Re: Loading .bash_profile under X-Windows
On Mon, 11 Apr 2005 01:12:25 -0700, Loren M. Lang [EMAIL PROTECTED] said: On Sat, Apr 09, 2005 at 10:40:01AM +0200, Kiffin Gish wrote: How can I get terminal under X-Windows to load my .bash_profile (and any other stuff) that is usually loaded when at the initial prompt? A more general question might be: what files (.profile, .login, whatever) and in what order are loaded every I login via a shell and how are these settings propagated up through Gnome desktop? ...snip... The first shell was just started normally and the second was started as a login shell. Connecting to a machine through ssh or logging in on a text console starts a login shell, but running an xterm in X-Windows or running bash from whatever shell your already in isn't since your already logged in. If you start X-Windows with the startx command, your login is considered when you first logged in on the text console and that same environment is propagated to the gui environment, gnome in your case. When you log in from a graphical log in utility, it's a little more complicated. The gui login program, whether it be xdm, gdm, or kdm starts a shell script which eventually starts your gui environment. The problem is that it's not usually the same as your login shell, but whatever shell was used to write the script. In some cases you can write your own shell script called .xsession or .Xclients in your home directory and it can load in .bash_profile and then start gnome. Depending on what kind of stuff you put in your .bash_profile file, I have found it convenient to separate the bits that I would like to be run by the gui login program from what I would like to be run when I login via ssh or a terminal. I do this by putting all environment variable settings in a file, .bash_env. Both my .bash_profile and .xsession files source this file. Sandy ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: IPFILTER and NFS
On Sun, 03 Apr 2005 13:04:51 +0200, Erik Nørgaard [EMAIL PROTECTED] said: This limits the number of ports relevant to 59, 111 and 2049. You can't force lockd and statd to bind to specific ports (they are alos RPC services) and AFAIK you can't have disk quotas work correctly because of this. AFAIK NFS4 should address these problems, but the NFS4 server is still experimental. Till then, RPC is a security nightmare. Indeed it is. It's not as good as firewall protection; however, tcp_wrappers can be used to beef up RPC security somewhat. See /etc/hosts.allow. Sandy ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: [PATCH TO TEST] VESA [1024x768] mode support for FreeBSD-CURRENT
Michal Mertl wrote: Jay O'Brien pe v po 11. 04. 2005 v 00:43 -0700: Michal, The md5 results for vidcontrol.diff.20050215 are the same as yours. The other files, however, are different. I first did fetch http://www.freebsd.org/cgi/cvsweb.cgi/src/usr.sbin/vidcontrol/vidcontrol.c fetch http://www.freebsd.org/cgi/cvsweb.cgi/src/usr.sbin/vidcontrol/vidcontrol.1 to get the files. I now see this doesn't get the correct files. Rather, it gets files marked up for the web. Obviously that was a big problem. Then, using WinXP Pro and Mozilla, I downloaded the files again from http://www.freebsd.org/cgi/cvsweb.cgi/src/usr.sbin/vidcontrol/ and I moved them to the FreeBSD machine using WS_FTP Pro. Different md5 results again. I found that now the first hunk of the patch on vidcontrol.1 failed. After much file comparing, I found the differences in the files. The $FreeBSD line near the beginning of each file had /repoman/r/ncvs/ in front of src/user.sbin/... and when I edited those characters out, the md5 results were the same as yours, and the patch completed without errors. I found that the vidcontrol.c file would patch ok without editing out those characters, but the vidcontrol.1 file would error in hunk #1 if /repoman/r/ncvs/ was present. I see. Sorry about that. I didn't actually retrieve my files from cvsweb, I have a local copy of the repository. I rebuilt the kernel with SC_PIXEL MODE and VESA. When it rebooted, I got 16 lines of vidcontrol: showing the mouse: Invalid argument which I see from a google search is a common problem. Yes. I didn't look into it. Do you see this problem on your system? Whenever I select a mode with more than 80 characters the screen goes black. I'm afraid I've never seen this. I loaded cp837-8x8 font, but no change. I suppose you mean 437. It shouldn't be important. Yes, 437. My typo. sorry. I have the following in /etc/rc.conf, to set up 80x50, could it be the problem? font8x8=iso08-8x8 font8x14=iso08-8x14 font8x16=iso08-8x16 scrnmap=iso-8859-1_to_cp437 allscreens_flags=-m on 80x50 white black I didn't try it lately. I just used vidcontrol manually. Or perhaps this that I have now in /etc/ttys? ttyv0 /usr/libexec/getty Pc cons50 on secure # Virtual terminals ttyv1 /usr/libexec/getty Pc cons50 on secure ttyv2 /usr/libexec/getty Pc cons50 on secure ttyv3 /usr/libexec/getty Pc cons50 on secure ttyv4 /usr/libexec/getty Pc cons50 on secure ttyv5 /usr/libexec/getty Pc cons50 on secure ttyv6 /usr/libexec/getty Pc cons50 on secure At least now I can see what MAY be possible; vidcontrol -i mode returns a screenful of fonts to try. Tomorrow I'll identify which ones work and which ones don't. This is a part of my 'vidcontrol -i mode' command output: Where is this display explained? flags, type, window, linear buffer? It isn't in MAN VIDCONTROL mode# flags type size font window linear -- 24 (0x018) 0x0001 T 80x25 8x16 0xb8000 30 (0x01e) 0x0001 T 80x50 8x8 0xb8000 32 (0x020) 0x0001 T 80x30 8x16 0xb8000 34 (0x022) 0x0001 T 80x60 8x8 0xb8000 My modes 24,30,32 and 34 are identical to yours. 259 (0x103) 0x000f G 800x600x8 1 8x14 275 (0x113) 0x000f G 800x600x15 1 8x14 276 (0x114) 0x000f G 800x600x16 1 8x14 277 (0x115) 0x000f G 800x600x24 1 8x14 My modes 259,275,276,277 all show 0x000b and 8x16; otherwise the same. 290 (0x122) 0x000f G 800x600x32 1 8x14 I don't have mode 290. To set the desired mode use vidcontrol MODE_mode#. From the modes listed here mode 259 can't be used (it's 8bpp mode which isn't supported). Yes, that works fine. To be able to use a mode you must have the appropriate font loaded. Command 'vidcontrol -f /usr/share/syscons/fonts/cp437-8x14.fnt' may be used to use some 8x14 font. You should have loaded all for resolutions' fonts though because they're listed at rc.conf. I really don't see what you've done wrong this time, sorry. From my experience vidcontrol allows you to switch to a desired mode only if it's possble - the appopriate font is loaded and in case you ask for graphics mode SC_PIXEL_MODE is defined and the mode has supported color depth. I tested it all again and it works for me flawlessly. Michal Here's my observations now. Does this suggest any actions to try? I note that consoles ttyv1-7 are now 80x25, not 80x50 as I had them set up before. I can go to each, type vidcontrol MODE_30 to put that virtual console into 80x50 mode. ttyv0, however, starts up in 80x50 as before. I have 45 modes in my vidcontrol -i mode display. 21 work fine, many are useless because they are large and coarse. However, one new one to me, 258, is very useful as it is 100x75, much better than 80x50. The ones that work are
weird problem with ipfw and ftp
hi freebsd users, i have a problem with users accessing my ftp service from the internet. everything was working well until i changed from Linux/shorewall to freebsd/ipfw as my firewall. my setup is briefly as follows: FTP_Server (10.0.0.1) --- Firewall (IPFW) - INTERNET The linux rules were just two (and were working): allow tcp from any to 10.0.0.1 21 allow tcp from 10.0.0.1 21 to any I have the following in ipfw but they have refused to work! ipfw add 00010 allow tcp from any to 10.0.0.1 21 ipfw add 00011 allow tcp from 10.0.0.1 21 to any The problem is that an ftp session is established, but when the session enters passive mode, the ftp session hangs. Are there any other ports that need to be opened? Has anyone had such a problem before? I can see in the logs that unprivileged ports are responding from the ftp server to the requestor - but have tried all combinations of rules to no avail! Please help! Regards, Clem. signature.asc Description: OpenPGP digital signature
Re: cannot fetch source code
Thanks a lot. Send instant messages to your online friends http://uk.messenger.yahoo.com ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
weird problem with ipfw and ftp
hi freebsd users, i have a problem with users accessing my ftp service from the internet. everything was working well until i changed from Linux/shorewall to freebsd/ipfw as my firewall. my setup is briefly as follows: FTP_Server (10.0.0.1) --- Firewall (IPFW) - INTERNET The linux rules were just two (and were working): allow tcp from any to 10.0.0.1 21 allow tcp from 10.0.0.1 21 to any I have the following in ipfw but they have refused to work! ipfw add 00010 allow tcp from any to 10.0.0.1 21 ipfw add 00011 allow tcp from 10.0.0.1 21 to any The problem is that an ftp session is established, but when the session enters passive mode, the ftp session hangs. Are there any other ports that need to be opened? Has anyone had such a problem before? I can see in the logs that unprivileged ports are responding from the ftp server to the requestor - but have tried all combinations of rules to no avail! Please help! Regards, Clem. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Best upgrade strategy
Greetings! I'm a newcomer to FreeBSD, an immigrant from the wonderful world of Slackware Linux. Finished installing on Sunday! I wanted to make sure the system was up to date with regard to security fixes etc so used cvsup to upgrade source and re-built the kernel - it all went like a dream - what a system!! What documentation!! Enough rapture! Here's the question Having installed 5.3 from cd, I performed the above upgrade once and found that I was at version 6 Current! Back to the drawing board and started again with the following line in my cvsup file *default release=cvs tag=RELENG_5 Better - I only find myself with a pre-release 5.4 :-) That is fine, but at the point when 5.4 becomes the production release, I would like simply to track that for security fixes etc rather than follow the stable developement branch. Can I acheive that simply by putting *default release=cvs tag=RELENG_5_4 into my cvsup file, at the right time -ie as soon as 5.4 becomes a production release? ? Or will there be such complications that it would be best to perform yet another install (which is smooth but slow on my set-up). Thanks in advance Glyn ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: weird problem with ipfw and ftp
You need tcp port 20 as well (ftp-data) -- Chris. I love deadlines. I especially love the whooshing sound they make as they fly by... - Douglas Adams, 'Hitchhiker's Guide to the Galaxy' - Original Message - From: Clement Twine [EMAIL PROTECTED] To: freebsd-questions@freebsd.org Sent: Tuesday, April 12, 2005 9:19 AM Subject: weird problem with ipfw and ftp hi freebsd users, i have a problem with users accessing my ftp service from the internet. everything was working well until i changed from Linux/shorewall to freebsd/ipfw as my firewall. my setup is briefly as follows: FTP_Server (10.0.0.1) --- Firewall (IPFW) - INTERNET The linux rules were just two (and were working): allow tcp from any to 10.0.0.1 21 allow tcp from 10.0.0.1 21 to any I have the following in ipfw but they have refused to work! ipfw add 00010 allow tcp from any to 10.0.0.1 21 ipfw add 00011 allow tcp from 10.0.0.1 21 to any The problem is that an ftp session is established, but when the session enters passive mode, the ftp session hangs. Are there any other ports that need to be opened? Has anyone had such a problem before? I can see in the logs that unprivileged ports are responding from the ftp server to the requestor - but have tried all combinations of rules to no avail! Please help! Regards, Clem. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: weird problem with ipfw and ftp
On Tue, 2005-04-12 at 08:05, Clement Twine wrote: hi freebsd users, i have a problem with users accessing my ftp service from the internet. everything was working well until i changed from Linux/shorewall to freebsd/ipfw as my firewall. my setup is briefly as follows: FTP_Server (10.0.0.1) --- Firewall (IPFW) - INTERNET The linux rules were just two (and were working): allow tcp from any to 10.0.0.1 21 allow tcp from 10.0.0.1 21 to any I have the following in ipfw but they have refused to work! ipfw add 00010 allow tcp from any to 10.0.0.1 21 ipfw add 00011 allow tcp from 10.0.0.1 21 to any The problem is that an ftp session is established, but when the session enters passive mode, the ftp session hangs. Are there any other ports that need to be opened? Has anyone had such a problem before? I can see in the logs that unprivileged ports are responding from the ftp server to the requestor - but have tried all combinations of rules to no avail! Please help! Regards, Clem. You need to use port 20 too. Additionally, passive ftp uses high number ports to actually transfer the data. I am not sure how to do this with IPFW but there are are a number of tutorials about this try google. Rob ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: weird problem with ipfw and ftp
On Tue, 2005-04-12 at 09:05 +0200, Clement Twine wrote: hi freebsd users, i have a problem with users accessing my ftp service from the internet. everything was working well until i changed from Linux/shorewall to freebsd/ipfw as my firewall. my setup is briefly as follows: FTP_Server (10.0.0.1) --- Firewall (IPFW) - INTERNET The linux rules were just two (and were working): allow tcp from any to 10.0.0.1 21 allow tcp from 10.0.0.1 21 to any I have the following in ipfw but they have refused to work! ipfw add 00010 allow tcp from any to 10.0.0.1 21 ipfw add 00011 allow tcp from 10.0.0.1 21 to any The problem is that an ftp session is established, but when the session enters passive mode, the ftp session hangs. Are there any other ports that need to be opened? Has anyone had such a problem before? I can see in the logs that unprivileged ports are responding from the ftp server to the requestor - but have tried all combinations of rules to no avail! Please help! Regards, Clem. I usually do port forwarding from my natd.cf on my open type firewalls and it works fine. #/etc/natd.cf log yes deny_incoming no use_sockets yes same_ports yes verbose no port8668 interface xl1 unregistered_only no redirect_port tcp 10.1.1.1:20 20 redirect_port udp 10.1.1.1:20 20 redirect_port tcp 10.1.1.1:21 21 redirect_port udp 10.1.1.1:21 21 #EOF ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: make.conf question
On Mon, 11 Apr 2005, Kris Kennaway [EMAIL PROTECTED] wrote: On Mon, Apr 11, 2005 at 02:05:00PM +0200, Piotr Gnyp wrote: # certain code (currently only OpenSSL) as well as modifying the value ^^ It does exactly what it says it does. What is your confusion? My mistake, didn`t read it carefully ; Sorry. -- How fortunate the man with none. --Dead Can Dance ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: weird problem with ipfw and ftp
i have a problem with users accessing my ftp service from the internet. everything was working well until i changed from Linux/shorewall to freebsd/ipfw as my firewall. my setup is briefly as follows: FTP_Server (10.0.0.1) --- Firewall (IPFW) - INTERNET The linux rules were just two (and were working): allow tcp from any to 10.0.0.1 21 allow tcp from 10.0.0.1 21 to any I have the following in ipfw but they have refused to work! ipfw add 00010 allow tcp from any to 10.0.0.1 21 ipfw add 00011 allow tcp from 10.0.0.1 21 to any The problem is that an ftp session is established, but when the session enters passive mode, the ftp session hangs. Are there any other ports that need to be opened? Has anyone had such a problem before? I can see in the logs that unprivileged ports are responding from the ftp server to the requestor - but have tried all combinations of rules to no avail! You need to use port 20 too. Additionally, passive ftp uses high number ports to actually transfer the data. I am not sure how to do this with IPFW but there are are a number of tutorials about this try google. I have failed to get nothing from google - its seems everyone has tried series of combinations! Anyway, here is my rules: ipfw add 00115 pass log tcp from any 1024-65535 to 10.0.0.1 49152-65535 ipfw add 00116 pass log tcp from any to 10.0.0.1 21 in recv sis1 setup keep-state ipfw add 00117 pass log tcp from any to 10.0.0.1 20 in recv sis1 setup keep-state but this hasnt helped much. have been trying for days! does anyone have rules that are working - you can give 'em to me - or advise where the above rules need tweaking. rgds clem. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: weird problem with ipfw and ftp
Chris Knipe wrote: You need tcp port 20 as well (ftp-data) so, should the following work? ipfw add 00010 allow tcp from any to 10.0.0.1 21 ipfw add 00011 allow tcp from 10.0.0.1 21 to any ipfw add 00012 allow tcp from any to 10.0.0.1 20 ipfw add 00013 allow tcp from 10.0.0.1 20 to any rgds, ernest ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Hard drive fullness limits information help request
For shame. A your question is too dumb to have written to our mailing list? I hope you are not trying to represent the great open arms of FreeBSD and the questions mailing list. My Question is quite I repeat: You were in contravention of mailing list charter: Cross posting is Not approved. One of Your mail lists had to be dropped else respondents would have also been in contravention of mail list charter. Your question was phrased like a beginner so was left on [EMAIL PROTECTED] Seems you'r a troll looking for a good argument, better crawl away learn: http://www.freebsd.org with a search box /usr/src a specific mail list for file system issues. - Julian StaceyNet Sys Eng Consultant, Munich http://berklix.com Mail in Ascii (Html=Spam). Ihr Rauch = mein allergischer Kopfschmerz. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: ls colorized in freebsd csh??
At 2005-04-11T03:47:26-07:00, Sergei Gnezdov wrote: setenv LS_COLORS no=00:fi=00:di=01;34:ln=01;36;40:pi=40;33:so=01;35 setenv LS_COLORS $LS_COLORS:bd=40;33;01:cd=40;33;01:or=40;31;01 Where can I learn about these cryptic numbers? See the tcsh(1) man page [ENVIRONMENT, LS_COLORS]. Raghavendra. -- N. Raghavendra [EMAIL PROTECTED] | See mail headers for contact Harish-Chandra Research Institute | and OpenPGP details. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: how to enable PHP on Apache?
-- quoting Kevin Kinsey -- If you create a normal PHP page* under the Apache server's docroot (instead of in the phpmyadmin install, which is an alias), do you get the same behavior? Yes, I got the same behavior then. But meanwhile I solved the problem by adding SetHandler application/x-httpd-php for this location... Greetings, Matthias -- Well, you'll be happy to know I don't work very hard. Actually, I'm bringing the plant down from the inside. -- Homer Simpson The Simpsons 138th Episode Spectacular ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: weird problem with ipfw and ftp
On Tue, 2005-04-12 at 08:58, Clement Twine wrote: i have a problem with users accessing my ftp service from the internet. everything was working well until i changed from Linux/shorewall to freebsd/ipfw as my firewall. my setup is briefly as follows: FTP_Server (10.0.0.1) --- Firewall (IPFW) - INTERNET The linux rules were just two (and were working): allow tcp from any to 10.0.0.1 21 allow tcp from 10.0.0.1 21 to any I have the following in ipfw but they have refused to work! ipfw add 00010 allow tcp from any to 10.0.0.1 21 ipfw add 00011 allow tcp from 10.0.0.1 21 to any The problem is that an ftp session is established, but when the session enters passive mode, the ftp session hangs. Are there any other ports that need to be opened? Has anyone had such a problem before? I can see in the logs that unprivileged ports are responding from the ftp server to the requestor - but have tried all combinations of rules to no avail! You need to use port 20 too. Additionally, passive ftp uses high number ports to actually transfer the data. I am not sure how to do this with IPFW but there are are a number of tutorials about this try google. I have failed to get nothing from google - its seems everyone has tried series of combinations! Anyway, here is my rules: ipfw add 00115 pass log tcp from any 1024-65535 to 10.0.0.1 49152-65535 ipfw add 00116 pass log tcp from any to 10.0.0.1 21 in recv sis1 setup keep-state ipfw add 00117 pass log tcp from any to 10.0.0.1 20 in recv sis1 setup keep-state but this hasnt helped much. have been trying for days! does anyone have rules that are working - you can give 'em to me - or advise where the above rules need tweaking. rgds clem. This may help: http://www.theserverpages.com/20103/13/ Rob ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: weird problem with ipfw and ftp
Clement Twine wrote: so, should the following work? ipfw add 00010 allow tcp from any to 10.0.0.1 21 ipfw add 00011 allow tcp from 10.0.0.1 21 to any ipfw add 00012 allow tcp from any to 10.0.0.1 20 ipfw add 00013 allow tcp from 10.0.0.1 20 to any This last ruleset will work ok. Here's mine: # ftp server ipfw add 331 allow tcp from 172.17.0.0/24 to 172.17.0.1 20 ipfw add 332 allow tcp from 172.17.0.1 20 to 172.17.0.0/24 ipfw add 333 allow tcp from 172.17.0.0/24 to 172.17.0.1 21 ipfw add 334 allow tcp from 172.17.0.1 21 to 172.17.0.0/24 Works for me :) Best wishes, Andrew P. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Best upgrade strategy
Glyn Millington wrote: That is fine, but at the point when 5.4 becomes the production release, I would like simply to track that for security fixes etc rather than follow the stable developement branch. Can I acheive that simply by putting *default release=cvs tag=RELENG_5_4 into my cvsup file, at the right time -ie as soon as 5.4 becomes a production release? ? Or will there be such complications that it would be best to perform yet another install (which is smooth but slow on my set-up). Yes, you can use RELENG_5_4 tag to track security fixes when 5.4 is released. It goes smoothly most of the times, some people even managed to upgrade from 4.x to 5.x without reinstalling (ok, _that_ wasn't smooth). Just look through release notes, src/UPDATING and so on, and use mergemaster carefully. Best wishes, Andrew P. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: weird problem with ipfw and ftp
hi Robert, Robert Slade wrote: On Tue, 2005-04-12 at 08:58, Clement Twine wrote: i have a problem with users accessing my ftp service from the internet. everything was working well until i changed from Linux/shorewall to freebsd/ipfw as my firewall. my setup is briefly as follows: FTP_Server (10.0.0.1) --- Firewall (IPFW) - INTERNET The linux rules were just two (and were working): allow tcp from any to 10.0.0.1 21 allow tcp from 10.0.0.1 21 to any I have the following in ipfw but they have refused to work! ipfw add 00010 allow tcp from any to 10.0.0.1 21 ipfw add 00011 allow tcp from 10.0.0.1 21 to any The problem is that an ftp session is established, but when the session enters passive mode, the ftp session hangs. Are there any other ports that need to be opened? Has anyone had such a problem before? I can see in the logs that unprivileged ports are responding from the ftp server to the requestor - but have tried all combinations of rules to no avail! You need to use port 20 too. Additionally, passive ftp uses high number ports to actually transfer the data. I am not sure how to do this with IPFW but there are are a number of tutorials about this try google. I have failed to get nothing from google - its seems everyone has tried series of combinations! Anyway, here is my rules: ipfw add 00115 pass log tcp from any 1024-65535 to 10.0.0.1 49152-65535 ipfw add 00116 pass log tcp from any to 10.0.0.1 21 in recv sis1 setup keep-state ipfw add 00117 pass log tcp from any to 10.0.0.1 20 in recv sis1 setup keep-state but this hasnt helped much. have been trying for days! does anyone have rules that are working - you can give 'em to me - or advise where the above rules need tweaking. This may help: http://www.theserverpages.com/20103/13/ thanks - it helped indeed :-) All i needed to do was to define a range of passive ports in the ftp config and specify these ports in the ipfw rules - thanks! but i wonder why i did not have to do this with exactly the same setup when i was using shorewall! ta, clem. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Very slow printing with stock FreeBSD5.3 + CUPS + Gimp-Print + HPDeskJet612C
Anthony M. Agelastos wrote: It appears that 0x28 fixed the problem. Thank you to all who have contributed to this thread. Out of curiosity, now that the solution is known, what was the problem and what is the fix doing to solve it? The problem is that your printer port was being driven by interrupts and this was somehow not working -- the interrupts storm message you reported. I can't tell you the why, except that it's happened to me on several PCs. I regularly turn off interrupts on the ppc in the BIOS as well, just be very sure. Why did your fix work? Because you have instructed the port to not use interrupts. Re-read the ppc man page until it makes sense. If you don't know what an interrupt is, then try finding a book on PC hardware or search google. I'm sure there's a wiki or something out there somewhere -- there usually is :) --Alex ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re:HP dvd 300e
Hi: I'm trying to connect a HP dvd 300e to my Toshiba Satellite 2140CDS running FreeBSD 4.9. The laptop I believe has a USB1.0 port whilst the drive itself is USB2. When booting up with the device connected I get the following: umass 0:HEWLETT PACKARD S1, rev 2.00 /0.01 addr2 umass 0:Get Max Lun not supported(STALLED) umass 0: BBB reset failed, TIMEOUT. umass 0: BBB bulk in clear stall failed and the system either hangs or after some time continues to boot. However, then the built in cdrom drive does play, stop and eject but there's no sound. Disconnecting the HP and rebooting solves the problem. I'm following the instructions in 16.5 of the FreeBSD handbook and have not done any kernel re-compilation so am I guess using the GENERIC kernel. Can anyone help with this error? Might this dvd drive not be supported? It does appear to be recognised but no mention in umass(4). Any help would be greatly appreciated as if I need to change the dvd drive as it's not supported, I need to do it pretty quickly. Thanks Ged Moloney ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
SMBQ
Hi, Any Samba user know how to do the follwing ;- I have an open file share on a Samaba box with the simplest smb.conf I could get away with. When creating a new sub-direstory anyone can use it. Is there a real quick / easy way to make users supply a password ? Thanks [global] workgroup = workgroup server string = fileserver security = share hosts allow = 192.168.1. 127. max log size = 50 socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192 local master = no domain master = no preferred master = no os level = 32 [Fileshare] comment = Fileshare path = /Fileshare public = yes writable = yes only guest = yes Oops, sorry, forgot this is the FreeBSD list :) ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
www.bsdhound.com, down?
hi, I was wondering if someone knows what happened to www.bsdhound.com, which has/had a lot of good doc about bsd flavours. The site has been down for some while now...??? thx for comments didier ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Best upgrade strategy
Andrew P. [EMAIL PROTECTED] writes: Glyn Millington wrote: That is fine, but at the point when 5.4 becomes the production release, I would like simply to track that for security fixes etc rather than follow the stable developement branch. Can I acheive that simply by putting *default release=cvs tag=RELENG_5_4 into my cvsup file, at the right time -ie as soon as 5.4 becomes a production release? ? Or will there be such complications that it would be best to perform yet another install (which is smooth but slow on my set-up). Yes, you can use RELENG_5_4 tag to track security fixes when 5.4 is released. It goes smoothly most of the times, some people even managed to upgrade from 4.x to 5.x without reinstalling (ok, _that_ wasn't smooth). Just look through release notes, src/UPDATING and so on, and use mergemaster carefully. Thanks Andrew - just needed to check this with those who know, to make sure I had not miscontrued the Handbook! atb Glyn ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Mailing lists
Greetings, I was wondering how people are able to join any of the mailing lists. A trip to: http://www.freebsd.org/support.html#mailing-list I am not sure how you got there. You couldn't have looked very hard. If you go to the main FreeBSD home page, you will see a link (under the Support main heading) that says 'Mailing Lists'. Click on this and go down the page a ways and you will see a section on How to Subscribe. Although it might be better to have that section and maybe even the one that explains about list charters above the list of lists, it still is not hard to find. jerry reveals that one is able to Search or Browse the mailing lists. But what puzzles me is how there are any mailing lists at all if one is not able to *join* them so as to post to them. ;) Please tell me where I can find the information I need to join one of the mailing lists. Thank you for all your time and consideration in this matter. Sincerely, Chris ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: SMBQ
- Original Message - From: Graham Bentley [EMAIL PROTECTED] To: FreeBSD-Questions@FreeBSD.ORG Sent: Tuesday, April 12, 2005 1:23 PM Subject: SMBQ Hi, Any Samba user know how to do the follwing ;- I have an open file share on a Samaba box with the simplest smb.conf I could get away with. When creating a new sub-direstory anyone can use it. Is there a real quick / easy way to make users supply a password ? Thanks [global] workgroup = workgroup server string = fileserver security = share hosts allow = 192.168.1. 127. max log size = 50 socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192 local master = no domain master = no preferred master = no os level = 32 [Fileshare] comment = Fileshare path = /Fileshare public = yes writable = yes only guest = yes Oops, sorry, forgot this is the FreeBSD list :) ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] u must change the security to user the public to no only guest to no ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Windows XP Partition Magic
Can FreeBSD be installed if I use Partition Magic. I am currently running on Windows XP environment. (That is the only primary partition) ..If so how..I keep getting error messages Could not find Primary Descriptor..when installing FreeBSD from CD. Am I partitioning wrong, or is XP not compatable? I don't know just why you would be getting that error. Probably you did something wrong with Partition Magic when shrinking the XP slice. You may have to go back in to Partition Magic and make sure that both the WinXP and FreeBSD slices are marked as primary 'partitions'. They don't make it very clear that both slices should be defined as primary. But, it is definitely doable. The machine I am typing on right now has both WinXP and FreeBSD on it. I normally use the FreeBSD side, but occasionally boot to XP for certain things. It works just fine. Also, I used Partition Magic to shrink the preinstalled MS NTFS slice to make room for a FreeBSD slice. Does the WinXP still boot OK after shrinking its slice with Partition Magic? If you're going to run FreeBSD you don't need Windows XP anymore. So the CD installation is quite easy. Just boot from the CD, delete all paritions and choose use entire disk. That is not very good advice. The person is obviously trying to set up a dual boot machine.Sure, an experience person may find themselves eventually mostly using only the FreeBSD side of the machine, but that is not what was being asked. Besides that, the install procedure is quite well explained in the documentations. That is true, but some things are still not obvious to the person just starting out, such as needing the FreeBSD slice marked as primary as well as the Win slice. jerry regards, Manuel Burki ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Freebsd ICMP_BANDLIM and apache
Brent [EMAIL PROTECTED] writes: I was locking down a new install of FBSD 4.11 and i put options ICMP_BANDLIM in my kernel. IN the past ive read that this can cause problems with a webserver if your running one. Well go figure i locked the box down and then fired up apache and now no pages are viewable. Does infact ICMP_BANDLIM makes it so that NO pages can be viewed with a browser ? It shouldn't do that. Maybe net.inet.icmp.icmplim is zero? ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Question about Ports and Packages
Tom Moyer [EMAIL PROTECTED] writes: I'm using FreeBSD 5-STABLE installed from 5.4-RC1 and then cvsup'd to 5-STABLE on Friday. Maybe I'm just doing something wrong, but I noticed that when I did pkgdb -F or portsdb -Uu, it seemed to complain about build dependancies missing for packages that I installed from packages. I assumed that it would catch this and not prompt me to fix stale dependacies like that. I've never had it warn me about build dependencies. I don't think the ports database even tracks them. Are you sure those aren't runtime dependencies? Along those same lines: I deleted a build dependancy before I decided to skip them, is there any way to fix that automatically? Sorry; I don't understand the question. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
OFFTOPIC: Samples of legal contracts, anyone?
Hello! I was wondering, since most of the people subscribed to this list is exceptionally knowledgeable and law-abiding; if anyone knows about legal contracts between two parties regarding assignments? I'm sure many of you contractors and designers out there know what I'm talking about, and perhaps you could help me turn this sample I've made here a bit more professional and detailed? It was translated from Norwegian: http://home.faeldryn.org/~mujahid/CONTRACT.txt Thanks! All the best, Chris Farfeld ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: ls colorized in freebsd csh??
On 2005-04-11, Kris Kennaway [EMAIL PROTECTED] wrote: --QKdGvSO+nmPlgiQ/ Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Mon, Apr 11, 2005 at 03:47:26AM -0700, Sergei Gnezdov wrote: On 2005-04-10, N. Raghavendra [EMAIL PROTECTED] wrote: ## Enable color display for listing files. set color ## Specify the colors for listing various file types. setenv LS_COLORS no=3D00:fi=3D00:di=3D01;34:ln=3D01;36;40:pi=3D40;33:s= o=3D01;35 setenv LS_COLORS $LS_COLORS:bd=3D40;33;01:cd=3D40;33;01:or=3D40;31;0= 1 =20 Where can I learn about these cryptic numbers? Start with the manpage, of course. The man page says that colors are set in the form of exfxcxdxbxegedabagacad This is very different from bd=3d40;33;01: style. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
all ports open ?
Well i port scanned couple of internet websites got all ports open from that site , is that a security measure ? if yes how can i do that ? :) thanks Faisal *º¤., ¸¸,.¤º*¨¨¨*¤ Allah-hu-Akber*º¤., ¸¸,.¤º*¨¨*¤ God is the Greatest __ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
NFS4 server
is there a well tested nfs4 server for freebsd out there ? ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: NFS4 server
In the last episode (Apr 12), Feczak Szabolcs said: is there a well tested nfs4 server for freebsd out there ? The only one so far is the one at ftp://ftp.cis.uoguelph.ca/pub/nfsv4/ . The author ([EMAIL PROTECTED]) claims it's stable. -- Dan Nelson [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
RE: all ports open ?
Yes. (http://homepages.tesco.net/~J.deBoynePollard/FGA/questions-with-yes-or-no-a nswers.html) Easy , close all ports that you dont want open. (http://perl.plover.com/Questions.html) :-D --- -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of faisal gillani Sent: Tuesday, April 12, 2005 9:27 AM To: FreeBSD Subject: all ports open ? Well i port scanned couple of internet websites got all ports open from that site , is that a security measure ? if yes how can i do that ? :) thanks Faisal *º¤., ¸¸,.¤º*¨¨¨*¤ Allah-hu-Akber*º¤., ¸¸,.¤º*¨¨*¤ God is the Greatest __ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
problem with x11
Hello I have a problem installing x11 on FreeBSD 5.3. I compiled the kernel in a conservative way (everything I am not using is removed) and the system is working fine from the command line as far as I am able to judge. Yesterday I ran CVSup install, and then: # cvsup -g -L 2 /root/ports-supfile which, after some help from my friends at freebsd-questions and executing hash, seemed to do the right thing. I guess the ports are now up-to-date. Today I tried: # cd /usr/ports/x11/xorg # make install clean ... and I get the error message: Stop is /usr/ports/graphics/dri data base not found which is about the file r200-dri.so What should I do next? Where can I find this file? Joost (graag wil het wel weten) ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Problem installing super smack on 5.4-STABLE
Hello, I'm running a freshly built and cvsup'd system: uname -a FreeBSD lebanon.polands.org 5.4-STABLE FreeBSD 5.4-STABLE #1: Sat Apr 9 13:24:47 CDT 2005 [EMAIL PROTECTED]:/usr/obj/usr/src/sys/LEBANON i386 and MySQL 4.1.11. I downloaded v1.2 of super-smack from http://jeremy.zawodny.com/ The configure command worked: # ./cofigure --with-mysql Building with the following options: MySQL Support. yes PostgreSQL Support no Oracle Support no If this is not what you intended, please re-run configure. Thanks for using super-smack! But the install failed: # make install Making install in src c++ -DHAVE_CONFIG_H -I. -I. -I.. -I/usr/local/include/mysql-g -O2 -c client.cc client.cc: In member function `void Client::thread_sync()': client.cc:347: error: `ERESTART' undeclared (first use this function) client.cc:347: error: (Each undeclared identifier is reported only once for each function it appears in.) *** Error code 1 Stop in /home/doug/super-smack-1.2/src. *** Error code 1 Stop in /home/doug/super-smack-1.2. I've googled but found no relevant info. Does anyone have any insight into this problem? -- Regards, Doug ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Can't change MAC address of my WAG311
dear list, I am operating a Netgear WAG311 (Atheros AR5212) under FBSD 5.3 Release. I tried to change the MAC address of the device using root# ifconfig ath0 ether aa:bb:cc:dd:ee:ff which changed the MAC address in the ifconfig ath0 output. But wicontrol -i ath0 still showed the old (original) MAC address and that MAC address also is being used on the network. Trying to change the MAC address using root# wicontrol -i ath0 -m aa:bb:cc:dd:ee:ff results in a wicontrol: SIOCSWAVELAN: Invalid Argument error message. Am I doing something wrong? TIA zheyu ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: ls colorized in freebsd csh??
* Sergei Gnezdov [2005-04-12 00:00 -0700] The man page says that colors are set in the form of exfxcxdxbxegedabagacad This is very different from bd=3d40;33;01: style. These are two different ls's and two different man pages. The one you are talking about is the ls(1) program in FreeBSD, while the other one is the ls-F builtin in tcsh, documented in the tcsh(1) man page. The poster suggested to setup ls as an alias for ls-F when using tcsh as the latter supports a wide range of colour-option while being faster than ls(1). ls(1) uses $LSCOLOR while ls-F uses $LS_COLOR. These have different syntax. It is also possible to use the GNU ls(1) which has a third way of defining its colorization. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
realplay: can't find library.
People, Anybody know where this library is built? p9 11:50 tao [4374] realplay /usr/local/lib/RealPlayer/realplay.bin: error while loading shared libraries: \ libgobject-2.0.so.0: cannot open shared object file: No such file or directory I haven't been able to find this so far. gary -- Gary Kline [EMAIL PROTECTED] www.thought.org Public service Unix ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: error installing openssh-portable
hi i'm bumping this, still having this problem. upgrading to 4.11 did not fix it... please if anyone has any ideas... Don't top-post, please. Redmond Militante [EMAIL PROTECTED] writes: is /usr/ports/cryptlib the port you're referring to? No, I'm talking about the crypto distribution in the base system. I don't remember when it was folded into the main distribution, but for a long time it was separate because of concerns about export regulations and patent issues. i've also read that make -DWITHOUT_KERBEROS=yes would also work, but it didn't in my case. [Tue, Mar 29, 2005 at 09:14:07AM -0500] This one time, at band camp, Lowell Gilbert said: Redmond Militante [EMAIL PROTECTED] writes: hi all i get this installing the openssh-portable port on a 4.8-RELEASE machine === Building for openssh-portable-3.9.0.1,1 if test ! -z ; then /usr/bin/perl5 ./fixprogs ssh_prng_cmds ; fi (cd openbsd-compat make) cc -o ssh ssh.o readconf.o clientloop.o sshtty.o sshconnect.o sshconnect1.o sshconnect2.o -L. -Lopenbsd-compat/ -L/usr/lib -rpath=/usr/lib:/usr/local/lib -L/usr/local/lib -lssh -lopenbsd-compat -lcrypto -lutil -lz -lcrypt -lkrb5 -lcrypto -lcom_err -lasn1 -lroken /usr/lib/libkrb5.so: undefined reference to `des_is_weak_key' /usr/lib/libkrb5.so: undefined reference to `des_pcbc_encrypt' /usr/lib/libkrb5.so: undefined reference to `des_cfb64_encrypt' /usr/lib/libkrb5.so: undefined reference to `des_cbc_encrypt' /usr/lib/libkrb5.so: undefined reference to `des_set_odd_parity' /usr/lib/libkrb5.so: undefined reference to `des_read_pw_string' /usr/lib/libkrb5.so: undefined reference to `des_set_key' /usr/lib/libkrb5.so: undefined reference to `des_ede3_cbc_encrypt' /usr/lib/libkrb5.so: undefined reference to `des_cbc_cksum' *** Error code 1 Stop in /usr/ports/security/openssh-portable/work/openssh-3.9p1. *** Error code 1 Stop in /usr/ports/security/openssh-portable. any ideas on how to fix? cvsup'ing ports didn't work. I seem to recall DES being optional back when; you'll need to install it to get this linking. It should be in the crypto library. Or maybe my memory is just off... -- Redmond Militante Software Engineer / Medill School of Journalism FreeBSD 5.2.1-RELEASE-p13 #0: Mon Mar 28 17:07:51 CST 2005 i386 11:15AM up 45 mins, 2 users, load averages: 0.00, 0.02, 0.05 -- Lowell Gilbert, embedded/networking software engineer, Boston area http://be-well.ilk.org/~lowell/ -- Redmond Militante Software Engineer / Medill School of Journalism FreeBSD 5.2.1-RELEASE-p13 #0: Mon Mar 28 17:07:51 CST 2005 i386 12:00PM up 2 days, 1:30, 1 user, load averages: 0.41, 0.16, 0.05 -- Redmond Militante Software Engineer / Medill School of Journalism FreeBSD 5.2.1-RELEASE-p13 #0: Mon Mar 28 17:07:51 CST 2005 i386 2:00PM up 4 days, 29 mins, 4 users, load averages: 0.07, 0.11, 0.20 pgpTSokQw0kSj.pgp Description: PGP signature
Re: Hard drive fullness limits information help request
--- Julian H. Stacey [EMAIL PROTECTED] wrote: For shame. A your question is too dumb to have written to our mailing list? I hope you are not trying to represent the great open arms of FreeBSD and the questions mailing list. My Question is quite I repeat: You were in contravention of mailing list charter: Cross posting is Not approved. One of Your maillists had to be dropped else respondents would have also been incontravention of mail list charter. Your question was phrased like a beginner so was left on [EMAIL PROTECTED] Your reply was Cross posting 2 lists is deprecated, so I dropped freebsd-hardware@ as this question is too basic for hardware@ as well as [EMAIL PROTECTED] My question (to me) seemed relevant to either list. The wording of my question was becouse I didn't know how to phrase it. But your tone suggests (as did your earlier reply) that beginners are not welcome and you had better know just what to say and how to say it. The point was that you had suggested that my question was even too simple even for [EMAIL PROTECTED] Perhaps I did err on posting to both. Insulting my question and telling me it was too simple for questions was un called for and a delightful disincentive to others who may be new to BSD or just new to UNIX or may have a question for something they do not know. Seems you'r a troll looking for a good argument, better crawl away learn: Your just being an arogant snot. I suggest you go away find a nice rock and learn. Especially some manners. People make errors. It happens. Being snotty to people over it just shows you need to get out more. I appologise for wording my question so ignorantly. I asked becouse I didn't know. NMH. http://www.freebsd.org with a search box /usr/src a specific mail list for file system issues. - Julian StaceyNet Sys Eng Consultant, Munich http://berklix.com Mail in Ascii (Html=Spam). Ihr Rauch = mein allergischer Kopfschmerz. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] The Large Print Giveth And The Small Print Taketh Away -- Anon __ Do you Yahoo!? Yahoo! Small Business - Try our new resources site! http://smallbusiness.yahoo.com/resources/ ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
SMTP problems
Hello folks, I am trying to set up a mailserver with virtual mailboxes and SASL authentication for SMTP. I am following the instructions at: http://high5.net/howto/ However when I try to connect to the SMTP, my log file shows: [EMAIL PROTECTED]:/var/log# cat maillog Apr 13 13:04:40 munich postfix/smtpd[27064]: connect from unknown[59.93.160.227] Apr 13 13:04:51 munich postfix/smtpd[27064]: warning: SASL authentication failure: cannot connect to Courier authdaemond: No such file or directory Apr 13 13:04:51 munich postfix/smtpd[27064]: warning: SASL authentication failure: Password verification failed Apr 13 13:04:51 munich postfix/smtpd[27064]: warning: unknown[59.93.160.227]: SASL PLAIN authentication failed Apr 13 13:04:52 munich postfix/smtpd[27064]: warning: SASL authentication failure: cannot connect to Courier authdaemond: No such file or directory Apr 13 13:04:52 munich postfix/smtpd[27064]: warning: unknown[59.93.160.227]: SASL LOGIN authentication failed Apr 13 13:04:55 munich postfix/smtpd[27064]: lost connection after AUTH from unknown[59.93.160.227] Apr 13 13:04:55 munich postfix/smtpd[27064]: disconnect from unknown[59.93.160.227] Anyone would kindly point me to where I am going wrong? Regards S. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: realplay: can't find library.
On Tue, 12 Apr 2005 11:57:54 -0700 Gary Kline [EMAIL PROTECTED] wrote: People, Anybody know where this library is built? p9 11:50 tao [4374] realplay /usr/local/lib/RealPlayer/realplay.bin: error while loading shared libraries: \ libgobject-2.0.so.0: cannot open shared object file: No such file or directory I haven't been able to find this so far. gary Try to install devel/linux-glib2 Best Regards Michal Stanislawski ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
vinum setup
Sorry, I'm having a miserable time trying to get vinum working on my amd64 system. Vinum tells me that it can't load the kernel (vinum: Kernel module not available: No such file or directory). Gvinum simply refuses to take any commands at all. I tried looking at /boot/kernel, naturally didn't find any such module, so I wanted to see about building one, but I can't get device vinum to pass config's purview. Does vinum work on amd64's? Chuck Robey | Interests include C Java programming, FreeBSD, [EMAIL PROTECTED] | electronics, communications, and SF/Fantasy. New Year's Resolution: I will not sphroxify gullible people into looking up fictitious words in the dictionary (on the wall at my old fraternity, Signa Phi Nothing). ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: SMTP problems
Subhro wrote: . . [EMAIL PROTECTED]:/var/log# cat maillog Apr 13 13:04:40 munich postfix/smtpd[27064]: connect from unknown[59.93.160.227] Apr 13 13:04:51 munich postfix/smtpd[27064]: warning: SASL authentication failure: cannot connect to Courier authdaemond: No such file or directory Apr 13 13:04:51 munich postfix/smtpd[27064]: warning: SASL authentication failure: Password verification failed Apr 13 13:04:51 munich postfix/smtpd[27064]: warning: unknown[59.93.160.227]: SASL PLAIN authentication failed Apr 13 13:04:52 munich postfix/smtpd[27064]: warning: SASL authentication failure: cannot connect to Courier authdaemond: No such file or directory Apr 13 13:04:52 munich postfix/smtpd[27064]: warning: unknown[59.93.160.227]: SASL LOGIN authentication failed Apr 13 13:04:55 munich postfix/smtpd[27064]: lost connection after AUTH from unknown[59.93.160.227] Apr 13 13:04:55 munich postfix/smtpd[27064]: disconnect from unknown[59.93.160.227] May I kindly suggest that the answer is already there? It says: cannot connect to Courier authdaemond: No such file or directory. Either Postfix is looking in the wrong place or something's fishy about the Courier authdaemond. What does the Courier log say? Just my SEK 0,02... ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: SMTP problems
Per olof Ljungmark wrote: Subhro wrote: . . [EMAIL PROTECTED]:/var/log# cat maillog Apr 13 13:04:40 munich postfix/smtpd[27064]: connect from unknown[59.93.160.227] Apr 13 13:04:51 munich postfix/smtpd[27064]: warning: SASL authentication failure: cannot connect to Courier authdaemond: No such file or directory Apr 13 13:04:51 munich postfix/smtpd[27064]: warning: SASL authentication failure: Password verification failed Apr 13 13:04:51 munich postfix/smtpd[27064]: warning: unknown[59.93.160.227]: SASL PLAIN authentication failed Apr 13 13:04:52 munich postfix/smtpd[27064]: warning: SASL authentication failure: cannot connect to Courier authdaemond: No such file or directory Apr 13 13:04:52 munich postfix/smtpd[27064]: warning: unknown[59.93.160.227]: SASL LOGIN authentication failed Apr 13 13:04:55 munich postfix/smtpd[27064]: lost connection after AUTH from unknown[59.93.160.227] Apr 13 13:04:55 munich postfix/smtpd[27064]: disconnect from unknown[59.93.160.227] May I kindly suggest that the answer is already there? It says: cannot connect to Courier authdaemond: No such file or directory. Either Postfix is looking in the wrong place or something's fishy about the Courier authdaemond. What does the Courier log say? I did not explicitly install courier. Which is the port which I need to install? Regards S. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Don't Panic - how do I investigate a kernel panic?
Hi, I have a 5.3-STABLE which was stable untill last friday. Since then I experience irregular panics, with uptimes between 25 secs and 16 hours. In most cases I got a fatal trap 12, the last panic was simply panic: sbdrop. I had 5.3p5 but upgraded to 5.3p8 after the first panics. After the last trap 12, I replaced my custom kernel with a fresh built GENERIC, as I thought it might be easier to investigate. I have experienced trap 12 before startup completed and after shutdown unmounted all disks. So, it seems not to be triggered by network events. However, about the same time as the first panic and since then, I have experienced an unusually high amount of ilicit mail delivery attempts to adresses like random_chars@mydomain.com - not the amount I would expect could cause a crash though, my connection is far to thin for that. Following the kernel panic faq: Fatal trap 12: Page fault while in kernel mode Fault virtual address = 0xc Fault code = supervisor read, page not present instruction pointer = 0x8:0xc053d638 stack pointer = 0x10:0xcb4ddaec frame pointer = 0x10:0xcb4ddaf8 code segment= base 0x0, limit 0x, type 0x1b = DPL 0, pres 1, def32 1, gran 1 processor eflags= interrupt enabled, resume, IOPL=0 current process = 28 (swi1:net) trap number = 12 panic: page fault # nm -n /boot/kernel/kernel | grep c053d6 c053d610 T m_copydata c053d670 T m_dup Note: This was the same error for both the custom p5 and p8 kernels. The sbdrop panic happened with the GENERIC kernel. What does sbdrop mean? Is this a simple disk I/O or hardware error? How do I get on from here? How do I keep my system at least at minimum service without crashing? Thanks! Erik -- Ph: +34.666334818 web: http://www.locolomo.org S/MIME Certificate: http://www.locolomo.org/crt/2004071206.crt Subject ID: A9:76:7A:ED:06:95:2B:8D:48:97:CE:F2:3F:42:C8:F2:22:DE:4C:B9 Fingerprint: 4A:E8:63:38:46:F6:9A:5D:B4:DC:29:41:3F:62:D3:0A:73:25:67:C2 ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: SMTP problems
Subhro wrote: authentication failure: cannot connect to Courier authdaemond: No such file or directory Apr 13 13:04:52 munich postfix/smtpd[27064]: warning: unknown[59.93.160.227]: SASL LOGIN authentication failed Apr 13 13:04:55 munich postfix/smtpd[27064]: lost connection after AUTH from unknown[59.93.160.227] Apr 13 13:04:55 munich postfix/smtpd[27064]: disconnect from unknown[59.93.160.227] May I kindly suggest that the answer is already there? It says: cannot connect to Courier authdaemond: No such file or directory. Either Postfix is looking in the wrong place or something's fishy about the Courier authdaemond. What does the Courier log say? I did not explicitly install courier. Which is the port which I need to install? What do you mean then? You said you are trying to set up a mailserver with virtual mailboxes and SASL authentication for SMTP. Courier IS a mail server (in the ports) suitable for virtual mailboxes. I think you need to provide all the details first, Postfix is an MTA but not a complete mail server. The problem above may be better answered on the Postfix list so I suggest you try there as well. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Can't remove empty directory
Greetings I think this problem occurred during portmanager -u but I can't be certain. Portmanager did a core dump this morning. I tried a portsclean -CD and /usr/ports/accessibility/gail/work cannot be removed. Here is what I have tried. p4# cd /usr/ports/accessibility/gail p4# ls -l total 14 -rw-r--r-- 1 root wheel 920 Apr 12 02:21 Makefile -rw-r--r-- 1 root wheel 109 Apr 12 02:21 distinfo drwxr-xr-x 2 root wheel 512 Nov 10 20:16 files -rw-r--r-- 1 root wheel 211 Apr 4 2004 pkg-descr -rw-r--r-- 1 root wheel 2667 Apr 12 02:21 pkg-plist drwxr-xr-x 3 root wheel 512 Apr 12 10:06 work p4# rm -r work rm: work/gail-1.8.3/gail: Directory not empty rm: work/gail-1.8.3: Directory not empty rm: work: Directory not empty p4# cd work/gail-1.8.3/gail/ p4# ls -la total 0 p4# cd .. p4# ls -la total 4 drwxr-xr-x 3 root wheel 1024 Apr 12 10:06 . drwxr-xr-x 3 root wheel 512 Apr 12 10:06 .. drwxr--r-- 4 root wheel 0 Apr 12 09:51 gail p4# chflags -R noschg gail p4# rm -r gail rm: gail: Directory not empty p4# rm gail rm: gail: is a directory p4# rmdir gail rmdir: gail: Directory not empty p4# The obvious problem is that the number of links is incorrect but I don't know how to make that right. Any help is greatly appreciated. Robert ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Can't remove empty directory
move it, I just had an issue like that cd /usr/ports/accessibility mv gail gail2 (in example) then you cvsup the ports again and it's done. On 4/12/05, Robert Marella [EMAIL PROTECTED] wrote: Greetings I think this problem occurred during portmanager -u but I can't be certain. Portmanager did a core dump this morning. I tried a portsclean -CD and /usr/ports/accessibility/gail/work cannot be removed. Here is what I have tried. p4# cd /usr/ports/accessibility/gail p4# ls -l total 14 -rw-r--r-- 1 root wheel 920 Apr 12 02:21 Makefile -rw-r--r-- 1 root wheel 109 Apr 12 02:21 distinfo drwxr-xr-x 2 root wheel 512 Nov 10 20:16 files -rw-r--r-- 1 root wheel 211 Apr 4 2004 pkg-descr -rw-r--r-- 1 root wheel 2667 Apr 12 02:21 pkg-plist drwxr-xr-x 3 root wheel 512 Apr 12 10:06 work p4# rm -r work rm: work/gail-1.8.3/gail: Directory not empty rm: work/gail-1.8.3: Directory not empty rm: work: Directory not empty p4# cd work/gail-1.8.3/gail/ p4# ls -la total 0 p4# cd .. p4# ls -la total 4 drwxr-xr-x 3 root wheel 1024 Apr 12 10:06 . drwxr-xr-x 3 root wheel 512 Apr 12 10:06 .. drwxr--r-- 4 root wheel 0 Apr 12 09:51 gail p4# chflags -R noschg gail p4# rm -r gail rm: gail: Directory not empty p4# rm gail rm: gail: is a directory p4# rmdir gail rmdir: gail: Directory not empty p4# The obvious problem is that the number of links is incorrect but I don't know how to make that right. Any help is greatly appreciated. Robert ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] -- --- Guillermo García Rojas Covarrubias Director General SoloBSD http://www.solobsd.org ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Don't Panic - how do I investigate a kernel panic?
On Tue, Apr 12, 2005 at 11:19:02PM +0200, Erik N?rgaard wrote: Hi, I have a 5.3-STABLE which was stable untill last friday. Since then I experience irregular panics, with uptimes between 25 secs and 16 hours. In most cases I got a fatal trap 12, the last panic was simply panic: sbdrop. I had 5.3p5 but upgraded to 5.3p8 after the first panics. After the last trap 12, I replaced my custom kernel with a fresh built GENERIC, as I thought it might be easier to investigate. I have experienced trap 12 before startup completed and after shutdown unmounted all disks. So, it seems not to be triggered by network events. However, about the same time as the first panic and since then, I have experienced an unusually high amount of ilicit mail delivery attempts to adresses like random_chars@mydomain.com - not the amount I would expect could cause a crash though, my connection is far to thin for that. Following the kernel panic faq: Fatal trap 12: Page fault while in kernel mode Fault virtual address = 0xc Fault code = supervisor read, page not present instruction pointer = 0x8:0xc053d638 stack pointer = 0x10:0xcb4ddaec frame pointer = 0x10:0xcb4ddaf8 code segment= base 0x0, limit 0x, type 0x1b = DPL 0, pres 1, def32 1, gran 1 processor eflags= interrupt enabled, resume, IOPL=0 current process = 28 (swi1:net) trap number = 12 panic: page fault # nm -n /boot/kernel/kernel | grep c053d6 c053d610 T m_copydata c053d670 T m_dup Note: This was the same error for both the custom p5 and p8 kernels. The sbdrop panic happened with the GENERIC kernel. What does sbdrop mean? Is this a simple disk I/O or hardware error? How do I get on from here? Upgrade to 5.4, I believe this was fixed some time ago. If you still see it, then follow the directions in the developers' handbook about compiling your kernel with debugging symbols and obtaining a traceback. Kris pgpVRaFubOsIv.pgp Description: PGP signature
Re: Can't remove empty directory
On Tue, Apr 12, 2005 at 12:14:12PM -1000, Robert Marella wrote: drwxr-xr-x 3 root wheel 1024 Apr 12 10:06 . drwxr-xr-x 3 root wheel 512 Apr 12 10:06 .. drwxr--r-- 4 root wheel 0 Apr 12 09:51 gail p4# chflags -R noschg gail p4# rm -r gail rm: gail: Directory not empty p4# rm gail rm: gail: is a directory p4# rmdir gail rmdir: gail: Directory not empty p4# The obvious problem is that the number of links is incorrect but I don't know how to make that right. Any help is greatly appreciated. Unmount the filesystem and run fsck to repair the filesystem corruption. Kris pgp0RC883YQlu.pgp Description: PGP signature
Lowest common denominator for buildworld/kernel
Hello, I would like to set up a machine with which to build world and kernels for an assortment of slightly different machines. The machines are an assortment of Pentium IIs', IIIs' and AMD K6s'. What CPU type should I build for in order to safely accomodate the slight differences? i386? Also, as a side note, is there any better way to distribute the compiled binaries and kernel than NFS mounts? I *really* don't get along with NFS... Thanks, Mark -- PGP: http://www.darklogik.org/pub/pgp/pgp.txt B776 43DC 8A5D EAF9 2126 9A67 A7DA 390F DEFF 9DD1 pgpqLnd1qs6DK.pgp Description: PGP signature
Re: Can't remove empty directory
After moving the directory, the system will prompt for a corruption on the filesystem and a simple fsck, as you say, will fix the problem :) These are my 2 cents. On 4/12/05, Kris Kennaway [EMAIL PROTECTED] wrote: On Tue, Apr 12, 2005 at 12:14:12PM -1000, Robert Marella wrote: drwxr-xr-x 3 root wheel 1024 Apr 12 10:06 . drwxr-xr-x 3 root wheel 512 Apr 12 10:06 .. drwxr--r-- 4 root wheel 0 Apr 12 09:51 gail p4# chflags -R noschg gail p4# rm -r gail rm: gail: Directory not empty p4# rm gail rm: gail: is a directory p4# rmdir gail rmdir: gail: Directory not empty p4# The obvious problem is that the number of links is incorrect but I don't know how to make that right. Any help is greatly appreciated. Unmount the filesystem and run fsck to repair the filesystem corruption. Kris -- --- Guillermo García Rojas Covarrubias Director General SoloBSD http://www.solobsd.org ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Can't remove empty directory
Kris Kennaway wrote: On Tue, Apr 12, 2005 at 12:14:12PM -1000, Robert Marella wrote: drwxr-xr-x 3 root wheel 1024 Apr 12 10:06 . drwxr-xr-x 3 root wheel 512 Apr 12 10:06 .. drwxr--r-- 4 root wheel 0 Apr 12 09:51 gail p4# chflags -R noschg gail p4# rm -r gail rm: gail: Directory not empty p4# rm gail rm: gail: is a directory p4# rmdir gail rmdir: gail: Directory not empty p4# The obvious problem is that the number of links is incorrect but I don't know how to make that right. Any help is greatly appreciated. Unmount the filesystem and run fsck to repair the filesystem corruption. Kris That's why you get paid the BIG BUCKS. Thank you very much Robert ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Lowest common denominator for buildworld/kernel
markzero wrote: Hello, I would like to set up a machine with which to build world and kernels for an assortment of slightly different machines. The machines are an assortment of Pentium IIs', IIIs' and AMD K6s'. What CPU type should I build for in order to safely accomodate the slight differences? i386? Also, as a side note, is there any better way to distribute the compiled binaries and kernel than NFS mounts? I *really* don't get along with NFS... Thanks, Mark I don't know what sort of accomodation you mean. The binaries can all be perfectly portable, or, at your option, you can put in various extra options to optimize for your processor. To tell you the trush, if you don't play with the flags, then I see no problem with slight differences. ssh works great for a lot of applications that need to send products to foreign lands ... it's the scp command, in particular, I mean. -- Chuck Robey | Interests include C Java programming, FreeBSD, [EMAIL PROTECTED] | electronics, communications, and SF/Fantasy. New Year's Resolution: I will not sphroxify gullible people into looking up fictitious words in the dictionary (on the wall at my old fraternity, Signa Phi Nothing). ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: all ports open ?
On Tue, Apr 12, 2005 at 08:26:50AM -0700, faisal gillani wrote: Well i port scanned couple of internet websites got all ports open from that site , is that a security measure ? if yes how can i do that ? First of all, to simulate an open port, all you need is a little program that accept()s connections (on one port) and close()s them immediately thereafter. As far as the scanner is concerned, that port is open, because the peer completed the TCP handshake. The next step is to redirect every connection from blocked ports to that program. This is best done with a firewill, like pf. The firewall will simply pass the connection attempt along to that accept()er/close()er program. The technique of capturing connections and redirecting them to some dummy (logging!) program is often used in honeypots. If the logging program does more than just closing the connections it accepts, it could coax some hints out of the attacker (like logging the attempted infection vector). This is however seldom used. Another use for that program is to be very slow after accepting the connection, resulting in an effective tar pit. Most firewalls simply reset blocked connections (resulting in closed ports reports) or silently drop the packets (resulting in port firewalled scan results). :) thanks Faisal Cheers, -cpghost. -- Cordula's Web. http://www.cordula.ws/ ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: all ports open ?
On Tue, 2005-04-12 at 08:26 -0700, faisal gillani wrote: Well i port scanned couple of internet websites got all ports open from that site , is that a security measure ? if yes how can i do that ? :) thanks Faisal *., ,.** Allah-hu-Akber*., ,.** God is the Greatest __ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] portsentry is the program you are looking for. It is in ports and fairly simple to setup, it has some really nice features as well. cd /usr/ports/security/portsentry/ ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Intel AIC-8110X SATA RAID Controller
I have searched Everywhere on the site and cannot find anything about it's use. Is it so new that there is no support for it ? NoGo with FreeBSD 5.3 Thanks, Kurt White ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Lowest common denominator for buildworld/kernel
Hello, I would like to set up a machine with which to build world and kernels for an assortment of slightly different machines. The machines are an assortment of Pentium IIs', IIIs' and AMD K6s'. What CPU type should I build for in order to safely accomodate the slight differences? i386? Also, as a side note, is there any better way to distribute the compiled binaries and kernel than NFS mounts? I *really* don't get along with NFS... Thanks, Mark I don't know what sort of accomodation you mean. The binaries can all be perfectly portable, or, at your option, you can put in various extra options to optimize for your processor. To tell you the trush, if you don't play with the flags, then I see no problem with slight differences. Ok, thanks for the affirmation. I was pretty sure that this would be the case but as I'm not familiar with the build process under the hood, I wasn't sure if the makefiles tweaked themselves implicitly depending on the build platform. I'm glad this isn't the case, that would be quite a pickle. ssh works great for a lot of applications that need to send products to foreign lands ... it's the scp command, in particular, I mean. ssh was the first thing that sprang to mind but it also raised some further questions, like what exactly to copy. /usr/obj would obviously have to go over but what about all the makefiles required for a 'make installworld' etc? I wondered if I would end up just copying over /usr/src entirely, which seems very innefficient. Hmm, it's certainly something to think about. Thanks, Mark -- PGP: http://www.darklogik.org/pub/pgp/pgp.txt B776 43DC 8A5D EAF9 2126 9A67 A7DA 390F DEFF 9DD1 pgpurY6kCqWae.pgp Description: PGP signature
Re: Mailing lists
Thank you Jerry for responding. In answer to your question; I used: http://www.freebsd.org/support.html#newsgroups thinking I could join a newsgroup. But found that for my needs, I would do better to join one or more of the mailing lists, which brought me here: http://www.freebsd.org/support.html#mailing-list from the same page. I hope this answered your question well enough. :) --Chris Greetings, I was wondering how people are able to join any of the mailing lists. A trip to: http://www.freebsd.org/support.html#mailing-list I am not sure how you got there. You couldn't have looked very hard. If you go to the main FreeBSD home page, you will see a link (under the Support main heading) that says 'Mailing Lists'. Click on this and go down the page a ways and you will see a section on How to Subscribe. Although it might be better to have that section and maybe even the one that explains about list charters above the list of lists, it still is not hard to find. jerry reveals that one is able to Search or Browse the mailing lists. But what puzzles me is how there are any mailing lists at all if one is not able to *join* them so as to post to them. ;) Please tell me where I can find the information I need to join one of the mailing lists. Thank you for all your time and consideration in this matter. Sincerely, Chris ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Lowest common denominator for buildworld/kernel
On Tuesday 12 April 2005 04:18 pm, markzero wrote: Hello, I would like to set up a machine with which to build world and kernels for an assortment of slightly different machines. The machines are an assortment of Pentium IIs', IIIs' and AMD K6s'. What CPU type should I build for in order to safely accomodate the slight differences? i386? Also, as a side note, is there any better way to distribute the compiled binaries and kernel than NFS mounts? I *really* don't get along with NFS... Thanks, Mark I don't know what sort of accomodation you mean. The binaries can all be perfectly portable, or, at your option, you can put in various extra options to optimize for your processor. To tell you the trush, if you don't play with the flags, then I see no problem with slight differences. Ok, thanks for the affirmation. I was pretty sure that this would be the case but as I'm not familiar with the build process under the hood, I wasn't sure if the makefiles tweaked themselves implicitly depending on the build platform. I'm glad this isn't the case, that would be quite a pickle. ssh works great for a lot of applications that need to send products to foreign lands ... it's the scp command, in particular, I mean. ssh was the first thing that sprang to mind but it also raised some further questions, like what exactly to copy. /usr/obj would obviously have to go over but what about all the makefiles required for a 'make installworld' etc? I wondered if I would end up just copying over /usr/src entirely, which seems very innefficient. Hmm, it's certainly something to think about. What I have done to cover that situation is place /usr/obj and /usr/src in their own 1.5GB partitions. Then, when you nfs_mount them on the other system, they have the same path as when you did the build. You don't need 3GB to cover the build but HDs are cheap and rebuilding a slice is not. I have the kernel config file for each of the other systems on the build machine. When you do a buildkernel, you can have the build machine build the kernel for all of them at one time. Kent Thanks, Mark -- Kent Stewart Richland, WA http://users.owt.com/kstewart/index.html ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Can't control PostgreSQL with RC scripts
On Fri, 2005-04-08 at 10:59 +0300, Volodymyr Kostyrko wrote: Pat Maddox wrote: I installed PostgreSQL 8.0.1 from ports, and now I'd like to control it with the RC scripts. I wasn't able to run initdb with the scripts, I had to do that manually with the regular initdb command. Now I've got the db dir as /usr/local/pgsql/data, which is what it looks like pgsql expects, but the scripts still won't start it or stop it. They don't produce any output either. Any ideas on what to do? echo 'postgresql_enable=YES' /etc/rc.conf that Darn rcsubr again ;) ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Lowest common denominator for buildworld/kernel
ssh was the first thing that sprang to mind but it also raised some further questions, like what exactly to copy. /usr/obj would obviously have to go over but what about all the makefiles required for a 'make installworld' etc? I wondered if I would end up just copying over /usr/src entirely, which seems very innefficient. Hmm, it's certainly something to think about. What I have done to cover that situation is place /usr/obj and /usr/src in their own 1.5GB partitions. Then, when you nfs_mount them on the other system, they have the same path as when you did the build. You don't need 3GB to cover the build but HDs are cheap and rebuilding a slice is not. I have the kernel config file for each of the other systems on the build machine. When you do a buildkernel, you can have the build machine build the kernel for all of them at one time. Veering slightly off topic now but how reliable/secure is NFS these days? I stopped using it years ago as I got tired of the problems I used to have with it (probably my own fault). Is there a decent, lightweight distributed filesystem that's stable on FreeBSD? My main criteria are: 1. Lightweight - small and simple is best. 2. Cryptographically secure - we are very strict about cleartext protocols over the network here. I have seen Coda in ports but it labels itself as 'experimental' and I'm not really up for debugging my filesystem... Mark -- PGP: http://www.darklogik.org/pub/pgp/pgp.txt B776 43DC 8A5D EAF9 2126 9A67 A7DA 390F DEFF 9DD1 pgprvBTwyM7lF.pgp Description: PGP signature
Re: Lowest common denominator for buildworld/kernel
On Wed, Apr 13, 2005 at 01:01:23AM +0100, markzero wrote: ssh was the first thing that sprang to mind but it also raised some further questions, like what exactly to copy. /usr/obj would obviously have to go over but what about all the makefiles required for a 'make installworld' etc? I wondered if I would end up just copying over /usr/src entirely, which seems very innefficient. Hmm, it's certainly something to think about. A small filing cabinet at the back of the brain creaks open, rust falling from its hinges. A piece of paper catches upon a passing breeze. It is pulled gracefully upwards and as it arcs into the field of vision, it can be seen to read: rsync-over-ssh With the right permissions on /usr/src and /usr/obj, a pair of SSHv2 keys and Kens idea about disk slices, we could be onto a winning solution! Cheers, Mark -- PGP: http://www.darklogik.org/pub/pgp/pgp.txt B776 43DC 8A5D EAF9 2126 9A67 A7DA 390F DEFF 9DD1 pgpyT2TbUB2kP.pgp Description: PGP signature
Re: fax4CUPS
On 4/10/05, John Conover [EMAIL PROTECTED] wrote: Gert Cuykens writes: On Apr 10, 2005 9:58 PM, Chris [EMAIL PROTECTED] wrote: Gert Cuykens wrote: Can we have this in ports ? http://vigna.dsi.unimi.it/fax4CUPS/ Are you volunteering? Anything is possible, but nothing is easy. How do you mean ? I did not install it yet but it sounds useful if cups could handle a serial fax like a printer :) Aldo i think the script can only send faxes and not handle incoming faxes like printing them or sending them to a mailbox directory. But i am sure you can add some magic faxing features to it :) 10$ its going to be a popular port and for people like you not that hart to add some fax incomming features :) With a little bit of luck you don't have to compile anything :) It does work well, (as per the sparse docs in the tar file.) You can use efax for incoming faxes, (or better, hylafax, if you can talk [EMAIL PROTECTED] into coming down and configuring it for you,) and the fax4CUPS does appear as a printer according to lpstat -a, and does send faxes, (saved as a postscript file out of openoffice.org, etc.) You will have to use cup's lpr -j option to tell it the fax printer what number to send the fax to, (so you will probably have to configure a printer in everyone's openoffice.org, etc.) The lpadmin command to install the cups/efax printer is: lpadmin -p efax -L machine -D fax -E -v efax:/dev/ttyXX -m efax.ppd Where efax.ppd is installed in probably /usr/share/cups/model/, and the efax script, (with the first 8 lines modified for your configuration,) installed in probably /usr/lib/cups/backend/. Note: if efax answer is running on /dev/ttyXX from /etc/inittab, it may be necessary to disable efax answer for the lpadmin command, but only to install the fax printer, (apparently, lpadmin doesn't like other things listening on its serial printer ports when it installs the printer.) If you use efax or hylafax for incoming, enable MIME e-mailing of the fax to a faxmaster, who distributes the file to the appropriate machine-its default for hylafax. For efax, configure /etc/efax.rc and /usr/bin/fax, (these are some script changes,) to send the fax attachment as a postscript file so they can be read with gv/ghostscript, (which probably came with your cups installation.) The efax/tiff file formats come out half size if a low resolution fax is received, which is corrected if postscript is used. Recommendation: YMMV, but hylafax is a bit difficult to configure, but is very robust once running; efax is probably preferable for non-industrial strength applications. mgetty-fax:/dev/cuaa0 doesnt work :( I read the install and the manual. I can select the mgetty-fax ppd but i can not select the mgetty-fax backend... This is the backend file. #!/bin/bash PAGE=a4 FAXPRG=/usr/bin/faxspool LOGDIR=/var/log/mgetty # # This is fax4CUPS 1.24, a fax back-end for CUPS # # Copyright (C) 2001-2003 Sebastiano Vigna [EMAIL PROTECTED] # # This program is free software; you can redistribute it and/or modify it # under the terms of the GNU General Public License as published by the Free # Software Foundation; either version 2 of the License, or (at your option) # any later version. # # This program is distributed in the hope that it will be useful, but # WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY # or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License # for more details. # # You should have received a copy of the GNU General Public License # along with this program; if not, write to the Free Software # Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. # # Modified by Michael Goffioul [EMAIL PROTECTED] # # - phone number as option instead of job name: -o phone=number # # Additional fixes by Kevin Ivory [EMAIL PROTECTED] # # Additional mgetty-fax support by Daniel Glanzmann [EMAIL PROTECTED] # # Modified by Daniel Glanzmann [EMAIL PROTECTED] # # - take care of mgetty-fax return values # - small cleanup # # Additional capisuite support by Daniel Glanzmann [EMAIL PROTECTED] # # Called with no arguments, we list the serial devices as possible fax devices. # If /dev/modem has been set up, we list it too. if [ $# -eq 0 ]; then if [ ! -x $FAXPRG ]; then exit 0; fi if [ -e /dev/modem ]; then echo serial mgetty-fax:/dev/modem \Unknown\ \Faxmodem (mgetty-fax on /dev/modem)\; fi if [ -e /dev/tty.modem ]; then echo serial mgetty-fax:/dev/tty.modem \Unknown\ \Faxmodem (mgetty-fax on /tty.modem)\; fi if [ -e /dev/cu.modem ]; then echo serial mgetty-fax:/dev/cu.modem \Unknown\ \Faxmodem (mgetty-fax on /cu.modem)\; fi for ser in $(\ls -1 /dev/ttyS[0-9]* | sort -g +0.9 | head -32); do echo serial mgetty-fax:$ser \Unknown\ \Faxmodem on Serial Port #$((${ser#/dev/ttyS}+1)) (mgetty-fax)\ done
link to devfs
Hi, It seems that linking to devfs (or at least /dev/random) does something weird with the filesystem... How can I return from this state? -adx ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Can't remove empty directory
On Tue, Apr 12, 2005 at 05:42:14PM -0500, Guillermo Garcia-Rojas wrote: After moving the directory, the system will prompt for a corruption on the filesystem and a simple fsck, as you say, will fix the problem :) I don't know what you mean by prompt for a corruption. Kris pgpUyBuAMoIwP.pgp Description: PGP signature
Re: link to devfs
On Wed, Apr 13, 2005 at 01:47:47AM +0200, Piotr Ni?y?ski wrote: Hi, It seems that linking to devfs (or at least /dev/random) does something weird with the filesystem... How can I return from this state? Please explain your problem in more detail, showing e.g. what commands you ran and what problem you encountered. Kris pgpYddtvBc77k.pgp Description: PGP signature
Re: Mailing lists
Thank you Jerry for responding. In answer to your question; I used: http://www.freebsd.org/support.html#newsgroups thinking I could join a newsgroup. But found that for my needs, I would do better to join one or more of the mailing lists, which brought me here: http://www.freebsd.org/support.html#mailing-list from the same page. Well, now you know. Have fun, jerry I hope this answered your question well enough. :) --Chris Greetings, I was wondering how people are able to join any of the mailing lists. A trip to: http://www.freebsd.org/support.html#mailing-list I am not sure how you got there. You couldn't have looked very hard. If you go to the main FreeBSD home page, you will see a link (under the Support main heading) that says 'Mailing Lists'. Click on this and go down the page a ways and you will see a section on How to Subscribe. Although it might be better to have that section and maybe even the one that explains about list charters above the list of lists, it still is not hard to find. jerry reveals that one is able to Search or Browse the mailing lists. But what puzzles me is how there are any mailing lists at all if one is not able to *join* them so as to post to them. ;) Please tell me where I can find the information I need to join one of the mailing lists. Thank you for all your time and consideration in this matter. Sincerely, Chris ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
ipf.rules
Hi Folks, I have the firewall/router box going, under V5.3. It says in ipf.rules to: # Allow out access to my ISP's DHCP server for cable or DSL networks. # This rule is not needed for 'user ppp' type connection to the # public Internet, so you can delete this whole group. # Use the following rule and check log for IP address. # Then put IP address in commented out rule delete first rule pass out log quick on dc0 proto udp from any to any port = 67 keep state #pass out quick on dc0 proto udp from any to z.z.z.z port = 67 keep state How do I know which ip address I am looking for to put in place of z.z.z.z. port= 67 keep state in the rule that is saved. Thanks fewjr/Buddy ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Which mail server is the best for me?
On Sat, 2005-04-02 at 11:09 +0200, Kiffin Gish wrote: I would like to setup a mail server but am a little confused about whether to use sendmail, qmail, postfix or whatever. Basically my web server is a simple one to be used for personal use with maybe no more than a 10-20 mail accounts. What are the advantages and/or disadvantages of each choice, and where can I find more information comparing them? ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] For my home stuff and a couple of production servers I use Sendmail +imap-uw (imap, pop)+squirrelmail+popassd+clamav_milter+spamassasin. I is very simple and fast to setup, plus easy to trouble shoot. If the MX is pointing at the address already it might take me about 20 minutes to make it start accepting and sending mail. One of these days I want to release a small tutorial on how to do this. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Gnome / xorg / Ports / Release related nightmares
Hi all, At the risk of being accused of being a troll in the bikeshed, here goes: I've used FreeBSD since 2.2.6 (c. 1998) and I love it. Never lost any data and I trust it, thanks to all the hard work all the developers are doing! Recently, I went through the 4.3 - 5.3 / XFree - xorg / Gnome 2.4 - 2.10 upgrade cycle somewhat ambitiously in one go. Currently I'm tracking 5.3 Release (though of course I'm aware that 5.4 is imminent). I need to use ports (1200+ of them on average in fact), yet they are only supported for STABLE, yet the blind use of STABLE is not recommended. Basically I'm asking for advice on how best to install / manage ports with stability in mind. I'm guilty of mixing pkg_add -vr (Release based) with make install (Current ports tree based) and portupgrade (which AFAIK kind of mixes the previous two options) as well as resorting to the occasional ln -s after a bit of ldd'ing (which is probably not advisable long term but helps if you need a quick library link on a slow machine!). I realise that the ports system is very clever and highly complex but is there not a way that I can, somehow insofar as it is possible, obtain, say, a Firefox 1.X port (probably delivered as a package) for a 5.3 release? Hope this makes sense! Cheers, James ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
courier-imap operation timed out?
Why do I get these mail errors? Apr 12 21:32:59 imapd-ssl: couriertls: read: Operation timed out Apr 12 21:32:59 imapd-ssl: DISCONNECTED, user=x, ip=[0.0.0.0], headers=0, body=0, time=287, starttls=1 Ofcoure user and ip have been omitted, but this is a connection from a windows xp machine running outlook express to check mail. While on the same network as the xp machine I have a osx computer using Mail to check using imap-ssl and I never ever got an error like that. Also throwing this in as well... root# spamassassin -D debug: SpamAssassin version 3.0.2 debug: Score set 0 chosen. Yet I've specified required_score 5.0 in local.cf Say it can't read my local.cf file... Isn't the default to use a score of 5 anyway? So shouldn't it default to 5 not 0 ? I've spamassassin -D -C /path/to/local.cf and it still doesn't read the score... ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: courier-imap operation timed out?
Why do I get these mail errors? Apr 12 21:32:59 imapd-ssl: couriertls: read: Operation timed out Apr 12 21:32:59 imapd-ssl: DISCONNECTED, user=x, ip=[0.0.0.0], headers=0, body=0, time=287, starttls=1 Ofcoure user and ip have been omitted, but this is a connection from a windows xp machine running outlook express to check mail. Outlook Express is known to have problems with secure email (TLS) and IMAP. I saw a good article about this on the web the other day -- but unfortunately I can't find the link. While on the same network as the xp machine I have a osx computer using Mail to check using imap-ssl and I never ever got an error like that. Also throwing this in as well... root# spamassassin -D debug: SpamAssassin version 3.0.2 debug: Score set 0 chosen. Yet I've specified required_score 5.0 in local.cf Say it can't read my local.cf file... Isn't the default to use a score of 5 anyway? So shouldn't it default to 5 not 0 ? I've spamassassin -D -C /path/to/local.cf and it still doesn't read the score... required_score is the score required to mark an email as spam. The score set is something totally different -- SA uses different score sets internally to switch between Bayesian and non-Bayesian scoring modes. -- Matt ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Gnome / xorg / Ports / Release related nightmares
On Wed, Apr 13, 2005 at 02:29:38AM +0100, [EMAIL PROTECTED] wrote: Hi all, At the risk of being accused of being a troll in the bikeshed, here goes: I've used FreeBSD since 2.2.6 (c. 1998) and I love it. Never lost any data and I trust it, thanks to all the hard work all the developers are doing! Recently, I went through the 4.3 - 5.3 / XFree - xorg / Gnome 2.4 - 2.10 upgrade cycle somewhat ambitiously in one go. Currently I'm tracking 5.3 Release (though of course I'm aware that 5.4 is imminent). I need to use ports (1200+ of them on average in fact), yet they are only supported for STABLE, yet the blind use of STABLE is not recommended. and the most recent release on the -stable branch(es). See http://www.freebsd.org/ports. Basically I'm asking for advice on how best to install / manage ports with stability in mind. I'm guilty of mixing pkg_add -vr (Release based) with make install (Current ports tree based) and portupgrade (which AFAIK kind of mixes the previous two options) as well as resorting to the occasional ln -s after a bit of ldd'ing (which is probably not advisable long term but helps if you need a quick library link on a slow machine!). As you suspect, this can damage the ability of your system to run ported applications. Don't do it unless you're prepared to track down and repair the damage when it happens (it sounds like you're not). Kris pgpnMw1bcdWto.pgp Description: PGP signature
How to interpret ipfw log?
The following firewall log seems to make very little sense to me. What could it possibly mean? Apr 11 04:27:05 name kernel: ipfw: 2500 Deny TCP 192.168.0.200:65117 65.87.165.45:5800 out via tx0 Apr 11 04:27:05 name kernel: ipfw: 2500 Deny TCP 192.168.0.200:49761 65.87.165.45:1003 out via tx0 Apr 11 04:27:05 name kernel: ipfw: 2500 Deny TCP 192.168.0.200:50116 65.87.165.45:1362 out via tx0 Apr 11 04:27:05 name kernel: ipfw: 2500 Deny TCP 192.168.0.200:50055 65.87.165.45:6101 out via tx0 Apr 11 04:27:05 name kernel: ipfw: 2500 Deny TCP 192.168.0.200:62352 65.87.165.45:888 out via tx0 Apr 11 04:27:05 name kernel: ipfw: 2500 Deny TCP 192.168.0.200:61272 65.87.165.45:969 out via tx0 Apr 11 04:27:05 name kernel: ipfw: 2500 Deny TCP 192.168.0.200:58267 65.87.165.45:471 out via tx0 Apr 11 04:27:05 name kernel: ipfw: 2500 Deny TCP 192.168.0.200:54164 65.87.165.45:1496 out via tx0 Apr 11 04:27:05 name kernel: ipfw: 2500 Deny TCP 192.168.0.200:61306 65.87.165.45:5716 out via tx0 Apr 11 04:27:05 name kernel: ipfw: 2500 Deny TCP 192.168.0.200:64970 65.87.165.45:281 out via tx0 Apr 11 04:27:05 name kernel: ipfw: 2500 Deny TCP 192.168.0.200:64115 65.87.165.45:106 out via tx0 Apr 11 04:27:05 name kernel: ipfw: 2500 Deny TCP 192.168.0.200:62007 65.87.165.45:284 out via tx0 ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
RE: How to interpret ipfw log?
Your ipfw rule 2500 is denying those outbound packets 192.168.0.200:65117 is your ip address: port number 65.87.165.45:5800 is the remote target ip address and port number and this is leaving your pc on NIC named tx0 -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of Sergei Gnezdov Sent: Tuesday, April 12, 2005 11:08 PM To: freebsd-questions@freebsd.org Subject: How to interpret ipfw log? The following firewall log seems to make very little sense to me. What could it possibly mean? Apr 11 04:27:05 name kernel: ipfw: 2500 Deny TCP 192.168.0.200:65117 65.87.165.45:5800 out via tx0 Apr 11 04:27:05 name kernel: ipfw: 2500 Deny TCP 192.168.0.200:49761 65.87.165.45:1003 out via tx0 Apr 11 04:27:05 name kernel: ipfw: 2500 Deny TCP 192.168.0.200:50116 65.87.165.45:1362 out via tx0 Apr 11 04:27:05 name kernel: ipfw: 2500 Deny TCP 192.168.0.200:50055 65.87.165.45:6101 out via tx0 Apr 11 04:27:05 name kernel: ipfw: 2500 Deny TCP 192.168.0.200:62352 65.87.165.45:888 out via tx0 Apr 11 04:27:05 name kernel: ipfw: 2500 Deny TCP 192.168.0.200:61272 65.87.165.45:969 out via tx0 Apr 11 04:27:05 name kernel: ipfw: 2500 Deny TCP 192.168.0.200:58267 65.87.165.45:471 out via tx0 Apr 11 04:27:05 name kernel: ipfw: 2500 Deny TCP 192.168.0.200:54164 65.87.165.45:1496 out via tx0 Apr 11 04:27:05 name kernel: ipfw: 2500 Deny TCP 192.168.0.200:61306 65.87.165.45:5716 out via tx0 Apr 11 04:27:05 name kernel: ipfw: 2500 Deny TCP 192.168.0.200:64970 65.87.165.45:281 out via tx0 Apr 11 04:27:05 name kernel: ipfw: 2500 Deny TCP 192.168.0.200:64115 65.87.165.45:106 out via tx0 Apr 11 04:27:05 name kernel: ipfw: 2500 Deny TCP 192.168.0.200:62007 65.87.165.45:284 out via tx0 ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
postfix, what does this mean?
Err, I've got a bunch of mail questions... What the heck is going on here? Apr 12 23:26:48 postfix/qmgr[73146]: 8B46133C3E: from=, size=2716, nrcpt=1 (queue active) Apr 12 23:26:48 postfix/qmgr[73146]: D956C33C39: from=, size=2712, nrcpt=1 (queue active) Apr 12 23:26:48 postfix/qmgr[73146]: 5C36533C23: from=, size=2994, nrcpt=1 (queue active) Apr 12 23:26:48 postfix/qmgr[73146]: B9A8E33C21: from=, size=2950, nrcpt=1 (queue active) Apr 12 23:26:48 postfix/smtp[73236]: connect to smtp2.nix.paypal.com[64.4.240.75]: Operation not permitted (port 25) Apr 12 23:26:48 postfix/smtp[73236]: connect to smtp1.nix.paypal.com[64.4.240.74]: Operation not permitted (port 25) Apr 12 23:26:48 postfix/smtp[73236]: connect to smtp1.sc5.paypal.com[64.4.244.74]: Operation not permitted (port 25) Apr 12 23:26:48 postfix/smtp[73239]: connect to smtp1.nix.paypal.com[64.4.240.74]: Operation not permitted (port 25) Apr 12 23:26:48 postfix/smtp[73239]: connect to smtp1.sc5.paypal.com[64.4.244.74]: Operation not permitted (port 25) Apr 12 23:26:48 postfix/smtp[73239]: connect to smtp2.nix.paypal.com[64.4.240.75]: Operation not permitted (port 25) Apr 12 23:26:48 postfix/smtp[73236]: 8B46133C3E: to=[EMAIL PROTECTED], relay=none, delay=182913, status=deferred (connect to smtp1.sc5.paypal.com[64.4.244.74]: Operation not permitted) Apr 12 23:26:48 postfix/smtp[73239]: D956C33C39: to=[EMAIL PROTECTED], relay=none, delay=190298, status=deferred (connect to smtp2.nix.paypal.com[64.4.240.75]: Operation not permitted) Apr 12 23:26:48 postfix/smtp[73240]: connect to rsliberty.nswebhost.com[67.18.67.68]: Operation not permitted (port 25) Apr 12 23:26:48 postfix/smtp[73240]: 5C36533C23: to=[EMAIL PROTECTED], relay=none, delay=60736, status=deferred (connect to rsliberty.nswebhost.com[67.18.67.68]: Operation not permitted) There from is not an omitted address... What is paypal trying to do? The last log is someone on nswebhost trying to use my smtp to send their mail correct? Is that what paypal is trying to do? But why? ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: postfix, what does this mean?
Henry wrote: Err, I've got a bunch of mail questions... What the heck is going on here? Apr 12 23:26:48 postfix/qmgr[73146]: 8B46133C3E: from=, size=2716, nrcpt=1 (queue active) Apr 12 23:26:48 postfix/qmgr[73146]: D956C33C39: from=, size=2712, nrcpt=1 (queue active) Apr 12 23:26:48 postfix/qmgr[73146]: 5C36533C23: from=, size=2994, nrcpt=1 (queue active) Apr 12 23:26:48 postfix/qmgr[73146]: B9A8E33C21: from=, size=2950, nrcpt=1 (queue active) Apr 12 23:26:48 postfix/smtp[73236]: connect to smtp2.nix.paypal.com[64.4.240.75]: Operation not permitted (port 25) Apr 12 23:26:48 postfix/smtp[73236]: connect to smtp1.nix.paypal.com[64.4.240.74]: Operation not permitted (port 25) Apr 12 23:26:48 postfix/smtp[73236]: connect to smtp1.sc5.paypal.com[64.4.244.74]: Operation not permitted (port 25) Apr 12 23:26:48 postfix/smtp[73239]: connect to smtp1.nix.paypal.com[64.4.240.74]: Operation not permitted (port 25) Apr 12 23:26:48 postfix/smtp[73239]: connect to smtp1.sc5.paypal.com[64.4.244.74]: Operation not permitted (port 25) Apr 12 23:26:48 postfix/smtp[73239]: connect to smtp2.nix.paypal.com[64.4.240.75]: Operation not permitted (port 25) Apr 12 23:26:48 postfix/smtp[73236]: 8B46133C3E: to=[EMAIL PROTECTED], relay=none, delay=182913, status=deferred (connect to smtp1.sc5.paypal.com[64.4.244.74]: Operation not permitted) Apr 12 23:26:48 postfix/smtp[73239]: D956C33C39: to=[EMAIL PROTECTED], relay=none, delay=190298, status=deferred (connect to smtp2.nix.paypal.com[64.4.240.75]: Operation not permitted) Apr 12 23:26:48 postfix/smtp[73240]: connect to rsliberty.nswebhost.com[67.18.67.68]: Operation not permitted (port 25) Apr 12 23:26:48 postfix/smtp[73240]: 5C36533C23: to=[EMAIL PROTECTED], relay=none, delay=60736, status=deferred (connect to rsliberty.nswebhost.com[67.18.67.68]: Operation not permitted) There from is not an omitted address... What is paypal trying to do? Paypal is not trying to do anything. Some lamer is trying to use your SMTP host to send out fraud emails for malicious purposses. Regards S. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Best upgrade strategy
Glyn Millington wrote: Greetings! I'm a newcomer to FreeBSD, an immigrant from the wonderful world of Slackware Linux. Finished installing on Sunday! I wanted to make sure the system was up to date with regard to security fixes etc so used cvsup to upgrade source and re-built the kernel - it all went like a dream - what a system!! What documentation!! Hold on, just the kernel or the kernel and world. You have to keep these in sync on FreeBSD. Just checking because I hear you can just upgrade the linux kernel to your hearts content without messing with the other stuff on the system. Enough rapture! Here's the question Having installed 5.3 from cd, I performed the above upgrade once and found that I was at version 6 Current! Back to the drawing board and started again with the following line in my cvsup file *default release=cvs tag=RELENG_5 Better - I only find myself with a pre-release 5.4 :-) That is fine, but at the point when 5.4 becomes the production release, I would like simply to track that for security fixes etc rather than follow the stable developement branch. Can I acheive that simply by putting *default release=cvs tag=RELENG_5_4 into my cvsup file, at the right time -ie as soon as 5.4 becomes a production release? ? Or will there be such complications that it would be best to perform yet another install (which is smooth but slow on my set-up). Thanks in advance Glyn ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: postfix, what does this mean?
But how come I can't see what IP the person is connecting from? So I can block him through my firewall since he is getting annoying :( ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: ipf.rules
in message [EMAIL PROTECTED], wrote Francis Whittington thusly... # Allow out access to my ISP's DHCP server for cable or DSL networks. ... # Use the following rule and check log for IP address. # Then put IP address in commented out rule delete first rule pass out log quick on dc0 proto udp from any to any port = 67 keep state #pass out quick on dc0 proto udp from any to z.z.z.z port = 67 keep state How do I know which ip address I am looking for to put in place of z.z.z.z. port= 67 keep state in the rule that is saved. Well, what does the log says as explicitly indicated in your supplied comments (marked w/ '#)? To reiterate, 'z.z.z.z' is the address of your DHCP server. You will see it in the log as the (outside) host of which port 67 (bootps) is accessed (probably from address of 255.255.255.255). (I do not know the default log file for ipf on 5.x; i have set it manually in /etc/syslog.conf to be ipf.log (as the default was not a special name which would have stood out (in /var/log)).) - Parv -- ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Lowest common denominator for buildworld/kernel
On Tuesday 12 April 2005 05:01 pm, markzero wrote: ssh was the first thing that sprang to mind but it also raised some further questions, like what exactly to copy. /usr/obj would obviously have to go over but what about all the makefiles required for a 'make installworld' etc? I wondered if I would end up just copying over /usr/src entirely, which seems very innefficient. Hmm, it's certainly something to think about. What I have done to cover that situation is place /usr/obj and /usr/src in their own 1.5GB partitions. Then, when you nfs_mount them on the other system, they have the same path as when you did the build. You don't need 3GB to cover the build but HDs are cheap and rebuilding a slice is not. I have the kernel config file for each of the other systems on the build machine. When you do a buildkernel, you can have the build machine build the kernel for all of them at one time. Veering slightly off topic now but how reliable/secure is NFS these days? I stopped using it years ago as I got tired of the problems I used to have with it (probably my own fault). Is there a decent, lightweight distributed filesystem that's stable on FreeBSD? My main criteria are: 1. Lightweight - small and simple is best. 2. Cryptographically secure - we are very strict about cleartext protocols over the network here. I have seen Coda in ports but it labels itself as 'experimental' and I'm not really up for debugging my filesystem... I don't know about reliable. Secure is a function of how you export your system. You export by the remote system, so, no export, no problem :). I have used it to recover systems. I had a mobo go and when I loaded the HDs, I had a pair switched. It was immediately obvious but some links seemed to go by-by. I brought the recovery system up todate and loaded the kernel and world on the sick system. After the upgrade, I had no more problems. I remounted the ../src and ../obj from the sick machine and went on with business. Kent -- Kent Stewart Richland, WA http://users.owt.com/kstewart/index.html ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: SMTP problems
Per olof Ljungmark wrote: Subhro wrote: authentication failure: cannot connect to Courier authdaemond: No such file or directory Apr 13 13:04:52 munich postfix/smtpd[27064]: warning: unknown[59.93.160.227]: SASL LOGIN authentication failed Apr 13 13:04:55 munich postfix/smtpd[27064]: lost connection after AUTH from unknown[59.93.160.227] Apr 13 13:04:55 munich postfix/smtpd[27064]: disconnect from unknown[59.93.160.227] snip Either Postfix is looking in the wrong place or something's fishy about the Courier authdaemond. What does the Courier log say? I did not explicitly install courier. Which is the port which I need to install? What do you mean then? You said you are trying to set up a mailserver with virtual mailboxes and SASL authentication for SMTP. Courier IS a mail server (in the ports) suitable for virtual mailboxes. I think you need to provide all the details first, Postfix is an MTA but not a complete mail server. The problem above may be better answered on the Postfix list so I suggest you try there as well. I have got cyrus-sasl2 installed from /usr/ports/security and saslauthd from /usr/ports/cyrus-sasl-saslauthd With saslauthd running with sasldb as the authentication method I get Apr 13 22:43:20 munich postfix/smtpd[83070]: warning: SASL authentication failure: no user in db Apr 13 22:43:20 munich postfix/smtpd[83070]: warning: SASL authentication failure: no user in db Apr 13 22:43:20 munich postfix/smtpd[83070]: warning: SASL authentication failure: no secret in database Apr 13 22:43:20 munich postfix/smtpd[83070]: warning: unknown[59.93.160.205]: SASL CRAM-MD5 authentication failed Apr 13 22:43:21 munich postfix/smtpd[83070]: warning: SASL authentication failure: no user in db Apr 13 22:43:21 munich postfix/smtpd[83070]: warning: SASL authentication failure: no user in db Apr 13 22:43:21 munich postfix/smtpd[83070]: warning: SASL authentication failure: Password verification failed Apr 13 22:43:21 munich postfix/smtpd[83070]: warning: unknown[59.93.160.205]: SASL PLAIN authentication failed Apr 13 22:43:22 munich postfix/smtpd[83070]: warning: SASL authentication failure: no user in db Apr 13 22:43:22 munich postfix/smtpd[83070]: warning: SASL authentication failure: no user in db Apr 13 22:43:22 munich postfix/smtpd[83070]: warning: unknown[59.93.160.205]: SASL LOGIN authentication failed Apr 13 22:43:39 munich postfix/smtpd[83070]: lost connection after AUTH from unknown[59.93.160.205] /usr/local/lib/smtpd.conf looks like cat /usr/local/lib/sasl2/smtpd.conf pwcheck_method: saslauthd I would also like to service system accounts along with virtual accounts. I would like to know where I am going wrong Regards S. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Can't change MAC address of my WAG311
Ben Pratt wrote: I would forward this to the list but I don't want to get the bounces for 3 days because I can't get reverse lookup going. I've attached a script that you should try. Ben FreeBSD Daemon wrote: dear list, I am operating a Netgear WAG311 (Atheros AR5212) under FBSD 5.3 Release. I tried to change the MAC address of the device using root# ifconfig ath0 ether aa:bb:cc:dd:ee:ff which changed the MAC address in the ifconfig ath0 output. But wicontrol -i ath0 still showed the old (original) MAC address and that MAC address also is being used on the network. Trying to change the MAC address using root# wicontrol -i ath0 -m aa:bb:cc:dd:ee:ff results in a wicontrol: SIOCSWAVELAN: Invalid Argument error message. Am I doing something wrong? TIA zheyu ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] #!/usr/local/bin/bash # Version 2.1 # By Ben # Thanks to Venom for suggesting Apple and joining FreeBSD and Linux echo What interface? [ath0] read interface if [ $interface = ] then interface=ath0 fi company=0 until [ $company -eq 1 -o $company -eq 2 -o $company -eq 3 -o $company -eq 4 -o $company -eq 5 -o $company -eq 6 ]; do echo Card Company to impersonate? echo 1) 3Com echo 2) Apple echo 3) D-Link echo 4) Intel echo 5) Linksys echo 6) Netgear read company done front= back= new= case $company in '1') # Random 3Com Card number=0 while [ $number -le 0 ] do number=$RANDOM let number %= 14 done echo Number: $number case $number in '1') front=00:01:02: ;; '2') front=00:01:03: ;; '3') front=00:10:4B: ;; '4') front=00:10:5A: ;; '5') front=00:20:AF: ;; '6') front=00:50:04: ;; '7') front=00:50:DA: ;; '8') front=00:60:08: ;; '9') front=00:60:8C: ;; '10') front=00:60:97: ;; '11') front=00:A0:24: ;; '12') front=02:60:8C: ;; '13') front=02:C0:8C: ;; * ) echo Error exit 0 ;; esac ;; '2') # Random Apple Card number=0 while [ $number -le 0 ] do number=$RANDOM let number %= 6 done echo Number: $number case $number in '1') front=00:05:02: ;; '2') front=00:30:65: ;; '3') front=00:50:E4: ;; '4') front=00:A0:40: ;; '5') front=08:00:07: ;; * ) echo Error exit 0 ;; esac ;; '3') # Random D-Link Card front=00:05:5D: ;; '4') # Random Intel Card number=0 while [ $number -le 0 ] do number=$RANDOM let number %= 9 done echo Number: $number case $number in '1') front=00:02:B3: ;; '2') front=00:03:47: ;; '3') front=00:04:23: ;; '4') front=00:07:E9: ;; '5') front=00:0C:F1: ;; '6') front=00:0E:0C: ;; '7') front=00:11:11: ;; '8') front=00:20:7B: ;; * ) echo Error exit 0 ;; esac ;; '5') # Random Linksys Card number=0 while [ $number -le 0 ] do number=$RANDOM let number %= 4 done echo Number: $number case $number in '1') front=00:04:5A: ;; '2') front=00:06:25: ;; '3') front=00:0C:41: ;; * ) echo Error exit 0 ;; esac ;; '6') # Random Netgear Card front=00:09:5B: ;; '7') # Random Card ;; esac count=0 colon=0 colons=1 while [ $count -lt 6 ] do Numbers=0 1 2 3 4 5 6 7 8 9 A B C D E F # Read into array variable. number=($Numbers) # Count how many elements. num_numbers=${#number[*]} new=${number[$((RANDOM%num_numbers))]} back=$back$new if [ $colon -gt 0 ] [ $colons -lt 3 ] then new=: back=$back$new let colon-=1 let colons+=1 else let colon+=1 fi let count+=1 done address=$front$back OS=0 until [ $OS -eq 1 -o $OS -eq 2 ]; do echo What OS?? echo 1) FreeBSD echo 2) Linux read OS done case $OS in '1') ifconfig $interface down ifconfig $interface link $address ifconfig $interface up ;; '2') ifconfig $interface down ifconfig $interface ether $address ifconfig $interface up ;; * ) exit 0 ;; esac echo Your new MAC is: $address exit 0 Well, thanks for the script, BUT as I wrote ifconfig is working. The misunderstanding was probably cause by me not explicitly pointing out that aa:bb:cc:dd:ee:ff stands for a real MAC (00:01:f4:xx:yy:zz) and is not to be taken literally. SORRY! Again, ifconfig is working and the MAC changes in the ifconfig output ... athough the card doesn't honour the change and keeps on using the old (original) MAC. wicontrol dosn't even hounour the change in its output and keeps displaying the Old (original) MAC. And trying to change the MAC using wicontrol results in the error wicontrol: SIOCSWAVELAN: Invalid Argument. zheyu ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]