Redirecting Readonly Queries to ADG or RAC

Hi All,
We are planning to redirect readonly queries to a seperate Database. Alhough we have ADG( Active Data Guard) due to cost constraints we cannot afford that.
So we are planning to redirect ready only queries to RAC Node #4. As we have a four node rac cluster configured.
Is this that a optimal Approach. please advice
Cheers

Hi,
It seems you want to partition your workload by RAC nodes (or Instances).
From my knowledge RAC is not designed for partitioning by SQL-Workload but by data!
I'd like to give you 2 examples:
* If you Insert data on node 1 and query the same data on node 4 all the time, a lot of traffic between node 1 and node 4 transfers all the blocks of interst between these 2 nodes (well, more in direction 1=> 4) In this case I would test to bring BOTH workloads onto the same node. Unless CPU is saturated there, I'd expect better results.
* If you insert data in node 1 into your todays 'daily partition', and on node 4 do a report about 'yesterdays partition' (which I assume NOT to be todays partition) this will be reasonable workload separation. In best/worst case the blocks will travel from node 1 to node 4 once via interlink and all the work is done in node 4 without interfering with node1 much.
hth
Martin

Similar Messages

Network and storage queries in respect to RAC

Network port usage identification in the switch
I’m not sure about the usage of number of sockets/ports in the private switches for Oracle RAC. If we run two node cluster, how the socket usage is like and how many more nodes can be added to the cluster.
For example, if we run two nodes in the cluster, it might use 6 sockets. If the switch is a 24 sockets, I can identify how many more nodes can be added into this cluster. This is to know the scalability of the RAC based on the network component switch.
for information: Our environment has got a gigabit ethernet switch..not sure about the sockets in it.
Storage question
1. How do I identify if a single LUN is shared by multiple databases?
For example, I see only one data volume in ASM, like '+DATA1' which has got many database datafiles, logfile etc. I want to know is there a way I can see a single LUN or a group of LUN been assigned to this volume group in ASM. Is there a recommended practice to do this setup?
I read somewhere "The best practices advise not to mix the LUN with different databases present in the cluster to minimize IO operations." The question 1 is based on this only.
2. If we add/expand the disk or LUN in the volume group, I think the system needs a reboot of all cluster nodes for this to be visible to Oracle ASM. Am I correct? what is restricting not to add dynamically? Storage or OS..no clues for me. Any ideas here...
I have seen the disks which are already part of the disk group can be added dynamically to the ASM disk group but not sure about the addition/expansion of LUN...
Thanks in advance.

Network port usage identification in the switch
I’m not sure about the usage of number of sockets/ports in the private switches for Oracle RAC. If we run two node cluster, how the socket usage is like and how many more nodes can be added to the cluster.About Switch for Private network... you have 2 nodes ,you should 2 ports on switch. If you make bonding on Private interface (server), so 2 nodes .. each of nodes use 2 ports for bonding -> you should use 4 ports on switch.
>
For example, if we run two nodes in the cluster, it might use 6 sockets. If the switch is a 24 sockets, I can identify how many more nodes can be added into this cluster. This is to know the scalability of the RAC based on the network component switch.
for information: Our environment has got a gigabit ethernet switch..not sure about the sockets in it.about port number on switch... you can check from product owner...
Many nodes?... if you have plan to add many nodes... you can buy new switch and then cross to old private switch...
Or example... stack switch feature on Cisco 3750
http://www.cisco.com/en/US/docs/switches/lan/catalyst3750/software/release/12.2_25_see/configuration/guide/swstack.html
Storage question
1. How do I identify if a single LUN is shared by multiple databases?
For example, I see only one data volume in ASM, like '+DATA1' which has got many database datafiles, logfile etc. I want to know is there a way I can see a single LUN or a group of LUN been assigned to this volume group in ASM. Is there a recommended practice to do this setup?You have to know what Storage (EMC/NetApp) you are using? and find document... to help
About ASM:
Example: ASM with Emc .. check on node1
$ export ORACLE_SID=+ASM1
$ sqlplus / as sysdba
SQL> select path, library from v$asm_disk where LABEL='DATA1';
PATH LIBRARY
/dev/raw/raw4 System
that mean we have to check about device name (DATA1) at /etc/sysconfig/rawdevices file
Or
SQL> select path, library from v$asm_disk where LABEL='DATA1';
PATH LIBRARY
ORCL:DATA1 ASM Library - Generic Linux, version 2.0.2 (KABI_V2)
that mean we have used asmlib, So...
# /etc/init.d/oracleasm querydisk DATA1
Disk "DATA" is a valid ASM disk on device [1, 127]
and
# ls -la /dev/* | grep '1\, ' | grep 127
We'll see device name 's used for 'DATA1'
by the way... if you use EMC you can... use "powermt" to check storage on servers
# powermt display dev=all
>
I read somewhere "The best practices advise not to mix the LUN with different databases present in the cluster to minimize IO operations." The question 1 is based on this only.
Mix the LUN with different database may make bottle neck on HW Storage...
2. If we add/expand the disk or LUN in the volume group, I think the system needs a reboot of all cluster nodes for this to be visible to Oracle ASM. Am I correct? what is restricting not to add dynamically? Storage or OS..no clues for me. Any ideas here...On Linux... you have to reboot... to reload library... You can reboot each of nodes ... don't need reboot all nodes
>
I have seen the disks which are already part of the disk group can be added dynamically to the ASM disk group but not sure about the addition/expansion of LUN...You can use "dbca" to help add/expand LUN , after every nodes see new disks.

Daily checklist maintainace activities for two node rac

i need queries for two node rac which i can check everyday maintainace
10.2.0.4
windows (os)
asm
please provide what do i do everyday for maintainace
please give me queries and check the health check
thanks in advance

Hi;
pelase check below notes, you can see notes and can understand which process is important and what you need to check.
RAC Assurance Support Team: RAC and Oracle Clusterware Starter Kit and Best Practices (Generic) [ID 810394.1]
Master Note for Real Application Clusters (RAC) Oracle Clusterware and Oracle Grid Infrastructure [ID 1096952.1]
11gR2 Clusterware and Grid Home - What You Need to Know [ID 1053147.1]
Also see:
daily check list for rac
daily check list for rac
Regard
Helios

Open DNS vs TWC DNS (Dallas)

Should I use an open DNS or stay with TWC DNS (Dallas, TX)?
Are there really benefits to speak of as a second year Computer Engineering student?
Thanks all.

This is a comment on OpenDNS and other public domain-name system (DNS) services, such as Google DNS. You should use such a service if it solves a problem for you, and not if it creates problems you don't already have. To summarize:
1. Using public DNS will probably not make your network faster, and may make it slower.
2. It will probably not stop your browser from being redirected when you try to connect to a valid web address.
3. It will not make you safer from malware attacks.
4. It could cause confidential information to be compromised.
5. It has other privacy implications that you should take into account.
A DNS server resolves the human-readable "domain name" of an Internet host, such as www.apple.com, to the numerical address by which that host can be reached. The process is analogous to looking up a phone number by name. There is no chance that changing the DNS server you use will have any effect on a network problem not related to name resolution.
There are two valid reasons why you might want to use a public DNS service:
The DNS servers provided by your ISP are misconfigured (perhaps deliberately) or don't perform well.
You have a use for the filtering controls provided by OpenDNS and others.
Although some DNS services are touted as responding faster than others, there will be no noticeable difference if your ISP is delivering what you pay for. Most likely, the difference in response time among the DNS servers available to you is on the order of a hundredth of a second or less. But under some conditions, public DNS will significantly slow down network performance. Here is a case in point.
A content-distribution network (CDN), such as the one used by Apple to deliver software updates and iTunes content, relies on the location of the DNS server to optimize performance. If your query goes to a distant server, you may get slow downloads of Apple content, among other things. From the report of a test carried out by a networking consultant:
We listed 9 CDNs that would benefit from supporting/using edns-client-subnet, and only two actually support edns-client-subnet: CDN77 and ChinaCache. Others, including Akamai, Internap and CDNetworks, do not currently. This really is too bad, because from the performance data we collected, it is clear these CDNs deliver (much) worse performance currently in many countries to Google DNS and OpenDNS users.
Another reason often given for using public DNS is to avoid "redirection," that is, false results from a query for a valid domain name. Ethical ISP's do not intentionally redirect valid DNS queries, though it might happen unintentionally because of a misconfiguration; for example, because the address of a network host has recently changed, or because of a "poisoning" attack on the DNS server. Recently, some low-quality commercial ISP's such as CenturyLink have taken to redirecting DNS queries for search engines such as Google. Do not tolerate this practice. If your ISP is doing it, then you should demand that the redirection be stopped, or else switch to another ISP. Note that many ISP's may, and OpenDNS certainly will, redirect invalid queries to ad sites, in violation of published standards for DNS.
Some ISP's have been said to re-route all DNS queries to their own name servers, regardless of where the queries were directed. This is another intolerable practice. I don't know of any commercial ISP that is currently doing this, but if yours is, you won't be able to use a public DNS service, even if you change the network settings on your computer or router.
If your Internet access is provided by an employer or institution, rather than a commercial ISP, then you have to take what is dished out.
The claims on the OpenDNS website that it blocks malware attacks such as "Flashback" are false advertising. A DNS service does not and cannot block anything. All it can do is to selectively refuse to answer queries. It's trivial for a malware attacker to evade such controls. It's just as easy to evade the parental controls offered by OpenDNS. Nevertheless, you may find those control features useful, despite their limitations. Here is an example of an ASC user who had undesirable results from OpenDNS content filtering.
There is one exception to the rule that OpenDNS and Google DNS don't improve performance. The "prefetching" performed by modern web browsers, including Safari, may confuse some DNS servers, with the effects described in this Apple Support article. The article suggests testing OpenDNS, Google DNS, or another third-party DNS service as a possible way to overcome the problem.
If you need to switch DNS providers because of a misconfiguration of your ISP's servers, the change will most likely only need to be temporary. The problem may be resolved automatically within a matter of hours.
If you intend to use public DNS, such as OpenDNS, on a long-term basis, you should be aware of the privacy implications. As a user of the free service, you are not an OpenDNS customer, and the service provider — a for-profit corporation — doesn't have a contract with you. The marketers to whom OpenDNS sells access and information are its customers.
OpenDNS will know, and store, the address of every Internet server you use from now on. This is from its privacy policy:
When you use our Services, OpenDNS stores certain DNS, IP address and related information about you to improve the quality of our Service, to provide you with Services and for internal business and analysis purposes.
Concerning personal information, the policy states:
...[I]t is disclosed to entities that perform marketing services on our behalf or to other entities with whom we have joint marketing agreements...
You can't opt out of those disclosures. Read the privacy policy carefully and draw your own conclusions. The privacy policy of Google DNS seems to be somewhat more benign, but again, you should judge for yourself.
That's not the worst of it, though. The practice of hijacking nonexistent domains followed by most public DNS services could result in leaking confidential information to a hacker:
For example, consider the "same origin trust model" used for Web cookies. If you're holding a cookie for GOOGLE.COM and you can be fooled into following a link to KJHSDFKJHSKJHMJHER.GOOGLE.COM, and the resulting NXDOMAIN response is remapped into a positive answer to some advertising server, then you're going to send your cookie to that advertising server when you send your HTTP GET request there. Not such a bad thing for a GOOGLE.COM cookie, but a real problem for a BANKOFAMERICA.COM cookie.
To emphasize, NXDOMAIN remapping is not something that only happens when you randomly mistype a domain name. It can be exploited deliberately by malicious links placed on any web page. In the case of OpenDNS, the result would be that a cookie intended for another server would be sent to the OpenDNS web server instead. A rogue OpenDNS employee, or anyone who managed to break into the web server, might then be able to impersonate you on another website. If this scenario seems far-fetched, it's the stuff that network exploits are made of.
See also a brief. somewhat outdated, critique of OpenDNS on a Harvard Law School blog, with a response from the company's founder.

Basic set up Point to my DNS

Hello, I seem to have problems understanding the help files on one part of OS X server setup for DNS hosting. Here is my basic set up.
I currently have my godaddy hosted domain pointing to my server ns3.uncinc.net on a OS X 10.3 server. I have the server set up as ns3.uncinc.net ip 64.105.180.98. I use this server for DNS Services only.
I redirect all queries to another OX S server, ns1.uncinc.net ip 64.105.180.101 which host's ftp www mx etc.
In the Admin I set up a Master zone name "uncinc.net" in the first field.
I then enter the hostname of the domain’s SOA "ns3.uncinc.net". Not sure but I think if I understand correctly here is where the "ns3.uncinc.net" goes & not the ns1.
With that set here is where some confusion starts when I create a first record.
The admin automatically sets the NS type to "ns3.uncinc.net" from "uncinc.net".
Is this part correct?
I then have the rest of the records set up as such.
1. NS from uncinc.net" to "ns1.uncinc.net" (I changed ns3 to ns1)?
2. MX 10 from uncinc.net to ns1.uncinc.net
3. A from ns1.uncinc.net to 64.105.180.101
4. A from uncinc.net to 64.105.180.101
5. A from www.uncinc.net to 64.105.180.101
6. A from ftp.uncinc.net to 64.105.180.101
Any advice appreciated!
BJ
Message was edited by: Billy Jack Dial
Message was edited by: Billy Jack Dial

The easiest and quickest way to secure your network would be to go online and go to www.linksys.com/easy and then download and run the EasyLink Connect Tool.
The normal way would be to hardwire a computer to the router and open up IE... then on the address bar, type in 192.168.1.1 (username just leave it blank and the password as a default is admin).... then go to the tab labeled wireless, then go to wireless security...

OSX Lion Server / Mail.app with FB

Hi - I have an OSX mac mini i7 Lion Server 10.7.4 running mail server. I am getting emails from gmails but apparently, it is not getting email from Facebook registration. I tried many times but no facebook registration comes in. I tried sending email from a gmail account to my the same username and I get all of them. But, from facebook, say registering from facebook, it is not getting any. User is setup correct in osx users as well as in mail server users.
I went to mail.app and deleted the mail cache, remove the filters for spams and all that. But I still do not get FB email confirmation. What could be the reason.
This is what I get on my message log.
This from All messages log:
6/14/12 8:50:21.125 AM postfix/smtpd: connect from outmail020.snc7.facebook.com[69.171.232.154]
6/14/12 8:50:26.206 AM postfix/smtpd: disconnect from outmail020.snc7.facebook.com[69.171.232.154]
6/14/12 8:51:56.533 AM org.clamav.clamd: SelfCheck: Database status OK.
6/14/12 8:51:58.184 AM postfix/postscreen: CONNECT from [66.220.144.142]:56363
6/14/12 8:52:04.498 AM postfix/postscreen: PASS NEW [66.220.144.142]:56363
6/14/12 8:52:04.840 AM postfix/smtpd: connect from outmail008.snc4.facebook.com[66.220.144.142]
6/14/12 8:52:09.926 AM postfix/smtpd: disconnect from outmail008.snc4.facebook.com[66.220.144.142]
6/14/12 8:55:29.936 AM postfix/anvil: statistics: max connection rate 1/60s for (smtpd:69.171.232.154) at Jun 14 08:50:21
6/14/12 8:55:29.936 AM postfix/anvil: statistics: max connection count 1 for (smtpd:69.171.232.154) at Jun 14 08:50:21
This from the mail.log
Jun 14 01:11:10 rj45hotspot postfix/dnsblog[5142]: warning: dnsblog_query: lookup error for DNS query 134.143.42.114.zen.spamhaus.org: Host or domain name not found. Name service error for name=134.143.42.114.zen.spamhaus.org type=A: Host not found, try again
Jun 14 08:50:14 rj45hotspot postfix/dnsblog[7431]: warning: dnsblog_query: lookup error for DNS query 154.232.171.69.zen.spamhaus.org: Host or domain name not found. Name service error for name=154.232.171.69.zen.spamhaus.org type=A: Host not found, try again
Thanks

Hmmm, not sure what is going on, but from the Mail log, neither of those IPs have a name associated with them, 1st one is in Netherlands, 2nd one is iin Africa!???
Any idea why it'd be looking those up?
I wonder if your Facebook account has been hacked, or See if you might have this malware redirecting DNS queries...
http://macmegasite.com/node/3924
http://www.ehow.com/how_2128387_remove-osxrspluga-trojan-horse-mac.html
How to fix...
http://www.macosxhints.com/article.php?story=20071031114140862
Known DNSChanger address ranges. Source: dcwg.org
http://krebsonsecurity.com/2012/03/court-4-more-months-for-dnschanger-infected-p cs/

403 Error Message on a website?

Hello,
I tried to access a website, and I received a 403 Error Message.
It said:
"Error 403
We're sorry, but we could not fulfill your request for / on this server.
You do not have permission to access this server. Before trying again, run anti-virus and anti-spyware software and remove any viruses and spyware from your computer."
It gives me the option to fix it myself, and then that link took me to this message:
"Your request was intercepted by Bad Behavior, security software which protects the Web site you visited from malicious activity, such as hackers, spam and viruses. We apologize for the inconvenience, but your request matched a profile of suspicious activity. This problem is usually quite easy to fix.
Your computer's IP address was determined to have recently sent spam or engaged in malicious activity as reported by the Project Honey Pot monitoring service. This means your computer is most likely infected with viruses or other malicious software. See below for more information.
This problem may be caused by viruses or spyware on your computer, or by malicious software that pretends to be anti-virus or anti-spyware software. Ensure that you have REAL anti-virus and anti-spyware software on your computer, that they are kept up-to-date, and that you have run a full system scan using each tool. Once your system is cleaned of viruses and spyware, please try your request again.
The free Microsoft Security Essentials provides reasonable protection against a wide variety of malicious software.
If the above suggestions fail to resolve the problem, click Back and contact the e-mail address you were given for further assistance."
Then the contact email address was invalid!
The website is a valid teen site, nothing shady, and I haven't participated in any malicious activity that I know of!
Please help, I'm running Tiger 10.4.11 on a Macbook, using Firefox.
Thanks,
Jen

Hi BCJennyP, and a warm welcome to the forums!
Hard to tell if it's real or not, there is a Project Honey Pot Services...
http://www.projecthoneypot.org/services_overview.php
http://www.projecthoneypot.org/faq.php
We know you don't have a virus, but could be some spammer faking your IP.
To see if it's you or your provider, What's my ip...
http://www.whatismyipaddress.com/
Start with these three, check SpamCop or SpamHaus to see if your IP is there...
http://spamcop.net/bl.shtml
http://www.spamhaus.org/lookup.lasso
http://www.spamhaus.org/zen/
Sometimes an ISP will bloc a whole other ISP too, if it's the source of too much SPAM.
Might also see this post by Gallomimia...
http://discussions.apple.com/message.jspa?messageID=9465359#9465359
Klaus1 on viruses...
http://discussions.apple.com/thread.jspa?messageID=10582058#10582058
See if you might have this malware redirecting DNS queries...
http://macmegasite.com/node/3924
http://www.ehow.com/how2128387remove-osxrspluga-trojan-horse-mac.html
How to fix...
http://www.macosxhints.com/article.php?story=20071031114140862
Get MacScan...
http://www.apple.com/downloads/macosx/networking_security/macscan.html
Also, beware of MacSweeper, malware itself!
Nasty Nasty ! 1023.dmg...
http://x704.net/bbs/viewtopic.php?f=12&t=2178
MacSweeper, malware...
http://en.wikipedia.org/wiki/MacSweeper
If none of those are it, then report back please.

Can't use Google. At all. Please help!

A couple of days ago, I started having trouble using any Google applications or even loading the pages for them. I can't check my gmail, get on the iGoogle homepage, use the search bar in the browser, or even load www.google.com. At first I thought maybe it was just down for a few minutes, whatever. At work, I can check my e-mail, use Google normally logged in, etc. Then I came home and it didn't work here still.
Can anyone help? I have OS X, 4.11. My computer and internet are working fine. I am using an updated version of Safari, and have tried using Firefox-- no difference. I have tried using my fiance's computer (a Mac laptop, running 10.4.something) using Safari and Firefox too. Our computers are both hooked up via a broadband router to the same internet connection, which I have reset and restarted a few times. I have updated my computer, reset Safari twice, restarted the computer several times, etc.
Is it possible that our IP has been blocked by Google somehow? My account is working as always on other computers, and I can't even imagine something I could have done to result in that, but I really can't think of another explanation. Could our ISP have some sort of issue with it? I'm at a loss here.

Hi Julie, and a warm welcome to the forums!
Try putting this in the URL bar of any browser...
http://209.85.171.100/
does that get you to Google?
If so, Try putting these numbers in Network>TCP/IP>DNS Servers for the Interface you're using...
208.67.222.222
208.67.220.220
Then Apply. These are safer/faster than most ISP's DNS numbers, and have been patched against DNS poisoning.
See if you might have this malware redirecting DNS queries...
http://macmegasite.com/node/3924
How to fix...
http://www.macosxhints.com/article.php?story=20071031114140862
Nasty Nasty ! 1023.dmg...
http://x704.net/bbs/viewtopic.php?f=12&t=2178
http://www.dnschanger.com/

How do you remove unwanted remote access teams from entering and copying your system?

Everytime I start up my MacbookPro 15" running os x 10.4.11 (10.5 gave me black screen bug, I start up termial and console (yes I am paranoid ~ for good reason). There seems to be one group or group of groups that keep logging on, moniterig and copying everytime I make any changes. I have tried commands from the terminal and that may work for a bit (they are a sneaky bunch), but even then, I'm not sure that I have total and confidential control of my computer. The worst is having someone blocking look-ups, tool buttons, copy, trash, etc. But, the very worst is not having the conrol and privacy that has been so greatly promised for years. Most times I cannont print. The button is grayed out or the document prints somewhere in cyberspace. I have been searching for weeks and it seems everything is just RSS positive. I find it hard to believe I am the only one with this problem. Oh, and for you Apple techs that say it's impossible. I've got the proof. So stop the denial. I hope someone here can share some insight.
Cheers!

Installed anything lately?
See these for a list of some key loggers...
http://forums.macosxhints.com/archive/index.php/t-41204.html
http://www.keylogger-mac.com/mac-keylogger-perfect-keylogger-for-mac-os-x.html
http://uglypufferfish.com/2008/10/31/mac-keyloggers/
Free Sophos...
http://www.sophos.com/products/enterprise/endpoint/security-and-control/mac/
See if you might have this malware redirecting DNS queries...
http://macmegasite.com/node/3924
http://www.ehow.com/how_2128387_remove-osxrspluga-trojan-horse-mac.html
How to fix...
http://www.macosxhints.com/article.php?story=20071031114140862
Get MacScan...
http://www.apple.com/downloads/macosx/networking_security/macscan.html
Malware list....
http://x704.net/bbs/viewtopic.php?f=6&t=4479
Also, beware of MacSweeper, malware itself!
Nasty Nasty ! 1023.dmg...
http://x704.net/bbs/viewtopic.php?f=12&t=2178

Mail not coming in even though it's on the server

A friend is having trouble receiving her emails. She's running 10.4.11 on an eMac.
The last email she received was 5 days ago. She can send emails no problem. When we look at the server via Account Info we can see all her emails but they're not transferring to her inbox. Strange!?
Action taken so far:
Safe Boot from the HD, (holding Shift key down at bootup), it will try to repair your Disk Directory while the spinning radian is happening, so let it go, run Disk Utility in Applications>Utilities, then highlight your drive, click on Repair Permissions, then move these folder & file to the Desktop.
Move this Folder to the Desktop...
/Users/YourUserName/Library/Caches/Mail/
Move this file to the Desktop...
/Users/YourUserName/Library/Mail/Envelope Index
Reboot.
If that doesn't do it and you can afford to redo all your Rules, try these & reboot...
/Users/YourUserName/Library/Mail/MessageRules.plist
/Users/YourUserName/Library/Mail/MessageRules.plist.backup
This has not worked. Any further info/help would be appreciated.
Thank you.

I haven't heard of any actual Viruses, but some other malware...
See if you might have this malware redirecting DNS queries...
http://macmegasite.com/node/3924
http://www.ehow.com/how2128387remove-osxrspluga-trojan-horse-mac.html
How to fix...
http://www.macosxhints.com/article.php?story=20071031114140862
Get MacScan...
http://www.apple.com/downloads/macosx/networking_security/macscan.html
Malware list....
http://x704.net/bbs/viewtopic.php?f=6&t=4479
Klaus1 on viruses...
http://discussions.apple.com/thread.jspa?threadID=1764179&tstart=0
Do they use any MS Office type software?

Spam addresses appearing in place of my outgoing email address

This is a worry , on my sent files the from says "Best -Quality Pfizer !!!..sounds like Ive been poisoned ..I cant find it anywhere.. Im tired of this ..I would like to dump all my emails and this program and clean install a new mail program .
Anyone have any clues to 1. why this is ..my guess is virus
2. where do I get mailprogram for 10.4.11... Is there any other chance of this still being in this machine ? would be most greatful for any help here many thanks Rk

Hi Rod, and a warm welcome to the forums!
Two other options for Mail Apps, there are many more, but these are free...
Eudora, (can Import your Mail from Mail)...
http://www.eudora.com/download/
Thunderbird...
http://www.mozilla.com/thunderbird/
See if you might have this malware redirecting DNS queries...
http://macmegasite.com/node/3924
http://www.ehow.com/how2128387remove-osxrspluga-trojan-horse-mac.html
How to fix...
http://www.macosxhints.com/article.php?story=20071031114140862
Get MacScan...
http://www.apple.com/downloads/macosx/networking_security/macscan.html
Malware list....
http://x704.net/bbs/viewtopic.php?f=6&t=4479
Boonana Trojan for Mac OS X and how to remove it
http://msmvps.com/blogs/donna/archive/2010/10/27/boonana-trojan-horse-for-mac-os -x-spread-via-social-media.aspx
Or maybe post a Long Header from Mail here so we might deci8pher what is going on.

Does anyone have opinions about at

     Does anyone have experience with or opinions about the free McAfee security suite offerd by At&t U-Verse? I would also ask the same about OpenDNS, which seemed to work fine on my old Mac. Thanks

The McAfee product is much worse than useless.
This is a comment on OpenDNS and other public domain-name system (DNS) services, such as Google DNS. You should use such a service if it solves a problem for you, and not if it creates problems you don't already have. To summarize:
1. Using public DNS will probably not make your network faster, and may make it slower.
2. It will probably not stop your browser from being redirected when you try to connect to a valid web address.
3. It will not make you safer from malware attacks.
4. It could cause confidential information to be compromised.
5. It has other privacy implications that you should be aware of.
A DNS server resolves the human-readable "domain name" of an Internet host, such as www.apple.com, to the numerical address by which that host can be reached. The process is analogous to looking up a phone number by name. There is no chance that changing the DNS server you use will have any effect on a network problem not related to name resolution.
There are two valid reasons why you might want to use a public DNS service:
The DNS servers provided by your ISP are misconfigured (perhaps deliberately) or don't perform well.
You have a use for the filtering controls provided by OpenDNS and others.
Although some DNS services are touted as responding faster than others, there will be no noticeable difference if your ISP is delivering what you pay for. Most likely, the difference in response time among the DNS servers available to you is on the order of a hundredth of a second or less. But under some conditions, public DNS will significantly slow down network performance. Here is a case in point.
A content-distribution network (CDN), such as the one used by Apple to deliver software updates and iTunes content, relies on the location of the DNS server to optimize performance. If your query goes to a distant server, you may get slow downloads of Apple content, among other things. From the report of a test carried out by a networking consultant:
We listed 9 CDNs that would benefit from supporting/using edns-client-subnet, and only two actually support edns-client-subnet: CDN77 and ChinaCache. Others, including Akamai, Internap and CDNetworks, do not currently. This really is too bad, because from the performance data we collected, it is clear these CDNs deliver (much) worse performance currently in many countries to Google DNS and OpenDNS users.
Another reason often given for using public DNS is to avoid "redirection," that is, false results from a query for a valid domain name. Ethical ISP's do not intentionally redirect valid DNS queries, though it might happen unintentionally because of a misconfiguration; for example, because the address of a network host has recently changed, or because of a "poisoning" attack on the DNS server. Note that many ISP's may, and OpenDNS certainly will, redirect invalid queries to ad sites, in violation of published standards for DNS.
Recently, a few low-quality commercial ISP's such as "CenturyLink" have taken to deliberately redirecting DNS queries for some domains, such as search engines. Do not tolerate this practice. If your ISP is doing it, then you should demand that the redirection be stopped, or else switch to another ISP.
Some ISP's have been said to route all DNS queries to their own name servers, regardless of where the queries were directed—another intolerable practice. I haven't heard that any commercial ISP is now doing this, but if yours is, you won't be able to use a public DNS service, even if you change the network settings on your computer or router.
Of course, if your Internet access is provided by an employer or institution, rather than by a commercial ISP, then you have to take whatever you get.
The claims on the OpenDNS website that it blocks malware attacks such as "Flashback" are false advertising. A DNS service does not and cannot block anything. All it can do is to selectively refuse to answer queries. It's trivial for a malware attacker to evade such controls. It's just as easy to evade the parental controls offered by OpenDNS. Nevertheless, you may find those control features useful, despite their limitations. Here is an example of an ASC user who had undesirable results from OpenDNS content filtering.
There is one limited exception to the rule that OpenDNS and Google DNS don't improve performance. The "prefetching" performed by modern web browsers, including Safari, may confuse some DNS servers, with the effects described in this Apple Support article. The article suggests testing OpenDNS, Google DNS, or another third-party DNS service as a possible way to overcome the problem.
If you need to switch DNS providers because of a misconfiguration of your ISP's servers, the change will most likely only need to be temporary. The problem may be resolved automatically within a matter of hours.
If you're considering whether to use public DNS, such as OpenDNS, on a long-term basis, you should take into account the privacy implications. As a user of the free service, you are not an OpenDNS customer, and the service provider—a for-profit corporation—doesn't have a contract with you. The marketers to whom OpenDNS sells access and information are its customers.
OpenDNS will know, and store, the address of every Internet server you use from now on. This is from its privacy policy:
When you use our Services, OpenDNS stores certain DNS, IP address and related information about you to improve the quality of our Service, to provide you with Services and for internal business and analysis purposes.
Concerning personal information, the policy states:
...[I]t is disclosed to entities that perform marketing services on our behalf or to other entities with whom we have joint marketing agreements...
You can't opt out of those disclosures. Read the privacy policy carefully and draw your own conclusions. The privacy policy of Google DNS seems to be somewhat more benign, but again, you should judge for yourself.
That's not the worst of it, though. The practice of hijacking nonexistent domains followed by most public DNS services could result in leaking confidential information to a hacker:
For example, consider the "same origin trust model" used for Web cookies. If you're holding a cookie for GOOGLE.COM and you can be fooled into following a link to KJHSDFKJHSKJHMJHER.GOOGLE.COM, and the resulting NXDOMAIN response is remapped into a positive answer to some advertising server, then you're going to send your cookie to that advertising server when you send your HTTP GET request there. Not such a bad thing for a GOOGLE.COM cookie, but a real problem for a BANKOFAMERICA.COM cookie.
NXDOMAIN remapping is not something that only happens when you randomly mistype a domain name. It can be exploited deliberately by malicious links placed on any web page. In the case of OpenDNS, the result would be that a cookie intended for another server would be sent to the OpenDNS web server instead. A rogue OpenDNS employee, or anyone who managed to break into the web server, might then be able to impersonate you on another website. If this scenario seems far-fetched, it's the stuff that network exploits are made of.
See also a brief, and somewhat outdated, critique of OpenDNS on a Harvard Law School blog, with a response from the company's founder.

Mail OS X Security breach...

FYI.
Apparently my Mail program was hacked. I'm no expert on security breaches but the story goes like this...
Our ISP was acting up. I've verified w/4 others in the neighborhood (both Windows and Mac) using the same ISP who were experiencing the same issue. Would load some sites, some just wouldn't load. I've no idea if this is relative or not, but...
The wife couldn't check her email because the Internet wouldn't connect. I looked at it, figured it was down, and went to bed. Next morning EVERY email in all 5 of my emails accounts was gone, except for my wife's account. Per the wife, she checked before she went to bed and all emails were gone in all accounts. She said there was an open window called Tiger Mail that said; If you'd like to continue to receive your email, click here. (Uh oh). She did and her inbox filled right up.
Malware?
I did a full erase/reformat regardless.

See if you might have this malware redirecting DNS queries...
http://macmegasite.com/node/3924
How to fix...
http://www.macosxhints.com/article.php?story=20071031114140862
Nasty Nasty ! 1023.dmg...
http://x704.net/bbs/viewtopic.php?f=12&t=2178
http://www.dnschanger.com/

Mail and safari has some sort of virus, doesnot let me fetch my mails

hi all,
i am on a mac os 10.4.11
where i use mac "mail" for all my emails.
Mail is configured to my gmail account.
but recently whenever i try to download emails to my laptop the get the following message :
There may be a problem with the mail server or network. Check the settings for account "IMAP Account" or try again.
The server error encountered was: Mail was unable to verify the identity of this server, which has a certificate issued to "*.hostgator.com". The error was:
An SSL error occurred while trying to read data from the server "imap.gmail.com". Verify that this server supports SSL and that your account settings are correct.
You might be connecting to a computer that is pretending to be "imap.gmail.com", and putting your confidential information at risk. Would you like to continue anyway?
i hav tried pop.gmail.com too as a matter of fact i hav even formated my mac thinking that its a virus.
i hav also tried deleting the com.apple.mail.plist, but its still the same, i also face a similar sort of problem where my safari gets stuck to the following page and does not allow me to surf,
**ERROR 404 - PAGE NOT FOUND**
**Oops! Looks like the page you're looking for was moved or never existed.**
**Make sure you typed the correct URL or followed a valid link.**
**We recommend you load this site using Firefox.**
**This Site is hosted by Hostgator**
**Build your website today for 1 cent! Coupon code: "404PAGE"**
**All the money from this page is donated to charity. Click here if you wish to change this page.**
please help me find a solution to this.
regards
udyan

Hi udyan, and a warm welcome to the forums!
There is a hosting service called hostgator.com, if you are getting that then I suspect you picked up a Trojan.
See if you might have this malware redirecting DNS queries...
http://macmegasite.com/node/3924
How to fix...
http://www.macosxhints.com/article.php?story=20071031114140862
http://www.dnschanger.com/
Beware of MacSweeper, malware...
http://en.wikipedia.org/wiki/MacSweeper
Call your Credit Card companies, someone may have your username & passwords... sorry for the report, but it sure sounds like it, maybe try to get to another computer & change your mail passwords & such.

Browsers won't open webpages but internet connection is fine

All of a sudden, neither safari nor firefox will open web pages. However, the computer is connected to the internet. I have tried the network diagnostic and it says everything is fine. I have tried turning airport off and on, same with the computer (even left it overnight) and time capsule. At one point when I turned my computer back on I could get on the web again but the next time I went back to the computer it was the same problem and turning it off and back on did not work that time. I originally could get on-line with my kindle fire just fine (thus I knew it wasn't my network) but on day 2 when it urned my kindle fire on, it was doing the same thing where it showed that I was connected to the internet but it won't open any web pages. I've confirmed with other wirless devices though that the internet is working. I can't figure it out, nor figure out why the kindle fire would be affected to (or if that's just coincident and some other issue with my kindle fire, whcih is possible). I've tried searching the internet and none of the suggestions I've seen for similar problems have fixed mine. Any help would be greatly appreciated. Thanks!

Open System Preferences>Network>Configure>Proxies Tab, make sure none are set, like for HTTP & HTTPS.
10.5/10.6 instructions, System Preferences>choose interface>Advanced>Proxies Tab, make sure none are set, like for HTTP & HTTPS.
See if you might have this malware redirecting DNS queries...
http://macmegasite.com/node/3924
http://www.ehow.com/how_2128387_remove-osxrspluga-trojan-horse-mac.html
How to fix...
http://www.macosxhints.com/article.php?story=20071031114140862
Get MacScan...
http://www.apple.com/downloads/macosx/networking_security/macscan.html
Malware list....
How to uninstall MacKeper...
http://applehelpwriter.com/2011/09/21/how-to-uninstall-mackeeper-malware/
https://discussions.apple.com/docs/DOC-3039
http://x704.net/bbs/viewtopic.php?f=6&t=4479

Redirecting Readonly Queries to ADG or RAC

Similar Messages

Maybe you are looking for