content="text/html; charset=iso-8859-1" http-equiv=Content-Type>
<META name=GENERATOR content="MSHTML 8.00.6001.18783">
<STYLE></STYLE>
</HEAD>
<BODY bgColor=#ffffff>
<DIV><FONT size=2 face=Arial>Thanks Chuck. Fantastic.</FONT></DIV>
<BLOCKQUOTE
style="BORDER-LEFT: #000000 2px solid; PADDING-LEFT: 5px; PADDING-RIGHT: 0px; MARGIN-LEFT: 5px; MARGIN-RIGHT: 0px">
<DIV style="FONT: 10pt arial">----- Original Message ----- </DIV>
<DIV
style="FONT: 10pt arial; BACKGROUND: #e4e4e4; font-color: black"><B>From:</B>
<A title=chuck@tetlow.net href="mailto:chuck@tetlow.net">Chuck Tetlow</A>
</DIV>
<DIV style="FONT: 10pt arial"><B>To:</B> <A title=blueonyx@blueonyx.it
href="mailto:blueonyx@blueonyx.it">BlueOnyx General Mailing List</A> </DIV>
<DIV style="FONT: 10pt arial"><B>Sent:</B> Thursday, June 18, 2009 2:19
PM</DIV>
<DIV style="FONT: 10pt arial"><B>Subject:</B> [BlueOnyx:01442] Re: Password
failure</DIV>
<DIV><BR></DIV>Old story - I've seen it dozens of times. <BR><BR>Its the same
story with the authentication subsystem broken - probably because someone
tried to hack in. It happens everytime there is a strong hacking attempt
on the BlueQuartz machines. It breaks something between the network
services that require authentication and the actual authentication
subsystem. They're both still running - but won't play together.
<BR><BR>Use this script to fix it: <BR><BR>#!/bin/bash <BR>/sbin/service
sendmail stop <BR>/usr/bin/killall -9 sendmail <BR>/sbin/service spamassassin
stop <BR>/sbin/service dovecot stop <BR>/usr/bin/killall -9 pop3-login
<BR>/usr/bin/killall -9 dovecot-auth <BR>/sbin/service dbrecover stop
<BR>/sbin/service auditd stop <BR>rm -f /var/db/log* <BR>/sbin/service auditd
start <BR>/sbin/service dbrecover start <BR>/sbin/service saslauthd restart
<BR>/sbin/service dovecot start <BR>/sbin/service spamassassin start
<BR>/sbin/service sendmail start <BR><BR>The only difference, if you've got
some of the Nuonce packages installed - I add a line to also kill all
MailScanner processes. As you can see - that script will stop all
services that need network authentication (except SSH). It then restarts
the authentication subsystems. And finally - it restarts the network
services. I've saved that script in a directory under /root called
/root/bin and named it fix-server. That way, I can log in (only as admin
and then "su -" to root) and run it when some scumbag tries to hack one of my
servers. <BR><BR>Just remember - it has to be run as "root". Even
running as "admin" won't work - only root can do all those things. But
it will fix a broken BQ every time its been hacked at. But if you're
still having any problems - reboot! <BR><BR>Good luck. <BR><BR><BR><BR>Chuck
<BR><BR><BR><BR><FONT size=2><BR><B>---------- Original Message
-----------</B> <BR>From: "Richard Sidlin" <richard@sidlin.co.uk>
<BR>To: <blueonyx@blueonyx.it> <BR>Sent: Thu, 18 Jun 2009 08:22:08 +0100
<BR>Subject: [BlueOnyx:01438] Password failure <BR><BR>> <FONT size=2
face=Arial>Hi. Users credentials on a Blue Quartz (sorry if this is the wrong
forum) fails. When you log in on the GUI it says You have not entered a
correct username etc. The admin one works and if I try and change the password
within the virtual site, although there are no errors, it still won't log in.
POP3 for that user then fails etc.</FONT> <BR>> <BR>> <FONT
size=2 face=Arial>Is there a fix for this at all.</FONT> <BR>>
<BR>> <FONT size=2 face=Arial>Thanks</FONT> <BR>> <BR>> <FONT
size=2 face=Arial>Richard</FONT> <BR><B>------- End of Original Message
-------</B> <BR></FONT>
<P>
<HR>
<P></P>_______________________________________________<BR>Blueonyx mailing
list<BR>Blueonyx@blueonyx.it<BR>http://www.blueonyx.it/mailman/listinfo/blueonyx<BR></BLOCKQUOTE></BODY></HTML>