All posts by Olav Vitters

New GNOME sysadmin: Andrea Veri

We’ve added a new member to the GNOME sysadmin team: Andrea Veri.

Andrea has been handling the accounts queue for a very, very long time. Furthermore, he’s involved with the GNOME membership committee (they handle the applications for GNOME foundation membership + elections). And thus now a GNOME sysadmin.

Aside from GNOME, he also does stuff within the Fedora sysadmin/infrastructure team, does some Fedora packaging and is a Debian Developer.

Personally, looking forward to him still handling every single account request. This next to cleaning up our infrastructure and documenting it 😛

New servers

Small update regarding sysadmin things:

  • Two new machines have been added. This to replace the very old hardware which does not have a support contract anymore (button, menubar, window, container). Stephen Smoogen assisted in getting them racked up and networked
  • Our RHEL entitlements expired. Bastien Nocera assisted in extending them. We now also have a procedure to update them.
  • Our RHEL5 machines now run RHEL5.7. This was severely needed as the sssd version in 5.6 was really buggy.
  • Our mail and DNS server often locks up. Unsure of the cause, seems to happen after heavy spam connections (from loads of IP addresses). The machine is old, but problem does not seem hardware related. Hopefully fixed by RHEL5.7. That said, we’ll anyway to migrate all services on this machine (due to lack of support contract).
  • We still lack 3 RHEL entitlements (ETA: next week?). Need those before we can continue moving services off the obsolete hardware. statistics

In case you haven’t heard, the GNOME Foundation Hired a System Administrator, Christer Edwards.

Christer was already a volunteer GNOME sysadmin, so he already knows a lot about the GNOME infrastructure. He fixed various things already, but I’ll leave it up to him to blog about that. The one thing I really like is that he cleaned up the Logwatch output for the various hosts that GNOME has. After which I requested he cleaned up the menubar ( Logwatch output (was 3.5MB), which he did :).

So now finally we can easily see some data for for Monday September 20:


      238   *Warning: Connection concurrency limit reached
        1   SASL authentication failed
       29   Miscellaneous warnings

  520.825M  Bytes accepted                       546,124,884
    1.675G  Bytes delivered                    1,798,214,094
 ========   ================================================

    63595   Accepted                                  19.73%
   258725   Rejected                                  80.27%
 --------   ------------------------------------------------
   322320   Total                                    100.00%
 ========   ================================================

      757   Reject relay denied                        0.29%
     7655   Reject HELO/EHLO                           2.96%
   196808   Reject unknown user                       76.07%
    13564   Reject recipient address                   5.24%
     1320   Reject sender address                      0.51%
      318   Reject client host                         0.12%
    37547   Reject RBL                                14.51%
      756   Reject header                              0.29%
 --------   ------------------------------------------------
   258725   Total Rejects                            100.00%
 ========   ================================================

     3690   4xx Reject recipient address              21.26%
    13667   4xx Reject sender address                 78.74%
 --------   ------------------------------------------------
    17357   Total 4xx Rejects                        100.00%
 ========   ================================================

   185662   Connections made
    89877   Connections lost
   185650   Disconnections
    60230   Removed from queue
     1854   Delivered
   135819   Sent via SMTP
     4809   Forwarded
       45   Resent
     4317   Deferred
   140470   Deferrals
     2050   Bounce (local)
     2271   Bounce (remote)
      356   Expired and returned to sender
        1   DSNs delivered
     2622   DSNs undeliverable

     9055   Connection failure (outbound)
     1870   Timeout (inbound)
    11557   Illegal address syntax in SMTP command
       13   Numeric hostname
       45   SMTP commands dialog error
     4629   Excessive errors in SMTP commands dialog
    40629   Hostname verification errors
       27   Hostname validation error
       23   Enabled PIX workaround
        7   SASL authenticated messages


    21374   Clean passed                              90.02%
      121   Spam passed                                0.51%
      121   Bad header passed                          0.51%
       16   Malware blocked                            0.07%
     2111   Spam blocked                               8.89%
        1   Banned file name blocked                   0.00%
 --------   ------------------------------------------------
    23744   Total Messages Scanned                   100.00%
 ========   ================================================

    21495   Ham                                       90.53%
     2232   Spam                                       9.40%
 --------   ------------------------------------------------
    23744   Total Messages Scanned                   100.00%
 ========   ================================================

        2   MIME error
     2458   Extra code modules loaded at runtime


 Viruses detected:
    HTML.Phishing.Bank-1259: 2 Time(s)
    HTML.Phishing.Bank-593: 1 Time(s)
    W32.Sality.Q-1: 2 Time(s)
    Worm.Mydoom.I: 9 Time(s)
    Worm.Mydoom.M: 5 Time(s)

Note that is the mailhub for GNOME. All outgoing (mailing lists, bugmail, etc) and incoming mail (spammers, spammers, spammers and some minor valid mail) for all machines is handled by From the logs you can easily see that we get regular distributed dictionary attacks (high number of unknown users errors), plus Greylisting that was deployed (also done by Crister)

PS: As you noticed, there is now a GNOME sysadmin blog. It is syndicated at