HPaq’s iLO is a strange beast, its functionality seems split between the SSH CLI and the web interface. Depending on your particular mission, some goals are only achievable using the whole ActiveX / Java remote console in IE. Sigh.

To get this flying from virtualised VMware, here’s the full SSH mutter to forward the ports via an access host. I’m always forgetting it, thus this post.

sudo ssh -g -L 80:${IP}:80 -L 3389:${IP}:3389 -L 443:${IP}:443 -L 17988:${IP}:17988 -L 17990:${IP}:17990 -L 23:${IP}:23 access005.example.com

IP is the iLO’s address. -g allows the port forwards to be reachable via other LAN hosts (eg: the VMware guest).  The sudo sorts the forwards for those super-privileged < 1024 ports.

Yes, that really is port 23 – telnet.

ssh -Dlocalhost:1080 -C host.example.com

You can now aim your browser’s SOCKS settting at localhost:1080. Bonus points for using a locally-hosted PAC file to determine which traffic is routed via the proxy:

function FindProxyForURL(url, host) {
  if (shExpMatch(host, "*.example.com"))
    return "SOCKS 127.0.0.1:1080"
  else
    return "DIRECT";
}

For getting sight of servers behind a firewall without remote proxies (hello Privoxy) and continual browser fiddling this is ideal. Thanks Murb!

The self-wire kits I found have the RJ45 connections fixed but let you decide the DB9 pin assigments. The Avocent needs a crossover which means the wiring isn’t one to one. It’s detailed here.

So I don’t lose it again:

DB9 pin 9 is unused. No idea how standard the colour / RJ45 assignment is. The merging of brown and white wires, and the splitting of the orange into two pins is the fudge: admittedly I thought I was building straight-through connectors when I set out!

mail.server.default.fetch_by_chunks to false

From here. Unsure if the break is local or on the mailserver, a reasonably normal Courier IMAP deal.

ahd0: <adaptec (Dell OEM) 39320 Ultra320 SCSI adapter> port 0xdc00-0xdcff,0xd800-0xd8ff mem 0xfe7fe000-0xfe7fffff irq 50 at device 7.0 on pci3

plus

Aug 25 10:22:52 mantis386 kernel: ahd0: Recovery Initiated - Card was not paused
Aug 25 10:22:52 mantis386 kernel: >>>>>>>>>>>>>>>>>> Dump Card State Begins < <<<<<<<<<<<<<<<<
Aug 25 10:22:52 mantis386 kernel: ahd0: Dumping Card State at program address 0x22 Mode 0x33
Aug 25 10:22:52 mantis386 kernel: INTSTAT[0x0] SELOID[0x0] SELID[0x0] HS_MAILBOX[0x0]
Aug 25 10:22:52 mantis386 kernel: INTCTL[0xc0]:(SWTMINTEN|SWTMINTMASK) SEQINTSTAT[0x10]:(SEQ_SWTMRTO)
Aug 25 10:22:52 mantis386 kernel: SAVED_MODE[0x11] DFFSTAT[0x33]:(CURRFIFO_NONE|FIFO0FREE|FIFO1FREE)
Aug 25 10:22:52 mantis386 kernel: SCSISIGI[0x27]:(P_DATAOUT_DT|ACKI|REQI|BSYI) SCSIPHASE[0x0]
Aug 25 10:22:52 mantis386 kernel: SCSIBUS[0x16] LASTPHASE[0x1]:(P_DATAOUT|P_BUSFREE)
Aug 25 10:22:52 mantis386 kernel: SCSISEQ0[0x40]:(ENSELO) SCSISEQ1[0x12]:(ENAUTOATNP|ENRSELI)
Aug 25 10:22:52 mantis386 kernel: SEQCTL0[0x0] SEQINTCTL[0x0] SEQ_FLAGS[0x0] SEQ_FLAGS2[0x0]
Aug 25 10:22:52 mantis386 kernel: QFREEZE_COUNT[0x49] KERNEL_QFREEZE_COUNT[0x49] MK_MESSAGE_SCB[0x55]
Aug 25 10:22:52 mantis386 kernel: MK_MESSAGE_SCSIID[0x7] SSTAT0[0x10]:(SELINGO) SSTAT1[0x8]:(BUSFREE)
Aug 25 10:22:52 mantis386 kernel: SSTAT2[0x0] SSTAT3[0x0] PERRDIAG[0x0] SIMODE1[0xa4]:(ENSCSIPERR|ENSCSIRST|ENSELTIMO)
Aug 25 10:22:52 mantis386 kernel: LQISTAT0[0x0] LQISTAT1[0x0] LQISTAT2[0x80]:(PACKETIZED)
Aug 25 10:22:52 mantis386 kernel: LQOSTAT0[0x0] LQOSTAT1[0x0] LQOSTAT2[0xc0]
Aug 25 10:22:52 mantis386 kernel:
Aug 25 10:22:52 mantis386 kernel: SCB Count = 256 CMDS_PENDING = 97 LASTSCB 0x5a CURRSCB 0x55 NEXTSCB 0x54
Aug 25 10:22:52 mantis386 kernel: qinstart = 32195 qinfifonext = 32195
Aug 25 10:22:52 mantis386 kernel: QINFIFO:
Aug 25 10:22:52 mantis386 kernel: WAITING_TID_QUEUES:
Aug 25 10:22:52 mantis386 kernel: 0 ( 0x5 0x2e 0x15 0x42 0x5b 0x67 0x2a 0x6c 0x71 0x34 0x13 0x68 0x1 0x53 0x73 0x6d 0x3 0x70 0x32 0x11 0x49 0
x47 0x45 0x7b 0x31 0x6f 0x64 0x1f 0x35 0x19 0x7c 0x0 0x5c 0x50 0x4c 0x7 0x1c 0x4a 0x59 0x4b 0x7e 0x3b 0x1d 0x4e 0x2b 0x17 0x66 0x6b 0x30 0x60
0x75 0x25 0x38 0x1a 0x39 0x2d 0x8 0x6 0x58 0x12 0xd 0x46 0x7d 0x6a 0x7f 0x41 0x36 0x62 0x78 0x2f 0x79 0x74 0x7a 0x24 0x5d 0x44 0x5a 0x55 0x5
4 0x37 0x48 0x4f 0x40 0x2c 0xf 0x43 0x61 0x76 0x52 0x3a 0x29 0xb 0xc 0x77 0x57 0x63 0x69 )
Aug 25 10:22:52 mantis386 kernel: Pending list:


equals

camcontrol tags da0 -N 64

Sigh.

Lazyweb told me how.

[lemon@core ~ ] 0 $ for z in 4 5 6 7 8 9 10 11 12 ; do echo 'GET /' | openssl s_client -connect devgateway${z}.foo.co.uk:443 2>&1 | openssl x509 -text | grep -i 'Not Before' ; done
Not Before: May 9 11:24:00 2006 GMT
Not Before: May 9 11:54:05 2006 GMT
Not Before: May 9 11:54:05 2006 GMT
Not Before: May 9 11:24:00 2006 GMT
Not Before: May 9 11:24:01 2006 GMT
Not Before: May 9 11:24:01 2006 GMT
Not Before: May 9 11:54:06 2006 GMT
Not Before: May 9 11:24:01 2006 GMT
Not Before: May 9 11:24:01 2006 GMT


Ugly, but it works. the ssl_client(1) man page contains this apology:

BUGS
Because this program has a lot of options and also because some of the
techniques used are rather old, the C source of s_client is rather hard
to read and not a model of how things should be done. A typical SSL
client program would be much simpler.


$ find /some/path -type f -exec perl -pi -e'y/\015//d;' \{\} \;

It’d be nicer to used xargs(1) instead of find(1)’s own -exec flag – way more efficient. However, chances are that if there’s borked line endings in a file tree then there’s probably also filenames with whitespace…

Not editing binary files would also be a bonus!